Enforce STARTTLS sync point, client side
[users/heiko/exim.git] / test / confs / 5710
index 354d3935b22361e1828bc1dc3032f587a3554b82..f6b97945f2a462740aa451d6ef1ea2751191577e 100644 (file)
@@ -3,13 +3,9 @@
 
 SERVER=
 
 
 SERVER=
 
-exim_path = EXIM_PATH
-host_lookup_order = bydns
+.include DIR/aux-var/tls_conf_prefix
+
 primary_hostname = myhost.test.ex
 primary_hostname = myhost.test.ex
-spool_directory = DIR/spool
-log_file_path = DIR/spool/log/SERVER%slog
-gecos_pattern = ""
-gecos_name = CALLER_NAME
 timezone = UTC
 
 # ----- Main settings -----
 timezone = UTC
 
 # ----- Main settings -----
@@ -73,6 +69,10 @@ logger:
         acl = ev_msg $event_name $acl_arg2
   accept condition = ${if eq {tls} {${listextract{1}{$event_name}}}}
         message =   ${acl {ev_tls}}
         acl = ev_msg $event_name $acl_arg2
   accept condition = ${if eq {tls} {${listextract{1}{$event_name}}}}
         message =   ${acl {ev_tls}}
+  accept condition = ${if eq {smtp:ehlo}{$event_name}}
+        logwrite =  $tls_out_cipher smtp:ehlo $event_data
+        logwrite =  cipher_ $tls_out_cipher_std
+        logwrite =  ver:    $tls_out_ver
   accept
 
 # ----- Routers -----
   accept
 
 # ----- Routers -----
@@ -95,6 +95,7 @@ send_to_server:
   allow_localhost
   hosts = 127.0.0.1
   port = PORT_D
   allow_localhost
   hosts = 127.0.0.1
   port = PORT_D
+  hosts_try_fastopen = :
 
   tls_certificate = DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.pem
   tls_privatekey = DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.unlocked.key
 
   tls_certificate = DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.pem
   tls_privatekey = DIR/aux-fixed/exim-ca/example.com/server2.example.com/server2.example.com.unlocked.key