From ed263d4a380036b654525ee268db615c17d0d216 Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Fri, 11 Dec 2020 18:28:32 +0100
Subject: test suite: supply our own OpenSSL configuration file with
 MinProtocol=None.

So we can test TLSv1 as well, not just TLSv1.2 and later.

Also, explicitly set ssl_min_protocol=TLSv1 in the Dovecot configuration
file (the default as of 2.3.11.3), hence running TLS tests now require
Dovecot 2.3 or later.
---
 tests/tls-verify-peer/t | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'tests/tls-verify-peer')

diff --git a/tests/tls-verify-peer/t b/tests/tls-verify-peer/t
index 2461a1f..17018a6 100644
--- a/tests/tls-verify-peer/t
+++ b/tests/tls-verify-peer/t
@@ -31,7 +31,7 @@ verified_peer() {
     [ -s "$TMPDIR/preverify" ] || error
     ! grep -Fvx "preverify=1" <"$TMPDIR/preverify" || error
 
-    grep "^remote: SSL protocol: TLSv1\.[23] " <"$STDERR" || error
+    grep "^remote: SSL protocol: TLSv" <"$STDERR" || error
     grep "^remote: SSL cipher: " <"$STDERR" || error
 
     check_mailbox_status "INBOX"
-- 
cgit v1.2.3