Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
Fedora apachectl 2.4.39 no longer supports passing arguments to httpd #6940
My operating system is (include version):
I installed Certbot with (certbot-auto, OS package manager, pip, etc):
OS package manager
I ran this command and it produced this output:
certbot renew --apache
Certbot's behavior differed from what I expected because:
certbot gets invalid output from apachectl
Here is a Certbot log showing the issue (if available):
/usr/sbin/apachectl doesn't support -v, nor -t -D DUMP_RUN_CFG, DUMP_INCLUDES, DUMP_MODULES
Hacking apachectl (or a different one in the path) to specifically allow these options makes it work.
Running httpd -v or -t -D DUMP_RUN_CFG does work, apachectl doesn't.
Here is the relevant nginx server block or Apache virtualhost for the domain I am configuring:
not relevant, change to /usr/sbin/apachectl, probably in 2.4.39. httpd (and config) is fine, apachectl is not.
not sure if I should file a bug here, or with Fedora
Issue #5439 seems very similar, but appears to be for restart of apache only. This issue occurs before the certificate -- certbot is still verifying if apache is installed.
Yes same problem. I tried replacing apachectl with a link to httpd but that did not work. Change was made with recent apache 2.4.39 update.
Never knew the hassle updating certificates manually would be. I cannot renew the old certificate either as certbot does not ask me if I wanna spin up a temporary webserver when I want to renew, only when using certbot certonly.
This was referenced
Apr 12, 2019
I ran into the same issue in my environment and fixed it with the following hack steps while maintaining the current apache version:
I then re-ran letsencrypt (aka certbot) and everything was successful! Hopefully this helps someone who understands all this code better than I do make a real fix, but at least there is a hack solution in the meantime, and this should continue to work for future versions of apache.
referenced this issue
Apr 23, 2019
referenced this issue
May 11, 2019
Apologies, but this appears to still not be resolved. Fedora 30:
Package installed from the main DNF repository shipped with Fedora 30:
If python3-certbot-apache-0.31.0-2.fc30.noarch resolves the issue, I couldn't tell you, as it's not available to me.