Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- 2022-10-11 23:26:07,746:DEBUG:certbot._internal.main:certbot version: 1.31.0
- 2022-10-11 23:26:07,746:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/bin/certbot
- 2022-10-11 23:26:07,746:DEBUG:certbot._internal.main:Arguments: ['--non-interactive', '--renew-by-default', '--server', 'https://acme-v02.api.letsencrypt.org/directory', '-a', 'dns-duckdns', '--dns-duckdns-credentials', '/config/dns-conf/duckdns.ini', '--dns-duckdns-propagation-seconds', '60', '--rsa-key-size', '4096', '-m', '###', '--no-eff-email', '--agree-tos', '-d', 'servraid.duckdns.org']
- 2022-10-11 23:26:07,747:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#certbot-dns-acmedns:dns-acmedns,PluginEntryPoint#certbot-dns-aliyun:dns-aliyun,PluginEntryPoint#certbot-dns-azure:dns-azure,PluginEntryPoint#certbot-dns-cpanel:cpanel,PluginEntryPoint#certbot-dns-desec:dns-desec,PluginEntryPoint#certbot-dns-directadmin:directadmin,PluginEntryPoint#certbot-dns-dnspod:dns-dnspod,PluginEntryPoint#certbot-dns-do:dns-do,PluginEntryPoint#certbot-dns-domeneshop:dns-domeneshop,PluginEntryPoint#certbot-dns-duckdns:dns-duckdns,PluginEntryPoint#certbot-dns-dynu:dns-dynu,PluginEntryPoint#certbot-dns-godaddy:dns-godaddy,PluginEntryPoint#certbot-dns-he:dns-he,PluginEntryPoint#certbot-dns-hetzner:dns-hetzner,PluginEntryPoint#certbot-dns-infomaniak:dns-infomaniak,PluginEntryPoint#certbot-dns-inwx:dns-inwx,PluginEntryPoint#certbot-dns-ionos:dns-ionos,PluginEntryPoint#certbot-dns-loopia:dns-loopia,PluginEntryPoint#certbot-dns-netcup:dns-netcup,PluginEntryPoint#certbot-dns-njalla:dns-njalla,PluginEntryPoint#certbot-dns-porkbun:dns-porkbun,PluginEntryPoint#certbot-dns-standalone:dns-standalone,PluginEntryPoint#certbot-dns-transip:dns-transip,PluginEntryPoint#certbot-dns-vultr:dns-vultr,PluginEntryPoint#certbot-plugin-gandi:dns,PluginEntryPoint#certbot-plugin-gandi:dns-gandi,PluginEntryPoint#certbot-route53:auth,PluginEntryPoint#cpanel,PluginEntryPoint#directadmin,PluginEntryPoint#dns,PluginEntryPoint#dns-acmedns,PluginEntryPoint#dns-aliyun,PluginEntryPoint#dns-azure,PluginEntryPoint#dns-cloudflare,PluginEntryPoint#dns-cloudxns,PluginEntryPoint#dns-desec,PluginEntryPoint#dns-digitalocean,PluginEntryPoint#dns-dnsimple,PluginEntryPoint#dns-dnsmadeeasy,PluginEntryPoint#dns-dnspod,PluginEntryPoint#dns-do,PluginEntryPoint#dns-domeneshop,PluginEntryPoint#dns-duckdns,PluginEntryPoint#dns-dynu,PluginEntryPoint#dns-gandi,PluginEntryPoint#dns-gehirn,PluginEntryPoint#dns-godaddy,PluginEntryPoint#dns-google,PluginEntryPoint#dns-he,PluginEntryPoint#dns-hetzner,PluginEntryPoint#dns-infomaniak,PluginEntryPoint#dns-inwx,PluginEntryPoint#dns-ionos,PluginEntryPoint#dns-linode,PluginEntryPoint#dns-loopia,PluginEntryPoint#dns-luadns,PluginEntryPoint#dns-netcup,PluginEntryPoint#dns-njalla,PluginEntryPoint#dns-nsone,PluginEntryPoint#dns-ovh,PluginEntryPoint#dns-porkbun,PluginEntryPoint#dns-rfc2136,PluginEntryPoint#dns-route53,PluginEntryPoint#dns-sakuracloud,PluginEntryPoint#dns-standalone,PluginEntryPoint#dns-transip,PluginEntryPoint#dns-vultr,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
- 2022-10-11 23:26:07,773:DEBUG:certbot._internal.log:Root logging level set at 30
- 2022-10-11 23:26:07,775:DEBUG:certbot._internal.plugins.selection:Requested authenticator dns-duckdns and installer None
- 2022-10-11 23:26:07,779:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * dns-duckdns
- Description: Obtain certificates using a DNS TXT record for DuckDNS domains
- Interfaces: Authenticator, Plugin
- Entry point: dns-duckdns = certbot_dns_duckdns.cert.client:Authenticator
- Initialized: <certbot_dns_duckdns.cert.client.Authenticator object at 0x14c455082340>
