Your message dated Mon, 02 Nov 2020 07:52:05 +0000 with message-id <e1kzudj-000ghk...@fasolo.debian.org> and subject line Bug#972744: fixed in openstack-debian-images 1.49 has caused the Debian Bug report #972744, regarding openstack-debian-images: bullseye: /updates -> -security to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 972744: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972744 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: openstack-debian-images Version: 1.47 Severity: serious File: /usr/sbin/build-openstack-debian-image User: debian-de...@lists.debian.org Usertags: bullseye-security With the release of Debian bullseye and later, security updates are provided in the bullseye-security suite instead of bullseye/updates. The above script references ${RELEASE}/updates but when bullseye is released that should be replaced by ${RELEASE}-security so it looks like the script would generate an incorrect sources.list using /updates instead of -security which would cause the target system to not get security updates from bullseye in a timely manner, which could be problematic for openstack images since IIRC those have automatic security updates enabled and so no human will notice this issue. I suggest that this script check the version of the Debian release in question using distro-info and then if the release is 11 or higher, then use $release-security otherwise use $release/updates as before. It is much better to use distro-info than to hard-code the release version numbers. It might even be a good idea to include the security suite information in distro-info itself and look it up there. $ grep -B3 -A2 /updates /usr/sbin/build-openstack-debian-image if [ "${RELEASE}" != "sid" ] && [ "${RELEASE}" != "unstable" ] ; then echo "deb ${SOURCE_LIST_MIRROR} ${RELEASE}-updates main${NON_FREE} deb-src ${SOURCE_LIST_MIRROR} ${RELEASE}-updates main${NON_FREE} deb ${SECURITY_MIRROR_URL} ${RELEASE}/updates main${NON_FREE} deb-src ${SECURITY_MIRROR_URL} ${RELEASE}/updates main${NON_FREE} " >>${MOUNT_DIR}/etc/apt/sources.list fi -- System Information: Debian Release: bullseye/sid APT prefers testing-debug APT policy: (900, 'testing-debug'), (900, 'testing'), (800, 'unstable-debug'), (800, 'unstable'), (790, 'buildd-unstable'), (700, 'experimental-debug'), (700, 'experimental'), (690, 'buildd-experimental') Architecture: amd64 (x86_64) Kernel: Linux 5.9.0-1-amd64 (SMP w/4 CPU threads) Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8), LANGUAGE=en_AU:en Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled -- bye, pabs https://wiki.debian.org/PaulWise
signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---Source: openstack-debian-images Source-Version: 1.49 Done: Thomas Goirand <z...@debian.org> We believe that the bug you reported is fixed in the latest version of openstack-debian-images, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 972...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Thomas Goirand <z...@debian.org> (supplier of updated openstack-debian-images package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 02 Nov 2020 08:32:14 +0100 Source: openstack-debian-images Architecture: source Version: 1.49 Distribution: unstable Urgency: medium Maintainer: Debian OpenStack <team+openst...@tracker.debian.org> Changed-By: Thomas Goirand <z...@debian.org> Closes: 972744 Changes: openstack-debian-images (1.49) unstable; urgency=medium . * Use "bullseye-security" instead of "bullseye-updates" (Closes: #972744). Checksums-Sha1: edad7b633229f74e465c0cc3e13cba5ab9baaf18 1759 openstack-debian-images_1.49.dsc 691a8b37d46cd98359526475fb1e6133256a4d42 31088 openstack-debian-images_1.49.tar.xz 26a49b1bf4b26b50aaa82e0645141bd9ce6d2715 5913 openstack-debian-images_1.49_amd64.buildinfo Checksums-Sha256: 2536fcdae25332af00b8964e1a954c721698cc6d888b05377fdfc34a0a56eb76 1759 openstack-debian-images_1.49.dsc feaae62f7cbde4797c9bad5e046bf3f313a2efb6ccb56118a2ccc331203536cd 31088 openstack-debian-images_1.49.tar.xz a29b063c0c9efa7ba67d358c7dabeb16ce44e353316902970acd1b6bf5bf2fee 5913 openstack-debian-images_1.49_amd64.buildinfo Files: fb40743f21d9ec8613c0164a1be11532 1759 web optional openstack-debian-images_1.49.dsc 91fdd1986bc0c467f605882a3d80d085 31088 web optional openstack-debian-images_1.49.tar.xz 139e92a1ae11f60696eec1f2555024a7 5913 web optional openstack-debian-images_1.49_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEoLGp81CJVhMOekJc1BatFaxrQ/4FAl+ftqIACgkQ1BatFaxr Q/5Vmg/+I0f2lFGmC8ynFatgHLVRE++x62MgcGRzVE4sw6taXKB42+4gSTzjnEs0 YMWV5+ben+o1DqcPgkRjXnSz1ifvtpFzuHVt5xGv2gkFvoFip+nzqaTYHrk+9a2D acZ454U1Mno7xYx5+X/DQkmyj6ZPwCtf51sJPzpk0dc9YbFWdekdSGmI6LD9mEoG T47A/2QuMakNEoINI5LegScT1tqeTg81QeOPKkuqwhtkBIXg3Or/J9x/1bsRW3P8 5WT7y7SAQX5EjaqR9Dkzd6TqHWkMbI9sWU1zsJtZKFE3PaqVkG//VZBucob5zRs9 GNlYzIYxKf1jliny7mZ+0Hfn9YrCve6lMZa76Fq9anCd6v7z3FzjmFQd4fCAKtpl DeBMH3UjQeNmE3Gj1FlQ69cZjQBH11Q1WYBQj1QdDp9urKQUVq7e+RRzm8gh0tak VXAef2y8KkT2t3ld7qkILAuAGTLxIAlrOF27NhcG0P8DITxsw3dnruOFW6nN5a2c 4Gm+5kI7/MCrdEnSG1wbUxtrKLb2XCg6nfSLRtJYc6d0JAD8y8VGpXn9hmS/fJMH U3BtQLM0TJsI0A+iA0AKIzbDp5fhGjUImQvkVybonjQ2UVwCSjBwicBFkkXBdmL9 BS2+rmA+8FPAAZL5wcNKo01C9jKRx5lTEb6GiDerdVlGmXSdjBY= =ytZp -----END PGP SIGNATURE-----
--- End Message ---
