[contribteam] [Bug 10300] Dehydrated returning to shell prompt, outputs only "# INFO: Using main config file /etc/dehydrated/config"

Tue, 16 May 2017 13:39:38 -0700 

https://bugs.contribs.org/show_bug.cgi?id=10300

--- Comment #26 from Jean-Philippe Pialasse <[email protected]> ---


Ok I have ended up with this, and never got a fail to deliver the certificate.
It just make sometimes the config reading quiet long. But was not able to have
it failing (at least because of DNS and curl error 6).



#fix for curl error (get for
https://acme-staging.api.letsencrypt.org/directory; curl returned with 6) like

/usr/bin/host -W 5 -R 5 acme-v01.api.letsencrypt.org  2>&1 > /dev/null || echo
"# unable to resolve DNS"
/usr/bin/host -W 5 -R 5 cert.int-x3.letsencrypt.org  2>&1 > /dev/null || echo
"# unable to resolve DNS"
/usr/bin/host -W 5 -R 5 acme-staging.api.letsencrypt.org  2>&1 > /dev/null ||
echo "# unable to resolve DNS"

/usr/bin/curl https://acme-v01.api.letsencrypt.org/directory -f --retry 10
--retry-delay 6 -s  -S  > /dev/null
/usr/bin/curl http://cert.int-x3.letsencrypt.org/ -f --retry 10 --retry-delay 6
-s  -S  > /dev/null
/usr/bin/curl https://acme-staging.api.letsencrypt.org/directory -f --retry 10
--retry-delay 6 -s -S > /dev/null


will give a try without the curl lines tomorrow and just the host. Without the
host lines I did had a pseudo failure like this :

[root@sme9x64 ~]# dehydrated -c
# INFO: Using main config file /etc/dehydrated/config
curl: (6) Couldn't resolve host 'cert.int-x3.letsencrypt.org'
+ Generating account key...
+ Registering account key with ACME server...
Processing test9v1.canada.pialasse.com
 + Signing domains...
 + Creating new directory /etc/dehydrated/certs/test9v1.canada.pialasse.com ...
 + Generating private key...
 + Generating signing request...
 + Requesting challenge for test9v1.canada.pialasse.com...
MAwv6LNq0mcoLK9s8TWy741H3koVYaO39wYym4R-FUI                                    
                                                                               
                 100%   87     0.1KB/s   00:00    
 + Responding to challenge for test9v1.canada.pialasse.com...
 + Challenge is valid!
 + Requesting certificate...
 + Checking certificate...
 + Done!
 + Creating fullchain.pem...
Set up modSSL db keys
Signal events
All complete
 + Done!
[root@sme9x64 ~]#

seems like further down the script the ultimate call ahd the chance to resolve
it...

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
_______________________________________________
Mail for each SME Contribs bug report
To unsubscribe, e-mail [email protected]
Searchable archive at https://lists.contribs.org/mailman/public/contribteam/

Reply via email to