Hello i am back, but now my subdomain is sync.astian.org, certbot 1.17.
spika and sync are reverse proxy.
- /var/log/letsencrypt/letsencrypt.log:
Requesting a certificate for sync.astian.org
An unexpected error occurred:
augeas.AugeasValueError: Augeas.insert() failed: No match for path expression
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
mercurio:/opt/astian/appwrite # cat /var/log/letsencrypt/letsencrypt.log
2021-07-13 16:08:33,329:DEBUG:certbot._internal.main:certbot version: 1.17.0
2021-07-13 16:08:33,329:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/bin/certbot
2021-07-13 16:08:33,329:DEBUG:certbot._internal.main:Arguments: ['--apache']
2021-07-13 16:08:33,329:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2021-07-13 16:08:33,342:DEBUG:certbot._internal.log:Root logging level set at 30
2021-07-13 16:08:33,342:DEBUG:certbot._internal.plugins.selection:Requested authenticator apache and installer apache
2021-07-13 16:08:33,405:DEBUG:certbot_apache._internal.configurator:Apache version is 2.4.48
2021-07-13 16:08:33,622:WARNING:certbot_apache._internal.configurator:ssl_module is statically linked but --apache-bin is missing; not disabling session tickets.
2021-07-13 16:08:33,623:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * apache
Description: Apache Web Server plugin
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: apache = certbot_apache._internal.entrypoint:ENTRYPOINT
Initialized: <certbot_apache._internal.override_suse.OpenSUSEConfigurator object at 0x7fe0c9539880>
Prep: True
2021-07-13 16:08:33,623:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_apache._internal.override_suse.OpenSUSEConfigurator object at 0x7fe0c9539880> and installer <certbot_apache._internal.override_suse.OpenSUSEConfigurator object at 0x7fe0c9539880>
2021-07-13 16:08:33,623:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator apache, Installer apache
2021-07-13 16:08:33,627:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/114350327', new_authzr_uri=None, terms_of_service=None), 6a4bf7b85d0d8ad6ba7e2adf814f5fa3, Meta(creation_dt=datetime.datetime(2021, 3, 2, 2, 27, 25, tzinfo=<UTC>), creation_host='mercurio.astian.org', register_to_eff=None))>
2021-07-13 16:08:33,627:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2021-07-13 16:08:33,628:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2021-07-13 16:08:34,325:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
2021-07-13 16:08:34,326:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 13 Jul 2021 21:08:34 GMT
Content-Type: application/json
Content-Length: 658
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
"website": "https://letsencrypt.org"
},
"nEg8nZstIt4": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2021-07-13 16:08:36,413:DEBUG:certbot.display.util:Notifying user: Requesting a certificate for sync.astian.org
2021-07-13 16:08:36,498:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/0300_key-certbot.pem
2021-07-13 16:08:36,500:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0300_csr-certbot.pem
2021-07-13 16:08:36,501:DEBUG:acme.client:Requesting fresh nonce
2021-07-13 16:08:36,501:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2021-07-13 16:08:36,675:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2021-07-13 16:08:36,676:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 13 Jul 2021 21:08:36 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0001uM0MnKYhCYtQWJzOvpKjGkc-tYWrIRR0xufuSipj47A
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
2021-07-13 16:08:36,676:DEBUG:acme.client:Storing nonce: 0001uM0MnKYhCYtQWJzOvpKjGkc-tYWrIRR0xufuSipj47A
2021-07-13 16:08:36,676:DEBUG:acme.client:JWS payload:
b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "sync.astian.org"\n }\n ]\n}'
2021-07-13 16:08:36,677:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE0MzUwMzI3IiwgIm5vbmNlIjogIjAwMDF1TTBNbktZaENZdFFXSnpPdnBLakdrYy10WVdySVJSMHh1ZnVTaXBqNDdBIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ",
"signature": "lG2UC8PeVXFcawt5wrw3aiIS3djATZa72BjN_8P71wQ7tKQDUBVx2CKnYqBbywWm8_PrbN_psDIAosSDSGWX7IKB38qFpCUQjYHZ7GpWk5xmbW2jVMHLEjK_OZMJHxzkpTFzcequRjbp8SYIkrpqYuaKRSAqqt-DWUgS2ZDhGgJnEFGhGTB998ga-riRrS97xOxflib9Y6pI0ZKE8yy0d9riN5jW8ZVdi2dnnwsme5mxJQpOsW0yHRm7tUG2d1RsYglQGrjU5xgRuc1pf4rCXAuzmqZnsgbfSxKnqrklaEE8SC6y1c3uMibZbfBScrO8zXFD20M3Ixli9pXUByOAHA",
"payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInN5bmMuYXN0aWFuLm9yZyIKICAgIH0KICBdCn0"
}
2021-07-13 16:08:36,878:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 338
2021-07-13 16:08:36,879:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Tue, 13 Jul 2021 21:08:36 GMT
