From b32472367e83342c6dda82aafc0fbc1dcc55bcae Mon Sep 17 00:00:00 2001
From: Fernandez Ludovic <lfernandez.dev@gmail.com>
Date: Wed, 3 Jun 2020 22:52:29 +0200
Subject: [PATCH 1/2] feat: retry on DNS queries.

---
 challenge/dns01/nameserver.go | 34 ++++++++++++++++++++++++++++++----
 1 file changed, 30 insertions(+), 4 deletions(-)

diff --git a/challenge/dns01/nameserver.go b/challenge/dns01/nameserver.go
index c1682b4d0d..4882902087 100644
--- a/challenge/dns01/nameserver.go
+++ b/challenge/dns01/nameserver.go
@@ -8,6 +8,8 @@ import (
 	"sync"
 	"time"
 
+	"github.com/cenkalti/backoff/v4"
+	"github.com/go-acme/lego/v3/log"
 	"github.com/miekg/dns"
 )
 
@@ -229,15 +231,39 @@ func dnsQuery(fqdn string, rtype uint16, nameservers []string, recursive bool) (
 	m := createDNSMsg(fqdn, rtype, recursive)
 
 	var in *dns.Msg
-	var err error
+	var errG error
 
 	for _, ns := range nameservers {
-		in, err = sendDNSQuery(m, ns)
-		if err == nil && len(in.Answer) > 0 {
+		bo := backoff.NewExponentialBackOff()
+		bo.Multiplier = 1.2
+		bo.InitialInterval = dnsTimeout
+		bo.MaxInterval = 2 * bo.InitialInterval
+		bo.MaxElapsedTime = 4 * bo.InitialInterval
+
+		operation := func() error {
+			var err error
+			in, err = sendDNSQuery(m, ns)
+
+			// errors from miekg/dns package and some errors from the net package must stop the retry.
+			var e *dns.Error
+			if err != nil &&
+				(strings.Contains(err.Error(), "connection refused") || errors.As(err, &e)) {
+				return backoff.Permanent(err)
+			}
+
+			return err
+		}
+
+		notify := func(err error, d time.Duration) {
+			log.Infof("dnsQuery retry %v: fqdn=%s, ns=%s: %v", d, fqdn, ns, err)
+		}
+
+		errG = backoff.RetryNotify(operation, bo, notify)
+		if errG == nil && len(in.Answer) > 0 {
 			break
 		}
 	}
-	return in, err
+	return in, errG
 }
 
 func createDNSMsg(fqdn string, rtype uint16, recursive bool) *dns.Msg {

From d7b43368cc0db779ef9d5a4b67abc98280b99e71 Mon Sep 17 00:00:00 2001
From: Fernandez Ludovic <lfernandez.dev@gmail.com>
Date: Tue, 9 Jun 2020 14:25:04 +0200
Subject: [PATCH 2/2] review: rename errG.

---
 challenge/dns01/nameserver.go | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/challenge/dns01/nameserver.go b/challenge/dns01/nameserver.go
index 4882902087..72c15b9c0b 100644
--- a/challenge/dns01/nameserver.go
+++ b/challenge/dns01/nameserver.go
@@ -231,7 +231,7 @@ func dnsQuery(fqdn string, rtype uint16, nameservers []string, recursive bool) (
 	m := createDNSMsg(fqdn, rtype, recursive)
 
 	var in *dns.Msg
-	var errG error
+	var lastErr error
 
 	for _, ns := range nameservers {
 		bo := backoff.NewExponentialBackOff()
@@ -258,12 +258,12 @@ func dnsQuery(fqdn string, rtype uint16, nameservers []string, recursive bool) (
 			log.Infof("dnsQuery retry %v: fqdn=%s, ns=%s: %v", d, fqdn, ns, err)
 		}
 
-		errG = backoff.RetryNotify(operation, bo, notify)
-		if errG == nil && len(in.Answer) > 0 {
+		lastErr = backoff.RetryNotify(operation, bo, notify)
+		if lastErr == nil && len(in.Answer) > 0 {
 			break
 		}
 	}
-	return in, errG
+	return in, lastErr
 }
 
 func createDNSMsg(fqdn string, rtype uint16, recursive bool) *dns.Msg {