pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/security

Module Name:    pkgsrc
Committed By:   fhajny
Date:           Tue Jun 12 09:22:35 UTC 2018

Modified Files:
        pkgsrc/security/py-acme: PLIST
        pkgsrc/security/py-certbot: Makefile.common PLIST distinfo

Log Message:
security/py-{acme,certbot}: Update to 0.25.0.

### Added

- Support for the ready status type was added to acme. Without this change,
  Certbot and acme users will begin encountering errors when using Let's
  Encrypt's ACMEv2 API starting on June 19th for the staging environment and
  July 5th for production. See for more
- Certbot now accepts the flag --reuse-key which will cause the same key to be
  used in the certificate when the lineage is renewed rather than generating a
  new key.
- You can now add multiple email addresses to your ACME account with Certbot by
  providing a comma separated list of emails to the --email flag.
- Support for Let's Encrypt's upcoming TLS-ALPN-01 challenge was added to acme.
  For more information, see
- acme now supports specifying the source address to bind to when sending
  outgoing connections. You still cannot specify this address using Certbot.
- If you run Certbot against Let's Encrypt's ACMEv2 staging server but don't
  already have an account registered at that server URL, Certbot will
  automatically reuse your staging account from Let's Encrypt's ACMEv1 endpoint
  if it exists.
- Interfaces were added to Certbot allowing plugins to be called at additional
  points. The `GenericUpdater` interface allows plugins to perform actions
  every time `certbot renew` is run, regardless of whether any certificates are
  due for renewal, and the `RenewDeployer` interface allows plugins to perform
  actions when a certificate is renewed. See `certbot.interfaces` for more

### Changed

- When running Certbot with --dry-run and you don't already have a staging
  account, the created account does not contain an email address even if one
  was provided to avoid expiration emails from Let's Encrypt's staging server.
- certbot-nginx does a better job of automatically detecting the location of
  Nginx's configuration files when run on BSD based systems.
- acme now requires and uses pytest when running tests with setuptools with
  `python test`.
- `certbot config_changes` no longer waits for user input before exiting.

### Fixed

- Misleading log output that caused users to think that Certbot's standalone
  plugin failed to bind to a port when performing a challenge has been
- An issue where certbot-nginx would fail to enable HSTS if the server block
  already had an `add_header` directive has been resolved.
- certbot-nginx now does a better job detecting the server block to base the
  configuration for TLS-SNI challenges on.

To generate a diff of this commit:
cvs rdiff -u -r1.8 -r1.9 pkgsrc/security/py-acme/PLIST
cvs rdiff -u -r1.24 -r1.25 pkgsrc/security/py-certbot/Makefile.common \
cvs rdiff -u -r1.11 -r1.12 pkgsrc/security/py-certbot/PLIST

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/security/py-acme/PLIST
diff -u pkgsrc/security/py-acme/PLIST:1.8 pkgsrc/security/py-acme/PLIST:1.9
--- pkgsrc/security/py-acme/PLIST:1.8   Tue Mar 13 10:08:51 2018
+++ pkgsrc/security/py-acme/PLIST       Tue Jun 12 09:22:35 2018
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.8 2018/03/13 10:08:51 fhajny Exp $
+@comment $NetBSD: PLIST,v 1.9 2018/06/12 09:22:35 fhajny Exp $
@@ -31,6 +31,10 @@ ${PYSITELIB}/acme/jws.pyo
@@ -57,6 +61,8 @@ ${PYSITELIB}/acme/
@@ -78,6 +84,7 @@ ${PYSITELIB}/acme/testdata/csr-san.pem

Index: pkgsrc/security/py-certbot/Makefile.common
diff -u pkgsrc/security/py-certbot/Makefile.common:1.24 pkgsrc/security/py-certbot/Makefile.common:1.25
--- pkgsrc/security/py-certbot/Makefile.common:1.24     Wed May 16 15:09:42 2018
+++ pkgsrc/security/py-certbot/Makefile.common  Tue Jun 12 09:22:35 2018
@@ -1,9 +1,9 @@
-# $NetBSD: Makefile.common,v 1.24 2018/05/16 15:09:42 fhajny Exp $
+# $NetBSD: Makefile.common,v 1.25 2018/06/12 09:22:35 fhajny Exp $
 # used by security/py-acme/Makefile
 # used by security/py-certbot/Makefile
-DISTNAME=      certbot-0.24.0
+DISTNAME=      certbot-0.25.0
Index: pkgsrc/security/py-certbot/distinfo
diff -u pkgsrc/security/py-certbot/distinfo:1.24 pkgsrc/security/py-certbot/distinfo:1.25
--- pkgsrc/security/py-certbot/distinfo:1.24    Wed May 16 15:09:42 2018
+++ pkgsrc/security/py-certbot/distinfo Tue Jun 12 09:22:35 2018
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.24 2018/05/16 15:09:42 fhajny Exp $
+$NetBSD: distinfo,v 1.25 2018/06/12 09:22:35 fhajny Exp $
-SHA1 (certbot-0.24.0.tar.gz) = cfa8d963a6f0d43eb5fa9f8c3e06601f0f1b71bb
-RMD160 (certbot-0.24.0.tar.gz) = 117ac1440d7ad42f3c8ceb6fb6b0bc37c5c31e12
-SHA512 (certbot-0.24.0.tar.gz) = b067da7eea54deb72ff4b516382cbe480ffebcb378489a2b0c52955f7399401d936d8d6587d88473d6f4fa9e864de94514941bde9727a5babbf2d6211ea61b20
-Size (certbot-0.24.0.tar.gz) = 1149694 bytes
+SHA1 (certbot-0.25.0.tar.gz) = 07a65d480c747d7de6a1158fb4502fcd35693db2
+RMD160 (certbot-0.25.0.tar.gz) = 778982e8f6f959732d07097163c298f97cc6c74f
+SHA512 (certbot-0.25.0.tar.gz) = af0f2498d79e9d54f0609b21b8ec40efe9fbcfa5162eb18bbb8b10cc230b31db6af81c4e85af243d92c527efc55634402b30960d014085f6e6af6e679ca75592
+Size (certbot-0.25.0.tar.gz) = 1163858 bytes

Index: pkgsrc/security/py-certbot/PLIST
diff -u pkgsrc/security/py-certbot/PLIST:1.11 pkgsrc/security/py-certbot/PLIST:1.12
--- pkgsrc/security/py-certbot/PLIST:1.11       Wed May 16 15:09:42 2018
+++ pkgsrc/security/py-certbot/PLIST    Tue Jun 12 09:22:35 2018
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.11 2018/05/16 15:09:42 fhajny Exp $
+@comment $NetBSD: PLIST,v 1.12 2018/06/12 09:22:35 fhajny Exp $
@@ -244,6 +244,9 @@ ${PYSITELIB}/certbot/tests/ocsp_test.pyo
@@ -286,6 +289,9 @@ ${PYSITELIB}/certbot/tests/util.pyo

Home | Main Index | Thread Index | Old Index