Bug#1010572: apt-cacher-ng: breaks deb.torproject.org

Wed, 04 May 2022 09:54:17 -0700 

Package: apt-cacher-ng
Version: 3.7.4-1~bpo11+1
Severity: normal
X-Debbugs-Cc: cele...@gmail.com

The upstream Tor Project repository,
https://deb.torproject.org/torproject.org, works when accessed directly,
but not when accessed via apt-cacher-ng:

Err:1 https://deb.torproject.org/torproject.org sid InRelease
  Certificate verification failed: The certificate is NOT trusted. The 
certificate issuer is unknown.  Could not handshake: Error in the certificate 
verification. [IP: xx.xx.xx.xx 3142]

I don't know if they're doing something wrong, or apt-cacher-ng is. I do
not know if this is related to:

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986356

but other third party repos using HTTPS and CNAMES (e.g.,
https://download.vscodium.com/debs) seem to work fine.

The Tor Project documentation:

https://support.torproject.org/apt/tor-deb-repo/

-- Package-specific info:

-- System Information:
Debian Release: 11.3
  APT prefers stable-security
  APT policy: (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-13-amd64 (SMP w/8 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages apt-cacher-ng depends on:
ii  adduser                  3.118
ii  debconf [debconf-2.0]    1.5.77
ii  dpkg                     1.20.9
ii  libbz2-1.0               1.0.8-4
ii  libc-ares2               1.17.1-1+deb11u1
ii  libc6                    2.31-13+deb11u3
ii  libevent-2.1-7           2.1.12-stable-1
ii  libevent-pthreads-2.1-7  2.1.12-stable-1
ii  libfuse2                 2.9.9-5
ii  libgcc-s1                10.2.1-6
ii  liblzma5                 5.2.5-2.1~deb11u1
ii  libssl1.1                1.1.1n-0+deb11u1
ii  libstdc++6               10.2.1-6
ii  libsystemd0              247.3-7
ii  libwrap0                 7.6.q-31
ii  lsb-base                 11.1.0
ii  zlib1g                   1:1.2.11.dfsg-2+deb11u1

Versions of packages apt-cacher-ng recommends:
ii  ca-certificates  20210119

Versions of packages apt-cacher-ng suggests:
ii  avahi-daemon  0.8-5
pn  doc-base      <none>

-- Configuration Files:
/etc/apt-cacher-ng/acng.conf changed [not included]
/etc/apt-cacher-ng/security.conf [Errno 13] Permission denied: 
'/etc/apt-cacher-ng/security.conf'

-- debconf information:
* apt-cacher-ng/tunnelenable: false
  apt-cacher-ng/gentargetmode: No automated setup
  apt-cacher-ng/proxy: keep
  apt-cacher-ng/port: keep
  apt-cacher-ng/cachedir: keep
  apt-cacher-ng/bindaddress: keep

Reply via email to