[Bug 1938043] Re: ubuntu-security-status

[Chad Smith]

Looks like logic in ubuntu-security-status bases that message only on
whether livepatch is enabled or not.  this is an invalid test because
containers will not have livepatch enabled and neither will UA attached
VMs with FIPS enabled.


So the following test is not an accurate representation of whether the system is attached to a license:


    if lts and not livepatch_enabled:
         print("\nThis machine is not attached to an Ubuntu Advantage "
               "subscription.\nSee https://ubuntu.com/advantage")


Attached is a patch that would allow ubuntu-security-updates to determine both attach status and service enabled/disabled by processing `ua status --format=json` or the JSON status cache provided by UA


** Patch added: "ubuntu-security-status-from-ua-status.patch"
   https://bugs.launchpad.net/ubuntu/+source/update-manager/+bug/1938043/+attachment/5522440/+files/ubuntu-security-status-from-ua-status.patch

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to update-manager in Ubuntu.
https://bugs.launchpad.net/bugs/1938043

Title:
  ubuntu-security-status

Status in update-manager package in Ubuntu:
  New
Status in update-manager source package in Focal:
  Triaged

Bug description:
  In 20.04 ubuntu-security-status incorrect reports the status of
  subscription:

  ```
  $ sudo ubuntu-security-status 
  1594 packages installed, of which:
  1588 receive package updates with LTS until 4/2025
     6 are receiving security updates with ESM Apps until 4/2030

  This machine is not attached to an Ubuntu Advantage subscription.
  See https://ubuntu.com/advantage
  ```

  It shows no subscription in the system even though there is. ua status correctly shows the subscription:
  ```
  $ ua status
  SERVICE       ENTITLED  STATUS    DESCRIPTION
  cis           yes       disabled  Center for Internet Security Audit Tools
  esm-apps      yes       enabled   UA Apps: Extended Security Maintenance (ESM)
  esm-infra     yes       enabled   UA Infra: Extended Security Maintenance (ESM)
  fips          yes       disabled  NIST-certified core packages
  fips-updates  yes       disabled  NIST-certified core packages with priority security updates
  livepatch     yes       disabled  Canonical Livepatch service

  Enable services with: ua enable <service>

                  Account: Canonical - staff
             Subscription: UA Applications - Essential (Virtual)
              Valid until: 3999-12-31 00:00:00
  Technical support level: essential
  ```

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/update-manager/+bug/1938043/+subscriptions