boulder

boulder copied to clipboard

We construct a lot of URLs in the WFE, for example: https://github.com/letsencrypt/boulder/blob/7ea51e5f91f5c0d567eb7f11915b9d9372778f41/wfe2/wfe.go#L1988-L1989 We should use [path.Join](https://pkg.go.dev/path#Join) instead to make this construction less error-prone.

aarongable

Currently our Identifier type looks like this: https://github.com/letsencrypt/boulder/blob/bef73f3c8b9e233bbb8ec75e08e007d6c274fed9/identifier/identifier.go#L47-L53 This means that: 1. Other packages can access and use the `.Value` without checking the `.Type`, potentially leading to cases where an...

aarongable

sa: use model struct for Certificate, CertificateStatus, FQDNSet

1

In the SA, we mostly use structs internal to the SA to represent the database's storage of various objects, and translate those objects into proto messages to return from RPCs....

jsha

We've configured all of our production profiles to exclude the AIA OCSP URI from our certificates. We can now remove the code which supported: - including AIA OCSP URIs in...

aarongable

CT: Add support for fallback between an operator's logs

1

Today we only attempt to submit to one log from each operator. This limits our pool of potential logs, which can be a problem if some of those logs are...

aarongable

[WIP] Allow using `test` logs from all_log_list.json for SCTs, in non-prod environments

2

This was a quick idea, not complete. Just opening for early feedback and CI run right now. Chrome's all_logs_list has test logs marked as such. It would be good to...

mcpherrinm

beautifulentropy

beautifulentropy

beautifulentropy

beautifulentropy