puppet 3.1.1 → 3.2.0.rc1
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of puppet might be problematic. Click here for more details.
- data/CONTRIBUTING.md +2 -2
- data/Gemfile +32 -19
- data/README_DEVELOPER.md +332 -14
- data/Rakefile +9 -5
- data/ext/build_defaults.yaml +2 -3
- data/ext/debian/changelog.erb +6 -0
- data/ext/debian/control +6 -6
- data/ext/envpuppet +4 -4
- data/ext/project_data.yaml +1 -0
- data/ext/puppet-nm-dispatcher +13 -0
- data/ext/redhat/puppet.spec.erb +17 -0
- data/ext/suse/client.init +1 -1
- data/ext/systemd/puppetagent.service +2 -2
- data/ext/systemd/puppetmaster.service +2 -2
- data/lib/hiera/scope.rb +29 -11
- data/lib/hiera_puppet.rb +1 -3
- data/lib/puppet/agent.rb +3 -3
- data/lib/puppet/application.rb +2 -2
- data/lib/puppet/application/agent.rb +27 -12
- data/lib/puppet/application/apply.rb +11 -1
- data/lib/puppet/application/describe.rb +1 -1
- data/lib/puppet/application/doc.rb +13 -9
- data/lib/puppet/application/filebucket.rb +0 -1
- data/lib/puppet/application/kick.rb +1 -0
- data/lib/puppet/application/master.rb +16 -8
- data/lib/puppet/daemon.rb +19 -64
- data/lib/puppet/defaults.rb +61 -5
- data/lib/puppet/error.rb +15 -4
- data/lib/puppet/external/nagios/grammar.ry +1 -1
- data/lib/puppet/external/nagios/makefile +1 -1
- data/lib/puppet/external/nagios/parser.rb +185 -618
- data/lib/puppet/external/pson/pure/parser.rb +47 -1
- data/lib/puppet/face/certificate.rb +3 -3
- data/lib/puppet/face/module.rb +1 -1
- data/lib/puppet/face/module/changes.rb +3 -1
- data/lib/puppet/face/module/uninstall.rb +1 -1
- data/lib/puppet/face/node/clean.rb +5 -5
- data/lib/puppet/feature/base.rb +3 -1
- data/lib/puppet/feature/libuser.rb +8 -0
- data/lib/puppet/file_serving/fileset.rb +9 -1
- data/lib/puppet/forge.rb +28 -5
- data/lib/puppet/forge/errors.rb +34 -0
- data/lib/puppet/forge/repository.rb +1 -1
- data/lib/puppet/indirector.rb +4 -1
- data/lib/puppet/indirector/catalog/compiler.rb +37 -30
- data/lib/puppet/indirector/facts/inventory_active_record.rb +1 -0
- data/lib/puppet/indirector/indirection.rb +28 -15
- data/lib/puppet/indirector/rest.rb +18 -10
- data/lib/puppet/interface.rb +11 -4
- data/lib/puppet/interface/action.rb +1 -3
- data/lib/puppet/interface/action_builder.rb +0 -3
- data/lib/puppet/interface/action_manager.rb +0 -3
- data/lib/puppet/interface/face_collection.rb +0 -2
- data/lib/puppet/interface/option.rb +0 -2
- data/lib/puppet/interface/option_builder.rb +0 -2
- data/lib/puppet/interface/option_manager.rb +0 -2
- data/lib/puppet/metatype/manager.rb +1 -1
- data/lib/puppet/module_tool.rb +1 -0
- data/lib/puppet/module_tool/applications/application.rb +0 -3
- data/lib/puppet/module_tool/applications/builder.rb +8 -20
- data/lib/puppet/module_tool/applications/checksummer.rb +1 -1
- data/lib/puppet/module_tool/applications/installer.rb +1 -0
- data/lib/puppet/module_tool/applications/unpacker.rb +3 -11
- data/lib/puppet/module_tool/checksums.rb +1 -1
- data/lib/puppet/module_tool/errors/installer.rb +18 -1
- data/lib/puppet/module_tool/modulefile.rb +2 -2
- data/lib/puppet/module_tool/skeleton/templates/generator/Modulefile.erb +1 -1
- data/lib/puppet/module_tool/tar.rb +17 -0
- data/lib/puppet/module_tool/tar/gnu.rb +9 -0
- data/lib/puppet/module_tool/tar/mini.rb +39 -0
- data/lib/puppet/module_tool/tar/solaris.rb +5 -0
- data/lib/puppet/network/http.rb +1 -0
- data/lib/puppet/network/http/connection.rb +9 -23
- data/lib/puppet/network/http/handler.rb +38 -7
- data/lib/puppet/network/http/rack/rest.rb +14 -3
- data/lib/puppet/network/http/webrick.rb +3 -1
- data/lib/puppet/network/http/webrick/rest.rb +11 -2
- data/lib/puppet/node/environment.rb +3 -1
- data/lib/puppet/parameter.rb +32 -29
- data/lib/puppet/parameter/package_options.rb +1 -1
- data/lib/puppet/parameter/path.rb +1 -1
- data/lib/puppet/parameter/value.rb +1 -1
- data/lib/puppet/parameter/value_collection.rb +7 -3
- data/lib/puppet/parser/ast.rb +3 -1
- data/lib/puppet/parser/ast/arithmetic_operator.rb +56 -12
- data/lib/puppet/parser/ast/astarray.rb +1 -1
- data/lib/puppet/parser/ast/block_expression.rb +41 -0
- data/lib/puppet/parser/ast/function.rb +13 -2
- data/lib/puppet/parser/ast/lambda.rb +107 -0
- data/lib/puppet/parser/ast/leaf.rb +1 -2
- data/lib/puppet/parser/ast/method_call.rb +77 -0
- data/lib/puppet/parser/ast/vardef.rb +7 -0
- data/lib/puppet/parser/compiler.rb +27 -16
- data/lib/puppet/parser/e_parser_adapter.rb +120 -0
- data/lib/puppet/parser/files.rb +7 -6
- data/lib/puppet/parser/functions.rb +10 -8
- data/lib/puppet/parser/functions/collect.rb +43 -0
- data/lib/puppet/parser/functions/each.rb +96 -0
- data/lib/puppet/parser/functions/foreach.rb +96 -0
- data/lib/puppet/parser/functions/fqdn_rand.rb +2 -2
- data/lib/puppet/parser/functions/hiera.rb +20 -2
- data/lib/puppet/parser/functions/hiera_array.rb +21 -2
- data/lib/puppet/parser/functions/hiera_hash.rb +23 -2
- data/lib/puppet/parser/functions/hiera_include.rb +33 -2
- data/lib/puppet/parser/functions/inline_template.rb +4 -4
- data/lib/puppet/parser/functions/reduce.rb +74 -0
- data/lib/puppet/parser/functions/reject.rb +46 -0
- data/lib/puppet/parser/functions/select.rb +46 -0
- data/lib/puppet/parser/functions/slice.rb +96 -0
- data/lib/puppet/parser/functions/template.rb +2 -2
- data/lib/puppet/parser/grammar.ra +7 -4
- data/lib/puppet/parser/lexer.rb +10 -0
- data/lib/puppet/parser/methods.rb +69 -0
- data/lib/puppet/parser/parser.rb +855 -808
- data/lib/puppet/parser/parser_factory.rb +62 -0
- data/lib/puppet/parser/parser_support.rb +8 -2
- data/lib/puppet/parser/scope.rb +153 -47
- data/lib/puppet/parser/templatewrapper.rb +28 -21
- data/lib/puppet/parser/type_loader.rb +3 -1
- data/lib/puppet/pops.rb +40 -0
- data/lib/puppet/pops/adaptable.rb +190 -0
- data/lib/puppet/pops/adapters.rb +65 -0
- data/lib/puppet/pops/containment.rb +37 -0
- data/lib/puppet/pops/issues.rb +258 -0
- data/lib/puppet/pops/label_provider.rb +71 -0
- data/lib/puppet/pops/model/ast_transformer.rb +636 -0
- data/lib/puppet/pops/model/ast_tree_dumper.rb +378 -0
- data/lib/puppet/pops/model/factory.rb +804 -0
- data/lib/puppet/pops/model/model.rb +567 -0
- data/lib/puppet/pops/model/model_label_provider.rb +75 -0
- data/lib/puppet/pops/model/model_tree_dumper.rb +352 -0
- data/lib/puppet/pops/model/tree_dumper.rb +59 -0
- data/lib/puppet/pops/parser/egrammar.ra +723 -0
- data/lib/puppet/pops/parser/eparser.rb +2300 -0
- data/lib/puppet/pops/parser/grammar.ra +746 -0
- data/lib/puppet/pops/parser/lexer.rb +842 -0
- data/lib/puppet/pops/parser/makefile +13 -0
- data/lib/puppet/pops/parser/parser_support.rb +203 -0
- data/lib/puppet/pops/patterns.rb +35 -0
- data/lib/puppet/pops/utils.rb +104 -0
- data/lib/puppet/pops/validation.rb +297 -0
- data/lib/puppet/pops/validation/checker3_1.rb +551 -0
- data/lib/puppet/pops/validation/validator_factory_3_1.rb +41 -0
- data/lib/puppet/pops/visitable.rb +6 -0
- data/lib/puppet/pops/visitor.rb +50 -0
- data/lib/puppet/property.rb +37 -28
- data/lib/puppet/property/ensure.rb +2 -2
- data/lib/puppet/property/ordered_list.rb +1 -1
- data/lib/puppet/provider.rb +26 -30
- data/lib/puppet/provider/aixobject.rb +45 -44
- data/lib/puppet/provider/augeas/augeas.rb +0 -1
- data/lib/puppet/provider/confiner.rb +1 -1
- data/lib/puppet/provider/cron/crontab.rb +107 -67
- data/lib/puppet/provider/group/groupadd.rb +59 -3
- data/lib/puppet/provider/interface/cisco.rb +4 -4
- data/lib/puppet/provider/mount/parsed.rb +1 -1
- data/lib/puppet/provider/nameservice.rb +22 -6
- data/lib/puppet/provider/nameservice/pw.rb +1 -1
- data/lib/puppet/provider/package/aix.rb +28 -4
- data/lib/puppet/provider/package/gem.rb +0 -2
- data/lib/puppet/provider/package/macports.rb +1 -1
- data/lib/puppet/provider/package/nim.rb +249 -4
- data/lib/puppet/provider/package/opkg.rb +77 -0
- data/lib/puppet/provider/package/pacman.rb +2 -2
- data/lib/puppet/provider/package/rpm.rb +30 -16
- data/lib/puppet/provider/package/yum.rb +3 -3
- data/lib/puppet/provider/parsedfile.rb +80 -3
- data/lib/puppet/provider/selmodule/semodule.rb +2 -2
- data/lib/puppet/provider/service/debian.rb +0 -4
- data/lib/puppet/provider/service/freebsd.rb +2 -2
- data/lib/puppet/provider/service/gentoo.rb +0 -9
- data/lib/puppet/provider/service/init.rb +27 -2
- data/lib/puppet/provider/service/launchd.rb +1 -1
- data/lib/puppet/provider/service/openwrt.rb +36 -0
- data/lib/puppet/provider/service/redhat.rb +0 -9
- data/lib/puppet/provider/service/src.rb +38 -4
- data/lib/puppet/provider/service/systemd.rb +2 -2
- data/lib/puppet/provider/service/upstart.rb +1 -8
- data/lib/puppet/provider/user/aix.rb +4 -10
- data/lib/puppet/provider/user/pw.rb +6 -10
- data/lib/puppet/provider/user/useradd.rb +129 -31
- data/lib/puppet/provider/vlan/cisco.rb +4 -4
- data/lib/puppet/reference/function.rb +2 -2
- data/lib/puppet/reference/indirection.rb +46 -5
- data/lib/puppet/reference/metaparameter.rb +2 -2
- data/lib/puppet/reports.rb +5 -5
- data/lib/puppet/reports/rrdgraph.rb +4 -4
- data/lib/puppet/reports/tagmail.rb +1 -1
- data/lib/puppet/resource.rb +1 -1
- data/lib/puppet/resource/type.rb +13 -11
- data/lib/puppet/scheduler.rb +16 -0
- data/lib/puppet/scheduler/job.rb +53 -0
- data/lib/puppet/scheduler/scheduler.rb +45 -0
- data/lib/puppet/scheduler/splay_job.rb +32 -0
- data/lib/puppet/scheduler/timer.rb +13 -0
- data/lib/puppet/settings/base_setting.rb +1 -1
- data/lib/puppet/simple_graph.rb +4 -4
- data/lib/puppet/ssl/base.rb +12 -2
- data/lib/puppet/ssl/certificate.rb +4 -1
- data/lib/puppet/ssl/certificate_request.rb +4 -1
- data/lib/puppet/ssl/certificate_revocation_list.rb +4 -1
- data/lib/puppet/ssl/configuration.rb +32 -0
- data/lib/puppet/ssl/host.rb +18 -21
- data/lib/puppet/ssl/key.rb +4 -1
- data/lib/puppet/ssl/validator.rb +116 -0
- data/lib/puppet/transaction.rb +1 -1
- data/lib/puppet/transaction/event.rb +3 -10
- data/lib/puppet/transaction/event_manager.rb +8 -1
- data/lib/puppet/transaction/report.rb +17 -16
- data/lib/puppet/type.rb +77 -69
- data/lib/puppet/type/cron.rb +20 -8
- data/lib/puppet/type/exec.rb +9 -3
- data/lib/puppet/type/file.rb +95 -21
- data/lib/puppet/type/file/content.rb +1 -1
- data/lib/puppet/type/file/mode.rb +7 -1
- data/lib/puppet/type/file/source.rb +2 -2
- data/lib/puppet/type/group.rb +11 -0
- data/lib/puppet/type/scheduled_task.rb +5 -1
- data/lib/puppet/type/service.rb +1 -1
- data/lib/puppet/type/ssh_authorized_key.rb +2 -2
- data/lib/puppet/type/user.rb +24 -6
- data/lib/puppet/util.rb +12 -2
- data/lib/puppet/util/classgen.rb +4 -4
- data/lib/puppet/util/colors.rb +55 -0
- data/lib/puppet/util/command_line/trollop.rb +4 -4
- data/lib/puppet/util/errors.rb +39 -3
- data/lib/puppet/util/fileparsing.rb +5 -0
- data/lib/puppet/util/filetype.rb +11 -9
- data/lib/puppet/util/instrumentation/instrumentable.rb +2 -2
- data/lib/puppet/util/libuser.conf +15 -0
- data/lib/puppet/util/libuser.rb +12 -0
- data/lib/puppet/util/monkey_patches.rb +48 -0
- data/lib/puppet/util/network_device.rb +1 -1
- data/lib/puppet/util/network_device/base.rb +2 -2
- data/lib/puppet/util/network_device/cisco/device.rb +29 -19
- data/lib/puppet/util/network_device/config.rb +5 -2
- data/lib/puppet/util/network_device/ipcalc.rb +1 -1
- data/lib/puppet/util/network_device/transport/ssh.rb +4 -3
- data/lib/puppet/util/network_device/transport/telnet.rb +4 -2
- data/lib/puppet/util/plugins.rb +4 -4
- data/lib/puppet/util/posix.rb +1 -1
- data/lib/puppet/util/profiler.rb +28 -0
- data/lib/puppet/util/profiler/logging.rb +47 -0
- data/lib/puppet/util/profiler/none.rb +8 -0
- data/lib/puppet/util/profiler/object_counts.rb +17 -0
- data/lib/puppet/util/profiler/wall_clock.rb +34 -0
- data/lib/puppet/util/provider_features.rb +1 -1
- data/lib/puppet/util/rdoc/parser.rb +5 -5
- data/lib/puppet/util/ssl.rb +38 -0
- data/lib/puppet/util/subclass_loader.rb +1 -5
- data/lib/puppet/util/windows.rb +1 -0
- data/lib/puppet/util/windows/process.rb +3 -0
- data/lib/puppet/util/windows/root_certs.rb +86 -0
- data/lib/puppet/util/windows/security.rb +1 -0
- data/lib/puppet/version.rb +1 -1
- data/spec/fixtures/integration/provider/cron/crontab/create_normal_entry +19 -0
- data/spec/fixtures/integration/provider/cron/crontab/create_special_entry +18 -0
- data/spec/fixtures/integration/provider/cron/crontab/crontab_user1 +15 -0
- data/spec/fixtures/integration/provider/cron/crontab/crontab_user2 +4 -0
- data/spec/fixtures/integration/provider/cron/crontab/modify_entry +13 -0
- data/spec/fixtures/integration/provider/cron/crontab/moved_cronjob_input1 +15 -0
- data/spec/fixtures/integration/provider/cron/crontab/moved_cronjob_input2 +6 -0
- data/spec/fixtures/integration/provider/cron/crontab/remove_named_resource +12 -0
- data/spec/fixtures/integration/provider/cron/crontab/remove_unnamed_resource +14 -0
- data/spec/fixtures/unit/pops/parser/lexer/aliastest.pp +16 -0
- data/spec/fixtures/unit/pops/parser/lexer/append.pp +11 -0
- data/spec/fixtures/unit/pops/parser/lexer/argumentdefaults.pp +14 -0
- data/spec/fixtures/unit/pops/parser/lexer/arithmetic_expression.pp +8 -0
- data/spec/fixtures/unit/pops/parser/lexer/arraytrailingcomma.pp +3 -0
- data/spec/fixtures/unit/pops/parser/lexer/casestatement.pp +65 -0
- data/spec/fixtures/unit/pops/parser/lexer/classheirarchy.pp +15 -0
- data/spec/fixtures/unit/pops/parser/lexer/classincludes.pp +17 -0
- data/spec/fixtures/unit/pops/parser/lexer/classpathtest.pp +11 -0
- data/spec/fixtures/unit/pops/parser/lexer/collection.pp +10 -0
- data/spec/fixtures/unit/pops/parser/lexer/collection_override.pp +8 -0
- data/spec/fixtures/unit/pops/parser/lexer/collection_within_virtual_definitions.pp +20 -0
- data/spec/fixtures/unit/pops/parser/lexer/componentmetaparams.pp +11 -0
- data/spec/fixtures/unit/pops/parser/lexer/componentrequire.pp +8 -0
- data/spec/fixtures/unit/pops/parser/lexer/deepclassheirarchy.pp +23 -0
- data/spec/fixtures/unit/pops/parser/lexer/defineoverrides.pp +17 -0
- data/spec/fixtures/unit/pops/parser/lexer/emptyclass.pp +9 -0
- data/spec/fixtures/unit/pops/parser/lexer/emptyexec.pp +3 -0
- data/spec/fixtures/unit/pops/parser/lexer/emptyifelse.pp +9 -0
- data/spec/fixtures/unit/pops/parser/lexer/falsevalues.pp +3 -0
- data/spec/fixtures/unit/pops/parser/lexer/filecreate.pp +11 -0
- data/spec/fixtures/unit/pops/parser/lexer/fqdefinition.pp +5 -0
- data/spec/fixtures/unit/pops/parser/lexer/fqparents.pp +11 -0
- data/spec/fixtures/unit/pops/parser/lexer/funccomma.pp +5 -0
- data/spec/fixtures/unit/pops/parser/lexer/hash.pp +33 -0
- data/spec/fixtures/unit/pops/parser/lexer/ifexpression.pp +12 -0
- data/spec/fixtures/unit/pops/parser/lexer/implicititeration.pp +15 -0
- data/spec/fixtures/unit/pops/parser/lexer/multilinecomments.pp +10 -0
- data/spec/fixtures/unit/pops/parser/lexer/multipleclass.pp +9 -0
- data/spec/fixtures/unit/pops/parser/lexer/multipleinstances.pp +7 -0
- data/spec/fixtures/unit/pops/parser/lexer/multisubs.pp +13 -0
- data/spec/fixtures/unit/pops/parser/lexer/namevartest.pp +9 -0
- data/spec/fixtures/unit/pops/parser/lexer/scopetest.pp +13 -0
- data/spec/fixtures/unit/pops/parser/lexer/selectorvalues.pp +49 -0
- data/spec/fixtures/unit/pops/parser/lexer/simpledefaults.pp +5 -0
- data/spec/fixtures/unit/pops/parser/lexer/simpleselector.pp +38 -0
- data/spec/fixtures/unit/pops/parser/lexer/singleary.pp +19 -0
- data/spec/fixtures/unit/pops/parser/lexer/singlequote.pp +11 -0
- data/spec/fixtures/unit/pops/parser/lexer/singleselector.pp +22 -0
- data/spec/fixtures/unit/pops/parser/lexer/subclass_name_duplication.pp +11 -0
- data/spec/fixtures/unit/pops/parser/lexer/tag.pp +9 -0
- data/spec/fixtures/unit/pops/parser/lexer/tagged.pp +35 -0
- data/spec/fixtures/unit/pops/parser/lexer/virtualresources.pp +14 -0
- data/spec/fixtures/unit/provider/cron/crontab/single_line.yaml +4 -4
- data/spec/fixtures/unit/provider/cron/crontab/vixie_header.txt +3 -0
- data/spec/fixtures/unit/provider/cron/parsed/managed +6 -0
- data/spec/fixtures/unit/provider/cron/parsed/simple +9 -0
- data/spec/fixtures/unit/provider/parsedfile/simple.txt +4 -0
- data/spec/fixtures/unit/provider/service/systemd/list_units +18 -0
- data/spec/integration/parser/collector_spec.rb +1 -1
- data/spec/integration/parser/compiler_spec.rb +252 -227
- data/spec/integration/parser/parser_spec.rb +171 -53
- data/spec/integration/parser/scope_spec.rb +1 -1
- data/spec/integration/provider/cron/crontab_spec.rb +187 -0
- data/spec/integration/provider/service/systemd_spec.rb +20 -0
- data/spec/integration/type/file_spec.rb +21 -21
- data/spec/integration/type/package_spec.rb +1 -1
- data/spec/lib/puppet_spec/database.rb +2 -5
- data/spec/spec_helper.rb +6 -1
- data/spec/unit/application/apply_spec.rb +16 -1
- data/spec/unit/application/describe_spec.rb +1 -1
- data/spec/unit/application/doc_spec.rb +55 -32
- data/spec/unit/application/kick_spec.rb +8 -6
- data/spec/unit/application/master_spec.rb +4 -4
- data/spec/unit/daemon_spec.rb +1 -1
- data/spec/unit/forge/errors_spec.rb +40 -0
- data/spec/unit/forge/repository_spec.rb +11 -1
- data/spec/unit/forge_spec.rb +13 -3
- data/spec/unit/hiera/backend/puppet_backend_spec.rb +1 -0
- data/spec/unit/hiera/scope_spec.rb +48 -25
