only attempt unstaging if both key and cert exist

[lets-encrypt-tiny.git] / letsencrypt-tiny

diff --git a/letsencrypt-tiny b/letsencrypt-tiny
index 26b2c1d5e3163b661b5c0ad3c285cd2acf94762f..902639bec2d4b6c79165a1579773e3edaec2df52 100755 (executable)
--- a/letsencrypt-tiny
+++ b/letsencrypt-tiny
@@ -21,6 +21,7 @@ def keyfile(name):
 
 def make_backup(fname):
     if os.path.exists(fname):
+        os.makedirs(config['dirs']['backups'], exist_ok = True)
         backupname = os.path.basename(fname) + "." + str(datetime.date.today())
         i = 0
         while True:
@@ -64,7 +65,7 @@ def acme(keyfilename, certfilename, domains):
     try:
         # call acme-tiny as a script
         acme_tiny = os.path.join(os.path.dirname(os.path.realpath(__file__)), 'acme-tiny', 'acme_tiny.py')
-        signed_crt = subprocess.check_output(["python", acme_tiny, "--quiet", "--account-key", accountkey, "--csr", csrfilename, "--acme-dir", config['acme']['challenge-dir']])
+        signed_crt = subprocess.check_output(["python3", acme_tiny, "--quiet", "--account-key", accountkey, "--csr", csrfilename, "--acme-dir", config['acme']['challenge-dir']])
         # save new certificate
         make_backup(certfilename)
         with open(certfilename, 'wb') as f:
@@ -100,9 +101,9 @@ def generate_key(name):
 
 def check_staging(live, staging):
     '''Returns 0 if nothing was done, 1 if a stage key is present but has to be kept, 2 is a stage key was unstaged.'''
-    if not os.path.exists(keyfile(staging)):
+    if not (os.path.exists(keyfile(staging)) and os.path.exists(certfile(staging))):
         return 0
-    
+
     staging_time = datetime.timedelta(hours = int(config['timing'].get('staging-hours', 0)))
     key_age = datetime.datetime.now() - key_mtime(staging)
     if key_age < staging_time: