'auth_chain_path'

erglazier · August 4, 2023, 9:51pm

My domain is: bwvoiplab.net

I ran this command: certbot certonly

It produced this output: AttributeError: 'Namespace' object has no attribute 'auth_chain_path

My web server is (include version): NA

The operating system my web server runs on is (include version): NA

My hosting provider, if applicable, is: NA

I can login to a root shell on my machine (yes or no, or I don't know): Yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 2.3.0

Thank you for the help

certbot certonly -n \
       --logs-dir /var/log/certcron/_.bwvoiplab.net \
       --authenticator dns-powerdns \
       --domain *.bwvoiplab.net \
       --cert-name bwvoiplab.net \
       --cert-path /etc/letsencrypt/archive/bwvoiplab.net \
       --dns-powerdns-credentials /etc/letsencrypt/pdns-credentials.ini \
       --dns-powerdns-propagation-seconds 215 \
       --agree-tos \
       --email "devops@voyant.com" \
       --expand \

log output

#:/srv/certbot/bwvoiplab.net_PDNS# cat /var/log/certcron/_.bwvoiplab.net/letsencrypt.log
2023-08-04 17:36:03,385:DEBUG:certbot._internal.main:certbot version: 2.3.0
2023-08-04 17:36:03,386:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/local/bin/certbot
2023-08-04 17:36:03,386:DEBUG:certbot._internal.main:Arguments: ['-n', '--logs-dir', '/var/log/certcron/_.bwvoiplab.net', '--authenticator', 'dns-powerdns', '--domain', '*.bwvoiplab.net', '--cert-name', 'bwvoiplab.net', '--dns-powerdns-credentials', '/etc/letsencrypt/pdns-credentials.ini', '--dns-powerdns-propagation-seconds', '240', '--agree-tos', '--email', 'devops@voyant.com', '--expand']
2023-08-04 17:36:03,386:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#auth,PluginEntryPoint#dns-dnsmadeeasy,PluginEntryPoint#dns-godaddy,PluginEntryPoint#dns-powerdns,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2023-08-04 17:36:03,397:DEBUG:certbot._internal.log:Root logging level set at 30
2023-08-04 17:36:03,398:DEBUG:certbot._internal.plugins.selection:Requested authenticator dns-powerdns and installer None
2023-08-04 17:36:03,400:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * dns-powerdns
Description: Obtain certificates using a DNS TXT record (if you are using PowerDNS for DNS.)
Interfaces: Authenticator, Plugin
Entry point: dns-powerdns = certbot_dns_powerdns.dns_powerdns:Authenticator
Initialized: <certbot_dns_powerdns.dns_powerdns.Authenticator object at 0x7fc34322e8e0>
Prep: True
2023-08-04 17:36:03,401:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_dns_powerdns.dns_powerdns.Authenticator object at 0x7fc34322e8e0> and installer None
2023-08-04 17:36:03,401:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator dns-powerdns, Installer None
2023-08-04 17:36:03,418:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/352676250', new_authzr_uri=None, terms_of_service=None), f3114e584f21016ccddba6663e13d0c9, Meta(creation_dt=datetime.datetime(2022, 1, 7, 2, 22, 5, tzinfo=<UTC>), creation_host='ply-certbot-u20-01.ipa.prd.localnet.io', register_to_eff=None))>
2023-08-04 17:36:03,419:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2023-08-04 17:36:03,420:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2023-08-04 17:36:03,543:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 752
2023-08-04 17:36:03,543:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 04 Aug 2023 17:36:03 GMT
Content-Type: application/json
Content-Length: 752
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "h5smqkIByIU": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "renewalInfo": "https://acme-v02.api.letsencrypt.org/draft-ietf-acme-ari-01/renewalInfo/",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2023-08-04 17:36:03,544:DEBUG:certbot._internal.cert_manager:Renewal conf file /etc/letsencrypt/renewal/bwvoiplab.net.conf is broken.
2023-08-04 17:36:03,545:DEBUG:certbot._internal.cert_manager:Traceback was:
Traceback (most recent call last):
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/cert_manager.py", line 135, in lineage_for_certname
    return storage.RenewableCert(renewal_file, cli_config)
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/storage.py", line 489, in __init__
    raise errors.CertStorageError(
certbot.errors.CertStorageError: renewal config file {} is missing a required file reference

2023-08-04 17:36:03,545:DEBUG:certbot._internal.display.obj:Notifying user: Requesting a certificate for *.bwvoiplab.net
2023-08-04 17:36:03,547:DEBUG:acme.client:Requesting fresh nonce
2023-08-04 17:36:03,547:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2023-08-04 17:36:03,586:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2023-08-04 17:36:03,586:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 04 Aug 2023 17:36:03 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 4397-Cy9y4eiSDIQLVoOYKgHiSj0yKHKeNoNONRyZDsFc-0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800


2023-08-04 17:36:03,586:DEBUG:acme.client:Storing nonce: 4397-Cy9y4eiSDIQLVoOYKgHiSj0yKHKeNoNONRyZDsFc-0
2023-08-04 17:36:03,587:DEBUG:acme.client:JWS payload:
b'{\n  "identifiers": [\n    {\n      "type": "dns",\n      "value": "*.bwvoiplab.net"\n    }\n  ]\n}'
2023-08-04 17:36:03,588:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzUyNjc2MjUwIiwgIm5vbmNlIjogIjQzOTctQ3k5eTRlaVNESVFMVm9PWUtnSGlTajB5S0hLZU5vTk9OUnlaRHNGYy0wIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ",
  "signature": "3ox6amGYqfku4aZKrqUH1Pl-d0slHEiNr9XxLdk4G2b4vBxttN95deJlMqr42lplhVIeUQUiWHqubQ2ByWXHh3wGefyKjT4cvpaC29Uathn-Nx8GhT6fVUK_ecQgRgh5VAYKLfdBMPYG5cshmhZhQB88-0GF8IgGt78mGcv8riD-42yAglY6F6pukQ_caH6wAW1iwWzkaa9j2Z7V-5mPQcPIw57MqYWSC6kPpUVtSXlpOTOHdXvfn9Rpg00xKcm4_GDXu1Umq7EbC1cCEzgle0LcM-hhLFyyVdtEFhX4GLHY-cICPABwlnQ7-rdULpzOw-PJXrggTFrWS846uDYUEA",
  "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogIiouYnd2b2lwbGFiLm5ldCIKICAgIH0KICBdCn0"
}
2023-08-04 17:36:03,665:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 338
2023-08-04 17:36:03,666:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Fri, 04 Aug 2023 17:36:03 GMT
Content-Type: application/json
Content-Length: 338
Connection: keep-alive
Boulder-Requester: 352676250
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/352676250/199418156416
Replay-Nonce: C400Lo9ldTVAOGiDHsMtJ4gT4tI_S85-EsNHPC6LjZDaINE
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "ready",
  "expires": "2023-08-11T17:36:03Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "*.bwvoiplab.net"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz-v3/251924532076"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/352676250/199418156416"
}
2023-08-04 17:36:03,666:DEBUG:acme.client:Storing nonce: C400Lo9ldTVAOGiDHsMtJ4gT4tI_S85-EsNHPC6LjZDaINE
2023-08-04 17:36:03,666:DEBUG:acme.client:JWS payload:
b''
2023-08-04 17:36:03,667:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/251924532076:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzUyNjc2MjUwIiwgIm5vbmNlIjogIkM0MDBMbzlsZFRWQU9HaURIc010SjRnVDR0SV9TODUtRXNOSFBDNkxqWkRhSU5FIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yNTE5MjQ1MzIwNzYifQ",
  "signature": "7GY8d3UZaO1dhF4_qccmYOKl-CEMMMj2UA-6vkMYrFUHkl6Ac19mykmG24oHxSZ5pcCQU5trIIpySVFp8CMywsHYX2VQQHAVADmnIZB6ZRXhoKLRlLtf_uBG5-Cq3fhqznhxzmIfQDUvSUmXclcvuUjz9T6vCZOeQF-OFyCe5rKTlmLuQ3SgXc4U6y8X7O9bUJ4u1RWwwaNyDrJ82uMNnrSz2r84lRS6OVBnqgmHe4goStoc-fbTpa1P6_sD-RD-kQe-pntMj5TTUO9FaTmfZP4L7CzzfgMgN6xb4n6fTJtJpSwDiPSvCSZjTTqg0V5R0VPDiMYor7mX-GXNd00vkA",
  "payload": ""
}
2023-08-04 17:36:03,714:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/251924532076 HTTP/1.1" 200 521
2023-08-04 17:36:03,714:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 04 Aug 2023 17:36:03 GMT
Content-Type: application/json
Content-Length: 521
Connection: keep-alive
Boulder-Requester: 352676250
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: C4009thtAsHJyr1aweFNu9OgWs9gRd6mZz0wTJfGfZyMPTM
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "bwvoiplab.net"
  },
  "status": "valid",
  "expires": "2023-09-03T16:49:15Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "valid",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/251924532076/M6Rb1A",
      "token": "q6vxAz73yvRz7sLz14ndlaLm44DQKvYwYLxoAXCL7zg",
      "validationRecord": [
        {
          "hostname": "bwvoiplab.net"
        }
      ],
      "validated": "2023-08-04T16:49:15Z"
