Add event for inbound cert visibility

author: Jeremy Harris <jgh146exb@wizmail.org> 2014-10-23 18:22:33 +0100
committer: Jeremy Harris <jgh146exb@wizmail.org> 2014-10-25 21:37:59 +0100
commit: 723fe533c452eb258a5a7e0b808d714bbbc7cb01 (patch)
tree: 04c92fbf113c6b6ab142e18f3e47994f4c7a0e4f /test/confs/5760
parent: aec45841f9139404fd61122e3db1401b13ebb0a8 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/test/confs/5760 b/test/confs/5760
index b8cab04fa..d07aa8d90 100644
--- a/test/confs/5760
+++ b/test/confs/5760
@@ -29,10 +29,19 @@ tls_privatekey = DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.e
 tls_verify_hosts = *
 tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/server2.example.com/ca_chain.pem
 
+event_action = ${acl {server_cert_log}}
+
 #
 
 begin acl
 
+server_cert_log:
+  accept condition = ${if eq {tls:cert}{$event_name}}
+	 logwrite =  [$sender_host_address] \
+			depth=$event_data \
+			${certextract{subject}{$tls_in_peercert}}
+  accept
+
 ev_tls:
   accept logwrite =  $event_name depth=$event_data \
 			<${certextract {subject} {$tls_out_peercert}}>
author	Jeremy Harris <jgh146exb@wizmail.org>	2014-10-23 18:22:33 +0100
committer	Jeremy Harris <jgh146exb@wizmail.org>	2014-10-25 21:37:59 +0100
commit	723fe533c452eb258a5a7e0b808d714bbbc7cb01 (patch)
tree	04c92fbf113c6b6ab142e18f3e47994f4c7a0e4f /test/confs/5760
parent	aec45841f9139404fd61122e3db1401b13ebb0a8 (diff)