From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp0.migadu.com ([2001:41d0:403:58f0::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms8.migadu.com with LMTPS id SFhSNRkWsWV4vAAAqHPOHw:P1 (envelope-from ) for ; Wed, 24 Jan 2024 14:52:26 +0100 Received: from aspmx1.migadu.com ([2001:41d0:403:58f0::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp0.migadu.com with LMTPS id SFhSNRkWsWV4vAAAqHPOHw (envelope-from ) for ; Wed, 24 Jan 2024 14:52:25 +0100 X-Envelope-To: larch@yhetil.org Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=zancanaro.id.au header.s=k1 header.b=bFZ+81De; spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"; dmarc=fail reason="SPF not aligned (relaxed)" header.from=zancanaro.id.au (policy=none) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1706104345; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:cc:cc:mime-version:mime-version: content-type:content-type:resent-cc:resent-from:resent-sender: resent-message-id:in-reply-to:in-reply-to:references:references: list-id:list-help:list-unsubscribe:list-subscribe:list-post: dkim-signature; bh=iuUennxQpZLJtIUsiC8Qj638YntVNFA3E1OYDp9RANQ=; b=k85hkhOWFLeCFji3yHLutidpamdr4ERP8+7xcGI1P8AgmW0HqRe+B24LWfBP3me1vTxWcz 2c7Ob0P7tBKL78W/525X2us7JXsvzImi3dW1KHUCQWOaQ5Ku0dAAx1tdXoQg5iNz+ilM+3 vckxpC3QG7MYqvhKxJFAtX41pt2DPQGhf4iYGiAWJxogsSist5y1A5kY0YuqQRb4+N4xNY 2NKZ222ybbJKwbCyHxs6lbx6RDv7w5y96cVMIjHU8d8Cp1pyIZgHqWEES6UIZJ5TWJTxN3 amXX8H0g6mq7TLArZnoouS8PMyhaxobn5KfIwdeQCwi9pbzop7wYQXod9/uFGQ== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=zancanaro.id.au header.s=k1 header.b=bFZ+81De; spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org"; dmarc=fail reason="SPF not aligned (relaxed)" header.from=zancanaro.id.au (policy=none) ARC-Seal: i=1; s=key1; d=yhetil.org; t=1706104345; a=rsa-sha256; cv=none; b=tqSj3v21rKb3QjM/zpsf6cJ0h6/RX2ET/7C6p3bc8F6z+TcCD2/+3umpBWgfdRhPO3XMjO IjP+YSwvhUPJxSizABZIqVWuLFr4Ql5FeJA8ubyrfnW26Pw2ijnoPyi0EPzqXtcLDWZ8cQ lCoHtbAathEJcmRXBVQZtPu46auPZlsifc987FVorKaXy/gx9SU303H7hURlMVYO+RCpkB nDc7S8LWz1MSkrxdlTAjXLJvnZ77e94o9ArVQQxdMoWuorMYlMj9QKa5tLAzXOya/jAiL2 lzAgawQguoHuiTESLf/RF5nzBV1mlmSZixBKOGXDNlPsJlcQsHc9UGzDZTiJ9Q== Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 808933CBB8 for ; Wed, 24 Jan 2024 14:52:25 +0100 (CET) Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1rScyA-0000QN-HP; Wed, 24 Jan 2024 08:07:06 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1rScy3-0000MJ-AU for bug-guix@gnu.org; Wed, 24 Jan 2024 08:07:01 -0500 Received: from debbugs.gnu.org ([2001:470:142:5::43]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1rScy1-0003cw-4A for bug-guix@gnu.org; Wed, 24 Jan 2024 08:06:58 -0500 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1rScy6-0004Gh-6w for bug-guix@gnu.org; Wed, 24 Jan 2024 08:07:02 -0500 X-Loop: help-debbugs@gnu.org Subject: bug#46961: [PATCH 2/2] services: certbot: Create self-signed certificates before certbot runs Resent-From: Carlo Zancanaro Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Wed, 24 Jan 2024 13:07:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 46961 X-GNU-PR-Package: guix X-GNU-PR-Keywords: Cc: 46961@debbugs.gnu.org Received: via spool by 46961-submit@debbugs.gnu.org id=B46961.170610159816356 (code B ref 46961); Wed, 24 Jan 2024 13:07:02 +0000 Received: (at 46961) by debbugs.gnu.org; 24 Jan 2024 13:06:38 +0000 Received: from localhost ([127.0.0.1]:44742 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1rScxh-0004Fk-T1 for submit@debbugs.gnu.org; Wed, 24 Jan 2024 08:06:38 -0500 Received: from voltorb.zancanaro.id.au ([45.77.50.64]:47468) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1rScxf-0004FT-A0 for 46961@debbugs.gnu.org; Wed, 24 Jan 2024 08:06:36 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; s=k1; bh=iuUennxQpZLJtIU siC8Qj638YntVNFA3E1OYDp9RANQ=; h=in-reply-to:date:subject:cc:from: references; d=zancanaro.id.au; b=bFZ+81DeN3t5oT6+xIp6k4MnCZZj9wgPwv4Os X0UymeskJ3OCnPCKC0eNFjCPpSTTvmbQIRB44FpCHOhbj78YD+VrzTzHrUHr76BOL2FEJ8 WZnrkylmRpulOiDJ6lnqKrRdgYI9QsjVxiRyPyj2Pu448awvj90NQJ2FSU9KvAao= Received: by voltorb.zancanaro.id.au (OpenSMTPD) with ESMTPSA id 680cb7d2 (TLSv1.3:TLS_AES_256_GCM_SHA384:256:NO) for <46961@debbugs.gnu.org>; Wed, 24 Jan 2024 13:06:15 +0000 (UTC) References: <788b23efd206b4ef627de06236f868f97e3cbe05.1706098718.git.carlo@zancanaro.id.au> User-agent: mu4e 1.10.8; emacs 29.1 From: Carlo Zancanaro Date: Thu, 25 Jan 2024 00:01:32 +1100 In-reply-to: <788b23efd206b4ef627de06236f868f97e3cbe05.1706098718.git.carlo@zancanaro.id.au> Message-ID: <871qa6q3si.fsf@zancanaro.id.au> MIME-Version: 1.0 Content-Type: text/plain; format=flowed X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: bug-guix-bounces+larch=yhetil.org@gnu.org X-Migadu-Flow: FLOW_IN X-Migadu-Country: US X-Migadu-Spam-Score: 7.34 X-Migadu-Queue-Id: 808933CBB8 X-Spam-Score: 7.34 X-Migadu-Scanner: mx11.migadu.com X-TUID: 7qoDVDSYmhc9 On Wed, Jan 24 2024, Carlo Zancanaro wrote: > + ;; Due to the way certbot runs, we need to > + ;; create the self-signed certificates in the > + ;; archive folder and symlink them into the live > + ;; folder. This mimics what certbot does well > + ;; enough to make acquiring new certificates > + ;; work. Gah, this comment is from a previous iteration. It turns out it didn't work as well as I thought it did. I'm happy to update this comment, but I won't do that until I've heard back about the more substantive aspects of the change. I'm also happy for whoever merges this to change this comment appropriately.