search

acmesh-official / acme.sh

A pure Unix shell script implementing ACME client protocol
https://acme.sh
GNU General Public License v3.0
39.34k stars 4.97k forks source link

Error add txt for domain:_acme-challenge.* || socat doesn't exist #3872

Open zuozhehao opened 2 years ago

zuozhehao commented 2 years ago

Steps to reproduce

Debug log

acme.sh --server letsencrypt --issue --dns dns_dp --log --challenge-alias domain.top -d domain.com,*.domain.com,*.sub1.domain.com,*.sub2.domain.com
[Wed Jan  5 17:02:46 CST 2022] POST
[Wed Jan  5 17:02:46 CST 2022] _post_url='https://dnsapi.cn/Record.Create'
[Wed Jan  5 17:02:46 CST 2022] _WGET='wget -q'
[Wed Jan  5 17:02:46 CST 2022] Using sed  -i
[Wed Jan  5 17:02:46 CST 2022] _ret='0'
[Wed Jan  5 17:02:46 CST 2022] _hcode='0'
[Wed Jan  5 17:02:46 CST 2022] Error add txt for domain:_acme-challenge.*
[Wed Jan  5 17:02:46 CST 2022] _on_issue_err
[Wed Jan  5 17:02:46 CST 2022] Please check log file for more details: /root/.acme.sh/acme.sh.log

2,添加--debug 2

acme.sh --server letsencrypt --issue --dns dns_dp --log --challenge-alias domain.top -d domain.com,*.domain.com,*.sub1.domain.com,*.sub2.domain.com --debug 2

错误信息:

[Wed Jan  5 17:03:48 CST 2022] socat doesn't exist.
[Wed Jan  5 17:03:48 CST 2022] Diagnosis versions: 

socat:
[Wed Jan  5 17:03:48 CST 2022] pid
[Wed Jan  5 17:03:48 CST 2022] No need to restore nginx, skip.
[Wed Jan  5 17:03:48 CST 2022] _clearupdns
[Wed Jan  5 17:03:48 CST 2022] dns_entries
[Wed Jan  5 17:03:48 CST 2022] skip dns.

3,yum install socat

acme.sh --server letsencrypt --issue --dns dns_dp --log --challenge-alias domain.top -d domain.com,*.domain.com,*.sub1.domain.com,*.sub2.domain.com --debug 2
[Wed Jan  5 17:18:45 CST 2022] Diagnosis versions: 
openssl:openssl
OpenSSL 1.0.1e-fips 11 Feb 2013
apache:
apache doesn't exist.
nginx:
nginx version: nginx/1.14.0
built by gcc 4.4.7 20120313 (Red Hat 4.4.7-23) (GCC) 
built with OpenSSL 1.0.2o  27 Mar 2018
TLS SNI support enabled
configure arguments: 
socat:
socat by Gerhard Rieger - see www.dest-unreach.org
socat version 1.7.2.3 on Jan 29 2014 05:22:25
   running on Linux version #1 SMP Wed Aug 14 16:26:59 UTC 2019, release 2.6.32-754.18.2.el6.x86_64, machine x86_64
features:
  #define WITH_STDIO 1
  #define WITH_FDNUM 1
  #define WITH_FILE 1
  #define WITH_CREAT 1
  #define WITH_GOPEN 1
  #define WITH_TERMIOS 1
  #define WITH_PIPE 1
  #define WITH_UNIX 1
  #define WITH_ABSTRACT_UNIXSOCKET 1
  #define WITH_IP4 1
  #define WITH_IP6 1
  #define WITH_RAWIP 1
  #define WITH_GENERICSOCKET 1
  #define WITH_INTERFACE 1
  #define WITH_TCP 1
  #define WITH_UDP 1
  #define WITH_SCTP 1
  #define WITH_LISTEN 1
  #define WITH_SOCKS4 1
  #define WITH_SOCKS4A 1
  #define WITH_PROXY 1
  #define WITH_SYSTEM 1
  #define WITH_EXEC 1
  #define WITH_READLINE 1
  #define WITH_TUN 1
  #define WITH_PTY 1
  #define WITH_OPENSSL 1
  #undef WITH_FIPS
  #undef WITH_LIBWRAP
  #define WITH_SYCLS 1
  #define WITH_FILAN 1
  #define WITH_RETRY 1
  #define WITH_MSGLEVEL 0 /*debug*/
[Wed Jan  5 17:18:45 CST 2022] pid
[Wed Jan  5 17:18:45 CST 2022] No need to restore nginx, skip.
[Wed Jan  5 17:18:45 CST 2022] _clearupdns
[Wed Jan  5 17:18:45 CST 2022] dns_entries
[Wed Jan  5 17:18:45 CST 2022] skip dns.
Neilpang commented 2 years ago 
-d domain.com,*.domain.com,*.sub1.domain.com,*

不要连在一起写, 分开写:

-d domain.com  -d  '*.domain.com'  -d '*.sub1.domain.com'