Amazon Linuxã§å®è¡ããããšããŠãããšãïŒ Linux ip #1 SMP Sat Oct 24 01:31:37 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
Gitã³ãããããã·ã¥ïŒ 6950dbd0708d3ba16b717ad1097332fc37e33f15
次ã®ãšã©ãŒãçºçããŸãã
[ec2-user<strong i="10">@ip</strong> letsencrypt]$ ./letsencrypt-auto
Checking for new version...
Creating virtual environment...
Installing Python packages...
Requesting root privileges to run letsencrypt...
sudo /home/ec2-user/.local/share/letsencrypt/bin/letsencrypt --no-self-upgrade
Traceback (most recent call last):
File "/home/ec2-user/.local/share/letsencrypt/bin/letsencrypt", line 7, in <module>
from letsencrypt.cli import main
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/letsencrypt/cli.py", line 21, in <modul
e>
import OpenSSL
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/__init__.py", line 8, in <modul
e>
from OpenSSL import rand, crypto, SSL
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/rand.py", line 11, in <module>
from OpenSSL._util import (
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/_util.py", line 6, in <module>
from cryptography.hazmat.bindings.openssl.binding import Binding
ImportError: No module named cryptography.hazmat.bindings.openssl.binding
ããã¯2æ8æ¥ã®æç¹ã§æ©èœããŠããŸãã...ããããå€ãããŒãžã§ã³ããã§ãã¯ã¢ãŠãããŠåé¡ãçºçããå ŽæãèŠã€ããããšãããšãletsencrypt-autoã¯ææ°ããŒãžã§ã³ã«åã¢ããã°ã¬ãŒããç¶ããŸãïŒ
ã©ããªæŽæ°ã§ã..ç§ãåãåé¡ã«çŽé¢ããŠããŸã..
以äžã¯ãã°ã§ãïŒç°å¢-amazon linuxïŒ
çºè¡ãããã³ãã³ãïŒ ./letsencrypt-auto --help
Checking for new version...
Creating virtual environment...
Installing Python packages...
Installation succeeded.
Requesting root privileges to run letsencrypt...
sudo /home/ec2-user/.local/share/letsencrypt/bin/letsencrypt --help
Traceback (most recent call last):
File "/home/ec2-user/.local/share/letsencrypt/bin/letsencrypt", line 7, in <module>
from letsencrypt.cli import main
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/letsencrypt/cli.py", line 21, in <module>
import OpenSSL
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/__init__.py", line 8, in <module>
from OpenSSL import rand, crypto, SSL
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/rand.py", line 11, in <module>
from OpenSSL._util import (
File "/home/ec2-user/.local/share/letsencrypt/local/lib/python2.7/dist-packages/OpenSSL/_util.py", line 6, in <module>
from cryptography.hazmat.bindings.openssl.binding import Binding
ImportError: No module named cryptography.hazmat.bindings.openssl.binding
ãããè©ŠããŠ
sudo ./letsencrypt-auto --help
ãããæ©èœãããšãã«äžèšã®ã³ãã³ããè©ŠããŠã¿ãŸããã
åãåé¡ãsudoã®ãã¬ãã£ãã¯ã¹ãä»ããããšã§è§£æ±ºããŸããã ãªããããä¿®æ£ãããã®ã§ããïŒ
åãåé¡ãçºçããsudoã䜿çšããŠä¿®æ£ãããŸãããããããšã
Amazon Linuxã§ææ°ã®certbotã«æŽæ°ããåŸãããã®åé¡ãçºçããŠããŸãïŒLinux ip-172-31-10-255 4.9.75-25.55.amzn1.x86_64ïŒ1 SMP Fri Jan 5 23:50:27 UTC 2018 x86_64 x86_64 x86_64 GNU / LinuxïŒ
æå·åããã±ãŒãžã/opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography/
äžã«ã€ã³ã¹ããŒã«ãããŠããããã§ã
ããããPythonã¯lib64ãã¹ãæ€çŽ¢/æäœããŠããªãããããããæ€åºããŠããŸããã 以äžã®ãã¹ãŠã®ãã¹ã¯/lib64/
ã§ã¯ãªã/lib/
ã§ããããšã«æ³šæããŠãã ãã
ãã®env rm -rf /opt/eff.org
ãå®å
šã«åé€ããcert-botãåã€ã³ã¹ããŒã«ããŸããããåããšã©ãŒ/åé¡ãçºçããŸãã
`
[root@ip-172-31-10-255 venv]# /certbot/certbot-auto --debug renew
Error: couldn't get currently installed version for /opt/eff.org/certbot/venv/bin/letsencrypt:
Traceback (most recent call last):
File "/opt/eff.org/certbot/venv/bin/letsencrypt", line 7, in <module>
from certbot.main import main
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/certbot/main.py", line 10, in <module>
import josepy as jose
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/__init__.py", line 41, in <module>
from josepy.interfaces import JSONDeSerializable
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/interfaces.py", line 8, in <module>
from josepy import errors, util
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/util.py", line 4, in <module>
import OpenSSL
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/__init__.py", line 8, in <module>
from OpenSSL import rand, crypto, SSL
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/rand.py", line 12, in <module>
from OpenSSL._util import (
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/_util.py", line 6, in <module>
from cryptography.hazmat.bindings.openssl.binding import Binding
ImportError: No module named cryptography.hazmat.bindings.openssl.binding
@utdrmacå°ãåã«æ°ãã蚌ææžããããã€ãããšãã«åããšã©ãŒãçºçããŸãããã³ã¡ã³ãã¯ãã¿ããã®ãå¥ãããŠäŸåé¢ä¿ãlocal/lib/python2.7
ãã¹ã«ãªã³ã¯ããããšã§åéãããã次ã®ããããŒãªä¿®æ£ã«åœ±é¿ãäžããŸããã
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/cryptography
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography-2.0.2.dist-info /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/cryptography-2.0.2.dist-info
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cffi /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/cffi
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cffi-1.10.0.dist-info /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/cffi-1.10.0.dist-info
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/_cffi_backend.so /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/_cffi_backend.so
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/.libs_cffi_backend /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/.libs_cffi_backend
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/zope.interface-4.1.3-py2.7-nspkg.pth /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/zope.interface-4.1.3-py2.7-nspkg.pth
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/zope.interface-4.1.3-py2.7.egg-info /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/zope.interface-4.1.3-py2.7.egg-info
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/zope/interface /opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/zope/interface
@HinchKç§ãããã«ã€ããŠèããŸãããã確ãã«éåžžã«ããã¯ã§ãã 代ããã«ããã®ãœãªã¥ãŒã·ã§ã³ã確èªããŠãã ããïŒ //github.com/certbot/certbot/issues/1680#issuecomment-358728515ææ°ã®ãšã©ã¹ãã£ãã¯beanstalkã§åäœããããšã確èªããŸãã
@HinchKããããšãã ããã¯ïŒäžæçã«ïŒç§ã®ããã«ãããä¿®æ£ããŸããã ïŒAWSïŒ
@HinchK ãããªãã®è§£æ±ºçã¯
ãã®@HinchKã®ãœãªã¥ãŒã·ã§ã³ã§é³Žãããšã
ä»æ¥èšŒææžãæŽæ°ããããšãããšãã«å£ããcertbotã0.19.0ãã0.21.1ã«æŽæ°ãããŸããã
èªåã§åé¡ã«ééããã®ã¯2床ç®ã§ãã certbotãååãªæš©éãªãã§ã¢ããã°ã¬ãŒããå®è¡ãããšãåé¡ãçºçããããã§ãã æŽæ°ã¯ãµã€ã¬ã³ãã«å€±æããcertbotãå®éã«å®è¡ããããšãããšãã«ãœãããŠã§ã¢ãäžè¯ç¶æ ã§ããããšãæ€åºããããŸãŸã«ãªããŸãã ã©ã€ãã©ãªã®ã€ã³ã¹ããŒã«/æŽæ°ã«ãŒãã³ã§ã®ãšã©ãŒæ€åºã®æ¹åã¯ãå°æ¥ã®æ··ä¹±ãé²ãã®ã«åœ¹ç«ã€å¯èœæ§ããããŸãã
@utdrmacãäžèšã«ãªã³ã¯ãããœãªã¥ãŒã·ã§ã³ã¯ããããä¿®æ£ããããã«æ©èœããŸããïŒãã ããrootãšããŠå®è¡ããå¿ èŠããããŸããïŒã certbotãã¡ããã©ä»0.22.0ã«ã¢ããã°ã¬ãŒãããããšãããšãã«åããšã©ãŒãçºçããŸããïŒAWS EC2äžïŒã
å¥ã®AWSãªãŒãžã§ã³ã§ãã®åé¡ãåã³çºçããŸããã @utdrmacã®ã€ã³ã¹ããŒã«ãpipçµç±ã§ç¢ºèªã§ããŸãã https://github.com/certbot/certbot/issues/1680#issuecomment -358728515
ã€ã³ã¹ã¿ã³ã¹å šäœã«pipcertbotãããŒã«ã¢ãŠãããŸãã 以åã®ã·ã³ããªãã¯ãªã³ã¯ã®åé¿çã¯ããªãã²ã©ãããã¯ã§ããããå°æ¥çã«ã¯æ©èœããªãå¯èœæ§ããããŸãã
ç§ã¯åãåé¡ã«ééããŸããã ãããç§ã®ããã«ããã解決ãããã®ã§ãïŒ
/opt/eff.org/certbot/venv/local/bin/pipã€ã³ã¹ããŒã«æå·åã€ã³ã¿ãŒãã§ãŒã¹
ä»ã®ãã¹ãŠãè©ŠããåŸã @ HinchKã®ããã¯ã ããç§ã®ããã«åãã
ãŸããawls99ã確èªããããšãã§ããŸã-ããæ°æ¥åãåé¡ãçºçãããã¹ãŠãè©ŠããŸãããããã¹ãŠã®è§£æ±ºçãåé¡ã«åœ±é¿ãäžããããšã¯ãããŸããã§ããã
@HinchKã®æ¹æ³ã§åé¡ãä¿®æ£ãããŸããã
@gmegidishãœãªã¥ãŒã·ã§ã³ã¯ç§ã«ãšã£ãŠçŽ æŽãããåããããŸããã ç§ã¯ãããamazonlinuxec2ã€ã³ã¹ã¿ã³ã¹ã§å®è¡ããŠããŸãã
@HinchKã¯ã³ã·ã§ãã
@gmegidishã¯ç·ã§ã!!!
