openvox 7.37.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +7 -0
- data/CHANGELOG.md +15 -0
- data/CODEOWNERS +11 -0
- data/CODE_OF_CONDUCT.md +70 -0
- data/CONTRIBUTING.md +161 -0
- data/Gemfile +82 -0
- data/Guardfile.example +76 -0
- data/LICENSE +202 -0
- data/README.md +68 -0
- data/Rakefile +160 -0
- data/bin/puppet +9 -0
- data/conf/environment.conf +18 -0
- data/conf/fileserver.conf +32 -0
- data/conf/hiera.yaml +11 -0
- data/conf/puppet.conf +6 -0
- data/examples/enc/regexp_nodes/classes/databases +2 -0
- data/examples/enc/regexp_nodes/classes/webservers +2 -0
- data/examples/enc/regexp_nodes/environment/development +2 -0
- data/examples/enc/regexp_nodes/parameters/service/prod +1 -0
- data/examples/enc/regexp_nodes/parameters/service/qa +3 -0
- data/examples/enc/regexp_nodes/parameters/service/sandbox +1 -0
- data/examples/enc/regexp_nodes/regexp_nodes.rb +270 -0
- data/examples/hiera/README.md +91 -0
- data/examples/hiera/etc/hiera.yaml +15 -0
- data/examples/hiera/etc/hieradb/common.yaml +3 -0
- data/examples/hiera/etc/hieradb/dc1.yaml +6 -0
- data/examples/hiera/etc/hieradb/development.yaml +2 -0
- data/examples/hiera/etc/puppet.conf +3 -0
- data/examples/hiera/modules/data/manifests/common.pp +4 -0
- data/examples/hiera/modules/ntp/manifests/config.pp +6 -0
- data/examples/hiera/modules/ntp/manifests/data.pp +4 -0
- data/examples/hiera/modules/ntp/templates/ntp.conf.erb +3 -0
- data/examples/hiera/modules/users/manifests/common.pp +4 -0
- data/examples/hiera/modules/users/manifests/dc1.pp +4 -0
- data/examples/hiera/modules/users/manifests/development.pp +4 -0
- data/examples/hiera/site.pp +3 -0
- data/examples/nagios/check_puppet.rb +123 -0
- data/ext/README.md +13 -0
- data/ext/build_defaults.yaml +18 -0
- data/ext/debian/puppet.default +4 -0
- data/ext/debian/puppet.init +113 -0
- data/ext/hiera/hiera.yaml +15 -0
- data/ext/osx/puppet.plist +32 -0
- data/ext/project_data.yaml +20 -0
- data/ext/redhat/client.init +169 -0
- data/ext/redhat/client.sysconfig +2 -0
- data/ext/solaris/smf/puppet +44 -0
- data/ext/solaris/smf/puppet.xml +46 -0
- data/ext/suse/client.init +141 -0
- data/ext/systemd/puppet.service +26 -0
- data/ext/windows/puppet_interactive.bat +6 -0
- data/ext/windows/puppet_shell.bat +9 -0
- data/ext/windows/run_puppet_interactive.bat +9 -0
- data/ext/windows/service/daemon.bat +6 -0
- data/ext/windows/service/daemon.rb +225 -0
- data/install.rb +499 -0
- data/lib/hiera/puppet_function.rb +84 -0
- data/lib/hiera/scope.rb +90 -0
- data/lib/hiera_puppet.rb +80 -0
- data/lib/puppet/agent/disabler.rb +53 -0
- data/lib/puppet/agent/locker.rb +46 -0
- data/lib/puppet/agent.rb +176 -0
- data/lib/puppet/application/agent.rb +523 -0
- data/lib/puppet/application/apply.rb +428 -0
- data/lib/puppet/application/catalog.rb +4 -0
- data/lib/puppet/application/config.rb +5 -0
- data/lib/puppet/application/describe.rb +253 -0
- data/lib/puppet/application/device.rb +439 -0
- data/lib/puppet/application/doc.rb +233 -0
- data/lib/puppet/application/epp.rb +5 -0
- data/lib/puppet/application/face_base.rb +276 -0
- data/lib/puppet/application/facts.rb +9 -0
- data/lib/puppet/application/filebucket.rb +318 -0
- data/lib/puppet/application/generate.rb +5 -0
- data/lib/puppet/application/help.rb +5 -0
- data/lib/puppet/application/indirection_base.rb +4 -0
- data/lib/puppet/application/lookup.rb +433 -0
- data/lib/puppet/application/module.rb +4 -0
- data/lib/puppet/application/node.rb +4 -0
- data/lib/puppet/application/parser.rb +5 -0
- data/lib/puppet/application/plugin.rb +4 -0
- data/lib/puppet/application/report.rb +4 -0
- data/lib/puppet/application/resource.rb +254 -0
- data/lib/puppet/application/script.rb +264 -0
- data/lib/puppet/application/ssl.rb +323 -0
- data/lib/puppet/application.rb +596 -0
- data/lib/puppet/application_support.rb +68 -0
- data/lib/puppet/coercion.rb +40 -0
- data/lib/puppet/compilable_resource_type.rb +15 -0
- data/lib/puppet/concurrent/lock.rb +16 -0
- data/lib/puppet/concurrent/synchronized.rb +15 -0
- data/lib/puppet/concurrent/thread_local_singleton.rb +17 -0
- data/lib/puppet/concurrent.rb +2 -0
- data/lib/puppet/configurer/downloader.rb +85 -0
- data/lib/puppet/configurer/fact_handler.rb +50 -0
- data/lib/puppet/configurer/plugin_handler.rb +59 -0
- data/lib/puppet/configurer.rb +755 -0
- data/lib/puppet/confine/any.rb +26 -0
- data/lib/puppet/confine/boolean.rb +45 -0
- data/lib/puppet/confine/exists.rb +19 -0
- data/lib/puppet/confine/false.rb +25 -0
- data/lib/puppet/confine/feature.rb +17 -0
- data/lib/puppet/confine/true.rb +26 -0
- data/lib/puppet/confine/variable.rb +59 -0
- data/lib/puppet/confine.rb +83 -0
- data/lib/puppet/confine_collection.rb +51 -0
- data/lib/puppet/confiner.rb +46 -0
- data/lib/puppet/context/trusted_information.rb +120 -0
- data/lib/puppet/context.rb +188 -0
- data/lib/puppet/daemon.rb +182 -0
- data/lib/puppet/data_binding.rb +14 -0
- data/lib/puppet/datatypes/error.rb +21 -0
- data/lib/puppet/datatypes/impl/error.rb +40 -0
- data/lib/puppet/datatypes.rb +213 -0
- data/lib/puppet/defaults.rb +2277 -0
- data/lib/puppet/environments.rb +601 -0
- data/lib/puppet/error.rb +138 -0
- data/lib/puppet/etc.rb +180 -0
- data/lib/puppet/external/dot.rb +325 -0
- data/lib/puppet/external/pson/common.rb +374 -0
- data/lib/puppet/external/pson/pure/generator.rb +395 -0
- data/lib/puppet/external/pson/pure/parser.rb +308 -0
- data/lib/puppet/external/pson/pure.rb +15 -0
- data/lib/puppet/external/pson/version.rb +8 -0
- data/lib/puppet/face/catalog/select.rb +49 -0
- data/lib/puppet/face/catalog.rb +165 -0
- data/lib/puppet/face/config.rb +267 -0
- data/lib/puppet/face/epp.rb +566 -0
- data/lib/puppet/face/facts.rb +174 -0
- data/lib/puppet/face/generate.rb +66 -0
- data/lib/puppet/face/help/action.erb +90 -0
- data/lib/puppet/face/help/face.erb +115 -0
- data/lib/puppet/face/help/global.erb +16 -0
- data/lib/puppet/face/help/man.erb +152 -0
- data/lib/puppet/face/help.rb +242 -0
- data/lib/puppet/face/module/changes.rb +43 -0
- data/lib/puppet/face/module/install.rb +146 -0
- data/lib/puppet/face/module/list.rb +272 -0
- data/lib/puppet/face/module/uninstall.rb +89 -0
- data/lib/puppet/face/module/upgrade.rb +87 -0
- data/lib/puppet/face/module.rb +19 -0
- data/lib/puppet/face/node/clean.rb +107 -0
- data/lib/puppet/face/node.rb +43 -0
- data/lib/puppet/face/parser.rb +227 -0
- data/lib/puppet/face/plugin.rb +60 -0
- data/lib/puppet/face/report.rb +54 -0
- data/lib/puppet/face/resource.rb +53 -0
- data/lib/puppet/face.rb +12 -0
- data/lib/puppet/facter_impl.rb +96 -0
- data/lib/puppet/feature/base.rb +76 -0
- data/lib/puppet/feature/bolt.rb +3 -0
- data/lib/puppet/feature/cfpropertylist.rb +3 -0
- data/lib/puppet/feature/eventlog.rb +5 -0
- data/lib/puppet/feature/hiera_eyaml.rb +3 -0
- data/lib/puppet/feature/hocon.rb +3 -0
- data/lib/puppet/feature/libuser.rb +8 -0
- data/lib/puppet/feature/msgpack.rb +3 -0
- data/lib/puppet/feature/pe_license.rb +4 -0
- data/lib/puppet/feature/selinux.rb +3 -0
- data/lib/puppet/feature/ssh.rb +3 -0
- data/lib/puppet/feature/telnet.rb +9 -0
- data/lib/puppet/feature/zlib.rb +5 -0
- data/lib/puppet/ffi/posix/constants.rb +14 -0
- data/lib/puppet/ffi/posix/functions.rb +24 -0
- data/lib/puppet/ffi/posix.rb +10 -0
- data/lib/puppet/ffi/windows/api_types.rb +311 -0
- data/lib/puppet/ffi/windows/constants.rb +404 -0
- data/lib/puppet/ffi/windows/functions.rb +628 -0
- data/lib/puppet/ffi/windows/structs.rb +338 -0
- data/lib/puppet/ffi/windows.rb +12 -0
- data/lib/puppet/file_bucket/dipper.rb +174 -0
- data/lib/puppet/file_bucket/file.rb +129 -0
- data/lib/puppet/file_bucket.rb +4 -0
- data/lib/puppet/file_serving/base.rb +86 -0
- data/lib/puppet/file_serving/configuration/parser.rb +113 -0
- data/lib/puppet/file_serving/configuration.rb +113 -0
- data/lib/puppet/file_serving/content.rb +43 -0
- data/lib/puppet/file_serving/fileset.rb +186 -0
- data/lib/puppet/file_serving/http_metadata.rb +62 -0
- data/lib/puppet/file_serving/metadata.rb +171 -0
- data/lib/puppet/file_serving/mount/file.rb +122 -0
- data/lib/puppet/file_serving/mount/locales.rb +35 -0
- data/lib/puppet/file_serving/mount/modules.rb +26 -0
- data/lib/puppet/file_serving/mount/pluginfacts.rb +35 -0
- data/lib/puppet/file_serving/mount/plugins.rb +35 -0
- data/lib/puppet/file_serving/mount/scripts.rb +24 -0
- data/lib/puppet/file_serving/mount/tasks.rb +23 -0
- data/lib/puppet/file_serving/mount.rb +38 -0
- data/lib/puppet/file_serving/terminus_helper.rb +31 -0
- data/lib/puppet/file_serving/terminus_selector.rb +31 -0
- data/lib/puppet/file_serving.rb +3 -0
- data/lib/puppet/file_system/file_impl.rb +188 -0
- data/lib/puppet/file_system/jruby.rb +23 -0
- data/lib/puppet/file_system/memory_file.rb +79 -0
- data/lib/puppet/file_system/memory_impl.rb +99 -0
- data/lib/puppet/file_system/path_pattern.rb +93 -0
- data/lib/puppet/file_system/posix.rb +47 -0
- data/lib/puppet/file_system/uniquefile.rb +188 -0
- data/lib/puppet/file_system/windows.rb +213 -0
- data/lib/puppet/file_system.rb +419 -0
- data/lib/puppet/forge/cache.rb +60 -0
- data/lib/puppet/forge/errors.rb +114 -0
- data/lib/puppet/forge/repository.rb +95 -0
- data/lib/puppet/forge.rb +259 -0
- data/lib/puppet/functions/abs.rb +61 -0
- data/lib/puppet/functions/alert.rb +14 -0
- data/lib/puppet/functions/all.rb +104 -0
- data/lib/puppet/functions/annotate.rb +108 -0
- data/lib/puppet/functions/any.rb +109 -0
- data/lib/puppet/functions/assert_type.rb +93 -0
- data/lib/puppet/functions/binary_file.rb +32 -0
- data/lib/puppet/functions/break.rb +47 -0
- data/lib/puppet/functions/call.rb +80 -0
- data/lib/puppet/functions/camelcase.rb +62 -0
- data/lib/puppet/functions/capitalize.rb +61 -0
- data/lib/puppet/functions/ceiling.rb +37 -0
- data/lib/puppet/functions/chomp.rb +57 -0
- data/lib/puppet/functions/chop.rb +67 -0
- data/lib/puppet/functions/compare.rb +125 -0
- data/lib/puppet/functions/contain.rb +55 -0
- data/lib/puppet/functions/convert_to.rb +34 -0
- data/lib/puppet/functions/crit.rb +14 -0
- data/lib/puppet/functions/debug.rb +14 -0
- data/lib/puppet/functions/defined.rb +159 -0
- data/lib/puppet/functions/dig.rb +67 -0
- data/lib/puppet/functions/downcase.rb +89 -0
- data/lib/puppet/functions/each.rb +167 -0
- data/lib/puppet/functions/emerg.rb +14 -0
- data/lib/puppet/functions/empty.rb +85 -0
- data/lib/puppet/functions/epp.rb +49 -0
- data/lib/puppet/functions/err.rb +14 -0
- data/lib/puppet/functions/eyaml_lookup_key.rb +102 -0
- data/lib/puppet/functions/filter.rb +137 -0
- data/lib/puppet/functions/find_file.rb +44 -0
- data/lib/puppet/functions/find_template.rb +63 -0
- data/lib/puppet/functions/flatten.rb +64 -0
- data/lib/puppet/functions/floor.rb +37 -0
- data/lib/puppet/functions/get.rb +150 -0
- data/lib/puppet/functions/getvar.rb +87 -0
- data/lib/puppet/functions/group_by.rb +62 -0
- data/lib/puppet/functions/hiera.rb +89 -0
- data/lib/puppet/functions/hiera_array.rb +81 -0
- data/lib/puppet/functions/hiera_hash.rb +92 -0
- data/lib/puppet/functions/hiera_include.rb +104 -0
