Refactored & linted updates role to be faster

novateams · Jan 29, 2024 · b61b08d · b61b08d
1 parent 947be24
commit b61b08d
Show file tree

Hide file tree

Showing 3 changed files with 11 additions and 19 deletions.
diff --git a/nova/core/roles/updates/tasks/debian_family.yml b/nova/core/roles/updates/tasks/debian_family.yml
@@ -2,7 +2,7 @@
 - name: Updating packages...
   ansible.builtin.apt:
     update_cache: true
-    state: latest
+    state: present
     autoclean: true
     autoremove: true
     upgrade: full
@@ -28,26 +28,22 @@
 - name: Including unattended upgrades tasks...
   when: debian_family_unattended_upgrades
   block:
-    - name: Installing unattended upgrades package ...
+    - name: Installing unattended upgrades package...
       ansible.builtin.apt:
         name: unattended-upgrades
-        state: latest
+        state: present
       register: linux_updates
       until: not linux_updates.failed
       retries: 5
       delay: 3
 
-    - name: Ensure that /etc/apt/apt.conf.d/20auto-upgrades exists ...
-      ansible.builtin.file:
-        path: /etc/apt/apt.conf.d/20auto-upgrades
-        state: touch
-        mode: "0644"
-
-    - name: Enable unattended upgrades ...
+    - name: Enable unattended upgrades...
       ansible.builtin.lineinfile:
         path: /etc/apt/apt.conf.d/{{ item.file }}
         regexp: "{{ item.match }}"
         line: "{{ item.value }}"
+        create: true
+        mode: "0644"
       loop:
         - file: 20auto-upgrades
           match: .*Update-Package-Lists
@@ -70,7 +66,7 @@
           match: Unattended-Upgrade::Origins-Pattern { "origin=*";};
           value: Unattended-Upgrade::Origins-Pattern { "origin=*";};
 
-    - name: Set Automatic-Reboot value for upgrades ...
+    - name: Set Automatic-Reboot value for upgrades...
       ansible.builtin.lineinfile:
         path: /etc/apt/apt.conf.d/50unattended-upgrades
         regexp: .*Automatic-Reboot
@@ -79,17 +75,13 @@
 - name: Disabling unattended upgrades...
   when: not debian_family_unattended_upgrades
   block:
-    - name: Ensure that /etc/apt/apt.conf.d/20auto-upgrades exists ...
-      ansible.builtin.file:
-        path: /etc/apt/apt.conf.d/20auto-upgrades
-        state: touch
-        mode: "0644"
-
     - name: Disabling unattended upgrades & updates...
       ansible.builtin.lineinfile:
         path: /etc/apt/apt.conf.d/20auto-upgrades
         regexp: "{{ item.regexp }}"
         line: "{{ item.line }}"
+        create: true
+        mode: "0644"
       loop:
         - regexp: .*Unattended-Upgrade
           line: APT::Periodic::Unattended-Upgrade "0";

diff --git a/nova/core/roles/updates/tasks/freebsd.yml b/nova/core/roles/updates/tasks/freebsd.yml
@@ -2,4 +2,4 @@
 - name: Updating all packages...
   ansible.builtin.package:
     name: "*"
-    state: latest
+    state: latest # Latest is used in order to perform a full upgrade
diff --git a/nova/core/roles/updates/tasks/redhat_family.yml b/nova/core/roles/updates/tasks/redhat_family.yml
@@ -3,7 +3,7 @@
   ansible.builtin.yum:
     name: "*"
     update_cache: true
-    state: latest
+    state: latest # Latest is used in order to perform a full upgrade
 
 - name: Running update cleanup...
   ansible.builtin.yum: