adds explicit rate-limit handling to :acme

2024-12-13 16:03:36 +03:00 · 2019-01-17 00:41:22 -05:00 · 2019-01-17 00:41:22 -05:00 · 44cb7d0dcf
commit 44cb7d0dcf
parent 1bd128348e
1 changed files with 69 additions and 0 deletions
--- a/app/acme.hoon
+++ b/app/acme.hoon
@ -426,6 +426,68 @@
  =/  jon=(unit json)  (de-json:html q.u.r.rep)
  ?~  jon  |
  =('urn:ietf:params:acme:error:badNonce' type:(error:grab u.jon))
+::  +rate-limited: handle Acme service rate-limits
+::
++  rate-limited
+  |=  [try=@ud act=@tas spur=wire bod=(unit octs)]
+  ^+  this
+  =/  jon=(unit json)
+    ?~(bod ~ (de-json:html q.u.bod))
+  ?~  jon
+    ::  no details, back way off
+    ::  XX specifically based on wire
+    ::
+    (retry:effect try act spur (min ~d1 (backoff (add 10 try))))
+  =/  err  (error:grab u.jon)
+  ?.  =('params:acme:error:rateLimited' type.err)
+    ::  incorrect 429 status? backoff normally
+    ::
+    (retry:effect try act spur (min ~h1 (backoff try)))
+
+  =/  detail  (trip detail.err)
+  ::  too many certificates for these domains
+  ::
+  ?:  ?=(^ (find "already issued for exact" detail))
+    =.  ..this  (retry:effect try act spur ~d7)
+    =/  msg=cord
+      %+  rap  3
+      :~  'rate limit exceeded: '
+          ' too many certificates issued for '
+          ?~  rod
+            ::  XX shouldn't happen
+            ::
+            (join '.' /network/arvo/(crip +:(scow %p our.bow)))
+          (join ', ' (turn ~(tap in dom.u.rod) |=(a=turf (join '.' a))))
+          '. retrying in ~d7.'
+      ==
+    (emit (notify msg ~))
+  ::  too many certificates for top-level-domain
+  ::
+  ?:  ?=(^ (find "too many certificates already" detail))
+    =.  ..this  (retry:effect try act spur ~d7)
+    =/  lul=@dr
+      (add ~d7 (mul ~m1 (~(rad og eny.bow) (bex 10))))
+    =/  msg=cord
+      %+  rap  3
+      :~  'rate limit exceeded: '
+          ' too many certificates issued for '
+          ::  XX get from detail
+          ::
+          (join '.' /network/arvo)
+          '. retrying in '
+          (scot %dr lul)  '.'
+      ==
+    (emit (notify msg ~))
+  ::  XX match more rate-limit conditions
+  ::  or backoff by wire
+  ::
+  ::    - "too many registrations for this IP"
+  ::    - "too many registrations for this IP range"
+  ::    - "too many currently pending authorizations"
+  ::    - "too many failed authorizations recently"
+  ::    - "too many new orders recently"
+  ::
+  (retry:effect try act spur (min ~d1 (backoff (add 10 try))))
 ::  +failure-message: generic http failure message
 ::
 ++  failure-message
@ -1086,6 +1148,9 @@
  (retry:event t.wire)
 ::  +sigh-recoverable-error: handle http rate-limit response
 ::
+::    XX we won't receive this unless we request a
+::    mark conversion and it fails
+::
 ++  sigh-recoverable-error
  |=  [=wire %429 %rate-limit lim=(unit @da)]
  ^-  (quip move _this)
@ -1109,6 +1174,10 @@
  =*  ven  ~(. event try)
  =*  act  i.t.t.t.wire
  =*  spur  t.t.t.t.wire
+  ::  backoff if rate-limited
+  ::
+  ?:  =(429 p.rep)
+    (rate-limited try act spur r.rep)
  ::  request nonce if expired-invalid
  ::
  ?:  (bad-nonce rep)