orangepizza
orangepizza
it got updated to use only use TLS 1.3, but currently mozilla-modern.badssl.com only use tls 1.2 so it clearly not set to current version of 'modern' configuration. so it need...
using onion-v3 as identifier type, onion-v3-csr for challange type for ed25519 csr challange CA/BR appendex B https://community.letsencrypt.org/t/certificate-for-onion-v3-address/177283 see https://github.com/orangepizza/acme-onion-doc for rfc-ish doc
https://github.com/pyca/cryptography/pull/6652/files function int_from_bytes in cryptography.util will be removed form cryptography 37.0, which will be released in April 26ish, which will break stem's cryptography detection because it try to import them...
a tiny edits on few functions that adapt type of identifier/ SAN type if input 'domain' can be parsed as IP address. not bothered to change name of variable []domains...
created for s/mime certificate for smime (RFC8823): problem is for email-reply-00 challenge solver really can't return fast enough for interfacee expections, because acme server need to send challenge mail to...
This pull request will add http.nfqueueport option, which when assigned a port will put a nfqueue rule on firewall to capture http request for token path, block it to reach...
integration not yet written : as it adds change to PA config to add a challenge type: and need certbot side change for write integration test: but unittest wise it...
I found multiple signed vs unsigned type mismatch (uint vs int) inside db keys and between db and model: for example, but not limited to from table schema in test/db...
### Summary ### System information Mbed TLS version (number or commit id): 3.6.0 Operating system and version: openwrt, https://github.com/openwrt/openwrt/pull/15092 Configuration (if not default, please attach `mbedtls_config.h`): [mbedtls_config.h.txt](https://github.com/Mbed-TLS/mbedtls/files/15026160/mbedtls_config.h.txt) Compiler and options...
mbedtls_x509_get_name become unexposed in mbedtls 3.6, make it blocking compile made a temp fix by redeclare moved function in a file, but will need actual alternative implementation where it actually...