X-Git-Url: https://git.exim.org/exim.git/blobdiff_plain/afda344b580b54a4513569720aec3260cd5ba546..32a167571d19dc17c709616320917276e8d82c3b:/test/confs/2000 diff --git a/test/confs/2000 b/test/confs/2000 index b1999124e..c81c80d59 100644 --- a/test/confs/2000 +++ b/test/confs/2000 @@ -2,14 +2,9 @@ SERVER= -exim_path = EXIM_PATH -host_lookup_order = bydns +.include DIR/aux-var/tls_conf_prefix + primary_hostname = myhost.test.ex -rfc1413_query_timeout = 0s -spool_directory = DIR/spool -log_file_path = DIR/spool/log/SERVER%slog -gecos_pattern = "" -gecos_name = CALLER_NAME # ----- Main settings ----- @@ -21,6 +16,8 @@ queue_only queue_run_in_order tls_advertise_hosts = * +# needed to force generation +tls_dhparam = historic # Set certificate only if server @@ -28,7 +25,7 @@ tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail} tls_privatekey = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail} tls_verify_hosts = * -tls_verify_certificates = ${if eq {SERVER}{server}{DIR/aux-fixed/cert2}fail} +tls_verify_certificates = DIR/aux-fixed/exim-ca/example.org/server2.example.org/ca_chain.pem # ----- Routers ----- @@ -51,9 +48,12 @@ send_to_server: allow_localhost hosts = 127.0.0.1 port = PORT_D - tls_certificate = DIR/aux-fixed/cert2 - tls_privatekey = DIR/aux-fixed/cert2 + hosts_try_fastopen = : + tls_certificate = DIR/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.pem + tls_privatekey = DIR/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.unlocked.key + tls_verify_certificates = DIR/aux-fixed/cert2 + tls_try_verify_hosts = # ----- Retry -----