    }
  ],
  "wildcard": true
}
2023-08-04 17:36:03,714:DEBUG:acme.client:Storing nonce: C4009thtAsHJyr1aweFNu9OgWs9gRd6mZz0wTJfGfZyMPTM
2023-08-04 17:36:03,715:DEBUG:certbot._internal.client:CSR: CSR(file=None, data=b'-----BEGIN CERTIFICATE REQUEST-----\nMIHoMIGPAgEAMAAwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAS95pBayaHyeUU6\n9lgQWwIc7N130QkDZV0rZ+SkoVQrRg6vOqmaH0oquuwd018ctq7NAkBnPdQ8g0m9\n2dadQcN8oC0wKwYJKoZIhvcNAQkOMR4wHDAaBgNVHREEEzARgg8qLmJ3dm9pcGxh\nYi5uZXQwCgYIKoZIzj0EAwIDSAAwRQIgGYD6Ri1t00ONVoupo31DgnF2XtTTZEMN\ncTCu+Y1hGdUCIQDc4g73YCM+sAuCr755/NjbAsOOQD4gRIWp1KIkLgffwQ==\n-----END CERTIFICATE REQUEST-----\n', form='pem')
2023-08-04 17:36:03,715:DEBUG:certbot._internal.client:Will poll for certificate issuance until 2023-08-04 17:37:33.715863
2023-08-04 17:36:03,716:DEBUG:acme.client:JWS payload:
b'{\n  "csr": "MIHoMIGPAgEAMAAwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAS95pBayaHyeUU69lgQWwIc7N130QkDZV0rZ-SkoVQrRg6vOqmaH0oquuwd018ctq7NAkBnPdQ8g0m92dadQcN8oC0wKwYJKoZIhvcNAQkOMR4wHDAaBgNVHREEEzARgg8qLmJ3dm9pcGxhYi5uZXQwCgYIKoZIzj0EAwIDSAAwRQIgGYD6Ri1t00ONVoupo31DgnF2XtTTZEMNcTCu-Y1hGdUCIQDc4g73YCM-sAuCr755_NjbAsOOQD4gRIWp1KIkLgffwQ"\n}'
2023-08-04 17:36:03,717:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/finalize/352676250/199418156416:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzUyNjc2MjUwIiwgIm5vbmNlIjogIkM0MDA5dGh0QXNISnlyMWF3ZUZOdTlPZ1dzOWdSZDZtWnowd1RKZkdmWnlNUFRNIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9maW5hbGl6ZS8zNTI2NzYyNTAvMTk5NDE4MTU2NDE2In0",
  "signature": "NZqcsWy0sxbyOexcbxnX3fQyM9r1j-X0tlUNDrjimpnJa-ahgNDQyP-zjFWeWd5scxhqNcx4YRxcsEH_Nd_PJtuyQeDhVEJ-ooyVm-RQUVRORO97QSkTiqC7RyyD9neE-sCxOuHmu1LRXRA0L9epMI6OtSAXcHszMMc7qFp49F33_9_PIuMjCvBtbR0YUDQNoFjcsvAd20ebCobf3UuDs_nUJeAfz-im1i4BzApdRblmEA05l44By1wDYPSyr05RRn1xvbMlEP7MHwKU97G5fbyumgQ9i7iFUUgi0wDCIp2YlDnpx1PnSFYDRCYmdVijYI498xz2VTSrr862fa09eA",
  "payload": "ewogICJjc3IiOiAiTUlIb01JR1BBZ0VBTUFBd1dUQVRCZ2NxaGtqT1BRSUJCZ2dxaGtqT1BRTUJCd05DQUFTOTVwQmF5YUh5ZVVVNjlsZ1FXd0ljN04xMzBRa0RaVjByWi1Ta29WUXJSZzZ2T3FtYUgwb3F1dXdkMDE4Y3RxN05Ba0JuUGRROGcwbTkyZGFkUWNOOG9DMHdLd1lKS29aSWh2Y05BUWtPTVI0d0hEQWFCZ05WSFJFRUV6QVJnZzhxTG1KM2RtOXBjR3hoWWk1dVpYUXdDZ1lJS29aSXpqMEVBd0lEU0FBd1JRSWdHWUQ2UmkxdDAwT05Wb3VwbzMxRGduRjJYdFRUWkVNTmNUQ3UtWTFoR2RVQ0lRRGM0ZzczWUNNLXNBdUNyNzU1X05qYkFzT09RRDRnUklXcDFLSWtMZ2Zmd1EiCn0"
}
2023-08-04 17:36:04,204:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/finalize/352676250/199418156416 HTTP/1.1" 200 442
2023-08-04 17:36:04,205:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 04 Aug 2023 17:36:04 GMT
Content-Type: application/json
Content-Length: 442
Connection: keep-alive
Boulder-Requester: 352676250
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/352676250/199418156416
Replay-Nonce: C400o-ycu4GAS_4gjZ37jhgc1VZIy1H789H8fjIMWcyOWvs
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "valid",
  "expires": "2023-08-11T17:36:03Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "*.bwvoiplab.net"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz-v3/251924532076"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/352676250/199418156416",
  "certificate": "https://acme-v02.api.letsencrypt.org/acme/cert/032dfe6889856bf3441546bd6e2ccfcf59db"
}
2023-08-04 17:36:04,205:DEBUG:acme.client:Storing nonce: C400o-ycu4GAS_4gjZ37jhgc1VZIy1H789H8fjIMWcyOWvs
2023-08-04 17:36:05,206:DEBUG:acme.client:JWS payload:
b''
2023-08-04 17:36:05,207:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/order/352676250/199418156416:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzUyNjc2MjUwIiwgIm5vbmNlIjogIkM0MDBvLXljdTRHQVNfNGdqWjM3amhnYzFWWkl5MUg3ODlIOGZqSU1XY3lPV3ZzIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9vcmRlci8zNTI2NzYyNTAvMTk5NDE4MTU2NDE2In0",
  "signature": "WdhHCPwYDOYTByOyA3aG5Xl7WcjjY3UALcGhjzNwoE1_5UfMqW2KnObjf7FKTv5F9AFV_JJOGPAObx_lM78STObP9mHVIUiKybH8yKa1ozeNc4fdN-fWGgoNqgmMzd5WEWb1oeSFyvjNZVNVVPVOjHVPvgF-EivNrc6gB1xM_65Klv03PjuwVNYuIC-czl50MA1EivbUz0ypjpo_4N2uH5bBDzgauJnqfwYKFHRjvQmobkzXStVMMTC7_r_uGEj58hE_ji_DvbgG9qey18VjmQh7H-0JKOTOLYZ1MEz0VHlR4k8BGImB-VuJFuYJmvb_XAmv-qZgCAqajCuqBSpGYA",
  "payload": ""
}
2023-08-04 17:36:05,250:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/order/352676250/199418156416 HTTP/1.1" 200 442
2023-08-04 17:36:05,251:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 04 Aug 2023 17:36:05 GMT
Content-Type: application/json
Content-Length: 442
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: C400ImRWrp5WWUNPwNgSSGeVtiiXTktdwn_v8NgEI1x1oik
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "valid",
  "expires": "2023-08-11T17:36:03Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "*.bwvoiplab.net"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz-v3/251924532076"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/352676250/199418156416",
  "certificate": "https://acme-v02.api.letsencrypt.org/acme/cert/032dfe6889856bf3441546bd6e2ccfcf59db"
}
2023-08-04 17:36:05,251:DEBUG:acme.client:Storing nonce: C400ImRWrp5WWUNPwNgSSGeVtiiXTktdwn_v8NgEI1x1oik
2023-08-04 17:36:05,251:DEBUG:acme.client:JWS payload:
b''
2023-08-04 17:36:05,252:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/cert/032dfe6889856bf3441546bd6e2ccfcf59db:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzUyNjc2MjUwIiwgIm5vbmNlIjogIkM0MDBJbVJXcnA1V1dVTlB3TmdTU0dlVnRpaVhUa3Rkd25fdjhOZ0VJMXgxb2lrIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jZXJ0LzAzMmRmZTY4ODk4NTZiZjM0NDE1NDZiZDZlMmNjZmNmNTlkYiJ9",
  "signature": "msMVgrk5vQVQV2O1M06qOOrsaIgTfbtRF_caxkOLNZGalzjBXak8Kpu-WM3yn6shANWoy41x3Fpsi852CwWXUK3SsCHlVdd-jc-8thn-ikbi4FJosBxQCOQsZjni34Afv2P2WNu0JPGd8As5scdvZe-uDAZU2JVsXnlMH0gmwqIEuPRF7xC19s8od_DFdAbgYZMdIdXgRFDVdYW3eHyGXUaOqSgt59vJsg4NwRkykEZh3fo04noVsB6vf2rSdrtVT8t6fp_DRayg2QqynE94H-JGLSwBVlQxS3qi3PWn2Hgt8dOjzrF5qHWjrJ1N8euV19qPTgCxQxvNpd5UZ2GMug",
  "payload": ""
}
2023-08-04 17:36:05,321:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/cert/032dfe6889856bf3441546bd6e2ccfcf59db HTTP/1.1" 200 5240
2023-08-04 17:36:05,321:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 04 Aug 2023 17:36:05 GMT
Content-Type: application/pem-certificate-chain
Content-Length: 5240
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/cert/032dfe6889856bf3441546bd6e2ccfcf59db/1>;rel="alternate"
Replay-Nonce: 4397o8vxd72zPf6wtsj9KOdBL5AZpQkhDmV8CzMAHWGMgmk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/
MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMT
DkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1ow
TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh
cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEB
AQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XC
ov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpL
wYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+D
LtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK
4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5
bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5y
sR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZ
Xmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4
FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBc
SLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2ql
PRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TND
TwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYw
SwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1
c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx
+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEB
ATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQu
b3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9E
U1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26Ztu
MA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC
5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW
9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuG
WCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9O
he8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFC
Dfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5
-----END CERTIFICATE-----

2023-08-04 17:36:05,322:DEBUG:acme.client:Storing nonce: 4397o8vxd72zPf6wtsj9KOdBL5AZpQkhDmV8CzMAHWGMgmk
2023-08-04 17:36:05,323:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/archive/bwvoiplab.net-0003.
2023-08-04 17:36:05,323:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/live/bwvoiplab.net-0003.
2023-08-04 17:36:05,323:DEBUG:certbot._internal.storage:Writing certificate to /etc/letsencrypt/live/bwvoiplab.net-0003/cert.pem.
2023-08-04 17:36:05,323:DEBUG:certbot._internal.storage:Writing private key to /etc/letsencrypt/live/bwvoiplab.net-0003/privkey.pem.
2023-08-04 17:36:05,324:DEBUG:certbot._internal.storage:Writing chain to /etc/letsencrypt/live/bwvoiplab.net-0003/chain.pem.
2023-08-04 17:36:05,324:DEBUG:certbot._internal.storage:Writing full chain to /etc/letsencrypt/live/bwvoiplab.net-0003/fullchain.pem.
2023-08-04 17:36:05,324:DEBUG:certbot._internal.storage:Writing README to /etc/letsencrypt/live/bwvoiplab.net-0003/README.
2023-08-04 17:36:05,350:DEBUG:certbot._internal.plugins.selection:Requested authenticator dns-powerdns and installer <certbot._internal.cli.cli_utils._Default object at 0x7fc343077340>
2023-08-04 17:36:05,350:DEBUG:certbot._internal.cli:Var logs_dir=/var/log/certcron/_.bwvoiplab.net (set by user).
2023-08-04 17:36:05,350:DEBUG:certbot._internal.cli:Var authenticator=dns-powerdns (set by user).
2023-08-04 17:36:05,350:DEBUG:certbot._internal.cli:Var dns_powerdns_propagation_seconds=240 (set by user).
2023-08-04 17:36:05,350:DEBUG:certbot._internal.cli:Var dns_powerdns_credentials=/etc/letsencrypt/pdns-credentials.ini (set by user).
2023-08-04 17:36:05,351:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/local/bin/certbot", line 8, in <module>
    sys.exit(main())
  File "/usr/local/lib/python3.8/dist-packages/certbot/main.py", line 19, in main
    return internal_main.main(cli_args)
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/main.py", line 1862, in main
    return config.func(config, plugins)
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/main.py", line 1595, in certonly
    lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/main.py", line 140, in _get_and_save_cert
    lineage = le_client.obtain_and_enroll_certificate(domains, certname)
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/client.py", line 529, in obtain_and_enroll_certificate
    return storage.RenewableCert.new_lineage(
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/storage.py", line 1124, in new_lineage
    values = relevant_values(vars(cli_config.namespace))
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/storage.py", line 298, in relevant_values
    rv = {
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/storage.py", line 301, in <dictcomp>
    if _relevant(namespaces, option) and cli.option_was_set(option, value)
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/cli/__init__.py", line 545, in option_was_set
    return set_by_cli(option) or not has_default_value(option, value)
  File "/usr/local/lib/python3.8/dist-packages/certbot/_internal/cli/__init__.py", line 495, in set_by_cli
    if not isinstance(getattr(detector, var), _Default):
AttributeError: 'Namespace' object has no attribute 'auth_chain_path'
2023-08-04 17:36:05,352:ERROR:certbot._internal.log:An unexpected error occurred:
2023-08-04 17:36:05,352:ERROR:certbot._internal.log:AttributeError: 'Namespace' object has no attribute 'auth_chain_path'

