From e8c0500b5f493cb47d311f89b00ae7fcb1223e8a Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sat, 15 Dec 2012 12:38:43 +0100
Subject: Replaced fallback file for unattended-upgrades

with a decent one for wheezy onwards. The main syntax shouldn't
change, hopefully, from now on. It's a very basic generic one,
that uses variables for Distribution/Codename and should apply
to all coming distributions.

Removed from the default 50unattended-upgrades
----------------------------------------------

- APT::Periodic::Update-Package-Lists "1";
- APT::Periodic::Unattended-Upgrade "1";
cause this is not something the unattended upgrades class should
set by default.

- APT::UnattendedUpgrades::LogDir "/var/log/";
- APT::UnattendedUpgrades::LogFile "unattended_upgrades.log";
Because we shouldn't change the default logdest by default, which
is /var/log/unattended_upgrades/*.

- Blacklist for linux-image*, because this we shouldn't blacklist
  packages by default.
---
 files/50unattended-upgrades | 56 ++++-----------------------------------------
 1 file changed, 5 insertions(+), 51 deletions(-)

diff --git a/files/50unattended-upgrades b/files/50unattended-upgrades
index 46fc0dc..a6f22ab 100644
--- a/files/50unattended-upgrades
+++ b/files/50unattended-upgrades
@@ -1,58 +1,12 @@
 // this file is managed by puppet !
-//
-//See https://wiki.ubuntu.com/AutomaticUpdates for more details about this feature.
 
-// allowed (origin, archive) pairs
-Unattended-Upgrade::Allowed-Origins {
-	"Debian stable";
-	"Debian-Security stable";
-//	"Debian testing";
+Unattended-Upgrade::Origins-Pattern {
+  "o=${distro_id},n=${distro_codename}";
+  "o=${distro_id},n=${distro_codename}-updates";  
+  "o=${distro_id},n=${distro_codename}-proposed-updates";
+  "o=${distro_id},n=${distro_codename},l=Debian-security";
 };
 
-APT::Periodic::Update-Package-Lists "1";
-APT::Periodic::Unattended-Upgrade "1";
 Unattended-Upgrade::Mail "root";
 Unattended-Upgrade::MailOnlyOnError "true";
 
-APT::UnattendedUpgrades::LogDir "/var/log/";
-APT::UnattendedUpgrades::LogFile "unattended_upgrades.log";
-
-Unattended-Upgrade::Package-Blacklist {
-	// we don't want the kernel to be updated so nagios still can give a warning if there is
-	// a manual update (and reboot) left
-
-        "linux-image-*";
-
-	// unfortunately there seems to be a bug in unattended-upgrades <= 0.62 that wildcards aren't recognized:
-	//2009-12-11 13:41:43,267 INFO Initial blacklisted packages: linux-image-*
-	//2009-12-11 13:41:43,267 INFO Starting unattended upgrades script
-	//2009-12-11 13:41:43,267 INFO Allowed origins are: ["['Debian', 'stable']", "['Debian-Security', 'stable']"]
-	//2009-12-11 13:41:45,233 INFO Packages that are upgraded: linux-image-2.6.26-2-amd64
-	//2009-12-11 13:41:45,233 INFO Writing dpkg log to '/var/log/unattended-upgrades-dpkg_2009-12-11_13:41:45.233713.log'
-	//2009-12-11 13:42:11,988 INFO All upgrades installed
-
-        // lenny
-	"linux-image-2.6.26-1-686";
-	"linux-image-2.6.26-1-amd64";
-        "linux-image-2.6.26-1-xen-686";
-        "linux-image-2.6.26-1-xen-amd64";
-	"linux-image-2.6.26-1-vserver-686";
-	"linux-image-2.6.26-1-vserver-amd64";
-
-	"linux-image-2.6.26-2-686";
-	"linux-image-2.6.26-2-amd64";
-        "linux-image-2.6.26-2-xen-686";
-        "linux-image-2.6.26-2-xen-amd64";
-	"linux-image-2.6.26-2-vserver-686";
-	"linux-image-2.6.26-2-vserver-amd64";
-
-	// squeeze
-	"linux-image-2.6.32-5-686";
-	"linux-image-2.6.32-5-amd64";
-	"linux-image-2.6.32-5-xen-686";
-	"linux-image-2.6.32-5-xen-amd64";
-	"linux-image-2.6.32-5-vserver-686";
-	"linux-image-2.6.32-5-vserver-amd64";
-
-};
-
-- 
cgit v1.2.3


