wolfhnhn
commented
8 months ago 看了下日志和目录里的证书文件,好像是只更新了ECC证书,但是安装的好像还是没有更新的RSA证书。。。
Open wolfhnhn opened 8 months ago
wolfhnhn
commented
8 months ago 看了下日志和目录里的证书文件,好像是只更新了ECC证书,但是安装的好像还是没有更新的RSA证书。。。
wolfhnhn
commented
8 months ago 又查看了acme.sh的log,看到有一条[Mon Jan 22 18:07:05 CST 2024] DOMAIN_PATH='/volume1/web/syno-acme/acme.sh/AAAAAA.AAA'记录,想着试试看,打开acme.sh,找到2891行,修改DOMAIN_PATH="$domainhome"为DOMAIN_PATH="$domainhomeecc",再次运行更新,问题解决了
begin update cert ------ begin updateCrt ------ begin backupCrt done backupCrt unable to get new version number begin generateCrt begin updating default cert by acme.sh tool [Mon Jan 22 16:54:29 CST 2024] Using CA: https://acme-v02.api.letsencrypt.org/directory [Mon Jan 22 16:54:29 CST 2024] Multi domain='DNS:AAAAA.AAA,DNS:.AAAAA.AAA' [Mon Jan 22 16:54:29 CST 2024] Getting domain auth token for each domain [Mon Jan 22 16:54:49 CST 2024] Getting webroot for domain='AAAAA.AAA' [Mon Jan 22 16:54:49 CST 2024] Getting webroot for domain='.AAAAA.AAA' [Mon Jan 22 16:54:49 CST 2024] AAAAA.AAA is already verified, skip dns-01. [Mon Jan 22 16:54:49 CST 2024] .AAAAA.AAA is already verified, skip dns-01. [Mon Jan 22 16:54:50 CST 2024] Verify finished, start to sign. [Mon Jan 22 16:54:50 CST 2024] Lets finalize the order. [Mon Jan 22 16:54:50 CST 2024] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/xxxxxx/xxxxxxx' [Mon Jan 22 16:54:55 CST 2024] Downloading cert. [Mon Jan 22 16:54:55 CST 2024] Le_LinkCert='https://acme-v02.api.letsencrypt.org/acme/cert/xxxxxxxxxxxxxxxxxxxx' [Mon Jan 22 16:54:58 CST 2024] Cert success. -----BEGIN CERTIFICATE----- XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX mpD14fuM6jLVuLlAUsQ= -----END CERTIFICATE----- [Mon Jan 22 16:54:58 CST 2024] Your cert is in: /volume1/web/syno-acme/acme.sh/AAAAA.AAA_ecc/AAAAA.AAA.cer [Mon Jan 22 16:54:58 CST 2024] Your cert key is in: /volume1/web/syno-acme/acme.sh/AAAAA.AAA_ecc/AAAAA.AAA.key [Mon Jan 22 16:54:58 CST 2024] The intermediate CA cert is in: /volume1/web/syno-acme/acme.sh/AAAAA.AAA_ecc/ca.cer [Mon Jan 22 16:54:58 CST 2024] And the full chain certs is there: /volume1/web/syno-acme/acme.sh/AAAAA.AAA_ecc/fullchain.cer [Mon Jan 22 16:54:59 CST 2024] Installing cert to: /usr/syno/etc/certificate/_archive/iBnjtM/cert.pem [Mon Jan 22 16:54:59 CST 2024] Installing key to: /usr/syno/etc/certificate/_archive/iBnjtM/privkey.pem [Mon Jan 22 16:54:59 CST 2024] Installing full chain to: /usr/syno/etc/certificate/_archive/iBnjtM/fullchain.pem done generateCrt begin updateService cp cert path to des Copy cert for FTPS Copy cert for DSM Desktop Service Copy cert for Log Receiving Copy cert for Synology Drive Server Copy cert for :111111 done updateService begin reloadWebService reloading new cert... alias-register stop/waiting relading Apache 2.2 stop: Unknown job: pkg-apache22 start: Unknown job: pkg-apache22 reload: Unknown job: pkg-apache22 done reloadWebService ------ end updateCrt ------
看起来是更新了证书,但是怎么不安装呢?