Description of problem: When I try to download the recent youtube-dl release from github with spectool/wget, it fails: LANG=C wget https://github.com/rg3/youtube-dl/raw/2011.01.30/youtube-dl --2011-01-31 22:59:03-- https://github.com/rg3/youtube-dl/raw/2011.01.30/youtube-dl Resolving github.com... 207.97.227.239 Connecting to github.com|207.97.227.239|:443... connected. ERROR: certificate common name `*.github.com' doesn't match requested host name `github.com'. To connect to github.com insecurely, use `--no-check-certificate'. Looking at the certificate shows me: openssl s_client -connect github.com:443 | openssl x509 -text [...] X509v3 Subject Alternative Name: DNS:*.github.com, DNS:github.com Afaik this should mean that the certificate is valid for github.com Version-Release number of selected component (if applicable): wget-1.12-2.fc13 How reproducible: always Steps to Reproduce: 1. wget https://github.com/rg3/youtube-dl/raw/2011.01.30/youtube-dl Actual results: fails with certificate error Expected results: it should download the file
There's also a Debian bug regarding this issue (namely, failure to correctly check Subject Alternative Names for certificates): http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=409938 Comments on that bug say that it has been fixed upstream but there has been no new release with the fix, despite it being well over a year since the fix was committed. Would it be possible to extract the patch and add it to the current Fedora version?
http://www.geofrogger.net/review/wget-1.12-3.1.fc15.src.rpm I applied upstream's patch, but can only test by tomorrow. The Github example doesn't seem to cause problems on the original wget version anymore.
http://koji.fedoraproject.org/koji/taskinfo?taskID=3156329 I just tried it and it doesn't complain any more, where the original version did. I assume it's working.
Please respond to this ticket!
> I just tried it and it doesn't complain any more, where the original version > did. I assume it's working. As far as I can tell, same is true here.
Hi Karsten, same problem with the most recent version of wget in RHEL5 and www.paypal.com. Just raised a support ticket as well.
Any news so far?
wget-1.12-4.fc16 has been submitted as an update for Fedora 16. https://admin.fedoraproject.org/updates/wget-1.12-4.fc16
wget-1.12-4.fc15 has been submitted as an update for Fedora 15. https://admin.fedoraproject.org/updates/wget-1.12-4.fc15
wget-1.12-4.fc14 has been submitted as an update for Fedora 14. https://admin.fedoraproject.org/updates/wget-1.12-4.fc14
Package wget-1.12-4.fc14: * should fix your issue, * was pushed to the Fedora 14 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing wget-1.12-4.fc14' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/wget-1.12-4.fc14 then log in and leave karma (feedback).
*** Bug 667825 has been marked as a duplicate of this bug. ***
wget-1.12-4.fc14 has been pushed to the Fedora 14 stable repository. If problems still persist, please make note of it in this bug report.
wget-1.12-4.fc15 has been pushed to the Fedora 15 stable repository. If problems still persist, please make note of it in this bug report.
wget-1.12-4.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report.