- data/lib/puppet/functions/hocon_data.rb +41 -0
- data/lib/puppet/functions/import.rb +7 -0
- data/lib/puppet/functions/include.rb +53 -0
- data/lib/puppet/functions/index.rb +167 -0
- data/lib/puppet/functions/info.rb +14 -0
- data/lib/puppet/functions/inline_epp.rb +60 -0
- data/lib/puppet/functions/join.rb +56 -0
- data/lib/puppet/functions/json_data.rb +33 -0
- data/lib/puppet/functions/keys.rb +25 -0
- data/lib/puppet/functions/length.rb +44 -0
- data/lib/puppet/functions/lest.rb +55 -0
- data/lib/puppet/functions/lookup.rb +224 -0
- data/lib/puppet/functions/lstrip.rb +58 -0
- data/lib/puppet/functions/map.rb +135 -0
- data/lib/puppet/functions/match.rb +130 -0
- data/lib/puppet/functions/max.rb +183 -0
- data/lib/puppet/functions/min.rb +182 -0
- data/lib/puppet/functions/module_directory.rb +41 -0
- data/lib/puppet/functions/new.rb +1011 -0
- data/lib/puppet/functions/next.rb +33 -0
- data/lib/puppet/functions/notice.rb +14 -0
- data/lib/puppet/functions/partition.rb +62 -0
- data/lib/puppet/functions/reduce.rb +162 -0
- data/lib/puppet/functions/regsubst.rb +101 -0
- data/lib/puppet/functions/require.rb +77 -0
- data/lib/puppet/functions/return.rb +15 -0
- data/lib/puppet/functions/reverse_each.rb +94 -0
- data/lib/puppet/functions/round.rb +24 -0
- data/lib/puppet/functions/rstrip.rb +58 -0
- data/lib/puppet/functions/scanf.rb +44 -0
- data/lib/puppet/functions/size.rb +15 -0
- data/lib/puppet/functions/slice.rb +124 -0
- data/lib/puppet/functions/sort.rb +74 -0
- data/lib/puppet/functions/split.rb +76 -0
- data/lib/puppet/functions/step.rb +98 -0
- data/lib/puppet/functions/strftime.rb +212 -0
- data/lib/puppet/functions/strip.rb +58 -0
- data/lib/puppet/functions/then.rb +77 -0
- data/lib/puppet/functions/tree_each.rb +197 -0
- data/lib/puppet/functions/type.rb +72 -0
- data/lib/puppet/functions/unique.rb +132 -0
- data/lib/puppet/functions/unwrap.rb +59 -0
- data/lib/puppet/functions/upcase.rb +89 -0
- data/lib/puppet/functions/values.rb +25 -0
- data/lib/puppet/functions/versioncmp.rb +40 -0
- data/lib/puppet/functions/warning.rb +14 -0
- data/lib/puppet/functions/with.rb +32 -0
- data/lib/puppet/functions/yaml_data.rb +45 -0
- data/lib/puppet/functions.rb +862 -0
- data/lib/puppet/generate/models/type/property.rb +70 -0
- data/lib/puppet/generate/models/type/type.rb +65 -0
- data/lib/puppet/generate/templates/type/pcore.erb +42 -0
- data/lib/puppet/generate/type.rb +249 -0
- data/lib/puppet/gettext/config.rb +275 -0
- data/lib/puppet/gettext/module_translations.rb +42 -0
- data/lib/puppet/gettext/stubs.rb +11 -0
- data/lib/puppet/graph/key.rb +26 -0
- data/lib/puppet/graph/prioritizer.rb +29 -0
- data/lib/puppet/graph/rb_tree_map.rb +388 -0
- data/lib/puppet/graph/relationship_graph.rb +284 -0
- data/lib/puppet/graph/sequential_prioritizer.rb +31 -0
- data/lib/puppet/graph/simple_graph.rb +546 -0
- data/lib/puppet/graph.rb +9 -0
- data/lib/puppet/http/client.rb +525 -0
- data/lib/puppet/http/dns.rb +159 -0
- data/lib/puppet/http/errors.rb +48 -0
- data/lib/puppet/http/external_client.rb +88 -0
- data/lib/puppet/http/factory.rb +51 -0
- data/lib/puppet/http/pool.rb +172 -0
- data/lib/puppet/http/pool_entry.rb +17 -0
- data/lib/puppet/http/proxy.rb +137 -0
- data/lib/puppet/http/redirector.rb +85 -0
- data/lib/puppet/http/resolver/server_list.rb +87 -0
- data/lib/puppet/http/resolver/settings.rb +23 -0
- data/lib/puppet/http/resolver/srv.rb +41 -0
- data/lib/puppet/http/resolver.rb +48 -0
- data/lib/puppet/http/response.rb +102 -0
- data/lib/puppet/http/response_converter.rb +24 -0
- data/lib/puppet/http/response_net_http.rb +42 -0
- data/lib/puppet/http/retry_after_handler.rb +77 -0
- data/lib/puppet/http/service/ca.rb +101 -0
- data/lib/puppet/http/service/compiler.rb +353 -0
- data/lib/puppet/http/service/file_server.rb +198 -0
- data/lib/puppet/http/service/puppetserver.rb +53 -0
- data/lib/puppet/http/service/report.rb +64 -0
- data/lib/puppet/http/service.rb +182 -0
- data/lib/puppet/http/session.rb +122 -0
- data/lib/puppet/http/site.rb +42 -0
- data/lib/puppet/http.rb +46 -0
- data/lib/puppet/indirector/catalog/compiler.rb +431 -0
- data/lib/puppet/indirector/catalog/json.rb +40 -0
- data/lib/puppet/indirector/catalog/msgpack.rb +6 -0
- data/lib/puppet/indirector/catalog/rest.rb +49 -0
- data/lib/puppet/indirector/catalog/store_configs.rb +8 -0
- data/lib/puppet/indirector/catalog/yaml.rb +6 -0
- data/lib/puppet/indirector/code.rb +6 -0
- data/lib/puppet/indirector/data_binding/hiera.rb +7 -0
- data/lib/puppet/indirector/data_binding/none.rb +8 -0
- data/lib/puppet/indirector/direct_file_server.rb +17 -0
- data/lib/puppet/indirector/envelope.rb +11 -0
- data/lib/puppet/indirector/errors.rb +5 -0
- data/lib/puppet/indirector/exec.rb +38 -0
- data/lib/puppet/indirector/face.rb +153 -0
- data/lib/puppet/indirector/fact_search.rb +60 -0
- data/lib/puppet/indirector/facts/facter.rb +117 -0
- data/lib/puppet/indirector/facts/json.rb +27 -0
- data/lib/puppet/indirector/facts/memory.rb +9 -0
- data/lib/puppet/indirector/facts/network_device.rb +27 -0
- data/lib/puppet/indirector/facts/rest.rb +44 -0
- data/lib/puppet/indirector/facts/store_configs.rb +11 -0
- data/lib/puppet/indirector/facts/yaml.rb +29 -0
- data/lib/puppet/indirector/file_bucket_file/file.rb +262 -0
- data/lib/puppet/indirector/file_bucket_file/rest.rb +50 -0
- data/lib/puppet/indirector/file_bucket_file/selector.rb +53 -0
- data/lib/puppet/indirector/file_content/file.rb +7 -0
- data/lib/puppet/indirector/file_content/file_server.rb +7 -0
- data/lib/puppet/indirector/file_content/rest.rb +35 -0
- data/lib/puppet/indirector/file_content/selector.rb +30 -0
- data/lib/puppet/indirector/file_content.rb +5 -0
- data/lib/puppet/indirector/file_metadata/file.rb +7 -0
- data/lib/puppet/indirector/file_metadata/file_server.rb +7 -0
- data/lib/puppet/indirector/file_metadata/http.rb +47 -0
- data/lib/puppet/indirector/file_metadata/rest.rb +56 -0
- data/lib/puppet/indirector/file_metadata/selector.rb +30 -0
- data/lib/puppet/indirector/file_metadata.rb +5 -0
- data/lib/puppet/indirector/file_server.rb +54 -0
- data/lib/puppet/indirector/generic_http.rb +5 -0
- data/lib/puppet/indirector/hiera.rb +100 -0
- data/lib/puppet/indirector/indirection.rb +372 -0
- data/lib/puppet/indirector/json.rb +79 -0
- data/lib/puppet/indirector/memory.rb +34 -0
- data/lib/puppet/indirector/msgpack.rb +83 -0
- data/lib/puppet/indirector/node/exec.rb +70 -0
- data/lib/puppet/indirector/node/json.rb +8 -0
- data/lib/puppet/indirector/node/memory.rb +10 -0
- data/lib/puppet/indirector/node/msgpack.rb +7 -0
- data/lib/puppet/indirector/node/plain.rb +21 -0
- data/lib/puppet/indirector/node/rest.rb +29 -0
- data/lib/puppet/indirector/node/store_configs.rb +8 -0
- data/lib/puppet/indirector/node/yaml.rb +7 -0
- data/lib/puppet/indirector/none.rb +9 -0
- data/lib/puppet/indirector/plain.rb +9 -0
- data/lib/puppet/indirector/report/json.rb +34 -0
- data/lib/puppet/indirector/report/msgpack.rb +11 -0
- data/lib/puppet/indirector/report/processor.rb +60 -0
- data/lib/puppet/indirector/report/rest.rb +42 -0
- data/lib/puppet/indirector/report/yaml.rb +34 -0
- data/lib/puppet/indirector/request.rb +194 -0
- data/lib/puppet/indirector/resource/ral.rb +66 -0
- data/lib/puppet/indirector/resource/store_configs.rb +12 -0
- data/lib/puppet/indirector/resource/validator.rb +8 -0
- data/lib/puppet/indirector/rest.rb +64 -0
- data/lib/puppet/indirector/store_configs.rb +30 -0
- data/lib/puppet/indirector/terminus.rb +176 -0
- data/lib/puppet/indirector/yaml.rb +63 -0
- data/lib/puppet/indirector.rb +61 -0
- data/lib/puppet/info_service/class_information_service.rb +109 -0
- data/lib/puppet/info_service/plan_information_service.rb +36 -0
- data/lib/puppet/info_service/task_information_service.rb +44 -0
- data/lib/puppet/info_service.rb +26 -0
- data/lib/puppet/interface/action.rb +406 -0
- data/lib/puppet/interface/action_builder.rb +161 -0
- data/lib/puppet/interface/action_manager.rb +98 -0
- data/lib/puppet/interface/documentation.rb +357 -0
- data/lib/puppet/interface/face_collection.rb +137 -0
- data/lib/puppet/interface/option.rb +172 -0
- data/lib/puppet/interface/option_builder.rb +105 -0
- data/lib/puppet/interface/option_manager.rb +106 -0
- data/lib/puppet/interface.rb +239 -0
- data/lib/puppet/loaders.rb +30 -0
- data/lib/puppet/metatype/manager.rb +197 -0
- data/lib/puppet/module/plan.rb +159 -0
- data/lib/puppet/module/task.rb +283 -0
- data/lib/puppet/module.rb +475 -0
- data/lib/puppet/module_tool/applications/application.rb +91 -0
- data/lib/puppet/module_tool/applications/checksummer.rb +62 -0
- data/lib/puppet/module_tool/applications/installer.rb +411 -0
- data/lib/puppet/module_tool/applications/uninstaller.rb +119 -0
- data/lib/puppet/module_tool/applications/unpacker.rb +100 -0
- data/lib/puppet/module_tool/applications/upgrader.rb +282 -0
- data/lib/puppet/module_tool/applications.rb +12 -0
- data/lib/puppet/module_tool/checksums.rb +49 -0
- data/lib/puppet/module_tool/contents_description.rb +89 -0
- data/lib/puppet/module_tool/dependency.rb +41 -0
- data/lib/puppet/module_tool/errors/base.rb +15 -0
- data/lib/puppet/module_tool/errors/installer.rb +93 -0
- data/lib/puppet/module_tool/errors/shared.rb +227 -0
- data/lib/puppet/module_tool/errors/uninstaller.rb +50 -0
- data/lib/puppet/module_tool/errors/upgrader.rb +63 -0
- data/lib/puppet/module_tool/errors.rb +11 -0
- data/lib/puppet/module_tool/install_directory.rb +45 -0
- data/lib/puppet/module_tool/installed_modules.rb +96 -0
- data/lib/puppet/module_tool/local_tarball.rb +90 -0
- data/lib/puppet/module_tool/metadata.rb +221 -0
- data/lib/puppet/module_tool/shared_behaviors.rb +181 -0
- data/lib/puppet/module_tool/tar/gnu.rb +19 -0
- data/lib/puppet/module_tool/tar/mini.rb +116 -0
- data/lib/puppet/module_tool/tar.rb +18 -0
- data/lib/puppet/module_tool.rb +194 -0
- data/lib/puppet/network/authconfig.rb +7 -0
- data/lib/puppet/network/authorization.rb +19 -0
- data/lib/puppet/network/client_request.rb +29 -0
- data/lib/puppet/network/format.rb +110 -0
- data/lib/puppet/network/format_handler.rb +108 -0
- data/lib/puppet/network/format_support.rb +139 -0
- data/lib/puppet/network/formats.rb +329 -0
- data/lib/puppet/network/http/api/indirected_routes.rb +277 -0
- data/lib/puppet/network/http/api/indirection_type.rb +32 -0
- data/lib/puppet/network/http/api/master/v3/environments.rb +3 -0
- data/lib/puppet/network/http/api/master/v3.rb +3 -0
- data/lib/puppet/network/http/api/master.rb +3 -0
- data/lib/puppet/network/http/api/server/v3/environments.rb +48 -0
- data/lib/puppet/network/http/api/server/v3.rb +39 -0
- data/lib/puppet/network/http/api/server.rb +10 -0
- data/lib/puppet/network/http/api.rb +39 -0
- data/lib/puppet/network/http/connection.rb +286 -0
- data/lib/puppet/network/http/error.rb +73 -0
- data/lib/puppet/network/http/handler.rb +215 -0
- data/lib/puppet/network/http/issues.rb +12 -0
- data/lib/puppet/network/http/memory_response.rb +13 -0
- data/lib/puppet/network/http/request.rb +71 -0
- data/lib/puppet/network/http/response.rb +23 -0
- data/lib/puppet/network/http/route.rb +101 -0
- data/lib/puppet/network/http.rb +28 -0
- data/lib/puppet/network/http_pool.rb +77 -0
- data/lib/puppet/network/uri.rb +18 -0
- data/lib/puppet/network.rb +3 -0
- data/lib/puppet/node/environment.rb +635 -0
- data/lib/puppet/node/facts.rb +165 -0
- data/lib/puppet/node/server_facts.rb +46 -0
- data/lib/puppet/node.rb +256 -0
- data/lib/puppet/pal/catalog_compiler.rb +108 -0
- data/lib/puppet/pal/compiler.rb +222 -0
- data/lib/puppet/pal/function_signature.rb +52 -0
- data/lib/puppet/pal/json_catalog_encoder.rb +71 -0
- data/lib/puppet/pal/pal_api.rb +15 -0
- data/lib/puppet/pal/pal_impl.rb +590 -0
- data/lib/puppet/pal/plan_signature.rb +71 -0
- data/lib/puppet/pal/script_compiler.rb +73 -0
- data/lib/puppet/pal/task_signature.rb +58 -0
- data/lib/puppet/parameter/boolean.rb +15 -0
- data/lib/puppet/parameter/package_options.rb +31 -0
- data/lib/puppet/parameter/path.rb +57 -0
- data/lib/puppet/parameter/value.rb +91 -0
- data/lib/puppet/parameter/value_collection.rb +212 -0
- data/lib/puppet/parameter.rb +589 -0
- data/lib/puppet/parser/abstract_compiler.rb +36 -0
- data/lib/puppet/parser/ast/block_expression.rb +15 -0
- data/lib/puppet/parser/ast/branch.rb +19 -0
- data/lib/puppet/parser/ast/hostclass.rb +27 -0
- data/lib/puppet/parser/ast/leaf.rb +81 -0
- data/lib/puppet/parser/ast/node.rb +17 -0
- data/lib/puppet/parser/ast/pops_bridge.rb +245 -0
- data/lib/puppet/parser/ast/resource.rb +66 -0
- data/lib/puppet/parser/ast/resource_instance.rb +10 -0
- data/lib/puppet/parser/ast/resourceparam.rb +31 -0
- data/lib/puppet/parser/ast/top_level_construct.rb +4 -0
- data/lib/puppet/parser/ast.rb +61 -0
- data/lib/puppet/parser/catalog_compiler.rb +56 -0
- data/lib/puppet/parser/compiler/catalog_validator/relationship_validator.rb +39 -0
- data/lib/puppet/parser/compiler/catalog_validator.rb +33 -0
- data/lib/puppet/parser/compiler.rb +615 -0
- data/lib/puppet/parser/e4_parser_adapter.rb +60 -0
- data/lib/puppet/parser/files.rb +93 -0
- data/lib/puppet/parser/functions/assert_type.rb +60 -0
- data/lib/puppet/parser/functions/binary_file.rb +24 -0
- data/lib/puppet/parser/functions/break.rb +39 -0
- data/lib/puppet/parser/functions/contain.rb +30 -0
- data/lib/puppet/parser/functions/create_resources.rb +110 -0
- data/lib/puppet/parser/functions/defined.rb +107 -0
- data/lib/puppet/parser/functions/dig.rb +38 -0
- data/lib/puppet/parser/functions/digest.rb +5 -0
- data/lib/puppet/parser/functions/each.rb +104 -0
- data/lib/puppet/parser/functions/epp.rb +39 -0
- data/lib/puppet/parser/functions/fail.rb +11 -0
- data/lib/puppet/parser/functions/file.rb +33 -0
- data/lib/puppet/parser/functions/filter.rb +79 -0
- data/lib/puppet/parser/functions/find_file.rb +28 -0
- data/lib/puppet/parser/functions/fqdn_rand.rb +44 -0
- data/lib/puppet/parser/functions/generate.rb +37 -0
- data/lib/puppet/parser/functions/hiera.rb +103 -0
- data/lib/puppet/parser/functions/hiera_array.rb +92 -0
- data/lib/puppet/parser/functions/hiera_hash.rb +102 -0
- data/lib/puppet/parser/functions/hiera_include.rb +101 -0
- data/lib/puppet/parser/functions/include.rb +34 -0
- data/lib/puppet/parser/functions/inline_epp.rb +51 -0
- data/lib/puppet/parser/functions/inline_template.rb +26 -0
- data/lib/puppet/parser/functions/lest.rb +49 -0
- data/lib/puppet/parser/functions/lookup.rb +132 -0
- data/lib/puppet/parser/functions/map.rb +76 -0
- data/lib/puppet/parser/functions/match.rb +43 -0
- data/lib/puppet/parser/functions/md5.rb +5 -0
- data/lib/puppet/parser/functions/new.rb +991 -0
- data/lib/puppet/parser/functions/next.rb +38 -0
- data/lib/puppet/parser/functions/realize.rb +20 -0
- data/lib/puppet/parser/functions/reduce.rb +137 -0
- data/lib/puppet/parser/functions/regsubst.rb +62 -0
- data/lib/puppet/parser/functions/require.rb +40 -0
- data/lib/puppet/parser/functions/return.rb +92 -0
- data/lib/puppet/parser/functions/reverse_each.rb +83 -0
- data/lib/puppet/parser/functions/scanf.rb +38 -0
- data/lib/puppet/parser/functions/sha1.rb +5 -0
- data/lib/puppet/parser/functions/sha256.rb +5 -0
- data/lib/puppet/parser/functions/shellquote.rb +61 -0
- data/lib/puppet/parser/functions/slice.rb +39 -0
- data/lib/puppet/parser/functions/split.rb +28 -0
- data/lib/puppet/parser/functions/sprintf.rb +61 -0
- data/lib/puppet/parser/functions/step.rb +84 -0
- data/lib/puppet/parser/functions/strftime.rb +185 -0
- data/lib/puppet/parser/functions/tag.rb +12 -0
- data/lib/puppet/parser/functions/tagged.rb +21 -0
- data/lib/puppet/parser/functions/template.rb +39 -0
- data/lib/puppet/parser/functions/then.rb +73 -0
- data/lib/puppet/parser/functions/type.rb +53 -0
- data/lib/puppet/parser/functions/versioncmp.rb +30 -0
- data/lib/puppet/parser/functions/with.rb +28 -0
- data/lib/puppet/parser/functions.rb +321 -0
- data/lib/puppet/parser/parser_factory.rb +30 -0
- data/lib/puppet/parser/relationship.rb +84 -0
- data/lib/puppet/parser/resource/param.rb +35 -0
- data/lib/puppet/parser/resource.rb +351 -0
- data/lib/puppet/parser/scope.rb +1127 -0
- data/lib/puppet/parser/script_compiler.rb +123 -0
- data/lib/puppet/parser/templatewrapper.rb +104 -0
- data/lib/puppet/parser/type_loader.rb +150 -0
- data/lib/puppet/parser.rb +20 -0
- data/lib/puppet/plugins/configuration.rb +29 -0
- data/lib/puppet/plugins/syntax_checkers.rb +98 -0
- data/lib/puppet/plugins.rb +9 -0
- data/lib/puppet/pops/adaptable.rb +197 -0
- data/lib/puppet/pops/adapters.rb +156 -0
- data/lib/puppet/pops/evaluator/access_operator.rb +719 -0
- data/lib/puppet/pops/evaluator/callable_signature.rb +107 -0
- data/lib/puppet/pops/evaluator/closure.rb +375 -0
- data/lib/puppet/pops/evaluator/collector_transformer.rb +234 -0
- data/lib/puppet/pops/evaluator/collectors/abstract_collector.rb +86 -0
- data/lib/puppet/pops/evaluator/collectors/catalog_collector.rb +29 -0
- data/lib/puppet/pops/evaluator/collectors/exported_collector.rb +70 -0
- data/lib/puppet/pops/evaluator/collectors/fixed_set_collector.rb +38 -0
- data/lib/puppet/pops/evaluator/compare_operator.rb +254 -0
- data/lib/puppet/pops/evaluator/deferred_resolver.rb +225 -0
- data/lib/puppet/pops/evaluator/epp_evaluator.rb +120 -0
- data/lib/puppet/pops/evaluator/evaluator_impl.rb +1317 -0
- data/lib/puppet/pops/evaluator/external_syntax_support.rb +46 -0
- data/lib/puppet/pops/evaluator/json_strict_literal_evaluator.rb +82 -0
- data/lib/puppet/pops/evaluator/literal_evaluator.rb +100 -0
- data/lib/puppet/pops/evaluator/puppet_proc.rb +69 -0
- data/lib/puppet/pops/evaluator/relationship_operator.rb +185 -0
- data/lib/puppet/pops/evaluator/runtime3_converter.rb +221 -0
- data/lib/puppet/pops/evaluator/runtime3_resource_support.rb +119 -0
- data/lib/puppet/pops/evaluator/runtime3_support.rb +535 -0
- data/lib/puppet/pops/functions/dispatch.rb +107 -0
- data/lib/puppet/pops/functions/dispatcher.rb +75 -0
- data/lib/puppet/pops/functions/function.rb +139 -0
- data/lib/puppet/pops/issue_reporter.rb +137 -0
- data/lib/puppet/pops/issues.rb +928 -0
- data/lib/puppet/pops/label_provider.rb +90 -0
- data/lib/puppet/pops/loader/base_loader.rb +178 -0
- data/lib/puppet/pops/loader/dependency_loader.rb +91 -0
- data/lib/puppet/pops/loader/gem_support.rb +51 -0
- data/lib/puppet/pops/loader/generic_plan_instantiator.rb +28 -0
- data/lib/puppet/pops/loader/loader.rb +221 -0
- data/lib/puppet/pops/loader/loader_paths.rb +412 -0
- data/lib/puppet/pops/loader/module_loaders.rb +556 -0
- data/lib/puppet/pops/loader/predefined_loader.rb +28 -0
- data/lib/puppet/pops/loader/puppet_function_instantiator.rb +84 -0
- data/lib/puppet/pops/loader/puppet_plan_instantiator.rb +93 -0
- data/lib/puppet/pops/loader/puppet_resource_type_impl_instantiator.rb +79 -0
- data/lib/puppet/pops/loader/ruby_data_type_instantiator.rb +39 -0
- data/lib/puppet/pops/loader/ruby_function_instantiator.rb +45 -0
- data/lib/puppet/pops/loader/ruby_legacy_function_instantiator.rb +120 -0
- data/lib/puppet/pops/loader/runtime3_type_loader.rb +103 -0
- data/lib/puppet/pops/loader/simple_environment_loader.rb +20 -0
- data/lib/puppet/pops/loader/static_loader.rb +131 -0
- data/lib/puppet/pops/loader/task_instantiator.rb +44 -0
- data/lib/puppet/pops/loader/type_definition_instantiator.rb +100 -0
- data/lib/puppet/pops/loader/typed_name.rb +54 -0
- data/lib/puppet/pops/loader/uri_helper.rb +22 -0
- data/lib/puppet/pops/loaders.rb +546 -0
- data/lib/puppet/pops/lookup/configured_data_provider.rb +93 -0
- data/lib/puppet/pops/lookup/context.rb +199 -0
- data/lib/puppet/pops/lookup/data_adapter.rb +27 -0
- data/lib/puppet/pops/lookup/data_dig_function_provider.rb +145 -0
- data/lib/puppet/pops/lookup/data_hash_function_provider.rb +126 -0
- data/lib/puppet/pops/lookup/data_provider.rb +92 -0
- data/lib/puppet/pops/lookup/environment_data_provider.rb +35 -0
- data/lib/puppet/pops/lookup/explainer.rb +595 -0
- data/lib/puppet/pops/lookup/function_provider.rb +110 -0
- data/lib/puppet/pops/lookup/global_data_provider.rb +75 -0
- data/lib/puppet/pops/lookup/hiera_config.rb +775 -0
- data/lib/puppet/pops/lookup/interpolation.rb +155 -0
- data/lib/puppet/pops/lookup/invocation.rb +268 -0
- data/lib/puppet/pops/lookup/key_recorder.rb +18 -0
- data/lib/puppet/pops/lookup/location_resolver.rb +99 -0
- data/lib/puppet/pops/lookup/lookup_adapter.rb +528 -0
- data/lib/puppet/pops/lookup/lookup_key.rb +99 -0
- data/lib/puppet/pops/lookup/lookup_key_function_provider.rb +92 -0
- data/lib/puppet/pops/lookup/module_data_provider.rb +89 -0
- data/lib/puppet/pops/lookup/sub_lookup.rb +92 -0
- data/lib/puppet/pops/lookup.rb +97 -0
- data/lib/puppet/pops/merge_strategy.rb +441 -0
- data/lib/puppet/pops/migration/migration_checker.rb +58 -0
- data/lib/puppet/pops/model/ast.pp +669 -0
- data/lib/puppet/pops/model/ast.rb +4675 -0
- data/lib/puppet/pops/model/ast_transformer.rb +131 -0
- data/lib/puppet/pops/model/factory.rb +1155 -0
- data/lib/puppet/pops/model/model_label_provider.rb +134 -0
- data/lib/puppet/pops/model/model_tree_dumper.rb +445 -0
- data/lib/puppet/pops/model/pn_transformer.rb +385 -0
- data/lib/puppet/pops/model/tree_dumper.rb +59 -0
- data/lib/puppet/pops/parser/code_merger.rb +29 -0
- data/lib/puppet/pops/parser/egrammar.ra +889 -0
- data/lib/puppet/pops/parser/eparser.rb +3184 -0
- data/lib/puppet/pops/parser/epp_parser.rb +51 -0
- data/lib/puppet/pops/parser/epp_support.rb +265 -0
- data/lib/puppet/pops/parser/evaluating_parser.rb +162 -0
- data/lib/puppet/pops/parser/heredoc_support.rb +153 -0
- data/lib/puppet/pops/parser/interpolation_support.rb +249 -0
- data/lib/puppet/pops/parser/lexer2.rb +777 -0
- data/lib/puppet/pops/parser/lexer_support.rb +221 -0
- data/lib/puppet/pops/parser/locatable.rb +23 -0
- data/lib/puppet/pops/parser/locator.rb +357 -0
- data/lib/puppet/pops/parser/parser_support.rb +251 -0
- data/lib/puppet/pops/parser/pn_parser.rb +317 -0
- data/lib/puppet/pops/parser/slurp_support.rb +118 -0
- data/lib/puppet/pops/patterns.rb +60 -0
- data/lib/puppet/pops/pcore.rb +135 -0
- data/lib/puppet/pops/pn.rb +236 -0
- data/lib/puppet/pops/puppet_stack.rb +61 -0
- data/lib/puppet/pops/resource/param.rb +55 -0
- data/lib/puppet/pops/resource/resource_type_impl.rb +294 -0
- data/lib/puppet/pops/resource/resource_type_set.pcore +22 -0
- data/lib/puppet/pops/semantic_error.rb +29 -0
- data/lib/puppet/pops/serialization/abstract_reader.rb +180 -0
- data/lib/puppet/pops/serialization/abstract_writer.rb +222 -0
- data/lib/puppet/pops/serialization/deserializer.rb +80 -0
- data/lib/puppet/pops/serialization/extension.rb +158 -0
- data/lib/puppet/pops/serialization/from_data_converter.rb +224 -0
- data/lib/puppet/pops/serialization/instance_reader.rb +19 -0
- data/lib/puppet/pops/serialization/instance_writer.rb +14 -0
- data/lib/puppet/pops/serialization/json.rb +297 -0
- data/lib/puppet/pops/serialization/json_path.rb +127 -0
- data/lib/puppet/pops/serialization/object.rb +70 -0
- data/lib/puppet/pops/serialization/serializer.rb +140 -0
- data/lib/puppet/pops/serialization/time_factory.rb +67 -0
- data/lib/puppet/pops/serialization/to_data_converter.rb +313 -0
- data/lib/puppet/pops/serialization/to_stringified_converter.rb +226 -0
- data/lib/puppet/pops/serialization.rb +43 -0
- data/lib/puppet/pops/time/timespan.rb +716 -0
- data/lib/puppet/pops/time/timestamp.rb +160 -0
- data/lib/puppet/pops/types/annotatable.rb +36 -0
- data/lib/puppet/pops/types/annotation.rb +71 -0
- data/lib/puppet/pops/types/class_loader.rb +132 -0
- data/lib/puppet/pops/types/implementation_registry.rb +134 -0
- data/lib/puppet/pops/types/iterable.rb +365 -0
- data/lib/puppet/pops/types/p_binary_type.rb +232 -0
- data/lib/puppet/pops/types/p_init_type.rb +238 -0
- data/lib/puppet/pops/types/p_meta_type.rb +94 -0
- data/lib/puppet/pops/types/p_object_type.rb +1117 -0
- data/lib/puppet/pops/types/p_object_type_extension.rb +228 -0
- data/lib/puppet/pops/types/p_runtime_type.rb +115 -0
- data/lib/puppet/pops/types/p_sem_ver_range_type.rb +190 -0
- data/lib/puppet/pops/types/p_sem_ver_type.rb +155 -0
- data/lib/puppet/pops/types/p_sensitive_type.rb +83 -0
- data/lib/puppet/pops/types/p_timespan_type.rb +192 -0
- data/lib/puppet/pops/types/p_timestamp_type.rb +73 -0
- data/lib/puppet/pops/types/p_type_set_type.rb +387 -0
- data/lib/puppet/pops/types/p_uri_type.rb +190 -0
- data/lib/puppet/pops/types/puppet_object.rb +40 -0
- data/lib/puppet/pops/types/recursion_guard.rb +136 -0
- data/lib/puppet/pops/types/ruby_generator.rb +472 -0
- data/lib/puppet/pops/types/ruby_method.rb +31 -0
- data/lib/puppet/pops/types/string_converter.rb +1134 -0
- data/lib/puppet/pops/types/tree_iterators.rb +254 -0
- data/lib/puppet/pops/types/type_acceptor.rb +25 -0
- data/lib/puppet/pops/types/type_asserter.rb +47 -0
- data/lib/puppet/pops/types/type_assertion_error.rb +27 -0
- data/lib/puppet/pops/types/type_calculator.rb +822 -0
- data/lib/puppet/pops/types/type_conversion_error.rb +15 -0
- data/lib/puppet/pops/types/type_factory.rb +631 -0
- data/lib/puppet/pops/types/type_formatter.rb +801 -0
- data/lib/puppet/pops/types/type_mismatch_describer.rb +1096 -0
- data/lib/puppet/pops/types/type_parser.rb +683 -0
- data/lib/puppet/pops/types/type_set_reference.rb +59 -0
- data/lib/puppet/pops/types/type_with_members.rb +43 -0
- data/lib/puppet/pops/types/types.rb +3633 -0
- data/lib/puppet/pops/utils.rb +119 -0
- data/lib/puppet/pops/validation/checker4_0.rb +1148 -0
- data/lib/puppet/pops/validation/tasks_checker.rb +93 -0
- data/lib/puppet/pops/validation/validator_factory_4_0.rb +45 -0
- data/lib/puppet/pops/validation.rb +459 -0
- data/lib/puppet/pops/visitable.rb +6 -0
- data/lib/puppet/pops/visitor.rb +122 -0
- data/lib/puppet/pops.rb +121 -0
- data/lib/puppet/property/boolean.rb +7 -0
- data/lib/puppet/property/ensure.rb +106 -0
- data/lib/puppet/property/keyvalue.rb +158 -0
- data/lib/puppet/property/list.rb +70 -0
- data/lib/puppet/property/ordered_list.rb +29 -0
- data/lib/puppet/property.rb +611 -0
- data/lib/puppet/provider/aix_object.rb +485 -0
- data/lib/puppet/provider/command.rb +25 -0
- data/lib/puppet/provider/confine.rb +6 -0
- data/lib/puppet/provider/exec/posix.rb +60 -0
- data/lib/puppet/provider/exec/shell.rb +25 -0
- data/lib/puppet/provider/exec/windows.rb +55 -0
- data/lib/puppet/provider/exec.rb +105 -0
- data/lib/puppet/provider/file/posix.rb +144 -0
- data/lib/puppet/provider/file/windows.rb +152 -0
- data/lib/puppet/provider/group/aix.rb +99 -0
- data/lib/puppet/provider/group/directoryservice.rb +22 -0
- data/lib/puppet/provider/group/groupadd.rb +174 -0
- data/lib/puppet/provider/group/ldap.rb +48 -0
- data/lib/puppet/provider/group/pw.rb +51 -0
- data/lib/puppet/provider/group/windows_adsi.rb +113 -0
- data/lib/puppet/provider/ldap.rb +141 -0
- data/lib/puppet/provider/nameservice/directoryservice.rb +512 -0
- data/lib/puppet/provider/nameservice/objectadd.rb +22 -0
- data/lib/puppet/provider/nameservice/pw.rb +21 -0
- data/lib/puppet/provider/nameservice.rb +293 -0
- data/lib/puppet/provider/network_device.rb +74 -0
- data/lib/puppet/provider/package/aix.rb +169 -0
- data/lib/puppet/provider/package/appdmg.rb +111 -0
- data/lib/puppet/provider/package/apple.rb +47 -0
- data/lib/puppet/provider/package/apt.rb +262 -0
- data/lib/puppet/provider/package/aptitude.rb +35 -0
- data/lib/puppet/provider/package/aptrpm.rb +83 -0
- data/lib/puppet/provider/package/blastwave.rb +112 -0
- data/lib/puppet/provider/package/dnf.rb +50 -0
- data/lib/puppet/provider/package/dnfmodule.rb +141 -0
- data/lib/puppet/provider/package/dpkg.rb +192 -0
- data/lib/puppet/provider/package/fink.rb +97 -0
- data/lib/puppet/provider/package/freebsd.rb +47 -0
- data/lib/puppet/provider/package/gem.rb +293 -0
- data/lib/puppet/provider/package/hpux.rb +44 -0
- data/lib/puppet/provider/package/macports.rb +110 -0
- data/lib/puppet/provider/package/nim.rb +291 -0
- data/lib/puppet/provider/package/openbsd.rb +260 -0
- data/lib/puppet/provider/package/opkg.rb +82 -0
- data/lib/puppet/provider/package/pacman.rb +273 -0
- data/lib/puppet/provider/package/pip.rb +346 -0
- data/lib/puppet/provider/package/pip2.rb +17 -0
- data/lib/puppet/provider/package/pip3.rb +17 -0
- data/lib/puppet/provider/package/pkg.rb +295 -0
- data/lib/puppet/provider/package/pkgdmg.rb +153 -0
- data/lib/puppet/provider/package/pkgin.rb +87 -0
- data/lib/puppet/provider/package/pkgng.rb +173 -0
- data/lib/puppet/provider/package/pkgutil.rb +187 -0
- data/lib/puppet/provider/package/portage.rb +310 -0
- data/lib/puppet/provider/package/ports.rb +91 -0
- data/lib/puppet/provider/package/portupgrade.rb +240 -0
- data/lib/puppet/provider/package/puppet_gem.rb +34 -0
- data/lib/puppet/provider/package/puppetserver_gem.rb +171 -0
- data/lib/puppet/provider/package/rpm.rb +250 -0
- data/lib/puppet/provider/package/rug.rb +51 -0
- data/lib/puppet/provider/package/sun.rb +133 -0
- data/lib/puppet/provider/package/sunfreeware.rb +9 -0
- data/lib/puppet/provider/package/tdnf.rb +28 -0
- data/lib/puppet/provider/package/up2date.rb +40 -0
- data/lib/puppet/provider/package/urpmi.rb +55 -0
- data/lib/puppet/provider/package/windows/exe_package.rb +106 -0
- data/lib/puppet/provider/package/windows/msi_package.rb +70 -0
- data/lib/puppet/provider/package/windows/package.rb +110 -0
- data/lib/puppet/provider/package/windows.rb +130 -0
- data/lib/puppet/provider/package/yum.rb +387 -0
- data/lib/puppet/provider/package/zypper.rb +206 -0
- data/lib/puppet/provider/package.rb +59 -0
- data/lib/puppet/provider/package_targetable.rb +69 -0
- data/lib/puppet/provider/parsedfile.rb +490 -0
- data/lib/puppet/provider/service/base.rb +139 -0
- data/lib/puppet/provider/service/bsd.rb +51 -0
- data/lib/puppet/provider/service/daemontools.rb +193 -0
- data/lib/puppet/provider/service/debian.rb +75 -0
- data/lib/puppet/provider/service/freebsd.rb +143 -0
- data/lib/puppet/provider/service/gentoo.rb +45 -0
- data/lib/puppet/provider/service/init.rb +192 -0
- data/lib/puppet/provider/service/launchd.rb +384 -0
- data/lib/puppet/provider/service/openbsd.rb +100 -0
- data/lib/puppet/provider/service/openrc.rb +71 -0
- data/lib/puppet/provider/service/openwrt.rb +36 -0
- data/lib/puppet/provider/service/rcng.rb +51 -0
- data/lib/puppet/provider/service/redhat.rb +72 -0
- data/lib/puppet/provider/service/runit.rb +106 -0
- data/lib/puppet/provider/service/service.rb +68 -0
- data/lib/puppet/provider/service/smf.rb +317 -0
- data/lib/puppet/provider/service/src.rb +147 -0
- data/lib/puppet/provider/service/systemd.rb +232 -0
- data/lib/puppet/provider/service/upstart.rb +385 -0
- data/lib/puppet/provider/service/windows.rb +182 -0
- data/lib/puppet/provider/user/aix.rb +361 -0
- data/lib/puppet/provider/user/directoryservice.rb +680 -0
- data/lib/puppet/provider/user/hpux.rb +95 -0
- data/lib/puppet/provider/user/ldap.rb +132 -0
- data/lib/puppet/provider/user/openbsd.rb +77 -0
- data/lib/puppet/provider/user/pw.rb +108 -0
- data/lib/puppet/provider/user/user_role_add.rb +239 -0
- data/lib/puppet/provider/user/useradd.rb +406 -0
- data/lib/puppet/provider/user/windows_adsi.rb +172 -0
- data/lib/puppet/provider.rb +612 -0
- data/lib/puppet/reference/configuration.rb +97 -0
- data/lib/puppet/reference/function.rb +17 -0
- data/lib/puppet/reference/indirection.rb +71 -0
- data/lib/puppet/reference/metaparameter.rb +33 -0
- data/lib/puppet/reference/providers.rb +117 -0
- data/lib/puppet/reference/report.rb +20 -0
- data/lib/puppet/reference/type.rb +109 -0
- data/lib/puppet/relationship.rb +84 -0
- data/lib/puppet/reports/http.rb +44 -0
- data/lib/puppet/reports/log.rb +14 -0
- data/lib/puppet/reports/store.rb +68 -0
- data/lib/puppet/reports.rb +93 -0
- data/lib/puppet/resource/catalog.rb +654 -0
- data/lib/puppet/resource/status.rb +229 -0
- data/lib/puppet/resource/type.rb +425 -0
- data/lib/puppet/resource/type_collection.rb +231 -0
- data/lib/puppet/resource.rb +663 -0
- data/lib/puppet/runtime.rb +65 -0
- data/lib/puppet/scheduler/job.rb +53 -0
- data/lib/puppet/scheduler/scheduler.rb +44 -0
- data/lib/puppet/scheduler/splay_job.rb +32 -0
- data/lib/puppet/scheduler/timer.rb +13 -0
- data/lib/puppet/scheduler.rb +16 -0
- data/lib/puppet/settings/alias_setting.rb +37 -0
- data/lib/puppet/settings/array_setting.rb +17 -0
- data/lib/puppet/settings/autosign_setting.rb +22 -0
- data/lib/puppet/settings/base_setting.rb +223 -0
- data/lib/puppet/settings/boolean_setting.rb +32 -0
- data/lib/puppet/settings/certificate_revocation_setting.rb +21 -0
- data/lib/puppet/settings/config_file.rb +146 -0
- data/lib/puppet/settings/directory_setting.rb +18 -0
- data/lib/puppet/settings/duration_setting.rb +32 -0
- data/lib/puppet/settings/enum_setting.rb +16 -0
- data/lib/puppet/settings/environment_conf.rb +224 -0
- data/lib/puppet/settings/errors.rb +11 -0
- data/lib/puppet/settings/file_or_directory_setting.rb +40 -0
- data/lib/puppet/settings/file_setting.rb +241 -0
- data/lib/puppet/settings/http_extra_headers_setting.rb +25 -0
- data/lib/puppet/settings/ini_file.rb +226 -0
- data/lib/puppet/settings/integer_setting.rb +17 -0
- data/lib/puppet/settings/path_setting.rb +8 -0
- data/lib/puppet/settings/port_setting.rb +15 -0
- data/lib/puppet/settings/priority_setting.rb +43 -0
- data/lib/puppet/settings/server_list_setting.rb +29 -0
- data/lib/puppet/settings/string_setting.rb +9 -0
- data/lib/puppet/settings/symbolic_enum_setting.rb +17 -0
- data/lib/puppet/settings/terminus_setting.rb +14 -0
- data/lib/puppet/settings/ttl_setting.rb +51 -0
- data/lib/puppet/settings/value_translator.rb +14 -0
- data/lib/puppet/settings.rb +1642 -0
- data/lib/puppet/ssl/base.rb +149 -0
- data/lib/puppet/ssl/certificate.rb +96 -0
- data/lib/puppet/ssl/certificate_request.rb +324 -0
- data/lib/puppet/ssl/certificate_request_attributes.rb +37 -0
- data/lib/puppet/ssl/certificate_signer.rb +39 -0
- data/lib/puppet/ssl/digest.rb +20 -0
- data/lib/puppet/ssl/error.rb +26 -0
- data/lib/puppet/ssl/oids.rb +197 -0
- data/lib/puppet/ssl/openssl_loader.rb +24 -0
- data/lib/puppet/ssl/ssl_context.rb +25 -0
- data/lib/puppet/ssl/ssl_provider.rb +350 -0
- data/lib/puppet/ssl/state_machine.rb +474 -0
- data/lib/puppet/ssl/verifier.rb +142 -0
- data/lib/puppet/ssl.rb +23 -0
- data/lib/puppet/syntax_checkers/base64.rb +40 -0
- data/lib/puppet/syntax_checkers/epp.rb +34 -0
- data/lib/puppet/syntax_checkers/json.rb +35 -0
- data/lib/puppet/syntax_checkers/pp.rb +34 -0
- data/lib/puppet/syntax_checkers.rb +3 -0
- data/lib/puppet/test/test_helper.rb +265 -0
- data/lib/puppet/thread_local.rb +4 -0
- data/lib/puppet/transaction/additional_resource_generator.rb +220 -0
- data/lib/puppet/transaction/event.rb +168 -0
- data/lib/puppet/transaction/event_manager.rb +179 -0
- data/lib/puppet/transaction/persistence.rb +119 -0
- data/lib/puppet/transaction/report.rb +504 -0
- data/lib/puppet/transaction/resource_harness.rb +323 -0
- data/lib/puppet/transaction.rb +491 -0
- data/lib/puppet/trusted_external.rb +41 -0
- data/lib/puppet/type/component.rb +89 -0
- data/lib/puppet/type/exec.rb +720 -0
- data/lib/puppet/type/file/checksum.rb +50 -0
- data/lib/puppet/type/file/checksum_value.rb +54 -0
- data/lib/puppet/type/file/content.rb +176 -0
- data/lib/puppet/type/file/ctime.rb +21 -0
- data/lib/puppet/type/file/data_sync.rb +98 -0
- data/lib/puppet/type/file/ensure.rb +195 -0
- data/lib/puppet/type/file/group.rb +48 -0
- data/lib/puppet/type/file/mode.rb +189 -0
- data/lib/puppet/type/file/mtime.rb +19 -0
- data/lib/puppet/type/file/owner.rb +51 -0
- data/lib/puppet/type/file/selcontext.rb +142 -0
- data/lib/puppet/type/file/source.rb +379 -0
- data/lib/puppet/type/file/target.rb +88 -0
- data/lib/puppet/type/file/type.rb +20 -0
- data/lib/puppet/type/file.rb +1133 -0
- data/lib/puppet/type/filebucket.rb +121 -0
- data/lib/puppet/type/group.rb +237 -0
- data/lib/puppet/type/notify.rb +47 -0
- data/lib/puppet/type/package.rb +713 -0
- data/lib/puppet/type/resources.rb +187 -0
- data/lib/puppet/type/schedule.rb +441 -0
- data/lib/puppet/type/service.rb +309 -0
- data/lib/puppet/type/stage.rb +27 -0
- data/lib/puppet/type/tidy.rb +376 -0
- data/lib/puppet/type/user.rb +859 -0
- data/lib/puppet/type/whit.rb +34 -0
- data/lib/puppet/type.rb +2676 -0
- data/lib/puppet/util/at_fork/noop.rb +18 -0
- data/lib/puppet/util/at_fork/solaris.rb +160 -0
- data/lib/puppet/util/at_fork.rb +35 -0
- data/lib/puppet/util/autoload.rb +215 -0
- data/lib/puppet/util/backups.rb +86 -0
- data/lib/puppet/util/character_encoding.rb +80 -0
- data/lib/puppet/util/checksums.rb +376 -0
- data/lib/puppet/util/classgen.rb +228 -0
- data/lib/puppet/util/colors.rb +100 -0
- data/lib/puppet/util/command_line/puppet_option_parser.rb +87 -0
- data/lib/puppet/util/command_line/trollop.rb +825 -0
- data/lib/puppet/util/command_line.rb +196 -0
- data/lib/puppet/util/constant_inflector.rb +24 -0
- data/lib/puppet/util/diff.rb +81 -0
- data/lib/puppet/util/docs.rb +128 -0
- data/lib/puppet/util/errors.rb +159 -0
- data/lib/puppet/util/execution.rb +424 -0
- data/lib/puppet/util/execution_stub.rb +26 -0
- data/lib/puppet/util/feature.rb +129 -0
- data/lib/puppet/util/file_watcher.rb +28 -0
- data/lib/puppet/util/fileparsing.rb +408 -0
- data/lib/puppet/util/filetype.rb +358 -0
- data/lib/puppet/util/http_proxy.rb +4 -0
- data/lib/puppet/util/inifile.rb +340 -0
- data/lib/puppet/util/instance_loader.rb +66 -0
- data/lib/puppet/util/json.rb +92 -0
- data/lib/puppet/util/json_lockfile.rb +44 -0
- data/lib/puppet/util/ldap/connection.rb +73 -0
- data/lib/puppet/util/ldap/generator.rb +42 -0
- data/lib/puppet/util/ldap/manager.rb +284 -0
- data/lib/puppet/util/ldap.rb +2 -0
- data/lib/puppet/util/libuser.conf +15 -0
- data/lib/puppet/util/libuser.rb +12 -0
- data/lib/puppet/util/limits.rb +12 -0
- data/lib/puppet/util/lockfile.rb +66 -0
- data/lib/puppet/util/log/destination.rb +49 -0
- data/lib/puppet/util/log/destinations.rb +253 -0
- data/lib/puppet/util/log.rb +427 -0
- data/lib/puppet/util/logging.rb +300 -0
- data/lib/puppet/util/metaid.rb +21 -0
- data/lib/puppet/util/metric.rb +65 -0
- data/lib/puppet/util/monkey_patches.rb +122 -0
- data/lib/puppet/util/multi_match.rb +51 -0
- data/lib/puppet/util/network_device/base.rb +23 -0
- data/lib/puppet/util/network_device/config.rb +105 -0
- data/lib/puppet/util/network_device/transport/base.rb +26 -0
- data/lib/puppet/util/network_device/transport.rb +5 -0
- data/lib/puppet/util/network_device.rb +17 -0
- data/lib/puppet/util/package/version/debian.rb +175 -0
- data/lib/puppet/util/package/version/gem.rb +15 -0
- data/lib/puppet/util/package/version/pip.rb +167 -0
- data/lib/puppet/util/package/version/range/eq.rb +14 -0
- data/lib/puppet/util/package/version/range/gt.rb +14 -0
- data/lib/puppet/util/package/version/range/gt_eq.rb +14 -0
- data/lib/puppet/util/package/version/range/lt.rb +14 -0
- data/lib/puppet/util/package/version/range/lt_eq.rb +14 -0
- data/lib/puppet/util/package/version/range/min_max.rb +21 -0
- data/lib/puppet/util/package/version/range/simple.rb +11 -0
- data/lib/puppet/util/package/version/range.rb +53 -0
- data/lib/puppet/util/package/version/rpm.rb +73 -0
- data/lib/puppet/util/package.rb +40 -0
- data/lib/puppet/util/pidlock.rb +102 -0
- data/lib/puppet/util/platform.rb +70 -0
- data/lib/puppet/util/plist.rb +161 -0
- data/lib/puppet/util/posix.rb +203 -0
- data/lib/puppet/util/profiler/aggregate.rb +85 -0
- data/lib/puppet/util/profiler/around_profiler.rb +67 -0
- data/lib/puppet/util/profiler/logging.rb +48 -0
- data/lib/puppet/util/profiler/object_counts.rb +17 -0
- data/lib/puppet/util/profiler/wall_clock.rb +35 -0
- data/lib/puppet/util/profiler.rb +53 -0
- data/lib/puppet/util/provider_features.rb +179 -0
- data/lib/puppet/util/psych_support.rb +30 -0
- data/lib/puppet/util/rdoc/code_objects.rb +295 -0
- data/lib/puppet/util/rdoc/generators/puppet_generator.rb +912 -0
- data/lib/puppet/util/rdoc/generators/template/puppet/puppet.rb +1085 -0
- data/lib/puppet/util/rdoc/parser/puppet_parser_core.rb +259 -0
- data/lib/puppet/util/rdoc/parser/puppet_parser_rdoc2.rb +14 -0
- data/lib/puppet/util/rdoc/parser.rb +12 -0
- data/lib/puppet/util/rdoc.rb +53 -0
- data/lib/puppet/util/reference.rb +119 -0
- data/lib/puppet/util/resource_template.rb +61 -0
- data/lib/puppet/util/retry_action.rb +46 -0
- data/lib/puppet/util/rpm_compare.rb +193 -0
- data/lib/puppet/util/rubygems.rb +67 -0
- data/lib/puppet/util/run_mode.rb +122 -0
- data/lib/puppet/util/selinux.rb +297 -0
- data/lib/puppet/util/skip_tags.rb +13 -0
- data/lib/puppet/util/splayer.rb +18 -0
- data/lib/puppet/util/storage.rb +100 -0
- data/lib/puppet/util/suidmanager.rb +166 -0
- data/lib/puppet/util/symbolic_file_mode.rb +156 -0
- data/lib/puppet/util/tag_set.rb +27 -0
- data/lib/puppet/util/tagging.rb +132 -0
- data/lib/puppet/util/terminal.rb +16 -0
- data/lib/puppet/util/user_attr.rb +21 -0
- data/lib/puppet/util/warnings.rb +31 -0
- data/lib/puppet/util/watched_file.rb +37 -0
- data/lib/puppet/util/watcher/change_watcher.rb +33 -0
- data/lib/puppet/util/watcher/periodic_watcher.rb +37 -0
- data/lib/puppet/util/watcher/timer.rb +19 -0
- data/lib/puppet/util/watcher.rb +17 -0
- data/lib/puppet/util/windows/access_control_entry.rb +84 -0
- data/lib/puppet/util/windows/access_control_list.rb +113 -0
- data/lib/puppet/util/windows/adsi.rb +654 -0
- data/lib/puppet/util/windows/com.rb +225 -0
- data/lib/puppet/util/windows/daemon.rb +343 -0
- data/lib/puppet/util/windows/error.rb +84 -0
- data/lib/puppet/util/windows/eventlog.rb +187 -0
- data/lib/puppet/util/windows/file.rb +355 -0
- data/lib/puppet/util/windows/monkey_patches/process.rb +414 -0
- data/lib/puppet/util/windows/principal.rb +201 -0
- data/lib/puppet/util/windows/process.rb +364 -0
- data/lib/puppet/util/windows/registry.rb +441 -0
- data/lib/puppet/util/windows/root_certs.rb +108 -0
- data/lib/puppet/util/windows/security.rb +907 -0
- data/lib/puppet/util/windows/security_descriptor.rb +62 -0
- data/lib/puppet/util/windows/service.rb +696 -0
- data/lib/puppet/util/windows/sid.rb +289 -0
- data/lib/puppet/util/windows/string.rb +15 -0
- data/lib/puppet/util/windows/user.rb +550 -0
- data/lib/puppet/util/windows.rb +51 -0
- data/lib/puppet/util/yaml.rb +65 -0
- data/lib/puppet/util.rb +808 -0
- data/lib/puppet/vendor/require_vendored.rb +4 -0
- data/lib/puppet/vendor.rb +57 -0
- data/lib/puppet/version.rb +95 -0
- data/lib/puppet/x509/cert_provider.rb +369 -0
- data/lib/puppet/x509/pem_store.rb +55 -0
- data/lib/puppet/x509.rb +11 -0
- data/lib/puppet.rb +345 -0
- data/lib/puppet_pal.rb +8 -0
- data/lib/puppet_x.rb +14 -0
- data/locales/config.yaml +29 -0
- data/locales/en/puppet.po +19 -0
- data/locales/puppet.pot +20 -0
- data/man/man5/puppet.conf.5 +2198 -0
- data/man/man8/puppet-agent.8 +203 -0
- data/man/man8/puppet-apply.8 +100 -0
- data/man/man8/puppet-catalog.8 +291 -0
- data/man/man8/puppet-config.8 +151 -0
- data/man/man8/puppet-describe.8 +51 -0
- data/man/man8/puppet-device.8 +119 -0
- data/man/man8/puppet-doc.8 +46 -0
- data/man/man8/puppet-epp.8 +377 -0
- data/man/man8/puppet-facts.8 +234 -0
- data/man/man8/puppet-filebucket.8 +166 -0
- data/man/man8/puppet-generate.8 +84 -0
- data/man/man8/puppet-help.8 +67 -0
- data/man/man8/puppet-lookup.8 +107 -0
- data/man/man8/puppet-module.8 +325 -0
- data/man/man8/puppet-node.8 +163 -0
- data/man/man8/puppet-parser.8 +130 -0
- data/man/man8/puppet-plugin.8 +73 -0
- data/man/man8/puppet-report.8 +127 -0
- data/man/man8/puppet-resource.8 +88 -0
- data/man/man8/puppet-script.8 +70 -0
- data/man/man8/puppet-ssl.8 +63 -0
- data/man/man8/puppet.8 +28 -0
- data/tasks/benchmark.rake +180 -0
- data/tasks/ci.rake +24 -0
- data/tasks/generate_ast_model.rake +90 -0
- data/tasks/generate_cert_fixtures.rake +194 -0
- data/tasks/manpages.rake +67 -0
- data/tasks/memwalk.rake +195 -0
- data/tasks/parallel.rake +410 -0
- data/tasks/parser.rake +22 -0
- data/tasks/yard.rake +59 -0
- metadata +1324 -0
|
@@ -0,0 +1,550 @@
|
|
|
1
|
+
require_relative '../../../puppet/util/windows'
|
|
2
|
+
|
|
3
|
+
require 'ffi'
|
|
4
|
+
|
|
5
|
+
module Puppet::Util::Windows::User
|
|
6
|
+
extend Puppet::Util::Windows::String
|
|
7
|
+
extend FFI::Library
|
|
8
|
+
|
|
9
|
+
def admin?
|
|
10
|
+
return false unless check_token_membership
|
|
11
|
+
|
|
12
|
+
# if Vista or later, check for unrestricted process token
|
|
13
|
+
elevated_supported = Puppet::Util::Windows::Process.supports_elevated_security?
|
|
14
|
+
return elevated_supported ? Puppet::Util::Windows::Process.elevated_security? : true
|
|
15
|
+
end
|
|
16
|
+
module_function :admin?
|
|
17
|
+
|
|
18
|
+
# The name of the account in all locales is `LocalSystem`. `.\LocalSystem` or `ComputerName\LocalSystem' can also be used.
|
|
19
|
+
# This account is not recognized by the security subsystem, so you cannot specify its name in a call to the `LookupAccountName` function.
|
|
20
|
+
# https://docs.microsoft.com/en-us/windows/win32/services/localsystem-account
|
|
21
|
+
def localsystem?(name)
|
|
22
|
+
["LocalSystem", ".\\LocalSystem", "#{Puppet::Util::Windows::ADSI.computer_name}\\LocalSystem"].any?{ |s| s.casecmp(name) == 0 }
|
|
23
|
+
end
|
|
24
|
+
module_function :localsystem?
|
|
25
|
+
|
|
26
|
+
# Check if a given user is one of the default system accounts
|
|
27
|
+
# These accounts do not have a password and all checks done through logon attempt will fail
|
|
28
|
+
# https://docs.microsoft.com/en-us/windows/security/identity-protection/access-control/local-accounts#default-local-system-accounts
|
|
29
|
+
def default_system_account?(name)
|
|
30
|
+
user_sid = Puppet::Util::Windows::SID.name_to_sid(name)
|
|
31
|
+
[Puppet::Util::Windows::SID::LocalSystem, Puppet::Util::Windows::SID::NtLocal, Puppet::Util::Windows::SID::NtNetwork].include?(user_sid)
|
|
32
|
+
end
|
|
33
|
+
module_function :default_system_account?
|
|
34
|
+
|
|
35
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/ee207397(v=vs.85).aspx
|
|
36
|
+
SECURITY_MAX_SID_SIZE = 68
|
|
37
|
+
|
|
38
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/ms681385(v=vs.85).aspx
|
|
39
|
+
# These error codes indicate successful authentication but failure to
|
|
40
|
+
# logon for a separate reason
|
|
41
|
+
ERROR_ACCOUNT_RESTRICTION = 1327
|
|
42
|
+
ERROR_INVALID_LOGON_HOURS = 1328
|
|
43
|
+
ERROR_INVALID_WORKSTATION = 1329
|
|
44
|
+
ERROR_ACCOUNT_DISABLED = 1331
|
|
45
|
+
|
|
46
|
+
def check_token_membership
|
|
47
|
+
is_admin = false
|
|
48
|
+
FFI::MemoryPointer.new(:byte, SECURITY_MAX_SID_SIZE) do |sid_pointer|
|
|
49
|
+
FFI::MemoryPointer.new(:dword, 1) do |size_pointer|
|
|
50
|
+
size_pointer.write_uint32(SECURITY_MAX_SID_SIZE)
|
|
51
|
+
|
|
52
|
+
if CreateWellKnownSid(:WinBuiltinAdministratorsSid, FFI::Pointer::NULL, sid_pointer, size_pointer) == FFI::WIN32_FALSE
|
|
53
|
+
raise Puppet::Util::Windows::Error.new(_("Failed to create administrators SID"))
|
|
54
|
+
end
|
|
55
|
+
end
|
|
56
|
+
|
|
57
|
+
if IsValidSid(sid_pointer) == FFI::WIN32_FALSE
|
|
58
|
+
raise Puppet::Util::Windows::Error.new(_("Invalid SID"))
|
|
59
|
+
end
|
|
60
|
+
|
|
61
|
+
FFI::MemoryPointer.new(:win32_bool, 1) do |ismember_pointer|
|
|
62
|
+
if CheckTokenMembership(FFI::Pointer::NULL_HANDLE, sid_pointer, ismember_pointer) == FFI::WIN32_FALSE
|
|
63
|
+
raise Puppet::Util::Windows::Error.new(_("Failed to check membership"))
|
|
64
|
+
end
|
|
65
|
+
|
|
66
|
+
# Is administrators SID enabled in calling thread's access token?
|
|
67
|
+
is_admin = ismember_pointer.read_win32_bool
|
|
68
|
+
end
|
|
69
|
+
end
|
|
70
|
+
|
|
71
|
+
is_admin
|
|
72
|
+
end
|
|
73
|
+
module_function :check_token_membership
|
|
74
|
+
|
|
75
|
+
def password_is?(name, password, domain = '.')
|
|
76
|
+
begin
|
|
77
|
+
logon_user(name, password, domain) { |token| }
|
|
78
|
+
rescue Puppet::Util::Windows::Error => detail
|
|
79
|
+
|
|
80
|
+
authenticated_error_codes = Set[
|
|
81
|
+
ERROR_ACCOUNT_RESTRICTION,
|
|
82
|
+
ERROR_INVALID_LOGON_HOURS,
|
|
83
|
+
ERROR_INVALID_WORKSTATION,
|
|
84
|
+
ERROR_ACCOUNT_DISABLED,
|
|
85
|
+
]
|
|
86
|
+
|
|
87
|
+
return authenticated_error_codes.include?(detail.code)
|
|
88
|
+
end
|
|
89
|
+
end
|
|
90
|
+
module_function :password_is?
|
|
91
|
+
|
|
92
|
+
def logon_user(name, password, domain = '.', &block)
|
|
93
|
+
fLOGON32_PROVIDER_DEFAULT = 0
|
|
94
|
+
fLOGON32_LOGON_INTERACTIVE = 2
|
|
95
|
+
fLOGON32_LOGON_NETWORK = 3
|
|
96
|
+
|
|
97
|
+
token = nil
|
|
98
|
+
begin
|
|
99
|
+
FFI::MemoryPointer.new(:handle, 1) do |token_pointer|
|
|
100
|
+
#try logon using network else try logon using interactive mode
|
|
101
|
+
if logon_user_by_logon_type(name, domain, password, fLOGON32_LOGON_NETWORK, fLOGON32_PROVIDER_DEFAULT, token_pointer) == FFI::WIN32_FALSE
|
|
102
|
+
if logon_user_by_logon_type(name, domain, password, fLOGON32_LOGON_INTERACTIVE, fLOGON32_PROVIDER_DEFAULT, token_pointer) == FFI::WIN32_FALSE
|
|
103
|
+
raise Puppet::Util::Windows::Error.new(_("Failed to logon user %{name}") % {name: name.inspect})
|
|
104
|
+
end
|
|
105
|
+
end
|
|
106
|
+
|
|
107
|
+
yield token = token_pointer.read_handle
|
|
108
|
+
end
|
|
109
|
+
ensure
|
|
110
|
+
FFI::WIN32.CloseHandle(token) if token
|
|
111
|
+
end
|
|
112
|
+
|
|
113
|
+
# token has been closed by this point
|
|
114
|
+
true
|
|
115
|
+
end
|
|
116
|
+
module_function :logon_user
|
|
117
|
+
|
|
118
|
+
def self.logon_user_by_logon_type(name, domain, password, logon_type, logon_provider, token)
|
|
119
|
+
LogonUserW(wide_string(name), wide_string(domain), password.nil? ? FFI::Pointer::NULL : wide_string(password), logon_type, logon_provider, token)
|
|
120
|
+
end
|
|
121
|
+
|
|
122
|
+
private_class_method :logon_user_by_logon_type
|
|
123
|
+
|
|
124
|
+
def load_profile(user, password)
|
|
125
|
+
logon_user(user, password) do |token|
|
|
126
|
+
FFI::MemoryPointer.from_string_to_wide_string(user) do |lpUserName|
|
|
127
|
+
pi = PROFILEINFO.new
|
|
128
|
+
pi[:dwSize] = PROFILEINFO.size
|
|
129
|
+
pi[:dwFlags] = 1 # PI_NOUI - prevents display of profile error msgs
|
|
130
|
+
pi[:lpUserName] = lpUserName
|
|
131
|
+
|
|
132
|
+
# Load the profile. Since it doesn't exist, it will be created
|
|
133
|
+
if LoadUserProfileW(token, pi.pointer) == FFI::WIN32_FALSE
|
|
134
|
+
raise Puppet::Util::Windows::Error.new(_("Failed to load user profile %{user}") % { user: user.inspect })
|
|
135
|
+
end
|
|
136
|
+
|
|
137
|
+
Puppet.debug("Loaded profile for #{user}")
|
|
138
|
+
|
|
139
|
+
if UnloadUserProfile(token, pi[:hProfile]) == FFI::WIN32_FALSE
|
|
140
|
+
raise Puppet::Util::Windows::Error.new(_("Failed to unload user profile %{user}") % { user: user.inspect })
|
|
141
|
+
end
|
|
142
|
+
end
|
|
143
|
+
end
|
|
144
|
+
end
|
|
145
|
+
module_function :load_profile
|
|
146
|
+
|
|
147
|
+
def get_rights(name)
|
|
148
|
+
user_info = Puppet::Util::Windows::SID.name_to_principal(name.sub(/^\.\\/, "#{Puppet::Util::Windows::ADSI.computer_name}\\"))
|
|
149
|
+
return "" unless user_info
|
|
150
|
+
|
|
151
|
+
rights = []
|
|
152
|
+
rights_pointer = FFI::MemoryPointer.new(:pointer)
|
|
153
|
+
number_of_rights = FFI::MemoryPointer.new(:ulong)
|
|
154
|
+
sid_pointer = FFI::MemoryPointer.new(:byte, user_info.sid_bytes.length).write_array_of_uchar(user_info.sid_bytes)
|
|
155
|
+
|
|
156
|
+
new_lsa_policy_handle do |policy_handle|
|
|
157
|
+
result = LsaEnumerateAccountRights(policy_handle.read_pointer, sid_pointer, rights_pointer, number_of_rights)
|
|
158
|
+
check_lsa_nt_status_and_raise_failures(result, "LsaEnumerateAccountRights")
|
|
159
|
+
end
|
|
160
|
+
|
|
161
|
+
number_of_rights.read_ulong.times do |index|
|
|
162
|
+
right = LSA_UNICODE_STRING.new(rights_pointer.read_pointer + index * LSA_UNICODE_STRING.size)
|
|
163
|
+
rights << right[:Buffer].read_arbitrary_wide_string_up_to
|
|
164
|
+
end
|
|
165
|
+
|
|
166
|
+
result = LsaFreeMemory(rights_pointer.read_pointer)
|
|
167
|
+
check_lsa_nt_status_and_raise_failures(result, "LsaFreeMemory")
|
|
168
|
+
|
|
169
|
+
rights.join(",")
|
|
170
|
+
end
|
|
171
|
+
module_function :get_rights
|
|
172
|
+
|
|
173
|
+
def set_rights(name, rights)
|
|
174
|
+
rights_pointer = new_lsa_unicode_strings_pointer(rights)
|
|
175
|
+
user_info = Puppet::Util::Windows::SID.name_to_principal(name.sub(/^\.\\/, "#{Puppet::Util::Windows::ADSI.computer_name}\\"))
|
|
176
|
+
sid_pointer = FFI::MemoryPointer.new(:byte, user_info.sid_bytes.length).write_array_of_uchar(user_info.sid_bytes)
|
|
177
|
+
|
|
178
|
+
new_lsa_policy_handle do |policy_handle|
|
|
179
|
+
result = LsaAddAccountRights(policy_handle.read_pointer, sid_pointer, rights_pointer, rights.size)
|
|
180
|
+
check_lsa_nt_status_and_raise_failures(result, "LsaAddAccountRights")
|
|
181
|
+
end
|
|
182
|
+
end
|
|
183
|
+
module_function :set_rights
|
|
184
|
+
|
|
185
|
+
def remove_rights(name, rights)
|
|
186
|
+
rights_pointer = new_lsa_unicode_strings_pointer(rights)
|
|
187
|
+
user_info = Puppet::Util::Windows::SID.name_to_principal(name.sub(/^\.\\/, "#{Puppet::Util::Windows::ADSI.computer_name}\\"))
|
|
188
|
+
sid_pointer = FFI::MemoryPointer.new(:byte, user_info.sid_bytes.length).write_array_of_uchar(user_info.sid_bytes)
|
|
189
|
+
|
|
190
|
+
new_lsa_policy_handle do |policy_handle|
|
|
191
|
+
result = LsaRemoveAccountRights(policy_handle.read_pointer, sid_pointer, false, rights_pointer, rights.size)
|
|
192
|
+
check_lsa_nt_status_and_raise_failures(result, "LsaRemoveAccountRights")
|
|
193
|
+
end
|
|
194
|
+
end
|
|
195
|
+
module_function :remove_rights
|
|
196
|
+
|
|
197
|
+
# ACCESS_MASK flags for Policy Objects
|
|
198
|
+
# https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-lsad/b61b7268-987a-420b-84f9-6c75f8dc8558
|
|
199
|
+
POLICY_VIEW_LOCAL_INFORMATION = 0x00000001
|
|
200
|
+
POLICY_VIEW_AUDIT_INFORMATION = 0x00000002
|
|
201
|
+
POLICY_GET_PRIVATE_INFORMATION = 0x00000004
|
|
202
|
+
POLICY_TRUST_ADMIN = 0x00000008
|
|
203
|
+
POLICY_CREATE_ACCOUNT = 0x00000010
|
|
204
|
+
POLICY_CREATE_SECRET = 0x00000020
|
|
205
|
+
POLICY_CREATE_PRIVILEGE = 0x00000040
|
|
206
|
+
POLICY_SET_DEFAULT_QUOTA_LIMITS = 0x00000080
|
|
207
|
+
POLICY_SET_AUDIT_REQUIREMENTS = 0x00000100
|
|
208
|
+
POLICY_AUDIT_LOG_ADMIN = 0x00000200
|
|
209
|
+
POLICY_SERVER_ADMIN = 0x00000400
|
|
210
|
+
POLICY_LOOKUP_NAMES = 0x00000800
|
|
211
|
+
POLICY_NOTIFICATION = 0x00001000
|
|
212
|
+
|
|
213
|
+
def self.new_lsa_policy_handle
|
|
214
|
+
access = 0
|
|
215
|
+
access |= POLICY_LOOKUP_NAMES
|
|
216
|
+
access |= POLICY_CREATE_ACCOUNT
|
|
217
|
+
policy_handle = FFI::MemoryPointer.new(:pointer)
|
|
218
|
+
|
|
219
|
+
result = LsaOpenPolicy(nil, LSA_OBJECT_ATTRIBUTES.new, access, policy_handle)
|
|
220
|
+
check_lsa_nt_status_and_raise_failures(result, "LsaOpenPolicy")
|
|
221
|
+
|
|
222
|
+
begin
|
|
223
|
+
yield policy_handle
|
|
224
|
+
ensure
|
|
225
|
+
result = LsaClose(policy_handle.read_pointer)
|
|
226
|
+
check_lsa_nt_status_and_raise_failures(result, "LsaClose")
|
|
227
|
+
end
|
|
228
|
+
end
|
|
229
|
+
private_class_method :new_lsa_policy_handle
|
|
230
|
+
|
|
231
|
+
def self.new_lsa_unicode_strings_pointer(strings)
|
|
232
|
+
lsa_unicode_strings_pointer = FFI::MemoryPointer.new(LSA_UNICODE_STRING, strings.size)
|
|
233
|
+
|
|
234
|
+
strings.each_with_index do |string, index|
|
|
235
|
+
lsa_string = LSA_UNICODE_STRING.new(lsa_unicode_strings_pointer + index * LSA_UNICODE_STRING.size)
|
|
236
|
+
lsa_string[:Buffer] = FFI::MemoryPointer.from_string(wide_string(string))
|
|
237
|
+
lsa_string[:Length] = string.length * 2
|
|
238
|
+
lsa_string[:MaximumLength] = lsa_string[:Length] + 2
|
|
239
|
+
end
|
|
240
|
+
|
|
241
|
+
lsa_unicode_strings_pointer
|
|
242
|
+
end
|
|
243
|
+
private_class_method :new_lsa_unicode_strings_pointer
|
|
244
|
+
|
|
245
|
+
# https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-erref/18d8fbe8-a967-4f1c-ae50-99ca8e491d2d
|
|
246
|
+
def self.check_lsa_nt_status_and_raise_failures(status, method_name)
|
|
247
|
+
error_code = LsaNtStatusToWinError(status)
|
|
248
|
+
|
|
249
|
+
error_reason = case error_code.to_s(16)
|
|
250
|
+
when '0' # ERROR_SUCCESS
|
|
251
|
+
return # Method call succeded
|
|
252
|
+
when '2' # ERROR_FILE_NOT_FOUND
|
|
253
|
+
return # No rights/privilleges assigned to given user
|
|
254
|
+
when '5' # ERROR_ACCESS_DENIED
|
|
255
|
+
"Access is denied. Please make sure that puppet is running as administrator."
