TLS: pre-generate and load server selfsigned cert, when one is to be used
[users/heiko/exim.git] / test / confs / 2117
1 # Exim test configuration 2117
2
3 SERVER =
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 acl_smtp_rcpt = accept
12
13 log_selector = +tls_peerdn
14
15 queue_only
16 queue_run_in_order
17
18 tls_advertise_hosts = *
19 tls_certificate = DIR/aux-fixed/cert1
20
21
22 # ----- Routers -----
23
24 begin routers
25
26 client:
27   driver = accept
28   condition = ${if eq {SERVER}{server}{no}{yes}}
29   retry_use_local_part
30   transport = send_to_server
31
32 server:
33   driver = accept
34   retry_use_local_part
35   transport = local_delivery
36
37
38 # ----- Transports -----
39
40 begin transports
41
42 local_delivery:
43   driver = appendfile
44   file = DIR/test-mail/${bless:$local_part}
45   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
46   user = CALLER
47
48 send_to_server:
49   driver = smtp
50   allow_localhost
51   hosts = 127.0.0.1
52   port = PORT_D
53   hosts_try_fastopen = :
54   tls_verify_certificates = DIR/aux-fixed/cert1
55   tls_verify_cert_hostnames = :
56   hosts_nopass_tls = *
57
58
59 # ----- Retry -----
60
61
62 begin retry
63
64 * * F,5d,10s
65
66
67 # End