[PUP-8999] Puppet failover breaks when additional requests are made during server list resolution - Puppet Jira Server

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Normal
Resolution: Fixed
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
None

Team:
Froyo
Method Found:
Automated Test

QA Risk Assessment:
Needs Assessment

Description

Implementing CRL re-downloading uncovered an existing bug in HA failover where Puppet will crash if additional requests are made as a by-product of attempting to make the node request that is used to find a functional server, and the first server in server_list is unavailable. Rather than continuing to check later servers in the list, it will simply exit with an "unable to connect" error.

This was probably unlikely to surface in the past, because such additional requests were only made on initial agent runs, during SSL bootstrapping. However, we are now attempting to redownload the CRL on every request (which causes an additional request to be made to the server being tested), so failover now doesn't work at all.

The easiest solution to this is probably to restrict when the CRL re-download happens, possibly so that it happens explictly after failover has been resolved. However, this does not fix the underlying issue, where failover still breaks on initial agent runs.

Attachments

Issue Links

blocks

PUP-8913 Agents should re-download CRLs when they are newer than the local copy

Closed

PUP-9152 Agents should re-download CRLs when they are newer than the local copy

Closed

is cloned by

PUP-9011 Puppet failover breaks on initial agent run

Closed

Activity

People

Assignee:: Amy Sahli

Reporter:: Maggie Dreyer

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2018/07/11 10:38 AM

Updated:: 2018/09/19 12:33 PM

Resolved:: 2018/08/01 3:06 PM