- Prep: True
- 2022-10-11 23:26:07,779:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_dns_duckdns.cert.client.Authenticator object at 0x14c455082340> and installer None
- 2022-10-11 23:26:07,779:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator dns-duckdns, Installer None
- 2022-10-11 23:26:07,798:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/771871416', new_authzr_uri=None, terms_of_service=None), 89ed1fff77e372a59d33a5dc54db6ef2, Meta(creation_dt=datetime.datetime(2022, 10, 12, 2, 14, 32, tzinfo=<UTC>), creation_host='b8aaa3d0eb43', register_to_eff=None))>
- 2022-10-11 23:26:07,799:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
- 2022-10-11 23:26:07,979:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Wed, 12 Oct 2022 03:26:07 GMT
- Content-Type: application/json
- Content-Length: 659
- Connection: keep-alive
- Cache-Control: public, max-age=0, no-cache
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
- "m-9FPgr93Qo": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
- "meta": {
- "caaIdentities": [
- "letsencrypt.org"
- ],
- "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf",
- "website": "https://letsencrypt.org"
- },
- "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
- "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
- "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
- "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
- }
- 2022-10-11 23:26:07,981:DEBUG:certbot._internal.display.obj:Notifying user: Requesting a certificate for servraid.duckdns.org
- 2022-10-11 23:26:08,466:DEBUG:certbot.crypto_util:Generating RSA key (4096 bits): /etc/letsencrypt/keys/0007_key-certbot.pem
- 2022-10-11 23:26:08,473:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0020_csr-certbot.pem
- 2022-10-11 23:26:08,474:DEBUG:acme.client:Requesting fresh nonce
- 2022-10-11 23:26:08,474:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
- 2022-10-11 23:26:08,539:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Wed, 12 Oct 2022 03:26:08 GMT
- Connection: keep-alive
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 891Fo9U_tFXMOEMcl1rSxcdT8jyj8gA_MdMA4WcTTJ8n-uw
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- 2022-10-11 23:26:08,539:DEBUG:acme.client:Storing nonce: 891Fo9U_tFXMOEMcl1rSxcdT8jyj8gA_MdMA4WcTTJ8n-uw
- 2022-10-11 23:26:08,539:DEBUG:acme.client:JWS payload:
- b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "servraid.duckdns.org"\n }\n ]\n}'
- 2022-10-11 23:26:08,544:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
- {
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzcxODcxNDE2IiwgIm5vbmNlIjogIjg5MUZvOVVfdEZYTU9FTWNsMXJTeGNkVDhqeWo4Z0FfTWRNQTRXY1RUSjhuLXV3IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ",
- "signature": "i3AMWXAq1pvCM9GiG7OtqIRjSA3VAjRJ9iBB2uScNDLAIA57ZTKkGJR1NePkbTjWlv0b93nsRsoi4eWcpOicpDJ4kWuCyCRF_ZPOgGpNoWNzcIMpZP2cbY7ASVFOLg1LfpWR0iHo5ieK3F0QHsSUy256fxOi6vZq5eJ_HhMy9trJQm7LfsGCOBpbUiIO6DNUkw0zEYUvtINH1bWSlb-CnnSwIt_czeR4u4Xw9t3lvdL0St9wbx-yNZuLfaUnez5XkmBAsJKbBD4AcTDEhwT2zmman8tax1bxvUeYF8Zaq-_OYxZjYXQB6iCFJqHLbhLIg38IJmYaTbGeF13I3kPdv5QIDnJjlEaLWBQ8X-U9_Ta0g-BQQs2wUFS-ICVBg5LUj_JIkJprftmItiDP65GR1CQwE-nxpjPZ5pU5Lk6Drj4lE5B9EB44Ac8qdbroyRLPa-QqIkwdk_UmcGQEBHX0OIEjx9GyMcBBYm-dAgAQeGrHEEPajBfHSN3F8hxjXIv7Au9EA0nFTeRqnA3SmRFDDvJPkXqp4p8F0P6l3puX5xihj_moO7RZsX7cGLAkkvmGrth2uXLHuWjx-T7APT6tWEx37zOSYGpvKeKcMLJr9S6-WvhyoeJ5cTVDLxqG0PhG9xQ8ljIMHSrPQ8MTSH5dsrra9Egachj8YdNt7WWgeB8",
- "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInNlcnZyYWlkLmR1Y2tkbnMub3JnIgogICAgfQogIF0KfQ"
- }
- 2022-10-11 23:26:08,771:DEBUG:acme.client:Received response:
- HTTP 201
- Server: nginx
- Date: Wed, 12 Oct 2022 03:26:08 GMT
- Content-Type: application/json
- Content-Length: 345
- Connection: keep-alive
- Boulder-Requester: 771871416
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Location: https://acme-v02.api.letsencrypt.org/acme/order/771871416/133766624406
- Replay-Nonce: 891FcDFPqC6imzdmGhWyXFYjtnp9gYzqL-VLhfWUKitNn4E
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "status": "pending",
- "expires": "2022-10-19T02:14:33Z",
- "identifiers": [
- {
- "type": "dns",
- "value": "servraid.duckdns.org"
- }
- ],
- "authorizations": [
- "https://acme-v02.api.letsencrypt.org/acme/authz-v3/163558915676"
- ],
- "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/771871416/133766624406"
- }
- 2022-10-11 23:26:08,771:DEBUG:acme.client:Storing nonce: 891FcDFPqC6imzdmGhWyXFYjtnp9gYzqL-VLhfWUKitNn4E
- 2022-10-11 23:26:08,771:DEBUG:acme.client:JWS payload:
- b''
- 2022-10-11 23:26:08,775:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/163558915676:
- {
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzcxODcxNDE2IiwgIm5vbmNlIjogIjg5MUZjREZQcUM2aW16ZG1HaFd5WEZZanRucDlnWXpxTC1WTGhmV1VLaXRObjRFIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNjM1NTg5MTU2NzYifQ",
- "signature": "VsiXyz6nyzqERXlaPjZPBw4_cweUSsLhNGNtLgy-BULVQiKlIbFtJEFoIMj_8-mgCLU2dCUC5A4NarVmWPNUZczxDJCd_spAmogbsFDqoSZmQirTNDi7jC7pcOrA6I8UydUwtiGH_xEVT_m5QrrpChxusX6MJFsUs3ye2y34dNQu32LZZaJfU99XMBGXd0HnBW3EbJoOVt6p5jQW6dNEE2YsdqL0xqt-lKJEGurDEnKFD4t4XmxTDM016LBQ4TXcnUpfn1SCMh3u5pwlixcJgaTFcA28GJ0XV3LTQDov8mVkgA0fHqifv0klpTjlTsqvHWdDhL8xXcIzPpfdPuxpjod-nAVKxRLBUnV08gvf_EdS4uRr4Kb6EvD8Q1AGG2kUl6QXtLcR1s6v96ZG2a6Me4Gb7zmeD08Pi6zUKRIaSQAu3ZPsThs25wigsS4F1RGEDaU3-yMDUCqPNWf7EdnziKad0gBgVAbXoWwKKp-nQyiJVzrsEte_oXIm2LfZh1aNVKLrmeOwqphLtSNXoF_jgRnzYskJwh6lKuUgibDgziwclepS3nUV88LZO1_LOa0hyIjkqeRN4zIRbg1Js69G-mlP0Yj1JUat47FhGyBa0TUOn6Wqno8siHeHUNxIo3G-xiNC_BQRaeuAf-GWSUjBaeoYigz2ghbg82defwdjwvQ",
- "payload": ""
- }
- 2022-10-11 23:26:08,872:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Wed, 12 Oct 2022 03:26:08 GMT
- Content-Type: application/json
- Content-Length: 804
- Connection: keep-alive
- Boulder-Requester: 771871416
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 891FJqf9OmS39dNpx9TmABXiyJHDEKIMSALLITm6r_7bseY
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "identifier": {
- "type": "dns",
- "value": "servraid.duckdns.org"
- },
- "status": "pending",
- "expires": "2022-10-19T02:14:33Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/163558915676/90ePyg",
- "token": "#######"
- },
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/163558915676/DsJi0g",
- "token": "####"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/163558915676/n_fJCA",
- "token": "####"
- }
- ]
- }
- 2022-10-11 23:26:08,872:DEBUG:acme.client:Storing nonce: 891FJqf9OmS39dNpx9TmABXiyJHDEKIMSALLITm6r_7bseY
- 2022-10-11 23:26:08,873:INFO:certbot._internal.auth_handler:Performing the following challenges:
- 2022-10-11 23:26:08,873:INFO:certbot._internal.auth_handler:dns-01 challenge for servraid.duckdns.org
- 2022-10-11 23:26:08,873:WARNING:certbot.plugins.dns_common:Unsafe permissions on credentials configuration file: /config/dns-conf/duckdns.ini
- 2022-10-11 23:26:08,873:WARNING:certbot.plugins.dns_common:Unsafe permissions on credentials configuration file: /config/dns-conf/duckdns.ini
- 2022-10-11 23:26:08,877:DEBUG:certbot._internal.error_handler:Encountered exception:
- Traceback (most recent call last):
- File "/usr/lib/python3.9/site-packages/certbot_dns_duckdns/cert/client.py", line 82, in _perform
- txt_values = custom_resolver.resolve(duckdns_domain, "TXT")
- File "/usr/lib/python3.9/site-packages/dns/resolver.py", line 1090, in resolve
- (answer, done) = resolution.query_result(response, None)
