OpenSSL: Fix client-side tls_verify_cert_hostnames behaviour
[exim.git] / test / confs / 2149
1 # Exim test configuration 2149
2
3 SERVER =
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 acl_smtp_rcpt = accept
12
13 queue_only
14 queue_run_in_order
15
16 tls_advertise_hosts = *
17 tls_certificate = DIR/aux-fixed/cert1
18 tls_dhparam = ${if eq {SERVER}{server}{DIR/aux-fixed/dh1}fail}
19
20
21 # ----- Routers -----
22
23 begin routers
24
25 client:
26   driver = accept
27   condition = ${if eq {SERVER}{server}{no}{yes}}
28   retry_use_local_part
29   transport = send_to_server
30
31 server:
32   driver = accept
33   retry_use_local_part
34   transport = local_delivery
35
36
37 # ----- Transports -----
38
39 begin transports
40
41 local_delivery:
42   driver = appendfile
43   file = DIR/test-mail/${bless:$local_part}
44   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
45   user = CALLER
46
47 send_to_server:
48   driver = smtp
49   allow_localhost
50   hosts = 127.0.0.1
51   port = PORT_D
52   hosts_try_fastopen =  :
53   tls_verify_certificates =     DIR/aux-fixed/cert1
54   tls_verify_cert_hostnames =   :
55
56 # End