Red Hat Bugzilla – Bug 1475861
Download using FTPS makes wget abort
Last modified: 2017-08-04 12:32:35 EDT
Created attachment 1305372 [details]
Description of problem:
When downloading a file over FTPS, wget aborts.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
# Modify the default vsftpd.conf
cat >> vsftpd.conf << EOF
openssl req -newkey rsa:2048 -nodes -keyout a.key -x509 -days 365 -out a.crt
echo test > test
systemctl restart vsftpd
It shouldn't abort, should exit in a regular way.
The following works:
wget --no-check-certificate ftps://localhost/pub/test
The SIGABRT occurs in the error-handling switch at src/ftp.c:1973. The getftp() call a few lines above it returns VERIFCERTERR because of the bad cert, but the switch doesn't handle that particular result and ends up abort()ing the process in the "default:" branch. If I append "case VERIFCERTERR:" to line 1975 (similarly to the way the situation is handled in src/http.c), no abnormal termination happens and wget exits with retcode 5.
Hopefully this saves someone a bit of debugging.
Referenced: vanilla wget-1.19.1, but everything is probably valid for 1.19.1-3.fc26 as well. The bug is also found in upstream git.