Open McGiverGim opened 4 months ago
wget --version
? ie if it is wget or ufetch
It seems they are totally different, between the one that works and the one that not (maybe some depedency installed it)? The one that works:
root@router-comedor:~# wget --version
GNU Wget 1.24.5 built on linux-gnu.
-cares +digest -gpgme +https +ipv6 -iri +large-file -metalink -nls
+ntlm +opie -psl +ssl/openssl
...
The one that not:
root@router-despacho:~# wget --version
wget: unrecognized option: version
It seems the one that does not work is uclient-fetch
. Looking at the software list appears as 2024.04.19~e8780fa7-r1
The one that works I think is using wget-ssl
. I tried to install it in the one that does not work and it works. So the prolem is with uclient-fetch
. Is that expected?
You need ca-certificates to connect to non-default sites.
I've tried to install the ca-certificates package, but the error remains. Do I need to do something more? I've executed this command since two years ago without problem.
You need wget-ssl
package, there are two variants of wget
: wget
(without SSL support) and wget-ssl
uclient-fetch - 2023-04-13-007d9454-1 certainly works as in 23..3
I think it's a uclient-fetch bug, it worked on the other router because it was using gnu-wget. I can't get it to load that URL either with uclient-fetch 2024.04.19~e8780fa7-r1 (mbedtls).
I think I can give more data:
wget
commando since more than a year ago, each 2 or 3 weeks I update to latest snapshot.uclient-fetch
version, and it worked.So I think it must be a problem of maybe the library that it used (mbedtls?). It seems some incompatibility by the error message.
I understand the cause now. I'll CC @nbd168 because it seems he did some recent work with uclient and SSL.
The issue occurs when uclient-fetch tries to redirect over SSL from one host to another. So a redirect that works like this: https://rany.eu.org/hi
-> https://rany.eu.org/hi2
will work fine but https://rany.eu.org/subdomain
to https://subdomain.rany.eu.org
does not.
Edit:
root@crappypi:~# wget -O/dev/null https://rany.eu.org/hi
Downloading 'https://rany.eu.org/hi'
Connecting to x:443
Redirected to /hi2 on rany.eu.org
HTTP error 404
root@crappypi:~# wget -O/dev/null https://rany.eu.org/subdomain
Downloading 'https://rany.eu.org/subdomain'
Connecting to x:443
Redirected to / on subdomain.rany.eu.org
SSL error: SSL - Bad input parameters to function
Connection error: Connection failed
Got the same error on freshly installed snapshot: r27350-c4a9265160
for Bananapi BPi-R4
> opkg update
Downloading https://downloads.sourceforge.net/project/v2raya/openwrt/aarch64_cortex-a53/Packages.gz
SSL error: SSL - Bad input parameters to function
> wget https://downloads.sourceforge.net/project/v2raya/openwrt/v2raya.pub -O /etc/opkg/keys/94cc2a834fb0aa03
Downloading 'https://downloads.sourceforge.net/project/v2raya/openwrt/v2raya.pub'
Connecting to 204.68.111.105:443
Redirected to /project/v2raya/openwrt/v2raya.pub?viasf=1 on kumisystems.dl.sourceforge.net
SSL error: SSL - Bad input parameters to function
Connection error: Connection failed
Seems like I have the same version of uclient-fetch as author of this thread:
> opkg install wget
Package uclient-fetch (2024.04.19~e8780fa7-r1) installed in root is up to date.
And this has nothing to do with self-signed ssl certificates. For me wget-ssl fixed the problem opkg install wget-ssl
commenting for visibility
Describe the bug
I've upgraded to latest snapshot in one of my AX3600. Since then, for some URLs, I'm getting this error:
The same command works perfectly in my other AX3600, that contains a snapshot from 2/3 weeks ago.
OpenWrt version
r26235-0d74b2a1e5
OpenWrt release
SNAPSHOT
OpenWrt target/subtarget
qualcommax/ipq807x
Device
Xiaomi AX3600
Image kind
Official downloaded image
Steps to reproduce
I suppose that:
wget https://github.com/jerrykuku/luci-theme-argon/releases/download/v2.3.1/luci-theme-argon_2.3.1_all.ipk
commandActual behaviour
It throws an error:
SSL error: SSL - Bad input parameters to function
Expected behaviour
Download the file
Additional info
As I said, my other AX3600 from a two or three week ago can download the file without problem. I suppose it is some incompatibility between packages.
Diffconfig
No response
Terms