1. Caddy version (caddy version
):
2.4.0-rc.1
2. How I run Caddy:
Native
a. System environment:
Debian Buster
b. Command:
Caddy start
d. My complete Caddyfile or JSON config:
# Global Option Block
{
# General Option
debug
}
# ACME Server
acme.roadrunner{
acme_server
tls internal
}
### REVERSE PROXY
## E-Mail
mail.mydomain.com {
reverse_proxy https://192.168.2.1 {
transport http {
tls_insecure_skip_verify
}
}
}
## Nextcloud
nextcloud.mydomain.com {
reverse_proxy https://nextcloud.roadrunner{
header_up Host {http.reverse_proxy.upstream.hostport}
header_up X-Forwarded-Host {host}
}
}
## Bitwarden
bitwarden.mydomain.com {
reverse_proxy https://bitwarden.roadrunner{
header_up Host {http.reverse_proxy.upstream.hostport}
header_up X-Forwarded-Host {host}
}
respond /admin* "The admin panel is disabled, please configure the 'ADMIN_TOKEN' variable to enable it"
}
3. The problem I’m having:
At one point I could not connect to any services from outside the network. I discovered that my external IP address was changed so I updated the DNS. While waiting for the changes to become effective, I updated Caddy from 2.3.0 to 2.4.0-rc.1. Once completed I received the following errors when starting Caddy.
4. Error messages and/or full log output:
After caddy start
2021/05/05 20:43:04.718 INFO using adjacent Caddyfile
2021/05/05 20:43:04.725 WARN input is not formatted with ‘caddy fmt’ {“adapter”: “caddyfile”, “file”: “Caddyfile”, “line”: 17}
2021/05/05 20:43:04.730 INFO admin admin endpoint started {“address”: “tcp/localhost:2019”, “enforce_origin”: false, “origins”: [“localhost:2019”, “[::1]:2019”, “127.0.0.1:2019”]}
2021/05/05 20:43:04.743 INFO tls.cache.maintenance started background certificate maintenance {“cache”: “0xc00047ebd0”}
2021/05/05 20:43:04.762 INFO http server is listening only on the HTTPS port but has no TLS connection policies; adding one to enable TLS {“server_name”: “srv0”, “https_port”: 443}
2021/05/05 20:43:04.764 INFO http enabling automatic HTTP->HTTPS redirects {“server_name”: “srv0”}
2021/05/05 20:43:04.858 INFO pki.ca.local root certificate is already trusted by system {“path”: “storage:pki/authorities/local/root.crt”}
2021/05/05 20:43:04.862 DEBUG http starting server loop {“address”: “[::]:443”, “http3”: false, “tls”: true}
2021/05/05 20:43:04.862 DEBUG http starting server loop {“address”: “[::]:80”, “http3”: false, “tls”: false}
2021/05/05 20:43:04.863 INFO http enabling automatic TLS certificate management {“domains”: [“acme.roadrunner”, “nextcloud.mydomain.com”, “bitwarden.mydomain.com”, “mail.mydomain.com”]}
2021/05/05 20:43:04.865 WARN tls stapling OCSP {“error”: “no OCSP stapling for [acme.roadrunner]: no OCSP server specified in certificate”}
2021/05/05 20:43:04.870 INFO tls.obtain acquiring lock {“identifier”: “nextcloud.mydomain.com”}
2021/05/05 20:43:04.862 INFO tls cleaning storage unit {“description”: “FileStorage:/root/.local/share/caddy”}
2021/05/05 20:43:04.878 INFO tls finished cleaning storage units
2021/05/05 20:43:04.876 INFO tls.obtain acquiring lock {“identifier”: “mail.mydomain.com”}
2021/05/05 20:43:04.881 INFO autosaved config (load with --resume flag) {“file”: “/root/.config/caddy/autosave.json”}
2021/05/05 20:43:04.890 INFO serving initial configuration
2021/05/05 20:43:04.882 INFO tls.obtain acquiring lock {“identifier”: “bitwarden.mydomain.com”}
2021/05/05 20:43:04.895 INFO tls.obtain lock acquired {“identifier”: “bitwarden.mydomain.com”}
2021/05/05 20:43:04.882 INFO tls.obtain lock acquired {“identifier”: “nextcloud.mydomain.com”}
2021/05/05 20:43:04.900 INFO tls.issuance.acme waiting on internal rate limiter {“identifiers”: [“nextcloud.mydomain.com”]}
2021/05/05 20:43:04.902 INFO tls.issuance.acme done waiting on internal rate limiter {“identifiers”: [“nextcloud.mydomain.com”]}
2021/05/05 20:43:04.882 INFO tls.obtain lock acquired {“identifier”: “mail.mydomain.com”}
2021/05/05 20:43:04.907 INFO tls.issuance.acme waiting on internal rate limiter {“identifiers”: [“mail.mydomain.com”]}
2021/05/05 20:43:04.911 INFO tls.issuance.acme waiting on internal rate limiter {“identifiers”: [“bitwarden.mydomain.com”]}
