[tor-bugs] #32914 [Internal Services/Tor Sysadmin Team]: review the puppet bootstrapping process
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Feb 12 21:09:34 UTC 2020
#32914: review the puppet bootstrapping process
-------------------------------------------------+-------------------------
Reporter: anarcat | Owner: anarcat
Type: task | Status:
| needs_revision
Priority: Medium | Milestone:
Component: Internal Services/Tor Sysadmin Team | Version:
Severity: Minor | Resolution:
Keywords: tpa-roadmap-february | Actual Points:
Parent ID: #31239 | Points: 1
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Comment (by anarcat):
> The other part I am a bit unsure about was cloning the tsa repository.
I rather copied over the script. It would be nice if the script could part
of the install image.
We need to do that for other things in the install procedure, I'd argue
that problem is not specific to puppet, but more generally a problem with
our install procedure in general (so part of #31239).
That said, I'm heading towards implementing this installer as a client-
side SSH wrapper of some sort, which talks to everything magically. In
that sense, the puppet bootstrap script would indeed be copied onto the
server an ran from there.
But I think this can be considered separate from this specific procedure.
In my mind, the only thing left to check now is to see if we really need
this step of the new-machine installer:
> 10. do more puppet runs, and run a ud-replicate to get ldap users, then
more puppet runs since we now have more users:
>
> {{{
> puppet agent -t
> ud-replicate
> puppet agent -t
> puppet agent -t
> }}}
Could we possibly let this converge on its own? Maybe we could try just
skipping that step on the next install?
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/32914#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list