From c6fed3e97f3e86d474dd9700817082cc5bab1f22 Mon Sep 17 00:00:00 2001
From: H1JK <hell0jack@protonmail.com>
Date: Sun, 14 May 2023 00:21:59 +0800
Subject: [PATCH] fix: TLS certificate pool initialize

Co-authored-by: Skyxim <noreply@skyxim.dev>
---
 component/tls/config.go | 19 +++++++++++++------
 1 file changed, 13 insertions(+), 6 deletions(-)

diff --git a/component/tls/config.go b/component/tls/config.go
index b5b56591..6f808248 100644
--- a/component/tls/config.go
+++ b/component/tls/config.go
@@ -33,10 +33,22 @@ func AddCertificate(certificate string) error {
 	}
 }
 
+func initializeCertPool() {
+	var err error
+	certPool, err = x509.SystemCertPool()
+	if err != nil {
+		certPool = x509.NewCertPool()
+	}
+	for _, cert := range trustCerts {
+		certPool.AddCert(cert)
+	}
+}
+
 func ResetCertificate() {
 	mutex.Lock()
 	defer mutex.Unlock()
 	trustCerts = nil
+	initializeCertPool()
 }
 
 func getCertPool() *x509.CertPool {
@@ -49,12 +61,7 @@ func getCertPool() *x509.CertPool {
 		if certPool != nil {
 			return certPool
 		}
-		certPool, err := x509.SystemCertPool()
-		if err == nil {
-			for _, cert := range trustCerts {
-				certPool.AddCert(cert)
-			}
-		}
+		initializeCertPool()
 	}
 	return certPool
 }