Routine for Updating LE SSL is Buggy!

[ahmadawais]

As I have mentioned earlier in another issue, le update routine is not possible without again and again exporting the following

export LC_ALL="en_US.UTF-8"
export LC_CTYPE="en_US.UTF-8"

So, the routine that is ee site update --le=renew --all is buggy since it doesn't export the above data after each SSL renew, and that way the cron becomes useless.

Can we update the routine as well?

Also, the routine breaks if one of the site doesn't get to update the SSL. It should continue for other sites even of one site didn't get the renewed SSL.

• lsb_release -a

No LSB modules are available.
Distributor ID:	Ubuntu
Description:	Ubuntu 16.04.1 LTS
Release:	16.04
Codename:	xenial

• ee -v

EasyEngine v3.7.4
Copyright (c) 2016 rtCamp Solutions Pvt. Ltd.

• ee info

NGINX (1.10.0):

user                             www-data
worker_processes                 auto
worker_connections               4096
keepalive_timeout                30
fastcgi_read_timeout             300
client_max_body_size             100m
allow                            127.0.0.1

PHP (5.6.30-1):

user
expose_php                       Off
memory_limit                     256M
post_max_size                    100M
upload_max_filesize              100M
max_execution_time               300

Information about www.conf
ping.path                        /ping
pm.status_path                   /status
process_manager                  ondemand
pm.max_requests                  500
pm.max_children                  10
pm.start_servers                 20
pm.min_spare_servers             10
pm.max_spare_servers             30
request_terminate_timeout        300
xdebug.profiler_enable_trigger   off
listen                           127.0.0.1:9000

Information about debug.conf
ping.path                        /ping
pm.status_path                   /status
process_manager                  ondemand
pm.max_requests                  500
pm.max_children                  100
pm.start_servers                 20
pm.min_spare_servers             10
pm.max_spare_servers             30
request_terminate_timeout        300
xdebug.profiler_enable_trigger   on
listen                           127.0.0.1:9001

MySQL (10.1.21-MariaDB) on localhost:

port                             3306
wait_timeout                     600
interactive_timeout              28800
max_used_connections             11
datadir                          /var/lib/mysql/
socket                           /var/run/mysqld/mysqld.sock
my.cnf [PATH]                    /etc/mysql/conf.d/my.cnf

• wp --allow-root --info

PHP binary:	/usr/bin/php5.6
PHP version:	5.6.30-1+deb.sury.org~xenial+1
php.ini used:	/etc/php/5.6/cli/php.ini
WP-CLI root dir:	phar://wp-cli.phar
WP-CLI packages dir:
WP-CLI global config:
WP-CLI project config:
WP-CLI version:	1.1.0

How can I help?

[iam404]

related #873

[ahmadawais]

I am back to square one and this issue is again not working.

@rahul286 can you help on this one?

The cert never gets auto-renewed and then it gets expired. If it gets expired there is no way to get it renewed I keep hitting this message

ERROR : Cannot RENEW SSL cert !
Your current cert already EXPIRED !
Check logs for reason `tail /var/log/ee/ee.log` & Try Again!!!

and after 5 attempts my IP gets blacklisted from certbot to wait for an hour :(

[ahmadawais]

OK fixed it.

My current fix is this

cd ~
git clone https://github.com/letsencrypt/letsencrypt
cd letsencrypt
ee site update domain.com --le=off # or run with sudo, though, not needed.
./letsencrypt-auto certonly --webroot -w /var/www/domain.com/htdocs/ -d domain.com -d www.domain.com --email your@email.com --text --agree-tos
ee site update domain.com --le=on # or run with sudo, though, not needed.