# certbot certificates
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Renewal configuration file /etc/letsencrypt/renewal/bwvoiplab.net-0001.conf produced an unexpected error: renewal config file {} is missing a required file reference. Skipping.
Renewal configuration file /etc/letsencrypt/renewal/bwvoiplab.net.conf produced an unexpected error: renewal config file {} is missing a required file reference. Skipping.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Found the following certs:
  Certificate Name: inteliquent-stg.net
    Serial Number: 465469d1b927ec61793a1b866ac07246d56
    Key Type: RSA
    Domains: *.inteliquent-stg.net
    Expiry Date: 2023-10-26 03:16:06+00:00 (VALID: 82 days)
    Certificate Path: /etc/letsencrypt/live/inteliquent-stg.net/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/inteliquent-stg.net/privkey.pem
  Certificate Name: inteliquent.net
    Serial Number: 4ce76e686f9474674a421bd883d4105aafa
    Key Type: RSA
    Domains: *.inteliquent.net
    Expiry Date: 2023-09-29 02:16:05+00:00 (VALID: 55 days)
    Certificate Path: /etc/letsencrypt/live/inteliquent.net/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/inteliquent.net/privkey.pem
  Certificate Name: ipa.dev.localnet.io
    Serial Number: 37167c49cd9a7eb42aec8d8a0b447484a9b
    Key Type: RSA
    Domains: *.ipa.dev.localnet.io
    Expiry Date: 2023-10-29 07:17:03+00:00 (VALID: 85 days)
    Certificate Path: /etc/letsencrypt/live/ipa.dev.localnet.io/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/ipa.dev.localnet.io/privkey.pem
  Certificate Name: ipa.prd.localnet.io
    Serial Number: 3286ccfc7f1bcbf3d6e0386302378e3bacd
    Key Type: RSA
    Domains: *.ipa.prd.localnet.io
    Expiry Date: 2023-09-16 09:17:13+00:00 (VALID: 42 days)
    Certificate Path: /etc/letsencrypt/live/ipa.prd.localnet.io/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/ipa.prd.localnet.io/privkey.pem
  Certificate Name: ipa.stg.localnet.io
    Serial Number: 3bded860cbccb362deef4ad683d17ecd2b2
    Key Type: RSA
    Domains: *.ipa.stg.localnet.io
    Expiry Date: 2023-10-30 08:17:03+00:00 (VALID: 86 days)
    Certificate Path: /etc/letsencrypt/live/ipa.stg.localnet.io/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/ipa.stg.localnet.io/privkey.pem
  Certificate Name: sipis.inteliquent-stg.net
    Serial Number: 39dcee3da2297ef4507f0fd2792932122f7
    Key Type: RSA
    Domains: *.sipis.inteliquent-stg.net
    Expiry Date: 2023-09-04 04:16:06+00:00 (VALID: 30 days)
    Certificate Path: /etc/letsencrypt/live/sipis.inteliquent-stg.net/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/sipis.inteliquent-stg.net/privkey.pem
  Certificate Name: sipis.sip.global
    Serial Number: 4a845e63f57e8703be0bf48cd976d5a8003
    Key Type: RSA
    Domains: *.sipis.sip.global
    Expiry Date: 2023-09-08 05:16:07+00:00 (VALID: 34 days)
    Certificate Path: /etc/letsencrypt/live/sipis.sip.global/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/sipis.sip.global/privkey.pem
  Certificate Name: vo.sip.global
    Serial Number: 4435dcad3d6940354e0f8e43e51d68d6f4f
    Key Type: RSA
    Domains: *.vo.sip.global
    Expiry Date: 2023-10-22 06:16:06+00:00 (VALID: 78 days)
    Certificate Path: /etc/letsencrypt/live/vo.sip.global/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/vo.sip.global/privkey.pem
  Certificate Name: voyant-stg.com
    Serial Number: 4a5ded26d53e38ae4d253d8d9f520a527d6
    Key Type: RSA
    Domains: *.voyant-stg.com
    Expiry Date: 2023-01-16 18:55:01+00:00 (INVALID: EXPIRED)
    Certificate Path: /etc/letsencrypt/live/voyant-stg.com/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/voyant-stg.com/privkey.pem
  Certificate Name: voyant.com
    Serial Number: 36a6006ce86145159b9741251c7bb2c8917
    Key Type: RSA
    Domains: *.voyant.com
    Expiry Date: 2023-11-02 10:15:01+00:00 (VALID: 89 days)
    Certificate Path: /etc/letsencrypt/live/voyant.com/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/voyant.com/privkey.pem
  Certificate Name: vp.sip.global
    Serial Number: 4d4fae38a523454d71f78c89fb13ab4282b
    Key Type: RSA
    Domains: *.vp.sip.global
    Expiry Date: 2022-07-03 03:41:10+00:00 (INVALID: EXPIRED)
    Certificate Path: /etc/letsencrypt/live/vp.sip.global/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/vp.sip.global/privkey.pem

