diff options
author | Jerome Forissier <jerome.forissier@linaro.org> | 2023-05-04 13:58:35 +0200 |
---|---|---|
committer | Jérôme Forissier <jerome@forissier.org> | 2023-05-04 15:33:07 +0200 |
commit | 3408c89f7214d716d233e094c057ca30ff6fbf34 (patch) | |
tree | 32350739c41970a3b1b6e87e1dc9614b4c4ac2ba | |
parent | fb568f632f87acd9e59e765e6ac8bbee182741a8 (diff) |
toolchain.mk: do not check server certificate when downloading
"make toolchains" is now failing with the following error:
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.se/docs/sslcerts.html
curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
Although I could download the GCC package [1] just fine with Firefox, the
same URL does indeed cause an error when downloaded with curl on my
laptop (I am using Ubuntu 22.04.2). The same error happens in the OP-TEE
CI loop.
It looks like a required CA certificate ("GlobalSign RSA OV SSL CA 2018") is
missing in /etc/ssl/certs/ca-certificates.crt.
Add -k to the curl command to disable certificate verification.
Link: [1] https://developer.arm.com/-/media/Files/downloads/gnu/11.3.rel1/binrel/arm-gnu-toolchain-11.3.rel1-x86_64-aarch64-none-linux-gnu.tar.xz
Signed-off-by: Jerome Forissier <jerome.forissier@linaro.org>
Acked-by: Jens Wiklander <jens.wiklander@linaro.org>
-rw-r--r-- | toolchain.mk | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/toolchain.mk b/toolchain.mk index 2536c7a..658fe19 100644 --- a/toolchain.mk +++ b/toolchain.mk @@ -14,7 +14,7 @@ define dltc @if [ ! -d "$(1)" ]; then \ echo "Downloading $(3) ..."; \ mkdir -p $(1); \ - curl --retry 5 -s -S -L $(2) -o $(TOOLCHAIN_ROOT)/$(3).tar.xz || \ + curl --retry 5 -k -s -S -L $(2) -o $(TOOLCHAIN_ROOT)/$(3).tar.xz || \ { rm -f $(TOOLCHAIN_ROOT)/$(3).tar.xz; cd $(TOOLCHAIN_ROOT) && rmdir $(1); echo Download failed; exit 1; }; \ tar xf $(TOOLCHAIN_ROOT)/$(3).tar.xz -C $(1) --strip-components=1 || \ { rm $(TOOLCHAIN_ROOT)/$(3).tar.xz; echo Downloaded file is damaged; \ |