Bug #7208
closed
ACME ftpwebroot doesn't work
0%
Description
Below is the output of trying to use ftpwebroot. I redacted some data. As you can see from the log it doesn't appear the script is even trying to SFTP the file. I didn't see any traffic to the destination host via tcpdump either.
webui_test_2
Renewing certificateaccount: le test
server: letsencrypt-staging
/usr/local/pkg/acme/acme.sh --issue -d 'XX' --home '/tmp/acme/webui_test_2/' --accountconf '/tmp/acme/webui_test_2/accountconf.conf' --force --reloadCmd '/tmp/acme/webui_test_2/reloadcmd.sh' --webroot pfSenseacme --log-level 3 --log '/tmp/acme/webui_test_2/acme_issuecert.log'
Array
(
[path] => /etc:/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin/
[PATH] => /etc:/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin/
[ftpserver] => XX
[username] => XX
[password] => XX
[folder] => /.well-known/acme-challenge/
)
[Fri Feb 3 21:59:17 EST 2017] Single domain='XX'
[Fri Feb 3 21:59:17 EST 2017] Getting domain auth token for each domain
[Fri Feb 3 21:59:17 EST 2017] Getting webroot for domain='XX'
[Fri Feb 3 21:59:17 EST 2017] _w='pfSenseacme'
[Fri Feb 3 21:59:18 EST 2017] Getting new-authz for domain='XX'
[Fri Feb 3 21:59:23 EST 2017] The new-authz request is ok.
[Fri Feb 3 21:59:23 EST 2017] Verifying:XX
[Fri Feb 3 21:59:23 EST 2017] Found domain http api file: /tmp/acme/webui_test_2//httpapi/pfSenseacme.sh
challenge_response_put webui_test_2, XX
FOUND domainitem[Fri Feb 3 21:59:27 EST 2017] Found domain http api file: /tmp/acme/webui_test_2//httpapi/pfSenseacme.sh
Fatal error: Using $this when not in object context in /usr/local/pkg/acme/acme.inc on line 553
Call Stack:
0.0007 233584 1. {main}() /usr/local/pkg/acme/acme_command.sh:0
0.2344 10776768 2. pfsense_pkg\acme\challenge_response_cleanup() /usr/local/pkg/acme/acme_command.sh:65
PHP ERROR: Type: 1, File: /usr/local/pkg/acme/acme.inc, Line: 553, Message: Using $this when not in object context[Fri Feb 3 21:59:27 EST 2017] XX:Verify error:Invalid response from http://XX/.well-known/acme-challenge/JhIrXr0FXdxgYwTf98IRl8cHPw6LTsOpaDlWcaEp5rM:
[Fri Feb 3 21:59:27 EST 2017] Error rm webroot api for domain:pfSenseacme
[Fri Feb 3 21:59:27 EST 2017] Please check log file for more details: /tmp/acme/webui_test_2/acme_issuecert.log@@
Updated by Jim Pingle about 7 years ago
- Status changed from New to Feedback
Pushed a fix for this in acme pkg version 0.1.7, will be available shortly.
Updated by
Updated by Jim Pingle about 7 years ago
- Status changed from Feedback to Resolved
Updated by Dmitry Ivanov over 6 years ago
PFSense 2.4.0
ACME 0.1.18
Fatal error: Call to undefined function pfsense_pkg\acme\ssh2_connect() in /usr/local/pkg/acme/acme_serverconnectors.inc on line 47
Call Stack:
0.0003 238288 1. {main}() /usr/local/pkg/acme/acme_command.sh:0
0.0751 10864608 2. pfsense_pkg\acme\challenge_response_put() /usr/local/pkg/acme/acme_command.sh:68
0.0752 10866480 3. pfsense_pkg\acme\FTPConnection->__construct() /usr/local/pkg/acme/acme.inc:623
PHP ERROR: Type: 1, File: /usr/local/pkg/acme/acme_serverconnectors.inc, Line: 47, Message: Call to undefined function pfsense_pkg\acme\ssh2_connect()[Fri Aug 11 08:29:13 MSK 2017] Found domain http api file: /tmp/acme/gm01//httpapi/pfSenseacme.sh
[Fri Aug 11 08:29:10 MSK 2017] Error add webroot for domain:name
[Fri Aug 11 08:29:13 MSK 2017] name:Verify error:Invalid response from http://name/.well-known/acme-challenge/wns70Q6k6DOLnqUwOAB2H9_6xH1kEmsM20Z75cHaJYg:
[Fri Aug 11 08:29:14 MSK 2017] Please check log file for more details: /tmp/acme/gm01/acme_issuecert.log
Updated by Jim Pingle over 6 years ago
Dmitry Ivanov wrote:
Fatal error: Call to undefined function pfsense_pkg\acme\ssh2_connect() in /usr/local/pkg/acme/acme_serverconnectors.inc on line 47
That is unrelated to this ticket, it's a new problem. I confirmed the issue and opened up #7766 for it.