The following renewal configurations were invalid:
  /etc/letsencrypt/renewal/bwvoiplab.net-0001.conf
  /etc/letsencrypt/renewal/bwvoiplab.net.conf

rg305 · August 4, 2023, 10:48pm

Let's have a look at these files:

erglazier · August 5, 2023, 1:37am

# cat /etc/letsencrypt/renewal/bwvoiplab.net.conf
#

# cat ./renewal/bwvoiplab.net-0001.conf
#

They are both empty. I deleted them, and then ran the certbot again, and it created the empty files

Osiris · August 5, 2023, 7:38am

I couldn't pin-point this rather strange (to me at least) error in the Certbot code unfortunately. But I do have a question: why are you setting --cert-path? That shouldn't be necessary.

Tagging @certbot-devs as this is above my "paygrade".

By the way, 2.3.0 is not the latest version of Certbot. While I didn't see anything in the change log about this issue, it's always a good idea to upgrade to the latest (currently 2.6.0) version of any software before opening an issue with regard to a bug.

erglazier · August 7, 2023, 2:22pm

thanks @Osiris, I appreciate you replying. I will update the cerbot version.

I normally don't have --cert-path in there.. That was just my attempt to fix this issue, as I saw that someone had done that in regards to similar issue.

jvanasco · August 7, 2023, 6:17pm

This seems to be a caused by the powerdns plugin and labeled wontfix by Certbot devs:

Bug causing errors 'Namespace' object has no attribute 'auth_chain_path' · Issue #9685 · certbot/certbot · GitHub
certbot getting "'Namespace' object has no attribute 'auth_chain_path'" error during ECDSA certificate request · Issue #9562 · certbot/certbot · GitHub

Adding:

The variable auth_chain_path only occurs 4x in Certbot's code - https://github.com/search?q=repo%3Acertbot%2Fcertbot+auth_chain_path&type=code

Perhaps if there is a traceback shared as to where the Exception above is raised we can have a better idea about what it causing this - but the usage within Certbot suggests this exception was most likely raised within the powerdns plugin and due to a collision in variable names and entrypoints.