From 4e553d4b5ffe042744151e1d6c71c14c622ddf0c Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sat, 15 Dec 2012 12:49:20 +0100
Subject: 50unattended-upgrades: lenny version

---
 files/lenny/50unattended-upgrades | 9 +++++++++
 1 file changed, 9 insertions(+)
 create mode 100644 files/lenny/50unattended-upgrades

diff --git a/files/lenny/50unattended-upgrades b/files/lenny/50unattended-upgrades
new file mode 100644
index 0000000..953edbf
--- /dev/null
+++ b/files/lenny/50unattended-upgrades
@@ -0,0 +1,9 @@
+// this file is managed by puppet !
+
+Unattended-Upgrade::Allowed-Origins {
+	"Debian stable";
+	"Debian-Security stable";
+};
+
+Unattended-Upgrade::Mail "root";
+
-- 
cgit v1.2.3


From 55305baaa946705aa9dcfa921c4985485b290cc3 Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sat, 15 Dec 2012 12:55:35 +0100
Subject: 50unattended-upgrades: squeeze version

---
 files/squeeze/50unattended-upgrades | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100644 files/squeeze/50unattended-upgrades

diff --git a/files/squeeze/50unattended-upgrades b/files/squeeze/50unattended-upgrades
new file mode 100644
index 0000000..5e872d5
--- /dev/null
+++ b/files/squeeze/50unattended-upgrades
@@ -0,0 +1,10 @@
+// this file is managed by puppet !
+
+Unattended-Upgrade::Allowed-Origins {
+        "${distro_id} stable";
+        "${distro_id} ${distro_codename}-security";
+        "${distro_id} ${distro_codename}-updates";
+        "${distro_id} ${distro_codename}-proposed-updates";
+};
+
+Unattended-Upgrade::Mail "root";
-- 
cgit v1.2.3


From 1fffb559e5af215ebb4ff9f05265a937c3f6e842 Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sat, 15 Dec 2012 15:29:08 +0100
Subject: 50unattended-upgrades: ubuntu precise version

---
 files/precise/50unattended-upgrades | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 files/precise/50unattended-upgrades

diff --git a/files/precise/50unattended-upgrades b/files/precise/50unattended-upgrades
new file mode 100644
index 0000000..f63045b
--- /dev/null
+++ b/files/precise/50unattended-upgrades
@@ -0,0 +1,12 @@
+// this file is managed by puppet !
+
+Unattended-Upgrade::Allowed-Origins {
+        "${distro_id}:${distro_codename}-security";
+        "${distro_id}:${distro_codename}-updates";
+        "${distro_id}:${distro_codename}-proposed";
+        "${distro_id}:${distro_codename}-backports";
+};
+
+Unattended-Upgrade::Mail "root";
+Unattended-Upgrade::MailOnlyOnError "true";
+
-- 
cgit v1.2.3


From 29a6478ced56a74cbd988e2be716ed60a4cc383b Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sat, 15 Dec 2012 15:29:48 +0100
Subject: 50unattended-upgrades: ubuntu quantal, symlink to precise

---
 files/quantal/50unattended-upgrades | 1 +
 1 file changed, 1 insertion(+)
 create mode 120000 files/quantal/50unattended-upgrades

diff --git a/files/quantal/50unattended-upgrades b/files/quantal/50unattended-upgrades
new file mode 120000
index 0000000..db213d7
--- /dev/null
+++ b/files/quantal/50unattended-upgrades
@@ -0,0 +1 @@
+../precise/50unattended-upgrades
\ No newline at end of file
-- 
cgit v1.2.3


