[Group.of.nepali.translators] [Bug 1999909] Re: pro client times out when setting an https_proxy that uses HTTPS itself
This bug was fixed in the package ubuntu-advantage-tools - 29.4~18.04 --- ubuntu-advantage-tools (29.4~18.04) bionic; urgency=medium * Backport new upstream release: (LP: #2029144) to bionic ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:19 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Xenial) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/109 Title: pro client times out when setting an https_proxy that uses HTTPS itself Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Bug description: [ Impact ] User that use a TLS-in-TLS proxy are unable to properly use it in the Pro client since the network libraries we are using do not support that type of proxy configuration. Therefore, users cannot properly attach and access many of the service the Pro client delivers. [ Test Plan ] We will verify that the Pro client now supports that type of proxy through an integration test that was created specifically for this issue. We will attach the test results of running this integration test here [ Where problems could occur ] We are using pycurl to add support for this type of proxy. We only make requests using this library if all of the following requirements are true: - The target url scheme is https - The target host is not in no_proxy - An https_proxy is configured either via pro's config or via environment - The https_proxy url scheme is https Therefore, the only problems that can occur are that we either use pycurl for non TLS-in-TLS proxies or that we don't use it for valid TLS-in-TLS proxies. In the case where we use pycurl for non TLS-in-TLS proxies, it should not be a huge issue, as we expect pycurl to still handle the request appropriately. And we believe our checks are sufficient to avoid us not detecting a TLS-in-TLS proxy, so we consider this a minor risk [ Original Description ] When attempting to set an https_proxy where the proxy URL itself uses HTTPS, the process times out. Judging from strace() output, the client does not attempt to negotiate TLS, and instead sends plaintext HTTP to the proxy, which ignores it until the process times out. Reproduction: root@foobar:~# pro config set
[Group.of.nepali.translators] [Bug 1999909] Re: pro client times out when setting an https_proxy that uses HTTPS itself
This bug was fixed in the package ubuntu-advantage-tools - 29.4~22.04 --- ubuntu-advantage-tools (29.4~22.04) jammy; urgency=medium * Backport new upstream release: (LP: #2029144) to jammy ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:29 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Jammy) Status: Fix Committed => Fix Released ** Changed in: ubuntu-advantage-tools (Ubuntu Focal) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/109 Title: pro client times out when setting an https_proxy that uses HTTPS itself Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Bug description: [ Impact ] User that use a TLS-in-TLS proxy are unable to properly use it in the Pro client since the network libraries we are using do not support that type of proxy configuration. Therefore, users cannot properly attach and access many of the service the Pro client delivers. [ Test Plan ] We will verify that the Pro client now supports that type of proxy through an integration test that was created specifically for this issue. We will attach the test results of running this integration test here [ Where problems could occur ] We are using pycurl to add support for this type of proxy. We only make requests using this library if all of the following requirements are true: - The target url scheme is https - The target host is not in no_proxy - An https_proxy is configured either via pro's config or via environment - The https_proxy url scheme is https Therefore, the only problems that can occur are that we either use pycurl for non TLS-in-TLS proxies or that we don't use it for valid TLS-in-TLS proxies. In the case where we use pycurl for non TLS-in-TLS proxies, it should not be a huge issue, as we expect pycurl to still handle the request appropriately. And we believe our checks are sufficient to avoid us not detecting a TLS-in-TLS proxy, so we consider this a minor risk [ Original Description ] When attempting to set an https_proxy where the proxy URL itself uses HTTPS, the process times out. Judging from strace() output, the client does not attempt to negotiate TLS, and instead sends plaintext HTTP to the proxy, which ignores it until the
[Group.of.nepali.translators] [Bug 1999909] Re: pro client times out when setting an https_proxy that uses HTTPS itself
This bug was fixed in the package ubuntu-advantage-tools - 29.4~20.04 --- ubuntu-advantage-tools (29.4~20.04) focal; urgency=medium * Backport new upstream release: (LP: #2029144) to focal ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:24 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Bionic) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/109 Title: pro client times out when setting an https_proxy that uses HTTPS itself Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Bug description: [ Impact ] User that use a TLS-in-TLS proxy are unable to properly use it in the Pro client since the network libraries we are using do not support that type of proxy configuration. Therefore, users cannot properly attach and access many of the service the Pro client delivers. [ Test Plan ] We will verify that the Pro client now supports that type of proxy through an integration test that was created specifically for this issue. We will attach the test results of running this integration test here [ Where problems could occur ] We are using pycurl to add support for this type of proxy. We only make requests using this library if all of the following requirements are true: - The target url scheme is https - The target host is not in no_proxy - An https_proxy is configured either via pro's config or via environment - The https_proxy url scheme is https Therefore, the only problems that can occur are that we either use pycurl for non TLS-in-TLS proxies or that we don't use it for valid TLS-in-TLS proxies. In the case where we use pycurl for non TLS-in-TLS proxies, it should not be a huge issue, as we expect pycurl to still handle the request appropriately. And we believe our checks are sufficient to avoid us not detecting a TLS-in-TLS proxy, so we consider this a minor risk [ Original Description ] When attempting to set an https_proxy where the proxy URL itself uses HTTPS, the process times out. Judging from strace() output, the client does not attempt to negotiate TLS, and instead sends plaintext HTTP to the proxy, which ignores it until the process times out. Reproduction: root@foobar:~# pro config set
[Group.of.nepali.translators] [Bug 1999909] Re: pro client times out when setting an https_proxy that uses HTTPS itself
This bug was fixed in the package ubuntu-advantage-tools - 29.4~23.04 --- ubuntu-advantage-tools (29.4~23.04) lunar; urgency=medium * Backport new upstream release: (LP: #2029144) to lunar ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:34 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Lunar) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/109 Title: pro client times out when setting an https_proxy that uses HTTPS itself Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Bug description: [ Impact ] User that use a TLS-in-TLS proxy are unable to properly use it in the Pro client since the network libraries we are using do not support that type of proxy configuration. Therefore, users cannot properly attach and access many of the service the Pro client delivers. [ Test Plan ] We will verify that the Pro client now supports that type of proxy through an integration test that was created specifically for this issue. We will attach the test results of running this integration test here [ Where problems could occur ] We are using pycurl to add support for this type of proxy. We only make requests using this library if all of the following requirements are true: - The target url scheme is https - The target host is not in no_proxy - An https_proxy is configured either via pro's config or via environment - The https_proxy url scheme is https Therefore, the only problems that can occur are that we either use pycurl for non TLS-in-TLS proxies or that we don't use it for valid TLS-in-TLS proxies. In the case where we use pycurl for non TLS-in-TLS proxies, it should not be a huge issue, as we expect pycurl to still handle the request appropriately. And we believe our checks are sufficient to avoid us not detecting a TLS-in-TLS proxy, so we consider this a minor risk [ Original Description ] When attempting to set an https_proxy where the proxy URL itself uses HTTPS, the process times out. Judging from strace() output, the client does not attempt to negotiate TLS, and instead sends plaintext HTTP to the proxy, which ignores it until the process times out. Reproduction: root@foobar:~# pro config set
[Group.of.nepali.translators] [Bug 2025731] Re: Unexpected error occurred by ua detach
This bug was fixed in the package ubuntu-advantage-tools - 29.4~20.04 --- ubuntu-advantage-tools (29.4~20.04) focal; urgency=medium * Backport new upstream release: (LP: #2029144) to focal ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:24 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Bionic) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/2025731 Title: Unexpected error occurred by ua detach Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Bug description: [ Impact ] Due to this race condition, user may seen unhanded exception when running a Pro command. Additionally, since the race condition is not obvious, users will be really confused on why the command failed in the first place [ Test Plan ] Because of the nature of this race condition, it is not straightforward to reproduce this issue. Our fix is basically trying to remove the file and handling the exception instead of checking if the file exists and then removing it. Since we call the function that generated this issue on several Pro commands that are covered in the integration test, we will assume that the full run will guarantee the we have not changed any behavior while addressing the race condition. [ Where problems could occur ] We don't believe any problems can occur here, as we are using a less error prone approach to deleting files in Python [ Original Description ] On Bionic, ua attach was successful, but a subsequent ua detach failed. ProblemType: Bug DistroRelease: Ubuntu 18.04 Package: ubuntu-advantage-tools 27.14.4~18.04 ProcVersionSignature: Ubuntu 5.4.0-84.94~18.04.1-generic 5.4.133 Uname: Linux 5.4.0-84-generic x86_64 NonfreeKernelModules: lkp_Ubuntu_5_4_0_84_94_generic_94 ApportVersion: 2.20.9-0ubuntu7.26 Architecture: amd64 CurrentDesktop: ubuntu:GNOME Date: Tue Jul 4 10:12:41 2023 InstallationDate: Installed on 2023-06-28 (5 days ago) InstallationMedia: Ubuntu 18.04.6 LTS "Bionic Beaver" - Release amd64 (20210915) SourcePackage: ubuntu-advantage-tools UpgradeStatus: No upgrade log present (probably fresh install) cloud-id.txt-error: Invalid command specified 'cloud-id'. livepatch-status.txt-error: Failed running command '/snap/bin/canonical-livepatch
[Group.of.nepali.translators] [Bug 2025731] Re: Unexpected error occurred by ua detach
This bug was fixed in the package ubuntu-advantage-tools - 29.4~18.04 --- ubuntu-advantage-tools (29.4~18.04) bionic; urgency=medium * Backport new upstream release: (LP: #2029144) to bionic ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:19 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Xenial) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/2025731 Title: Unexpected error occurred by ua detach Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Bug description: [ Impact ] Due to this race condition, user may seen unhanded exception when running a Pro command. Additionally, since the race condition is not obvious, users will be really confused on why the command failed in the first place [ Test Plan ] Because of the nature of this race condition, it is not straightforward to reproduce this issue. Our fix is basically trying to remove the file and handling the exception instead of checking if the file exists and then removing it. Since we call the function that generated this issue on several Pro commands that are covered in the integration test, we will assume that the full run will guarantee the we have not changed any behavior while addressing the race condition. [ Where problems could occur ] We don't believe any problems can occur here, as we are using a less error prone approach to deleting files in Python [ Original Description ] On Bionic, ua attach was successful, but a subsequent ua detach failed. ProblemType: Bug DistroRelease: Ubuntu 18.04 Package: ubuntu-advantage-tools 27.14.4~18.04 ProcVersionSignature: Ubuntu 5.4.0-84.94~18.04.1-generic 5.4.133 Uname: Linux 5.4.0-84-generic x86_64 NonfreeKernelModules: lkp_Ubuntu_5_4_0_84_94_generic_94 ApportVersion: 2.20.9-0ubuntu7.26 Architecture: amd64 CurrentDesktop: ubuntu:GNOME Date: Tue Jul 4 10:12:41 2023 InstallationDate: Installed on 2023-06-28 (5 days ago) InstallationMedia: Ubuntu 18.04.6 LTS "Bionic Beaver" - Release amd64 (20210915) SourcePackage: ubuntu-advantage-tools UpgradeStatus: No upgrade log present (probably fresh install) cloud-id.txt-error: Invalid command specified 'cloud-id'. livepatch-status.txt-error: Failed running command '/snap/bin/canonical-livepatch
[Group.of.nepali.translators] [Bug 2025731] Re: Unexpected error occurred by ua detach
This bug was fixed in the package ubuntu-advantage-tools - 29.4~23.04 --- ubuntu-advantage-tools (29.4~23.04) lunar; urgency=medium * Backport new upstream release: (LP: #2029144) to lunar ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:34 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Lunar) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/2025731 Title: Unexpected error occurred by ua detach Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Bug description: [ Impact ] Due to this race condition, user may seen unhanded exception when running a Pro command. Additionally, since the race condition is not obvious, users will be really confused on why the command failed in the first place [ Test Plan ] Because of the nature of this race condition, it is not straightforward to reproduce this issue. Our fix is basically trying to remove the file and handling the exception instead of checking if the file exists and then removing it. Since we call the function that generated this issue on several Pro commands that are covered in the integration test, we will assume that the full run will guarantee the we have not changed any behavior while addressing the race condition. [ Where problems could occur ] We don't believe any problems can occur here, as we are using a less error prone approach to deleting files in Python [ Original Description ] On Bionic, ua attach was successful, but a subsequent ua detach failed. ProblemType: Bug DistroRelease: Ubuntu 18.04 Package: ubuntu-advantage-tools 27.14.4~18.04 ProcVersionSignature: Ubuntu 5.4.0-84.94~18.04.1-generic 5.4.133 Uname: Linux 5.4.0-84-generic x86_64 NonfreeKernelModules: lkp_Ubuntu_5_4_0_84_94_generic_94 ApportVersion: 2.20.9-0ubuntu7.26 Architecture: amd64 CurrentDesktop: ubuntu:GNOME Date: Tue Jul 4 10:12:41 2023 InstallationDate: Installed on 2023-06-28 (5 days ago) InstallationMedia: Ubuntu 18.04.6 LTS "Bionic Beaver" - Release amd64 (20210915) SourcePackage: ubuntu-advantage-tools UpgradeStatus: No upgrade log present (probably fresh install) cloud-id.txt-error: Invalid command specified 'cloud-id'. livepatch-status.txt-error: Failed running command '/snap/bin/canonical-livepatch
[Group.of.nepali.translators] [Bug 2025731] Re: Unexpected error occurred by ua detach
This bug was fixed in the package ubuntu-advantage-tools - 29.4~22.04 --- ubuntu-advantage-tools (29.4~22.04) jammy; urgency=medium * Backport new upstream release: (LP: #2029144) to jammy ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:29 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Jammy) Status: Fix Committed => Fix Released ** Changed in: ubuntu-advantage-tools (Ubuntu Focal) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/2025731 Title: Unexpected error occurred by ua detach Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Bug description: [ Impact ] Due to this race condition, user may seen unhanded exception when running a Pro command. Additionally, since the race condition is not obvious, users will be really confused on why the command failed in the first place [ Test Plan ] Because of the nature of this race condition, it is not straightforward to reproduce this issue. Our fix is basically trying to remove the file and handling the exception instead of checking if the file exists and then removing it. Since we call the function that generated this issue on several Pro commands that are covered in the integration test, we will assume that the full run will guarantee the we have not changed any behavior while addressing the race condition. [ Where problems could occur ] We don't believe any problems can occur here, as we are using a less error prone approach to deleting files in Python [ Original Description ] On Bionic, ua attach was successful, but a subsequent ua detach failed. ProblemType: Bug DistroRelease: Ubuntu 18.04 Package: ubuntu-advantage-tools 27.14.4~18.04 ProcVersionSignature: Ubuntu 5.4.0-84.94~18.04.1-generic 5.4.133 Uname: Linux 5.4.0-84-generic x86_64 NonfreeKernelModules: lkp_Ubuntu_5_4_0_84_94_generic_94 ApportVersion: 2.20.9-0ubuntu7.26 Architecture: amd64 CurrentDesktop: ubuntu:GNOME Date: Tue Jul 4 10:12:41 2023 InstallationDate: Installed on 2023-06-28 (5 days ago) InstallationMedia: Ubuntu 18.04.6 LTS "Bionic Beaver" - Release amd64 (20210915) SourcePackage: ubuntu-advantage-tools UpgradeStatus: No upgrade log present (probably fresh install) cloud-id.txt-error: Invalid command specified
[Group.of.nepali.translators] [Bug 2029144] Re: [SRU] ubuntu-advantage-tools (28.1 -> 29) Xenial, Bionic, Focal, Jammy, Lunar
This bug was fixed in the package ubuntu-advantage-tools - 29.4~18.04 --- ubuntu-advantage-tools (29.4~18.04) bionic; urgency=medium * Backport new upstream release: (LP: #2029144) to bionic ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:19 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Xenial) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/2029144 Title: [SRU] ubuntu-advantage-tools (28.1 -> 29) Xenial, Bionic, Focal, Jammy, Lunar Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Status in ubuntu-advantage-tools source package in Mantic: Fix Released Bug description: [Impact] This is for the release of the latest upstream version of the Ubuntu Pro Client, which contain new features that are desirable on all releases. 29 has several notable features: - Add support for new Anbox Cloud and Landscape services - Add support for TLS-in-TLS proxies - Add three new API endpoints: * u.apt_news.current_news.v1: Deliver the content of the apt-news message delivered during apt upgrade * u.pro.security.fix.plan.cve.v1: Deliver the required plan to fix a given CVE, without executing any of the steps * u.pro.security.fix.plan.usn.v1: Deliver the required plan to fix a given USN, without executing any of the steps - Add more data to the API endpoint: u.pro.security.status.reboot_required.v1 * The additional data allow users to understand the decision making process for the endpoint - Update priority for packages delivered through esm-infra and esm-apps * This will guarantee that users will always have the security patches provided by those services See the changelog entry below for a full list of changes and bugs. [Test Case] The following development and SRU process was followed: https://wiki.ubuntu.com/UbuntuAdvantageToolsUpdates The ubuntu-advantage-tools team will be in charge of attaching the artifacts and console output of the appropriate run to the bug. ubuntu-advantage-tools team members will not mark ‘verification-done’ until this has happened. [Regression Potential] This release mostly entails new features, the only exception being the priority change regarding the esm services. To guarantee that priority, we will
[Group.of.nepali.translators] [Bug 2029144] Re: [SRU] ubuntu-advantage-tools (28.1 -> 29) Xenial, Bionic, Focal, Jammy, Lunar
This bug was fixed in the package ubuntu-advantage-tools - 29.4~20.04 --- ubuntu-advantage-tools (29.4~20.04) focal; urgency=medium * Backport new upstream release: (LP: #2029144) to focal ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:24 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Bionic) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/2029144 Title: [SRU] ubuntu-advantage-tools (28.1 -> 29) Xenial, Bionic, Focal, Jammy, Lunar Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Status in ubuntu-advantage-tools source package in Mantic: Fix Released Bug description: [Impact] This is for the release of the latest upstream version of the Ubuntu Pro Client, which contain new features that are desirable on all releases. 29 has several notable features: - Add support for new Anbox Cloud and Landscape services - Add support for TLS-in-TLS proxies - Add three new API endpoints: * u.apt_news.current_news.v1: Deliver the content of the apt-news message delivered during apt upgrade * u.pro.security.fix.plan.cve.v1: Deliver the required plan to fix a given CVE, without executing any of the steps * u.pro.security.fix.plan.usn.v1: Deliver the required plan to fix a given USN, without executing any of the steps - Add more data to the API endpoint: u.pro.security.status.reboot_required.v1 * The additional data allow users to understand the decision making process for the endpoint - Update priority for packages delivered through esm-infra and esm-apps * This will guarantee that users will always have the security patches provided by those services See the changelog entry below for a full list of changes and bugs. [Test Case] The following development and SRU process was followed: https://wiki.ubuntu.com/UbuntuAdvantageToolsUpdates The ubuntu-advantage-tools team will be in charge of attaching the artifacts and console output of the appropriate run to the bug. ubuntu-advantage-tools team members will not mark ‘verification-done’ until this has happened. [Regression Potential] This release mostly entails new features, the only exception being the priority change regarding the esm services. To guarantee that priority, we will
[Group.of.nepali.translators] [Bug 2029144] Re: [SRU] ubuntu-advantage-tools (28.1 -> 29) Xenial, Bionic, Focal, Jammy, Lunar
This bug was fixed in the package ubuntu-advantage-tools - 29.4~22.04 --- ubuntu-advantage-tools (29.4~22.04) jammy; urgency=medium * Backport new upstream release: (LP: #2029144) to jammy ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:29 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Jammy) Status: Fix Committed => Fix Released ** Changed in: ubuntu-advantage-tools (Ubuntu Focal) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/2029144 Title: [SRU] ubuntu-advantage-tools (28.1 -> 29) Xenial, Bionic, Focal, Jammy, Lunar Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Status in ubuntu-advantage-tools source package in Mantic: Fix Released Bug description: [Impact] This is for the release of the latest upstream version of the Ubuntu Pro Client, which contain new features that are desirable on all releases. 29 has several notable features: - Add support for new Anbox Cloud and Landscape services - Add support for TLS-in-TLS proxies - Add three new API endpoints: * u.apt_news.current_news.v1: Deliver the content of the apt-news message delivered during apt upgrade * u.pro.security.fix.plan.cve.v1: Deliver the required plan to fix a given CVE, without executing any of the steps * u.pro.security.fix.plan.usn.v1: Deliver the required plan to fix a given USN, without executing any of the steps - Add more data to the API endpoint: u.pro.security.status.reboot_required.v1 * The additional data allow users to understand the decision making process for the endpoint - Update priority for packages delivered through esm-infra and esm-apps * This will guarantee that users will always have the security patches provided by those services See the changelog entry below for a full list of changes and bugs. [Test Case] The following development and SRU process was followed: https://wiki.ubuntu.com/UbuntuAdvantageToolsUpdates The ubuntu-advantage-tools team will be in charge of attaching the artifacts and console output of the appropriate run to the bug. ubuntu-advantage-tools team members will not mark ‘verification-done’ until this has happened. [Regression Potential] This release mostly entails new features, the only exception
[Group.of.nepali.translators] [Bug 2029144] Re: [SRU] ubuntu-advantage-tools (28.1 -> 29) Xenial, Bionic, Focal, Jammy, Lunar
This bug was fixed in the package ubuntu-advantage-tools - 29.4~23.04 --- ubuntu-advantage-tools (29.4~23.04) lunar; urgency=medium * Backport new upstream release: (LP: #2029144) to lunar ubuntu-advantage-tools (29.4) mantic; urgency=medium * esm: remove static config file that pin packages from esm-infra and esm-apps ubuntu-advantage-tools (29.3) mantic; urgency=medium * api: fix circular import that prevents enabled_services endpoint from being imported ubuntu-advantage-tools (29.2) mantic; urgency=medium * d/ubuntu-advantage-tools.postinst: - replace deb-systemd-invoke back to systemctl * proxy: alert user if ca-certificates is not installed when using a TLS-in-TLS proxy ubuntu-advantage-tools (29.1) mantic; urgency=medium * anbox: allow enabling service on container using the --access-only flag ubuntu-advantage-tools (29) mantic; urgency=medium * d/control: - update links for the project github page * d/copyright: - bump date to 2023 - update upstream-name and source * d/ubuntu-advantage-tools.{postinst,postrm}: - rename repo GPG keys from -advantage to -pro (GH: #1539) - replace calls to systemctl for deb-systemd-invoke * d/README.source: - add file with basic explanation on the source code (GH: #2463) * New upstream release 29 (LP: #2029144) - anbox-cloud: add support for service - api + new endpoint: u.pro.security.fix.plan.cve.v1 + new endpoint: u.pro.security.fix.plan.usn.v1 + new endpoint: u.apt_news.current_news.v1 + add more data explaining the decision made for u.pro.security.status.reboot_required.v1 endpoint - contract: + send activityInfo after cli attach, enable and disable + start recording when the machine has attached to a Pro subscription + more reliable detection when running on a docker container - esm: create static files to pin packages from esm-infra and esm-apps with higher priority (GH: #2580) - fix: ignore non-USN items on related usns - landscape: add support for the service - logging: update to ubuntupro logging namespace - proxy: add support for TLS-in-TLS proxy (LP: #109) - snapd: look for the snapd package instead of the snap command - system: try/except logic to remove files and folders (LP: #2025731) -- Lucas Moura Mon, 11 Sep 2023 12:28:34 -0300 ** Changed in: ubuntu-advantage-tools (Ubuntu Lunar) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/2029144 Title: [SRU] ubuntu-advantage-tools (28.1 -> 29) Xenial, Bionic, Focal, Jammy, Lunar Status in ubuntu-advantage-tools package in Ubuntu: Fix Released Status in ubuntu-advantage-tools source package in Xenial: Fix Released Status in ubuntu-advantage-tools source package in Bionic: Fix Released Status in ubuntu-advantage-tools source package in Focal: Fix Released Status in ubuntu-advantage-tools source package in Jammy: Fix Released Status in ubuntu-advantage-tools source package in Lunar: Fix Released Status in ubuntu-advantage-tools source package in Mantic: Fix Released Bug description: [Impact] This is for the release of the latest upstream version of the Ubuntu Pro Client, which contain new features that are desirable on all releases. 