os-acme-client: reverting system config #5177
Description
Important notices
Before you add a new report, we ask you kindly to acknowledge the following:
- I have read the contributing guide lines at https://github.com/opnsense/plugins/blob/master/CONTRIBUTING.md
- I have searched the existing issues, open and closed, and I'm convinced that mine is new.
- The title contains the plugin to which this issue belongs
Describe the bug
acmeclient seems to be apply old configs and undoing recent changes for the entire system; it seems to happen at the same time as the final Successfully removed at 06:33 before a long gap in the logs.
i can't tell from this if it's the fault of the acmeclient plugin or something else in opnsense the plugin is using.
it's also not that soon after my changes; the changes before this are @ 2026-01-31T06:30:18.100000
here one commit as example (this has also happened other times but this is the smallest i could find that still reverted changes):
commit 88e1446bfc71a3f9ffba270b0eb4451fba4ba241
Author: (system) <(system)@hostname>
Date: Sat Jan 31 06:33:07 2026 -0800
/usr/local/opnsense/scripts/OPNsense/AcmeClient/lecert.php made changes @ 2026-01-31T06:33:06.640000 ((system))
diff --git a/config.xml b/config.xml
index 82faa462..d787a574 100644
--- a/config.xml
+++ b/config.xml
@@ -6269,9 +6269,9 @@ u2McC6AlwPddAppb1vvcAAAAFnN1enVrb0BERVNLVE9QLUFGSjQwUkwBAgMEBQYH
<picturewidget_filename>Suica_electronic_money_service_Logo.svg.png</picturewidget_filename>
</widgets>
<revision>
- <username>censored@censored</username>
- <description>/api/radvd/settings/set_entry/23e5c0c0-024b-4937-a93c-f13918e122bf made changes</description>
- <time>1769869818.10</time>
+ <username>(system)</username>
+ <description>/usr/local/opnsense/scripts/OPNsense/AcmeClient/lecert.php made changes</description>
+ <time>1769869986.64</time>
</revision>
<OPNsense>
<wireguard>
@@ -12216,7 +12216,7 @@ local_only_multicast</content>
<args>community=public</args>
</snmp>
</Nut>
- <AcmeClient version="4.3.0" persisted_at="1769866387.54" description="A secure ACME Client plugin">
+ <AcmeClient version="4.3.0" persisted_at="1769869986.64" description="A secure ACME Client plugin">
<settings>
<enabled>1</enabled>
<autoRenewal>1</autoRenewal>
@@ -12339,7 +12339,7 @@ local_only_multicast</content>
<certRefId>687fc4e5d2c02</certRefId>
<lastUpdate>1766391193</lastUpdate>
<statusCode>400</statusCode>
- <statusLastUpdate>1769866387</statusLastUpdate>
+ <statusLastUpdate>1769869986</statusLastUpdate>
</certificate>
</certificates>
<validations>
@@ -15821,7 +15821,7 @@ gd7gqGDaJlu2GkzMAJLj9Jjv4kQVPhlaJpiyDe52Z2GXQViN+vHc5KI8cYyiCu7f
<interface/>
</general>
</Hostwatch>
- <radvd version="1.0.0" persisted_at="1769869818.10" description="Radvd configuration">
+ <radvd version="1.0.0" persisted_at="1769868542.23" description="Radvd configuration">
<entries uuid="49dc6285-ed86-4925-a600-e66ae0473daf">
<enabled>1</enabled>
<interface>lan</interface>
@@ -15898,7 +15898,7 @@ gd7gqGDaJlu2GkzMAJLj9Jjv4kQVPhlaJpiyDe52Z2GXQViN+vHc5KI8cYyiCu7f
<AdvValidLifetime>15000</AdvValidLifetime>
<AdvDefaultPreference>medium</AdvDefaultPreference>
<nat64prefix>64:ff9b:1:fffe::/96</nat64prefix>
- <AdvCurHopLimit>100</AdvCurHopLimit>
+ <AdvCurHopLimit/>
</entries>
<entries uuid="0214c238-804d-4eb7-a83b-d902f6f0ce18">
<enabled>1</enabled>
@@ -15924,7 +15924,7 @@ gd7gqGDaJlu2GkzMAJLj9Jjv4kQVPhlaJpiyDe52Z2GXQViN+vHc5KI8cYyiCu7f
<AdvValidLifetime>15000</AdvValidLifetime>
<AdvDefaultPreference>medium</AdvDefaultPreference>
<nat64prefix>64:ff9b:1:fffe::/96</nat64prefix>
- <AdvCurHopLimit>100</AdvCurHopLimit>
+ <AdvCurHopLimit/>
</entries>
<entries uuid="e4dee18e-129e-4532-b996-edadb9483a5d">
<enabled>1</enabled>
@@ -15950,7 +15950,7 @@ gd7gqGDaJlu2GkzMAJLj9Jjv4kQVPhlaJpiyDe52Z2GXQViN+vHc5KI8cYyiCu7f
<AdvValidLifetime>15000</AdvValidLifetime>
<AdvDefaultPreference>low</AdvDefaultPreference>
<nat64prefix>64:ff9b:1:fffe::/96</nat64prefix>
- <AdvCurHopLimit>100</AdvCurHopLimit>
+ <AdvCurHopLimit/>
</entries>
<entries uuid="23e5c0c0-024b-4937-a93c-f13918e122bf">
<enabled>1</enabled>
@@ -15976,7 +15976,7 @@ gd7gqGDaJlu2GkzMAJLj9Jjv4kQVPhlaJpiyDe52Z2GXQViN+vHc5KI8cYyiCu7f
<AdvValidLifetime>15000</AdvValidLifetime>
<AdvDefaultPreference>low</AdvDefaultPreference>
<nat64prefix>64:ff9b:1:fffe::/96</nat64prefix>
- <AdvCurHopLimit>100</AdvCurHopLimit>
+ <AdvCurHopLimit/>
</entries>
</radvd>
</OPNsense>Tip: to validate your setup was working with the previous version, use opnsense-revert (https://docs.opnsense.org/manual/opnsense_tools.html#opnsense-revert)
To Reproduce
Steps to reproduce the behavior:
- Go to '...'
- Click on '....'
- Scroll down to '....'
- See error
Expected behavior
A clear and concise description of what you expected to happen.
Screenshots
If applicable, add screenshots to help explain your problem.
Relevant log files
/var/log/acmeclient/latest.log from ~6:25 to ~07:12
Additional context
Add any other context about the problem here.
Environment
Software version used and hardware type if relevant.
e.g.:
OPNsense 26.1_4 (amd64).