Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Setting of txt-records doesn't work on INWX Api #4763

Closed
Kulturserver opened this issue Aug 28, 2023 · 8 comments
Closed

Setting of txt-records doesn't work on INWX Api #4763

Kulturserver opened this issue Aug 28, 2023 · 8 comments

Comments

@Kulturserver
Copy link

Hi, we've updated to the newest acme.sh Version 3.0.7 and still encounter a problem with setting the txt record on the INWX Api - it isn't possible and so the certificates cannot be extended. A week ago everything worked. Can anybody help? The log file is below.

[Mon 28 Aug 09:19:42 CEST 2023] Running cmd: renew
[Mon 28 Aug 09:19:42 CEST 2023] _renewServer
[Mon 28 Aug 09:19:42 CEST 2023] Using config home:/root/.acme.sh
[Mon 28 Aug 09:19:42 CEST 2023] default_acme_server
[Mon 28 Aug 09:19:42 CEST 2023] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Mon 28 Aug 09:19:42 CEST 2023] DOMAIN_PATH='/root/.acme.sh/example.de'
[Mon 28 Aug 09:19:42 CEST 2023] �[1;32mRenew: 'example.de'�[0m
[Mon 28 Aug 09:19:42 CEST 2023] Le_API
[Mon 28 Aug 09:19:42 CEST 2023] Renew to Le_API=
[Mon 28 Aug 09:19:42 CEST 2023] Using config home:/root/.acme.sh
[Mon 28 Aug 09:19:42 CEST 2023] default_acme_server
[Mon 28 Aug 09:19:42 CEST 2023] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Mon 28 Aug 09:19:42 CEST 2023] _main_domain='example.de'
[Mon 28 Aug 09:19:42 CEST 2023] _alt_domains='*.example.de'
[Mon 28 Aug 09:19:42 CEST 2023] Le_NextRenewTime='1692658247'
[Mon 28 Aug 09:19:42 CEST 2023] Using ACME_DIRECTORY: https://acme.zerossl.com/v2/DV90
[Mon 28 Aug 09:19:42 CEST 2023] _init api for server: https://acme.zerossl.com/v2/DV90
[Mon 28 Aug 09:19:42 CEST 2023] GET
[Mon 28 Aug 09:19:42 CEST 2023] url='https://acme.zerossl.com/v2/DV90'
[Mon 28 Aug 09:19:42 CEST 2023] timeout=
[Mon 28 Aug 09:19:42 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:42 CEST 2023] ret='0'
[Mon 28 Aug 09:19:42 CEST 2023] ACME_KEY_CHANGE='https://acme.zerossl.com/v2/DV90/keyChange'
[Mon 28 Aug 09:19:42 CEST 2023] ACME_NEW_AUTHZ
[Mon 28 Aug 09:19:42 CEST 2023] ACME_NEW_ORDER='https://acme.zerossl.com/v2/DV90/newOrder'
[Mon 28 Aug 09:19:42 CEST 2023] ACME_NEW_ACCOUNT='https://acme.zerossl.com/v2/DV90/newAccount'
[Mon 28 Aug 09:19:42 CEST 2023] ACME_REVOKE_CERT='https://acme.zerossl.com/v2/DV90/revokeCert'
[Mon 28 Aug 09:19:42 CEST 2023] ACME_AGREEMENT='https://secure.trust-provider.com/repository/docs/Legacy/20230516_Certificate_Subscriber_Agreement_v_2_6_click.pdf'
[Mon 28 Aug 09:19:42 CEST 2023] ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce'
[Mon 28 Aug 09:19:42 CEST 2023] Using CA: https://acme.zerossl.com/v2/DV90
[Mon 28 Aug 09:19:42 CEST 2023] _on_before_issue
[Mon 28 Aug 09:19:42 CEST 2023] _chk_main_domain='example.de'
[Mon 28 Aug 09:19:42 CEST 2023] _chk_alt_domains='*.example.de'
[Mon 28 Aug 09:19:42 CEST 2023] Le_LocalAddress
[Mon 28 Aug 09:19:42 CEST 2023] d='example.de'
[Mon 28 Aug 09:19:42 CEST 2023] Check for domain='example.de'
[Mon 28 Aug 09:19:42 CEST 2023] _currentRoot='dns_inwx'
[Mon 28 Aug 09:19:42 CEST 2023] d='*.example.de'
[Mon 28 Aug 09:19:42 CEST 2023] Check for domain='*.example.de'
[Mon 28 Aug 09:19:42 CEST 2023] _currentRoot='dns_inwx'
[Mon 28 Aug 09:19:42 CEST 2023] d
[Mon 28 Aug 09:19:42 CEST 2023] _saved_account_key_hash is not changed, skip register account.
[Mon 28 Aug 09:19:42 CEST 2023] Read key length:4096
[Mon 28 Aug 09:19:42 CEST 2023] _createcsr
[Mon 28 Aug 09:19:42 CEST 2023] Multi domain='DNS:example.de,DNS:*.example.de'
[Mon 28 Aug 09:19:42 CEST 2023] Getting domain auth token for each domain
[Mon 28 Aug 09:19:42 CEST 2023] d='*.example.de'
[Mon 28 Aug 09:19:42 CEST 2023] d
[Mon 28 Aug 09:19:42 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 09:19:42 CEST 2023] url='https://acme.zerossl.com/v2/DV90/newOrder'
[Mon 28 Aug 09:19:42 CEST 2023] payload='{"identifiers": [{"type":"dns","value":"example.de"},{"type":"dns","value":"*.example.de"}]}'
[Mon 28 Aug 09:19:42 CEST 2023] EC key
[Mon 28 Aug 09:19:42 CEST 2023] HEAD
