git://git.exim.org / users / jgh / exim.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 26e7275) | patch
OCSP-stapling enhancement and testing.
authorJeremy Harris <jgh146exb@wizmail.org>
Sun, 24 Mar 2013 21:49:12 +0000 (21:49 +0000)
committerJeremy Harris <jgh146exb@wizmail.org>
Mon, 25 Mar 2013 22:42:48 +0000 (22:42 +0000)
commitf5d786885721c374cc22a1f1311ca01408a496fd
tree528ec5ecb56fc077445855d16014bc9a9c86d967tree | snapshot
parent26e72755c101f59e24735e9ca9a320d5f1ebc2b7commit | diff
OCSP-stapling enhancement and testing.

Server:
  Honor environment variable as well as running_in_test_harness in permitting bogus staplings
  Update server tests
  Add "-ocsp" option to client-ssl.
  Server side: add verification of stapled status.
  First cut server-mode ocsp testing.
  Fix some uninitialized ocsp-related data.

Client (new):
  Verify stapling using only the chain that verified the server cert, not any acceptable chain.
  Add check for multiple responses in a stapling, which is not handled
  Refuse verification on expired and revoking staplings.
  Handle OCSP client refusal on lack of stapling from server.
  More fixing in client OCSP: use the server cert signing chain to verify the OCSP info.
  Add transport hosts_require_ocsp option.
  Log stapling responses.
  Start on tests for client-side.

Testing support:
    Add CRL generation code and documentation update
    Initial CA & certificate set for testing.

