head 1.9; access; symbols pkgsrc-2026Q1:1.9.0.6 pkgsrc-2026Q1-base:1.9 pkgsrc-2025Q4:1.9.0.4 pkgsrc-2025Q4-base:1.9 pkgsrc-2025Q3:1.9.0.2 pkgsrc-2025Q3-base:1.9 pkgsrc-2025Q2:1.8.0.2 pkgsrc-2025Q2-base:1.8 pkgsrc-2025Q1:1.7.0.4 pkgsrc-2025Q1-base:1.7 pkgsrc-2024Q4:1.7.0.2 pkgsrc-2024Q4-base:1.7 pkgsrc-2024Q3:1.6.0.8 pkgsrc-2024Q3-base:1.6 pkgsrc-2024Q2:1.6.0.6 pkgsrc-2024Q2-base:1.6 pkgsrc-2024Q1:1.6.0.4 pkgsrc-2024Q1-base:1.6 pkgsrc-2023Q4:1.6.0.2 pkgsrc-2023Q4-base:1.6 pkgsrc-2023Q3:1.5.0.4 pkgsrc-2023Q3-base:1.5 pkgsrc-2023Q2:1.5.0.2 pkgsrc-2023Q2-base:1.5 pkgsrc-2023Q1:1.4.0.10 pkgsrc-2023Q1-base:1.4 pkgsrc-2022Q4:1.4.0.8 pkgsrc-2022Q4-base:1.4 pkgsrc-2022Q3:1.4.0.6 pkgsrc-2022Q3-base:1.4 pkgsrc-2022Q2:1.4.0.4 pkgsrc-2022Q2-base:1.4 pkgsrc-2022Q1:1.4.0.2 pkgsrc-2022Q1-base:1.4 pkgsrc-2021Q4:1.3.0.18 pkgsrc-2021Q4-base:1.3 pkgsrc-2021Q3:1.3.0.16 pkgsrc-2021Q3-base:1.3 pkgsrc-2021Q2:1.3.0.14 pkgsrc-2021Q2-base:1.3 pkgsrc-2021Q1:1.3.0.12 pkgsrc-2021Q1-base:1.3 pkgsrc-2020Q4:1.3.0.10 pkgsrc-2020Q4-base:1.3 pkgsrc-2020Q3:1.3.0.8 pkgsrc-2020Q3-base:1.3 pkgsrc-2020Q2:1.3.0.6 pkgsrc-2020Q2-base:1.3 pkgsrc-2020Q1:1.3.0.2 pkgsrc-2020Q1-base:1.3 pkgsrc-2019Q4:1.3.0.4 pkgsrc-2019Q4-base:1.3 pkgsrc-2019Q3:1.1.0.6 pkgsrc-2019Q3-base:1.1 pkgsrc-2019Q2:1.1.0.4 pkgsrc-2019Q2-base:1.1 pkgsrc-2019Q1:1.1.0.2 pkgsrc-2019Q1-base:1.1; locks; strict; comment @# @; 1.9 date 2025.09.15.11.16.01; author adam; state Exp; branches; next 1.8; commitid yT2aDJYFJ9P5KNaG; 1.8 date 2025.04.28.09.02.35; author adam; state Exp; branches; next 1.7; commitid 0RRSXbU1RHMtvNSF; 1.7 date 2024.11.11.12.10.46; author adam; state Exp; branches; next 1.6; commitid oPrlhWbl7dpVWdxF; 1.6 date 2023.12.12.16.39.35; author adam; state Exp; branches; next 1.5; commitid Bt5uu9XM5UmxccQE; 1.5 date 2023.04.17.09.22.06; author adam; state Exp; branches; next 1.4; commitid VZadJyjVoHpNsrlE; 1.4 date 2022.02.10.21.23.33; author adam; state Exp; branches; next 1.3; commitid B716Vt4AFRqcj7sD; 1.3 date 2019.12.15.09.48.39; author adam; state Exp; branches; next 1.2; commitid w6iifigKI326NMOB; 1.2 date 2019.10.02.17.36.44; author adam; state Exp; branches; next 1.1; commitid xfzgCW1mv4DpLjFB; 1.1 date 2019.01.15.09.38.10; author triaxx; state Exp; branches; next ; commitid 2Aq9FYaGyi5wtR7B; desc @@ 1.9 log @py-acme py-certbot*: updated to 5.0.0 5.0.0 Added Certbot now stores the Retry-After value given by ACME Renewal Info (ARI) so the value can be respected across multiple Certbot runs. Added uv as a test dependency, and switched most pip invocations to uv pip for faster installs. Changed Removed final instances of pyopenssl x509 and PKey objects Removed acme.crypto_util.SSLSocket Removed acme.crypto_util.probe_sni Removed a number of deprecated classes/interfaces Removed acme.challenges.TLSALPN01Response Removed acme.challenges.TLSALPN01 Removed acme.standalone.TLSServer Removed acme.standalone.TLSALPN01Server certbot.ocsp.RevocationChecker.init no longer accepts the parameter enforce_openssl_binary_usage and always uses the cryptography Python library for OCSP checking. Python 3.9 support was removed. Migrated most functionality from certbot/setup.py to certbot/pyproject.toml Migrated most functionality from setup.py to pyproject.toml for acme, certbot-apache, and certbot-nginx. Migrated most functionality from setup.py to pyproject.toml for certbot dns plugins. Updated apache TLS configuration options based on changes to Mozilla's intermediate configuration recommendations. Added DHE-RSA-CHACHA20-POLY1305 to SSLCipherSuite list for better compliance Configured curves using SSLOpenSSLConfCmd so FFDH won't be used with OpenSSL 3.0 Fixed certbot-apache no longer prints a warning claiming the version of OpenSSL used by Apache is too old when we were unable determine the OpenSSL version. certbot-nginx no longer uses socket.gethostname when generating self-signed certificates for use as a temporary step of installing certificates as it would sometimes result in strings that are too long to be used in the common name of a certificate. The static domain "temp-certbot-nginx.invalid" is now used instead. @ text @@@comment $NetBSD: PLIST,v 1.8 2025/04/28 09:02:35 adam Exp $ ${PYSITELIB}/${WHEEL_INFODIR}/METADATA ${PYSITELIB}/${WHEEL_INFODIR}/RECORD ${PYSITELIB}/${WHEEL_INFODIR}/WHEEL ${PYSITELIB}/${WHEEL_INFODIR}/entry_points.txt ${PYSITELIB}/${WHEEL_INFODIR}/licenses/LICENSE.txt ${PYSITELIB}/${WHEEL_INFODIR}/top_level.txt ${PYSITELIB}/certbot_dns_route53/__init__.py ${PYSITELIB}/certbot_dns_route53/__init__.pyc ${PYSITELIB}/certbot_dns_route53/__init__.pyo ${PYSITELIB}/certbot_dns_route53/_internal/__init__.py ${PYSITELIB}/certbot_dns_route53/_internal/__init__.pyc ${PYSITELIB}/certbot_dns_route53/_internal/__init__.pyo ${PYSITELIB}/certbot_dns_route53/_internal/dns_route53.py ${PYSITELIB}/certbot_dns_route53/_internal/dns_route53.pyc ${PYSITELIB}/certbot_dns_route53/_internal/dns_route53.pyo ${PYSITELIB}/certbot_dns_route53/_internal/tests/__init__.py ${PYSITELIB}/certbot_dns_route53/_internal/tests/__init__.pyc ${PYSITELIB}/certbot_dns_route53/_internal/tests/__init__.pyo ${PYSITELIB}/certbot_dns_route53/_internal/tests/conftest.py ${PYSITELIB}/certbot_dns_route53/_internal/tests/conftest.pyc ${PYSITELIB}/certbot_dns_route53/_internal/tests/conftest.pyo ${PYSITELIB}/certbot_dns_route53/_internal/tests/dns_route53_test.py ${PYSITELIB}/certbot_dns_route53/_internal/tests/dns_route53_test.pyc ${PYSITELIB}/certbot_dns_route53/_internal/tests/dns_route53_test.pyo ${PYSITELIB}/certbot_dns_route53/py.typed @ 1.8 log @py-acme py-certbot*: updated to 4.0.0 4.0.0 Added The --preferred-profile and --required-profile flags allow requesting a profile. https://datatracker.ietf.org/doc/draft-aaron-acme-profiles/ Changed Certificates now renew with 1/3rd of lifetime left (or 1/2 of lifetime left, if the lifetime is shorter than 10 days). This is a change from a hardcoded renewal at 30 days before expiration. The config field renew_before_expiry still overrides this default. removed acme.crypto_util._pyopenssl_cert_or_req_all_names removed acme.crypto_util._pyopenssl_cert_or_req_san removed acme.crypto_util.dump_pyopenssl_chain removed acme.crypto_util.gen_ss_cert removed certbot.crypto_util.dump_pyopenssl_chain removed certbot.crypto_util.pyopenssl_load_certificate Fixed Moved RewriteEngine on directive added during apache http01 authentication to the end of the virtual host, so that it overwrites any RewriteEngine off directives that already exist and allows redirection to the challenge URL. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.7 2024/11/11 12:10:46 adam Exp $ d20 3 @ 1.7 log @py-acme py-certbot*: updated to 3.0.0 Certbot 3.0.0 The update_symlinks command was removed. The csr_dir and key_dir attributes on certbot.configuration.NamespaceConfig were removed. The --manual-public-ip-logging-ok command line flag was removed. The --dns-route53-propagation-seconds command line flag was removed. The certbot_dns_route53.authenticator module has been removed. This should not affect any users of the plugin and instead would only affect developers trying to develop on top of the old code. Support for Python 3.8 was deprecated and will be removed in our next planned release. @ text @d1 1 a1 2 @@comment $NetBSD: PLIST,v 1.6 2023/12/12 16:39:35 adam Exp $ ${PYSITELIB}/${WHEEL_INFODIR}/LICENSE.txt d6 1 @ 1.6 log @py-acme py-certbot*: updated to 2.8.0 Certbot 2.8.0 Added Added support for Alpine Linux distribution when is used the apache plugin Changed Support for Python 3.7 was removed. Fixed Stop using the deprecated pkg_resources API included in setuptools. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.5 2023/04/17 09:22:06 adam Exp $ a22 3 ${PYSITELIB}/certbot_dns_route53/authenticator.py ${PYSITELIB}/certbot_dns_route53/authenticator.pyc ${PYSITELIB}/certbot_dns_route53/authenticator.pyo @ 1.5 log @py-acme py-certbot*: updated to 2.5.0 Certbot 2.5.0 Added acme.messages.OrderResource now supports being round-tripped through JSON acme.client.ClientV2 now provides separate begin_finalization and poll_finalization methods, in addition to the existing finalize_order method. Changed --dns-route53-propagation-seconds is now deprecated. The Route53 plugin relies on the GetChange API to determine if a DNS update is complete. The flag has never had any effect and will be removed in a future version of Certbot. Packaged tests for all Certbot components besides josepy were moved inside the _internal/tests module. Fixed Fixed renew sometimes not preserving the key type of RSA certificates. Users who upgraded from Certbot =v2.0.0 may have had their RSA certificates inadvertently changed to ECDSA certificates. If desired, the key type may be changed back to RSA. See the User Guide. Deprecated flags were inadvertently not printing warnings since v1.16.0. This is now fixed. @ text @d1 7 a7 7 @@comment $NetBSD: PLIST,v 1.4 2022/02/10 21:23:33 adam Exp $ ${PYSITELIB}/${EGG_INFODIR}/PKG-INFO ${PYSITELIB}/${EGG_INFODIR}/SOURCES.txt ${PYSITELIB}/${EGG_INFODIR}/dependency_links.txt ${PYSITELIB}/${EGG_INFODIR}/entry_points.txt ${PYSITELIB}/${EGG_INFODIR}/requires.txt ${PYSITELIB}/${EGG_INFODIR}/top_level.txt @ 1.4 log @py-acme py-certbot*: updated to 1.23.0 Certbot 1.23.0 Added Added show_account subcommand, which will fetch the account information from the ACME server and show the account details (account URL and, if applicable, email address or addresses) We deprecated support for Python 3.6 in Certbot and its ACME library. Support for Python 3.6 will be removed in the next major release of Certbot. Fixed GCP Permission list for certbot-dns-google in plugin documentation dns-digitalocean used the SOA TTL for newly created records, rather than 30 seconds. Revoking a certificate based on an ECDSA key can now be done with --key-path. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.3 2019/12/15 09:48:39 adam Exp $ d17 6 @ 1.3 log @py-acme/py-cerbot-*: updated to 1.0.0 Certbot 1.0.0 Removed: * The docs extras for the certbot-apache and certbot-nginx packages have been removed. Changed: * certbot-auto has deprecated support for systems using OpenSSL 1.0.1 that are not running on x86-64. This primarily affects RHEL 6 based systems. * Certbot's config_changes subcommand has been removed * certbot.plugins.common.TLSSNI01 has been removed. * Deprecated attributes related to the TLS-SNI-01 challenge in acme.challenges and acme.standalone have been removed. * The functions certbot.client.view_config_changes, certbot.main.config_changes, certbot.plugins.common.Installer.view_config_changes, certbot.reverter.Reverter.view_config_changes, and certbot.util.get_systemd_os_info have been removed * Certbot's register --update-registration subcommand has been removed * When possible, default to automatically configuring the webserver so all requests redirect to secure HTTPS access. This is mostly relevant when running Certbot in non-interactive mode. Previously, the default was to not redirect all requests. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.2 2019/10/02 17:36:44 adam Exp $ d20 1 @ 1.2 log @py-acme/py-certbot: updated to 0.39.0 0.39.0: Added Support for Python 3.8 was added to Certbot and all of its components. Support for CentOS 8 was added to certbot-auto. Changed Don't send OCSP requests for expired certificates Return to using platform.linux_distribution instead of distro.linux_distribution in OS fingerprinting for Python < 3.8 Updated the Nginx plugin's TLS configuration to keep support for some versions of IE11. Fixed Fixed OS detection in the Apache plugin on RHEL 6. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.1 2019/01/15 09:38:10 triaxx Exp $ d11 6 a19 6 ${PYSITELIB}/certbot_dns_route53/dns_route53.py ${PYSITELIB}/certbot_dns_route53/dns_route53.pyc ${PYSITELIB}/certbot_dns_route53/dns_route53.pyo ${PYSITELIB}/certbot_dns_route53/dns_route53_test.py ${PYSITELIB}/certbot_dns_route53/dns_route53_test.pyc ${PYSITELIB}/certbot_dns_route53/dns_route53_test.pyo @ 1.1 log @py-certbot-dns-route53: add certbot route53 plugin @ text @d1 1 a1 1 @@comment $NetBSD$ d9 1 d11 2 a12 1 ${PYSITELIB}/certbot_dns_route53/__init__.pyc d14 2 a15 1 ${PYSITELIB}/certbot_dns_route53/authenticator.pyc d17 2 a18 1 ${PYSITELIB}/certbot_dns_route53/dns_route53.pyc a19 4 ${PYSITELIB}/certbot_dns_route53/dns_route53_test.pyc ${PYSITELIB}/certbot_dns_route53/authenticator.py ${PYSITELIB}/certbot_dns_route53/dns_route53.py ${PYSITELIB}/certbot_dns_route53/dns_route53_test.py @