Upgrade to 21.02.0 broke DDNS SSL


I had a working DDNS configuration that seems to have broken when I upgraded to 20.02.0. Specifically, DDNS via SSL using nsupdate.info no longer works. ca-certificates was and is installed; libustream-openssl used to be installed but now isn't, since it conflicts with libustream-wolfssl, installed by default in 20.02.0. Here's the relevant section of /etc/config/ddns:

config service 'nsupdate'
	option service_name 'nsupdate.info'
	option lookup_host 'glory.nsupdate.info'
	option use_https '1'
	option domain 'glory.nsupdate.info'
	option username 'glory.nsupdate.info'
	option password 'xxxxxxxx'
	option enabled '1'
	option cacert '/etc/ssl/certs'

This fails with:

WARN : No valid certificate file '/etc/ssl/certs/' for HTTPS communication - TERMINATE

What am I doing wrong?

This is probably because of the let's encrypt issue from Sep 30th.


1 Like

Thank you. I assume you mean this: link, link?

If the simplest fix involves ripping apart my OpenWrt installation and possibly recompiling packages, I think I'll just use another DDNS provider until this issue gets sorted out - I always keep two separate providers available anyway, for just this sort of eventuality.

Thanks again.