Letsencrypt + IDN домен = Ошибка 2
Posted: Thu Feb 01, 2018 9:35 pm
Всем здравия! Возникает ошибка 2 при попытке получить сертификат для любого IDN-домена. Для остальных доменов работает нормально.
Centos 7, vesta 0.9.8-19.x86_64
Centos 7, vesta 0.9.8-19.x86_64
Code: Select all
admin@dumalogiyamail:~$ sudo -i
[sudo] пароль для admin:
[root@dumalogiyamail ~]# /usr/local/vesta/bin/v-check-letsencrypt-domain admin блоги.думалогия.рф
Error: Invalid response from http://xn--90aepkp.xn--80agbsneq0b4h.xn--p1ai/.well-known/acme-challenge/zJTM6m33nWvMLfwIR2gBA1aztN8RIhe_OGuQu3GEZc4: \
[root@dumalogiyamail ~]# швт
-bash: $'\321\210\320\262\321\202': команда не найдена
[root@dumalogiyamail ~]# idn
libidn 1.28
Copyright 2002-2013 Simon Josefsson.
GNU Libidn is free software with ABSOLUTELY NO WARRANTY. For more
information about these matters, see <http://www.gnu.org/licenses/>.
Type each input string on a line by itself, terminated by a newline character.
^C
[root@dumalogiyamail ~]# idn блоги.думалогия.рф
xn--90aepkp.xn--80agbsneq0b4h.xn--p1ai
[root@dumalogiyamail ~]# v-add-letsencrypt-domain admin xn--90aepkp.xn--80agbsneq0b4h.xn--p1ai
Error: web domain xn--90aepkp.xn--80agbsneq0b4h.xn--p1ai doesn't exist
[root@dumalogiyamail ~]#
Code: Select all
$ locale
LANG=ru_RU.UTF-8
LC_CTYPE="ru_RU.UTF-8"
LC_NUMERIC="ru_RU.UTF-8"
LC_TIME="ru_RU.UTF-8"
LC_COLLATE="ru_RU.UTF-8"
LC_MONETARY="ru_RU.UTF-8"
LC_MESSAGES="ru_RU.UTF-8"
LC_PAPER="ru_RU.UTF-8"
LC_NAME="ru_RU.UTF-8"
LC_ADDRESS="ru_RU.UTF-8"
LC_TELEPHONE="ru_RU.UTF-8"
LC_MEASUREMENT="ru_RU.UTF-8"
LC_IDENTIFICATION="ru_RU.UTF-8"
LC_ALL=
Code: Select all
# bash -x `which v-add-letsencrypt-domain` admin блоги.думалогия.рф 2>&1 | tee /tmp/1.log
$ cat /tmp/1.log
+ user=admin
+ domain=$'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
+ aliases=
+ restart=
+ notify=
+ source /usr/local/vesta/func/main.sh
++ HOMEDIR=/home
++ BACKUP=/backup
++ BACKUP_GZIP=9
++ BACKUP_DISK_LIMIT=95
++ BACKUP_LA_LIMIT=5
++ RRD_STEP=300
++ BIN=/usr/local/vesta/bin
++ USER_DATA=/usr/local/vesta/data/users/admin
++ WEBTPL=/usr/local/vesta/data/templates/web
++ DNSTPL=/usr/local/vesta/data/templates/dns
++ RRD=/usr/local/vesta/web/rrd
++ SENDMAIL=/usr/local/vesta/web/inc/mail-wrapper.php
++ OK=0
++ E_ARGS=1
++ E_INVALID=2
++ E_NOTEXIST=3
++ E_EXISTS=4
++ E_SUSPENDED=5
++ E_UNSUSPENDED=6