Content-Type: application/json
Content-Length: 338
Connection: keep-alive
Boulder-Requester: 114350327
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/114350327/10911609935
Replay-Nonce: 00020UShD5di1rqYNjYU0-gbchCiqLiJEtUccWXx0gYgcyU
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"status": "pending",
"expires": "2021-07-14T14:02:15Z",
"identifiers": [
{
"type": "dns",
"value": "sync.astian.org"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/14613682423"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/114350327/10911609935"
}
2021-07-13 16:08:36,879:DEBUG:acme.client:Storing nonce: 00020UShD5di1rqYNjYU0-gbchCiqLiJEtUccWXx0gYgcyU
2021-07-13 16:08:36,880:DEBUG:acme.client:JWS payload:
b''
2021-07-13 16:08:36,882:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/14613682423:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE0MzUwMzI3IiwgIm5vbmNlIjogIjAwMDIwVVNoRDVkaTFycVlOallVMC1nYmNoQ2lxTGlKRXRVY2NXWHgwZ1lnY3lVIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNDYxMzY4MjQyMyJ9",
"signature": "OffFM5Rc8XLUEPnjyhUzWQ17-G0Qh4uWtITzFekF_kNJCEV2USaN5TO-sHVP0yIG_LQldfq8PJifEMfCTjwmCz3eZetpR1nQBooHNj4oUluw6c9dEOgCkGTwyQv0laKff9HcPo9CIQWS-1ZPhEOehvoGKCsZjYYjnC8H-l3JHajmVb9cZ6TwNekh0g9BhWd5pQhFvdPRyH2voSGwZCxhcSKGOlT-Jc5mag3gntEDaO_QSth5rkWwbMVQF12JddJmzFgHw69B1_5hQULw_N_ztUfwu6ez8xw2NKTJzBVCYVOxfHbfzJVOpnUgQYKPOQIzme5V_La4GSEcfPxETJoxtQ",
"payload": ""
}
2021-07-13 16:08:37,124:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/14613682423 HTTP/1.1" 200 796
2021-07-13 16:08:37,125:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 13 Jul 2021 21:08:37 GMT
Content-Type: application/json
Content-Length: 796
Connection: keep-alive
Boulder-Requester: 114350327
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002l7PxNG2ghHpgNyYSxJo-QJJ6y6_vWEWaWA8lDg16OjI
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "sync.astian.org"
},
"status": "pending",
"expires": "2021-07-14T14:02:15Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/14613682423/_Jj9TA",
"token": "E5dVbKOy8jFHnKhozGwE5KCJLUbBJW-EjrB3Fu4_ix4"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/14613682423/2Q94KA",
"token": "E5dVbKOy8jFHnKhozGwE5KCJLUbBJW-EjrB3Fu4_ix4"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/14613682423/DZmMCg",
"token": "E5dVbKOy8jFHnKhozGwE5KCJLUbBJW-EjrB3Fu4_ix4"
}
]
}
2021-07-13 16:08:37,125:DEBUG:acme.client:Storing nonce: 0002l7PxNG2ghHpgNyYSxJo-QJJ6y6_vWEWaWA8lDg16OjI
2021-07-13 16:08:37,127:INFO:certbot._internal.auth_handler:Performing the following challenges:
2021-07-13 16:08:37,127:INFO:certbot._internal.auth_handler:http-01 challenge for sync.astian.org
2021-07-13 16:08:37,172:DEBUG:certbot_apache._internal.http_01:Adding a temporary challenge validation Include for name: sync.astian.org in: /etc/apache2/vhosts.d/sync.conf
2021-07-13 16:08:37,173:DEBUG:certbot_apache._internal.http_01:Adding a temporary challenge validation Include for name: None in: /etc/apache2/vhosts.d/default.conf
2021-07-13 16:08:37,174:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File "/opt/apps/env/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 73, in handle_authorizations
resps = self.auth.perform(achalls)
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/configurator.py", line 2538, in perform
http_response = http_doer.perform()
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/http_01.py", line 76, in perform
self._mod_config()
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/http_01.py", line 120, in _mod_config
self._set_up_include_directives(vh)
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/http_01.py", line 216, in _set_up_include_directives
self.configurator.parser.add_dir_beginning(
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/parser.py", line 443, in add_dir_beginning
self.aug.insert(first_dir, "directive", True)
File "/opt/apps/env/lib/python3.8/site-packages/augeas/__init__.py", line 485, in insert
self._raise_error(AugeasValueError, "Augeas.insert() failed")
File "/opt/apps/env/lib/python3.8/site-packages/augeas/__init__.py", line 154, in _raise_error
raise errorclass(ec, fullmessage, msg, minor, details)
augeas.AugeasValueError: Augeas.insert() failed: No match for path expression
2021-07-13 16:08:37,175:DEBUG:certbot._internal.error_handler:Calling registered functions
2021-07-13 16:08:37,175:INFO:certbot._internal.auth_handler:Cleaning up challenges
2021-07-13 16:08:37,336:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/certbot", line 8, in <module>
sys.exit(main())
File "/opt/apps/env/lib/python3.8/site-packages/certbot/main.py", line 15, in main
