GnuTLS: simplify cert hostname checking
[users/jgh/exim.git] / test / confs / 2138
1 # Exim test configuration 2135
2
3 SERVER =
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 acl_smtp_rcpt = accept
12
13 log_selector = +tls_peerdn+smtp_connection+incoming_port+received_recipients
14
15 queue_only
16 queue_run_in_order
17 remote_max_parallel = 1
18
19 smtp_accept_max_nonmail = 0
20
21 tls_advertise_hosts = *
22
23 # Set certificate only if server
24
25 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
26 tls_privatekey = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
27
28
29 # ----- Routers -----
30
31 begin routers
32
33 client:
34   driver =      manualroute
35   condition =   ${if eq {SERVER}{server}{no}{yes}}
36   route_data =  127.0.0.1
37   self =        send
38   retry_use_local_part
39   transport =   send_to_server
40
41 server:
42   driver = accept
43   retry_use_local_part
44   transport = local_delivery
45
46
47 # ----- Transports -----
48
49 begin transports
50
51 local_delivery:
52   driver = appendfile
53   file = DIR/test-mail/$local_part
54   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
55   user = CALLER
56
57 send_to_server:
58   driver =      smtp
59   allow_localhost
60   hosts_noproxy_tls = :
61   port =        PORT_D
62   tls_try_verify_hosts = :
63   max_rcpt =    1
64
65 # End