28 lines
1.9 KiB
Markdown
28 lines
1.9 KiB
Markdown
# Automated Package Updates
|
|
|
|
The automatic updates are controlled in Hiera (excluding RHEL7):
|
|
|
|
| Hiera key | default | comments |
|
|
|-------------------------------------|------------|-------------------------------------------------------------------------------|
|
|
| `base::automatic_updates::interval` | `weekly` | valid are `daily`, `weekly`, `boot_only` and `never` which disables the automatic updates |
|
|
| `base::automatic_updates::type` | `security` | `security` installs only security updates whereas `all` installs all updates |
|
|
| `base::automatic_updates::reboot` | `never` | valid are `never`, `when-needed` (when an updated package requests a reboot) and `when-changed` (after every update) |
|
|
| `base::automatic_updates::exclude` | `[]` | list of packages not to update, wildcards like "*" are allowed |
|
|
| `base::automatic_updates::kernel` | `false` | define if new kernel packages also should be installed automatically |
|
|
|
|
For system-wide installed Flatpak packages there is a separate key for automatically updating them:
|
|
|
|
| Hiera key | default | comments |
|
|
|------------------------------|------------|-------------------------------------------------------------------------------|
|
|
| `flatpak::updates::interval` | `weekly` | valid are `daily`, `weekly`, `boot_only` and `never` which disables the automatic updates |
|
|
|
|
|
|
|
|
Note that the updates run on midnight, for `weekly` from Sunday to Monday. There is no automatic reboot, e.g. for kernel updates.
|
|
|
|
---
|
|
**Important**
|
|
|
|
There will be no updates if you fix the package source to a snapshot/repo tag i.e. `rpm_repos::tag` or `yum_client::repo_tag` setting in Hiera point to a specfic snapshot.
|
|
|