Bring FS info level down to INFO, but store this information with the cert

jedisct1 · jedisct1 · commit 941a7b6f4fc0 · 2018-01-18T14:58:57.000+01:00
diff --git a/dnscrypt-proxy/certs.go b/dnscrypt-proxy/certs.go
@@ -19,6 +19,7 @@ type CertInfo struct {
 	SharedKey          [32]byte
 	MagicQuery         [ClientMagicLen]byte
 	CryptoConstruction CryptoConstruction
+	ForwardSecurity    bool
 }
 
 func FetchCurrentCert(proxy *Proxy, proto string, pk ed25519.PublicKey, serverAddress string, providerName string) (CertInfo, int, error) {
@@ -77,7 +78,10 @@ func FetchCurrentCert(proxy *Proxy, proto string, pk ed25519.PublicKey, serverAd
 		}
 		ttl := tsEnd - tsBegin
 		if ttl > 86400*7 {
-			dlog.Warnf("[%v] the key validity period for this server is excessively long (%d days), significantly reducing reliability and forward security.", providerName, ttl/86400)
+			dlog.Infof("[%v] the key validity period for this server is excessively long (%d days), significantly reducing reliability and forward security.", providerName, ttl/86400)
+			certInfo.ForwardSecurity = false
+		} else {
+			certInfo.ForwardSecurity = true
 		}
 		if now > tsEnd || now < tsBegin {
 			dlog.Debugf("[%v] Certificate not valid at the current date", providerName)

Original file line number	Diff line number	Diff line change
`@@ -19,6 +19,7 @@ type CertInfo struct {`
`19`	`19`	`SharedKey [32]byte`
`20`	`20`	`MagicQuery [ClientMagicLen]byte`
`21`	`21`	`CryptoConstruction CryptoConstruction`
	`22`	`+ ForwardSecurity bool`
`22`	`23`	`}`
`23`	`24`
`24`	`25`	`func FetchCurrentCert(proxy *Proxy, proto string, pk ed25519.PublicKey, serverAddress string, providerName string) (CertInfo, int, error) {`
`@@ -77,7 +78,10 @@ func FetchCurrentCert(proxy *Proxy, proto string, pk ed25519.PublicKey, serverAd`
`77`	`78`	`}`
`78`	`79`	`ttl := tsEnd - tsBegin`
`79`	`80`	`if ttl > 86400*7 {`
`80`		`- dlog.Warnf("[%v] the key validity period for this server is excessively long (%d days), significantly reducing reliability and forward security.", providerName, ttl/86400)`
	`81`	`+ dlog.Infof("[%v] the key validity period for this server is excessively long (%d days), significantly reducing reliability and forward security.", providerName, ttl/86400)`
	`82`	`+ certInfo.ForwardSecurity = false`
	`83`	`+ } else {`
	`84`	`+ certInfo.ForwardSecurity = true`
`81`	`85`	`}`
`82`	`86`	`if now > tsEnd \|\| now < tsBegin {`
`83`	`87`	`dlog.Debugf("[%v] Certificate not valid at the current date", providerName)`