++ E_INUSE=7
++ E_LIMIT=8
++ E_PASSWORD=9
++ E_FORBIDEN=10
++ E_DISABLED=11
++ E_PARSING=12
++ E_DISK=13
++ E_LA=14
++ E_CONNECT=15
++ E_FTP=16
++ E_DB=17
++ E_RRD=18
++ E_UPDATE=19
++ E_RESTART=20
++ (( I=1 ))
++ (( I <= 2 ))
++ [[ '' != 1 ]]
+++ eval echo '$1'
++++ echo admin
++ ARGUMENTS=' '\''admin'\'''
++ (( I++ ))
++ (( I <= 2 ))
++ [[ '' != 2 ]]
+++ eval echo '$2'
++++ echo $'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
++ ARGUMENTS=' '\''admin'\'' '\''блоги.думалогия.рф'\'''
++ (( I++ ))
++ (( I <= 2 ))
+ source /usr/local/vesta/func/domain.sh
+ source /usr/local/vesta/conf/vesta.conf
++ WEB_SYSTEM=httpd
++ WEB_RGROUPS=apache
++ WEB_PORT=8080
++ WEB_SSL_PORT=8443
++ WEB_SSL=mod_ssl
++ PROXY_SYSTEM=nginx
++ PROXY_PORT=80
++ PROXY_SSL_PORT=443
++ STATS_SYSTEM=webalizer,awstats
++ FTP_SYSTEM=vsftpd
++ DNS_SYSTEM=named
++ MAIL_SYSTEM=exim
++ IMAP_SYSTEM=dovecot
++ CRON_SYSTEM=crond
++ FIREWALL_SYSTEM=iptables
++ FIREWALL_EXTENSION=fail2ban
++ BACKUP_SYSTEM=local,ftp
++ LANGUAGE=en
++ VERSION=0.9.8
++ DB_SYSTEM=mysql
++ DISK_QUOTA=no
++ BACKUP_GZIP=8
+ format_domain_idn
+ '[' -z '' ']'
+ domain_idn=$'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
+ [[ блоги.думалогия.рф = *[![:ascii:]]* ]]
++ idn -t --quiet -a $'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
+ domain_idn=xn--90aepkp.xn--80agbsneq0b4h.xn--p1ai
+ check_args 2 2 'USER DOMAIN [ALIASES] [RESTART] [NOTIFY]'
+ '[' 2 -gt 2 ']'
+ is_format_valid user domain
+ for arg_name in '$*'
+ eval 'arg=$user'
++ arg=admin
+ '[' '!' -z admin ']'
+ case $arg_name in
+ is_user_format_valid admin user
+ '[' 5 -eq 1 ']'
+ [[ admin =~ ^[[:alnum:]][-|\.|_[:alnum:]]{0,28}[[:alnum:]]$ ]]
+ for arg_name in '$*'
+ eval 'arg=$domain'
++ arg=$'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
+ '[' '!' -z $'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204' ']'
+ case $arg_name in
+ is_domain_format_valid $'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
+ object_name=domain
+ exclude='[!|@|#|$|^|&|*|(|)|+|=|{|}|:|,|<|>|?|_|/|\|"|'\''|;|%|`| ]'
+ [[ блоги.думалогия.рф =~ [!|@|#|$|^|&|*|(|)|+|=|{|}|:|,|<|>|?|_|/|\|"|'|;|%|`| ] ]]
+ [[ блоги.думалогия.рф =~ ^[0-9]+$ ]]
+ [[ блоги.думалогия.рф =~ \\\.\\\. ]]
+ is_system_enabled httpd WEB_SYSTEM
+ '[' -z httpd ']'
+ '[' httpd = no ']'
+ is_system_enabled mod_ssl SSL_SUPPORT
+ '[' -z mod_ssl ']'
+ '[' mod_ssl = no ']'
+ is_object_valid user USER admin
+ '[' USER = USER ']'
+ '[' '!' -d /usr/local/vesta/data/users/admin ']'
+ is_object_unsuspended user USER admin
+ '[' USER = USER ']'
++ cat /usr/local/vesta/data/users/admin/user.conf
++ grep 'SUSPENDED='\''yes'\'''
+ spnd=
+ '[' '!' -z '' ']'
+ is_object_valid web DOMAIN $'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
+ '[' DOMAIN = USER ']'
++ grep 'DOMAIN='\''блоги.думалогия.рф'\''' /usr/local/vesta/data/users/admin/web.conf
+ object='DOMAIN='\''блоги.думалогия.рф'\'' IP='\''188.166.77.215'\'' IP6='\'''\'' ALIAS='\''www.блоги.думалогия.рф'\'' TPL='\''default'\'' SSL='\''no'\'' SSL_HOME='\''same'\'' LETSENCRYPT='\''yes'\'' FTP_USER='\''admin_ne4aevblogi:admin_wplanding'\'' FTP_MD5='\''$6$xYxnjRvtea$41lIuVZsedcgbl0pt1TRwOBhQvO8zhHMF7ISXx3A5ySAlWQRgUCrfChUKK0NWmc8bf6vBaRClLrGwSyXnrwSv/:$6$laFyZDOJT$LHDyyakfXVbU2.oWwdLEYONa0/7Eabrj62hgkE1QGKV85ybqfiGR2ZV4XAflnxT9Mglyek5x0wOXTnDhUxhrt/'\'' BACKEND='\'''\'' FTP_PATH='\''public_html:'\'' PROXY='\''default'\'' PROXY_EXT='\''jpeg,jpg,png,gif,bmp,ico,svg,tif,tiff,css,js,htm,html,ttf,otf,webp,woff,txt,csv,rtf,doc,docx,xls,xlsx,ppt,pptx,odf,odp,ods,odt,pdf,psd,ai,eot,eps,ps,zip,tar,tgz,gz,rar,bz2,7z,aac,m4a,mp3,mp4,ogg,wav,wma,3gp,avi,flv,m4v,mkv,mov,mpeg,mpg,wmv,exe,iso,dmg,swf'\'' STATS='\'''\'' STATS_USER='\'''\'' STATS_CRYPT='\'''\'' U_DISK='\''153'\'' U_BANDWIDTH='\''0'\'' SUSPENDED='\''no'\'' TIME='\''18:42:35'\'' DATE='\''2017-06-02'\'''
+ '[' -z 'DOMAIN='\''блоги.думалогия.рф'\'' IP='\''188.166.77.215'\'' IP6='\'''\'' ALIAS='\''www.блоги.думалогия.рф'\'' TPL='\''default'\'' SSL='\''no'\'' SSL_HOME='\''same'\'' LETSENCRYPT='\''yes'\'' FTP_USER='\''admin_1:admin_2'\'' FTP_MD5='\''$6$xYxnjRvtea$41lIuVZsedcgbl0pt1TRwOBhQvO8zhHMF7ISXx3A5ySAlWQRgUCrfChUKK0NWmc8bf6vBaRClLrGwSyXnrwSv/:$6$laFyZDOJT$LHDyyakfXVbU2.oWwdLEYONa0/7Eabrj62hgkE1QGKV85ybqfiGR2ZV4XAflnxT9Mglyek5x0wOXTnDhUxhrt/'\'' BACKEND='\'''\'' FTP_PATH='\''public_html:'\'' PROXY='\''default'\'' PROXY_EXT='\''jpeg,jpg,png,gif,bmp,ico,svg,tif,tiff,css,js,htm,html,ttf,otf,webp,woff,txt,csv,rtf,doc,docx,xls,xlsx,ppt,pptx,odf,odp,ods,odt,pdf,psd,ai,eot,eps,ps,zip,tar,tgz,gz,rar,bz2,7z,aac,m4a,mp3,mp4,ogg,wav,wma,3gp,avi,flv,m4v,mkv,mov,mpeg,mpg,wmv,exe,iso,dmg,swf'\'' STATS='\'''\'' STATS_USER='\'''\'' STATS_CRYPT='\'''\'' U_DISK='\''153'\'' U_BANDWIDTH='\''0'\'' SUSPENDED='\''no'\'' TIME='\''18:42:35'\'' DATE='\''2017-06-02'\''' ']'
