9423467142
Switch to our own fork of go-jose.
...
This is the result of `godep save -r ./...` and
`git rm -r -f Godeps/_workspace/src/github.com/square`
Our fork is currently at the head of go-jose when Richard made the local nonce
changes, with the nonce changes added on top. In other words, the newly created
files are exactly equal to the deleted files.
In a separate commit I will bring our own go-jose fork up to the remote head,
then update our deps.
Also note: Square's go-jose repo contains a `cipher` package. Since we don't
make any changes to that package, we leave it imported as-is.
2015-07-24 14:39:00 -07:00
620a012c62
Rewrite go-jose dependencies to our fork.
2015-07-24 14:16:01 -07:00
31f0674f03
Replace net.LookupMX with core.LookupMX using defined resolver
2015-07-21 22:36:29 -07:00
2d0be62966
Use mock syslog in test suites (except core and log). Drop SwitchLog().
2015-07-21 17:06:39 -04:00
f6248ef279
Flesh out DNS mock methods, and move them to their own sub-module instead of under test/ to avoid import loop, Add Loopback DNS resolver for core/dns_test.go
2015-07-07 22:31:44 +01:00
12589834a3
Merge master
2015-06-25 15:59:59 -07:00
5b33afba8e
Reject weak CSR signing algorithms.
...
Also removed a commented-out CSR in the RA tests, and fixed a CA test that was (1) not testing what it meant to, and (2) used a different method from the other tests.
2015-06-23 21:47:31 -07:00
9edd2b8e07
Refactor StatsD metrics collection
...
- Moved HandlerTimer definition from various cmd/ binaries to cmd/shell.go
- Cleaned up HandlerTimer endpoint metrics
- Moved New... counter metrics from WFE to RA and add Updated... and Finalized... ones
- Added error code and problem type counter metrics to WFE
- Added validation type / status counter metrics to VA
- Consistently return the total RTT from LookupCAA, LookupCNAME, and LookupDNSSEC method
- Added DNS RTT timing metrics to VA for the various Loookup... methods
2015-06-21 23:28:10 -07:00
403af37a39
Hide Authorization.Expires field when uninitialized
2015-06-17 18:34:30 -07:00
41f5788c77
Correct most `go lint` warnings. (274 -> 5)
2015-06-16 22:18:28 -05:00
fcaa6b9530
Issue #11 : Add tests
2015-06-16 09:03:03 -05:00
01c41c1bd0
Merge pull request #354 from letsencrypt/344-internal_server_errors
...
Resolves Issue #344 : Only send InternalServerError when needed
2015-06-15 15:57:04 -07:00
dbe88d5d80
Issue #344 : RA: Pull out a `validateContacts` method
...
- Created a `validateContacts` method to avoid duplicated code
- Added tests for `validateContacts` and `validateEmail`
- Fix error formatting in `validateEmail`:
Discovered while testing `validateEmail` that, if no MX records are found,
`err` is returned, not an empty array. As such, the error message
was misleading, so I consoldated the conditions into one.
2015-06-15 16:46:50 -05:00
80d5e50e42
Enable revocation by account key.
...
In addition to cert private key. This required modifying the GetCertificate*
functions to return core.Certificate instead of certificate bytes.
2015-06-15 12:33:50 -07:00
f4ee29d1d3
Change all references from SimpleHTTPS -> SimpleHTTP
2015-06-12 11:22:04 -07:00
2ad15a4a85
Issue #309 : Produce OCSP Responses immediately upon issuance, if at all possible.
...
This approach performs a best-effort generation of the first OCSP response during
certificate issuance. In the event that OCSP generation fails, it logs a warning at
the Boulder-CA console, but returns successfully since the Certificate was itself
issued.
2015-06-11 11:31:04 -05:00
0265b6f5d0
Merge upstream/master and fix conflicts
2015-06-10 12:43:11 -07:00
3acb03fdc9
Merge pull request #319 from letsencrypt/validate-contact
...
Validate contact details in the RA upon `new-reg`.
2015-06-06 07:57:16 -07:00
28db5aab45
Merge master
2015-06-06 02:47:55 +01:00
23b0cfa29f
Extend email parsing
2015-06-06 02:46:51 +01:00
4ecd6d58b6
Merge master
2015-06-06 02:11:46 +01:00
bb5c042cef
Fix tests and various other cleanup
2015-06-06 02:06:35 +01:00
573e35ed56
Disallow multiple registrations with same key (and fix all related tests)
2015-06-04 20:21:59 +01:00
6a4aa8de3c
Merge pull request #304 from letsencrypt/296-ca_tx_move
...
Issue #296 : Fix erroneous transaction handling in CA
2015-06-03 22:10:43 -07:00
abdc174be8
Issue #296 : Fix erroneous transaction handling in CA
...
- Moved the transaction handling up to the `certificate-authority.go` file
- Simplified `certificate-authority-data.go`
- Created a mocks file in `test/` and reworked RA and CA to use it
- More audit logging to CA
2015-06-03 19:23:24 -07:00
78e621c95f
further review fixes
2015-06-03 00:27:08 +01:00
e8edbf5f21
Making capitalization consistent with Go standards
2015-06-01 02:08:47 -04:00
9917ca17f6
Clean up TODOs
2015-06-01 02:05:17 -04:00
2419559f5c
Add validity interval checking
2015-05-31 14:23:09 -04:00
3e593d73c9
Merge pull request #262 from letsencrypt/ra-tests
...
Miscellaneous Fixes
2015-05-30 22:08:49 -07:00
441ce328c7
Merge pull request #255 from letsencrypt/202-ocsp-responder
...
Issue #202 : Initial OCSP Responder
2015-05-30 13:10:50 -04:00
138c946bd6
Issue #43 and Issue #205
2015-05-30 11:11:33 -04:00
92967f03b6
go fmt
2015-05-29 13:11:57 -07:00
b3b64fd10e
Fix tests for goodkey branch.
2015-05-29 13:09:34 -07:00
6a6a8aa72d
Merge branch 'master' into goodkey
...
Conflicts:
ca/certificate-authority.go
ra/registration-authority.go
ra/registration-authority_test.go
2015-05-29 12:26:24 -07:00
8846fd2c90
Merge upstream/master
2015-05-29 09:36:46 +01:00
4518f0bf17
Migrate CADB to using GORP.
2015-05-28 23:11:03 -07:00
d1321f2d78
More RPC fixes for Issue #202
...
- NewPendingAuthorization now uses a core.Authorization object, so
that foreign key constraints are followed
- core.Authorization now serializes RegistrationID to JSON, so it has to get
blanked out in WFE before transmission to client.
- Remove ParsedCertificate from core.Certificate, as type x509.Certificate cannot
be marshaled.
- Added AssertDeepEquals and AssertMarhsaledEquals to test-tools.go
- Caught several overloaded and misleadingly named errors in WFE
2015-05-28 11:05:55 -07:00
81c7466e97
add rpc-wrapper and interface code
2015-05-28 09:58:16 +01:00
343920cfe3
Fix integration test while running with MySQL
...
- Add SQL configuration options
- Increase the width of the authz and pending_authz tables' challenges field
- Make it configurable whether CREATE TABLE commands should run
2015-05-27 13:39:18 -07:00
e1eeebce52
Only run validations against updated challenges (instead of everything)
2015-05-26 17:08:49 +01:00
4a94dbf8b9
remove debug statements and make validity period a config var for CA
2015-05-21 23:30:29 -07:00
0271cebd7a
don't issue certs that expire after the CA intermediate
2015-05-21 23:02:58 -07:00
1c7d0d5411
gofmt touched files
2015-05-18 19:03:25 -07:00
cf7f6f5db3
add RA regID checks
2015-05-18 18:53:48 -07:00
61be79e51d
Check that cert key != account key.
2015-05-18 15:20:02 -07:00
e1ba291019
Store registration ID with certificate
2015-05-16 13:47:51 -07:00
faa1d5ac45
review cleanups
2015-05-16 13:25:36 -07:00
e233fdaa61
switch authz and pending_authz to store registration ID instead of key (and update all the random stuff they touched)
2015-05-14 14:14:36 -07:00
aa8c20f84a
Fixes in response to review feedback.
2015-05-13 17:36:39 -07:00
3eed9e3f7c
Move to Square's go-jose library.
2015-05-13 17:36:38 -07:00
cb00816e48
Merge branch 'goodkey' of github.com:letsencrypt/boulder into goodkey
...
Conflicts:
ca/certificate-authority.go
core/good_key.go
core/good_key_test.go
2015-05-09 11:48:32 -07:00
ae62792d52
actually use them
2015-05-06 16:47:27 -07:00
02421fefd9
Add tests.
2015-05-06 16:10:00 -07:00
ac78f333f8
Merge branch 'master' into ocsp-table
...
