Commit | Line | Data |
---|---|---|
2b4a568d | 1 | # OCSP stapling, server |
f5d78688 JH |
2 | # |
3 | # | |
4 | # | |
d4dc049f | 5 | # '1: Server sends good staple on request' |
5597be31 | 6 | # |
f5d78688 | 7 | exim -bd -oX PORT_D -DSERVER=server \ |
fbbd45ff | 8 | -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp |
f5d78688 JH |
9 | **** |
10 | client-ssl \ | |
11 | -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \ | |
12 | HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2 | |
13 | ??? 220 | |
14 | ehlo rhu.barb | |
15 | ??? 250- | |
16 | ??? 250- | |
17 | ??? 250- | |
18 | ??? 250- | |
19 | ??? 250- | |
20 | ??? 250 | |
21 | starttls | |
22 | ??? 220 | |
23 | mail from:<userx@test.ex> | |
24 | ??? 250 | |
25 | rcpt to:<userx@test.ex> | |
26 | ??? 250 | |
27 | quit | |
28 | ??? 221 | |
29 | **** | |
30 | killdaemon | |
31 | # | |
32 | # | |
33 | # | |
d4dc049f | 34 | # '2: Server does not staple an outdated response' |
5597be31 | 35 | # |
f5d78688 | 36 | exim -bd -oX PORT_D -DSERVER=server \ |
fbbd45ff | 37 | -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.dated.resp |
f5d78688 JH |
38 | **** |
39 | # XXX test sequence might not be quite right; this is for a server refusal | |
40 | # and we're expecting a client refusal. | |
41 | client-ssl -ocsp aux-fixed/exim-ca/expired1.example.com/CA.pem HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2 | |
42 | ??? 220 | |
43 | ehlo rhu.barb | |
44 | ??? 250- | |
45 | ??? 250- | |
46 | ??? 250- | |
47 | ??? 250- | |
48 | ??? 250- | |
49 | ??? 250 | |
50 | starttls | |
51 | ??? 220 | |
52 | **** | |
53 | killdaemon | |
54 | # | |
55 | # | |
56 | # | |
57 | # | |
58 | # | |
d4dc049f | 59 | # '3: Server does not staple a response for a revoked cert' |
5597be31 | 60 | # |
f5d78688 | 61 | exim -bd -oX PORT_D -DSERVER=server \ |
fbbd45ff | 62 | -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.revoked.resp |
f5d78688 JH |
63 | **** |
64 | client-ssl \ | |
65 | -ocsp aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem \ | |
66 | HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2 | |
67 | ??? 220 | |
68 | ehlo rhu.barb | |
69 | ??? 250- | |
70 | ??? 250- | |
71 | ??? 250- | |
72 | ??? 250- | |
73 | ??? 250- | |
74 | ??? 250 | |
75 | starttls | |
76 | ??? 220 | |
77 | **** | |
78 | killdaemon | |
79 | # | |
80 | # | |
81 | # | |
82 | # | |
83 | # | |
d4dc049f | 84 | # '4: Connection functions when server is prepared to staple but client does not request it' |
5597be31 JH |
85 | # |
86 | exim -bd -oX PORT_D -DSERVER=server \ | |
fbbd45ff | 87 | -DRETURN=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp |
5597be31 JH |
88 | **** |
89 | # | |
90 | client-ssl \ | |
91 | HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2 | |
92 | ??? 220 | |
93 | ehlo rhu.barb | |
94 | ??? 250- | |
95 | ??? 250- | |
96 | ??? 250- | |
97 | ??? 250- | |
98 | ??? 250- | |
99 | ??? 250 | |
100 | starttls | |
101 | ??? 220 | |
102 | ehlo rhu.barb.tls | |
103 | ??? 250- | |
104 | ??? 250- | |
105 | ??? 250- | |
106 | ??? 250- | |
107 | ??? 250 | |
108 | quit | |
109 | **** | |
110 | killdaemon | |
111 | # | |
112 | # | |
113 | # | |
114 | # | |
115 | # |