It has caused enough pain and suffering and anguish and sorrow and death. Time for it to go.
- It uses a completely different bit of code for all the client pupept setup - in modules/puppet rather than modules/base/puppet.
- It puts ssl certs for puppet in a different place than in everywhere else, causing code to have to find ways to differentiate between instances on role::puppet::self and those not.
If we can get rid of it for the puppet clients at least, I'd be happier.