| 2023-10-12 17:02:23 |
Steve Langasek |
bug |
|
|
added bug |
| 2023-10-12 17:02:29 |
Steve Langasek |
livecd-rootfs (Ubuntu): importance |
Undecided |
High |
|
| 2023-10-12 17:02:35 |
Steve Langasek |
tags |
|
foundations-todo |
|
| 2023-10-12 17:23:18 |
Julian Andres Klode |
description |
Our last respin of the Ubuntu Desktop ISO for mantic to pick up a new version of the ubuntu-desktop-installer snap also unexpectedly increased the total image size by 50MiB.
Tracked this down to the addition of a new file under /var/cache:
$ du -sh /mnt/*/var/cache/swcatalog/cache/C-os-catalog.xb
8.4M /mnt/2/var/cache/swcatalog/cache/C-os-catalog.xb
$
This file gets compressed, but we get a SEPARATE copy of it in each of the per-language squashfs layers on the system.
Previously, this file WAS present in the minimal.enhanced-secureboot.squashfs, however something has changed to cause this file to be different in each of the per-language layers on top of this.
A copy also ended up in casper/minimal.standard.live.squashfs that had not been there before.
I think the image builds should enforce a whitelist of files allowed under /var/cache and fail the build for unexpected contents for each given squashfs layer. |
Our last respin of the Ubuntu Desktop ISO for mantic to pick up a new version of the ubuntu-desktop-installer snap also unexpectedly increased the total image size by 50MiB.
Tracked this down to the addition of a new file under /var/cache:
$ du -sh /mnt/*/var/cache/swcatalog/cache/C-os-catalog.xb
8.4M /mnt/2/var/cache/swcatalog/cache/C-os-catalog.xb
$
This file gets compressed, but we get a SEPARATE copy of it in each of the per-language squashfs layers on the system.
Previously, this file WAS present in the minimal.enhanced-secureboot.squashfs, however something has changed to cause this file to be different in each of the per-language layers on top of this.
A copy also ended up in casper/minimal.standard.live.squashfs that had not been there before.
I think the image builds should enforce am allowlist of files allowed under /var/cache and fail the build for unexpected contents for each given squashfs layer. |
|
| 2023-10-12 17:23:56 |
Julian Andres Klode |
description |
Our last respin of the Ubuntu Desktop ISO for mantic to pick up a new version of the ubuntu-desktop-installer snap also unexpectedly increased the total image size by 50MiB.
Tracked this down to the addition of a new file under /var/cache:
$ du -sh /mnt/*/var/cache/swcatalog/cache/C-os-catalog.xb
8.4M /mnt/2/var/cache/swcatalog/cache/C-os-catalog.xb
$
This file gets compressed, but we get a SEPARATE copy of it in each of the per-language squashfs layers on the system.
Previously, this file WAS present in the minimal.enhanced-secureboot.squashfs, however something has changed to cause this file to be different in each of the per-language layers on top of this.
A copy also ended up in casper/minimal.standard.live.squashfs that had not been there before.
I think the image builds should enforce am allowlist of files allowed under /var/cache and fail the build for unexpected contents for each given squashfs layer. |
Our last respin of the Ubuntu Desktop ISO for mantic to pick up a new version of the ubuntu-desktop-installer snap also unexpectedly increased the total image size by 50MiB.
Tracked this down to the addition of a new file under /var/cache:
$ du -sh /mnt/*/var/cache/swcatalog/cache/C-os-catalog.xb
8.4M /mnt/2/var/cache/swcatalog/cache/C-os-catalog.xb
$
This file gets compressed, but we get a SEPARATE copy of it in each of the per-language squashfs layers on the system.
Previously, this file WAS present in the minimal.enhanced-secureboot.squashfs, however something has changed to cause this file to be different in each of the per-language layers on top of this.
A copy also ended up in casper/minimal.standard.live.squashfs that had not been there before.
I think the image builds should enforce an allowlist of files allowed under /var/cache and fail the build for unexpected contents for each given squashfs layer. |
|
| 2023-10-12 17:58:37 |
Jeremy Bícha |
bug |
|
|
added subscriber Jeremy Bícha |
| 2024-01-17 01:36:09 |
Launchpad Janitor |
livecd-rootfs (Ubuntu): status |
New |
Confirmed |
|
