A surprise. I have a site, with certs that have been renewed successfully in past, but suddenly it fails with the most puzzling error. Here is the output:
$ sudo certbot renew
Saving debug log to /var/log/letsencrypt/letsencrypt.log
-------------------------------------------------------------------------------
Processing /etc/letsencrypt/renewal/leaderboard.space.conf
-------------------------------------------------------------------------------
Cert is due for renewal, auto-renewing...
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for leaderboard.space
Cleaning up challenges
Attempting to renew cert from /etc/letsencrypt/renewal/leaderboard.space.conf produced an unexpected error: Missing command line flag or config entry for this setting:
Select the webroot for leaderboard.space:
Choices: ['Enter a new webroot']
(You can set this with the --webroot-path flag). Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/leaderboard.space/fullchain.pem (failure)
1 renew failure(s), 0 parse failure(s)
And here is the conf file:
$ cat /etc/letsencrypt/renewal/leaderboard.space.conf
# renew_before_expiry = 30 days
version = 0.10.2
archive_dir = /etc/letsencrypt/archive/leaderboard.space
cert = /etc/letsencrypt/live/leaderboard.space/cert.pem
privkey = /etc/letsencrypt/live/leaderboard.space/privkey.pem
chain = /etc/letsencrypt/live/leaderboard.space/chain.pem
fullchain = /etc/letsencrypt/live/leaderboard.space/fullchain.pem
# Options used in the renewal process
[renewalparams]
# authenticator = standalone
# path to the public_html / webroot folder being served by your web server.
authenticator = webroot
webroot-path = /mnt/passport/www/html/leaderboard.space
installer = None
account = 52abb1522ceb0b5fb67f17c68d1bec67
pref_challs = http-01,
webroot-path is clearly specified, and as I said, this was working, it’s been renewed in past, not a new cert or site. What happened?
Oh and webroot-path:
$ ll -d /mnt/passport/www/html/leaderboard.space
drwxrwxr-x 7 weaver www-data 4096 Apr 10 13:42 /mnt/passport/www/html/leaderboard.space
$ ll /mnt/passport/www/html/leaderboard.space
total 44
drwxr-xr-x 3 weaver www-data 4096 Mar 30 21:08 CoGs
-rwxr-xr-x 1 weaver www-data 476 Mar 30 21:08 DumpData
drwxr-xr-x 7 weaver www-data 4096 Mar 30 21:08 Leaderboards
drwxr-xr-x 3 weaver www-data 4096 Mar 30 21:08 django_generic_view_extensions
drwxr-xr-x 3 weaver www-data 4096 Mar 30 21:08 django_lighttpd_middleware
-rw-r--r-- 1 weaver www-data 17 Aug 19 2017 index.html
-rwxr-xr-x 1 weaver www-data 143 Aug 24 2017 index.py
-rwxr-xr-x 1 weaver www-data 248 Mar 30 21:08 manage.py
drwxr-xr-x 6 weaver www-data 4096 Mar 30 21:08 static
-rw-r--r-- 1 weaver www-data 330 Oct 10 20:45 uwsgi.ini
-rwxr-xr-x 1 weaver www-data 881 Oct 9 2017 uwsgi_test
I’m stuck identifying changes to the system. It’s been pretty static and not much action or movement there certainly none on the cert front I can identify. But then I can’t be sure clearly, something seems to have changed!
Some more detail asked for in template:
The operating system my web server runs on is (include version): Raspbian GNU/Linux 9
I can login to a root shell on my machine (yes or no, or I don’t know): yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): nope. ssh.