Trust
Per-platform peer-certificate storage and retrieval.
The shared HTTP layer asks a TrustHost to fetch a fresh cert when an outbound call fails with an SSL error (see krill.zone.shared.io.http.isSSLError) so the next attempt can succeed without an explicit user action.
Functions
Link copied to clipboard
Removes any cached cert for the node's host. Called when the client decides a stored cert is no longer valid (e.g. server regenerated its key pair) so the next request triggers a fresh fetchPeerCert.
Link copied to clipboard
Fetches the server's public cert from <url>/trust and persists it in the platform's trust store. Returns true if the cert was stored or already matched the existing one; false if the fetch failed.