Testsuite: harden for TLS1.3 under GnuTLS
[users/heiko/exim.git] / test / scripts / 5650-OCSP-GnuTLS / 5652
1 # OCSP stapling, server, multiple certs
2 #
3 #
4 #
5 exim -z '1: Server sends good staple on request, to client requiring RSA auth'
6 ****
7 #
8 exim -bd -oX PORT_D -DSERVER=server
9 ****
10 exim -odf \
11   -DOPT=NONE:+SIGN-RSA-SHA256:+VERS-TLS-ALL:+ECDHE-RSA:+DHE-RSA:+RSA:+CIPHER-ALL:+MAC-ALL:+COMP-NULL:+CURVE-ALL:+CTYPE-X509 \
12   -DCERT=DIR/aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
13   rsa.auth@test.ex
14 Subject: test
15
16 .
17 ****
18 killdaemon
19 #
20 #
21 #
22 #
23 exim -z '2: Server sends good staple on request, to client preferring ECDSA auth'
24 ****
25 #
26 exim -bd -oX PORT_D -DSERVER=server
27 ****
28 exim -odf \
29   -DOPT=NONE:+SIGN-ECDSA-SHA512:+VERS-TLS-ALL:+KX-ALL:+CIPHER-ALL:+MAC-ALL:+COMP-NULL:+CURVE-ALL:+CTYPE-X509 \
30   -DCERT=DIR/aux-fixed/exim-ca/example_ec.com/server1.example_ec.com/ca_chain.pem \
31   ecdsa.auth@test.ex
32 Subject: test
33
34 .
35 ****
36 killdaemon
37 no_msglog_check