From 1f4e40677a9e6259c47a6b73fa1ff19ca7dc7665 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ren=C3=A9=20Klomp?= <rene@klomp.ws>
Date: Sun, 21 Aug 2016 13:56:22 +0200
Subject: [PATCH] Do not check certificate validity

If http redirects to https and currently there is no valid certificate we should still be able to retrieve the $wellknown_url
---
 getssl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/getssl b/getssl
index 6df4114..cd86d9d 100755
--- a/getssl
+++ b/getssl
@@ -1166,7 +1166,7 @@ for d in $alldomains; do
     debug wellknown_url "$wellknown_url"
 
     # check that we can reach the challenge ourselves, if not, then error
-    if [ ! "$(curl --silent --location "$wellknown_url")" == "$keyauthorization" ]; then
+    if [ ! "$(curl -k --silent --location "$wellknown_url")" == "$keyauthorization" ]; then
       error_exit "for some reason could not reach $wellknown_url - please check it manually"
     fi