openwrt-packages.git - Community maintained packages for OpenWrt

	Commit message (Collapse)	Author	Age
*	acme-common: Export canonical paths for storing certificates and challenges	Toke Høiland-Jørgensen	2022-12-14
\| \| \| \| \| \| \| \| \| \| \| \|	The contract between the acme-common framework and consumers and hook scripts is that certificates can be consumed from /etc/ssl/acme and that web challenges are stored in /var/run/acme/challenge. Make this explicit by exporting $CERT_DIR and $CHALLENGE_DIR as environment variables as well, instead of having knowledge of those paths depend on out-of-band information. We already exported $challenge_dir, but let's change it to upper-case to make it clear that it's not a user configuration variable. Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
*	acme: deprecate state_dir	Glen Huang	2022-12-14
\| \| \| \| \| \| \| \| \| \| \| \| \|	state_dir is actually a hardcoded value in conffiles. Allowing users to customize it could result in losing certificates after upgrading if they don't also specify the dir as being preserved. We shouldn't default to this dangerous behavior. With the new ACME package, certificates live in the standard location /etc/ssl/acme, users who need to do certificate customizations should look for them in that dir instead. Signed-off-by: Glen Huang <i@glenhuang.com>
*	acme: simplify flock usage	Glen Huang	2022-11-11
\| \| \| \|	Signed-off-by: Glen Huang <i@glenhuang.com>
*	acme: update changed packages' versions	Glen Huang	2022-10-24
\| \| \| \|	Signed-off-by: Glen Huang <i@glenhuang.com>
*	acme: add dns_wait option	Glen Huang	2022-10-24
\| \| \| \| \| \| \| \| \| \| \|	acme.sh by default use public DNS resolvers to check if TXT record was correctly added when using DNS-01. This can be undesirable in a private environment where the DNS server is not publicly accessible. This option allows bypassing such check and simply waiting for a specific length of time for the TXT record to take effect. Signed-off-by: Glen Huang <i@glenhuang.com>
*	acme: fix staging option	Glen Huang	2022-10-24
\| \| \| \| \| \| \|	Legacy use_staging option was not respected, and the example config still use the legacy name. Signed-off-by: Glen Huang <i@glenhuang.com>
*	amce: use procd to restart services	Glen Huang	2022-10-24
\| \| \| \| \| \| \|	Directly calling `/etc/init.d/<service> reload` in a hotplug script can inadvertently start a stopped service. Signed-off-by: Glen Huang <i@glenhuang.com>
*	acme: prevent concurrent running of acme get	Glen Huang	2022-10-24
\| \| \| \| \| \|	Issuing certificates concurrently should not be supported. Signed-off-by: Glen Huang <i@glenhuang.com>
*	acme: make package create dir /etc/ssl/acme	Glen Huang	2022-10-22
\| \| \| \| \| \| \|	Since the dir is a standardized one, it should not be created dynamically Signed-off-by: Glen Huang <i@glenhuang.com>
*	acme: not creating state_dir in Makefile	Glen Huang	2022-10-22
\| \| \| \| \| \| \|	Since state_dir can be customized, it should be create dynamically, which it already does. Signed-off-by: Glen Huang <i@glenhuang.com>
*	acme: remove help info of unused command	Glen Huang	2022-10-06
\| \| \| \|	Signed-off-by: Glen Huang <i@glenhuang.com>
*	acme: use the hotplug system	Glen Huang	2022-08-16
	Signed-off-by: Glen Huang <heyhgl@gmail.com>