git.kaiwu.me - haproxy.git/commit

]> git.kaiwu.me - haproxy.git/commit

projects / haproxy.git / commit

summary | shortlog | log | commit | commitdiff | tree
(parent: 5fe0579) | patch

author	William Lallemand <wlallemand@haproxy.com>
	Wed, 15 Apr 2026 13:46:26 +0000 (15:46 +0200)
committer	William Lallemand <wlallemand@haproxy.com>
	Wed, 15 Apr 2026 13:57:57 +0000 (15:57 +0200)
commit	c295a5c86155238b8c210c91579a2acaff9381b5
tree	2b2cfb5723318bb05145a603247d24b304d4eec3	tree \| snapshot
parent	5fe0579d499f8d92004877abf84d5c15c226c536	commit \| diff

MINOR: acme: opportunistic DNS check for dns-persist-01 to skip challenge-ready steps

For dns-persist-01, the "_validation-persist.<domain>" TXT record is set once
and never changes between renewals. Add an initial opportunistic DNS check
(ACME_INITIAL_RSLV_TRIGGER / ACME_INITIAL_RSLV_READY states) that runs before
the challenge-ready conditions are evaluated. If all domains already have the
TXT record, the challenge is submitted immediately without going through the
cli/delay/dns challenge-ready steps, making renewals faster once the record is
in place.

The new ACME_RDY_INITIAL_DNS flag is automatically set for
dns-persist-01 in cond_ready.

doc/configuration.txt		diff \| blob \| history
include/haproxy/acme-t.h		diff \| blob \| history
src/acme.c		diff \| blob \| history

haproxy upstream