Merge ~litios/ubuntu-security-tools:build-sources-list/use-auth-conf into ubuntu-security-tools:master
Proposed by
David Fernandez Gonzalez
Status: | Merged |
---|---|
Merged at revision: | 086da15eec9afb6cc66ca1e055c766fee1fa4acd |
Proposed branch: | ~litios/ubuntu-security-tools:build-sources-list/use-auth-conf |
Merge into: | ubuntu-security-tools:master |
Diff against target: |
168 lines (+69/-37) 3 files modified
build-tools/build-sources-list (+16/-36) build-tools/esm-auth-conf (+41/-0) build-tools/setup-sources-list.install (+12/-1) |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Alex Murray | Approve | ||
Spyros Seimenis | Approve | ||
Review via email: mp+453802@code.launchpad.net |
Description of the change
Build-sources-list currently embeds the credentials for external PPA in the sources list file. This is deprecated in APT and we should use auth conf files.
This PR addresses this issue by creating the proper auth conf file for the ESM PPAs.
Also, note that sec-buildenv will start relying on this soon: https:/
Another change is added to the PR. For customer PPA / ESM purposes, we also need -updates to be added to the sources lists. See https:/
To post a comment you must log in.
This is a great improvement but I have concerns about having it silently write the the auth conf file behind the scenes via sudo - also to support umt download the auth conf file needs to have world readable permissions as per https:/ /bugs.launchpad .net/ubuntu/ +source/ apt/+bug/ 1904068