Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

let's encrypt checks expiration date of first name only? #3669

Closed
jhhbe opened this issue Jun 27, 2024 · 1 comment
Closed

let's encrypt checks expiration date of first name only? #3669

jhhbe opened this issue Jun 27, 2024 · 1 comment
Labels
stale

Comments

@jhhbe
Copy link

jhhbe commented Jun 27, 2024
edited
Loading

Describe the issue you are experiencing

I'm getting mails of let's encrypt on expiring certificates, the add-on runs every day but I get:

[08:00:07] INFO: Existing certificate using 'ecdsa' key type.
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Certificate not yet due for renewal

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Certificate not yet due for renewal; no action taken.

when I change the configuration and I put one of the expiring names first in the list then I get:

[13:02:38] INFO: Detecting existing certificate type for _my.host_.duckdns.org
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Requesting a certificate for _my.host_.duckdns.org and 11 more domains

Successfully received certificate.
Certificate is saved at: /data/letsencrypt/live/

So, it seems it is only checking for expiration of the first one in the list. Workaround is easy: change order in configuration, does not happen too often probably only when I add a new host at position 1 in the list.

What type of installation are you running?

Home Assistant OS

Which operating system are you running on?

Home Assistant Operating System

Which add-on are you reporting an issue with?

Let's Encrypt

What is the version of the add-on?

Current version: 5.0.22

Steps to reproduce the issue

if you add a new host at item 1 the addon will request a new certificate
however, not all get the same expiration date I believe
then I think it only checks the first one to renew
so if older are lower in the list they may expire while no renewal is requested

System Health information

clean

Anything in the Supervisor logs that might be useful for us?

n/a

Anything in the add-on logs that might be useful for us?

No response

Additional information

No response
@github-actions GitHub Actions
Copy link

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

@github-actions github-actions bot added the stale label Jul 29, 2024
@github-actions github-actions bot closed this as not planned Won't fix, can't repro, duplicate, stale Aug 5, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
stale
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jhhbe