On Wed, Jun 12, 2024 at 12:49:39AM GMT, Francesco Poli wrote: > Control: tags -1 + unreproducible moreinfo > > > On Tue, 11 Jun 2024 10:27:33 +0200 Karine Crèvecœur wrote: > > > Package: apt-listbugs > > Version: 0.1.42 > > Severity: grave > > > > > > Hi, > > Hello Karine,
Hello Francesco, >… > It seems that your system is unable to verify the TLS certificate of > https://bugs.debian.org > > apt-listbugs/0.1.42 switched to https by default, that's why it now > needs to connect to the SOAP server via https. > > Can you think of a reason why your system fails to verify the TLS > certificate of https://bugs.debian.org ? > > You should have package 'ca-certificates' installed: > > $ apt policy ca-certificates > ca-certificates: > Installed: 20240203 > Candidate: 20240203 > Version table: > *** 20240203 800 > 800 http://deb.debian.org/debian testing/main amd64 Packages > 500 http://deb.debian.org/debian unstable/main amd64 Packages > 100 /var/lib/dpkg/status > > I say that you should, since there's the following dependency chain: > apt-listbugs → ruby → ruby3.1 → rubygems-integration → ca-certificates Yes, ca-certificates is properly installed (version 20240203). > Are you able to verify other TLS certificates, when accessing other > sites via https? Yes, all other https connection work on firefox and others browsers. > For instance, if you have a web browser installed on the same system, > can you visit https://www.debian.org/ with your browser, without TLS > certificate issues? Yes, it works. I use https almost all of the time.I can ever donwload index.html with: wget https://www.debian.org It is very odd. Thanks for your concern on this issue. Best regards -- Karine Crévecœur
