Hello, > attached is a patch that I use to prevent puppet from overwriting the > CA certificate if it is already present on the local host.
When you reported this bug, it was for 0.24, does this still happen with newer versions of puppet? > --- puppet.orig/lib/puppet/network/client/ca.rb > +++ puppet/lib/puppet/network/client/ca.rb > @@ -48,7 +48,9 @@ > > # Only write the cert out if it passes validating. > Puppet.settings.write(:hostcert) do |f| f.print cert end > - Puppet.settings.write(:localcacert) do |f| f.print cacert end > + unless FileTest.exist?(Puppet[:localcacert]) > + Puppet.settings.write(:localcacert) do |f| f.print cacert end > + end > > @cert > end In newer versions of puppet, most of the above code doesn't exist anywhere I could find, so I guess that this has either been resolved in newer versions, or you have been forward porting this patch to new versions? If you do have a newer version, could you send it to the bug report? micah --
signature.asc
Description: Digital signature