Merge branch 'master' into 4.next
[users/jgh/exim.git] / test / scripts / 5600-OCSP-OpenSSL / 5611
1 # OCSP stapling, client, LE variation
2 #
3 #
4 # Client works when we request but don't require OCSP stapling and none comes
5 exim -bd -oX PORT_D -DSERVER=server -DRETURN=/dev/null
6 ****
7 exim norequire@test.ex
8 test message.
9 ****
10 sleep 1
11 killdaemon
12 #
13 #
14 #
15 #
16 # Client works when we don't request OCSP stapling
17 exim -bd -oX PORT_D -DSERVER=server \
18  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp
19 ****
20 exim nostaple@test.ex
21 test message.
22 ****
23 millisleep 500
24 #
25 #
26 #
27 #
28 # Client accepts good stapled info
29 exim CALLER@test.ex
30 test message.
31 ****
32 sleep 1
33 killdaemon
34 #
35 #
36 #
37 # Client fails on lack of required stapled info
38 exim -bd -oX PORT_D -DSERVER=server -DRETURN=/dev/null
39 ****
40 exim CALLER@test.ex
41 test message.
42 ****
43 sleep 1
44 killdaemon
45 sudo rm spool/db/retry
46 #
47 #
48 #
49 # Client fails on revoked stapled info
50 EXIM_TESTHARNESS_DISABLE_OCSPVALIDITYCHECK=y exim -bd -oX PORT_D -DSERVER=server \
51  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.revoked.resp
52 ****
53 exim CALLER@test.ex
54 test message.
55 ****
56 sleep 1
57 killdaemon
58 millisleep 200
59 sudo rm spool/db/retry
60 #
61 #
62 #
63 #
64 # Client fails on expired stapled info
65 EXIM_TESTHARNESS_DISABLE_OCSPVALIDITYCHECK=y exim -bd -oX PORT_D -DSERVER=server \
66  -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.dated.resp
67 ****
68 exim CALLER@test.ex
69 test message.
70 ****
71 sleep 1
72 killdaemon
73 #
74 #
75 #
76 #
77 no_msglog_check