issue cert in DNS mode firstly and renew cert in nginx mode failed #4945

tnncool · 2024-01-10T05:44:11Z

I have done:

make sure you are able to repro it on the latest released version.
Search the existing issues.
Refer to the WIKI.
Debug info Debug.

Steps to reproduce

Issue a cert successfully in DNS mode

acme.sh --issue --dns -d mydomain.com \
 --yes-I-know-dns-manual-mode-enough-go-ahead-please
acme.sh --renew -d mydomain.com \
  --yes-I-know-dns-manual-mode-enough-go-ahead-please

and then renew the cert in nginx mode, failed

acme.sh --renew -d mydomain.com --nginx --force

I've tried to remove the cert and issue a new one, but it still failed

acme.sh --remove -d mydomain.com
acme.sh --issue -d mydomain.com --nginx
[Wed Jan 10 05:39:05 UTC 2024] Using CA: https://acme.zerossl.com/v2/DV90
[Wed Jan 10 05:39:05 UTC 2024] Single domain='mydomain.com'
[Wed Jan 10 05:39:05 UTC 2024] Getting domain auth token for each domain
[Wed Jan 10 05:39:08 UTC 2024] Getting webroot for domain='mydomain.com'
[Wed Jan 10 05:39:08 UTC 2024] Error, can not get domain token "type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/HOgETVLyCxntjCJ_awm9IQ","status":"invalid","error":{
[Wed Jan 10 05:39:08 UTC 2024] Please check log file for more details: /home/tnncool/.acme.sh/acme.sh.log

When I try to issue a cert in DNS mode, it doesn't work like before

acme.sh --issue --dns -d mydomain.com  --yes-I-know-dns-manual-mode-enough-go-ahead-please
[Wed Jan 10 05:36:42 UTC 2024] Using CA: https://acme.zerossl.com/v2/DV90
[Wed Jan 10 05:36:42 UTC 2024] Single domain='mydomain.com'
[Wed Jan 10 05:36:42 UTC 2024] Getting domain auth token for each domain
[Wed Jan 10 05:36:44 UTC 2024] Getting webroot for domain='mydomain.com'
[Wed Jan 10 05:36:44 UTC 2024] Error, can not get domain token entry mydomain.com for dns-01
[Wed Jan 10 05:36:44 UTC 2024] The supported validation types are: http-01 , but you specified: dns-01
[Wed Jan 10 05:36:44 UTC 2024] Please check log file for more details: /home/tnncool/.acme.sh/acme.sh.log

