[Bug 2036679] Re: security sources.list needs fixing on upgrade
Olivier Gayot
2036679 at bugs.launchpad.net
Thu Sep 28 15:43:51 UTC 2023
I'd like to provide some more information
1. Affected installs done offline would have left the systems configured
to use archive.ubuntu.com rather than $CC.archive.ubuntu.com. The
country-code is determined using a query to geoip.ubuntu.com. So no
network means no country mirror. Moreover, Subiquity runs mirror testing
against the country mirror and can automatically revert to the non-
country alternative (i.e., archive.ubuntu.com) if it seems to work
better.
2. The ubuntu-server installer allows the user to customize the URL that
is used to access the $release and $release-updates pockets. Since the
URL was mistakenly applied to the security pocket as well, it is
possible (although uncommon) that some people have their system
configured with arbitrary URLs for the security pocket. A similar
configuration can only be achieved on ubuntu-desktop by means of
autoinstall directives.
3. On ports architectures (e.g., arm64, s390x, riscv64, ...) the systems were previously expected to have ports.ubuntu.com/ubuntu-ports set for the -security pocket - but I didn't find an official statement.
Affected installs would likely show $CC.ports.ubuntu.com instead of ports.ubuntu.com for the -security pocket.
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to ubuntu-release-upgrader in
Ubuntu.
https://bugs.launchpad.net/bugs/2036679
Title:
security sources.list needs fixing on upgrade
Status in ubuntu-release-upgrader package in Ubuntu:
New
Status in ubuntu-release-upgrader source package in Mantic:
New
Bug description:
subiquity was inadvertently configuring installed systems to use
CC.archive.ubuntu.com as the mirror for the security pocket, instead
of security.ubuntu.com.
This has been fixed in subiquity, but installed systems still have the
wrong config.
We need quirking to fix this on upgrade.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ubuntu-release-upgrader/+bug/2036679/+subscriptions
More information about the foundations-bugs
mailing list