Issue #15595 has been updated by Andrew Parker. Status changed from In Topic Branch Pending Review to Merged - Pending Release Branch set to https://github.com/puppetlabs/puppet/pull/978
https://github.com/puppetlabs/puppet/pull/978 ---------------------------------------- Feature #15595: Better error reporting for certificate validation failures. https://projects.puppetlabs.com/issues/15595#change-67781 Author: Dustin Mitchell Status: Merged - Pending Release Priority: Normal Assignee: Category: Target version: Affected Puppet version: Keywords: Branch: https://github.com/puppetlabs/puppet/pull/978 Currently, if certificates fail validation, Puppet randomly guesses that the time is out of sync. That's often wrong, and misses real data as to what the error was. The verify_callback callback gets an OpenSSL::SSL::SSLContext for each certificate in the chain that's verified. If the verification failed, then SSL provides a nice error to the callback, but that error doesn't appear in the subsequent OpenSSL::SSL::SSLError. -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en.
