Commit | Line | Data |
---|---|---|
59371ea7 PH |
1 | # TLS server: empty/non-existent certificate file |
2 | gnutls | |
3 | exim -DSERVER=server -bd -oX PORT_D | |
4 | **** | |
8008accd JH |
5 | # |
6 | # | |
7 | # This one has a cert, but the server isn't expecting it. | |
8 | # Earlier versions of GnuTLS would send it despite the server giving a list of acceptable ones, and the | |
9 | # server would fail its verification. Now the client correctly doesn't send it; the mainlog reflects | |
10 | # this, the custom munge patches output with old GnuTLS (I hope; not actually tested). | |
11 | munge gnutls_bad_clientcert | |
59371ea7 PH |
12 | client-gnutls HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2 |
13 | ??? 220 | |
099afc4f | 14 | ehlo rhu1.barb |
59371ea7 PH |
15 | ??? 250- |
16 | ??? 250- | |
17 | ??? 250- | |
18 | ??? 250- | |
5b456975 | 19 | ??? 250- |
59371ea7 PH |
20 | ??? 250 |
21 | starttls | |
22 | ??? 220 | |
099afc4f JH |
23 | nop |
24 | ????554 | |
59371ea7 PH |
25 | **** |
26 | killdaemon | |
8008accd JH |
27 | # |
28 | # Here the server really doesn't have a cert | |
59371ea7 PH |
29 | exim -DSERVER=server -DCERT=/non/exist -bd -oX PORT_D |
30 | **** | |
31 | client-gnutls HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2 | |
32 | ??? 220 | |
099afc4f | 33 | ehlo rhu2.barb |
59371ea7 PH |
34 | ??? 250- |
35 | ??? 250- | |
36 | ??? 250- | |
37 | ??? 250- | |
5b456975 | 38 | ??? 250- |
59371ea7 PH |
39 | ??? 250 |
40 | starttls | |
41 | ??? 454 | |
42 | **** | |
43 | killdaemon |