make MaintainCertDB able to cancel

2024-11-18 10:29:43 +00:00 · 2021-12-05 18:26:54 +01:00 · 2021-12-05 18:26:54 +01:00 · a0534f1fde
commit a0534f1fde
parent 26a199053b
2 changed files with 13 additions and 4 deletions
--- a/cmd/main.go
+++ b/cmd/main.go
@ -2,11 +2,13 @@ package cmd
 import (
 	"bytes"
 	"context"
 	"crypto/tls"
 	"errors"
 	"fmt"
 	"net"
 	"strings"
 	"time"
 	"github.com/rs/zerolog/log"
 	"github.com/urfave/cli/v2"
@ -109,8 +111,10 @@ func Serve(ctx *cli.Context) error {
 	certificates.SetupCertificates(mainDomainSuffix, dnsProvider, acmeConfig, acmeUseRateLimits, enableHTTPServer, challengeCache, keyDatabase)
-	// TODO: make it graceful
+	interval := 12 * time.Hour
-	go certificates.MaintainCertDB(mainDomainSuffix, dnsProvider, acmeUseRateLimits, keyDatabase)
+	certMaintainCtx, cancelCertMaintain := context.WithCancel(context.Background())
 	defer cancelCertMaintain()
 	go certificates.MaintainCertDB(certMaintainCtx, interval, mainDomainSuffix, dnsProvider, acmeUseRateLimits, keyDatabase)
 	if enableHTTPServer {
 		go func() {
--- a/server/certificates/certificates.go
+++ b/server/certificates/certificates.go
@ -2,6 +2,7 @@ package certificates
 import (
 	"bytes"
 	"context"
 	"crypto/ecdsa"
 	"crypto/elliptic"
 	"crypto/rand"
@ -446,7 +447,7 @@ func SetupCertificates(mainDomainSuffix []byte, dnsProvider string, acmeConfig *
 	}
 }
-func MaintainCertDB(mainDomainSuffix []byte, dnsProvider string, acmeUseRateLimits bool, keyDatabase database.CertDB) {
+func MaintainCertDB(ctx context.Context, interval time.Duration, mainDomainSuffix []byte, dnsProvider string, acmeUseRateLimits bool, keyDatabase database.CertDB) {
 	for {
 		// clean up expired certs
 		now := time.Now()
@ -503,6 +504,10 @@ func MaintainCertDB(mainDomainSuffix []byte, dnsProvider string, acmeUseRateLimi
 			}
 		}
-		time.Sleep(12 * time.Hour)
+		select {
 		case <-ctx.Done():
 			return
 		case <-time.After(interval):
 		}
 	}
 }