upstream/certbot
1
0
Fork 0
mirror of https://github.com/certbot/certbot.git synced 2026-06-06 15:22:38 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Check cert_path before using it.

Browse source
This commit is contained in:
Brad Warren 2020-04-30 17:12:49 -07:00
parent a0d02e7a06
commit 01b2bfdc49
1 changed files with 6 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
certbot-apache/certbot_apache/_internal/prefetch_ocsp.py
View file

@ -150,14 +150,13 @@ class OCSPPrefetchMixin(object):
"""
self._ensure_ocsp_dirs()
if not os.path.isfile(cert_path):
raise OCSPCertificateError("Certificate has been removed from the system.")
ocsp_workfile = os.path.join(
os.path.dirname(self._ocsp_work),
apache_util.certid_sha1_hex(cert_path))
handler = ocsp.RevocationChecker()
try:
ocsp_workfile = os.path.join(
os.path.dirname(self._ocsp_work),
apache_util.certid_sha1_hex(cert_path))
handler = ocsp.RevocationChecker()
if not os.path.isfile(cert_path):
raise OCSPCertificateError("Certificate has been removed from the system.")
if not handler.ocsp_revoked_by_paths(cert_path, chain_path, 10, ocsp_workfile):
# Guaranteed good response
cert_sha = apache_util.certid_sha1(cert_path)