+ is_object_unsuspended web DOMAIN $'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
+ '[' DOMAIN = USER ']'
++ grep 'SUSPENDED='\''yes'\'''
++ grep 'DOMAIN='\''блоги.думалогия.рф'\''' /usr/local/vesta/data/users/admin/web.conf
+ spnd=
+ '[' '!' -z '' ']'
+ get_domain_values web
++ grep 'DOMAIN='\''блоги.думалогия.рф'\''' /usr/local/vesta/data/users/admin/web.conf
+ eval 'DOMAIN='\''блоги.думалогия.рф'\''' 'IP='\''188.166.77.215'\''' 'IP6='\'''\''' 'ALIAS='\''www.блоги.думалогия.рф'\''' 'TPL='\''default'\''' 'SSL='\''no'\''' 'SSL_HOME='\''same'\''' 'LETSENCRYPT='\''yes'\''' 'FTP_USER='\''admin_ne4aevblogi:admin_wplanding'\''' 'FTP_MD5='\''$6$xYxnjRvtea$41lIuVZsedcgbl0pt1TRwOBhQvO8zhHMF7ISXx3A5ySAlWQRgUCrfChUKK0NWmc8bf6vBaRClLrGwSyXnrwSv/:$6$laFyZDOJT$LHDyyakfXVbU2.oWwdLEYONa0/7Eabrj62hgkE1QGKV85ybqfiGR2ZV4XAflnxT9Mglyek5x0wOXTnDhUxhrt/'\''' 'BACKEND='\'''\''' 'FTP_PATH='\''public_html:'\''' 'PROXY='\''default'\''' 'PROXY_EXT='\''jpeg,jpg,png,gif,bmp,ico,svg,tif,tiff,css,js,htm,html,ttf,otf,webp,woff,txt,csv,rtf,doc,docx,xls,xlsx,ppt,pptx,odf,odp,ods,odt,pdf,psd,ai,eot,eps,ps,zip,tar,tgz,gz,rar,bz2,7z,aac,m4a,mp3,mp4,ogg,wav,wma,3gp,avi,flv,m4v,mkv,mov,mpeg,mpg,wmv,exe,iso,dmg,swf'\''' 'STATS='\'''\''' 'STATS_USER='\'''\''' 'STATS_CRYPT='\'''\''' 'U_DISK='\''153'\''' 'U_BANDWIDTH='\''0'\''' 'SUSPENDED='\''no'\''' 'TIME='\''18:42:35'\''' 'DATE='\''2017-06-02'\'''
++ DOMAIN=$'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
++ IP=188.166.77.215
++ IP6=
++ ALIAS=$'www.\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
++ TPL=default
++ SSL=no
++ SSL_HOME=same
++ LETSENCRYPT=yes
++ FTP_USER=admin_1:admin_2
++ FTP_MD5='$6$xYxnjRvtea$41lIuVZsedcgbl0pt1TRwOBhQvO8zhHMF7ISXx3A5ySAlWQRgUCrfChUKK0NWmc8bf6vBaRClLrGwSyXnrwSv/:$6$laFyZDOJT$LHDyyakfXVbU2.oWwdLEYONa0/7Eabrj62hgkE1QGKV85ybqfiGR2ZV4XAflnxT9Mglyek5x0wOXTnDhUxhrt/'
++ BACKEND=
++ FTP_PATH=public_html:
++ PROXY=default
++ PROXY_EXT=jpeg,jpg,png,gif,bmp,ico,svg,tif,tiff,css,js,htm,html,ttf,otf,webp,woff,txt,csv,rtf,doc,docx,xls,xlsx,ppt,pptx,odf,odp,ods,odt,pdf,psd,ai,eot,eps,ps,zip,tar,tgz,gz,rar,bz2,7z,aac,m4a,mp3,mp4,ogg,wav,wma,3gp,avi,flv,m4v,mkv,mov,mpeg,mpg,wmv,exe,iso,dmg,swf
