[Bug 1087543] Re: apt-get does not properly reuse connections with https

Adam Conrad adconrad at 0c3.net
Tue Jul 16 17:56:17 UTC 2013 

Hello Thomas, or anyone else affected,

Accepted apt into precise-proposed. The package will build now and be
available at
http://launchpad.net/ubuntu/+source/apt/0.8.16~exp12ubuntu10.12 in a few
hours, and then in the -proposed repository.

Please help us by testing this new package.  See
https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to
enable and use -proposed.  Your feedback will aid us getting this update
out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug,
mentioning the version of the package you tested, and change the tag
from verification-needed to verification-done. If it does not fix the
bug for you, please add a comment stating that, and change the tag to
verification-failed.  In either case, details of your testing will help
us make a better decision.

Further information regarding the verification process can be found at
https://wiki.ubuntu.com/QATeam/PerformingSRUVerification .  Thank you in
advance!

** Changed in: apt (Ubuntu Precise)
       Status: Triaged => Fix Committed

** Tags added: verification-needed

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to apt in Ubuntu.
https://bugs.launchpad.net/bugs/1087543

Title:
  apt-get does not properly reuse connections with https

Status in “apt” package in Ubuntu:
  Fix Released
Status in “apt” source package in Precise:
  Fix Committed

Bug description:
  [Impact]

   * Apt does not re-use https connections.  This results in a
  significant performance hit.

   * Additionally the hosts of mirrors are experiencing unnecessarily
  high load due to this

  [Test Case]

   * Run apt-get -update using https connections.  It will be noticably
  slower in comparison to after this change

  [Regression Potential]

   * This fixes apt, by changing the way it uses curl, such that only
  problematic error codes cause failure.  But this may only happen if
  the user is using https, http is not affected by this patch.

   * Might result in zero length files, or updates not being downloaded
  over https connectiosn.

   * https connections hanging in the event that the above logic does
  not correctly handle error cases.

  [Other Info]
   * There's only a slight chance to hit any regressions, as the above is mostly just thinking well outside of the box.
   
   * This is already in Saucy.

   * This is not imperative to be pulled into precise, but it would be
  nice.

   * This is really more of an enhancement than a bug fix.

   * I have been using this patch for over 5 months now with no negative
  side affects.

   * I have been told that this patch has been deployed in a large
  (multi-thousand install base) organization with no negative side
  affects as well.

  --------------------------------------------------------------------------------

  When using an https: connection, apt-get does not properly reuse
  connections. Because https setup costs can be quite high, this can
  cause much slowdown when, for example, many different distributions on
  the same server need to be checked.

  I believe the attached patch addresses the difficulty.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1087543/+subscriptions

More information about the foundations-bugs mailing list