Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Linkcheck shouldn't retry on SSL errors #9592

Open
webknjaz opened this issue Aug 29, 2021 · 2 comments
Open

Linkcheck shouldn't retry on SSL errors #9592

webknjaz opened this issue Aug 29, 2021 · 2 comments
Labels
builder:linkcheck type:bug
Milestone
some future version

Comments

@webknjaz
Copy link
Contributor

webknjaz commented Aug 29, 2021
edited
Loading

Describe the bug

When linkcheck sees SSLError it still retries the HTTP request hoping for different results. It shouldn't do this and it's actually a great place for optimization.

(guides/supporting-windows-using-appveyor: line  152) broken    http://tox.testrun.org - HTTPSConnectionPool(host='tox.testrun.org', port=443): Max retries exceeded with url: / (Caused by SSLError(SSLCertVerificationError("hostname 'tox.testrun.org' doesn't match 'codespeak.net'")))

How to Reproduce

$ git clone https://github.com/pypa/packaging.python.org
$ cd packaging.python.org
$ pip install nox virtualenv -U
$ nox -s linkcheck
# After this, see the error cited above

Expected behavior

Linkcheck should mark links as broken, the first time it sees TLS errors related to fetching the respective URLs.
Moreover, linkcheck should memorize hostnames that produced have broken TLS configuration and skip checking any further links having the same domain — they'll result in the same issue so it's reasonable to mark them all broken right away saving resources and making the check fail fast.

Your project

https://github.com/pypa/packaging.python.org

Screenshots

No response

OS

GHA CI / Ubuntu 20.04

Python version

CPython v3.9.6

Sphinx version

v4.0.3

Sphinx extensions

sphinx.ext.extlinks, sphinx.ext.intersphinx, sphinx.ext.todo, sphinx_inline_tabs, sphinx_copybutton

Extra tools

No response

Additional context

https://github.com/pypa/packaging.python.org/pull/968/checks#step:7:116
tk0miya added a commit to tk0miya/sphinx that referenced this issue Sep 6, 2021
@tk0miya
Close sphinx-doc#9592: linkcheck: do not retry on SSL errors
3c63cbd
@tk0miya
Copy link
Member

tk0miya commented Sep 6, 2021

Note: It seems the request library goes the retries.
https://stackoverflow.com/questions/23013220/max-retries-exceeded-with-url-in-requests

Moreover, linkcheck should memorize hostnames that produced have broken TLS configuration and skip checking any further links having the same domain

Understandable. But it's a bit difficult to share the list of broken TLS domains between threads and documents.

@AA-Turner AA-Turner added this to the some future version milestone Sep 29, 2022
This was referenced May 21, 2023
Merged
Open
@jayaddison
Copy link
Contributor

This has been partially addressed by #11431 since v7.1.0 - SSL failures on HTTP HEAD requests will not be followed by an attempt to make an HTTP GET to the same host.

There isn't yet any memory of TLS failures on a per-host basis though.

@fmigneault fmigneault mentioned this issue Oct 7, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
builder:linkcheck type:bug
Projects
None yet
Milestone
some future version
Development

No branches or pull requests
4 participants
@webknjaz @tk0miya @AA-Turner @jayaddison