Hardware: Raspberry Pi 3 model B rev 1.2 YunoHost version: 11.1.3 testing I have access to my server : Through SSH | through the webadmin | direct access via keyboard / screen | … Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : no If yes, please explain:
Description of my issue
hi,
since yunohost version 11.1.2.3 i´m unable to renew Let s encrypt certificate.
I receive a mail every day like this:
Url: http://muc.mydomain.ynh.fr/.well-known/acme-challenge/QbfEA98PPj6aPZ2UH-l44-ytGjBX-yqPjd9WEXoFENQ
Data: None
Response Code: None
Response: <urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1123)>
Service metronome is stopped now in diagnosis after this warning:
WARNING - Job for metronome.service failed because the control process exited with error code.
2023-01-20 16:16:51,134: WARNING - See “systemctl status metronome.service” and “journalctl -xe” for details.
2023-01-20 16:16:52,139: ERROR - Could not run script: /usr/share/yunohost/hooks/conf_regen/12-metronome
Traceback (most recent call last):
File “/usr/lib/python3/dist-packages/yunohost/hook.py”, line 298, in hook_callback
hook_return = hook_exec(
File “/usr/lib/python3/dist-packages/yunohost/hook.py”, line 386, in hook_exec
raise YunohostError(“hook_exec_failed”, path=path)
yunohost.utils.error.YunohostError: Could not run script: /usr/share/yunohost/hooks/conf_regen/12-metronome
Working after disabling xmpp, but it’s only a temporary fix (I need XMPP but certificate was very close to expire so I may not use it while the bug is fixed)
Same problem here too on a VPS running Debian 11.6. It started with 11.1.2, and is not resolved with 11.1.3.
My domain had expired, trying to renew it ran into the same certificate verify failed: unable to get local issuer certificate error.
Disabling XMPP did the trick (sudo yunohost domain config set mydomain.tld feature.xmpp.xmpp -v no)
Then renewing the certificate worked (sudo yunohost domain cert renew mydomain.tld), although it showed the following warning, which I assume to be related to having just disabled XMPP:
Job for metronome.service failed because the control process exited with error code.
See “systemctl status metronome.service” and “journalctl -xe” for details.
Warning: Could not execute the command ‘systemctl restart metronome’