apt will not use configured client certificate when redirected from http url to https
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apt (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
We have a web server that has our internal package repository. The server is configured so that it will communicate via port 80 with clients in internal network, which basically makes it possible for the clients to get packages during OS installation when they do not yet have a client certificate. The clients outside our network are redirected with a HTTP 302 to the same url with https transport and the https server requires the client to authenticate with a client certificate. We have configured apt like this (obviously with real paths and server name):
/etc/apt/
-------
Acquire:
Verify-Peer "true";
Verify-Host "true";
CaInfo "/path/
SslCert "/path/
SslKey "/path/
};
-------
As long as the repository is marked as https://... in /etc/apt/
Status changed to 'Confirmed' because the bug affects multiple users.