ERROR - Certificate installation for maindomain.tld failed! - solved

uncertain · May 10, 2024, 7:16am

solved using - Echec installation certificat Let's Encrypt

Hi everyone, hope you are all well. Appreciate any assistance,

U

My YunoHost server

**Hardware:
Old gaming computer. nividia 970 display card, 500gig crucial ssd, mbord: gigabyte GA-X58A-UD3R with 16gig of mem

**YunoHost version:
yunohost-bullseye-11.0.9-amd64-stable run from usb that was made using balenaEtcher-Portable-1.18.11
HDD was formatted using gparted-live-1.5.0-6-amd64

I have access to my server as admin
yes

Are you in a special context or did you perform some particular tweaking on your YunoHost instance ?
no

Description of my issue
I was getting the “NET::ERR_CERT_AUTHORITY_INVALID” error. I followed the solution here:

This worked but now can’t update to the correct certificate.

What I hope to achieve?
Get it working correctly

,
args:
force: true
no_checks: false
ended_at: 2024-05-10 07:06:54.019363
error: 'Certificate installation for maindomain.tld failed !

Exception: Could not sign the new certificate’
interface: api
operation: letsencrypt_cert_install
parent: null
related_to:

- domain
- maindomain.tld
  started_at: 2024-05-10 07:06:35.537625
  success: false
  yunohost_version: 11.2.11.3

============

2024-05-10 17:06:35,545: DEBUG - Making sure tmp folders exists…
2024-05-10 17:06:35,570: DEBUG - Fetching IP from https://ip.yunohost.org
2024-05-10 17:06:37,124: DEBUG - IP fetched: xx.xx.xx.xx
2024-05-10 17:06:37,132: DEBUG - Fetching IP from https://ip6.yunohost.org
2024-05-10 17:06:38,683: DEBUG - IP fetched: xx:xx:xx:xx:xx:xx
2024-05-10 17:06:38,721: DEBUG - Executing command ‘[‘sh’, ‘-c’, ‘/bin/bash -x “./43-dnsmasq” pre '' '' /var/cache/yunohost/regenconf/pending/dnsmasq 7>&1’]’
2024-05-10 17:06:38,739: DEBUG - + set -e
2024-05-10 17:06:38,739: DEBUG - + . /usr/share/yunohost/helpers
2024-05-10 17:06:38,740: DEBUG - +++ set +o
2024-05-10 17:06:38,740: DEBUG - +++ grep xtrace
2024-05-10 17:06:38,741: DEBUG - ++ readonly ‘XTRACE_ENABLE=set -o xtrace’
2024-05-10 17:06:38,741: DEBUG - ++ XTRACE_ENABLE=‘set -o xtrace’
2024-05-10 17:06:38,768: DEBUG - + do_pre_regen /var/cache/yunohost/regenconf/pending/dnsmasq
2024-05-10 17:06:38,769: DEBUG - + pending_dir=/var/cache/yunohost/regenconf/pending/dnsmasq
2024-05-10 17:06:38,769: DEBUG - + cd /usr/share/yunohost/conf/dnsmasq
2024-05-10 17:06:38,769: DEBUG - + dnsmasq_dir=/var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.d
2024-05-10 17:06:38,769: DEBUG - + mkdir -p /var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.d
2024-05-10 17:06:38,770: DEBUG - + etcdefault_dir=/var/cache/yunohost/regenconf/pending/dnsmasq/etc/default
2024-05-10 17:06:38,770: DEBUG - + mkdir -p /var/cache/yunohost/regenconf/pending/dnsmasq/etc/default
2024-05-10 17:06:38,771: DEBUG - + cp plain/etcdefault /var/cache/yunohost/regenconf/pending/dnsmasq/etc/default/dnsmasq
2024-05-10 17:06:38,794: DEBUG - + cat plain/resolv.dnsmasq.conf
2024-05-10 17:06:38,794: DEBUG - + grep ‘^nameserver’
2024-05-10 17:06:38,795: DEBUG - + shuf
2024-05-10 17:06:38,813: DEBUG - ++ curl --max-time 10 -s -4 https://ip.yunohost.org
2024-05-10 17:06:40,095: DEBUG - + ipv4=xx.xx.xx.xx
2024-05-10 17:06:40,096: DEBUG - + ynh_validate_ip4 xx.xx.xx.xx
2024-05-10 17:06:40,119: DEBUG - + ynh_validate_ip --family=4 --ip_address=xx.xx.xx.xx
2024-05-10 17:06:40,150: DEBUG - + ‘[’ 4 == 4 ‘]’
2024-05-10 17:06:40,151: DEBUG - + python3 /dev/stdin
2024-05-10 17:06:40,195: DEBUG - ++ curl --max-time 10 -s -6 https://ip6.yunohost.org
2024-05-10 17:06:41,433: DEBUG - + ipv6=xx:xx:xx:xx:xx:xx
2024-05-10 17:06:41,434: DEBUG - + ynh_validate_ip6 xx:xx:xx:xx:xx:xx
2024-05-10 17:06:41,444: DEBUG - + ynh_validate_ip --family=6 --ip_address=xx:xx:xx:xx:xx:xx
2024-05-10 17:06:41,476: DEBUG - + ‘[’ 6 == 4 ‘]’
2024-05-10 17:06:41,477: DEBUG - + ‘[’ 6 == 6 ‘]’
2024-05-10 17:06:41,477: DEBUG - + python3 /dev/stdin
2024-05-10 17:06:41,521: DEBUG - ++ ip -j addr show
2024-05-10 17:06:41,522: DEBUG - ++ jq -r ‘[..ifname]|join(" ")’
2024-05-10 17:06:41,578: DEBUG - + interfaces=‘lo enp7s0’
2024-05-10 17:06:41,578: DEBUG - + wireless_interfaces=lo
2024-05-10 17:06:41,578: DEBUG - ++ ls /sys/class/net
2024-05-10 17:06:41,580: DEBUG - + for dev in $(ls /sys/class/net)
2024-05-10 17:06:41,580: DEBUG - + ‘[’ -d /sys/class/net/enp7s0/wireless ‘]’
2024-05-10 17:06:41,581: DEBUG - + for dev in $(ls /sys/class/net)
2024-05-10 17:06:41,581: DEBUG - + ‘[’ -d /sys/class/net/lo/wireless ‘]’
2024-05-10 17:06:41,581: DEBUG - + export wireless_interfaces
2024-05-10 17:06:41,581: DEBUG - + ynh_render_template dnsmasq.conf.tpl /var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.conf
2024-05-10 17:06:41,582: DEBUG - + local template_path=dnsmasq.conf.tpl
2024-05-10 17:06:41,582: DEBUG - + local output_path=/var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.conf
2024-05-10 17:06:41,582: DEBUG - ++ dirname /var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.conf
2024-05-10 17:06:41,582: DEBUG - + mkdir -p /var/cache/yunohost/regenconf/pending/dnsmasq/etc
2024-05-10 17:06:41,583: DEBUG - + python3 -c ‘import os, sys, jinja2; sys.stdout.write(
2024-05-10 17:06:41,583: DEBUG - jinja2.Template(sys.stdin.read()
2024-05-10 17:06:41,583: DEBUG - ).render(os.environ));’
2024-05-10 17:06:41,662: DEBUG - + export interfaces
2024-05-10 17:06:41,663: DEBUG - + export ipv4
2024-05-10 17:06:41,663: DEBUG - + export ipv6
2024-05-10 17:06:41,663: DEBUG - + for domain in $YNH_DOMAINS
2024-05-10 17:06:41,663: DEBUG - + [[ ! maindomain.tld =~ .local$ ]]
2024-05-10 17:06:41,664: DEBUG - + export domain
2024-05-10 17:06:41,664: DEBUG - + ynh_render_template domain.tpl /var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.d/maindomain.tld
2024-05-10 17:06:41,664: DEBUG - + local template_path=domain.tpl
2024-05-10 17:06:41,664: DEBUG - + local output_path=/var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.d/maindomain.tld
2024-05-10 17:06:41,665: DEBUG - ++ dirname /var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.d/maindomain.tld
2024-05-10 17:06:41,665: DEBUG - + mkdir -p /var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.d
2024-05-10 17:06:41,665: DEBUG - + python3 -c ‘import os, sys, jinja2; sys.stdout.write(
2024-05-10 17:06:41,666: DEBUG - jinja2.Template(sys.stdin.read()
2024-05-10 17:06:41,666: DEBUG - ).render(os.environ));’
2024-05-10 17:06:41,735: DEBUG - + for domain in $YNH_DOMAINS
2024-05-10 17:06:41,736: DEBUG - + [[ ! domain2.tld =~ .local$ ]]
2024-05-10 17:06:41,736: DEBUG - + continue
2024-05-10 17:06:41,736: DEBUG - ++ ls -1 /etc/dnsmasq.d
2024-05-10 17:06:41,737: DEBUG - ++ awk ‘/^[1]+.[^.]+.*$/ { print $1 }’
2024-05-10 17:06:41,740: DEBUG - + conf_files=maindomain.tld
2024-05-10 17:06:41,741: DEBUG - + for domain in $conf_files
2024-05-10 17:06:41,741: DEBUG - + [[ ! maindomain.tld domain2.tld =~ maindomain.tld ]]
2024-05-10 17:06:42,743: DEBUG - Checking pending configuration which would have been applied for category ‘dnsmasq’…
2024-05-10 17:06:42,774: DEBUG - processing pending conf ‘/var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.conf’ to system conf ‘/etc/dnsmasq.conf’
2024-05-10 17:06:42,775: DEBUG - > system conf is already up-to-date
2024-05-10 17:06:42,775: DEBUG - processing pending conf ‘/var/cache/yunohost/regenconf/pending/dnsmasq/etc/resolv.dnsmasq.conf’ to system conf ‘/etc/resolv.dnsmasq.conf’
2024-05-10 17:06:42,776: DEBUG - Configuration file ‘/etc/resolv.dnsmasq.conf’ backed up to ‘/var/cache/yunohost/regenconf/backup/etc/resolv.dnsmasq.conf-20240510.070642’
2024-05-10 17:06:42,777: DEBUG - Configuration file ‘/etc/resolv.dnsmasq.conf’ updated
2024-05-10 17:06:42,777: DEBUG - processing pending conf ‘/var/cache/yunohost/regenconf/pending/dnsmasq/etc/default/dnsmasq’ to system conf ‘/etc/default/dnsmasq’
2024-05-10 17:06:42,778: DEBUG - > system conf is already up-to-date
2024-05-10 17:06:42,778: DEBUG - processing pending conf ‘/var/cache/yunohost/regenconf/pending/dnsmasq/etc/dnsmasq.d/maindomain.tld’ to system conf ‘/etc/dnsmasq.d/maindomain.tld’
2024-05-10 17:06:42,778: DEBUG - > system conf is already up-to-date
2024-05-10 17:06:42,779: SUCCESS - Configuration updated for ‘dnsmasq’
2024-05-10 17:06:42,780: DEBUG - updating conf hashes for ‘dnsmasq’ with: {‘/etc/default/dnsmasq’: ‘ff5c2923b4d5e1e51ffd8d226c26fe2b’, ‘/etc/dnsmasq.conf’: ‘eb5a7091f047b94f656ea5a2e4bfbaa0’, ‘/etc/dnsmasq.d/maindomain.tld’: ‘1fb982c915990dc3408438be2eeebeaf’, ‘/etc/resolv.dnsmasq.conf’: ‘0caa362c386c2fbf322bd36e34f5926a’}
2024-05-10 17:06:42,828: DEBUG - Executing command ‘[‘sh’, ‘-c’, ‘/bin/bash -x “./43-dnsmasq” post '' '' /etc/resolv.dnsmasq.conf 7>&1’]’
2024-05-10 17:06:42,835: DEBUG - + set -e
2024-05-10 17:06:42,835: DEBUG - + . /usr/share/yunohost/helpers
2024-05-10 17:06:42,836: DEBUG - +++ set +o
2024-05-10 17:06:42,836: DEBUG - +++ grep xtrace
2024-05-10 17:06:42,837: DEBUG - ++ readonly ‘XTRACE_ENABLE=set -o xtrace’
2024-05-10 17:06:42,837: DEBUG - ++ XTRACE_ENABLE=‘set -o xtrace’
2024-05-10 17:06:42,863: DEBUG - + do_post_regen /etc/resolv.dnsmasq.conf
2024-05-10 17:06:42,863: DEBUG - + regen_conf_files=/etc/resolv.dnsmasq.conf
2024-05-10 17:06:42,863: DEBUG - + chown root /etc/resolv.dnsmasq.conf
2024-05-10 17:06:42,864: DEBUG - + chmod 644 /etc/resolv.dnsmasq.conf
2024-05-10 17:06:42,865: DEBUG - + grep -q -E ‘^ *(domain|search)’ /run/resolvconf/resolv.conf
2024-05-10 17:06:42,867: DEBUG - ++ hostname -s
2024-05-10 17:06:42,868: DEBUG - + short_hostname=druss
2024-05-10 17:06:42,868: DEBUG - + grep -q ‘127.0.0.1.*druss’ /etc/hosts
2024-05-10 17:06:42,869: DEBUG - + [[ -n /etc/resolv.dnsmasq.conf ]]
2024-05-10 17:06:42,869: DEBUG - + for SERVICE in systemd-resolved bind9
2024-05-10 17:06:42,870: DEBUG - + systemctl is-enabled systemd-resolved
2024-05-10 17:06:42,927: DEBUG - + systemctl is-active systemd-resolved
2024-05-10 17:06:42,959: DEBUG - + for SERVICE in systemd-resolved bind9
2024-05-10 17:06:42,959: DEBUG - + systemctl is-enabled bind9
2024-05-10 17:06:42,965: DEBUG - + systemctl is-active bind9
2024-05-10 17:06:42,970: DEBUG - + systemctl restart dnsmasq
2024-05-10 17:06:43,974: DEBUG - Full log of this operation: ‘Regenerate system configurations ‘dnsmasq’’
2024-05-10 17:06:43,984: DEBUG - Prepare key and certificate signing request (CSR) for maindomain.tld…
2024-05-10 17:06:44,379: DEBUG - Saving to /var/www/.well-known/acme-challenge-private/maindomain.tld.csr.
2024-05-10 17:06:44,379: DEBUG - Now using ACME Tiny to sign the certificate…
2024-05-10 17:06:44,380: INFO - Parsing account key…
2024-05-10 17:06:44,403: INFO - Parsing CSR…
2024-05-10 17:06:44,413: INFO - Found domains: xmpp-upload.maindomain.tld, muc.maindomain.tld, maindomain.tld
2024-05-10 17:06:44,413: INFO - Getting directory…
2024-05-10 17:06:45,290: INFO - Directory found!
2024-05-10 17:06:45,291: INFO - Registering account…
2024-05-10 17:06:46,573: INFO - Already registered!
2024-05-10 17:06:46,575: INFO - Creating new order…
2024-05-10 17:06:47,936: INFO - Order created!
2024-05-10 17:06:49,123: INFO - Verifying maindomain.tld…
2024-05-10 17:06:51,646: INFO - maindomain.tld verified!
2024-05-10 17:06:52,825: INFO - Verifying muc.maindomain.tld…
2024-05-10 17:06:54,018: ERROR - Wrote file to /var/www/.well-known/acme-challenge-public/nge4embBgZBaK9Ai4g_2bbop5SsrA2w9EEbdM-IeHMU, but couldn’t download http://muc.maindomain.tld/.well-known/acme-challenge/nge4embBgZBaK9Ai4g_2bbop5SsrA2w9EEbdM-IeHMU:
2024-05-10 17:06:54,018: ERROR - Certificate installation for maindomain.tld failed !
Exception: Could not sign the new certificate
,

^. ↩︎