[root@km ~] printenv | grep -i prox HTTP_PROXY=http://proxy.sibptus.ru:3128 HTTP_PROXY_AUTH=basic:*:XXXXXXX:YYYYYYYYYYYYY NO_PROXY=svn.sibptus.ru [root@km ~] pkg audit -F pkg: http://www.vuxml.org/freebsd/vuln.xml.bz2: Forbidden pkg: Cannot fetch vulnxml file! [root@km ~] From the squid logs at proxy.sibptus.ru I see that pkg does not try to authenticate itself with the proxy: 1403660801.249 0 217.29.84.104 TCP_DENIED/403 1371 GET http://www.vuxml.org/freebsd/vuln.xml.bz2 - NONE/- text/html
Over to maintainers.
pkg is using libfetch and support all what libfetch support which does not include HTTP_PROXY_AUTH If you want authentication via proxy then http_proxy=http://XXX:YYY@proxy:port
(In reply to Baptiste Daroussin from comment #2) > pkg is using libfetch and support all what libfetch support which does not > include HTTP_PROXY_AUTH > > If you want authentication via proxy then > http_proxy=http://XXX:YYY@proxy:port You are mistaken, man 3 fetch, look for HTTP_PROXY_AUTH
We have no code at all concerning http_proxy* and 100% let libfetch handle and do not catch/modify anything in regards to env variable meaning if pkg(8) does not support HTTP_PROXY_AUTH then it is a libfetch problem
(In reply to Baptiste Daroussin from comment #4) > We have no code at all concerning http_proxy* and 100% let libfetch handle > and do not catch/modify anything in regards to env variable meaning if > pkg(8) does not support HTTP_PROXY_AUTH then it is a libfetch problem Are you sure pkg does not clean up the environment variables in any way?
I think this could be related to https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=186398
No it is not freebsd-update portsnap does not use libfetch, we don't. No pkg does not cleanup env vars
(In reply to Baptiste Daroussin from comment #7) > No it is not freebsd-update portsnap does not use libfetch, we don't. > > No pkg does not cleanup env vars Excuse me? Who does not use libfetch? [sudakov@admin ~] ldd `which pkg` /usr/sbin/pkg: libarchive.so.5 => /usr/lib/libarchive.so.5 (0x28079000) libelf.so.1 => /usr/lib/libelf.so.1 (0x280b8000) libfetch.so.6 => /usr/lib/libfetch.so.6 (0x280d9000) libucl.so.1 => /usr/lib/private/libucl.so.1 (0x280ea000) libsbuf.so.6 => /lib/libsbuf.so.6 (0x280f8000) libssl.so.6 => /usr/lib/libssl.so.6 (0x280fb000) libcrypto.so.6 => /lib/libcrypto.so.6 (0x28147000) libc.so.7 => /lib/libc.so.7 (0x282aa000) libz.so.6 => /lib/libz.so.6 (0x283dc000) libbz2.so.4 => /usr/lib/libbz2.so.4 (0x283f0000) liblzma.so.5 => /usr/lib/liblzma.so.5 (0x28400000) libbsdxml.so.4 => /lib/libbsdxml.so.4 (0x28423000) [sudakov@admin ~]
erg typo :) I mean we do :)
(In reply to Baptiste Daroussin from comment #9) Did anyone care to reproduce the problem?
Sorry for late reply , but I cannot reproduce, can you tell me if that still happens with pkg 1.5.0?