Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Arjen de Korte]

Citeren Felix Fietkau :


On 2016-01-25 20:26, Arjen de Korte wrote:

Citeren Felix Fietkau :


On 2016-01-25 19:14, Arjen de Korte wrote:

Citeren Felix Fietkau :


On 2016-01-24 17:35, Felix Fietkau wrote:

On 2016-01-24 13:06, Christian Schoenebeck wrote:
I'm currently looking on ddns-scripts and still got  
certificate problems

I'm on r48470 including ca-certificates package installed

root@OpenWrt:~# uclient-fetch -O-
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Downloading
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Connecting to 62.201.160.30:443
Connection error: Server hostname does not match SSL certificate

What platform and ustream-ssl variant are you using?
I can't reproduce this.


Similar problem here:

# uclient-fetch -O-
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Downloading
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Connecting to 2001:868:100:901:53::2:443
Connection error: Invalid SSL certificate

I'm using the libustream-mbedtls library on a WNDR4300 (=ar71xx).

What OpenWrt version are you using?


Powered by LuCI Master (git-16.023.59693-6123974) / OpenWrt Designated
Driver r48463

Please try current trunk.


No change (r48548), error message is identical. I use the following versions:

libuclient - 2016-01-28-2e0918c7e0612449024c8d44fb2d7a33f5f3
uclient-fetch - 2016-01-28-2e0918c7e0612449024c8d44fb2d7a33f5f3
libmbedtls - 2.2.1-1
libustream-mbedtls - 2016-01-25-173aca2acf16b367f9a130efe677189854784b78

Regards, Arjen
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Daniel Dickinson]

Sorry, I've been out of the country and not had a chance to get to this. 
 I had planned to do that for the packages you previously requested 
changes for that I had proposed a unified symlink handling solution to 
deal with what is rather a mess at the moment, but have been obviously 
rather busy with travelling and work-related activities.


Regards,

Daniel

On 23/01/16 07:21 PM, Felix Fietkau wrote:

On 2016-01-24 00:21, Christian Schoenebeck wrote:

For whatever reason uclient-fetch is installed into /bin directory.
Your plan is to use it as a replacement for Busybox Wget. Fine.
Why do you place the wget link to uclient-fetch also into /bin ?
wget default location is /usr/bin/wget

If you later install GNU wget the package will remove /usr/bin/wget and build a 
new link to wget-ssl.
With your /bin/wget link to uclient-fetch you will have two wget installation 
afterwards.
So it depends on your PATH environment which one is used.

I suggest wherever you install uclient-fetch the link must be from 
/usr/bin/wget.

We decided that we want to move replaceable utilities that ship with the
default image to /bin, so that replacements (like GNU wget) can install
themselves to /usr/bin, which has priority in $PATH.
All this symlink mangling nonsense in postinst/postrm needs be ripped
out completely.

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel


___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Felix Fietkau]

On 2016-01-25 20:26, Arjen de Korte wrote:
> Citeren Felix Fietkau :
> 
>> On 2016-01-25 19:14, Arjen de Korte wrote:
>>> Citeren Felix Fietkau :
>>>
 On 2016-01-24 17:35, Felix Fietkau wrote:
> On 2016-01-24 13:06, Christian Schoenebeck wrote:
>> I'm currently looking on ddns-scripts and still got certificate problems
>> I'm on r48470 including ca-certificates package installed
>>
>> root@OpenWrt:~# uclient-fetch -O-
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>> Downloading
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>> Connecting to 62.201.160.30:443
>> Connection error: Server hostname does not match SSL certificate
 What platform and ustream-ssl variant are you using?
 I can't reproduce this.
>>>
>>> Similar problem here:
>>>
>>> # uclient-fetch -O-
>>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>>> Downloading
>>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>>> Connecting to 2001:868:100:901:53::2:443
>>> Connection error: Invalid SSL certificate
>>>
>>> I'm using the libustream-mbedtls library on a WNDR4300 (=ar71xx).
>> What OpenWrt version are you using?
> 
> Powered by LuCI Master (git-16.023.59693-6123974) / OpenWrt Designated  
> Driver r48463
Please try current trunk.

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Felix Fietkau]

On 2016-01-24 17:35, Felix Fietkau wrote:
> On 2016-01-24 13:06, Christian Schoenebeck wrote:
>> I'm currently looking on ddns-scripts and still got certificate problems
>> I'm on r48470 including ca-certificates package installed
>> 
>> root@OpenWrt:~# uclient-fetch -O- 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>> Downloading 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>> Connecting to 62.201.160.30:443
>> Connection error: Server hostname does not match SSL certificate
What platform and ustream-ssl variant are you using?
I can't reproduce this.

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Arjen de Korte]

Citeren Felix Fietkau :


On 2016-01-25 19:14, Arjen de Korte wrote:

Citeren Felix Fietkau :


On 2016-01-24 17:35, Felix Fietkau wrote:

On 2016-01-24 13:06, Christian Schoenebeck wrote:

I'm currently looking on ddns-scripts and still got certificate problems
I'm on r48470 including ca-certificates package installed

root@OpenWrt:~# uclient-fetch -O-
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Downloading
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Connecting to 62.201.160.30:443
Connection error: Server hostname does not match SSL certificate

What platform and ustream-ssl variant are you using?
I can't reproduce this.


Similar problem here:

# uclient-fetch -O-
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Downloading
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Connecting to 2001:868:100:901:53::2:443
Connection error: Invalid SSL certificate

I'm using the libustream-mbedtls library on a WNDR4300 (=ar71xx).

What OpenWrt version are you using?


Powered by LuCI Master (git-16.023.59693-6123974) / OpenWrt Designated  
Driver r48463

___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Arjen de Korte]

Citeren Felix Fietkau :


On 2016-01-24 17:35, Felix Fietkau wrote:

On 2016-01-24 13:06, Christian Schoenebeck wrote:

I'm currently looking on ddns-scripts and still got certificate problems
I'm on r48470 including ca-certificates package installed

root@OpenWrt:~# uclient-fetch -O-  
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Downloading  
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'

Connecting to 62.201.160.30:443
Connection error: Server hostname does not match SSL certificate

What platform and ustream-ssl variant are you using?
I can't reproduce this.


Similar problem here:

# uclient-fetch -O-  
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Downloading  
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'

Connecting to 2001:868:100:901:53::2:443
Connection error: Invalid SSL certificate

I'm using the libustream-mbedtls library on a WNDR4300 (=ar71xx).

Regards, Arjen
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Felix Fietkau]

On 2016-01-25 19:14, Arjen de Korte wrote:
> Citeren Felix Fietkau :
> 
>> On 2016-01-24 17:35, Felix Fietkau wrote:
>>> On 2016-01-24 13:06, Christian Schoenebeck wrote:
 I'm currently looking on ddns-scripts and still got certificate problems
 I'm on r48470 including ca-certificates package installed

 root@OpenWrt:~# uclient-fetch -O-  
 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
 Downloading  
 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
 Connecting to 62.201.160.30:443
 Connection error: Server hostname does not match SSL certificate
>> What platform and ustream-ssl variant are you using?
>> I can't reproduce this.
> 
> Similar problem here:
> 
> # uclient-fetch -O-  
> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
> Downloading  
> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
> Connecting to 2001:868:100:901:53::2:443
> Connection error: Invalid SSL certificate
> 
> I'm using the libustream-mbedtls library on a WNDR4300 (=ar71xx).
What OpenWrt version are you using?

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Felix Fietkau]

On 2016-01-25 18:58, Christian Schoenebeck wrote:
> Am 25.01.2016 um 14:50 schrieb Felix Fietkau:
>> On 2016-01-24 17:35, Felix Fietkau wrote:
>>> On 2016-01-24 13:06, Christian Schoenebeck wrote:
 I'm currently looking on ddns-scripts and still got certificate problems
 I'm on r48470 including ca-certificates package installed

 root@OpenWrt:~# uclient-fetch -O- 
 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
 Downloading 
 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
 Connecting to 62.201.160.30:443
 Connection error: Server hostname does not match SSL certificate
>> What platform and ustream-ssl variant are you using?
>> I can't reproduce this.
>> 
>> - Felix
>> 
> I'm running on x86 inside VirtualBox DD r48470
> I send you a full functional url for testing via direct mail.
Which ustream-ssl variant are you using?

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Christian Schoenebeck]

Am 25.01.2016 um 14:50 schrieb Felix Fietkau:
> On 2016-01-24 17:35, Felix Fietkau wrote:
>> On 2016-01-24 13:06, Christian Schoenebeck wrote:
>>> I'm currently looking on ddns-scripts and still got certificate problems
>>> I'm on r48470 including ca-certificates package installed
>>>
>>> root@OpenWrt:~# uclient-fetch -O- 
>>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>>> Downloading 
>>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>>> Connecting to 62.201.160.30:443
>>> Connection error: Server hostname does not match SSL certificate
> What platform and ustream-ssl variant are you using?
> I can't reproduce this.
> 
> - Felix
> 
I'm running on x86 inside VirtualBox DD r48470
I send you a full functional url for testing via direct mail.

Christian
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Christian Schoenebeck]

Am 25.01.2016 um 19:10 schrieb Felix Fietkau:
> On 2016-01-25 18:58, Christian Schoenebeck wrote:
>> Am 25.01.2016 um 14:50 schrieb Felix Fietkau:
>>> On 2016-01-24 17:35, Felix Fietkau wrote:
 On 2016-01-24 13:06, Christian Schoenebeck wrote:
> I'm currently looking on ddns-scripts and still got certificate problems
> I'm on r48470 including ca-certificates package installed
>
> root@OpenWrt:~# uclient-fetch -O- 
> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
> Downloading 
> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
> Connecting to 62.201.160.30:443
> Connection error: Server hostname does not match SSL certificate
>>> What platform and ustream-ssl variant are you using?
>>> I can't reproduce this.
>>>
>>> - Felix
>>>
>> I'm running on x86 inside VirtualBox DD r48470
>> I send you a full functional url for testing via direct mail.
> Which ustream-ssl variant are you using?
> 
> - Felix
> .
> 
Sorry I forgot: libustream-openssl  2015-07-09-c2d73c2261..2d3
Christian
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Felix Fietkau]

On 2016-01-25 22:07, Christian Schoenebeck wrote:
> Am 25.01.2016 um 19:10 schrieb Felix Fietkau:
>> On 2016-01-25 18:58, Christian Schoenebeck wrote:
>>> Am 25.01.2016 um 14:50 schrieb Felix Fietkau:
 On 2016-01-24 17:35, Felix Fietkau wrote:
> On 2016-01-24 13:06, Christian Schoenebeck wrote:
>> I'm currently looking on ddns-scripts and still got certificate problems
>> I'm on r48470 including ca-certificates package installed
>>
>> root@OpenWrt:~# uclient-fetch -O- 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>> Downloading 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>> Connecting to 62.201.160.30:443
>> Connection error: Server hostname does not match SSL certificate
 What platform and ustream-ssl variant are you using?
 I can't reproduce this.

 - Felix

>>> I'm running on x86 inside VirtualBox DD r48470
>>> I send you a full functional url for testing via direct mail.
>> Which ustream-ssl variant are you using?
>> 
>> - Felix
>> .
>> 
> Sorry I forgot: libustream-openssl2015-07-09-c2d73c2261..2d3
With the details you provided, I was able to reproduce the issue.
Fixed in r48503.

Thanks,

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[John Clark]

Did you see my patch?
[OpenWrt-Devel] [PATCH] base-files: fix sysupgrade 'wget' handling for
uclient-fetch

The key is that uclient-fetch needs to be copied to ramfs during a
sysupgrade:

install_bin /bin/uclient-fetch /bin/wget

Notice that change r48451 only moves the symbolic link to busybox from
/usr/bin/wget -> bustbox to /bin/wget -> busybox

Here is ramfs after r48451 you submitted:

@OpenWrt:/bin# ll
drwxr-xr-x2 00  520 Jan 23 01:20 .
drwxr-xr-x   13 00  260 Jan 23 01:20 ..
lrwxrwxrwx1 00   12 Jan 23 01:20 ash ->
/bin/busybox
-rwxr-xr-x1 00   300327 Jan 23 01:20 busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 cat ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 chmod ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 cp -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 cut ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 dd -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 grep ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 kill ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 ls -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 mkdir ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 mount ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 mv -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 rm -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 rmdir ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 sh -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 sleep ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 sync ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 tar ->
/bin/busybox

*lrwxrwxrwx1 00   12 Jan 23 01:20 uclient-fetch ->
/bin/busybox *lrwxrwxrwx1 00   12 Jan 23 01:20
umount -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 vi -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 wget ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 23 01:20 zcat ->
/bin/busybox



Here is ramfs after the patch I submitted yesterday:

@OpenWrt:(unreachable)/lib/upgrade# ll /bin/
drwxr-xr-x2 00  520 Jan 24 12:13 .
drwxr-xr-x   13 00  260 Jan 24 12:13 ..
lrwxrwxrwx1 00   12 Jan 24 12:13 ash -> /bin/busybox
-rwxr-xr-x1 00   300327 Jan 24 12:13 busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 cat -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 chmod ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 cp -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 cut -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 dd -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 grep ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 kill ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 ls -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 mkdir ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 mount ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 mv -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 rm -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 rmdir ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 sh -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 sleep ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 sync ->
/bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 tar -> /bin/busybox

*-rwxr-xr-x1 0012343 Jan 24 12:13
uclient-fetch*lrwxrwxrwx
1 00   12 Jan 24 12:13 umount -> /bin/busybox
lrwxrwxrwx1 00   12 Jan 24 12:13 vi -> /bin/busybox

*lrwxrwxrwx1 00   18 Jan 24 12:13 wget ->
/bin/uclient-fetch*lrwxrwxrwx1 00   12 Jan 24 12:13
zcat -> /bin/busybox





On Fri, Jan 22, 2016 at 3:27 AM, Bastian Bittorf 
wrote:

> * John Clark  [22.01.2016 07:55]:
> > Is it intentional that wget is not available by default in the
>
> i just send a patch. thanks for spotting this.
>
> bye, bastian
>
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Christian Schoenebeck]

Additional question:
If I understand right uclient-fetch only support to give an explicit 
certificate via command line switch
--ca-certificate=:Load CA certificates from file 

so no path allowed !?
Thanks
Christian


Am 24.01.2016 um 13:38 schrieb Arjen de Korte:
> Citeren Christian Schoenebeck :
> 
>> I'm currently looking on ddns-scripts and still got certificate problems
>> I'm on r48470 including ca-certificates package installed
>>
>> root@OpenWrt:~# uclient-fetch -O- 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>> Downloading 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>> Connecting to 62.201.160.30:443
>> Connection error: Server hostname does not match SSL certificate
> 
> The certificate is valid, but update.spdns.de uses a wildcard certificate 
> (which technically is OK).
> 
> subject=/serialNumber=YnFcKoUlVu1DhcIaoJxVwNDp/tTAKrDm/OU=GT17804807/OU=See 
> www.rapidssl.com/resources/cps (c)14/OU=Domain Control Validated - 
> RapidSSL(R)/CN=*.spdns.de
> issuer=/C=US/O=GeoTrust, Inc./CN=RapidSSL CA
> 
> But you won't get an exact match on the hostname, so this is something that 
> probably requires fixing.
> 
>> GNU wget works as expected
>> root@OpenWrt:~# wget -O- 
>> 'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
>> --2016-01-24 13:01:39--  
>> https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8
>> Resolving update.spdns.de... 62.201.160.30, 2001:868:100:901:53::2
>> Connecting to update.spdns.de|62.201.160.30|:443... connected.
>> HTTP request sent, awaiting response... 401 Unauthorized
>> Authentication selected: Basic realm="spdns nic update"
>> Reusing existing connection to update.spdns.de:443.
>> HTTP request sent, awaiting response... 200 OK
>> Length: unspecified [text/html]
>> Saving to: 'STDOUT'
>> -  [<=>]   0  
>> --.-KB/s   invalidip
>> -  [ <=>]  10  
>> --.-KB/sin 0s
>> 2016-01-24 13:01:39 (1.20 MB/s) - written to stdout [10]
>>
>> What did I wrong ?
>> Thanks
>> Christian
>> ___
>> openwrt-devel mailing list
>> openwrt-devel@lists.openwrt.org
>> https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
> ___
> openwrt-devel mailing list
> openwrt-devel@lists.openwrt.org
> https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
> 
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Christian Schoenebeck]

I'm currently looking on ddns-scripts and still got certificate problems
I'm on r48470 including ca-certificates package installed

root@OpenWrt:~# uclient-fetch -O- 
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Downloading 
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
Connecting to 62.201.160.30:443
Connection error: Server hostname does not match SSL certificate

GNU wget works as expected
root@OpenWrt:~# wget -O- 
'https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8'
--2016-01-24 13:01:39--  
https://myuser:myp...@update.spdns.de/nic/update?hostname=myhost.example.com=8.8.8.8
Resolving update.spdns.de... 62.201.160.30, 2001:868:100:901:53::2
Connecting to update.spdns.de|62.201.160.30|:443... connected.
HTTP request sent, awaiting response... 401 Unauthorized
Authentication selected: Basic realm="spdns nic update"
Reusing existing connection to update.spdns.de:443.
HTTP request sent, awaiting response... 200 OK
Length: unspecified [text/html]
Saving to: 'STDOUT'
-  [<=>]   0  --.-KB/s  
 invalidip
-  [ <=>]  10  --.-KB/s 
   in 0s  
2016-01-24 13:01:39 (1.20 MB/s) - written to stdout [10]

What did I wrong ?
Thanks
Christian
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Felix Fietkau]

On 2016-01-24 14:47, Christian Schoenebeck wrote:
> Additional question:
> If I understand right uclient-fetch only support to give an explicit 
> certificate via command line switch
>   --ca-certificate=:Load CA certificates from file 
> 
> so no path allowed !?
Right now it defaults to loading all certificates from the default path
/etc/ssl/certs. This option is for validating against a specific
certificate instead.

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Felix Fietkau]

On 2016-01-24 00:21, Christian Schoenebeck wrote:
> For whatever reason uclient-fetch is installed into /bin directory.
> Your plan is to use it as a replacement for Busybox Wget. Fine.
> Why do you place the wget link to uclient-fetch also into /bin ?
> wget default location is /usr/bin/wget
> 
> If you later install GNU wget the package will remove /usr/bin/wget and build 
> a new link to wget-ssl.
> With your /bin/wget link to uclient-fetch you will have two wget installation 
> afterwards.
> So it depends on your PATH environment which one is used.
> 
> I suggest wherever you install uclient-fetch the link must be from 
> /usr/bin/wget.
We decided that we want to move replaceable utilities that ship with the
default image to /bin, so that replacements (like GNU wget) can install
themselves to /usr/bin, which has priority in $PATH.
All this symlink mangling nonsense in postinst/postrm needs be ripped
out completely.

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Christian Schoenebeck]

For whatever reason uclient-fetch is installed into /bin directory.
Your plan is to use it as a replacement for Busybox Wget. Fine.
Why do you place the wget link to uclient-fetch also into /bin ?
wget default location is /usr/bin/wget

If you later install GNU wget the package will remove /usr/bin/wget and build a 
new link to wget-ssl.
With your /bin/wget link to uclient-fetch you will have two wget installation 
afterwards.
So it depends on your PATH environment which one is used.

I suggest wherever you install uclient-fetch the link must be from 
/usr/bin/wget.

Christian
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Felix Fietkau]

On 2016-01-22 14:21, John Clark wrote:
>>> yes, is was dropped with r48386 + 48379
>>> so it *should* be automatically work with wget -> uclient-fetch
> 
> I have updated to the latest trunk commit where I see your /usr/bin/wget 
> -> /bin/wget patch.  I have updated the feeds and symlinks to the latest 
> and greatest.  The packages are currently not configured to build 
> uclient-fetch by default, so I manually selected it.
> 
> My resulting build now has a 112,453 byte /bin/uclient-fetch binary and 
> I can confirm wget does work.  I guess the only thing left to do is to 
> have the uclient-fetch binary build by default.
Did you use any weird build options? Here's the size from my own build
(ar71xx):
nbd@nf > ls -la bin/uclient-fetch usr/lib/libuclient.so
-rwxr-xr-x  1 nbd  staff  12344 Jan 21 15:39 bin/uclient-fetch
-rw-r--r--  1 nbd  staff  16684 Jan 21 15:39 usr/lib/libuclient.so

> Question: The busybox binary (for me) goes from 366,401 bytes to 300,327 
> with the removal of wget from it.  Therefore, the uclient-fetch binary 
> swapout causes a 46,379 byte increase in size. I assume the desire to 
> move to uclient-fetch from busybox is for the SSL support?  If so, it 
> still does not support SSL without also building ustream-ssl.
ustream-ssl already ships with standard LuCI enabled builds.
Also, you can choose which TLS provider you want to use.
The way it's implemented right now, enabling SSL also does not require
recompiling uclient-fetch - it detects at run time whether SSL support
is availble.

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Bastian Bittorf]

* John Clark  [22.01.2016 07:55]:
> Is it intentional that wget is not available by default in the

i just send a patch. thanks for spotting this.

bye, bastian
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[John Clark]

yes, is was dropped with r48386 + 48379
so it *should* be automatically work with wget -> uclient-fetch


I have updated to the latest trunk commit where I see your /usr/bin/wget 
-> /bin/wget patch.  I have updated the feeds and symlinks to the latest 
and greatest.  The packages are currently not configured to build 
uclient-fetch by default, so I manually selected it.


My resulting build now has a 112,453 byte /bin/uclient-fetch binary and 
I can confirm wget does work.  I guess the only thing left to do is to 
have the uclient-fetch binary build by default.


Question: The busybox binary (for me) goes from 366,401 bytes to 300,327 
with the removal of wget from it.  Therefore, the uclient-fetch binary 
swapout causes a 46,379 byte increase in size. I assume the desire to 
move to uclient-fetch from busybox is for the SSL support?  If so, it 
still does not support SSL without also building ustream-ssl.


--John
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Felix Fietkau]

On 2016-01-22 14:32, Weedy wrote:
> 
> On 22 Jan 2016 08:22, "John Clark"  > wrote:

 yes, is was dropped with r48386 + 48379
 so it *should* be automatically work with wget -> uclient-fetch
>>
>>
>> I have updated to the latest trunk commit where I see your
> /usr/bin/wget -> /bin/wget patch.  I have updated the feeds and symlinks
> to the latest and greatest.  The packages are currently not configured
> to build uclient-fetch by default, so I manually selected it.
>>
>> My resulting build now has a 112,453 byte /bin/uclient-fetch binary
> and I can confirm wget does work.  I guess the only thing left to do is
> to have the uclient-fetch binary build by default.
>>
>> Question: The busybox binary (for me) goes from 366,401 bytes to
> 300,327 with the removal of wget from it.  Therefore, the uclient-fetch
> binary swapout causes a 46,379 byte increase in size. I assume the
> desire to move to uclient-fetch from busybox is for the SSL support?  If
> so, it still does not support SSL without also building ustream-ssl.
>>
>> --John
> 
> This also seems to have broken ddns-scripts.
> Or at least now I need full wget/curl to update dyndns.
Christian, please check the ddns package and make the same kind of 
adjustments that I did for 6in4 here:
http://git.openwrt.org/?p=openwrt.git;a=commitdiff;h=80cdacc0b9ae6c063499cc12cc62b7a083f62974

Thanks,

- Felix
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Weedy]

On 22 Jan 2016 08:22, "John Clark"  wrote:
>>>
>>> yes, is was dropped with r48386 + 48379
>>> so it *should* be automatically work with wget -> uclient-fetch
>
>
> I have updated to the latest trunk commit where I see your /usr/bin/wget
-> /bin/wget patch.  I have updated the feeds and symlinks to the latest
and greatest.  The packages are currently not configured to build
uclient-fetch by default, so I manually selected it.
>
> My resulting build now has a 112,453 byte /bin/uclient-fetch binary and I
can confirm wget does work.  I guess the only thing left to do is to have
the uclient-fetch binary build by default.
>
> Question: The busybox binary (for me) goes from 366,401 bytes to 300,327
with the removal of wget from it.  Therefore, the uclient-fetch binary
swapout causes a 46,379 byte increase in size. I assume the desire to move
to uclient-fetch from busybox is for the SSL support?  If so, it still does
not support SSL without also building ustream-ssl.
>
> --John

This also seems to have broken ddns-scripts.
Or at least now I need full wget/curl to update dyndns.
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[John Clark]

After a full distclean, uclient-fetch is now automatically being 
selected by make defconfig (running make clean / feeds update -a / feeds 
install -a / make defconfig without distclean did not trigger it for me).


I just wanted to report back that outside of the ddns-scripts issue 
Weedy reported, all of my wget issues should be considered resolved at 
this point.


--John

On 1/22/16 10:26 AM, John Clark wrote:
I don't know if I looked at the wrong file or what, but I have 
recompiled several times since then so I can't be enitrely certain 
anymore.


At this point I also see the same tiny binary you see.  Please 
disregard my earlier comment as to a 112K size.  Mine is a ramips 
build, fwiw:


-rwxr-xr-x1 root root 12343 Jan 22 12:02 uclient-fetch*
-rw-r--r--1 root root 16687 Jan 22 12:02 
/usr/lib/libuclient.so


--John


On 1/22/16 10:18 AM, Felix Fietkau wrote:

On 2016-01-22 14:21, John Clark wrote:

yes, is was dropped with r48386 + 48379
so it *should* be automatically work with wget -> uclient-fetch
I have updated to the latest trunk commit where I see your 
/usr/bin/wget
-> /bin/wget patch.  I have updated the feeds and symlinks to the 
latest

and greatest.  The packages are currently not configured to build
uclient-fetch by default, so I manually selected it.

My resulting build now has a 112,453 byte /bin/uclient-fetch binary and
I can confirm wget does work.  I guess the only thing left to do is to
have the uclient-fetch binary build by default.

Did you use any weird build options? Here's the size from my own build
(ar71xx):
nbd@nf > ls -la bin/uclient-fetch usr/lib/libuclient.so
-rwxr-xr-x  1 nbd  staff  12344 Jan 21 15:39 bin/uclient-fetch
-rw-r--r--  1 nbd  staff  16684 Jan 21 15:39 usr/lib/libuclient.so

Question: The busybox binary (for me) goes from 366,401 bytes to 
300,327

with the removal of wget from it.  Therefore, the uclient-fetch binary
swapout causes a 46,379 byte increase in size. I assume the desire to
move to uclient-fetch from busybox is for the SSL support?  If so, it
still does not support SSL without also building ustream-ssl.

ustream-ssl already ships with standard LuCI enabled builds.
Also, you can choose which TLS provider you want to use.
The way it's implemented right now, enabling SSL also does not require
recompiling uclient-fetch - it detects at run time whether SSL support
is availble.

- Felix



___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[John Clark]

I figured out the sysupgrade issue with respect to the busybox -> 
uclient-fetch update and have submitted a PR to address it:


"[PATCH] base-files: fix sysupgrade 'wget' handling for uclient-fetch"

--John

On 1/22/16 10:18 AM, Felix Fietkau wrote:

On 2016-01-22 14:21, John Clark wrote:

yes, is was dropped with r48386 + 48379
so it *should* be automatically work with wget -> uclient-fetch

I have updated to the latest trunk commit where I see your /usr/bin/wget
-> /bin/wget patch.  I have updated the feeds and symlinks to the latest
and greatest.  The packages are currently not configured to build
uclient-fetch by default, so I manually selected it.

My resulting build now has a 112,453 byte /bin/uclient-fetch binary and
I can confirm wget does work.  I guess the only thing left to do is to
have the uclient-fetch binary build by default.

Did you use any weird build options? Here's the size from my own build
(ar71xx):
nbd@nf > ls -la bin/uclient-fetch usr/lib/libuclient.so
-rwxr-xr-x  1 nbd  staff  12344 Jan 21 15:39 bin/uclient-fetch
-rw-r--r--  1 nbd  staff  16684 Jan 21 15:39 usr/lib/libuclient.so


Question: The busybox binary (for me) goes from 366,401 bytes to 300,327
with the removal of wget from it.  Therefore, the uclient-fetch binary
swapout causes a 46,379 byte increase in size. I assume the desire to
move to uclient-fetch from busybox is for the SSL support?  If so, it
still does not support SSL without also building ustream-ssl.

ustream-ssl already ships with standard LuCI enabled builds.
Also, you can choose which TLS provider you want to use.
The way it's implemented right now, enabling SSL also does not require
recompiling uclient-fetch - it detects at run time whether SSL support
is availble.

- Felix

___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel

Re: [OpenWrt-Devel] DD: CONFIG_BUSYBOX_DEFAULT_WGET is not set

[Bastian Bittorf]

* John Clark  [22.01.2016 07:55]:
> Is it intentional that wget is not available by default in the
> current trunk?  I noticed this because /sbin/sysupgrade is failing in
> the current build of designated driver due to this.  I thought I
> would point it out.

yes, is was dropped with r48386 + 48379
so it *should* be automatically work with wget -> uclient-fetch

ah, i see - the link is wrong in /lib/upgrade/common.sh
was: /usr/bin/wget
should: /bin/wget

can you send a patch?

bye, bastian
___
openwrt-devel mailing list
openwrt-devel@lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel