[Bug 1936640] Update Released

[Łukasz Zemczak]

The verification of the Stable Release Update for shim-signed has
completed successfully and the package is now being released to
-updates.  Subsequently, the Ubuntu Stable Release Updates Team is being
unsubscribed and will not receive messages about this bug report.  In
the event that you encounter a regression using the package from
-updates please report a new bug using ubuntu-bug and tag the bug report
regression-update so we can easily find any regressions.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to shim-signed in Ubuntu.
https://bugs.launchpad.net/bugs/1936640

Title:
  Download signed version from versioned URL

Status in shim-signed package in Ubuntu:
  Fix Released
Status in shim-signed source package in Bionic:
  Fix Committed
Status in shim-signed source package in Focal:
  Fix Committed
Status in shim-signed source package in Hirsute:
  Fix Released

Bug description:
  [Impact]
  shim-signed uploads FTBFS for a couple hours after upload on arm64, as the arm64 builders are behind a proxy with caching, and the proxy caches the old version for the current/ url.

  Switch the download-signed script to extract the current version from
  the apt cache and download from that instead of the unversioned
  symlink. This means it will 404 on first try, and then hopefully the
  404 is not cached for hours.

  [Test plan]
  Check it downloads versioned script during build

  [Where problems could occur]
  I can imagine that if the version number of "shim" contains special characters, they might need URL escaping. At the moment, we don't have special characters, so it should just work.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/shim-signed/+bug/1936640/+subscriptions