- data/spec/unit/indirector/catalog/active_record_spec.rb +6 -3
- data/spec/unit/indirector/catalog/compiler_spec.rb +3 -28
- data/spec/unit/indirector/catalog/static_compiler_spec.rb +1 -1
- data/spec/unit/indirector/facts/inventory_active_record_spec.rb +154 -150
- data/spec/unit/indirector/indirection_spec.rb +5 -0
- data/spec/unit/indirector/resource/active_record_spec.rb +5 -22
- data/spec/unit/indirector_spec.rb +7 -1
- data/spec/unit/interface/action_builder_spec.rb +1 -1
- data/spec/unit/interface/action_manager_spec.rb +0 -2
- data/spec/unit/interface/action_spec.rb +1 -1
- data/spec/unit/interface/documentation_spec.rb +0 -2
- data/spec/unit/interface/face_collection_spec.rb +1 -1
- data/spec/unit/interface/option_builder_spec.rb +1 -1
- data/spec/unit/interface/option_spec.rb +0 -1
- data/spec/unit/module_spec.rb +17 -19
- data/spec/unit/module_tool/application_spec.rb +1 -3
- data/spec/unit/module_tool/applications/builder_spec.rb +38 -0
- data/spec/unit/module_tool/applications/checksummer_spec.rb +134 -0
- data/spec/unit/module_tool/applications/installer_spec.rb +71 -91
- data/spec/unit/module_tool/applications/searcher_spec.rb +1 -3
- data/spec/unit/module_tool/applications/uninstaller_spec.rb +18 -26
- data/spec/unit/module_tool/applications/unpacker_spec.rb +19 -52
- data/spec/unit/module_tool/tar/gnu_spec.rb +19 -0
- data/spec/unit/module_tool/tar/mini_spec.rb +59 -0
- data/spec/unit/module_tool/tar/solaris_spec.rb +19 -0
- data/spec/unit/network/http/connection_spec.rb +17 -2
- data/spec/unit/network/http/handler_spec.rb +195 -167
- data/spec/unit/network/http/rack/rest_spec.rb +26 -4
- data/spec/unit/network/http/webrick/rest_spec.rb +28 -1
- data/spec/unit/network/http/webrick_spec.rb +12 -3
- data/spec/unit/node/environment_spec.rb +421 -404
- data/spec/unit/parser/ast/arithmetic_operator_spec.rb +98 -2
- data/spec/unit/parser/collector_spec.rb +4 -4
- data/spec/unit/parser/compiler_spec.rb +13 -13
- data/spec/unit/parser/eparser_adapter_spec.rb +407 -0
- data/spec/unit/parser/functions/extlookup_spec.rb +20 -17
- data/spec/unit/parser/functions/fqdn_rand_spec.rb +5 -0
- data/spec/unit/parser/functions/hiera_include_spec.rb +0 -2
- data/spec/unit/parser/functions/hiera_spec.rb +0 -2
- data/spec/unit/parser/functions_spec.rb +27 -15
- data/spec/unit/parser/methods/collect_spec.rb +110 -0
- data/spec/unit/parser/methods/each_spec.rb +91 -0
- data/spec/unit/parser/methods/foreach_spec.rb +91 -0
- data/spec/unit/parser/methods/reduce_spec.rb +67 -0
- data/spec/unit/parser/methods/reject_spec.rb +73 -0
- data/spec/unit/parser/methods/select_spec.rb +79 -0
- data/spec/unit/parser/methods/shared.rb +61 -0
- data/spec/unit/parser/methods/slice_spec.rb +97 -0
- data/spec/unit/parser/parser_spec.rb +2 -2
- data/spec/unit/parser/scope_spec.rb +39 -16