|
|
256
|
+
when '521' # ERROR_NO_SUCH_PRIVILEGE
|
|
257
|
+
"One or more of the given rights/privilleges are incorrect."
|
|
258
|
+
when '6ba' # RPC_S_SERVER_UNAVAILABLE
|
|
259
|
+
"The RPC server is unavailable or given domain name is invalid."
|
|
260
|
+
end
|
|
261
|
+
|
|
262
|
+
raise Puppet::Error.new("Calling `#{method_name}` returned 'Win32 Error Code 0x%08X'. #{error_reason}" % error_code)
|
|
263
|
+
end
|
|
264
|
+
private_class_method :check_lsa_nt_status_and_raise_failures
|
|
265
|
+
|
|
266
|
+
ffi_convention :stdcall
|
|
267
|
+
|
|
268
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/aa378184(v=vs.85).aspx
|
|
269
|
+
# BOOL LogonUser(
|
|
270
|
+
# _In_ LPTSTR lpszUsername,
|
|
271
|
+
# _In_opt_ LPTSTR lpszDomain,
|
|
272
|
+
# _In_opt_ LPTSTR lpszPassword,
|
|
273
|
+
# _In_ DWORD dwLogonType,
|
|
274
|
+
# _In_ DWORD dwLogonProvider,
|
|
275
|
+
# _Out_ PHANDLE phToken
|
|
276
|
+
# );
|
|
277
|
+
ffi_lib :advapi32
|
|
278
|
+
attach_function_private :LogonUserW,
|
|
279
|
+
[:lpwstr, :lpwstr, :lpwstr, :dword, :dword, :phandle], :win32_bool
|
|
280
|
+
|
|
281
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/bb773378(v=vs.85).aspx
|
|
282
|
+
# typedef struct _PROFILEINFO {
|
|
283
|
+
# DWORD dwSize;
|
|
284
|
+
# DWORD dwFlags;
|
|
285
|
+
# LPTSTR lpUserName;
|
|
286
|
+
# LPTSTR lpProfilePath;
|
|
287
|
+
# LPTSTR lpDefaultPath;
|
|
288
|
+
# LPTSTR lpServerName;
|
|
289
|
+
# LPTSTR lpPolicyPath;
|
|
290
|
+
# HANDLE hProfile;
|
|
291
|
+
# } PROFILEINFO, *LPPROFILEINFO;
|
|
292
|
+
# technically
|
|
293
|
+
# NOTE: that for structs, buffer_* (lptstr alias) cannot be used
|
|
294
|
+
class PROFILEINFO < FFI::Struct
|
|
295
|
+
layout :dwSize, :dword,
|
|
296
|
+
:dwFlags, :dword,
|
|
297
|
+
:lpUserName, :pointer,
|
|
298
|
+
:lpProfilePath, :pointer,
|
|
299
|
+
:lpDefaultPath, :pointer,
|
|
300
|
+
:lpServerName, :pointer,
|
|
301
|
+
:lpPolicyPath, :pointer,
|
|
302
|
+
:hProfile, :handle
|
|
303
|
+
end
|
|
304
|
+
|
|
305
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/bb762281(v=vs.85).aspx
|
|
306
|
+
# BOOL WINAPI LoadUserProfile(
|
|
307
|
+
# _In_ HANDLE hToken,
|
|
308
|
+
# _Inout_ LPPROFILEINFO lpProfileInfo
|
|
309
|
+
# );
|
|
310
|
+
ffi_lib :userenv
|
|
311
|
+
attach_function_private :LoadUserProfileW,
|
|
312
|
+
[:handle, :pointer], :win32_bool
|
|
313
|
+
|
|
314
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/bb762282(v=vs.85).aspx
|
|
315
|
+
# BOOL WINAPI UnloadUserProfile(
|
|
316
|
+
# _In_ HANDLE hToken,
|
|
317
|
+
# _In_ HANDLE hProfile
|
|
318
|
+
# );
|
|
319
|
+
ffi_lib :userenv
|
|
320
|
+
attach_function_private :UnloadUserProfile,
|
|
321
|
+
[:handle, :handle], :win32_bool
|
|
322
|
+
|
|
323
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/aa376389(v=vs.85).aspx
|
|
324
|
+
# BOOL WINAPI CheckTokenMembership(
|
|
325
|
+
# _In_opt_ HANDLE TokenHandle,
|
|
326
|
+
# _In_ PSID SidToCheck,
|
|
327
|
+
# _Out_ PBOOL IsMember
|
|
328
|
+
# );
|
|
329
|
+
ffi_lib :advapi32
|
|
330
|
+
attach_function_private :CheckTokenMembership,
|
|
331
|
+
[:handle, :pointer, :pbool], :win32_bool
|
|
332
|
+
|
|
333
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/aa379650(v=vs.85).aspx
|
|
334
|
+
WELL_KNOWN_SID_TYPE = enum(
|
|
335
|
+
:WinNullSid , 0,
|
|
336
|
+
:WinWorldSid , 1,
|
|
337
|
+
:WinLocalSid , 2,
|
|
338
|
+
:WinCreatorOwnerSid , 3,
|
|
339
|
+
:WinCreatorGroupSid , 4,
|
|
340
|
+
:WinCreatorOwnerServerSid , 5,
|
|
341
|
+
:WinCreatorGroupServerSid , 6,
|
|
342
|
+
:WinNtAuthoritySid , 7,
|
|
343
|
+
:WinDialupSid , 8,
|
|
344
|
+
:WinNetworkSid , 9,
|
|
345
|
+
:WinBatchSid , 10,
|
|
346
|
+
:WinInteractiveSid , 11,
|
|
347
|
+
:WinServiceSid , 12,
|
|
348
|
+
:WinAnonymousSid , 13,
|
|
349
|
+
:WinProxySid , 14,
|
|
350
|
+
:WinEnterpriseControllersSid , 15,
|
|
351
|
+
:WinSelfSid , 16,
|
|
352
|
+
:WinAuthenticatedUserSid , 17,
|
|
353
|
+
:WinRestrictedCodeSid , 18,
|
|
354
|
+
:WinTerminalServerSid , 19,
|
|
355
|
+
:WinRemoteLogonIdSid , 20,
|
|
356
|
+
:WinLogonIdsSid , 21,
|
|
357
|
+
:WinLocalSystemSid , 22,
|
|
358
|
+
:WinLocalServiceSid , 23,
|
|
359
|
+
:WinNetworkServiceSid , 24,
|
|
360
|
+
:WinBuiltinDomainSid , 25,
|
|
361
|
+
:WinBuiltinAdministratorsSid , 26,
|
|
362
|
+
:WinBuiltinUsersSid , 27,
|
|
363
|
+
:WinBuiltinGuestsSid , 28,
|
|
364
|
+
:WinBuiltinPowerUsersSid , 29,
|
|
365
|
+
:WinBuiltinAccountOperatorsSid , 30,
|
|
366
|
+
:WinBuiltinSystemOperatorsSid , 31,
|
|
367
|
+
:WinBuiltinPrintOperatorsSid , 32,
|
|
368
|
+
:WinBuiltinBackupOperatorsSid , 33,
|
|
369
|
+
:WinBuiltinReplicatorSid , 34,
|
|
370
|
+
:WinBuiltinPreWindows2000CompatibleAccessSid , 35,
|
|
371
|
+
:WinBuiltinRemoteDesktopUsersSid , 36,
|
|
372
|
+
:WinBuiltinNetworkConfigurationOperatorsSid , 37,
|
|
373
|
+
:WinAccountAdministratorSid , 38,
|
|
374
|
+
:WinAccountGuestSid , 39,
|
|
375
|
+
:WinAccountKrbtgtSid , 40,
|
|
376
|
+
:WinAccountDomainAdminsSid , 41,
|
|
377
|
+
:WinAccountDomainUsersSid , 42,
|
|
378
|
+
:WinAccountDomainGuestsSid , 43,
|
|
379
|
+
:WinAccountComputersSid , 44,
|
|
380
|
+
:WinAccountControllersSid , 45,
|
|
381
|
+
:WinAccountCertAdminsSid , 46,
|
|
382
|
+
:WinAccountSchemaAdminsSid , 47,
|
|
383
|
+
:WinAccountEnterpriseAdminsSid , 48,
|
|
384
|
+
:WinAccountPolicyAdminsSid , 49,
|
|
385
|
+
:WinAccountRasAndIasServersSid , 50,
|
|
386
|
+
:WinNTLMAuthenticationSid , 51,
|
|
387
|
+
:WinDigestAuthenticationSid , 52,
|
|
388
|
+
:WinSChannelAuthenticationSid , 53,
|
|
389
|
+
:WinThisOrganizationSid , 54,
|
|
390
|
+
:WinOtherOrganizationSid , 55,
|
|
391
|
+
:WinBuiltinIncomingForestTrustBuildersSid , 56,
|
|
392
|
+
:WinBuiltinPerfMonitoringUsersSid , 57,
|
|
393
|
+
:WinBuiltinPerfLoggingUsersSid , 58,
|
|
394
|
+
:WinBuiltinAuthorizationAccessSid , 59,
|
|
395
|
+
:WinBuiltinTerminalServerLicenseServersSid , 60,
|
|
396
|
+
:WinBuiltinDCOMUsersSid , 61,
|
|
397
|
+
:WinBuiltinIUsersSid , 62,
|
|
398
|
+
:WinIUserSid , 63,
|
|
399
|
+
:WinBuiltinCryptoOperatorsSid , 64,
|
|
400
|
+
:WinUntrustedLabelSid , 65,
|
|
401
|
+
:WinLowLabelSid , 66,
|
|
402
|
+
:WinMediumLabelSid , 67,
|
|
403
|
+
:WinHighLabelSid , 68,
|
|
404
|
+
:WinSystemLabelSid , 69,
|
|
405
|
+
:WinWriteRestrictedCodeSid , 70,
|
|
406
|
+
:WinCreatorOwnerRightsSid , 71,
|
|
407
|
+
:WinCacheablePrincipalsGroupSid , 72,
|
|
408
|
+
:WinNonCacheablePrincipalsGroupSid , 73,
|
|
409
|
+
:WinEnterpriseReadonlyControllersSid , 74,
|
|
410
|
+
:WinAccountReadonlyControllersSid , 75,
|
|
411
|
+
:WinBuiltinEventLogReadersGroup , 76,
|
|
412
|
+
:WinNewEnterpriseReadonlyControllersSid , 77,
|
|
413
|
+
:WinBuiltinCertSvcDComAccessGroup , 78,
|
|
414
|
+
:WinMediumPlusLabelSid , 79,
|
|
415
|
+
:WinLocalLogonSid , 80,
|
|
416
|
+
:WinConsoleLogonSid , 81,
|
|
417
|
+
:WinThisOrganizationCertificateSid , 82,
|
|
418
|
+
:WinApplicationPackageAuthoritySid , 83,
|
|
419
|
+
:WinBuiltinAnyPackageSid , 84,
|
|
420
|
+
:WinCapabilityInternetClientSid , 85,
|
|
421
|
+
:WinCapabilityInternetClientServerSid , 86,
|
|
422
|
+
:WinCapabilityPrivateNetworkClientServerSid , 87,
|
|
423
|
+
:WinCapabilityPicturesLibrarySid , 88,
|
|
424
|
+
:WinCapabilityVideosLibrarySid , 89,
|
|
425
|
+
:WinCapabilityMusicLibrarySid , 90,
|
|
426
|
+
:WinCapabilityDocumentsLibrarySid , 91,
|
|
427
|
+
:WinCapabilitySharedUserCertificatesSid , 92,
|
|
428
|
+
:WinCapabilityEnterpriseAuthenticationSid , 93,
|
|
429
|
+
:WinCapabilityRemovableStorageSid , 94
|
|
430
|
+
)
|
|
431
|
+
|
|
432
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/aa446585(v=vs.85).aspx
|
|
433
|
+
# BOOL WINAPI CreateWellKnownSid(
|
|
434
|
+
# _In_ WELL_KNOWN_SID_TYPE WellKnownSidType,
|
|
435
|
+
# _In_opt_ PSID DomainSid,
|
|
436
|
+
# _Out_opt_ PSID pSid,
|
|
437
|
+
# _Inout_ DWORD *cbSid
|
|
438
|
+
# );
|
|
439
|
+
ffi_lib :advapi32
|
|
440
|
+
attach_function_private :CreateWellKnownSid,
|
|
441
|
+
[WELL_KNOWN_SID_TYPE, :pointer, :pointer, :lpdword], :win32_bool
|
|
442
|
+
|
|
443
|
+
# https://msdn.microsoft.com/en-us/library/windows/desktop/aa379151(v=vs.85).aspx
|
|
444
|
+
# BOOL WINAPI IsValidSid(
|
|
445
|
+
# _In_ PSID pSid
|
|
446
|
+
# );
|
|
447
|
+
ffi_lib :advapi32
|
|
448
|
+
attach_function_private :IsValidSid,
|
|
449
|
+
[:pointer], :win32_bool
|
|
450
|
+
|
|
451
|
+
# https://docs.microsoft.com/en-us/windows/win32/api/lsalookup/ns-lsalookup-lsa_object_attributes
|
|
452
|
+
# typedef struct _LSA_OBJECT_ATTRIBUTES {
|
|
453
|
+
# ULONG Length;
|
|
454
|
+
# HANDLE RootDirectory;
|
|
455
|
+
# PLSA_UNICODE_STRING ObjectName;
|
|
456
|
+
# ULONG Attributes;
|
|
457
|
+
# PVOID SecurityDescriptor;
|
|
458
|
+
# PVOID SecurityQualityOfService;
|
|
459
|
+
# } LSA_OBJECT_ATTRIBUTES, *PLSA_OBJECT_ATTRIBUTES;
|
|
460
|
+
class LSA_OBJECT_ATTRIBUTES < FFI::Struct
|
|
461
|
+
layout :Length, :ulong,
|
|
462
|
+
:RootDirectory, :handle,
|
|
463
|
+
:ObjectName, :plsa_unicode_string,
|
|
464
|
+
:Attributes, :ulong,
|
|
465
|
+
:SecurityDescriptor, :pvoid,
|
|
466
|
+
:SecurityQualityOfService, :pvoid
|
|
467
|
+
end
|
|
468
|
+
|
|
469
|
+
# https://docs.microsoft.com/en-us/windows/win32/api/lsalookup/ns-lsalookup-lsa_unicode_string
|
|
470
|
+
# typedef struct _LSA_UNICODE_STRING {
|
|
471
|
+
# USHORT Length;
|
|
472
|
+
# USHORT MaximumLength;
|
|
473
|
+
# PWSTR Buffer;
|
|
474
|
+
# } LSA_UNICODE_STRING, *PLSA_UNICODE_STRING;
|
|
475
|
+
class LSA_UNICODE_STRING < FFI::Struct
|
|
476
|
+
layout :Length, :ushort,
|
|
477
|
+
:MaximumLength, :ushort,
|
|
478
|
+
:Buffer, :pwstr
|
|
479
|
+
end
|
|
480
|
+
|
|
481
|
+
# https://docs.microsoft.com/en-us/windows/win32/api/ntsecapi/nf-ntsecapi-lsaenumerateaccountrights
|
|
482
|
+
# https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/user-rights-assignment
|
|
483
|
+
# NTSTATUS LsaEnumerateAccountRights(
|
|
484
|
+
# LSA_HANDLE PolicyHandle,
|
|
485
|
+
# PSID AccountSid,
|
|
486
|
+
# PLSA_UNICODE_STRING *UserRights,
|
|
487
|
+
# PULONG CountOfRights
|
|
488
|
+
# );
|
|
489
|
+
ffi_lib :advapi32
|
|
490
|
+
attach_function_private :LsaEnumerateAccountRights,
|
|
491
|
+
[:lsa_handle, :psid, :plsa_unicode_string, :pulong], :ntstatus
|
|
492
|
+
|
|
493
|
+
# https://docs.microsoft.com/en-us/windows/win32/api/ntsecapi/nf-ntsecapi-lsaaddaccountrights
|
|
494
|
+
# NTSTATUS LsaAddAccountRights(
|
|
495
|
+
# LSA_HANDLE PolicyHandle,
|
|
496
|
+
# PSID AccountSid,
|
|
497
|
+
# PLSA_UNICODE_STRING UserRights,
|
|
498
|
+
# ULONG CountOfRights
|
|
499
|
+
# );
|
|
500
|
+
ffi_lib :advapi32
|
|
501
|
+
attach_function_private :LsaAddAccountRights,
|
|
502
|
+
[:lsa_handle, :psid, :plsa_unicode_string, :ulong], :ntstatus
|
|
503
|
+
|
|
504
|
+
# https://docs.microsoft.com/en-us/windows/win32/api/ntsecapi/nf-ntsecapi-lsaremoveaccountrights
|
|
505
|
+
# NTSTATUS LsaRemoveAccountRights(
|
|
506
|
+
# LSA_HANDLE PolicyHandle,
|
|
507
|
+
# PSID AccountSid,
|
|
508
|
+
# BOOLEAN AllRights,
|
|
509
|
+
# PLSA_UNICODE_STRING UserRights,
|
|
510
|
+
# ULONG CountOfRights
|
|
511
|
+
# );
|
|
512
|
+
ffi_lib :advapi32
|
|
513
|
+
attach_function_private :LsaRemoveAccountRights,
|
|
514
|
+
[:lsa_handle, :psid, :bool, :plsa_unicode_string, :ulong], :ntstatus
|
|
515
|
+
|
|
516
|
+
# https://docs.microsoft.com/en-us/windows/win32/api/ntsecapi/nf-ntsecapi-lsaopenpolicy
|
|
517
|
+
# NTSTATUS LsaOpenPolicy(
|
|
518
|
+
# PLSA_UNICODE_STRING SystemName,
|
|
519
|
+
# PLSA_OBJECT_ATTRIBUTES ObjectAttributes,
|
|
520
|
+
# ACCESS_MASK DesiredAccess,
|
|
521
|
+
# PLSA_HANDLE PolicyHandle
|
|
522
|
+
# );
|
|
523
|
+
ffi_lib :advapi32
|
|
524
|
+
attach_function_private :LsaOpenPolicy,
|
|
525
|
+
[:plsa_unicode_string, :plsa_object_attributes, :access_mask, :plsa_handle], :ntstatus
|
|
526
|
+
|
|
527
|
+
# https://docs.microsoft.com/en-us/windows/win32/api/ntsecapi/nf-ntsecapi-lsaclose
|
|
528
|
+
# NTSTATUS LsaClose(
|
|
529
|
+
# LSA_HANDLE ObjectHandle
|
|
530
|
+
# );
|
|
531
|
+
ffi_lib :advapi32
|
|
532
|
+
attach_function_private :LsaClose,
|
|
533
|
+
[:lsa_handle], :ntstatus
|
|
534
|
+
|
|
535
|
+
# https://docs.microsoft.com/en-us/windows/win32/api/ntsecapi/nf-ntsecapi-lsafreememory
|
|
536
|
+
# NTSTATUS LsaFreeMemory(
|
|
537
|
+
# PVOID Buffer
|
|
538
|
+
# );
|
|
539
|
+
ffi_lib :advapi32
|
|
540
|
+
attach_function_private :LsaFreeMemory,
|
|
541
|
+
[:pvoid], :ntstatus
|
|
542
|
+
|
|
543
|
+
# https://docs.microsoft.com/en-us/windows/win32/api/ntsecapi/nf-ntsecapi-lsantstatustowinerror
|
|
544
|
+
# ULONG LsaNtStatusToWinError(
|
|
545
|
+
# NTSTATUS Status
|
|
546
|
+
# );
|
|
547
|
+
ffi_lib :advapi32
|
|
548
|
+
attach_function_private :LsaNtStatusToWinError,
|
|
549
|
+
[:ntstatus], :ulong
|
|
550
|
+
end
|
|
@@ -0,0 +1,51 @@
|
|
|
1
|
+
require_relative '../../puppet/util/platform'
|
|
2
|
+
|
|
3
|
+
module Puppet::Util::Windows
|
|
4
|
+
module ADSI
|
|
5
|
+
class ADSIObject; end
|
|
6
|
+
class User < ADSIObject; end
|
|
7
|
+
class UserProfile; end
|
|
8
|
+
class Group < ADSIObject; end
|
|
9
|
+
end
|
|
10
|
+
module File; end
|
|
11
|
+
module Registry
|
|
12
|
+
end
|
|
13
|
+
module Service
|
|
14
|
+
DEFAULT_TIMEOUT = 30
|
|
15
|
+
end
|
|
16
|
+
module SID
|
|
17
|
+
class Principal; end
|
|
18
|
+
end
|
|
19
|
+
class EventLog; end
|
|
20
|
+
|
|
21
|
+
if Puppet::Util::Platform.windows?
|
|
22
|
+
# Note: Setting codepage here globally ensures all strings returned via
|
|
23
|
+
# WIN32OLE (Ruby's late-bound COM support) are encoded in Encoding::UTF_8
|
|
24
|
+
#
|
|
25
|
+
# Also, this does not modify the value of WIN32OLE.locale - which defaults
|
|
26
|
+
# to 2048 (at least on US English Windows) and is not listed in the MS
|
|
27
|
+
# locales table, here: https://msdn.microsoft.com/en-us/library/ms912047(v=winembedded.10).aspx
|
|
28
|
+
require 'win32ole' ; WIN32OLE.codepage = WIN32OLE::CP_UTF8
|
|
29
|
+
|
|
30
|
+
# these reference platform specific gems
|
|
31
|
+
require_relative '../../puppet/ffi/windows'
|
|
32
|
+
require_relative 'windows/string'
|
|
33
|
+
require_relative 'windows/error'
|
|
34
|
+
require_relative 'windows/com'
|
|
35
|
+
require_relative 'windows/sid'
|
|
36
|
+
require_relative 'windows/principal'
|
|
37
|
+
require_relative 'windows/file'
|
|
38
|
+
require_relative 'windows/security'
|
|
39
|
+
require_relative 'windows/user'
|
|
40
|
+
require_relative 'windows/process'
|
|
41
|
+
require_relative 'windows/root_certs'
|
|
42
|
+
require_relative 'windows/access_control_entry'
|
|
43
|
+
require_relative 'windows/access_control_list'
|
|
44
|
+
require_relative 'windows/security_descriptor'
|
|
45
|
+
require_relative 'windows/adsi'
|
|
46
|
+
require_relative 'windows/registry'
|
|
47
|
+
require_relative 'windows/eventlog'
|
|
48
|
+
require_relative 'windows/service'
|
|
49
|
+
require_relative 'windows/monkey_patches/process'
|
|
50
|
+
end
|
|
51
|
+
end
|
|
@@ -0,0 +1,65 @@
|
|
|
1
|
+
require 'yaml'
|
|
2
|
+
|
|
3
|
+
module Puppet::Util::Yaml
|
|
4
|
+
YamlLoadExceptions = [::StandardError, ::Psych::Exception]
|
|
5
|
+
|
|
6
|
+
class YamlLoadError < Puppet::Error; end
|
|
7
|
+
|
|
8
|
+
# Safely load the content as YAML. By default only the following
|
|
9
|
+
# classes can be deserialized:
|
|
10
|
+
#
|
|
11
|
+
# * TrueClass
|
|
12
|
+
# * FalseClass
|
|
13
|
+
# * NilClass
|
|
14
|
+
# * Numeric
|
|
15
|
+
# * String
|
|
16
|
+
# * Array
|
|
17
|
+
# * Hash
|
|
18
|
+
#
|
|
19
|
+
# Attempting to deserialize other classes will raise an YamlLoadError
|
|
20
|
+
# exception unless they are specified in the array of *allowed_classes*.
|
|
21
|
+
# @param [String] yaml The yaml content to parse.
|
|
22
|
+
# @param [Array] allowed_classes Additional list of classes that can be deserialized.
|
|
23
|
+
# @param [String] filename The filename to load from, used if an exception is raised.
|
|
24
|
+
# @raise [YamlLoadException] If deserialization fails.
|
|
25
|
+
# @return The parsed YAML, which can be Hash, Array or scalar types.
|
|
26
|
+
def self.safe_load(yaml, allowed_classes = [], filename = nil)
|
|
27
|
+
if Gem::Version.new(Psych::VERSION) >= Gem::Version.new('3.1.0')
|
|
28
|
+
data = YAML.safe_load(yaml, permitted_classes: allowed_classes, aliases: true, filename: filename)
|
|
29
|
+
else
|
|
30
|
+
data = YAML.safe_load(yaml, allowed_classes, [], true, filename)
|
|
31
|
+
end
|
|
32
|
+
data = false if data.nil?
|
|
33
|
+
data
|
|
34
|
+
rescue ::Psych::DisallowedClass => detail
|
|
35
|
+
path = filename ? "(#{filename})" : "(<unknown>)"
|
|
36
|
+
raise YamlLoadError.new("#{path}: #{detail.message}", detail)
|
|
37
|
+
rescue *YamlLoadExceptions => detail
|
|
38
|
+
raise YamlLoadError.new(detail.message, detail)
|
|
39
|
+
end
|
|
40
|
+
|
|
41
|
+
# Safely load the content from a file as YAML.
|
|
42
|
+
#
|
|
43
|
+
# @see Puppet::Util::Yaml.safe_load
|
|
44
|
+
def self.safe_load_file(filename, allowed_classes = [])
|
|
45
|
+
yaml = Puppet::FileSystem.read(filename, :encoding => 'bom|utf-8')
|
|
46
|
+
safe_load(yaml, allowed_classes, filename)
|
|
47
|
+
end
|
|
48
|
+
|
|
49
|
+
# Safely load the content from a file as YAML if
|
|
50
|
+
# contents are in valid format. This method does not
|
|
51
|
+
# raise error but returns `nil` when invalid file is
|
|
52
|
+
# given.
|
|
53
|
+
def self.safe_load_file_if_valid(filename, allowed_classes = [])
|
|
54
|
+
safe_load_file(filename, allowed_classes)
|
|
55
|
+
rescue YamlLoadError, ArgumentError, Errno::ENOENT => detail
|
|
56
|
+
Puppet.debug("Could not retrieve YAML content from '#{filename}': #{detail.message}")
|
|
57
|
+
nil
|
|
58
|
+
end
|
|
59
|
+
|
|
60
|
+
def self.dump(structure, filename)
|
|
61
|
+
Puppet::FileSystem.replace_file(filename, 0660) do |fh|
|
|
62
|
+
YAML.dump(structure, fh)
|
|
63
|
+
end
|
|
64
|
+
end
|
|
65
|
+
end
|