mirror of
				https://github.com/tailscale/tailscale.git
				synced 2025-10-25 10:09:17 +00:00 
			
		
		
		
	derp/derphttp: support standard-ish SSLKEYLOGFILE environment variable
For debugging.
This commit is contained in:
		| @@ -18,9 +18,11 @@ import ( | ||||
| 	"fmt" | ||||
| 	"io" | ||||
| 	"io/ioutil" | ||||
| 	"log" | ||||
| 	"net" | ||||
| 	"net/http" | ||||
| 	"net/url" | ||||
| 	"os" | ||||
| 	"sync" | ||||
| 	"time" | ||||
|  | ||||
| @@ -365,6 +367,14 @@ func (c *Client) tlsClient(nc net.Conn, node *tailcfg.DERPNode) *tls.Conn { | ||||
| 			tlsdial.SetConfigExpectedCert(tlsConf, node.CertName) | ||||
| 		} | ||||
| 	} | ||||
| 	if n := os.Getenv("SSLKEYLOGFILE"); n != "" { | ||||
| 		f, err := os.OpenFile(n, os.O_CREATE|os.O_APPEND|os.O_WRONLY, 0600) | ||||
| 		if err != nil { | ||||
| 			log.Fatal(err) | ||||
| 		} | ||||
| 		log.Printf("WARNING: writing to SSLKEYLOGFILE %v", n) | ||||
| 		tlsConf.KeyLogWriter = f | ||||
| 	} | ||||
| 	return tls.Client(nc, tlsConf) | ||||
| } | ||||
|  | ||||
|   | ||||
		Reference in New Issue
	
	Block a user
	 Brad Fitzpatrick
					Brad Fitzpatrick