2021/05/05 20:43:04.913 INFO tls.issuance.acme done waiting on internal rate limiter {“identifiers”: [“mail.mydomain.com”]}
2021/05/05 20:43:04.914 INFO tls.issuance.acme done waiting on internal rate limiter {“identifiers”: [“bitwarden.mydomain.com”]}
Successfully started Caddy (pid=2773) - Caddy is running in the background
root@RJ-CaddyTK ~# 2021/05/05 20:43:05.605 DEBUG tls.issuance.acme.acme_client http request {“method”: “GET”, “url”: “https://acme-v02.api.letsencrypt.org/directory”, “headers”: {“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Cache-Control”:[“public, max-age=0, no-cache”],“Content-Length”:[“658”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:05 GMT”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=604800”],“X-Frame-Options”:[“DENY”]}}
2021/05/05 20:43:05.778 DEBUG tls.issuance.acme.acme_client http request {“method”: “HEAD”, “url”: “https://acme-v02.api.letsencrypt.org/acme/new-nonce”, “headers”: {“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Cache-Control”:[“public, max-age=0, no-cache”],“Date”:[“Wed, 05 May 2021 20:43:05 GMT”],“Link”:[“https://acme-v02.api.letsencrypt.org/directory;rel="index"”],“Replay-Nonce”:[“0003ePKUZsDGvoAT-E5yv6xMXuvCh4njOJj946LNfW9AEmw”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=604800”],“X-Frame-Options”:[“DENY”]}}
2021/05/05 20:43:05.975 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme-v02.api.letsencrypt.org/acme/new-order”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 429, “response_headers”: {“Boulder-Requester”:[“122431579”],“Cache-Control”:[“public, max-age=0, no-cache”],“Content-Length”:[“201”],“Content-Type”:[“application/problem+json”],“Date”:[“Wed, 05 May 2021 20:43:05 GMT”],“Link”:[“https://acme-v02.api.letsencrypt.org/directory;rel="index"”],“Replay-Nonce”:[“0003wT7LOLukzuxa-DqNd4trDcAbgqBFbFwTTQy-ylgP50o”],“Server”:[“nginx”]}}
2021/05/05 20:43:05.983 WARN tls.issuance.zerossl missing email address for ZeroSSL; it is strongly recommended to set one for next time
2021/05/05 20:43:06.290 DEBUG tls.issuance.acme.acme_client http request {“method”: “HEAD”, “url”: “https://acme-v02.api.letsencrypt.org/acme/new-nonce”, “headers”: {“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Cache-Control”:[“public, max-age=0, no-cache”],“Date”:[“Wed, 05 May 2021 20:43:06 GMT”],“Link”:[“https://acme-v02.api.letsencrypt.org/directory;rel="index"”],“Replay-Nonce”:[“0004BYJOQPCTJ_nHtkIV8hW8e5SGXqWAz_RwCgVZuJ8LoD4”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=604800”],“X-Frame-Options”:[“DENY”]}}
2021/05/05 20:43:06.298 DEBUG tls.issuance.acme.acme_client http request {“method”: “HEAD”, “url”: “https://acme-v02.api.letsencrypt.org/acme/new-nonce”, “headers”: {“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Cache-Control”:[“public, max-age=0, no-cache”],“Date”:[“Wed, 05 May 2021 20:43:06 GMT”],“Link”:[“https://acme-v02.api.letsencrypt.org/directory;rel="index"”],“Replay-Nonce”:[“0003NH8oP_8EpMmbWK_0oOnKuuGF4OlhRuVHvL7BfSozZQQ”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=604800”],“X-Frame-Options”:[“DENY”]}}
2021/05/05 20:43:06.489 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme-v02.api.letsencrypt.org/acme/new-order”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 429, “response_headers”: {“Boulder-Requester”:[“122431579”],“Cache-Control”:[“public, max-age=0, no-cache”],“Content-Length”:[“201”],“Content-Type”:[“application/problem+json”],“Date”:[“Wed, 05 May 2021 20:43:06 GMT”],“Link”:[“https://acme-v02.api.letsencrypt.org/directory;rel="index"”],“Replay-Nonce”:[“0004ORARcSg188VuRIzTVT4q1KOKloqLTGEtYim7D4pbdt0”],“Server”:[“nginx”]}}
2021/05/05 20:43:06.493 WARN tls.issuance.zerossl missing email address for ZeroSSL; it is strongly recommended to set one for next time
2021/05/05 20:43:06.529 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme-v02.api.letsencrypt.org/acme/new-order”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 429, “response_headers”: {“Boulder-Requester”:[“122431579”],“Cache-Control”:[“public, max-age=0, no-cache”],“Content-Length”:[“201”],“Content-Type”:[“application/problem+json”],“Date”:[“Wed, 05 May 2021 20:43:06 GMT”],“Link”:[“https://acme-v02.api.letsencrypt.org/directory;rel="index"”],“Replay-Nonce”:[“0004pXratJ6PiXZ0C5tDRJyOEt5PH3hAY3Jg32PAcaZmbMo”],“Server”:[“nginx”]}}
2021/05/05 20:43:06.529 WARN tls.issuance.zerossl missing email address for ZeroSSL; it is strongly recommended to set one for next time
2021/05/05 20:43:06.596 INFO tls.issuance.zerossl generated EAB credentials {“key_id”: “1YJ-QywDLPNpG1LPBT7fWQ”}
2021/05/05 20:43:06.725 INFO tls.issuance.zerossl generated EAB credentials {“key_id”: “73b0SwA3lOYCctEOD0Ux2A”}
2021/05/05 20:43:06.764 INFO tls.issuance.zerossl generated EAB credentials {“key_id”: “BG8wiLbrzNvjRM6lmkOqSQ”}
2021/05/05 20:43:07.133 DEBUG tls.issuance.acme.acme_client http request {“method”: “GET”, “url”: “https://acme.zerossl.com/v2/DV90”, “headers”: {“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[““],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“645”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:07 GMT”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:07.510 DEBUG tls.issuance.acme.acme_client http request {“method”: “HEAD”, “url”: “https://acme.zerossl.com/v2/DV90/newNonce”, “headers”: {“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[””],“Cache-Control”:[“max-age=-1”],“Content-Type”:[“application/octet-stream”],“Date”:[“Wed, 05 May 2021 20:43:07 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”],“Replay-Nonce”:[“hdH696klhglKit4WiYKERNMrvryKebM-c7OuYCkKmZ4”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:07.681 DEBUG tls.issuance.acme.acme_client http request {“method”: “HEAD”, “url”: “https://acme.zerossl.com/v2/DV90/newNonce”, “headers”: {“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[““],“Cache-Control”:[“max-age=-1”],“Content-Type”:[“application/octet-stream”],“Date”:[“Wed, 05 May 2021 20:43:07 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”],“Replay-Nonce”:[“pZz6MfwKpd0LHg0shaxt-I5-n3jCMCokmRHLxOrEPpM”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:07.682 DEBUG tls.issuance.acme.acme_client http request {“method”: “HEAD”, “url”: “https://acme.zerossl.com/v2/DV90/newNonce”, “headers”: {“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[””],“Cache-Control”:[“max-age=-1”],“Content-Type”:[“application/octet-stream”],“Date”:[“Wed, 05 May 2021 20:43:07 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”],“Replay-Nonce”:[“ZZatxb8BXdtuEx0h6J0Bwdv2H2C2dpQTUEXu6FybtAU”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:07.993 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/newAccount”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 201, “response_headers”: {“Access-Control-Allow-Origin”:[““],“Cache-Control”:[“max-age=0, no-cache, no-store”,“max-age=-1”],“Content-Length”:[“579”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:07 GMT”],“Location”:[“https://acme.zerossl.com/v2/DV90/account/1YJ-QywDLPNpG1LPBT7fWQ"],“Replay-Nonce”:[“aeVhcbnt5TKkwtnfq3ur4p887_ZArLeDtzAB1bfJXoc”],“Server”:[“nginx”],“Status”:[“”],“Strict-Transport-Security”:["max-age=15552000”]}}
2021/05/05 20:43:07.994 INFO tls.issuance.acme waiting on internal rate limiter {“identifiers”: [“nextcloud.mydomain.com”]}
2021/05/05 20:43:07.994 INFO tls.issuance.acme done waiting on internal rate limiter {“identifiers”: [“nextcloud.mydomain.com”]}
2021/05/05 20:43:08.201 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/newAccount”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 201, “response_headers”: {“Access-Control-Allow-Origin”:[””],“Cache-Control”:[“max-age=0, no-cache, no-store”,“max-age=-1”],“Content-Length”:[“579”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:08 GMT”],“Location”:[“https://acme.zerossl.com/v2/DV90/account/BG8wiLbrzNvjRM6lmkOqSQ"],“Replay-Nonce”:[“m-74eJpAJ_PS4Gh2ouyBQ6nOk0256djpfcx25Q1GDX0”],“Server”:[“nginx”],“Status”:[“”],“Strict-Transport-Security”:["max-age=15552000”]}}
2021/05/05 20:43:08.202 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/newAccount”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 201, “response_headers”: {“Access-Control-Allow-Origin”:[““],“Cache-Control”:[“max-age=0, no-cache, no-store”,“max-age=-1”],“Content-Length”:[“579”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:08 GMT”],“Location”:[“https://acme.zerossl.com/v2/DV90/account/73b0SwA3lOYCctEOD0Ux2A"],“Replay-Nonce”:[“9y-ZAfd-Xwgwgm0SwbPBFIW9oUOZT1XK0TRmr1035ps”],“Server”:[“nginx”],“Status”:[“”],“Strict-Transport-Security”:["max-age=15552000”]}}
