Issue #17880 has been updated by Yuri Arabadji.
disregard "err: Could not retrieve catalog; skipping run" error, that was from old puppet 2.6.x. Now, with puppet 3.0.1, with `hostcrl` setting pointing to non-existent file, it spits out <pre> Warning: Unable to fetch my node definition, but the agent run will continue: Warning: Error 400 on SERVER: this master is not a CA </pre> When hostcrl is pointing to correct CRL (non-empty, "openssl crl" parsable), no such message is shown. I propose either notifying about incorrect host crl or disabling crl validation altogether. Please note, that all this time `certificate_revocation` was `false`. ---------------------------------------- Bug #17880: When master is not a CA https://projects.puppetlabs.com/issues/17880#change-78341 Author: Yuri Arabadji Status: Unreviewed Priority: Normal Assignee: Category: Target version: Affected Puppet version: Keywords: Branch: When master is not a CA, but actually has all certificates in place (because they were issued by external corporate CA), some strange things happen: * When agent has `pluginsync = false`: <pre> # puppet agent --server dev2.xx --test --noop notice: Ignoring --listen on onetime run err: Could not retrieve catalog from remote server: Error 400 on SERVER: this master is not a CA warning: Not using cache on failed catalog err: Could not retrieve catalog; skipping run # on master: Nov 30 11:11:31 dev2 puppet-master[25944]: Handling request: GET /development/certificate_revocation_list/ca Nov 30 11:11:31 dev2 puppet-master[25944]: this master is not a CA </pre> * When agent has `pluginsync = true`: <pre> # puppet agent --server dev2.xxx --test --noop notice: Ignoring --listen on onetime run info: Retrieving plugin err: /File[/var/lib/puppet/lib]: Failed to generate additional resources using 'eval_generate': Error 400 on SERVER: this master is not a CA err: /File[/var/lib/puppet/lib]: Could not evaluate: Could not retrieve information from source(s) puppet://dev2.xx/plugins info: Caching catalog for xx info: Applying configuration version '1354291767' notice: /Stage[main]//Node[default]/Notify[I'm the DEFAULT!]/message: current_value absent, should be I'm the DEFAULT! (noop) notice: Finished catalog run in 0.09 seconds # on master: Nov 30 11:33:43 dev2 puppet-master[25944]: Handling request: GET /development/certificate_revocation_list/ca Nov 30 11:33:43 dev2 puppet-master[25944]: this master is not a CA Nov 30 11:33:43 dev2 puppet-master[25944]: Handling request: GET /development/file_metadata/plugins Nov 30 11:33:43 dev2 puppet-master[25944]: Could not find file_metadata for 'plugins' </pre> Why is this happening and can we remove/fix those warnings, please? Thanks! -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to puppet-bugs@googlegroups.com. To unsubscribe from this group, send email to puppet-bugs+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en.
