Closed
Bug 906158
Opened 11 years ago
Closed 11 years ago
Set up proper ServerName and aliases for puppetmaster vhosts
Categories
(Infrastructure & Operations :: RelOps: Puppet, task)
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: dustin, Assigned: dustin)
References
Details
Attachments
(1 file)
|
1.77 KB,
patch
|
catlee
:
review+
dustin
:
checked-in+
|
Details | Diff | Splinter Review |
Ruby-2.0.0 sends a TLS 'server_name' extension with every SSL request, where earlier versions of Ruby did not. Apache compares this string to the name and alias of each vhost, and if none match, it will send back a TLS alert to puppet. Ruby's OpenSSL library helpfully hides this, and even when you fix that (OpenSSL::debug = true), the error is still numeric (1112) unless your agent system has a new enough OpenSSL (1.0.0e, for example).
The fix is just to name the virtualhosts correctly.
|
Assignee | |
Comment 1•11 years ago
|
||
Attachment #791448 -
Flags: review?(catlee)
|
|
Assignee | |
Comment 2•11 years ago
|
||
(there's lots of background in bug 895639)
|
||
Comment 3•11 years ago
|
||
Comment on attachment 791448 [details] [diff] [review]
bug906158.patch
Review of attachment 791448 [details] [diff] [review]:
-----------------------------------------------------------------
looks reasonable.
Attachment #791448 -
Flags: review?(catlee) → review+
|
|
Assignee | |
Updated•11 years ago
|
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
|
|
Assignee | |
Updated•11 years ago
|
Attachment #791448 -
Flags: checked-in+
You need to log in
before you can comment on or make changes to this bug.
Description
•