ACME package version 0.6.5


  • Rebel Alliance Developer Netgate

    ACME package version 0.6.5 will be available shortly, and contains the following changes:

    • Do not show passwords and some other sensitive data in the domain list, mask password/secret fields when editing ( https://redmine.pfsense.org/issues/10227 )

    • Attempted to stop new entries and recently edited entries from picking up default values for unrelated selection lists. Possible side effect can be that older nsupdate entries may need to manually select the Key Algorithm ( https://redmine.pfsense.org/issues/9347 )

      • Fixing older entries is not so easy, but possible:
        • Edit the entry
        • Switch the method to nsupdate, then select 'None' for the Key Algorithm
        • Switch the method to NW API, then select 'None' for the API Endpoint
        • Switch the method back to whichever value it was originally and make sure the expected values are still present
        • Save
    • Standardized formatting of DNS update method names, field descriptions, and other data

    • Updated acme.sh (2.8.6)

    • Updated various references to the new GIT repository URL for acme.sh: https://github.com/acmesh-official/acme.sh

    • Added support for new DNS Providers:

      • CloudDNS
      • Constellix
      • easyDNS
      • All-inkl Kasserver
      • misaka.io
      • Plesk


  • Hi Guys

    The dns_me.sh script stopped working for me with this version of the update. I needed to revert the following line change to get it working again.

    https://github.com/acmesh-official/acme.sh/commit/eb49127b9ec75472c663eaaebb6370ab95a3f357#diff-1d0949d1b6693193da2dfdc9cca7c929

    I needed to change the script back to use the following line before it would work again (Line 117).

    _domain_id=$(printf "%s\n" "$response" | _egrep_o "\"id\":[0-9]+}$" | head -n 1 | cut -d : -f 2 | tr -d '}')
    

    With out this change I was getting this error in the log file.

    [Wed Feb 26 08:56:40 AEST 2020] Found domain api file: /usr/local/pkg/acme/dnsapi/dns_me.sh
    [Wed Feb 26 08:56:40 AEST 2020] dns_me_add exists=0
    [Wed Feb 26 08:56:40 AEST 2020] Adding txt value: XXX-HIDDEN-XXX for domain:  _acme-challenge.mydomain.com
    [Wed Feb 26 08:56:40 AEST 2020] APP
    [Wed Feb 26 08:56:40 AEST 2020] 5:ME_Key='XXX-HIDDEN-XXX'
    [Wed Feb 26 08:56:40 AEST 2020] APP
    [Wed Feb 26 08:56:40 AEST 2020] 6:ME_Secret='XXX-HIDDEN-XXX'
    [Wed Feb 26 08:56:40 AEST 2020] First detect the root zone
    [Wed Feb 26 08:56:40 AEST 2020] name?domainname=mydomain.com
    [Wed Feb 26 08:56:40 AEST 2020] od exists=0
    [Wed Feb 26 08:56:40 AEST 2020] GET
    [Wed Feb 26 08:56:40 AEST 2020] url='https://api.dnsmadeeasy.com/V2.0/dns/managed/name?domainname=mydomain.com'
    [Wed Feb 26 08:56:40 AEST 2020] timeout=
    [Wed Feb 26 08:56:40 AEST 2020] Http already initialized.
    [Wed Feb 26 08:56:40 AEST 2020] _CURL='curl -L --silent --dump-header /tmp/acme/mydomain.com//http.header  -g '
    [Wed Feb 26 08:56:41 AEST 2020] ret='0'
    [Wed Feb 26 08:56:41 AEST 2020] response='<html><head><title>Apache Tomcat/7.0.12 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#
    525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-colo
    r:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} P
     {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;}A {color : black;}A.name {color : black;}HR {color : #525D76;}--></style> </head><body><h1>HTTP Status
     404 - Not Found</h1><HR size="1" noshade="noshade"><p><b>type</b> Status report</p><p><b>message</b> <u>Not Found</u></p><p><b>description</b> <u>The requested resource (Not Found) is
    not available.</u></p><HR size="1" noshade="noshade"><h3>Apache Tomcat/7.0.12</h3></body></html>'  
    

  • Rebel Alliance Developer Netgate

    You'll need to open an issue upstream with acme.sh (at the repo you linked) to get it fixed there



  • I've done that now.



  • @Wasca Thank you for reporting the issue!

    A pull request has been created here

    Please watch for that pull request to be merged
    and the fix should be available in the next acme.sh release (>2.8.6)


Log in to reply