summaryrefslogtreecommitdiff
path: root/usr.sbin/acme-client
AgeCommit message (Expand)Author
2017-03-29account key needs to be in quotes.T.J. Townsend
2017-03-26recallocarray() for data buffer from the net.Theo de Raadt
2017-03-23It is perfectly valid to have a cert / key not owned by root; removeFlorian Obser
2017-03-23pull root check up, the parser will bomb out anywayFlorian Obser
2017-03-22Improve manpage and config file to show the more common use case.Sebastian Benoit
2017-03-20Simplify cron(8) job example.Antoine Jacoutot
2017-02-03Don't use <sys/param.h> from userland without cause. Sort <sys/*>Philip Guenther
2017-01-28- -N got changed to -DJason McIntyre
2017-01-25remove __BEGIN_DECLS and __END_DECLS from http.hKinichiro Inoguchi
2017-01-24Make returns consistent and remove parentheses per style(9).Joel Sing
2017-01-24nuke extra brackets. discussed with jsingTheo Buehler
2017-01-24Complete jsing's coccinelle cleanup... by handTheo de Raadt
2017-01-24errx() does not need extra newlineTheo de Raadt
2017-01-24Replace comparisons between a constant or enum and an expression, withJoel Sing
2017-01-24string terminator is called a NULTheo de Raadt
2017-01-23whitespaceTheo de Raadt
2017-01-21tweak previous;Jason McIntyre
2017-01-21find the first authority works better this way, now that we use a tailqSebastian Benoit
2017-01-21move config data structures mostly to TAILQs, because that way weSebastian Benoit
2017-01-21it is ok to only specify a full chain certificateFlorian Obser
2017-01-21dont print config if its brokenSebastian Benoit
2017-01-21it's chain certificate not certificate chainFlorian Obser
2017-01-21Enforce minimum config in the parser.Florian Obser
2017-01-21Improve DocumentationSebastian Benoit
2017-01-21add option 'domain full chain certificate "path"',Sebastian Benoit
2017-01-21document default challengedir "/var/www/acme"Sebastian Benoit
2017-01-21see also acme-client.conf(5) suggested by millert and Raf CzlonkaSebastian Benoit
2017-01-21Implement domain chain certificate.Florian Obser
2017-01-21Split certificate file from config file into certdir and certfile.Florian Obser
2017-01-21remove unused vars; OK bennoFlorian Obser
2017-01-21Remove backup option. This is not acme-client's business; also it getsFlorian Obser
2017-01-21We are only dealing with one domain on the command lineFlorian Obser
2017-01-21typo; ok bennoFlorian Obser
2017-01-21kill remote with fire, we need to handle this differentlyFlorian Obser
2017-01-21typo; ok bennoFlorian Obser
2017-01-21acme-client use configuration file [5 of 5]Sebastian Benoit
2017-01-21acme-client use configuration file [4 of 5]Sebastian Benoit
2017-01-21acme-client use configuration file [3 of 5]Sebastian Benoit
2017-01-21acme-client use configuration file [2 of 5]Sebastian Benoit
2017-01-21acme-client use configuration file [1 of 5]Sebastian Benoit
2017-01-05Replace hand-rolled for(;;) emptying of 'symhead' TAILQ with moreKenneth R Westerback
2017-01-05Replace symset()'s hand-rolled for(;;) traversal of 'symhead' TAILQKenneth R Westerback
2016-11-02Use secure defaults for TLS - instead of accepting TLSv1.0 and any cipherJoel Sing
2016-10-04Avoid a potential MITM - calling tls_config_insecure_noverify() is a badJoel Sing
2016-10-04s/letsencrypt/ACME/Joel Sing
2016-10-04tls_close() can return TLS_WANT_POLLIN/TLS_WANT_POLLOUT - handle thisJoel Sing
2016-09-24The file descriptor needs to be closed in both the TLS and non-TLS case,Joel Sing
2016-09-24Both tls_free() and tls_config_free() are safe to call with NULL.Joel Sing
2016-09-24Remove more backwards compat for unsupported OpenBSD releases.Joel Sing
2016-09-20reoorder includes,Sebastian Benoit