alpine: enable automatic upgrades only for virtual machines

And factor out VM stuff into a separate file.
2025-10-22 18:44:05 +02:00 · 2025-10-22 18:44:05 +02:00 · 1b206517b6
commit 1b206517b6
parent e2c9acd872
2 changed files with 28 additions and 26 deletions
--- a/roles/alpine/tasks/main.yml
+++ b/roles/alpine/tasks/main.yml
@ -65,7 +65,6 @@
    - acl
    - git
    - iproute2
-    - logrotate
    - nftables
    - procps
    - rsync
@ -98,33 +97,11 @@

 - meta: flush_handlers

- name: Enable QEMU guest agent
-  when: is_virtual
-  block:
-    - name: Install QEMU guest agent package
-      package:
-        name: qemu-guest-agent
-
-    - name: Enable QEMU guest agent service
-      service:
-        name: qemu-guest-agent
-        enabled: yes
-        state: started
-
- name: Install automatic upgrade script
-  copy:
-    dest: /etc/periodic/weekly/
-    src: unattended-upgrade
-    mode: 0755
-
- name: Configure log rotation for automatic upgrades
-  copy:
-    dest: /etc/logrotate.d/unattended-upgrade
-    src: unattended-upgrade.logrotate
-    mode: 0644
-
 - name: Set authorized SSH keys
  authorized_key:
    user: root
    exclusive: true
    key: "{{ ssh_keys | join('\n') }}"
+
+- when: is_virtual
+  include_tasks: vm.yml
--- a/roles/alpine/tasks/vm.yml
+++ b/roles/alpine/tasks/vm.yml
@ -0,0 +1,25 @@
+- name: Install QEMU guest agent package
+  package:
+    name: qemu-guest-agent
+
+- name: Enable QEMU guest agent service
+  service:
+    name: qemu-guest-agent
+    enabled: yes
+    state: started
+
+- name: Install logrotate
+  package:
+    name: logrotate
+
+- name: Install automatic upgrade script
+  copy:
+    dest: /etc/periodic/weekly/
+    src: unattended-upgrade
+    mode: "0755"
+
+- name: Configure log rotation for automatic upgrades
+  copy:
+    dest: /etc/logrotate.d/unattended-upgrade
+    src: unattended-upgrade.logrotate
+    mode: "0644"