X-Git-Url: https://git.exim.org/exim.git/blobdiff_plain/f4e62a871680af98f14beb5f21dbe3b85c5c35ff..600dc06981df5a906125f8442c36056a117412d4:/test/confs/5891

diff --git a/test/confs/5891 b/test/confs/5891
index 165921d26..ff50b2b2e 100644
--- a/test/confs/5891
+++ b/test/confs/5891
@@ -1,7 +1,7 @@
 # Exim test configuration 5891
 
 SERVER =
-OPTION =
+OPTION = NORMAL
 
 .include DIR/aux-var/tls_conf_prefix
 
@@ -15,13 +15,17 @@ acl_smtp_helo = check_helo
 acl_smtp_rcpt = check_recipient
 log_selector = +received_recipients +tls_resumption +tls_peerdn
 
-openssl_options = +no_sslv2 +no_sslv3 +single_dh_use OPTION
 tls_advertise_hosts = *
 
 # Set certificate only if server
 
-tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
+CDIR=DIR/aux-fixed/exim-ca/example.com
 
+tls_certificate = CDIR/server1.example.com/server1.example.com.chain.pem
+tls_privatekey =  CDIR/server1.example.com/server1.example.com.unlocked.key
+tls_ocsp_file =   CDIR/server1.example.com/server1.example.com.ocsp.good.resp
+
+tls_require_ciphers = OPTION
 tls_resumption_hosts = 127.0.0.1
 
 
@@ -86,19 +90,24 @@ send_to_server1:
 .else
   tls_resumption_hosts =	:
 .endif
-  tls_verify_certificates =	DIR/aux-fixed/cert1
+  tls_verify_certificates =	CDIR/CA/CA.pem
   tls_verify_cert_hostnames =	${if match {$local_part}{^noverify} {*}{:}}
   tls_try_verify_hosts =	*
+.ifdef _HAVE_EVENT
   event_action =		${acl {log_resumption}}
+.endif
 
 send_to_server2:
   driver = smtp
   allow_localhost
   hosts = HOSTIPV4
   port = PORT_D
-  tls_verify_certificates = DIR/aux-fixed/cert1
-  tls_verify_cert_hostnames = :
-  event_action =	${acl {log_resumption}}
+  hosts_try_fastopen =	:
+  tls_verify_certificates =	CDIR/CA/CA.pem
+  tls_verify_cert_hostnames =	:
+.ifdef _HAVE_EVENT
+  event_action =		${acl {log_resumption}}
+.endif
 
 
 # ----- Retry -----