Sebastian Krause tsime rekusawirirana kunoshamisa nesevhisi script , inoshandiswa kugadzirisa kugashira zvitupa zveTLS uchishandisa ACME protocol. Ose ari maviri mareferenzi mutengi uye uacme anoshanda neBypass, asi asina kupera mvura (kunyanya, yakashandawo nemamwe maworkaround, asi ari mu dns-1 modhi).
Chikonzero chakazove chidiki: pachinzvimbo chekupatsanura mhinduro mufomati yeJSON yechokwadi, munyori wekupererwa nemvura akashandisa chimiro chechimiro cheiyo JSON yakabuda kubva kuLet's Encrypt sevhisi uye akaipatsanura achishandisa chirevo chenguva dzose. Asi Bypass inodzoka isina kurongeka zvakanaka, asi minified JSON, uye yakashandiswa hazvina kushanda. Iyi nzira haisanganisi matambudziko neLetsEncrypt kana sevhisi iyi ikachinja mafomati ekuburitsa mune ramangwana pasina yambiro, ichiramba izere mukati mehurongwa hwepamutemo protocol.
Pakukurukura nezve dambudziko, zvakakurudzirwa kushandisa yekunze JSON parser senge kana (wedzera 'jq -r ".authorizations | .[]"' kune pombi kuti idimbure zvakanaka).
Kuipa kweiyi nzira ndiko kuderedzwa kwezano rekushandisa nzira shoma uye dzinogoneka nyore, pamwe nematambudziko ekubata kukanganisa.
Munyori wepurojekiti yakapera mvura (purojekiti yaive nguva pfupi yadarika Apilayer GmbH) , kuti kupatsanura JSON idambudziko rakakura, asi haafunge kuwedzera vekunze pfungwa yakanaka, sezvo imwe yemabhenefiti akakosha eiyo script kushaikwa kwekusunga kune zvekunze zvinotsamira. Parizvino akabatikana, asi anotarisira kupa pfungwa dzake mukugadzirisa dambudziko iri mumazuva mashoma anotevera. Zvirongwa izvi zvinosanganisira kugadzirisazve iyo JSON parser kana kubatanidza yakagadzirira-yakagadzirwa parser mumutauro weganda - .
Source: opennet.ru