Uploaded image for project: 'Puppet'
  1. Puppet
  2. PUP-9399

Puppet agent 6 ignores srv_domain config

    XMLWordPrintable

Details

    • Coremunity
    • Platform Core KANBAN
    • Needs Assessment
    • Bug Fix
    • Puppet 6.0 and up ignored the srv_domain setting when using DNS SRV records to connect to the `ca_server`
    • Needs Assessment

    Description

      Puppet Version: 6.1 
      Puppet Server Version: 6.1
      OS Name/Version: Debian Stretch

      Desired Behavior: 

      puppet agent uses srv_domain to resolve master from the domains srv record

      Actual Behavior:

      the puppet agent ignores the srv_domain config in /etc/puppetlabs/puppet/puppet.conf

      using the same config file with 5.5.8-1stretch is working fine.

      config set via:

      /opt/puppetlabs/bin/puppet config set use_srv_records true
      		 
      /opt/puppetlabs/bin/puppet config set srv_domain idling.host

      Debug log (puppet 6.1) => full log attached

      Debug: Finishing transaction 47206392905540
      		 
      Debug: Runtime environment: puppet_version=6.1.0, ruby_version=2.5.3, run_mode=agent, default_encoding=UTF-8
      		 
      Debug: Dynamically-bound server lookup failed, falling back to ca_server setting
      		 
      Debug: Dynamically-bound port lookup failed; falling back to ca_port setting
      		 
      Debug: Searching for SRV records for domain: ca
      		 
      Debug: Found 0 SRV records for: _x-puppet._tcp.ca
      		 
      Debug: No more servers in SRV record, falling back to puppet:8140
      		 
      Debug: Creating new connection for https://puppet:8140

      Debug log (puppet 5.5) => full log attached 

      Debug: Dynamically-bound server lookup failed, falling back to ca_server setting
      		 
      Debug: Dynamically-bound port lookup failed; falling back to ca_port setting
      		 
      Debug: Searching for SRV records for domain: idling.host
      		 
      Debug: Found 1 SRV records for: _x-puppet-ca._tcp.idling.host
      		 
      Debug: Yielding next server of master-a.idling.host:8140
      		 
      Debug: Dynamically-bound server lookup failed, falling back to ca_server setting
      		 
      Debug: Dynamically-bound port lookup failed; falling back to ca_port setting
      		 
      Debug: Searching for SRV records for domain: idling.host
      		 
      Debug: Found 1 SRV records for: _x-puppet-ca._tcp.idling.host
      		 
      Debug: Yielding next server of master-a.idling.host:8140
      		 
      Debug: Creating new connection for https://master-a.idling.host:8140

      Config file:

      cat /etc/puppetlabs/puppet/puppet.conf 
      [main]
      		 
      use_srv_records = true
      		 
      srv_domain = idling.host
      		 
      [agent]
      		 
      environment = setupscript

      Attachments

        1. puppet5.log
          17 kB
        2. puppet6.log
          16 kB
        3. tcpdump.log
          4 kB

        Activity

          People

            Unassigned Unassigned
            kevinhaefeli Kevin Häfeli
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Zendesk Support