Ubuntu xenial newrelic-infra and unattended-upgrade

I am attempting to enable unattended-upgrade to work with the newrelic-infra package, but there is a misconfiguration in the apt list metadata:

$ cat /var/lib/apt/lists/download.newrelic.com_infrastructure%5fagent_linux_apt_dists_xenial_InRelease
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Origin: . xenial
Label: . xenial
Suite: xenial
Codename: xenial
Date: Mon, 29 Oct 2018 12:56:02 UTC
Architectures: amd64
Components: main
Description: Generated by aptly
...

Which translates into this policy:

$ sudo apt-cache policy
Package files:
 100 /var/lib/dpkg/status
     release a=now
 500 https://download.newrelic.com/infrastructure_agent/linux/apt xenial/main amd64 Packages
     release o=. xenial,a=xenial,n=xenial,l=. xenial,c=main,b=amd64
     origin download.newrelic.com

In order for this to work with unattended-upgrade, I have to specify the following pattern, which is less than preferred:

Unattended-Upgrade::Allowed-Origins {
	"*:${distro_codename}";
}

That pattern allows any origin to qualify for unattended updates…

Hi there,

Thanks for outlining your use-case here! I’ve let our developers know and they are working on a fix ASAP. Thanks for bringing that to our attention!

Regards,

Paul

1 Like

Hi @jeremy.gaither,

The fix is now in. Thanks for reporting this!

Paul

1 Like