Details
-
Bug
-
Status: Closed
-
Normal
-
Resolution: Cannot Reproduce
-
None
-
None
-
None
-
CentOS 6 x64, CentOS 7 x64, Puppetserver
Description
I've just spent 5 hours debugging weird SSL issues that were ultimately caused by having uppercase characters in my certname.
I have a simple config:
certname = puppetclient.MELTbeforefailure.com
|
server = puppetmaster.meltbeforefailure.com
|
node_name = cert
|
Which causes this:
# puppet agent -t
|
Warning: Unable to fetch my node definition, but the agent run will continue:
|
Warning: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/node/puppetclient.MELTbeforefailure.com [find] at :123
|
Info: Retrieving pluginfacts
|
Error: /File[/opt/puppetlabs/puppet/cache/facts.d]: Failed to generate additional resources using 'eval_generate': Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/file_metadata/pluginfacts [search] at :123
|
Error: /File[/opt/puppetlabs/puppet/cache/facts.d]: Could not evaluate: Could not retrieve file metadata for puppet:///pluginfacts: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/file_metadata/pluginfacts [find] at :123
|
Info: Retrieving plugin
|
Error: /File[/opt/puppetlabs/puppet/cache/lib]: Failed to generate additional resources using 'eval_generate': Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/file_metadata/plugins [search] at :123
|
Error: /File[/opt/puppetlabs/puppet/cache/lib]: Could not evaluate: Could not retrieve file metadata for puppet:///plugins: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/file_metadata/plugins [find] at :123
|
Error: Could not retrieve catalog from remote server: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/catalog/puppetclient.MELTbeforefailure.com [find] at :123
|
Warning: Not using cache on failed catalog
|
Error: Could not retrieve catalog; skipping run
|
Error: Could not send report: Error 403 on SERVER: Forbidden request: 104.207.129.134.vultr.com(104.207.129.134) access to /puppet/v3/report/puppetclient.MELTbeforefailure.com [save] at :123
|
Getting rid of the uppercase characters makes this work fine:
# puppet agent -t
|
Info: Using configured environment 'production'
|
Info: Retrieving pluginfacts
|
Info: Retrieving plugin
|
Info: Caching catalog for puppetclient.meltbeforefailure.com
|
Info: Applying configuration version '1452801282'
|
Notice: Applied catalog in 0.01 seconds
|
Please add a warning or error here when the certname is uppercase. These errors are completely impossible to debug otherwise.
Outcomes
- Error when parsing puppet settings if a certname contains uppercase letters
Attachments
Issue Links
- relates to
-
-
- Resolved
-
