Broken acme.sh with Alpine Linux 3.24

By chimo on (updated on )

If your acme.sh client randomly started throwing errors after upgrading to Alpine Linux 3.24, it might be due to issue aports#18285.

The fix is to install the real openssl package. It should purge the aws-lc-tools package that got installed:

Running `apk add openssl` at 2026-06-28 01:02:30
apk-tools 3.0.6-r0, compiled for x86_64.
(1/5) Purging aws-lc-tools (5.0.0-r0)
(2/5) Installing openssl (3.5.7-r0)
(3/5) Purging aws-lc (5.0.0-r0)
(4/5) Purging libstdc++ (15.2.0-r5)
(5/5) Purging libgcc (15.2.0-r5)
Executing busybox-1.37.0-r31.trigger
OK: 20.0 MiB in 53 packages

For me the error was:

Register account Error: {“type”:“urn:ietf:params:acme:error:malformed”,“status”:400,“detail”:"[External Account Binding] Invalid MAC on JWS request"}

Now I need to figure out why all my stunnels are broken.