speedup acme.sh

hiddify · Jan 10, 2024 · 521ee97 · 521ee97
1 parent 4f4099f
commit 521ee97
Show file tree

Hide file tree

Showing 3 changed files with 17 additions and 9 deletions.
diff --git a/acme.sh/cert_utils.sh b/acme.sh/cert_utils.sh
@@ -1,5 +1,11 @@
 restricted_tlds=("af" "by" "cu" "er" "gn" "ir" "kp" "lr" "ru" "ss" "su" "sy" "zw" "amazonaws.com","azurewebsites.net","cloudapp.net")
 
+acme_sh(){
+./lib/acme.sh \
+        --config-home /opt/hiddify-manager/acme.sh/lib/data \
+        --cert-home /opt/hiddify-manager/acme.sh/lib/certs \
+        $@
+}
 # Function to check if a domain is restricted
 is_ok_domain_zerossl() {
     domain="$1"
@@ -12,8 +18,9 @@ is_ok_domain_zerossl() {
 }
 function get_cert() {
     cd /opt/hiddify-manager/acme.sh
-    source ./lib/acme.sh.env
-    ./lib/acme.sh --register-account -m my@example.com
+    # source ./lib/acme.sh.env
+    # ./lib/acme.sh --register-account -m my@example.com
+
     DOMAIN=$1
     ssl_cert_path=../ssl
     rm -f $ssl_cert_path/$DOMAIN.key
@@ -36,11 +43,11 @@ function get_cert() {
         fi
 
         if is_ok_domain_zerossl "$DOMAIN"; then
-            ./lib/acme.sh --issue -w /opt/hiddify-manager/acme.sh/www/ -d $DOMAIN --log $(pwd)/../log/system/acme.log --pre-hook "systemctl restart hiddify-nginx"
+            acme_sh --issue -w /opt/hiddify-manager/acme.sh/www/ -d $DOMAIN --log $(pwd)/../log/system/acme.log --pre-hook "systemctl restart hiddify-nginx"
         fi
-        ./lib/acme.sh --issue -w /opt/hiddify-manager/acme.sh/www/ -d $DOMAIN --log $(pwd)/../log/system/acme.log --server letsencrypt --pre-hook "systemctl restart hiddify-nginx"
+        acme_sh --issue -w /opt/hiddify-manager/acme.sh/www/ -d $DOMAIN --log $(pwd)/../log/system/acme.log --server letsencrypt --pre-hook "systemctl restart hiddify-nginx"
 
-        ./lib/acme.sh --installcert -d $DOMAIN \
+        acme_sh --installcert -d $DOMAIN \
             --fullchainpath $ssl_cert_path/$DOMAIN.crt \
             --keypath $ssl_cert_path/$DOMAIN.crt.key \
             --reloadcmd "echo success"

diff --git a/acme.sh/get_cert.sh b/acme.sh/get_cert.sh
@@ -1,5 +1,5 @@
 #!/bin/bash
 cd $(dirname -- "$0")
 source cert_utils.sh
-./lib/acme.sh --register-account -m my@example.com
+#./lib/acme.sh --register-account -m my@example.com
 get_cert $1
diff --git a/acme.sh/install.sh b/acme.sh/install.sh
@@ -1,16 +1,17 @@
 source ../common/utils.sh
 install_package socat
 remove_package certbot
-
+source ./cert_utils.sh
 mkdir -p /opt/hiddify-manager/acme.sh/lib/
 if ! is_installed ./lib/acme.sh; then
     curl -L https://get.acme.sh | sh -s -- home /opt/hiddify-manager/acme.sh/lib \
         --config-home /opt/hiddify-manager/acme.sh/lib/data \
-        --cert-home /opt/hiddify-manager/acme.sh/lib/certs
+        --cert-home /opt/hiddify-manager/acme.sh/lib/certs --nocron
 
     sed -i 's|_sleep_overload_retry_sec=$_retryafter|_sleep_overload_retry_sec=$_retryafter; if [[ "$_retryafter" > 20 ]];then return 10; fi|g' lib/acme.sh
-    ./lib/acme.sh --uninstall-cronjob
 fi
+
 mkdir -p ../ssl/
 ./lib/acme.sh --uninstall-cronjob
+acme_sh --register-account -m my@example.com
 systemctl reload hiddify-haproxy