alkdev/reverse-proxy
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge remote-tracking branch 'origin/fix/fix/log-root-cert-count'

Browse Source
This commit is contained in:
glm-5.1
2026-06-12 14:21:12 +00:00
parent d338dcab38 8ac39d9cd8
commit 1ae06b0478
1 changed files with 18 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
src/proxy/handler.rs
View File

@@ -12,7 +12,7 @@ use axum::Router;
use hyper_util::client::legacy::connect::HttpConnector; use hyper_util::client::legacy::connect::HttpConnector;
use hyper_util::client::legacy::Client; use hyper_util::client::legacy::Client;
use hyper_util::rt::TokioExecutor; use hyper_util::rt::TokioExecutor;
use tracing::warn; use tracing::{info, warn};
use crate::config::dynamic_config::DynamicConfig; use crate::config::dynamic_config::DynamicConfig;
use crate::log_request; use crate::log_request;
@@ -263,11 +263,24 @@ fn root_certs() -> rustls::RootCertStore {
for cert in result.certs { for cert in result.certs {
roots.add(cert).ok(); roots.add(cert).ok();
} }
if !result.errors.is_empty() { let cert_count = roots.len();
let error_count = result.errors.len();
if cert_count == 0 {
warn!(
certs_loaded = cert_count,
errors = error_count,
"no system root certificates loaded — HTTPS upstream connections will fail"
);
} else {
info!(
certs_loaded = cert_count,
errors = error_count,
"loaded system root certificates"
);
}
for err in &result.errors { for err in &result.errors {
warn!(error = %err, "failed to load native certificate"); warn!(error = %err, "failed to load native certificate");
} }
}
roots roots
} }