[Pkg-puppet-devel] Bug#1079793: puppetserver 7 upgrade doesn't clean up old puppetmaster 5 files
Antoine Beaupré
anarcat at debian.org
Tue Aug 27 17:37:54 BST 2024
On 2024-08-27 10:11:19, Jérôme Charaoui wrote:
> Hello,
>
> Just a note of caution: the upgrade from puppet-master to puppetserver
> uses the same "puppet.conf" configuration, which sometimes has the
> "vardir" setting defined to "/var/lib/puppet". If that's the case, then
> this directory will not only contain the "old puppetmaster" files, but
> also the new ones.
>
> As for the ssl files, puppetserver has some heuristics to move the files
> itself on upgrade, see the "puppetserver migrate" command. Since the
> puppetserver CA files are quite sensitive and losing them can cause a
> serious outage, my preference would be to *not* touch these at all with
> the package maintscripts.
>
> In general, I'm weary of dealing with this issue because the medicine
> might end up being worse than the disease (a few stray files).
> Maintainer's time is also scarce, and I'm also tempted to mention that
> the 5.5 -> 7 upgrade ship in Debian has sailed...
Not everyone has upgraded to bookworm just yet, i feel it's still time
to address some of those issues, even if only in a bug report like this.
A.
--
The greatest crimes in the world are not committed by people breaking
the rules but by people following the rules. It's people who follow
orders that drop bombs and massacre villages.
- Banksy
More information about the Pkg-puppet-devel
mailing list