From 28f7fa6bc2be13dcc1651d81c97e84e8f5a2389b Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sun, 16 Dec 2012 10:35:04 +0100
Subject: from Ubuntu oneiric (11.10) on, the 50unattended-upgrades default can
 be used

---
 files/precise/50unattended-upgrades | 12 ------------
 files/quantal/50unattended-upgrades |  1 -
 2 files changed, 13 deletions(-)
 delete mode 100644 files/precise/50unattended-upgrades
 delete mode 120000 files/quantal/50unattended-upgrades

diff --git a/files/precise/50unattended-upgrades b/files/precise/50unattended-upgrades
deleted file mode 100644
index f63045b..0000000
--- a/files/precise/50unattended-upgrades
+++ /dev/null
@@ -1,12 +0,0 @@
-// this file is managed by puppet !
-
-Unattended-Upgrade::Allowed-Origins {
-        "${distro_id}:${distro_codename}-security";
-        "${distro_id}:${distro_codename}-updates";
-        "${distro_id}:${distro_codename}-proposed";
-        "${distro_id}:${distro_codename}-backports";
-};
-
-Unattended-Upgrade::Mail "root";
-Unattended-Upgrade::MailOnlyOnError "true";
-
diff --git a/files/quantal/50unattended-upgrades b/files/quantal/50unattended-upgrades
deleted file mode 120000
index db213d7..0000000
--- a/files/quantal/50unattended-upgrades
+++ /dev/null
@@ -1 +0,0 @@
-../precise/50unattended-upgrades
\ No newline at end of file
-- 
cgit v1.2.3


From 2fa22c2268b34173ee39fcfd4525192fd8707ef2 Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sun, 16 Dec 2012 10:35:59 +0100
Subject: refactor 50unattended-upgrades default file

The syntax is valid from v0.70 on (Debian Wheezy, Ubuntu Oneiric
and later).
It includes Unattended-Upgrade::Origins-Patterns both for Debian
and Ubuntu, which even work on systems with both package sources
enables. On Debian- or Ubuntu-only systems it doesn't hurt to have
both Patterns included.
---
 files/50unattended-upgrades | 17 ++++++++++++-----
 1 file changed, 12 insertions(+), 5 deletions(-)

diff --git a/files/50unattended-upgrades b/files/50unattended-upgrades
index a6f22ab..7d4835c 100644
--- a/files/50unattended-upgrades
+++ b/files/50unattended-upgrades
@@ -1,12 +1,19 @@
 // this file is managed by puppet !
 
 Unattended-Upgrade::Origins-Pattern {
-  "o=${distro_id},n=${distro_codename}";
-  "o=${distro_id},n=${distro_codename}-updates";  
-  "o=${distro_id},n=${distro_codename}-proposed-updates";
-  "o=${distro_id},n=${distro_codename},l=Debian-security";
+  // Debian
+  "o=${distro_id},a=${distro_codename}";
+  "o=${distro_id},a=${distro_codename},l=Debian-security";
+  "o=${distro_id} Backports,a=${distro_codename}-backports";  
+  // Ubuntu specific 
+  "o=${distro_id},a=${distro_codename}-security";
+  "o=${distro_id},a=${distro_codename}-backports";
+  "o=${distro_id},a=${distro_codename}-proposed";
 };
 
+APT::Periodic::Update-Package-Lists "1";
+APT::Periodic::Download-Upgradeable-Packages "1";
+APT::Periodic::Unattended-Upgrade "1";
+
 Unattended-Upgrade::Mail "root";
 Unattended-Upgrade::MailOnlyOnError "true";
-
-- 
cgit v1.2.3


From f1f64edd890b410db3253276bfbe8426af6bbe1b Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sun, 16 Dec 2012 10:43:43 +0100
Subject: use oldstable for lenny, force unattended upgrades

---
 files/lenny/50unattended-upgrades | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/files/lenny/50unattended-upgrades b/files/lenny/50unattended-upgrades
index 953edbf..d55bb29 100644
--- a/files/lenny/50unattended-upgrades
+++ b/files/lenny/50unattended-upgrades
@@ -1,9 +1,13 @@
 // this file is managed by puppet !
 
