diff options
| author |  Thomas Petazzoni <thomas.petazzoni@free-electrons.com> | 2017-09-02 23:29:38 +0200 |
|---|---|---|
| committer |  Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> | 2018-03-31 17:17:51 +0200 |
| commit | 0866a280e40a7a2c7d7d50cc7e87c3f4652aff0a (patch) | |
| tree | 51f778a04402aba6a011692af5912d0d6537cca9 /utils | |
| parent | 7f02604553bc3c8449d6a112818f038e99abbdaf (diff) | |
| download | buildroot-0866a280e40a7a2c7d7d50cc7e87c3f4652aff0a.tar.gz buildroot-0866a280e40a7a2c7d7d50cc7e87c3f4652aff0a.tar.bz2 | |
utils/genrandconfig: use --no-check-certificate in wget by default
A number of autobuilder failures are due to the fact that autobuilder
instances use old distributions, with old SSL certificates, and
therefore wget aborts with an error "The certificate of `xyz.org' is
not trusted.".
In order to avoid such failures that are not very interesting in the
context of the autobuilders, we pass --no-check-certificate to
wget. The integrity of the downloaded files is anyway verified by the
hashes, and this is only meant to be used in the context of
testing/CI, not in production.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Diffstat (limited to 'utils')
| -rwxr-xr-x | utils/genrandconfig | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/utils/genrandconfig b/utils/genrandconfig index 07882200e0..06701ce565 100755 --- a/utils/genrandconfig +++ b/utils/genrandconfig @@ -349,6 +349,9 @@ def gen_config(args): with open(minimalconfigfile) as minimalf: configlines += minimalf.readlines() + # Allow hosts with old certificates to download over https + configlines.append("BR2_WGET=\"wget --passive-ftp -nd -t 3 --no-check-certificate\"") + # Amend the configuration with a few things. if randint(0, 20) == 0: configlines.append("BR2_ENABLE_DEBUG=y\n") |