From dbfcbb195ff7062d4dfcf223b216caa222a82893 Mon Sep 17 00:00:00 2001
From: xdavidwu <xdavidwuph@gmail.com>
Date: Tue, 22 Aug 2023 13:58:18 +0800
Subject: [PATCH] [Mailer][Smtp] Add DSN param `peer_fingerprint` for
 fingerprint verification

documentation for symfony/symfony#51450
---
 mailer.rst | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/mailer.rst b/mailer.rst
index 8dc952f2fb9..feced29523b 100644
--- a/mailer.rst
+++ b/mailer.rst
@@ -334,6 +334,17 @@ the application or when using a self-signed certificate::
 
     $dsn = 'smtp://user:pass@smtp.example.com?verify_peer=0';
 
+TLS Peer Fingerprint Verification
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+Additional fingerprint verification can be enforced with the ``peer_fingerprint``
+option. This is especially useful when a self-signed certificate is used and
+disabling ``verify_peer`` is needed, but security is still desired. Fingerprint
+may be specified in sha1 (40 characters) or md5 (32 characters)::
+
+    $dsn = 'smtp://user:pass@smtp.example.com?peer_fingerprint=6A1CF3B08D175A284C30BC10DE19162307C7286E';
+
+
 Overriding default SMTP authenticators
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~