[Bug 1936640] Re: Download signed version from versioned URL
Julian Andres Klode
1936640 at bugs.launchpad.net
Fri Jul 23 13:30:33 UTC 2021
I checked the build logs for all releases (1.50, 1.40.6, and
1.37~18.04.10) and they all fetched via versioned URLs.
** Tags removed: verification-needed verification-needed-bionic verification-needed-focal verification-needed-hirsute
** Tags added: verification-done verification-done-bionic verification-done-focal verification-done-hirsute
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to shim-signed in Ubuntu.
https://bugs.launchpad.net/bugs/1936640
Title:
Download signed version from versioned URL
Status in shim-signed package in Ubuntu:
Fix Released
Status in shim-signed source package in Bionic:
Fix Committed
Status in shim-signed source package in Focal:
Fix Committed
Status in shim-signed source package in Hirsute:
Fix Committed
Bug description:
[Impact]
shim-signed uploads FTBFS for a couple hours after upload on arm64, as the arm64 builders are behind a proxy with caching, and the proxy caches the old version for the current/ url.
Switch the download-signed script to extract the current version from
the apt cache and download from that instead of the unversioned
symlink. This means it will 404 on first try, and then hopefully the
404 is not cached for hours.
[Test plan]
Check it downloads versioned script during build
[Where problems could occur]
I can imagine that if the version number of "shim" contains special characters, they might need URL escaping. At the moment, we don't have special characters, so it should just work.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/shim-signed/+bug/1936640/+subscriptions
More information about the foundations-bugs
mailing list