acme/autocert: include rejected hostname in TLS handshake error when host not configured More informative error message enables HTTPS server configuration mistakes to be corrected quickly, since log files will now include the rejected hostname. If the hostname should be accepted, it can be added to the HostWhitelist Policy. Fixes golang/go#28345 Change-Id: I801c82f0d3b19bc34592c9cd0bce77f1b284d19d GitHub-Last-Rev: 5dfe731d732d693f9bdd79c8a74efd30a2f56d0b GitHub-Pull-Request: golang/crypto#63 Reviewed-on: https://go-review.googlesource.com/c/144337 Run-TryBot: Brad Fitzpatrick <bradfitz@golang.org> TryBot-Result: Gobot Gobot <gobot@golang.org> Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>

commit: 74cb1d3d52f4c01cbfb44c1b50d204462f3124c7 [log] [tgz]
author: David Jones <dxjones@gmail.com> Wed Oct 24 15:56:48 2018 +0000
committer: Brad Fitzpatrick <bradfitz@golang.org> Wed Oct 24 17:11:44 2018 +0000
tree: 1b9c9c78b80cab137b1881845cf2624830090e13
parent: 0c41d7ab0a0ee717d4590a44bcb987dfd9e183eb [diff]
diff --git a/acme/autocert/autocert.go b/acme/autocert/autocert.go
index 4c2fc07..a50d9bf 100644
--- a/acme/autocert/autocert.go
+++ b/acme/autocert/autocert.go

@@ -69,7 +69,7 @@
 	}
 	return func(_ context.Context, host string) error {
 		if !whitelist[host] {
-			return errors.New("acme/autocert: host not configured")
+			return fmt.Errorf("acme/autocert: host %q not configured in HostWhitelist", host)
 		}
 		return nil
 	}
commit	74cb1d3d52f4c01cbfb44c1b50d204462f3124c7	[log] [tgz]
author	David Jones <dxjones@gmail.com>	Wed Oct 24 15:56:48 2018 +0000
committer	Brad Fitzpatrick <bradfitz@golang.org>	Wed Oct 24 17:11:44 2018 +0000
tree	1b9c9c78b80cab137b1881845cf2624830090e13
parent	0c41d7ab0a0ee717d4590a44bcb987dfd9e183eb [diff]