VPS侦探论坛

 找回密码
 注册
查看: 280|回复: 8

无法更新证书了是怎么回事呢?

[复制链接]
发表于 2021-12-31 02:09:12 | 显示全部楼层 |阅读模式



之前搭建了网站,后来网站升级吧源文件夹删除了换成了新的,现在证书无法更新了,手动更新出现一下问题:
  1. Fri Dec 31 02:02:21 CST 2021] Processing, The CA is processing your order, please just wait. (28/30)
  2. [Fri Dec 31 02:02:24 CST 2021] Processing, The CA is processing your order, please just wait. (29/30)
  3. [Fri Dec 31 02:02:28 CST 2021] wiki.wandersky.org:Timeout
  4. [Fri Dec 31 02:02:28 CST 2021] Please check log file for more details: /usr/local/acme.sh/acme.sh.log
复制代码
查看日志:
  1. [Fri Dec 31 02:00:53 CST 2021] Running cmd: renew
  2. [Fri Dec 31 02:00:53 CST 2021] Using config home:/usr/local/acme.sh
  3. [Fri Dec 31 02:00:53 CST 2021] default_acme_server
  4. [Fri Dec 31 02:00:53 CST 2021] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
  5. [Fri Dec 31 02:00:53 CST 2021] DOMAIN_PATH='/usr/local/nginx/conf/ssl/wiki.wandersky.org'
  6. [Fri Dec 31 02:00:53 CST 2021] Renew: 'wiki.wandersky.org'
  7. [Fri Dec 31 02:00:53 CST 2021] Le_API='https://acme.zerossl.com/v2/DV90'
  8. [Fri Dec 31 02:00:53 CST 2021] Using config home:/usr/local/acme.sh
  9. [Fri Dec 31 02:00:53 CST 2021] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
  10. [Fri Dec 31 02:00:53 CST 2021] _main_domain='wiki.wandersky.org'
  11. [Fri Dec 31 02:00:53 CST 2021] _alt_domains='no'
  12. [Fri Dec 31 02:00:53 CST 2021] Le_NextRenewTime='1637132823'
  13. [Fri Dec 31 02:00:53 CST 2021] Using ACME_DIRECTORY: https://acme.zerossl.com/v2/DV90
  14. [Fri Dec 31 02:00:53 CST 2021] _init api for server: https://acme.zerossl.com/v2/DV90
  15. [Fri Dec 31 02:00:53 CST 2021] Retrying GET
  16. [Fri Dec 31 02:00:53 CST 2021] GET
  17. [Fri Dec 31 02:00:53 CST 2021] url='https://acme.zerossl.com/v2/DV90'
  18. [Fri Dec 31 02:00:53 CST 2021] timeout=
  19. [Fri Dec 31 02:00:53 CST 2021] displayError='1'
  20. [Fri Dec 31 02:00:53 CST 2021] _CURL='curl --silent --dump-header /usr/local/acme.sh/http.header  -L  -g '
  21. [Fri Dec 31 02:00:54 CST 2021] ret='0'
  22. [Fri Dec 31 02:00:54 CST 2021] _hcode='0'
  23. [Fri Dec 31 02:00:54 CST 2021] ACME_KEY_CHANGE='https://acme.zerossl.com/v2/DV90/keyChange'
  24. [Fri Dec 31 02:00:54 CST 2021] ACME_NEW_AUTHZ
  25. [Fri Dec 31 02:00:54 CST 2021] ACME_NEW_ORDER='https://acme.zerossl.com/v2/DV90/newOrder'
  26. [Fri Dec 31 02:00:54 CST 2021] ACME_NEW_ACCOUNT='https://acme.zerossl.com/v2/DV90/newAccount'
  27. [Fri Dec 31 02:00:54 CST 2021] ACME_REVOKE_CERT='https://acme.zerossl.com/v2/DV90/revokeCert'
  28. [Fri Dec 31 02:00:54 CST 2021] ACME_AGREEMENT='https://secure.trust-provider.com/repository/docs/Legacy/20201020_Certificate_Subscriber_Agreement_v_2_4_click.pdf'
  29. [Fri Dec 31 02:00:54 CST 2021] ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce'
  30. [Fri Dec 31 02:00:54 CST 2021] Using CA: https://acme.zerossl.com/v2/DV90
  31. [Fri Dec 31 02:00:54 CST 2021] _on_before_issue
  32. [Fri Dec 31 02:00:54 CST 2021] _chk_main_domain='wiki.wandersky.org'
  33. [Fri Dec 31 02:00:54 CST 2021] _chk_alt_domains
  34. [Fri Dec 31 02:00:54 CST 2021] Le_LocalAddress
  35. [Fri Dec 31 02:00:54 CST 2021] d='wiki.wandersky.org'
  36. [Fri Dec 31 02:00:54 CST 2021] Check for domain='wiki.wandersky.org'
  37. [Fri Dec 31 02:00:54 CST 2021] _currentRoot='/home/wwwroot/wiki.wandersky.org'
  38. [Fri Dec 31 02:00:54 CST 2021] d
  39. [Fri Dec 31 02:00:54 CST 2021] _saved_account_key_hash is not changed, skip register account.
  40. [Fri Dec 31 02:00:54 CST 2021] Read key length:
  41. [Fri Dec 31 02:00:54 CST 2021] _createcsr
  42. [Fri Dec 31 02:00:54 CST 2021] Single domain='wiki.wandersky.org'
  43. [Fri Dec 31 02:00:54 CST 2021] Getting domain auth token for each domain
  44. [Fri Dec 31 02:00:54 CST 2021] d
  45. [Fri Dec 31 02:00:54 CST 2021] url='https://acme.zerossl.com/v2/DV90/newOrder'
  46. [Fri Dec 31 02:00:54 CST 2021] payload='{"identifiers": [{"type":"dns","value":"wiki.wandersky.org"}]}'
  47. [Fri Dec 31 02:00:54 CST 2021] RSA key
  48. [Fri Dec 31 02:00:54 CST 2021] Retrying post
  49. [Fri Dec 31 02:00:54 CST 2021] HEAD
  50. [Fri Dec 31 02:00:54 CST 2021] _post_url='https://acme.zerossl.com/v2/DV90/newNonce'
  51. [Fri Dec 31 02:00:54 CST 2021] _CURL='curl --silent --dump-header /usr/local/acme.sh/http.header  -L  -g  -I  '
  52. [Fri Dec 31 02:00:55 CST 2021] _ret='0'
  53. [Fri Dec 31 02:00:55 CST 2021] _hcode='0'
  54. [Fri Dec 31 02:00:55 CST 2021] Retrying post
  55. [Fri Dec 31 02:00:55 CST 2021] POST
  56. [Fri Dec 31 02:00:55 CST 2021] _post_url='https://acme.zerossl.com/v2/DV90/newOrder'
  57. [Fri Dec 31 02:00:55 CST 2021] _CURL='curl --silent --dump-header /usr/local/acme.sh/http.header  -L  -g '
  58. [Fri Dec 31 02:00:56 CST 2021] _ret='0'
  59. [Fri Dec 31 02:00:56 CST 2021] _hcode='0'
  60. [Fri Dec 31 02:00:56 CST 2021] code='201'
  61. [Fri Dec 31 02:00:56 CST 2021] Le_LinkOrder='https://acme.zerossl.com/v2/DV90/order/Y6CTHRgFGt9NtH8CepZQVg'
  62. [Fri Dec 31 02:00:56 CST 2021] Le_OrderFinalize='https://acme.zerossl.com/v2/DV90/order/Y6CTHRgFGt9NtH8CepZQVg/finalize'
  63. [Fri Dec 31 02:00:56 CST 2021] url='https://acme.zerossl.com/v2/DV90/authz/A87XjFOlR4FtbeAfdBuJtg'
  64. [Fri Dec 31 02:00:56 CST 2021] payload
  65. [Fri Dec 31 02:00:56 CST 2021] Retrying post
  66. [Fri Dec 31 02:00:56 CST 2021] POST
  67. [Fri Dec 31 02:00:56 CST 2021] _post_url='https://acme.zerossl.com/v2/DV90/authz/A87XjFOlR4FtbeAfdBuJtg'
  68. [Fri Dec 31 02:00:56 CST 2021] _CURL='curl --silent --dump-header /usr/local/acme.sh/http.header  -L  -g '
  69. [Fri Dec 31 02:00:57 CST 2021] _ret='0'
  70. [Fri Dec 31 02:00:57 CST 2021] _hcode='0'
  71. [Fri Dec 31 02:00:57 CST 2021] code='200'
  72. [Fri Dec 31 02:00:57 CST 2021] d='wiki.wandersky.org'
  73. [Fri Dec 31 02:00:57 CST 2021] Getting webroot for domain='wiki.wandersky.org'
  74. [Fri Dec 31 02:00:57 CST 2021] _w='/home/wwwroot/wiki.wandersky.org'
  75. [Fri Dec 31 02:00:57 CST 2021] _currentRoot='/home/wwwroot/wiki.wandersky.org'
  76. [Fri Dec 31 02:00:57 CST 2021] entry='"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ","status":"pending","token":"boUl7fvjahfXqIDCD_sZPgmNCCmSkYVMxDaD16Emhkc"'
  77. [Fri Dec 31 02:00:57 CST 2021] token='boUl7fvjahfXqIDCD_sZPgmNCCmSkYVMxDaD16Emhkc'
  78. [Fri Dec 31 02:00:57 CST 2021] uri='https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ'
  79. [Fri Dec 31 02:00:57 CST 2021] keyauthorization='boUl7fvjahfXqIDCD_sZPgmNCCmSkYVMxDaD16Emhkc.n9misyNDKa5bFJ6DxJjVJXRbAO1FlFPfnyf-5qikpZU'
  80. [Fri Dec 31 02:00:57 CST 2021] dvlist='wiki.wandersky.org#boUl7fvjahfXqIDCD_sZPgmNCCmSkYVMxDaD16Emhkc.n9misyNDKa5bFJ6DxJjVJXRbAO1FlFPfnyf-5qikpZU#https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ#http-01#/home/wwwroot/wiki.wandersky.org'
  81. [Fri Dec 31 02:00:58 CST 2021] d
  82. [Fri Dec 31 02:00:58 CST 2021] vlist='wiki.wandersky.org#boUl7fvjahfXqIDCD_sZPgmNCCmSkYVMxDaD16Emhkc.n9misyNDKa5bFJ6DxJjVJXRbAO1FlFPfnyf-5qikpZU#https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ#http-01#/home/wwwroot/wiki.wandersky.org,'
  83. [Fri Dec 31 02:00:58 CST 2021] d='wiki.wandersky.org'
  84. [Fri Dec 31 02:00:58 CST 2021] ok, let's start to verify
  85. [Fri Dec 31 02:00:58 CST 2021] Verifying: wiki.wandersky.org
  86. [Fri Dec 31 02:00:58 CST 2021] d='wiki.wandersky.org'
  87. [Fri Dec 31 02:00:58 CST 2021] keyauthorization='boUl7fvjahfXqIDCD_sZPgmNCCmSkYVMxDaD16Emhkc.n9misyNDKa5bFJ6DxJjVJXRbAO1FlFPfnyf-5qikpZU'
  88. [Fri Dec 31 02:00:58 CST 2021] uri='https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ'
  89. [Fri Dec 31 02:00:58 CST 2021] _currentRoot='/home/wwwroot/wiki.wandersky.org'
  90. [Fri Dec 31 02:00:58 CST 2021] wellknown_path='/home/wwwroot/wiki.wandersky.org/.well-known/acme-challenge'
  91. [Fri Dec 31 02:00:58 CST 2021] writing token:boUl7fvjahfXqIDCD_sZPgmNCCmSkYVMxDaD16Emhkc to /home/wwwroot/wiki.wandersky.org/.well-known/acme-challenge/boUl7fvjahfXqIDCD_sZPgmNCCmSkYVMxDaD16Emhkc
  92. [Fri Dec 31 02:00:58 CST 2021] Changing owner/group of .well-known to www:www
  93. [Fri Dec 31 02:00:58 CST 2021] url='https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ'
  94. [Fri Dec 31 02:00:58 CST 2021] payload='{}'
  95. [Fri Dec 31 02:00:58 CST 2021] Retrying post
  96. [Fri Dec 31 02:00:58 CST 2021] POST
  97. [Fri Dec 31 02:00:58 CST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ'
  98. [Fri Dec 31 02:00:58 CST 2021] _CURL='curl --silent --dump-header /usr/local/acme.sh/http.header  -L  -g '
  99. [Fri Dec 31 02:00:59 CST 2021] _ret='0'
  100. [Fri Dec 31 02:00:59 CST 2021] _hcode='0'
  101. [Fri Dec 31 02:00:59 CST 2021] code='200'
  102. [Fri Dec 31 02:00:59 CST 2021] trigger validation code: 200
  103. [Fri Dec 31 02:02:24 CST 2021] sleep 2 secs to verify again
  104. [Fri Dec 31 02:02:26 CST 2021] checking
  105. [Fri Dec 31 02:02:26 CST 2021] url='https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ'
  106. [Fri Dec 31 02:02:26 CST 2021] payload
  107. [Fri Dec 31 02:02:26 CST 2021] Retrying post
  108. [Fri Dec 31 02:02:26 CST 2021] POST
  109. [Fri Dec 31 02:02:26 CST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ'
  110. [Fri Dec 31 02:02:26 CST 2021] _CURL='curl --silent --dump-header /usr/local/acme.sh/http.header  -L  -g '
  111. [Fri Dec 31 02:02:28 CST 2021] _ret='0'
  112. [Fri Dec 31 02:02:28 CST 2021] _hcode='0'
  113. [Fri Dec 31 02:02:28 CST 2021] code='200'
  114. [Fri Dec 31 02:02:28 CST 2021] wiki.wandersky.org:Timeout
  115. [Fri Dec 31 02:02:28 CST 2021] pid
  116. [Fri Dec 31 02:02:28 CST 2021] No need to restore nginx, skip.
  117. [Fri Dec 31 02:02:28 CST 2021] _clearupdns
  118. [Fri Dec 31 02:02:28 CST 2021] dns_entries
  119. [Fri Dec 31 02:02:28 CST 2021] skip dns.
  120. [Fri Dec 31 02:02:28 CST 2021] _on_issue_err
  121. [Fri Dec 31 02:02:28 CST 2021] Please check log file for more details: /usr/local/acme.sh/acme.sh.log
  122. [Fri Dec 31 02:02:28 CST 2021] url='https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ'
  123. [Fri Dec 31 02:02:28 CST 2021] payload='{}'
  124. [Fri Dec 31 02:02:28 CST 2021] Retrying post
  125. [Fri Dec 31 02:02:28 CST 2021] POST
  126. [Fri Dec 31 02:02:28 CST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/9i1Oq1SYaQI3a61Nj6roxQ'
  127. [Fri Dec 31 02:02:28 CST 2021] _CURL='curl --silent --dump-header /usr/local/acme.sh/http.header  -L  -g '
  128. [Fri Dec 31 02:02:29 CST 2021] _ret='0'
  129. [Fri Dec 31 02:02:29 CST 2021] _hcode='0'
  130. [Fri Dec 31 02:02:29 CST 2021] code='200'
复制代码


美国VPS推荐: 遨游主机LinodeLOCVPSKVMLAVPS2EZ搬瓦工80VPSVultr美国VPS主机中国VPS推荐: 阿里云腾讯云。LNMP付费服务(代装/问题排查)QQ 503228080
发表于 2021-12-31 08:53:44 | 显示全部楼层


{"type":"urn:ietf:params:acme:error:malformed","status":405,"detail":"The request message was malformed"}

不确定什么原因引起的,可以尝试升级一下:/usr/local/acme.sh/acme.sh --upgrade再续期看一下
Linux下Nginx+MySQL+PHP自动安装工具:https://lnmp.org
 楼主| 发表于 2022-1-2 19:50:09 | 显示全部楼层



licess 发表于 2021-12-31 08:53
不确定什么原因引起的,可以尝试升级一下:/usr/local/acme.sh/acme.sh --upgrade再续期看一下
...

不行,更新后还是这样
美国VPS推荐: 遨游主机LinodeLOCVPSKVMLAVPS2EZ搬瓦工80VPSVultr美国VPS主机中国VPS推荐: 阿里云腾讯云。LNMP付费服务(代装/问题排查)QQ 503228080
 楼主| 发表于 2022-1-18 10:08:03 | 显示全部楼层



licess 发表于 2021-12-31 08:53
不确定什么原因引起的,可以尝试升级一下:/usr/local/acme.sh/acme.sh --upgrade再续期看一下
...

这个站点是wiki,不是php项目,而是vue+go+node,所以使用lnmp创建站点的时候有点问题了
Linux下Nginx+MySQL+PHP自动安装工具:https://lnmp.org
发表于 2022-1-18 14:18:11 | 显示全部楼层

dajf 发表于 2022-1-18 10:08
这个站点是wiki,不是php项目,而是vue+go+node,所以使用lnmp创建站点的时候有点问题了 ...

设置了反向代理到你的wiki项目吗?贴这个域名的虚拟主机配置文件看一下

美国VPS、VPN、域名代购:http://shop63846532.taobao.com/

 楼主| 发表于 7 天前 | 显示全部楼层

licess 发表于 2022-1-18 14:18
设置了反向代理到你的wiki项目吗?贴这个域名的虚拟主机配置文件看一下
  1. server
  2.     {
  3.         listen 80;
  4.         #listen [::]:80;
  5.         server_name wiki.wandersky.org ;
  6.         index index.html index.htm index.php default.html default.htm default.php;
  7.         root  /home/wwwroot/wiki.wandersky.org;



  8.         location / {
  9.             proxy_pass http://127.0.0.1:3000;
  10.             proxy_http_version    1.1;
  11.             proxy_cache_bypass    $http_upgrade;
  12.             proxy_set_header Upgrade            $http_upgrade;
  13.             proxy_set_header Connection         "upgrade";
  14.             proxy_set_header Host               $host;
  15.             proxy_set_header X-Real-IP          $remote_addr;
  16.             proxy_set_header X-Forwarded-For    $proxy_add_x_forwarded_for;
  17.             proxy_set_header X-Forwarded-Proto  $scheme;
  18.             proxy_set_header X-Forwarded-Host   $host;
  19.             proxy_set_header X-Forwarded-Port   $server_port;
  20.         }

  21.         access_log  /home/wwwlogs/wiki_access.log;
  22.         error_log /home/wwwlogs/wiki_error.log;
  23.     }

  24. server
  25.     {
  26.         listen 443 ssl http2;
  27.         #listen [::]:443 ssl http2;
  28.         server_name wiki.wandersky.org ;
  29.         index index.html index.htm index.php default.html default.htm default.php;
  30.         root  /home/wwwroot/wiki.wandersky.org;

  31.         ssl_certificate /usr/local/nginx/conf/ssl/wiki.wandersky.org/fullchain.cer;
  32.         ssl_certificate_key /usr/local/nginx/conf/ssl/wiki.wandersky.org/wiki.wandersky.org.key;
  33.         ssl_session_timeout 5m;
  34.         ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
  35.         ssl_prefer_server_ciphers on;
  36.         ssl_ciphers "TLS13-AES-256-GCM-SHA384:TLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-128-GCM-SHA256:TLS13-AES-128-CCM-8-SHA256:TLS13-AES-128-CCM-SHA256:EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5";
  37.         ssl_session_cache builtin:1000 shared:SSL:10m;
  38.         # openssl dhparam -out /usr/local/nginx/conf/ssl/dhparam.pem 2048
  39.         ssl_dhparam /usr/local/nginx/conf/ssl/dhparam.pem;


  40.         location / {
  41.             proxy_pass http://127.0.0.1:3000;
  42.             proxy_http_version    1.1;
  43.             proxy_cache_bypass    $http_upgrade;
  44.             proxy_set_header Upgrade            $http_upgrade;
  45.             proxy_set_header Connection         "upgrade";
  46.             proxy_set_header Host               $host;
  47.             proxy_set_header X-Real-IP          $remote_addr;
  48.             proxy_set_header X-Forwarded-For    $proxy_add_x_forwarded_for;
  49.             proxy_set_header X-Forwarded-Proto  $scheme;
  50.             proxy_set_header X-Forwarded-Host   $host;
  51.             proxy_set_header X-Forwarded-Port   $server_port;
  52.         }

  53.         access_log  /home/wwwlogs/wiki_access.log;
  54.         error_log /home/wwwlogs/wiki_error.log;
  55.     }
复制代码
发表于 7 天前 | 显示全部楼层

华为云,阿里云这些都能申请免费证书,挺香的,我在腾讯云的域名都跑到华为云申请域名证书。这段时间腾讯云老发加价通知,以后不在腾讯云玩了。
美国VPS推荐: 遨游主机LinodeLOCVPSKVMLAVPS2EZ搬瓦工80VPSVultr美国VPS主机中国VPS推荐: 阿里云腾讯云。LNMP付费服务(代装/问题排查)QQ 503228080
发表于 7 天前 | 显示全部楼层




https://lnmp.org/faq/lnmp-nginx-301-rewrite.html 在 location / 该行上面加上
  1.         location ~ /.well-known {
  2.             allow all;
  3.         }
复制代码

的配置
Linux下Nginx+MySQL+PHP自动安装工具:https://lnmp.org
 楼主| 发表于 6 天前 | 显示全部楼层



licess 发表于 2022-1-21 15:41
按 https://lnmp.org/faq/lnmp-nginx-301-rewrite.html 在 location / 该行上面加上
的配置

可以了,感谢
美国VPS推荐: 遨游主机LinodeLOCVPSKVMLAVPS2EZ搬瓦工80VPSVultr美国VPS主机中国VPS推荐: 阿里云腾讯云。LNMP付费服务(代装/问题排查)QQ 503228080
您需要登录后才可以回帖 登录 | 注册

本版积分规则

小黑屋|手机版|Archiver|VPS侦探 ( 鲁ICP备16040043号-1 )

GMT+8, 2022-1-28 17:32 , Processed in 0.050414 second(s), 16 queries .

Powered by Discuz! X3.4

Copyright © 2001-2021, Tencent Cloud.

快速回复 返回顶部 返回列表