MeinerEiner Posted April 28, 2020 Share Posted April 28, 2020 Hello, we have upgraded the systems to 0.10.15. Now lets encrypt is not working anymore for domains. Previous version 0.10.13 works well. I get this error from lets encrypt: { "type": "urn:ietf:params:acme:error:malformed", "detail": "Method not allowed", "status": 405 } [information] TasksCron: Searching for tasks to do [information] TasksCron: Task10 started - setting filesystem quota [information] Running Let's Encrypt cronjob prior to regenerating webserver config files [information] Requesting/renewing Let's Encrypt certificates [information] Creating certificate for xxxxx.net [information] Adding SAN entry: xxxxx.net [information] Adding SAN entry: www.xxxxx.net [information] Checking for LetsEncrypt client upgrades before renewing certificates: [Tue Apr 28 11:31:18 CEST 2020] Already uptodate! [Tue Apr 28 11:31:18 CEST 2020] Upgrade success! [Tue Apr 28 11:31:18 CEST 2020] Removing cron job [debug] https://github.com/acmesh-official/acme.sh v2.8.6 [Tue Apr 28 11:31:19 CEST 2020] Creating domain key [Tue Apr 28 11:31:22 CEST 2020] The domain key is here: /root/.acme.sh/xxxxx.net/xxxxx.net.key [Tue Apr 28 11:31:22 CEST 2020] Multi domain='DNS:xxxxx.net,DNS:www.xxxxx.net' [Tue Apr 28 11:31:22 CEST 2020] Getting domain auth token for each domain [Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='xxxxx.net' [Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='www.xxxxx.net' [Tue Apr 28 11:31:25 CEST 2020] Verifying: xxxxx.net fqIIDl1N0TVk25kM3t8VF7NR-dFV1jUl1XF358An8K0.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8 [error] Could not get Let's Encrypt certificate for xxxxx.net: https://github.com/acmesh-official/acme.sh v2.8.6 [Tue Apr 28 11:31:19 CEST 2020] Creating domain key [Tue Apr 28 11:31:22 CEST 2020] The domain key is here: /root/.acme.sh/xxxxx.net/xxxxx.net.key [Tue Apr 28 11:31:22 CEST 2020] Multi domain='DNS:xxxxx.net,DNS:www.xxxxx.net' [Tue Apr 28 11:31:22 CEST 2020] Getting domain auth token for each domain [Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='xxxxx.net' [Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='www.xxxxx.net' [Tue Apr 28 11:31:25 CEST 2020] Verifying: xxxxx.net fqIIDl1N0TVk25kM3t8VF7NR-dFV1jUl1XF358An8K0.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8 Settings: SSL Let's Encrypt enabled with 8192 key. Kind regards, Daniel Link to comment Share on other sites More sharing options...
0 d00p Posted April 28, 2020 Share Posted April 28, 2020 Please provide full output of cronjob with --force --debug The error is a acme API response, so it might be acme.sh related, hence the need for the debug output Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 --deleted-- fixed Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 Auszug aus --force --debug: [Tue Apr 28 13:01:41 CEST 2020] Lets find script dir. [Tue Apr 28 13:01:41 CEST 2020] _SCRIPT_='/root/.acme.sh/acme.sh' [Tue Apr 28 13:01:41 CEST 2020] _script='/root/.acme.sh/acme.sh' [Tue Apr 28 13:01:41 CEST 2020] _script_home='/root/.acme.sh' [Tue Apr 28 13:01:41 CEST 2020] Using config home:/root/.acme.sh [Tue Apr 28 13:01:41 CEST 2020] Using server: https://acme-v02.api.letsencrypt.org/directory [Tue Apr 28 13:01:41 CEST 2020] Running cmd: issue [Tue Apr 28 13:01:41 CEST 2020] _main_domain='xxxxxx.net' [Tue Apr 28 13:01:41 CEST 2020] _alt_domains='www.xxxxxx.net' [Tue Apr 28 13:01:41 CEST 2020] Using config home:/root/.acme.sh [Tue Apr 28 13:01:41 CEST 2020] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory' [Tue Apr 28 13:01:41 CEST 2020] DOMAIN_PATH='/root/.acme.sh/xxxxxx.net' [Tue Apr 28 13:01:41 CEST 2020] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory [Tue Apr 28 13:01:41 CEST 2020] _init api for server: https://acme-v02.api.letsencrypt.org/directory [Tue Apr 28 13:01:41 CEST 2020] GET [Tue Apr 28 13:01:41 CEST 2020] url='https://acme-v02.api.letsencrypt.org/directory' [Tue Apr 28 13:01:41 CEST 2020] timeout= [Tue Apr 28 13:01:41 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:01:42 CEST 2020] ret='0' [Tue Apr 28 13:01:42 CEST 2020] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change' [Tue Apr 28 13:01:42 CEST 2020] ACME_NEW_AUTHZ [Tue Apr 28 13:01:42 CEST 2020] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order' [Tue Apr 28 13:01:42 CEST 2020] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct' [Tue Apr 28 13:01:42 CEST 2020] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert' [Tue Apr 28 13:01:42 CEST 2020] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf' [Tue Apr 28 13:01:42 CEST 2020] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce' [Tue Apr 28 13:01:42 CEST 2020] ACME_VERSION='2' [Tue Apr 28 13:01:42 CEST 2020] Le_NextRenewTime [Tue Apr 28 13:01:42 CEST 2020] _on_before_issue [Tue Apr 28 13:01:42 CEST 2020] _chk_main_domain='xxxxxx.net' [Tue Apr 28 13:01:42 CEST 2020] _chk_alt_domains='www.xxxxxx.net' [Tue Apr 28 13:01:42 CEST 2020] Le_LocalAddress [Tue Apr 28 13:01:42 CEST 2020] d='xxxxxx.net' [Tue Apr 28 13:01:42 CEST 2020] Check for domain='xxxxxx.net' [Tue Apr 28 13:01:42 CEST 2020] _currentRoot='/var/www/froxlor/' [Tue Apr 28 13:01:42 CEST 2020] d='www.xxxxxx.net' [Tue Apr 28 13:01:42 CEST 2020] Check for domain='www.xxxxxx.net' [Tue Apr 28 13:01:42 CEST 2020] _currentRoot='/var/www/froxlor/' [Tue Apr 28 13:01:42 CEST 2020] d [Tue Apr 28 13:01:42 CEST 2020] _saved_account_key_hash is not changed, skip register account. [Tue Apr 28 13:01:42 CEST 2020] Read key length:8192 [Tue Apr 28 13:01:42 CEST 2020] Using config home:/root/.acme.sh [Tue Apr 28 13:01:42 CEST 2020] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory' [Tue Apr 28 13:01:42 CEST 2020] Use length 8192 [Tue Apr 28 13:01:42 CEST 2020] Using RSA: 8192 [Tue Apr 28 13:01:46 CEST 2020] _createcsr [Tue Apr 28 13:01:46 CEST 2020] d='www.xxxxxx.net' [Tue Apr 28 13:01:46 CEST 2020] d [Tue Apr 28 13:01:46 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/new-order' [Tue Apr 28 13:01:46 CEST 2020] payload='{"identifiers": [{"type":"dns","value":"xxxxxx.net"},{"type":"dns","value":"www.xxxxxx.net"}]}' [Tue Apr 28 13:01:46 CEST 2020] RSA key [Tue Apr 28 13:01:46 CEST 2020] HEAD [Tue Apr 28 13:01:46 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce' [Tue Apr 28 13:01:46 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g -I ' [Tue Apr 28 13:01:47 CEST 2020] _ret='0' [Tue Apr 28 13:01:47 CEST 2020] POST [Tue Apr 28 13:01:47 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order' [Tue Apr 28 13:01:47 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:01:47 CEST 2020] _ret='0' [Tue Apr 28 13:01:47 CEST 2020] code='429' [Tue Apr 28 13:01:47 CEST 2020] Le_LinkOrder [Tue Apr 28 13:01:47 CEST 2020] Le_OrderFinalize [Tue Apr 28 13:01:47 CEST 2020] Create new order error. Le_OrderFinalize not found. { "type": "urn:ietf:params:acme:error:rateLimited", "detail": "Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/", "status": 429 } [Tue Apr 28 13:01:48 CEST 2020] pid [Tue Apr 28 13:01:48 CEST 2020] No need to restore nginx, skip. [Tue Apr 28 13:01:48 CEST 2020] _clearupdns [Tue Apr 28 13:01:48 CEST 2020] dns_entries [Tue Apr 28 13:01:48 CEST 2020] skip dns. [Tue Apr 28 13:01:48 CEST 2020] _on_issue_err [Tue Apr 28 13:01:48 CEST 2020] Please add '--debug' or '--log' to check more details. [Tue Apr 28 13:01:48 CEST 2020] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh [Tue Apr 28 13:01:48 CEST 2020] socat doesn't exists. [Tue Apr 28 13:01:48 CEST 2020] Diagnosis versions: openssl:openssl OpenSSL 1.1.1d 10 Sep 2019 apache: apache doesn't exists. nginx: nginx doesn't exists. socat: Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 I Still wait 4h to get new chance to request let's encrypt... There are many domains that needed to be renewed, but the failed requests matches the limit. So I decided to set let's encrypt job to once a day. Link to comment Share on other sites More sharing options...
0 d00p Posted April 28, 2020 Share Posted April 28, 2020 14 minutes ago, MeinerEiner said: Hello, since the update php errors are thrown (php7.3fpm) [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16252 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16255 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16253 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16261 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16258 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16259 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16257 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16260 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16256 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16262 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16263 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16254 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16264 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16267 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16268 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16266 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16265 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'suhosin.simulation'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_sybase'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_runtime'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'magic_quotes_gpc'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_value 'asp_tags'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_admin_value 'gpc_order'" [28-Apr-2020 12:54:32] WARNING: [pool xxxxxx.de] child 16269 said into stderr: "ERROR: Unable to set php_admin_value 'allow_call_time_pass_reference'" non standard php.ini - for example "allow_call_time_pass_reference" is not a value, it's On|Off, hence you should put that to php_admin_flag - also, this particular setting has been removed in PHP 5.4.0. Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 Ok php error fixed, by clicking ip and ports, save each ip and after that rebuild config. Seems something strange happens to vHost-Files Link to comment Share on other sites More sharing options...
0 d00p Posted April 28, 2020 Share Posted April 28, 2020 Just now, MeinerEiner said: Ok php error fixed, by clicking ip and ports, save each ip and after that rebuild config. That has in no way anything to do with saving ip's and ports.... 1 minute ago, MeinerEiner said: Seems something strange happens to vHost-Files Like? "strange" can be a lot of things. Please explain and show, it's hard to help that way Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 php errors are fixed... let's encrypt is still broken Link to comment Share on other sites More sharing options...
0 d00p Posted April 28, 2020 Share Posted April 28, 2020 Wow...great explanation... Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 actual let's encrypt report: php /var/www/froxlor/scripts/froxlor_master_cronjob.php --force --debug [information] TasksCron: Searching for tasks to do [information] TasksCron: Task10 started - setting filesystem quota [information] Running Let's Encrypt cronjob prior to regenerating webserver config files [information] Requesting/renewing Let's Encrypt certificates [information] Creating certificate for xxxxxx.net [information] Adding SAN entry: xxxxxx.net [information] Adding SAN entry: www.xxxxxx.net [information] Checking for LetsEncrypt client upgrades before renewing certificates: [Tue Apr 28 13:49:23 CEST 2020] Already uptodate! [Tue Apr 28 13:49:23 CEST 2020] Upgrade success! [Tue Apr 28 13:49:24 CEST 2020] Removing cron job [Tue Apr 28 13:49:24 CEST 2020] Lets find script dir. [Tue Apr 28 13:49:24 CEST 2020] _SCRIPT_='/root/.acme.sh/acme.sh' [Tue Apr 28 13:49:24 CEST 2020] _script='/root/.acme.sh/acme.sh' [Tue Apr 28 13:49:24 CEST 2020] _script_home='/root/.acme.sh' [Tue Apr 28 13:49:24 CEST 2020] Using config home:/root/.acme.sh [Tue Apr 28 13:49:24 CEST 2020] Using server: https://acme-v02.api.letsencrypt.org/directory [Tue Apr 28 13:49:24 CEST 2020] Running cmd: issue [Tue Apr 28 13:49:24 CEST 2020] _main_domain='xxxxxx.net' [Tue Apr 28 13:49:24 CEST 2020] _alt_domains='www.xxxxxx.net' [Tue Apr 28 13:49:24 CEST 2020] Using config home:/root/.acme.sh [Tue Apr 28 13:49:24 CEST 2020] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory' [Tue Apr 28 13:49:24 CEST 2020] DOMAIN_PATH='/root/.acme.sh/xxxxxx.net' [Tue Apr 28 13:49:24 CEST 2020] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory [Tue Apr 28 13:49:24 CEST 2020] _init api for server: https://acme-v02.api.letsencrypt.org/directory [Tue Apr 28 13:49:24 CEST 2020] GET [Tue Apr 28 13:49:24 CEST 2020] url='https://acme-v02.api.letsencrypt.org/directory' [Tue Apr 28 13:49:24 CEST 2020] timeout= [Tue Apr 28 13:49:24 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:49:24 CEST 2020] ret='0' [Tue Apr 28 13:49:24 CEST 2020] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change' [Tue Apr 28 13:49:24 CEST 2020] ACME_NEW_AUTHZ [Tue Apr 28 13:49:24 CEST 2020] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order' [Tue Apr 28 13:49:24 CEST 2020] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct' [Tue Apr 28 13:49:24 CEST 2020] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert' [Tue Apr 28 13:49:24 CEST 2020] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf' [Tue Apr 28 13:49:24 CEST 2020] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce' [Tue Apr 28 13:49:24 CEST 2020] ACME_VERSION='2' [Tue Apr 28 13:49:24 CEST 2020] _on_before_issue [Tue Apr 28 13:49:24 CEST 2020] _chk_main_domain='xxxxxx.net' [Tue Apr 28 13:49:24 CEST 2020] _chk_alt_domains='www.xxxxxx.net' [Tue Apr 28 13:49:24 CEST 2020] Le_LocalAddress [Tue Apr 28 13:49:24 CEST 2020] d='xxxxxx.net' [Tue Apr 28 13:49:24 CEST 2020] Check for domain='xxxxxx.net' [Tue Apr 28 13:49:24 CEST 2020] _currentRoot='/var/www/froxlor/' [Tue Apr 28 13:49:24 CEST 2020] d='www.xxxxxx.net' [Tue Apr 28 13:49:24 CEST 2020] Check for domain='www.xxxxxx.net' [Tue Apr 28 13:49:24 CEST 2020] _currentRoot='/var/www/froxlor/' [Tue Apr 28 13:49:24 CEST 2020] d [Tue Apr 28 13:49:24 CEST 2020] _saved_account_key_hash is not changed, skip register account. [Tue Apr 28 13:49:24 CEST 2020] Read key length: [Tue Apr 28 13:49:24 CEST 2020] Using config home:/root/.acme.sh [Tue Apr 28 13:49:24 CEST 2020] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory' [Tue Apr 28 13:49:24 CEST 2020] Use length 8192 [Tue Apr 28 13:49:24 CEST 2020] Using RSA: 8192 [Tue Apr 28 13:49:28 CEST 2020] _createcsr [Tue Apr 28 13:49:28 CEST 2020] d='www.xxxxxx.net' [Tue Apr 28 13:49:28 CEST 2020] d [Tue Apr 28 13:49:28 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/new-order' [Tue Apr 28 13:49:28 CEST 2020] payload='{"identifiers": [{"type":"dns","value":"xxxxxx.net"},{"type":"dns","value":"www.xxxxxx.net"}]}' [Tue Apr 28 13:49:28 CEST 2020] RSA key [Tue Apr 28 13:49:28 CEST 2020] HEAD [Tue Apr 28 13:49:28 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce' [Tue Apr 28 13:49:28 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g -I ' [Tue Apr 28 13:49:29 CEST 2020] _ret='0' [Tue Apr 28 13:49:29 CEST 2020] POST [Tue Apr 28 13:49:29 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order' [Tue Apr 28 13:49:29 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:49:30 CEST 2020] _ret='0' [Tue Apr 28 13:49:30 CEST 2020] code='201' [Tue Apr 28 13:49:30 CEST 2020] Le_LinkOrder='https://acme-v02.api.letsencrypt.org/acme/order/79147307/3162587417' [Tue Apr 28 13:49:30 CEST 2020] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/79147307/3162587417' [Tue Apr 28 13:49:30 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/4232150773' [Tue Apr 28 13:49:30 CEST 2020] payload [Tue Apr 28 13:49:30 CEST 2020] POST [Tue Apr 28 13:49:30 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/4232150773' [Tue Apr 28 13:49:30 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:49:30 CEST 2020] _ret='0' [Tue Apr 28 13:49:30 CEST 2020] code='200' [Tue Apr 28 13:49:30 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/4232150774' [Tue Apr 28 13:49:30 CEST 2020] payload [Tue Apr 28 13:49:31 CEST 2020] POST [Tue Apr 28 13:49:31 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/4232150774' [Tue Apr 28 13:49:31 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:49:31 CEST 2020] _ret='0' [Tue Apr 28 13:49:31 CEST 2020] code='200' [Tue Apr 28 13:49:31 CEST 2020] d='xxxxxx.net' [Tue Apr 28 13:49:31 CEST 2020] _w='/var/www/froxlor/' [Tue Apr 28 13:49:31 CEST 2020] _currentRoot='/var/www/froxlor/' [Tue Apr 28 13:49:31 CEST 2020] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw","token":"f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA"' [Tue Apr 28 13:49:31 CEST 2020] token='f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA' [Tue Apr 28 13:49:31 CEST 2020] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw' [Tue Apr 28 13:49:31 CEST 2020] keyauthorization='f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o' [Tue Apr 28 13:49:31 CEST 2020] dvlist='xxxxxx.net#f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o#https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw#http-01#/var/www/froxlor/' [Tue Apr 28 13:49:31 CEST 2020] d='www.xxxxxx.net' [Tue Apr 28 13:49:31 CEST 2020] _w='/var/www/froxlor/' [Tue Apr 28 13:49:31 CEST 2020] _currentRoot='/var/www/froxlor/' [Tue Apr 28 13:49:31 CEST 2020] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA","token":"oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI"' [Tue Apr 28 13:49:31 CEST 2020] token='oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI' [Tue Apr 28 13:49:31 CEST 2020] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA' [Tue Apr 28 13:49:31 CEST 2020] keyauthorization='oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o' [Tue Apr 28 13:49:31 CEST 2020] dvlist='www.xxxxxx.net#oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o#https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA#http-01#/var/www/froxlor/' [Tue Apr 28 13:49:31 CEST 2020] d [Tue Apr 28 13:49:31 CEST 2020] vlist='xxxxxx.net#f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o#https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw#http-01#/var/www/froxlor/,www.xxxxxx.net#oi8ltqdZue00Em0kmQ57hnUJB0JQ30RjtoiaWP5q8WI._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o#https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA#http-01#/var/www/froxlor/,' [Tue Apr 28 13:49:31 CEST 2020] d='xxxxxx.net' [Tue Apr 28 13:49:31 CEST 2020] d='www.xxxxxx.net' [Tue Apr 28 13:49:31 CEST 2020] ok, let's start to verify [Tue Apr 28 13:49:31 CEST 2020] d='xxxxxx.net' [Tue Apr 28 13:49:31 CEST 2020] keyauthorization='f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA._0UBaqs6gYd8N7BPCo6VAUJnXDQV1-V4eQyRKh1rT3o' [Tue Apr 28 13:49:31 CEST 2020] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw' [Tue Apr 28 13:49:31 CEST 2020] _currentRoot='/var/www/froxlor/' [Tue Apr 28 13:49:31 CEST 2020] wellknown_path='/var/www/froxlor//.well-known/acme-challenge' [Tue Apr 28 13:49:31 CEST 2020] writing token:f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA to /var/www/froxlor//.well-known/acme-challenge/f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA [Tue Apr 28 13:49:31 CEST 2020] Changing owner/group of .well-known to froxlorlocal:froxlorlocal [Tue Apr 28 13:49:31 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw' [Tue Apr 28 13:49:31 CEST 2020] payload='{}' [Tue Apr 28 13:49:31 CEST 2020] POST [Tue Apr 28 13:49:31 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw' [Tue Apr 28 13:49:31 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:49:32 CEST 2020] _ret='0' [Tue Apr 28 13:49:32 CEST 2020] code='200' [Tue Apr 28 13:49:32 CEST 2020] trigger validation code: 200 [Tue Apr 28 13:49:32 CEST 2020] sleep 2 secs to verify [Tue Apr 28 13:49:34 CEST 2020] checking [Tue Apr 28 13:49:34 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw' [Tue Apr 28 13:49:34 CEST 2020] payload [Tue Apr 28 13:49:34 CEST 2020] POST [Tue Apr 28 13:49:34 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw' [Tue Apr 28 13:49:34 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:49:35 CEST 2020] _ret='0' [Tue Apr 28 13:49:35 CEST 2020] code='200' [Tue Apr 28 13:49:35 CEST 2020] xxxxxx.net:Verify error:The key authorization file from the server did not match this challenge [Tue Apr 28 13:49:35 CEST 2020] Debug: get token url. [Tue Apr 28 13:49:35 CEST 2020] GET [Tue Apr 28 13:49:35 CEST 2020] url='http://xxxxxx.net/.well-known/acme-challenge/f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA' [Tue Apr 28 13:49:35 CEST 2020] timeout=1 [Tue Apr 28 13:49:35 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g --connect-timeout 1' [Tue Apr 28 13:49:35 CEST 2020] ret='0' [Tue Apr 28 13:49:35 CEST 2020] Debugging, skip removing: /var/www/froxlor//.well-known/acme-challenge/f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA [Tue Apr 28 13:49:35 CEST 2020] pid [Tue Apr 28 13:49:35 CEST 2020] No need to restore nginx, skip. [Tue Apr 28 13:49:35 CEST 2020] _clearupdns [Tue Apr 28 13:49:35 CEST 2020] dns_entries [Tue Apr 28 13:49:35 CEST 2020] skip dns. [Tue Apr 28 13:49:35 CEST 2020] _on_issue_err [Tue Apr 28 13:49:35 CEST 2020] Please add '--debug' or '--log' to check more details. [Tue Apr 28 13:49:35 CEST 2020] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh [Tue Apr 28 13:49:35 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw' [Tue Apr 28 13:49:35 CEST 2020] payload='{}' [Tue Apr 28 13:49:35 CEST 2020] POST [Tue Apr 28 13:49:35 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150773/YwkLNw' [Tue Apr 28 13:49:35 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:49:35 CEST 2020] _ret='0' [Tue Apr 28 13:49:35 CEST 2020] code='400' [Tue Apr 28 13:49:35 CEST 2020] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA' [Tue Apr 28 13:49:35 CEST 2020] payload='{}' [Tue Apr 28 13:49:35 CEST 2020] POST [Tue Apr 28 13:49:35 CEST 2020] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/4232150774/iJIjTA' [Tue Apr 28 13:49:35 CEST 2020] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header -g ' [Tue Apr 28 13:49:36 CEST 2020] _ret='0' [Tue Apr 28 13:49:36 CEST 2020] code='200' [Tue Apr 28 13:49:36 CEST 2020] socat doesn't exists. [Tue Apr 28 13:49:36 CEST 2020] Diagnosis versions: openssl:openssl OpenSSL 1.1.1d 10 Sep 2019 apache: apache doesn't exists. nginx: nginx doesn't exists. socat: [debug] https://github.com/acmesh-official/acme.sh v2.8.6 [Tue Apr 28 13:49:24 CEST 2020] Creating domain key [Tue Apr 28 13:49:28 CEST 2020] The domain key is here: /root/.acme.sh/xxxxxx.net/xxxxxx.net.key [Tue Apr 28 13:49:28 CEST 2020] Multi domain='DNS:xxxxxx.net,DNS:www.xxxxxx.net' [Tue Apr 28 13:49:28 CEST 2020] Getting domain auth token for each domain [Tue Apr 28 13:49:31 CEST 2020] Getting webroot for domain='xxxxxx.net' [Tue Apr 28 13:49:31 CEST 2020] Getting webroot for domain='www.xxxxxx.net' [Tue Apr 28 13:49:31 CEST 2020] Verifying: xxxxxx.net f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8 [error] Could not get Let's Encrypt certificate for xxxxxx.net: https://github.com/acmesh-official/acme.sh v2.8.6 [Tue Apr 28 13:49:24 CEST 2020] Creating domain key [Tue Apr 28 13:49:28 CEST 2020] The domain key is here: /root/.acme.sh/xxxxxx.net/xxxxxx.net.key [Tue Apr 28 13:49:28 CEST 2020] Multi domain='DNS:xxxxxxxxxxxx.net,DNS:www.xxxxxx.net' [Tue Apr 28 13:49:28 CEST 2020] Getting domain auth token for each domain [Tue Apr 28 13:49:31 CEST 2020] Getting webroot for domain='xxxxxx.net' [Tue Apr 28 13:49:31 CEST 2020] Getting webroot for domain='www.xxxxxx.net' [Tue Apr 28 13:49:31 CEST 2020] Verifying: xxxxxx.net f7GaM0d-Nbsm_tgb5l71q_gsjFQzsZJaCSa1IE1MroA.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8 [information] No new certificates or certificates due for renewal found [information] apache::createIpPort: creating ip/port settings for xx.xxx.xxx.xxx:80 [notice] xx.xxx.xxx.xxx:80 :: namevirtualhost-statement no longer needed for apache-2.4 [debug] xx.xxx.xxx.xxx:80 :: inserted vhostcontainer [information] apache::createIpPort: creating ip/port settings for xx.xxx.xxx.xxx:443 [debug] xx.xxx.xxx.xxx:443 :: inserted vhostcontainer [information] apache::createVirtualHosts: creating vhost container for domain 10, customer aos [information] apache::createVirtualHosts: creating vhost container for domain 8, customer hassinger-j [information] apache::createVirtualHosts: creating vhost container for domain 7, customer kreiselm-a [information] apache::createVirtualHosts: creating vhost container for domain 5, customer weiss-a [information] apache::createVirtualHosts: creating vhost container for domain 4, customer wolf-t [information] apache::createVirtualHosts: creating vhost container for domain 11, customer coepto [information] apache::createVirtualHosts: creating vhost container for domain 13, customer coepto [information] apache::writeConfigs: rebuilding /etc/apache2/sites-enabled/ [information] apache::writeConfigs: rebuilding /etc/apache2/htpasswd/ [information] apache::writeConfigs: rebuilding /etc/apache2/sites-enabled/ [information] Froxlor\Cron\Http\ApacheFcgi::reload: running service php7.3-fpm restart [information] Froxlor\Cron\Http\ApacheFcgi::reload: reloading Froxlor\Cron\Http\ApacheFcgi [notice] Creating passwd file [notice] Writing 8 entries to passwd file [notice] Succesfully wrote passwd file [notice] Creating group file [notice] Writing 6 entries to group file [notice] Succesfully wrote group file [notice] Creating shadow file [notice] Writing 8 entries to shadow file [notice] Succesfully wrote shadow file [notice] Checking system's last guid Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 Acme.conf for Apache Alias "/.well-known/acme-challenge" "/var/www/froxlor/.well-known/acme-challenge" <Directory "/var/www/froxlor/.well-known/acme-challenge"> Require all granted </Directory> Link to comment Share on other sites More sharing options...
0 d00p Posted April 28, 2020 Share Posted April 28, 2020 4 minutes ago, MeinerEiner said: xxxxxx.net:Verify error:The key authorization file from the server did not match this challenge k.A. was du da gemacht hast...habe ich bisher noch nicht gesehen. Lösche doch mal alle Let's Encrypt Zertifikate aus froxlor und aus /root/.acme.sh/[domain] - mach am besten den Cronjob für 10-15min aus dafür. Dann wartest du nochmal 10-15 Minuten und lässt den cronjob noch mal manuell mit --force und --debug laufen Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 Ok... I'll do it. All files remove from: /var/www/froxlor/.well-known/acme-challenge delete folders /root/.acme.sh/[domain.tld] Now i'll wait 1h Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 I started the cron job manually, same result: Verify error:The key authorization file from the server did not match this challenge Can you try to reproduce this on a testserver with a test domain? System: Debian Buster Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 executing: /root/.acme.sh/acme.sh --issue -d xxxx.net --test -w /var/www/froxlor/ --debug leads to same result Link to comment Share on other sites More sharing options...