Conflicts:
ca/certificate-authority.go
ca/certificate-authority_test.go
cmd/boulder-ca/main.go
cmd/boulder/main.go
sa/storage-authority.go
sa/storage-authority_test.go
2015-05-02 11:10:05 -07:00
a77152e828
Rework Authority "New" methods to obtain AuditLogger from Singleton
...
- Also ran `go fmt` against these files I was touching anyway:
sa/storage-authority.go
va/validation-authority.go
wfe/web-front-end.go
2015-05-01 21:50:07 -07:00
e828c61818
Add singleton semantics to Audit Logger, per Issue #135
...
- Update tests to use the singleton logger
- Update commands to set the audit logger singleton
- Formatting updates to the tests (go fmt)
2015-05-01 21:48:24 -07:00
1d2c6a5d7c
Split out GetCertificate / GetCertificateByShortSerial.
...
Also stub out some initial revocation code.
2015-04-29 11:48:08 -07:00
0bd39daab5
Fix tests that relied on mis-formatted serial.
2015-04-27 17:00:53 -07:00
32e159d320
Always use %016x when formatting shortSerial.
2015-04-23 16:09:46 -07:00
7d8ef9a019
Fix tests and tidy up for review.
2015-04-18 23:44:42 -04:00
cb615e86c6
Merge pull request #90 from letsencrypt/85-relational_db_in_ca
...
Add Relational DB support to CA (Issue #85 )
2015-04-15 16:31:52 -04:00
96aee3184a
Fix crash in registration-authority_test.go
2015-04-13 16:24:35 -07:00
4967e9486d
hook in everywhere, add Noop client in tests
2015-04-12 21:50:07 -07:00
a0b06f3edd
Rewrite paths again.
2015-03-26 17:01:01 -07:00
2940bb3c7c
Merge branch 'vendorize' into vendorize2
...
Conflicts:
analysis/analysis-engine.go
analysis/analysis-engine_test.go
ca/certificate-authority.go
ca/certificate-authority_test.go
cmd/activity-monitor/main.go
cmd/boulder-sa/main.go
cmd/boulder/main.go
cmd/mkcrl/main.go
cmd/mkroot/main.go
cmd/shell.go
ra/registration-authority_test.go
rpc/amqp-rpc.go
rpc/rpc-wrappers.go
2015-03-26 14:21:48 -07:00
99bf61c0ac
Add Godeps.
2015-03-26 14:20:34 -07:00
0435e0feb6
Merge branch 'master' into vendorize
...
Conflicts:
analysis/analysis-engine.go
analysis/analysis-engine_test.go
cmd/activity-monitor/main.go
cmd/boulder-start/main.go
2015-03-25 15:18:20 -07:00
ddc0d7dcf5
Vendorize all dependencies with `nut`.
...
Nut, https://github.com/jingweno/nut , is a tool to manage Go dependencies and
versioning by vendorizing them, i.e. including them in your own repo.
This makes version management easier, as well as authenticating the contents of
this repository.
Also inthis change: Factor out the testing commands from .travis.yml to make it
easier to run them by hand. Add Vim swap files to .gitignore.
2015-03-25 15:11:40 -07:00
33ac212b70
Add logging infrastructure to all authorities and commands
2015-03-24 19:06:11 -07:00
4e0aa900c9
Rebase 'lint-errcheck-fixes' of git://github.com/mvdan/boulder to letsencrypt/master
...
Conflicts:
cmd/boulder-start/main.go
core/interfaces.go
core/objects.go
core/util.go
ra/registration-authority.go
ra/registration-authority_test.go
rpc/rpc-wrappers.go
va/validation-authority.go
wfe/web-front-end.go
2015-03-20 18:01:03 -07:00
cd7c21a96b
Resolving travis failures
2015-03-16 22:07:45 -04:00
752e91d8eb
Initial policy authority
2015-03-16 12:55:05 -04:00
d938deb3fd
Separate resources for challenges [initial]
2015-03-14 19:07:16 -04:00
8f4ea0efd8
Adapting to point to mainlined JOSE
2015-03-13 13:11:04 -07:00
d66e581736
Replace Https by HTTPS as per golint
2015-03-12 12:21:40 +01:00
dcdf9954ae
Pulling out sa module
2015-03-10 15:21:50 -07:00
b545ad6956
Pulling out ra module
2015-03-10 14:22:37 -07:00
Jacob Hoffman-Andrews