Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package python-certbot for openSUSE:Factory checked in at 2022-10-27 13:54:35 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-certbot (Old) and /work/SRC/openSUSE:Factory/.python-certbot.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-certbot" Thu Oct 27 13:54:35 2022 rev:45 rq:1031481 version:1.31.0 Changes: -------- --- /work/SRC/openSUSE:Factory/python-certbot/python-certbot.changes 2022-09-22 14:50:19.766497817 +0200 +++ /work/SRC/openSUSE:Factory/.python-certbot.new.2275/python-certbot.changes 2022-10-27 13:55:11.228878094 +0200 @@ -1,0 +2,14 @@ +Tue Oct 4 15:32:12 UTC 2022 - Michael Str??der <mich...@stroeder.com> + +- Update to 1.31.0 + * If Certbot exits before setting up its usual log files, the temporary + directory created to save logging information will begin with the name + certbot-log- rather than a generic name. This should not be considered a + stable aspect of Certbot and may change again in the future. + * Fixed an incompatibility in the certbot-dns-cloudflare plugin and the + Cloudflare library which was introduced in the Cloudflare library version + 2.10.1. The library would raise an error if a token was specified in the + Certbot --dns-cloudflare-credentials file as well as the cloudflare.cfg + configuration file of the Cloudflare library. + +------------------------------------------------------------------- Old: ---- certbot-1.30.0.tar.gz certbot-1.30.0.tar.gz.asc New: ---- certbot-1.31.0.tar.gz certbot-1.31.0.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-certbot.spec ++++++ --- /var/tmp/diff_new_pack.2swZvX/_old 2022-10-27 13:55:11.804881032 +0200 +++ /var/tmp/diff_new_pack.2swZvX/_new 2022-10-27 13:55:11.808881053 +0200 @@ -19,7 +19,7 @@ %{?!python_module:%define python_module() python-%{**} python3-%{**}} %define skip_python2 1 Name: python-certbot -Version: 1.30.0 +Version: 1.31.0 Release: 0 Summary: ACME client License: Apache-2.0 ++++++ certbot-1.30.0.tar.gz -> certbot-1.31.0.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/certbot-1.30.0/CHANGELOG.md new/certbot-1.31.0/CHANGELOG.md --- old/certbot-1.30.0/CHANGELOG.md 2022-09-07 20:08:15.000000000 +0200 +++ new/certbot-1.31.0/CHANGELOG.md 2022-10-04 16:40:41.000000000 +0200 @@ -2,6 +2,25 @@ Certbot adheres to [Semantic Versioning](https://semver.org/). +## 1.31.0 - 2022-10-04 + +### Added + +* + +### Changed + +* If Certbot exits before setting up its usual log files, the temporary directory created to save logging information will begin with the name `certbot-log-` rather than a generic name. This should not be considered a [stable aspect of Certbot](https://certbot.eff.org/docs/compatibility.html) and may change again in the future. + +### Fixed + +* Fixed an incompatibility in the certbot-dns-cloudflare plugin and the Cloudflare library + which was introduced in the Cloudflare library version 2.10.1. The library would raise + an error if a token was specified in the Certbot `--dns-cloudflare-credentials` file as + well as the `cloudflare.cfg` configuration file of the Cloudflare library. + +More details about these changes can be found on our GitHub repo. + ## 1.30.0 - 2022-09-07 ### Added diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/certbot-1.30.0/PKG-INFO new/certbot-1.31.0/PKG-INFO --- old/certbot-1.30.0/PKG-INFO 2022-09-07 20:08:16.388291100 +0200 +++ new/certbot-1.31.0/PKG-INFO 2022-10-04 16:40:42.426830300 +0200 @@ -1,6 +1,6 @@ Metadata-Version: 2.1 Name: certbot -Version: 1.30.0 +Version: 1.31.0 Summary: ACME client Home-page: https://github.com/letsencrypt/letsencrypt Author: Certbot Project diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/certbot-1.30.0/certbot/__init__.py new/certbot-1.31.0/certbot/__init__.py --- old/certbot-1.30.0/certbot/__init__.py 2022-09-07 20:08:16.000000000 +0200 +++ new/certbot-1.31.0/certbot/__init__.py 2022-10-04 16:40:42.000000000 +0200 @@ -1,3 +1,3 @@ """Certbot client.""" # version number like 1.2.3a0, must have at least 2 parts, like 1.2 -__version__ = '1.30.0' +__version__ = '1.31.0' diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/certbot-1.30.0/certbot/_internal/log.py new/certbot-1.31.0/certbot/_internal/log.py --- old/certbot-1.30.0/certbot/_internal/log.py 2022-09-07 20:08:15.000000000 +0200 +++ new/certbot-1.31.0/certbot/_internal/log.py 2022-10-04 16:40:41.000000000 +0200 @@ -264,7 +264,7 @@ """ def __init__(self) -> None: - self._workdir = tempfile.mkdtemp() + self._workdir = tempfile.mkdtemp(prefix="certbot-log-") self.path = os.path.join(self._workdir, 'log') stream = util.safe_open(self.path, mode='w', chmod=0o600) super().__init__(stream) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/certbot-1.30.0/certbot.egg-info/PKG-INFO new/certbot-1.31.0/certbot.egg-info/PKG-INFO --- old/certbot-1.30.0/certbot.egg-info/PKG-INFO 2022-09-07 20:08:16.000000000 +0200 +++ new/certbot-1.31.0/certbot.egg-info/PKG-INFO 2022-10-04 16:40:42.000000000 +0200 @@ -1,6 +1,6 @@ Metadata-Version: 2.1 Name: certbot -Version: 1.30.0 +Version: 1.31.0 Summary: ACME client Home-page: https://github.com/letsencrypt/letsencrypt Author: Certbot Project diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/certbot-1.30.0/certbot.egg-info/requires.txt new/certbot-1.31.0/certbot.egg-info/requires.txt --- old/certbot-1.30.0/certbot.egg-info/requires.txt 2022-09-07 20:08:16.000000000 +0200 +++ new/certbot-1.31.0/certbot.egg-info/requires.txt 2022-10-04 16:40:42.000000000 +0200 @@ -1,4 +1,4 @@ -acme>=1.30.0 +acme>=1.31.0 ConfigArgParse>=0.9.3 configobj>=5.0.6 cryptography>=2.5.0 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/certbot-1.30.0/docs/cli-help.txt new/certbot-1.31.0/docs/cli-help.txt --- old/certbot-1.30.0/docs/cli-help.txt 2022-09-07 20:08:15.000000000 +0200 +++ new/certbot-1.31.0/docs/cli-help.txt 2022-10-04 16:40:41.000000000 +0200 @@ -126,7 +126,7 @@ case, and to know when to deprecate support for past Python versions and flags. If you wish to hide this information from the Let's Encrypt server, set this to - "". (default: CertbotACMEClient/1.29.0 (certbot; + "". (default: CertbotACMEClient/1.30.0 (certbot; OS_NAME OS_VERSION) Authenticator/XXX Installer/YYY (SUBCOMMAND; flags: FLAGS) Py/major.minor.patchlevel). The flags encoded in the user agent are: --duplicate, @@ -236,7 +236,9 @@ (default: False) --debug Show tracebacks in case of errors (default: False) --no-verify-ssl Disable verification of the ACME server's certificate. - (default: False) + The root certificates trusted by Certbot can be + overriden by setting the REQUESTS_CA_BUNDLE + environment variable. (default: False) --http-01-port HTTP01_PORT Port used in the http-01 challenge. This only affects the port Certbot listens on. A conforming ACME server diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/certbot-1.30.0/docs/install.rst new/certbot-1.31.0/docs/install.rst --- old/certbot-1.30.0/docs/install.rst 2022-09-07 20:08:15.000000000 +0200 +++ new/certbot-1.31.0/docs/install.rst 2022-10-04 16:40:41.000000000 +0200 @@ -6,80 +6,45 @@ :local: -About Certbot -============= - -*Certbot is meant to be run directly on a web server*, normally by a system administrator. In most cases, running Certbot on your personal computer is not a useful option. The instructions below relate to installing and running Certbot on a server. - -System administrators can use Certbot directly to request certificates; they should *not* allow unprivileged users to run arbitrary Certbot commands as ``root``, because Certbot allows its user to specify arbitrary file locations and run arbitrary scripts. - -Certbot is packaged for many common operating systems and web servers. Check whether -``certbot`` (or ``letsencrypt``) is packaged for your web server's OS by visiting -certbot.eff.org_, where you will also find the correct installation instructions for -your system. - -.. Note:: Unless you have very specific requirements, we kindly suggest that you use the installation instructions for your system found at certbot.eff.org_. - -.. _certbot.eff.org: https://certbot.eff.org - - .. _system_requirements: System Requirements -=================== - -Certbot currently requires Python 3.7+ running on a UNIX-like operating -system. By default, it requires root access in order to write to -``/etc/letsencrypt``, ``/var/log/letsencrypt``, ``/var/lib/letsencrypt``; to -bind to port 80 (if you use the ``standalone`` plugin) and to read and -modify webserver configurations (if you use the ``apache`` or ``nginx`` -plugins). If none of these apply to you, it is theoretically possible to run -without root privileges, but for most users who want to avoid running an ACME -client as root, either `letsencrypt-nosudo -<https://github.com/diafygi/letsencrypt-nosudo>`_ or `simp_le -<https://github.com/zenhack/simp_le>`_ are more appropriate choices. - -The Apache plugin currently requires an OS with augeas version 1.0; currently `it -supports -<https://github.com/certbot/certbot/blob/master/certbot-apache/certbot_apache/_internal/constants.py>`_ -modern OSes based on Debian, Ubuntu, Fedora, SUSE, Gentoo and Darwin. +------------------- +- Linux, macOS, BSD and Windows +- Recommended root access on Linux/BSD/Required Administrator access on Windows +- Port 80 Open + +.. Note:: Certbot is most useful when run with root