Cloudron fails to start due to nginx failure linked to absent app certificate
-
Hi,
After an automatic Cloudron update, my Cloudron dashboard became unresponsive, although individual apps kept working. I restarted the server to try and solve this issue, but Cloudron wouldn't start.
This seems linked to nginx, as checking nginx status gives:
> systemctl status nginx.service ● nginx.service - nginx - high performance web server Loaded: loaded (/lib/systemd/system/nginx.service; enabled; vendor preset: enabled) Drop-In: /etc/systemd/system/nginx.service.d └─cloudron.conf Active: failed (Result: exit-code) since Sat 2023-08-26 21:54:09 UTC; 3s ago Docs: http://nginx.org/en/docs/ Process: 277464 ExecStart=/usr/sbin/nginx -c /etc/nginx/nginx.conf (code=exited, status=1/FAILURE)
Testing nginx configuration gives:
nginx -t nginx: [emerg] cannot load certificate "/home/yellowtent/platformdata/nginx/cert/jitsi.sebastienvigneau.xyz.cert": BIO_new_file() failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/home/yellowtent/platformdata/nginx/cert/jitsi.sebastienvigneau.xyz.cert','r') error:2006D080:BIO routines:BIO_new_file:no such file) nginx: configuration file /etc/nginx/nginx.conf test failed
How should I go from there?
-
I assume the app
jitsi.sebastienvigneau.xyz
was stopped for a long time, that's why the cert did not get renewed.
Now its missing and the NGINX config expects it.You can disable the NGINX config of that app to fix the problem.
-
Fast way to find the NGINX config file for that app:
find /home/yellowtent/platformdata/nginx -iname "jitsi.sebastienvigneau.xyz"
Then you can move that file to a
NAME.conf.off
and restart the NGINX.
That should do the trick. -
We do remove the app's nginx config when an app is stopped for this exact case (obsolete certs). I think for some reason this didn't happen in OP's case. Relevant code is here .
If anyone hits this again, please leave a note at support@cloudron.io , happy to debug.
-
-
-
This thread looks like a duplicate of this one. Just for info, I've also hit that issue on Friday after rebooting using the Cloudron dashboard, so I wonder if something is up with the automatic removal of certificates?
-
@avatar1024 there is crash in cert renewal indeed. A fix is coming in 7.5.2