/
checkDns.go
33 lines (28 loc) · 1011 Bytes
/
checkDns.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
package acme
import (
"log"
"time"
"github.com/xenolf/lego/acme"
)
var acmePreCheck = acme.PreCheckDNS
func (c *certManager) preCheckDNS(fqdn, value string) (bool, error) {
// default record verification in the client library makes sure the authoritative nameservers
// have the expected records.
// Sometimes the Let's Encrypt verification fails anyway because records have not propagated the provider's network fully.
// So we add an additional 20 second sleep just for safety.
v, err := acmePreCheck(fqdn, value)
if err != nil {
return v, err
}
if !c.waitedOnce {
log.Printf("DNS ok. Waiting another 20s to ensure stability.")
time.Sleep(20 * time.Second)
c.waitedOnce = true
}
log.Printf("DNS records seem to exist. Proceeding to request validation")
return v, err
}
// Timeout increases the client-side polling check time to five minutes with one second waits in-between.
func (c *certManager) Timeout() (timeout, interval time.Duration) {
return 5 * time.Minute, time.Second
}