Edit report at https://bugs.php.net/bug.php?id=71027&edit=1
ID: 71027 Updated by: [email protected] Reported by: g dot rossolini at gmail dot com Summary: certificate common name '*.php.net' doesn't match requested host name 'php.net' -Status: Open +Status: Closed Type: Feature/Change Request Package: Website problem PHP Version: Irrelevant -Assigned To: +Assigned To: petk Block user comment: N Private report: N New Comment: This has been now resolved via a migration to the server and infrastructure where mirrors aren't used anymore and PHP https issues are finally solved with this context. Thank you for reporting issues and helping us making PHP better as much as it can be. Previous Comments: ------------------------------------------------------------------------ [2015-12-04 22:57:51] [email protected] sneaky. We only support https over secure.php.net -- no other mirrors, including the primary "www.php.net" or "php.net". secure.php.net is a special type of mirror, and not actually registered as mirror, and reports itself as being "php.net" -- hence the download urls "https://php.net/..";. Not sure how to fix this at the moment.. ------------------------------------------------------------------------ [2015-12-04 10:33:41] g dot rossolini at gmail dot com Description: ------------ The links provided in the https://secure.php.net/downloads.php page cause an SSL error: wget https://php.net/get/php-7.0.0.tar.bz2/from/a/mirror --2015-12-04 10:16:11-- https://php.net/get/php-7.0.0.tar.bz2/from/a/mirror Resolving php.net... 72.52.91.14, 2a02:cb41::7 Connecting to php.net|72.52.91.14|:443... connected. ERROR: certificate common name `*.php.net' doesn't match requested host name `php.net'. To connect to php.net insecurely, use `--no-check-certificate'. wget --version GNU Wget 1.12 built on linux-gnu. Although cURL does not complain: curl -I https://php.net/get/php-7.0.0.tar.bz2/from/a/mirror HTTP/1.1 301 Moved Permanently Server: nginx/1.6.2 Date: Fri, 04 Dec 2015 10:26:48 GMT Content-Type: text/html Content-Length: 184 Connection: keep-alive Location: https://secure.php.net/get/php-7.0.0.tar.bz2/from/a/mirror curl --version curl 7.44.0 (i686-pc-linux-gnu) libcurl/7.44.0 OpenSSL/1.0.2d zlib/1.2.8 libidn/1.25 libssh2/1.4.3 nghttp2/1.3.0 Protocols: dict file ftp ftps gopher http https imap imaps pop3 pop3s rtsp scp sftp smb smbs smtp smtps telnet tftp Features: IDN IPv6 Largefile GSS-API Kerberos SPNEGO NTLM NTLM_WB SSL libz TLS-SRP HTTP2 UnixSockets Metalink When using secure.php.net as the domain name, download works: wget https://secure.php.net/distributions/php-7.0.0.tar.bz2 --2015-12-04 10:16:46-- https://secure.php.net/distributions/php-7.0.0.tar.bz2 Resolving secure.php.net... 72.52.91.14, 2a02:cb41::7 Connecting to secure.php.net|72.52.91.14|:443... connected. HTTP request sent, awaiting response... 200 OK Length: 13975832 (13M) [application/octet-stream] Saving to: `php-7.0.0.tar.bz2' 100%[==================================================================================================================================================================================================>] 13,975,832 478K/s in 28s 2015-12-04 10:17:15 (494 KB/s) - `php-7.0.0.tar.bz2' saved [13975832/13975832] Expected result: ---------------- Links provided in the secure downloads webpage should point to a domain that matches the certificate, or a certificate should be set up for the root domain. Actual result: -------------- Links provided in the secure downloads webpage point to the root domain, which has no valid certificate: certificate common name '*.php.net' doesn't match requested host name 'php.net' Also see #70972 ------------------------------------------------------------------------ -- Edit this bug report at https://bugs.php.net/bug.php?id=71027&edit=1 -- PHP Webmaster List Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
