X-Git-Url: https://git.exim.org/exim.git/blobdiff_plain/5b4569757c6dc749c250f065705f65c938bffb2e..2c3ac6dd18dbf1f048a7054a85879dbf90c1e7f4:/test/scripts/2000-GnuTLS/2024?ds=sidebyside diff --git a/test/scripts/2000-GnuTLS/2024 b/test/scripts/2000-GnuTLS/2024 index 7e16b7b05..33448738c 100644 --- a/test/scripts/2000-GnuTLS/2024 +++ b/test/scripts/2000-GnuTLS/2024 @@ -2,9 +2,17 @@ gnutls exim -DSERVER=server -bd -oX PORT_D **** +# +# +# This one has a cert, but the server isn't expecting it. +# Earlier versions of GnuTLS would send it despite the server giving a list of acceptable ones, and the +# server would fail its verification. Now the client correctly doesn't send it; the mainlog reflects +# this, the custom munge patches output with old GnuTLS (I hope; not actually tested). +munge gnutls_bad_clientcert client-gnutls HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2 ??? 220 -ehlo rhu.barb +ehlo rhu1.barb +??? 250- ??? 250- ??? 250- ??? 250- @@ -13,13 +21,18 @@ ehlo rhu.barb ??? 250 starttls ??? 220 +nop +????554 **** killdaemon +# +# Here the server really doesn't have a cert exim -DSERVER=server -DCERT=/non/exist -bd -oX PORT_D **** client-gnutls HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2 ??? 220 -ehlo rhu.barb +ehlo rhu2.barb +??? 250- ??? 250- ??? 250- ??? 250-