[Mon 28 Aug 09:19:42 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/newNonce'
[Mon 28 Aug 09:19:42 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g  -I  '
[Mon 28 Aug 09:19:44 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:44 CEST 2023] POST
[Mon 28 Aug 09:19:44 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/newOrder'
[Mon 28 Aug 09:19:44 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:46 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:46 CEST 2023] code='201'
[Mon 28 Aug 09:19:46 CEST 2023] Le_LinkOrder='https://acme.zerossl.com/v2/DV90/order/XWGjZM7FRMOUmw-gvAmC2g'
[Mon 28 Aug 09:19:46 CEST 2023] Le_OrderFinalize='https://acme.zerossl.com/v2/DV90/order/XWGjZM7FRMOUmw-gvAmC2g/finalize'
[Mon 28 Aug 09:19:46 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 09:19:46 CEST 2023] url='https://acme.zerossl.com/v2/DV90/authz/YicJgW5V6bmSNRczT3xaxg'
[Mon 28 Aug 09:19:46 CEST 2023] payload
[Mon 28 Aug 09:19:46 CEST 2023] POST
[Mon 28 Aug 09:19:46 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/authz/YicJgW5V6bmSNRczT3xaxg'
[Mon 28 Aug 09:19:46 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:47 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:48 CEST 2023] code='200'
[Mon 28 Aug 09:19:48 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 09:19:48 CEST 2023] url='https://acme.zerossl.com/v2/DV90/authz/zEt-ZGkpGbbWViVOg460gQ'
[Mon 28 Aug 09:19:48 CEST 2023] payload
[Mon 28 Aug 09:19:48 CEST 2023] POST
[Mon 28 Aug 09:19:48 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/authz/zEt-ZGkpGbbWViVOg460gQ'
[Mon 28 Aug 09:19:48 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:49 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:49 CEST 2023] code='200'
[Mon 28 Aug 09:19:49 CEST 2023] d='example.de'
[Mon 28 Aug 09:19:49 CEST 2023] Getting webroot for domain='example.de'
[Mon 28 Aug 09:19:49 CEST 2023] _w='dns_inwx'
[Mon 28 Aug 09:19:49 CEST 2023] _currentRoot='dns_inwx'
[Mon 28 Aug 09:19:49 CEST 2023] _authz_url='https://acme.zerossl.com/v2/DV90/authz/YicJgW5V6bmSNRczT3xaxg'
[Mon 28 Aug 09:19:49 CEST 2023] entry='"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/rOHj_UoQE0ukeUJR9FZn0g","status":"pending","token":"J5N6HWEt7XuRr7skCbodjA7lwSMLcPVBPBb4wfqnFbc"'
[Mon 28 Aug 09:19:49 CEST 2023] token='J5N6HWEt7XuRr7skCbodjA7lwSMLcPVBPBb4wfqnFbc'
[Mon 28 Aug 09:19:49 CEST 2023] uri='https://acme.zerossl.com/v2/DV90/chall/rOHj_UoQE0ukeUJR9FZn0g'
[Mon 28 Aug 09:19:49 CEST 2023] keyauthorization='J5N6HWEt7XuRr7skCbodjA7lwSMLcPVBPBb4wfqnFbc.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8'
[Mon 28 Aug 09:19:49 CEST 2023] dvlist='example.de#J5N6HWEt7XuRr7skCbodjA7lwSMLcPVBPBb4wfqnFbc.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8#https://acme.zerossl.com/v2/DV90/chall/rOHj_UoQE0ukeUJR9FZn0g#dns-01#dns_inwx#https://acme.zerossl.com/v2/DV90/authz/YicJgW5V6bmSNRczT3xaxg'
[Mon 28 Aug 09:19:49 CEST 2023] d='*.example.de'
[Mon 28 Aug 09:19:49 CEST 2023] Getting webroot for domain='*.example.de'
[Mon 28 Aug 09:19:49 CEST 2023] _w='dns_inwx'
[Mon 28 Aug 09:19:49 CEST 2023] _currentRoot='dns_inwx'
[Mon 28 Aug 09:19:49 CEST 2023] _authz_url='https://acme.zerossl.com/v2/DV90/authz/zEt-ZGkpGbbWViVOg460gQ'
[Mon 28 Aug 09:19:49 CEST 2023] entry='"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/3BLAXXsFDsxBKAtackZu1A","status":"pending","token":"bUcIb1fgX5xuZZ2NYqWrjT2Q1nrqkjh9LGodCWjekwI"'
[Mon 28 Aug 09:19:49 CEST 2023] token='bUcIb1fgX5xuZZ2NYqWrjT2Q1nrqkjh9LGodCWjekwI'
[Mon 28 Aug 09:19:49 CEST 2023] uri='https://acme.zerossl.com/v2/DV90/chall/3BLAXXsFDsxBKAtackZu1A'
[Mon 28 Aug 09:19:49 CEST 2023] keyauthorization='bUcIb1fgX5xuZZ2NYqWrjT2Q1nrqkjh9LGodCWjekwI.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8'
[Mon 28 Aug 09:19:49 CEST 2023] dvlist='*.example.de#bUcIb1fgX5xuZZ2NYqWrjT2Q1nrqkjh9LGodCWjekwI.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8#https://acme.zerossl.com/v2/DV90/chall/3BLAXXsFDsxBKAtackZu1A#dns-01#dns_inwx#https://acme.zerossl.com/v2/DV90/authz/zEt-ZGkpGbbWViVOg460gQ'
