mirror of
https://github.com/go-acme/lego.git
synced 2025-11-28 00:38:24 +02:00
chore: improve retryable HTTP client error handling (#2682)
This commit is contained in:
Ludovic Fernandez
committed by
GitHub
GitHub
parent
9e7572e1ed
commit
95953b45b5
47
cmd/setup.go
47
cmd/setup.go
@@ -1,14 +1,18 @@
|
||||
package cmd
|
||||
|
||||
import (
|
||||
"context"
|
||||
"crypto/x509"
|
||||
"encoding/json"
|
||||
"encoding/pem"
|
||||
"fmt"
|
||||
"io"
|
||||
"net/http"
|
||||
"os"
|
||||
"strings"
|
||||
"time"
|
||||
|
||||
"github.com/go-acme/lego/v4/acme"
|
||||
"github.com/go-acme/lego/v4/certcrypto"
|
||||
"github.com/go-acme/lego/v4/lego"
|
||||
"github.com/go-acme/lego/v4/log"
|
||||
@@ -70,6 +74,7 @@ func newClient(ctx *cli.Context, acc registration.User, keyType certcrypto.KeyTy
|
||||
retryClient := retryablehttp.NewClient()
|
||||
retryClient.RetryMax = 5
|
||||
retryClient.HTTPClient = config.HTTPClient
|
||||
retryClient.CheckRetry = checkRetry
|
||||
retryClient.Logger = nil
|
||||
|
||||
if _, v := os.LookupEnv("LEGO_DEBUG_ACME_HTTP_CLIENT"); v {
|
||||
@@ -163,3 +168,45 @@ func readCSRFile(filename string) (*x509.CertificateRequest, error) {
|
||||
// (if this assumption is wrong, parsing these bytes will fail)
|
||||
return x509.ParseCertificateRequest(raw)
|
||||
}
|
||||
|
||||
func checkRetry(ctx context.Context, resp *http.Response, err error) (bool, error) {
|
||||
rt, err := retryablehttp.ErrorPropagatedRetryPolicy(ctx, resp, err)
|
||||
if err != nil {
|
||||
return rt, err
|
||||
}
|
||||
|
||||
if resp.StatusCode/100 == 2 {
|
||||
return rt, nil
|
||||
}
|
||||
|
||||
all, err := io.ReadAll(resp.Body)
|
||||
if err == nil {
|
||||
var errorDetails *acme.ProblemDetails
|
||||
|
||||
err = json.Unmarshal(all, &errorDetails)
|
||||
if err != nil {
|
||||
return rt, fmt.Errorf("%s %s: %s", resp.Request.Method, resp.Request.URL.Redacted(), string(all))
|
||||
}
|
||||
|
||||
switch errorDetails.Type {
|
||||
case acme.BadNonceErr:
|
||||
return false, &acme.NonceError{
|
||||
ProblemDetails: errorDetails,
|
||||
}
|
||||
|
||||
case acme.AlreadyReplacedErr:
|
||||
if errorDetails.HTTPStatus == http.StatusConflict {
|
||||
return false, &acme.AlreadyReplacedError{
|
||||
ProblemDetails: errorDetails,
|
||||
}
|
||||
}
|
||||
|
||||
default:
|
||||
log.Warnf("retry: %v", errorDetails)
|
||||
|
||||
return rt, errorDetails
|
||||
}
|
||||
}
|
||||
|
||||
return rt, nil
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user