Bump certbot from 2.11.0 to 3.3.0 in /src

[dependabot]

Bumps certbot from 2.11.0 to 3.3.0.

Release notes

Sourced from certbot's releases.

Certbot 3.3.0

Added

Changed

• The --register-unsafely-without-email flag is no longer needed in non-interactive mode.
• In interactive mode, pressing Enter at the email prompt will register without an email.
• deprecated acme.crypto_util.dump_pyopenssl_chain
• deprecated acme.crypto_util._pyopenssl_cert_or_req_all_names
• deprecated acme.crypto_util._pyopenssl_cert_or_req_san
• deprecated certbot.crypto_util.dump_pyopenssl_chain
• deprecated certbot.crypto_util.pyopenssl_load_certificate

Fixed

• Fixed a bug introduced in Certbot 3.1.0 where OpenSSL environment variables needed in our snap configuration were persisted in calls to external programs like nginx which could cause them to fail to load OpenSSL.

More details about these changes can be found on our GitHub repo.

Certbot 3.2.0

Added

Changed

• certbot-nginx now requires pyparsing>=2.4.7.
• certbot and its acme library now require cryptography>=43.0.0.
• certbot-nginx and our acme library now require pyOpenSSL>=25.0.0.
• Deprecated gen_ss_cert in acme.crypto_util as it uses deprecated pyOpenSSL API.
• Add make_self_signed_cert to acme.crypto_util to replace `gen_ss_cert.
• Directory hooks are now run on all commands by default, not just renew
• Help output now shows False as default when it can be set via cli.ini instead of None
• Changed terms of service agreement text to have a newline after the TOS link
• certbot-cloudflare-dns is now pinned to version 2.19 of Cloudflare's python library
• Removed support for Linode API v3 which was sunset at the end of July 203.

Fixed

• Private keys are now saved in PKCS#8 format instead of PKCS#1. Using PKCS#1 was a regression introduced in Certbot 3.1.0.
• Allow nginx plugin to parse non-breaking spaces in nginx configuration files.
• Honor --reuse-key when --allow-subset-of-names is set
• Fixed regression in symlink parsing on Windows that was introduced in Certbot

... (truncated)

Commits

• 3b19e18 Release 3.3.0
• 259afd7 Update changelog for 3.3.0 release
• b7e09dd change changelog to 3.3.0 (#10226)
• 8487bfe Update contributing.rst (#10203)
• c323af7 Remove warnings about empty email. (#10214)
• 2a92e22 make integration tests crossplatform (#10217)
• 48ffe02 fix openssl env vars (#10223)
• a43fded Merge pull request #10224 from certbot/bmw-patch-1
• 4cffcbf use-pr-target
• 65c3348 [DOCS] Update CONTRIBUTING.md (#10220)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #317.