summaryrefslogtreecommitdiff
path: root/test/confs/5440
diff options
context:
space:
mode:
authorJeremy Harris <jgh146exb@wizmail.org>2014-11-08 13:24:21 +0000
committerJeremy Harris <jgh146exb@wizmail.org>2014-11-08 20:06:57 +0000
commitaa2a70baf1a7ae2d6c579094a188c1d30d3d5fd5 (patch)
treed297637678bfb66b4ce95ad8b3e4ac6a8bdef4f8 /test/confs/5440
parenta320fabd09f43c02c869c90a5a5a70a49dd77f89 (diff)
Fix smtp transport certificate-verification option matching to use correct host
Fix certificate name verification done with tls_try_verify_hosts Affected tls_verify_hosts, tls_try_verify_hosts, tls_verify_cert_hostnames.
Diffstat (limited to 'test/confs/5440')
-rw-r--r--test/confs/544019
1 files changed, 19 insertions, 0 deletions
diff --git a/test/confs/5440 b/test/confs/5440
index 01ba52532..95c434549 100644
--- a/test/confs/5440
+++ b/test/confs/5440
@@ -88,6 +88,11 @@ client_s:
retry_use_local_part
transport = send_to_server_req_passname
+client_t:
+ driver = accept
+ local_parts = usert
+ retry_use_local_part
+ transport = send_to_server_req_failcarryon
# ----- Transports -----
@@ -172,4 +177,18 @@ send_to_server_req_passname:
tls_verify_cert_hostnames = *
tls_verify_hosts = *
+# this will fail to verify the cert name but carry on (try-verify mode)
+# fail because the cert is "server1.example.com" and the test system is something else
+send_to_server_req_failcarryon:
+ driver = smtp
+ allow_localhost
+ hosts = HOSTNAME
+ port = PORT_D
+ tls_certificate = CERT2
+ tls_privatekey = CERT2
+
+ tls_verify_certificates = CA1
+ tls_verify_cert_hostnames = *
+ tls_try_verify_hosts = *
+
# End