diff options
author | Jeremy Harris <jgh146exb@wizmail.org> | 2015-08-02 13:44:31 +0100 |
---|---|---|
committer | Jeremy Harris <jgh146exb@wizmail.org> | 2015-08-02 13:50:05 +0100 |
commit | 98716abe2b636d275e866f3ad6374cb70bf6e504 (patch) | |
tree | 439aea08675bb56e79e5adfde5e8d7ecfbf1d059 /test/scripts | |
parent | 5b881b5a8e0d7bc540f4b63cc9559d2cb1775965 (diff) |
Testsuite: Add testcase for OCSP-nonaware client, to supporting server. Bug 1664
The logfile here is for (I hope) the passing case, though the fixed GnuTLS library
is not yet available. Also due to the bug, client-gnutls is not usable for the
test; client-openssl must be used - meaning that a GnuTLS-only system cannot run
the testcase:
OCSP-GnuTLS/5650 OCSP stapling, server
** Command 15 ("client-ssl", starting at line 98)
** Return code 127 (expected 0)
Diffstat (limited to 'test/scripts')
-rw-r--r-- | test/scripts/5650-OCSP-GnuTLS/5650 | 49 |
1 files changed, 46 insertions, 3 deletions
diff --git a/test/scripts/5650-OCSP-GnuTLS/5650 b/test/scripts/5650-OCSP-GnuTLS/5650 index 440053ecb..9ebafb3e2 100644 --- a/test/scripts/5650-OCSP-GnuTLS/5650 +++ b/test/scripts/5650-OCSP-GnuTLS/5650 @@ -2,7 +2,9 @@ # # # -# 1: Server sends good staple on request +exim -z '1: Server sends good staple on request' +**** +# exim -bd -oX PORT_D -DSERVER=server \ -DOCSP=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp **** @@ -30,7 +32,9 @@ killdaemon # # # -# 2: Server does not staple an outdated response +exim -z '2: Server does not staple an outdated response' +**** +# exim -bd -oX PORT_D -DSERVER=server \ -DOCSP=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.dated.resp **** @@ -54,7 +58,9 @@ killdaemon # # # -# 3: Server does not staple a response for a revoked cert +exim -z '3: Server does not staple a response for a revoked cert' +**** +# exim -bd -oX PORT_D -DSERVER=server \ -DOCSP=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.revoked.resp **** @@ -78,3 +84,40 @@ killdaemon # # # +exim -z '4: Connection functions when server is prepared to staple but client does not request it' +**** +# +exim -bd -oX PORT_D -DSERVER=server \ + -DOCSP=DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.ocsp.good.resp +**** +# +# Temporarily (I hope) use OpenSSL-based client, as GnuTLS is buggy and always requests (and understands) +# stapling +# +#client-gnutls \ +client-ssl \ + HOSTIPV4 PORT_D aux-fixed/cert2 aux-fixed/cert2 +??? 220 +ehlo rhu.barb +??? 250- +??? 250- +??? 250- +??? 250- +??? 250- +??? 250 +starttls +??? 220 +ehlo rhu.barb.tls +??? 250- +??? 250- +??? 250- +??? 250- +??? 250 +quit +**** +killdaemon +# +# +# +# +# |