Debug log

acme.sh  --issue -d mydomain.com --nginx --debug 2
[Wed Jan 10 05:11:53 UTC 2024] Lets find script dir.
[Wed Jan 10 05:11:53 UTC 2024] _SCRIPT_='/home/tnncool/.acme.sh/acme.sh'
[Wed Jan 10 05:11:53 UTC 2024] _script='/home/tnncool/.acme.sh/acme.sh'
[Wed Jan 10 05:11:53 UTC 2024] _script_home='/home/tnncool/.acme.sh'
[Wed Jan 10 05:11:53 UTC 2024] Using config home:/home/tnncool/.acme.sh
[Wed Jan 10 05:11:53 UTC 2024] LE_WORKING_DIR='/home/tnncool/.acme.sh'
https://github.com/acmesh-official/acme.sh
v3.0.8
[Wed Jan 10 05:11:53 UTC 2024] Running cmd: issue
[Wed Jan 10 05:11:53 UTC 2024] _main_domain='mydomain.com'
[Wed Jan 10 05:11:53 UTC 2024] _alt_domains='no'
[Wed Jan 10 05:11:53 UTC 2024] Using config home:/home/tnncool/.acme.sh
[Wed Jan 10 05:11:53 UTC 2024] default_acme_server
[Wed Jan 10 05:11:53 UTC 2024] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Wed Jan 10 05:11:53 UTC 2024] _ACME_SERVER_HOST='acme.zerossl.com'
[Wed Jan 10 05:11:53 UTC 2024] _ACME_SERVER_PATH='v2/DV90'
[Wed Jan 10 05:11:53 UTC 2024] DOMAIN_PATH='/home/tnncool/.acme.sh/mydomain.com_ecc'
[Wed Jan 10 05:11:53 UTC 2024] 'nginx:' does not contain 'dns'
[Wed Jan 10 05:11:53 UTC 2024] Le_NextRenewTime
[Wed Jan 10 05:11:53 UTC 2024] Using ACME_DIRECTORY: https://acme.zerossl.com/v2/DV90
[Wed Jan 10 05:11:53 UTC 2024] _init api for server: https://acme.zerossl.com/v2/DV90
[Wed Jan 10 05:11:53 UTC 2024] GET
[Wed Jan 10 05:11:53 UTC 2024] url='https://acme.zerossl.com/v2/DV90'
[Wed Jan 10 05:11:53 UTC 2024] timeout=
[Wed Jan 10 05:11:53 UTC 2024] _CURL='curl --silent --dump-header /home/tnncool/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.Jax8jzzJua  -g '
[Wed Jan 10 05:11:54 UTC 2024] ret='0'
[Wed Jan 10 05:11:54 UTC 2024] response='{
  "newNonce": "https://acme.zerossl.com/v2/DV90/newNonce",
  "newAccount": "https://acme.zerossl.com/v2/DV90/newAccount",
  "newOrder": "https://acme.zerossl.com/v2/DV90/newOrder",
  "revokeCert": "https://acme.zerossl.com/v2/DV90/revokeCert",
  "keyChange": "https://acme.zerossl.com/v2/DV90/keyChange",
  "meta": {
    "termsOfService": "https://secure.trust-provider.com/repository/docs/Legacy/20230516_Certificate_Subscriber_Agreement_v_2_6_click.pdf",
    "website": "https://zerossl.com",
    "caaIdentities": ["sectigo.com", "trust-provider.com", "usertrust.com", "comodoca.com", "comodo.com"],
    "externalAccountRequired": true
  }
}'
[Wed Jan 10 05:11:54 UTC 2024] ACME_KEY_CHANGE='https://acme.zerossl.com/v2/DV90/keyChange'
[Wed Jan 10 05:11:54 UTC 2024] ACME_NEW_AUTHZ
[Wed Jan 10 05:11:54 UTC 2024] ACME_NEW_ORDER='https://acme.zerossl.com/v2/DV90/newOrder'
[Wed Jan 10 05:11:54 UTC 2024] ACME_NEW_ACCOUNT='https://acme.zerossl.com/v2/DV90/newAccount'
[Wed Jan 10 05:11:54 UTC 2024] ACME_REVOKE_CERT='https://acme.zerossl.com/v2/DV90/revokeCert'
[Wed Jan 10 05:11:54 UTC 2024] ACME_AGREEMENT='https://secure.trust-provider.com/repository/docs/Legacy/20230516_Certificate_Subscriber_Agreement_v_2_6_click.pdf'
