Merge branch 'master' into 4.next
[users/jgh/exim.git] / test / scripts / 5600-OCSP-OpenSSL / 5610
1 # OCSP stapling, server, LE variation
2 #
3 #
4 #
5 # '1: Server sends good staple on request'
6 #
7 exim -bd -oX PORT_D -DSERVER=server \
8  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp
9 ****
10 client-ssl \
11  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
12  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
13 ??? 220
14 ehlo rhu.barb
15 ??? 250-
16 ??? 250-
17 ??? 250-
18 ??? 250-
19 ??? 250-
20 ??? 250
21 starttls
22 ??? 220
23 mail from:<userx@test.ex>
24 ??? 250
25 rcpt to:<userx@test.ex>
26 ??? 250
27 quit
28 ??? 221
29 ****
30 killdaemon
31 #
32 #
33 #
34 # '2: Server does not staple an outdated response'
35 #
36 exim -bd -oX PORT_D -DSERVER=server \
37  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.dated.resp
38 ****
39 # XXX test sequence might not be quite right; this is for a server refusal
40 # and we're expecting a client refusal.
41 client-ssl -ocsp aux-fixed/exim-ca/expired1.example.com/CA.pem HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
42 ??? 220
43 ehlo rhu.barb
44 ??? 250-
45 ??? 250-
46 ??? 250-
47 ??? 250-
48 ??? 250-
49 ??? 250
50 starttls
51 ??? 220
52 ****
53 killdaemon
54 #
55 #
56 #
57 #
58 #
59 # '3: Server does not staple a response for a revoked cert'
60 #
61 exim -bd -oX PORT_D -DSERVER=server \
62  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.revoked.resp
63 ****
64 client-ssl \
65  -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \
66  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
67 ??? 220
68 ehlo rhu.barb
69 ??? 250-
70 ??? 250-
71 ??? 250-
72 ??? 250-
73 ??? 250-
74 ??? 250
75 starttls
76 ??? 220
77 ****
78 killdaemon
79 #
80 #
81 #
82 #
83 #
84 # '4: Connection functions when server is prepared to staple but client does not request it'
85 #
86 exim -bd -oX PORT_D -DSERVER=server \
87  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp
88 ****
89 #
90 client-ssl \
91  HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
92 ??? 220
93 ehlo rhu.barb
94 ??? 250-
95 ??? 250-
96 ??? 250-
97 ??? 250-
98 ??? 250-
99 ??? 250
100 starttls
101 ??? 220
102 ehlo rhu.barb.tls
103 ??? 250-
104 ??? 250-
105 ??? 250-
106 ??? 250-
107 ??? 250
108 quit
109 ****
110 killdaemon
111 #
112 #
113 #
114 #
115 #