starred/dehydrated
1
0
Fork 0
mirror of https://github.com/dehydrated-io/dehydrated.git synced 2026-03-03 14:40:00 +01:00
Code Issues 79 Packages Projects Releases 10 Wiki Activity

dns-01 hook no longer working in 0.5.0 #271

New Issue
Closed
opened 2025-12-29 01:20:45 +01:00 by adam · 1 comment
adam commented 2025-12-29 01:20:45 +01:00
Owner
Copy Link

Originally created by @tleuxner on GitHub (Jan 23, 2018).

Domain.txt gets parsed after updating from 0.4.0 using the http-01 method:

dehydrated -c -t http-01

# INFO: Using main config file /etc/dehydrated/config
Processing host.domain.tld
 + Checking domain name(s) of existing cert... unchanged.
 + Checking expire date of existing cert...
 + Valid till Mar 13 06:03:22 2018 GMT Certificate will not expire
(Longer than 30 days). Skipping renew!
[...]

I was using dns-01 verification however which worked fine before and fails right away:

dehydrated -c -t dns-01 -k dns-01_challenge_hook.sh

# INFO: Using main config file /etc/dehydrated/config
 ERROR: No nsupdate key file for zone  found. Can't publish challenge without.

Debug output:

++ openssl dgst -sha256 -binary
++ urlbase64
++ openssl base64 -e
++ tr -d '\n\r'
++ _sed -e 's:=*$::g' -e y:+/:-_:
++ [[ Linux = \L\i\n\u\x ]]
++ sed -r -e 's:=*$::g' -e y:+/:-_:
+ thumbprint=BjANAuQpC_z2j0Soeh_Z3ieHqSXMc5dChwFY3IV5Sak
+ [[ no = \y\e\s ]]
+ [[ sign_domains = \r\e\g\i\s\t\e\r ]]
+ [[ -n dns-01_challenge_hook.sh ]]
+ dns-01_challenge_hook.sh startup_hook
 ERROR: No nsupdate key file for zone  found. Can't publish challenge without.
+ remove_lock
+ rm -f /etc/dehydrated/lock
Originally created by @tleuxner on GitHub (Jan 23, 2018). Domain.txt gets parsed after updating from 0.4.0 using the http-01 method: **dehydrated -c -t http-01** ``` # INFO: Using main config file /etc/dehydrated/config Processing host.domain.tld + Checking domain name(s) of existing cert... unchanged. + Checking expire date of existing cert... + Valid till Mar 13 06:03:22 2018 GMT Certificate will not expire (Longer than 30 days). Skipping renew! [...] ``` I was using dns-01 verification however which worked fine before and fails right away: **dehydrated -c -t dns-01 -k dns-01_challenge_hook.sh** ``` # INFO: Using main config file /etc/dehydrated/config ERROR: No nsupdate key file for zone found. Can't publish challenge without. ``` **Debug output:** ``` ++ openssl dgst -sha256 -binary ++ urlbase64 ++ openssl base64 -e ++ tr -d '\n\r' ++ _sed -e 's:=*$::g' -e y:+/:-_: ++ [[ Linux = \L\i\n\u\x ]] ++ sed -r -e 's:=*$::g' -e y:+/:-_: + thumbprint=BjANAuQpC_z2j0Soeh_Z3ieHqSXMc5dChwFY3IV5Sak + [[ no = \y\e\s ]] + [[ sign_domains = \r\e\g\i\s\t\e\r ]] + [[ -n dns-01_challenge_hook.sh ]] + dns-01_challenge_hook.sh startup_hook ERROR: No nsupdate key file for zone found. Can't publish challenge without. + remove_lock + rm -f /etc/dehydrated/lock ```
adam closed this issue 2025-12-29 01:20:46 +01:00
adam commented 2025-12-29 01:20:46 +01:00
Author
Owner
Copy Link

@lukas2511 commented on GitHub (Jan 23, 2018):

Your hook-script is outdated. It fails when dehydrated calls the startup_hook, if your script doesn't implement that hook it should just ignore it.

@lukas2511 commented on GitHub (Jan 23, 2018): Your hook-script is outdated. It fails when dehydrated calls the `startup_hook`, if your script doesn't implement that hook it should just ignore it.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Complicated
bug
enhancement
help wanted
pull-request
Mirrored from GitHub Pull Request
 suggestions wanted
testing
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
adam
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/dehydrated#271
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?