2017-08-25 23:35:58 |
Steve Langasek |
bug |
|
|
added bug |
2017-08-25 23:40:31 |
Steve Langasek |
nominated for series |
|
Ubuntu Xenial |
|
2017-08-25 23:40:31 |
Steve Langasek |
bug task added |
|
apparmor (Ubuntu Xenial) |
|
2017-08-25 23:40:37 |
Steve Langasek |
apparmor (Ubuntu): status |
New |
Fix Released |
|
2017-08-25 23:40:39 |
Steve Langasek |
apparmor (Ubuntu Xenial): importance |
Undecided |
High |
|
2017-08-25 23:40:41 |
Steve Langasek |
apparmor (Ubuntu Xenial): status |
New |
In Progress |
|
2017-08-25 23:40:44 |
Steve Langasek |
apparmor (Ubuntu Xenial): assignee |
|
Steve Langasek (vorlon) |
|
2017-08-25 23:54:15 |
Steve Langasek |
description |
In xenial and earlier, apparmor depends on initramfs-tools. In zesty and later, this dependency has been dropped, as explained in the Debian changelog for 2.9.0-3+exp1 and merged into Ubuntu in 2.10.95-4ubuntu1:
* Drop dependency from apparmor on initramfs-tools: the early modules
loading code that needed it was removed a while ago (Closes: #771240).
This is a wrong dependency in xenial as well, which also includes no early boot code. We should drop this dependency, to support building of images with initramfs-tools removed for systems that we know don't require an initramfs. |
[SRU Justification]
In xenial and earlier, apparmor depends on initramfs-tools. In zesty and later, this dependency has been dropped, as explained in the Debian changelog for 2.9.0-3+exp1 and merged into Ubuntu in 2.10.95-4ubuntu1:
* Drop dependency from apparmor on initramfs-tools: the early modules
loading code that needed it was removed a while ago (Closes: #771240).
This is a wrong dependency in xenial as well, which also includes no early boot code. We should drop this dependency, to support building of images with initramfs-tools removed for systems that we know don't require an initramfs.
[Test case]
1. On a xenial default chroot/container install, try to run 'sudo apt purge initramfs-tools'.
2. Verify that this tries to remove apparmor.
3. Cancel the removal.
4. Install apparmor from xenial-proposed.
5. Run 'sudo apt purge initramfs-tools' again.
6. Verify that apparmor is not removed.
[Regression Potential]
If apparmor were somehow using initramfs-tools without it being obvious from the package contents, then removing initramfs-tools from the dependencies could in some rare corner cases cause misbehavior of the system. However, there are currently no Ubuntu images or stock system installs which do not pull in initramfs-tools by other paths (e.g. by way of the kernel packages) so this risk is minimal. |
|
2017-08-31 21:20:26 |
Brian Murray |
apparmor (Ubuntu Xenial): status |
In Progress |
Fix Committed |
|
2017-08-31 21:20:30 |
Brian Murray |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2017-08-31 21:20:31 |
Brian Murray |
bug |
|
|
added subscriber SRU Verification |
2017-08-31 21:20:36 |
Brian Murray |
tags |
|
verification-needed verification-needed-xenial |
|
2017-08-31 22:47:23 |
Steve Langasek |
tags |
verification-needed verification-needed-xenial |
verification-done-xenial verification-needed |
|
2017-09-12 23:15:30 |
Launchpad Janitor |
apparmor (Ubuntu Xenial): status |
Fix Committed |
Fix Released |
|
2017-09-12 23:15:38 |
Chris Halse Rogers |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|