[meta] Aegir 3.18.1 release [#3086062]

Comment #1

5 October 2019 at 20:04

helmo created an issue. See original summary.

Log in or register to post comments

Comment #2

helmo CreditAttribution: helmo at Initfour websolutions for Aegir Cooperative commented 5 October 2019 at 20:07

Two remarks:
- The branch you pushed was '7.x-3.18.1' .. not '7.x-3.18.x' the gitlab-ci.yml config filters on that branch pattern to decide if it needs to run a publish job.
- The version string in the Debian changelog file should not have a suffix like `ubuntu1`

After pushing a new branch gitlab ran the pipeline and pushed new packaged to out resting repo.

I've tested this new package on one system, but the output of apt-key list does not show the updated expire date. What are we doing wrong here?

Log in or register to post comments

Comment #3

helmo CreditAttribution: helmo at Initfour websolutions for Aegir Cooperative commented 5 October 2019 at 20:31

Here's a draft for user instructions.

User instructions:
If you installed the aegir-archive-keyring package then updating it before october 12 should be sufficient.

if you used the recent instructions from http://www.aegirproject.org/#download then you'll have a deb source line deb [signed-by=/usr/share/keyrings/aegir-archive-keyring.gpg] https://debian.aegirproject.org stable main
Use:
sudo wget -O /usr/share/keyrings/aegir-archive-keyring.gpg https://debian.aegirproject.org/aegir-archive-keyring.gpg

Otherwise:

sudo wget -O /usr/share/keyrings/aegir-archive-keyring.gpg https://debian.aegirproject.org/aegir-archive-keyring.gpg
sudo apt-key add /usr/share/keyrings/aegir-archive-keyring.gpg

Log in or register to post comments

Comment #4

helmo CreditAttribution: helmo at Initfour websolutions for Aegir Cooperative commented 5 October 2019 at 20:33

My mention of the lack of change in 'apt-key list' output might be OK. The key in the aegir-archive-keyring only helps if the user has the 'signed-by=' part in their sources.list line.

Log in or register to post comments

Comment #5

colan

he/him

English

Toronto 🇨🇦

CreditAttribution: colan at Consensus Enterprises, Colan Schwartz Consulting commented 7 October 2019 at 16:45

Status:	Active	» Needs review
Related issues:		+#3085544: Update Debian repo PGP key

Thanks for finishing this. Let's see if we get any more feedback on it.

I clarified one of my mistakes in the docs. That for doing that for my other one. :)

Log in or register to post comments

Comment #6

helmo CreditAttribution: helmo at Initfour websolutions for Aegir Cooperative commented 8 October 2019 at 19:43

I didn't mention that it was finished :( ... I was testing and had my doubts.

But while we're at it we also need to include #3086056: Update bundled dehydrated ... I'm seeing failing LE renewals.

And we should definitely give some warning about this ... Tweet / mailing list.

Log in or register to post comments

Comment #7

colan

he/him

English

Toronto 🇨🇦

CreditAttribution: colan at Consensus Enterprises, Colan Schwartz Consulting commented 8 October 2019 at 19:45

Status:

Needs review

» Needs work

Log in or register to post comments

Comment #8

helmo CreditAttribution: helmo at Initfour websolutions for Aegir Cooperative commented 8 October 2019 at 21:03

3.18.2 is published ... but dred ... the release branch did not include the updated debian repo key :( ... building 3.18.3 now.

Log in or register to post comments

Comment #9

helmo CreditAttribution: helmo at Initfour websolutions for Aegir Cooperative commented 8 October 2019 at 21:20

Issue summary:	View changes
Status:	Needs work	» Needs review

Done ...
For 3.18.3 I've only published the aegir-archive-keyring package ... the rest of the packages are fine at 3.18.2

For most users a manual update step will be needed ... Added to the release notes. (and the summary here)

sudo wget -O /usr/share/keyrings/aegir-archive-keyring.gpg https://debian.aegirproject.org/aegir-archive-keyring.gpg
sudo apt-key add /usr/share/keyrings/aegir-archive-keyring.gpg