Panel not reachable

ta_ihpoj1jophi_at

I cannot reach the panel. The url:port does not work. This stopped suddenly, after 2 years. What can I do? I can logon with SSH.

aaPanel_Kern

Hello, can you use the command to check if there are any errors?
curl -k https://www.aapanel.com/script/aapanel_check.sh | bash

ta_ihpoj1jophi_at

Here the result:

curl -k https://www.aapanel.com/script/aapanel_check.sh | bash
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 5818 100 5818 0 0 11124 0 --:--:-- --:--:-- --:--:-- 11103
Bt-Panel (pid 3127) already running

Bt-Task (pid 2555) already running

webserver 3158 root 7u IPv4 2102416928 0t0 UDP *:8889

Getting server ip, Please wait...
aaPanel port external network CORRECT 8889 test access is normal

SSL is enabled, please use HTTPS access
aaPanel Internet Address: CORRECT
aaPanel Internal Address: https://CORRECT:8889/login

When sharing, please be careful to hide your IP address

Server internal 127.0.0.1 test access is normal
-------------------------Disk space usage--------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/ploop30534p1 317G 22G 283G 7% /
none 4.2G 0 4.2G 0% /sys/fs/cgroup
none 4.2G 0 4.2G 0% /dev
tmpfs 4.2G 13k 4.2G 1% /dev/shm
tmpfs 839M 1.3M 838M 1% /run
tmpfs 5.3M 0 5.3M 0% /run/lock
none 4.2G 0 4.2G 0% /run/shm
tmpfs 839M 0 839M 0% /run/user/0
--------------------------Inode usage------------------------------
Filesystem Inodes IUsed IFree IUse% Mounted on
/dev/ploop30534p1 19660800 215315 19445485 2% /
none 1024000 17 1023983 1% /sys/fs/cgroup
none 1024000 75 1023925 1% /dev
tmpfs 1024000 4 1023996 1% /dev/shm
tmpfs 1024000 285 1023715 1% /run
tmpfs 1024000 4 1023996 1% /run/lock
none 1024000 1 1023999 1% /run/shm

tmpfs 1024000 20 1023980 1% /run/user/0

Python version: Python 3.12.3
aaPanal version_o: 7.0.6

I tried to login with "private window" and that worked. the thing is, that AUTO-update of SSL-certificates does not work anymore. This was the reason for the problem with the certificate. I don't know how to re-activate auto-update of SSL-certificates.

ta_ihpoj1jophi_at

Renewal does work by hand. But it is unclear, why the cron-job fails.

aaPanel_Kern

Hello, will cron not run automatically? Please check the logs of related tasks.
Or check the cron program log
Debian/ubuntu:
systemctl status cron

Centos:
systemctl status crond

ta_ihpoj1jophi_at

Randomly, I find lines like this, in aapanel / Cron / Task list / Renew Let’s Encrypt Certificate / Log:

/www/server/panel/class/acme_v2.py:1355: DeprecationWarning: X509Extension support in pyOpenSSL is deprecated. You should use the APIs in cryptography.

/www/server/panel/class/acme_v2.py:722: SyntaxWarning: invalid escape sequence '\.'
  'if ($request_uri ~ "^/\.well-known/acme-challenge/{}.*"){{\n'
/www/server/panel/class/acme_v2.py:931: SyntaxWarning: invalid escape sequence '\s'
  return public.get_msg_gettext("Issuance failed, the root domain name of domain name %s exceeds the maximum weekly issuance limit!" % re.findall("hours:\s+(.+?),", error))

Traceback (most recent call last):
  File "/www/server/panel/class/acme_v2.py", line 792, in save_cert
    pfx_buffer = self.dump_pkcs12(
                 ^^^^^^^^^^^^^^^^^
  File "/www/server/panel/class/acme_v2.py", line 977, in dump_pkcs12
    p12 = OpenSSL.crypto.PKCS12()
          ^^^^^^^^^^^^^^^^^^^^^
  File "/www/server/panel/pyenv/lib/python3.12/site-packages/cryptography/utils.py", line 72, in __getattr__
    obj = getattr(self._module, attr)
          ^^^^^^^^^^^^^^^^^^^^^^^^^^^
AttributeError: module 'OpenSSL.crypto' has no attribute 'PKCS12'

aaPanel_Kern

This problem has been optimized in the new version. Can you try to fix it? Is it normal to perform this task manually again?

ta_ihpoj1jophi_at

aaPanel_Kern This script was not created by me. The cron job was recognized today, after exploring the issues. It seems to be that the job checks daily if one or more of the certificates should be renewed. I’m not sure what I should fix.

Should I fix the python script? Or should I hit the “fix”-link?

After my manual renewal for all the domains, the script was started. It showed that at the log:

★[2024-07-17 18:57:51] Successful

/www/server/panel/class/acme_v2.py:722: SyntaxWarning: invalid escape sequence '.'
'if ($request_uri ~ "^/.well-known/acme-challenge/{}.*"){{\n'
/www/server/panel/class/acme_v2.py:931: SyntaxWarning: invalid escape sequence '\s'
return public.get_msg_gettext("Issuance failed, the root domain name of domain name %s exceeds the maximum weekly issuance limit!" % re.findall("hours:\s+(.+?),", error))

|-No SSL certificate found within 30 days!

|-All tasks have been processed!

I started now the script again, and it just said: [2024-07-18 02:28:08] Successful

Btw, with manual renewal, I referred to aapanel / Website / Site Name / SSL / Disable + Let’s Encrypt + Select several Domain names + Apply.

aaPanel_Kern

It was automatically created by aapanel. This problem has been fixed. You can observe it again.

ta_ihpoj1jophi_at

aaPanel_Kern I’ll do. Happy day! 🙌