Package: apt
Version: 1.8.2.2
Severity: important
Dear Maintainer,
the manual page for apt-transport-https contains incorrect information
on how to apply options only to specific hosts.
According to the manual page, the following should work:
Acquire::https::CAInfo::example.com "/my-root-cert.pem";
This seems to have no effect. APT will reject any repositories serving
certificates signed by the specified CA.
This syntax however works fine:
Acquire::https::example.com::CAInfo "/my-root-cert.pem";
-- System Information:
Debian Release: 10.9
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 5.10.0-0.bpo.3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages apt depends on:
ii adduser 3.118
ii debian-archive-keyring 2019.1+deb10u1
ii gpgv 2.2.12-1+deb10u1
ii libapt-pkg5.0 1.8.2.2
ii libc6 2.28-10
ii libgcc1 1:8.3.0-6
ii libgnutls30 3.6.7-4+deb10u6
ii libseccomp2 2.3.3-4
ii libstdc++6 8.3.0-6
Versions of packages apt recommends:
ii ca-certificates 20200601~deb10u2
Versions of packages apt suggests:
pn apt-doc <none>
pn aptitude | synaptic | wajig <none>
ii dpkg-dev 1.19.7
ii gnupg 2.2.12-1+deb10u1
ii powermgmt-base 1.34
-- no debconf information
