CRUX-ARM : Home

Home :: Documentation :: Download :: Development :: Community :: Ports :: Packages :: Bugs :: Links :: About :: Donors
Bug #241: Don't check SSL certificates.
authorBrett Goulder <predatorfreak@dcaf-security.org>
Fri, 11 Apr 2008 16:48:57 +0000 (18:48 +0200)
committerTilman Sauerbeck <tilman@crux.nu>
Fri, 11 Apr 2008 16:48:57 +0000 (18:48 +0200)
pkgmk's mechanism to check file integrity is .md5sum, so relying on
proper SSL certificates for https connections isn't critical. This fixes
transfers from https servers whose SSL certificates are self signed only.

Original patch by Jose V Beneyto <sepen@users.sourceforge.net>.

pkgmk.in

index da9b3036627496fcbaf98c59062d26aa73653b7e..df50de84ecd29ef87241cac7546745ce503f8acc 100755 (executable)
--- a/pkgmk.in
+++ b/pkgmk.in
@@ -89,7 +89,7 @@ download_file() {
        LOCAL_FILENAME_PARTIAL="$LOCAL_FILENAME.partial"
        DOWNLOAD_OPTS="--passive-ftp --no-directories --tries=3 --waitretry=3 \
                --directory-prefix=$PKGMK_SOURCE_DIR \
-               --output-document=$LOCAL_FILENAME_PARTIAL"
+               --output-document=$LOCAL_FILENAME_PARTIAL --no-check-certificate"
 
        if [ -f "$LOCAL_FILENAME_PARTIAL" ]; then
                info "Partial download found, trying to resume"