search

ceph / chacra

A binary/file REST API to aid in multi-distro|arch|release management
9 stars 18 forks source link

deploy: Remove unattended-upgrades #249

Closed djgalloway closed 6 years ago

djgalloway commented 6 years ago

erlang- packages were automatically updated this morning and caused all chacra- services to stop and not restart.

Signed-off-by: David Galloway dgallowa@redhat.com

ktdreyer commented 6 years ago

How can we put this back in?

djgalloway commented 6 years ago

What for? Security updates?

ktdreyer commented 6 years ago

Yes, exactly

djgalloway commented 6 years ago

@ktdreyer Could we, as an alternative, set up a cronjob to update package we want regularly updated? Like nginx for example.

Here's the list of system packages that get installed for chacra that we'd want to keep held back.

root@vpm077:~# apt-get --dry-run install rabbitmq-server | grep Inst | awk '{ print $2 }'
erlang-base
erlang-asn1
erlang-mnesia
erlang-runtime-tools
erlang-crypto
erlang-public-key
erlang-ssl
erlang-inets
erlang-corba
erlang-syntax-tools
erlang-diameter
erlang-xmerl
erlang-edoc
erlang-eldap
erlang-erl-docgen
erlang-eunit
erlang-ic
libltdl7
libodbc1
erlang-odbc
erlang-snmp
erlang-os-mon
erlang-parsetools
erlang-percept
erlang-ssh
erlang-webtool
erlang-tools
erlang-nox
libsctp1
socat
rabbitmq-server
root@vpm077:~# apt-get --dry-run install python-dev git python-virtualenv g++ gcc libpq-dev postgresql postgresql-common postgresql-contrib python-psycopg2 nginx vim python-apt python openssl libssl-dev libzmq-dev libevent-dev | grep Inst | awk '{ print $2 }'
libc6
libjpeg-turbo8
libjbig0
libmpc3
zlib1g
gcc-5-base
libstdc++6
libexpat1
libssl1.0.0
openssl
binutils
libisl15
cpp-5
cpp
fonts-dejavu-core
fontconfig-config
libcc1-0
libgomp1
libitm1
libatomic1
libasan2
liblsan0
libtsan0
libubsan0
libcilkrts5
libmpx0
libquadmath0
libgcc-5-dev
gcc-5
gcc
libc-dev-bin
linux-libc-dev
libc6-dev
libstdc++-5-dev
g++-5
g++
libgssrpc4
libkdb5-8
libkadm5srv-mit9
libkadm5clnt-mit9
comerr-dev
krb5-multidev
libevent-2.0-5
libevent-core-2.0-5
libevent-extra-2.0-5
libevent-pthreads-2.0-5
libevent-openssl-2.0-5
libevent-dev
libexpat1-dev
libfontconfig1
libjpeg8
libtiff5
libvpx3
libxpm4
libgd3
libpgm-5.2-0
libpq5
zlib1g-dev
libssl-dev
libpq-dev
libpython2.7
libpython2.7-dev
libpython-dev
libsensors4
libssl-doc
libxslt1.1
libzmq1
libzmq-dev
manpages-dev
nginx-common
nginx-core
nginx
postgresql-client-common
postgresql-client-9.5
ssl-cert
postgresql-common
postgresql-9.5
postgresql
postgresql-contrib-9.5
postgresql-contrib
python-apt
python2.7-dev
python-dev
python-egenix-mxtools
python-egenix-mxdatetime
python-pip-whl
python-pkg-resources
python-psycopg2
python-virtualenv
python3-virtualenv
sysstat
virtualenv
ktdreyer commented 6 years ago

Sure, there is an Unattended-Upgrade::Package-Blacklist setting if you need to blacklist Erlang.

Have we reported the issue to the RabbitMQ team?

djgalloway commented 6 years ago

Looks like we weren't the only ones that got bit by this. https://bugs.launchpad.net/ubuntu/+source/erlang/+bug/1749959

I'll open a PR to re-add unattended-upgrades. The pessimist in me suspects the fix to the bug will be to disable unattended-upgrades but we'll see.