All renewal attempts failed. The following certs could not be renewed


#1

Hi, sorry for my english.
I’m trying to renew certificates
certbot renew --dry-run
log

2019-03-18 19:42:31,986:DEBUG:certbot.main:certbot version: 0.28.0
2019-03-18 19:42:31,988:DEBUG:certbot.main:Arguments: ['--dry-run']
2019-03-18 19:42:31,989:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2019-03-18 19:42:32,009:DEBUG:certbot.log:Root logging level set at 20
2019-03-18 19:42:32,015:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2019-03-18 19:42:32,042:DEBUG:certbot.plugins.selection:Requested authenticator <certbot.cli._Default object at 0x7fa911814240> and installer <certbot.cli._Default object at 0x7fa911814240>
2019-03-18 19:42:32,043:DEBUG:certbot.cli:Var dry_run=True (set by user).
2019-03-18 19:42:32,043:DEBUG:certbot.cli:Var server={'dry_run', 'staging'} (set by user).
2019-03-18 19:42:32,043:DEBUG:certbot.cli:Var account={'server'} (set by user).
2019-03-18 19:42:32,061:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2019-03-18 19:55:38 UTC.
2019-03-18 19:42:32,061:INFO:certbot.renewal:Cert is due for renewal, auto-renewing...
2019-03-18 19:42:32,065:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
2019-03-18 19:42:32,332:WARNING:certbot.renewal:Attempting to renew cert (domain.com) from /etc/letsencrypt/renewal/domain.com.conf produced an unexpected error: 'utf-8' codec can't decode byte 0xf0 in position 86: invalid continuation byte. Skipping.
2019-03-18 19:42:32,337:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/certbot/renewal.py", line 430, in handle_renewal_request
    main.renew_cert(lineage_config, plugins, renewal_candidate)
  File "/usr/lib/python3/dist-packages/certbot/main.py", line 1162, in renew_cert
    installer, auth = plug_sel.choose_configurator_plugins(config, plugins, "certonly")
  File "/usr/lib/python3/dist-packages/certbot/plugins/selection.py", line 228, in choose_configurator_plugins
    installer = pick_installer(config, req_inst, plugins, installer_question)
  File "/usr/lib/python3/dist-packages/certbot/plugins/selection.py", line 32, in pick_installer
    config, default, plugins, question, (interfaces.IInstaller,))
  File "/usr/lib/python3/dist-packages/certbot/plugins/selection.py", line 106, in pick_plugin
    verified.prepare()
  File "/usr/lib/python3/dist-packages/certbot/plugins/disco.py", line 251, in prepare
    return [plugin_ep.prepare() for plugin_ep in six.itervalues(self._plugins)]
  File "/usr/lib/python3/dist-packages/certbot/plugins/disco.py", line 251, in <listcomp>
    return [plugin_ep.prepare() for plugin_ep in six.itervalues(self._plugins)]
  File "/usr/lib/python3/dist-packages/certbot/plugins/disco.py", line 132, in prepare
    self._initialized.prepare()
  File "/usr/lib/python3/dist-packages/certbot_nginx/configurator.py", line 152, in prepare
    self.parser = parser.NginxParser(self.conf('server-root'))
  File "/usr/lib/python3/dist-packages/certbot_nginx/parser.py", line 38, in __init__
    self.load()
  File "/usr/lib/python3/dist-packages/certbot_nginx/parser.py", line 45, in load
    self._parse_recursively(self.config_root)
  File "/usr/lib/python3/dist-packages/certbot_nginx/parser.py", line 66, in _parse_recursively
    self._parse_recursively(subentry[1])
  File "/usr/lib/python3/dist-packages/certbot_nginx/parser.py", line 56, in _parse_recursively
    trees = self._parse_files(filepath)
  File "/usr/lib/python3/dist-packages/certbot_nginx/parser.py", line 207, in _parse_files
    parsed = nginxparser.load(_file)
  File "/usr/lib/python3/dist-packages/certbot_nginx/nginxparser.py", line 123, in load
    return loads(_file.read())
  File "/usr/lib/python3.5/codecs.py", line 321, in decode
    (result, consumed) = self._buffer_decode(data, self.errors, final)
UnicodeDecodeError: 'utf-8' codec can't decode byte 0xf0 in position 86: invalid continuation byte

2019-03-18 19:42:32,338:ERROR:certbot.renewal:All renewal attempts failed. The following certs could not be renewed:
2019-03-18 19:42:32,341:ERROR:certbot.renewal:  /etc/letsencrypt/live/domain.com/fullchain.pem (failure)
2019-03-18 19:42:32,348:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/bin/certbot", line 11, in <module>
    load_entry_point('certbot==0.28.0', 'console_scripts', 'certbot')()
  File "/usr/lib/python3/dist-packages/certbot/main.py", line 1340, in main
    return config.func(config, plugins)
  File "/usr/lib/python3/dist-packages/certbot/main.py", line 1247, in renew
    renewal.handle_renewal_request(config)
  File "/usr/lib/python3/dist-packages/certbot/renewal.py", line 455, in handle_renewal_request
    len(renew_failures), len(parse_failures)))
certbot.errors.Error: 1 renew failure(s), 0 parse failure(s)

#2

Hi @webdev1

looks like you have edited your conf file manual - and added a wrong character. Or not saved as utf-8.

What’s the content of that file?


#3

Hi @JuergenAuer, this file is saved in utf-8
File content

#renew_before_expiry = 30 days
version = 0.19.0
archive_dir = /etc/letsencrypt/archive/domain.com
cert = /etc/letsencrypt/live/domain.com/cert.pem
privkey = /etc/letsencrypt/live/domain.com/privkey.pem
chain = /etc/letsencrypt/live/domain.com/chain.pem
fullchain = /etc/letsencrypt/live/domain.com/fullchain.pem

#Options used in the renewal process
[renewalparams]
authenticator = nginx
installer = nginx
account = 7c2cbb82957c74adf991b11150b56c4d


#4

Check Nginx’s configuration files for that.


#5

Thanks, its problem solving. Removed cyrilic comments in config.
But I did not understand why there were no problems with this before?


closed #6

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.