Merge pull request #2906 from mgedmin/allow-renewal-without-understanding-vhosts

Don't fail authentication when vhost cannot be found
2026-06-03 22:08:07 -04:00 · 2016-05-06 14:55:03 -07:00 · 2016-05-06 14:55:03 -07:00 · 47c874cd1d
commit 47c874cd1d
parent a5fe088060 d73e2e68ac
2 changed files with 22 additions and 1 deletions
--- a/certbot-apache/certbot_apache/tests/tls_sni_01_test.py
+++ b/certbot-apache/certbot_apache/tests/tls_sni_01_test.py
@ -4,6 +4,7 @@ import shutil

 import mock

+from certbot import errors
 from certbot.plugins import common_test

 from certbot_apache import obj
@ -137,6 +138,16 @@ class TlsSniPerformTest(util.ApacheTest):
            set([obj.Addr.fromstring("*:443")]),
            self.sni._get_addrs(self.achalls[0]))

+    def test_get_addrs_no_vhost_found(self):
+        self.sni.configurator.choose_vhost = mock.Mock(
+            side_effect=errors.MissingCommandlineFlag(
+                "Failed to run Apache plugin non-interactively"))
+
+        # pylint: disable=protected-access
+        self.assertEqual(
+            set([obj.Addr.fromstring("*:443")]),
+            self.sni._get_addrs(self.achalls[0]))
+

 if __name__ == "__main__":
    unittest.main()  # pragma: no cover
--- a/certbot-apache/certbot_apache/tls_sni_01.py
+++ b/certbot-apache/certbot_apache/tls_sni_01.py
@ -4,6 +4,7 @@ import os
 import logging

 from certbot.plugins import common
+from certbot.errors import PluginError, MissingCommandlineFlag

 from certbot_apache import obj
 from certbot_apache import parser
@ -116,12 +117,21 @@ class ApacheTlsSni01(common.TLSSNI01):

    def _get_addrs(self, achall):
        """Return the Apache addresses needed for TLS-SNI-01."""
-        vhost = self.configurator.choose_vhost(achall.domain, temp=True)
        # TODO: Checkout _default_ rules.
        addrs = set()
        default_addr = obj.Addr(("*", str(
            self.configurator.config.tls_sni_01_port)))

+        try:
+            vhost = self.configurator.choose_vhost(achall.domain, temp=True)
+        except (PluginError, MissingCommandlineFlag):
+            # We couldn't find the virtualhost for this domain, possibly
+            # because it's a new vhost that's not configured yet (GH #677),
+            # or perhaps because there were multiple <VirtualHost> sections
+            # in the config file (GH #1042).  See also GH #2600.
+            addrs.add(default_addr)
+            return addrs
+
        for addr in vhost.addrs:
            if "_default_" == addr.get_addr():
                addrs.add(default_addr)