| 12 Apr 2022 |
 hexa | well, here I am and I can acknowledge that I dug myself into a hole by having a single certificate per host, where I crammed all required names into extraDomains like a moron | 00:29:38 |
| hexa | because I was too lazy to repeat the dns provider config | 00:30:04 |
| hexa | and of course now there is security.acme.defaults, the bad boy that is helping me out big time | 00:30:27 |
| hexa | kudos! | 00:30:29 |
| hexa | biggest cert has 11 SAN entries | 00:31:00 |
| hexa | very flaky to renew, because validation sometimes goes wrong | 00:31:12 |
| hexa | and trying 11 validations in one, boy. | 00:31:20 |
| 19 Apr 2022 |
|  anthr76 joined the room. | 18:20:01 |
| 20 Apr 2022 |
|  ahmed joined the room. | 18:59:58 |
| 21 Apr 2022 |
|  An exploring bot joined the room. | 00:50:01 |
| An exploring bot left the room. | 00:50:02 |
| 23 Apr 2022 |
 m1cr0man | In reply to @hexa:lossy.network
and of course now there is security.acme.defaults, the bad boy that is helping me out big time :D This has really been a great value add feature. It's nice to see it getting a lot of use. | 16:46:02 |
| 27 Apr 2022 |
| anthr76 changed their profile picture. | 22:13:45 |
| 28 Apr 2022 |
|  uny joined the room. | 23:41:44 |
| 4 May 2022 |
| An exploring bot joined the room. | 15:02:46 |
| An exploring bot left the room. | 15:02:47 |
| 18 May 2022 |
|  Jhu joined the room. | 06:47:29 |
| 20 May 2022 |
|  Rosario Pulella left the room. | 07:18:06 |
|  Jeff joined the room. | 18:18:27 |
| 27 May 2022 |
| hexa | I'm seeing a problem with lego dns01 wildcard certificates not following a _acme-challenge.example.com for *.example.com | 20:41:12 |
| hexa | it just tries to write the TXT record to the example.com zone | 20:41:28 |
| hexa | sadly lego's logging in this case is non existant … https://github.com/go-acme/lego/issues/1039 | 20:42:20 |
| m1cr0man | for what backend? | 23:39:52 |
| 28 May 2022 |
| hexa | sorry, was an issue with an old lego release | 01:02:13 |
| hexa | nvm | 01:02:27 |
|  Zhaofeng Li joined the room. | 02:44:28 |
| 9 Jun 2022 |
|  v0|d joined the room. | 22:39:14 |
| 10 Jun 2022 |
| hexa | the acme test is currently blocked by mypy typechecking | 14:40:00 |
| hexa | diff --git a/nixos/tests/acme.nix b/nixos/tests/acme.nix
index 2dd06a50f40..467623fafc1 100644
--- a/nixos/tests/acme.nix
+++ b/nixos/tests/acme.nix
@@ -578,7 +578,7 @@ in {
webserver.wait_for_unit(f"acme-finished-{test_domain}.target")
wait_for_server()
check_connection(client, test_domain)
- rc, _ = client.execute(
+ rc, __ = client.execute(
f"openssl s_client -CAfile /tmp/ca.crt -connect {test_alias}:443"
" </dev/null 2>/dev/null | openssl x509 -noout -text"
f" | grep DNS: | grep {test_alias}"
| 14:41:11 |
| hexa | because _ is used some lines earlier as a result for a string | 14:41:43 |
