git://git.exim.org / users / jgh / exim.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
DANE/GnuTLS: ignore traditional CA anchor validation in DANE-EE mode
[users/jgh/exim.git] / test / stdout / 2014
1 ### No certificate, certificate required
2 Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected
3 ??? 220
4 <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000
5 >>> ehlo rhu1.barb
6 ??? 250-
7 <<< 250-myhost.test.ex Hello rhu1.barb [ip4.ip4.ip4.ip4]
8 ??? 250-
9 <<< 250-SIZE 52428800
10 ??? 250-
11 <<< 250-8BITMIME
12 ??? 250-
13 <<< 250-PIPELINING
14 ??? 250-
15 <<< 250-STARTTLS
16 ??? 250
17 <<< 250 HELP
18 >>> starttls
19 ??? 220
20 <<< 220 TLS go ahead
21 Attempting to start TLS
22 A TLS fatal alert has been received.
23 Failed to start TLS
24 End of script
25 ### No certificate, certificate optional at TLS time, required by ACL
26 Connecting to 127.0.0.1 port 1225 ... connected
27 ??? 220
28 <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000
29 >>> ehlo rhu2.barb
30 ??? 250-
31 <<< 250-myhost.test.ex Hello rhu2.barb [127.0.0.1]
32 ??? 250-
33 <<< 250-SIZE 52428800
34 ??? 250-
35 <<< 250-8BITMIME
36 ??? 250-
37 <<< 250-PIPELINING
38 ??? 250-
39 <<< 250-STARTTLS
40 ??? 250
41 <<< 250 HELP
42 >>> starttls
43 ??? 220
44 <<< 220 TLS go ahead
45 Attempting to start TLS
46 Succeeded in starting TLS
47 >>> helo rhu2tls.barb
48 ??? 250
49 <<< 250 myhost.test.ex Hello rhu2tls.barb [127.0.0.1]
50 >>> mail from:<userx@test.ex>
51 ??? 250
52 <<< 250 OK
53 >>> rcpt to:<userx@test.ex>
54 ??? 550
55 <<< 550 certificate not verified: peerdn=
56 >>> quit
57 ??? 221
58 <<< 221 myhost.test.ex closing connection
59 End of script
60 ### Good certificate, certificate required
61 Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected
62 Certificate file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem
63 Key file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key
64 ??? 220
65 <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000
66 >>> ehlo rhu3.barb
67 ??? 250-
68 <<< 250-myhost.test.ex Hello rhu3.barb [ip4.ip4.ip4.ip4]
69 ??? 250-
70 <<< 250-SIZE 52428800
71 ??? 250-
72 <<< 250-8BITMIME
73 ??? 250-
74 <<< 250-PIPELINING
75 ??? 250-
76 <<< 250-STARTTLS
77 ??? 250
78 <<< 250 HELP
79 >>> starttls
80 ??? 220
81 <<< 220 TLS go ahead
82 Attempting to start TLS
83 Succeeded in starting TLS
84 >>> mail from:<userx@test.ex>
85 ??? 250
86 <<< 250 OK
87 >>> rcpt to:<userx@test.ex>
88 ??? 250
89 <<< 250 Accepted
90 >>> quit
91 ??? 221
92 <<< 221 myhost.test.ex closing connection
93 End of script
94 ### Good certificate, certificate optional at TLS time, checked by ACL
95 Connecting to 127.0.0.1 port 1225 ... connected
96 Certificate file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem
97 Key file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key
98 ??? 220
99 <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000
100 >>> ehlo rhu4.barb
101 ??? 250-
102 <<< 250-myhost.test.ex Hello rhu4.barb [127.0.0.1]
103 ??? 250-
104 <<< 250-SIZE 52428800
105 ??? 250-
106 <<< 250-8BITMIME
107 ??? 250-
108 <<< 250-PIPELINING
109 ??? 250-
110 <<< 250-STARTTLS
111 ??? 250
112 <<< 250 HELP
113 >>> starttls
114 ??? 220
115 <<< 220 TLS go ahead
116 Attempting to start TLS
117 Succeeded in starting TLS
118 >>> mail from:<userx@test.ex>
119 ??? 250
120 <<< 250 OK
121 >>> rcpt to:<userx@test.ex>
122 ??? 250
123 <<< 250 Accepted
124 >>> quit
125 ??? 221
126 <<< 221 myhost.test.ex closing connection
127 End of script
128 ### Bad certificate, certificate required
129 Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected
130 Certificate file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.chain.pem
131 Key file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.unlocked.key
132 ??? 220
133 <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000
134 >>> ehlo rhu5.barb
135 ??? 250-
136 <<< 250-myhost.test.ex Hello rhu5.barb [ip4.ip4.ip4.ip4]
