git://git.exim.org
/
exim.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
GnuTLS: Fix client detection of server reject of client cert under TLS1.3
[exim.git]
/
test
/
confs
/
5821
diff --git
a/test/confs/5821
b/test/confs/5821
index 9b73181a91fbbcb08d25a9d589e55719fda66a52..8a2d6459eb492349b391394d5cff0cc55036a50f 100644
(file)
--- a/
test/confs/5821
+++ b/
test/confs/5821
@@
-23,7
+23,7
@@
tls_certificate = ${if eq {SERVER}{server} {CDIR2/fullchain.pem}fail}
tls_privatekey = ${if eq {SERVER}{server} {CDIR2/server1.example.com.unlocked.key}fail}
# Permit two specific ciphers
tls_privatekey = ${if eq {SERVER}{server} {CDIR2/server1.example.com.unlocked.key}fail}
# Permit two specific ciphers
-tls_require_ciphers = NO
NE:+VERS-TLS-ALL:+MAC-ALL:+RSA:+AES-128-CBC:+CAMELLIA-256-GCM:+SIGN-ALL:+COMP-NULL
+tls_require_ciphers = NO
RMAL:-VERS-TLS1.3:-KX-ALL:+RSA:-CIPHER-ALL:+AES-128-CBC:+CAMELLIA-256-GCM
# ----- Routers -----
begin routers
# ----- Routers -----
begin routers
@@
-52,7
+52,7
@@
send_to_server:
tls_verify_certificates = CDIR2/ca_chain.pem
# Some commonly-available cipher, we hope
tls_verify_certificates = CDIR2/ca_chain.pem
# Some commonly-available cipher, we hope
- tls_require_ciphers = NO
NE:+VERS-TLS-ALL:+MAC-ALL:+RSA:+AES-128-CBC:+SIGN-ALL:+COMP-NULL
+ tls_require_ciphers = NO
RMAL:-CIPHER-ALL:+AES-128-CBC
dane_require_tls_ciphers = OPT
# ----- Retry -----
dane_require_tls_ciphers = OPT
# ----- Retry -----