From: Aki Tuomi <aki.tuomi@open-xchange.com>
Date: Mon, 10 Aug 2020 11:43:11 +0000 (+0300)
Subject: lib-auth: Do not send ssl details to auth process
X-Git-Tag: 2.3.13~284
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=a88b78fa5ac60a5b77d98950c7370ae83ebee3c6;p=thirdparty%2Fdovecot%2Fcore.git

lib-auth: Do not send ssl details to auth process

They are not used for anything. But we still provide them
as auth_client event fields, so that we can e.g. do metrics
on which TLS protocol is used.
---

diff --git a/src/lib-auth/auth-client-request.c b/src/lib-auth/auth-client-request.c
index cf0307b05c..50622d2480 100644
--- a/src/lib-auth/auth-client-request.c
+++ b/src/lib-auth/auth-client-request.c
@@ -111,20 +111,13 @@ static void auth_server_send_new_request(struct auth_client_connection *conn,
 		event_add_str(request->event, "local_name", info->local_name);
 	}
 	if (info->ssl_cipher_bits != 0 && info->ssl_cipher != NULL) {
-		str_append(str, "\tssl_cipher=");
-		str_append_tabescaped(str, info->ssl_cipher);
-		str_printfa(str, "\tssl_cipher_bits=%u", info->ssl_cipher_bits);
 		event_add_str(request->event, "tls_cipher", info->ssl_cipher);
 		event_add_int(request->event, "tls_cipher_bits", info->ssl_cipher_bits);
 		if (info->ssl_pfs != NULL) {
-			str_append(str, "\tssl_pfs=");
-			str_append_tabescaped(str, info->ssl_pfs);
 			event_add_str(request->event, "tls_pfs", info->ssl_pfs);
 		}
 	}
 	if (info->ssl_protocol != NULL) {
-		str_append(str, "\tssl_protocol=");
-		str_append_tabescaped(str, info->ssl_protocol);
 		event_add_str(request->event, "tls_protocol", info->ssl_protocol);
 	}
 	if (info->client_id != NULL &&