Commit Graph

922 Commits

Author SHA1 Message Date
Joe Bryan
4db7e486ed stub out :acme +sigh-recoverable-error rate-limit callback, print httr in mark 2018-07-19 14:11:16 -04:00
Joe Bryan
ffe7970d74 retry failed domain validation token verification 2018-07-19 14:11:16 -04:00
Joe Bryan
05050a09ff retry failed dns bindings in +hear:tell 2018-07-19 14:11:16 -04:00
Joe Bryan
7aada841f4 fix typo in error message 2018-07-19 14:11:16 -04:00
Joe Bryan
243c0a9a10 ignores our own route updates in :dns 2018-07-19 14:11:16 -04:00
Joe Bryan
22e5bb0366 uses pkcs8 private keys for %eyre cert installation 2018-07-19 14:11:16 -04:00
Joe Bryan
36d15d296c fixes pkcs8 ASN.1 en/de-coding (missing constant version) 2018-07-19 14:11:16 -04:00
Joe Bryan
f5991978be retry %direct binding verification of 504 response (cttp timeout) 2018-07-19 14:11:16 -04:00
Joe Bryan
6419f27e3a adds debug install/uninstall cert events 2018-07-10 16:42:46 -04:00
Joe Bryan
5a953aa01b fixes bug in +reserved predicate for ipv4 addresses 2018-07-10 16:42:46 -04:00
Joe Bryan
14841db28d updates :dns to notify %eyre on new bindings 2018-07-10 16:42:46 -04:00
Joe Bryan
6ec776f04a defers :acme initialization to first certificate order 2018-06-29 00:02:34 -04:00
Joe Bryan
5393b129f2 defers pending order creation to after registration 2018-06-28 23:46:24 -04:00
Joe Bryan
26b10e79b5 defer initial http request from +prep 2018-06-28 23:45:10 -04:00
Joe Bryan
c8c90bc587 integrates :acme with %eyre (receive new domains/orders, install certificates) 2018-06-28 23:45:04 -04:00
Joe Bryan
76788656d7 refactors +nonce:effect and call sites
and fixes typo in +bad-nonce
2018-06-28 14:04:11 -04:00
Joe Bryan
d40151604b adds comment to and reformats +emsa:rs256 2018-06-28 14:04:11 -04:00
Joe Bryan
8a8b16e0bd adds csr context-specific tag explanation comment 2018-06-28 14:04:11 -04:00
Joe Bryan
d2a7111f58 adds pkcs8 private key en/de-coding 2018-06-28 14:04:11 -04:00
Joe Bryan
f46e226247 updates +der %bit en/de-coding to use +octs, tests for significant trailing zeros 2018-06-28 14:04:11 -04:00
Joe Bryan
56db9be687 refactors jwk public/private key en/de-coding 2018-06-28 14:04:11 -04:00
Joe Bryan
0b4ee7702e improves rsa key generation (somewhat) 2018-06-28 14:04:11 -04:00
Joe Bryan
e194b15b78 refactors +parse:der 2018-06-28 14:04:11 -04:00
Joe Bryan
fffff33dfc refactors +parse:base64 2018-06-28 14:04:11 -04:00
Joe Bryan
a9871af7fb always parse :len bytes in +de:der 2018-06-28 14:04:11 -04:00
Joe Bryan
67590f70c7 updates +de:base64 to output +octs 2018-06-28 14:04:11 -04:00
Joe Bryan
3238cf6ce6 updates +der encoding to produce +octs, base-64 encoding to accept octs 2018-06-28 14:04:11 -04:00
Joe Bryan
b5f352f3bc refactors +der %oct parser 2018-06-28 14:04:11 -04:00
Joe Bryan
84452a6e00 updates ASN.1 %oct to explicitly track byte-length 2018-06-28 14:04:11 -04:00
Joe Bryan
546053fb7c adds failing test case for invalid JWS 2018-06-28 14:04:11 -04:00
Joe Bryan
c2ccfed00f adds reproduction for invalid jws signature 2018-06-28 14:04:11 -04:00
Joe Bryan
90efc6daf0 adds mechanism to print account key 2018-06-28 14:04:11 -04:00
Joe Bryan
92d27238c1 archives active order in +add-order 2018-06-28 14:04:11 -04:00
Joe Bryan
dcf947712f support already-completed domain validation challenges 2018-06-28 14:04:11 -04:00
Joe Bryan
2acd46a701 refactors +sigh-httr 2018-06-28 14:04:11 -04:00
Joe Bryan
1fb2f0624f adds +certificate:event to +sigh-httr 2018-06-28 14:04:11 -04:00
Joe Bryan
3a1c072527 revises :acme state, rewrites API client 2018-06-28 14:04:11 -04:00
Joe Bryan
1029a44758 tweaks and formats block comments 2018-06-28 14:04:11 -04:00
Joe Bryan
31f95df959 additional refactoring and comment cleanup in asn1 and pkcs library cores 2018-06-28 14:04:11 -04:00
Joe Bryan
218369c85d adds more comments and further refactors +asn1 and +der 2018-06-28 14:04:11 -04:00
Joe Bryan
f7a6ad1fb2 first pass new-style comments for library cores 2018-06-28 14:04:11 -04:00
Joe Bryan
8c0eea3a19 renames +en-host to +join 2018-06-28 14:04:11 -04:00
Joe Bryan
2a83c41f24 removes redundant new-order 2018-06-28 14:04:11 -04:00
Joe Bryan
77391241c7 really make sure account/certificate keys are different 2018-06-28 14:04:11 -04:00
Joe Bryan
b4197152fe parses order responses more minimally 2018-06-28 14:04:10 -04:00
Joe Bryan
9b7c5f9337 insure that account and certificate keys are different
determinism ftw!
2018-06-28 14:04:10 -04:00
Joe Bryan
8567866e89 fixes the nonce retry fix 2018-06-28 14:04:10 -04:00
Joe Bryan
0eae33af9e disables some overly-restrictive json response parsing 2018-06-28 14:04:10 -04:00
Joe Bryan
2bbd8af930 use only one certificate key (for now) 2018-06-28 14:04:10 -04:00
Joe Bryan
2198de77d8 support empty re-registration response, minor cleanup 2018-06-28 14:04:10 -04:00