-
-
Notifications
You must be signed in to change notification settings - Fork 155
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TLS ALPN certificate generation failing on Windows #101
Comments
Ah, this bug again. #110 applies the workaround.
Besides this bug in Windows, do you have any other reasons why you would like to disable this? I considered adding API for this, but in the interest of keeping this project as simple as possible, I'm deferring adding until there is a compelling need to allow users to manually control which kinds to ACME challenge types are used. |
This fix is available in this prerelease build: https://dev.azure.com/natemcmaster/github/_packaging?_a=package&feed=github%40Local&package=LettuceEncrypt&protocolType=NuGet&version=1.1.0-beta.48. If this does not resolve the problem, please let me know and we can revisit. This will be released to nuget.org in the 1.1.0 update later in June. |
Thanks for the fix @natemcmaster. I've run this build up and confirmed that it works correctly with ALPN certificate generation on Windows 10. |
Thanks for confirming! |
Describe the bug
Generation of the TLS ALPN certificates is failing on Windows due to a known issue in SChannel which prevents Kestrel from correctly loading the private key for the certificate.
Additionally, as there is no way to disable TLS ALPN challenge support, certificate issuance fails even though the HTTP challenges succeed.
To Reproduce
Steps to reproduce the behavior:
Expected behavior
The certificate should be issued correctly
Additional context
Possible solutions include
The text was updated successfully, but these errors were encountered: