Comments (4)
I've been working on this, using pebble-chaltestsrv to answer the challenges, and ran into a problem with pebble seemingly not honoring the -dnsserver option (to direct DNS queries to the chaltestsrv). Omens are unclear. Recording what hints I find here so I don't lose track of them again.
pebble #118 mentions docker magic workaround for a DNS issue that may or may not be related
from sewer.
does this letsencrypt/pebble#139 help?
from sewer.
do you have a draft PR open?
I can have a look and try to help if I get some time
from sewer.
letsencrypt/pebble#139 would help if it worked. I banged my head on this for a while, evenually found, I think, that this is a fight against the go resolver that they're using, and they pulled a dirty(?) hack out which broke -dnsserver. That was months ago, and I understand they're a small, perhaps marginal part of letsencrypt's dev team, but I curse them roundly for not making it clear that the option was defunct. I think it was finding a bug where they chose NOT to remove the broken thing for some reason I cannot fathom, though it has an odor of arrogant pride to this afflicted user. :-( <flame/>
I'm nearly ready to have another go at it, by setting up a network namespace to stuff pebble into where it be given a custom resolv.conf (and another for challtestsrv, since there's no way to pass it the nonstandard port without the above-cursed thing). I don't know if this will translate directly into the CI environment, but it's a much more lightweight alternative to a full-load container for each piece... though it was a mention of someone who go the broken things working using containers that gave me hope again.
I have too many things going on, all of them less than perfectly independent. I'd like to finish the auth consolidation first (there's the catalog and removal of imports from init.py, which isn't in the PR yet, and some other changes that the bugs and old PRs I've been looking at have suggested), then re-assemble the pebble work, which is largely the "current RFC compat" work, on top of it. And once again, looking at other issues, especially the "*." one, has suggested some changes in the new auth interface. Continuous Improvement is the enemy of "done". :-/
from sewer.
Related Issues (20)
- RFC: reorganize [dns,http]_providers, replacing mess'o'imports with catalog HOT 1
- Wildcard certs do not work for the AWS route53 provider HOT 5
- Several DNS provider drivers assume domain.tld are exactly two components HOT 3
- Route53 fails to set required attributes to run correctly HOT 2
- StopIteration: Checks done=3. Max checks allowed=3. Interval between checks=8seconds. HOT 1
- Remove unnecessary pandoc from setup HOT 3
- Missing HTTP Provider HOT 2
- cryptography.hazmat.primitives.serialization doesn't import HOT 3
- Docs on renew are in conflict. HOT 2
- Cert for both Wildcard and domain itself HOT 6
- Ability to supply a CSR for signing. HOT 5
- Feature: Pass in a pre-configured route53 boto3 client to Route53Dns provider HOT 7
- ECDSA support HOT 4
- Limited support for Python 3.5
- Add support for name.com API HOT 1
- Route53 DNS Challenges Fail in Client Library HOT 5
- sewer non-binary install cannot be attempted on macos HOT 1
- RFC: optional zone_name parameter for DNS service drivers
- Minimal template causing TypeError: __init__() got an unexpected keyword argument 'acct_key' HOT 6
- Add to PyPI HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from sewer.