d08ad53464
Make error message for missing watch list more friendly
2023-02-20 09:47:15 -05:00
69be2f890a
Update certspotter-script man page
2023-02-19 09:01:24 -05:00
a242f6be26
Use same code to produce $SUMMARY and email subject
2023-02-19 08:48:30 -05:00
152f4341d6
Save failed healthchecks, and put path in $TEXT_FILENAME
...
To allow scripts to access them.
2023-02-19 08:45:46 -05:00
bd2bab5fcb
Save malformed entries, and put paths in environment variables
...
To allow scripts to access them.
2023-02-19 08:45:32 -05:00
ee8ae0c1f3
Add helper functions for writing files
2023-02-18 21:15:40 -05:00
ba3af60858
Fix typo in man page
2023-02-18 21:15:40 -05:00
223bf93292
Prepare changelog for v0.15.1
2023-02-09 13:44:06 -05:00
7d910d5521
When version is set via ldflag, append a "?" to indicate uncertainty
2023-02-09 11:29:30 -05:00
1a5f581c07
certspotterVersion: also allow -X=main.Version
...
debug.ReadBuildInfo() doesn't work for the Debian package, where there
is no git repository (at best; could be the Debian packaging one). The
go module doesn't have a version either.
Add a quick shortcut at the top, that sets the version to main.Version
if it's non-empty -- which is by default, so no change in behavior.
Effectively, this allows one to use the standard
-ldflags=-X=main.Version to set the version, like we intend to do in the
Debian package.
2023-02-09 11:28:04 -05:00
6a6f74414a
Fix typos
...
Closes : #3
2023-02-09 11:27:48 -05:00
6ec0ab5b35
Fix missing Errorf parameter in merkletree
2023-02-09 12:04:33 +01:00
ce81f9001f
Release v0.15.0
2023-02-08 19:43:05 -05:00
9c61d83ca2
Remove an errant log statement
2023-02-07 10:13:52 -05:00
2dc99f8d23
Fix notification suppression
2023-02-07 09:23:01 -05:00
83e17e608d
Fix syntax bugs in man page
2023-02-06 11:22:48 -05:00
3257b29036
Document health check in man page
2023-02-06 11:22:13 -05:00
a8af849c9f
Remove fields from JSON file that I am not ready to stabilize
2023-02-06 10:10:58 -05:00
fc7cc17f45
Document that text file format may change
2023-02-06 10:07:56 -05:00
76911c788f
Tidy module files
2023-02-06 09:44:46 -05:00
52949d8ea3
Apply gofmt
2023-02-06 09:18:53 -05:00
2a24abaa31
Make health check interval configurable
2023-02-06 09:18:37 -05:00
6c798699f8
Apply gofmt
2023-02-05 21:08:13 -05:00
e27e355b75
Implement monitor health check
2023-02-05 21:08:01 -05:00
fe4ef6b05d
Add TimestampTime() to ct.SignedTreeHead
2023-02-05 21:07:30 -05:00
9b29ca93b8
Prepare CHANGELOG for v0.15.0
2023-02-05 13:04:17 -05:00
d4cf32f9b3
Update README, and reformat as Markdown
2023-02-05 13:04:17 -05:00
61e3d80f57
Rename COPYING to LICENSE
...
As suggested by the MPL and in line with modern conventions.
2023-02-05 13:04:17 -05:00
04ea5c949f
Update man pages
2023-02-05 13:04:17 -05:00
3c23ab4e34
Add man pages
...
Closes : #11
2023-02-05 13:04:13 -05:00
9ec3c74400
Rename LeafSHA256 to avoid confusion with Merkle leafs
2023-02-05 08:41:17 -05:00
7a8a770d99
Apply gofmt
2023-02-05 08:30:53 -05:00
c68cf401a3
Add $TBS_SHA256 and tbs_sha256 to script environment and JSON
2023-02-05 08:30:45 -05:00
bc36175a53
Ensure that precertificates match the Merkle leaf input
2023-02-05 08:18:28 -05:00
03c21ed118
Add PubkeySHA256 to discoveredCert
2023-02-05 08:08:07 -05:00
05bf3d0c62
Fix typo in script environment variable
2023-02-05 07:56:42 -05:00
3ccc8d67f4
Improve handling of contexts when retrying requests
...
Previously, if the context was canceled while sleeping, we'd return the
last HTTP error. Now, we return the context error instead.
2023-02-03 17:25:12 -05:00
e044aae1df
Set proper intervals for monitoring
2023-02-03 17:12:48 -05:00
1b4eb20c8b
Upgrade dependencies
2023-02-03 15:49:16 -05:00
2f2ad094db
Set User-Agent header when fetching log list
2023-02-03 15:24:55 -05:00
2366c06ca6
Support ETag/Last-Modified when fetching loglist
2023-02-03 15:21:24 -05:00
6bb03865fb
Modernize loglist fetching, add context support
2023-02-03 14:55:09 -05:00
29ed939006
Remove old code
2023-02-03 14:47:47 -05:00
897c861451
Remove redundant information in an error message
2023-02-03 14:38:02 -05:00
35555b769a
Remove script directory support (for now)
...
The implementation was no good because it broke $PATH lookups.
I still like this feature but will defer it to a future version.
2023-02-03 14:35:26 -05:00
ef2a7698d7
Update a TODO comment
2023-02-03 14:32:44 -05:00
a5a9008de2
Add .v1 to file suffix of JSON files
...
If we add fields in the future this will make it clear that old
files don't have the new fields
2023-02-03 14:32:35 -05:00
6848316a5b
Make the .notified file a hidden file
...
Since it's an implementation detail that users shouldn't need
to know about.
2023-02-03 14:29:58 -05:00
5e7fa8c079
Remove some TODOs that I'v decided not to do
2023-02-03 14:29:24 -05:00
209cdb181b
Convert to a daemon and make many other improvements
...
Specifically, certspotter no longer terminates unless it receives SIGTERM
or SIGINT or there is a serious error.
Although using cron made sense in the early days of Certificate
Transparency, certspotter now needs to run continuously to reliably keep
up with the high growth rate of contemporary CT logs, and to gracefully
handle the many transient errors that can arise when monitoring CT.
Closes : #63
Closes : #37
Closes : #32 (presumably by eliminating $DNS_NAMES and $IP_ADDRESSES)
Closes : #21 (with $WATCH_ITEM)
Closes : #25
2023-02-03 14:12:03 -05:00
Andrew Ayer