[Bug 11456] New: wget TLS handshake failure (alert code 40)
bugzilla at busybox.net
bugzilla at busybox.net
Tue Oct 30 10:41:05 UTC 2018
https://bugs.busybox.net/show_bug.cgi?id=11456
Bug ID: 11456
Summary: wget TLS handshake failure (alert code 40)
Product: Busybox
Version: 1.29.x
Hardware: Other
OS: Linux
Status: NEW
Severity: normal
Priority: P5
Component: Networking
Assignee: unassigned at busybox.net
Reporter: spam at ipik.org
CC: busybox-cvs at busybox.net
Target Milestone: ---
I’m having an issue with several redirections using latest busybox wget (built
as of https://github.com/maxnet/berryboot on Pi device)to access some content.
Similar issues have been documented in:
https://github.com/mirror/busybox/issues/6
For instance with a popular redirector (invoqued from berryboot console):
# wget https://is.gd/InstLk
Connecting to is.gd (104.31.15.172:443)
wget: note: TLS certificate validation not implemented
wget: TLS error from peer (alert code 40): handshake failure
wget: error getting response: Connection reset by peer
Whereas the target link gets downloaded fine directly:
# wget
https://raw.githubusercontent.com/macmpi/berryboot-scripts/master/Lakka/installLakka
Connecting to raw.githubusercontent.com (151.101.120.133:443)
wget: note: TLS certificate validation not implemented
installLakka 100% |********************************| 10077 0:00:00 ETA
So something seems to get wrong in the redirection process, which seems to
break with busybox wget.
These issues do not show-up in GNU wget (Debian Stretch / Ubuntu 18.04)
Unsure if this wold be failing SNI support or else: happy to provide more
traces if directed to. This is easily replicable using Berryboot console.
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the busybox-cvs
mailing list