Brad Warren
b00a3cf963
Merge remote-tracking branch 'upstream/master' into plugin_tests
2015-07-22 13:47:25 -07:00
Brad Warren
303f7ffe32
Added validator code
2015-07-22 13:47:09 -07:00
Peter Mosmans
7908ea0b86
Fixed typo
...
Changed config-changes in the short help (wrong) to config_changes (right)
2015-07-20 10:17:58 +02:00
Jakub Warmuz
7a79915f0c
Common plugin: export key to PKCS8, not OpenSSL.
2015-07-18 13:00:05 +00:00
Jakub Warmuz
61e19c9882
DVSNIResponse.gen_cert, fix verify_cert, add tests.
2015-07-18 12:54:33 +00:00
Jakub Warmuz
33d7f205fa
Merge remote-tracking branch 'github/letsencrypt/master' into dvsni-verify
...
Conflicts:
acme/acme/challenges.py
2015-07-18 06:51:26 +00:00
Jakub Warmuz
fcc470d0a2
Fix "reg vs new-reg" encoding problem.
2015-07-17 14:59:32 +00:00
Jakub Warmuz
d7d98d79ce
please pylint
2015-07-13 20:24:16 +00:00
Jakub Warmuz
c2a8195f19
Move _pyopenssl_cert_or_req_san to acme.
2015-07-13 11:02:27 +00:00
Jakub Warmuz
b9df69af9f
Basic dev/test setup for separate package subdirectories.
2015-07-10 16:38:42 +00:00
Jakub Warmuz
b0c72410ba
Unified vector loading in letsencrypt.
2015-07-10 15:49:18 +00:00
Jakub Warmuz
19c73249ca
Sort vectors: acme/testdata, separate acme and letsencrypt.
2015-07-10 15:16:48 +00:00
Jakub Warmuz
c57cd239c3
Register key creation before writing out.
2015-07-10 07:25:29 +00:00
Jakub Warmuz
1d35946b4e
Fix PickPluginTest.test_no_defaults.
2015-07-10 06:51:09 +00:00
Jakub Warmuz
15f443dced
assert_called_once -> assertEqual(1, *.call_count)
2015-07-10 06:42:02 +00:00
Jakub Warmuz
56d8c60df6
Fix letsencrypt.tests.client_test.
2015-07-10 06:24:06 +00:00
Jakub Warmuz
0c46f80fdd
assert_callend_once -> assert_called_once
2015-07-10 05:44:21 +00:00
Jakub Warmuz
30a02d4487
Accounts: raise AccountStorageError on id mismatch (instead of assertion).
...
This allows find_all() to skip broken account, instead of failing with
AssertionError.
2015-07-10 05:34:33 +00:00
Jakub Warmuz
f4d5ce1986
Include Account.id in the Account.slug.
2015-07-10 05:27:01 +00:00
Jakub Warmuz
f24479ebfc
100% coverage for letsencrypt.account.
2015-07-10 05:17:24 +00:00
Jakub Warmuz
581875bde3
Account.id: use key md5 hexdigest.
2015-07-10 05:14:50 +00:00
Jakub Warmuz
5e450e879c
Save account private_key.json as 0o400.
2015-07-09 11:33:02 +00:00
Jakub Warmuz
7aa749174b
Fix achall response key chmods security bug.
2015-07-09 11:26:27 +00:00
Jakub Warmuz
0d24f52f6e
Expose le_util.safe_open.
2015-07-09 11:14:25 +00:00
Jakub Warmuz
3e2d1c8abc
get_cert_file -> get_cert_path.
2015-07-09 10:51:21 +00:00
Jakub Warmuz
1bc9e7cb64
Registration: drop singular email/phone
2015-07-09 06:53:06 +00:00
Jakub Warmuz
7dc64e0387
Rewrite acccounts and registration.
...
Save accounts to:
/etc/letsencrypt/accounts/www.letsencrypt-dmeo.org/acme/new-reg/ \
kuba.le.wtf@2015-07-04T14:04:10Z/ \
{regr.json,meta.json,private_key.json}
Account now represents a combination of private key, Registration
Resource and client account metadata. `Account.id` based on the
account metadata (creation host and datetime). UI interface
(`cli._determine_account`) based on the `id`, and not on email as
previously.
Add `AccountStorage` interface and `AccountFileStorage`,
`AccountMemoryStorage` implementations (latter, in-memory, useful for
testing).