2021/05/05 20:43:08.205 INFO tls.issuance.acme waiting on internal rate limiter {“identifiers”: [“bitwarden.mydomain.com”]}
2021/05/05 20:43:08.205 INFO tls.issuance.acme done waiting on internal rate limiter {“identifiers”: [“bitwarden.mydomain.com”]}
2021/05/05 20:43:08.207 INFO tls.issuance.acme waiting on internal rate limiter {“identifiers”: [“mail.mydomain.com”]}
2021/05/05 20:43:08.208 INFO tls.issuance.acme done waiting on internal rate limiter {“identifiers”: [“mail.mydomain.com”]}
2021/05/05 20:43:08.428 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/newOrder”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 201, “response_headers”: {“Access-Control-Allow-Origin”:[””],“Cache-Control”:[“max-age=0, no-cache, no-store”,“max-age=-1”],“Content-Length”:[“279”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:08 GMT”],“Location”:[“https://acme.zerossl.com/v2/DV90/order/Y7cN_qQEwoag53XUtupWoQ"],“Replay-Nonce”:[“OCbG-0Ayidd2fx7I6CwX2B4g5_ceatUbxw8Dz7_UPNM”],“Server”:[“nginx”],“Status”:[“”],“Strict-Transport-Security”:["max-age=15552000”]}}
2021/05/05 20:43:08.660 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/newOrder”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 201, “response_headers”: {“Access-Control-Allow-Origin”:[““],“Cache-Control”:[“max-age=0, no-cache, no-store”,“max-age=-1”],“Content-Length”:[“275”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:08 GMT”],“Location”:[“https://acme.zerossl.com/v2/DV90/order/X9S6V9TkZXy47S7wCfNINQ"],“Replay-Nonce”:[“8yLL4IYoE2l-klImkYZCHyrZIaQJNK0DMGUqscTPSY4”],“Server”:[“nginx”],“Status”:[“”],“Strict-Transport-Security”:["max-age=15552000”]}}
2021/05/05 20:43:08.680 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/newOrder”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 201, “response_headers”: {“Access-Control-Allow-Origin”:[””],“Cache-Control”:[“max-age=0, no-cache, no-store”,“max-age=-1”],“Content-Length”:[“274”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:08 GMT”],“Location”:[“https://acme.zerossl.com/v2/DV90/order/oIrSiQGuGMmnOuvZ8li_PQ"],“Replay-Nonce”:[“44TvnFBYmGkWjt1kTfbxD7OPkZIlcQLR2embOkaytN4”],“Server”:[“nginx”],“Status”:[“”],“Strict-Transport-Security”:["max-age=15552000”]}}
2021/05/05 20:43:08.842 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/authz/MPlGiDwaBBTJAwIfrUgphA”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[““],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“447”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:08 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”],“Replay-Nonce”:[”_n-GQS_wMn-Z-kRno8a6EI_Sy86-DDK6cCKYt5BOVKs"],“Retry-After”:[“5”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:08.844 INFO tls.issuance.acme.acme_client trying to solve challenge {“identifier”: “nextcloud.mydomain.com”, “challenge_type”: “http-01”, “ca”: “https://acme.zerossl.com/v2/DV90”}
2021/05/05 20:43:09.075 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/authz/ozZ-c4G6dWZNV7qfuq7Dqw”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:["”],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“443”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:09 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”],“Replay-Nonce”:[“vl18xPp96gjpn4gVijjqy4VSaKlPkNkYCb4XRdPdB6s”],“Retry-After”:[“5”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:09.076 INFO tls.issuance.acme.acme_client trying to solve challenge {“identifier”: “bitwarden.mydomain.com”, “challenge_type”: “http-01”, “ca”: “https://acme.zerossl.com/v2/DV90”}
2021/05/05 20:43:09.095 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/authz/_vHl7VANaeYoE7ElvGa4Hw”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[““],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“442”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:09 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”],“Replay-Nonce”:[“xCUX8yINVGh4IZM0Ws6iOPDBesUHirzdShi6Cu1x2Uk”],“Retry-After”:[“5”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:09.097 INFO tls.issuance.acme.acme_client trying to solve challenge {“identifier”: “mail.mydomain.com”, “challenge_type”: “http-01”, “ca”: “https://acme.zerossl.com/v2/DV90”}
