Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- > 2018-10-27 10:51:01,314:DEBUG:certbot.main:Root logging level set at 20
- > 2018-10-27 10:51:01,315:INFO:certbot.main:Saving debug log to /var/log/letsencrypt/letsencrypt.log
- > 2018-10-27 10:51:01,317:DEBUG:certbot.main:certbot version: 0.10.2
- > 2018-10-27 10:51:01,317:DEBUG:certbot.main:Arguments: ['--apache', '-m', 'my@email.com', '-d', 'server.base.com', '-d', 'www.server.base.com']
- > 2018-10-27 10:51:01,318:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#webroot,PluginEntryPoint#null,PluginEntryPoint#manual,PluginEntryPoint#standalone)
- > 2018-10-27 10:51:01,318:DEBUG:certbot.plugins.selection:Requested authenticator apache and installer apache
- > 2018-10-27 10:51:01,956:DEBUG:certbot.plugins.selection:Single candidate plugin: * apache
- > Description: Apache Web Server plugin - Beta
- > Interfaces: IAuthenticator, IInstaller, IPlugin
- > Entry point: apache = certbot_apache.configurator:ApacheConfigurator
- > Initialized: <certbot_apache.configurator.ApacheConfigurator object at 0x7fd634670f90>
- > Prep: True
- > 2018-10-27 10:51:01,959:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_apache.configurator.ApacheConfigurator object at 0x7fd634670f90> and installer <certbot_apache.configurator.ApacheConfigurator object at 0x7fd634670$
- > 2018-10-27 10:51:01,965:DEBUG:certbot.main:Picked account: <Account(4009d111fce4292971c10406f74afad8)>
- > 2018-10-27 10:51:01,967:DEBUG:root:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
- > 2018-10-27 10:51:01,974:DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
- > 2018-10-27 10:51:02,549:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
- > 2018-10-27 10:51:02,551:DEBUG:acme.client:Received response:
- > HTTP 200
- > Server: nginx
- > Content-Type: application/json
- > Content-Length: 658
- > Replay-Nonce: 9ztTTjHAXRF3eKpRCIiaKnOpnLOYJfaGiG08ix7rH1c
- > X-Frame-Options: DENY
- > Strict-Transport-Security: max-age=604800
- > Expires: Sat, 27 Oct 2018 10:51:02 GMT
- > Cache-Control: max-age=0, no-cache, no-store
- > Pragma: no-cache
- > Date: Sat, 27 Oct 2018 10:51:02 GMT
- > Connection: keep-alive
- >
- > {
- > "L1L9hxdti2A": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
- > "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",
- > "meta": {
- > "caaIdentities": [
- > "letsencrypt.org"
- > ],
- > "terms-of-service": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
- > "website": "https://letsencrypt.org"
- > },
- > "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",
- > "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",
- > "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",
- > "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"
- > }
- > 018-10-27 10:51:02,552:INFO:certbot.main:Obtaining a new certificate
- > 2018-10-27 10:51:02,553:DEBUG:root:Requesting fresh nonce
- > 2018-10-27 10:51:02,553:DEBUG:root:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz.
- > 2018-10-27 10:51:02,768:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-authz HTTP/1.1" 405 0
- > 2018-10-27 10:51:02,770:DEBUG:acme.client:Received response:
- > HTTP 405
- > Server: nginx
- > Content-Type: application/problem+json
- > Content-Length: 91
- > Allow: POST
- > Replay-Nonce: 7uJl7xKi1aI9iw14ttMId5PGMiAdk_x9ZChNdDzelOA
- > Expires: Sat, 27 Oct 2018 10:51:02 GMT
- > Cache-Control: max-age=0, no-cache, no-store
- > Pragma: no-cache
- > Date: Sat, 27 Oct 2018 10:51:02 GMT
- > Connection: keep-alive
- >
- > 2018-10-27 10:51:02,770:DEBUG:acme.client:Storing nonce: 7uJl7xKi1aI9iw14ttMId5PGMiAdk_x9ZChNdDzelOA
- > 2018-10-27 10:51:02,771:DEBUG:acme.client:JWS payload:
- > {
- > "identifier": {
- > "type": "dns",
- > "value": "server.base.com"
- > },
- > "resource": "new-authz"
- > }
- > 2018-10-27 10:51:02,781:DEBUG:root:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
- > {
- > "header": {
