Hello community
I did a docker-build from the sagitta-branch (when building still was possible), at Fri 15 Mar 2024 (near epa2). There are some certificates in my config - also an ACME-Cert:
manuel@fe73651:~$ show pki certificate <tab> Possible completions: <Enter> Execute the current command fe73651 Show x509 certificate by name mvr01-srvdns <--- the second one is my acme-cert ovpn1195 sstp-test vyosacmev6
After issuing show pki certificate, there is an python-traceback - obviosly some permission-problems with the folder /letsencrypt/live
manuel@fe73651:~$ show pki certificate Traceback (most recent call last): File "/usr/lib/python3/dist-packages/vyos/config.py", line 113, in config_dict_mangle_acme tmp = read_file(f'{vyos_certbot_dir}/live/{name}/cert.pem') ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/lib/python3/dist-packages/vyos/utils/file.py", line 44, in read_file raise e File "/usr/lib/python3/dist-packages/vyos/utils/file.py", line 38, in read_file with open(fname, 'r') as f: ^^^^^^^^^^^^^^^^ PermissionError: [Errno 13] Permission denied: '/config/auth/letsencrypt/live/mvr01-srvdns/cert.pem' During handling of the above exception, another exception occurred: Traceback (most recent call last): File "/usr/libexec/vyos/op_mode/pki.py", line 1075, in <module> show_certificate(None if args.certificate == 'all' else args.certificate, args.pem) File "/usr/libexec/vyos/op_mode/pki.py", line 882, in show_certificate certs = get_config_certificate() ^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/libexec/vyos/op_mode/pki.py", line 88, in get_config_certificate pki[certificate] = config_dict_mangle_acme(certificate, pki[certificate]) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/lib/python3/dist-packages/vyos/config.py", line 123, in config_dict_mangle_acme raise ConfigError(f'Unable to load ACME certificates for "{name}"!') vyos.base.ConfigError: Unable to load ACME certificates for "mvr01-srvdns"!
I've tried already to search for a proper bug-report with "show pki certificate" or "Permission denied: '/config/auth/letsencrypt/", but there seems to be no bug-report yet.