Commit | Line | Data |
---|---|---|
86ede124 JH |
1 | # OCSP stapling, server, multiple chain-element OCSP |
2 | # | |
3 | # | |
4 | # | |
5 | # | |
6 | exim -z '1: TLS1.2 Server sends good leaf-staple on request, to client requiring RSA auth' | |
7 | **** | |
8 | # | |
9 | exim -bd -oX PORT_D -DSERVER=server -DLIMIT=TLS1.2 | |
10 | **** | |
11 | # | |
12 | exim -odf -DOPT=rsa -DLIMIT=TLS1.2 rsa.auth@test.ex | |
13 | Subject: test | |
14 | ||
15 | . | |
16 | **** | |
17 | killdaemon | |
18 | # | |
19 | # | |
20 | exim -z '2: TLS1.3 Server sends good 3-element staple on request, to client requiring RSA auth' | |
21 | **** | |
22 | # | |
23 | # Works when the (single) proof file has an ocsp-response with 3 statusses. | |
24 | # Contrast with with GnuTLS which can do either that or have 3 proof files | |
25 | # each with one status. | |
26 | # | |
27 | exim -bd -oX PORT_D -DSERVER=server -DLIMIT=TLS1.3 | |
28 | **** | |
29 | exim -odf -DOPT=rsa rsa.auth@test.ex | |
30 | Subject: test | |
31 | ||
32 | . | |
33 | **** | |
34 | killdaemon | |
35 | # | |
36 | ## | |
37 | ## | |
38 | #exim -z '3: TLS1.3 Server sends bad nonleaf staple, client detects it' | |
39 | #**** | |
40 | ## | |
41 | #EXIM_TESTHARNESS_DISABLE_OCSPVALIDITYCHECK=y exim -bd -oX PORT_D -DSERVER=server -DLIMIT=TLS1.3 -DCONTROL=bad | |
42 | #**** | |
43 | #exim -odf -DOPT=rsa rsa.auth@test.ex | |
44 | #Subject: test | |
45 | # | |
46 | #. | |
47 | #**** | |
48 | #killdaemon | |
49 | ## | |
50 | ## | |
51 | # | |
52 | # | |
53 | sudo rm -fr tmp/ | |
54 | no_msglog_check |