]> git.ipfire.org Git - thirdparty/dehydrated.git/commitdiff
rfc8738: only replace ip with reverse dns thingy if tls-alpn-01 is used
authorLukas Schauer <lukas@schauer.dev>
Wed, 6 Apr 2022 23:33:48 +0000 (01:33 +0200)
committerLukas Schauer <lukas@schauer.dev>
Wed, 6 Apr 2022 23:33:48 +0000 (01:33 +0200)
dehydrated

index c54dc56cdee12f9da339f6aa1fff9615cefd3b3f..e5b97830e803690af0ce3dc1020530eb9affb2ea 100755 (executable)
@@ -1124,7 +1124,7 @@ sign_csr() {
     challenge="$(echo "${response}" | get_json_dict_value -p '"challenges",'"${challengeindex}")"
 
     # Gather challenge information
-    if [ "${identifier_type:-}" = "ip" ]; then
+    if [ "${identifier_type:-}" = "ip" ] && [ "${CHALLENGETYPE}" = "tls-alpn-01" ] ; then
       challenge_names[${idx}]="$(echo "${identifier}" | ip_to_ptr)"
     else
       challenge_names[${idx}]="${identifier}"
@@ -1161,7 +1161,7 @@ sign_csr() {
     esac
 
     keyauths[${idx}]="${keyauth}"
-    if [ "${identifier_type:-}" = "ip" ]; then
+    if [ "${identifier_type:-}" = "ip" ] && [ "${CHALLENGETYPE}" = "tls-alpn-01" ]; then
       deploy_args[${idx}]="$(echo "${identifier}" | ip_to_ptr) ${challenge_tokens[${idx}]} ${keyauth_hook}"
     else
       deploy_args[${idx}]="${identifier} ${challenge_tokens[${idx}]} ${keyauth_hook}"