https-github-com-bit
diff --git a/‎docker-compose.yml‎
Lines changed: 3 additions & 3 deletions b/‎docker-compose.yml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎test.sh‎
Lines changed: 2 additions & 2 deletions b/‎test.sh‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎test/boulder-tools/Dockerfile.tmpl‎
Lines changed: 0 additions & 1 deletion b/‎test/boulder-tools/Dockerfile.tmpl‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎test/boulder-tools/build.sh‎
Lines changed: 0 additions & 2 deletions b/‎test/boulder-tools/build.sh‎
Lines changed: 0 additions & 2 deletions
diff --git a/‎test/challtestsrv.py‎
Lines changed: 4 additions & 4 deletions b/‎test/challtestsrv.py‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎test/chisel.py‎
Lines changed: 14 additions & 16 deletions b/‎test/chisel.py‎
Lines changed: 14 additions & 16 deletions
diff --git a/‎test/chisel2.py‎
Lines changed: 10 additions & 9 deletions b/‎test/chisel2.py‎
Lines changed: 10 additions & 9 deletions
diff --git a/‎test/helpers.py‎
Lines changed: 21 additions & 21 deletions b/‎test/helpers.py‎
Lines changed: 21 additions & 21 deletions
@@ -2,7 +2,7 @@ version: '3'
 services:
     boulder:
         # To minimize fetching this should be the same version used below
-        image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-06-28
+        image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-04-08
         environment:
             FAKE_DNS: 10.77.77.77
             PKCS11_PROXY_SOCKET: tcp://boulder-hsm:5657
@@ -55,7 +55,7 @@ services:
         working_dir: /go/src/github.com/letsencrypt/boulder
     bhsm:
         # To minimize fetching this should be the same version used above
-        image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-06-28
+        image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-04-08
         environment:
             PKCS11_DAEMON_SOCKET: tcp://0.0.0.0:5657
         command: /usr/local/bin/pkcs11-daemon /usr/lib/softhsm/libsofthsm2.so
@@ -77,7 +77,7 @@ services:
         logging:
             driver: none
     netaccess:
-        image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-06-28
+        image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-04-08
         environment:
             GO111MODULE: "on"
             GOFLAGS: "-mod=vendor"
 
@@ -110,9 +110,9 @@ if [[ "$RUN" =~ "integration" ]] ; then
     args+=("--skip-setup")
   fi
 
-  source ${CERTBOT_PATH:-/certbot}/${VENV_NAME:-venv3}/bin/activate
+  source ${CERTBOT_PATH:-/certbot}/${VENV_NAME:-venv}/bin/activate
   DIRECTORY=http://boulder:4000/directory \
-    python3 test/integration-test.py "${args[@]}"
+    python2 test/integration-test.py "${args[@]}"
 fi
 
 # Test that just ./start.py works, which is a proxy for testing that
 
@@ -9,5 +9,4 @@ RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
 WORKDIR $GOPATH
 
 ADD build.sh /tmp/build.sh
-ADD requirements.txt /tmp/requirements.txt
 RUN /tmp/build.sh
@@ -51,8 +51,6 @@ git clone https://github.com/certbot/certbot /certbot
 cd /certbot
 ./letsencrypt-auto --os-packages-only
 ./tools/venv3.py
-source venv3/bin/activate
-pip install -r /tmp/requirements.txt
 cd -
 
 # Install pkcs11-proxy. Checked out commit was master HEAD at time
 
@@ -1,4 +1,4 @@
-import requests
+import urllib2
 import json
 
 class ChallTestServer:
@@ -39,14 +39,14 @@ def __init__(self, url=None):
             self._baseURL = url
 
     def _postURL(self, url, body):
-        return requests.post(
+        return urllib2.urlopen(
                 url,
-                data=json.dumps(body)).text
+                data=json.dumps(body)).read()
 
     def _URL(self, path):
         urlPath = self._paths.get(path, None)
         if urlPath is None:
-            raise(Exception("No challenge test server URL path known for {0}".format(path)))
+            raise Exception("No challenge test server URL path known for {0}".format(path))
         return self._baseURL + urlPath
 
     def _clear_request_history(self, host, typ):
 
@@ -14,7 +14,7 @@
 import sys
 import threading
 import time
-import requests
+import urllib2
 
 from cryptography import x509
 from cryptography.hazmat.backends import default_backend
@@ -73,9 +73,9 @@ def update_email(client, email):
     email.
     """
     if client is None:
-        raise(NoClientError("update_email requires a valid acme.Client argument"))
+        raise NoClientError("update_email requires a valid acme.Client argument")
     if email is None:
-        raise(EmailRequiredError("update_email requires an email argument"))
+        raise EmailRequiredError("update_email requires an email argument")
     if not email.startswith("mailto:"):
         email = "mailto:"+ email
     acct = client.account
@@ -86,7 +86,7 @@ def get_chall(authz, typ):
     for chall_body in authz.body.challenges:
         if isinstance(chall_body.chall, typ):
             return chall_body
-    raise(Exception("No %s challenge found" % typ))
+    raise Exception("No %s challenge found" % typ)
 
 class ValidationError(Exception):
     """An error that occurs during challenge validation."""
@@ -110,9 +110,9 @@ def issue(client, authzs, cert_output=None):
     csr = OpenSSL.crypto.X509Req()
     csr.add_extensions([
         OpenSSL.crypto.X509Extension(
-            'subjectAltName'.encode(),
+            'subjectAltName',
             critical=False,
-            value=(', '.join('DNS:' + d for d in domains)).encode()
+            value=', '.join('DNS:' + d for d in domains).encode()
         ),
     ])
     csr.set_pubkey(pkey)
@@ -126,21 +126,19 @@ def issue(client, authzs, cert_output=None):
         # If we get a PollError, pick the first failed authz and turn it into a more
         # useful ValidationError that contains details we can look for in tests.
         for authz in error.updated:
-            r = requests.get(authz.uri)
-            r.raise_for_status()
-            updated_authz = r.json()
+            updated_authz = json.loads(urllib2.urlopen(authz.uri).read())
             domain = authz.body.identifier.value,
             for c in updated_authz['challenges']:
                 if 'error' in c:
                     err = c['error']
-                    raise(ValidationError(domain, err['type'], err['detail']))
+                    raise ValidationError(domain, err['type'], err['detail'])
         # If none of the authz's had an error, just re-raise.
         raise
     if cert_output is not None:
         pem = OpenSSL.crypto.dump_certificate(OpenSSL.crypto.FILETYPE_PEM,
                                               cert_resource.body)
         with open(cert_output, 'w') as f:
-            f.write(pem.decode())
+            f.write(pem)
     return cert_resource
 
 def http_01_answer(client, chall_body):
@@ -225,7 +223,7 @@ def auth_and_issue(domains, chall_type="dns-01", email=None, cert_output=None, c
     elif chall_type == "tls-alpn-01":
         cleanup = do_tlsalpn_challenges(client, authzs)
     else:
-        raise(Exception("invalid challenge type %s" % chall_type))
+        raise Exception("invalid challenge type %s" % chall_type)
 
     try:
         cert_resource = issue(client, authzs, cert_output)
@@ -252,15 +250,15 @@ def expect_problem(problem_type, func):
         else:
             raise
     if not ok:
-        raise(Exception('Expected %s, got no error' % problem_type))
+        raise Exception('Expected %s, got no error' % problem_type)
 
 if __name__ == "__main__":
     domains = sys.argv[1:]
     if len(domains) == 0:
-        print(__doc__)
+        print __doc__
         sys.exit(0)
     try:
         auth_and_issue(domains)
-    except messages.Error as e:
-        print(e)
+    except messages.Error, e:
+        print e
         sys.exit(1)
@@ -15,6 +15,7 @@
 import signal
 import threading
 import time
+import urllib2
 
 from cryptography.hazmat.backends import default_backend
 from cryptography.hazmat.primitives.asymmetric import rsa
@@ -59,14 +60,14 @@ def make_client(email=None):
         client.net.account = client.new_account(messages.NewRegistration.from_data(email=email,
             terms_of_service_agreed=True))
     else:
-        raise(Exception("Unrecognized terms of service URL %s" % tos))
+        raise Exception("Unrecognized terms of service URL %s" % tos)
     return client
 
 def get_chall(authz, typ):
     for chall_body in authz.body.challenges:
         if isinstance(chall_body.chall, typ):
             return chall_body
-    raise(Exception("No %s challenge found" % typ.typ))
+    raise Exception("No %s challenge found" % typ.typ)
 
 def make_csr(domains):
     key = OpenSSL.crypto.PKey()
@@ -99,7 +100,7 @@ def auth_and_issue(domains, chall_type="dns-01", email=None, cert_output=None, c
     elif chall_type == "tls-alpn-01":
         cleanup = do_tlsalpn_challenges(client, authzs)
     else:
-        raise(Exception("invalid challenge type %s" % chall_type))
+        raise Exception("invalid challenge type %s" % chall_type)
 
     try:
         order = client.poll_and_finalize(order)
@@ -171,27 +172,27 @@ def expect_problem(problem_type, func):
         if e.typ == problem_type:
             ok = True
         else:
-            raise(Exception("Expected %s, got %s" % (problem_type, error.__str__())))
+            raise Exception("Expected %s, got %s" % (problem_type, error.__str__()))
     except acme_errors.ValidationError as e:
         for authzr in e.failed_authzrs:
             for chall in authzr.body.challenges:
                 error = chall.error
                 if error and error.typ == problem_type:
                     ok = True
                 elif error:
-                    raise(Exception("Expected %s, got %s" % (problem_type, error.__str__())))
+                    raise Exception("Expected %s, got %s" % (problem_type, error.__str__()))
     if not ok:
-        raise(Exception('Expected %s, got no error' % problem_type))
+        raise Exception('Expected %s, got no error' % problem_type)
 
 if __name__ == "__main__":
     # Die on SIGINT
     signal.signal(signal.SIGINT, signal.SIG_DFL)
     domains = sys.argv[1:]
     if len(domains) == 0:
-        print(__doc__)
+        print __doc__
         sys.exit(0)
     try:
         auth_and_issue(domains)
-    except messages.Error as e:
-        print(e)
+    except messages.Error, e:
+        print e
         sys.exit(1)
@@ -1,11 +1,11 @@
+#!/usr/bin/env python2.7
 import base64
 import os
-import urllib
+import urllib2
 import time
 import re
 import random
 import json
-import requests
 import socket
 import tempfile
 import shutil
@@ -38,20 +38,20 @@ def random_domain():
     return "rand.%x.xyz" % random.randrange(2**32)
 
 def run(cmd, **kwargs):
-    return subprocess.check_output(cmd, shell=True, stderr=subprocess.STDOUT, **kwargs).decode()
+    return subprocess.check_output(cmd, shell=True, stderr=subprocess.STDOUT, **kwargs)
 
 def fetch_ocsp(request_bytes, url):
     """Fetch an OCSP response using POST, GET, and GET with URL encoding.
 
     Returns a tuple of the responses.
     """
-    ocsp_req_b64 = base64.b64encode(request_bytes).decode()
+    ocsp_req_b64 = base64.b64encode(request_bytes)
 
     # Make the OCSP request three different ways: by POST, by GET, and by GET with
     # URL-encoded parameters. All three should have an identical response.
-    get_response = requests.get("%s/%s" % (url, ocsp_req_b64)).content
-    get_encoded_response = requests.get("%s/%s" % (url, urllib.parse.quote(ocsp_req_b64, safe = ""))).content
-    post_response = requests.post("%s/" % (url), data=request_bytes).content
+    get_response = urllib2.urlopen("%s/%s" % (url, ocsp_req_b64)).read()
+    get_encoded_response = urllib2.urlopen("%s/%s" % (url, urllib2.quote(ocsp_req_b64, safe = ""))).read()
+    post_response = urllib2.urlopen("%s/" % (url), request_bytes).read()
 
     return (post_response, get_response, get_encoded_response)
 
@@ -61,13 +61,13 @@ def make_ocsp_req(cert_file, issuer_file):
     # First generate the OCSP request in DER form
     run("openssl ocsp -no_nonce -issuer %s -cert %s -reqout %s" % (
         issuer_file, cert_file, ocsp_req_file))
-    with open(ocsp_req_file, mode='rb') as f:
+    with open(ocsp_req_file) as f:
         ocsp_req = f.read()
     return ocsp_req
 
 def ocsp_verify(cert_file, issuer_file, ocsp_response):
     ocsp_resp_file = os.path.join(tempdir, "ocsp.resp")
-    with open(ocsp_resp_file, "wb") as f:
+    with open(ocsp_resp_file, "w") as f:
         f.write(ocsp_response)
     output = run("openssl ocsp -no_nonce -issuer %s -cert %s \
       -verify_other %s -CAfile test/test-root.pem \
@@ -76,8 +76,8 @@ def ocsp_verify(cert_file, issuer_file, ocsp_response):
     # also look for the string "Response Verify Failure"
     verify_failure = "Response Verify Failure"
     if re.search(verify_failure, output):
-        print(output)
-        raise(Exception("OCSP verify failure"))
+        print output
+        raise Exception("OCSP verify failure")
     return output
 
 def verify_ocsp(cert_file, issuer_file, url, status):
@@ -87,28 +87,28 @@ def verify_ocsp(cert_file, issuer_file, url, status):
     # Verify all responses are the same
     for resp in responses:
         if resp != responses[0]:
-            raise(Exception("OCSP responses differed: %s vs %s" %(
-                base64.b64encode(responses[0]), base64.b64encode(resp))))
+            raise Exception("OCSP responses differed: %s vs %s" %(
+                base64.b64encode(responses[0]), base64.b64encode(resp)))
 
     # Check response is for the correct certificate and is correct
     # status
     resp = responses[0]
     verify_output = ocsp_verify(cert_file, issuer_file, resp)
     if not re.search("%s: %s" % (cert_file, status), verify_output):
-        print(verify_output)
-        raise(Exception("OCSP response wasn't '%s'" % status))
+        print verify_output
+        raise Exception("OCSP response wasn't '%s'" % status)
 
 def reset_akamai_purges():
-    requests.post("http://localhost:6789/debug/reset-purges", data="{}")
+    urllib2.urlopen("http://localhost:6789/debug/reset-purges", "{}")
 
 def verify_akamai_purge():
     deadline = time.time() + 0.25
     while True:
         time.sleep(0.05)
         if time.time() > deadline:
-            raise(Exception("Timed out waiting for Akamai purge"))
-        response = requests.get("http://localhost:6789/debug/get-purges")
-        purgeData = response.json()
+            raise Exception("Timed out waiting for Akamai purge")
+        response = urllib2.urlopen("http://localhost:6789/debug/get-purges")
+        purgeData = json.load(response)
         if len(purgeData["V3"]) is not 1:
             continue
         break
@@ -142,7 +142,7 @@ def waitport(port, prog, perTickCheck=None):
             return True
         except socket.error as e:
             if e.errno == errno.ECONNREFUSED:
-                print("Waiting for debug port %d (%s)" % (port, prog))
+                print "Waiting for debug port %d (%s)" % (port, prog)
             else:
                 raise
-    raise(Exception("timed out waiting for debug port %d (%s)" % (port, prog)))
+    raise Exception("timed out waiting for debug port %d (%s)" % (port, prog))