Issue Registering Domain > 500 Error @ https://icp0.io/registrations

Hazel · March 19, 2023, 5:01pm

(base) hazel@Hazels-MBP-2 src % curl -sLv -X POST \
    -H 'Content-Type: application/json' \
    https://icp0.io/registrations \
    --data @- <<EOF
{
    "name": "app.unid.ooo"
}
EOF
*   Trying 139.178.83.182:443...
* Connected to icp0.io (139.178.83.182) port 443 (#0)
* ALPN: offers h2
* ALPN: offers http/1.1
*  CAfile: /Users/hazel/opt/anaconda3/ssl/cacert.pem
*  CApath: none
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN: server accepted h2
* Server certificate:
*  subject: CN=boundary.dfinity.network
*  start date: Feb 16 19:26:59 2023 GMT
*  expire date: May 17 19:26:58 2023 GMT
*  subjectAltName: host "icp0.io" matched cert's "icp0.io"
*  issuer: C=US; O=Let's Encrypt; CN=R3
*  SSL certificate verify ok.
* Using HTTP2, server supports multiplexing
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* h2h3 [:method: POST]
* h2h3 [:path: /registrations]
* h2h3 [:scheme: https]
* h2h3 [:authority: icp0.io]
* h2h3 [user-agent: curl/7.84.0]
* h2h3 [accept: */*]
* h2h3 [content-type: application/json]
* h2h3 [content-length: 28]
* Using Stream ID: 1 (easy handle 0x7fcc5800da00)
> POST /registrations HTTP/2
> Host: icp0.io
> user-agent: curl/7.84.0
> accept: */*
> content-type: application/json
> content-length: 28
> 
* We are completely uploaded and fine
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* old SSL session ID is stale, removing
* Connection state changed (MAX_CONCURRENT_STREAMS == 256)!
< HTTP/2 500 
< server: nginx/1.21.3
< date: Sun, 19 Mar 2023 16:50:35 GMT
< content-length: 16
< access-control-allow-origin: *
< access-control-allow-methods: HEAD, POST
< access-control-allow-credentials: true
< access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
< access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
< access-control-max-age: 600
< 
* TLSv1.3 (IN), TLS alert, close notify (256):
* Closing connection 0
* TLSv1.3 (OUT), TLS alert, close notify (256):
unexpected error

(base) hazel@Hazels-MBP-2 src % dig TXT _canister-id.app.unid.ooo 

; <<>> DiG 9.10.6 <<>> TXT _canister-id.app.unid.ooo
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 19452
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;_canister-id.app.unid.ooo.	IN	TXT

;; ANSWER SECTION:
_canister-id.app.unid.ooo. 60	IN	TXT	"2ddhz-5aaaa-aaaam-abf4a-cai"

;; Query time: 84 msec
;; SERVER: 192.168.0.1#53(192.168.0.1)
;; WHEN: Sun Mar 19 13:02:59 EDT 2023
;; MSG SIZE  rcvd: 94

(base) hazel@Hazels-MBP-2 src % dig TXT _acme-challenge.app.unid.ooo

; <<>> DiG 9.10.6 <<>> TXT _acme-challenge.app.unid.ooo
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52651
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;_acme-challenge.app.unid.ooo.	IN	TXT

;; ANSWER SECTION:
_acme-challenge.app.unid.ooo. 60 IN	CNAME	_acme-challenge.app.unid.ooo.icp2.io.

;; AUTHORITY SECTION:
icp2.io.		1060	IN	SOA	clay.ns.cloudflare.com. dns.cloudflare.com. 2304582871 10000 2400 604800 3600

;; Query time: 65 msec
;; SERVER: 192.168.0.1#53(192.168.0.1)
;; WHEN: Sun Mar 19 13:03:40 EDT 2023
;; MSG SIZE  rcvd: 169

2ddhz-5aaaa-aaaam-abf4a-cai.icp0.io/.well-known/ic-domains

diegop · March 20, 2023, 12:24am

Let me pass it to folks

raymondk · March 20, 2023, 12:41am

Hi @Hazel - your setup is perfectly fine. The issue is on our side and we will have it fixed but EOD tomorrow.

To make a long story short, we’re upgrading canister that orchestrates and stores the custom domain registrations and there is a bug that is preventing new registrations from going through. (The upgrades are required to future proof the custom domains canister - eg paginating results and things of the sort)

We’ll kick off the registration for you as soon as the update is rolled out. Apologies for the inconvenience.

-Raymond

Updated to mention that domains that are already hosted are not affected, however certificates are valid for 3 months and get renewed regularly. When the canister is upgraded there will be the equivalent of a renewal and (like for regular renewals) the setup must be correct as specified in Internet Computer Content Validation Bootstrap

Hazel · March 20, 2023, 1:12pm

Thank you! So, if I’m using the boundary nodes I do not have to take any other action aside from making sure my configurations are correct?

raymondk · March 20, 2023, 4:48pm

That’s correct - basically keeping the required configuration the same as you had it for the registration to complete.

raymondk · March 21, 2023, 12:58am

FYI @Hazel your cert is available now:

❯ curl https://icp0.io/registrations/0da6b7c85ab580841a396de26aaadf75bd0726a0d7282da865aa9b66aea9d1de
{"name":"app.unid.ooo","canister":"2ddhz-5aaaa-aaaam-abf4a-cai","state":"Available"}%

Hazel · March 21, 2023, 2:03am

Thanks @raymondk!

Unfortunately, still seeing a 404 error and a cert error.

Not sure whats up → https://app.unid.ooo

Linking to the canister directly seems fine

raymondk · March 21, 2023, 2:39am

it’s only turned on for a canary… we haven’t rolled it out everywhere.
I’m not sure exactly why we didn’t roll it out entirely to prod yet, I’ll check with the team and send an update in the morning.

If you want to see it working though you can add this entry in your /etc/hosts file (on linux or mac) that’s the ip of the canary.

162.247.129.233  app.unid.ooo

Hazel · March 21, 2023, 2:41am

Appreciate all your help here, have a great night!

raymondk · March 21, 2023, 3:00pm

The updates are rolled out @Hazel, you’re good to go (I double checked this time )

Hazel · March 21, 2023, 3:36pm

Thanks @raymondk!

This is super exciting. First domain I’ve linked up to the IC .

Topic		Replies	Views
Unexpected expected error when using curl -sLv -X POST \ for Custom Domain Command Line Tools	6	1057	June 10, 2023
HTTP ERROR 500 unable to load General	0	319	November 8, 2021
Receiving '500 Internal Error' when attempting to login to the NNS General	12	484	November 27, 2022
Internal Server Error - IC is down? Developers	15	805	October 14, 2021
Domain is missing from list of known domains: Developers	1	238	August 10, 2023

Issue Registering Domain > 500 Error @ https://icp0.io/registrations

Related Topics