BUGFIX:
    Once a single OCSP response has been extracted the validation
    routine return code is no longer about the structure, but the actual
    returned OCSP status.
351 files changed:
doc/doc-txt/experimental-spec.txt diff | blob | history
src/src/functions.h diff | blob | history
src/src/tls-gnu.c diff | blob | history
src/src/tls-openssl.c diff | blob | history
src/src/transports/smtp.c diff | blob | history
src/src/transports/smtp.h diff | blob | history
src/src/verify.c diff | blob | history
test/README diff | blob | history
test/aux-fixed/exim-ca/README [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/BLANK/CA.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/BLANK/Signer.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/BLANK/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/BLANK/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/BLANK/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/BLANK/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/CA.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/OCSP.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/OCSP.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/OCSP.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/Signer.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/ca.conf [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/crl.empty [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/crl.empty.in.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/crl.empty.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/crl.v2 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/crl.v2.in.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/crl.v2.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/index.revoked.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/index.valid.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/noise.file [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/CA/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/expired1.example.com.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/expired1.example.com.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/expired1.example.com.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/expired1.example.com.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/expired1.example.com.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/expired1.example.com.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/expired1.example.com.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/expired1.example.com.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/expired1.example.com.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired1.example.com/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/expired2.example.com.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/expired2.example.com.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/expired2.example.com.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/expired2.example.com.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/expired2.example.com.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/expired2.example.com.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/expired2.example.com.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/expired2.example.com.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/expired2.example.com.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/expired2.example.com/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked1.example.com/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/revoked2.example.com.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/revoked2.example.com.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/revoked2.example.com.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/revoked2.example.com.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/revoked2.example.com.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/revoked2.example.com.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/revoked2.example.com.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/revoked2.example.com.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/revoked2.example.com.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/revoked2.example.com/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/BLANK/CA.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/BLANK/Signer.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/BLANK/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/BLANK/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/BLANK/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/BLANK/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/CA.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/OCSP.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/OCSP.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/OCSP.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/Signer.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/ca.conf [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/crl.empty [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/crl.empty.in.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/crl.empty.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/crl.v2 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/crl.v2.in.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/crl.v2.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/index.revoked.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/index.valid.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/noise.file [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/CA/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/expired1.example.net.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/expired1.example.net.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/expired1.example.net.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/expired1.example.net.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/expired1.example.net.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/expired1.example.net.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/expired1.example.net.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/expired1.example.net.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/expired1.example.net.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired1.example.net/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/expired2.example.net.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/expired2.example.net.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/expired2.example.net.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/expired2.example.net.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/expired2.example.net.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/expired2.example.net.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/expired2.example.net.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/expired2.example.net.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/expired2.example.net.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/expired2.example.net/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/revoked1.example.net.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/revoked1.example.net.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/revoked1.example.net.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/revoked1.example.net.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/revoked1.example.net.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/revoked1.example.net.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/revoked1.example.net.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/revoked1.example.net.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/revoked1.example.net.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked1.example.net/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/revoked2.example.net.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/revoked2.example.net.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/revoked2.example.net.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/revoked2.example.net.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/revoked2.example.net.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/revoked2.example.net.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/revoked2.example.net.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/revoked2.example.net.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/revoked2.example.net.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/revoked2.example.net/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/server2.example.net.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/server2.example.net.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/server2.example.net.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/server2.example.net.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/server2.example.net.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/server2.example.net.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/server2.example.net.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/server2.example.net.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.net/server2.example.net/server2.example.net.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/BLANK/CA.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/BLANK/Signer.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/BLANK/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/BLANK/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/BLANK/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/BLANK/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/CA.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/OCSP.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/OCSP.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/OCSP.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/Signer.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/ca.conf [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/crl.empty [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/crl.empty.in.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/crl.empty.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/crl.v2 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/crl.v2.in.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/crl.v2.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/index.revoked.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/index.valid.txt [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/noise.file [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/CA/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/expired1.example.org.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/expired1.example.org.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/expired1.example.org.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/expired1.example.org.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/expired1.example.org.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/expired1.example.org.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/expired1.example.org.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/expired1.example.org.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/expired1.example.org.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired1.example.org/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/expired2.example.org.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/expired2.example.org.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/expired2.example.org.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/expired2.example.org.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/expired2.example.org.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/expired2.example.org.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/expired2.example.org.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/expired2.example.org.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/expired2.example.org.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/expired2.example.org/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/revoked1.example.org.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/revoked1.example.org.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/revoked1.example.org.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/revoked1.example.org.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/revoked1.example.org.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/revoked1.example.org.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/revoked1.example.org.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/revoked1.example.org.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/revoked1.example.org.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked1.example.org/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/revoked2.example.org.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/revoked2.example.org.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/revoked2.example.org.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/revoked2.example.org.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/revoked2.example.org.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/revoked2.example.org.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/revoked2.example.org.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/revoked2.example.org.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/revoked2.example.org.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/revoked2.example.org/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/server1.example.org.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/server1.example.org.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/server1.example.org.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/server1.example.org.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/server1.example.org.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/server1.example.org.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/server1.example.org.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/server1.example.org.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server1.example.org/server1.example.org.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/ca_chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/cert8.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/key3.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/pwdfile [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/secmod.db [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.chain.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.ocsp.dated.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.ocsp.good.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.ocsp.req [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.ocsp.revoked.resp [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.p12 [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.pem [new file with mode: 0644] blob
test/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.unlocked.key [new file with mode: 0644] blob
test/aux-fixed/exim-ca/genall [new file with mode: 0755] blob
test/aux-fixed/ocsp_file.der [new file with mode: 0644] blob
test/confs/5600 [new file with mode: 0644] blob
test/confs/5601 [new file with mode: 0644] blob
test/log/5600 [new file with mode: 0644] blob
test/log/5601 [new file with mode: 0644] blob
test/msglog/2145.10HmaX-0005vi-00 [new file with mode: 0644] blob
test/scripts/5600-OCSP-OpenSSL/5600 [new file with mode: 0644] blob
test/scripts/5600-OCSP-OpenSSL/5601 [new file with mode: 0644] blob
test/scripts/5600-OCSP-OpenSSL/REQUIRES [new file with mode: 0644] blob
test/src/client.c diff | blob | history
test/stderr/5600 [new file with mode: 0644] blob
test/stderr/5601 [new file with mode: 0644] blob
test/stdout/5600 [new file with mode: 0644] blob
test/trusted_configs [new file with mode: 0644] blob
Jeremy Harris' staging directory