29 has several notable features: - Add support for new Anbox Cloud and Landscape services - Add support for TLS-in-TLS proxies - Add three new API endpoints: * u.apt_news.current_news.v1: Deliver the content of the apt-news message delivered during apt upgrade * u.pro.security.fix.plan.cve.v1: Deliver the required plan to fix a given CVE, without executing any of the steps * u.pro.security.fix.plan.usn.v1: Deliver the required plan to fix a given USN, without executing any of the steps - Add more data to the API endpoint: u.pro.security.status.reboot_required.v1 * The additional data allow users to understand the decision making process for the endpoint - Update priority for packages delivered through esm-infra and esm-apps * This will guarantee that users will always have the security patches provided by those services See the changelog entry below for a full list of changes and bugs. [Test Case] The following development and SRU process was followed: https://wiki.ubuntu.com/UbuntuAdvantageToolsUpdates The ubuntu-advantage-tools team will be in charge of attaching the artifacts and console output of the appropriate run to the bug. ubuntu-advantage-tools team members will not mark ‘verification-done’ until this has happened. [Regression Potential] This release mostly entails new features, the only exception being the priority change regarding the esm services. To guarantee that priority, we will deliver
[Group.of.nepali.translators] [Bug 1593407] Re: Guest session cannot run snaps
** Project changed: snappy => snapd -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1593407 Title: Guest session cannot run snaps Status in Light Display Manager: Confirmed Status in snapd: Confirmed Status in Ubuntu MATE: Confirmed Status in Desktop: New Status in firefox package in Ubuntu: Confirmed Status in lightdm package in Ubuntu: Confirmed Status in snapd package in Ubuntu: Confirmed Status in firefox source package in Xenial: Confirmed Status in lightdm source package in Xenial: Confirmed Status in snapd source package in Xenial: Confirmed Bug description: I'm using Ubuntu 16.04. The guest session cannot execute snaps, because of a permission error. The LightDM's guest session AppArmor profile is not allowing access to /snap and other needed files and folders. To manage notifications about this bug go to: https://bugs.launchpad.net/lightdm/+bug/1593407/+subscriptions ___ Mailing list: https://launchpad.net/~group.of.nepali.translators Post to : group.of.nepali.translators@lists.launchpad.net Unsubscribe : https://launchpad.net/~group.of.nepali.translators More help : https://help.launchpad.net/ListHelp
[Group.of.nepali.translators] [Bug 1659719] Re: ssh can't call a binary from a snap without the full path
** Project changed: snappy => snapd -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1659719 Title: ssh can't call a binary from a snap without the full path Status in snapd: Fix Committed Status in livecd-rootfs package in Ubuntu: Fix Released Status in openssh package in Ubuntu: Confirmed Status in pam package in Ubuntu: Fix Released Status in livecd-rootfs source package in Xenial: New Status in openssh source package in Xenial: Won't Fix Status in pam source package in Xenial: Fix Released Status in livecd-rootfs source package in Bionic: New Status in openssh source package in Bionic: Won't Fix Status in pam source package in Bionic: Fix Released Status in livecd-rootfs source package in Focal: New Status in openssh source package in Focal: Won't Fix Status in pam source package in Focal: Fix Released Status in livecd-rootfs source package in Groovy: Fix Released Status in openssh source package in Groovy: Won't Fix Status in pam source package in Groovy: Fix Released Status in openssh package in Debian: New Bug description: [impact] ssh can't call a binary from a snap, it will only work using the full path. [test case] Create a container. Install the go snap (and make sure golang-go is not installed). Run "ssh go version" and check the binary is found. [regression potential] It's a pam change an they are always a bit scary but the code follows the existing pattern for updating PATH in /etc/environment and has been tested in groovy. [original description] Let's say I have the hello snap installed in 192.168.122.24. Then: elopio@ubuntu-xenial:~/mosh$ ssh 192.168.122.24 hello elopio@192.168.122.24's password: bash: hello: command not found elopio@ubuntu-xenial:~/mosh$ ssh 192.168.122.24 /snap/bin/hello elopio@192.168.122.24's password: Hello, world! To manage notifications about this bug go to: https://bugs.launchpad.net/snapd/+bug/1659719/+subscriptions ___ Mailing list: https://launchpad.net/~group.of.nepali.translators Post to : group.of.nepali.translators@lists.launchpad.net Unsubscribe : https://launchpad.net/~group.of.nepali.translators More help : https://help.launchpad.net/ListHelp
[Group.of.nepali.translators] [Bug 1580740] Re: [SRU] Cannot open a browser link from a snap that provides a link
** Project changed: snappy => snapd -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1580740 Title: [SRU] Cannot open a browser link from a snap that provides a link Status in snapd: Triaged Status in snapd-xdg-open package in Ubuntu: Fix Released Status in snapd-xdg-open source package in Xenial: Fix Released Bug description: [Impact] Links in snaps cannot be opened on the host. [Test Case] Steps to reproduce: - Run `sudo snap install telegram-sergiusens` - Launch telegram-sergiusens.sergiusens (or from the dash) - Receive a link - Try an open the link. The reason for it not working is that there is no browser in ubuntu- core and there is no handler that knows how to redirect this to the classic Ubuntu instance. [Regression Potential] * The fix is a new package to be pulled in by snapd, so there is little risk of regression [Other Info] * snapd-xdg-open is just one piece of two that are needed to fix this bug. The other piece is a fake xdg-open script that is available in the OS snap, which simply makes a D-Bus method invocation to the service in snapd-xdg-open To manage notifications about this bug go to: https://bugs.launchpad.net/snapd/+bug/1580740/+subscriptions ___ Mailing list: https://launchpad.net/~group.of.nepali.translators Post to : group.of.nepali.translators@lists.launchpad.net Unsubscribe : https://launchpad.net/~group.of.nepali.translators More help : https://help.launchpad.net/ListHelp
[Group.of.nepali.translators] [Bug 1721223] Re: Networkd fail to set ip address between leases if ip address changes on UbuntuCore
** Project changed: snappy => snapd -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1721223 Title: Networkd fail to set ip address between leases if ip address changes on UbuntuCore Status in snapd: Fix Committed Status in systemd package in Ubuntu: Fix Released Status in systemd source package in Xenial: Fix Released Status in systemd source package in Zesty: Won't Fix Status in systemd source package in Artful: Fix Released Bug description: [Impact] * networkd fails to renew a lease, specifically it fails to change IPv4 address via DHCP renew/rebind. * networkd relies on a kernel feature to promote secondary IPv4 address to primary, upon primary address lease expiry. * this sysctl tunable was not enabled by default in systemd. [Test Case] Add a device, and assign two IPv4 addresses. First one, with a short lease time. Second one, with a different ip and a longer lease time. Second one should be treated as secondary ip address, and upon expiry of the first one, should be promoted and become primary ip address. The below scripted instructions simulate this: sudo ip link add name testleases type dummy sudo ip address add 192.0.2.10/27 dev testleases \ valid_lft 5 preferred_lft 5 sudo ip address add 192.0.2.11/27 dev testleases \ valid_lft 11 preferred_lft 11 ip address list dev testleases | \ grep -q 'inet 192.0.2.10/27 scope global dynamic testleases' \ && echo ok || echo not ok ip address list dev testleases | \ grep -q 'inet 192.0.2.11/27 scope global secondary dynamic testleases' \ && echo ok || echo not ok sleep 6 ip address list dev testleases | \ grep -q 'inet 192.0.2.11/27 scope global dynamic testleases' \ && echo ok || echo not ok sudo ip link del dev testleases [Regression Potential] * This changes the default kernel behaviour, previously upon expiry of the primary address, secondary addresses were removed as well. Which is imho silly. * comparing networkd renewal with isc-dhcp renewal the semantics are quite different. Upon acquiring new ip address, isc-dhcp would instantly flush existing ip address, and add a new one. Networkd add the new address as secondary, and waits for old one to expire first before promoting / switching to using the new ip address. IMHO kernel should have an API to promote secondary ip address to a primary one. * This update also applies other safe-looking options, which are currently also already applied via sysctls shipped in other packages # Source route verification net.ipv4.conf.default.rp_filter = 1 net.ipv4.conf.all.rp_filter = 1 # Do not accept source routing net.ipv4.conf.default.accept_source_route = 0 net.ipv4.conf.all.accept_source_route = 0 # Enable hard and soft link protection fs.protected_hardlinks = 1 fs.protected_symlinks = 1 * This update also applies the following upstream/bufferbloat.net recommended setting # Fair Queue CoDel packet scheduler to fight bufferbloat net.core.default_qdisc = fq_codel * [~racb] There are complex network setups out there, such as HA with corosync/pacemaker, OpenStack Neutron, and that kind of thing. If this fix were SRU'd, will all of these things in the wild cope with this sysctl change? [Other Info] * Original bug report Hi there, we found a replicable issue that involves the Ubuntu Core networking and causes complete loss of connectivity. We run a custom board with ubuntu core: the architecure is amrhf. We replicated this issue with an official Ubuntu Core image on a Raspberry Pi: other platform was been tested. It shows that it is a snap core problem which interests networkd: we use the default network stack based on networkd + netplan. Below steps to replicate the issue. 1)Setup a dhcp server for lease of about some minutes (i.e 10 minutes). 2)Boot the board and wait for get an ip from dhcp server 3)Before the lease expires, set a reservation for a different ip address Depending on lease duration before the lease expires( for 10 minute we have 2 minutes before ), networkd configure the new address in addition to the previous one. When the lease expire both ip address ( the prevoius and the new one ) disappear from the interested network interface. Depending on lease duration before the second lease expires ( for 10 minure we have 2 minutes before ) networkd configure only the new ip address on the network interface and the ping toward an outside host work properly. During the test the dhcp server records correctly leases and their duration. We check directly from console the network interface setting with the tool ip, checking continuously the value for ip address and valid_lft fields for the interested network interface. Please note that if
[Group.of.nepali.translators] [Bug 1732150] Re: Unbound behaviour changes (wrong) when domain-insecure is set for a stub zone with multiple stub-addr(s)
** Changed in: unbound (Ubuntu Bionic) Status: Incomplete => Won't Fix -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1732150 Title: Unbound behaviour changes (wrong) when domain-insecure is set for a stub zone with multiple stub-addr(s) Status in Unbound - Caching DNS Resolver: Unknown Status in unbound package in Ubuntu: Fix Released Status in unbound source package in Trusty: Won't Fix Status in unbound source package in Xenial: Won't Fix Status in unbound source package in Bionic: Won't Fix Bug description: [Impact] * DNSSEC setup with domain-insecure set fail to work. The lookup will process all available servers leading to a very long lookup time. * Backport upstream fix to stop checking for further trust points in that case. [Test Case] * TBD: Waiting for the bug reporter to provide the initial steps that we migth refine [Regression Potential] * The change will make it stop iterating for further DNSSEC records in certain configuration cases (domain-insecure). But this is just what the respective configuration is meant to do (see http://manpages.ubuntu.com/manpages/bionic/man5/unbound.conf.5.html) So it should speed up certain cases were so far it still iterated through servers, but giving that up early is just what it shoudl be per config. I can think of a slight behavior change due to being faster now, but the end result should not change due to this. With that background I could think of two regressions: a) the faster lookup makes automation wonder b) there would be a condition we (and upstream) missed which would change the actual lookup return Given that the code was not reverted upstream for quite a while I'd think the latter is only theoretical, and the former should be of low risk. [Other Info] * n/a --- Unbound contains a bug when domain-insecure is set for a (stub) zone. This bug is fixed, see https://www.nlnetlabs.nl/bugs- script/show_bug.cgi?id=2882. Can you please backport this to the Trusty package? With regards, Richard Arends To manage notifications about this bug go to: https://bugs.launchpad.net/unbound/+bug/1732150/+subscriptions ___ Mailing list: https://launchpad.net/~group.of.nepali.translators Post to : group.of.nepali.translators@lists.launchpad.net Unsubscribe : https://launchpad.net/~group.of.nepali.translators More help : https://help.launchpad.net/ListHelp
[Group.of.nepali.translators] [Bug 1939974] Proposed package removed from archive
The version of schroot in the proposed pocket of Focal that was purported to fix this bug report has been removed because one or more bugs that were to be fixed by the upload have failed verification and been in this state for more than 10 days. ** Tags removed: verification-needed ** Changed in: schroot (Ubuntu Focal) Status: Confirmed => Invalid -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1939974 Title: E: 15binfmt: touch: cannot touch '/usr/libexec/qemu- binfmt/s390x-binfmt-P': No such file or directory Status in schroot package in Ubuntu: Invalid Status in schroot source package in Trusty: Won't Fix Status in schroot source package in Xenial: Won't Fix Status in schroot source package in Bionic: Won't Fix Status in schroot source package in Focal: Invalid Bug description: [SRU Justification] [Impact] Failed to setup schroot of a foreign arch. [Fix] This has been fixed in debian salsa git commit f6da297a ("schroot- setup: create parent directory for binfmt interpreter"), version 1.6.10-12. [Test Case] $ mk-sbuild --arch s390x jammy [Where problems could occur] This fixes only a static setup script. Unlikely to have any other issue. [Other Info] Only X/T/B/F are proposed for fixing because it should have been fixed in Impish or later. == original bug description == Creating an sbuild chroot for a foreign arch fails on hirsute: $ mk-sbuild --arch s390x impish /usr/sbin/qemu-debootstrap W: qemu-debootstrap is deprecated. Please use regular debootstrap directly I: Running command: debootstrap --arch=s390x --variant=buildd --components=main,restricted,universe,multiverse impish /var/lib/schroot/chroots/impish-s390x http://ports.ubuntu.com/ubuntu-ports I: Target architecture can be executed I: Retrieving InRelease I: Checking Release signature I: Configuring build-essential... I: Configuring libc-bin... I: Base system installed successfully. E: 15binfmt: touch: cannot touch '/var/run/schroot/mount/impish-s390x-a4aa318e-7cda-4f86-bc28-1517d689fdfc/usr/libexec/qemu-binfmt/s390x-binfmt-P': No such file or directory E: 15binfmt: touch: cannot touch '/var/run/schroot/mount/impish-s390x-a4aa318e-7cda-4f86-bc28-1517d689fdfc/usr/libexec/qemu-binfmt/s390x-binfmt-P': No such file or directory E: impish-s390x-a4aa318e-7cda-4f86-bc28-1517d689fdfc: Chroot setup failed: stage=setup-start It seems we need a bump to 1.6.10-12: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983087 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/schroot/+bug/1939974/+subscriptions ___ Mailing list: https://launchpad.net/~group.of.nepali.translators Post to : group.of.nepali.translators@lists.launchpad.net Unsubscribe : https://launchpad.net/~group.of.nepali.translators More help : https://help.launchpad.net/ListHelp