upstream/certbot
1
0
Fork 0
mirror of https://github.com/certbot/certbot.git synced 2026-06-03 22:08:07 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
10988 commits 873 branches 156 tags 129 MiB
Commit graph

927 commits

Author SHA1 Message Date
Brad Warren
1f258449a4
Release 0.19.0 2017-10-04 12:11:20 -07:00
Seong-ho Cho
f6be07da74 fix #5111 AttributeError occured with >=pyOpenSSL-17.2.0 (#5112) 2017-09-15 16:57:10 -07:00
Brad Warren
6988491b67 Merge pull request #5080 from certbot/candidate-0.18.0 
Release 0.18.0
 2017-09-07 05:57:12 -07:00
Brad Warren
a7267b0fcd Bump version to 0.19.0 2017-09-05 16:07:03 -07:00
Brad Warren
756c44f7af
Release 0.18.0 2017-09-05 16:06:43 -07:00
Brad Warren
d710c441e2 Specify the minimum six version in acme 2017-09-05 10:07:32 -07:00
Bob Strecansky
a8e1df6e55 [#4535] - Unwrap max retries exceeded errors 2017-08-07 20:15:05 -04:00
Bob Strecansky
b3216727da [#4535] - Unwrap max retries exceeded errors 2017-08-07 19:34:20 -04:00
Bob Strecansky
8a78ef9675 [#4535] - Unwrap max retries exceeded errors 2017-08-07 15:33:01 -04:00
Bob Strecansky
2e7ec00e8c [#4535] - Unwrap max retries exceeded errors 2017-08-07 08:55:43 -04:00
Bob Strecansky
f7dedae388 [#4535] - Unwrap max retries exceeded errors 2017-08-07 08:39:39 -04:00
Bob Strecansky
9ae987d72b [#4535] - Unwrap max retries exceeded errors 2017-08-07 08:35:00 -04:00
Bob Strecansky
0c14d9372d Merge branch 'master' of github.com:certbot/certbot into max_retries_exceeded 2017-08-07 08:14:54 -04:00
Bob Strecansky
9b8c8f103e [#4535] - Unwrap max retries exceeded errors 2017-08-06 23:44:28 -04:00
Bob Strecansky
8555f4a0bd [#4535] - Unwrap max retries exceeded errors 2017-08-06 23:30:11 -04:00
Bob Strecansky
521f783020 [#4535] - Unwrap max retries exceeded errors 2017-08-06 23:02:07 -04:00
Bob Strecansky
5fb1568b6e [#4535] - Unwrap max retries exceeded errors 2017-08-06 22:26:17 -04:00
Bob Strecansky
57e664077f [#4535] - Unwrap max retries exceeded errors - fixing spacing 2017-08-06 10:51:10 -04:00
Bob Strecansky
880c35f3e3 [#4535] - Unwrap max retries exceeded errors 2017-08-05 10:39:04 -04:00
Bob Strecansky
3cc94798b6 [#4535] - Unwrap max retries exceeded errors 2017-08-05 10:26:01 -04:00
Bob Strecansky
959d72feb0 [#4535] - Unwrap max retries exceeded errors 2017-08-05 10:16:47 -04:00
Bob Strecansky
1e71ff5377 [#4535] - Unwrap max retries exceeded errors 2017-08-02 22:59:27 -04:00
Brad Warren
744c993040 Bump version to 0.18.0 2017-08-01 17:01:19 -07:00
Brad Warren
912d235466
Release 0.17.0 2017-08-01 17:01:07 -07:00
Bob Strecansky
18d3df78e8 [#4535] - Unwrap max retries exceeded errors 2017-07-26 20:37:13 -04:00
Jacob Hoffman-Andrews
b3004fe6cf Handle critical SAN extension. (#4931) 
* Handle critical SAN extension.

* Add testdata/critical-san.pem.
 2017-07-18 15:57:00 -07:00
yomna
bc3765d6d0 No longer mask failed challenge errors with encoding errors (#4867) 
*     no longer masker failed challenge errors with encoding errors

* simplifying through type-checking

* bytes
 2017-07-10 21:05:52 -05:00
ohemorange
57e56cc97b Candidate 0.16.0 (#4908) 
* Release 0.16.0

* Bump version to 0.17.0
 2017-07-06 15:57:11 -07:00
Brad Warren
5318945267 Hide exceptions that occur during session.close() (#4891) 
* Hide exceptions that occur during session.close()

This fixes #4840. Exceptions that are raised out of __del__ methods are caught
and printed to stderr. By catching any exceptions that occur, we now prevent
this from happening.

Alternative solutions to this would have been either not calling
session.close() at all or adding a close() method to acme.client.ClientNetwork,
acme.client.Client, and certbot.client.Client and using certbot.client.Client
in a context manager to ensure close() is called. The former means that users
of the ACME library never properly close their connections until their program
exits and the latter adds a lot of complexity and nesting of client code for
little benefit.

* Only catch Exceptions
 2017-07-05 09:25:44 -04:00
Brad Warren
f4094e4d3f Finish oldest tests (#4857) 
* Pin oldest version of packaged python deps

* Install security extras in oldest tests

* Revert "bump requests requirement to >=2.10 (#4248)"

This reverts commit 402ad8b353.

* Use create=True when patching open on module
 2017-06-23 09:40:59 -07:00
Brad Warren
0aab244846 Bump version to 0.16.0 2017-06-08 09:32:57 -07:00
Brad Warren
74acd1ee5a
Release 0.15.0 2017-06-08 09:32:41 -07:00
ohemorange
239184882e Enable IPv6 support in standalone plugin (#4773) 
* add TLSSNI01DualNetworkedServers

* use DualNetworkedServers in certbot/plugins/standalone.py
  also, make both servers run on the same port.

* make probe_sni connect on ipv6 and ipv4 using None

* mimic BSD-like conditions to get test coverage

* test ServerManager taking into account BSD systems

* pass tests even if python is compiled without ipv6 support
 2017-06-06 17:04:45 -07:00
Schuyler Duveen
7531c98916 fixes #3616: make sure there is always one time that we test the sock… (#4712) 2017-06-06 10:11:33 -07:00
Jacob Hoffman-Andrews
10bac107ee Add an account deactivate utility script. (#4254) 
* Add an account deactivate utility script.

This is handy if you created an account with a tool other than Certbot, and want
to deactivate the account.

* Move deactivate.py to tools.

* Add test for ConflictError.

* Fix lint error.

* Document how to set server.
 2017-05-17 14:24:59 -07:00
Jacob Hoffman-Andrews
686f5d6c81 Move 'jwk' and 'alg' fields to protected header. (#4677) 
* Move 'jwk' and 'alg' fields to protected header.

Previously, these were in the unprotected JWS header, which Boulder currently
allows. However, the next version of the spec doesn't allow anything in the
unprotected header. Moving these fields now allows server implementers who are
implementing the Certbot/Boulder version of ACME
(https://github.com/letsencrypt/boulder/blob/master/docs/acme-divergences.md) to
use JOSE libraries that don't support unprotected headers.

Fixes #4417.

* Only protect existing headers.
 2017-05-17 13:46:52 -07:00
Brad Warren
2754a2d0ae Bump version to 0.15.0 2017-05-04 16:52:29 -07:00
Brad Warren
4be7efbf74
Release 0.14.0 2017-05-04 16:52:13 -07:00
Brad Warren
5ca8f7c5b9 Add lockfile (#4449) 
* add lock_file

* cleanup lock file

* Add LockFile tests

* add lock_dir

* add lock_dir_until_exit

* add set_up_core_dir and move lock_dir_until_exit

* Move lock_and_call to certbot.test.util

* Add lock to Apache

* Add lock to the Nginx plugin

* Improve permissions error message

* sort plugins

* add test_prepare_order

* provide more actionable permissions error

* Document and catch use of OSError

* don't lock a directory twice

* add conditional dependency on ordereddict

* Add lock_test

* expand sorted plugins comment

* Add lock_test to lint

* make make_lineage more conventional and flexible

* enhance lock_test.py

* add lock_test to tox

* Readd success message

* make py26 happy

* add test_acquire_without_deletion
 2017-05-01 14:49:12 -07:00
Brad Warren
8fa12bef8e Tell the world we're Python 3 compatible (#4568) 
* Mention python 3 support in setup.py

* Build universal (py2 and py3 compatible) wheels

* Mention Python 3.3+ support in docs

* we work on python 3.6 too
 2017-04-28 16:06:45 -07:00
Brad Warren
89af460792 Reuse dynamic install_requires. (#4554) 
* Revert "Make argparse dependency unconditional. (#2249)"

  This reverts commit 8f10103496.

* Update comment about environment markers
 2017-04-28 15:03:50 -07:00
Jacob Hoffman-Andrews
b3116af5b4 Add url and kid to jws. (#4340) 
* Add url and kid to jws.

This will be required in order to implement the latest ACME spec, which uses
these protected header fields.

* Add comments and fix lint.

* Enforce mutual exclusivity of jwk and kid.
 2017-04-21 18:49:57 -07:00
Jacob Hoffman-Andrews
d557c39c99 Remove obsolete fields from Registration. (#4339) 
Authorizations and certificates were in the original spec but have since been
deleted.
 2017-04-07 09:52:12 -07:00
Ngo The Trung
315b6d0cf1 Fix unorderable types error (#4409) 
If the updated datetime collides, the comparator of heapq will move
onto the AuthorizationResource value and throws an "unorderable type"
error.

This adds an index value to the element tuple to ensure that they are
always strictly ordered.
 2017-04-07 09:46:27 -07:00
Jacob Hoffman-Andrews
cacee80c51 Move make_csr into acme.crypto_util (#4165) 
It's relatively finicky to make a CSR appropriate to pass to poll_and_request_issuance. I think most users want to be able to give a list of domains and a private key, and get back a CSR. This branch adds that functionality to crypto_util.

Note that the two new functions take arguments, and return values, as PEM-encoded buffers. This is a departure from some existing ACME interfaces that take PyOpenSSL types. I've discussed with the Certbot team, and we agree that this is broadly the direction the ACME API should take, so that users of the module don't need to import PyOpenSSL themselves, or use its primitives.

* Add make_csr.

* accept privkey

* Tweak API.

* Remove make_csr from certbot package.

* Skip test in older Pythons.

* Move get_Extensions call under protection.

* Remove assertIn because not backwards-compatible.

* Fix encoding, and use PEM.

* Fix test

* Fix tests on py35.

* Fix error in test.

* Make import_csr_file always return PEM.

Also delete get_sans_from_csr (unused) and get_names_from_csr (newly unused).

* Fix function doc.

* Fix indent

* Fix call of obtain_certificate_from_Csr

* lint

* Handle review feedback.

* Fix test.
 2017-04-07 09:43:33 -07:00
Erica Portnoy
82f3f7523e Candidate 0.13.0 (#4475) 
* Release 0.13.0

* Bump version to 0.14.0
 2017-04-06 11:33:32 -07:00
Damien Tournoud
5c93ceb675 acme: Make the network timeout configurable (#4237) 
This follows up on https://github.com/certbot/certbot/pull/4217, but allows users to override the default setting.
 2017-03-27 09:24:05 -07:00
dokazaki
8011fb2879 Add mypy (#4386) 
* Initial configuration of mypy in box, correction of base mypy errors.

* Move mypy install to toe

* Add pylint comments for typing imports.

* Remove typing module for Python 2.6 compatibility.
 2017-03-18 19:10:10 -07:00
Jacob Hoffman-Andrews
018a304cd6 Remove Link rel=next for authzs and new-certs. (#4303) 
An early version of the spec indicated that clients should process issuance
sequentially, following Link rel=next from an account URL to an authz URL, to a
new-cert URL. However, the spec has long since moved to putting these URLs in
the directory.

Certbot nominally supports either; This change consolidates on always using the
directory, simplifying things and making the transition to the latest ACME spec
easier.

* Revert "Revert "Remove Link rel=next for authzs and new-certs." (#4277)"

This reverts commit 11ec1eb911.

* Save new_authzr_uri with account for older clients.

* Add test that new_authzr_uri exists in regr.

* Restore backwards compatibility for new_authzr_uri.

* Fix account_test.

* Add test for deprecated URI argument to request_challenges.

* Review feedback.

* Fix test

* Add omitempty to new_cert_uri.
 2017-03-14 21:44:57 -07:00
Brad Warren
662c323b55 Build wheels correctly for Python 2.6 (#4313) 
* stop conditionally pinning mock version in acme

* stop conditionally pinning mock version in certbot

* stop conditionally pinning mock version in apache

* stop conditionally pinning mock version in nginx

* stop conditionally pinning mock version in letshelp

* stop conditionally pinning mock version in compatibility-test
 2017-03-10 10:58:03 -08:00
Erik Rose
8f10103496 Make argparse dependency unconditional. (#2249) 
The primary motivation is to avoid a branch, giving bugs one fewer place to hide. But, as a bonus, more people get a more bugfixed version of argparse. (To use the example from the argparse docs, people stuck on Python 3.2.3 can get bugfixes that made it into the stdlib only in 3.2.4.)
 2017-03-08 17:10:12 -08:00
Blake Griffith
12a6e49cf1 Remove use of sha1 (#4271) 
These are not security critical uses of sha1 but they should still be removed.
 2017-03-02 21:16:19 -08:00
Jacob Hoffman-Andrews
53117b0ce0 Remove UnexpectedUpdate exceptions. (#4197) 
* Remove UnexpectedUpdate exceptions.

These exceptions trigger when the server sends the client back an object with a
field that doesn't exactly match what the client previously sent.

This causes unnecessary breakage in various cases, doesn't prevent any problems,
and isn't required by spec.

* Back out all UnexpectedUpdate removals except registration update.
 2017-03-02 17:27:29 -08:00
Erica Portnoy
5e671682ca Candidate 0.12.0 (#4286) 
* Release 0.12.0

* Bump version to 0.13.0
 2017-03-02 15:26:24 -08:00
Brad Warren
11ec1eb911 Revert "Remove Link rel=next for authzs and new-certs." (#4277) 2017-03-02 10:31:15 -08:00
Damien Tournoud
44a6ec29c5 Fix direct usages of the root logger (#4236) 
Some code uses `logging.debug` and `logging.info` instead of
the file-specific logger in `logger.debug` and `logger.info`.
 2017-02-27 18:13:06 -08:00
Brad Warren
402ad8b353 bump requests requirement to >=2.10 (#4248) 2017-02-27 17:17:08 -08:00
Jacob Hoffman-Andrews
a92ca8e97c Add default timeout to ClientNetwork. (#4217) 
In https://community.letsencrypt.org/t/letsencrypt-cli-hangs-on-certificate-request/27211,
a community member pointed out that Certbot seems to hang when there are
routing problems.
 2017-02-22 18:48:01 -08:00
Jacob Hoffman-Andrews
1380e59f56 Remove Link rel=next for authzs and new-certs. (#4194) 
An early version of the spec indicated that clients should process issuance
sequentially, following Link rel=next from an account URL to an authz URL, to a
new-cert URL. However, the spec has long since moved to putting these URLs in
the directory.

Certbot nominally supports either; This change consolidates on always using the
directory, simplifying things and making the transition to the latest ACME spec
easier.
 2017-02-13 19:50:33 -08:00
Brad Warren
a6b51f1edd Bump version to 0.12.0 2017-02-01 09:50:57 -08:00
Brad Warren
30bc68ccde
Release 0.11.0 2017-02-01 09:50:42 -08:00
Brad Warren
be5bcfe463 Remove optional dependencies (#4088) 
* Stop using already_listening in standalone

* remove already_listening

* remove psutil entirely

* fix #595

* Add basic perform test

* make pep8 happy

* Add test_perform_eacces

* add _setup_perform_error

* Add test_perform_unexpected_socket_error

* add test_perform_eaddrinuse_no_retry

* add test_perform_eaddrinuse_retry

* cleanup tests

* stop using dnspython

* don't install dns extras in tox

* remove dns extras from setup.py

* Add simple_verify back to DNS response

* remove dnspython from oldest tests
 2017-01-30 16:55:54 -08:00
Brad Warren
240438eec7 Incorporate feedback from 4113 (#4115) 2017-01-30 09:44:55 -08:00
Josh Soref
6a39a42f45 Spelling (#4101) 
* spelling: action

* spelling: artifacts

* spelling: asymmetric

* spelling: attempts

* spelling: bizarre

* spelling: certbot

* spelling: certificate

* spelling: certainly

* spelling: challenge

* spelling: client

* spelling: collated

* spelling: correct

* spelling: considered

* spelling: custom

* spelling: distinguish

* spelling: encoding

* spelling: enhancement

* spelling: equivalent

* spelling: execution

* spelling: existence

* spelling: failed

* spelling: handshake

* spelling: hyphen

* spelling: initialized

* spelling: initialization

* spelling: interpretation

* spelling: letsencrypt

* spelling: multiline

* spelling: multipart

* spelling: necessary

* spelling: otherwise

* spelling: output

* spelling: overridden

* spelling: positives

* spelling: preferable

* spelling: progress

* spelling: recommended

* spelling: referring

* spelling: relativity

* spelling: request

* spelling: requiring

* spelling: separate

* spelling: source

* spelling: specified

* spelling: standard

* spelling: successfully

* spelling: unparseable

* spelling: useful
 2017-01-26 16:21:54 -08:00
Brad Warren
c650c9a709 add test_post_successful_retry 2017-01-25 15:10:24 -08:00
Brad Warren
46d9809fa1 add test_post_failed_retry 2017-01-25 15:08:01 -08:00
Brad Warren
a5da551965 fix stylistic nits with POST retry 2017-01-25 14:10:19 -08:00
Frederic BLANC
b6fecca7ba fixes #2244 2017-01-25 13:38:00 -08:00
Brad Warren
bb669528b3 Remove old references to pep8 in our code (#4073) 2017-01-19 11:21:25 -08:00
Blake Griffith
49d46ef99a Impelment account deactivation [revision requested] (#3571) 
Impelment account deactivation
 2017-01-17 16:00:07 -08:00
Peter Eckersley
796220f6f1 Adopt consistent linting practices for the entire tree (#3843) 
* Use the certbot pylintrc for the ACME module

* Further parallelise lint, and don't run PEP8 checks
 2017-01-17 12:53:13 -08:00
Craig Smith
94c23479e2 Add option to specify revocation reason (#3242) (#3988) 
This includes two new tests in the integration test script to check that
boulder gets the correct code. The encoding is specified in RFC5280
5.3.1. The codes that boulder will accept are a subset of that,
specified in `boulder.revocation.reasons.go`.
 2017-01-11 18:26:55 -08:00
Brad Warren
364a6d8a2d Release 0.10.0 (#4022) 
* Release 0.10.0

* Bump version to 0.11.0
 2017-01-11 12:01:33 -08:00
Ondřej Surý
379807bf0d Add workaround for platforms where injecting pyopenssl to urllib3 (#3990) 
fails with requests package (Ubuntu Trusty)
 2017-01-10 11:39:40 -08:00
Peter Eckersley
59c602d9ca Parallalelise nosetests from tox (#3836) 
* Parallalelise nosetests from tox

* Parallelise even more things, break even more things

* Now unbreak all the tests that aren't ready for ||ism

* Try to pass tests!

 - Remove non-working hack in reporter_test
 - also be selective about ||ism in the cover environment

* Try again

* certbot-apache tests also work, given enough time

* Nginx may need more time in Travis's cloud

* Unbreak reporter_test under ||ism

* More timeout

* Working again?

* This goes way faster

* Another big win

* Split a couple more large test suites

* A last improvement

* More ||ism!

* ||ise lint too

* Allow nosetests to figure out how many cores to use

* simplify merge

* Mark the new CLI tests as ||izable

* Simplify reporter_test changes

* Rationalise ||ism flags

* Re-up coverage

* Clean up reporter tests

* Stop modifying testdata during tests

* remove unused os
 2016-12-06 20:39:16 -08:00
Peter Eckersley
8b67a58f3c Ensure tests pass with openssl 1.1 (#3827) 
* Ensure tests pass with openssl 1.1

A bunch of the acme.standalone and acme.crypto_util tests were using
weak crypto that is now prohibited :/

* lint

* lintlint

* Fix symlink
 2016-12-02 15:11:35 -08:00
Brad Warren
edbb3a73c6 Take advantage of urllib3 pyopenssl rewrite (#3805) 
* pin requests version in py26-oldest

* Determine requests security deps dynamically

Starting with requests 2.12, pyasn1 and ndg-httpsclient are no longer
needed to inject pyopenssl into urllib3. This change allows us to
determine whether or not these dependencies are required at install
time. If an older version of requests is used, these packages are
still installed. If a new version of requests is used, they are not
reducing the number of dependencies we have.

* Bump requests version in certbot-auto

* Use pkg_resources in activate test

Due to pip's lack of dependency resolution, the change to use
requests[extras] causes errors in acme.util_test because pkg_resources
accurately detects the "missing" dependency.

There isn't a real problem here. The problem comes from a brand new
requests and ancient pyopenssl as well as a unit test for
functionality we plan to remove in our next release. I modified
the unit test to fix the problem for now.

* Use six instead of pkg_resources for test

* Require requests<=2.11.1 in py27-oldest test

If we don't do this, we get test failures for the certbot package
which is actually a good thing! pkg_resources is catching the
unlikely but possible problem I describe in #3803 and erroring out
saying it is missing the necessary dependencies to run certbot.
Good job package resources.

* Undo changes to acme.util_test
 2016-12-01 10:47:08 -08:00
Peter Eckersley
0956e61c7c Remove the sphinxcontrib.programout [docs]dependency (#3830) 
- By making a static text file at release time, and including that
   instead.
 2016-11-30 10:47:10 -08:00
Jacob Hoffman-Andrews
88076e46c7 Improve debug logs. (#3126) 
Print request and response bodies with newlines, rather than all on one line.
Remove "Omitted empty field" log, which gets logged meaninglessly for every JSON
serialization.
Remove duplicated logging of responses.
Log the base64 version of the nonce, rather than turning it into bytes and
logging the backslash-escaped version of those bytes.
Only pass -vv in tests.
 2016-10-26 18:07:33 -07:00
Blake Griffith
7773568332 Update ACME error namespace to match the new draft. (#3469) 
* Update error namespace in acme package.

* Use new error namespace in certbot.

* fix lint and py26 errors.

* Update with_code docstring.

* @pde's suggestions
 2016-10-12 14:46:02 -07:00
Brad Warren
f5bf66ba36 Check version requirements on optional dependencies (#3618) 
* Add and test activate function to acme.

This function can be used to check if our optional dependencies are
available and they meet our version requirements.

* use activate in dns_resolver

* use activate in dns_available() in challenges_test

* Use activate in dns_resolver_test

* Use activate in certbot.plugins.util_test

* Use acme.util.activate for psutil

* Better testing and handling of missing deps

* Factored out *_available() code into a common function

* Delayed exception caused from using acme.dns_resolver without
  dnspython until the function is called. This makes both
  production and testing code simpler.

* Make a common subclass for already_listening tests

* Simplify mocking of USE_PSUTIL in tests
 2016-10-11 17:50:11 -07:00
Blake Griffith
dcb3fb7382 Use correct Content-Types in headers. (#3566) 
* Add Content-Type: app/jose+json to post requests.

* Add tests for proper content type.
 2016-10-05 12:28:38 -07:00
Brad Warren
76a92d4cde Release Certbot 0.9.0 (#3583) 
* Release 0.9.0

* Bump version to 0.10.0
 2016-10-05 10:13:28 -07:00
Brad Warren
da22e64563 Allow tests to pass without dnspython (#3581) 
* move skipUnless to test_util

* add skip_unless to acme test_util

* Make dns_resolver_tests work with and without dnspython

* make acme.challenges_test pass when dns is unavailable
 2016-10-04 16:49:51 -07:00
Peter Eckersley
1584ee8ac6 Merge pull request #3466 from certbot/all-together-now 
DNS challenge support in the manual plugin and general purpose --preferred-challenges flag
 2016-09-22 14:15:25 -07:00
Brad Warren
7b7477ab94 Merge branch 'prettify' into all-together-now 2016-08-29 15:20:00 -07:00
Roland Shoemaker
349c2c5915 Switch out error message 2016-08-29 12:04:27 -07:00
Roland Shoemaker
5115e6ac2f Support both invalidEmail and invalidContact errors 2016-08-26 16:17:19 -07:00
Jacob Hoffman-Andrews
2c411056fa Remove obsolete test. 2016-08-19 11:54:35 -07:00
Jacob Hoffman-Andrews
20f9f5ce45 Merge branch 'master' of github.com:certbot/certbot into remove-unnecessary 2016-08-19 10:09:39 -07:00
Mathieu Leduc-Hamel
9958a7fc1c Handle missing dnspython by displaying a warning message 2016-08-18 21:41:33 -04:00
Wilfried Teiken
b2505b996f Switch to always using dnspython (requires dnspthon>=1.12). 
Also, address some documentation nits.
 2016-07-31 20:36:00 -04:00
Wilfried Teiken
827c93510c Merge branch 'add_dns01_challenge' of github.com:wteiken/letsencrypt into add_dns01_challenge 2016-07-31 20:13:36 -04:00
Ville Skyttä
c7b89c334b Use logger.warning instead of deprecated warn 2016-07-22 09:54:28 +03:00
Peter Eckersley
24cc6b208a Avoid newline 2016-06-22 15:24:33 -07:00
Peter Eckersley
56488b1899 Explain the most likely cause of a missing replay nonce error 2016-06-20 18:18:25 -07:00
Peter Eckersley
b53b47c5d7 Merge pull request #3125 from certbot/lint-lint 
Improve user experience for linting.
 2016-06-13 14:22:11 -07:00
Jacob Hoffman-Andrews
4f2a8f86d8 Remove unnecessary check on registration returned. 
Right now the ACME client checks that the returned registration matches the
registation posted, but there's no guarantee this will always be the case, and
this only introduces unnecessary fragility.
 2016-06-13 11:52:36 -07:00
Jacob Hoffman-Andrews
91cd19158e Improve user experience for linting. 
Don't run pep8 for directories that we don't actually enforce pep8 on.
Install dependencies with -q.
Don't print reports, they make it hard to find the actual errors.
Remove deprecated fields from acme .pylintrc, they cause unnecessary messages
about deprecation.
 2016-06-04 22:53:51 -07:00
Brad Warren
36e63a7372 Bump version to 0.9.0 2016-06-02 13:50:37 -07:00
Brad Warren
dcadcf8d42
Release 0.8.0 2016-06-02 13:50:30 -07:00
bmw
590d816fa9 s/assert_called_once/assert_called_once_with (#3100) 2016-05-31 16:03:42 -07:00
Brad Warren
7153220b41 Bump version to 0.8.0 2016-05-27 13:30:54 -07:00
Brad Warren
46d8f6e18c
Release 0.7.0 2016-05-27 13:30:46 -07:00
bmw
e01878a813 Merge pull request #3034 from chbrown/patch-1 
Typo: too many self's
 2016-05-26 14:27:56 -07:00
schoen
9a640e01fd Merge pull request #2962 from chrismarget/master 
Randomize serial numbers of DVSNI challenge certificates.
 2016-05-20 16:39:24 -07:00
Christopher Brown
3aed4fc59d Typo: too many self's 
The extra self will push along the arguments, resulting in the accurate but not very helpful error message: "AttributeError: 'JWKRSA' object has no attribute 'kty'"
 2016-05-19 14:19:13 -05:00
chrismarget
6dd9991371 Fix invalid attribute for pylint 2016-05-17 20:10:20 +00:00
chrismarget
85e9624555 Added test for random certificate serial numbers from gen_ss_cert. 2016-05-17 19:50:57 +00:00
Jacob Hoffman-Andrews
8f696b3ad7 Reuse HTTP connections. (#2855) 
Fixes #2778
 2016-05-15 13:48:51 -07:00
Brad Warren
c8cf0b4600 Bump version to 0.7.0 2016-05-11 18:04:27 -07:00
Brad Warren
8e742fa3c6
Release 0.6.0 2016-05-11 18:04:15 -07:00
chrismarget
f7b10bb83e Serial number randomization with improved portability. 
No exception handling required this time.
 2016-05-11 17:06:29 -04:00
chrismarget
4759bc9034 Trying to make pylint happy. 2016-05-11 16:41:19 -04:00
bmw
255e205c1a Merge pull request #2963 from certbot/ok-directory 
Allow unrecognized fields in Directory object
 2016-05-11 13:38:09 -07:00
chrismarget
6fbd5fa811 Added missing whitespace. 2016-05-11 16:04:08 -04:00
chrismarget
7f70c09c53 Randomize serial numbers of DVSNI challenge certs. 
Should now work on python 2.7 and 3.3+
 2016-05-11 15:19:39 -04:00
Jacob Hoffman-Andrews
6f9e28fcca Allow unrecognized fields in directory. 2016-05-11 11:11:52 -07:00
chrismarget
a7ef4940b6 Randomize DVSNI challenge certificate serial number, now for python 3.3. 2016-05-11 13:57:18 -04:00
Jacob Hoffman-Andrews
88499238ed Merge pull request #2797 from kuba/omitempty-error-type-detail 
ACME: omitempty Error.detail, Error.type (fixes #2289)
 2016-05-11 09:50:09 -07:00
chrismarget
639efaeb7b Randomize serial numbers of DVSNI challenge certificates. 2016-05-11 12:01:53 -04:00
Wilfried Teiken
9396e92a96 Fix lint issues. 2016-04-25 00:46:45 -04:00
Wilfried Teiken
6196cf0aa7 Merge branch 'master' into add_dns01_challenge 2016-04-25 00:40:27 -04:00
Brad Warren
b956a968c6 this commit was authored by the Certbot Project 2016-04-14 16:56:02 -07:00
Brad Warren
ae6f1c62f1 Rename misc files 2016-04-14 10:20:23 -07:00
Jakub Warmuz
0839168de7
Fake deserialization error in test_check_response_not_ok_jobj_no_error 2016-04-10 07:50:39 +00:00
Jakub Warmuz
8145b7c11b
ACME: omitempty Error.detail, Error.type (fixes #2289) 2016-04-09 08:17:26 +00:00
bmw
b347e9fba1 Merge pull request #2775 from kuba/directory-meta 
Add Directory.meta (fixes #2768)
 2016-04-07 18:37:03 -07:00
Jakub Warmuz
e4076633c8
Add Directory.meta (fixes #2768) 2016-04-06 06:14:31 +00:00
Brad Warren
37817130b0 Bump version to 0.6.0 2016-04-05 17:55:29 -07:00
Brad Warren
4d4cfb414f
Release 0.5.0 2016-04-05 17:55:18 -07:00
Brad Warren
1fe1ac3102 Merge branch 'master' into acme-continuity-cruft 2016-03-07 18:48:30 -08:00
Brad Warren
ec1b14e388 Whatsa DV challenge 2016-03-07 18:47:23 -08:00
Brad Warren
22a9c7e3c2 Remove unused 'other' module 2016-03-07 18:44:30 -08:00
Brad Warren
a941b6830d remove crufty continuity challenges 2016-03-07 18:42:44 -08:00
Erik Rose
55b63fca0d Require setuptools>=1.0 in all packages that use the cryptography lib. 
When pip-installing any of these packages, pip hit our permissive, any-version "setuptools" dependency first and then ignored all subsequent, more constrained ones, like cryptography's "setuptools>=1.0". See https://github.com/pypa/pip/issues/988. It thus, on a box with setuptools 0.9.8, stuck with that version. Then, at runtime, letsencrypt crashed because pkg_resources couldn't satisfy cryptography's setuptools>=1.0 requirement.

This change lets us pip-install our packages and have it work. We'll need to make sure our direct requirements (all of them) satisfy the more constrained requirements of our dependencies. Yes, it is disgusting.
 2016-03-03 18:02:38 -05:00
Brad Warren
b3166497f0 Merge branch 'master' into keinwerkzeug 2016-02-25 17:16:12 -08:00
Peter Eckersley
593cb3a038 alphabetanit 2016-02-25 16:58:54 -08:00
Peter Eckersley
9a36439e1b Tweaks per review 2016-02-22 17:26:55 -08:00
bmw
356cf890e6 Merge pull request #2482 from pfeyz/acme-example-client-fix 
wrap csr in ComparableX509
 2016-02-22 09:55:08 -08:00
Jakub Warmuz
29d16b027e
Separate pep8 config for acme. 2016-02-20 11:01:25 +00:00
Peter Eckersley
8d61c86c8c Well actually 
We don't need stripping after all.
 2016-02-17 16:11:50 -08:00
Peter Eckersley
9fc723f316 Exceptional coverage 2016-02-16 11:52:48 -08:00
Peter Eckersley
a9780c2ddc Test trailing whitespace in headers 2016-02-16 11:15:35 -08:00
Peter Eckersley
7f2ca5d065 Document use of email.utils parser 2016-02-16 11:15:35 -08:00
Peter Eckersley
7c8638f108 Life is simpler if we don't support HTTP/1.0 ACME servers 
(Though in practice with py27+ we still support them)
 2016-02-16 11:05:11 -08:00
Paul Feitzinger
d6b213d1e3 wrap csr in ComparableX509 2016-02-16 12:00:11 -05:00
Peter Eckersley
49aeffdebb Address some review comments 2016-02-15 12:53:10 -08:00
Wilfried Teiken
7c3271545f Do not log an error when getting NXDOMAIN. 2016-02-13 01:05:35 -05:00
Wilfried Teiken
e8d09ea994 Merge remote-tracking branch 'upstream/master' into add_dns01_challenge 2016-02-12 23:32:34 -05:00
Brad Warren
45ee1eb889 Merge branch 'testing-dev-extras' 2016-02-12 16:19:57 -08:00
Brad Warren
e493a0deff Merge branch 'acme-new-authz-directory' 2016-02-12 16:11:56 -08:00
Peter Eckersley
6fd3dba737 Two digit years are used/tested in py26 only 2016-02-12 15:08:32 -08:00
Peter Eckersley
c3ddb47cfa All this import voodoo is not required for py2.6+ 2016-02-12 12:59:53 -08:00
Peter Eckersley
f1faedaa72 This two digit year case is hard to trigger 2016-02-12 12:48:20 -08:00
Peter Eckersley
0afb424173 py26 doesn't like adding lists & tuples 2016-02-12 12:29:13 -08:00
Peter Eckersley
ae69a74465 Tidy 2016-02-12 11:38:26 -08:00
Peter Eckersley
ca7f190efc lint & cover 2016-02-12 11:29:36 -08:00
Peter Eckersley
6f99d9f3d9 fixen 2016-02-11 18:22:41 -08:00
Peter Eckersley
a34dc94b1c bugfixes & minimalism 2016-02-11 17:28:07 -08:00
Peter Eckersley
ef404d4985 slightly simpler / more compact 2016-02-11 16:12:42 -08:00
Peter Eckersley
0ecaa8abca rm unused var 2016-02-11 15:45:51 -08:00
Peter Eckersley
df383ee6e4 Remove werkzeug dependency by parsing Retry-After ourselves 
Fixes #2409
Progress on #1301
 2016-02-11 15:44:23 -08:00
Peter Eckersley
563c115044 Bump version to 0.5.0 2016-02-10 18:49:27 -08:00
Peter Eckersley
74063851e3
Release 0.4.0 2016-02-10 18:48:40 -08:00
Peter Eckersley
b6d0632a10 Bump version to 0.4.0 2016-01-27 17:05:25 -08:00
Peter Eckersley
cf218dd7f1
Release 0.3.0 2016-01-27 15:12:30 -08:00
Rémy HUBSCHER
b8690cd471 Make wheel universal 2016-01-21 10:11:23 +01:00
bmw
30d8394535 Merge pull request #2199 from letsencrypt/0.2.0 
Include 0.2.0 release in master's history, and bump version
 2016-01-19 17:56:44 -08:00
bmw
8301f2f57b Merge pull request #1665 from erikrose/letsencrypt-auto-release 
Make letsencrypt-auto release-suitable, self-upgrading, and self-contained.
 2016-01-19 15:16:49 -08:00
Jakub Warmuz
3a90b4c7c5
acme: fix empty set repr py3 compat 2016-01-18 21:39:25 +00:00
Peter Eckersley
5535c0675b Revert "Revert "Fix "global" max_attempt bug (#1719)"" 2016-01-18 12:46:10 -08:00
Peter Eckersley
e87de72662 Revert "Fix "global" max_attempt bug (#1719)" 2016-01-18 12:13:51 -08:00
Peter Eckersley
e93c16a11b Merge pull request #2111 from kuba/bugs/1719 
Fix "global" max_attempt bug (#1719)
 2016-01-18 11:39:59 -08:00
Erik Rose
e1bd1645b6 Revert moving mock to test_requires. 
We'll take this up later, but I don't want to hold up the new le-auto on this debate.
 2016-01-15 18:25:26 -05:00
Peter Eckersley
91d958aa59 Bump version to 0.2.1.dev0 2016-01-15 15:03:53 -08:00
Erik Rose
ecbe2a5c69 Merge master in to get the unconditionalization of dependencies. 2016-01-15 13:43:36 -05:00
Wilfried Teiken
c15581bcfd Fix lint problems. 2016-01-14 23:37:05 -05:00
Wilfried Teiken
b65da1da76 Merge branch 'add_dns01_challenge' into test-add_dns01_challenge 2016-01-14 23:05:49 -05:00
Wilfried Teiken
b9dafc203f Merge branch 'master' into add_dns01_challenge 2016-01-14 23:01:06 -05:00
Brad Warren
e59fcf7ddd
Release 0.2.0 2016-01-14 17:39:18 -08:00
Brad Warren
2e034e6c6c Revert changes to acme's setup.py 2016-01-14 11:42:10 -08:00
Erik Rose
2771249522 Merge master in before computing a known-good set for 0.2.0. 
This also serves as a suitable base to build sdists for isnot.org, so we can try the old le-auto script against mockless versions of the LE packages.
 2016-01-13 18:23:51 -05:00
Erik Rose
c3ea4bdc9b Roll back change to acme's pylintrc, which was needed to get lint to pass on Travis's Trusty beta (sudo) infra. 
We're stepping off that infra briefly, to keep it the same as boulder's. When we retire the old le-auto, we'll step back on and change boulder to use it as well.
 2016-01-13 17:22:59 -05:00
Peter Eckersley
9500f2b3c3 Merge pull request #2139 from kuba/acme-pylint-80 
ACME: pylint to 80 chars
 2016-01-13 00:31:02 -08:00
bmw
de89eb89e2 Merge pull request #2135 from kuba/acme-client-dead-error 
Remove dead code (error in except)
 2016-01-12 14:50:15 -08:00
bmw
9167871a82 Merge pull request #2132 from kuba/acme-account-key-none-docs 
Fix wrong doc comment: account_public_key is None
 2016-01-12 14:49:43 -08:00
bmw
591f0376e8 Merge pull request #2089 from wteiken/fix_regr_from_resource 
Update new_authzr_uri when querying or updating a registration
 2016-01-12 14:45:54 -08:00
Erik Rose
a3288a92b9 Disable too-many-instance-attributes for the acme linter. 
This should make the linter pass and allow us to merge the letsencrypt-auto-release branch when it's ready. IHNI why it passes on master without this disabled.
 2016-01-12 14:25:36 -05:00
Erik Rose
ed562645e0 Master master into letsencrypt-auto-release so Travis will build it. 2016-01-11 21:45:16 -05:00
Erik Rose
6c05197a43 Remove mock as an install requirement. 
The motivation is to free us of a reliance on a rather modern version of setuptools, which caused le-auto failures for people on Wheezy and other older distros. (The alternative would have been to forcibly upgrade setuptools as the old le-auto did, but less is more.)

Mock is used only in tests, so we move it to tests_require. It will still be installed automatically when setup.py test is run. Give all packages a test_suite so this works.

The "testing" extra remains for optional packages not required for the nose tests but used in tox. However, the extra is much less useful now and is a candidate for deletion. We could roll the list of packages therein into the tox config so as not to favor any particular package.

Remove tests_require=install_requires, which I don't think does anything useful, since install requirements are implicitly installed when running setup.py test.

Fix tests to pass with mock removed. We had to stop them pulling down LE from PyPI, since the current version there (0.1.1) requires mock and explodes when `letsencrypt` is run.
 2016-01-11 21:26:41 -05:00
Wilfried Teiken
05a61c181b Lint fixes. 2016-01-10 21:42:20 -05:00
Wilfried Teiken
9179276cb9 Modify dns_resolver_test to skip tests if dnspython is not available. 2016-01-10 20:59:11 -05:00
Wilfried Teiken
1ff121b616 pcoverage fix 2016-01-10 18:08:16 -05:00
Wilfried Teiken
2d8de74f4a pcoverage fix 2016-01-10 17:13:25 -05:00
Wilfried Teiken
0010610a4a py3X fix 2016-01-10 17:06:03 -05:00
Wilfried Teiken
cfe56cbd92 2.6 compatible skipping of tests. 2016-01-10 17:00:14 -05:00
Jakub Warmuz
bdd9fa4485
Quickfix too-many-instance-attributes. 
https://github.com/letsencrypt/letsencrypt/pull/2135#issuecomment-170381179
 2016-01-10 18:47:04 +00:00
Jakub Warmuz
86d6d27045
Clean up dev/testing extras messup (fixes #2140). 2016-01-10 18:37:41 +00:00
Jakub Warmuz
fac2ed41d8
ACME: pylint to 80 chars 2016-01-10 18:17:35 +00:00
Jakub Warmuz
31a64a0e9f
ACME: default to new_authzr_uri form Directory 2016-01-10 18:01:58 +00:00
Wilfried Teiken
49c40e7a58 Skip dns_resolver tests if dnspython is not available. 2016-01-10 13:00:38 -05:00
Wilfried Teiken
f2b52bd830 Fix dcumentation 2016-01-10 12:58:29 -05:00
Jakub Warmuz
0a536d50be
Remove dead code (error in except) 2016-01-10 17:31:50 +00:00
Jakub Warmuz
c10bfd6efc
Fix wrong doc comment: account_public_key is None 2016-01-10 14:01:34 +00:00
Jakub Warmuz
3cddb15023
Merge remote-tracking branch 'github/letsencrypt/master' into pyopenssl 2016-01-10 11:25:12 +00:00
Jakub Warmuz
1182dcf0c2
Merge remote-tracking branch 'github/letsencrypt/master' into acme-pylint 2016-01-10 11:17:03 +00:00
Peter Eckersley
bf4793039a Merge remote-tracking branch 'origin/master' into pyopenssl 2016-01-10 02:39:54 -08:00
Wilfried Teiken
d842f268e5 - Use dnspython3 fir py3X environments. 
- Fix encoding for simple_verify.
 2016-01-09 17:07:20 -05:00
Wilfried Teiken
e7ce5e9f53 Merge branch 'master' into add_dns01_challenge 2016-01-09 15:19:47 -05:00
Wilfried Teiken
446994e8ef Limit length of try block. 2016-01-09 14:58:19 -05:00
Jakub Warmuz
b26dda3afe
Add Python 3.5 trove classifier to acme 2016-01-09 13:38:12 +00:00
Jakub Warmuz
a367c98409
Merge remote-tracking branch 'github/letsencrypt/master' into acme-pylint 2016-01-09 12:50:13 +00:00
Erik Rose
f2586fbc11 Merge master in so Travis will test this PR. 2016-01-08 17:08:30 -05:00
bmw
96b55c8f34 Revert "Don't use cryptography version 1.2" 2016-01-08 17:02:35 -05:00
Erik Rose
1d719bd89c Teach le-auto about dependencies that are conditional on the Python version. 2016-01-08 15:31:22 -05:00
Brad Warren
b1e67f241e Fix merge conflicts properly 2016-01-08 14:31:30 -05:00
Brad Warren
36679c2daa Merge branch 'master' into pyopenssl 2016-01-08 14:27:07 -05:00
Brad Warren
a7a7380110 Merge branch 'master' into pyopenssl 2016-01-08 14:26:13 -05:00
Brad Warren
b039c884d8 Don't use cryptography version 1.2 2016-01-08 14:09:44 -05:00
Brad Warren
639cbeb7d0 sans_text_dump_comment += 1 2016-01-07 21:11:09 -05:00
Jakub Warmuz
dba69d079f
Separate pylintrc for acme 2016-01-07 22:20:46 +00:00
Jakub Warmuz
cc168c8ef1
Generate fresh pylintrc 
pylint 1.4.2, -generate-rcfile
 2016-01-07 22:17:42 +00:00
Brad Warren
946f4474da Add warning about multiple SANs extensions 2016-01-07 16:45:46 -05:00
Brad Warren
32957cc5ec Comment _pyopenssl_cert_or_req_san method 2016-01-07 16:25:23 -05:00
Jakub Warmuz
6548f343bf
Add invalidEmail error type to acme 
Related to:
- #1923
- https://github.com/ietf-wg-acme/acme/pull/65
 2016-01-07 21:20:25 +00:00
Brad Warren
710eb59f41 Fix IDN CSR test name 2016-01-07 16:19:21 -05:00
Jakub Warmuz
a36a59ba6c
Fix waiting->exhausted in PollError tests 2016-01-07 20:31:40 +00:00
Jakub Warmuz
4d04d14b20
Fix "global" max_attempt bug (#1719) 2016-01-07 20:25:07 +00:00
Jakub Warmuz
fea4b24fb8
Add test to discover "global" max_attempt bug (#1719) 2016-01-07 20:20:57 +00:00
Brad Warren
0f239e0029 Add comment about dependency version 2016-01-07 13:04:29 -05:00
Brad Warren
caf9b1f261 Clarify _get_idn_sans method 2016-01-07 13:00:29 -05:00
Wilfried Teiken
02a493011e Remove superfluous except: and change Exception returned if dnspython is not 
available.
 2016-01-06 22:56:59 -05:00
Brad Warren
0b1e1d0937 Use test_util.load_cert 2016-01-06 22:07:45 -05:00
Brad Warren
51bc1311a2 Fixed rogue quotes 2016-01-06 15:34:42 -05:00
Brad Warren
1cdff156c9 Add IDN test 2016-01-06 15:33:36 -05:00
Brad Warren
96114ba84e Add IDN SANs CSR and cert 2016-01-06 15:10:08 -05:00
Brad Warren
ba93c57697 Added large sans cert and csr test 2016-01-06 14:22:13 -05:00
Brad Warren
32650a6d08 Added 100 SANs cert and csr 2016-01-06 14:10:57 -05:00
Brad Warren
1af997158d Fix repr differences between PyOpenSSL versions 2016-01-06 13:39:14 -05:00
Brad Warren
6f7299f9ed Merge branch 'master' into pyopenssl 2016-01-06 12:40:56 -05:00
Brad Warren
6719d0d380 Rewrote _pyopenssl_cert_or_req_san 2016-01-06 12:40:44 -05:00
Wilfried Teiken
6bc3060fbb More fixes for travis tests 2016-01-06 03:11:09 -05:00
Wilfried Teiken
b73b410729 Exclude import error case from coverage in dns_resolver 2016-01-06 02:59:25 -05:00
Wilfried Teiken
52c487f462 Add new 'test' extras and update tox.ini accordingly. 2016-01-06 02:44:19 -05:00
Wilfried Teiken
d2ced2de6a Dep fixes for lint/coverage. 2016-01-06 01:48:12 -05:00
Wilfried Teiken
a9a5e60bc5 Added requirements for coverage and lint. 2016-01-06 01:26:32 -05:00
Wilfried Teiken
dc743fb57c Move DNS resolver to separate module to decouple dependencies and testing. 2016-01-06 01:11:24 -05:00
Wilfried Teiken
57c265c7f3 Setup.py and style fixes 2016-01-06 00:27:07 -05:00
Wilfried Teiken
fd2709a6fa Move dnspython dependency to tests only and only import the dns.resolver when 
actually resolving the client.  That way user code that does not call
'simple_verify' for DNS01 challenges does not depend on dnspython.
 2016-01-05 23:58:23 -05:00
Wilfried Teiken
4403a78e52 Move txt_records_for_name out of class. 2016-01-05 22:25:24 -05:00
wteiken
b5bb90628c Style changes. 2016-01-05 20:33:30 -05:00
wteiken
7bd7e7ca23 Remove response argument from exception and fix eror messages. 2016-01-05 19:51:45 -05:00
bmw
4c28fc417c Merge pull request #2073 from alex/more-typos 
Fixed a pair of typos in docstrings
 2016-01-05 18:02:19 -05:00
Wilfried Teiken
e1b4797cbf Change the semantics of query_registration and update_registration to set 
new_authzr_uri from the server if available
 2016-01-05 01:12:21 -05:00
Wilfried Teiken
7747dc8488 Remove non-compliant hexdigit encoding for dns-01 challenges (#2052 is now 
merged).
 2016-01-04 19:46:28 -05:00
Alex Gaynor
0454031cce Fixed a pair of typos in docstrings 2016-01-03 14:37:08 -05:00
Wilfried Teiken
97fb1a03f9 Documentation fixes. 2016-01-03 13:19:32 -05:00
Alex Gaynor
dc3a2da9b1 Fixed a typo in a comment 2016-01-03 10:49:50 -05:00
Wilfried Teiken
64f3f53467 Fix 2016-01-02 13:51:37 -05:00
Brad Warren
8680a29c9d Merge branch 'master' into pyopenssl 2016-01-02 13:11:11 -05:00
Wilfried Teiken
7e2a1532ef Move dns record retrieval into a separate method. 2016-01-02 12:53:47 -05:00
Wilfried Teiken
ffc2b1ee78 - Lint fixes 
- Add test for multiple TXT records returned
- Add extra parameter in DNS01.validation to select hexdigit vs. bas64 encoded
  validation
 2016-01-02 01:42:47 -05:00
Wilfried Teiken
55ca1b484f Initial verison of DNS-01 implementation 2016-01-01 20:55:52 -05:00
Jakub Warmuz
fd4f6fb2ee
Use GH pages for IETF spec repo link 2015-12-29 08:47:14 +00:00
Brad Warren
75b551762b Expose wrapped, not dump 2015-12-23 19:09:05 -05:00
Brad Warren
980637a936 Audit calls to test_util.load_cert 2015-12-23 17:12:33 -05:00
Brad Warren
66a861ead1 Add test_comparable_{cert,csr} 2015-12-23 13:48:52 -05:00
bmw
0bbe7c235b Merge pull request #1965 from Natim/patch-1 
Update the ACME github repository URL.
 2015-12-23 11:26:43 -05:00
Rémy HUBSCHER
ebfe1254ea Update the ACME github repository URL. 2015-12-23 13:54:58 +01:00
Rémy HUBSCHER
212f04fd92 @kuba review 2015-12-20 16:03:12 +01:00
Brad Warren
a28f8fe442 Drop version dependency 2015-12-17 17:47:15 -08:00
Brad Warren
7efdac6c66 Fixed SANs problem 2015-12-17 17:28:36 -08:00
Rémy HUBSCHER
6958710030 @pde review. 2015-12-17 10:13:09 +01:00
Brad Warren
d21ca90560 Use dump on ComparableX509 2015-12-16 17:33:08 -08:00
Brad Warren
db712534e5 Make dump() public 2015-12-16 16:53:12 -08:00
Alex Gaynor
d983429f82 Fixed a type in a docstring 2015-12-12 16:12:10 -05:00
Peter Eckersley
c34088d349 Merge pull request #1879 from alex/patch-1 
Fixed an inaccurate comment
 2015-12-12 13:03:45 -08:00
Alex Gaynor
916a946bcd Simplify the ACME example client by using an existing method 2015-12-12 14:50:26 -05:00
Alex Gaynor
f5fde98ab6 Fixed an inaccurate comment 
While it's true that older Pythons do not do (critical) TLS validation by default, that's not what this warning is about.
 2015-12-12 14:38:21 -05:00
Gene Wood
753022d8e3 Clarify error messages with acronym DV 2015-12-05 11:02:14 -08:00
Jakub Warmuz
7a6e084e3a
Unbreak master 2015-12-03 15:55:17 +00:00
Peter Eckersley
9c687a2a7d Release 0.1.0 
-----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1
 
 iQEcBAABAgAGBQJWX4UBAAoJEE0XyZXNl3XyjBgH/RijhtTma/4VTolatVImHjfL
 KWBMM7awew3oruZOqKgzhdAe4tHnIcDoBh+yMq0R+ssXcHj57RrUIFB+8heTG7eP
 4ynpnXEKRlRAjJ/V+53ZIvIT+bnCBFFJt2tb7c6qPzIW4xWY/hEJo13QBqCEIpE1
 p/2C1ZNE6He7HSOsw9NtHxhuNsuvNs0XRwdCamJ2rUF0XOT0jH05KdILfEWq22To
 tApNUMsAIoNuZv2EQDSgmtrpQTeZPza3Ht3Xv4vABvoIBwpBw+QXFeWi24hzHye5
 kj6Rp5rFNbgNqyvP2UlnEaME+zyQiNsjIXc2RumUyGY8ufj47twOvD4hBdDrEYs=
 =lraD
 -----END PGP SIGNATURE-----

Merge tag 'v0.1.0'

Release 0.1.0
 2015-12-03 01:38:15 -08:00
Marius Gedminas
c7dbf8aa24 Avoid trailing whitespace in pretty-printed JSON 
Fixes a failing test on Python 3.3:

    ======================================================================
    FAIL: test_json_dumps_pretty (acme.jose.interfaces_test.JSONDeSerializableTest)
    ----------------------------------------------------------------------
    Traceback (most recent call last):
      File "/home/mg/src/letsencrypt/acme/acme/jose/interfaces_test.py", line 97, in test_json_dumps_pretty
        '[\n    "foo1",{0}\n    "foo2"\n]'.format(filler))
    AssertionError: '[\n    "foo1", \n    "foo2"\n]' != '[\n    "foo1",\n    "foo2"\n]'
      [
    -     "foo1",
    ?            -
    +     "foo1",
          "foo2"
      ]

    ----------------------------------------------------------------------

(The test expected trailing whitespace on Python < 3.0, while it
should've been checking for Python < 3.4.)
 2015-12-03 09:52:59 +02:00
Peter Eckersley
5747ab7fd9
Release 0.1.0 2015-12-02 15:55:43 -08:00
bmw
e2e2a29dee Merge pull request #1635 from kuba/poll_and_request-timeout 
poll_and_ri: handle STATUS_INVALID, add max_attempts (fixes #1634)
 2015-11-30 16:36:24 -08:00
Jakub Warmuz
218379c2be
poll_and_ri: handle STATUS_INVALID, add max_attempts (fixes #1634) 2015-11-29 09:26:03 +00:00
Peter Eckersley
43fdb8977f Merge pull request #1413 from kuba/acme-custom-errors 
Custom acme.messages.Error (fixes #946).
 2015-11-28 02:06:36 -08:00
Brad Warren
b2ca861a27 Revert "Quikfix" 
This reverts commit a97a702210.
 2015-11-25 09:44:28 -05:00
Brad Warren
a97a702210 Quikfix 2015-11-24 16:04:00 -05:00
Patrick Figel
c175ff955e Remove Content-Type checks from http-01 
Content-Type type restrictions were removed in ACME, see
69ac2baade

fixes #1595
 2015-11-24 09:54:33 +01:00
Patrick Figel
2bc0c31f2e Trim trailing whitespace during challenge self-verification 
fixes #1322
 2015-11-21 08:59:35 +01:00
Peter Eckersley
ca05b35a24 Merge pull request #1412 from kuba/pep8 
pep8 love
 2015-11-12 00:29:15 -08:00
Rémy Léone
e64149cae8 Redeclared names without usage 2015-11-11 13:27:09 +01:00
Jakub Warmuz
0dbb235961
Merge remote-tracking branch 'github/letsencrypt/master' into acme-standalone-log 2015-11-08 06:51:34 +00:00
Jakub Warmuz
c18f0b7073
Add rtype docs 2015-11-08 06:34:28 +00:00
Jakub Warmuz
37574e60e1
hexdigest lower() 2015-11-08 06:29:48 +00:00
Jakub Warmuz
8208470395
More docs about ports 2015-11-08 06:26:22 +00:00
Jakub Warmuz
6d32c2e5a4
Rename DVSNIRequestHandler to BaseRequestHandlerWithLogging. 2015-11-07 23:00:43 +00:00
Jakub Warmuz
1f6f6a7451
Logging in HTTP01RequestHandler: more and not to sys.stderr. 2015-11-07 22:57:39 +00:00
Jakub Warmuz
465efc9601
Custom acme.messages.Error (fixes #946). 2015-11-07 20:01:29 +00:00
Jakub Warmuz
d0a2b38457
pep8 for docs/conf.py 2015-11-07 19:36:08 +00:00
Jakub Warmuz
bbb7606fe1
Kill dvsni in acme 2015-11-07 18:35:41 +00:00
Jakub Warmuz
2266baf775
Renames around DVSNIServer 2015-11-07 18:24:17 +00:00
Jakub Warmuz
b864c77b62
Add tls-sni-01 to acme 2015-11-07 14:24:43 +00:00
Jakub Warmuz
c805ebc2bf
Use KEY in DVSNI tests 2015-11-07 14:24:43 +00:00
Jakub Warmuz
3a5f7a026b
Fix old reference to SimpleHTTP 2015-11-07 14:24:43 +00:00
Jakub Warmuz
dc60cdbc7d
User-Agent support in acme (default: acme-python, fixes #1351). 
In order to override the default (`acme-python`), clients (including
Let's Encrypt: #858, #1397) should create a custom
acme.clietn.ClientNetwork object and pass it to
acme.client.Client.__init__.
 2015-11-07 08:55:54 +00:00
Brad Warren
3532404705 Nit fix 2015-11-02 17:18:44 -08:00
Jakub Warmuz
99c5c2034f
Revert "Quickfix for misterious abstract-class-little-used" 
This reverts commit 01bc073111.
 2015-11-01 11:19:35 +00:00
Jakub Warmuz
44adeadf1b
Merge remote-tracking branch 'github/letsencrypt/master' into http-01 2015-11-01 11:09:59 +00:00
Jakub Warmuz
1d36a15ab7
Kill simpleHttp in acme 2015-11-01 11:01:22 +00:00
Jakub Warmuz
ea3611afe6
http-01 for standalone 2015-11-01 11:01:22 +00:00
Jakub Warmuz
01bc073111
Quickfix for misterious abstract-class-little-used 2015-11-01 11:01:22 +00:00
Jakub Warmuz
602f0b2dbe
Add http-01 to acme 2015-11-01 11:01:22 +00:00
Jakub Warmuz
d2c5b87b95
Fix documentation for account{,_public}_key docs in acme.challenges. 
account_key and account_public_key are JWK, not ComparableKey.
 2015-10-31 19:50:10 +00:00
Jakub Warmuz
dc81575527
Factor out _TokenDVChallenge. 2015-10-31 19:50:10 +00:00
Jakub Warmuz
f8185c1913
Add Python 2.6 setup.py classifiers. 2015-10-31 11:47:25 +00:00
bmw
c8999f86a1 Merge pull request #1200 from kuba/bugs/1085 
Remove serve_forever2/shutdown2 (reduces probability of #1085).
 2015-10-29 18:20:36 -07:00
bmw
971fa153ea Merge pull request #1169 from kuba/acme-example-client 
Update ACME example client
 2015-10-29 16:27:44 -07:00
bmw
d23a7fd40d Merge pull request #1203 from kuba/offline-unittests2 
Offline unittest v2.
 2015-10-29 15:45:48 -07:00
Jakub Warmuz
4cc0610679
Remove serve_forever2/shutdown2 (reduces probability of #1085). 
I'm not even sure why `serve_forever2` and `shutdown2` were introduced
in the first place... It probably follows from my misconception about
the SocketServer module. After having studied the module again, I come
to the conclusion that we can get rid of my crap, simultanously
reducing probability of #1085 (hopefully down to 0)!

`server_forever` is used throughout tests instead of `handle_request`,
because `shutdown`, following docs, "must be called while
serve_forever() is running in another thread, or it will deadlock",
and our `probe_sni` HTTP request is already enough to kill single
`handle_request`.

We don't need to use any busy waiting block or `sleep` between serve
and shutdown; studying CPython source code leads to the conclusion
that the following construction is non-blocking:

```python
import threading, SocketServer
s = SocketServer.TCPServer(("", 0), None)
t = threading.Thread(target=s.shutdown)
t.start()
s.serve_forever()  # returns immediately
t.join()  # returns immediately
```
 2015-10-29 21:02:21 +00:00
Jakub Warmuz
c3fbed1f81
Offline unittest v2. 
Supersedes https://github.com/letsencrypt/letsencrypt/pull/1183.
 2015-10-29 08:19:54 +00:00
Jakub Warmuz
d5a5224dbd
No newlines in JWK thumbprint (fixes #1165) 2015-10-28 08:20:58 +00:00
Jakub Warmuz
323f9a10a1
Update example ACME client to work with Boulder 2015-10-28 07:27:52 +00:00
Jakub Warmuz
f42515ebe4
Include example ACME client in docs 2015-10-28 07:16:40 +00:00
Jakub Warmuz
e8cfedb34d
Move example ACME client to acme subpkg 2015-10-28 07:10:53 +00:00
Till Maas
e5f06bacbd Add missing newline to standalone README 2015-10-27 20:12:34 +01:00
Jakub Warmuz
cd07d3aa27
MANIFEST: include examples dir for acme 2015-10-24 13:39:38 +00:00
Jakub Warmuz
3202f35a90
Merge remote-tracking branch 'github/letsencrypt/master' into py2.6-3 2015-10-22 05:42:01 +00:00
Jakub Warmuz
ca464c25fb Split JOSE API docs 2015-10-21 17:06:36 -07:00
Jakub Warmuz
5b757bdff2 Split ACME API docs 2015-10-21 17:06:36 -07:00
Jakub Warmuz
fe49889b16 Per subpkg requirements.txt for RTD 2015-10-21 17:06:36 -07:00
Jakub Warmuz
f922b9b694 Split docs into subpkgs (fixes #969) 2015-10-21 17:06:36 -07:00
Jakub Warmuz
946ee63238 docs_extra for subpkgs 2015-10-21 17:06:36 -07:00
Jakub Warmuz
5fe5d69192 Include docs in subpkgs tarballs 2015-10-21 17:06:36 -07:00
Jakub Warmuz
baa6c4aeec gitignores for various doc files 2015-10-21 17:06:36 -07:00
Jakub Warmuz
86f01d1fa9 sphinx: copyright 2014-2015 2015-10-21 17:06:36 -07:00
Jakub Warmuz
dfdb64c505 sphinx: default_role py:obj 2015-10-21 17:06:36 -07:00
Jakub Warmuz
1f0cbda9fc Unify autodoc options 2015-10-21 17:06:36 -07:00
Jakub Warmuz
1a6fc9ce76 RTD theme everywhere! 2015-10-21 17:06:36 -07:00
Jakub Warmuz
607ea59fd3 Add extensions for subpkgs docs 2015-10-21 17:06:35 -07:00
Jakub Warmuz
635008f5e6 Configure intersphinx 2015-10-21 17:06:35 -07:00
Jakub Warmuz
b9868d3c97 sphinx-quickstart for subpkgs 
```
sphinx-quickstart --dot _ --project acme-python --author Let's Encrypt Project -v 0 --release 0 --language en --suffix .rst --master index --ext-autodoc --ext-intersphinx --ext-todo --ext-coverage --ext-viewcode --makefile --batchfile acme/docs
sphinx-quickstart --dot _ --project letsencrypt-apache --author Let's Encrypt Project -v 0 --release 0 --language en --suffix .rst --master index --ext-autodoc --ext-intersphinx --ext-todo --ext-coverage --ext-viewcode --makefile --batchfile letsencrypt-apache/docs
sphinx-quickstart --dot _ --project letsencrypt-nginx --author Let's Encrypt Project -v 0 --release 0 --language en --suffix .rst --master index --ext-autodoc --ext-intersphinx --ext-todo --ext-coverage --ext-viewcode --makefile --batchfile letsencrypt-nginx/docs
sphinx-quickstart --dot _ --project letshelp-letsencrypt --author Let's Encrypt Project -v 0 --release 0 --language en --suffix .rst --master index --ext-autodoc --ext-intersphinx --ext-todo --ext-coverage --ext-viewcode --makefile --batchfile letshelp-letsencrypt/docs
sphinx-quickstart --dot _ --project letsencrypt-compatibility-test --author Let's Encrypt Project -v 0 --release 0 --language en --suffix .rst --master index --ext-autodoc --ext-intersphinx --ext-todo --ext-coverage --ext-viewcode --makefile --batchfile letsencrypt-compatibility-test/docs
```
 2015-10-21 17:06:35 -07:00
Jakub Warmuz
934301abc6 Fix ACME module description 2015-10-21 17:06:35 -07:00
Jakub Warmuz
e52922b11e
Fix getsockname usage with IPv6 2015-10-20 20:44:18 +00:00
Jakub Warmuz
11495c5820
Better logging for start/stop acme.standalone servers. 2015-10-20 20:16:12 +00:00
Jakub Warmuz
f2792d0fb8
Merge remote-tracking branch 'github/letsencrypt/master' into py2.6-3 2015-10-18 19:31:16 +00:00
Jakub Warmuz
7a9ceaae2e
lint 2015-10-18 12:33:06 +00:00
Jakub Warmuz
4090085b17
Avoid race conditions in acme.standalone_test. 2015-10-18 12:22:54 +00:00
Jakub Warmuz
09fa1153d9
Merge remote-tracking branch 'github/letsencrypt/master' into py2.6-3 2015-10-17 07:28:04 +00:00
Jakub Warmuz
e7809563b1
Address first batch of Seth's review comments. 2015-10-15 17:23:43 +00:00
Jakub Warmuz
244a020b0a
Merge remote-tracking branch 'github/letsencrypt/master' into standalone2 2015-10-14 17:26:35 +00:00
Jacob Hoffman-Andrews
d5fd9986de Add rateLimited error type. 2015-10-14 09:26:59 -07:00
Jakub Warmuz
c4042e6ce8
Busy wait loop for testing serve_forever2 
This fixes race conditions, such as those in
https://travis-ci.org/letsencrypt/letsencrypt/jobs/84990239:

+ nosetests -c /dev/null --with-cover --cover-tests --cover-package acme --cover-min-percentage=100 acme
.......................................................................................................................................................................................................................................................................................................................................................Exception in thread Thread-5:
Traceback (most recent call last):
  File "/opt/python/2.7.9/lib/python2.7/threading.py", line 810, in __bootstrap_inner
    self.run()
  File "/opt/python/2.7.9/lib/python2.7/threading.py", line 763, in run
    self.__target(*self.__args, **self.__kwargs)
  File "/opt/python/2.7.9/lib/python2.7/SocketServer.py", line 271, in handle_request
    timeout = self.socket.gettimeout()
  File "/opt/python/2.7.9/lib/python2.7/socket.py", line 224, in meth
    return getattr(self._sock,name)(*args)
  File "/opt/python/2.7.9/lib/python2.7/socket.py", line 170, in _dummy
    raise error(EBADF, 'Bad file descriptor')
error: [Errno 9] Bad file descriptor
.127.0.0.1 - - [12/Oct/2015 20:08:23] "GET /foo HTTP/1.1" 404 -
.127.0.0.1 - - [12/Oct/2015 20:08:23] "GET / HTTP/1.1" 200 -
.127.0.0.1 - - [12/Oct/2015 20:08:23] "GET /.well-known/acme-challenge/eHh4eHh4eHh4eHh4eHh4eA HTTP/1.1" 200 -
.....
Name                           Stmts   Miss  Cover   Missing
------------------------------------------------------------
acme.py                            0      0   100%
acme/challenges.py               215      0   100%
acme/challenges_test.py          366      0   100%
acme/client.py                   215      0   100%
acme/client_test.py              308      0   100%
acme/crypto_util.py               92      0   100%
acme/crypto_util_test.py          53      0   100%
acme/errors.py                    19      0   100%
acme/errors_test.py               18      0   100%
acme/fields.py                    32      0   100%
acme/fields_test.py               41      0   100%
acme/jose.py                       8      0   100%
acme/jose/b64.py                  15      0   100%
acme/jose/b64_test.py             38      0   100%
acme/jose/errors.py               12      0   100%
acme/jose/errors_test.py           8      0   100%
acme/jose/interfaces.py           39      0   100%
acme/jose/interfaces_test.py      73      0   100%
acme/jose/json_util.py           170      0   100%
acme/jose/json_util_test.py      214      0   100%
acme/jose/jwa.py                 105      0   100%
acme/jose/jwa_test.py             58      0   100%
acme/jose/jwk.py                 114      0   100%
acme/jose/jwk_test.py             96      0   100%
acme/jose/jws.py                 205      0   100%
acme/jose/jws_test.py            145      0   100%
acme/jose/util.py                114      0   100%
acme/jose/util_test.py           126      0   100%
acme/jws.py                       17      0   100%
acme/jws_test.py                  27      0   100%
acme/messages.py                 184      0   100%
acme/messages_test.py            198      0   100%
acme/other.py                     21      0   100%
acme/other_test.py                48      0   100%
acme/standalone.py               102      1    99%   58
acme/standalone_test.py          109      0   100%
acme/test_util.py                 28      0   100%
acme/util.py                       3      0   100%
acme/util_test.py                  7      0   100%
------------------------------------------------------------
TOTAL                           3643      1    99%
nose.plugins.cover: ERROR: TOTAL Coverage did not reach minimum required: 100%
 2015-10-13 07:09:28 +00:00
Jakub Warmuz
73ae361559
Merge remote-tracking branch 'github/letsencrypt/master' into standalone2 2015-10-12 19:36:46 +00:00
Jakub Warmuz
a1a6120abf
Add py3 trove classifiers for acme 2015-10-11 16:03:32 +00:00
Jakub Warmuz
7a153ebf50
Revert "Release 0.0.0.dev20151008" 
This reverts commit 9e1477faa4.
 2015-10-11 07:05:35 +00:00
bmw
013d5d2ea9 Merge pull request #929 from kuba/bugs/928 
Fix #928 test_json_dumps_pretty py3 compat.
 2015-10-09 15:38:29 -07:00
Jakub Warmuz
304414a214
Remove SimpleHTTP TLS from acme. 2015-10-08 21:10:12 +00:00
Jakub Warmuz
6dfb75b96f
Fix #928 test_json_dumps_pretty py3 compat. 2015-10-08 20:32:25 +00:00
Jakub Warmuz
9e1477faa4
Release 0.0.0.dev20151008 2015-10-08 19:28:55 +00:00
Jakub Warmuz
f0214ddf9a
Merge commit 'a2c41ca7f539303cb413ba3e73d3669633063150' into standalone2 2015-10-07 19:07:44 +00:00
Jakub Warmuz
f0c11152d2
ACMEServerMixin.__init__ 2015-10-07 19:00:47 +00:00
Jakub Warmuz
c6ebfae15e
Unify quotes 2015-10-06 21:11:52 +00:00
Jakub Warmuz
3dac62f20e
json_dumps_pretty: prettier separators. 2015-10-06 21:11:52 +00:00
Jakub Warmuz
7e1b7ff7ae
Add naive JWK Thumbprint implementation 2015-10-06 21:05:43 +00:00
Jakub Warmuz
c3e28fa909
Merge remote-tracking branch 'github/letsencrypt/master' into mock-2.6 2015-10-05 19:31:05 +00:00
Jakub Warmuz
ea45fc6504
TestSimpleServer: don't rely on symlinks 2015-10-04 19:15:05 +00:00
Jakub Warmuz
df04938f6a
Standalone 2.0: add detection for unsupported SimpleHTTP TLS platform. 2015-10-04 19:14:58 +00:00
Jakub Warmuz
517a74f432
standalone 2.0: lint, docs, cleanup. 2015-10-04 17:21:35 +00:00
Jakub Warmuz
22b1514f51
server_forever2/shutdown2 2015-10-04 12:14:10 +00:00
Jakub Warmuz
560d12a40c
Merge remote-tracking branch 'github/letsencrypt/master' into standalone2 2015-10-04 10:24:47 +00:00
Jakub Warmuz
7644613171
Update Copyright notice in subpackages LICENSE. 
This corresponds to changes in #871.
 2015-10-04 10:10:41 +00:00
Jakub Warmuz
4ef7a6e63f
Merge remote-tracking branch 'github/letsencrypt/master' into release 2015-10-04 10:08:38 +00:00
Jakub Warmuz
3f08932479
Merge remote-tracking branch 'github/letsencrypt/master' into mock-2.6 2015-10-04 08:41:01 +00:00
Jakub Warmuz
0ffef20a20
UnrecognizedChallenge: fix tests and lint. 2015-09-29 07:02:33 +00:00
Jakub Warmuz
ad1fce03f7
UnrecognizedChallenge (fixes #855). 
Overrides quick fix from #856.
 2015-09-29 06:47:15 +00:00
James Kasten
5238f53092 DVChallenge -> Challenge 2015-09-28 16:03:03 -07:00
James Kasten
67ec4d09ee Put in dummy challenge 2015-09-28 15:53:42 -07:00
James Kasten
fa992faf52 Fix pylint and add test 2015-09-28 15:24:51 -07:00
Richard Barnes
ab98d5c39f Ignore unknown challenge types 2015-09-28 17:14:33 -04:00
Jakub Warmuz
5d8e9a3d68
Fix various doc generation issues 2015-09-27 21:07:40 +00:00
Jakub Warmuz
d621df3320
Make zipsafe 2015-09-27 11:10:34 +00:00
Jakub Warmuz
45a0cd2799
Fix include_package_data. 2015-09-27 08:11:40 +00:00
Jakub Warmuz
9883f8965d
Add dummy README.rst files 2015-09-27 06:23:13 +00:00
Jakub Warmuz
033ed589cc
Development Status :: 3 - Alpha 2015-09-27 06:23:13 +00:00
Jakub Warmuz
b6819ad05b
Add general classifiers to all setup.py scripts. 2015-09-27 06:23:13 +00:00
Jakub Warmuz
b5036e36ad
Unify setup.py: description/url/author/author_email. 2015-09-27 06:23:12 +00:00
Jakub Warmuz
20131de9fb
Add licences to all subpackages. 2015-09-27 06:23:12 +00:00
Jakub Warmuz
746016be6c
Sync version strings to 0.1.0.dev0, pin same repo deps. 2015-09-27 06:23:12 +00:00
Jakub Warmuz
daa459f277
Add acme.standalone 2015-09-26 16:50:59 +00:00
Jakub Warmuz
1b24fdae84
acme: challenges helpers 2015-09-26 16:50:59 +00:00
Jakub Warmuz
d73b600eeb
acme: _serve_sni -> SSLSocket 2015-09-26 16:50:59 +00:00
Jakub Warmuz
08c0c4aeba
Explicit dependency on setuptools (pkg_resources). 2015-09-26 10:52:28 +00:00
Peter Eckersley
bde5a1fe17 Merge branch 'treat_duplicate_as_renewal' into kuba_chain 2015-09-15 17:51:58 -07:00
bmw
a150828a79 Merge pull request #753 from kuba/dns-v4 
acme: v4 DNS challenge
 2015-09-14 16:21:38 -04:00
Jakub Warmuz
33c2aed021
Merge remote-tracking branch 'github/letsencrypt/master' into lint 2015-09-11 07:15:10 +00:00
Jakub Warmuz
b3ade6abe4
Revert "Revocation: expect application/json (boulder#771)." 
This reverts commit 39aff967a5.
 2015-09-10 20:43:20 +00:00
Jakub Warmuz
39aff967a5
Revocation: expect application/json (boulder#771). 2015-09-10 20:17:13 +00:00
Jakub Warmuz
cc607480ae
acme: fetch_chain for multiple up links 2015-09-10 20:12:32 +00:00
Jakub Warmuz
94fa851b01
Merge branch 'acme-directory' into revocation 2015-09-09 20:45:57 +00:00
Jakub Warmuz
817ab468d1
py3 compat: str(exc) instead of exc.message 2015-09-09 20:21:33 +00:00
Jakub Warmuz
302e3ceb7d
Revocation: integration testable 2015-09-09 20:04:28 +00:00
Jakub Warmuz
bf754b6302
Add ACME Directory Resource 2015-09-09 17:22:20 +00:00
James Kasten
d7b1af2a31 Merge pull request #750 from hlieberman/fix-spelling 
Fix minor spelling errors in the code.
 2015-09-09 00:00:03 -04:00
James Kasten
01b1172df2 Merge pull request #751 from hlieberman/urllib3-injection 
Make urllib3 injection more version specific.
 2015-09-08 23:55:42 -04:00
James Kasten
b0085cd47b Merge pull request #704 from kuba/py3 
Bring back Python 3 support for acme
 2015-09-08 23:54:23 -04:00
Harlan Lieberman-Berg
10460eb285 Add no cover pragma, URL for documentation. 2015-09-06 13:58:50 -04:00
Jakub Warmuz
dbf5d086bd
v4 DNS challenge 2015-09-06 11:47:56 +00:00
Jakub Warmuz
89c99a1f34
pep8 acme 2015-09-06 09:19:26 +00:00
Jakub Warmuz
138f1d1b28
lint: space check for dict-separator 2015-09-06 08:30:49 +00:00
Harlan Lieberman-Berg
503afebd54 Make urllib3 injection more version specific. 2015-09-05 22:47:25 -04:00
Harlan Lieberman-Berg
dc4cc23377 Fix minor spelling errors in the code. 2015-09-05 22:35:34 -04:00
Jakub Warmuz
8163e055a1
Disable test_probe_connection_error (problems with Python 3). 2015-09-02 18:50:59 +00:00
Jakub Warmuz
c6e4c7dea1
setup.py: update/fix deps. 2015-09-01 19:57:41 +00:00
Jakub Warmuz
a74eff5fbd
Revert "Revert PR #708." 
This reverts commit 70e311b43f.
 2015-08-28 06:40:19 +00:00
Jacob Hoffman-Andrews
70e311b43f Revert PR #708. 
https://github.com/letsencrypt/letsencrypt/pull/708 broke the Boulder CI build
because Travis runs Ubuntu 12.04, which has an older setuptools. See
https://github.com/letsencrypt/boulder/issues/681.
 2015-08-27 13:38:32 -07:00
James Kasten
091af07c1c Merge pull request #706 from kuba/uri-shift 
Shift URIs around (acme-spec#134, fixes #576).
 2015-08-27 13:53:50 -04:00
Jakub Warmuz
fc4990cf16
Fix typo 2015-08-26 21:05:08 +00:00
Jakub Warmuz
217b40379f
Merge branch 'master' into mock-2.6 2015-08-25 06:36:56 +00:00
Jakub Warmuz
5154cc92d6
Merge branch 'master' into uri-shift 2015-08-25 06:36:42 +00:00
Jakub Warmuz
7f6d4c5f84
Merge branch 'master' into py3 2015-08-25 06:35:35 +00:00
James Kasten
48467a1b38 Merge pull request #707 from kuba/log-http-req-params 
Log HTTP request params (including contents).
 2015-08-24 17:10:00 -04:00
James Kasten
8a6dfb1516 Merge pull request #703 from kuba/docs 
Fix various Sphinx warnings, errors
 2015-08-24 17:08:53 -04:00
Jakub Warmuz
089528ed2a
Fix ambiguous cross-references in docs 2015-08-22 14:37:32 +00:00
Jakub Warmuz
e9c79edb19
Fix various Sphinx build problems 2015-08-22 14:30:59 +00:00
Jakub Warmuz
60aa1b2ecb
Log HTTP request params (including contents). 2015-08-22 12:36:52 +00:00
Jakub Warmuz
79853fa098
Shift URIs around (acme-spec#134, fixes #576). 2015-08-22 12:20:38 +00:00
Jakub Warmuz
a7df468347
mock<1.1.0 only for py2.6. 2015-08-22 11:01:28 +00:00
Harlan Lieberman-Berg
bc530e457e Fix minor misspelling error. 2015-08-22 02:51:24 +02:00
Jakub Warmuz
4d30ec07fb
Update test name to match acme v04 semantics. 2015-08-19 20:38:03 +00:00
Jakub Warmuz
504b290726
Fix py3 compat in acme. 2015-08-19 20:35:30 +00:00
Brad Warren
0aaf9f2be7 Updated tests to update challenge changes 2015-08-13 18:41:49 -07:00
Brad Warren
14c150ae17 Fixed unit tests and lint 2015-08-05 15:39:31 -07:00
Jakub Warmuz
eacf658003
py3 compat 2015-07-31 22:45:48 +00:00
Jakub Warmuz
68d34391dd
Fix test_good_token 2015-07-31 22:15:56 +00:00
Jakub Warmuz
57110f4c18
acme: simplehttp v04 2015-07-31 21:30:08 +00:00
Jakub Warmuz
ceed8a71c1
DeserializationError: more meaningful message 2015-07-31 21:19:07 +00:00
Jakub Warmuz
ca5823ffd8
acme: progress with v03 Simple HTTP challenge. 2015-07-29 20:58:54 +00:00
Jakub Warmuz
a55991055e
Human meaningful exception message for decoding fields with minimum length. 2015-07-25 18:17:53 +00:00
Jakub Warmuz
de3b48640b
Doc fixes. 2015-07-25 15:48:14 +00:00
Jakub Warmuz
e0651ad050
Remove Recovery Token. 2015-07-25 12:00:04 +00:00
Brad Warren
83ad476a6d Improved logging and error handling 2015-07-23 17:09:09 -07:00
Brad Warren
c927f0c89a Finished basic Apache test framework 2015-07-22 18:25:09 -07:00
Jakub Warmuz
2028c3a454
Remove obsolete comment. 2015-07-19 12:59:10 +00:00
Jakub Warmuz
00298173a2
Merge branch 'dvsni-verify' into dvsni-v03 
Conflicts:
	acme/acme/challenges.py
	acme/acme/challenges_test.py
	letsencrypt/achallenges.py
	letsencrypt/crypto_util.py
	letsencrypt/plugins/common.py
	letsencrypt/tests/achallenges_test.py
 2015-07-18 17:58:22 +00:00
Jakub Warmuz
61e19c9882
DVSNIResponse.gen_cert, fix verify_cert, add tests. 2015-07-18 12:54:33 +00:00
Jakub Warmuz
f3538cd114
Add comment about _DEFAULT_DVSNI_SSL_METHOD. 2015-07-18 07:33:46 +00:00
Jakub Warmuz
33d7f205fa
Merge remote-tracking branch 'github/letsencrypt/master' into dvsni-verify 
Conflicts:
	acme/acme/challenges.py
 2015-07-18 06:51:26 +00:00