Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

Sun, 24 Jan 2016 05:49:24 -0800 

Additional question:
If I understand right uclient-fetch only support to give an explicit 
certificate via command line switch
        --ca-certificate=<cert>:        Load CA certificates from file <cert>

so no path allowed !?
Thanks
Christian


Am 24.01.2016 um 13:38 schrieb Arjen de Korte:
> Citeren Christian Schoenebeck <christian.schoeneb...@gmail.com>:
> 
>> I'm currently looking on ddns-scripts and still got certificate problems
>> I'm on r48470 including ca-certificates package installed
>>
>> root@OpenWrt:~# uclient-fetch -O- 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com&ip=8.8.8.8'
>> Downloading 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com&ip=8.8.8.8'
>> Connecting to 62.201.160.30:443
>> Connection error: Server hostname does not match SSL certificate
> 
> The certificate is valid, but update.spdns.de uses a wildcard certificate 
> (which technically is OK).
> 
> subject=/serialNumber=YnFcKoUlVu1DhcIaoJxVwNDp/tTAKrDm/OU=GT17804807/OU=See 
> www.rapidssl.com/resources/cps (c)14/OU=Domain Control Validated - 
> RapidSSL(R)/CN=*.spdns.de
> issuer=/C=US/O=GeoTrust, Inc./CN=RapidSSL CA
> 
> But you won't get an exact match on the hostname, so this is something that 
> probably requires fixing.
> 
>> GNU wget works as expected
>> root@OpenWrt:~# wget -O- 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com&ip=8.8.8.8'
>> --2016-01-24 13:01:39--  
>> https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com&ip=8.8.8.8
>> Resolving update.spdns.de... 62.201.160.30, 2001:868:100:901:53::2
>> Connecting to update.spdns.de|62.201.160.30|:443... connected.
>> HTTP request sent, awaiting response... 401 Unauthorized
>> Authentication selected: Basic realm="spdns nic update"
>> Reusing existing connection to update.spdns.de:443.
>> HTTP request sent, awaiting response... 200 OK
>> Length: unspecified [text/html]
>> Saving to: 'STDOUT'
>> -                                                      [<=>]       0  
>> --.-KB/s               invalidip
>> -                                                      [ <=>]      10  
>> --.-KB/s    in 0s
>> 2016-01-24 13:01:39 (1.20 MB/s) - written to stdout [10]
>>
>> What did I wrong ?
>> Thanks
>> Christian
>> _______________________________________________
>> openwrt-devel mailing list
>> openwrt-devel@lists.openwrt.org
>> https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
> _______________________________________________
> openwrt-devel mailing list
> openwrt-devel@lists.openwrt.org
> https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
> 
_______________________________________________
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Reply via email to