openmediavault-letsencrypt

    • OMV 2.x

    This site uses cookies. By continuing to browse this site, you are agreeing to our Cookie Policy.

    • BUFU1610 wrote:

      (although I think this is obsolete now, the output:

      Source Code

      1. $ apt-cache policy certbot
      2. certbot:
      3. Installed: (none)
      4. Candidate: 0.10.2-1~bpo8+1
      5. Package pin: 0.10.2-1~bpo8+1
      6. Version table:
      7. 0.10.2-1~bpo8+1 500
      8. 100 http://httpredir.debian.org/debian/ jessie-backports/main amd64 Packages
      You must not have the backports repo enabled. What is the output of: grep backports /etc/apt/sources.list.d/*
      omv 4.0.5 arrakis | 64 bit | 4.12 backports kernel | omvextrasorg 4.0.5
      omv-extras.org plugins source code and issue tracker - github.com/OpenMediaVault-Plugin-Developers

      Please don't PM for support... Too many PMs!
    • ryecoaaron wrote:

      You must not have the backports repo enabled.
      Exactly. I didn't know about the jessie-backports repo until yesterday.
      I did add a .list and therefore are now able to install backport packages.

      The thing is: If I want to install certbot, it tells me it depends on python-certbot. If I want to install that, it tells me it depends on python-acme, python-cryptography and python-openssl.....
      Is this an endless thing? I read somewhere that it's not advised to install too many packages from the backports, but only those necessary... therefore I would like to keep the list rather short (also I have had experiences breaking my whole system by installing a new package.. so, minimal installation seems the safe route for me).

      I tried with the command apt-get install certbot -t jessie-backports, is this limiting the install to this specific package? (Is apt-get normally supposed to download dependencies with the package it should install or not? If not, I have to get to the bottom of this myself, right?)
    • BUFU1610 wrote:

      Is this an endless thing? I read somewhere that it's not advised to install too many packages from the backports, but only those necessary... therefore I would like to keep the list rather short (also I have had experiences breaking my whole system by installing a new package.. so, minimal installation seems the safe route for me).
      Nope, it isn't endless and this is why omv-extras pins the proper packages (see here). If you want letsencrypt, there is no way around it with jessie/OMV 3.x. Most of the time, installing python packages (not python itself) from backports is minimal risk. Make a backup before doing this though...


      BUFU1610 wrote:

      I tried with the command apt-get install certbot -t jessie-backports, is this limiting the install to this specific package? (Is apt-get normally supposed to download dependencies with the package it should install or not? If not, I have to get to the bottom of this myself, right?)
      Once the backports repo is enabled, do an apt clean from the web interface and you should be able to install the plugin from the web interface.
      omv 4.0.5 arrakis | 64 bit | 4.12 backports kernel | omvextrasorg 4.0.5
      omv-extras.org plugins source code and issue tracker - github.com/OpenMediaVault-Plugin-Developers

      Please don't PM for support... Too many PMs!
    • LouBen3010 wrote:

      Hey there,
      I just found out that my OMV does not generate the certificate for a second given domain.
      In the plugin section I defined: "a.mydomain.com,b.mydomain.com" (without quotes) as domains.
      After Pressing "Generate Certificates" I only receive a.mydomain.com in my "live" folder from LetsEncrypt.

      Do you know this issue?

      Best regards
      Benedikt
      I've got exactly he same issue. read above. Really wants a second certifite for my second domain. More people?
    • ryecoaaron wrote:

      Once the backports repo is enabled, do an apt clean from the web interface and you should be able to install the plugin from the web interface.
      I am not sure if it is... is adding the deb for the backports as a .list all I have to do to enable the repo?
      because I added it to the omv-extra.list and the install from the plugin web interface still gives me the same error after the apt clean.
    • BUFU1610 wrote:

      is adding the deb for the backports as a .list all I have to do to enable the repo?
      and then run apt-get update.

      BUFU1610 wrote:

      because I added it to the omv-extra.list and the install from the plugin web interface still gives me the same error after the apt clean.
      That file gets overwritten whenever you doing anything in omv-extras. Put it in its own file. I still don't understand why you don't have the backports file since OMV 3 started adding it.
      omv 4.0.5 arrakis | 64 bit | 4.12 backports kernel | omvextrasorg 4.0.5
      omv-extras.org plugins source code and issue tracker - github.com/OpenMediaVault-Plugin-Developers

      Please don't PM for support... Too many PMs!
    • You must have a conflict with another package already being installed then. What is the output of:

      Source Code

      1. apt-get update
      2. apt-get install python3-msgpack certbot python-acme python-certbot python-cffi python-cffi-backend \
      3. python-chardet python-configargparse python-configobj python-cryptography python-dialog python-enum34 \
      4. python-funcsigs python-idna python-ipaddress python-mock python-ndg-httpsclient python-openssl \
      5. python-parsedatetime python-pbr python-pkg-resources python-psutil python-pyasn1 python-requests \
      6. python-rfc3339 python-setuptools python-six python-tz python-urllib3 python-zope.component \
      7. python-zope.event python-zope.interface
      omv 4.0.5 arrakis | 64 bit | 4.12 backports kernel | omvextrasorg 4.0.5
      omv-extras.org plugins source code and issue tracker - github.com/OpenMediaVault-Plugin-Developers

      Please don't PM for support... Too many PMs!
    • so, this is what I get:

      Source Code

      1. # apt-get update
      2. Ign file: InRelease
      3. Ign file: Release.gpg
      4. Ign file: Release
      5. Ign http://ftp.de.debian.org jessie InRelease
      6. Get:1 http://ftp.debian.org jessie-backports InRelease [166 kB]
      7. Hit http://packages.openmediavault.org erasmus InRelease
      8. Ign file: Translation-en_GB
      9. Ign file: Translation-en
      10. Hit http://ftp.de.debian.org jessie Release.gpg
      11. Hit http://ftp.de.debian.org jessie Release
      12. Hit https://dev2day.de jessie InRelease
      13. Get:2 https://dl.bintray.com jessie InRelease
      14. Hit http://packages.openmediavault.org erasmus/main arm64 Packages
      15. Hit http://packages.openmediavault.org erasmus/main armhf Packages
      16. Ign http://packages.openmediavault.org erasmus/main Translation-en_GB
      17. Ign http://packages.openmediavault.org erasmus/main Translation-en
      18. Get:3 http://ftp.debian.org jessie-backports/main arm64 Packages/DiffIndex [27.8 kB]
      19. Ign https://dl.bintray.com jessie InRelease
      20. Hit https://dev2day.de jessie/main armhf Packages
      21. Get:4 http://ftp.debian.org jessie-backports/main armhf Packages/DiffIndex [27.8 kB]
      22. Get:5 https://dev2day.de jessie/main Translation-en_GB [323 B]
      23. Get:6 http://ftp.debian.org jessie-backports/main Translation-en/DiffIndex [27.8 kB]
      24. Get:7 https://dl.bintray.com jessie Release.gpg [821 B]
      25. Get:8 https://dev2day.de jessie/main Translation-en [320 B]
      26. Get:9 https://dev2day.de jessie/main Translation-en_GB [323 B]
      27. Hit http://ftp.de.debian.org jessie/main Sources
      28. Get:10 https://dev2day.de jessie/main Translation-en [320 B]
      29. Hit https://dl.bintray.com jessie Release
      30. Hit http://ftp.de.debian.org jessie/non-free Sources
      31. Hit http://ftp.de.debian.org jessie/contrib Sources
      32. Hit http://ftp.de.debian.org jessie/main arm64 Packages
      33. Hit http://ftp.de.debian.org jessie/non-free arm64 Packages
      34. Hit http://ftp.de.debian.org jessie/contrib arm64 Packages
      35. Hit http://ftp.de.debian.org jessie/main armhf Packages
      36. Hit http://ftp.de.debian.org jessie/non-free armhf Packages
      37. Hit http://ftp.de.debian.org jessie/contrib armhf Packages
      38. Get:11 https://dev2day.de jessie/main Translation-en_GB [323 B]
      39. Hit https://dl.bintray.com jessie/main arm64 Packages
      40. Hit http://ftp.de.debian.org jessie/contrib Translation-en
      41. Hit http://ftp.de.debian.org jessie/main Translation-en
      42. Hit http://ftp.de.debian.org jessie/non-free Translation-en
      43. Hit https://dl.bintray.com jessie/main armhf Packages
      44. Get:12 https://dev2day.de jessie/main Translation-en [320 B]
      45. Get:13 https://dev2day.de jessie/main Translation-en_GB [323 B]
      46. Get:14 https://dl.bintray.com jessie/main Translation-en_GB
      47. Get:15 https://dev2day.de jessie/main Translation-en [320 B]
      48. Get:16 https://dl.bintray.com jessie/main Translation-en
      49. Get:17 https://dev2day.de jessie/main Translation-en_GB [323 B]
      50. Get:18 https://dl.bintray.com jessie/main Translation-en_GB
      51. Ign https://dev2day.de jessie/main Translation-en_GB
      52. Get:19 https://dev2day.de jessie/main Translation-en [320 B]
      53. Ign https://dev2day.de jessie/main Translation-en
      54. Get:20 https://dl.bintray.com jessie/main Translation-en
      55. Get:21 https://dl.bintray.com jessie/main Translation-en_GB
      56. Get:22 https://dl.bintray.com jessie/main Translation-en
      57. Get:23 https://dl.bintray.com jessie/main Translation-en_GB
      58. Get:24 https://dl.bintray.com jessie/main Translation-en
      59. Get:25 https://dl.bintray.com jessie/main Translation-en_GB
      60. Ign https://dl.bintray.com jessie/main Translation-en_GB
      61. Get:26 https://dl.bintray.com jessie/main Translation-en
      62. Ign https://dl.bintray.com jessie/main Translation-en
      63. Fetched 250 kB in 24s (10.1 kB/s)
      64. Reading package lists... Done
      65. # apt-get install python3-msgpack certbot python-acme python-certbot python-cffi python-cffi-backend \
      66. > python-chardet python-configargparse python-configobj python-cryptography python-dialog python-enum34 \
      67. > python-funcsigs python-idna python-ipaddress python-mock python-ndg-httpsclient python-openssl \
      68. > python-parsedatetime python-pbr python-pkg-resources python-psutil python-pyasn1 python-requests \
      69. > python-rfc3339 python-setuptools python-six python-tz python-urllib3 python-zope.component \
      70. > python-zope.event python-zope.interface
      71. Reading package lists... Done
      72. Building dependency tree
      73. Reading state information... Done
      74. Some packages could not be installed. This may mean that you have
      75. requested an impossible situation or if you are using the unstable
      76. distribution that some required packages have not yet been created
      77. or been moved out of Incoming.
      78. The following information may help to resolve the situation:
      79. The following packages have unmet dependencies:
      80. python-cffi : Depends: python-cffi-backend (< 1.9.1-2~bpo8+1+c) but it is not installable
      81. Depends: python-cffi-backend (>= 1.9.1-2~bpo8+1) but it is not installable
      82. Depends: python-pycparser but it is not going to be installed
      83. python-cffi-backend:armhf : Depends: python:armhf (< 2.8) but it is not going to be installed
      84. Depends: python:armhf (>= 2.7~) but it is not going to be installed
      85. Breaks: python-cryptography (< 0.8.2-4~) but 0.8.2-2~bpo8+1 is to be installed
      86. python-openssl : Depends: python-cryptography (>= 1.3) but 0.8.2-2~bpo8+1 is to be installed
      87. E: Unable to correct problems, you have held broken packages.
      Display All

      Is there anything you see in here that can help me?

      The post was edited 1 time, last by BUFU1610 ().

    • I guess I didn't realize this was an armhf system. That usually makes things a pain in the ass since they don't always have the same packages as i386/amd64 (especially in backports). What is the output of:

      apt-cache policy python-cffi python-cffi-backend python python-cryptography python-openssl

      If things don't look right in that output, you may have to wait until you can put omv 4.x on the system.
      omv 4.0.5 arrakis | 64 bit | 4.12 backports kernel | omvextrasorg 4.0.5
      omv-extras.org plugins source code and issue tracker - github.com/OpenMediaVault-Plugin-Developers

      Please don't PM for support... Too many PMs!
    • ryecoaaron wrote:

      I guess I didn't realize this was an armhf system. That usually makes things a pain in the ass since they don't always have the same packages as i386/amd64 (especially in backports).
      Sorry, I should have clarified the armhf thing. The output of the policy check is:

      Source Code

      1. # apt-cache policy python-cffi python-cffi-backend python python-cryptography python-openssl
      2. python-cffi:
      3. Installed: (none)
      4. Candidate: 1.9.1-2~bpo8+1
      5. Package pin: 1.9.1-2~bpo8+1
      6. Version table:
      7. 1.9.1-2~bpo8+1 500
      8. 100 http://ftp.debian.org/debian/ jessie-backports/main arm64 Packages
      9. 0.8.6-1 500
      10. 500 http://ftp.de.debian.org/debian/ jessie/main arm64 Packages
      11. python-cffi-backend:armhf:
      12. Installed: (none)
      13. Candidate: 1.9.1-2~bpo8+1
      14. Version table:
      15. 1.9.1-2~bpo8+1 0
      16. 100 http://ftp.debian.org/debian/ jessie-backports/main armhf Packages
      17. python:
      18. Installed: 2.7.9-1
      19. Candidate: 2.7.9-1
      20. Version table:
      21. *** 2.7.9-1 0
      22. 500 http://ftp.de.debian.org/debian/ jessie/main arm64 Packages
      23. 100 /var/lib/dpkg/status
      24. python-cryptography:
      25. Installed: (none)
      26. Candidate: 0.8.2-2~bpo8+1
      27. Package pin: 0.8.2-2~bpo8+1
      28. Version table:
      29. 0.8.2-2~bpo8+1 500
      30. 100 http://ftp.debian.org/debian/ jessie-backports/main arm64 Packages
      31. 0.6.1-1+deb8u1 500
      32. 500 http://ftp.de.debian.org/debian/ jessie/main arm64 Packages
      33. python-openssl:
      34. Installed: (none)
      35. Candidate: 16.0.0-1~bpo8+1
      36. Package pin: 16.0.0-1~bpo8+1
      37. Version table:
      38. 16.0.0-1~bpo8+1 500
      39. 100 http://ftp.debian.org/debian/ jessie-backports/main arm64 Packages
      40. 0.14-1 500
      41. 500 http://ftp.de.debian.org/debian/ jessie/main arm64 Packages
      Display All
      I hope I don't have to wait for OMV 4.x ... is there another way to get SSL working on an armhf system?
    • So.... I googled around a bit and found out that apparently some dependencies are not available as needed in jessie-backports.

      I found them in the stretch repo and installed them seperately from the rest:

      Source Code

      1. echo deb http://ftp.debian.org/debian stretch main > /etc/apt/sources.list.d/stretch.list
      2. apt-get update
      3. apt-get install -t stretch python-cffi-backend python-cryptography python-openssl

      after that I used that command you gave me (without those 3 packages I installed from stretch already):

      ryecoaaron wrote:

      You must have a conflict with another package already being installed then. What is the output of:

      Source Code

      1. apt-get update
      2. apt-get install python3-msgpack certbot python-acme python-certbot python-cffi python-cffi-backend \
      3. python-chardet python-configargparse python-configobj python-cryptography python-dialog python-enum34 \
      4. python-funcsigs python-idna python-ipaddress python-mock python-ndg-httpsclient python-openssl \
      5. python-parsedatetime python-pbr python-pkg-resources python-psutil python-pyasn1 python-requests \
      6. python-rfc3339 python-setuptools python-six python-tz python-urllib3 python-zope.component \
      7. python-zope.event python-zope.interface
      and after all that went quite well, I tried installing the plugin from the webGUI and that worked as well (although it gave out about a hundred errors in the end, after telling me the following:)

      Source Code

      1. Processing triggers for openmediavault (3.0.88) ...
      2. Updating locale files ...
      3. Updating file permissions ...
      4. Purging internal cache ...
      5. Restarting engine daemon ...
      6. Errors were encountered while processing:
      7. collectd-core
      And now the plugin is there and it seems to work, but I have to get up early tomorrow and will probably test all the functionality tomorrow afternoon (and see if it broke anything else on the way...)

      good night!
    • New

      by the way, can enybody change the pluginconfiguration for a 4096 RSA key? :/
      here are a link for the issue on github:
      github.com/OpenMediaVault-Plug…ault-letsencrypt/issues/4
      omv 3.0.88 | 64 bit | omvextrasorg 3.4.26 | kernel 4.9
      used plugins: nginx | mysql | docker-gui | flashmemory |rsnapshot | antivirus | apt tool | letsEncrypt | fail2ban for omv-webgui/Nextcloud/emby
      used other: netxtcloud | logitechmediaserver | emby
    • New

      happyreacer wrote:

      by the way, can enybody change the pluginconfiguration for a 4096 RSA key?
      I commented on your issue.
      omv 4.0.5 arrakis | 64 bit | 4.12 backports kernel | omvextrasorg 4.0.5
      omv-extras.org plugins source code and issue tracker - github.com/OpenMediaVault-Plugin-Developers

      Please don't PM for support... Too many PMs!