Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Reload expired client certificates #2123

Closed
wants to merge 1 commit into from
Closed

Reload expired client certificates #2123

wants to merge 1 commit into from

Commits on Jun 8, 2022

  1. Reload expired client certificates 

    When the client credentials used for mutual authentication expire, all requests
to a DoH server which enforces validitiy will fail. To mitigate this, we can
try to reload the existing credentials from disk. This assumes that the
credentials have been rotated outside of the dnscrypt-proxy process and thus a
reload will pick up the newest versions.

The simplest way to do this is to simply rebuild the transport upon receiving
an error which contains the string "bad certificate".
    Matthew Diffenderfer committed Jun 8, 2022
    Configuration menu
    Copy the full SHA
    615ec73 View commit details
    Browse the repository at this point in the history