privileges, because it is then able to automatically configure TLS/SSL for Apache and nginx. \ + + *Certbot is meant to be run directly on a web server*, normally by a system administrator. In most cases, running Certbot on your personal computer is not a useful option. The instructions below relate to installing and running Certbot on a server. -Alternate installation methods -================================ +Installation +------------ -If you are offline or your operating system doesn't provide a package, you can use -an alternate method for installing ``certbot``. +Unless you have very specific requirements, we kindly suggest that you use the installation instructions for your system found at https://certbot.eff.org/instructions. .. _snap-install: -Snap ----- +Snap (Recommended) +------------------ +Our instructions are the same across all systems that use Snap. You can find instructions for installing Certbot through Snap can be found at https://certbot.eff.org/instructions by selecting your server software and then choosing "snapd" in the "System" dropdown menu. + +Most modern Linux distributions (basically any that use systemd) can install Certbot packaged as a snap. Snaps are available for x86_64, ARMv7 and ARMv8 architectures. The Certbot snap provides an easy way to ensure you have the latest version of Certbot with features like automated certificate renewal preconfigured. + +If you unable to use snaps, you can use an alternate method for installing ``certbot``. -Most modern Linux distributions (basically any that use systemd) can install -Certbot packaged as a snap. Snaps are available for x86_64, ARMv7 and ARMv8 -architectures. The Certbot snap provides an easy way to ensure you have the -latest version of Certbot with features like automated certificate renewal -preconfigured. - -You can find instructions for installing the Certbot snap at -https://certbot.eff.org/instructions by selecting your server software and then -choosing "snapd" in the "System" dropdown menu. (You should select "snapd" -regardless of your operating system, as our instructions are the same across -all systems.) .. _docker-user: -Running with Docker -------------------- +Alternative 1: Docker +--------------------- Docker_ is an amazingly simple and quick way to obtain a certificate. However, this mode of operation is unable to install certificates or configure your webserver, because our installer plugins cannot reach your webserver from inside the Docker container. -Most users should use the instructions at certbot.eff.org_. You should only use -Docker if you are sure you know what you are doing and have a good reason to do -so. +Most users should use the instructions at certbot.eff.org_. You should only use Docker if you are sure you know what you are doing and have a good reason to do so. You should definitely read the :ref:`where-certs` section, in order to know how to manage the certificates @@ -124,11 +89,41 @@ .. _Docker: https://docker.com .. _`install Docker`: https://docs.docker.com/engine/installation/ +.. _certbot.eff.org: https://certbot.eff.org/instructions -Pip ---- + +.. _pip: + +Alternative 2: Pip +------------------ Installing Certbot through pip is only supported on a best effort basis and when using a virtual environment. Instructions for installing Certbot through pip can be found at https://certbot.eff.org/instructions by selecting your server software and then choosing "pip" in the "System" dropdown menu. + + +.. _third-party: + +Alternative 3: Third Party Distributions +---------------------------------------- + +Third party distributions exist for other specific needs. They often are maintained +by these parties outside of Certbot and tend to rapidly fall out of date on LTS-style distributions. + + +.. _certbot-auto: + +Certbot-Auto [Deprecated] +------------------------- +.. toctree:: + :hidden: + +We used to have a shell script named ``certbot-auto`` to help people install +Certbot on UNIX operating systems, however, this script is no longer supported. + +Please remove ``certbot-auto``. To do so, you need to do three things: + +1. If you added a cron job or systemd timer to automatically run certbot-auto to renew your certificates, you should delete it. If you did this by following our instructions, you can delete the entry added to `/etc/crontab` by running a command like `sudo sed -i '/certbot-auto/d' /etc/crontab`. +2. Delete the certbot-auto script. If you placed it in `/usr/local/bin`` like we recommended, you can delete it by running `sudo rm /usr/local/bin/certbot-auto`. +3. Delete the Certbot installation created by certbot-auto by running `sudo rm -rf /opt/eff.org`.