Ich habe alles laut Anleitung gemacht aber irgendwie bekomme ich immer diesen Fehler ...
Serving HTTP on 0.0.0.0 port 80 ...Parsing account key...Parsing CSR...Registering account...Traceback (most recent call last): File "acme-tiny/acme_tiny.py", line 198, in <module> main(sys.argv[1:]) File "acme-tiny/acme_tiny.py", line 194, in main signed_crt = get_crt(args.account_key, args.csr, args.acme_dir, log=LOGGER, CA=args.ca) File "acme-tiny/acme_tiny.py", line 85, in get_crt "agreement": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf", File "acme-tiny/acme_tiny.py", line 47, in _send_signed_request protected["nonce"] = urlopen(CA + "/directory").headers['Replay-Nonce'] File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/urllib2.py", line 126, in urlopen return _opener.open(url, data, timeout) File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/urllib2.py", line 400, in open response = self._open(req, data) File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/urllib2.py", line 423, in _open 'unknown_open', req) File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/urllib2.py", line 378, in _call_chain result = func(*args) File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/urllib2.py", line 1240, in unknown_open raise URLError('unknown url type: %s' % type)urllib2.URLError: <urlopen error unknown url type: https>Stopping periodic command scheduler: crond.Starting periodic command scheduler: crond.
Könnt Ihr damit etwas anfangen? Ich stehe hier irgendwie so richtig auf dem Schlauch ...
Danke schon mal im voraus!
Also ich habe nochmal ein wenig rumprobiert und versucht zu überprüfen, ob ich wirklich alles korekt mache. Entware ist drauf, weil ich schon andere Pakete davon nutze.
Ich habe mir in /opt ein Script mit folgendem Inhalt hingelegt (ich habe es aus den Posts versucht so zusammen zu bauen, wie es sein "sollte"):
cd /opt/wget --no-check-certificate https://curl.haxx.se/ca/cacert.pemgit config --system http.sslVerify truegit config --system http.sslCAinfo `pwd`/cacert.pemgit clone https://github.com/Yannik/qnap-letsencrypt.gitmv cacert.pem qnap-letsencryptcd /opt/qnap-letsencryptgit config --system http.sslCAinfo `pwd`/cacert.pem./init.shcd /opt/qnap-letsencrypt/letsencrypt# !! Achtung Schreibfehler in der Anleitung auf "https://github.com/Yannik/qnap-letsencrypt"#--------------------------------------------------------------------------------------------#cp ../openssl.cnf openssl-csr-config.cnf#--------------------------------------------------------------------------------# hier edit!printf "subjectAltName=DNS:NameMeinesNas.myqnapcloud.com" >> openssl-csr-config.cnf#----------------------------------------------------------------------------------openssl req -new -sha256 -key keys/domain.key -subj "/" -reqexts SAN -config openssl-csr-config.cnf > domain.csrmv /etc/stunnel/stunnel.pem /etc/stunnel/stunnel.pem.origcd /opt/qnap-letsencrypt./renew_certificate.shecho "30 3 * * * cd /opt/qnap-letsencrypt/ && ./renew_certificate.sh >> ./renew_certificate.log 2>&1" >> /etc/config/crontabcrontab /etc/config/crontab/etc/init.d/crond.sh restart
"git-http" ist vorhanden, also habe ich die erste Zeile mal weggelassen.
Der Output, den ich reproduzierbar bekomme, ist jetzt der folgende:
--2016-09-12 21:04:51-- https://curl.haxx.se/ca/cacert.pem
Resolving curl.haxx.se... 2a00:1a28:1200:9::2, 80.67.6.50
Connecting to curl.haxx.se|2a00:1a28:1200:9::2|:443... connected.
WARNING: cannot verify curl.haxx.se's certificate, issued by ‘/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3’:
Unable to locally verify the issuer's authority.
HTTP request sent, awaiting response... 200 OK
Length: 261618 (255K)
Saving to: ‘cacert.pem’
cacert.pem 100%[======================================================================>] 255.49K 1.05MB/s in 0.2s
2016-09-12 21:04:52 (1.05 MB/s) - ‘cacert.pem’ saved [261618/261618]
Cloning into 'qnap-letsencrypt'...
remote: Counting objects: 159, done.
remote: Total 159 (delta 0), reused 0 (delta 0), pack-reused 159
Receiving objects: 100% (159/159), 20.59 KiB | 0 bytes/s, done.
Resolving deltas: 100% (64/64), done.
Checking connectivity... done.
Cloning into 'acme-tiny'...
remote: Counting objects: 241, done.
remote: Total 241 (delta 0), reused 0 (delta 0), pack-reused 241
Receiving objects: 100% (241/241), 49.46 KiB | 0 bytes/s, done.
Resolving deltas: 100% (130/130), done.
Checking connectivity... done.
Generating RSA private key, 4096 bit long modulus
....................................................................................................++
..............++
e is 65537 (0x10001)
Generating RSA private key, 2048 bit long modulus
........................................................+++
.....................................+++
e is 65537 (0x10001)
Error Loading request extension section SAN
Checking whether to renew certificate on Mon, 12 Sep 2016 21:05:21 +0200
Renewing certificate...
Stopping Qthttpd hogging port 80..
Shutting down Qthttpd services: OK.
Started python SimpleHTTPServer with pid 705
Traceback (most recent call last):
File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/runpy.py", line 162, in _run_module_as_main
"__main__", fname, loader, pkg_name)
File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/runpy.py", line 72, in _run_code
exec code in run_globals
File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/SimpleHTTPServer.py", line 220, in <module>
test()
File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/SimpleHTTPServer.py", line 216, in test
BaseHTTPServer.test(HandlerClass, ServerClass)
File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/BaseHTTPServer.py", line 595, in test
httpd = ServerClass(server_address, HandlerClass)
File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/SocketServer.py", line 408, in __init__
self.server_bind()
File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/BaseHTTPServer.py", line 108, in server_bind
SocketServer.TCPServer.server_bind(self)
File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/SocketServer.py", line 419, in server_bind
self.socket.bind(self.server_address)
File "/share/CACHEDEV1_DATA/.qpkg/Python/lib/python2.7/socket.py", line 224, in meth
return getattr(self._sock,name)(*args)
socket.error: [Errno 98] Address already in use
Parsing account key...
Parsing CSR...
Traceback (most recent call last):
File "acme-tiny/acme_tiny.py", line 198, in <module>
main(sys.argv[1:])
File "acme-tiny/acme_tiny.py", line 194, in main
signed_crt = get_crt(args.account_key, args.csr, args.acme_dir, log=LOGGER, CA=args.ca)
File "acme-tiny/acme_tiny.py", line 70, in get_crt
raise IOError("Error loading {0}: {1}".format(csr, err))
IOError: Error loading letsencrypt/domain.csr: unable to load X509 request
716129488:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:689:Expecting: CERTIFICATE REQUEST
Stopping periodic command scheduler: crond.
Starting periodic command scheduler: crond.
Alles anzeigen
Any ideas?
Icke gerade nicht mehr ...