starred/dehydrated
1
0
Fork 0
mirror of https://github.com/dehydrated-io/dehydrated.git synced 2026-01-11 22:30:44 +01:00
Code Issues 79 Packages Projects Releases 10 Wiki Activity

Support for new root chain by letsencrypt #552

New Issue
Closed
opened 2025-12-29 01:27:08 +01:00 by adam · 3 comments
adam commented 2025-12-29 01:27:08 +01:00
Owner
Copy Link

Originally created by @whizzygeeks on GitHub (Oct 2, 2021).

Update root chain with new ones specified in https://letsencrypt.org/certificates/

Originally created by @whizzygeeks on GitHub (Oct 2, 2021). Update root chain with new ones specified in https://letsencrypt.org/certificates/
adam closed this issue 2025-12-29 01:27:08 +01:00
adam commented 2025-12-29 01:27:09 +01:00
Author
Owner
Copy Link

@lukas2511 commented on GitHub (Oct 2, 2021):

Dehydrated doesn't have hardcoded chains. It uses the chain as provided by the CA. You can even select alternate chains the CA is offering using the PREFERRED_CHAIN config value or the --preferred-chain CLI option.

@lukas2511 commented on GitHub (Oct 2, 2021): Dehydrated doesn't have hardcoded chains. It uses the chain as provided by the CA. You can even select alternate chains the CA is offering using the `PREFERRED_CHAIN` config value or the `--preferred-chain` CLI option.
adam commented 2025-12-29 01:27:09 +01:00
Author
Owner
Copy Link

@grinapo commented on GitHub (Oct 3, 2021):

While you're right, Lukas, this probably should be put on the top of readme (both github and else) since it does bite almost everyone providing external certs. The full compatible chain (with expired signed X1) fails on any embedded crap (like TVs) as well as many clients using openssl 1.0.xx.
As a community service, instead of letting them find it in closed issues. :-)

Also, solution is spelled out in #842 .

@grinapo commented on GitHub (Oct 3, 2021): While you're right, Lukas, this probably should be put on the top of readme (both github and else) since it **does bite almost everyone** providing external certs. The full compatible chain (with expired signed X1) fails on any embedded crap (like TVs) as well as _many_ clients using openssl 1.0.xx. As a community service, instead of letting them find it in closed issues. :-) Also, solution is spelled out in #842 .
adam commented 2025-12-29 01:27:10 +01:00
Author
Owner
Copy Link

@whizzygeeks commented on GitHub (Nov 19, 2021):

Dehydrated doesn't have hardcoded chains. It uses the chain as provided by the CA. You can even select alternate chains the CA is offering using the PREFERRED_CHAIN config value or the --preferred-chain CLI option.

Thanks , readme is not very clear with this

@whizzygeeks commented on GitHub (Nov 19, 2021): > > > Dehydrated doesn't have hardcoded chains. It uses the chain as provided by the CA. You can even select alternate chains the CA is offering using the `PREFERRED_CHAIN` config value or the `--preferred-chain` CLI option. Thanks , readme is not very clear with this
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Complicated
bug
enhancement
help wanted
pull-request
Mirrored from GitHub Pull Request
 suggestions wanted
testing
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
adam
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/dehydrated#552
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?