I''m running into certificate signing problem with puppet 0.25.5
Master is running on Ubuntu server 10.04
I think the problem is with the master''s puppetca. After the master
signs the certificate request from the client, there is an error in
the master''s log:
[2010-07-29 15:25:39] ERROR OpenSSL::SSL::SSLError: SSL_accept
returned=1 errno=0 state=SSLv3 read client certificate A: sslv3 alert
\
bad certificate
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
44:in `accept''
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:44
/usr/lib/ruby/1.8/webrick/server.rb:173:in `call''
/usr/lib/ruby/1.8/webrick/server.rb:173:in `start_thread''
/usr/lib/ruby/1.8/webrick/server.rb:162:in `start''
/usr/lib/ruby/1.8/webrick/server.rb:162:in `start_thread''
/usr/lib/ruby/1.8/webrick/server.rb:95:in `start''
/usr/lib/ruby/1.8/webrick/server.rb:92:in `each''
/usr/lib/ruby/1.8/webrick/server.rb:92:in `start''
/usr/lib/ruby/1.8/webrick/server.rb:23:in `start''
/usr/lib/ruby/1.8/webrick/server.rb:82:in `start''
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
42:in `listen''
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
41:in `initialize''
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
41:in `new''
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
41:in `listen''
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
38:in `synchronize''
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
38:in `listen''
/usr/local/lib/site_ruby/1.8/puppet/network/server.rb:131:in
`listen''
/usr/local/lib/site_ruby/1.8/puppet/network/server.rb:146:in
`start''
/usr/local/lib/site_ruby/1.8/puppet/daemon.rb:128:in `start''
/usr/local/lib/site_ruby/1.8/puppet/application/
puppetmasterd.rb:122:in `main''
/usr/local/lib/site_ruby/1.8/puppet/application.rb:226:in
`send''
/usr/local/lib/site_ruby/1.8/puppet/application.rb:226:in
`run_command''
/usr/local/lib/site_ruby/1.8/puppet/application.rb:217:in
`run''
/usr/local/lib/site_ruby/1.8/puppet/application.rb:306:in
`exit_on_fail''
/usr/local/lib/site_ruby/1.8/puppet/application.rb:217:in
`run''
/usr/sbin/puppetmasterd:66
And when the client tries to contact the master again (i.e. puppetd -
t), it gives the following error:
err: Could not retrieve catalog from remote server: SSL_connect
returned=1 errno=0 state=SSLv3 read server certificate B: certificate
verify failed
warning: Not using cache on failed catalog
err: Could not retrieve catalog; skipping run
I have already spent an entire day on this uninstalling (deleting all
of the puppet directories and executables) and reinstalling different
versions of puppet, and none of them worked, and I couldn''t find
anything helpful with those errors.
My guess is that the ca might be different on the client and server.
Please help!
Thanks,
Bo
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscribe@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.