You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Since a few month, upgrade images have to be downloaded with https, because http requests are now redirected to https.
I also think that redirecting to https, can be a good idea.
But, it's a pain (at least not user friendly) to install a package, in order to download a new image to flash.
Can you add an ssl package to the default packages list ?
Another option is to permit download on http, but may not be the best idea.
I agree about the fact, that adding a package to all images is not so easy and maybe impossible due to space disk considerations.
As an openwrt user, I appreciate all the work, you are doing. Thank you for that project.
Regards,
Serge
The text was updated successfully, but these errors were encountered:
After upgrading for a few iterations (I'm on 19.07.7 now) I still have http: links in /etc/opkg/distfeeds.conf and so I cannot install libustream-.* or ca-bundle. Catch22!
The download server has specific exceptions to allow downloading /Packages. and /.ipk URLs via plain HTTP if the requesting user agent is either "uclient-fetch" or "Wget", so opkg specific install issues are unrelated to this ticket (which talks about the ability to fetch images via HTTPS) unless you somehow replaced the download utility used by opkg with something which is neither uclient-fetch nor GNU Wget or Busybox wget.
sp31415t1:
Hi,
I would like to submit a feature/enhancement request more than a bug request.
Supply the following if possible:
tested on xiaomi mi wifi 3G v1 (https://openwrt.org/toh/hwdata/xiaomi/xiaomi_miwifi_3g)
but probably occuring for all devices
OpenWrt 19.07.4
1/ upgrade to last stable firmware, so currently 19.07.4
2/ try to download the sysupgrade image
cd /tmp; wget --no-check-certificate "https://downloads.openwrt.org/releases/19.07.4/targets/ramips/mt7621/openwrt-19.07.4-ramips-mt7621-xiaomi_mir3g-squashfs-sysupgrade.bin"
wget: SSL support not available, please install one of the libustream-.*[ssl|tls] packages as well as the ca-bundle and ca-certificates packages.
Since a few month, upgrade images have to be downloaded with https, because http requests are now redirected to https.
I also think that redirecting to https, can be a good idea.
Extract of https://openwrt.org/docs/guide-user/installation/sysupgrade.cli :
Download and check the firmware checksum with:
cd /tmp;wget $DOWNLOAD_LINK;wget $SHA256SUMS;sha256sum -c sha256sums 2>/dev/null|grep OK
When applied to my device and last stable release :
cd /tmp; wget --no-check-certificate "https://downloads.openwrt.org/releases/19.07.4/targets/ramips/mt7621/openwrt-19.07.4-ramips-mt7621-xiaomi_mir3g-squashfs-sysupgrade.bin"
wget: SSL support not available, please install one of the libustream-.*[ssl|tls] packages as well as the ca-bundle and ca-certificates packages.
As discussed in forum (https://forum.openwrt.org/t/problem-downloading-openwrt-release-to-router-using-wget/63805), there are alternatives.
But, it's a pain (at least not user friendly) to install a package, in order to download a new image to flash.
Can you add an ssl package to the default packages list ?
Another option is to permit download on http, but may not be the best idea.
I agree about the fact, that adding a package to all images is not so easy and maybe impossible due to space disk considerations.
As an openwrt user, I appreciate all the work, you are doing. Thank you for that project.
Regards,
Serge
The text was updated successfully, but these errors were encountered: