crypt/certbot
1
0
Fork 0
mirror of https://github.com/certbot/certbot.git synced 2026-01-26 07:41:33 +03:00
Code Activity
2,490 Commits 847 Branches 151 Tags
94afa42e077d4fa8b9a45a1eb550dcf02cfefc77
Commit Graph

1204 Commits

Author SHA1 Message Date
Jakub Warmuz
fcc470d0a2 Fix "reg vs new-reg" encoding problem. 2015-07-17 14:59:32 +00:00
Jakub Warmuz
b9df69af9f Basic dev/test setup for separate package subdirectories. 2015-07-10 16:38:42 +00:00
Jakub Warmuz
b0c72410ba Unified vector loading in letsencrypt. 2015-07-10 15:49:18 +00:00
Jakub Warmuz
19c73249ca Sort vectors: acme/testdata, separate acme and letsencrypt. 2015-07-10 15:16:48 +00:00
Jakub Warmuz
c57cd239c3 Register key creation before writing out. 2015-07-10 07:25:29 +00:00
Jakub Warmuz
1d35946b4e Fix PickPluginTest.test_no_defaults. 2015-07-10 06:51:09 +00:00
Jakub Warmuz
15f443dced assert_called_once -> assertEqual(1, *.call_count) 2015-07-10 06:42:02 +00:00
Jakub Warmuz
56d8c60df6 Fix letsencrypt.tests.client_test. 2015-07-10 06:24:06 +00:00
Jakub Warmuz
0c46f80fdd assert_callend_once -> assert_called_once 2015-07-10 05:44:21 +00:00
Jakub Warmuz
30a02d4487 Accounts: raise AccountStorageError on id mismatch (instead of assertion). 
This allows find_all() to skip broken account, instead of failing with
AssertionError.
 2015-07-10 05:34:33 +00:00
Jakub Warmuz
f4d5ce1986 Include Account.id in the Account.slug. 2015-07-10 05:27:01 +00:00
Jakub Warmuz
f24479ebfc 100% coverage for letsencrypt.account. 2015-07-10 05:17:24 +00:00
Jakub Warmuz
581875bde3 Account.id: use key md5 hexdigest. 2015-07-10 05:14:50 +00:00
Jakub Warmuz
5e450e879c Save account private_key.json as 0o400. 2015-07-09 11:33:02 +00:00
Jakub Warmuz
7aa749174b Fix achall response key chmods security bug. 2015-07-09 11:26:27 +00:00
Jakub Warmuz
0d24f52f6e Expose le_util.safe_open. 2015-07-09 11:14:25 +00:00
Jakub Warmuz
3e2d1c8abc get_cert_file -> get_cert_path. 2015-07-09 10:51:21 +00:00
Jakub Warmuz
1bc9e7cb64 Registration: drop singular email/phone 2015-07-09 06:53:06 +00:00
Jakub Warmuz
7dc64e0387 Rewrite acccounts and registration. 
Save accounts to:

    /etc/letsencrypt/accounts/www.letsencrypt-dmeo.org/acme/new-reg/ \
    kuba.le.wtf@2015-07-04T14:04:10Z/ \
    {regr.json,meta.json,private_key.json}

Account now represents a combination of private key, Registration
Resource and client account metadata. `Account.id` based on the
account metadata (creation host and datetime). UI interface
(`cli._determine_account`) based on the `id`, and not on email as
previously.

Add `AccountStorage` interface and `AccountFileStorage`,
`AccountMemoryStorage` implementations (latter, in-memory, useful for
testing).

Create Account only after Registration Resource is received
(`register()` returns `Account`).

Allow `client.Client(..., acme=acme, ...)`: API client might reuse
acme.client.Client as returned by `register()`.

Move report_new_account to letsencrypt.account, client.Client.register
into client.register.

Use Registration.from_data acme API.

achallenges.AChallenge.key is now the `acme.jose.JWK`, not
`le_util.Key`. Plugins have to export PEM/DER as necessary
(c.f. `letsencrypt.plugins.common.Dvsni.get_key_path`)

Add --agree-tos, save --agree-eula to "args.eula". Prompt for EULA as
soon as client is launched, add prompt for TOS.

Remove unnecessary letsencrypt.network. Remove, now irrelevant,
`IConfig.account_keys_dir`.

Based on the draft from
https://github.com/letsencrypt/letsencrypt/pull/362#issuecomment-97946817.
 2015-07-09 06:43:45 +00:00
Jakub Warmuz
0d087788da Accept new_reg in acme.client.Client.register. 2015-07-08 19:23:12 +00:00
James Kasten
bb831206b5 Merge pull request #591 from kuba/cryptography 
Drop M2Crypto and PyCrypto.
 2015-07-08 12:04:45 -07:00
Jakub Warmuz
36eafde213 Use ComparableRSAKey autowrap throughout the code base. 2015-07-08 12:07:05 +00:00
Jakub Warmuz
0955012569 Move asn1_generalizedtime_to_dt todo comment to docstring. 2015-07-08 08:41:13 +00:00
Jakub Warmuz
9a9f91b4ee Fix typo 2015-07-07 07:21:48 +00:00
Jakub Warmuz
e05b10974c test/acme_util.py: fix nonce lengths 2015-07-07 07:20:48 +00:00
Jakub Warmuz
e276f2aa6b crypto imports cleanup 2015-07-06 12:18:31 +00:00
Jakub Warmuz
02e7154c0d Drop M2Crypto 2015-07-06 12:18:27 +00:00
Jakub Warmuz
61aa29d28c Drop PyCrypto. 2015-07-06 12:18:22 +00:00
Jakub Warmuz
9197fa6b5c acme: M2Crypto -> pyOpenSSL 2015-07-06 12:18:17 +00:00
Jakub Warmuz
e0293d81f3 acme: drop PyCrypto and use cryptography instead. 
- Use cryptography in acme.jose.jwa/jwk.
- Change Crypto.Random to os.urandom,
  c.f. https://cryptography.io/en/latest/random-numbers/?highlight=urandom
 2015-07-05 20:36:20 +00:00
Jakub Warmuz
c639673de5 Read config from $XDG_CONFIG_HOME/letsencrypt/cli.ini. 2015-07-03 14:38:09 +00:00
James Kasten
d0f26132bc Merge pull request #572 from bradmw/merge-fix 
Fixed traceback when not run as root
 2015-07-02 09:20:38 -07:00
James Kasten
e140eca4f3 Merge pull request #570 from kuba/simplehttp 
SimpleHTTP fixes
 2015-07-02 09:19:21 -07:00
Jakub Warmuz
dc9ffdbb7f Update old TODO comment. 2015-07-02 04:51:41 +00:00
Brad Warren
8b3a766dc1 Made logfile location more clear 2015-07-01 14:49:32 -07:00
Brad Warren
13913fd8e0 Added traceback dump 2015-06-30 12:57:51 -07:00
Brad Warren
85b5bc0cb2 Reimplemented exception handling 2015-06-29 17:31:48 -07:00
Brad Warren
a248980952 Fixed traceback when not run as root 2015-06-29 11:53:03 -07:00
James Kasten
abe1aa999a Merge pull request #568 from kuba/cover 
Bump coverage
 2015-06-29 09:04:41 -07:00
James Kasten
1ec90a6c5b Merge pull request #567 from kuba/nginx-integration 
Nginx bug fixes and integration tests
 2015-06-29 09:01:59 -07:00
James Kasten
e0fd6ee018 Merge pull request #565 from bradmw/traceback 
Tracebacks and Forks
 2015-06-29 08:52:14 -07:00
Jakub Warmuz
2ec451d00b IConfig.simple_http_port (fixes #542). 2015-06-29 07:58:36 +00:00
Jakub Warmuz
87f197afb2 manual: make sure user doesn't serve /root, or cert.pem/key.pem 2015-06-29 07:56:22 +00:00
Jakub Warmuz
ce32de023d Move simple_http_simple_verify to SimpleHTTPResponse.simple_verify. 2015-06-29 07:56:21 +00:00
Jakub Warmuz
36752a3dab simpleHttp needs text/plain or absent. 2015-06-29 07:53:28 +00:00
Jakub Warmuz
a0acf7c703 acme.verify.simple_http_simple_verify 2015-06-29 07:50:31 +00:00
Jakub Warmuz
051a351a43 Move test_add_chal from letsencrypt_nginx (plugins.common 100% coverage). 2015-06-28 09:39:21 +00:00
Jakub Warmuz
46707406b5 Tests: don't cover plugins.common test functions. 2015-06-28 09:38:03 +00:00
Jakub Warmuz
7abff038dc Display tests: move test_visual to tests/display.py script. 2015-06-28 09:31:42 +00:00
Jakub Warmuz
98844a196c Add test for PluginError catching in disco 2015-06-27 10:02:02 +00:00