Skip to main content

[CPANEL-22093] Cpanel::Exception::ACME warnings during Let's Encrypt AutoSSL check

Comments

7 comments

  • cPanelMichael
    Hello, Can you let us know the full output to /usr/local/cpanel/logs/error_log when attempting to run AutoSSL for this account? Thank you.
    0
  • Josh Lambert
    I'm getting this same issue with LetsEncrypt. I tailed the error_log file recommended here, no errors regarding SSL to be found: [root@walnut ~]# tail -f /usr/local/cpanel/logs/error_log ==> cpsrvd 11.72.0.10 started ==> cpsrvd: loading security policy....Done ==> cpsrvd: Setting up SSL support ... Done ==> cpsrvd: transferred port bindings ==> cpsrvd: bound to ports ==> cpsrvd 11.72.0.10 started ==> cpsrvd: loading security policy....Done ==> cpsrvd: Setting up SSL support ... Done ==> cpsrvd: transferred port bindings ==> cpsrvd: bound to ports ==> cpsrvd 11.72.0.10 started ==> cpsrvd: loading security policy....Done ==> cpsrvd: Setting up SSL support ... Done ==> cpsrvd: transferred port bindings ==> cpsrvd: bound to ports Did y'all ever figure out how to resolve this?
    0
  • cPanelMichael
    Hello, Internal case CPANEL-22093 is now open to track reports of warning messages similar to the one below during AutoSSL checks when Let's Encrypt is enabled as the certificate provider: [QUOTE]load_perl_module cannot load 'Cpanel::Exception::ACME::Protocol': Can't locate Cpanel/Exception/ACME/Protocol.pm in @INC (you may need to install the Cpanel::Exception::ACME::Protocol module) (@INC contains: /usr/local/cpanel /usr/local/cpanel/3rdparty/perl/526/lib64/perl5/cpanel_lib/x86_64-linux-64int /usr/local/cpanel/3rdparty/perl/526/lib64/perl5/cpanel_lib /usr/local/cpanel/3rdparty/perl/526/lib64/perl5/5.26.0/x86_64-linux-64int /usr/local/cpanel/3rdparty/perl/526/lib64/perl5/5.26.0 /opt/cpanel/perl5/526/site_lib/x86_64-linux-64int /opt/cpanel/perl5/526/site_lib) at (eval 67) line 1. BEGIN failed--compilation aborted at (eval 67) line 1
    I've linked this thread to the case, and will update this thread with more information as it becomes available. In the meantime, note this issue appears to only present itself in the form of a warning message and should not prevent systems from issuing a certificate. Thank you.
    0
  • Josh Lambert
    "In the meantime, note this issue appears to only present itself in the form of a warning message and should not prevent systems from issuing a certificate." That's incorrect. Warning aside, this sub-domain (along with one other) do not issue properly, though other ones on the same WHM instance have worked fine. ERROR Impediment: NO_UNSECURED_DOMAIN_PASSED_DCV: Every unsecured domain failed DCV.
    0
  • cPanelMichael
    Hello Josh, The warning message is likely suppressing the log output associated with the actual reason the certificate was not issued. Can you open a
    0
  • Bigwebmaster
    I hit this problem today as well, and got the same exact error message. I checked /usr/local/cpanel/logs/error_log and nothing gets logged there regarding this. To solve this problem: Can't locate Cpanel/Exception/ACME/Protocol.pm
    I had to copy the Protocol.pm file into one of the @INC locations. Doing: locate Protocol.pm
    I was able to determine that file was located here: /var/cpanel/perl/Cpanel/Exception/ACME/Protocol.pm
    That directory is not in PERLs @INC locations, so it never looks there. I then performed the following commands to get this file in an appropriate location: cd /usr/local/cpanel/Cpanel/Exception mkdir ACME cd ACME cp /var/cpanel/perl/Cpanel/Exception/ACME/Protocol.pm ./
    Now when I run: /usr/local/cpanel/bin/autossl_check --user someuser
    It works again, and it actually outputs the real reason this started happening in the first place. For me the reason was that I was trying to solve some issues getting the certificate auto installed, and due to the fact I ran it too many times I was getting rate limited. Here was the real error that now appeared: [quote]"Let"s Encrypt"" DCV error (domain.com): The ACME function " indicated an error: "Error creating new authz :: too many failed authorizations recently: see
    So the solution for me, is to just wait. Hope this helps others with this same problem!
    0
  • cPanelMichael
    Hello, To update, this was solved as part of an update to the cpanel-plugins repo: # rpm -q --changelog cpanel-letsencrypt-2.23-1.1.noarch|grep "custom exception" - Ensure custom exception modules can be loaded
    Thank you.
    0

Please sign in to leave a comment.