[gentoo-user] problem with certbot -q renew

[gentoo-user] problem with certbot -q renew

[John Covici]

Hi.  So, I have a certificate from lets encrypt and since the last update whenever I run certbot -q renew I get the following:

/usr/lib/python3.12/site-packages/certbot/ocsp.py:238: CryptographyDeprecationWarning: Properties that return a naïve datetime object have been deprecated. Please switch to this_update_utc.
 if not response_ocsp.this_update:
/usr/lib/python3.12/site-packages/certbot/ocsp.py:240: CryptographyDeprecationWarning: Properties that return a naïve datetime object have been deprecated. Please switch to this_update_utc.
 if response_ocsp.this_update > now + timedelta(minutes=5):
/usr/lib/python3.12/site-packages/certbot/ocsp.py:242: CryptographyDeprecationWarning: Properties that return a naïve datetime object have been deprecated. Please switch to next_update_utc.
 if response_ocsp.next_update and response_ocsp.next_update < now - timedelta(minutes=5):
Is this a harmless warning, or do I need to do something?

Thanks in advance for any suggestions.

Re: [gentoo-user] problem with certbot -q renew

[Michael]

[-- Attachment #1: Type: text/plain, Size: 1279 bytes --]

On Thursday 31 October 2024 05:40:32 GMT John Covici wrote:
> Hi.  So, I have a certificate from lets encrypt and since the last update
> whenever I run certbot -q renew I get the following:
> 
> /usr/lib/python3.12/site-packages/certbot/ocsp.py:238:
> CryptographyDeprecationWarning: Properties that return a naïve datetime
> object have been deprecated. Please switch to this_update_utc. if not
> response_ocsp.this_update:
> /usr/lib/python3.12/site-packages/certbot/ocsp.py:240:
> CryptographyDeprecationWarning: Properties that return a naïve datetime
> object have been deprecated. Please switch to this_update_utc. if
> response_ocsp.this_update > now + timedelta(minutes=5):
> /usr/lib/python3.12/site-packages/certbot/ocsp.py:242:
> CryptographyDeprecationWarning: Properties that return a naïve datetime
> object have been deprecated. Please switch to next_update_utc. if
> response_ocsp.next_update and response_ocsp.next_update < now -
> timedelta(minutes=5): Is this a harmless warning, or do I need to do
> something?
> 
> Thanks in advance for any suggestions.

Take a look here:

https://github.com/certbot/certbot/issues/9967

You could use 'export PYTHONWARNINGS=ignore' as a workaround until the certbot 
devs address this issue.

[-- Attachment #2: This is a digitally signed message part. --]
[-- Type: application/pgp-signature, Size: 833 bytes --]

Re: [gentoo-user] problem with certbot -q renew

[John Covici]

> On Oct 31, 2024, at 5:59 AM, Michael <confabulate@kintzios.com> wrote:
> 
> On Thursday 31 October 2024 05:40:32 GMT John Covici wrote:
>> Hi.  So, I have a certificate from lets encrypt and since the last update
>> whenever I run certbot -q renew I get the following:
>> 
>> /usr/lib/python3.12/site-packages/certbot/ocsp.py:238:
>> CryptographyDeprecationWarning: Properties that return a naïve datetime
>> object have been deprecated. Please switch to this_update_utc. if not
>> response_ocsp.this_update:
>> /usr/lib/python3.12/site-packages/certbot/ocsp.py:240:
>> CryptographyDeprecationWarning: Properties that return a naïve datetime
>> object have been deprecated. Please switch to this_update_utc. if
>> response_ocsp.this_update > now + timedelta(minutes=5):
>> /usr/lib/python3.12/site-packages/certbot/ocsp.py:242:
>> CryptographyDeprecationWarning: Properties that return a naïve datetime
>> object have been deprecated. Please switch to next_update_utc. if
>> response_ocsp.next_update and response_ocsp.next_update < now -
>> timedelta(minutes=5): Is this a harmless warning, or do I need to do
>> something?
>> 
>> Thanks in advance for any suggestions.
> 
> Take a look here:
> 
> https://github.com/certbot/certbot/issues/9967
> 
> You could use 'export PYTHONWARNINGS=ignore' as a workaround until the certbot 
> devs address this issue.

OK, thanks — I will do that.