OpenSSL: add sender_host_address info to certificate verify error log messages when...
[users/jgh/exim.git] / test / confs / 2152
1 # Exim test configuration 2152
2 # as per 2100 but with TCP Fast Open
3
4 SERVER=
5
6 .include DIR/aux-var/tls_conf_prefix
7
8 primary_hostname = myhost.test.ex
9
10 .ifdef _HAVE_TLS
11 # that was purely to trigger the lazy-create of builtin macros
12 .endif
13 # ----- Main settings -----
14
15 acl_smtp_rcpt = accept
16
17 log_selector =  +tls_peerdn
18
19 queue_only
20 queue_run_in_order
21
22 tls_advertise_hosts = *
23
24 # Set certificate only if server
25
26 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
27 tls_privatekey = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
28
29 tls_verify_hosts = *
30 tls_verify_certificates = ${if eq {SERVER}{server}{DIR/aux-fixed/cert2}fail}
31
32
33 # ----- Routers -----
34
35 begin routers
36
37 client:
38   driver = accept
39   condition = ${if eq {SERVER}{server}{no}{yes}}
40   retry_use_local_part
41   transport = send_to_server
42
43
44 # ----- Transports -----
45
46 begin transports
47
48 send_to_server:
49   driver = smtp
50   allow_localhost
51   hosts = 127.0.0.1
52   port = PORT_D
53   hosts_try_fastopen = *
54   tls_certificate = DIR/aux-fixed/cert2
55   tls_privatekey = DIR/aux-fixed/cert2
56   tls_verify_certificates = DIR/aux-fixed/cert2
57   tls_try_verify_hosts = :
58
59
60 # ----- Retry -----
61
62
63 begin retry
64
65 * * F,5d,10s
66
67
68 # End