[Mon 28 Aug 09:19:49 CEST 2023] d
[Mon 28 Aug 09:19:49 CEST 2023] vlist='example.de#J5N6HWEt7XuRr7skCbodjA7lwSMLcPVBPBb4wfqnFbc.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8#https://acme.zerossl.com/v2/DV90/chall/rOHj_UoQE0ukeUJR9FZn0g#dns-01#dns_inwx#https://acme.zerossl.com/v2/DV90/authz/YicJgW5V6bmSNRczT3xaxg,*.example.de#bUcIb1fgX5xuZZ2NYqWrjT2Q1nrqkjh9LGodCWjekwI.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8#https://acme.zerossl.com/v2/DV90/chall/3BLAXXsFDsxBKAtackZu1A#dns-01#dns_inwx#https://acme.zerossl.com/v2/DV90/authz/zEt-ZGkpGbbWViVOg460gQ,'
[Mon 28 Aug 09:19:49 CEST 2023] d='example.de'
[Mon 28 Aug 09:19:49 CEST 2023] _d_alias
[Mon 28 Aug 09:19:49 CEST 2023] txtdomain='_acme-challenge.example.de'
[Mon 28 Aug 09:19:49 CEST 2023] txt='0_hpzJ4XQrNgky1NzQm-CE1lThWPqMrMdeUjCsBENUY'
[Mon 28 Aug 09:19:49 CEST 2023] d_api='/root/.acme.sh/dnsapi/dns_inwx.sh'
[Mon 28 Aug 09:19:49 CEST 2023] Found domain api file: /root/.acme.sh/dnsapi/dns_inwx.sh
[Mon 28 Aug 09:19:49 CEST 2023] Adding txt value: 0_hpzJ4XQrNgky1NzQm-CE1lThWPqMrMdeUjCsBENUY for domain:  _acme-challenge.example.de
[Mon 28 Aug 09:19:49 CEST 2023] POST
[Mon 28 Aug 09:19:49 CEST 2023] _post_url='https://api.domrobot.com/xmlrpc/'
[Mon 28 Aug 09:19:49 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:49 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:49 CEST 2023] Cached cookie no longer valid
[Mon 28 Aug 09:19:49 CEST 2023] POST
[Mon 28 Aug 09:19:49 CEST 2023] _post_url='https://api.domrobot.com/xmlrpc/'
[Mon 28 Aug 09:19:49 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:50 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:50 CEST 2023] First detect the root zone
[Mon 28 Aug 09:19:50 CEST 2023] get root
[Mon 28 Aug 09:19:50 CEST 2023] POST
[Mon 28 Aug 09:19:50 CEST 2023] _post_url='https://api.domrobot.com/xmlrpc/'
[Mon 28 Aug 09:19:50 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:50 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:50 CEST 2023] h='example.de'
[Mon 28 Aug 09:19:50 CEST 2023] h='de'
[Mon 28 Aug 09:19:50 CEST 2023] _sub_domain='_acme-challenge.example'
[Mon 28 Aug 09:19:50 CEST 2023] _domain='de'
[Mon 28 Aug 09:19:50 CEST 2023] Adding record
[Mon 28 Aug 09:19:50 CEST 2023] POST
[Mon 28 Aug 09:19:50 CEST 2023] _post_url='https://api.domrobot.com/xmlrpc/'
[Mon 28 Aug 09:19:50 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:50 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:50 CEST 2023] Error
[Mon 28 Aug 09:19:50 CEST 2023] Error add txt for domain:_acme-challenge.example.de
[Mon 28 Aug 09:19:50 CEST 2023] _on_issue_err
[Mon 28 Aug 09:19:50 CEST 2023] Please check log file for more details: /root/.acme.sh/acme.sh.log
[Mon 28 Aug 09:19:50 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 09:19:50 CEST 2023] url='https://acme.zerossl.com/v2/DV90/chall/rOHj_UoQE0ukeUJR9FZn0g'
[Mon 28 Aug 09:19:50 CEST 2023] payload='{}'
[Mon 28 Aug 09:19:50 CEST 2023] POST
[Mon 28 Aug 09:19:50 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/chall/rOHj_UoQE0ukeUJR9FZn0g'
[Mon 28 Aug 09:19:50 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:53 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:53 CEST 2023] code='200'
[Mon 28 Aug 09:19:53 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 09:19:53 CEST 2023] url='https://acme.zerossl.com/v2/DV90/chall/3BLAXXsFDsxBKAtackZu1A'
[Mon 28 Aug 09:19:53 CEST 2023] payload='{}'
[Mon 28 Aug 09:19:53 CEST 2023] POST
[Mon 28 Aug 09:19:53 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/chall/3BLAXXsFDsxBKAtackZu1A'
[Mon 28 Aug 09:19:53 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon 28 Aug 09:19:54 CEST 2023] _ret='0'
[Mon 28 Aug 09:19:54 CEST 2023] code='200'
[Mon 28 Aug 09:19:55 CEST 2023] pid
[Mon 28 Aug 09:19:55 CEST 2023] No need to restore nginx, skip.
[Mon 28 Aug 09:19:55 CEST 2023] _clearupdns
[Mon 28 Aug 09:19:55 CEST 2023] dns_entries
[Mon 28 Aug 09:19:55 CEST 2023] skip dns.
@github-actions
Copy link

