projects / exim.git / blame
| Commit | Line | Data |
|---|---|---|
| 9d1c15ef | 1 | # TLS server: general ops and certificate extractions |
| 176cf342 JH |
2 | # |
| 3 | # NOTE: current OpenSSL libraries return faulty my-cert information | |
| 4 | # when more than one is loaded, which the conf for this testcase does. | |
| 5 | # As a result the expansion done and logged is misleading. | |
| 6 | # | |
| 7 | # Make RSA authentication the only acceptable | |
| 6678a497 | 8 | exim -DSERVER=server -DORDER=RSA -bd -oX PORT_D |
| 59371ea7 PH |
9 | **** |
| 10 | client-ssl 127.0.0.1 PORT_D | |
| 11 | ??? 220 | |
| 12 | ehlo rhu.barb | |
| 13 | ??? 250- | |
| 14 | ??? 250- | |
| 15 | ??? 250- | |
| 16 | ??? 250- | |
| 5b456975 | 17 | ??? 250- |
| 59371ea7 PH |
18 | ??? 250 |
| 19 | starttls | |
| 20 | ??? 220 | |
| 21 | mail from:<CALLER@test.ex> | |
| 22 | ??? 250 | |
| 23 | rcpt to:<CALLER@test.ex> | |
| 24 | ??? 250 | |
| 25 | DATA | |
| 26 | ??? 3 | |
| 27 | This is a test encrypted message. | |
| 28 | . | |
| 29 | ??? 250 | |
| 30 | quit | |
| 31 | ??? 221 | |
| 32 | **** | |
| fd98a5c6 JH |
33 | client-ssl 127.0.0.1 PORT_D |
| 34 | ??? 220 | |
| 35 | ehlo rhu.barb | |
| 36 | ??? 250- | |
| 37 | ??? 250- | |
| 38 | ??? 250- | |
| 39 | ??? 250- | |
| 40 | ??? 250- | |
| 41 | ??? 250 | |
| 42 | starttls | |
| 43 | ??? 220 | |
| 44 | mail from:<"name with spaces"@test.ex> | |
| 45 | ??? 250 | |
| 46 | rcpt to:<CALLER@test.ex> | |
| 47 | ??? 250 | |
| 48 | DATA | |
| 49 | ??? 3 | |
| 50 | This is a test encrypted message. | |
| 51 | . | |
| 52 | ??? 250 | |
| 53 | quit | |
| 54 | ??? 221 | |
| 55 | **** | |
| 131c0f8a | 56 | # nonloop addr conn rejected lacking cert |
| 59371ea7 PH |
57 | client-ssl HOSTIPV4 PORT_D |
| 58 | ??? 220 | |
| 59 | ehlo rhu.barb | |
| 60 | ??? 250- | |
| 61 | ??? 250- | |
| 62 | ??? 250- | |
| 63 | ??? 250- | |
| 5b456975 | 64 | ??? 250- |
| 59371ea7 PH |
65 | ??? 250 |
| 66 | starttls | |
| 131c0f8a JH |
67 | ??? 220 TLS go ahead |
| 68 | +++ 1 | |
| 69 | help | |
| 70 | ??? 554 | |
| 59371ea7 | 71 | **** |
| 9d1c15ef | 72 | client-ssl HOSTIPV4 PORT_D DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.pem DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.unlocked.key |
| 59371ea7 PH |
73 | ??? 220 |
| 74 | ehlo rhu.barb | |
| 75 | ??? 250- | |
| 76 | ??? 250- | |
| 77 | ??? 250- | |
| 78 | ??? 250- | |
| 5b456975 | 79 | ??? 250- |
| 59371ea7 PH |
80 | ??? 250 |
| 81 | starttls | |
| 82 | ??? 220 | |
| 83 | mail from:<CALLER@test.ex> | |
| 84 | ??? 250 | |
| 85 | rcpt to:<CALLER@test.ex> | |
| 86 | ??? 250 | |
| 87 | DATA | |
| 88 | ??? 3 | |
| 89 | This is a test encrypted message from a verified host. | |
| 90 | . | |
| 91 | ??? 250 | |
| 92 | quit | |
| 93 | ??? 221 | |
| 94 | **** | |
| 95 | killdaemon | |
| ba86e143 JH |
96 | # |
| 97 | # make ECDSA authentication preferred | |
| 98 | # DEFAULT:+RSA should work but does not seem to | |
| 99 | exim -DSERVER=server -DORDER=ECDSA:RSA:!COMPLEMENTOFDEFAULT -bd -oX PORT_D | |
| 100 | **** | |
| 101 | client-ssl 127.0.0.1 PORT_D | |
| 102 | ??? 220 | |
| 103 | ehlo rhu.barb | |
| 104 | ??? 250- | |
| 105 | ??? 250- | |
| 106 | ??? 250- | |
| 107 | ??? 250- | |
| 108 | ??? 250- | |
| 109 | ??? 250 | |
| 110 | starttls | |
| 111 | ??? 220 | |
| 112 | mail from:<CALLER@test.ex> | |
| 113 | ??? 250 | |
| 114 | rcpt to:<CALLER@test.ex> | |
| 115 | ??? 250 | |
| 116 | DATA | |
| 117 | ??? 3 | |
| 118 | This is a test encrypted message. | |
| 119 | It should be sent under the EC server cert and with an ECDSA cipher. | |
| 120 | . | |
| 121 | ??? 250 | |
| 122 | quit | |
| 123 | ??? 221 | |
| 124 | **** | |
| 125 | killdaemon | |
| 59371ea7 PH |
126 | exim -qf |
| 127 | **** | |
| 128 | exim -bh 10.0.0.1 | |
| 129 | starttls | |
| 130 | quit | |
| 131 | **** |