Commit | Line | Data |
---|---|---|
9d1c15ef | 1 | # TLS server: general ops and certificate extractions |
176cf342 JH |
2 | # |
3 | # NOTE: current OpenSSL libraries return faulty my-cert information | |
4 | # when more than one is loaded, which the conf for this testcase does. | |
5 | # As a result the expansion done and logged is misleading. | |
6 | # | |
7 | # Make RSA authentication the only acceptable | |
6678a497 | 8 | exim -DSERVER=server -DORDER=RSA -bd -oX PORT_D |
59371ea7 PH |
9 | **** |
10 | client-ssl 127.0.0.1 PORT_D | |
11 | ??? 220 | |
12 | ehlo rhu.barb | |
13 | ??? 250- | |
14 | ??? 250- | |
15 | ??? 250- | |
16 | ??? 250- | |
5b456975 | 17 | ??? 250- |
59371ea7 PH |
18 | ??? 250 |
19 | starttls | |
20 | ??? 220 | |
21 | mail from:<CALLER@test.ex> | |
22 | ??? 250 | |
23 | rcpt to:<CALLER@test.ex> | |
24 | ??? 250 | |
25 | DATA | |
26 | ??? 3 | |
27 | This is a test encrypted message. | |
28 | . | |
29 | ??? 250 | |
30 | quit | |
31 | ??? 221 | |
32 | **** | |
fd98a5c6 JH |
33 | client-ssl 127.0.0.1 PORT_D |
34 | ??? 220 | |
35 | ehlo rhu.barb | |
36 | ??? 250- | |
37 | ??? 250- | |
38 | ??? 250- | |
39 | ??? 250- | |
40 | ??? 250- | |
41 | ??? 250 | |
42 | starttls | |
43 | ??? 220 | |
44 | mail from:<"name with spaces"@test.ex> | |
45 | ??? 250 | |
46 | rcpt to:<CALLER@test.ex> | |
47 | ??? 250 | |
48 | DATA | |
49 | ??? 3 | |
50 | This is a test encrypted message. | |
51 | . | |
52 | ??? 250 | |
53 | quit | |
54 | ??? 221 | |
55 | **** | |
131c0f8a | 56 | # nonloop addr conn rejected lacking cert |
59371ea7 PH |
57 | client-ssl HOSTIPV4 PORT_D |
58 | ??? 220 | |
59 | ehlo rhu.barb | |
60 | ??? 250- | |
61 | ??? 250- | |
62 | ??? 250- | |
63 | ??? 250- | |
5b456975 | 64 | ??? 250- |
59371ea7 PH |
65 | ??? 250 |
66 | starttls | |
131c0f8a JH |
67 | ??? 220 TLS go ahead |
68 | +++ 1 | |
69 | help | |
70 | ??? 554 | |
59371ea7 | 71 | **** |
9d1c15ef | 72 | client-ssl HOSTIPV4 PORT_D DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.pem DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.unlocked.key |
59371ea7 PH |
73 | ??? 220 |
74 | ehlo rhu.barb | |
75 | ??? 250- | |
76 | ??? 250- | |
77 | ??? 250- | |
78 | ??? 250- | |
5b456975 | 79 | ??? 250- |
59371ea7 PH |
80 | ??? 250 |
81 | starttls | |
82 | ??? 220 | |
83 | mail from:<CALLER@test.ex> | |
84 | ??? 250 | |
85 | rcpt to:<CALLER@test.ex> | |
86 | ??? 250 | |
87 | DATA | |
88 | ??? 3 | |
89 | This is a test encrypted message from a verified host. | |
90 | . | |
91 | ??? 250 | |
92 | quit | |
93 | ??? 221 | |
94 | **** | |
95 | killdaemon | |
ba86e143 JH |
96 | # |
97 | # make ECDSA authentication preferred | |
98 | # DEFAULT:+RSA should work but does not seem to | |
99 | exim -DSERVER=server -DORDER=ECDSA:RSA:!COMPLEMENTOFDEFAULT -bd -oX PORT_D | |
100 | **** | |
101 | client-ssl 127.0.0.1 PORT_D | |
102 | ??? 220 | |
103 | ehlo rhu.barb | |
104 | ??? 250- | |
105 | ??? 250- | |
106 | ??? 250- | |
107 | ??? 250- | |
108 | ??? 250- | |
109 | ??? 250 | |
110 | starttls | |
111 | ??? 220 | |
112 | mail from:<CALLER@test.ex> | |
113 | ??? 250 | |
114 | rcpt to:<CALLER@test.ex> | |
115 | ??? 250 | |
116 | DATA | |
117 | ??? 3 | |
118 | This is a test encrypted message. | |
119 | It should be sent under the EC server cert and with an ECDSA cipher. | |
120 | . | |
121 | ??? 250 | |
122 | quit | |
123 | ??? 221 | |
124 | **** | |
125 | killdaemon | |
59371ea7 PH |
126 | exim -qf |
127 | **** | |
128 | exim -bh 10.0.0.1 | |
129 | starttls | |
130 | quit | |
131 | **** |