mirror of
https://github.com/Snawoot/opera-proxy.git
synced 2026-04-26 15:30:40 +00:00
use custom CA pool for DoH
This commit is contained in:
Vladislav Yarmak
parent
bef4ab7784
commit
cb499db379
1 changed files with 14 additions and 1 deletions
|
|
@ -5,8 +5,10 @@ import (
|
|||
"crypto/x509"
|
||||
"errors"
|
||||
"net"
|
||||
"net/http"
|
||||
"net/url"
|
||||
"strings"
|
||||
"time"
|
||||
|
||||
"github.com/ncruces/go-dns"
|
||||
)
|
||||
|
|
@ -50,7 +52,18 @@ begin:
|
|||
parsed.Scheme = "https"
|
||||
u = parsed.String()
|
||||
}
|
||||
return dns.NewDoHResolver(u, dns.DoHAddresses(net.JoinHostPort(host, port)))
|
||||
return dns.NewDoHResolver(u,
|
||||
dns.DoHAddresses(net.JoinHostPort(host, port)),
|
||||
dns.DoHTransport(&http.Transport{
|
||||
MaxIdleConns: http.DefaultMaxIdleConnsPerHost,
|
||||
IdleConnTimeout: 90 * time.Second,
|
||||
TLSHandshakeTimeout: 10 * time.Second,
|
||||
ForceAttemptHTTP2: true,
|
||||
TLSClientConfig: &tls.Config{
|
||||
RootCAs: caPool,
|
||||
},
|
||||
}),
|
||||
)
|
||||
case "tls", "dot":
|
||||
if port == "" {
|
||||
port = "853"
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue