木偶4.3.2客户端节点无法通过SSL连接到Puppet服务器

Question

我刚刚根据the guide in the official docs完成了我所有木偶认证的全新再生。

但是，我遇到了这个错误，看似没有在Google，SO或其他任何地方的优秀潜在客户。

[vagrant@client puppet]$ hostname 
client.example.com 

[vagrant@client puppet]$ puppet --version 
4.3.2 

[vagrant@client puppet]$ sudo puppet config print vardir ssldir 
vardir = /var/opt/puppetlabs/puppetserver 
ssldir = /var/opt/puppetlabs/puppetserver/ssl 

[vagrant@client puppet]$ sudo puppet agent --test --server=puppet.example.com 
Warning: Unable to fetch my node definition, but the agent run will continue: 
Warning: SSL_connect SYSCALL returned=5 errno=0 state=unknown state 
Info: Retrieving pluginfacts 
Error: /File[/var/opt/puppetlabs/puppetserver/facts.d]: Failed to generate additional resources using 'eval_generate': Connection reset by peer - SSL_connect 
Error: /File[/var/opt/puppetlabs/puppetserver/facts.d]: Could not evaluate: Could not retrieve file metadata for puppet:///pluginfacts: SSL_connect SYSCALL returned=5 errno=0 state=unknown state 
Info: Retrieving plugin 
Error: /File[/var/opt/puppetlabs/puppetserver/lib]: Failed to generate additional resources using 'eval_generate': SSL_connect SYSCALL returned=5 errno=0 state=unknown state 
Error: /File[/var/opt/puppetlabs/puppetserver/lib]: Could not evaluate: Could not retrieve file metadata for puppet:///plugins: SSL_connect SYSCALL returned=5 errno=0 state=unknown state 
Error: Could not retrieve catalog from remote server: SSL_connect SYSCALL returned=5 errno=0 state=unknown state 
Warning: Not using cache on failed catalog 
Error: Could not retrieve catalog; skipping run 
Error: Could not send report: SSL_connect SYSCALL returned=5 errno=0 state=unknown state 

这is a similar error，但对于一般的Ruby SSL，我不知道如何更改木偶密码（不认为它已启用）。

This post seems to suggest it may be Apache's fault，但我不认为我在使用Apache。

任何想法？

Answer 1

我遇到了同样的问题。

检查SSL目录上的代理使用以下命令：

sudo puppet config print ssldir 

你的SSL目录可能不是在/ etc/puppetlabs /傀儡/ SSL，但可能在/ opt/puppetlabs。从该目录中删除您的证书（或整个目录），然后执行另一个木偶运行。