[Wed Jan 10 05:11:54 UTC 2024] ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce'
[Wed Jan 10 05:11:54 UTC 2024] Using CA: https://acme.zerossl.com/v2/DV90
[Wed Jan 10 05:11:54 UTC 2024] _on_before_issue
[Wed Jan 10 05:11:54 UTC 2024] _chk_main_domain='mydomain.com'
[Wed Jan 10 05:11:54 UTC 2024] _chk_alt_domains
[Wed Jan 10 05:11:54 UTC 2024] 'nginx:' does not contain 'no'
[Wed Jan 10 05:11:54 UTC 2024] Le_LocalAddress
[Wed Jan 10 05:11:54 UTC 2024] d='mydomain.com'
[Wed Jan 10 05:11:54 UTC 2024] Check for domain='mydomain.com'
[Wed Jan 10 05:11:54 UTC 2024] _currentRoot='nginx:'
[Wed Jan 10 05:11:54 UTC 2024] d
[Wed Jan 10 05:11:54 UTC 2024] 'nginx:' does not contain 'apache'
[Wed Jan 10 05:11:54 UTC 2024] _saved_account_key_hash='PU2CQCULObKFLPuUvbqlmlwQ2Gv9XQB9G+XIbYksQcg='
[Wed Jan 10 05:11:54 UTC 2024] _saved_account_key_hash is not changed, skip register account.
[Wed Jan 10 05:11:54 UTC 2024] Read key length:ec-256
[Wed Jan 10 05:11:54 UTC 2024] _createcsr
[Wed Jan 10 05:11:54 UTC 2024] domain='mydomain.com'
[Wed Jan 10 05:11:54 UTC 2024] domainlist
[Wed Jan 10 05:11:54 UTC 2024] csrkey='/home/tnncool/.acme.sh/mydomain.com_ecc/mydomain.com.key'
[Wed Jan 10 05:11:54 UTC 2024] csr='/home/tnncool/.acme.sh/mydomain.com_ecc/mydomain.com.csr'
[Wed Jan 10 05:11:54 UTC 2024] csrconf='/home/tnncool/.acme.sh/mydomain.com_ecc/mydomain.com.csr.conf'
[Wed Jan 10 05:11:54 UTC 2024] Single domain='mydomain.com'
[Wed Jan 10 05:11:54 UTC 2024] seg='tnncool'
[Wed Jan 10 05:11:54 UTC 2024] _is_idn_d='mydomain.com'
[Wed Jan 10 05:11:54 UTC 2024] _idn_temp
[Wed Jan 10 05:11:54 UTC 2024] _is_idn_d='mydomain.com'
[Wed Jan 10 05:11:54 UTC 2024] _idn_temp
[Wed Jan 10 05:11:54 UTC 2024] _csr_cn='mydomain.com'
[Wed Jan 10 05:11:54 UTC 2024] seg='tnncool'
[Wed Jan 10 05:11:54 UTC 2024] Getting domain auth token for each domain
[Wed Jan 10 05:11:54 UTC 2024] seg='tnncool'
[Wed Jan 10 05:11:54 UTC 2024] _is_idn_d='mydomain.com'
[Wed Jan 10 05:11:54 UTC 2024] _idn_temp
[Wed Jan 10 05:11:54 UTC 2024] d
[Wed Jan 10 05:11:54 UTC 2024] _identifiers='{"type":"dns","value":"mydomain.com"}'
[Wed Jan 10 05:11:54 UTC 2024] _notBefore
[Wed Jan 10 05:11:54 UTC 2024] _notAfter
[Wed Jan 10 05:11:54 UTC 2024] =======Begin Send Signed Request=======
[Wed Jan 10 05:11:54 UTC 2024] url='https://acme.zerossl.com/v2/DV90/newOrder'
[Wed Jan 10 05:11:54 UTC 2024] payload='{"identifiers": [{"type":"dns","value":"mydomain.com"}]}'
[Wed Jan 10 05:11:54 UTC 2024] EC key
[Wed Jan 10 05:11:54 UTC 2024] Get nonce with HEAD. ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce'
[Wed Jan 10 05:11:54 UTC 2024] HEAD
[Wed Jan 10 05:11:54 UTC 2024] _post_url='https://acme.zerossl.com/v2/DV90/newNonce'
[Wed Jan 10 05:11:54 UTC 2024] body
[Wed Jan 10 05:11:54 UTC 2024] _postContentType='application/jose+json'
[Wed Jan 10 05:11:54 UTC 2024] _CURL='curl --silent --dump-header /home/tnncool/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.7Nr7Jo2rJj  -g  -I  '
[Wed Jan 10 05:11:56 UTC 2024] _ret='0'
[Wed Jan 10 05:11:56 UTC 2024] _headers='HTTP/2 200
server: nginx
date: Wed, 10 Jan 2024 05:11:56 GMT
content-type: application/octet-stream
replay-nonce: 0bELJbJq5WXdueuAVJmOzUIcjs2yxMhLSFPgiZXe7w8
cache-control: max-age=0, no-cache, no-store
access-control-allow-origin: *
link: <https://acme.zerossl.com/v2/DV90>;rel="index"
strict-transport-security: max-age=15724800; includeSubDomains
'
[Wed Jan 10 05:11:56 UTC 2024] _CACHED_NONCE='0bELJbJq5WXdueuAVJmOzUIcjs2yxMhLSFPgiZXe7w8'
[Wed Jan 10 05:11:56 UTC 2024] nonce='0bELJbJq5WXdueuAVJmOzUIcjs2yxMhLSFPgiZXe7w8'
[Wed Jan 10 05:11:57 UTC 2024] POST
[Wed Jan 10 05:11:57 UTC 2024] _post_url='https://acme.zerossl.com/v2/DV90/newOrder'
[Wed Jan 10 05:11:57 UTC 2024] body='{"protected": "eyJub25jZSI6ICIwYkVMSmJKcTVXWGR1ZXVBVkptT3pVSWNqczJ5eE1oTFNGUGdpWlhlN3c4IiwgInVybCI6ICJodHRwczovL2FjbWUuemVyb3NzbC5jb20vdjIvRFY5MC9uZXdPcmRlciIsICJhbGciOiAiRVMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS56ZXJvc3NsLmNvbS92Mi9EVjkwL2FjY291bnQvRHJqVDFhX0dkeGpfNjQxbUg0dHBrUSJ9", "payload": "eyJpZGVudGlmaWVycyI6IFt7InR5cGUiOiJkbnMiLCJ2YWx1ZSI6InRubmNvb2wubWUifV19", "signature": "AA_gV0O6_aQ3xbetrB2tpv_3g910016kxk7cQ6PLeb_LfY4FZeqO_0fMPSiGQW0lyYbpncKUI9P1CP77yKBfjg"}'
[Wed Jan 10 05:11:57 UTC 2024] _postContentType='application/jose+json'
[Wed Jan 10 05:11:57 UTC 2024] Http already initialized.
[Wed Jan 10 05:11:57 UTC 2024] _CURL='curl --silent --dump-header /home/tnncool/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.7Nr7Jo2rJj  -g '
[Wed Jan 10 05:11:59 UTC 2024] _ret='0'
[Wed Jan 10 05:11:59 UTC 2024] responseHeaders='HTTP/2 201
server: nginx
date: Wed, 10 Jan 2024 05:11:59 GMT
content-type: application/json
content-length: 272
replay-nonce: xm8BfXFj34iurs9jn5UkboUtN2o-4VXHO-zflLYCZTo
cache-control: max-age=0, no-cache, no-store
access-control-allow-origin: *
location: https://acme.zerossl.com/v2/DV90/order/kKYONLFR-cBY2MtQSCRLwg
strict-transport-security: max-age=15724800; includeSubDomains
'
[Wed Jan 10 05:11:59 UTC 2024] code='201'
[Wed Jan 10 05:11:59 UTC 2024] original='{"status":"pending","expires":"2024-04-09T04:20:57Z","identifiers":[{"type":"dns","value":"mydomain.com"}],"authorizations":["https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw"],"finalize":"https://acme.zerossl.com/v2/DV90/order/kKYONLFR-cBY2MtQSCRLwg/finalize"}'
[Wed Jan 10 05:11:59 UTC 2024] response='{"status":"pending","expires":"2024-04-09T04:20:57Z","identifiers":[{"type":"dns","value":"mydomain.com"}],"authorizations":["https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw"],"finalize":"https://acme.zerossl.com/v2/DV90/order/kKYONLFR-cBY2MtQSCRLwg/finalize"}'
[Wed Jan 10 05:11:59 UTC 2024] Le_LinkOrder='https://acme.zerossl.com/v2/DV90/order/kKYONLFR-cBY2MtQSCRLwg'
[Wed Jan 10 05:11:59 UTC 2024] Le_OrderFinalize='https://acme.zerossl.com/v2/DV90/order/kKYONLFR-cBY2MtQSCRLwg/finalize'
