DNS-Namesilo method script error

Jethro95 commented 5 years ago

I am getting the following error when trying to use DNS validation with Namesilo using the ACME package in pfsense.

pfsense version 2.4.4 ACME package 0.5.8

www.example.com:Verify error:DNS problem: NXDOMAIN looking up TXT for _acme-challenge.www.example.com sed: 1: "s/.(([^<] ...": RE error: parentheses not balanced sed: 1: "s/.(([^<] ...": RE error: parentheses not balanced

Same exact issue as this guy so maybe he never reported it. https://forum.netgate.com/topic/134704/script-error-in-dns-namesilo-method

Neilpang commented 5 years ago

I tried on my pfsense server , but it's working well.

can you please try again with --debug 2, and show me the output.

Thanks.

Jethro95 commented 5 years ago

Here is the output on the Services page. Did you want that or the contents of acme_issuecert.log? If so, I will need to spend a bit of time sanitizing it as it looks like it has lots of certificates and ip addresses.

``XXXXX.NET_PFSENSE_TEST Renewing certificate account: XXXXX.NET_PFSENSE server: letsencrypt-staging

/usr/local/pkg/acme/acme.sh --issue -d 'pfsense.XXXXX.net' --dns 'dns_namesilo' --home '/tmp/acme/XXXXX.NET_PFSENSE_TEST/' --accountconf '/tmp/acme/XXXXX.NET_PFSENSE_TEST/accountconf.conf' --force --reloadCmd '/tmp/acme/XXXXX.NET_PFSENSE_TEST/reloadcmd.sh' --dnssleep '120' --log-level 3 --log '/tmp/acme/XXXXX.NET_PFSENSE_TEST/acme_issuecert.log'

Array ( [path] => /etc:/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin/ [PATH] => /etc:/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin/ [Namesilo_Key] => XXXXXXXXXXXXXXXXXXXXXXXX ) [Wed Jul 17 11:29:49 CDT 2019] Single domain='pfsense.XXXXX.net' [Wed Jul 17 11:29:49 CDT 2019] Getting domain auth token for each domain [Wed Jul 17 11:29:49 CDT 2019] Getting webroot for domain='pfsense.XXXXX.net' [Wed Jul 17 11:29:49 CDT 2019] Getting new-authz for domain='pfsense.XXXXX.net' [Wed Jul 17 11:29:52 CDT 2019] The new-authz request is ok. [Wed Jul 17 11:29:52 CDT 2019] Found domain api file: /usr/local/pkg/acme/dnsapi/dns_namesilo.sh [Wed Jul 17 11:29:53 CDT 2019] Successfully added TXT record, ready for validation. [Wed Jul 17 11:29:53 CDT 2019] Sleep 120 seconds for the txt records to take effect [Wed Jul 17 11:31:53 CDT 2019] Verifying: pfsense.XXXXX.net [Wed Jul 17 11:31:57 CDT 2019] Found domain http api file: /usr/local/pkg/acme/dnsapi/dns_namesilo.sh [Wed Jul 17 11:31:58 CDT 2019] Successfully retrieved the record id for ACME challenge. [Wed Jul 17 11:31:59 CDT 2019] Removing DNS records. [Wed Jul 17 11:32:00 CDT 2019] Successfully retrieved the record id for ACME challenge. [Wed Jul 17 11:32:01 CDT 2019] Successfully removed the TXT record. [Wed Jul 17 11:31:57 CDT 2019] pfsense.XXXXX.net:Verify error:DNS problem: NXDOMAIN looking up TXT for _acme-challenge.pfsense.XXXXX.net sed: 1: "s/.(([^<] ...": RE error: parentheses not balanced sed: 1: "s/.(([^<] ...": RE error: parentheses not balanced [Wed Jul 17 11:31:59 CDT 2019] Unable to remove the DNS record. [Wed Jul 17 11:31:59 CDT 2019] Error rm webroot api for domain:dns_namesilo [Wed Jul 17 11:32:01 CDT 2019] Please check log file for more details: /tmp/acme/XXXXX.NET_PFSENSE_TEST/acme_issuecert.log

Jethro95 commented 5 years ago

Here is the sanitized log output from acme_issuecert.log

[Wed Jul 17 11:29:48 CDT 2019] readlink exists=0
[Wed Jul 17 11:29:48 CDT 2019] dirname exists=0
[Wed Jul 17 11:29:48 CDT 2019] Lets find script dir.
[Wed Jul 17 11:29:48 CDT 2019] _SCRIPT_='/usr/local/pkg/acme/acme.sh'
[Wed Jul 17 11:29:48 CDT 2019] _script='/usr/local/pkg/acme/acme.sh'
[Wed Jul 17 11:29:48 CDT 2019] _script_home='/usr/local/pkg/acme'
[Wed Jul 17 11:29:48 CDT 2019] Using config home:/tmp/acme/XXXXX.NET_PFSENSE_TEST/
[Wed Jul 17 11:29:48 CDT 2019] APP
[Wed Jul 17 11:29:48 CDT 2019] 3:LOG_FILE='/tmp/acme/XXXXX.NET_PFSENSE_TEST/acme_issuecert.log'
[Wed Jul 17 11:29:48 CDT 2019] APP
[Wed Jul 17 11:29:48 CDT 2019] 4:LOG_LEVEL='3'
[Wed Jul 17 11:29:48 CDT 2019] LE_WORKING_DIR='/tmp/acme/XXXXX.NET_PFSENSE_TEST/'
[Wed Jul 17 11:29:48 CDT 2019] _main_domain='pfsense.XXXXX.net'
[Wed Jul 17 11:29:48 CDT 2019] _alt_domains='no'
[Wed Jul 17 11:29:48 CDT 2019] Using config home:/tmp/acme/XXXXX.NET_PFSENSE_TEST/
[Wed Jul 17 11:29:48 CDT 2019] ACME_DIRECTORY='https://acme-staging.api.letsencrypt.org/directory'
[Wed Jul 17 11:29:48 CDT 2019] _ACME_SERVER_HOST='acme-staging.api.letsencrypt.org'
[Wed Jul 17 11:29:49 CDT 2019] CA_CONF='/tmp/acme/XXXXX.NET_PFSENSE_TEST//ca/acme-staging.api.letsencrypt.org/ca.conf'
[Wed Jul 17 11:29:49 CDT 2019] DOMAIN_PATH='/tmp/acme/XXXXX.NET_PFSENSE_TEST//pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] 'dns_namesilo' does not contain 'dns'
[Wed Jul 17 11:29:49 CDT 2019] Using ACME_DIRECTORY: https://acme-staging.api.letsencrypt.org/directory
[Wed Jul 17 11:29:49 CDT 2019] _init api for server: https://acme-staging.api.letsencrypt.org/directory
[Wed Jul 17 11:29:49 CDT 2019] GET
[Wed Jul 17 11:29:49 CDT 2019] url='https://acme-staging.api.letsencrypt.org/directory'
[Wed Jul 17 11:29:49 CDT 2019] timeout=
[Wed Jul 17 11:29:49 CDT 2019] curl exists=0
[Wed Jul 17 11:29:49 CDT 2019] wget exists=127
[Wed Jul 17 11:29:49 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:29:49 CDT 2019] ret='0'
[Wed Jul 17 11:29:49 CDT 2019] response='{
  "ha0yfnb9JCY": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "key-change": "https://acme-staging.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "terms-of-service": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
    "website": "https://letsencrypt.org/docs/staging-environment/"
  },
  "new-authz": "https://acme-staging.api.letsencrypt.org/acme/new-authz",
  "new-cert": "https://acme-staging.api.letsencrypt.org/acme/new-cert",
  "new-reg": "https://acme-staging.api.letsencrypt.org/acme/new-reg",
  "revoke-cert": "https://acme-staging.api.letsencrypt.org/acme/revoke-cert"
}'
[Wed Jul 17 11:29:49 CDT 2019] ACME_KEY_CHANGE='https://acme-staging.api.letsencrypt.org/acme/key-change'
[Wed Jul 17 11:29:49 CDT 2019] ACME_NEW_AUTHZ='https://acme-staging.api.letsencrypt.org/acme/new-authz'
[Wed Jul 17 11:29:49 CDT 2019] ACME_NEW_ORDER='https://acme-staging.api.letsencrypt.org/acme/new-cert'
[Wed Jul 17 11:29:49 CDT 2019] ACME_NEW_ACCOUNT='https://acme-staging.api.letsencrypt.org/acme/new-reg'
[Wed Jul 17 11:29:49 CDT 2019] ACME_REVOKE_CERT='https://acme-staging.api.letsencrypt.org/acme/revoke-cert'
[Wed Jul 17 11:29:49 CDT 2019] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Wed Jul 17 11:29:49 CDT 2019] ACME_NEW_NONCE
[Wed Jul 17 11:29:49 CDT 2019] ACME_VERSION
[Wed Jul 17 11:29:49 CDT 2019] Le_NextRenewTime
[Wed Jul 17 11:29:49 CDT 2019] OK
[Wed Jul 17 11:29:49 CDT 2019] 1:Le_Domain='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] OK
[Wed Jul 17 11:29:49 CDT 2019] 2:Le_Alt='no'
[Wed Jul 17 11:29:49 CDT 2019] OK
[Wed Jul 17 11:29:49 CDT 2019] 3:Le_Webroot='dns_namesilo'
[Wed Jul 17 11:29:49 CDT 2019] OK
[Wed Jul 17 11:29:49 CDT 2019] 4:Le_PreHook=''
[Wed Jul 17 11:29:49 CDT 2019] OK
[Wed Jul 17 11:29:49 CDT 2019] 5:Le_PostHook=''
[Wed Jul 17 11:29:49 CDT 2019] OK
[Wed Jul 17 11:29:49 CDT 2019] 6:Le_RenewHook=''
[Wed Jul 17 11:29:49 CDT 2019] OK
[Wed Jul 17 11:29:49 CDT 2019] 7:Le_API='https://acme-staging.api.letsencrypt.org/directory'
[Wed Jul 17 11:29:49 CDT 2019] _on_before_issue
[Wed Jul 17 11:29:49 CDT 2019] _chk_main_domain='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] _chk_alt_domains
[Wed Jul 17 11:29:49 CDT 2019] 'dns_namesilo' does not contain 'no'
[Wed Jul 17 11:29:49 CDT 2019] Le_LocalAddress
[Wed Jul 17 11:29:49 CDT 2019] d='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] Check for domain='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] _currentRoot='dns_namesilo'
[Wed Jul 17 11:29:49 CDT 2019] d
[Wed Jul 17 11:29:49 CDT 2019] 'dns_namesilo' does not contain 'apache'
[Wed Jul 17 11:29:49 CDT 2019] _saved_account_key_hash='=====TEXT STRING====='
[Wed Jul 17 11:29:49 CDT 2019] base64 single line.
[Wed Jul 17 11:29:49 CDT 2019] _saved_account_key_hash is not changed, skip register account.
[Wed Jul 17 11:29:49 CDT 2019] Read key length:
[Wed Jul 17 11:29:49 CDT 2019] _createcsr
[Wed Jul 17 11:29:49 CDT 2019] domain='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] domainlist
[Wed Jul 17 11:29:49 CDT 2019] csrkey='/tmp/acme/XXXXX.NET_PFSENSE_TEST//pfsense.XXXXX.net/pfsense.XXXXX.net.key'
[Wed Jul 17 11:29:49 CDT 2019] csr='/tmp/acme/XXXXX.NET_PFSENSE_TEST//pfsense.XXXXX.net/pfsense.XXXXX.net.csr'
[Wed Jul 17 11:29:49 CDT 2019] csrconf='/tmp/acme/XXXXX.NET_PFSENSE_TEST//pfsense.XXXXX.net/pfsense.XXXXX.net.csr.conf'
[Wed Jul 17 11:29:49 CDT 2019] Single domain='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] _is_idn_d='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] _idn_temp
[Wed Jul 17 11:29:49 CDT 2019] _is_idn_d='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] _idn_temp
[Wed Jul 17 11:29:49 CDT 2019] _csr_cn='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] OK
[Wed Jul 17 11:29:49 CDT 2019] 8:Le_Keylength=''
[Wed Jul 17 11:29:49 CDT 2019] Getting domain auth token for each domain
[Wed Jul 17 11:29:49 CDT 2019] d='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] Getting webroot for domain='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] _w='dns_namesilo'
[Wed Jul 17 11:29:49 CDT 2019] _currentRoot='dns_namesilo'
[Wed Jul 17 11:29:49 CDT 2019] Getting new-authz for domain='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] _init api for server: https://acme-staging.api.letsencrypt.org/directory
[Wed Jul 17 11:29:49 CDT 2019] Try new-authz for the 0 time.
[Wed Jul 17 11:29:49 CDT 2019] _is_idn_d='pfsense.XXXXX.net'
[Wed Jul 17 11:29:49 CDT 2019] _idn_temp
[Wed Jul 17 11:29:50 CDT 2019] url='https://acme-staging.api.letsencrypt.org/acme/new-authz'
[Wed Jul 17 11:29:50 CDT 2019] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "pfsense.XXXXX.net"}}'
[Wed Jul 17 11:29:50 CDT 2019] RSA key
[Wed Jul 17 11:29:50 CDT 2019] pub_exp='010001'
[Wed Jul 17 11:29:50 CDT 2019] [Wed Jul 17 11:29:50 CDT 2019] base64 single line.xxd exists=127

[Wed Jul 17 11:29:50 CDT 2019] _URGLY_PRINTF='1'
[Wed Jul 17 11:29:50 CDT 2019] e='AQAB'
[Wed Jul 17 11:29:50 CDT 2019] modulus='=====GIANT TEXT STRING====='
[Wed Jul 17 11:29:50 CDT 2019] base64 single line.
[Wed Jul 17 11:29:50 CDT 2019] xxd exists=127
[Wed Jul 17 11:29:50 CDT 2019] _URGLY_PRINTF='1'
[Wed Jul 17 11:29:51 CDT 2019] n='=====GIANT TEXT STRING=====s'
[Wed Jul 17 11:29:51 CDT 2019] jwk='{"e": "AQAB", "kty": "RSA", "n": "=====GIANT TEXT STRING====='
[Wed Jul 17 11:29:51 CDT 2019] JWK_HEADER='{"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "=====GIANT TEXT STRING====="}}'
[Wed Jul 17 11:29:51 CDT 2019] base64 single line.
[Wed Jul 17 11:29:51 CDT 2019] payload64='=====TEXT STRING====='
[Wed Jul 17 11:29:51 CDT 2019] _request_retry_times='1'
[Wed Jul 17 11:29:51 CDT 2019] Get nonce with GET. ACME_DIRECTORY='https://acme-staging.api.letsencrypt.org/directory'
[Wed Jul 17 11:29:51 CDT 2019] GET
[Wed Jul 17 11:29:51 CDT 2019] url='https://acme-staging.api.letsencrypt.org/directory'
[Wed Jul 17 11:29:51 CDT 2019] timeout=
[Wed Jul 17 11:29:51 CDT 2019] curl exists=0
[Wed Jul 17 11:29:51 CDT 2019] wget exists=127
[Wed Jul 17 11:29:51 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:29:51 CDT 2019] ret='0'
[Wed Jul 17 11:29:51 CDT 2019] _headers='HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Content-Length: 704
Replay-Nonce: =====TEXT STRING=====
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Wed, 17 Jul 2019 16:29:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 17 Jul 2019 16:29:51 GMT
Connection: keep-alive
'
[Wed Jul 17 11:29:51 CDT 2019] _CACHED_NONCE='=====TEXT STRING====='
[Wed Jul 17 11:29:51 CDT 2019] nonce='=====TEXT STRING====='
[Wed Jul 17 11:29:51 CDT 2019] protected='{"nonce": "=====TEXT STRING=====", "url": "https://acme-staging.api.letsencrypt.org/acme/new-authz", "alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "=====GIANT TEXT STRING====="}}'
[Wed Jul 17 11:29:51 CDT 2019] base64 single line.
[Wed Jul 17 11:29:51 CDT 2019] protected64='=====GIANT TEXT STRING====='
[Wed Jul 17 11:29:51 CDT 2019] base64 single line.
[Wed Jul 17 11:29:51 CDT 2019] _sig_t='=====GIANT TEXT STRING====='
[Wed Jul 17 11:29:51 CDT 2019] sig='=====GIANT TEXT STRING====='
[Wed Jul 17 11:29:51 CDT 2019] body='{"protected": "=====GIANT TEXT STRING====="}'
[Wed Jul 17 11:29:51 CDT 2019] POST
[Wed Jul 17 11:29:51 CDT 2019] _post_url='https://acme-staging.api.letsencrypt.org/acme/new-authz'
[Wed Jul 17 11:29:51 CDT 2019] body='{"protected": "=====GIANT TEXT STRING====="}'
[Wed Jul 17 11:29:51 CDT 2019] _postContentType='application/jose+json'
[Wed Jul 17 11:29:51 CDT 2019] curl exists=0
[Wed Jul 17 11:29:51 CDT 2019] wget exists=127
[Wed Jul 17 11:29:51 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:29:52 CDT 2019] _ret='0'
[Wed Jul 17 11:29:52 CDT 2019] responseHeaders='HTTP/1.1 100 Continue
Expires: Wed, 17 Jul 2019 16:29:52 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 201 Created
Server: nginx
Content-Type: application/json
Content-Length: 1004
Boulder-Requester: 10032407
Link: <https://acme-staging.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-staging.api.letsencrypt.org/acme/authz/=====TEXT STRING=====
Replay-Nonce: =====TEXT STRING=====
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Wed, 17 Jul 2019 16:29:52 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 17 Jul 2019 16:29:52 GMT
Connection: keep-alive
'
[Wed Jul 17 11:29:52 CDT 2019] code='201'
[Wed Jul 17 11:29:52 CDT 2019] original='{
  "identifier": {
    "type": "dns",
    "value": "pfsense.XXXXX.net"
  },
  "status": "pending",
  "expires": "2019-07-24T16:29:52Z",
  "challenges": [
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "uri": "https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====",
      "token": "=====TEXT STRING====="
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====",
      "token": "=====TEXT STRING====="
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====",
      "token": "=====TEXT STRING====="
    }
  ],
  "combinations": [
    [
      0
    ],
    [
      1
    ],
    [
      2
    ]
  ]
}'
[Wed Jul 17 11:29:52 CDT 2019] response='{"identifier":{"type":"dns","value":"pfsense.XXXXX.net"},"status":"pending","expires":"2019-07-24T16:29:52Z","challenges":[{"type":"tls-alpn-01","status":"pending","uri":"https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====","token":"=====TEXT STRING====="},{"type":"dns-01","status":"pending","uri":"https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====","token":"=====TEXT STRING====="},{"type":"http-01","status":"pending","uri":"https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====","token":"=====TEXT STRING====="}],"combinations":[[0],[1],[2]]}'
[Wed Jul 17 11:29:52 CDT 2019] The new-authz request is ok.
[Wed Jul 17 11:29:52 CDT 2019] base64 single line.
[Wed Jul 17 11:29:52 CDT 2019] entry='"type":"dns-01","status":"pending","uri":"https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====","token":"=====TEXT STRING====="'
[Wed Jul 17 11:29:52 CDT 2019] token='=====TEXT STRING====='
[Wed Jul 17 11:29:52 CDT 2019] uri='https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING====='
[Wed Jul 17 11:29:52 CDT 2019] keyauthorization='=====TEXT STRING====='
[Wed Jul 17 11:29:52 CDT 2019] dvlist='pfsense.XXXXX.net#=====TEXT STRING=====#https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====#dns-01#dns_namesilo'
[Wed Jul 17 11:29:52 CDT 2019] d
[Wed Jul 17 11:29:52 CDT 2019] vlist='pfsense.XXXXX.net#=====TEXT STRING=====#https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====#dns-01#dns_namesilo,'
[Wed Jul 17 11:29:52 CDT 2019] d='pfsense.XXXXX.net'
[Wed Jul 17 11:29:52 CDT 2019] _d_alias
[Wed Jul 17 11:29:52 CDT 2019] txtdomain='_acme-challenge.pfsense.XXXXX.net'
[Wed Jul 17 11:29:52 CDT 2019] base64 single line.
[Wed Jul 17 11:29:52 CDT 2019] txt='=====TEXT STRING====='
[Wed Jul 17 11:29:52 CDT 2019] d_api='/usr/local/pkg/acme/dnsapi/dns_namesilo.sh'
[Wed Jul 17 11:29:52 CDT 2019] dns_entry='pfsense.XXXXX.net,_acme-challenge.pfsense.XXXXX.net,,dns_namesilo,=====TEXT STRING=====,/usr/local/pkg/acme/dnsapi/dns_namesilo.sh'
[Wed Jul 17 11:29:52 CDT 2019] Found domain api file: /usr/local/pkg/acme/dnsapi/dns_namesilo.sh
[Wed Jul 17 11:29:52 CDT 2019] dns_namesilo_add exists=0
[Wed Jul 17 11:29:52 CDT 2019] APP
[Wed Jul 17 11:29:52 CDT 2019] 5:Namesilo_Key='=====TEXT STRING====='
[Wed Jul 17 11:29:52 CDT 2019] GET
[Wed Jul 17 11:29:52 CDT 2019] url='https://www.namesilo.com/api/listDomains?version=1&type=xml&key======TEXT STRING====='
[Wed Jul 17 11:29:52 CDT 2019] timeout=
[Wed Jul 17 11:29:52 CDT 2019] curl exists=0
[Wed Jul 17 11:29:52 CDT 2019] wget exists=127
[Wed Jul 17 11:29:52 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:29:53 CDT 2019] ret='0'
[Wed Jul 17 11:29:53 CDT 2019] response='<?xml version="1.0"?>
<namesilo><request><operation>listDomains</operation><ip>XXX.XXX.XXX.XXX</ip></request><reply><code>300</code><detail>success</detail><domains><domain>XXXXX.net</domain></domains></reply></namesilo>'
[Wed Jul 17 11:29:53 CDT 2019] host='pfsense.XXXXX.net'
[Wed Jul 17 11:29:53 CDT 2019] host='XXXXX.net'
[Wed Jul 17 11:29:53 CDT 2019] _sub_domain='_acme-challenge.pfsense'
[Wed Jul 17 11:29:53 CDT 2019] _domain='XXXXX.net'
[Wed Jul 17 11:29:53 CDT 2019] txtvalue='=====TEXT STRING====='
[Wed Jul 17 11:29:53 CDT 2019] GET
[Wed Jul 17 11:29:53 CDT 2019] url='https://www.namesilo.com/api/dnsAddRecord?version=1&type=xml&key======TEXT STRING=====&domain=XXXXX.net&rrtype=TXT&rrhost=_acme-challenge.pfsense&rrvalue======TEXT STRING====='
[Wed Jul 17 11:29:53 CDT 2019] timeout=
[Wed Jul 17 11:29:53 CDT 2019] curl exists=0
[Wed Jul 17 11:29:53 CDT 2019] wget exists=127
[Wed Jul 17 11:29:53 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:29:53 CDT 2019] ret='0'
[Wed Jul 17 11:29:53 CDT 2019] response='<?xml version="1.0"?>
<namesilo><request><operation>dnsAddRecord</operation><ip>XXX.XXX.XXX.XXX</ip></request><reply><code>300</code><detail>success</detail><record_id>=====TEXT STRING=====</record_id></reply></namesilo>'
[Wed Jul 17 11:29:53 CDT 2019] Successfully added TXT record, ready for validation.
[Wed Jul 17 11:29:53 CDT 2019] pfsense.XXXXX.net,_acme-challenge.pfsense.XXXXX.net,,dns_namesilo,=====TEXT STRING=====,/usr/local/pkg/acme/dnsapi/dns_namesilo.sh

[Wed Jul 17 11:29:53 CDT 2019] OK
[Wed Jul 17 11:29:53 CDT 2019] 9:Le_DNSSleep='120'
[Wed Jul 17 11:29:53 CDT 2019] Sleep 120 seconds for the txt records to take effect
[Wed Jul 17 11:31:53 CDT 2019] ok, let's start to verify
[Wed Jul 17 11:31:53 CDT 2019] Verifying: pfsense.XXXXX.net
[Wed Jul 17 11:31:53 CDT 2019] d='pfsense.XXXXX.net'
[Wed Jul 17 11:31:53 CDT 2019] keyauthorization='=====TEXT STRING====='
[Wed Jul 17 11:31:53 CDT 2019] uri='https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING====='
[Wed Jul 17 11:31:53 CDT 2019] _currentRoot='dns_namesilo'
[Wed Jul 17 11:31:53 CDT 2019] Trigger domain validation.
[Wed Jul 17 11:31:53 CDT 2019] _t_url='https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING====='
[Wed Jul 17 11:31:53 CDT 2019] _t_key_authz='=====TEXT STRING====='
[Wed Jul 17 11:31:53 CDT 2019] _t_vtype='dns-01'
[Wed Jul 17 11:31:53 CDT 2019] url='https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING====='
[Wed Jul 17 11:31:53 CDT 2019] payload='{"resource": "challenge", "type": "dns-01", "keyAuthorization": "=====TEXT STRING====="}'
[Wed Jul 17 11:31:53 CDT 2019] Use cached jwk for file: /tmp/acme/XXXXX.NET_PFSENSE_TEST//ca/acme-staging.api.letsencrypt.org/account.key
[Wed Jul 17 11:31:53 CDT 2019] base64 single line.
[Wed Jul 17 11:31:53 CDT 2019] payload64='=====TEXT STRING====='
[Wed Jul 17 11:31:53 CDT 2019] _request_retry_times='1'
[Wed Jul 17 11:31:53 CDT 2019] Use _CACHED_NONCE='=====TEXT STRING====='
[Wed Jul 17 11:31:53 CDT 2019] nonce='=====TEXT STRING====='
[Wed Jul 17 11:31:53 CDT 2019] protected='{"nonce": "=====TEXT STRING=====", "url": "https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====", "alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "=====GIANT TEXT STRING====="}}'
[Wed Jul 17 11:31:53 CDT 2019] base64 single line.
[Wed Jul 17 11:31:53 CDT 2019] protected64='=====GIANT TEXT STRING====='
[Wed Jul 17 11:31:53 CDT 2019] base64 single line.
[Wed Jul 17 11:31:54 CDT 2019] _sig_t='=====GIANT TEXT STRING====='
[Wed Jul 17 11:31:54 CDT 2019] sig='=====GIANT TEXT STRING====='
[Wed Jul 17 11:31:54 CDT 2019] body='{"protected": "=====GIANT TEXT STRING=====", "payload": "=====GIANT TEXT STRING====="}'
[Wed Jul 17 11:31:54 CDT 2019] POST
[Wed Jul 17 11:31:54 CDT 2019] _post_url='https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING====='
[Wed Jul 17 11:31:54 CDT 2019] body='{"protected": "=====GIANT TEXT STRING=====", "payload": "=====GIANT TEXT STRING====="}'
[Wed Jul 17 11:31:54 CDT 2019] _postContentType='application/jose+json'
[Wed Jul 17 11:31:54 CDT 2019] curl exists=0
[Wed Jul 17 11:31:54 CDT 2019] wget exists=127
[Wed Jul 17 11:31:54 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:31:54 CDT 2019] _ret='0'
[Wed Jul 17 11:31:54 CDT 2019] responseHeaders='HTTP/1.1 100 Continue
Expires: Wed, 17 Jul 2019 16:31:54 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 338
Boulder-Requester: 10032407
Link: <https://acme-staging.api.letsencrypt.org/acme/authz/=====TEXT STRING=====>;rel="up"
Location: https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====
Replay-Nonce: =====TEXT STRING=====
Expires: Wed, 17 Jul 2019 16:31:54 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 17 Jul 2019 16:31:54 GMT
Connection: keep-alive
'
[Wed Jul 17 11:31:54 CDT 2019] code='202'
[Wed Jul 17 11:31:54 CDT 2019] original='{
  "type": "dns-01",
  "status": "pending",
  "uri": "https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====",
  "token": "=====TEXT STRING=====",
  "keyAuthorization": "=====TEXT STRING====="
}'
[Wed Jul 17 11:31:54 CDT 2019] response='{"type":"dns-01","status":"pending","uri":"https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====","token":"=====TEXT STRING=====","keyAuthorization":"=====GIANT TEXT STRING====="}'
[Wed Jul 17 11:31:54 CDT 2019] sleep 2 secs to verify
[Wed Jul 17 11:31:56 CDT 2019] checking
[Wed Jul 17 11:31:56 CDT 2019] GET
[Wed Jul 17 11:31:56 CDT 2019] url='https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING====='
[Wed Jul 17 11:31:56 CDT 2019] timeout=
[Wed Jul 17 11:31:56 CDT 2019] curl exists=0
[Wed Jul 17 11:31:56 CDT 2019] wget exists=127
[Wed Jul 17 11:31:56 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:31:57 CDT 2019] ret='0'
[Wed Jul 17 11:31:57 CDT 2019] original='{
  "type": "dns-01",
  "status": "invalid",
  "error": {
    "type": "urn:acme:error:dns",
    "detail": "DNS problem: NXDOMAIN looking up TXT for _acme-challenge.pfsense.XXXXX.net",
    "status": 400
  },
  "uri": "https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====",
  "token": "=====TEXT STRING====="
}'
[Wed Jul 17 11:31:57 CDT 2019] response='{"type":"dns-01","status":"invalid","error":{"type":"urn:acme:error:dns","detail":"DNS problem: NXDOMAIN looking up TXT for _acme-challenge.pfsense.XXXXX.net","status": 400},"uri":"https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====","token":"=====TEXT STRING====="}'
[Wed Jul 17 11:31:57 CDT 2019] error='"error":{"type":"urn:acme:error:dns","detail":"DNS problem: NXDOMAIN looking up TXT for _acme-challenge.pfsense.XXXXX.net","status": 400'
[Wed Jul 17 11:31:57 CDT 2019] errordetail='DNS problem: NXDOMAIN looking up TXT for _acme-challenge.pfsense.XXXXX.net'
[Wed Jul 17 11:31:57 CDT 2019] pfsense.XXXXX.net:Verify error:DNS problem: NXDOMAIN looking up TXT for _acme-challenge.pfsense.XXXXX.net
[Wed Jul 17 11:31:57 CDT 2019] h_api='/usr/local/pkg/acme/dnsapi/dns_namesilo.sh'
[Wed Jul 17 11:31:57 CDT 2019] Found domain http api file: /usr/local/pkg/acme/dnsapi/dns_namesilo.sh
[Wed Jul 17 11:31:57 CDT 2019] dns_namesilo_rm exists=0
[Wed Jul 17 11:31:57 CDT 2019] GET
[Wed Jul 17 11:31:57 CDT 2019] url='https://www.namesilo.com/api/listDomains?version=1&type=xml&key======TEXT STRING====='
[Wed Jul 17 11:31:57 CDT 2019] timeout=
[Wed Jul 17 11:31:57 CDT 2019] curl exists=0
[Wed Jul 17 11:31:57 CDT 2019] wget exists=127
[Wed Jul 17 11:31:57 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:31:57 CDT 2019] ret='0'
[Wed Jul 17 11:31:57 CDT 2019] response='<?xml version="1.0"?>
<namesilo><request><operation>listDomains</operation><ip>XXX.XXX.XXX.XXX</ip></request><reply><code>300</code><detail>success</detail><domains><domain>XXXXX.net</domain></domains></reply></namesilo>'
[Wed Jul 17 11:31:57 CDT 2019] host='XXXXX.net'
[Wed Jul 17 11:31:57 CDT 2019] GET
[Wed Jul 17 11:31:57 CDT 2019] url='https://www.namesilo.com/api/dnsListRecords?version=1&type=xml&key======TEXT STRING=====&domain=XXXXX.net'
[Wed Jul 17 11:31:57 CDT 2019] timeout=
[Wed Jul 17 11:31:57 CDT 2019] curl exists=0
[Wed Jul 17 11:31:57 CDT 2019] wget exists=127
[Wed Jul 17 11:31:57 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:31:58 CDT 2019] ret='0'
[Wed Jul 17 11:31:58 CDT 2019] response='<?xml version="1.0"?>
<namesilo><request><operation>dnsListRecords</operation><ip>XXX.XXX.XXX.XXX</ip></request><reply><code>300</code><detail>success</detail><resource_record><record_id>=====TEXT STRING=====</record_id><type>A</type><host>XXXXX.net</host><value>XXX.XXX.XXX.XXX</value><ttl>172816</ttl><distance>0</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>A</type><host>XXXXX.net</host><value>XXX.XXX.XXX.XXX</value><ttl>172816</ttl><distance>0</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>A</type><host>XXXXX.net</host><value>XXX.XXX.XXX.XXX</value><ttl>172816</ttl><distance>0</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>CNAME</type><host>www.XXXXX.net</host><value>parking.namesilo.com</value><ttl>172816</ttl><distance>0</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>MX</type><host>XXXXX.net</host><value>mx1.emailowl.com</value><ttl>172817</ttl><distance>10</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>MX</type><host>XXXXX.net</host><value>mx2.emailowl.com</value><ttl>172817</ttl><distance>10</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>MX</type><host>XXXXX.net</host><value>mx3.emailowl.com</value><ttl>172817</ttl><distance>10</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>TXT</type><host>_acme-challenge.pfsense.XXXXX.net</host><value>=====TEXT STRING=====</value><ttl>7200</ttl><distance>0</distance></resource_record></reply></namesilo>'
[Wed Jul 17 11:31:58 CDT 2019] record_id
[Wed Jul 17 11:31:58 CDT 2019] Successfully retrieved the record id for ACME challenge.
[Wed Jul 17 11:31:58 CDT 2019] GET
[Wed Jul 17 11:31:58 CDT 2019] url='https://www.namesilo.com/api/dnsDeleteRecord?version=1&type=xml&key=1=====TEXT STRING=====&domain=XXXXX.net&rrid='
[Wed Jul 17 11:31:58 CDT 2019] timeout=
[Wed Jul 17 11:31:58 CDT 2019] curl exists=0
[Wed Jul 17 11:31:58 CDT 2019] wget exists=127
[Wed Jul 17 11:31:58 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:31:59 CDT 2019] ret='0'
[Wed Jul 17 11:31:59 CDT 2019] response='<?xml version="1.0"?>
<namesilo><request><operation>dnsDeleteRecord</operation><ip>XXX.XXX.XXX.XXX</ip></request><reply><code>108</code><detail>Missing parameters for the specified operation</detail></reply></namesilo>'
[Wed Jul 17 11:31:59 CDT 2019] Unable to remove the DNS record.
[Wed Jul 17 11:31:59 CDT 2019] Error rm webroot api for domain:dns_namesilo
[Wed Jul 17 11:31:59 CDT 2019] pid
[Wed Jul 17 11:31:59 CDT 2019] No need to restore nginx, skip.
[Wed Jul 17 11:31:59 CDT 2019] _clearupdns
[Wed Jul 17 11:31:59 CDT 2019] dns_entries='pfsense.XXXXX.net,_acme-challenge.pfsense.XXXXX.net,,dns_namesilo,=====TEXT STRING=====,/usr/local/pkg/acme/dnsapi/dns_namesilo.sh
'
[Wed Jul 17 11:31:59 CDT 2019] Removing DNS records.
[Wed Jul 17 11:31:59 CDT 2019] d='pfsense.XXXXX.net'
[Wed Jul 17 11:31:59 CDT 2019] txtdomain='_acme-challenge.pfsense.XXXXX.net'
[Wed Jul 17 11:31:59 CDT 2019] aliasDomain='_acme-challenge.pfsense.XXXXX.net'
[Wed Jul 17 11:31:59 CDT 2019] txt='=====TEXT STRING====='
[Wed Jul 17 11:31:59 CDT 2019] d_api='/usr/local/pkg/acme/dnsapi/dns_namesilo.sh'
[Wed Jul 17 11:31:59 CDT 2019] dns_namesilo_rm exists=0
[Wed Jul 17 11:31:59 CDT 2019] GET
[Wed Jul 17 11:31:59 CDT 2019] url='https://www.namesilo.com/api/listDomains?version=1&type=xml&key======TEXT STRING====='
[Wed Jul 17 11:31:59 CDT 2019] timeout=
[Wed Jul 17 11:31:59 CDT 2019] curl exists=0
[Wed Jul 17 11:31:59 CDT 2019] wget exists=127
[Wed Jul 17 11:31:59 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:31:59 CDT 2019] ret='0'
[Wed Jul 17 11:31:59 CDT 2019] response='<?xml version="1.0"?>
<namesilo><request><operation>listDomains</operation><ip>XXX.XXX.XXX.XXX</ip></request><reply><code>300</code><detail>success</detail><domains><domain>XXXXX.net</domain></domains></reply></namesilo>'
[Wed Jul 17 11:31:59 CDT 2019] host='pfsense.XXXXX.net'
[Wed Jul 17 11:31:59 CDT 2019] host='XXXXX.net'
[Wed Jul 17 11:31:59 CDT 2019] GET
[Wed Jul 17 11:31:59 CDT 2019] url='https://www.namesilo.com/api/dnsListRecords?version=1&type=xml&key======TEXT STRING=====&domain=XXXXX.net'
[Wed Jul 17 11:31:59 CDT 2019] timeout=
[Wed Jul 17 11:31:59 CDT 2019] curl exists=0
[Wed Jul 17 11:31:59 CDT 2019] wget exists=127
[Wed Jul 17 11:31:59 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:32:00 CDT 2019] ret='0'
[Wed Jul 17 11:32:00 CDT 2019] response='<?xml version="1.0"?>
<namesilo><request><operation>dnsListRecords</operation><ip>XXX.XXX.XXX.XXX</ip></request><reply><code>300</code><detail>success</detail><resource_record><record_id>=====TEXT STRING=====</record_id><type>A</type><host>XXXXX.net</host><value>XXX.XXX.XXX.XXX</value><ttl>172816</ttl><distance>0</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>A</type><host>XXXXX.net</host><value>XXX.XXX.XXX.XXX</value><ttl>172816</ttl><distance>0</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>A</type><host>XXXXX.net</host><value>XXX.XXX.XXX.XXX</value><ttl>172816</ttl><distance>0</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>CNAME</type><host>www.XXXXX.net</host><value>parking.namesilo.com</value><ttl>172816</ttl><distance>0</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>MX</type><host>XXXXX.net</host><value>mx1.emailowl.com</value><ttl>172817</ttl><distance>10</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>MX</type><host>XXXXX.net</host><value>mx2.emailowl.com</value><ttl>172817</ttl><distance>10</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>MX</type><host>XXXXX.net</host><value>mx3.emailowl.com</value><ttl>172817</ttl><distance>10</distance></resource_record><resource_record><record_id>=====TEXT STRING=====</record_id><type>TXT</type><host>_acme-challenge.pfsense.XXXXX.net</host><value>=====TEXT STRING=====</value><ttl>7200</ttl><distance>0</distance></resource_record></reply></namesilo>'
[Wed Jul 17 11:32:00 CDT 2019] record_id='=====TEXT STRING====='
[Wed Jul 17 11:32:00 CDT 2019] Successfully retrieved the record id for ACME challenge.
[Wed Jul 17 11:32:00 CDT 2019] GET
[Wed Jul 17 11:32:00 CDT 2019] url='https://www.namesilo.com/api/dnsDeleteRecord?version=1&type=xml&key======TEXT STRING==========TEXT STRING=====&domain=XXXXX.net&rrid======TEXT STRING====='
[Wed Jul 17 11:32:00 CDT 2019] timeout=
[Wed Jul 17 11:32:00 CDT 2019] curl exists=0
[Wed Jul 17 11:32:00 CDT 2019] wget exists=127
[Wed Jul 17 11:32:00 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:32:01 CDT 2019] ret='0'
[Wed Jul 17 11:32:01 CDT 2019] response='<?xml version="1.0"?>
<namesilo><request><operation>dnsDeleteRecord</operation><ip>XXX.XXX.XXX.XXX</ip></request><reply><code>300</code><detail>success</detail></reply></namesilo>'
[Wed Jul 17 11:32:01 CDT 2019] Successfully removed the TXT record.
[Wed Jul 17 11:32:01 CDT 2019] _on_issue_err
[Wed Jul 17 11:32:01 CDT 2019] Please check log file for more details: /tmp/acme/XXXXX.NET_PFSENSE_TEST/acme_issuecert.log
[Wed Jul 17 11:32:01 CDT 2019] _chk_vlist='pfsense.XXXXX.net#=====TEXT STRING=====#https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====#dns-01#dns_namesilo,'
[Wed Jul 17 11:32:01 CDT 2019] start to deactivate authz
[Wed Jul 17 11:32:01 CDT 2019] Trigger domain validation.
[Wed Jul 17 11:32:01 CDT 2019] _t_url='https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] _t_key_authz='=====TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] _t_vtype
[Wed Jul 17 11:32:01 CDT 2019] url='https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] payload='{"resource": "challenge", "type": "", "keyAuthorization": "=====TEXT STRING====="}'
[Wed Jul 17 11:32:01 CDT 2019] Use cached jwk for file: /tmp/acme/XXXXX.NET_PFSENSE_TEST//ca/acme-staging.api.letsencrypt.org/account.key
[Wed Jul 17 11:32:01 CDT 2019] base64 single line.
[Wed Jul 17 11:32:01 CDT 2019] payload64='=====TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] _request_retry_times='1'
[Wed Jul 17 11:32:01 CDT 2019] Use _CACHED_NONCE='=====TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] nonce='=====TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] protected='{"nonce": "=====TEXT STRING=====", "url": "https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING=====", "alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "=====GIANT TEXT STRING====="}}'
[Wed Jul 17 11:32:01 CDT 2019] base64 single line.
[Wed Jul 17 11:32:01 CDT 2019] protected64='=====GIANT TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] base64 single line.
[Wed Jul 17 11:32:01 CDT 2019] _sig_t='=====GIANT TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] sig='=====GIANT TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] body='{"protected": "=====GIANT TEXT STRING=====", "payload": "=====TEXT STRING=====", "signature": "=====GIANT TEXT STRING====="}'
[Wed Jul 17 11:32:01 CDT 2019] POST
[Wed Jul 17 11:32:01 CDT 2019] _post_url='https://acme-staging.api.letsencrypt.org/acme/challenge/=====TEXT STRING====='
[Wed Jul 17 11:32:01 CDT 2019] body='{"protected": "=====GIANT TEXT STRING=====", "payload": "=====TEXT STRING=====", "signature": "=====GIANT TEXT STRING====="}'
[Wed Jul 17 11:32:01 CDT 2019] _postContentType='application/jose+json'
[Wed Jul 17 11:32:01 CDT 2019] curl exists=0
[Wed Jul 17 11:32:01 CDT 2019] wget exists=127
[Wed Jul 17 11:32:01 CDT 2019] _CURL='curl -L --silent --dump-header /tmp/acme/XXXXX.NET_PFSENSE_TEST//http.header  -g '
[Wed Jul 17 11:32:02 CDT 2019] _ret='0'
[Wed Jul 17 11:32:02 CDT 2019] responseHeaders='HTTP/1.1 100 Continue
Expires: Wed, 17 Jul 2019 16:32:02 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: application/problem+json
Content-Length: 148
Boulder-Requester: 10032407
Replay-Nonce: =====TEXT STRING=====
Expires: Wed, 17 Jul 2019 16:32:02 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 17 Jul 2019 16:32:02 GMT
Connection: close
'
[Wed Jul 17 11:32:02 CDT 2019] code='400'
[Wed Jul 17 11:32:02 CDT 2019] original='{
  "type": "urn:acme:error:malformed",
  "detail": "Unable to perform validation for challenge :: authorization must be pending",
  "status": 400
}'
[Wed Jul 17 11:32:02 CDT 2019] response='{
  "type": "urn:acme:error:malformed",
  "detail": "Unable to perform validation for challenge :: authorization must be pending",
  "status": 400
}'

Jethro95 commented 5 years ago

Sorry - Did not mean to Close this.

Neilpang commented 5 years ago

there is no such error in your log.

please use dns sleep at least 900 seconds:

--dnssleep 900

Because namesilo propagates dns records every 15 minutes.

Jethro95 commented 5 years ago

Thanks. That made it work.

acmesh-official / acme.sh

DNS-Namesilo method script error #2391