cfengine 3.1.4 Client/Server Protocol transaction broken off

Tue, 01 Feb 2011 06:42:08 -0800 

Hi Folks,

I was wondering if anyone has built and run the new v3.1.4?

I did today in my development policysrv2 host but I am seeing some
issues on key exchanges (protocol transaction reset). If some of you
recall this is the development env with the root-.pub issues on the
3.1.2. Today I removed all keys and started fresh. This includes
removing all old /var/cfeninge/ppkeys/* /var/cfengine/*.db and
/var/cfengine/state/*. This should bring me back to a "fresh" env. I
started with my known working configs for update (known working on
3.0.4/3.0.5/3.1.2). I was wondering if anyone could confirm/deny any
issues?

Steps:
1) cf-key - Generate localhost.pub localhost.priv
2) copy the localhost.pub root-10.10.10.11.pub
3) copy the localhost.priv root-10.10.10.11.priv
4) Restart all daemon process (cf-server)
5) running the cf-agent -KIv I see that I am denied access to the
running server (running on same host)

Client side output:
...
community> SET ifelapsed = 5
community> SET repository = /var/cfengine/repository
Protocol transaction broken off (1)
 !!! System reports error for recv: "Connection reset by peer"
I: Report relates to a promise with handle "update_scripts"
I: Made in version 'not specified' of '/var/cfengine/inputs/update.cf'
near line 54
I: Comment: Update the base scripts directory for client

 !! Authentication dialogue with policysrv2.example.com failed
Unable to establish connection with policysrv2.example.com
 -> No suitable server responded to hail
Promise (version not specified) belongs to bundle 'update' in file
'/var/cfengine/inputs/update.cf' near line 54
Comment: Update the base scripts directory for client
Protocol transaction broken off (1)
 !!! System reports error for recv: "Connection reset by peer"
I: Report relates to a promise with handle "update_ppkeys"
I: Made in version 'not specified' of '/var/cfengine/inputs/update.cf'
near line 63
I: Comment: Update the base ppkeys directory for client
...
Server side has:
Feb  1 09:10:19 policysrv2 cf-serverd[29870]:  Denying repeated
connection from "::ffff:10.10.10.11"
Feb  1 09:10:19 policysrv2 community>[13706]:   !! Authentication
dialogue with policysrv2.example.com failed
_______________________________________________
Help-cfengine mailing list
[email protected]
https://cfengine.org/mailman/listinfo/help-cfengine

Reply via email to