++ STATS=
++ STATS_USER=
++ STATS_CRYPT=
++ U_DISK=153
++ U_BANDWIDTH=0
++ SUSPENDED=no
++ TIME=18:42:35
++ DATE=2017-06-02
+ /usr/local/vesta/bin/v-add-letsencrypt-user admin
+ '[' 0 -ne 0 ']'
+ source /usr/local/vesta/data/users/admin/ssl/le.conf
++ [email protected]
++ EXPONENT=AQAB
++ MODULUS=wsmClGL8b7YYKER3XReicPtVEIxZJnm-IpLy4vdYuLEqkKAw_k0Sfd__vuvcMNFAku5APfZoWDvEKCtBUzxARNE3QSu_F-Fteb0-ImMnF9qkFPnlMXqhQbslxr26fH7evmT-vqjX4hsrjpwJMn7f2jPZJwhSyEgtL4Gyk5mTc7oAgLD9XsqSzsf7AxgYAh6NilFVm_iv2m2G2uhVsph22Jy2DJLWjHbqZeASDtraGRK_0a07Ff-j84Zabkp8xeBLQtOJxhSkRLYCS4ELpo7FuMSo06I4IoLCV5FDnet9Pl_bnUq3W7LNKMRRp8krNcKAta_7IZLtKO6yP01emRXHn1ICAtn0T6l9-9ZuybW0DSuDWZAdXyPAdaE-rpOJk8OwY8spztfIpQJEutYL3_xv7Gyq2r6326vQINygIPyJ_jvW3gO0w6UfcivNCRTnJ1AczaG_qTU1iALJf7WqGnGhoYJ8ccKng4f_GvXQJPeT4LjxIfVvhXiTmfhkyApOkXuoXEF8pWgNK8YCX911m2-ulqMqj1cr2OgLsSz07m73J78mivG1CqkPu5YVN3BV9Y55U4d_bIp8kxNAMWsdKXMhY_FzTwyVKImViVp92DWvd27ts80qDHQeND3SsW5BBPcEnHEBZ4lCWyLS4FspIqoXp_0s_q9wG68NNMhZPjO5Kps
++ THUMB=QPZ27xNQB7Lq4v-MqfqJgFatwdvEp5EBZqCdy_V0jkI
+ [email protected]
+ i=1
++ echo $'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204,'
++ sort -u
++ tr , '\n'
+ for alias in '$(echo $domain,$aliases |tr '\'','\'' '\''\n'\'' |sort -u)'
+ /usr/local/vesta/bin/v-check-letsencrypt-domain admin $'\320\261\320\273\320\276\320\263\320\270.\320\264\321\203\320\274\320\260\320\273\320\276\320\263\320\270\321\217.\321\200\321\204'
Error: Invalid response from http://xn--90aepkp.xn--80agbsneq0b4h.xn--p1ai/.well-known/acme-challenge/DwheAbx0mPU3H8jKR8qeMzaKIgk7En4P1tvfYb40HRc: \
+ '[' 15 -ne 0 ']'
+ touch /usr/local/vesta/data/queue/letsencrypt.pipe
+ sed -i '/ блоги.думалогия.рф /d' /usr/local/vesta/data/queue/letsencrypt.pipe
+ send_notice LETSENCRYPT 'блоги.думалогия.рф validation failed'
+ topic=LETSENCRYPT
+ notice='блоги.думалогия.рф validation failed'
+ '[' '' = yes ']'
+ check_result 2 'LE domain validation'
+ '[' 2 -ne 0 ']'
+ echo 'Error: LE domain validation'
+ '[' '!' -z '' ']'
+ log_event 2 ' '\''admin'\'' '\''блоги.думалогия.рф'\'''
+ '[' -z '' ']'
++ date '+%F %T'
++ basename /usr/local/vesta/bin/v-add-letsencrypt-domain
+ LOG_TIME='2018-02-01 21:24:51 v-add-letsencrypt-domain'
+ '[' 2 -eq 0 ']'
+ echo '2018-02-01 21:24:51 v-add-letsencrypt-domain '\''admin'\'' '\''блоги.думалогия.рф'\'' [Error 2]'
+ exit 2