diff options
author | Natanael Copa <ncopa@alpinelinux.org> | 2018-05-30 09:52:20 +0000 |
---|---|---|
committer | Natanael Copa <ncopa@alpinelinux.org> | 2018-05-30 10:44:48 +0000 |
commit | 1d0560a9b6b5597b191e5aff69a31c2fe0aba273 (patch) | |
tree | 23e808e7b123643b55e2eb07101b8467b429b975 /main/busybox/busyboxconfig | |
parent | 782065ccea8a1415f01f568f5bce411898f4d7fb (diff) | |
download | aports-1d0560a9b6b5597b191e5aff69a31c2fe0aba273.tar.bz2 aports-1d0560a9b6b5597b191e5aff69a31c2fe0aba273.tar.xz |
main/busybox: properly fix wget https support
fix busybox wget https support by using an external ssl_client helper
for https.
Disable the use of external openssl. This was fixed to check
certificates as a temporary solution. openssl can not produce any useful
error messages on certificate errors. It is big. So we simply disable
its use.
For dynamic busybox we disable the internal ssl_client and the internal
(broken) tls code, and build our own ssl_client which properly verifies
the certificates.
For the static busybox we enable the internal ssl_client and tls code,
but we only allow its use with --no-check-certificates. This is so we
still can fetch things from https in an emergency situation.
We auto-install ssl_client if both libssl and busybox are installed. This
is to keep backwards compatibility.
Diffstat (limited to 'main/busybox/busyboxconfig')
-rw-r--r-- | main/busybox/busyboxconfig | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/main/busybox/busyboxconfig b/main/busybox/busyboxconfig index 3e658be600..d2ea6fd759 100644 --- a/main/busybox/busyboxconfig +++ b/main/busybox/busyboxconfig @@ -910,7 +910,7 @@ CONFIG_FEATURE_FANCY_PING=y CONFIG_PSCAN=y CONFIG_ROUTE=y CONFIG_SLATTACH=y -CONFIG_SSL_CLIENT=y +# CONFIG_SSL_CLIENT is not set # CONFIG_TCPSVD is not set # CONFIG_UDPSVD is not set # CONFIG_TELNET is not set @@ -927,7 +927,7 @@ CONFIG_SSL_CLIENT=y # CONFIG_FEATURE_TFTP_PUT is not set # CONFIG_FEATURE_TFTP_BLOCKSIZE is not set # CONFIG_TFTP_DEBUG is not set -CONFIG_TLS=y +# CONFIG_TLS is not set CONFIG_TRACEROUTE=y CONFIG_TRACEROUTE6=y CONFIG_FEATURE_TRACEROUTE_VERBOSE=y @@ -941,7 +941,7 @@ CONFIG_FEATURE_WGET_STATUSBAR=y CONFIG_FEATURE_WGET_AUTHENTICATION=y CONFIG_FEATURE_WGET_TIMEOUT=y CONFIG_FEATURE_WGET_HTTPS=y -CONFIG_FEATURE_WGET_OPENSSL=y +# CONFIG_FEATURE_WGET_OPENSSL is not set CONFIG_WHOIS=y # CONFIG_ZCIP is not set # CONFIG_UDHCPD is not set |