starred/dehydrated
1
0
Fork 0
mirror of https://github.com/dehydrated-io/dehydrated.git synced 2026-01-14 07:33:34 +01:00
Code Issues 79 Packages Projects Releases 10 Wiki Activity

Challenge validation has failed #530

New Issue
Closed
opened 2025-12-29 01:26:50 +01:00 by adam · 5 comments
adam commented 2025-12-29 01:26:50 +01:00
Owner
Copy Link

Originally created by @kshah37 on GitHub (Apr 19, 2021).

Hi, I am trying to renewing my let's encrypt dehydrated certificated by running ./letsencrypt .sh script.

But, It gives me this error. Some how it's not putting the validating challenge in to the directory. So it gives me http-01 error.

root@fusionpbx:/usr/src/fusionpbx-install.sh/debian/resources# ./letsencrypt.sh
Domain Name: lab.smartipcloud.com
Email Address: tfernnadez@smartip.ca
fatal: destination path 'dehydrated' already exists and is not an empty directory.

INFO: Using main config file /etc/dehydrated/config

  • Account already registered!

INFO: Using main config file /etc/dehydrated/config

Processing lab.smartipcloud.com

Does anyone have the same issue?

Originally created by @kshah37 on GitHub (Apr 19, 2021). Hi, I am trying to renewing my let's encrypt dehydrated certificated by running ./letsencrypt .sh script. But, It gives me this error. Some how it's not putting the validating challenge in to the directory. So it gives me http-01 error. root@fusionpbx:/usr/src/fusionpbx-install.sh/debian/resources# ./letsencrypt.sh Domain Name: lab.smartipcloud.com Email Address: tfernnadez@smartip.ca fatal: destination path 'dehydrated' already exists and is not an empty directory. # INFO: Using main config file /etc/dehydrated/config + Account already registered! # INFO: Using main config file /etc/dehydrated/config Processing lab.smartipcloud.com + Checking domain name(s) of existing cert... unchanged. + Checking expire date of existing cert... + Valid till May 3 12:38:03 2021 GMT (Less than 30 days). Renewing! + Signing domains... + Generating private key... + Generating signing request... + Requesting new certificate order from CA... + Received 1 authorizations URLs from the CA + Handling authorization for lab.smartipcloud.com + 1 pending challenge(s) + Deploying challenge tokens... + Responding to challenge for lab.smartipcloud.com authorization... + Cleaning challenge tokens... + Challenge validation has failed :( ERROR: Challenge is invalid! (returned: invalid) (result: ["type"] "http-01" ["status"] "invalid" ["error","type"] "urn:ietf:params:acme:error:connection" ["error","detail"] "Fetching http://lab.smartipcloud.com/.well-known/acme-challenge/fldIKdGzgAEWBsKn0UVC4Q_fwk3zrq8o8QUg2cTrfqU: Timeout during connect (likely firewall problem)" ["error","status"] 400 ["error"] {"type":"urn:ietf:params:acme:error:connection","detail":"Fetching http://lab.smartipcloud.com/.well-known/acme-challenge/fldIKdGzgAEWBsKn0UVC4Q_fwk3zrq8o8QUg2cTrfqU: Timeout during connect (likely firewall problem)","status":400} ["url"] "https://acme-v02.api.letsencrypt.org/acme/chall-v3/12460660075/zDKxIw" ["token"] "fldIKdGzgAEWBsKn0UVC4Q_fwk3zrq8o8QUg2cTrfqU" ["validationRecord",0,"url"] "http://lab.smartipcloud.com/.well-known/acme-challenge/fldIKdGzgAEWBsKn0UVC4Q_fwk3zrq8o8QUg2cTrfqU" ["validationRecord",0,"hostname"] "lab.smartipcloud.com" ["validationRecord",0,"port"] "80" ["validationRecord",0,"addressesResolved",0] "159.203.20.180" ["validationRecord",0,"addressesResolved"] ["159.203.20.180"] ["validationRecord",0,"addressUsed"] "159.203.20.180" ["validationRecord",0] {"url":"http://lab.smartipcloud.com/.well-known/acme-challenge/fldIKdGzgAEWBsKn0UVC4Q_fwk3zrq8o8QUg2cTrfqU","hostname":"lab.smartipcloud.com","port":"80","addressesResolved":["159.203.20.180"],"addressUsed":"159.203.20.180"} ["validationRecord"] [{"url":"http://lab.smartipcloud.com/.well-known/acme-challenge/fldIKdGzgAEWBsKn0UVC4Q_fwk3zrq8o8QUg2cTrfqU","hostname":"lab.smartipcloud.com","port":"80","addressesResolved":["159.203.20.180"],"addressUsed":"159.203.20.180"}] ["validated"] "2021-04-19T14:59:34Z") nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful Does anyone have the same issue?
adam closed this issue 2025-12-29 01:26:50 +01:00
adam commented 2025-12-29 01:26:51 +01:00
Author
Owner
Copy Link

@KamilKeski commented on GitHub (Apr 19, 2021):

Your endpoint is returning a 400. Impossible to troubleshoot that without knowledge of the setup. I would dig into why you are returning a 400

["error","detail"] "Fetching http://lab.smartipcloud.com/.well-known/acme-challenge/fldIKdGzgAEWBsKn0UVC4Q_fwk3zrq8o8QUg2cTrfqU: Timeout during connect (likely firewall problem)"
["error","status"] 400

If it can't place the challenge in your dir you should be checking folder permissions against the user you are running dehydrated as.

@KamilKeski commented on GitHub (Apr 19, 2021): Your endpoint is returning a 400. Impossible to troubleshoot that without knowledge of the setup. I would dig into why you are returning a 400 ["error","detail"] "Fetching http://lab.smartipcloud.com/.well-known/acme-challenge/fldIKdGzgAEWBsKn0UVC4Q_fwk3zrq8o8QUg2cTrfqU: Timeout during connect (likely firewall problem)" ["error","status"] 400 If it can't place the challenge in your dir you should be checking folder permissions against the user you are running dehydrated as.
adam commented 2025-12-29 01:26:51 +01:00
Author
Owner
Copy Link

@jobe1986 commented on GitHub (Apr 19, 2021):

I get a timeout attempting to connect to the httpd on lab.smartipcloud.com so can only conclude that either connections to ports 80 and 443 are blocked by your firewall, or there is no httpd running.

@jobe1986 commented on GitHub (Apr 19, 2021): I get a timeout attempting to connect to the httpd on lab.smartipcloud.com so can only conclude that either connections to ports 80 and 443 are blocked by your firewall, or there is no httpd running.
adam commented 2025-12-29 01:26:51 +01:00
Author
Owner
Copy Link

@kshah37 commented on GitHub (Apr 19, 2021):

I tried to put test file "Index.txt" in the same directory (/var/www/dehydrated) and it worked. I was able to get the file.
https://lab.smartipcloud.com/.well-known/acme-challenge/index.txt
I also double checked my firewall .

@kshah37 commented on GitHub (Apr 19, 2021): I tried to put test file "Index.txt" in the same directory (/var/www/dehydrated) and it worked. I was able to get the file. https://lab.smartipcloud.com/.well-known/acme-challenge/index.txt I also double checked my firewall .
adam commented 2025-12-29 01:26:51 +01:00
Author
Owner
Copy Link

@KamilKeski commented on GitHub (Apr 19, 2021):

No one from the outside can reach lab.smartipcloud.com. Unless you are whitelisting only letsencrypt source ip's it looks like you are blocking all external traffic atm. I'd recommend you open to 0.0.0.0, verify it's accessible. Sort your renewal, verify success. Then pair down your access if needed.

@KamilKeski commented on GitHub (Apr 19, 2021): No one from the outside can reach lab.smartipcloud.com. Unless you are whitelisting only letsencrypt source ip's it looks like you are blocking all external traffic atm. I'd recommend you open to 0.0.0.0, verify it's accessible. Sort your renewal, verify success. Then pair down your access if needed.
adam commented 2025-12-29 01:26:52 +01:00
Author
Owner
Copy Link

@kshah37 commented on GitHub (Apr 19, 2021):

I made these two changes and it worked. Thank you all for your support

  1. There was extra space on my domain.txt file.
  2. I opened 443 port .
@kshah37 commented on GitHub (Apr 19, 2021): I made these two changes and it worked. Thank you all for your support 1. There was extra space on my domain.txt file. 2. I opened 443 port .
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Complicated
bug
enhancement
help wanted
pull-request
Mirrored from GitHub Pull Request
 suggestions wanted
testing
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
adam
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/dehydrated#530
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?