- File "/usr/lib/python3.9/site-packages/dns/resolver.py", line 696, in query_result
- raise NoAnswer(response=answer.response)
- dns.resolver.NoAnswer: The DNS response does not contain an answer to the question: servraid.duckdns.org. IN TXT
- During handling of the above exception, another exception occurred:
- Traceback (most recent call last):
- File "/usr/lib/python3.9/site-packages/certbot/_internal/auth_handler.py", line 86, in handle_authorizations
- resps = self.auth.perform(achalls)
- File "/usr/lib/python3.9/site-packages/certbot/plugins/dns_common.py", line 76, in perform
- self._perform(domain, validation_domain_name, validation)
- File "/usr/lib/python3.9/site-packages/certbot_dns_duckdns/cert/client.py", line 84, in _perform
- raise errors.PluginError(e)
- certbot.errors.PluginError: The DNS response does not contain an answer to the question: servraid.duckdns.org. IN TXT
- 2022-10-11 23:26:08,877:DEBUG:certbot._internal.error_handler:Calling registered functions
- 2022-10-11 23:26:08,878:INFO:certbot._internal.auth_handler:Cleaning up challenges
- 2022-10-11 23:26:09,249:DEBUG:certbot._internal.log:Exiting abnormally:
- Traceback (most recent call last):
- File "/usr/lib/python3.9/site-packages/certbot_dns_duckdns/cert/client.py", line 82, in _perform
- txt_values = custom_resolver.resolve(duckdns_domain, "TXT")
- File "/usr/lib/python3.9/site-packages/dns/resolver.py", line 1090, in resolve
- (answer, done) = resolution.query_result(response, None)
- File "/usr/lib/python3.9/site-packages/dns/resolver.py", line 696, in query_result
- raise NoAnswer(response=answer.response)
- dns.resolver.NoAnswer: The DNS response does not contain an answer to the question: servraid.duckdns.org. IN TXT
- During handling of the above exception, another exception occurred:
- Traceback (most recent call last):
- File "/usr/bin/certbot", line 8, in <module>
- sys.exit(main())
- File "/usr/lib/python3.9/site-packages/certbot/main.py", line 19, in main
- return internal_main.main(cli_args)
- File "/usr/lib/python3.9/site-packages/certbot/_internal/main.py", line 1744, in main
- return config.func(config, plugins)
- File "/usr/lib/python3.9/site-packages/certbot/_internal/main.py", line 1591, in certonly
- lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
- File "/usr/lib/python3.9/site-packages/certbot/_internal/main.py", line 141, in _get_and_save_cert
- lineage = le_client.obtain_and_enroll_certificate(domains, certname)
- File "/usr/lib/python3.9/site-packages/certbot/_internal/client.py", line 530, in obtain_and_enroll_certificate
- cert, chain, key, _ = self.obtain_certificate(domains)
- File "/usr/lib/python3.9/site-packages/certbot/_internal/client.py", line 442, in obtain_certificate
- orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
- File "/usr/lib/python3.9/site-packages/certbot/_internal/client.py", line 510, in _get_order_and_authorizations
- authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
- File "/usr/lib/python3.9/site-packages/certbot/_internal/auth_handler.py", line 86, in handle_authorizations
- resps = self.auth.perform(achalls)
- File "/usr/lib/python3.9/site-packages/certbot/plugins/dns_common.py", line 76, in perform
- self._perform(domain, validation_domain_name, validation)
- File "/usr/lib/python3.9/site-packages/certbot_dns_duckdns/cert/client.py", line 84, in _perform
- raise errors.PluginError(e)
- certbot.errors.PluginError: The DNS response does not contain an answer to the question: servraid.duckdns.org. IN TXT
- 2022-10-11 23:26:09,250:ERROR:certbot._internal.log:The DNS response does not contain an answer to the question: servraid.duckdns.org. IN TXT
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement