| 19 Oct 2024 |
 Rayan Nakib (ريان نقيب) |
| 16:19:16 |
| Rayan Nakib (ريان نقيب) | * Oct 19 17:18:58 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[140901]: Waiting to acquire lock /run/acme/1.lock
Oct 19 17:18:58 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[140901]: Acquired lock /run/acme/1.lock
Oct 19 17:18:59 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[140905]: 2024/10/19 17:18:59 [nextcloud-rayanlab.duckdns.org] The certificate expires in 89 days, the number of days defined to perform the renewal is 30: no renewal.
Oct 19 17:18:59 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[140901]: Releasing lock /run/acme/1.lock
Oct 19 17:18:59 MacBook-Pro-8-1 systemd[1]: acme-nextcloud-rayanlab.duckdns.org.service: Deactivated successfully.
░░ Subject: Unit succeeded
░░ Defined-By: systemd
░░ Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
░░
░░ The unit acme-nextcloud-rayanlab.duckdns.org.service has successfully entered the 'dead' state.
Oct 19 17:18:59 MacBook-Pro-8-1 systemd[1]: Finished Renew ACME certificate for nextcloud-rayanlab.duckdns.org.
░░ Subject: A start job for unit acme-nextcloud-rayanlab.duckdns.org.service has finished successfully
░░ Defined-By: systemd
░░ Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
░░
░░ A start job for unit acme-nextcloud-rayanlab.duckdns.org.service has finished successfully.
░░
░░ The job identifier is 24232.
Oct 19 17:18:59 MacBook-Pro-8-1 systemd[1]: acme-nextcloud-rayanlab.duckdns.org.service: Consumed 643ms CPU time, 18.8M memory peak, 5.3K incoming IP traffic, 1.3K outgoing IP traffic.
░░ Subject: Resources consumed by unit runtime
░░ Defined-By: systemd
░░ Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
░░
░░ The unit acme-nextcloud-rayanlab.duckdns.org.service completed and consumed the indicated resources.
| 16:19:26 |
| Rayan Nakib (ريان نقيب) | I don't see any errors | 16:19:40 |
 K900 | Then you probably need to reload nginx or whatever you're using | 16:19:57 |
| K900 | So it picks up new certificates | 16:20:01 |
| Rayan Nakib (ريان نقيب) | restarted the pc, and it's still, the same error | 16:22:07 |
| Rayan Nakib (ريان نقيب) | * restarted the pc, and it's still, the same error. | 16:22:28 |
| K900 | Then check your Nginx config and see what certificates it's configured to use | 16:23:19 |
| Rayan Nakib (ريان نقيب) | the service failed, after I restarted my pc?! | 16:24:05 |
| Rayan Nakib (ريان نقيب) | I am using impermanence, my I need to persist some files? | 16:24:55 |
| Rayan Nakib (ريان نقيب) | not it's still failing after I restarted the service. | 16:26:12 |
| Rayan Nakib (ريان نقيب) | Oct 19 17:24:08 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1535]: Waiting to acquire lock /run/acme/1.lock
Oct 19 17:24:08 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1535]: Acquired lock /run/acme/1.lock
Oct 19 17:24:10 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:10 [INFO] [nextcloud-rayanlab.duckdns.org, nextcloud-rayanlab.duckdns.org] acme: Obtaining bundled SAN certificate
Oct 19 17:24:11 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:11 [INFO] [nextcloud-rayanlab.duckdns.org] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/418406013657
Oct 19 17:24:11 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:11 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Could not find solver for: tls-alpn-01
Oct 19 17:24:11 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:11 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Could not find solver for: http-01
Oct 19 17:24:11 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:11 [INFO] [nextcloud-rayanlab.duckdns.org] acme: use dns-01 solver
Oct 19 17:24:11 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:11 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Preparing to solve DNS-01
Oct 19 17:24:17 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:17 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Trying to solve DNS-01
Oct 19 17:24:22 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:22 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Checking DNS record propagation. [nameservers=8.8.8.8:53]
Oct 19 17:24:24 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:24 [INFO] Wait for propagation [timeout: 1m0s, interval: 2s]
Oct 19 17:24:49 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:24:49 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Waiting for DNS record propagation.
Oct 19 17:25:08 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:25:08 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Waiting for DNS record propagation.
Oct 19 17:25:21 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:25:21 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Waiting for DNS record propagation.
Oct 19 17:25:33 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:25:33 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Waiting for DNS record propagation.
Oct 19 17:25:35 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:25:35 [INFO] [nextcloud-rayanlab.duckdns.org] acme: Cleaning DNS-01 challenge
Oct 19 17:25:40 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:25:40 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/418406013657
Oct 19 17:25:40 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: 2024/10/19 17:25:40 Could not obtain certificates:
Oct 19 17:25:40 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: error: one or more domains had a problem:
Oct 19 17:25:40 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1538]: [nextcloud-rayanlab.duckdns.org] propagation: time limit exceeded: last error: DNS call error: dial udp: lookup ns4.duckdns.org.: i/o timeout [ns=ns4.duckdns.org.:53, question='_acme-challenge.nextcloud-rayanlab.duckdns.org. IN TXT']
Oct 19 17:25:41 MacBook-Pro-8-1 acme-nextcloud-rayanlab.duckdns.org-start[1535]: Failed to fetch certificates. This may mean your DNS records are set up incorrectly. Selfsigned certs are in place and dependant services will still start.
Oct 19 17:25:41 MacBook-Pro-8-1 systemd[1]: acme-nextcloud-rayanlab.duckdns.org.service: Main process exited, code=exited, status=10/n/a
░░ Subject: Unit process exited
░░ Defined-By: systemd
░░ Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
░░
░░ An ExecStart= process belonging to unit acme-nextcloud-rayanlab.duckdns.org.service has exited.
░░
░░ The process' exit code is 'exited' and its exit status is 10.
Oct 19 17:25:41 MacBook-Pro-8-1 systemd[1]: acme-nextcloud-rayanlab.duckdns.org.service: Failed with result 'exit-code'.
░░ Subject: Unit failed
░░ Defined-By: systemd
░░ Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
░░
░░ The unit acme-nextcloud-rayanlab.duckdns.org.service has entered the 'failed' state with result 'exit-code'.
Oct 19 17:25:41 MacBook-Pro-8-1 systemd[1]: Failed to start Renew ACME certificate for nextcloud-rayanlab.duckdns.org.
░░ Subject: A start job for unit acme-nextcloud-rayanlab.duckdns.org.service has failed
░░ Defined-By: systemd
░░ Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
░░
░░ A start job for unit acme-nextcloud-rayanlab.duckdns.org.service has finished with a failure.
░░
░░ The job identifier is 1221 and the job result is failed.
Oct 19 17:25:41 MacBook-Pro-8-1 systemd[1]: acme-nextcloud-rayanlab.duckdns.org.service: Consumed 592ms CPU time, 19M memory peak, 22.1K incoming IP traffic, 9.4K outgoing IP traffic.
░░ Subject: Resources consumed by unit runtime
░░ Defined-By: systemd
░░ Support: https://lists.freedesktop.org/mailman/listinfo/systemd-devel
░░
░░ The unit acme-nextcloud-rayanlab.duckdns.org.service completed and consumed the indicated resources.
| 16:26:44 |
| Rayan Nakib (ريان نقيب) | these ☝️ are the logs | 16:26:53 |
| K900 | Well you need to persist /var/lib/acme at least | 16:27:45 |
| K900 | And I guess you need to figure out why it's failing to reach the network | 16:28:02 |
| Rayan Nakib (ريان نقيب) | it work, thank you so much :) | 17:11:40 |
| Rayan Nakib (ريان نقيب) | * it works, thank you so much :) | 17:11:48 |
| Rayan Nakib (ريان نقيب) | NixOS is amazing | 17:12:08 |
| 23 Oct 2024 |
 Sandro 🐧 | quick reminder about https://github.com/NixOS/nixpkgs/pull/340136 | 16:00:04 |
| 26 Oct 2024 |
 osnyx (he/him) | I'm considering to do some acme-adjacent stuff on Nixcon hackday. Anybody of you here? | 12:41:29 |
| 5 Nov 2024 |
| K900 | Can someone please look into the flaky tests | 06:44:50 |
| K900 | It's been happening more and more lately | 06:44:56 |
| 7 Nov 2024 |
| K900 | Folks I know I am starting to sound like a broken record | 07:00:33 |
| K900 | But the tests are flaking | 07:00:39 |
| K900 | And I really don't want to retire them from the blocking jobs | 07:00:47 |
| K900 | And I have no idea what is going on there | 07:01:00 |
| K900 | Can someone with either knowledge or more free time please take a look | 07:01:12 |
 emily | cc m1cr0man | 07:02:07 |
| emily | the ACME tests are pretty important since they're the one line of defence we have against everyone's services going completely unavailable. unfortunately they have also long since exceeded the complexity at which I feel like I have a handle on them and I know m1cr0man only has so much time these days :( | 07:03:32 |
 m1cr0man | Are they still flaking? I did put out some fixes a few weeks ago to help reduce flakiness by wrapping some of the assertions in retries. I hadn't heard anything more so I assumed it was fixed.
I am a bit better for time now (house move over) so I can look into it again. Feel free to spam me with any failures you see. I'll take a look on hydra too
Wrt actual test complexity. I'm not sure how to simplify it. There's a lot of moving parts to testing acme. I did put a nice summary into an issue comment last week. https://github.com/NixOS/nixpkgs/pull/340136#issuecomment-2448648944 | 09:20:12 |
