Issue #16657 has been updated by eric sorenson. Category set to SSL Status changed from Unreviewed to Accepted Target version set to 3.x
---------------------------------------- Bug #16657: puppet cert clean does not work for CSRs with DNS alt names https://projects.puppetlabs.com/issues/16657#change-74759 Author: Ruth Linehan Status: Accepted Priority: Normal Assignee: eric sorenson Category: SSL Target version: 3.x Affected Puppet version: 2.7.19 Keywords: Branch: On my puppet master on 2.7.19 (PE 2.6.0), if I try to run ``puppet cert clean`` on a pending CSR with DNS alt names I get the error err: Could not call revoke: Could not find a serial number for node01 Could not find a serial number for node01 On 2.7.12 (PE 2.5.2) I got the same error, but it would still remove the CSR: err: Could not call revoke: Could not find a serial number for node01 notice: Removing file Puppet::SSL::CertificateRequest node01 at '/etc/puppetlabs/puppet/ssl/ca/requests/node01.pem' This only happens with If it is signed first, then it can be cleaned. Furthermore, (thanks nfagerlund for this) it works fine if the CSR was submitted by a puppet agent process using the same ssldir as the puppet master, but it blows up if the CSR came from a different node. -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en.
