aboutsummaryrefslogtreecommitdiffstats
path: root/tests/tls-pin-fingerprint
Commit message (Collapse)AuthorAgeFiles
* test suite: ensure we haven't started speaking IMAP when the SSL/TLS ↵Guilhem Moulin2020-12-131
| | | | | | handshake is aborted. (Unless STARTTLS is used to upgrade the connection.)
* libinterimap: show the matching pinned SPKI in --debug mode.Guilhem Moulin2020-12-111
|
* libinterimap: SSL_fingerprint now supports a space-separate list of digests ↵Guilhem Moulin2020-12-091
| | | | | | | | | to pin. And succeeds if, and only if, the peer certificate SPKI matches one of the pinned digest values. Specifying multiple digest values can key useful in key rollover scenarios and/or when the server supports certificates of different types (for instance RSA+ECDSA).
* test suite: use a RSA certificate rather than ECDSA.Guilhem Moulin2020-12-091
| | | | | | | | | It's arguably the most common use-case. Generated with $ openssl genpkey -algorithm RSA -out tests/snippets/dovecot/dovecot.rsa.key $ openssl req -x509 -days 3650 -subj "/CN=InterIMAP test suite" \ -key tests/snippets/dovecot/dovecot.rsa.key \ -out tests/snippets/dovecot/dovecot.rsa.crt
* Test suite: add new tests for SSL/TLS.Guilhem Moulin2019-11-133
SSL connections are accepted on TCP port 10993. Also, fix STARTTLS directive, broken since fba1c36…
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-07 07:32:43 +0000