ããããšãããããŸããïŒïŒ
/opt/eff.org/certbot/venv/local/bin/pipã€ã³ã¹ããŒã«æå·åã€ã³ã¿ãŒãã§ãŒã¹
ç§ã®ããã«åããïŒ
@alex ãããã§äœãèµ·ãã£ãŠããã®ãèããŠã¿ãŸãããïŒ
çŸåšãhttpsïŒ//github.com/certbot/certbot/blob/master/letsencrypt-auto-source/pieces/dependency-requirements.txtã§æå·å2.0.2ãpyOpenSSL 16.2.0ãããã³ãã®ä»ã®ãã³çãã䜿çšããŠããŸãã
ãããAmazonLinuxã«é¢ãããã®ã§ããã°ã httpsïŒ//github.com/pypa/pip/issues/4464ã ãšæã
ccïŒ @reaperhulk
ã¡ãã£ãšãããã
ç§ã¯èªåã®ç®ã§ãŠã§ããCTRL-Fããããšã§ããŸããã解決çãèŠã€ããŸããã
ãã®ãªã³ã¯ã§ã @ utdrmacã¯pipã䜿çšããŠcertbotãçŽæ¥ã€ã³ã¹ããŒã«ããŸãã
https://github.com/certbot/certbot/issues/1680#issuecomment -358728515
ç§ã¯å°ãªããšãç§ã®ããã«åããã
ãããŠããããpipã䜿çšããŠcertbotãã©ã°ã€ã³ãã€ã³ã¹ããŒã«ããããšãã°nginxã®èªåæ§æã管çããããšãèããŠãã ããïŒ @bmwã«ããïŒïŒ
https://github.com/certbot/certbot/issues/1736#issuecomment -165189246
幞éã ïŒ
ç·šéïŒAmazonLinuxã«ã蚌ææžãã€ã³ã¹ããŒã«ããŠããŸãã
ãã®åé¡ãããäžåºŠããããã @ eregnierã®æçš¿ã®ãªã³ã¯ã®ç°¡åãªæé ã«åŸã£ãŠãæåã«è©ŠããŠã¿ãŸãããããã§ãcrontabã¯æ¬¡ã®ããã«ãªããŸãã
0 0,12 * * * python -c 'import random; import time; time.sleep(random.random() * 3600)' && /usr/bin/certbot renew --no-bootstrap --nginx 1> /var/log/cerbot.log 2>&1
ç§ã¯ä»æ¥åãåé¡ãæ±ããŠããŸãã @ HinchKã®è§£æ±ºçã¯
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography-2.0.2.dist-info /opt/eff.org/certbot/venv/local/lib/ python2.7 / dist-packages / cryptography-2.0.2.dist-info
ã«
ln -s /opt/eff.org/certbot/venv/local/lib64/python2.7/dist-packages/cryptography-2.2.2.dist-info /opt/eff.org/certbot/venv/local/lib/ python2.7 / dist-packages / cryptography-2.2.2.dist-info
ãã£ãŒã ãšããŠåããŸããã
ç§ã¯ä»æ¥ãã®åé¡ã«çŽé¢ããŸããã
Amazon Linux AMI4.4.30-32.54.amzn1.x86_64ã§ã®certbot0.26.1ã®åé¿çã¯æ¬¡ã®ãšããã§ãã
cd /opt/eff.org/certbot/venv/lib64/python2.7
rmdirãµã€ãããã±ãŒãžïŒç§ã®å Žåããã®ãã£ã¬ã¯ããªã¯ç©ºã§ããïŒ
ln -s dist-packages site-packages
ãããŠããããã¹ãŠã§ããããã¯ç§ã®ããã«åããŸããã
@smartITNinjaãœãªã¥ãŒã·ã§ã³ãç§ã«ãæ©èœããããšã確èªããŠãã ããã
Amazon Linux 1ãŸãã¯2ã§åé¡ãçºçããŠããŸããïŒ Amazon Linux 2ã®å Žåã certbot-auto
è¶
ããEPEL7ããã±ãŒãžã䜿çšã§ããŸãã ãããã®ããã±ãŒãžã®ã€ã³ã¹ããŒã«æ¹æ³ã«ã€ããŠã¯ã httpsïŒ//docs.aws.amazon.com/AWSEC2/latest/UserGuide/SSL-on-an-instance.html#letsencryptã§èª¬æãããŠã
@smartITNinja @lpkirby
ln dist-packages site-packages
ãããããšãããšã hard link not allowed for directory
ãŸãã
ããªãã¯æ¬åœã«dist-packagesãsite-packagesã«ããŒããªã³ã¯ããŸãããïŒ
@ saiday - ã·ã³ããªãã¯ãªã³ã¯ãäœæããŸããã
@ bmw-ããã¯èå³æ·±ãã AWSããã¥ã¡ã³ãã®äžéšã®å Žæã§ã¯ãAmazon Linux 2ã«EPELãã€ã³ã¹ããŒã«ããã¹ãã§ã¯ãªããšè¿°ã¹ãŠããŸãããŸãããã®æ¹æ³ã瀺ããŠããå ŽæããããŸãã
@bmw Amazon Linux 1
@saidayç³ãèš³ãããŸããããããŒããªã³ã¯ã§ã¯ãªãããœãããªã³ã¯ãã§ãã æ£ããæé ãå«ããã³ã¡ã³ããä¿®æ£ãããŸããã ããããšãïŒ
/opt/eff.org/certbot/venv/lib64/python2.7
drwxr-xr-x 9 root root 4096 Jul 18 14:14 dist-packages
lrwxrwxrwx 1 root root 13 Jul 18 14:26 site-packages -> dist-packages
ããã¯é¢çœãã AWSããã¥ã¡ã³ãã®äžéšã®å Žæã§ã¯ãAmazon Linux 2ã«EPELãã€ã³ã¹ããŒã«ããã¹ãã§ã¯ãªããšè¿°ã¹ãŠããŸãããŸãããã®æ¹æ³ã瀺ããŠããå ŽæããããŸãã
ã¯ã æ®å¿µãªãããAmazon Linux 2ã«ã€ããŠã¯ãäœããã®åœ¢ã§æšå¥šäºé ãæäŸããã®ã«ååãªç¥èããããŸããã ç§ãèšããã®ã¯ïŒ
certbot-auto
ãããåªå
ãããã¹ãã§ãã@smartITNinja thxãããã¯ç§ã®ã¢ããŸã³EC2ã®ç§ã®åé¡ã解決ããŸãã
ä»æ¥AmazonLinux 1EC2ã§ç§ã®ããã«åãã
也æ¯ð
ããŸããã£ãã®ã¯@smartITNinjaã®ããã¯ã ãã§ããã ç§ã¯ãã€ããã®åé¡ã«ééããŸãã certbotã¹ã¯ãªãããæŽæ°ããŠããããããã£ãããããåé¿ããããæçšãªãšã©ãŒã¡ãã»ãŒãžãæäŸããå¿ èŠããããŸãã AWS EC2ã¯äž»èŠãªãã£ã¹ããªãã¥ãŒã·ã§ã³ã§ãããLet'sEncryptã¯ãã®ãŸãŸäœ¿çšã§ããŸãã æéã
Amazon LinuxAMIã§åãåé¡ãçºçããŠããŸããã
certbotdockerã³ã³ããã䜿çšããã ãã§çµãããŸããã çŽ90ç§ããããŸããã
Dockerãã€ã³ã¹ããŒã«ãããå®è¡ãããŠãããšä»®å®ããŸãã
docker pull certbot/certbot
docker run -it --rm --name certbot \
-v "/etc/letsencrypt:/etc/letsencrypt" \
-v "/var/lib/letsencrypt:/var/lib/letsencrypt" \
certbot/certbot \
certonly --manual --preferred-challenges dns-01 --agree-tos -d "example.com" -d "*.example.com" --server https://acme-v02.api.letsencrypt.org/directory
ãã®åé¡ã¯ã䜿çšããŠããããŒã¹AMIã§çºçããŸããã ç§ã¯åé¡ã解決ããããã«ãããè¡ããŸããã ïŒã·ã³ããªãã¯ãªã³ã¯ã¯ç§ã«ã¯æ©èœããŸããã§ããïŒ
sudo rm -Rf /opt/eff.org
sudo /opt/letsencrypt/letsencrypt-auto --help --debug
ããŒã¹ãåºå®ãããã®ã§ãæåŸ éãã«ã©ããªãŠã§ããµã€ãã«ã䜿ããŸãã ãã®æ¹æ³ã¯ããŸã 蚌ææžãæã£ãŠããããããŒã¹ã§ã®ã¿äœæ¥ããŠããå Žåã«é©ããŠããŸãã
ãã§ã«èšŒææžããæã¡ã®å ŽåããŸãã¯æŽæ°ããå¿
èŠãããå ŽåïŒ
ãŸããäžè¯ããã±ãŒãžãåé€ããŸãã
sudo rm -Rf /opt/eff.org
å®è¡ããŠããã³ãã³ãã«--debug
ãè¿œå ããŸãã
@gmegidishã®ãããã§ãç§ã¯èªåã®ããã«åãã解決çã«
unset PYTHON_INSTALL_LAYOUT
sudo rm -rf /opt/eff.org/certbot/
pip install cryptography interface
./certbot-auto renew -v --debug
/opt/letsencrypt/letsencrypt-auto --help
ïŒæ©èœãããã©ããã®ãã¹ãïŒ
æŽæ°ããã«ã¯ïŒ
Amazon Linux 2ã®ããŒã¹ã€ã³ã¹ããŒã«ãè¡ã£ããšãããææ°ã®certbotã¯ã»ãšãã©ç®±ããåºããŠåäœããŸããã ã€ã³ã¹ããŒã«ããå¿
èŠãããã®ã¯ãAWSyumãªããžããªã®python-virtualenvã ãã§ããã
Amazon Linux 1ã®å Žåã¯ïŒ6505ãAmazon Linux 2ã®å Žåã¯ïŒ6506ã§ã远跡ãµããŒããšæšå¥šã€ã³ã¹ããŒã«ãã¹ãåªå ããŠçµäºããŸãã
ããã¯ããªãã¯ãããŸããïŒ sudo /opt/eff.org/certbot/venv/local/bin/pip install cryptography interface zope
ããã¯ããªãã¯ãããŸããïŒ
sudo /opt/eff.org/certbot/venv/local/bin/pip install cryptography interface zope
ããã¯ç§ã«ãšã£ãŠãããªãã¯ã§ããã
ãããŠ...ææ°ã®certbotã¢ããããŒããã¯ã©ãã·ã¥ããŸããïŒ
Requesting to rerun ./certbot-auto with root privileges...
Upgrading certbot-auto 0.40.0 to 0.40.1...
Replacing certbot-auto...
Creating virtual environment...
Installing Python packages...
Installation succeeded.
Traceback (most recent call last):
File "/opt/eff.org/certbot/venv/bin/letsencrypt", line 7, in <module>
from certbot.main import main
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/certbot/main.py", line 10, in <module>
import josepy as jose
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/__init__.py", line 41, in <module>
from josepy.interfaces import JSONDeSerializable
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/interfaces.py", line 7, in <module>
from josepy import errors, util
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/josepy/util.py", line 7, in <module>
import OpenSSL
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/__init__.py", line 8, in <module>
from OpenSSL import crypto, SSL
File "/opt/eff.org/certbot/venv/local/lib/python2.7/dist-packages/OpenSSL/crypto.py", line 12, in <module>
from cryptography import x509
ImportError: No module named cryptography
以äžã䜿çšããŠä¿®æ£ããŸããã
sudo /opt/eff.org/certbot/venv/local/bin/pip install cryptography interface zope
ãããŠããã¯ç§ãåã³åãããŸãã...å€åããã¯èªåæŽæ°ãããã¹ãã§ã¯ãããŸãããïŒ
ãããŠããã¯ç§ãåã³åãããŸãã...å€åããã¯èªåæŽæ°ãããã¹ãã§ã¯ãããŸãããïŒ
ãã®åäœãå¿
èŠãªå Žåã¯ããã©ã°--no-self-upgrade
ã䜿çšã§ããŸãããã»ãã¥ãªãã£ã®ããã®ãã¹ãŠã®å€æŽãŸãã¯Let'sEncryptã®ãµãŒããŒãšã®äºææ§ãç¶æããå€æŽãããªããã¢ãŠãããããšã«æ³šæããŠãã ããã
ãŸããAmazon Linuxã§ãã©ã°ãªãã§certbot-autoãæåã«å®è¡ãããšã次ã®ã¡ãã»ãŒãžã衚瀺ãããŠçµäºããããšã«ã泚æããŠãã ããã
FATAL: Amazon Linux support is very experimental at present...
if you would like to work on improving it, please ensure you have backups
and then run this script again with the --debug flag!
