From 8af4fd7e0f697d9585f013b9664f88d32131b5df Mon Sep 17 00:00:00 2001 From: Jeremy Harris Date: Fri, 28 May 2021 17:33:13 +0100 Subject: Testsuite: use higher-spec certs, for more-recent GnuTLS versions which deprecate weaker ones Needed for GnuTLS 3.6.15 (on Fedora 33) --- test/confs/3700 | 15 +++++++++------ 1 file changed, 9 insertions(+), 6 deletions(-) (limited to 'test/confs/3700') diff --git a/test/confs/3700 b/test/confs/3700 index 599f3e50d..598bc7f1a 100644 --- a/test/confs/3700 +++ b/test/confs/3700 @@ -20,10 +20,11 @@ trusted_users = CALLER tls_on_connect_ports = PORT_S tls_advertise_hosts = * -tls_certificate = DIR/aux-fixed/cert1 +tls_certificate = DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.pem +tls_privatekey = DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key tls_verify_hosts = * -tls_verify_certificates = DIR/aux-fixed/cert2 +tls_verify_certificates = DIR/aux-fixed/exim-ca/example.org/server2.example.org/ca_chain.pem # ----- ACL ----- @@ -78,8 +79,9 @@ t1: port = PORT_D hosts_try_fastopen = : allow_localhost - tls_certificate = DIR/aux-fixed/cert2 - tls_verify_certificates = DIR/aux-fixed/cert1 + tls_certificate = DIR/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.pem + tls_privatekey = DIR/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.unlocked.key + tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem tls_verify_cert_hostnames = : t2: @@ -89,8 +91,9 @@ t2: hosts_try_fastopen = : protocol = smtps allow_localhost - tls_certificate = DIR/aux-fixed/cert2 - tls_verify_certificates = DIR/aux-fixed/cert1 + tls_certificate = DIR/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.pem + tls_privatekey = DIR/aux-fixed/exim-ca/example.org/server2.example.org/server2.example.org.unlocked.key + tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem tls_verify_cert_hostnames = : file: -- cgit v1.2.3