概要
過去に ESM パッケージを更新する定義を追加しました
今回は docker 公式と terraform/ansible も追加してみたのでその手順を紹介します
環境
- Ubuntu 24.04
- unattended-upgrade 2.9.1
docker
-
grep -e 'Origin:' -e 'Suite:' /var/lib/apt/lists/download.docker.com_linux_ubuntu_dists_noble_*
/var/lib/apt/lists/download.docker.com_linux_ubuntu_dists_noble_InRelease:Origin: Docker
/var/lib/apt/lists/download.docker.com_linux_ubuntu_dists_noble_InRelease:Suite: noble
-
sudo vim /etc/apt/apt.conf.d/52unattended-upgrades-docker-packages
Unattended-Upgrade::Allowed-Origins {
"Docker:noble";
};
-
sudo unattended-upgrade --dry-run
/usr/bin/dpkg --status-fd 10 --no-triggers --unpack --auto-deconfigure /var/cache/apt/archives/docker-ce-cli_5%3a28.3.1-1~ubuntu.24.04~noble_amd64.deb /var/cache/apt/archives/docker-ce_5%3a28.3.1-1~ubuntu.24.04~noble_amd64.deb /var/cache/apt/archives/docker-ce-rootless-extras_5%3a28.3.1-1~ubuntu.24.04~noble_amd64.deb /var/cache/apt/archives/docker-compose-plugin_2.38.1-1~ubuntu.24.04~noble_amd64.deb
/usr/bin/dpkg --status-fd 10 --configure --pending
/usr/bin/dpkg --status-fd 10 --no-triggers --unpack --auto-deconfigure /var/cache/apt/archives/docker-buildx-plugin_0.25.0-1~ubuntu.24.04~noble_amd64.deb
/usr/bin/dpkg --status-fd 10 --configure --pending
terraform
-
grep -e 'Origin:' -e 'Suite:' /var/lib/apt/lists/apt.releases.hashicorp.com_dists_noble_*
/var/lib/apt/lists/apt.releases.hashicorp.com_dists_noble_InRelease:Origin: Artifactory
/var/lib/apt/lists/apt.releases.hashicorp.com_dists_noble_InRelease:Suite: noble
-
sudo vim /etc/apt/apt.conf.d/53unattended-upgrades-hashicorp-packages
Unattended-Upgrade::Allowed-Origins {
"Artifactory:noble";
};
-
sudo unattended-upgrade --dry-run
/usr/bin/dpkg --status-fd 10 --no-triggers --unpack --auto-deconfigure /var/cache/apt/archives/terraform_1.12.2-1_amd64.deb
/usr/bin/dpkg --status-fd 10 --configure --pending
ansible
-
grep -e 'Origin:' -e 'Suite:' /var/lib/apt/lists/ppa.launchpadcontent.net_ansible_ansible_ubuntu_dists_noble_*
/var/lib/apt/lists/ppa.launchpadcontent.net_ansible_ansible_ubuntu_dists_noble_InRelease:Origin: LP-PPA-ansible-ansible
/var/lib/apt/lists/ppa.launchpadcontent.net_ansible_ansible_ubuntu_dists_noble_InRelease:Suite: noble
-
sudo vim /etc/apt/apt.conf.d/54unattended-upgrades-ansible-packages
Unattended-Upgrade::Allowed-Origins {
"LP-PPA-ansible-ansible:noble";
};
-
sudo unattended-upgrade --dry-run
/usr/bin/dpkg --status-fd 10 --no-triggers --unpack --auto-deconfigure /var/cache/apt/archives/ansible_11.7.0-1ppa~noble_all.deb
/usr/bin/dpkg --status-fd 10 --configure --pending
最後に
他のリポジトリも全部同じ方法で unattended-upgrade に追加できます
この作業をリポジトリを追加したときに自動でやってくれるツールはないのだろうか
Suite が表示されないケースもあるのでその場合はアスタリスク「* 」を指定しましょう
返信削除