Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

dns_dynu failing authentication #6233

Open
realsirch opened this issue Feb 14, 2025 · 2 comments
Open

dns_dynu failing authentication #6233

realsirch opened this issue Feb 14, 2025 · 2 comments

Comments

@realsirch
Copy link

Using acme.sh on openwrt. Did acme.sh --upgrade. Problem still is that Authentication fails in dns_dynu.sh. Here is the command I used, can provide additional info if needed, hope someone can help:

user@OpenWrt:/etc/acme# /usr/lib/acme/acme.sh --debug 3 --issue --config-home /etc/acme -d somedomain.dynu.net --keylength 4096 --dns dns_dynu
[Wed Feb 12 15:25:33 CET 2025] _is_idn_d='somedomain.dynu.net'
[Wed Feb 12 15:25:33 CET 2025] _idn_temp
[Wed Feb 12 15:25:33 CET 2025] readlink exists=0
[Wed Feb 12 15:25:33 CET 2025] dirname exists=0
[Wed Feb 12 15:25:33 CET 2025] Lets find script dir.
[Wed Feb 12 15:25:33 CET 2025] SCRIPT='/usr/lib/acme/acme.sh'
[Wed Feb 12 15:25:33 CET 2025] _script='/usr/lib/acme/acme.sh'
[Wed Feb 12 15:25:33 CET 2025] _script_home='/usr/lib/acme'
[Wed Feb 12 15:25:33 CET 2025] Using default home:/root/.acme.sh
[Wed Feb 12 15:25:33 CET 2025] Using config home:/etc/acme
[Wed Feb 12 15:25:33 CET 2025] ACCOUNT_CONF_PATH='/etc/acme/account.conf'
[Wed Feb 12 15:25:33 CET 2025] LE_WORKING_DIR='/root/.acme.sh'
https://github.com/acmesh-official/acme.sh
v3.0.6
[Wed Feb 12 15:25:33 CET 2025] Running cmd: issue
[Wed Feb 12 15:25:33 CET 2025] _main_domain='somedomain.dynu.net'
[Wed Feb 12 15:25:33 CET 2025] _alt_domains='no'
[Wed Feb 12 15:25:33 CET 2025] Using config home:/etc/acme
[Wed Feb 12 15:25:33 CET 2025] ACCOUNT_CONF_PATH='/etc/acme/account.conf'
[Wed Feb 12 15:25:33 CET 2025] default_acme_server
[Wed Feb 12 15:25:33 CET 2025] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Wed Feb 12 15:25:33 CET 2025] _ACME_SERVER_HOST='acme.zerossl.com'
[Wed Feb 12 15:25:33 CET 2025] _ACME_SERVER_PATH='v2/DV90'
[Wed Feb 12 15:25:33 CET 2025] CA_CONF='/etc/acme/ca/acme.zerossl.com/v2/DV90/ca.conf'
[Wed Feb 12 15:25:33 CET 2025] DOMAIN_PATH='/etc/acme/somedomain.dynu.net'
[Wed Feb 12 15:25:33 CET 2025] 'dns_dynu' does not contain 'dns'
[Wed Feb 12 15:25:33 CET 2025] Le_NextRenewTime
[Wed Feb 12 15:25:33 CET 2025] Using ACME_DIRECTORY: https://acme.zerossl.com/v2/DV90
[Wed Feb 12 15:25:33 CET 2025] _init api for server: https://acme.zerossl.com/v2/DV90
[Wed Feb 12 15:25:33 CET 2025] GET
[Wed Feb 12 15:25:33 CET 2025] url='https://acme.zerossl.com/v2/DV90'
[Wed Feb 12 15:25:33 CET 2025] timeout=
[Wed Feb 12 15:25:33 CET 2025] curl exists=0
[Wed Feb 12 15:25:33 CET 2025] mktemp exists=0
[Wed Feb 12 15:25:33 CET 2025] wget exists=0
[Wed Feb 12 15:25:33 CET 2025] _CURL='curl --silent --dump-header /etc/acme/http.header -L --trace-ascii /tmp/tmp.keIeaA -g '
[Wed Feb 12 15:25:33 CET 2025] ret='0'
[Wed Feb 12 15:25:33 CET 2025] _json_decode
[Wed Feb 12 15:25:33 CET 2025] _j_str='{
"newNonce": "https://acme.zerossl.com/v2/DV90/newNonce",
"newAccount": "https://acme.zerossl.com/v2/DV90/newAccount",
"newOrder": "https://acme.zerossl.com/v2/DV90/newOrder",
"revokeCert": "https://acme.zerossl.com/v2/DV90/revokeCert",
"renewalInfo": "https://ari.trust-provider.com/renewalInfo",