Please upgrade to the latest code and try again first. Maybe it's already fixed. acme.sh --upgrade If it's still not working, please provide the log with --debug 2, otherwise, nobody can help you.

@Kulturserver
Copy link
Author

Kulturserver commented Aug 28, 2023
edited
Loading

Here's the log with --debug 2:

[Mon 28 Aug 10:16:35 CEST 2023] Running cmd: renew
[Mon 28 Aug 10:16:35 CEST 2023] _renewServer
[Mon 28 Aug 10:16:35 CEST 2023] Using config home:/root/.acme.sh
[Mon 28 Aug 10:16:35 CEST 2023] default_acme_server
[Mon 28 Aug 10:16:35 CEST 2023] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Mon 28 Aug 10:16:35 CEST 2023] DOMAIN_PATH='/root/.acme.sh/example.de'
[Mon 28 Aug 10:16:35 CEST 2023] �[1;32mRenew: 'example.de'�[0m
[Mon 28 Aug 10:16:35 CEST 2023] Le_API='https://acme.zerossl.com/v2/DV90'
[Mon 28 Aug 10:16:35 CEST 2023] Renew to Le_API=https://acme.zerossl.com/v2/DV90
[Mon 28 Aug 10:16:35 CEST 2023] Using config home:/root/.acme.sh
[Mon 28 Aug 10:16:35 CEST 2023] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Mon 28 Aug 10:16:35 CEST 2023] _main_domain='example.de'
[Mon 28 Aug 10:16:35 CEST 2023] _alt_domains='.example.de'
[Mon 28 Aug 10:16:35 CEST 2023] Le_NextRenewTime='1692658247'
[Mon 28 Aug 10:16:35 CEST 2023] Using ACME_DIRECTORY: https://acme.zerossl.com/v2/DV90
[Mon 28 Aug 10:16:35 CEST 2023] _init api for server: https://acme.zerossl.com/v2/DV90
[Mon 28 Aug 10:16:35 CEST 2023] GET
[Mon 28 Aug 10:16:35 CEST 2023] url='https://acme.zerossl.com/v2/DV90'
[Mon 28 Aug 10:16:35 CEST 2023] timeout=
[Mon 28 Aug 10:16:35 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.szXjV4v96B -g '
[Mon 28 Aug 10:16:35 CEST 2023] ret='0'
[Mon 28 Aug 10:16:35 CEST 2023] ACME_KEY_CHANGE='https://acme.zerossl.com/v2/DV90/keyChange'
[Mon 28 Aug 10:16:35 CEST 2023] ACME_NEW_AUTHZ
[Mon 28 Aug 10:16:35 CEST 2023] ACME_NEW_ORDER='https://acme.zerossl.com/v2/DV90/newOrder'
[Mon 28 Aug 10:16:35 CEST 2023] ACME_NEW_ACCOUNT='https://acme.zerossl.com/v2/DV90/newAccount'
[Mon 28 Aug 10:16:35 CEST 2023] ACME_REVOKE_CERT='https://acme.zerossl.com/v2/DV90/revokeCert'
[Mon 28 Aug 10:16:35 CEST 2023] ACME_AGREEMENT='https://secure.trust-provider.com/repository/docs/Legacy/20230516_Certificate_Subscriber_Agreement_v_2_6_click.pdf'
[Mon 28 Aug 10:16:35 CEST 2023] ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce'
[Mon 28 Aug 10:16:35 CEST 2023] Using CA: https://acme.zerossl.com/v2/DV90
[Mon 28 Aug 10:16:35 CEST 2023] _on_before_issue
[Mon 28 Aug 10:16:35 CEST 2023] _chk_main_domain='example.de'
[Mon 28 Aug 10:16:35 CEST 2023] _chk_alt_domains='.example.de'
[Mon 28 Aug 10:16:35 CEST 2023] Le_LocalAddress
[Mon 28 Aug 10:16:35 CEST 2023] d='example.de'
[Mon 28 Aug 10:16:35 CEST 2023] Check for domain='example.de'
[Mon 28 Aug 10:16:35 CEST 2023] _currentRoot='dns_inwx'
[Mon 28 Aug 10:16:35 CEST 2023] d='.example.de'
[Mon 28 Aug 10:16:35 CEST 2023] Check for domain='.example.de'
[Mon 28 Aug 10:16:35 CEST 2023] _currentRoot='dns_inwx'
[Mon 28 Aug 10:16:35 CEST 2023] d
[Mon 28 Aug 10:16:35 CEST 2023] _saved_account_key_hash is not changed, skip register account.
[Mon 28 Aug 10:16:35 CEST 2023] Read key length:4096
[Mon 28 Aug 10:16:35 CEST 2023] _createcsr
[Mon 28 Aug 10:16:35 CEST 2023] Multi domain='DNS:example.de,DNS:.example.de'
