Hi there, I can’t renew my letsencrypt-certificate which will expire in two days. Up to now, everything is working fine and I can reach my nextcloud-server via https without problems. When I try to renew the certificate I get a very long output (see below) that I don’t understand enough to find the mistake. Is it possible, that there is not enough space left on the SD-card in the cubietruck?
I’d be thankful for advice.
My domain is: meinserver.de
I ran this command: letsencrypt certonly -a webroot --webroot-path=/var/www/letsencrypt --rsa-key-size 4096 -d meinserver.de
It produced this output: see below
My web server is (include version): cubietruck, nginx (newest version 1.10.3-0ubuntu0.16.04.2)
The operating system my web server runs on is (include version): ARMBIAN 5.38 stable Ubuntu 16.04.4 LTS 3.4.113-sun7i
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don’t know): yes, headless via ssh
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no
some of the output produced by the above command:
Message: ‘Received response:\nHTTP %d\n%s\n\n%s’
Arguments: (200, ‘Server: nginx\nContent-Type: application/json\nContent-Length: 1737\nLink: https://acme-v01.api.letsencrypt.org/acme/new-cert;rel=“next”\nReplay-Nonce: D3a0nqmp7SRUwSnm5k5_3LCjEuBYAYNFYVXKKW1LZt0\nX-Frame-Options: DENY\nStrict-Transport-Security: max-age=604800\nExpires: Tue, 03 Apr 2018 16:19:47 GMT\nCache-Control: max-age=0, no-cache, no-store\nPragma: no-cache\nDate: Tue, 03 Apr 2018 16:19:47 GMT\nConnection: keep-alive’, b’{\n “identifier”: {\n “type”: “dns”,\n “value”: “meinserver.de”\n },\n “status”: “invalid”,\n “expires”: “2018-04-10T16:19:43Z”,\n “challenges”: [\n {\n “type”: “dns-01”,\n “status”: “invalid”,\n “uri”: “https://acme-v01.api.letsencrypt.org/acme/challenge/aFzaBc89km-Uy_F9XG_zBt7ohlAHHNaoWXK0rgOguOU/4074722061”,\n “token”: “QKVnAztBMnrcueFcUWmRTk_Id5GN8PhsrzQDWuluDrs”\n },\n {\n “type”: “http-01”,\n “status”: “invalid”,\n “error”: {\n “type”: “urn:acme:error:connection”,\n “detail”: “Fetching http://meinserver.de/.well-known/acme-challenge/yVJ9oAOly25VNF86-ML4cfp3Wj0yb1N38J_PjwhsCXY: Error getting validation data”,\n “status”: 400\n },\n “uri”: “https://acme-v01.api.letsencrypt.org/acme/challenge/aFzaBc89km-Uy_F9XG_zBt7ohlAHHNaoWXK0rgOguOB/4074722062”,\n “token”: “yVJ9oAOly25VNF86-ML4cfp3Wj0yb1R38J_PjwhsCXY”,\n “keyAuthorization”: “yVJ9oAOly25VNF86-ML4cfp3Wj0yb1N38J_PjwhsCXY.nCuWy5cc7Fh1Lh03AghrCbFvMfZtIpScRYe4p38U3GQ”,\n “validationRecord”: [\n {\n “url”: “http://meinserver.de/.well-known/acme-challenge/yVJ9oAOly25VNF86-ML4cfp3Wj0yb1R38J_PjwhsCXY”,\n “hostname”: “meinserver.de”,\n “port”: “80”,\n “addressesResolved”: [\n “92.196.51.134”\n ],\n “addressUsed”: “92.196.51.134”\n }\n ]\n },\n {\n “type”: “tls-sni-01”,\n “status”: “invalid”,\n “uri”: “https://acme-v01.api.letsencrypt.org/acme/challenge/aFzaBc89km-Uy_F9XG_zBt7ohlAHHNaoWXK0rgOguOU/4074722063”,\n “token”: “TAiVigglcavRdvdszSyVNzUlSVWkH2bm20L7o5TgLyo”\n }\n ],\n “combinations”: [\n [\n 0\n ],\n [\n 1\n ],\n [\n 2\n ]\n ]\n}’)
— Logging error —
Traceback (most recent call last):
File “/usr/lib/python3.5/logging/handlers.py”, line 71, in emit
if self.shouldRollover(record):
File “/usr/lib/python3.5/logging/handlers.py”, line 188, in shouldRollover
self.stream.seek(0, 2) #due to non-posix-compliant Windows feature
OSError: [Errno 28] No space left on device
[…]
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File “/usr/lib/python3.5/logging/handlers.py”, line 71, in emit
if self.shouldRollover(record):
File “/usr/lib/python3.5/logging/handlers.py”, line 188, in shouldRollover
self.stream.seek(0, 2) #due to non-posix-compliant Windows feature
OSError: [Errno 28] No space left on device
Call stack:
File “/usr/bin/letsencrypt”, line 11, in
load_entry_point(‘certbot==0.22.2’, ‘console_scripts’, ‘certbot’)()
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1266, in main
return config.func(config, plugins)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1157, in certonly
lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 113, in _get_and_save_cert
renewal.renew_cert(config, domains, le_client, lineage)
File “/usr/lib/python3/dist-packages/certbot/renewal.py”, line 297, in renew_cert
new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains)
File “/usr/lib/python3/dist-packages/certbot/client.py”, line 294, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File “/usr/lib/python3/dist-packages/certbot/client.py”, line 330, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
File “/usr/lib/python3/dist-packages/certbot/auth_handler.py”, line 79, in handle_authorizations
self._respond(aauthzrs, resp, best_effort)
File “/usr/lib/python3/dist-packages/certbot/auth_handler.py”, line 156, in _respond
self._cleanup_challenges(aauthzrs, active_achalls)
File “/usr/lib/python3/dist-packages/certbot/auth_handler.py”, line 303, in _cleanup_challenges
self.auth.cleanup(achalls)
File “/usr/lib/python3/dist-packages/certbot/plugins/webroot.py”, line 232, in cleanup
logger.debug(“All challenges cleaned up”)
Message: ‘All challenges cleaned up’
Arguments: ()
— Logging error —
Traceback (most recent call last):
File “/usr/lib/python3.5/logging/handlers.py”, line 71, in emit
if self.shouldRollover(record):
File “/usr/lib/python3.5/logging/handlers.py”, line 188, in shouldRollover
self.stream.seek(0, 2) #due to non-posix-compliant Windows feature
OSError: [Errno 28] No space left on device
Call stack:
File “/usr/lib/python3/dist-packages/certbot/log.py”, line 327, in post_arg_parse_except_hook
logger.debug(‘Exiting abnormally:’, exc_info=exc_info)
Message: ‘Exiting abnormally:’
Arguments: ()
Failed authorization procedure. meinserver.de (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://meinserver.de/.well-known/acme-challenge/yVJ9oAOly25VNF86-ML4cfp3Wj0yb1N38J_PjwhsCXY: Error getting validation data
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: meinserver.de
Type: connection
Detail: Fetching
http://meinserver.de/.well-known/acme-challenge/yVJ9oAOly25VNF86-ML4cfp3Wj0yb1N38J_PjwhsCXY:
Error getting validation dataTo fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you’re using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.