Are old orders being purged from Boulder?

rmbolger · November 6, 2019, 3:22pm

Did Let’s Encrypt recently start purging old/expired orders from the database? I’m getting “No order for ID X” errors when querying the order status of orders that have expired even where the certificate associated with that order has not expired.

For example, the certificate associated with this order doesn’t expire until 2019-12-19.
https://acme-staging-v02.api.letsencrypt.org/acme/order/8473560/51170089

It’s not a huge deal and it actually uncovered a bug in my client that I need to fix. So yay. But I was just curious.

@cpu

cpu · November 6, 2019, 5:16pm

Hey @rmbolger, thanks for the question.

Did Let’s Encrypt recently start purging old/expired orders from the database?

Yup, we did. This change was part of a recent bugfix commit on our side. In retrospect it probably should have had an associated note in the API announcements category. Thanks for flagging the change in behaviour here.

For example, the certificate associated with this order doesn’t expire until 2019-12-19.

This is a good point and it might be worth thinking about returning expired orders until the lifetime of the associated certificate expires. That said, I think it will be a little bit more fiddly to implement that way and probably isn't something we will get to in the short-term unless it turns out to be a more significant pain point.

system · December 6, 2019, 5:16pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Pending Order expiration Issuance Tech	4	1984	June 29, 2019
Orders 404 No order for ID Client dev	2	1221	April 3, 2021
Need help testing potential Boulder bug condition with revocation Client dev	3	759	June 13, 2021
New Order API Lets Encrypt Help	2	348	January 24, 2024
Reteriving certificate Issuance Tech	6	619	October 14, 2023

Are old orders being purged from Boulder?

Related topics