[Wed Jan 10 05:11:59 UTC 2024] _authorizations_seg='https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw'
[Wed Jan 10 05:11:59 UTC 2024] _authz_url='https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw'
[Wed Jan 10 05:11:59 UTC 2024] =======Begin Send Signed Request=======
[Wed Jan 10 05:11:59 UTC 2024] url='https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw'
[Wed Jan 10 05:11:59 UTC 2024] payload
[Wed Jan 10 05:11:59 UTC 2024] Use cached jwk for file: /home/tnncool/.acme.sh/ca/acme.zerossl.com/v2/DV90/account.key
[Wed Jan 10 05:11:59 UTC 2024] Use _CACHED_NONCE='xm8BfXFj34iurs9jn5UkboUtN2o-4VXHO-zflLYCZTo'
[Wed Jan 10 05:11:59 UTC 2024] nonce='xm8BfXFj34iurs9jn5UkboUtN2o-4VXHO-zflLYCZTo'
[Wed Jan 10 05:11:59 UTC 2024] POST
[Wed Jan 10 05:11:59 UTC 2024] _post_url='https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw'
[Wed Jan 10 05:11:59 UTC 2024] body='{"protected": "eyJub25jZSI6ICJ4bThCZlhGajM0aXVyczlqbjVVa2JvVXROMm8tNFZYSE8temZsTFlDWlRvIiwgInVybCI6ICJodHRwczovL2FjbWUuemVyb3NzbC5jb20vdjIvRFY5MC9hdXRoei9RVlJFWmFrRzBYeEwwMHNaUXVITmN3IiwgImFsZyI6ICJFUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLnplcm9zc2wuY29tL3YyL0RWOTAvYWNjb3VudC9EcmpUMWFfR2R4al82NDFtSDR0cGtRIn0", "payload": "", "signature": "Klel2Vj7dSTRR-6id6WabNP6OJ5gfMhjyUEm-BfSwiHN_LJ5EvO86J--FEUfrgHqY07PgCQgSonIojhlx4wY4g"}'
[Wed Jan 10 05:11:59 UTC 2024] _postContentType='application/jose+json'
[Wed Jan 10 05:11:59 UTC 2024] Http already initialized.
[Wed Jan 10 05:11:59 UTC 2024] _CURL='curl --silent --dump-header /home/tnncool/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.7Nr7Jo2rJj  -g '
[Wed Jan 10 05:12:02 UTC 2024] _ret='0'
[Wed Jan 10 05:12:02 UTC 2024] responseHeaders='HTTP/2 200
server: nginx
date: Wed, 10 Jan 2024 05:12:02 GMT
content-type: application/json
content-length: 290
replay-nonce: jJUhOcQOwDd9N-KkSjqAib-pfbnIGMDkEMMnP31ah_0
cache-control: max-age=0, no-cache, no-store
access-control-allow-origin: *
link: <https://acme.zerossl.com/v2/DV90>;rel="index"
retry-after: 86400
strict-transport-security: max-age=15724800; includeSubDomains
'
[Wed Jan 10 05:12:02 UTC 2024] code='200'
[Wed Jan 10 05:12:02 UTC 2024] original='{"identifier":{"type":"dns","value":"mydomain.com"},"status":"invalid","expires":"2024-02-09T04:20:57Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/HOgETVLyCxntjCJ_awm9IQ","status":"invalid","error":{},"token":"qEQcJFiZti-2g8J2H5pmOUSN1lGPLwJGPppJgMRGjxA"}]}'
[Wed Jan 10 05:12:02 UTC 2024] response='{"identifier":{"type":"dns","value":"mydomain.com"},"status":"invalid","expires":"2024-02-09T04:20:57Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/HOgETVLyCxntjCJ_awm9IQ","status":"invalid","error":{},"token":"qEQcJFiZti-2g8J2H5pmOUSN1lGPLwJGPppJgMRGjxA"}]}'
[Wed Jan 10 05:12:02 UTC 2024] response='{"identifier":{"type":"dns","value":"mydomain.com"},"status":"invalid","expires":"2024-02-09T04:20:57Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/HOgETVLyCxntjCJ_awm9IQ","status":"invalid","error":{},"token":"qEQcJFiZti-2g8J2H5pmOUSN1lGPLwJGPppJgMRGjxA"}]}'
