Wget Let's Encrypt Cert

Nemo · January 1, 2021, 5:58am

I'm trying to update my cert from Let's Encrypt, and have below issue:

daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: Please refer to https://www.gnu.org/software/wget/manual/html_node/Exit-Status.html for error code: 5
daemon.err run-acme[29823]: ret='5'
daemon.err run-acme[29823]: Can not init api.
daemon.err run-acme[29823]: Try new-authz for the 0 time.
daemon.err run-acme[29823]: url
daemon.err run-acme[29823]: payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "mydomain"}}'
daemon.err run-acme[29823]: RSA key
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.err run-acme[29823]: GET
daemon.err run-acme[29823]: url='https://acme-v02.api.letsencrypt.org/directory'
daemon.err run-acme[29823]: timeout=
daemon.err run-acme[29823]: _WGET='wget -q --content-on-error '
daemon.err run-acme[29823]: ret='0'
daemon.info run-acme[29823]: Could not get nonce, let's try again.
daemon.info run-acme[29823]: Giving up sending to CA server after 20 retries.
daemon.err run-acme[29823]: Can not get domain new authz.
daemon.err run-acme[29823]: pid
daemon.err run-acme[29823]: No need to restore nginx, skip.
daemon.err run-acme[29823]: _clearupdns
daemon.err run-acme[29823]: dns_entries
daemon.err run-acme[29823]: skip dns.
daemon.err run-acme[29823]: _on_issue_err
daemon.err run-acme[29823]: Please add '--debug' or '--log' to check more details.
daemon.err run-acme[29823]: See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
daemon.err run-acme[29823]: Diagnosis versions:
daemon.err run-acme[29823]: openssl:openssl
daemon.err run-acme[29823]: OpenSSL 1.1.1g 21 Apr 2020
daemon.err run-acme[29823]: apache:
daemon.err run-acme[29823]: apache doesn't exist.
daemon.err run-acme[29823]: nginx:
daemon.err run-acme[29823]: nginx doesn't exist.
daemon.err run-acme[29823]: socat:
daemon.err run-acme[29823]: socat by Gerhard Rieger and contributors - see [www.dest-unreach.org](http://www.dest-unreach.org/)
daemon.err run-acme[29823]: socat version 1.7.3.3 on 1594382154
daemon.err run-acme[29823]: running on Linux version #0 Thu Feb 27 21:05:12 2020, release 4.14.171, machine mips
daemon.err run-acme[29823]: features:
daemon.err run-acme[29823]: #define WITH_STDIO 1
daemon.err run-acme[29823]: #define WITH_FDNUM 1
daemon.err run-acme[29823]: #define WITH_FILE 1
daemon.err run-acme[29823]: #define WITH_CREAT 1
daemon.err run-acme[29823]: #define WITH_GOPEN 1
daemon.err run-acme[29823]: #define WITH_TERMIOS 1
daemon.err run-acme[29823]: #define WITH_PIPE 1
daemon.err run-acme[29823]: #define WITH_UNIX 1
daemon.err run-acme[29823]: #define WITH_ABSTRACT_UNIXSOCKET 1
daemon.err run-acme[29823]: #define WITH_IP4 1
daemon.err run-acme[29823]: #define WITH_IP6 1
daemon.err run-acme[29823]: #define WITH_RAWIP 1
daemon.err run-acme[29823]: #define WITH_GENERICSOCKET 1
daemon.err run-acme[29823]: #define WITH_INTERFACE 1
daemon.err run-acme[29823]: #define WITH_TCP 1
daemon.err run-acme[29823]: #define WITH_UDP 1
daemon.err run-acme[29823]: #define WITH_SCTP 1
daemon.err run-acme[29823]: #define WITH_LISTEN 1
daemon.err run-acme[29823]: #define WITH_SOCKS4 1
daemon.err run-acme[29823]: #define WITH_SOCKS4A 1
daemon.err run-acme[29823]: #define WITH_PROXY 1
daemon.err run-acme[29823]: #define WITH_SYSTEM 1
daemon.err run-acme[29823]: #define WITH_EXEC 1
daemon.err run-acme[29823]: #undef WITH_READLINE
daemon.err run-acme[29823]: #define WITH_TUN 1
daemon.err run-acme[29823]: #define WITH_PTY 1
daemon.err run-acme[29823]: #undef WITH_OPENSSL
daemon.err run-acme[29823]: #undef WITH_FIPS
daemon.err run-acme[29823]: #undef WITH_LIBWRAP
daemon.err run-acme[29823]: #define WITH_SYCLS 1
daemon.err run-acme[29823]: #define WITH_FILAN 1
daemon.err run-acme[29823]: #define WITH_RETRY 1
daemon.err run-acme[29823]: #define WITH_MSGLEVEL 0 /*debug*/
daemon.err acme: Issuing cert for mydomain failed.

I'm using acme.h 2.8.8. and i have tried update the code in acme.h

from
_ACME_WGET="_ACME_WGET --content-on-error "

to
_ACME_WGET="_ACME_WGET --content-on-error --no-check-certificate "

it still can't works. anybody can give me some idea?

mk24 · January 1, 2021, 3:09pm

That would be the second thing to try. First thing to try would be to run wget manually on the URL that the script is trying. I tried to wget the /directory URL manually and received a "Failed to send request: Operation not permitted" error which I think is a server side problem.

Nemo · January 3, 2021, 9:51pm

thanks, i already fixed it.

tmomas · January 13, 2021, 9:51pm

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.