OS Ubuntu Linux 18.04.5 x86_64
Hestia Control Panel: v1.3.3
The installation was “clean”. After a few weeks of operation the following problem arises:
Unfortunately, several domains are affected by the problem. This is just an excerpt:
Can’t open /usr/local/hestia/data/users/XXXXX/ssl/XXXXXXXXX.de.crt for reading, No such file or directory
140239259701696:error:02001002:system library:fopen:No such file or directory:…/crypto/bio/bss_file.c:72:fopen(’/usr/local/hestia/data/users/XXXXX/ssl/XXXXXXXXX.de.crt’,‘r’)
140239259701696:error:2006D080:BIO routines:BIO_new_file:no such file:…/crypto/bio/bss_file.c:79:
unable to load certificate
Can’t open /usr/local/hestia/data/users/XXXXX/ssl/XXXXXXXXX.de.crt for reading, No such file or directory
139897576026560:error:02001002:system library:fopen:No such file or directory:…/crypto/bio/bss_file.c:72:fopen(’/usr/local/hestia/data/users/XXXXX/ssl/XXXXXXXXX.de.crt’,‘r’)
139897576026560:error:2006D080:BIO routines:BIO_new_file:no such file:…/crypto/bio/bss_file.c:79:
unable to load certificate
Can’t open /usr/local/hestia/data/users/XXXXX/ssl/XXXXXXXXX.net.crt for reading, No such file or directory
140167430660544:error:02001002:system library:fopen:No such file or directory:…/crypto/bio/bss_file.c:72:fopen(’/usr/local/hestia/data/users/XXXXX/ssl/XXXXXXXXX.net.crt’,‘r’)
140167430660544:error:2006D080:BIO routines:BIO_new_file:no such file:…/crypto/bio/bss_file.c:79:
unable to load certificate
Can’t open /usr/local/hestia/data/users/XXXXX/ssl/XXXXXXXXX.de.crt for reading, No such file or directory
140222121484736:error:02001002:system library:fopen:No such file or directory:…/crypto/bio/bss_file.c:72:fopen(’/usr/local/hestia/data/users/XXXXX/ssl/XXXXXXXXX.de.crt’,‘r’)
140222121484736:error:2006D080:BIO routines:BIO_new_file:no such file:…/crypto/bio/bss_file.c:79:
unable to load certificate
Hello eris, I didn’t do anything. After a routine from Hestia had obviously run in the evening / at night, the certificates were deleted at that point.
Unfortunately this has not happened for the first time.
I can restore the certificates via a timeshift backup, but then either Apache or NGNIX does not start.
The attempt to recreate SSL for a domain fails either.
A rebuild is needed due to the lets encrypt cert update, as @eris already pointed out. This is how the system works, also you should have got a notification e-mail about the LE400 error while running v-update-letsencrypt-renew. But at the end; the cert should not get removed, it would only outdate - sounds like there is another issue.
2 screenshots. One shows the number of certificates from last night. The other the state of today at noon. So they have definitely been deleted. But not manually.