apt-get update triggers asynchronous task

Hi Scott,

I don't see what could be triggering this behavior. The update-notifier-common package includes hooks for the following:
 - apt
 - cron
 - /etc/kernel/postinst.d
 - update-motd

The only one of these that would be triggered by 'apt-get update' is the apt hook, which only does:

$ cat /etc/apt/apt.conf.d/99update-notifier
DPkg::Post-Invoke {"if [ -d /var/lib/update-notifier ]; then touch /var/lib/update-notifier/dpkg-run-stamp; fi; if [ -e /var/lib/update-notifier/updates-available ]; then echo > /var/lib/update-notifier/updates-available; fi "; };

And a) apt-get update doesn't invoke dpkg, and b) this should not be asynchronous in any way.

So, what is causing /usr/lib/update-notifier/update-motd-updates-available to be invoked in this environment?

Eventually the async apt-check is to avoid stalling humans, and there it makes total sense.

We could think to do something like

function checkit {
   *code of the check*
}

if [[ $- == *i* ]];
then
    checkit &
else
    checkit
fi

That would cause the check to be synchronous (as it was in the past), but only if it is a non interactive environment read "nobody directly cares about the sync delay"

Scott, let me know if you - as discussed on IRC in 2016 - could test a deb with that approach that I'd build for you.

deb for testing the approach, not very large so we can just attach it.

debdiff to show the suggested change, this is in no way an upload to be sponsored yet as it needs way more testing.
Just FYI so you see what was changed

The attachment "xenial_update-notifier.debdiff" seems to be a debdiff. The ubuntu-sponsors team has been subscribed to the bug report so that they can review and hopefully sponsor the debdiff. If the attachment isn't a patch, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are member of the ~ubuntu-sponsors, unsubscribe the team.

[This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issue please contact him.]

Removed the sponsors team subscription per comment #5. Please re-add manually when you've tested it. :)

Its possibly something else that was doing this, but it was definitely happening.
We fixed the issue in curtin with:
 http://bazaar.launchpad.net/~curtin-dev/curtin/trunk/revision/328

Wouldn't this change be causing the issue?

update-notifier (3.164) xenial; urgency=medium
  ...
  * debian/99update-notifier:
    - Now additionally triggers the an asynchronous background update of the
      cached info via update-motd-updates-available hooking into
      APT::Update::Post-Invoke-Success.

Here's the contents of 99update-notifier:

  1 DPkg::Post-Invoke {"if [ -d /var/lib/update-notifier ]; then touch /var/lib/update-notifier/dpkg-run-stamp; fi";};
  2 APT::Update::Post-Invoke-Success {"/usr/lib/update-notifier/update-motd-updates-available 2>/dev/null || true";};

This bug was fixed in the package update-notifier - 3.165

---------------
update-notifier (3.165) xenial; urgency=medium

  * data/update-motd-updates-available
    - do not execute asynchronously as that causes problems with installers
      and generally produces unexpected behavior by default (LP: #1527710).
    - define NEEDS_CHECK to avoid unintentionally using value from inherrited
      environment.

 -- Scott Moser <email address hidden> Wed, 27 Jan 2016 17:04:44 -0500

In order to fix bug 525674, Christian did the following things in 3.164:
 a.) made /etc/update-motd.d/90-updates-available simply 'cat' a
     file /var/lib/update-notifier/updates-available
 b.) modified /usr/lib/update-notifier/update-motd-updates-available to
     background its execution of /usr/lib/update-notifier/apt-check
     which populates /var/lib/update-notifier/updates-available
 c.) added /etc/apt/apt.conf.d/99update-notifier to run
     /etc/apt.conf.d/99update-notifier so that
     /usr/lib/update-notifier/update-motd-updates-available is run
     each time 'apt-get update' finishes successfully.

The result of 'a' is that logins no longer trigger or block on execution
of a fairly slow and IO/CPU entensive task. That is wonderful and does a
good job of fixing bug 525674 and not triggering unnecessary activity on a
system simply as a result of a user logging in.

The result of 'c' is that is that running:
  apt-get update
populates keeps /var/lib/update-notifier/updates-available up to date.

The result of 'b' and 'c' is what caused the problem for me in curtin
and I believe for 'd-i' as described in bug 1533243.

My change was to un-do 'b'.

I can see a use case for a user wanting for 'apt-check' to run
backgrounded so that it doesn't make 'apt-get update' take any longer than
it already does. However, that should not be the default behavior as it
is quite unexpected. If someone wants to make this configurable in
the future I'm OK with that as long as it is done foreground by default.

An example of something that fails unexpectedly due to the backgrounding
is:
    mount-image-callback ubuntu-xenial.img --system-mounts -- \
       chroot _MOUNTPOINT_ apt-get update

Other things:
 * I'm not aware of anything in update-notifier-common that is running
   'apt-get update' via cron or otherwise keeping
   /var/lib/update-notifier/updates-available up to date other than
   when something manually runs 'apt-get update'
 * /var/lib/update-notifier/updates-available is not world readable
   which seems likely unintended as all it contains it it is something like.
     32 packages can be updated.
     0 updates are security updates.

I talked to juliank aboutn this, requesting for apt to maintain this data more itself (so that it wouldnt be out of date after 'apt-get update && apt-get dist-upgrade').

He pointed me at a debian apt feature request bug https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809441 .
If that bug gets fixed, we should hook into it and report status that way and drop apt-check.