 Unattended-Upgrade::Allowed-Origins {
-	"Debian stable";
-	"Debian-Security stable";
+	"Debian oldstable";
+	"Debian-Security oldstable";
 };
 
+APT::Periodic::Update-Package-Lists "1";
+APT::Periodic::Download-Upgradeable-Packages "1";
+APT::Periodic::Unattended-Upgrade "1";
+
 Unattended-Upgrade::Mail "root";
 
-- 
cgit v1.2.3


From 727b0cd2185f81199e9817fac4e52f4ad3c8f7e0 Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sun, 16 Dec 2012 10:46:21 +0100
Subject: squeeze: use colon seperator to be able to include backport updates,

also force unattended upgrades
---
 files/squeeze/50unattended-upgrades | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/files/squeeze/50unattended-upgrades b/files/squeeze/50unattended-upgrades
index 5e872d5..0901ad3 100644
--- a/files/squeeze/50unattended-upgrades
+++ b/files/squeeze/50unattended-upgrades
@@ -1,10 +1,14 @@
 // this file is managed by puppet !
 
 Unattended-Upgrade::Allowed-Origins {
-        "${distro_id} stable";
-        "${distro_id} ${distro_codename}-security";
-        "${distro_id} ${distro_codename}-updates";
-        "${distro_id} ${distro_codename}-proposed-updates";
+        "${distro_id}:stable";
+        "${distro_id}:${distro_codename}-security";
+        "${distro_id}:${distro_codename}-updates";
+        "${distro_id} Backports:${distro_codename}-backports";
 };
 
+APT::Periodic::Update-Package-Lists "1";
+APT::Periodic::Download-Upgradeable-Packages "1";
+APT::Periodic::Unattended-Upgrade "1";
+
 Unattended-Upgrade::Mail "root";
-- 
cgit v1.2.3


From 0d5311b1a9fa82e4e423a9e7ce7f5eb919bab40d Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Sun, 16 Dec 2012 11:12:15 +0100
Subject: use codename instead of archive variable for Debian

---
 files/50unattended-upgrades | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/files/50unattended-upgrades b/files/50unattended-upgrades
index 7d4835c..36c1f54 100644
--- a/files/50unattended-upgrades
+++ b/files/50unattended-upgrades
@@ -2,9 +2,9 @@
 
 Unattended-Upgrade::Origins-Pattern {
   // Debian
-  "o=${distro_id},a=${distro_codename}";
-  "o=${distro_id},a=${distro_codename},l=Debian-security";
-  "o=${distro_id} Backports,a=${distro_codename}-backports";  
+  "o=${distro_id},n=${distro_codename}";
+  "o=${distro_id},n=${distro_codename},l=Debian-security";
+  "o=${distro_id} Backports,n=${distro_codename}-backports";  
   // Ubuntu specific 
   "o=${distro_id},a=${distro_codename}-security";
   "o=${distro_id},a=${distro_codename}-backports";
-- 
cgit v1.2.3


From f3daf58b9eb14aba385c20abb73191c0c408f367 Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Wed, 2 Jan 2013 17:29:05 +0100
Subject: forgot ${distro_codename}-updates in 50unattended-upgrades fallback

---
 files/50unattended-upgrades | 1 +
 1 file changed, 1 insertion(+)

diff --git a/files/50unattended-upgrades b/files/50unattended-upgrades
index 36c1f54..ebf9f49 100644
--- a/files/50unattended-upgrades
+++ b/files/50unattended-upgrades
@@ -3,6 +3,7 @@
 Unattended-Upgrade::Origins-Pattern {
   // Debian
   "o=${distro_id},n=${distro_codename}";
+  "o=${distro_id},n=${distro_codename}-updates";
   "o=${distro_id},n=${distro_codename},l=Debian-security";
   "o=${distro_id} Backports,n=${distro_codename}-backports";  
   // Ubuntu specific 
-- 
cgit v1.2.3