root
/
greenlock-express.js
mirror of https://github.com/therootcompany/greenlock-express.js.git
2
1
Fork 0
Code Issues 43 Releases Wiki Activity

Duplicate Certs #75

New Issue
Open
opened 2021-04-24 10:39:19 +00:00 by Ghost · 2 comments
Ghost commented 2021-04-24 10:39:19 +00:00
Copy Link

I keep getting this error, is it from Greenlock or from Let's encrypt?

Warning duplicate_certs:
a search for 'redacted-my-domain.com' returned multiple certificates
Error: a search for 'redacted-my-domain.com' returned multiple certificates
    at Object.greenlock.get (/app/node_modules/@root/greenlock/greenlock.js:223:23)

This happens both running Greenlock in staging & production mode.

I am using greenlock-store-fs on a mounted docker volume.
Checked the volumn and this domain only has a single certifacate in there.

It's also a brand new domain, just registered it, added it to my setup and then ran my greenlock app.

Looks like manager.find & manager.set are both called multple times.

It seems that manager.set does indeed request multiple certificate.

Also looks like manager.get is never requested.

Few questions:

  • Any idea on how to get past the duplicate certificates?
  • Is manager.get even required anymore?
  • Is there a way to revoke certificates via greenlock? or other means?

Thanks in advance

I keep getting this error, is it from Greenlock or from Let's encrypt? ``` Warning duplicate_certs: a search for 'redacted-my-domain.com' returned multiple certificates Error: a search for 'redacted-my-domain.com' returned multiple certificates at Object.greenlock.get (/app/node_modules/@root/greenlock/greenlock.js:223:23) ``` This happens both running Greenlock in staging & production mode. I am using `greenlock-store-fs` on a mounted docker volume. Checked the volumn and this domain only has a single certifacate in there. It's also a brand new domain, just registered it, added it to my setup and then ran my greenlock app. Looks like `manager.find` & `manager.set` are both called multple times. It seems that `manager.set` does indeed request multiple certificate. Also looks like `manager.get` is never requested. Few questions: * Any idea on how to get past the duplicate certificates? * Is `manager.get` even required anymore? * Is there a way to revoke certificates via greenlock? or other means? Thanks in advance
coolaj86 commented 2021-04-28 17:24:54 +00:00
Owner
Copy Link

That's from Greenlock.

There's no way to revoke certificates in greenlock, but that's not related to the problem you're having here.

IIRC, manager.get is not used when manager.find is used. Details are here: https://git.rootprojects.org/root/greenlock-manager-test.js

I'm not sure why you would get that error.

My first instinct is to say just start over fresh using the quickstart and see if it happens again.

If you need paid support, this is probably something we could look over and solve together within 2-3 hours.

Also, please let me know if you already figured this out.

That's from Greenlock. There's no way to revoke certificates in greenlock, but that's not related to the problem you're having here. IIRC, `manager.get` is not used when `manager.find` is used. Details are here: https://git.rootprojects.org/root/greenlock-manager-test.js I'm not sure why you would get that error. My first instinct is to say just start over fresh using the quickstart and see if it happens again. If you need paid support, this is probably something we could look over and solve together within 2-3 hours. Also, please let me know if you already figured this out.
Ghost commented 2021-05-10 07:39:28 +00:00
Author
Copy Link

Hi there, I have a similar error :
[400] Error creating new order :: Domain name "test8.domain.com" is redundant with a wildcard domain in the same request. Remove one or the other from the certificate request.

context: 'cert_issue',
subject: '.mydomain.com',
altnames: [ '.mydomain.com', 'test8.mydomain.com' ],
toJSON: [Function: errorToJSON],
servername: 'test6.mydomain.com',
_site: {
challenges: { 'dns-01': [Object] },
subject: '.mydomain.com',
renewAt: 1624196379695,
altnames: [ '.mydomain.com', 'test8.mydomain.com' ]
}

I am using greenlock-store-fs ("basePath": "./greenlock.d") on a mounted docker volume.

BTW this is not only on the docker image, I get this error on the same setting in a not docker container

I tried to let the altnames without the subdomains like altnames: [ '*.mydomain.com'] i don't get the error but the app doesn't load...

Hi there, I have a similar error : [400] Error creating new order :: Domain name "test8.domain.com" is redundant with a wildcard domain in the same request. Remove one or the other from the certificate request. context: 'cert_issue', subject: '*.mydomain.com', altnames: [ '*.mydomain.com', 'test8.mydomain.com' ], toJSON: [Function: errorToJSON], servername: 'test6.mydomain.com', _site: { challenges: { 'dns-01': [Object] }, subject: '*.mydomain.com', renewAt: 1624196379695, altnames: [ '*.mydomain.com', 'test8.mydomain.com' ] } I am using greenlock-store-fs ("basePath": "./greenlock.d") on a mounted docker volume. BTW this is not only on the docker image, I get this error on the same setting in a not docker container I tried to let the altnames without the subdomains like altnames: [ '*.mydomain.com'] i don't get the error but the app doesn't load...
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
master
github
next
v4
npm
v3
v2
beta
v2.0
greenlock
express
v1.x
v4.0.4
v4.0.3
v4.0.1
v3.1.0
v3.0.12
v3.0.11
v3.0.10
v3.0.9
v3.0.8
v3.0.7
v3.0.6
v3.0.5
v3.0.4
v3.0.3
v3.0.2
v3.0.1
v3.0.0
v2.7.18
v2.7.17
v2.7.16
v2.7.15
v2.7.12
v2.7.11
v2.7.10
v2.7.9
v2.7.8
v2.7.6
v2.7.3
v2.7.2
v2.7.1
v2.7.0
v2.6.9
v2.6.8
v2.6.7
v2.6.6
v2.6.5
v2.6.4
v2.6.3
v2.6.2
v2.6.1
v2.6.0
v2.5.0
v2.4.10
v2.4.9
v2.4.8
v2.4.7
v2.4.6
v2.4.5
v2.4.4
v2.4.3
v2.4.2
v2.4.1
v2.4.0
v2.3.4
v2.3.2
v1.3.1
v2.1.6
v2.1.5
v2.1.4
v2.1.3
v2.1.2
v2.1.1
v2.0.12
v2.0.11
v2.0.10
v2.0.9
v2.0.8
v2.0.7
v2.0.6
v2.0.5
v2.0.4
v2.0.3
v2.0.2
v2.0.1
v2.0.0
v1.2.0
v1.1.5
v1.1.4
v1.1.3
v1.1.2
v1.1.1
v1.1.0
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
Labels
Clear labels
No items
No Label
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: root/greenlock-express.js#75
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?