1 # TLS server: general ops and certificate extractions
3 # NOTE: current OpenSSL libraries return faulty my-cert information
4 # when more than one is loaded, which the conf for this testcase does.
5 # As a result the expansion done and logged is misleading.
7 # Make RSA authentication the only acceptable
8 exim -d-all+tls -DSERVER=server -DORDER=RSA -bd -oX PORT_D
10 client-ssl 127.0.0.1 PORT_D
21 mail from:<CALLER@test.ex>
23 rcpt to:<CALLER@test.ex>
27 This is a test encrypted message.
33 client-ssl 127.0.0.1 PORT_D
44 mail from:<"name with spaces"@test.ex>
46 rcpt to:<CALLER@test.ex>
50 This is a test encrypted message.
56 # nonloop addr conn rejected lacking cert
57 client-ssl HOSTIPV4 PORT_D
72 client-ssl HOSTIPV4 PORT_D DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.pem DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.unlocked.key
83 mail from:<CALLER@test.ex>
85 rcpt to:<CALLER@test.ex>
89 This is a test encrypted message from a verified host.
97 # make ECDSA authentication preferred
98 # DEFAULT:+RSA should work but does not seem to
99 exim -DSERVER=server -DORDER=ECDSA:RSA:!COMPLEMENTOFDEFAULT -bd -oX PORT_D
101 client-ssl 127.0.0.1 PORT_D
112 mail from:<CALLER@test.ex>
114 rcpt to:<CALLER@test.ex>
118 This is a test encrypted message.
119 It should be sent under the EC server cert and with an ECDSA cipher.