challtestsrv

challtestsrv copied to clipboard

Fixes https://github.com/letsencrypt/pebble/issues/418.

mitar

Currently there are no tests at all.

rominf

Support for SOA record types

5

As part of [cert-manager](https://github.com/jetstack/cert-manager), we perform SOA record lookups when 'presenting' DNS01 challenges in order to determine which DNS zone should be searched for when solving a challenge. With challtestsrv,...

munnerz

Perform keyauth hashing in AddDNSOneChallenge, add ACME prefix

1

Presently the `AddDNSOneChallenge` function is quite simple and adds the provided content under the provided host: https://github.com/letsencrypt/challtestsrv/blob/285efd6fac122954c72d2f32bf1f6e3f7c50ffb5/dnsone.go#L9-L15 That means callers have to add the `_acme-challenge.` prefix for RFC 8555 DNS-01...

cpu

when tls-alpn-01 challenge used to validate ip address validator send rDNS address in SNI, but client suppose to include IPaddress in SAN in certificate returned. PS. go 1.13 looks really...

orangepizza

I ran into issues in some tests because because challtestsrv is case sensitive. So here's a small patch to fix that.

lmartelli

Olexandr88

The tls-alpn-01 responder currently hardcodes the supplied identifier as a dnsName SAN in the challenge certificate: https://github.com/letsencrypt/challtestsrv/blob/bcea93640e39bfad2dbe3465f08040b14aa0e9a9/tlsalpnone.go#L76 This doesn't work for IP identifiers, where it needs to be encoded as...

aarongable