2021/05/05 20:43:09.266 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/chall/cUcZDAL5R2DgPr_FixNGAg”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[””],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“164”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:09 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”,“https://acme.zerossl.com/v2/DV90/authz/MPlGiDwaBBTJAwIfrUgphA;rel="up"”],“Replay-Nonce”:[“W3GoVKFZwhffpAG3T7Ft7evn8AQa1WFh-2bxNxAByGI”],“Retry-After”:[“10”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:09.268 DEBUG tls.issuance.acme.acme_client challenge accepted {“identifier”: “nextcloud.mydomain.com”, “challenge_type”: “http-01”}
2021/05/05 20:43:09.491 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/chall/4UJDr3WqjDmw1I4jpsk9pw”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[““],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“164”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:09 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”,“https://acme.zerossl.com/v2/DV90/authz/ozZ-c4G6dWZNV7qfuq7Dqw;rel="up"”],“Replay-Nonce”:[“O0meOoNxuvLicBfP_mWds2BXXd85s-_bX0xvb-fJqzc”],“Retry-After”:[“10”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:09.491 DEBUG tls.issuance.acme.acme_client challenge accepted {“identifier”: “bitwarden.mydomain.com”, “challenge_type”: “http-01”}
2021/05/05 20:43:09.504 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/chall/9AylfukRt2e1o4DS9SFuEA”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[””],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“164”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:09 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”,“https://acme.zerossl.com/v2/DV90/authz/_vHl7VANaeYoE7ElvGa4Hw;rel="up"”],“Replay-Nonce”:[“NZkCZPfGWKD0J7SHFz-Qm1g0V3DEjy0lWEFpyrNiz-E”],“Retry-After”:[“10”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:09.505 DEBUG tls.issuance.acme.acme_client challenge accepted {“identifier”: “mail.mydomain.com”, “challenge_type”: “http-01”}
2021/05/05 20:43:09.934 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/authz/MPlGiDwaBBTJAwIfrUgphA”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[““],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“450”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:09 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”],“Replay-Nonce”:[“pcyhPz4VqWOu8mAg1mc_j2HQ8XMQs8oKci6KvNXEvSw”],“Retry-After”:[“5”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:10.152 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/authz/ozZ-c4G6dWZNV7qfuq7Dqw”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[””],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“446”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:10 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”],“Replay-Nonce”:[“D_hLWrGhvaCxxTt5UNn-aKNbVbbHnu0IjIqnpuTSl30”],“Retry-After”:[“5”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
2021/05/05 20:43:10.169 DEBUG tls.issuance.acme.acme_client http request {“method”: “POST”, “url”: “https://acme.zerossl.com/v2/DV90/authz/_vHl7VANaeYoE7ElvGa4Hw”, “headers”: {“Content-Type”:[“application/jose+json”],“User-Agent”:[“Caddy/2.4.0-rc.1 CertMagic acmez (linux; amd64)”]}, “status_code”: 200, “response_headers”: {“Access-Control-Allow-Origin”:[“*”],“Cache-Control”:[“max-age=-1”],“Content-Length”:[“445”],“Content-Type”:[“application/json”],“Date”:[“Wed, 05 May 2021 20:43:10 GMT”],“Link”:[“https://acme.zerossl.com/v2/DV90;rel="index"”],“Replay-Nonce”:[“aFOG15AobVJI969asXY0MUj4s7RPviP3ftRf4Z3b09Y”],“Retry-After”:[“5”],“Server”:[“nginx”],“Strict-Transport-Security”:[“max-age=15552000”]}}
When I do caddy stop
the log finished with:
2021/05/05 20:43:14.283 INFO admin.api received request {“method”: “POST”, “host”: “localhost:2019”, “uri”: “/stop”, “remote_addr”: “127.0.0.1:50846”, “headers”: {“Accept-Encoding”:[“gzip”],“Content-Length”:[“0”],“Origin”:[“localhost:2019”],“User-Agent”:[“Go-http-client/1.1”]}}
2021/05/05 20:43:14.283 WARN admin.api exiting; byeee!!
