From 047b0e71a1753393519ae9718c1a7c989301a021 Mon Sep 17 00:00:00 2001
From: Andrew Zaborowski <andrew.zaborowski@intel.com>
Date: Thu, 24 Dec 2020 00:22:14 +0100
Subject: [PATCH] eap-tls: Dump server certificate when IWD_TLS_DEBUG set

---
 src/eap-tls-common.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/eap-tls-common.c b/src/eap-tls-common.c
index c3eb5ab3..68e2a10c 100644
--- a/src/eap-tls-common.c
+++ b/src/eap-tls-common.c
@@ -583,9 +583,12 @@ static bool eap_tls_tunnel_init(struct eap_state *eap)
 		return false;
 	}
 
-	if (getenv("IWD_TLS_DEBUG"))
+	if (getenv("IWD_TLS_DEBUG")) {
 		l_tls_set_debug(eap_tls->tunnel, eap_tls_tunnel_debug, eap,
 									NULL);
+		l_tls_set_cert_dump_path(eap_tls->tunnel,
+					"/tmp/iwd-tls-debug-server-cert.pem");
+	}
 
 	if (eap_tls->client_cert || eap_tls->client_key) {
 		if (!l_tls_set_auth_data(eap_tls->tunnel, eap_tls->client_cert,