return internal_main.main(cli_args)
File "/opt/apps/env/lib/python3.8/site-packages/certbot/_internal/main.py", line 1574, in main
return config.func(config, plugins)
File "/opt/apps/env/lib/python3.8/site-packages/certbot/_internal/main.py", line 1289, in run
new_lineage = _get_and_save_cert(le_client, config, domains,
File "/opt/apps/env/lib/python3.8/site-packages/certbot/_internal/main.py", line 128, in _get_and_save_cert
lineage = le_client.obtain_and_enroll_certificate(domains, certname)
File "/opt/apps/env/lib/python3.8/site-packages/certbot/_internal/client.py", line 445, in obtain_and_enroll_certificate
cert, chain, key, _ = self.obtain_certificate(domains)
File "/opt/apps/env/lib/python3.8/site-packages/certbot/_internal/client.py", line 375, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File "/opt/apps/env/lib/python3.8/site-packages/certbot/_internal/client.py", line 425, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
File "/opt/apps/env/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 73, in handle_authorizations
resps = self.auth.perform(achalls)
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/configurator.py", line 2538, in perform
http_response = http_doer.perform()
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/http_01.py", line 76, in perform
self._mod_config()
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/http_01.py", line 120, in _mod_config
self._set_up_include_directives(vh)
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/http_01.py", line 216, in _set_up_include_directives
self.configurator.parser.add_dir_beginning(
File "/opt/apps/env/lib/python3.8/site-packages/certbot_apache/_internal/parser.py", line 443, in add_dir_beginning
self.aug.insert(first_dir, "directive", True)
File "/opt/apps/env/lib/python3.8/site-packages/augeas/__init__.py", line 485, in insert
self._raise_error(AugeasValueError, "Augeas.insert() failed")
File "/opt/apps/env/lib/python3.8/site-packages/augeas/__init__.py", line 154, in _raise_error
raise errorclass(ec, fullmessage, msg, minor, details)
augeas.AugeasValueError: Augeas.insert() failed: No match for path expression
2021-07-13 16:08:37,338:ERROR:certbot._internal.log:An unexpected error occurred:
2021-07-13 16:08:37,338:ERROR:certbot._internal.log:augeas.AugeasValueError: Augeas.insert() failed: No match for path expression
VirtualHost configuration:
*:443 is a NameVirtualHost
default server www.astian.org (/etc/apache2/vhosts.d/_astian-le-ssl.conf:2)
port 443 namevhost www.astian.org (/etc/apache2/vhosts.d/_astian-le-ssl.conf:2)
alias astian.org
port 443 namevhost acloud.astian.org (/etc/apache2/vhosts.d/acloud-le-ssl.conf:2)
port 443 namevhost analytics.astian.org (/etc/apache2/vhosts.d/analytics-le-ssl.conf:2)
port 443 namevhost go.astian.org (/etc/apache2/vhosts.d/go-le-ssl.conf:2)
port 443 namevhost translate.astian.org (/etc/apache2/vhosts.d/libtranslate-le-ssl.conf:2)
port 443 namevhost maps.astiango.com (/etc/apache2/vhosts.d/maps-le-ssl.conf:2)
port 443 namevhost sea.astian.org (/etc/apache2/vhosts.d/sea-le-ssl.conf:2)
*:8448 spika.astian.org (/etc/apache2/vhosts.d/spika.conf:29)
*:80 is a NameVirtualHost
default server www.astian.org (/etc/apache2/vhosts.d/_astian.conf:1)
port 80 namevhost www.astian.org (/etc/apache2/vhosts.d/_astian.conf:1)
alias astian.org
port 80 namevhost acloud.astian.org (/etc/apache2/vhosts.d/acloud.conf:1)
port 80 namevhost analytics.astian.org (/etc/apache2/vhosts.d/analytics.conf:1)
port 80 namevhost www.astian.org (/etc/apache2/vhosts.d/asnew.conf:1)
alias astian.org
port 80 namevhost astian.org (/etc/apache2/vhosts.d/default.conf:1)
port 80 namevhost go.astian.org (/etc/apache2/vhosts.d/go.conf:1)
port 80 namevhost translate.astian.org (/etc/apache2/vhosts.d/libtranslate.conf:1)
port 80 namevhost maps.astiango.com (/etc/apache2/vhosts.d/maps.conf:1)
port 80 namevhost sea.astian.org (/etc/apache2/vhosts.d/sea.conf:1)
port 80 namevhost spika.astian.org (/etc/apache2/vhosts.d/spika.conf:1)
port 80 namevhost sync.astian.org (/etc/apache2/vhosts.d/sync.conf:1)
ServerRoot: "/srv/www"
Main DocumentRoot: "/srv/www/htdocs"
Main ErrorLog: "/var/log/apache2/error_log"
Mutex fcgid-pipe: using_defaults
Mutex ssl-stapling-refresh: using_defaults
Mutex rewrite-map: using_defaults
Mutex fcgid-proctbl: using_defaults
Mutex ssl-stapling: using_defaults
Mutex proxy: using_defaults
Mutex ssl-cache: using_defaults
Mutex default: dir="/run/" mechanism=default
PidFile: "/run/httpd.pid"
Define: SYSCONFIG
Define: HTTP2
Define: DUMP_VHOSTS
Define: DUMP_RUN_CFG
User: name="wwwrun" id=471
Group: name="www" id=472