-
-
Notifications
You must be signed in to change notification settings - Fork 1.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(image): Update Debian base image to Debian 11 "Bullseye" #2116
Conversation
This comment has been minimized.
This comment has been minimized.
btw, I would prefer version numbers instead of code names in the future --> |
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
Now that |
I propose, changing |
We should add "certbot" and keep the other options IMO. having "certbot" would mean, pick any provider you want. |
The discussion about LE vs certbot is very valid, but I'd rather like to keep this PR as simple as possible. The discussion could very well be solved with a future PR so we do not mix up concerns here. |
Why would we want to keep a outdated/not clear option naming? This is a major release, expected to introduce breaking changes. PS: I don't know if that json file is certbot specific or a standardized acme json file. |
One last message about it, for me |
I agree, but we do not immediately release |
I haven't read the whole thread again, but I was the opinion, there were some other breaking changes mentioned, when introducing debian 11 🤷 PS: My answer above was primary directed to @williamdes, because he wanted to keep the "letsencrypt" option. |
As we don't enable "Discussions" here and our internal GH teams area splits moderators and maintainers it seems I can't pick it up over there. That'd leave creating a new issue, but I think I'll just weigh in here since my response probably resolves it.
While I agree with the concerns about In the past I have considered adding
Yeah, at one point I considered We just check a hard-coded mount path for a few variations of expected cert folders and then for a few hard-coded pem filenames (cert:
It's neither. You can view the linked lines of code to the
Absolutely agree. TL;DR👎 to FWIW, refactoring this particular feature has been on my TODO for quite a while, but I've been busy outside of the project as well as spending time for this project on assisting with other PRs / issues. With the refactoring that was started in As for internally using |
Those IIRC were related to actual changes from the Debian upgrade, such as the default hashing for user accounts changing and if we should consider adopting that for Dovecot (which spurred some discussion about alternatives like I've tried to manage the noise in the discussion by hiding no longer relevant messages, while keeping some (mostly mine) that were still deemed of value for someone going over the PR, some which are buried now until you expand the collapsed entries to get the full PR discussion listed such as:
Regarding those changes, password hashing won't be touched anytime soon due to effort required to investigate implementation and compatibility concerns (it was discussed in the WIP encryption feature thread too). And for the
We may want to wait a week, one of the open issues about No objections from me, other than that concern. |
I agree. I admit, I should have take a deeper look before. My point was, that
Ack. I am fine with not changing the wording for now. |
We can with merging this PR for a week, sure. There is no rush with releasing v11. |
@polarathene please reach back to me whe you're fine with merging this (when the issues seem resolved, I guess), or go ahead and merge this yourself by all accounts :) |
Description
This PR updates the base image to Debian 11 "Bullseye". Debian 11 is going to be released on the 14th of August, 2021. We can already go ahead and see what our CI pipeline says about this change to prepare for the update.
Type of change
Checklist:
docs/
)