Control: forcemerge 867169 867728
Control: severity 867169 important
Control: tags 867169 +patch
Hi everyone,
Some context, for the unattended-upgrades maintainer: the LTS folks have
noted there is an issue with unattended-upgrades in Debian LTS /
wheezy. It stopped working since the suite names got rotated during the
stretch release, as the wheezy configuration uses the "oldstable"
codename, which now points to jessie.
Two bugs were independently filed about this, which I am merging here.
The patch from #867728 looks good. I think it's also a good practice to
remove the newer suites while we're here, so I have removed the "stable"
and "oldstable" mentions from the config in the attached patch.
This will likely be the last necessary update to that configuration in
wheezy, so it should be okay for the lifetime of LTS.
In jessie and later, the codename is used so this divergence won't be
necessary.
Debdiff attached, I'll upload this to wheezy shortly unless someone else
objects.
Thanks,
A.
--
While the creative works from the 16th century can still be accessed
and used by others, the data in some software programs from the 1990s
is already inaccessible.
- Lawrence Lessig
diff -Nru unattended-upgrades-0.79.5+wheezy2/data/50unattended-upgrades unattended-upgrades-0.79.5+wheezy3/data/50unattended-upgrades
--- unattended-upgrades-0.79.5+wheezy2/data/50unattended-upgrades 2015-06-19 04:45:37.000000000 -0400
+++ unattended-upgrades-0.79.5+wheezy3/data/50unattended-upgrades 2017-07-17 15:12:33.000000000 -0400
@@ -7,8 +7,7 @@
// "o=Debian,a=stable";
// "o=Debian,a=stable-updates";
// "o=Debian,a=proposed-updates";
- "origin=Debian,archive=stable,label=Debian-Security";
- "origin=Debian,archive=oldstable,label=Debian-Security";
+ "origin=Debian,archive=oldoldstable,label=Debian-Security";
};
// List of packages to not update
diff -Nru unattended-upgrades-0.79.5+wheezy2/data/50unattended-upgrades.Debian unattended-upgrades-0.79.5+wheezy3/data/50unattended-upgrades.Debian
--- unattended-upgrades-0.79.5+wheezy2/data/50unattended-upgrades.Debian 2013-06-25 10:17:26.000000000 -0400
+++ unattended-upgrades-0.79.5+wheezy3/data/50unattended-upgrades.Debian 2017-07-17 15:12:33.000000000 -0400
@@ -7,8 +7,7 @@
// "o=Debian,a=stable";
// "o=Debian,a=stable-updates";
// "o=Debian,a=proposed-updates";
- "origin=Debian,archive=stable,label=Debian-Security";
- "origin=Debian,archive=oldstable,label=Debian-Security";
+ "origin=Debian,archive=oldoldstable,label=Debian-Security";
};
// List of packages to not update
diff -Nru unattended-upgrades-0.79.5+wheezy2/debian/changelog unattended-upgrades-0.79.5+wheezy3/debian/changelog
--- unattended-upgrades-0.79.5+wheezy2/debian/changelog 2015-06-29 02:18:42.000000000 -0400
+++ unattended-upgrades-0.79.5+wheezy3/debian/changelog 2017-07-17 15:12:33.000000000 -0400
@@ -1,3 +1,11 @@
+unattended-upgrades (0.79.5+wheezy3) UNRELEASED; urgency=high
+
+ * Non-maintainer upload by the LTS Security Team.
+ * add "oldoldstable" to the default update origins to ensure updates
+ keep working since wheezy+2 (stretch) was released (closes: #867169)
+
+ -- Antoine Beaupré <anar...@debian.org> Mon, 17 Jul 2017 15:12:33 -0400
+
unattended-upgrades (0.79.5+wheezy2) wheezy-security; urgency=high
* fix missing package authentication check for apt