[Wed Jan 10 05:12:02 UTC 2024] _d='mydomain.com'
[Wed Jan 10 05:12:02 UTC 2024] _authorizations_map='mydomain.com,{"identifier":{"type":"dns","value":"mydomain.com"},"status":"invalid","expires":"2024-02-09T04:20:57Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/HOgETVLyCxntjCJ_awm9IQ","status":"invalid","error":{},"token":"qEQcJFiZti-2g8J2H5pmOUSN1lGPLwJGPppJgMRGjxA"}]}#https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw
'
[Wed Jan 10 05:12:02 UTC 2024] d='mydomain.com'
[Wed Jan 10 05:12:02 UTC 2024] Getting webroot for domain='mydomain.com'
[Wed Jan 10 05:12:02 UTC 2024] _w='nginx:'
[Wed Jan 10 05:12:02 UTC 2024] _currentRoot='nginx:'
[Wed Jan 10 05:12:02 UTC 2024] _is_idn_d='mydomain.com'
[Wed Jan 10 05:12:02 UTC 2024] _idn_temp
[Wed Jan 10 05:12:02 UTC 2024] _candidates='mydomain.com,{"identifier":{"type":"dns","value":"mydomain.com"},"status":"invalid","expires":"2024-02-09T04:20:57Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/HOgETVLyCxntjCJ_awm9IQ","status":"invalid","error":{},"token":"qEQcJFiZti-2g8J2H5pmOUSN1lGPLwJGPppJgMRGjxA"}]}#https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw'
[Wed Jan 10 05:12:02 UTC 2024] response='{"identifier":{"type":"dns","value":"mydomain.com"},"status":"invalid","expires":"2024-02-09T04:20:57Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/HOgETVLyCxntjCJ_awm9IQ","status":"invalid","error":{},"token":"qEQcJFiZti-2g8J2H5pmOUSN1lGPLwJGPppJgMRGjxA"}]}#https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw'
[Wed Jan 10 05:12:02 UTC 2024] _authz_url='https://acme.zerossl.com/v2/DV90/authz/QVREZakG0XxL00sZQuHNcw'
[Wed Jan 10 05:12:02 UTC 2024] entry='"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/HOgETVLyCxntjCJ_awm9IQ","status":"invalid","error":{'
[Wed Jan 10 05:12:02 UTC 2024] token
[Wed Jan 10 05:12:02 UTC 2024] Error, can not get domain token "type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/HOgETVLyCxntjCJ_awm9IQ","status":"invalid","error":{
[Wed Jan 10 05:12:02 UTC 2024] pid
[Wed Jan 10 05:12:02 UTC 2024] No need to restore nginx, skip.
[Wed Jan 10 05:12:02 UTC 2024] _clearupdns
[Wed Jan 10 05:12:02 UTC 2024] dns_entries
[Wed Jan 10 05:12:02 UTC 2024] skip dns.
[Wed Jan 10 05:12:02 UTC 2024] _on_issue_err
[Wed Jan 10 05:12:02 UTC 2024] Please check log file for more details: /home/tnncool/.acme.sh/acme.sh.log
[Wed Jan 10 05:12:02 UTC 2024] _chk_vlist
[Wed Jan 10 05:12:02 UTC 2024] Diagnosis versions:
openssl:openssl
OpenSSL 1.1.1w  11 Sep 2023
apache:
apache doesn't exist.
nginx:
nginx version: nginx/1.18.0
built with OpenSSL 1.1.1n  15 Mar 2022 (running with OpenSSL 1.1.1w  11 Sep 2023)
TLS SNI support enabled
