Matthew Holt
56d50cebd8
Replaced fatal with print; return errors from NewClient
2015-10-27 17:00:42 -06:00
xenolf
65b62b5670
Make ocsp validate the signature of a response.
...
OCSP signatures should get validated if no issuer certificate is returned from
the OCSP responder.
2015-10-27 22:31:56 +01:00
xenolf
f2f5117496
Fix client_test
2015-10-26 02:29:02 +01:00
xenolf
8b16d59831
Remove devMode from library and cli.
2015-10-26 00:47:37 +01:00
xenolf
8d31bb0123
Remove challenge pre-checks.
...
We won't ever be able to do this properly for all possible scenarios.
2015-10-26 00:40:11 +01:00
xenolf
537a0b74fd
Update client.go
2015-10-25 23:37:26 +01:00
xenolf
2afea79309
Fix cert bundle order
2015-10-24 04:31:12 +02:00
xenolf
51a95ee548
Add initial support for certificate bundling
2015-10-24 03:55:18 +02:00
xenolf
d6f4e42b13
Add support for getting OCSP responses for OCSPStapling
2015-10-24 03:46:00 +02:00
xenolf
4d99c9e543
Support for RecoveryKey (not enabled). But not supported server side...
2015-10-23 16:24:02 +02:00
xenolf
3ddf33c8c3
Change name of AgreeToTos to AgreeToTOS.
...
According to https://github.com/golang/go/wiki/CodeReviewComments#initialisms
2015-10-23 10:17:51 +02:00
Matthew Holt
5efb56a1d4
Fix file descriptor leaks
2015-10-21 22:16:36 -06:00
xenolf
e74d5d4586
Make cert revocation on renewal optional. Also change signature of renew.
2015-10-19 03:20:41 +02:00
xenolf
0cd31861d3
Implement renewal. Fixes #7
2015-10-19 00:42:04 +02:00
xenolf
29a27ba807
Make CertResources json savable. Fix cli_handlers to use it.
2015-10-19 00:40:59 +02:00
xenolf
dc4125d3cf
Change GetCertExpiration to accept PEM encoded certs.
2015-10-19 00:36:25 +02:00
xenolf
10b0192255
Fix goroutine leak.
...
Fixes #10
Tired coding is bad for you, mkay?
2015-10-18 17:27:59 +02:00
Matt Holt
5d31b0a04c
Fix panic
2015-10-17 20:58:14 -06:00
xenolf
7f6f790253
Wrap []byte for DER certificates in its own type.
2015-10-18 03:29:26 +02:00
xenolf
dcdcde03aa
Certificates are PEM encoded by default now
2015-10-18 03:10:46 +02:00
xenolf
caa6e78289
Clean some stuff up and refactor getCerts for some concurrency.
2015-10-18 02:16:15 +02:00
xenolf
62b4ebe72b
Fix client tests
2015-10-18 02:10:17 +02:00
xenolf
12c04828c1
Move the tests to a different port.
2015-10-18 02:09:19 +02:00
xenolf
b49f37d920
Add a dev flag for skipping challenge pre-checks
2015-10-18 01:57:46 +02:00
xenolf
835927f5d5
Clean-up ugly zero time check
2015-10-18 00:25:46 +02:00
xenolf
3ef08f7413
Add a comment to GetCertExpiration
2015-10-17 22:27:04 +02:00
xenolf
34910bd541
Add a function to check cert expiration dates.
2015-10-16 21:05:16 +02:00
xenolf
b3035b16b5
Support for cert revocation
2015-09-27 14:51:44 +02:00
xenolf
e5f6f4c4a3
Changed the client to pull the urls down from the directory on the CA server.
...
CA Url now needs to point to the root of the CA
2015-09-26 22:59:16 +02:00
xenolf
37b20117bf
Update everything to work with the latest boulder updates.
2015-09-26 19:45:52 +02:00
xenolf
98e23bab07
Make solvers private + remove random from crypto tests
2015-06-14 02:33:21 +02:00
xenolf
076173ef11
Merge pull request #4 from mholt/patch-1
...
Basic tests for crypto wrapper functions
2015-06-13 21:18:33 +02:00
xenolf
e6aaf7e2dd
Program should not exit on bind error, but return the error to get handled
2015-06-13 21:15:34 +02:00
xenolf
2231118fdf
Add SimpleHTTP tests
2015-06-13 21:06:47 +02:00
xenolf
53d7b59d36
Initial SimpleHTTP test
2015-06-13 19:13:04 +02:00
xenolf
fcd0fba9c7
Add a basic execution check to SimpleHTTP
2015-06-13 18:37:30 +02:00
Matt Holt
6b6876d15a
Basic tests for crypto wrapper functions
...
Even though the std lib does the heavy lifting, this should verify (somewhat) that the helper functions are working.
Better tests would involve replacing crypto/rand.Reader with a non-random Reader then comparing the contents to make sure the proper std lib crypto functions were called and their values returned.
2015-06-13 09:53:17 -06:00
Matt Holt
7e12bcd800
Test NewClient
...
Just a simple test to make sure a Client gets set up properly
2015-06-13 09:00:18 -06:00
xenolf
6ca96fc99d
More comments
2015-06-13 04:50:36 +02:00
xenolf
aa818d0515
Some more comments
2015-06-13 04:26:33 +02:00
xenolf
1ceebb72a2
Add Authorizations to CSR request message
2015-06-13 04:10:32 +02:00
xenolf
b04e5a4aac
add crypto.go
2015-06-13 03:57:05 +02:00
xenolf
728646c70e
Implement new interface with DVSNI
2015-06-13 03:56:52 +02:00
xenolf
612033a83a
Flesh out run cli_handler for error handling and saving certificates
2015-06-13 03:56:34 +02:00
xenolf
a2d9bf4cc3
Initial version of the SimpleHTTPS challenge
2015-06-13 03:55:53 +02:00
xenolf
8f992218b9
Allow the user to override the challenge port. Enables running as non-root.
2015-06-13 00:16:49 +02:00
xenolf
84c2bceade
Add initial implementation for challenge choosing
2015-06-12 00:15:13 +02:00
xenolf
2b99a75aff
Change solver interface definition
2015-06-12 00:14:33 +02:00
xenolf
e600438aeb
Extract JWS to its own struct
2015-06-12 00:13:43 +02:00
xenolf
bcdc00add6
change solver.solve definition
2015-06-11 16:09:53 +02:00