starred/dehydrated
1
0
Fork 0
mirror of https://github.com/dehydrated-io/dehydrated.git synced 2026-06-02 12:00:40 +02:00
Code Issues 79 Packages Projects Releases 10 Wiki Activity

Feature proposal: Intermediate certificates cache #193

New Issue
Closed
opened 2025-12-29 01:18:39 +01:00 by adam · 1 comment
adam commented 2025-12-29 01:18:39 +01:00
Owner
Copy Link
Copy Source

Originally created by @rpv-tomsk on GitHub (Feb 7, 2017).

The walk_chain() requests certificates from remote server each time.
It can use local certificate copy instead.

Algo:

  1. Get certificate issuer hash

ISSUER_HASH="$($OPENSSL x509 -in "${CERT}" -noout -issuer_hash)"

  1. Check if we already have its local copy in cache

  2. If have, use it, if no - download and store to cache (filename is formed as ${ISSUER_HASH}.crt).

The similar is implemented in https://github.com/matteocorti/check_ssl_cert/commit/cf368d3b71dc787c8449aae90d177efdc6d042a9

Although that is much more important there in monitoring (it requested much more often than in renewal process).

What do you think about this feature?

Thanks for your tool.

Originally created by @rpv-tomsk on GitHub (Feb 7, 2017). The walk_chain() requests certificates from remote server each time. It can use local certificate copy instead. Algo: 1) Get certificate issuer hash `ISSUER_HASH="$($OPENSSL x509 -in "${CERT}" -noout -issuer_hash)"` 2) Check if we already have its local copy in cache 3) If have, use it, if no - download and store to cache (filename is formed as `${ISSUER_HASH}.crt`). The similar is implemented in https://github.com/matteocorti/check_ssl_cert/commit/cf368d3b71dc787c8449aae90d177efdc6d042a9 Although that is much more important there in monitoring (it requested much more often than in renewal process). What do you think about this feature? Thanks for your tool.
adam closed this issue 2025-12-29 01:18:40 +01:00
adam commented 2025-12-29 01:18:40 +01:00
Author
Owner
Copy Link
Copy Source

@lukas2511 commented on GitHub (Jul 10, 2017):

Implemented in d685463673, thanks for the suggestion.

@lukas2511 commented on GitHub (Jul 10, 2017): Implemented in d685463673919ba4f9d2035d021293f241a66055, thanks for the suggestion.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Complicated
bug
enhancement
help wanted
pull-request
Mirrored from GitHub Pull Request
 suggestions wanted
testing
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
adam (Adam Melkus)
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/dehydrated#193
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?