zeek/testing/btest/scripts/base/protocols/smtp/bdat-pipeline-8bitmime.test

# @TEST-DOC: PCAP with kernel mailing list BDAT transfer.
#
# @TEST-EXEC: zeek -C -b -r $TRACES/smtp/smtp-bdat-pipeline-8bitmime.pcap %INPUT >out
# @TEST-EXEC: zeek-cut -m uid id.orig_h id.orig_p id.resp_h id.resp_p service duration < conn.log > conn.log.cut
# @TEST-EXEC: zeek-cut -m uid source depth mime_type filename sha1 < files.log > files.log.cut
# @TEST-EXEC: btest-diff out
# @TEST-EXEC: btest-diff conn.log.cut
# @TEST-EXEC: btest-diff smtp.log
# @TEST-EXEC: btest-diff files.log.cut
# @TEST-EXEC: test ! -f weird.log

@load base/protocols/conn
@load base/protocols/smtp

event smtp_request(c: connection, is_orig: bool, command: string, arg: string)
	{
	print c$uid, is_orig, command, arg;
	}