diff options
| author | Slack Coder <slackcoder@server.ky> | 2025-02-20 12:34:00 -0500 |
|---|---|---|
| committer | Slack Coder <slackcoder@server.ky> | 2025-02-20 14:42:32 -0500 |
| commit | 857080314ce717ce18c12106947456e7e12958b9 (patch) | |
| tree | 69132779cd22b7958aadb381534a8ed0af4a1fe2 | |
| parent | 3fb953bbf0f299efb21b08ce2a4212a89681c781 (diff) | |
| download | sbotools2-857080314ce717ce18c12106947456e7e12958b9.tar.xz | |
Enable HTTPS certificate checking
Expect the user wants to properly use HTTPS if he has defined an HTTPS
repository.
| -rw-r--r-- | ChangeLog.md | 5 | ||||
| -rw-r--r-- | SBO-Lib/lib/SBO/Lib/Download.pm | 2 |
2 files changed, 6 insertions, 1 deletions
diff --git a/ChangeLog.md b/ChangeLog.md index 61481ba..fd5285b 100644 --- a/ChangeLog.md +++ b/ChangeLog.md @@ -9,6 +9,11 @@ All notable changes to this project will be documented in this file. - Download's are retried from a third party on failure. Allow the user to configure the third party source or disable this feature. +### Security + + - Check SSL certificates when downloading. Oddly, this was previously + disabled with '--no-check-certificate'. + ## [2.8.0] - 2025-01-28 ### Added diff --git a/SBO-Lib/lib/SBO/Lib/Download.pm b/SBO-Lib/lib/SBO/Lib/Download.pm index 331949b..fd337e2 100644 --- a/SBO-Lib/lib/SBO/Lib/Download.pm +++ b/SBO-Lib/lib/SBO/Lib/Download.pm @@ -172,7 +172,7 @@ sub get_distfile { for my $link (@links) { unlink $filename if -f $filename; - if (system('wget', '--no-check-certificate', '--tries=5', $link) != 0) { + if (system('wget', '--tries=5', $link) != 0) { if (not %$fail) { # The failure from the first source is apparently what is important. $fail = {msg => "Unable to wget $link.\n", err => _ERR_DOWNLOAD}; |