PKI files should live in /var/lib #3396
Comments
|
On the minion, the |
|
I am sorry @madduck, I don't think we should change the default here. In freebsd for instance this is a violation, and in Red Hat they often put certs in /etc/pki |
Sure, every distro does their own thing, which is why I was |
|
But distro and especially unixes do not follow this standard, this is a dead end debate and I would prefer to not get drawn into it, if our package maintainers all agree that we should create a new sub-directory and recreate all keys so that they can foll the FHS that is their thing. |
|
For future reference: http://bugs.debian.org/698898 |
ghost
mentioned this issue
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Feb 28, 2018
The files in /etc/salt/pki are not configuration files in the sense
of the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to /var/lib/salt/pki (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a VARIABLE_STATE_DIR syspaths variable which
defaults to CONFIG_DIR, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Mar 15, 2018
The files in /etc/salt/pki are not configuration files in the sense
of the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to /var/lib/salt/pki (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a VARIABLE_STATE_DIR syspaths variable which
defaults to CONFIG_DIR, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Jan 24, 2020
The files in /etc/salt/pki are not configuration files in the sense
of the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to /var/lib/salt/pki (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a STATE_DIR syspaths variable which defaults to
CONFIG_DIR, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#46277
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Jun 22, 2020
The files in /etc/salt/pki are not configuration files in the sense
of the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to /var/lib/salt/pki (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a STATE_DIR syspaths variable which defaults to
CONFIG_DIR, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#46277
Signed-off-by: Benjamin Drung <benjamin.drung@cloud.ionos.com>
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Oct 9, 2020
The files in /etc/salt/pki are not configuration files in the sense
of the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to /var/lib/salt/pki (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a STATE_DIR syspaths variable which defaults to
CONFIG_DIR, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#46277
Signed-off-by: Benjamin Drung <benjamin.drung@cloud.ionos.com>
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Oct 22, 2020
The files in /etc/salt/pki are not configuration files in the sense
of the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to /var/lib/salt/pki (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a STATE_DIR syspaths variable which defaults to
CONFIG_DIR, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#46277
Signed-off-by: Benjamin Drung <benjamin.drung@cloud.ionos.com>
bdrung
added a commit
to bdrung/salt
that referenced
this issue
May 12, 2021
The files in /etc/salt/pki are not configuration files in the sense
of the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to /var/lib/salt/pki (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a STATE_DIR syspaths variable which defaults to
CONFIG_DIR, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#46277
Signed-off-by: Benjamin Drung <benjamin.drung@cloud.ionos.com>
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Oct 13, 2021
The files in /etc/salt/pki are not configuration files in the sense
of the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to /var/lib/salt/pki (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a STATE_DIR syspaths variable which defaults to
CONFIG_DIR, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#46277
Signed-off-by: Benjamin Drung <benjamin.drung@cloud.ionos.com>
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Oct 14, 2021
The files in /etc/salt/pki are not configuration files in the sense
of the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to /var/lib/salt/pki (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a STATE_DIR syspaths variable which defaults to
CONFIG_DIR, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#46277
Signed-off-by: Benjamin Drung <benjamin.drung@cloud.ionos.com>
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Apr 15, 2022
The files in `/etc/salt/pki` are not configuration files in the sense of
the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to `/var/lib/salt/pki` (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a `STATE_DIR` syspaths variable which defaults to
`CONFIG_DIR`, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#61453
Signed-off-by: Benjamin Drung <benjamin.drung@ionos.com>
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Apr 15, 2022
The files in `/etc/salt/pki` are not configuration files in the sense of
the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to `/var/lib/salt/pki` (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a `STATE_DIR` syspaths variable which defaults to
`CONFIG_DIR`, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#61453
Signed-off-by: Benjamin Drung <benjamin.drung@ionos.com>
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Apr 16, 2022
The files in `/etc/salt/pki` are not configuration files in the sense of
the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to `/var/lib/salt/pki` (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a `STATE_DIR` syspaths variable which defaults to
`CONFIG_DIR`, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Forwarded: saltstack#61453
Signed-off-by: Benjamin Drung <benjamin.drung@ionos.com>
bdrung
added a commit
to bdrung/salt
that referenced
this issue
Sep 29, 2022
The files in `/etc/salt/pki` are not configuration files in the sense of
the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to `/var/lib/salt/pki` (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a `LIB_STATE_DIR` syspaths variable which defaults
to `CONFIG_DIR`, but can be individually customized.
fixes saltstack#3396
Bug-Debian: https://bugs.debian.org/698898
Signed-off-by: Benjamin Drung <benjamin.drung@ionos.com>
Ch3LL
pushed a commit
that referenced
this issue
Sep 29, 2022
The files in `/etc/salt/pki` are not configuration files in the sense of
the FHS ("local file used to control the operation of a program").
Debian wants to change the default location to `/var/lib/salt/pki` (to
properly follow FHS and to allow setting StateDirectory in the salt
master systemd configuration).
Therefore introduce a `LIB_STATE_DIR` syspaths variable which defaults
to `CONFIG_DIR`, but can be individually customized.
fixes #3396
Bug-Debian: https://bugs.debian.org/698898
Signed-off-by: Benjamin Drung <benjamin.drung@ionos.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The files in
/etc/salt/pkiare not configuration files in the sense of the FHS ("local file used to control the operation of a program") and hence do not belong in/etc.The FHS-proper location for these auto-generated but static files is
/var/lib. I suggest that the defaults be changed to `/var/lib/salt/{master,minion}/pki.To assist users with the migration,
/etc/salt/pkicould be used as a fallback, in combination with an appropriate warning and reference to a README file or so.The text was updated successfully, but these errors were encountered: