Commit | Line | Data |
---|---|---|
e5b60be7 JH |
1 | # OCSP stapling, client, LE variation |
2 | # | |
3 | # | |
4 | # Client works when we request but don't require OCSP stapling and none comes | |
5 | exim -bd -oX PORT_D -DSERVER=server -DRETURN=/dev/null | |
6 | **** | |
7 | exim norequire@test.ex | |
8 | test message. | |
9 | **** | |
10 | sleep 1 | |
11 | killdaemon | |
12 | # | |
13 | # | |
14 | # | |
15 | # | |
16 | # Client works when we don't request OCSP stapling | |
17 | exim -bd -oX PORT_D -DSERVER=server \ | |
ee5b1e28 | 18 | -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.good.resp |
e5b60be7 JH |
19 | **** |
20 | exim nostaple@test.ex | |
21 | test message. | |
22 | **** | |
23 | millisleep 500 | |
24 | # | |
25 | # | |
26 | # | |
27 | # | |
28 | # Client accepts good stapled info | |
29 | exim CALLER@test.ex | |
30 | test message. | |
31 | **** | |
32 | sleep 1 | |
33 | killdaemon | |
34 | # | |
35 | # | |
36 | # | |
37 | # Client fails on lack of required stapled info | |
38 | exim -bd -oX PORT_D -DSERVER=server -DRETURN=/dev/null | |
39 | **** | |
40 | exim CALLER@test.ex | |
41 | test message. | |
42 | **** | |
43 | sleep 1 | |
44 | killdaemon | |
45 | sudo rm spool/db/retry | |
46 | # | |
47 | # | |
48 | # | |
49 | # Client fails on revoked stapled info | |
50 | EXIM_TESTHARNESS_DISABLE_OCSPVALIDITYCHECK=y exim -bd -oX PORT_D -DSERVER=server \ | |
ee5b1e28 | 51 | -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.revoked.resp |
e5b60be7 JH |
52 | **** |
53 | exim CALLER@test.ex | |
54 | test message. | |
55 | **** | |
56 | sleep 1 | |
57 | killdaemon | |
58 | millisleep 200 | |
59 | sudo rm spool/db/retry | |
60 | # | |
61 | # | |
62 | # | |
63 | # | |
64 | # Client fails on expired stapled info | |
65 | EXIM_TESTHARNESS_DISABLE_OCSPVALIDITYCHECK=y exim -bd -oX PORT_D -DSERVER=server \ | |
ee5b1e28 | 66 | -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.signernocert.dated.resp |
e5b60be7 JH |
67 | **** |
68 | exim CALLER@test.ex | |
69 | test message. | |
70 | **** | |
71 | sleep 1 | |
72 | killdaemon | |
73 | # | |
74 | # | |
75 | # | |
76 | # | |
77 | no_msglog_check |