configure arguments: --with-cc-opt='-g -O2 -ffile-prefix-map=/build/nginx-x3gsRV/nginx-1.18.0=. -fstack-protector-strong -Wformat -Werror=format-security -fPIC -Wdate-time -D_FORTIFY_SOURCE=2' --with-ld-opt='-Wl,-z,relro -Wl,-z,now -fPIC' --prefix=/usr/share/nginx --conf-path=/etc/nginx/nginx.conf --http-log-path=/var/log/nginx/access.log --error-log-path=/var/log/nginx/error.log --lock-path=/var/lock/nginx.lock --pid-path=/run/nginx.pid --modules-path=/usr/lib/nginx/modules --http-client-body-temp-path=/var/lib/nginx/body --http-fastcgi-temp-path=/var/lib/nginx/fastcgi --http-proxy-temp-path=/var/lib/nginx/proxy --http-scgi-temp-path=/var/lib/nginx/scgi --http-uwsgi-temp-path=/var/lib/nginx/uwsgi --with-compat --with-debug --with-pcre-jit --with-http_ssl_module --with-http_stub_status_module --with-http_realip_module --with-http_auth_request_module --with-http_v2_module --with-http_dav_module --with-http_slice_module --with-threads --with-http_addition_module --with-http_gunzip_module --with-http_gzip_static_module --with-http_sub_module
socat:
socat by Gerhard Rieger and contributors - see www.dest-unreach.org
socat version 1.7.4.1 on Feb  3 2021 12:58:17
   running on Linux version #1 SMP Debian 5.10.205-2 (2023-12-31), release 5.10.0-27-cloud-amd64, machine x86_64
features:
  #define WITH_STDIO 1
  #define WITH_FDNUM 1
  #define WITH_FILE 1
  #define WITH_CREAT 1
  #define WITH_GOPEN 1
  #define WITH_TERMIOS 1
  #define WITH_PIPE 1
  #define WITH_UNIX 1
  #define WITH_ABSTRACT_UNIXSOCKET 1
  #define WITH_IP4 1
  #define WITH_IP6 1
  #define WITH_RAWIP 1
  #define WITH_GENERICSOCKET 1
  #define WITH_INTERFACE 1
  #define WITH_TCP 1
  #define WITH_UDP 1
  #define WITH_SCTP 1
  #define WITH_LISTEN 1
  #define WITH_SOCKS4 1
  #define WITH_SOCKS4A 1
  #define WITH_VSOCK 1
  #define WITH_PROXY 1
  #define WITH_SYSTEM 1
  #define WITH_EXEC 1
  #undef WITH_READLINE
  #define WITH_TUN 1
  #define WITH_PTY 1
  #define WITH_OPENSSL 1
  #undef WITH_FIPS
  #define WITH_LIBWRAP 1
  #define WITH_SYCLS 1
  #define WITH_FILAN 1
  #define WITH_RETRY 1
  #define WITH_MSGLEVEL 0 /*debug*/

The text was updated successfully, but these errors were encountered:

github-actions · 2024-01-10T05:44:23Z

Please upgrade to the latest code and try again first. Maybe it's already fixed. acme.sh --upgrade If it's still not working, please provide the log with --debug 2, otherwise, nobody can help you.

tnncool · 2024-01-10T14:50:50Z

I've tried to uninstall and reinstall acme.sh, which solved the problem

tnncool closed this as completed Jan 10, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

issue cert in DNS mode firstly and renew cert in nginx mode failed #4945

issue cert in DNS mode firstly and renew cert in nginx mode failed #4945

tnncool commented Jan 10, 2024

github-actions bot commented Jan 10, 2024

tnncool commented Jan 10, 2024

issue cert in DNS mode firstly and renew cert in nginx mode failed #4945

issue cert in DNS mode firstly and renew cert in nginx mode failed #4945

Comments

tnncool commented Jan 10, 2024

Steps to reproduce

Debug log

github-actions bot commented Jan 10, 2024

tnncool commented Jan 10, 2024