ãã®å€æŽãè¡ããããŸã§ïŒhttps://github.com/certbot/certbot/issues/6505ã§è¿œè·¡ãããŸãïŒããã®ãããªåé¡ãçºçããå¯èœæ§ããããŸãã
Ec2 Amazon LinuxAMIã€ã³ã¹ã¿ã³ã¹ã®ãœãªã¥ãŒã·ã§ã³ããããŸãã
venvã«ãã¹ãŠã®ããã±ãŒãžãã€ã³ã¹ããŒã«ããŸãã
/opt/eff.org/certbot/venv/bin/pip2 install cryptography zope interface
/opt/eff.org/certbot/venv/bin/pip2 install --upgrade pip
次ã«ãlib64 /ãã©ã«ããŒãšlib /ãã©ã«ããŒãåæããå¿
èŠããããŸãã
rsync -avz /opt/eff.org/certbot/venv/lib64/python2.7/dist-packages/ /opt/eff.org/certbot/venv/lib/python2.7/dist-packages/
ãã¹ãïŒ
/usr/local/bin/certbot-auto certonly --debug --webroot
AMIã®2ã€ã®ã€ã³ã¹ã¿ã³ã¹ã§ç§ã®ããã«åããŠããŸãã =ïŒ
ãã®äŸ¡å€ã®ããã«ãç§ã¯certbot-auto
ã¹ã¯ãªãããæŸæ£ãã次ã®æé ã§AmazonLinuxã§åäœãããããšã«ããŸããã
pip install -y python36 python36-devel python36-tools augeas-libs libffi-devel
pip-3.6 install certbot certbot-dns-route53
ç§ã¯ãããæšå¥šãããŠããªãããšãç¥ã£ãŠããŸã-ãããããã¯ç§ã®ããã«åããŸããïŒ
ã¡ãªã¿ã«ãAmazon Linux 2ã§ã¯ãããã±ãŒãžãããŒãžã£ãŒã«ãããŸããå¿ èŠãªã®ã¯
amazon-linux-extras install epel
yum -y install certbot certbot-dns-route53
解決çã¯ãåã«å®è¡EPELãæå¹ã«ããããšã§ãsudo yum-config-manager --enable epel
ãåç
§ãããã¯certbotããã¥ã¡ã³ã/åœä»€ãšAWSããã¥ã¡ã³ãã®äž¡æ¹ã«èšåãããŠããŸãã
ãµãŒããŒã®certbot-autoã¹ã¯ãªãããèªåçã«æŽæ°ããïŒãããè¡ãããããšã«æ°ã¥ããªãã£ãããã --no-self-upgrade
ãã©ã°ã«ã€ããŠç¥ã£ãŠããŸãïŒããImportErrorïŒæå·åãšããååã®ã¢ãžã¥ãŒã«ããããŸããããšããåé¡ãåçºããŸããã
ããã§æ©èœãããœãªã¥ãŒã·ã§ã³ãèŠã€ããããšãã§ããŸããïŒ https ïŒ
æãåèã«ãªãã³ã¡ã³ã
@utdrmacå°ãåã«æ°ãã蚌ææžããããã€ãããšãã«åããšã©ãŒãçºçããŸãããã³ã¡ã³ãã¯ãã¿ããã®ãå¥ãããŠäŸåé¢ä¿ã
local/lib/python2.7
ãã¹ã«ãªã³ã¯ããããšã§åéãããã次ã®ããããŒãªä¿®æ£ã«åœ±é¿ãäžããŸããã