It seems there are multiple powerdns plugins. Switching to another one may work.

erglazier · August 8, 2023, 2:51am

FWIW I did upgrade cerbot to latest version, and removed --cert-path. All the files for that domain are removed, and I re-ran the cerbot script.

# cat /var/log/certcron/_.bwvoiplab.net/letsencrypt.log
# ls -lsa /etc/letsencrypt/renewal/ | grep bwv
# ls -lsa /etc/letsencrypt/archive/ | grep bwv
# ls -lsa /etc/letsencrypt/live/ | grep bwv
#
# /srv/certbot/bwvoiplab.net_PDNS/certbot.sh
 Saving debug log to /var/log/certcron/_.bwvoiplab.net/letsencrypt.log
 Requesting a certificate for *.bwvoiplab.net
 An unexpected error occurred:
 AttributeError: 'Namespace' object has no attribute 'auth_chain_path'
 Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/certcron/_.bwvoiplab.net/letsencrypt.log or re-run Certbot with -v for more details.
#
# cat /var/log/certcron/_.bwvoiplab.net/letsencrypt.log | head
2023-08-08 01:51:11,022:DEBUG:certbot._internal.main:certbot version: 2.6.0
2023-08-08 01:51:11,023:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/local/bin/certbot
2023-08-08 01:51:11,023:DEBUG:certbot._internal.main:Arguments: ['-n', '--test-cert', '--logs-dir', '/var/log/certcron/_.bwvoiplab.net', '--authenticator', 'dns-powerdns', '--domain', '*.bwvoiplab.net', '--cert-name', 'bwvoiplab.net', '--dns-powerdns-credentials', '/etc/letsencrypt/pdns-credentials.ini', '--dns-powerdns-propagation-seconds', '215', '--agree-tos', '--email', 'devops@voyant.com', '--expand']
2023-08-08 01:51:11,023:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#auth,PluginEntryPoint#dns-dnsmadeeasy,PluginEntryPoint#dns-godaddy,PluginEntryPoint#dns-powerdns,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2023-08-08 01:51:11,035:DEBUG:certbot._internal.log:Root logging level set at 30
2023-08-08 01:51:11,036:DEBUG:certbot._internal.plugins.selection:Requested authenticator dns-powerdns and installer None
2023-08-08 01:51:11,038:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * dns-powerdns
Description: Obtain certificates using a DNS TXT record (if you are using PowerDNS for DNS.)
Interfaces: Authenticator, Plugin
Entry point: dns-powerdns = certbot_dns_powerdns.dns_powerdns:Authenticator
#
# ls -lsa /etc/letsencrypt/renewal/ | grep bwv
0 -rw-r--r-- 1 root root    0 Aug  8 01:51 bwvoiplab.net.conf
# ls -lsa /etc/letsencrypt/archive/ | grep bwv
4 drwxr-xr-x  2 root root 4096 Aug  8 01:51 bwvoiplab.net
# ls -lsa /etc/letsencrypt/live/ | grep bwv
4 drwxr-xr-x  2 root root 4096 Aug  8 01:51 bwvoiplab.net
# cat /etc/letsencrypt/renewal/bwvoiplab.net.conf 
#

Osiris · August 8, 2023, 3:53pm

As already mentioned, the issue is apparently most likely with the PowerDNS authenticator plugin you're using (thanks Jonathan! I've even replied to those Certbot issues, but I didn't remember this.. ).

Are you using GitHub - robin-thoni/certbot-pdns: Authenticator plugin for certbot or GitHub - pan-net-security/certbot-dns-powerdns: PowerDNS DNS Authenticator plugin for Certbot (the latter is also on PyPI at certbot-dns-powerdns · PyPI)? If you're using the former, I'd suggest try the latter.

Note that both plugins haven't been updated in 5 respectively 4 years, so it might be that any bug won't get fixed and thus your experiences with both plugins might be not what you'd expect.

Alternatively, you might want to use GitHub - alexzorin/certbot-dns-multi: Certbot DNS plugin supporting multiple providers, using github.com/go-acme/lego as Certbot authenticator plugin, which uses the ACME client lego under the hood for the DNS API interface, which includes PowerDNS.

system · September 7, 2023, 3:54pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.