137 ??? 250-
138 <<< 250-SIZE 52428800
139 ??? 250-
140 <<< 250-8BITMIME
141 ??? 250-
142 <<< 250-PIPELINING
143 ??? 250-
144 <<< 250-STARTTLS
145 ??? 250
146 <<< 250 HELP
147 >>> starttls
148 ??? 220
149 <<< 220 TLS go ahead
150 Attempting to start TLS
151 A TLS fatal alert has been received.
152 Failed to start TLS
153 End of script
154 ### Bad certificate, certificate optional at TLS time, reject at ACL time
155 Connecting to 127.0.0.1 port 1225 ... connected
156 Certificate file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.chain.pem
157 Key file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.unlocked.key
158 ??? 220
159 <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000
160 >>> ehlo rhu6.barb
161 ??? 250-
162 <<< 250-myhost.test.ex Hello rhu6.barb [127.0.0.1]
163 ??? 250-
164 <<< 250-SIZE 52428800
165 ??? 250-
166 <<< 250-8BITMIME
167 ??? 250-
168 <<< 250-PIPELINING
169 ??? 250-
170 <<< 250-STARTTLS
171 ??? 250
172 <<< 250 HELP
173 >>> starttls
174 ??? 220
175 <<< 220 TLS go ahead
176 Attempting to start TLS
177 Succeeded in starting TLS
178 >>> mail from:<userx@test.ex>
179 ??? 250
180 <<< 250 OK
181 >>> rcpt to:<userx@test.ex>
182 ??? 550
183 <<< 550 certificate not verified: peerdn=
184 >>> quit
185 ??? 221
186 <<< 221 myhost.test.ex closing connection
187 End of script
188 ### Otherwise good but revoked certificate, certificate required
189 Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected
190 Certificate file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.chain.pem
191 Key file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.unlocked.key
192 ??? 220
193 <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000
194 >>> ehlo rhu7.barb
195 ??? 250-
196 <<< 250-myhost.test.ex Hello rhu7.barb [ip4.ip4.ip4.ip4]
197 ??? 250-
198 <<< 250-SIZE 52428800
199 ??? 250-
200 <<< 250-8BITMIME
201 ??? 250-
202 <<< 250-PIPELINING
203 ??? 250-
204 <<< 250-STARTTLS
205 ??? 250
206 <<< 250 HELP
207 >>> starttls
208 ??? 220
209 <<< 220 TLS go ahead
210 Attempting to start TLS
211 Succeeded in starting TLS
212 End of script
213 ### Revoked certificate, certificate optional at TLS time, reject at ACL time
214 Connecting to 127.0.0.1 port 1225 ... connected
215 Certificate file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.chain.pem
216 Key file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.unlocked.key
217 ??? 220
218 <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000
219 >>> ehlo rhu8.barb
220 ??? 250-
221 <<< 250-myhost.test.ex Hello rhu8.barb [127.0.0.1]
222 ??? 250-
223 <<< 250-SIZE 52428800
224 ??? 250-
225 <<< 250-8BITMIME
226 ??? 250-
227 <<< 250-PIPELINING
228 ??? 250-
229 <<< 250-STARTTLS
230 ??? 250
231 <<< 250 HELP
232 >>> starttls
233 ??? 220
234 <<< 220 TLS go ahead
235 Attempting to start TLS
236 Succeeded in starting TLS
237 >>> mail from:<userx@test.ex>
238 ??? 250
239 <<< 250 OK
240 >>> rcpt to:<userx@test.ex>
241 ??? 550
242 <<< 550 certificate not verified: peerdn=CN=revoked1.example.com
243 >>> quit
244 ??? 221
245 <<< 221 myhost.test.ex closing connection
246 End of script
247 ### Good certificate, certificate required - but nonmatching CRL also present
248 Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected
249 Certificate file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem
250 Key file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key
251 ??? 220
252 <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000
253 >>> ehlo rhu.barb
254 ??? 250-
255 <<< 250-myhost.test.ex Hello rhu.barb [ip4.ip4.ip4.ip4]
256 ??? 250-
257 <<< 250-SIZE 52428800
258 ??? 250-
259 <<< 250-8BITMIME
260 ??? 250-
261 <<< 250-PIPELINING
262 ??? 250-
263 <<< 250-STARTTLS
264 ??? 250
265 <<< 250 HELP
266 >>> starttls
267 ??? 220
268 <<< 220 TLS go ahead
269 Attempting to start TLS
270 Succeeded in starting TLS
271 >>> mail from:<userx@test.ex>
272 ??? 250
273 <<< 250 OK
274 >>> rcpt to:<userx@test.ex>
275 ??? 250
276 <<< 250 Accepted
277 >>> quit
278 ??? 221
279 <<< 221 myhost.test.ex closing connection
280 End of script
281
282 ******** SERVER ********
283 ### No certificate, certificate required
284 ### No certificate, certificate optional at TLS time, required by ACL
285 ### Good certificate, certificate required
286 ### Good certificate, certificate optional at TLS time, checked by ACL
287 ### Bad certificate, certificate required
288 ### Bad certificate, certificate optional at TLS time, reject at ACL time
289 ### Otherwise good but revoked certificate, certificate required
290 ### Revoked certificate, certificate optional at TLS time, reject at ACL time
291 ### Good certificate, certificate required - but nonmatching CRL also present
Jeremy Harris' staging directory