Created attachment 173614 [details] v1 patch The upstream LetsEncrypt.org licence changed on 1 August, and the API requires agreeing to that specific doc via a new URL. Without this change, certs cannot be renewed. The error message is also not clear, so much pain was shed working through this... Upstream letsKencrypt has this in https://github.com/kristapsdz/letskencrypt/commit/0debf74f89a84b21b031c15075a7b85af9b682f8 and the -portable version now does too. This patch switches to git for the moment until it's tagged. # QA - WorksForME - poudriere ok on 11.0-CURRENT-amd64 - portlint is fine - updated PORTREVISION might need review
A commit references this bug: Author: brnrd Date: Fri Aug 12 23:17:59 UTC 2016 New revision: 420150 URL: https://svnweb.freebsd.org/changeset/ports/420150 Log: security/letskencrypt: Allow configurable license agreement - Backport upstream fixes for -a option (license agreement URL) - Bump PORTREVISION PR: 211798 Submitted by: Dave Cottlehuber <dch@skunkwerks.at> Reported by: Dave Cottlehuber <dch@skunkwerks.at> Changes: head/security/letskencrypt/Makefile head/security/letskencrypt/files/patch-extern.h head/security/letskencrypt/files/patch-letskencrypt.1 head/security/letskencrypt/files/patch-main.c head/security/letskencrypt/files/patch-netproc.c head/security/letskencrypt/files/pkg-message.in
Shouldn't this be merged, or are quarterly users not affected?
Yes. I am sure that without this patch is it impossible to create new certificates, both in staging and in production. I am not 100% sure if this is related to my unsuccessful renewal though - still working on that.
I believe this is only for new account keys not for issuance or renewal of new certificates. I've issued a new certificate (added the SAN names) on 2016-08-08 without problems. Found an error in my commit as well. The files/pkg-message.in addition is unneccessary as the new default URL is OK (i.e. v1.1.1)
A commit references this bug: Author: brnrd Date: Sat Aug 13 14:45:45 UTC 2016 New revision: 420161 URL: https://svnweb.freebsd.org/changeset/ports/420161 Log: security/letskencrypt: Fix pkg-message - Remove unneeded license agreement warning from pkg-message - Fix broken example script while here PR: 211798 Changes: head/security/letskencrypt/files/letskencrypt.sh.sample.in head/security/letskencrypt/files/pkg-message.in