"keyChange": "https://acme.zerossl.com/v2/DV90/keyChange",
"meta": {
"termsOfService": "https://www.sectigo.com/uploads/files/Certificate-Subscriber-Agreement-2.7-click.pdf",
"website": "https://zerossl.com/",
"caaIdentities": ["sectigo.com", "trust-provider.com", "usertrust.com", "comodoca.com", "comodo.com", "entrust.net", "affirmtrust.com"],
"externalAccountRequired": true
}
}'
[Wed Feb 12 15:25:33 CET 2025] response='{
"newNonce": "https://acme.zerossl.com/v2/DV90/newNonce",
"newAccount": "https://acme.zerossl.com/v2/DV90/newAccount",
"newOrder": "https://acme.zerossl.com/v2/DV90/newOrder",
"revokeCert": "https://acme.zerossl.com/v2/DV90/revokeCert",
"renewalInfo": "https://ari.trust-provider.com/renewalInfo",
"keyChange": "https://acme.zerossl.com/v2/DV90/keyChange",
"meta": {
"termsOfService": "https://www.sectigo.com/uploads/files/Certificate-Subscriber-Agreement-2.7-click.pdf",
"website": "https://zerossl.com/",
"caaIdentities": ["sectigo.com", "trust-provider.com", "usertrust.com", "comodoca.com", "comodo.com", "entrust.net", "affirmtrust.com"],
"externalAccountRequired": true
}
}'
[Wed Feb 12 15:25:33 CET 2025] ACME_KEY_CHANGE='https://acme.zerossl.com/v2/DV90/keyChange'
[Wed Feb 12 15:25:33 CET 2025] ACME_NEW_AUTHZ
[Wed Feb 12 15:25:33 CET 2025] ACME_NEW_ORDER='https://acme.zerossl.com/v2/DV90/newOrder'
[Wed Feb 12 15:25:33 CET 2025] ACME_NEW_ACCOUNT='https://acme.zerossl.com/v2/DV90/newAccount'
[Wed Feb 12 15:25:33 CET 2025] ACME_REVOKE_CERT='https://acme.zerossl.com/v2/DV90/revokeCert'
[Wed Feb 12 15:25:33 CET 2025] ACME_AGREEMENT='https://www.sectigo.com/uploads/files/Certificate-Subscriber-Agreement-2.7-click.pdf'
[Wed Feb 12 15:25:33 CET 2025] ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce'
[Wed Feb 12 15:25:33 CET 2025] OK
[Wed Feb 12 15:25:33 CET 2025] 1:Le_Domain='somedomain.dynu.net'
[Wed Feb 12 15:25:33 CET 2025] OK
[Wed Feb 12 15:25:33 CET 2025] 2:Le_Alt='no'
[Wed Feb 12 15:25:33 CET 2025] OK
[Wed Feb 12 15:25:33 CET 2025] 3:Le_Webroot='dns_dynu'
[Wed Feb 12 15:25:33 CET 2025] OK
[Wed Feb 12 15:25:33 CET 2025] 4:Le_PreHook=''
[Wed Feb 12 15:25:33 CET 2025] OK
[Wed Feb 12 15:25:33 CET 2025] 5:Le_PostHook=''
[Wed Feb 12 15:25:33 CET 2025] OK
[Wed Feb 12 15:25:34 CET 2025] 6:Le_RenewHook=''
[Wed Feb 12 15:25:34 CET 2025] OK
[Wed Feb 12 15:25:34 CET 2025] 7:Le_API='https://acme.zerossl.com/v2/DV90'
[Wed Feb 12 15:25:34 CET 2025] Using CA: https://acme.zerossl.com/v2/DV90
[Wed Feb 12 15:25:34 CET 2025] _on_before_issue
[Wed Feb 12 15:25:34 CET 2025] _chk_main_domain='somedomain.dynu.net'
[Wed Feb 12 15:25:34 CET 2025] _chk_alt_domains
[Wed Feb 12 15:25:34 CET 2025] 'dns_dynu' does not contain 'no'
[Wed Feb 12 15:25:34 CET 2025] Le_LocalAddress
[Wed Feb 12 15:25:34 CET 2025] d='somedomain.dynu.net'
[Wed Feb 12 15:25:34 CET 2025] Check for domain='somedomain.dynu.net'
[Wed Feb 12 15:25:34 CET 2025] _currentRoot='dns_dynu'
[Wed Feb 12 15:25:34 CET 2025] d
[Wed Feb 12 15:25:34 CET 2025] 'dns_dynu' does not contain 'apache'
[Wed Feb 12 15:25:34 CET 2025] _saved_account_key_hash='#deleted'
[Wed Feb 12 15:25:34 CET 2025] base64 single line.
[Wed Feb 12 15:25:34 CET 2025] _saved_account_key_hash is not changed, skip register account.
[Wed Feb 12 15:25:34 CET 2025] Read key length:4096
[Wed Feb 12 15:25:34 CET 2025] _createcsr
[Wed Feb 12 15:25:34 CET 2025] domain='somedomain.dynu.net'
[Wed Feb 12 15:25:34 CET 2025] domainlist
[Wed Feb 12 15:25:34 CET 2025] csrkey='/etc/acme/somedomain.dynu.net/somedomain.dynu.net.key'
[Wed Feb 12 15:25:34 CET 2025] csr='/etc/acme/somedomain.dynu.net/somedomain.dynu.net.csr'
[Wed Feb 12 15:25:34 CET 2025] csrconf='/etc/acme/somedomain.dynu.net/somedomain.dynu.net.csr.conf'
[Wed Feb 12 15:25:34 CET 2025] Single domain='somedomain.dynu.net'
[Wed Feb 12 15:25:34 CET 2025] seg='sirch'
[Wed Feb 12 15:25:34 CET 2025] _is_idn_d='somedomain.dynu.net'
[Wed Feb 12 15:25:34 CET 2025] _idn_temp
[Wed Feb 12 15:25:34 CET 2025] _is_idn_d='somedomain.dynu.net'
[Wed Feb 12 15:25:34 CET 2025] _idn_temp
[Wed Feb 12 15:25:34 CET 2025] _csr_cn='somedomain.dynu.net'
[Wed Feb 12 15:25:34 CET 2025] seg='sirch'
[Wed Feb 12 15:25:34 CET 2025] OK
[Wed Feb 12 15:25:34 CET 2025] 8:Le_Keylength='4096'
[Wed Feb 12 15:25:34 CET 2025] Getting domain auth token for each domain
[Wed Feb 12 15:25:34 CET 2025] seg='sirch'
[Wed Feb 12 15:25:34 CET 2025] _is_idn_d='somedomain.dynu.net'
[Wed Feb 12 15:25:34 CET 2025] _idn_temp
[Wed Feb 12 15:25:34 CET 2025] d
[Wed Feb 12 15:25:34 CET 2025] _identifiers='{"type":"dns","value":"somedomain.dynu.net"}'
[Wed Feb 12 15:25:34 CET 2025] _notBefore
[Wed Feb 12 15:25:34 CET 2025] _notAfter
[Wed Feb 12 15:25:34 CET 2025] url='https://acme.zerossl.com/v2/DV90/newOrder'
[Wed Feb 12 15:25:34 CET 2025] payload='{"identifiers": [{"type":"dns","value":"somedomain.dynu.net"}]}'
[Wed Feb 12 15:25:34 CET 2025] EC key
[Wed Feb 12 15:25:34 CET 2025] crv='P-256'
[Wed Feb 12 15:25:34 CET 2025] __ECC_KEY_LEN='256'
[Wed Feb 12 15:25:34 CET 2025] pubi='7'
[Wed Feb 12 15:25:34 CET 2025] pubj='11'
[Wed Feb 12 15:25:34 CET 2025] pubtext='04:c8:0e:fd:46:3b:94:14:4d:ef:07:6f:97:5d:f2:01:58:ce:d4:9c:5a:ee:65:23:bd:4f:5b:3e:bf:b6:f8:f1:3b:3a:16:08:eb:ef:fb:1e:e6:52:5c:17:53:f2:a9:39:4d:a3:c9:39:53:03:b6:74:c7:0c:64:15:c1:7b:b4:9e:d1'
[Wed Feb 12 15:25:34 CET 2025] xlen='32'
[Wed Feb 12 15:25:34 CET 2025] x='c8:0e:fd:46:3b:94:14:4d:ef:07:6f:97:5d:f2:01:58:ce:d4:9c:5a:ee:65:23:bd:4f:5b:3e:bf:b6:f8:f1:3b'
[Wed Feb 12 15:25:34 CET 2025] base64 single line.
[Wed Feb 12 15:25:34 CET 2025] xxd exists=127
[Wed Feb 12 15:25:34 CET 2025] _URGLY_PRINTF
[Wed Feb 12 15:25:34 CET 2025] xargs exists=0
[Wed Feb 12 15:25:34 CET 2025] xargs
[Wed Feb 12 15:25:34 CET 2025] x64='yA79RjuUFE3vB2-XXfIBWM7UnFruZSO9T1s-v7b48Ts'
[Wed Feb 12 15:25:34 CET 2025] y='3a:16:08:eb:ef:fb:1e:e6:52:5c:17:53:f2:a9:39:4d:a3:c9:39:53:03:b6:74:c7:0c:64:15:c1:7b:b4:9e:d1'
[Wed Feb 12 15:25:34 CET 2025] xxd exists=127
[Wed Feb 12 15:25:34 CET 2025] base64 single line.
[Wed Feb 12 15:25:34 CET 2025] _URGLY_PRINTF
[Wed Feb 12 15:25:34 CET 2025] xargs exists=0
[Wed Feb 12 15:25:34 CET 2025] xargs
[Wed Feb 12 15:25:34 CET 2025] y64='#deleted'
[Wed Feb 12 15:25:34 CET 2025] jwk='{"crv": "P-256", "kty": "EC", "x": "yA79RjuUFE3vB2-XXfIBWM7UnFruZSO9T1s-v7b48Ts", "y": "#deleted"}'
[Wed Feb 12 15:25:34 CET 2025] JWK_HEADER='{"alg": "ES256", "jwk": {"crv": "P-256", "kty": "EC", "x": "yA79RjuUFE3vB2-XXfIBWM7UnFruZSO9T1s-v7b48Ts", "y": "#deleted"}}'
[Wed Feb 12 15:25:34 CET 2025] base64 single line.
[Wed Feb 12 15:25:34 CET 2025] payload64='#deleted'
[Wed Feb 12 15:25:34 CET 2025] _request_retry_times='1'
[Wed Feb 12 15:25:34 CET 2025] Get nonce with HEAD. ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce'
[Wed Feb 12 15:25:34 CET 2025] HEAD
[Wed Feb 12 15:25:34 CET 2025] _post_url='https://acme.zerossl.com/v2/DV90/newNonce'
[Wed Feb 12 15:25:34 CET 2025] body
[Wed Feb 12 15:25:34 CET 2025] _postContentType='application/jose+json'
[Wed Feb 12 15:25:34 CET 2025] curl exists=0
[Wed Feb 12 15:25:34 CET 2025] mktemp exists=0
[Wed Feb 12 15:25:34 CET 2025] wget exists=0
[Wed Feb 12 15:25:34 CET 2025] _CURL='curl --silent --dump-header /etc/acme/http.header -L --trace-ascii /tmp/tmp.iciIpN -g -I '
[Wed Feb 12 15:25:36 CET 2025] _ret='0'
[Wed Feb 12 15:25:36 CET 2025] _headers='HTTP/2 200
server: nginx
date: Wed, 12 Feb 2025 14:25:36 GMT
content-type: application/octet-stream
replay-nonce: WZPd3fcI_6sFLLxNVusXxbdmT9puha7JvSNzj8ToW5M
cache-control: max-age=0, no-cache, no-store
access-control-allow-origin: *
link: https://acme.zerossl.com/v2/DV90;rel="index"
strict-transport-security: max-age=15724800; includeSubDomains
'
[Wed Feb 12 15:25:36 CET 2025] _CACHED_NONCE='WZPd3fcI_6sFLLxNVusXxbdmT9puha7JvSNzj8ToW5M'
[Wed Feb 12 15:25:36 CET 2025] nonce='WZPd3fcI_6sFLLxNVusXxbdmT9puha7JvSNzj8ToW5M'
[Wed Feb 12 15:25:36 CET 2025] protected='{"nonce": "WZPd3fcI_6sFLLxNVusXxbdmT9puha7JvSNzj8ToW5M", "url": "https://acme.zerossl.com/v2/DV90/newOrder", "alg": "ES256", "kid": "https://acme.zerossl.com/v2/DV90/account/#deleted"}'
[Wed Feb 12 15:25:36 CET 2025] base64 single line.
[Wed Feb 12 15:25:36 CET 2025] protected64='#deleted'
[Wed Feb 12 15:25:36 CET 2025] _signedECText=' 0:d=0 hl=2 l= 69 cons: SEQUENCE
2:d=1 hl=2 l= 33 prim: INTEGER :#deleted
37:d=1 hl=2 l= 32 prim: INTEGER :#deleted'
[Wed Feb 12 15:25:36 CET 2025] _ec_r='#deleted'
[Wed Feb 12 15:25:36 CET 2025] _ec_s='#deleted'
[Wed Feb 12 15:25:36 CET 2025] base64 single line.
[Wed Feb 12 15:25:36 CET 2025] xxd exists=127
[Wed Feb 12 15:25:36 CET 2025] _URGLY_PRINTF
[Wed Feb 12 15:25:36 CET 2025] xargs exists=0
[Wed Feb 12 15:25:36 CET 2025] xargs
[Wed Feb 12 15:25:36 CET 2025] _sig_t='#deleted'
[Wed Feb 12 15:25:36 CET 2025] sig='#deleted'
[Wed Feb 12 15:25:36 CET 2025] body='{"protected": "#deleted", "payload": "#deleted", "signature": "#deleted"}'
[Wed Feb 12 15:25:36 CET 2025] POST
[Wed Feb 12 15:25:36 CET 2025] _post_url='https://acme.zerossl.com/v2/DV90/newOrder'
[Wed Feb 12 15:25:36 CET 2025] body='{"protected": "#deleted", "payload": "#deleted", "signature": "#deleted"}'
[Wed Feb 12 15:25:36 CET 2025] _postContentType='application/jose+json'
[Wed Feb 12 15:25:36 CET 2025] Http already initialized.
[Wed Feb 12 15:25:36 CET 2025] _CURL='curl --silent --dump-header /etc/acme/http.header -L --trace-ascii /tmp/tmp.iciIpN -g '
[Wed Feb 12 15:25:37 CET 2025] _ret='0'
[Wed Feb 12 15:25:37 CET 2025] responseHeaders='HTTP/2 201
server: nginx
date: Wed, 12 Feb 2025 14:25:37 GMT
content-type: application/json
content-length: 276
replay-nonce: #deleted
cache-control: max-age=0, no-cache, no-store
access-control-allow-origin: *
location: https://acme.zerossl.com/v2/DV90/order/#deleted
strict-transport-security: max-age=15724800; includeSubDomains
'
[Wed Feb 12 15:25:37 CET 2025] code='201'
[Wed Feb 12 15:25:37 CET 2025] original='{"status":"pending","expires":"2025-05-12T20:41:49Z","identifiers":[{"type":"dns","value":"somedomain.dynu.net"}],"authorizations":["https://acme.zerossl.com/v2/DV90/authz/#deleted"],"finalize":"https://acme.zerossl.com/v2/DV90/order/#deleted/finalize"}'
[Wed Feb 12 15:25:37 CET 2025] _json_decode
[Wed Feb 12 15:25:37 CET 2025] _j_str='{"status":"pending","expires":"2025-05-12T20:41:49Z","identifiers":[{"type":"dns","value":"somedomain.dynu.net"}],"authorizations":["https://acme.zerossl.com/v2/DV90/authz/#deleted"],"finalize":"https://acme.zerossl.com/v2/DV90/order/#deleted/finalize"}'
[Wed Feb 12 15:25:37 CET 2025] response='{"status":"pending","expires":"2025-05-12T20:41:49Z","identifiers":[{"type":"dns","value":"somedomain.dynu.net"}],"authorizations":["https://acme.zerossl.com/v2/DV90/authz/#deleted"],"finalize":"https://acme.zerossl.com/v2/DV90/order/#deleted/finalize"}'
[Wed Feb 12 15:25:37 CET 2025] Le_LinkOrder='https://acme.zerossl.com/v2/DV90/order/#deleted'
[Wed Feb 12 15:25:37 CET 2025] Le_OrderFinalize='https://acme.zerossl.com/v2/DV90/order/#deleted/finalize'
[Wed Feb 12 15:25:37 CET 2025] OK
[Wed Feb 12 15:25:37 CET 2025] 9:Le_OrderFinalize='https://acme.zerossl.com/v2/DV90/order/#deleted/finalize'
[Wed Feb 12 15:25:37 CET 2025] _json_decode
[Wed Feb 12 15:25:37 CET 2025] _j_str='{"status":"pending","expires":"2025-05-12T20:41:49Z","identifiers":[{"type":"dns","value":"somedomain.dynu.net"}],"authorizations":["https://acme.zerossl.com/v2/DV90/authz/#deleted"],"finalize":"https://acme.zerossl.com/v2/DV90/order/#deleted/finalize"}'
[Wed Feb 12 15:25:37 CET 2025] _authorizations_seg='https://acme.zerossl.com/v2/DV90/authz/#deleted'
[Wed Feb 12 15:25:37 CET 2025] _authz_url='https://acme.zerossl.com/v2/DV90/authz/#deleted'
[Wed Feb 12 15:25:37 CET 2025] url='https://acme.zerossl.com/v2/DV90/authz/#deleted'
[Wed Feb 12 15:25:37 CET 2025] payload
[Wed Feb 12 15:25:37 CET 2025] Use cached jwk for file: /etc/acme/ca/acme.zerossl.com/v2/DV90/account.key
[Wed Feb 12 15:25:37 CET 2025] base64 single line.
[Wed Feb 12 15:25:37 CET 2025] payload64
[Wed Feb 12 15:25:37 CET 2025] _request_retry_times='1'
[Wed Feb 12 15:25:37 CET 2025] Use _CACHED_NONCE='#deleted'
[Wed Feb 12 15:25:37 CET 2025] nonce='#deleted'
[Wed Feb 12 15:25:37 CET 2025] protected='{"nonce": "#deleted", "url": "https://acme.zerossl.com/v2/DV90/authz/#deleted", "alg": "ES256", "kid": "https://acme.zerossl.com/v2/DV90/account/#deleted"}'
[Wed Feb 12 15:25:37 CET 2025] base64 single line.
[Wed Feb 12 15:25:37 CET 2025] protected64='#deleted'
[Wed Feb 12 15:25:37 CET 2025] _signedECText=' 0:d=0 hl=2 l= 68 cons: SEQUENCE
2:d=1 hl=2 l= 32 prim: INTEGER :#deleted
36:d=1 hl=2 l= 32 prim: INTEGER :#deleted'
[Wed Feb 12 15:25:37 CET 2025] _ec_r='#deleted'
[Wed Feb 12 15:25:37 CET 2025] _ec_s='#deleted'
[Wed Feb 12 15:25:37 CET 2025] xxd exists=127
[Wed Feb 12 15:25:37 CET 2025] base64 single line.
[Wed Feb 12 15:25:37 CET 2025] _URGLY_PRINTF
[Wed Feb 12 15:25:37 CET 2025] xargs exists=0
[Wed Feb 12 15:25:37 CET 2025] xargs
[Wed Feb 12 15:25:37 CET 2025] _sig_t='#deleted'
[Wed Feb 12 15:25:37 CET 2025] sig='#deleted'
[Wed Feb 12 15:25:37 CET 2025] body='{"protected": "#deleted", "payload": "", "signature": "#deleted"}'
[Wed Feb 12 15:25:37 CET 2025] POST
[Wed Feb 12 15:25:37 CET 2025] _post_url='https://acme.zerossl.com/v2/DV90/authz/#deleted'
[Wed Feb 12 15:25:37 CET 2025] body='{"protected": "#deleted", "payload": "", "signature": "#deleted"}'
[Wed Feb 12 15:25:37 CET 2025] _postContentType='application/jose+json'
[Wed Feb 12 15:25:37 CET 2025] Http already initialized.
[Wed Feb 12 15:25:37 CET 2025] _CURL='curl --silent --dump-header /etc/acme/http.header -L --trace-ascii /tmp/tmp.iciIpN -g '
[Wed Feb 12 15:25:38 CET 2025] _ret='0'
[Wed Feb 12 15:25:38 CET 2025] responseHeaders='HTTP/2 200
server: nginx
date: Wed, 12 Feb 2025 14:25:38 GMT
content-type: application/json
content-length: 447
replay-nonce: #deleted
cache-control: max-age=0, no-cache, no-store
access-control-allow-origin: *
link: https://acme.zerossl.com/v2/DV90;rel="index"
retry-after: 86400
strict-transport-security: max-age=15724800; includeSubDomains
'
[Wed Feb 12 15:25:38 CET 2025] code='200'
[Wed Feb 12 15:25:38 CET 2025] original='{"identifier":{"type":"dns","value":"somedomain.dynu.net"},"status":"pending","expires":"2025-03-13T20:41:49Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"pending","token":"#deleted"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}]}'
[Wed Feb 12 15:25:38 CET 2025] _json_decode
[Wed Feb 12 15:25:38 CET 2025] _j_str='{"identifier":{"type":"dns","value":"somedomain.dynu.net"},"status":"pending","expires":"2025-03-13T20:41:49Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"pending","token":"#deleted"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}]}'
[Wed Feb 12 15:25:38 CET 2025] response='{"identifier":{"type":"dns","value":"somedomain.dynu.net"},"status":"pending","expires":"2025-03-13T20:41:49Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"pending","token":"#deleted"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}]}'
[Wed Feb 12 15:25:38 CET 2025] response='{"identifier":{"type":"dns","value":"somedomain.dynu.net"},"status":"pending","expires":"2025-03-13T20:41:49Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"pending","token":"#deleted"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}]}'
[Wed Feb 12 15:25:38 CET 2025] _d='somedomain.dynu.net'
[Wed Feb 12 15:25:38 CET 2025] _authorizations_map='somedomain.dynu.net,{"identifier":{"type":"dns","value":"somedomain.dynu.net"},"status":"pending","expires":"2025-03-13T20:41:49Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"pending","token":"#deleted"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}]}
'
[Wed Feb 12 15:25:38 CET 2025] d='somedomain.dynu.net'
[Wed Feb 12 15:25:38 CET 2025] Getting webroot for domain='somedomain.dynu.net'
[Wed Feb 12 15:25:38 CET 2025] _w='dns_dynu'
[Wed Feb 12 15:25:38 CET 2025] _currentRoot='dns_dynu'
[Wed Feb 12 15:25:38 CET 2025] _is_idn_d='somedomain.dynu.net'
[Wed Feb 12 15:25:38 CET 2025] _idn_temp
[Wed Feb 12 15:25:38 CET 2025] _candidates='somedomain.dynu.net,{"identifier":{"type":"dns","value":"somedomain.dynu.net"},"status":"pending","expires":"2025-03-13T20:41:49Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"pending","token":"#deleted"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}]}'
[Wed Feb 12 15:25:38 CET 2025] response='{"identifier":{"type":"dns","value":"somedomain.dynu.net"},"status":"pending","expires":"2025-03-13T20:41:49Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"pending","token":"#deleted"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}]}'
[Wed Feb 12 15:25:38 CET 2025] base64 single line.
[Wed Feb 12 15:25:38 CET 2025] entry='"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"'
[Wed Feb 12 15:25:38 CET 2025] token='#deleted'
[Wed Feb 12 15:25:38 CET 2025] uri='https://acme.zerossl.com/v2/DV90/chall/#deleted'
[Wed Feb 12 15:25:38 CET 2025] keyauthorization='#deleted.#deleted'
[Wed Feb 12 15:25:38 CET 2025] dvlist='somedomain.dynu.net##deleted.#deleted#https://acme.zerossl.com/v2/DV90/chall/#deleted#dns-01#dns_dynu'
[Wed Feb 12 15:25:38 CET 2025] d
[Wed Feb 12 15:25:38 CET 2025] vlist='somedomain.dynu.net##deleted.#deleted#https://acme.zerossl.com/v2/DV90/chall/#deleted#dns-01#dns_dynu,'
[Wed Feb 12 15:25:38 CET 2025] d='somedomain.dynu.net'
[Wed Feb 12 15:25:38 CET 2025] _d_alias
[Wed Feb 12 15:25:38 CET 2025] txtdomain='_acme-challenge.somedomain.dynu.net'
[Wed Feb 12 15:25:38 CET 2025] base64 single line.
[Wed Feb 12 15:25:38 CET 2025] txt='#deleted'
[Wed Feb 12 15:25:38 CET 2025] d_api='/usr/lib/acme/dnsapi/dns_dynu.sh'
[Wed Feb 12 15:25:38 CET 2025] dns_entry='somedomain.dynu.net,_acme-challenge.somedomain.dynu.net,,dns_dynu,#deleted,/usr/lib/acme/dnsapi/dns_dynu.sh'
[Wed Feb 12 15:25:38 CET 2025] Found domain api file: /usr/lib/acme/dnsapi/dns_dynu.sh
[Wed Feb 12 15:25:38 CET 2025] dns_dynu_add exists=0
[Wed Feb 12 15:25:38 CET 2025] Adding txt value: #deleted for domain: _acme-challenge.somedomain.dynu.net
[Wed Feb 12 15:25:38 CET 2025] OK
[Wed Feb 12 15:25:38 CET 2025] 2:Dynu_ClientId='#deleted'
[Wed Feb 12 15:25:38 CET 2025] OK
[Wed Feb 12 15:25:38 CET 2025] 3:Dynu_Secret='#deleted'
[Wed Feb 12 15:25:38 CET 2025] Getting Dynu token.
[Wed Feb 12 15:25:38 CET 2025] base64 single line.
[Wed Feb 12 15:25:38 CET 2025] GET
[Wed Feb 12 15:25:38 CET 2025] url='https://api.dynu.com/v2/oauth2/token'
[Wed Feb 12 15:25:38 CET 2025] timeout=
[Wed Feb 12 15:25:38 CET 2025] Http already initialized.
[Wed Feb 12 15:25:38 CET 2025] _CURL='curl --silent --dump-header /etc/acme/http.header -L --trace-ascii /tmp/tmp.iciIpN -g '
[Wed Feb 12 15:25:39 CET 2025] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 56
[Wed Feb 12 15:25:39 CET 2025] Here is the curl dump log:
[Wed Feb 12 15:25:39 CET 2025] => Send header, 285 bytes (0x11d)
0000: GET /v2/oauth2/token HTTP/1.1
001f: Host: api.dynu.com
0033: User-Agent: acme.sh/3.0.6 (https://github.com/acmesh-official/ac
0073: me.sh)
007b: Accept: /
0088: Authorization: Basic YjVjYTc5NWItMzA5My00YTVkLWJmYzItOTQxYWY4YWM
00c8: xOWQ2OmVWVFczWTVVJjVaZDNlZjQzVWM1WTNkYzQ0M2JZYg==
00fb: Content-Type: application/json
011b:
[Wed Feb 12 15:25:39 CET 2025] ret='56'
[Wed Feb 12 15:25:39 CET 2025] Authentication failed.
[Wed Feb 12 15:25:39 CET 2025] Can not get token.
[Wed Feb 12 15:25:39 CET 2025] Detect root zone
[Wed Feb 12 15:25:39 CET 2025] h='somedomain.dynu.net'
[Wed Feb 12 15:25:39 CET 2025] dns/getroot/somedomain.dynu.net
[Wed Feb 12 15:25:39 CET 2025] Getting https://api.dynu.com/v2/dns/getroot/somedomain.dynu.net
[Wed Feb 12 15:25:39 CET 2025] GET
[Wed Feb 12 15:25:39 CET 2025] url='https://api.dynu.com/v2/dns/getroot/somedomain.dynu.net'
[Wed Feb 12 15:25:39 CET 2025] timeout=
[Wed Feb 12 15:25:39 CET 2025] Http already initialized.
[Wed Feb 12 15:25:39 CET 2025] _CURL='curl --silent --dump-header /etc/acme/http.header -L --trace-ascii /tmp/tmp.iciIpN -g '
[Wed Feb 12 15:25:40 CET 2025] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 56
[Wed Feb 12 15:25:40 CET 2025] Here is the curl dump log:
[Wed Feb 12 15:25:40 CET 2025] => Send header, 208 bytes (0xd0)
0000: GET /v2/dns/getroot/somedomain.dynu.net HTTP/1.1
002d: Host: api.dynu.com
0041: User-Agent: acme.sh/3.0.6 (https://github.com/acmesh-official/ac
0081: me.sh)
0089: Accept: /
0096: Authorization: Bearer
00ae: Content-Type: application/json
00ce:
[Wed Feb 12 15:25:40 CET 2025] ret='56'
[Wed Feb 12 15:25:40 CET 2025] error dns/getroot/somedomain.dynu.net
[Wed Feb 12 15:25:40 CET 2025] Invalid domain.
[Wed Feb 12 15:25:40 CET 2025] Error add txt for domain:_acme-challenge.somedomain.dynu.net
[Wed Feb 12 15:25:40 CET 2025] _on_issue_err
[Wed Feb 12 15:25:40 CET 2025] Please add '--debug' or '--log' to check more details.
[Wed Feb 12 15:25:40 CET 2025] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Wed Feb 12 15:25:40 CET 2025] _chk_vlist='somedomain.dynu.net##deleted.#deleted#https://acme.zerossl.com/v2/DV90/chall/#deleted#dns-01#dns_dynu,'
[Wed Feb 12 15:25:40 CET 2025] start to deactivate authz
[Wed Feb 12 15:25:40 CET 2025] Trigger domain validation.
[Wed Feb 12 15:25:40 CET 2025] _t_url='https://acme.zerossl.com/v2/DV90/chall/#deleted'
[Wed Feb 12 15:25:40 CET 2025] _t_key_authz='#deleted.#deleted'
[Wed Feb 12 15:25:40 CET 2025] _t_vtype
[Wed Feb 12 15:25:40 CET 2025] url='https://acme.zerossl.com/v2/DV90/chall/#deleted'
[Wed Feb 12 15:25:40 CET 2025] payload='{}'
[Wed Feb 12 15:25:40 CET 2025] Use cached jwk for file: /etc/acme/ca/acme.zerossl.com/v2/DV90/account.key
[Wed Feb 12 15:25:40 CET 2025] base64 single line.
[Wed Feb 12 15:25:40 CET 2025] payload64='e30'
[Wed Feb 12 15:25:40 CET 2025] _request_retry_times='1'
[Wed Feb 12 15:25:40 CET 2025] Use _CACHED_NONCE='#deleted'
[Wed Feb 12 15:25:40 CET 2025] nonce='#deleted'
[Wed Feb 12 15:25:40 CET 2025] protected='{"nonce": "#deleted", "url": "https://acme.zerossl.com/v2/DV90/chall/#deleted", "alg": "ES256", "kid": "https://acme.zerossl.com/v2/DV90/account/#deleted"}'
[Wed Feb 12 15:25:40 CET 2025] base64 single line.
