Bump certbot from 2.11.0 to 4.0.0 in /src

[dependabot]

Bumps certbot from 2.11.0 to 4.0.0.

Release notes

Sourced from certbot's releases.

Certbot 4.0.0

Added

• The --preferred-profile and --required-profile flags allow requesting a profile. https://datatracker.ietf.org/doc/draft-aaron-acme-profiles/

Changed

• Certificates now renew with 1/3rd of lifetime left (or 1/2 of lifetime left, if the lifetime is shorter than 10 days). This is a change from a hardcoded renewal at 30 days before expiration. The config field renew_before_expiry still overrides this default.

• removed acme.crypto_util._pyopenssl_cert_or_req_all_names

• removed acme.crypto_util._pyopenssl_cert_or_req_san

• removed acme.crypto_util.dump_pyopenssl_chain

• removed acme.crypto_util.gen_ss_cert

• removed certbot.crypto_util.dump_pyopenssl_chain

• removed certbot.crypto_util.pyopenssl_load_certificate

Fixed

• Moved RewriteEngine on directive added during apache http01 authentication to the end of the virtual host, so that it overwrites any RewriteEngine off directives that already exist and allows redirection to the challenge URL.

More details about these changes can be found on our GitHub repo.

Certbot 3.3.0

Added

Changed

• The --register-unsafely-without-email flag is no longer needed in non-interactive mode.
• In interactive mode, pressing Enter at the email prompt will register without an email.
• deprecated acme.crypto_util.dump_pyopenssl_chain
• deprecated acme.crypto_util._pyopenssl_cert_or_req_all_names
• deprecated acme.crypto_util._pyopenssl_cert_or_req_san
• deprecated certbot.crypto_util.dump_pyopenssl_chain
• deprecated certbot.crypto_util.pyopenssl_load_certificate

Fixed

• Fixed a bug introduced in Certbot 3.1.0 where OpenSSL environment variables needed in our snap configuration were persisted in calls to external programs like nginx which could cause them to fail to load OpenSSL.

... (truncated)

Commits

• d95a389 Release 4.0.0
• f7a0df3 Update changelog for 4.0.0 release
• cb5d579 cloudtest some warnings (#10255)
• 45626e8 Add --preferred-profile and --required-profile (#10230)
• 15024aa Repin dependencies for josepy 2.0 (#10254)
• dd876a4 Feature acme cryptography 2 (#10245)
• 7a90cdd Remove custom version of CertificateIssuerPrivateKeyTypes now that cryptograp...
• 7d461a8 Add template for code maintenance task (#10251)
• 83510c1 use type feature instead of label (#10247)
• 0b51653 [REPO] Add New Feature Template (#10238)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)