8500dcf394
Temporarily cherry-pick the commits which fix "acme.sh runs arbitrary commands from a remote server" https://github.com/acmesh-official/acme.sh/issues/4659 as trivial backports on top of their 3.0.5 release until such time as we can upgrade. This addresses a remote code execution vulnerability (no CVE assigned yet) which could be exploited by the ACME protocol operator, in our case the admins of the Let's Encrypt certificate authority. Change-Id: Ib052901a7aa08a9fdbd01d623f4b5d3eee938401 |
||
|---|---|---|
| .. | ||
| files | ||
| tasks | ||
| README.rst | ||
Install acme.sh client
This makes the acme.sh client available on the host.
Additionally a driver.sh script is installed to run the
authentication procedure and parse output.
Role Variables