OpenWrt Forum Archive

Topic: Curl - "BAD CERT NOT TRUSTED" barrier breaker openwrt

The content of this topic has been archived on 23 Mar 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.

Hi,

Am running with barrier breaker revision,  While accessing HTTPS link using crul, am getting the following error,

"BAD CERT NOT TRUSTED"

(no issue for HTTP)

and if use , crul -k <https> ==>its working fine


Checked:

I tested in CC version, here everything is working fine (http/https)

So, is there any know issue and fix for the same in BB version. I tried to upgrade for 'CA_CERT' and 'Openssl' from the latest from BB, still the issue is live.

thanks in advance.

Is your time correctly set?

in router? could you please tel which one i need to check for time?

maartenjd wrote:

Is your time correctly set?

it seems correctly set,

root@OpenWrt:/# date
Mon Feb 13 10:01:02 UTC 2017
root@OpenWrt:/#
root@OpenWrt:/#
root@OpenWrt:/# time
BusyBox v1.22.1 (2017-02-10 09:40:20 IST) multi-call binary.

Usage: time [-v] PROG ARGS

Run PROG, display resource usage when it exits

       -v      Verbose

root@OpenWrt:/#

In the router that is running BB.

Keep also in mind that after discovery of the heartbleed bug, openssl has been upgraded and maybe the default settings have changed and ssl is less permissive. You can check your version with:

openssl version

My CC uses version 1.0.2j.

Correction: I see that Curl in CC uses polarssl 1.3.14. PolarSSL was not affected by the heartbleed bug. So, I cannot explain your certificate problem from that point of view. Did you try other https-sites to see if it is structural or just unique for that particular site?

(Last edited by maartenjd on 13 Feb 2017, 12:50)

All https link causing the same issue.

BB is EOL. try latest trunk

The discussion might have continued from here.