[Mon 28 Aug 10:16:35 CEST 2023] Getting domain auth token for each domain
[Mon 28 Aug 10:16:35 CEST 2023] d='.example.de'
[Mon 28 Aug 10:16:35 CEST 2023] d
[Mon 28 Aug 10:16:35 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 10:16:35 CEST 2023] url='https://acme.zerossl.com/v2/DV90/newOrder'
[Mon 28 Aug 10:16:35 CEST 2023] payload='{"identifiers": [{"type":"dns","value":"example.de"},{"type":"dns","value":".example.de"}]}'
[Mon 28 Aug 10:16:35 CEST 2023] EC key
[Mon 28 Aug 10:16:35 CEST 2023] HEAD
[Mon 28 Aug 10:16:35 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/newNonce'
[Mon 28 Aug 10:16:35 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g -I '
[Mon 28 Aug 10:16:36 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:36 CEST 2023] POST
[Mon 28 Aug 10:16:36 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/newOrder'
[Mon 28 Aug 10:16:36 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g '
[Mon 28 Aug 10:16:38 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:38 CEST 2023] code='201'
[Mon 28 Aug 10:16:38 CEST 2023] Le_LinkOrder='https://acme.zerossl.com/v2/DV90/order/svnosUwdECpSj-cDI756IA'
[Mon 28 Aug 10:16:38 CEST 2023] Le_OrderFinalize='https://acme.zerossl.com/v2/DV90/order/svnosUwdECpSj-cDI756IA/finalize'
[Mon 28 Aug 10:16:38 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 10:16:38 CEST 2023] url='https://acme.zerossl.com/v2/DV90/authz/X_2FVWc2AF28GnProv6Bzw'
[Mon 28 Aug 10:16:38 CEST 2023] payload
[Mon 28 Aug 10:16:38 CEST 2023] POST
[Mon 28 Aug 10:16:38 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/authz/X_2FVWc2AF28GnProv6Bzw'
[Mon 28 Aug 10:16:38 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g '
[Mon 28 Aug 10:16:40 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:40 CEST 2023] code='200'
[Mon 28 Aug 10:16:40 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 10:16:40 CEST 2023] url='https://acme.zerossl.com/v2/DV90/authz/MRtnF_M76Wc6W6FLlRqbsQ'
[Mon 28 Aug 10:16:40 CEST 2023] payload
[Mon 28 Aug 10:16:40 CEST 2023] POST
[Mon 28 Aug 10:16:40 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/authz/MRtnF_M76Wc6W6FLlRqbsQ'
[Mon 28 Aug 10:16:40 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g '
[Mon 28 Aug 10:16:41 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:41 CEST 2023] code='200'
[Mon 28 Aug 10:16:41 CEST 2023] d='example.de'
[Mon 28 Aug 10:16:41 CEST 2023] Getting webroot for domain='example.de'
[Mon 28 Aug 10:16:41 CEST 2023] _w='dns_inwx'
[Mon 28 Aug 10:16:41 CEST 2023] _currentRoot='dns_inwx'
[Mon 28 Aug 10:16:41 CEST 2023] _authz_url='https://acme.zerossl.com/v2/DV90/authz/X_2FVWc2AF28GnProv6Bzw'
[Mon 28 Aug 10:16:41 CEST 2023] entry='"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/n41XObDXpkIbRuz4dsh_wQ","status":"pending","token":"bpJXT7ORgdgLoIcmJztReACI40tL2-oAa8nP3s_8bQI"'
[Mon 28 Aug 10:16:41 CEST 2023] token='bpJXT7ORgdgLoIcmJztReACI40tL2-oAa8nP3s_8bQI'
[Mon 28 Aug 10:16:41 CEST 2023] uri='https://acme.zerossl.com/v2/DV90/chall/n41XObDXpkIbRuz4dsh_wQ'
[Mon 28 Aug 10:16:41 CEST 2023] keyauthorization='bpJXT7ORgdgLoIcmJztReACI40tL2-oAa8nP3s_8bQI.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8'
