how to pass variables

Hi,

 

 

I tried also with cert 0:

 

 

when HTTP_REQUEST {

 

if {[HTTP::uri] starts_with "/pattern/" } {

 

set cert [SSL::cert 0]

 

set status [X509::verify_cert_error_string [SSL::verify_result]]

 

log "status jest: $status"

 

set subject [X509::subject $cert]

 

set serial [X509::serial_number $cert]

 

set issuer [X509::issuer $cert]

 

set values [list $cert $status $subject $serial]

 

set locality "Warszawa"

 

set count [SSL::cert count]

 

session add ssl [SSL::sessionid] $values 3600

 

log "Client handshake status: $status, serial number: $serial"

 

log "subject: $subject"

 

log "issuer: $issuer"

 

log "count: $count" ..... (!)

 

 

the log is:

 

 

Fri Nov 16 16:43:29 CET 2007 tmm tmm[983] 01220002 Rule Polcard_1.3 CLIENTSSL_CLIENTCERT: count: 2

 

Fri Nov 16 16:43:30 CET 2007 tmm tmm[983] 01220002 Rule Polcard_1.3 HTTP_REQUEST: status jest: ok

 

Fri Nov 16 16:43:30 CET 2007 tmm tmm[983] 01220001 TCL error: Rule Polcard_1.3 HTTP_REQUEST - while executing X509::subject $cert=

 

 

regards,