Lets Encrypt

mr_white · May 22, 2019, 7:51am

thank you. i will try that

mr_white · June 2, 2019, 2:07pm

hallo!

just set up the duckDNS add-on. seems to work:
the ssl files are located in /ssl/xxx.pem
is it normal that they are OUTSIDE the config folder? do I have to change the path in the config?

in config.yaml is:

http:
  base_url: https://mydomain.duckdns.org:8123
  ssl_certificate: /ssl/fullchain.pem
  ssl_key: /ssl/privkey.pem

duckdns add-on log:

# INFO: Using main config file /data/workdir/config
+ Account already registered!
Sun Jun  2 15:46:22 CEST 2019: OK
2xx.xxx.xxx.xxx
NOCHANGE
# INFO: Using main config file /data/workdir/config
Processing panoramabar.duckdns.org
 + Checking domain name(s) of existing cert... unchanged.
 + Checking expire date of existing cert...
 + Valid till Aug 31 05:38:53 2019 GMT Certificate will not expire
(Longer than 30 days). Skipping renew!

but editing the config with https adress and certificates causes this error(s) after reboot:

2019-06-02 15:35:35 WARNING (ThreadPoolExecutor-1_0) [pycec] Not initialized. Waiting for init.
2019-06-02 15:35:36 WARNING (ThreadPoolExecutor-1_0) [pycec] Not initialized. Waiting for init.
2019-06-02 15:35:37 WARNING (ThreadPoolExecutor-1_0) [pycec] Not initialized. Waiting for init.
2019-06-02 15:35:38 WARNING (ThreadPoolExecutor-1_0) [pycec] Not initialized. Waiting for init.
2019-06-02 15:35:39 WARNING (ThreadPoolExecutor-1_0) [pycec] Not initialized. Waiting for init.
2019-06-02 15:35:40 WARNING (ThreadPoolExecutor-1_0) [pycec] Not initialized. Waiting for init.
2019-06-02 15:35:41 ERROR (MainThread) [homeassistant.core] Error doing job: SSL handshake failed
Traceback (most recent call last):
  File "uvloop/sslproto.pyx", line 500, in uvloop.loop.SSLProtocol._on_handshake_complete
  File "uvloop/sslproto.pyx", line 484, in uvloop.loop.SSLProtocol._do_handshake
  File "/usr/local/lib/python3.7/ssl.py", line 763, in do_handshake
    self._sslobj.do_handshake()
ssl.SSLError: [SSL: HTTP_REQUEST] http request (_ssl.c:1056)

no clue what the problem is…

thank you in advance guys

sparkydave · June 2, 2019, 9:45pm

That is normal.

No

If you have a working http: config as you posted, what are trying to change which is breaking it?

mr_white · July 9, 2019, 7:29pm

Hallo

What i mean with edit the http is the file path to the ssl files. And after reboot i get error message:


Invalid config for [http]: not a file for dictionary value @ data['http']['ssl_certificate']. Got '/ssl/fullchain.pem'
not a file for dictionary value @ data['http']['ssl_key']. Got '/ssl/privkey.pem'. (See /config/configuration.yaml, line 55). Please check the docs at https://home-assistant.io/components/http/

The files are there.
What i think is that hass.io stores the files /ssl/ and homeassistant want the files /config/ssl/

Not sure how to test that.

thx

wisesokol1 · January 20, 2020, 10:56am

HI.
I’m use no-ip ddns. All worked fine. Yesterday i tried renew ssl files. Itake timeout error in config.
Port forwarding is ok.
I use/
Ubuntu host in virtual box
Docker
Hassio
Lets encrypt
Nginx/