- > "alg": "RS256",
- > "jwk": {
- > "e": "AQAB",
- > "kty": "RSA",
- > "n": "tnCIgka_08cCvvz-8GCiR8my93sxjUtUNXTfNtMytyyTaFa8CR8N0ufYmL991gqrpD2TrJsKsj0MHHcz2Qery8LvXAM5jK8-sATVzRKsjNfxrTN9m74Ifp1cljlVNYlwCOAe0QOaPssGpNOPahWMz8BdwTY4bEYC9DPSqvLnhLffG1mOSFQg96CzYbWZNhf7Xx3SBsGApaci3sBEm2QNzwpYaPmhN7TF$
- > }
- > },
- > "protected": "eyJub25jZSI6ICI3dUpsN3hLaTFhSTlpdzE0dHRNSWQ1UEdNaUFka194OVpDaE5kRHplbE9BIn0",
- > "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAic2VydmVyLmJhc2UuY29tIgogIH0sIAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0",
- > "signature": "Tgs3zZTnGxa63fYc3Y1GXWQyfJjxWsjFMmHQBgCjtLgdx3qeC2ZJIPNz_4KwIbU8Fu8GPfe2YivTqJos2ki3TsYq0UUlI7RnUVj3gNtoeyg-_7Q5C9Sewn7j_PXbr6KmMmmiUar7ZO1tlf0FNAnqzSn6-8H74ObB_K8zdx4l3MUkrKJii3j4HCUGgq2nmjFxwRZ-27EJ4cLqs0uNXvOg9iRPBplk$
- > }
- > 2018-10-27 10:51:03,085:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 994
- > 2018-10-27 10:51:03,086:DEBUG:acme.client:Received response:
- > HTTP 201
- > Server: nginx
- > Content-Type: application/json
- > Content-Length: 994
- > Boulder-Requester: 44510204
- > Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
- > Location: https://acme-v01.api.letsencrypt.org/acme/authz/G7QDjXgeNnzcUu5glJLeelrCPi_4yHqCkYJGT0ttZ7U
- > Replay-Nonce: NmWHwmskCqufS3vdI8jCzUxViCOavRj3Edc_ZzmAvYc
- > X-Frame-Options: DENY
- > Strict-Transport-Security: max-age=604800
- > Expires: Sat, 27 Oct 2018 10:51:03 GMT
- > Cache-Control: max-age=0, no-cache, no-store
- > Pragma: no-cache
- > Date: Sat, 27 Oct 2018 10:51:03 GMT
- > Connection: keep-alive
- >
- >
- > "identifier": {
- > "type": "dns",
- > "value": "server.base.com"
- > },
- > "status": "pending",
- > "expires": "2018-11-03T10:46:42Z",
- > "challenges": [
- > {
- > "type": "dns-01",
- > "status": "pending",
- > "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/G7QDjXgeNnzcUu5glJLeelrCPi_4yHqCkYJGT0ttZ7U/8682149941",
- > "token": "6Qi4_csIQBHKoPzjskM6G1f8c1Y8mmN5b3EdfpwWD_8"
- > },
- > {
- > "type": "tls-alpn-01",
- > "status": "pending",
- > "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/G7QDjXgeNnzcUu5glJLeelrCPi_4yHqCkYJGT0ttZ7U/8682149942",
- > "token": "GpcuyUaaEBWr2PlW3ZtelAluwZSqN2QQuZsP44zplxg"
- > },
- > {
- > "type": "http-01",
- > "status": "pending",
- > "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/G7QDjXgeNnzcUu5glJLeelrCPi_4yHqCkYJGT0ttZ7U/8682149943",
- > "token": "-Pn9G9kNU8gGNvPkxVgBQHwyFc99B-S1Mq3jf722q-o"
- > }
- > ],
- > "combinations": [
- > [
- > 0
- > ],
- > [
- > 2
- > ],
- > [
- > 1
- > ]
- > ]
- > }
- > 2018-10-27 10:51:03,087:DEBUG:acme.client:Storing nonce: NmWHwmskCqufS3vdI8jCzUxViCOavRj3Edc_ZzmAvYc
- > 2018-10-27 10:51:03,088:DEBUG:acme.challenges:tls-alpn-01 was not recognized, full message: {u'status': u'pending', u'token': u'GpcuyUaaEBWr2PlW3ZtelAluwZSqN2QQuZsP44zplxg', u'type': u'tls-alpn-01', u'uri': u'https://acme-v01.api.letsen$
- > 2018-10-27 10:51:03,089:DEBUG:acme.client:JWS payload:
- > {
- > "identifier": {
- > "type": "dns",
- > "value": "www.server.base.com"
- > },
- > "resource": "new-authz"
- > }
- > 2018-10-27 10:51:03,096:DEBUG:root:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
- > {
- >
- > "header": {
- > "alg": "RS256",
- > "jwk": {
- > "e": "AQAB",
- > "kty": "RSA",
- > "n": "tnCIgka_08cCvvz-8GCiR8my93sxjUtUNXTfNtMytyyTaFa8CR8N0ufYmL991gqrpD2TrJsKsj0MHHcz2Qery8LvXAM5jK8-sATVzRKsjNfxrTN9m74Ifp1cljlVNYlwCOAe0QOaPssGpNOPahWMz8BdwTY4bEYC9DPSqvLnhLffG1mOSFQg96CzYbWZNhf7Xx3SBsGApaci3sBEm2QNzwpYaPmhN7TF$
- > }
- > },
- > "protected": "eyJub25jZSI6ICJObVdId21za0NxdWZTM3ZkSThqQ3pVeFZpQ09hdlJqM0VkY19aem1BdlljIn0",
- > "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAid3d3LnNlcnZlci5iYXNlLmNvbSIKICB9LCAKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9",
- > "signature": "bbMyA6hajpcJM1LE78urMQzSIzJ5VjLXdbOyMlJ7iNJwDyMEPLp4QAe8vUcNHCtoXjAzSKn5jzpTI-d1OzNcS7r2BwvNoHQGL-ZA8AuE8Ewhy-Vgb6yoTh9cnbeFKuMFA__7Zog0sLU3Q_yHCPmoiT77dv4BuAn-NG-sNx8uh1KtM9xZ6IX_uafJrOS_UGOrrYaxU2kdd7YWT2K2FEDqCYTth6eM$
- > }
- > 2018-10-27 10:51:03,390:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 998
- > 2018-10-27 10:51:03,391:DEBUG:acme.client:Received response:
- > HTTP 201
- > Server: nginx
- > Content-Type: application/json
- > Content-Length: 998
- > Boulder-Requester: 44510204
- > Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
- > Location: https://acme-v01.api.letsencrypt.org/acme/authz/gRmY34yajnejE3IiGJoHGwLFls3bSAimuCsKExIl0yU
- > Replay-Nonce: ZpVu6HAH0AQWN1BHSaF6jEx4F0MqclPY_VYm4JMCiLE
- > X-Frame-Options: DENY
- > Strict-Transport-Security: max-age=604800
- > Expires: Sat, 27 Oct 2018 10:51:03 GMT
- > Cache-Control: max-age=0, no-cache, no-store
- > Pragma: no-cache
- > Date: Sat, 27 Oct 2018 10:51:03 GMT
- > Connection: keep-alive
- > {
- > "identifier": {
- > "type": "dns",
- > "value": "www.server.base.com"
- > },
- > "status": "pending",
- > "expires": "2018-11-02T21:15:30Z",
- > "challenges": [
- > {
- > "type": "dns-01",
- > "status": "pending",
- > "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/gRmY34yajnejE3IiGJoHGwLFls3bSAimuCsKExIl0yU/8664364127",
- > "token": "NyjjJmzRDG7RBcPRDIgF6eojZQNzk1ex8bEcul65nzk"
- > },
- > {
- > "type": "tls-alpn-01",
- > "status": "pending",
- > "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/gRmY34yajnejE3IiGJoHGwLFls3bSAimuCsKExIl0yU/8664364128",
- > "token": "_HOvBeYAQpCxxMmTvSjIZ1GXQ0LwAIQ9NQ_oiuMlEbE"
- > },
- > {
- > "type": "http-01",
- > "status": "pending",
- > "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/gRmY34yajnejE3IiGJoHGwLFls3bSAimuCsKExIl0yU/8664364130",
- > "token": "rjhgv3_wqKg1sa0_E8IpRzzR95XBAweAmpqC9AQZvYY"
- > }
- > ],
- > "combinations": [
- > [
- > 2
- > ],
- > [
- > 1
- > ],
- > [
- > 0
- > ]
- > ]
- > }
- > 2018-10-27 10:51:03,392:DEBUG:acme.client:Storing nonce: ZpVu6HAH0AQWN1BHSaF6jEx4F0MqclPY_VYm4JMCiLE
- > 2018-10-27 10:51:03,393:DEBUG:acme.challenges:tls-alpn-01 was not recognized, full message: {u'status': u'pending', u'token': u'_HOvBeYAQpCxxMmTvSjIZ1GXQ0LwAIQ9NQ_oiuMlEbE', u'type': u'tls-alpn-01', u'uri': u'https://acme-v01.api.letsen$
- > 2018-10-27 10:51:03,393:INFO:certbot.auth_handler:Performing the following challenges:
- > 2018-10-27 10:51:03,394:CRITICAL:certbot.auth_handler:Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.
- > 2018-10-27 10:51:03,396:DEBUG:certbot.main:Exiting abnormally:
- > Traceback (most recent call last):
- > File "/usr/bin/certbot", line 11, in <module>
- > load_entry_point('certbot==0.10.2', 'console_scripts', 'certbot')()
- > File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 849, in main
- > return config.func(config, plugins)
- > File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 575, in run
- > action, lineage = _auth_from_available(le_client, config, domains, certname)
- > File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 107, in _auth_from_available
- > lineage = le_client.obtain_and_enroll_certificate(domains, certname)
- > File "/usr/lib/python2.7/dist-packages/certbot/client.py", line 291, in obtain_and_enroll_certificate
- > certr, chain, key, _ = self.obtain_certificate(domains)
- > File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 69, in get_authorizations
- > self._choose_challenges(domains)
- > File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 99, in _choose_challenges
- > self.authzr[dom].body.combinations)
- > File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 370, in gen_challenge_path
- > return _find_smart_path(challbs, preferences, combinations)
- > File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 407, in _find_smart_path
- > _report_no_chall_path()
- > File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 438, in _report_no_chall_path
- > raise errors.AuthorizationError(msg)
- > AuthorizationError: Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement