Flash Plugin / Update Manager / PROXY not being honored

Bug #580523 reported by John Welch
52
This bug affects 8 people
Affects Status Importance Assigned to Milestone
flashplugin-nonfree (Ubuntu)
Fix Released
Medium
Marc Deslauriers
Hardy
Fix Released
Undecided
Unassigned
Karmic
Fix Released
Undecided
Unassigned
Lucid
Fix Released
Undecided
Unassigned
Maverick
Fix Released
Undecided
Unassigned
Natty
Fix Released
Medium
Marc Deslauriers

Bug Description

Binary package hint: firefox

lsb_release -rd
Description: Ubuntu 10.04 LTS
Release: 10.04

Here is what happens,

I cannot get Flash Working.

When I run Synaptic Package Manager and try to select

flashplugin-nonfree

Here is what happens:

Preconfiguring packages ...
Selecting previously deselected package flashplugin-installer.
(Reading database ... 146498 files and directories currently installed.)
Unpacking flashplugin-installer (from .../flashplugin-installer_10.0.45.2ubuntu1
amd64.deb) ...
Selecting previously deselected package flashplugin-nonfree.
Unpacking flashplugin-nonfree (from .../flashplugin-nonfree_10.0.45.2ubuntu1_amd64.deb)...
Setting up flashplugin-installer (10.0.45.2ubuntu1) ...
Downloading...
--2010-05-14 09:00:28-- http://archive.canonical.com/pool/partner/a/adobe-flashplugin/adobe-flashplugin_10.0.45.2.orig.tar.gz
Resolving archive.canonical.com... 91.189.88.33
Connecting to archive.canonical.com|91.189.88.33|:80... failed: Connection timed out.
Retrying

The issue is this when trying to get this package, it is not going thru my proxy server.

However all other package downloads via this interface do.

I can see the :80 and while running a TCPDUMP on my host I see the traffic desinted for this site over 80 ..

For some reason this one specific package cannot connect and pull this off via proxy.

I can open firefox and browse to this dirctory on the distant end just fine and even download the file. When I run other package downloads all traffic is routed via my proxy settings according to tcpdump and they all work fine,

It is almost like there is a post install instruction somewhere that is overriding the proxy and trying to send it straight out to 80 which is not allowed.

j

ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: firefox 3.6.3+nobinonly-0ubuntu4
ProcVersionSignature: Ubuntu 2.6.32-22.33-generic 2.6.32.11+drm33.2
Uname: Linux 2.6.32-22-generic x86_64
NonfreeKernelModules: nvidia
Architecture: amd64
Date: Fri May 14 08:55:42 2010
FirefoxPackages:
 firefox 3.6.3+nobinonly-0ubuntu4
 firefox-gnome-support 3.6.3+nobinonly-0ubuntu4
 firefox-branding 3.6.3+nobinonly-0ubuntu4
 abroswer N/A
 abrowser-branding N/A
InstallationMedia: Ubuntu 10.04 LTS "Lucid Lynx" - Release amd64 (20100427.1)
ProcEnviron:
 LANG=en_US.utf8
 SHELL=/bin/bash
SourcePackage: firefox

CVE References

Revision history for this message
John Welch (john-welch) wrote :
Revision history for this message
Eric Litak (elitak) wrote :

This affects me as well with flashplugin-installer_10.1.85.3ubuntu0.10.04.1_amd64.deb (and all previous versions). The reason this happens is that the postinst script ignores all apt proxy settings when using wget to fetch the tarball.

I have a workaround though:
I let the download fail for exactly 20 tries -- incidentally, this can't easily be cancelled (you must 'kill' the wget process) and that is a separate but equally important bug against this package, IMO. After that, i just sudo http_proxy=http://myproxy.com:myport/ dpkg-reconfigure flashplugin-installer, or, more generally:
sudo bash -c 'eval $(apt-config shell http_proxy Acquire::http::Proxy) dpkg-reconfigure flashplugin-installer'
(replace http with https or ftp if that's what you use)

The proper way to fix this is to have the postinst script that's using wget to fetch the tarball honor what's in /etc/apt/apt.conf{,d/*}, that way the user doesn't have to set the proxy through environment variables that wget will pick up. Here's a patch that does that along with reducing the tries to a more reasonable count of 2:

--- postinst 2010-09-20 16:40:50.000000000 -0700
+++ postinst.fixed 2010-11-02 17:31:06.969230608 -0700
@@ -62,6 +62,12 @@
                echo "dirstruct = off" >> wgetrc
                echo "verbose = on" >> wgetrc
                echo "progress = dot:default" >> wgetrc
+ echo "tries = 2" >> wgetrc
+ eval export $(apt-config shell \
+ http_proxy Acquire::http::Proxy \
+ https_proxy Acquire::https::Proxy \
+ ftp_proxy Acquire::ftp::Proxy \
+ )

                # downloading the plugin
                echo "Downloading..."

I've tested this and it should be a comprehensive fix for the problem, as far as I can tell.

Revision history for this message
Lionel Dricot (ploum-deactivatedaccount) wrote :

I confirm this bug which is quite important : people that are forced to use a proxy (eg: inside a company) suddenly loose Flash with an upgrade and without any easy way to get it back.

I believe that this bug is a major one regarding the entreprise desktop.

Micah Gersten (micahg)
affects: firefox (Ubuntu) → flashplugin-nonfree (Ubuntu)
Changed in flashplugin-nonfree (Ubuntu):
status: New → Confirmed
importance: Undecided → Medium
assignee: nobody → Marc Deslauriers (mdeslaur)
Micah Gersten (micahg)
Changed in flashplugin-nonfree (Ubuntu):
assignee: Marc Deslauriers (mdeslaur) → Micah Gersten (micahg)
status: Confirmed → In Progress
Revision history for this message
Micah Gersten (micahg) wrote :

Actually, if export has no arguments, it'll print out the current env, so this patch won't work. Assigning back to mdeslaur for further thought on the matter.

Changed in flashplugin-nonfree (Ubuntu):
assignee: Micah Gersten (micahg) → Marc Deslauriers (mdeslaur)
status: In Progress → Triaged
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package flashplugin-nonfree - 10.1.102.65ubuntu2

---------------
flashplugin-nonfree (10.1.102.65ubuntu2) natty; urgency=low

  * debian/postinst: make wget use the proxy defined for apt and decrease
    number of tries to a reasonable amount. (LP: #580523)
 -- Marc Deslauriers <email address hidden> Fri, 19 Nov 2010 15:51:55 -0500

Changed in flashplugin-nonfree (Ubuntu Natty):
status: Triaged → Fix Released
Revision history for this message
Dejan (dejan-rodiger) wrote :

Hi,

The problem surfaced again with 10.2. and resolution is to change proxy in /etc/wgetrc.
Global settings are not propagated to this file also.

Dejan

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package flashplugin-nonfree - 10.2.153.1ubuntu0.10.10.1

---------------
flashplugin-nonfree (10.2.153.1ubuntu0.10.10.1) maverick-security; urgency=low

  * SECURITY UPDATE: New upstream release 10.2.153.1
    - debian/config, debian/postinst: Updated sha256sums and path.
    - CVE-2011-0609
  * debian/postinst: make wget use the proxy defined for apt and decrease
    number of tries to a reasonable amount. (LP: #580523)
 -- Marc Deslauriers <email address hidden> Wed, 23 Mar 2011 08:34:34 -0400

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package flashplugin-nonfree - 10.2.153.1ubuntu0.10.04.1

---------------
flashplugin-nonfree (10.2.153.1ubuntu0.10.04.1) lucid-security; urgency=low

  * SECURITY UPDATE: New upstream release 10.2.153.1
    - debian/config, debian/postinst: Updated sha256sums and path.
    - CVE-2011-0609
  * debian/postinst: make wget use the proxy defined for apt and decrease
    number of tries to a reasonable amount. (LP: #580523)
 -- Marc Deslauriers <email address hidden> Wed, 23 Mar 2011 08:44:00 -0400

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package flashplugin-nonfree - 10.2.153.1ubuntu0.9.10.1

---------------
flashplugin-nonfree (10.2.153.1ubuntu0.9.10.1) karmic-security; urgency=low

  * SECURITY UPDATE: New upstream release 10.2.153.1
    - debian/config, debian/postinst: Updated sha256sums and path.
    - CVE-2011-0609
  * debian/postinst: make wget use the proxy defined for apt and decrease
    number of tries to a reasonable amount. (LP: #580523)
 -- Marc Deslauriers <email address hidden> Wed, 23 Mar 2011 08:55:34 -0400

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package flashplugin-nonfree - 10.2.153.1ubuntu0.8.04.2

---------------
flashplugin-nonfree (10.2.153.1ubuntu0.8.04.2) hardy-security; urgency=low

  * SECURITY UPDATE: New upstream release 10.2.153.1
    - debian/config, debian/postinst: Updated sha256sums and path.
    - CVE-2011-0609
  * debian/postinst: make wget use the proxy defined for apt and decrease
    number of tries to a reasonable amount. (LP: #580523)
  * debian/control: don't build libflashsupport transitional package on
    architectures that the flash plugin doesn't support.
 -- Marc Deslauriers <email address hidden> Wed, 23 Mar 2011 10:06:07 -0400

Changed in flashplugin-nonfree (Ubuntu Hardy):
status: New → Fix Released
Changed in flashplugin-nonfree (Ubuntu Karmic):
status: New → Fix Released
Changed in flashplugin-nonfree (Ubuntu Lucid):
status: New → Fix Released
Changed in flashplugin-nonfree (Ubuntu Maverick):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.