user/henk/code/exim.git - [no description]

Age	Commit message (Collapse)	Author
2015-08-06	Dup GnuTLS test to OpenSSL	Jeremy Harris

2014-09-28	More testsuite variance between OpenSSL library versions	Jeremy Harris

2014-08-13	Testsuite - Squashed commit of the following:	Jeremy Harris
	commit 7566c531c43298510e080eb8a7ed7cf767f9476b Author: Jeremy Harris <jgh146exb@wizmail.org> Date: Wed Aug 13 16:20:38 2014 +0100 Assorted OpenSSL cases fail on different library versions. Discard stdout info to hide this. commit 3d389bc6a5ba0943f1b451fa7a8f2e3246de0bb1 Author: Jeremy Harris <jgh146exb@wizmail.org> Date: Wed Aug 13 14:05:19 2014 +0100 Case 0563 was broken when the GECOS field had spaces. Accept quoted ones in stderr. commit d4333083f230702c8be45650dc48b6eb65a162eb Author: Jeremy Harris <jgh146exb@wizmail.org> Date: Mon Aug 11 18:30:49 2014 +0100 Case 0601 was unreliable; perl racing with exim for output. Quieten exim.
2013-03-25	OCSP-stapling enhancement and testing.	Jeremy Harris
	Server: Honor environment variable as well as running_in_test_harness in permitting bogus staplings Update server tests Add "-ocsp" option to client-ssl. Server side: add verification of stapled status. First cut server-mode ocsp testing. Fix some uninitialized ocsp-related data. Client (new): Verify stapling using only the chain that verified the server cert, not any acceptable chain. Add check for multiple responses in a stapling, which is not handled Refuse verification on expired and revoking staplings. Handle OCSP client refusal on lack of stapling from server. More fixing in client OCSP: use the server cert signing chain to verify the OCSP info. Add transport hosts_require_ocsp option. Log stapling responses. Start on tests for client-side. Testing support: Add CRL generation code and documentation update Initial CA & certificate set for testing. BUGFIX: Once a single OCSP response has been extracted the validation routine return code is no longer about the structure, but the actual returned OCSP status.