alkdev/reverse-proxy
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(fix/log-root-cert-count): log system root certificate count at startup

Browse Source
This commit is contained in:
glm-5.1
2026-06-12 14:20:43 +00:00
parent db982e9c4d
commit 8ac39d9cd8
1 changed files with 18 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
src/proxy/handler.rs
View File

@@ -12,7 +12,7 @@ use axum::Router;
use hyper_util::client::legacy::connect::HttpConnector;
use hyper_util::client::legacy::Client;
use hyper_util::rt::TokioExecutor;
use tracing::warn;
use tracing::{info, warn};
use crate::config::dynamic_config::DynamicConfig;
use crate::log_request;
@@ -249,11 +249,24 @@ fn root_certs() -> rustls::RootCertStore {
for cert in result.certs {
roots.add(cert).ok();
}
if !result.errors.is_empty() {
let cert_count = roots.len();
let error_count = result.errors.len();
if cert_count == 0 {
warn!(
certs_loaded = cert_count,
errors = error_count,
"no system root certificates loaded — HTTPS upstream connections will fail"
);
} else {
info!(
certs_loaded = cert_count,
errors = error_count,
"loaded system root certificates"
);
}
for err in &result.errors {
warn!(error = %err, "failed to load native certificate");
}
}
roots
}