Ask Your Question
1

Failed to generate additional resources using 'eval_generate':

asked 2017-12-06 17:14:17 -0500

tylerecouture gravatar image

updated 2017-12-07 05:40:23 -0500

stivesso gravatar image

When trying to run puppet on a client: sudo /opt/puppetlabs/bin/puppet agent -t

I'm getting these errors:

Warning: Unable to fetch my node
definition, but the agent run will
continue:

Warning: SSL_connect SYSCALL
returned=5 errno=0 state=unknown state

Info: Retrieving pluginfacts

Error:
/File[/opt/puppetlabs/puppet/cache/facts.d]:
Failed to generate additional
resources using 'eval_generate':
SSL_connect SYSCALL  returned=5
errno=0 state=unknown state Error:
/File[/opt/puppetlabs/puppet/cache/facts.d]:
Could not evaluate: Could not retrieve
file metadata for
puppet:///pluginfacts: SSL_connect 
SYSCALL returned=5 errno=0
state=unknown state Info: Retrieving
plugin

Error:
/File[/opt/puppetlabs/puppet/cache/lib]:
Failed to generate additional
resources using 'eval_generate':
SSL_connect SYSCALL  returned=5
errno=0 state=unknown state Error:
/File[/opt/puppetlabs/puppet/cache/lib]:
Could not evaluate: Could not retrieve
file metadata for puppet:///plugins:
SSL_connect  SYSCALL returned=5
errno=0 state=unknown state Error:
Could not retrieve catalog from remote
server: SSL_connect SYSCALL returned=5
errno=0 state=unknown state

Warning: Not using cache on failed
catalog

Error: Could not retrieve catalog; skipping run
Error: Could not send report: SSL_connect SYSCALL returned=5 errno=0 state=unknown state

How can I get the puppet agent running again on this client?

edit retag flag offensive close merge delete

Comments

DI’d you run puppet as a non root user first, and generate separate certain that way? I’ve done that before!

DarylW gravatar imageDarylW ( 2017-12-08 00:18:23 -0500 )edit

3 Answers

Sort by » oldest newest most voted
2

answered 2017-12-07 06:48:31 -0500

updated 2017-12-07 06:49:29 -0500

are you connecting to the correct puppetmaster?

what is the output of

puppet config print --section agent | grep "server = "

make sure you're pointing at the correct master..

if puppetmasters hostname/dns name has changed then on the client run:

rm -r /etc/puppetlabs/puppet/ssl/*

and on the master run:

puppet cert clean nameofclient

Then try puppet agent -t again..

edit flag offensive delete link more

Comments

`puppet config print --section agent | grep "server = "` gives me `server = puppet` which is correct. I can ping puppet. And all my other nodes have the same setting. However, the rest of the steps still worked. The `clean` revoked 5 total certificates after 2 runs, so maybe that was related!

tylerecouture gravatar imagetylerecouture ( 2017-12-07 11:13:14 -0500 )edit
0

answered 2018-08-22 12:42:25 -0500

Brian_Reid gravatar image

I tried all the steps above and nothing worked until I reinstalled the puppet-agent....

edit flag offensive delete link more

Comments

please email me at pankaj05854@gmail.com to see check it real-time. I will take the remote and see it.

Pankaj Shukla gravatar imagePankaj Shukla ( 2018-09-06 06:10:51 -0500 )edit
0

answered 2018-08-24 01:55:57 -0500

Pankaj Shukla gravatar image

Hi There,

I hope that CA certificate of puppet server is not expired yet. If so, please follow the below steps and share the feedback.

1- On Server run below to clean client cert:

puppet cert clean puppet-slave.hcl.local

Note: replace " puppet-slave.hcl.local" client hostname according to your setup and requirement.

2- On Client run below:

find /etc/puppetlabs/puppet/ssl -name puppet-slave.hcl.local.pem -delete

puppet agent -t

Note: replace " puppet-slave.hcl.local" client hostname according to your setup and requirement.

4- Go back on the server and run below command to sign client cert request.

puppet cert list --all // to see all certs non-expired or expired.

puppet cert list // to see all new cert sign request.

puppet cert sign hostname

Note: replace " puppet-slave.hcl.local" client hostname according to your setup and requirement.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2017-12-06 17:14:17 -0500

Seen: 2,860 times

Last updated: Aug 24