YGGverse/agate
1
0
Fork 0
mirror of https://github.com/YGGverse/agate.git synced 2026-04-08 20:45:29 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

implement default cert fallback (SNI-less IP as host support)

Browse source
This commit is contained in:
yggverse 2026-03-31 15:40:05 +03:00
parent 1b7408d2d3
commit aa799a482e
1 changed files with 7 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

9
src/certificates.rs
View file

@ -222,8 +222,13 @@ impl ResolvesServerCert for CertStore {
.map(|(_, k)| k)
.cloned()
} else {
// This kind of resolver requires SNI.
None
// This kind of resolver requires SNI. Fallback to default cert.
// * must exist in the `.certificates` root
// * CN value can be any
self.certs
.iter()
.find(|(domain, _)| domain.is_empty())
.map(|(_, key)| Arc::clone(key))
}
}
}