[Mon 28 Aug 10:16:41 CEST 2023] dvlist='example.de#bpJXT7ORgdgLoIcmJztReACI40tL2-oAa8nP3s_8bQI.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8#https://acme.zerossl.com/v2/DV90/chall/n41XObDXpkIbRuz4dsh_wQ#dns-01#dns_inwx#https://acme.zerossl.com/v2/DV90/authz/X_2FVWc2AF28GnProv6Bzw'
[Mon 28 Aug 10:16:41 CEST 2023] d='.example.de'
[Mon 28 Aug 10:16:41 CEST 2023] Getting webroot for domain='.example.de'
[Mon 28 Aug 10:16:41 CEST 2023] _w='dns_inwx'
[Mon 28 Aug 10:16:41 CEST 2023] _currentRoot='dns_inwx'
[Mon 28 Aug 10:16:41 CEST 2023] _authz_url='https://acme.zerossl.com/v2/DV90/authz/MRtnF_M76Wc6W6FLlRqbsQ'
[Mon 28 Aug 10:16:41 CEST 2023] entry='"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/bN4qH-cewDkTL6cUQSfX3g","status":"pending","token":"RNJ3VGknYsOY9T-7cBGfON1kHADxf-pVk9d2fZDrrcg"'
[Mon 28 Aug 10:16:41 CEST 2023] token='RNJ3VGknYsOY9T-7cBGfON1kHADxf-pVk9d2fZDrrcg'
[Mon 28 Aug 10:16:41 CEST 2023] uri='https://acme.zerossl.com/v2/DV90/chall/bN4qH-cewDkTL6cUQSfX3g'
[Mon 28 Aug 10:16:41 CEST 2023] keyauthorization='RNJ3VGknYsOY9T-7cBGfON1kHADxf-pVk9d2fZDrrcg.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8'
[Mon 28 Aug 10:16:41 CEST 2023] dvlist='.example.de#RNJ3VGknYsOY9T-7cBGfON1kHADxf-pVk9d2fZDrrcg.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8#https://acme.zerossl.com/v2/DV90/chall/bN4qH-cewDkTL6cUQSfX3g#dns-01#dns_inwx#https://acme.zerossl.com/v2/DV90/authz/MRtnF_M76Wc6W6FLlRqbsQ'
[Mon 28 Aug 10:16:41 CEST 2023] d
[Mon 28 Aug 10:16:41 CEST 2023] vlist='example.de#bpJXT7ORgdgLoIcmJztReACI40tL2-oAa8nP3s_8bQI.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8#https://acme.zerossl.com/v2/DV90/chall/n41XObDXpkIbRuz4dsh_wQ#dns-01#dns_inwx#https://acme.zerossl.com/v2/DV90/authz/X_2FVWc2AF28GnProv6Bzw,*.example.de#RNJ3VGknYsOY9T-7cBGfON1kHADxf-pVk9d2fZDrrcg.wUQCiO2FWoW7wk5kP7vkaguVsRrhVRrgLqi7hZECzy8#https://acme.zerossl.com/v2/DV90/chall/bN4qH-cewDkTL6cUQSfX3g#dns-01#dns_inwx#https://acme.zerossl.com/v2/DV90/authz/MRtnF_M76Wc6W6FLlRqbsQ,'
[Mon 28 Aug 10:16:41 CEST 2023] d='example.de'
[Mon 28 Aug 10:16:41 CEST 2023] _d_alias
[Mon 28 Aug 10:16:41 CEST 2023] txtdomain='_acme-challenge.example.de'
[Mon 28 Aug 10:16:41 CEST 2023] txt='GpJG-SN1c47MpBpEHI7oujMMP0t-L_OO7DWuJxEEvYo'
[Mon 28 Aug 10:16:41 CEST 2023] d_api='/root/.acme.sh/dnsapi/dns_inwx.sh'
[Mon 28 Aug 10:16:41 CEST 2023] Found domain api file: /root/.acme.sh/dnsapi/dns_inwx.sh
[Mon 28 Aug 10:16:41 CEST 2023] Adding txt value: GpJG-SN1c47MpBpEHI7oujMMP0t-L_OO7DWuJxEEvYo for domain: _acme-challenge.example.de
[Mon 28 Aug 10:16:41 CEST 2023] POST
[Mon 28 Aug 10:16:41 CEST 2023] _post_url='https://api.domrobot.com/xmlrpc/'
[Mon 28 Aug 10:16:41 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g '
[Mon 28 Aug 10:16:42 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:42 CEST 2023] Cached cookie no longer valid
[Mon 28 Aug 10:16:42 CEST 2023] POST
[Mon 28 Aug 10:16:42 CEST 2023] _post_url='https://api.domrobot.com/xmlrpc/'
[Mon 28 Aug 10:16:42 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g '
[Mon 28 Aug 10:16:42 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:42 CEST 2023] First detect the root zone
[Mon 28 Aug 10:16:42 CEST 2023] get root
[Mon 28 Aug 10:16:42 CEST 2023] POST
[Mon 28 Aug 10:16:42 CEST 2023] _post_url='https://api.domrobot.com/xmlrpc/'
[Mon 28 Aug 10:16:42 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g '
[Mon 28 Aug 10:16:42 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:42 CEST 2023] h='example.de'
[Mon 28 Aug 10:16:42 CEST 2023] h='de'
[Mon 28 Aug 10:16:42 CEST 2023] _sub_domain='_acme-challenge.example'
[Mon 28 Aug 10:16:42 CEST 2023] _domain='de'
[Mon 28 Aug 10:16:42 CEST 2023] Adding record
[Mon 28 Aug 10:16:42 CEST 2023] POST
[Mon 28 Aug 10:16:42 CEST 2023] _post_url='https://api.domrobot.com/xmlrpc/'
[Mon 28 Aug 10:16:42 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g '
[Mon 28 Aug 10:16:42 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:42 CEST 2023] Error
[Mon 28 Aug 10:16:42 CEST 2023] Error add txt for domain:_acme-challenge.example.de
[Mon 28 Aug 10:16:42 CEST 2023] _on_issue_err
[Mon 28 Aug 10:16:42 CEST 2023] Please check log file for more details: /root/.acme.sh/acme.sh.log
[Mon 28 Aug 10:16:42 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 10:16:42 CEST 2023] url='https://acme.zerossl.com/v2/DV90/chall/n41XObDXpkIbRuz4dsh_wQ'
[Mon 28 Aug 10:16:42 CEST 2023] payload='{}'
[Mon 28 Aug 10:16:42 CEST 2023] POST
[Mon 28 Aug 10:16:42 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/chall/n41XObDXpkIbRuz4dsh_wQ'
[Mon 28 Aug 10:16:42 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g '
[Mon 28 Aug 10:16:44 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:44 CEST 2023] code='200'
[Mon 28 Aug 10:16:44 CEST 2023] =======Begin Send Signed Request=======
[Mon 28 Aug 10:16:44 CEST 2023] url='https://acme.zerossl.com/v2/DV90/chall/bN4qH-cewDkTL6cUQSfX3g'
[Mon 28 Aug 10:16:44 CEST 2023] payload='{}'
[Mon 28 Aug 10:16:44 CEST 2023] POST
[Mon 28 Aug 10:16:44 CEST 2023] _post_url='https://acme.zerossl.com/v2/DV90/chall/bN4qH-cewDkTL6cUQSfX3g'
[Mon 28 Aug 10:16:44 CEST 2023] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.Z9tmimwhth -g '
[Mon 28 Aug 10:16:44 CEST 2023] _ret='0'
[Mon 28 Aug 10:16:44 CEST 2023] code='200'
[Mon 28 Aug 10:16:45 CEST 2023] Diagnosis versions:
openssl:openssl
OpenSSL 1.1.1n 15 Mar 2022
apache:
apache doesn't exist.
nginx:
nginx doesn't exist.
socat:
socat by Gerhard Rieger and contributors - see www.dest-unreach.org
socat version 1.7.3.2 on Nov 19 2017 13:56:10
running on Linux version #1 SMP Debian 4.19.289-2 (2023-08-08), release 4.19.0-25-amd64, machine x86_64
features:
#define WITH_STDIO 1
#define WITH_FDNUM 1
#define WITH_FILE 1
#define WITH_CREAT 1
#define WITH_GOPEN 1
#define WITH_TERMIOS 1
#define WITH_PIPE 1
#define WITH_UNIX 1
#define WITH_ABSTRACT_UNIXSOCKET 1
#define WITH_IP4 1
#define WITH_IP6 1
#define WITH_RAWIP 1
#define WITH_GENERICSOCKET 1
#define WITH_INTERFACE 1
#define WITH_TCP 1
#define WITH_UDP 1
#define WITH_SCTP 1
#define WITH_LISTEN 1
#define WITH_SOCKS4 1
#define WITH_SOCKS4A 1
#define WITH_PROXY 1
#define WITH_SYSTEM 1
#define WITH_EXEC 1
#undef WITH_READLINE
#define WITH_TUN 1
#define WITH_PTY 1
#define WITH_OPENSSL 1
#undef WITH_FIPS
#define WITH_LIBWRAP 1
#define WITH_SYCLS 1
#define WITH_FILAN 1
#define WITH_RETRY 1
#define WITH_MSGLEVEL 0 /debug/
[Mon 28 Aug 10:16:45 CEST 2023] pid
[Mon 28 Aug 10:16:45 CEST 2023] No need to restore nginx, skip.
[Mon 28 Aug 10:16:45 CEST 2023] _clearupdns
[Mon 28 Aug 10:16:45 CEST 2023] dns_entries
[Mon 28 Aug 10:16:45 CEST 2023] skip dns.

