TLS: pre-generate and load server selfsigned cert, when one is to be used
[users/heiko/exim.git] / test / confs / 2138
1 # Exim test configuration 2135
2
3 SERVER =
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 acl_smtp_rcpt = accept
12
13 log_selector = +tls_peerdn+smtp_connection+incoming_port+received_recipients
14
15 queue_only
16 queue_run_in_order
17 remote_max_parallel = 1
18
19 smtp_accept_max_nonmail = 0
20
21 tls_advertise_hosts = *
22 tls_certificate = DIR/aux-fixed/cert1
23
24
25 # ----- Routers -----
26
27 begin routers
28
29 client:
30   driver =      manualroute
31   condition =   ${if eq {SERVER}{server}{no}{yes}}
32   route_data =  127.0.0.1
33   self =        send
34   retry_use_local_part
35   transport =   send_to_server
36
37 server:
38   driver = accept
39   retry_use_local_part
40   transport = local_delivery
41
42
43 # ----- Transports -----
44
45 begin transports
46
47 local_delivery:
48   driver = appendfile
49   file = DIR/test-mail/${bless:$local_part}
50   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
51   user = CALLER
52
53 send_to_server:
54   driver =              smtp
55   allow_localhost
56   port =                PORT_D
57   hosts_try_fastopen =  :
58   hosts_noproxy_tls =   :
59   tls_verify_certificates =     DIR/aux-fixed/cert1
60   tls_verify_cert_hostnames =   :
61   max_rcpt =            1
62
63 # End