]> Cypherpunks repositories - gostls13.git/commitdiff
projects / gostls13.git / commitdiff
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1024b25)
crypto/x509: move debug prints to standard error
authorRuss Cox <rsc@golang.org>
Thu, 14 Mar 2019 00:06:37 +0000 (20:06 -0400)
committerFilippo Valsorda <filippo@golang.org>
Thu, 14 Mar 2019 02:49:02 +0000 (02:49 +0000)
Standard output is reserved for actual program output.
Debug print should be limited in general (here they are
enabled by an environment variable) and always go to
standard error.

Came across by accident.

Change-Id: I1490be71473520f049719572b3acaa0ea9f9e5c1
Reviewed-on: https://go-review.googlesource.com/c/go/+/167502
Run-TryBot: Russ Cox <rsc@golang.org>
TryBot-Result: Gobot Gobot <gobot@golang.org>
Reviewed-by: Filippo Valsorda <filippo@golang.org>
src/crypto/x509/root_darwin.go patch | blob | history

diff --git a/src/crypto/x509/root_darwin.go b/src/crypto/x509/root_darwin.go
index 9b8a1cca7dea609908a53efb82f145636b5f0a9f..2f6a8b8d60762703679a6e3d60a6c33d5156793a 100644 (file)
--- a/src/crypto/x509/root_darwin.go
+++ b/src/crypto/x509/root_darwin.go
@@ -58,7 +58,7 @@ func execSecurityRoots() (*CertPool, error) {
                return nil, err
        }
        if debugDarwinRoots {
-               fmt.Printf("crypto/x509: %d certs have a trust policy\n", len(hasPolicy))
+               fmt.Fprintf(os.Stderr, "crypto/x509: %d certs have a trust policy\n", len(hasPolicy))
        }
 
        keychains := []string{"/Library/Keychains/System.keychain"}
@@ -68,7 +68,7 @@ func execSecurityRoots() (*CertPool, error) {
        home, err := os.UserHomeDir()
        if err != nil {
                if debugDarwinRoots {
-                       fmt.Printf("crypto/x509: can't get user home directory: %v\n", err)
+                       fmt.Fprintf(os.Stderr, "crypto/x509: can't get user home directory: %v\n", err)
                }
        } else {
                keychains = append(keychains,
@@ -148,7 +148,7 @@ func execSecurityRoots() (*CertPool, error) {
        wg.Wait()
 
        if debugDarwinRoots {
-               fmt.Printf("crypto/x509: ran security verify-cert %d times\n", numVerified)
+               fmt.Fprintf(os.Stderr, "crypto/x509: ran security verify-cert %d times\n", numVerified)
        }
 
        return roots, nil
@@ -205,12 +205,12 @@ func verifyCertWithSystem(cert *Certificate) bool {
        }
        if err := cmd.Run(); err != nil {
                if debugDarwinRoots {
-                       fmt.Printf("crypto/x509: verify-cert rejected %s: %q\n", cert.Subject, bytes.TrimSpace(stderr.Bytes()))
+                       fmt.Fprintf(os.Stderr, "crypto/x509: verify-cert rejected %s: %q\n", cert.Subject, bytes.TrimSpace(stderr.Bytes()))
                }
                return false
        }
        if debugDarwinRoots {
-               fmt.Printf("crypto/x509: verify-cert approved %s\n", cert.Subject)
+               fmt.Fprintf(os.Stderr, "crypto/x509: verify-cert approved %s\n", cert.Subject)
        }
        return true
 }
@@ -243,7 +243,7 @@ func getCertsWithTrustPolicy() (map[string]bool, error) {
                        // localized on macOS, just interpret any failure to mean that
                        // there are no trust settings.
                        if debugDarwinRoots {
-                               fmt.Printf("crypto/x509: exec %q: %v, %s\n", cmd.Args, err, stderr.Bytes())
+                               fmt.Fprintf(os.Stderr, "crypto/x509: exec %q: %v, %s\n", cmd.Args, err, stderr.Bytes())
                        }
                        return nil
                }
Go GOST TLS 1.3