Issue #17864 has been updated by Matthaus Owens.
Released in Puppet 3.2.0-rc1
Bug #17864: puppet client requests /production/certificate_revocation_list/ca
even with certificate_revocation=false
https://projects.puppetlabs.com/issues/17864#change-89549
Issue #17864 has been updated by Dustin Mitchell.
Branch changed from https://github.com/puppetlabs/puppet/pull/1498 to
https://github.com/puppetlabs/puppet/pull/1504
New pull request posted, with tests and everything.
Bug #17864: puppet client requests
Issue #17864 has been updated by Charlie Sharpsteen.
Category set to SSL
Keywords set to configuration settings certificate_revocation
Hi Dustin,
I have been able to reproduce the using our current development version
(4b40119). Your patch appears to enforce the intended behavior of the code a
Issue #17864 has been updated by Dustin Mitchell.
The following patch against 3.0.2 fixes this for me:
diff --git a/lib/puppet/ssl/host.rb b/lib/puppet/ssl/host.rb
index 2242873..d8d8b30 100644
--- a/lib/puppet/ssl/host.rb
+++ b/lib/puppet/ssl/host.rb
@@ -258,9 +258,11 @@ ER
Issue #17864 has been updated by Dustin Mitchell.
Affected Puppet version set to 3.0.2
Still the case in 3.0.2 on the client.
Bug #17864: puppet client requests /production/certificate_revocation_list/ca
even with certificate_revocation=false
https://pro
Issue #17864 has been updated by Dustin Mitchell.
Setting hostcrl seems to have no effect.
Bug #17864: puppet client requests /production/certificate_revocation_list/ca
even with certificate_revocation=false
https://projects.puppetlabs.com/issues/17864#c
Issue #17864 has been updated by Yuri Arabadji.
What if you set hostcrl to crl issued by CA?
I have #17880, which is probably related to this one.
Bug #17864: puppet client requests /production/certificate_revocation_list/ca
even with certificate_revoca