TLS handshake is fatal, not transient - hence not retried
Bug #1928100 reported by
Julian Andres Klode
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apt (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Hirsute |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Impact]
TLS handshakes are reported as fatal errors rather than transient errors like other connection errors on unencrypted connections. This seems wrong - a server may just be spinning up or down and fail during the handshake, and prevents retrying such downloads
[Test plan]
A test case has been added to the integration test suite that ensures handshake errors are retried upon configuration.
[Where problems could occur]
Transient errors do not cause an error exit from apt update, so scripts relying on errors from TLS handshakes in such situations will fail.
To post a comment you must log in.
This bug was fixed in the package apt - 2.3.4
---------------
apt (2.3.4) experimental; urgency=medium
[ Khem Raj ]
* srvrec: Keep support for older resolver
[ Julian Andres Klode ]
* Turn TLS handshake issues into transient errors (LP: #1928100)
-- Julian Andres Klode <email address hidden> Wed, 12 May 2021 18:04:33 +0200