linux-aws/linux-gke incorrectly producing an empty linux-*-source package-*

Bug #1690183 reported by Andy Whitcroft
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux-aws (Ubuntu)
Confirmed
High
Andy Whitcroft
Xenial
Fix Released
High
Andy Whitcroft
linux-gke (Ubuntu)
Confirmed
High
Andy Whitcroft
Xenial
Fix Released
High
Andy Whitcroft

Bug Description

We are building a shipping a basically empty package which claimed to be the source package for this kernel. As this linux-source-NNN packages are intended as input to things like usermode linux, and that should be using the one from the primary package. We should drop this empty and missleading package.

We are explicitly turning off the contents of the source package:

  debian.*/rules.d/amd64.mk: do_source_package = false

But this only suppresses the contents of the package. We also have to remove it from the control file to get rid of it completely.

CVE References

Andy Whitcroft (apw)
Changed in linux-aws (Ubuntu):
status: New → Confirmed
importance: Undecided → High
assignee: nobody → Andy Whitcroft (apw)
Changed in linux-gke (Ubuntu):
status: New → Confirmed
importance: Undecided → High
assignee: nobody → Andy Whitcroft (apw)
Changed in linux-aws (Ubuntu Xenial):
status: New → Incomplete
status: Incomplete → Confirmed
Changed in linux-gke (Ubuntu Xenial):
status: New → In Progress
Changed in linux-aws (Ubuntu Xenial):
status: Confirmed → In Progress
importance: Undecided → High
Changed in linux-gke (Ubuntu Xenial):
importance: Undecided → High
Changed in linux-aws (Ubuntu Xenial):
assignee: nobody → Andy Whitcroft (apw)
Changed in linux-gke (Ubuntu Xenial):
assignee: nobody → Andy Whitcroft (apw)
Changed in linux-aws (Ubuntu Xenial):
status: In Progress → Fix Committed
Changed in linux-gke (Ubuntu Xenial):
status: In Progress → Fix Committed
Revision history for this message
Kleber Sacilotto de Souza (kleber-souza) wrote :

Confirmed that linux-aws (4.4.0-1018.27) and linux-gke (4.4.0-1014.14), which are currently in -proposed, are not producing the linux-*-source packages anymore.

tags: added: verification-done-xenial
Revision history for this message
Launchpad Janitor (janitor) wrote :
Download full text (10.6 KiB)

This bug was fixed in the package linux-aws - 4.4.0-1018.27

---------------
linux-aws (4.4.0-1018.27) xenial; urgency=low

  * linux-aws: 4.4.0-1018.27 -proposed tracker (LP: #1691184)

  * linux xenial derivatives fail to build (LP: #1691814)
    - [Packaging] Set do_tools_common in common vars
    - [Packaging] Do not build tools-common

  * linux-aws/linux-gke incorrectly producing an empty linux-*-source package-*
    (LP: #1690183)
    - [Packaging] drop linux-aws-source-* package

  * linux-aws/linux-gke incorrectly producing and using linux-*-tools-
    common/linux-*-cloud-tools-common (LP: #1688579)
    - [Config] linux-tools-* linux-cloud-tools-* share -common packages with linux

  * disable many ACPI features (LP: #1689372)
    - [config] AWS: disable assorted ACPI features

  * disable NOUVEAU (LP: #1689373)
    - [config] AWS: disable NOUVEAU

  * disable GPIOLIB, PINCTRL, and all consumers of them (LP: #1689374)
    - [config] AWS: disable INTEL_LPSS, AMD_PLATFORM, PINCTRL
    - [config] AWS: disable GPIOLIB

  [ Ubuntu: 4.4.0-79.100 ]

  * linux: 4.4.0-79.100 -proposed tracker (LP: #1691180)
  * linux-aws/linux-gke incorrectly producing and using linux-*-tools-
    common/linux-*-cloud-tools-common (LP: #1688579)
    - [Config] make linux-tools-common and linux-cloud-tools-common provide linux-
      gke versions
    - [Config] make linux-tools-common and linux-cloud-tools-common provide linux-
      aws versions
    - [Packaging] prevent linux-*-tools-common from being produced from non linux
      packages
  * CVE-2017-0605
    - tracing: Use strlcpy() instead of strcpy() in __trace_find_cmdline()
  * i915-bpo crashes on external hdmi input (LP: #1580272)
    - SAUCE: i915_bpo: Silence the warning about watermark entries not changing
  * Kernel panics on Xenial when using cgroups and strict CFS limits
    (LP: #1687512)
    - sched/fair: Initialize throttle_count for new task-groups lazily
    - sched/fair: Do not announce throttled next buddy in dequeue_task_fair()
  * bonding - mlx5 - speed changed to 0 after changing ring size (LP: #1687877)
    - bonding: allow notifications for bond_set_slave_link_state
  * Xenial update to 4.4.67 stable release (LP: #1689296)
    - timerfd: Protect the might cancel mechanism proper
    - Handle mismatched open calls
    - ASoC: intel: Fix PM and non-atomic crash in bytcr drivers
    - ALSA: ppc/awacs: shut up maybe-uninitialized warning
    - drbd: avoid redefinition of BITS_PER_PAGE
    - mtd: avoid stack overflow in MTD CFI code
    - net: tg3: avoid uninitialized variable warning
    - netlink: Allow direct reclaim for fallback allocation
    - IB/qib: rename BITS_PER_PAGE to RVT_BITS_PER_PAGE
    - IB/ehca: fix maybe-uninitialized warnings
    - ext4: require encryption feature for EXT4_IOC_SET_ENCRYPTION_POLICY
    - ext4 crypto: revalidate dentry after adding or removing the key
    - ext4 crypto: use dget_parent() in ext4_d_revalidate()
    - ext4/fscrypto: avoid RCU lookup in d_revalidate
    - nfsd4: minor NFSv2/v3 write decoding cleanup
    - nfsd: stricter decoding of write-like NFSv2/v3 ops
    - dm ioctl: prevent stack leak in dm ioctl call
    - Linux 4.4.67
  * Precis...

Changed in linux-aws (Ubuntu Xenial):
status: Fix Committed → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :
Download full text (10.3 KiB)

This bug was fixed in the package linux-gke - 4.4.0-1014.14

---------------
linux-gke (4.4.0-1014.14) xenial; urgency=low

  * linux-gke: 4.4.0-1014.14 -proposed tracker (LP: #1691186)

  * linux xenial derivatives fail to build (LP: #1691814)
    - [Packaging] Set do_tools_common in common vars
    - [Packaging] Put hooks.mk file in the right place

  * linux-aws/linux-gke incorrectly producing an empty linux-*-source package-*
    (LP: #1690183)
    - [Packaging] drop linux-gke-source-* package

  * linux-aws/linux-gke incorrectly producing and using linux-*-tools-
    common/linux-*-cloud-tools-common (LP: #1688579)
    - [Config] linux-tools-* linux-cloud-tools-* share -common packages with linux

  [ Ubuntu: 4.4.0-79.100 ]

  * linux: 4.4.0-79.100 -proposed tracker (LP: #1691180)
  * linux-aws/linux-gke incorrectly producing and using linux-*-tools-
    common/linux-*-cloud-tools-common (LP: #1688579)
    - [Config] make linux-tools-common and linux-cloud-tools-common provide linux-
      gke versions
    - [Config] make linux-tools-common and linux-cloud-tools-common provide linux-
      aws versions
    - [Packaging] prevent linux-*-tools-common from being produced from non linux
      packages
  * CVE-2017-0605
    - tracing: Use strlcpy() instead of strcpy() in __trace_find_cmdline()
  * i915-bpo crashes on external hdmi input (LP: #1580272)
    - SAUCE: i915_bpo: Silence the warning about watermark entries not changing
  * Kernel panics on Xenial when using cgroups and strict CFS limits
    (LP: #1687512)
    - sched/fair: Initialize throttle_count for new task-groups lazily
    - sched/fair: Do not announce throttled next buddy in dequeue_task_fair()
  * bonding - mlx5 - speed changed to 0 after changing ring size (LP: #1687877)
    - bonding: allow notifications for bond_set_slave_link_state
  * Xenial update to 4.4.67 stable release (LP: #1689296)
    - timerfd: Protect the might cancel mechanism proper
    - Handle mismatched open calls
    - ASoC: intel: Fix PM and non-atomic crash in bytcr drivers
    - ALSA: ppc/awacs: shut up maybe-uninitialized warning
    - drbd: avoid redefinition of BITS_PER_PAGE
    - mtd: avoid stack overflow in MTD CFI code
    - net: tg3: avoid uninitialized variable warning
    - netlink: Allow direct reclaim for fallback allocation
    - IB/qib: rename BITS_PER_PAGE to RVT_BITS_PER_PAGE
    - IB/ehca: fix maybe-uninitialized warnings
    - ext4: require encryption feature for EXT4_IOC_SET_ENCRYPTION_POLICY
    - ext4 crypto: revalidate dentry after adding or removing the key
    - ext4 crypto: use dget_parent() in ext4_d_revalidate()
    - ext4/fscrypto: avoid RCU lookup in d_revalidate
    - nfsd4: minor NFSv2/v3 write decoding cleanup
    - nfsd: stricter decoding of write-like NFSv2/v3 ops
    - dm ioctl: prevent stack leak in dm ioctl call
    - Linux 4.4.67
  * Precision Rack failed to resume from S4 (LP: #1686061)
    - x86 / hibernate: Use hlt_play_dead() when resuming from hibernation
    - x86/boot: Split out kernel_ident_mapping_init()
    - x86/power/64: Always create temporary identity mapping correctly
  * Xenial update to 4.4.66 stable release (LP: #1688505)
    - f2fs: do more int...

Changed in linux-gke (Ubuntu Xenial):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.