xfy eb404f98a2 fix(ssl): implement OCSP refreshAll to actually refresh stale responses ...

refreshAll() was a no-op — it checked which entries needed refreshing
but never called fetchOCSP. Now it:
- Stores cert/issuer pairs when registering certificates
- Actually fetches fresh OCSP responses for stale/expired entries
- Updates error counts and marks entries as failed after max retries

2026-06-03 01:14:09 +08:00

..

AGENTS.md

docs: 更新 AGENTS.md 文档

2026-04-03 14:07:42 +08:00

client_verify_test.go

test(handler,middleware,server,ssl,proxy): 扩展测试覆盖率

2026-04-22 10:42:05 +08:00

client_verify.go

refactor(ssl): 提取证书池加载函数到 sslutil 包

2026-04-13 10:58:57 +08:00

ocsp_test.go

fix(ssl): use reserved IP for connection failure test

2026-05-09 08:20:10 +08:00

ocsp.go

fix(ssl): implement OCSP refreshAll to actually refresh stale responses

2026-06-03 01:14:09 +08:00

session_tickets_test.go

refactor: modernize code with Go 1.22+ features

2026-04-30 10:37:45 +08:00

session_tickets.go

perf: optimize ConsistentHash and RateLimiter for better concurrency

2026-04-30 10:23:19 +08:00

ssl_bench_test.go

refactor: modernize code with Go 1.22+ features

2026-04-30 10:37:45 +08:00

ssl_test.go

refactor(ssl): extract TLS config generation to sslutil

2026-04-29 18:18:33 +08:00

ssl.go

refactor: modernize code with Go 1.22+ features

2026-04-30 10:37:45 +08:00