Your message dated Thu, 01 Dec 2016 23:19:46 +0000 with message-id <e1ccadm-000aid...@fasolo.debian.org> and subject line Bug#846319: fixed in letsencrypt.sh 0.3.0-1 has caused the Debian Bug report #846319, regarding letsencrypt.sh: Fails to create fullchain.pem to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 846319: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=846319 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: letsencrypt.sh Version: 0.2.0-4 Severity: grave Tags: upstream patch Justification: renders package unusable Dear maintainer, Since openssl 1.1 has migrated to stretch I am unable to renew my Let's Encrypt certificates using letsencrypt.sh. The symptoms are: + Challenge is valid! + Requesting certificate... + Checking certificate... + Done! + Creating fullchain.pem... unable to load certificate 139783378379904:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:crypto/asn1/asn1_lib.c:101: What happens is that openssl is used with the same file/path for the "-in" and "-out" arguments to openssl when converting the downloaded issuer certificates from DER to PEM format. This produces the above error message and results in a 0-byte chain.pem file. The bug is fixed upstream in: https://github.com/lukas2511/dehydrated/commit/7eca8aec5a6679ce5ca507386687d130cc38ce23 Regards, Chris -- System Information: Debian Release: stretch/sid APT prefers testing APT policy: (990, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.8.0-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages letsencrypt.sh depends on: ii curl 7.50.1-1 ii openssl 1.1.0c-2 letsencrypt.sh recommends no packages. letsencrypt.sh suggests no packages. -- no debconf information -- debsums errors found: debsums: changed file /usr/bin/letsencrypt.sh (from letsencrypt.sh package)
--- End Message ---
--- Begin Message ---Source: letsencrypt.sh Source-Version: 0.3.0-1 We believe that the bug you reported is fixed in the latest version of letsencrypt.sh, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 846...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Mattia Rizzolo <mat...@debian.org> (supplier of updated letsencrypt.sh package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 02 Dec 2016 00:04:30 +0100 Source: letsencrypt.sh Binary: letsencrypt.sh letsencrypt.sh-apache2 Architecture: source Version: 0.3.0-1 Distribution: unstable Urgency: medium Maintainer: Debian Let's Encrypt <letsencrypt-devel@lists.alioth.debian.org> Changed-By: Mattia Rizzolo <mat...@debian.org> Description: letsencrypt.sh - ACME client implemented in Bash letsencrypt.sh-apache2 - letsencrypt.sh challenge response support for Apache2 Closes: 837308 838942 839851 846319 Changes: letsencrypt.sh (0.3.0-1) unstable; urgency=medium . * Import new upstream release 0.3.0. + Remove all Debian patches (as they were coming from upstream). + Add patch to revert the upstream commit renaming config.sh to config. Let's avoid another breaking change at this point, keep it for the dehydrated upload. + Add NEWS entry about the ACCOUNT_KEY move. + Closes: #839851 * Bump debhelper compat level to 10. * Add dependency on ca-certificates. Closes: #838942 * Add patch from upstream to fix support of OpenSSL 1.1.0. Closes: #846319 * Add patch to account for an already set ACCOUNT_KEY option when upgrading to the multi-account structure. Closes: #837308 Checksums-Sha1: 1dc89614b35da550bc35abefa9cd571c5c181129 2113 letsencrypt.sh_0.3.0-1.dsc 127c7373a9cf45adb84aba8a8deda5b1f9b17daa 21304 letsencrypt.sh_0.3.0.orig.tar.gz 2db50fdfe713ad85580ac6e3846dda9d2c5edcc2 11232 letsencrypt.sh_0.3.0-1.debian.tar.xz Checksums-Sha256: a877477fa7fa5e3ebc64a48f9216b0d8f2c8daeaccbe0488a02fdf38e743bf4a 2113 letsencrypt.sh_0.3.0-1.dsc 2e99ea4ba29d9179f704da48c710d1025cd5a8a4cfcf0fdb2215d9cb3a1f95a5 21304 letsencrypt.sh_0.3.0.orig.tar.gz 965ec96944ee440caf45483da58ae7a9aae9a79be69ce662beb9b8146cefb4f8 11232 letsencrypt.sh_0.3.0-1.debian.tar.xz Files: a097dc1ca5a49732859d1e9bb5bf91b2 2113 misc optional letsencrypt.sh_0.3.0-1.dsc 0e84e2b128b9fdd925dbbec33e7075ad 21304 misc optional letsencrypt.sh_0.3.0.orig.tar.gz 0c58c97d5573049ebddcc7f30278dd80 11232 misc optional letsencrypt.sh_0.3.0-1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJYQK0JAAoJEAgWueGMdiutkK4P/itJ1nZStx917O7Phwu17eAQ 7GOqfHBB08lttAwB0VoOOXYYa9P3+gxhT+EPSzSEcwZ+8WRFxWXVvOxt3ku52CX4 f7EJ9QmZbYLWld+3FaVCAdxY6WziKYwti1mlZ+mMuLcNMxqF1YmwZwqpWs4pd5E+ GuJ4LFo+B1MlKz8MiB7fAxGhg8Ukydh80rMfH2LUXZOuRCjUAb/+6yq/LRDMhLTk U+JqPmiD93MMgWV2vTol23tHS9JQtvVdb2GVQKm6YGrEYV3nAF+Wb8XqWq4dFR79 pA8b7kQxg54Wyxjy63+yi4vfReHpAUqWbTu7EsdnTgVNsvhpCr1QxS2ZnyIImJ4A ok5g3AGtcqKJ9hb7p0UjaiWac65AJ4WWLy+1a+yvKk3UCh5V2CzOx9uWtOjaq6VP 9Oy7m99K8lmS++AQ1q4fkwjUtX/2rDJy4/BVsC/DioXTnfUUSLnvC8DUaSq16wrI unFdi35y/5G0U6DFlhEeFMR4HUTXcYzxHTVvi4t1w7oreUUlc7peFMfhtrCD05+i HJeZO6EENpsWWsxGB55LnFhebd/k1aLlbICna7BBTdXGptwhEY8nS+TNmwg6XSDb eGipex0+CDeV3YrZ3OgmQf126LEgX+u/Bmmk+5eRJ9BppCKQCPXfg/aJTiuVMlym 79qGh5rF1QNrTLLiV63k =hYF+ -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ Letsencrypt-devel mailing list Letsencrypt-devel@lists.alioth.debian.org https://lists.alioth.debian.org/mailman/listinfo/letsencrypt-devel
