Difference between serverInternal errors?

jdavid1 · May 31, 2024, 6:39pm

What's the difference between urn:acme:error:serverInternal and urn:ietf:params:acme:error:serverInternal?

(Other than "ietf:params:" and that the latter is mentioned in RFC 8555 while the former is not.)

mcpherrinm · May 31, 2024, 7:05pm

You've actually just found a bug in our configuration!

      V1ErrorNS = "urn:acme:error:"
      V2ErrorNS = "urn:ietf:params:acme:error:

In the pre-RFC-8555-standardized ACME, the error namespace was urn:acme:error. It should be urn:ietf:params:acme:error: everywhere now.

However, our front-end load balancer rejects requests during outages (see ongoing incident https://letsencrypt.status.io/) with the V1 error.

We'll update that error message to use the correct RFC-standard error.

jdavid1 · May 31, 2024, 7:16pm

Thank you very much! I'll set our system to treat these as the same for now.

mcpherrinm · May 31, 2024, 7:36pm

You'd normally never see this, but during the incident our load balancers and CDN configs got out of sync, so the CDN was directing traffic to "down" load balancers which have a static failure handler page which wasn't updated with the RFC error code

system · June 30, 2024, 7:37pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Error: urn:ietf:params:acme:error:serverInternal :: The server experienced an internal error :: Error retrieving account Help	3	5137	August 31, 2020
Consistent serverInternal errors on new-cert on my account Help	5	1163	July 13, 2017
Consistent 500 urn:acme:error:serverInternal: Error creating new cert Help	2	920	December 3, 2017
urn:ietf:params:acme:error:rateLimited Help	2	1098	April 2, 2022
List of Error Codes Client dev	3	2491	September 9, 2017

Difference between serverInternal errors?

Related topics