From 4e4ec4c34727091d72186017ba4e27bd6de11270 Mon Sep 17 00:00:00 2001
From: Sergey Matveev <stargrave@stargrave.org>
Date: Wed, 6 Oct 2021 15:24:09 +0300
Subject: [PATCH] Log certificate's signature algorithm

---
 tls.go | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/tls.go b/tls.go
index 6f8ce8c..8a807d0 100644
--- a/tls.go
+++ b/tls.go
@@ -138,10 +138,11 @@ func dialTLS(ctx context.Context, network, addr string) (net.Conn, error) {
 	connState := conn.ConnectionState()
 	if !connState.DidResume {
 		fifos.LogTLS <- fmt.Sprintf(
-			"%s\t%s %s\t%s\t%s",
+			"%s\t%s %s %s\t%s\t%s",
 			addr,
 			ucspi.TLSVersion(connState.Version),
 			tls.CipherSuiteName(connState.CipherSuite),
+			connState.PeerCertificates[0].SignatureAlgorithm,
 			spkiHash(connState.PeerCertificates[0]),
 			connState.NegotiatedProtocol,
 		)
-- 
2.44.0