Puppet: SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown

146 views

Skip to first unread message

Gaurav Bajaj

unread,

Apr 12, 2019, 1:37:15 PM4/12/19

to Puppet Users

Hi there,

We upgraded to puppet 5.5.0 recently, so far it's working fine but we see lots of issue with SSL certs. Currently, we are using self-signed certs ( I know that's not the best way to handle certs and we do have plans to move away from self-signed certs)

We using below API's to delete/revoke certs.

https://puppet.com/docs/puppet/5.5/http_api/http_certificate_status.html

I see that sometimes it fails with the following error. Please note I am using below DELETE API.

DELETE /puppet-ca/v1/certificate_status/:hostname?environment=:environment

Error:

"delete_host: libcurl error 35 (SSL connect error): error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown"

Does anyone encounter this error? It looks like a bug to me. I hit it a few times and It's intermittent.

Thanks for the help!

Thanks

Reply all

Reply to author

Forward

0 new messages