Uploaded image for project: 'Puppet Server'
  1. Puppet Server
  2. SERVER-1809

Uppercase characters in certname cause pain and suffering

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Accepted
    • Priority: Normal
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
    • Environment:

      CentOS 6 x64, CentOS 7 x64, Puppetserver

    • Template:
    • Team:
      Froyo

      Description

      I've just spent 5 hours debugging weird SSL issues that were ultimately caused by having uppercase characters in my certname.

      I have a simple config:

      certname = puppetclient.MELTbeforefailure.com
      server = puppetmaster.meltbeforefailure.com
      node_name = cert
      

      Which causes this:

      # puppet agent -t
      Warning: Unable to fetch my node definition, but the agent run will continue:
      Warning: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/node/puppetclient.MELTbeforefailure.com [find] at :123
      Info: Retrieving pluginfacts
      Error: /File[/opt/puppetlabs/puppet/cache/facts.d]: Failed to generate additional resources using 'eval_generate': Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/file_metadata/pluginfacts [search] at :123
      Error: /File[/opt/puppetlabs/puppet/cache/facts.d]: Could not evaluate: Could not retrieve file metadata for puppet:///pluginfacts: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/file_metadata/pluginfacts [find] at :123
      Info: Retrieving plugin
      Error: /File[/opt/puppetlabs/puppet/cache/lib]: Failed to generate additional resources using 'eval_generate': Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/file_metadata/plugins [search] at :123
      Error: /File[/opt/puppetlabs/puppet/cache/lib]: Could not evaluate: Could not retrieve file metadata for puppet:///plugins: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/file_metadata/plugins [find] at :123
      Error: Could not retrieve catalog from remote server: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/catalog/puppetclient.MELTbeforefailure.com [find] at :123
      Warning: Not using cache on failed catalog
      Error: Could not retrieve catalog; skipping run
      Error: Could not send report: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/report/puppetclient.MELTbeforefailure.com [save] at :123
      

      Getting rid of the uppercase characters makes this work fine:

      # puppet agent -t
      Info: Using configured environment 'production'
      Info: Retrieving pluginfacts
      Info: Retrieving plugin
      Info: Caching catalog for puppetclient.meltbeforefailure.com
      Info: Applying configuration version '1452801282'
      Notice: Applied catalog in 0.01 seconds
      

      Please add a warning or error here when the certname is uppercase. These errors are completely impossible to debug otherwise.

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            devicenull Brian Rak
            Votes:
            1 Vote for this issue
            Watchers:
            5 Start watching this issue

              Dates

              Created:
              Updated:

                Zendesk Support