From patchwork Mon Dec 21 11:23:57 2020 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Adolf Belka X-Patchwork-Id: 3735 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature RSA-PSS (4096 bits)) (Client CN "mail01.haj.ipfire.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4Czxtz2dq1z3wx8 for ; Mon, 21 Dec 2020 11:24:11 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail02.haj.ipfire.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 4Czxty1hPwzsc; Mon, 21 Dec 2020 11:24:10 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [127.0.0.1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4Czxty16BQz2xjX; Mon, 21 Dec 2020 11:24:10 +0000 (UTC) Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature RSA-PSS (4096 bits)) (Client CN "mail01.haj.ipfire.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4Czxtx2fZcz2xZJ for ; Mon, 21 Dec 2020 11:24:09 +0000 (UTC) Received: from smtpq4.tb.mail.iss.as9143.net (smtpq4.tb.mail.iss.as9143.net [212.54.42.167]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mail01.ipfire.org (Postfix) with ESMTPS id 4Czxtw0RG6zJM for ; Mon, 21 Dec 2020 11:24:08 +0000 (UTC) Received: from [212.54.42.137] (helo=smtp6.tb.mail.iss.as9143.net) by smtpq4.tb.mail.iss.as9143.net with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1krJIN-0002Wf-M8; Mon, 21 Dec 2020 12:24:07 +0100 Received: from j103033.upc-j.chello.nl ([24.132.103.33] helo=rhea.saturn.pimb.org) by smtp6.tb.mail.iss.as9143.net with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.93) (envelope-from ) id 1krJIN-005yXW-3L; Mon, 21 Dec 2020 12:24:07 +0100 Received: from hyperion.saturn.pimb.org (hyperion.saturn.pimb.org [192.168.26.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by rhea.saturn.pimb.org (Postfix) with ESMTPSA id 4ED043E2B; Mon, 21 Dec 2020 12:24:07 +0100 (CET) From: Adolf Belka To: development@lists.ipfire.org Subject: [PATCH] dehydrated: Update to 0.7.0 Date: Mon, 21 Dec 2020 12:23:57 +0100 Message-Id: <20201221112357.3636713-1-ahb.ipfire@gmail.com> X-Mailer: git-send-email 2.29.2 MIME-Version: 1.0 X-SourceIP: 24.132.103.33 X-Authenticated-Sender: adolf.belka@ziggo.nl (via SMTP) X-Ziggo-spambar: / X-Ziggo-spamscore: 0.0 X-Ziggo-spamreport: CMAE Analysis: v=2.4 cv=TcEoCTch c=1 sm=1 tr=0 ts=5fe085d7 a=N0UC3/faf55XGTeY5t7zSQ==:17 a=9+rZDBEiDlHhcck0kWbJtElFXBc=:19 a=zTNgK-yGK50A:10 a=x7bEGLp0ZPQA:10 a=6yxbeI8x3IIA:10 a=EmBfDypfAAAA:20 a=pGLkceISAAAA:8 a=sg559197RD_vZ906ABoA:9 X-Ziggo-Spam-Status: No X-Spam-Status: No X-Spam-Flag: No ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=lists.ipfire.org; s=202003rsa; t=1608549848; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding; bh=8nAPIJMrDLg/+FPdQbwB2hq6lVJRE0SGRXiH6Yn7rKw=; b=r9i/nC4+JaAFvmaqIJNSN8pgloShnq8W3cfsX8tcNXZNb/smPEcNHyTWi2CIdmlBT0m1mn KkXPNVIRsF0TQcJ07ximciv1d/5wYXuskUjidusDkgsGYmnrrKOAaDiw76NUt5kRVnarcP y8KjV0Gf40LgMdpEkUQ54AISNgV5MX7zEblMHYlUCkOeP+0WJGaBVHpdBzx8t2fBl3j+0G lAqFOYTgTqfjEEpAJpPOw49rlsi65nDPRobJZsdYJkByGTzh+Co9KQnDlsCekOrU1I0sa7 kHVRzg4cbjcp2IyuQqjzJEjNW7vu35TfOrh8dTYOmNCXGT/TMkpi1b0Tx7rDbA== ARC-Authentication-Results: i=1; mail01.ipfire.org; dkim=none; spf=softfail (mail01.ipfire.org: 212.54.42.167 is neither permitted nor denied by domain of ahbipfire@gmail.com) smtp.mailfrom=ahbipfire@gmail.com ARC-Seal: i=1; s=202003rsa; d=lists.ipfire.org; t=1608549848; a=rsa-sha256; cv=none; b=QRowKCJ294UzzTTsi08IC+Uuo3mk4xwU9AQSLWzwXc9GtaFypRaWIlmNZbDn9O08acExa+ LO2+Bdyv/xL+MEZeCTxAoGF/7ijOuBQ8Atjz3ZAdJ42jeWNObyry0/HhiuadhjJLsxyOGA m7Uckb7h68xdDrnGu6G5IEydFX8IUVc897/t2IN2hT1GyVYecexT2B5fCFbu5cSgGs/ruz kwrB7tcg/1CJTFPMBpYkhVBVj2L8a+SLO31u36iWu/x+SxTuBXUxZsdjWvj6EhphC9kWnt a94w4ELHkVbTw3TEY7EyDAPMMpWYymGVcptQb+J33dObYmqLtgu6q9KSexEjig== X-Spamd-Result: default: False [-1.27 / 11.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_MISSING_CHARSET(2.50)[]; IP_REPUTATION_HAM(-2.27)[asn: 33915(-0.25), country: NL(0.00), ip: 212.54.42.167(-0.89)]; BROKEN_CONTENT_TYPE(1.50)[]; R_SPF_SOFTFAIL(0.00)[~all]; ARC_SIGNED(0.00)[lists.ipfire.org:s=202003rsa:i=1]; RCVD_COUNT_THREE(0.00)[4]; RCPT_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:33915, ipnet:212.54.32.0/20, country:NL]; R_DKIM_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; HAS_X_AS(0.00)[]; TAGGED_FROM(0.00)[]; ARC_NA(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[24.132.103.33:received]; FROM_HAS_DN(0.00)[]; BAYES_HAM(-3.00)[99.99%]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.54.42.167:from]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.54.42.167:from]; FREEMAIL_CC(0.00)[gmail.com]; RCVD_TLS_ALL(0.00)[]; DMARC_POLICY_SOFTFAIL(0.10)[gmail.com : No valid SPF, No valid DKIM,none] X-Rspamd-Queue-Id: 4Czxtw0RG6zJM Authentication-Results: mail01.ipfire.org; dkim=none; spf=softfail (mail01.ipfire.org: 212.54.42.167 is neither permitted nor denied by domain of ahbipfire@gmail.com) smtp.mailfrom=ahbipfire@gmail.com; dmarc=fail reason="No valid SPF, No valid DKIM" header.from=gmail.com (policy=none) X-Rspamd-Server: mail01.haj.ipfire.org X-BeenThere: development@lists.ipfire.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: IPFire development talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: development-bounces@lists.ipfire.org Sender: "Development" - Update dehydrated from 0.6.5 to 0.7.0 - No changes to the rootfiles - This update patch also addresses bug #12425 The changes from the interim patch mentioned in bug #12425 are included into this update - Changes for all releases can be found at https://github.com/dehydrated-io/dehydrated/releases - Changes for this version update Added Support for external account bindings Special support for ZeroSSL Support presets for some CAs instead of requiring URLs Allow requesting preferred chain (--preferred-chain) Added method to show CAs current terms of service (--display-terms) Allow setting path to domains.txt using cli arguments (--domains-txt) Added new cli command --cleanupdelete which deletes old files instead of archiving them Fixed No more silent failures on broken hook-scripts Better error-handling with KEEP_GOING enabled Check actual order status instead of assuming it's valid Don't include keyAuthorization in challenge validation (RFC compliance) Changed Using EC secp384r1 as default certificate type Use JSON.sh to parse JSON Use account URL instead of account ID (RFC compliance) Dehydrated now has a new home: https://github.com/dehydrated-io/dehydrated Added OCSP_FETCH and OCSP_DAYS to per-certificate configurable options Cleanup now also removes dangling symlinks Signed-off-by: Adolf Belka --- lfs/dehydrated | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/lfs/dehydrated b/lfs/dehydrated index 34b938c13..c2c3a9e00 100644 --- a/lfs/dehydrated +++ b/lfs/dehydrated @@ -24,7 +24,7 @@ include Config -VER = 0.6.5 +VER = 0.7.0 THISAPP = dehydrated-$(VER) DL_FILE = $(THISAPP).tar.gz @@ -32,7 +32,7 @@ DL_FROM = $(URL_IPFIRE) DIR_APP = $(DIR_SRC)/$(THISAPP) TARGET = $(DIR_INFO)/$(THISAPP) PROG = dehydrated -PAK_VER = 3 +PAK_VER = 4 DEPS = @@ -44,7 +44,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_MD5 = cedf07369517c317c4e1075540b94699 +$(DL_FILE)_MD5 = a23c9f7a475b9d690e788ee13dd8f14a install : $(TARGET)