diff options
Diffstat (limited to 'test/stdout')
| -rw-r--r-- | test/stdout/5820 | 2 | ||||
| -rw-r--r-- | test/stdout/5840 | 14 |
2 files changed, 10 insertions, 6 deletions
diff --git a/test/stdout/5820 b/test/stdout/5820 index 4b26b4c79..acaec1415 100644 --- a/test/stdout/5820 +++ b/test/stdout/5820 @@ -27,6 +27,7 @@ ### A server with a mixed-usage set of TLSAs - the EE-mode one failing verify (should deliver, DANE-mode) ### A server with a name not matching the cert. TA-mode; should fail ### A server with a name not matching the cert. EE-mode; should deliver and claim DANE mode +### A server securely serving a wrong TLSA record, dane not requested (delivery should work non-dane) ******** SERVER ******** ### TLSA (3 1 1) (DANE-EE SPKI SHA2-256) @@ -49,3 +50,4 @@ ### A server with a mixed-usage set of TLSAs - the EE-mode one failing verify (should deliver, DANE-mode) ### A server with a name not matching the cert. TA-mode; should fail ### A server with a name not matching the cert. EE-mode; should deliver and claim DANE mode +### A server securely serving a wrong TLSA record, dane not requested (delivery should work non-dane) diff --git a/test/stdout/5840 b/test/stdout/5840 index 947f802a7..e6bd55bf9 100644 --- a/test/stdout/5840 +++ b/test/stdout/5840 @@ -1,5 +1,5 @@ -### TLSA (3 1 1) -### TLSA (3 1 2) +### TLSA (3 1 1) (DANE-EE SPKI SHA2-256) +### TLSA (3 1 2) ( SHA2-512) ### Recipient callout **** SMTP testing session as if from host 127.0.0.1 @@ -10,7 +10,7 @@ 250 OK
250 Accepted
421 myhost.test.ex lost input connection
-### TLSA (2 0 1) +### TLSA (2 0 1) (DANE-TA CERT SHA2-256) ### TLSA (2 1 1) ### A server with a nonverifying cert and no TLSA ### A server with a verifying cert and no TLSA @@ -27,12 +27,13 @@ ### A server insecurely serving a good A record, dane required (delivery should fail) ### A server with a name not matching the cert. TA-mode; should fail ### A server with a name not matching the cert. EE-mode; should deliver and claim DANE mode +### A server securely serving a wrong TLSA record, dane not requested (delivery should work non-dane) ******** SERVER ******** -### TLSA (3 1 1) -### TLSA (3 1 2) +### TLSA (3 1 1) (DANE-EE SPKI SHA2-256) +### TLSA (3 1 2) ( SHA2-512) ### Recipient callout -### TLSA (2 0 1) +### TLSA (2 0 1) (DANE-TA CERT SHA2-256) ### TLSA (2 1 1) ### A server with a nonverifying cert and no TLSA ### A server with a verifying cert and no TLSA @@ -49,3 +50,4 @@ ### A server insecurely serving a good A record, dane required (delivery should fail) ### A server with a name not matching the cert. TA-mode; should fail ### A server with a name not matching the cert. EE-mode; should deliver and claim DANE mode +### A server securely serving a wrong TLSA record, dane not requested (delivery should work non-dane) |