Support standard Aptitude for all system updates w/o the need to run Barracuda [#1388704]

Per my comment on "Should I run aptitude full-upgrade or is that handled via Barracuda or Octopus?" in the the BOA group:

Just wondering, perhaps for the 'wishlist': Since Man page, fonts, grub and kernel stuff has hooks that run after an aptitude update, I wonder if it's possible for Barracuda to add its own hooks so that if the vulnerable parts (NginX, PHP-FPM etc) are updated, a script is run to get the latest and recompile? Would make it largely bomb-proof, though I don't know enough about Aptitude to know if it's possible. Any thoughts?

I see there are http://wiki.debian.org/DpkgTriggers which would allow Barracuda (or part of its script) to be called to auto-recompile NginX & PHP-FPM only if a sub-module or related package was updated...

This would be a great feature and would mean server admins can just run apt-get upgrade or aptitude full-upgrade as they would on most other systems, safe in the knowlegde their webserver will be recompiled and fixed by Barracuda if deemed necessary by the system.

Is this a good idea? I realise this is specific to Debian and its child distros, but would be fantastic to avoid needing to run the script for simple package updates to a server.

Comments

Comment #1

omega8cc commented 20 January 2012 at 23:38

Status:	Active	» Needs work
Issue tags:		+BOA-todo

This is definitely a good idea and we need to look into this soon. Thanks!

Comment #2

omega8cc commented 10 April 2012 at 15:29

We are working on deb packaging almost everything Barracuda builds from sources, so you could run all upgrades (excluding only Aegir itself probably) using standard system tools.

Comment #3

omega8cc commented 21 April 2012 at 22:41

Title:

Allow system to use Aptitude updates safely by calling Barracuda scripts on Dpkg Triggers

» Support standard Aptitude for all system updates w/o the need to run Barracuda

We have fixed this (for Squeeze only so far) by using packages for all important services, so starting with current HEAD and next BOA-2.0.3 release you will be able to safely update your system with standard apt-get/aptitude, no extra magic required.

Comment #4

jim kirkpatrick commented 22 April 2012 at 12:57

Woop! Awesome work, well done...

I literally just did yet another unneeded BARRACUDA update just to update some debian packages, so this is great news indeed.

Thank you.

Comment #5

omega8cc commented 22 April 2012 at 13:00

Status:

Needs work

» Fixed

We did the same in the Ubuntu Precise support, already working in HEAD, so we can probably mark this as fixed.

Thanks!

Comment #6

6 May 2012 at 13:00

Status:

Fixed

» Closed (fixed)

Automatically closed -- issue fixed for 2 weeks with no activity.

Comment #7

omega8cc commented 21 May 2012 at 18:13

There is an important change to this apt-get only behavior: http://drupal.org/node/1587786#comment-6011582

Support standard Aptitude for all system updates w/o the need to run Barracuda

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Comment #6

Comment #7

News items

Our community

Documentation

Drupal code base

Governance of community