[Wed Feb 12 15:25:40 CET 2025] protected64='#deleted'
[Wed Feb 12 15:25:40 CET 2025] _signedECText=' 0:d=0 hl=2 l= 69 cons: SEQUENCE
2:d=1 hl=2 l= 33 prim: INTEGER :#deleted
37:d=1 hl=2 l= 32 prim: INTEGER :#deleted'
[Wed Feb 12 15:25:40 CET 2025] _ec_r='#deleted'
[Wed Feb 12 15:25:40 CET 2025] _ec_s='#deleted'
[Wed Feb 12 15:25:40 CET 2025] base64 single line.
[Wed Feb 12 15:25:40 CET 2025] xxd exists=127
[Wed Feb 12 15:25:40 CET 2025] _URGLY_PRINTF
[Wed Feb 12 15:25:40 CET 2025] xargs exists=0
[Wed Feb 12 15:25:40 CET 2025] xargs
[Wed Feb 12 15:25:40 CET 2025] _sig_t='#deleted'
[Wed Feb 12 15:25:40 CET 2025] sig='#deleted'
[Wed Feb 12 15:25:40 CET 2025] body='{"protected": "#deleted", "payload": "e30", "signature": "#deleted"}'
[Wed Feb 12 15:25:40 CET 2025] POST
[Wed Feb 12 15:25:40 CET 2025] _post_url='https://acme.zerossl.com/v2/DV90/chall/#deleted'
[Wed Feb 12 15:25:40 CET 2025] body='{"protected": "#deleted", "payload": "e30", "signature": "#deleted"}'
[Wed Feb 12 15:25:40 CET 2025] _postContentType='application/jose+json'
[Wed Feb 12 15:25:40 CET 2025] Http already initialized.
[Wed Feb 12 15:25:40 CET 2025] _CURL='curl --silent --dump-header /etc/acme/http.header -L --trace-ascii /tmp/tmp.iciIpN -g '
[Wed Feb 12 15:25:42 CET 2025] _ret='0'
[Wed Feb 12 15:25:42 CET 2025] responseHeaders='HTTP/2 200
server: nginx
date: Wed, 12 Feb 2025 14:25:42 GMT
content-type: application/json
content-length: 163
replay-nonce: #deleted
cache-control: max-age=0, no-cache, no-store
access-control-allow-origin: *
link: https://acme.zerossl.com/v2/DV90/authz/#deleted;rel="up"
retry-after: 60
strict-transport-security: max-age=15724800; includeSubDomains
'
[Wed Feb 12 15:25:42 CET 2025] code='200'
[Wed Feb 12 15:25:42 CET 2025] original='{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}'
[Wed Feb 12 15:25:42 CET 2025] _json_decode
[Wed Feb 12 15:25:42 CET 2025] _j_str='{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}'
[Wed Feb 12 15:25:42 CET 2025] response='{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/#deleted","status":"processing","token":"#deleted"}'
[Wed Feb 12 15:25:42 CET 2025] openssl exists=0
[Wed Feb 12 15:25:42 CET 2025] nginx exists=127
[Wed Feb 12 15:25:42 CET 2025] socat exists=0
[Wed Feb 12 15:25:42 CET 2025] Diagnosis versions:
openssl:openssl
OpenSSL 1.1.1w 11 Sep 2023 (Library: OpenSSL 1.1.1s 1 Nov 2022)
apache:
apache doesn't exist.
nginx:
nginx doesn't exist.
socat:
socat by Gerhard Rieger and contributors - see www.dest-unreach.org
socat version 1.7.4.1 on 1721689001
running on Linux version #0 SMP Fri Oct 14 22:44:41 2022, release 5.10.146, machine armv7l
features:
#define WITH_STDIO 1
#define WITH_FDNUM 1
#define WITH_FILE 1
#define WITH_CREAT 1
#define WITH_GOPEN 1
#define WITH_TERMIOS 1
#define WITH_PIPE 1
#define WITH_UNIX 1
#define WITH_ABSTRACT_UNIXSOCKET 1
#define WITH_IP4 1
#define WITH_IP6 1
#define WITH_RAWIP 1
#define WITH_GENERICSOCKET 1
#define WITH_INTERFACE 1
#define WITH_TCP 1
#define WITH_UDP 1
#define WITH_SCTP 1
#define WITH_LISTEN 1
#define WITH_SOCKS4 1
#define WITH_SOCKS4A 1
#define WITH_VSOCK 1
#define WITH_PROXY 1
#define WITH_SYSTEM 1
#define WITH_EXEC 1
#undef WITH_READLINE
#define WITH_TUN 1
#define WITH_PTY 1
#undef WITH_OPENSSL
#undef WITH_FIPS
#undef WITH_LIBWRAP
#define WITH_SYCLS 1
#define WITH_FILAN 1
#define WITH_RETRY 1
#define WITH_MSGLEVEL 0 /debug/
[Wed Feb 12 15:25:42 CET 2025] pid
[Wed Feb 12 15:25:42 CET 2025] No need to restore nginx, skip.
[Wed Feb 12 15:25:42 CET 2025] _clearupdns
[Wed Feb 12 15:25:42 CET 2025] dns_entries
[Wed Feb 12 15:25:42 CET 2025] skip dns.
@github-actions GitHub Actions
Copy link

Please upgrade to the latest code and try again first. Maybe it's already fixed. acme.sh --upgrade If it's still not working, please provide the log with --debug 2, otherwise, nobody can help you.

@realsirch
Copy link
Author

nobody?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@realsirch