1f2410e997
Enhance apt-get update handling for Debian/Ubuntu/Devuan containers by adding regional mirror lists and a fallback routine. The script now detects container timezone to prefer regional mirrors, builds a randomized candidate list, probes each mirror (timeout on TCP:80), rewrites /etc/apt/* sources to use a working mirror, and retries apt-get update until success. Keeps the existing non-interactive dist-upgrade and cleans up apt lists as before. This improves reliability of updates inside LXC containers when default mirrors are unreachable or misbehaving.
100 lines
4.4 KiB
Bash
100 lines
4.4 KiB
Bash
#!/usr/bin/env bash
|
|
|
|
# Copyright (c) 2021-2026 community-scripts ORG
|
|
# Author: MickLesk (CanbiZ)
|
|
# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE
|
|
#
|
|
# This script is installed locally by cron-update-lxcs.sh and executed
|
|
# by cron. It updates all LXC containers using their native package manager.
|
|
|
|
CONF_FILE="/etc/update-lxcs.conf"
|
|
|
|
echo -e "\n $(date)"
|
|
|
|
# Collect excluded containers from arguments
|
|
excluded_containers=("$@")
|
|
|
|
# Merge exclusions from config file if it exists
|
|
if [[ -f "$CONF_FILE" ]]; then
|
|
conf_exclude=$(grep -oP '^\s*EXCLUDE\s*=\s*\K[0-9,]+' "$CONF_FILE" 2>/dev/null || true)
|
|
IFS=',' read -ra conf_ids <<<"$conf_exclude"
|
|
for id in "${conf_ids[@]}"; do
|
|
id="${id// /}"
|
|
[[ -n "$id" ]] && excluded_containers+=("$id")
|
|
done
|
|
fi
|
|
|
|
function update_container() {
|
|
local container=$1
|
|
local name
|
|
name=$(pct exec "$container" hostname 2>/dev/null || echo "unknown")
|
|
local os
|
|
os=$(pct config "$container" | awk '/^ostype/ {print $2}')
|
|
echo -e "\n [Info] Updating $container : $name (os: $os)"
|
|
case "$os" in
|
|
alpine) pct exec "$container" -- ash -c "apk -U upgrade" ;;
|
|
archlinux) pct exec "$container" -- bash -c "pacman -Syyu --noconfirm" ;;
|
|
fedora | rocky | centos | alma) pct exec "$container" -- bash -c "dnf -y update && dnf -y upgrade" ;;
|
|
ubuntu | debian | devuan) pct exec "$container" -- bash -c '
|
|
EU_MIRRORS="ftp.de.debian.org ftp.fr.debian.org ftp.nl.debian.org ftp.uk.debian.org ftp.ch.debian.org ftp.se.debian.org ftp.it.debian.org ftp.fau.de ftp.halifax.rwth-aachen.de debian.mirror.lrz.de mirror.init7.net debian.ethz.ch mirrors.dotsrc.org debian.mirrors.ovh.net"
|
|
US_MIRRORS="ftp.us.debian.org ftp.ca.debian.org debian.csail.mit.edu mirrors.ocf.berkeley.edu mirrors.wikimedia.org debian.osuosl.org mirror.cogentco.com"
|
|
AP_MIRRORS="ftp.au.debian.org ftp.jp.debian.org ftp.tw.debian.org ftp.kr.debian.org ftp.hk.debian.org ftp.sg.debian.org mirror.aarnet.edu.au mirror.nitc.ac.in"
|
|
|
|
TZ=$(cat /etc/timezone 2>/dev/null || echo "UTC")
|
|
case "$TZ" in
|
|
Europe/*|Arctic/*) REGIONAL="$EU_MIRRORS"; OTHERS="$US_MIRRORS $AP_MIRRORS" ;;
|
|
America/*) REGIONAL="$US_MIRRORS"; OTHERS="$EU_MIRRORS $AP_MIRRORS" ;;
|
|
Asia/*|Australia/*|Pacific/*) REGIONAL="$AP_MIRRORS"; OTHERS="$EU_MIRRORS $US_MIRRORS" ;;
|
|
*) REGIONAL=""; OTHERS="$EU_MIRRORS $US_MIRRORS $AP_MIRRORS" ;;
|
|
esac
|
|
|
|
apt-get update || {
|
|
echo "Acquire::By-Hash \"no\";" >/etc/apt/apt.conf.d/99no-by-hash
|
|
ALL_MIRRORS="$(printf "%s\n" $OTHERS | shuf | head -3 | xargs) ftp.debian.org $(printf "%s\n" $REGIONAL | shuf | head -3 | xargs)"
|
|
for mirror in $ALL_MIRRORS; do
|
|
timeout 2 bash -c "echo >/dev/tcp/$mirror/80" 2>/dev/null || continue
|
|
for src in /etc/apt/sources.list.d/debian.sources /etc/apt/sources.list; do
|
|
[ -f "$src" ] && sed -i "s|URIs: http[s]*://[^/]*/|URIs: http://${mirror}/|g; s|deb http[s]*://[^/]*/|deb http://${mirror}/|g" "$src"
|
|
done
|
|
rm -rf /var/lib/apt/lists/*
|
|
if apt-get update; then echo " Using mirror: $mirror"; break; else echo " Mirror $mirror failed"; fi
|
|
done
|
|
}
|
|
DEBIAN_FRONTEND=noninteractive apt-get -o Dpkg::Options::="--force-confold" dist-upgrade -y
|
|
rm -rf /usr/lib/python3.*/EXTERNALLY-MANAGED' ;;
|
|
opensuse) pct exec "$container" -- bash -c "zypper ref && zypper --non-interactive dup" ;;
|
|
*) echo " [Warn] Unknown OS type '$os' for container $container, skipping" ;;
|
|
esac
|
|
}
|
|
|
|
for container in $(pct list | awk '{if(NR>1) print $1}'); do
|
|
excluded=false
|
|
for excluded_container in "${excluded_containers[@]}"; do
|
|
if [ "$container" == "$excluded_container" ]; then
|
|
excluded=true
|
|
break
|
|
fi
|
|
done
|
|
if [ "$excluded" == true ]; then
|
|
echo -e "[Info] Skipping $container"
|
|
sleep 1
|
|
else
|
|
status=$(pct status "$container")
|
|
if pct config "$container" 2>/dev/null | grep -q "^template:"; then
|
|
echo -e "[Info] Skipping template $container"
|
|
continue
|
|
fi
|
|
if [ "$status" == "status: stopped" ]; then
|
|
echo -e "[Info] Starting $container"
|
|
pct start "$container"
|
|
sleep 5
|
|
update_container "$container" || echo " [Error] Update failed for $container"
|
|
echo -e "[Info] Shutting down $container"
|
|
pct shutdown "$container" --timeout 60 &
|
|
elif [ "$status" == "status: running" ]; then
|
|
update_container "$container" || echo " [Error] Update failed for $container"
|
|
fi
|
|
fi
|
|
done
|
|
wait
|