I'm running into certificate signing problem with puppet 0.25.5
Master is running on Ubuntu server 10.04
I think the problem is with the master's puppetca. After the master
signs the certificate request from the client, there is an error in
the master's log:
[2010-07-29 15:25:39] ERROR OpenSSL::SSL::SSLError: SSL_accept
returned=1 errno=0 state=SSLv3 read client certificate A: sslv3 alert
\
bad certificate
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
44:in `accept'
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:44
/usr/lib/ruby/1.8/webrick/server.rb:173:in `call'
/usr/lib/ruby/1.8/webrick/server.rb:173:in `start_thread'
/usr/lib/ruby/1.8/webrick/server.rb:162:in `start'
/usr/lib/ruby/1.8/webrick/server.rb:162:in `start_thread'
/usr/lib/ruby/1.8/webrick/server.rb:95:in `start'
/usr/lib/ruby/1.8/webrick/server.rb:92:in `each'
/usr/lib/ruby/1.8/webrick/server.rb:92:in `start'
/usr/lib/ruby/1.8/webrick/server.rb:23:in `start'
/usr/lib/ruby/1.8/webrick/server.rb:82:in `start'
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
42:in `listen'
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
41:in `initialize'
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
41:in `new'
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
41:in `listen'
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
38:in `synchronize'
/usr/local/lib/site_ruby/1.8/puppet/network/http/webrick.rb:
38:in `listen'
/usr/local/lib/site_ruby/1.8/puppet/network/server.rb:131:in
`listen'
/usr/local/lib/site_ruby/1.8/puppet/network/server.rb:146:in
`start'
/usr/local/lib/site_ruby/1.8/puppet/daemon.rb:128:in `start'
/usr/local/lib/site_ruby/1.8/puppet/application/
puppetmasterd.rb:122:in `main'
/usr/local/lib/site_ruby/1.8/puppet/application.rb:226:in
`send'
/usr/local/lib/site_ruby/1.8/puppet/application.rb:226:in
`run_command'
/usr/local/lib/site_ruby/1.8/puppet/application.rb:217:in
`run'
/usr/local/lib/site_ruby/1.8/puppet/application.rb:306:in
`exit_on_fail'
/usr/local/lib/site_ruby/1.8/puppet/application.rb:217:in
`run'
/usr/sbin/puppetmasterd:66
And when the client tries to contact the master again (i.e. puppetd -
t), it gives the following error:
err: Could not retrieve catalog from remote server: SSL_connect
returned=1 errno=0 state=SSLv3 read server certificate B: certificate
verify failed
warning: Not using cache on failed catalog
err: Could not retrieve catalog; skipping run
I have already spent an entire day on this uninstalling (deleting all
of the puppet directories and executables) and reinstalling different
versions of puppet, and none of them worked, and I couldn't find
anything helpful with those errors.
My guess is that the ca might be different on the client and server.
Please help!
Thanks,
Bo
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-us...@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.
