这个问题间歇性地发生。 我昨天第一次体验到了,我只是从头开始重新开始,它消失了,但今天刚刚回来。 我在运行Ubuntu 12.04的EC2服务器上运行Puppet v2.7.11。
问题是非常简单的,当我尝试执行puppet agent -t我得到以下输出,
info: Retrieving plugin err: /File[/var/lib/puppet/lib]: Failed to generate additional resources using 'eval_generate: SSL_connect SYSCALL returned=5 errno=0 state=SSLv3 read server session ticket A err: /File[/var/lib/puppet/lib]: Could not evaluate: SSL_connect SYSCALL returned=5 errno=0 state=SSLv3 read server session ticket A Could not retrieve file metadata for puppet://foreman.ec2.internal/plugins: SSL_connect SYSCALL returned=5 errno=0 state=SSLv3 read server session ticket A info: Loading facts in /var/lib/puppet/lib/facter/concat_basedir.rb info: Loading facts in /var/lib/puppet/lib/facter/pe_version.rb info: Loading facts in /var/lib/puppet/lib/facter/puppet_vardir.rb info: Loading facts in /var/lib/puppet/lib/facter/facter_dot_d.rb info: Loading facts in /var/lib/puppet/lib/facter/root_home.rb info: Loading facts in /var/lib/puppet/lib/facter/logstashdir.rb info: Loading facts in /var/lib/puppet/lib/facter/gemhome.rb err: Could not retrieve catalog from remote server: SSL_connect SYSCALL returned=5 errno=0 state=SSLv3 read server session ticket A warning: Not using cache on failed catalog err: Could not retrieve catalog; skipping run err: Could not send report: SSL_connect SYSCALL returned=5 errno=0 state=SSLv3 read server session ticket A
我发现一个线程通过谷歌讨论类似的问题,但build议的解决scheme,这是删除SSL证书,确保时钟同步,然后重新生成证书不适合我。 我无法在网上find关于这个问题的很多信息,希望我不会忽略那些显而易见的事情。 无法find任何其他的主题,任何帮助表示赞赏。 谢谢阅读!
编辑
我决定创build一个新的实例并重新开始,但是我遇到了与我新创build的实例相同的问题。
编辑2
这个交stream似乎概括了我正在经历的事情,可悲的是没有find解决办法。
编辑3
我试图从以前的链接,我收到了一个不同的错误。
我试过的,
在/ var / lib / puppet / ssl:find。 -type f -delete在客户端:
在/ var / lib / puppet / ssl:find。 -type f -delete
由此产生的错误
info: Retrieving plugin err: /File[/var/lib/puppet/lib]: Failed to generate additional resources using 'eval_generate: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed. This is often because the time is out of sync on the server or client err: /File[/var/lib/puppet/lib]: Could not evaluate: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed. This is often because the time is out of sync on the server or client Could not retrieve file metadata for puppet://foreman.ec2.internal/plugins: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed. This is often because the time is out of sync on the server or client err: Could not retrieve catalog from remote server: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed. This is often because the time is out of sync on the server or client warning: Not using cache on failed catalog err: Could not retrieve catalog; skipping run err: Could not send report: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed. This is often because the time is out of sync on the server or client
时间似乎同步,我会继续沿着这条道路。
编辑4?
原来的问题回来了,重复删除证书,我回到上面的错误告诉我可能会不同步的时间。 不知道为什么它回来了,同时还有一堆事情要做。
编辑5
这个错误似乎也勾勒出我的问题,但可悲的是没有去任何地方。
试过这个 ,但没有运气。
从这我试着执行以下两个主/代理但命令挂起。
opensslvalidation-CA文件/var/lib/puppet/ssl/certs/ca.pem
编辑6
通过做我在这里find的东西 ,清理主人和代理人的钥匙/证书,我可以回到原来的问题。 我已经走了一圈了,现在我可以循着这个问题的相应“解决scheme”循环我已经概述的问题。
编辑7
我安装了最新版本的puppet,并没有收到错误(2.7.11中的3.5.1)。 将玩一下,看看错误是否回来,但看起来可能是解决scheme。
升级我的木偶从2.7.11安装到3.5.1解决了我的问题。