[Question] Certes.AcmeException: Fail to finalize order

Question

[Question] Certes.AcmeException: Fail to finalize order

Opened this issue a month ago · 0 comments

I am using Lettuce on a gateway service using YARP. I have created a DNS provider that creates the DNS TXT Entry in the DNS Zone. It has been confirmed this is being created.

Lettuce seems to get to the part where it issues the certificate, but I receive the following error.

[07:13:37 INF] Using existing account for ["mailto:mark@********.com"] <s:LettuceEncrypt.Internal.AcmeCertificateFactory>
[07:13:38 INF] Using account ?????????? <s:LettuceEncrypt.Internal.AcmeStates.ServerStartupState>
[07:13:38 INF] Creating certificate for test.com <s:LettuceEncrypt.Internal.AcmeStates.ServerStartupState>
Loaded '/usr/share/dotnet/shared/Microsoft.NETCore.App/8.0.10/System.Diagnostics.StackTrace.dll'. Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
[07:13:40 ERR] Failed to automatically create a certificate for xero.test.com
<s:LettuceEncrypt.Internal.AcmeStates.ServerStartupState>
Certes.AcmeException: Fail to finalize order.
   at Certes.IOrderContextExtensions.Generate(IOrderContext context, CsrInfo csr, IKey key, String preferredChain, Int32 retryCount)
   at LettuceEncrypt.Internal.AcmeClient.GetCertificateAsync(CsrInfo csrInfo, IKey privateKey, IOrderContext order)
   at LettuceEncrypt.Internal.AcmeCertificateFactory.CompleteCertificateRequestAsync(IOrderContext order, CancellationToken cancellationToken)
   at LettuceEncrypt.Internal.AcmeCertificateFactory.CreateCertificateAsync(CancellationToken cancellationToken)
   at LettuceEncrypt.Internal.AcmeStates.BeginCertificateCreationState.MoveNextAsync(CancellationToken cancellationToken)
[07:13:40 ERR] ACME state machine encountered unhandled error <s:LettuceEncrypt.Internal.AcmeCertificateLoader>
Certes.AcmeException: Fail to finalize order.
   at Certes.IOrderContextExtensions.Generate(IOrderContext context, CsrInfo csr, IKey key, String preferredChain, Int32 retryCount)
   at LettuceEncrypt.Internal.AcmeClient.GetCertificateAsync(CsrInfo csrInfo, IKey privateKey, IOrderContext order)
   at LettuceEncrypt.Internal.AcmeCertificateFactory.CompleteCertificateRequestAsync(IOrderContext order, CancellationToken cancellationToken)
   at LettuceEncrypt.Internal.AcmeCertificateFactory.CreateCertificateAsync(CancellationToken cancellationToken)
   at LettuceEncrypt.Internal.AcmeStates.BeginCertificateCreationState.MoveNextAsync(CancellationToken cancellationToken)
   at LettuceEncrypt.Internal.AcmeCertificateLoader.ExecuteAsync(CancellationToken stoppingToken)

The gateway is running in a docker container. I am using Redis to store the account information and the certificate, but it is not getting as far as saving the certificate.

Does anyone know the cause of this? I have searched the internet for similar messages. I have also searched the Certes repository, but I did not see anything with this message.