Create Account only after Registration Resource is received
(`register()` returns `Account`).
Allow `client.Client(..., acme=acme, ...)`: API client might reuse
acme.client.Client as returned by `register()`.
Move report_new_account to letsencrypt.account, client.Client.register
into client.register.
Use Registration.from_data acme API.
achallenges.AChallenge.key is now the `acme.jose.JWK`, not
`le_util.Key`. Plugins have to export PEM/DER as necessary
(c.f. `letsencrypt.plugins.common.Dvsni.get_key_path`)
Add --agree-tos, save --agree-eula to "args.eula". Prompt for EULA as
soon as client is launched, add prompt for TOS.
Remove unnecessary letsencrypt.network. Remove, now irrelevant,
`IConfig.account_keys_dir`.
Based on the draft from
https://github.com/letsencrypt/letsencrypt/pull/362#issuecomment-97946817 .
2015-07-09 06:43:45 +00:00
Jakub Warmuz
0d087788da
Accept new_reg in acme.client.Client.register.
2015-07-08 19:23:12 +00:00
James Kasten
bb831206b5
Merge pull request #591 from kuba/cryptography
...
Drop M2Crypto and PyCrypto.
2015-07-08 12:04:45 -07:00
Jakub Warmuz
36eafde213
Use ComparableRSAKey autowrap throughout the code base.
2015-07-08 12:07:05 +00:00
Jakub Warmuz
0955012569
Move asn1_generalizedtime_to_dt todo comment to docstring.
2015-07-08 08:41:13 +00:00
Jakub Warmuz
9a9f91b4ee
Fix typo
2015-07-07 07:21:48 +00:00
Jakub Warmuz
e05b10974c
test/acme_util.py: fix nonce lengths
2015-07-07 07:20:48 +00:00
Jakub Warmuz
e276f2aa6b
crypto imports cleanup
2015-07-06 12:18:31 +00:00
Jakub Warmuz
02e7154c0d
Drop M2Crypto
2015-07-06 12:18:27 +00:00
Jakub Warmuz
61aa29d28c
Drop PyCrypto.
2015-07-06 12:18:22 +00:00
Jakub Warmuz
9197fa6b5c
acme: M2Crypto -> pyOpenSSL
2015-07-06 12:18:17 +00:00
Jakub Warmuz
e0293d81f3
acme: drop PyCrypto and use cryptography instead.
...
- Use cryptography in acme.jose.jwa/jwk.
- Change Crypto.Random to os.urandom,
c.f. https://cryptography.io/en/latest/random-numbers/?highlight=urandom
2015-07-05 20:36:20 +00:00
Jakub Warmuz
c639673de5
Read config from $XDG_CONFIG_HOME/letsencrypt/cli.ini.
2015-07-03 14:38:09 +00:00
James Kasten
d0f26132bc
Merge pull request #572 from bradmw/merge-fix
...
Fixed traceback when not run as root
2015-07-02 09:20:38 -07:00
James Kasten
e140eca4f3
Merge pull request #570 from kuba/simplehttp
...
SimpleHTTP fixes
2015-07-02 09:19:21 -07:00
Jakub Warmuz
dc9ffdbb7f
Update old TODO comment.
2015-07-02 04:51:41 +00:00
Brad Warren
8b3a766dc1
Made logfile location more clear
2015-07-01 14:49:32 -07:00
Brad Warren
13913fd8e0
Added traceback dump
2015-06-30 12:57:51 -07:00
Brad Warren
85b5bc0cb2
Reimplemented exception handling
2015-06-29 17:31:48 -07:00
Brad Warren
a248980952
Fixed traceback when not run as root
2015-06-29 11:53:03 -07:00
James Kasten
abe1aa999a
Merge pull request #568 from kuba/cover
...
Bump coverage
2015-06-29 09:04:41 -07:00
James Kasten
1ec90a6c5b
Merge pull request #567 from kuba/nginx-integration
...
Nginx bug fixes and integration tests
2015-06-29 09:01:59 -07:00
James Kasten
e0fd6ee018
Merge pull request #565 from bradmw/traceback
...
Tracebacks and Forks
2015-06-29 08:52:14 -07:00
Jakub Warmuz
2ec451d00b
IConfig.simple_http_port ( fixes #542 ).
2015-06-29 07:58:36 +00:00