0 d00p Posted April 28, 2020 Share Posted April 28, 2020 well, then please tell us the domain. must be something there; from what I've google about that errors it's mostly dns issues or alias-related issues Link to comment Share on other sites More sharing options...
0 MeinerEiner Posted April 28, 2020 Author Share Posted April 28, 2020 wrong key size... only 4096 supported not 8192. Sorry Link to comment Share on other sites More sharing options...
0 d00p Posted April 28, 2020 Share Posted April 28, 2020 ok, I get the same error. There's no CAA dns record that would forbid issueing by letsencrypt, there is an A record which I assume is correct. According to google, this error could occur if the domain could not be resolved correctly. Does the server possibly have an IPv6 configured and is listening to ipv6? The domain does not have an AAAA record. Others state is has something to do with the local account, check https://github.com/acmesh-official/acme.sh/issues/2525#issuecomment-556523797 Link to comment Share on other sites More sharing options...
Question
MeinerEiner
Hello,
we have upgraded the systems to 0.10.15. Now lets encrypt is not working anymore for domains. Previous version 0.10.13 works well.
I get this error from lets encrypt:
[information] TasksCron: Searching for tasks to do
[information] TasksCron: Task10 started - setting filesystem quota
[information] Running Let's Encrypt cronjob prior to regenerating webserver config files
[information] Requesting/renewing Let's Encrypt certificates
[information] Creating certificate for xxxxx.net
[information] Adding SAN entry: xxxxx.net
[information] Adding SAN entry: www.xxxxx.net
[information] Checking for LetsEncrypt client upgrades before renewing certificates:
[Tue Apr 28 11:31:18 CEST 2020] Already uptodate!
[Tue Apr 28 11:31:18 CEST 2020] Upgrade success!
[Tue Apr 28 11:31:18 CEST 2020] Removing cron job
[debug] https://github.com/acmesh-official/acme.sh
v2.8.6
[Tue Apr 28 11:31:19 CEST 2020] Creating domain key
[Tue Apr 28 11:31:22 CEST 2020] The domain key is here: /root/.acme.sh/xxxxx.net/xxxxx.net.key
[Tue Apr 28 11:31:22 CEST 2020] Multi domain='DNS:xxxxx.net,DNS:www.xxxxx.net'
[Tue Apr 28 11:31:22 CEST 2020] Getting domain auth token for each domain
[Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='xxxxx.net'
[Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='www.xxxxx.net'
[Tue Apr 28 11:31:25 CEST 2020] Verifying: xxxxx.net
fqIIDl1N0TVk25kM3t8VF7NR-dFV1jUl1XF358An8K0.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8
[error] Could not get Let's Encrypt certificate for xxxxx.net:
https://github.com/acmesh-official/acme.sh
v2.8.6
[Tue Apr 28 11:31:19 CEST 2020] Creating domain key
[Tue Apr 28 11:31:22 CEST 2020] The domain key is here: /root/.acme.sh/xxxxx.net/xxxxx.net.key
[Tue Apr 28 11:31:22 CEST 2020] Multi domain='DNS:xxxxx.net,DNS:www.xxxxx.net'
[Tue Apr 28 11:31:22 CEST 2020] Getting domain auth token for each domain
[Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='xxxxx.net'
[Tue Apr 28 11:31:25 CEST 2020] Getting webroot for domain='www.xxxxx.net'
[Tue Apr 28 11:31:25 CEST 2020] Verifying: xxxxx.net
fqIIDl1N0TVk25kM3t8VF7NR-dFV1jUl1XF358An8K0.4E3VCTFsySjUrqnCg0ooULx-3kbdPBygi0aWkvg5Gd8
Settings:
SSL Let's Encrypt enabled with 8192 key.
Kind regards,
Daniel
Link to comment
Share on other sites
18 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now