Project

General

Profile

Actions

Bug #15061

open

acme.sh nsupdate with challengealias is failing in certain cases

Added by Seyfidin Hamraoui 12 months ago. Updated 6 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
ACME
Target version:
-
Start date:
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Affected Version:
2.7.0
Affected Plus Version:
23.09
Affected Architecture:

Description

When using nsupdate with challengealias the wrong filename is used, therefore the script fails.

[Mon Dec  4 03:48:50 CET 2023] Using CA: https://acme-staging-v02.api.letsencrypt.org/directory
[Mon Dec  4 03:48:50 CET 2023] Using pre generated key: /tmp/acme/domain/domain.de/domain.de.key.next
[Mon Dec  4 03:48:50 CET 2023] Generate next pre-generate key.
[Mon Dec  4 03:48:51 CET 2023] Single domain='domain.de'
[Mon Dec  4 03:48:51 CET 2023] Getting domain auth token for each domain
[Mon Dec  4 03:48:54 CET 2023] Getting webroot for domain='domain.de'
[Mon Dec  4 03:48:54 CET 2023] Adding txt value: gVr0HUKsGuBvrO7Iz-Ks-hfVuo0YAU0qBilM1cj6fW8 for domain:  dns.domain.de
[Mon Dec  4 03:48:54 CET 2023] key /tmp/acme/DOMAIN/domain.densupdatedns.domain.de.key is unreadable
[Mon Dec  4 03:48:54 CET 2023] Error add txt for domain:dns.domain.de
[Mon Dec  4 03:48:54 CET 2023] Please check log file for more details: /tmp/acme/DOMAIN/acme_issuecert.log

Expected correct filename => /tmp/acme/DOMAIN/domain.densupdatedns.domain.de.key
Actual wrong filename => /tmp/acme/DOMAIN/domain.densupdate_acme-challenge.dns.domain.de.key

https://github.com/pfsense/FreeBSD-ports/pull/1330

Actions

Also available in: Atom PDF