From d2f0eca8758cc8193f94ea9fa2d681829498b289 Mon Sep 17 00:00:00 2001 From: Jeremy Harris Date: Sat, 16 Dec 2017 20:41:27 +0000 Subject: [PATCH] Testsuite: do not bother with cert hostnames when testing OCSP --- test/confs/5652 | 1 + test/log/5652 | 10 ++++++---- 2 files changed, 7 insertions(+), 4 deletions(-) diff --git a/test/confs/5652 b/test/confs/5652 index 7dce363c2..13c8d8617 100644 --- a/test/confs/5652 +++ b/test/confs/5652 @@ -72,6 +72,7 @@ remote_delivery: tls_require_ciphers = OPT hosts_require_ocsp = * tls_verify_certificates = CERT + tls_verify_cert_hostnames = : local_delivery: driver = appendfile diff --git a/test/log/5652 b/test/log/5652 index 94946ea61..cec972ea3 100644 --- a/test/log/5652 +++ b/test/log/5652 @@ -1,10 +1,12 @@ 1999-03-02 09:44:33 1: Server sends good staple on request, to client requiring RSA auth 1999-03-02 09:44:33 10HmaX-0005vi-00 <= CALLER@server1.example.com U=CALLER P=local S=sss -1999-03-02 09:44:33 10HmaX-0005vi-00 => rsa.auth@test.ex R=client T=remote_delivery H=127.0.0.1 [127.0.0.1] X=TLS1.x:ke_RSA_AES_256_CBC_SHAnnn:256 CV=no DN="CN=server1.example.com" C="250 OK id=10HmaY-0005vi-00" +1999-03-02 09:44:33 10HmaX-0005vi-00 => rsa.auth@test.ex R=client T=remote_delivery H=127.0.0.1 [127.0.0.1] X=TLS1.x:ke_RSA_AES_256_CBC_SHAnnn:256 CV=yes DN="CN=server1.example.com" C="250 OK id=10HmaY-0005vi-00" 1999-03-02 09:44:33 10HmaX-0005vi-00 Completed 1999-03-02 09:44:33 2: Server sends good staple on request, to client preferring ECDSA auth 1999-03-02 09:44:33 10HmaZ-0005vi-00 <= CALLER@server1.example.com U=CALLER P=local S=sss -1999-03-02 09:44:33 10HmaZ-0005vi-00 => ecdsa.auth@test.ex R=client T=remote_delivery H=127.0.0.1 [127.0.0.1] X=TLS1.x:ke_ECDSA_AES_256_CBC_SHAnnn:256 CV=no DN="CN=server1.example_ec.com" C="250 OK id=10HmbA-0005vi-00" +1999-03-02 09:44:33 10HmaZ-0005vi-00 == ecdsa.auth@test.ex R=client T=remote_delivery defer (-37) H=127.0.0.1 [127.0.0.1]: TLS session: (certificate status check failed) +1999-03-02 09:44:33 10HmaZ-0005vi-00 ** ecdsa.auth@test.ex: retry timeout exceeded +1999-03-02 09:44:33 10HmaZ-0005vi-00 ecdsa.auth@test.ex: error ignored 1999-03-02 09:44:33 10HmaZ-0005vi-00 Completed ******** SERVER ******** @@ -12,5 +14,5 @@ 1999-03-02 09:44:33 acl_mail: ocsp in status: 2 (vfynotdone) 1999-03-02 09:44:33 10HmaY-0005vi-00 <= <> H=localhost (server1.example.com) [127.0.0.1] P=esmtps X=TLS1.x:ke_RSA_AES_256_CBC_SHAnnn:256 CV=no S=sss id=E10HmaX-0005vi-00@server1.example.com 1999-03-02 09:44:33 exim x.yz daemon started: pid=pppp, no queue runs, listening for SMTP on port 1225 -1999-03-02 09:44:33 acl_mail: ocsp in status: 2 (vfynotdone) -1999-03-02 09:44:33 10HmbA-0005vi-00 <= <> H=localhost (server1.example.com) [127.0.0.1] P=esmtps X=TLS1.x:ke_ECDSA_AES_256_CBC_SHAnnn:256 CV=no S=sss id=E10HmaZ-0005vi-00@server1.example.com +1999-03-02 09:44:33 TLS error on connection from localhost [127.0.0.1] (recv): The TLS connection was non-properly terminated. +1999-03-02 09:44:33 TLS error on connection from localhost [127.0.0.1] (send): The specified session has been invalidated for some reason. -- 2.25.1