[edit] Certificate wouldn't renew (except it just did now....)

1. Caddy version (caddy version):

v1.0.4

2. How I run Caddy:

The contents of /etc/rc.local (get’s run automatically on boot):

ulimit -n 8192
/usr/local/bin/caddy -agree -conf /root/Caddyfile

a. System environment:

Ubuntu 16.04.6 LTS (Xenial Xerus)

b. Command:

See 2. (I run /etc/rc.local, or it gets run automatically on reboot.)

d. My complete Caddyfile or JSON config:

(log) {
  tls omfth@passchier.net
  errors caddy.err
  log caddy.log
}

oai.thaimissions.info {
  import log
  root /home/administrator/Greenstone/collect/thaimiss/htmlroot
  index default.html
}

www.thaimissions.info/gsdl/web,
thaimissions.info/gsdl/web {
  import log
  root /home/administrator/Greenstone/web
}
www.thaimissions.info/gsdl/collect,
thaimissions.info/gsdl/collect {
  import log
  root /home/administrator/Greenstone/collect
}
www.thaimissions.info,
thaimissions.info {
  import log
  root /home/administrator/Greenstone/collect/thaimiss/htmlroot
  #rewrite /gsdl/ {
  # r /(.*)
  # to /{1}
  #}

  cgi {
    match /gsdl*
    dir /home/administrator/Greenstone/cgi-bin/linux/
    exec library.cgi
  }
}

3. The problem I’m having:

The certificate is only valid for 1 more day… I thought perhaps something in the Caddyfile is causing Let’s Encrypt to not read the responses…?

4. Error messages and/or full log output:

Activating privacy features... 2020/06/16 14:00:29 [INFO] [thaimissions.info] acme: Trying renewal with 30 hours remaining
2020/06/16 14:00:29 [INFO] [thaimissions.info] acme: Obtaining bundled SAN certificate
2020/06/16 14:00:31 [INFO] [thaimissions.info] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270794181
2020/06/16 14:00:31 [INFO] [thaimissions.info] acme: use tls-alpn-01 solver
2020/06/16 14:00:31 [INFO] [thaimissions.info] acme: Trying to solve TLS-ALPN-01
2020/06/16 14:00:38 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270794181
2020/06/16 14:00:38 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270794181
2020/06/16 14:00:39 [INFO] [thaimissions.info] acme: Trying renewal with 30 hours remaining
2020/06/16 14:00:39 [INFO] [thaimissions.info] acme: Obtaining bundled SAN certificate
2020/06/16 14:00:40 [INFO] [thaimissions.info] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270798144
2020/06/16 14:00:40 [INFO] [thaimissions.info] acme: use tls-alpn-01 solver
2020/06/16 14:00:40 [INFO] [thaimissions.info] acme: Trying to solve TLS-ALPN-01
2020/06/16 14:00:45 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270798144
2020/06/16 14:00:45 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270798144
2020/06/16 14:00:46 [INFO] [thaimissions.info] acme: Trying renewal with 30 hours remaining
2020/06/16 14:00:46 [INFO] [thaimissions.info] acme: Obtaining bundled SAN certificate
2020/06/16 14:00:47 [INFO] [thaimissions.info] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270800680
2020/06/16 14:00:47 [INFO] [thaimissions.info] acme: use tls-alpn-01 solver
2020/06/16 14:00:47 [INFO] [thaimissions.info] acme: Trying to solve TLS-ALPN-01
2020/06/16 14:00:55 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270800680
2020/06/16 14:00:56 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270800680
2020/06/16 14:00:57 [INFO] [thaimissions.info] acme: Trying renewal with 30 hours remaining
2020/06/16 14:00:57 [INFO] [thaimissions.info] acme: Obtaining bundled SAN certificate
2020/06/16 14:00:57 [INFO] [thaimissions.info] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270804042
2020/06/16 14:00:57 [INFO] [thaimissions.info] acme: Could not find solver for: tls-alpn-01
2020/06/16 14:00:57 [INFO] [thaimissions.info] acme: use http-01 solver
2020/06/16 14:00:57 [INFO] [thaimissions.info] acme: Trying to solve HTTP-01
2020/06/16 14:01:01 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270804042
2020/06/16 14:01:02 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270804042
2020/06/16 14:01:03 [INFO] [thaimissions.info] acme: Trying renewal with 30 hours remaining
2020/06/16 14:01:03 [INFO] [thaimissions.info] acme: Obtaining bundled SAN certificate
2020/06/16 14:01:03 [INFO] [thaimissions.info] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270805856
2020/06/16 14:01:03 [INFO] [thaimissions.info] acme: Could not find solver for: tls-alpn-01
2020/06/16 14:01:03 [INFO] [thaimissions.info] acme: use http-01 solver
2020/06/16 14:01:03 [INFO] [thaimissions.info] acme: Trying to solve HTTP-01
2020/06/16 14:01:08 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270805856
2020/06/16 14:01:09 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5270805856
2020/06/16 14:01:10 [INFO] [thaimissions.info] acme: Trying renewal with 30 hours remaining
2020/06/16 14:01:10 [INFO] [thaimissions.info] acme: Obtaining bundled SAN certificate
done.

Serving HTTPS on port 443 
https://oai.thaimissions.info
https://www.thaimissions.info/gsdl/web
https://thaimissions.info/gsdl/web
https://www.thaimissions.info/gsdl/collect
https://thaimissions.info/gsdl/collect
https://www.thaimissions.info
https://thaimissions.info


Serving HTTP on port 80 
http://oai.thaimissions.info
http://www.thaimissions.info
http://thaimissions.info

5. What I already tried:

Restarting caddy, rebooting.

It seems it just now after a restart of caddy it did issue a certificate for the next 3 months. Not sure what was wrong (it isn’t always so late in renewing a certificate, right?) but it wasn’t the Caddyfile.

Closing this one…

1 Like

I’ve heard of something like this a few times in the last few months but haven’t been able to reproduce it myself. It could be a bug or something in certain versions of Caddy 1 but is not an issue in Caddy 2.

1 Like

This topic was automatically closed after 30 days. New replies are no longer allowed.