** Description changed:
+ [Impact]
+ There are some race conditions in unattended-upgrades when it is used in
shutdown mode. It is possible that the network has already been brought down or
for a local file system, like /var/, to be unmounted before the
unattended-upgrades script is run. This then causes the updates not to be
installed thereby making systems less secure - if security updates are enabled.
+
+ [Test Case]
+ Because this is a race condition, I haven't actually been able to recreate
the bug. However, the fix is straightforward and testing for regressions
should be sufficient.
+
+ 1) On a freshly installed system.
+ 2) Modify /etc/apt/apt.conf.d/50unattended-upgrades so that
+ Unattended-Upgrade::InstallOnShutdown "true"; is not commented out.
+ 3) Reboot and watch updates being installed
+ 4) Verify updates were installed by reviewing
/var/log/unattended-upgrades/unattended-upgrades.log
+ 5) Uncomment -updates in 50unattended-upgrades
+
+ Repeats steps 3 and 4 again. There isn't any need to run unattended-
+ upgrades in *not* shutdown mode because we have only modified the
+ systemd service file.
+
+ [Regression Potential]
+ There is little chance of a regression, but because of the change (and this
feature now working better) its possible the shutdown process will take longer
and surprise users.
+
+ Original Description
+ --------------------
+
Using unattended-upgrades 0.90 in "Shutdown mode" on Ubuntu Xenial, we
encounter the following systemd dependencies issues :
- The network is often down when unattended-upgrades is running, so packages
can not be downloaded (can be mitigated by using
APT::Periodic::Download-Upgradeable-Packages "1";) :
- => ERROR An error occurred: 'Could not resolve host: ****.fr'
- => ERROR The URI
'https://****.fr:33000/ubuntu-security/pool/main/libi/libidn/libidn11_1.32-3ubuntu1.1_amd64.deb'
failed to download, aborting
+ => ERROR An error occurred: 'Could not resolve host: ****.fr'
+ => ERROR The URI
'https://****.fr:33000/ubuntu-security/pool/main/libi/libidn/libidn11_1.32-3ubuntu1.1_amd64.deb'
failed to download, aborting
- Important mountpoints like /boot are unmounted before unattended-upgrades
is running, so newer kernels can not be installed properly (ramdisk and grub
configuration can not be generated)
** Changed in: unattended-upgrades (Ubuntu Xenial)
Status: Triaged => In Progress
** Changed in: unattended-upgrades (Ubuntu Yakkety)
Status: Triaged => In Progress
** Changed in: unattended-upgrades (Ubuntu Yakkety)
Assignee: (unassigned) => Brian Murray (brian-murray)
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to unattended-upgrades in
Ubuntu.
https://bugs.launchpad.net/bugs/1618900
Title:
[Xenial/0.90] Systemd dependencies issues when used in "Shutdown mode"
Status in unattended-upgrades package in Ubuntu:
Fix Released
Status in unattended-upgrades source package in Xenial:
In Progress
Status in unattended-upgrades source package in Yakkety:
In Progress
Bug description:
[Impact]
There are some race conditions in unattended-upgrades when it is used in
shutdown mode. It is possible that the network has already been brought down or
for a local file system, like /var/, to be unmounted before the
unattended-upgrades script is run. This then causes the updates not to be
installed thereby making systems less secure - if security updates are enabled.
[Test Case]
Because this is a race condition, I haven't actually been able to recreate
the bug. However, the fix is straightforward and testing for regressions
should be sufficient.
1) On a freshly installed system.
2) Modify /etc/apt/apt.conf.d/50unattended-upgrades so that
Unattended-Upgrade::InstallOnShutdown "true"; is not commented out.
3) Reboot and watch updates being installed
4) Verify updates were installed by reviewing
/var/log/unattended-upgrades/unattended-upgrades.log
5) Uncomment -updates in 50unattended-upgrades
Repeats steps 3 and 4 again. There isn't any need to run unattended-
upgrades in *not* shutdown mode because we have only modified the
systemd service file.
[Regression Potential]
There is little chance of a regression, but because of the change (and this
feature now working better) its possible the shutdown process will take longer
and surprise users.
Original Description
--------------------
Using unattended-upgrades 0.90 in "Shutdown mode" on Ubuntu Xenial, we
encounter the following systemd dependencies issues :
- The network is often down when unattended-upgrades is running, so packages
can not be downloaded (can be mitigated by using
APT::Periodic::Download-Upgradeable-Packages "1";) :
=> ERROR An error occurred: 'Could not resolve host: ****.fr'
=> ERROR The URI
'https://****.fr:33000/ubuntu-security/pool/main/libi/libidn/libidn11_1.32-3ubuntu1.1_amd64.deb'
failed to download, aborting
- Important mountpoints like /boot are unmounted before unattended-upgrades
is running, so newer kernels can not be installed properly (ramdisk and grub
configuration can not be generated)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/unattended-upgrades/+bug/1618900/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