@bekanne
Copy link

bekanne commented Aug 28, 2023
edited
Loading

I found the problem in the dns_inwx.sh script. The cookie string cannot be saved because INWX changed a header key to lower case. This string is needed to stay authenticated for all further requests to the INWX API.

Solution:
In the dns_inwx.sh script the cookie string getting from a header value is being saved in a variable. The check for the header key should be case insensitive. This can be done by adding -ito the grep function:

acme.sh/dnsapi/dns_inwx.sh

Line 197 in 0da839c

INWX_Cookie=$(printf "Cookie: %s" "$(grep "domrobot=" "$HTTP_HEADER" | grep "^Set-Cookie:" | _tail_n 1 | _egrep_o 'domrobot=[^;]*;' | tr -d ';')")

So the line should be look like this:
INWX_Cookie=$(printf "Cookie: %s" "$(grep "domrobot=" "$HTTP_HEADER" | grep -i "^Set-Cookie:" | _tail_n 1 | _egrep_o 'domrobot=[^;]*;' | tr -d ';')")

@Kulturserver you can also use this as workaround by editing the .acme.sh/dnsapi/dns_inwx.sh file.

@Kulturserver
Copy link
Author

Thank you very much! With this change we were able to trigger the update. Maybe this should be patched in the script directly?

@bekanne
Copy link

bekanne commented Aug 28, 2023
edited
Loading

Issue should remain open until it is patched here. As I understand it right, the header filed name is case-insensitive.

https://www.rfc-editor.org/rfc/rfc9110.html#section-5.1-3

@Kulturserver
Copy link
Author

ok, sorry, it's reopened now!

@Kulturserver Kulturserver reopened this Aug 28, 2023
@inwx-developer
Copy link

Hey there,

we just wanted to report this issue.

While header fields always were case-insensitive our infrastructure used "Set-Cookie" in its responses.
Last week we enabled HTTP/2 on our API. HTTP/2 does not allow uppercase characters in header fields anymore.

https://datatracker.ietf.org/doc/html/rfc9113#section-8.2.1

Best regards

@bekanne bekanne mentioned this issue Aug 30, 2023
Merged
@KevinGully KevinGully mentioned this issue Aug 31, 2023
Closed
@wreidlinger
Copy link

Thanks to @Kulturserver for reporting this issue. Also huge thanks to @bekanne for checking the code and finding the problem and suggest a workaround!
The fix worked immediately on my side. Hope the fix goes into the official code asap!

@Neilpang Neilpang closed this as completed Sep 2, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@Neilpang @Kulturserver @inwx-developer @bekanne @wreidlinger