summaryrefslogtreecommitdiff
path: root/test/scripts
diff options
context:
space:
mode:
authorJeremy Harris <jgh146exb@wizmail.org>2015-08-02 13:44:31 +0100
committerJeremy Harris <jgh146exb@wizmail.org>2015-08-02 13:50:05 +0100
commit98716abe2b636d275e866f3ad6374cb70bf6e504 (patch)
tree439aea08675bb56e79e5adfde5e8d7ecfbf1d059 /test/scripts
parent5b881b5a8e0d7bc540f4b63cc9559d2cb1775965 (diff)
Testsuite: Add testcase for OCSP-nonaware client, to supporting server. Bug 1664
The logfile here is for (I hope) the passing case, though the fixed GnuTLS library is not yet available. Also due to the bug, client-gnutls is not usable for the test; client-openssl must be used - meaning that a GnuTLS-only system cannot run the testcase: OCSP-GnuTLS/5650 OCSP stapling, server ** Command 15 ("client-ssl", starting at line 98) ** Return code 127 (expected 0)
Diffstat (limited to 'test/scripts')
-rw-r--r--test/scripts/5650-OCSP-GnuTLS/565049
1 files changed, 46 insertions, 3 deletions
diff --git a/test/scripts/5650-OCSP-GnuTLS/5650 b/test/scripts/5650-OCSP-GnuTLS/5650
index 440053ecb..9ebafb3e2 100644
--- a/test/scripts/5650-OCSP-GnuTLS/5650
+++ b/test/scripts/5650-OCSP-GnuTLS/5650
@@ -2,7 +2,9 @@
#
#
#
-# 1: Server sends good staple on request
+exim -z '1: Server sends good staple on request'
+****
+#
exim -bd -oX PORT_D -DSERVER=server \
-DOCSP=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp
****
@@ -30,7 +32,9 @@ killdaemon
#
#
#
-# 2: Server does not staple an outdated response
+exim -z '2: Server does not staple an outdated response'
+****
+#
exim -bd -oX PORT_D -DSERVER=server \
-DOCSP=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.dated.resp
****
@@ -54,7 +58,9 @@ killdaemon
#
#
#
-# 3: Server does not staple a response for a revoked cert
+exim -z '3: Server does not staple a response for a revoked cert'
+****
+#
exim -bd -oX PORT_D -DSERVER=server \
-DOCSP=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.revoked.resp
****
@@ -78,3 +84,40 @@ killdaemon
#
#
#
+exim -z '4: Connection functions when server is prepared to staple but client does not request it'
+****
+#
+exim -bd -oX PORT_D -DSERVER=server \
+ -DOCSP=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp
+****
+#
+# Temporarily (I hope) use OpenSSL-based client, as GnuTLS is buggy and always requests (and understands)
+# stapling
+#
+#client-gnutls \
+client-ssl \
+ HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2
+??? 220
+ehlo rhu.barb
+??? 250-
+??? 250-
+??? 250-
+??? 250-
+??? 250-
+??? 250
+starttls
+??? 220
+ehlo rhu.barb.tls
+??? 250-
+??? 250-
+??? 250-
+??? 250-
+??? 250
+quit
+****
+killdaemon
+#
+#
+#
+#
+#