Issue #2532 has been updated by Nigel Kersten.
Config file with separate ca_server and ca_port:
<pre>
[puppetd]
user = root
group = wheel
server = my_test_025_server
ca_server = my_024_ca_server
ca_port = 9150
masterport = 9140
listen = false
configtimeout = 360
pidfile = /var/run/puppetd.pid
vardir = /var/puppet
pluginsync = true
factsync = false
environment = test_environment
factpath = $vardir/lib/facter
runinterval = 3600
syslogfacility = local7
certname = [redacted]
</pre>
puppet run against a test environment that doesn't do much:
<pre>
# puppetd --test --trace
info: Retrieving plugin
/Library/Ruby/Site/1.8/puppet/indirector/rest.rb:55:in `deserialize'
/Library/Ruby/Site/1.8/puppet/indirector/rest.rb:69:in `find'
/Library/Ruby/Site/1.8/puppet/indirector/indirection.rb:195:in `find'
/Library/Ruby/Site/1.8/puppet/indirector.rb:51:in `find'
/Library/Ruby/Site/1.8/puppet/ssl/host.rb:208:in `ssl_store'
/Library/Ruby/Site/1.8/puppet/network/http_pool.rb:56:in `cert_setup'
/Library/Ruby/Site/1.8/puppet/network/http_pool.rb:100:in `http_instance'
/Library/Ruby/Site/1.8/puppet/indirector/rest.rb:65:in `network'
/Library/Ruby/Site/1.8/puppet/indirector/rest.rb:73:in `search'
/Library/Ruby/Site/1.8/puppet/indirector/indirection.rb:240:in `search'
/Library/Ruby/Site/1.8/puppet/indirector.rb:59:in `search'
/Library/Ruby/Site/1.8/puppet/type/file.rb:595:in `perform_recursion'
/Library/Ruby/Site/1.8/puppet/type/file.rb:562:in `recurse_remote'
/Library/Ruby/Site/1.8/puppet/type/file.rb:561:in `collect'
/Library/Ruby/Site/1.8/puppet/type/file.rb:561:in `recurse_remote'
/Library/Ruby/Site/1.8/puppet/type/file.rb:483:in `recurse'
/Library/Ruby/Site/1.8/puppet/type/file.rb:385:in `eval_generate'
/Library/Ruby/Site/1.8/puppet/transaction.rb:349:in `send'
/Library/Ruby/Site/1.8/puppet/transaction.rb:349:in
`generate_additional_resources'
/Library/Ruby/Site/1.8/puppet/transaction.rb:193:in `eval_generate'
/Library/Ruby/Site/1.8/puppet/transaction.rb:240:in
`eval_children_and_apply_resource'
/Library/Ruby/Site/1.8/puppet/transaction.rb:207:in `eval_resource'
/Library/Ruby/Site/1.8/puppet/transaction.rb:296:in `evaluate'
/Library/Ruby/Site/1.8/puppet/util.rb:418:in `thinmark'
/System/Library/Frameworks/Ruby.framework/Versions/1.8/usr/lib/ruby/1.8/benchmark.rb:308:in
`realtime'
/Library/Ruby/Site/1.8/puppet/util.rb:417:in `thinmark'
/Library/Ruby/Site/1.8/puppet/transaction.rb:295:in `evaluate'
/Library/Ruby/Site/1.8/puppet/transaction.rb:289:in `collect'
/Library/Ruby/Site/1.8/puppet/transaction.rb:289:in `evaluate'
/Library/Ruby/Site/1.8/puppet/resource/catalog.rb:142:in `apply'
/Library/Ruby/Site/1.8/puppet/configurer/downloader.rb:32:in `evaluate'
/System/Library/Frameworks/Ruby.framework/Versions/1.8/usr/lib/ruby/1.8/timeout.rb:62:in
`timeout'
/Library/Ruby/Site/1.8/puppet/configurer/downloader.rb:31:in `evaluate'
/Library/Ruby/Site/1.8/puppet/configurer/plugin_handler.rb:12:in
`download_plugins'
/Library/Ruby/Site/1.8/puppet/configurer.rb:85:in `prepare'
/Library/Ruby/Site/1.8/puppet/configurer.rb:152:in `run'
/Library/Ruby/Site/1.8/puppet/agent.rb:53:in `run'
/Library/Ruby/Site/1.8/puppet/agent/locker.rb:21:in `lock'
/Library/Ruby/Site/1.8/puppet/agent.rb:53:in `run'
/System/Library/Frameworks/Ruby.framework/Versions/1.8/usr/lib/ruby/1.8/sync.rb:229:in
`synchronize'
/Library/Ruby/Site/1.8/puppet/agent.rb:53:in `run'
/Library/Ruby/Site/1.8/puppet/agent.rb:134:in `with_client'
/Library/Ruby/Site/1.8/puppet/agent.rb:51:in `run'
/Library/Ruby/Site/1.8/puppet/application/puppetd.rb:103:in `onetime'
/Library/Ruby/Site/1.8/puppet/application.rb:226:in `send'
/Library/Ruby/Site/1.8/puppet/application.rb:226:in `run_command'
/Library/Ruby/Site/1.8/puppet/application.rb:217:in `run'
/Library/Ruby/Site/1.8/puppet/application.rb:306:in `exit_on_fail'
/Library/Ruby/Site/1.8/puppet/application.rb:217:in `run'
/usr/sbin/puppetd:159
err: /File[/var/puppet/lib]: Failed to generate additional resources using
'eval_generate': Error 405 on SERVER: Method Not Allowed
info: Caching catalog for e0a38340-ffa4-4df2-a415-cc979b780ab1
info: Applying configuration version '1265160940'
notice: //base/File[/tmp/test_environment_dynamic]/ensure: created
notice: //base/File[/tmp/test_environment_static]/ensure: content changed
'{md5}0d1dca493040cfceb342313b03a7ea29' to
'{md5}0d1dca493040cfceb342313b03a7ea29'
notice: Finished catalog run in 0.40 seconds
</pre>
Now I comment out the ca_server and ca_port lines:
<pre>
# puppetd --test --trace
info: Retrieving plugin
notice: /File[/var/puppet/lib/facter/puppet_certname.rb]/ensure: content
changed '{md5}f3f7a82b554d9a0ae22851e7066ed7ea' to
'{md5}f3f7a82b554d9a0ae22851e7066ed7ea'
info: Loading downloaded plugin /var/puppet/lib/facter/puppet_certname.rb
info: Loading facts in puppet_certname
info: Loading facts in puppet_certname
info: Caching catalog for e0a38340-ffa4-4df2-a415-cc979b780ab1
info: Applying configuration version '1265160940'
--- /tmp/test_environment_dynamic 2010-02-02 17:35:41.000000000 -0800
+++ /tmp/puppet-diffing.23781.0 2010-02-02 17:37:34.000000000 -0800
@@ -1 +1 @@
-Tue Feb 2 17:35:41 PST 2010
+Tue Feb 2 17:37:34 PST 2010
notice: //base/File[/tmp/test_environment_dynamic]/content: content changed
'{md5}657238cc81979d8883dc1a7ca457904a' to 'unknown checksum'
notice: Finished catalog run in 0.60 seconds
</pre>
----------------------------------------
Bug #2532: ca_server/ca_port config settings overrides server/masterport config
settings
http://projects.reductivelabs.com/issues/2532
Author: Nigel Kersten
Status: Needs more information
Priority: High
Assigned to: Nigel Kersten
Category:
Target version: 0.25.5
Affected version: 0.25.0rc1
Keywords:
Branch:
<pre>
root# puppetd -t --server testserver.mydomain
info: Caching catalog for c216f41a-f902-4bfb-a222-850dd957bebb
info: Applying configuration version '1250129163'
notice: Finished catalog run in 0.01 seconds
root# puppetd -t --server testserver.mydomain --ca_server localhost
err: Could not retrieve catalog from remote server: Connection refused -
connect(2)
notice: Using cached catalog
info: Applying configuration version '1250129163'
notice: Finished catalog run in 0.01 seconds
</pre>
and:
<pre>
root# puppetd -t --server testserver.mydomain
info: Caching catalog for c216f41a-f902-4bfb-a222-850dd957bebb
info: Applying configuration version '1250129163'
notice: Finished catalog run in 0.01 seconds
root# puppetd -t --server testserver.mydomain --ca_port 8150
err: Could not retrieve catalog from remote server: Connection refused -
connect(2)
notice: Using cached catalog
info: Applying configuration version '1250129163'
notice: Finished catalog run in 0.01 seconds
root# puppetd -t --server testserver.mydomain --ca_port 8150 --masterport 8140
err: Could not retrieve catalog from remote server: Connection refused -
connect(2)
notice: Using cached catalog
info: Applying configuration version '1250129163'
notice: Finished catalog run in 0.01 seconds
</pre>
This is pretty nasty, as people with dedicated ca_servers may not notice if
they have their CA configured to also be a config server.
--
You have received this notification because you have either subscribed to it,
or are involved in it.
To change your notification preferences, please click here:
http://reductivelabs.com/redmine/my/account
--
You received this message because you are subscribed to the Google Groups
"Puppet Bugs" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/puppet-bugs?hl=en.