2021/05/05 20:43:14.286 INFO tls.cache.maintenance stopped background certificate maintenance {“cache”: “0xc00047ebd0”}
2021/05/05 20:43:14.286 DEBUG http.handlers.acme_server unloading unused CA database {“db_key”: “local”}
2021/05/05 20:43:14.290 WARN tls.issuance.acme.acme_client HTTP request failed; retrying {“url”: “https://acme.zerossl.com/v2/DV90/authz/ozZ-c4G6dWZNV7qfuq7Dqw”, “error”: “performing request: Post "https://acme.zerossl.com/v2/DV90/authz/ozZ-c4G6dWZNV7qfuq7Dqw\”: context canceled"}
2021/05/05 20:43:14.290 ERROR tls.issuance.acme.acme_client deactivating authorization {“identifier”: “bitwarden.mydomain.com”, “authz”: “https://acme.zerossl.com/v2/DV90/authz/ozZ-c4G6dWZNV7qfuq7Dqw”, “error”: “request to https://acme.zerossl.com/v2/DV90/authz/ozZ-c4G6dWZNV7qfuq7Dqw failed after 1 attempts: context canceled”}
2021/05/05 20:43:14.290 INFO tls.obtain releasing lock {“identifier”: “bitwarden.mydomain.com”}
2021/05/05 20:43:14.290 ERROR tls.obtain unable to unlock {“identifier”: “bitwarden.mydomain.com”, “lock_key”: “issue_cert_bitwarden.mydomain.com”, “error”: “remove /root/.local/share/caddy/locks/issue_cert_bitwarden.mydomain.com.lock: no such file or directory”}
2021/05/05 20:43:14.290 ERROR tls job failed {“error”: “bitwarden.mydomain.com: obtaining certificate: [bitwarden.mydomain.com] Obtain: [bitwarden.mydomain.com] solving challenges: [bitwarden.mydomain.com] context canceled (order=https://acme.zerossl.com/v2/DV90/order/X9S6V9TkZXy47S7wCfNINQ) (ca=https://acme.zerossl.com/v2/DV90)”}
2021/05/05 20:43:14.291 WARN tls.issuance.acme.acme_client HTTP request failed; retrying {“url”: “https://acme.zerossl.com/v2/DV90/authz/MPlGiDwaBBTJAwIfrUgphA”, “error”: “performing request: Post "https://acme.zerossl.com/v2/DV90/authz/MPlGiDwaBBTJAwIfrUgphA\”: context canceled"}
2021/05/05 20:43:14.293 ERROR tls.issuance.acme.acme_client deactivating authorization {“identifier”: “nextcloud.mydomain.com”, “authz”: “https://acme.zerossl.com/v2/DV90/authz/MPlGiDwaBBTJAwIfrUgphA”, “error”: “request to https://acme.zerossl.com/v2/DV90/authz/MPlGiDwaBBTJAwIfrUgphA failed after 1 attempts: context canceled”}
2021/05/05 20:43:14.293 INFO tls.obtain releasing lock {“identifier”: “nextcloud.mydomain.com”}
2021/05/05 20:43:14.293 INFO admin stopped previous server {“address”: “tcp/localhost:2019”}
2021/05/05 20:43:14.294 INFO admin.api shutdown complete {“exit_code”: 0}
5. What I already tried:
I removed the certificates and db manually without result.