- data/spec/unit/parser/templatewrapper_spec.rb +6 -5
- data/spec/unit/parser/type_loader_spec.rb +191 -165
- data/spec/unit/pops/adaptable_spec.rb +143 -0
- data/spec/unit/pops/containment_spec.rb +25 -0
- data/spec/unit/pops/factory_rspec_helper.rb +77 -0
- data/spec/unit/pops/factory_spec.rb +329 -0
- data/spec/unit/pops/issues_spec.rb +26 -0
- data/spec/unit/pops/label_provider_spec.rb +42 -0
- data/spec/unit/pops/model/ast_transformer_spec.rb +65 -0
- data/spec/unit/pops/model/model_spec.rb +37 -0
- data/spec/unit/pops/parser/lexer_spec.rb +884 -0
- data/spec/unit/pops/parser/parse_basic_expressions_spec.rb +248 -0
- data/spec/unit/pops/parser/parse_calls_spec.rb +93 -0
- data/spec/unit/pops/parser/parse_conditionals_spec.rb +159 -0
- data/spec/unit/pops/parser/parse_containers_spec.rb +175 -0
- data/spec/unit/pops/parser/parse_resource_spec.rb +228 -0
- data/spec/unit/pops/parser/parser_rspec_helper.rb +11 -0
- data/spec/unit/pops/parser/parser_spec.rb +15 -0
- data/spec/unit/pops/parser/rgen_sanitycheck_spec.rb +16 -0
- data/spec/unit/pops/transformer/transform_basic_expressions_spec.rb +243 -0
- data/spec/unit/pops/transformer/transform_calls_spec.rb +80 -0
- data/spec/unit/pops/transformer/transform_conditionals_spec.rb +132 -0
- data/spec/unit/pops/transformer/transform_containers_spec.rb +182 -0
- data/spec/unit/pops/transformer/transform_resource_spec.rb +185 -0
- data/spec/unit/pops/transformer/transformer_rspec_helper.rb +27 -0
- data/spec/unit/pops/visitor_spec.rb +94 -0
- data/spec/unit/property_spec.rb +11 -0
- data/spec/unit/provider/augeas/augeas_spec.rb +3 -0
- data/spec/unit/provider/cron/crontab_spec.rb +97 -7
- data/spec/unit/provider/cron/parsed_spec.rb +325 -0
- data/spec/unit/provider/exec/posix_spec.rb +1 -1
- data/spec/unit/provider/group/groupadd_spec.rb +33 -3
- data/spec/unit/provider/group/pw_spec.rb +5 -5
- data/spec/unit/provider/nameservice_spec.rb +304 -0
- data/spec/unit/provider/package/aix_spec.rb +53 -11
- data/spec/unit/provider/package/aptrpm_spec.rb +6 -0
- data/spec/unit/provider/package/gem_spec.rb +6 -11
- data/spec/unit/provider/package/nim_spec.rb +216 -7
- data/spec/unit/provider/package/opkg_spec.rb +180 -0
- data/spec/unit/provider/package/rpm_spec.rb +149 -3
- data/spec/unit/provider/package/yum_spec.rb +6 -5
- data/spec/unit/provider/parsedfile_spec.rb +122 -28
- data/spec/unit/provider/service/freebsd_spec.rb +18 -0
- data/spec/unit/provider/service/init_spec.rb +108 -87
- data/spec/unit/provider/service/launchd_spec.rb +2 -2
- data/spec/unit/provider/service/openwrt_spec.rb +109 -0
- data/spec/unit/provider/service/src_spec.rb +117 -41
- data/spec/unit/provider/service/systemd_spec.rb +125 -17
- data/spec/unit/provider/service/upstart_spec.rb +1 -1
- data/spec/unit/provider/user/aix_spec.rb +42 -0
- data/spec/unit/provider/user/directoryservice_spec.rb +1 -0
- data/spec/unit/provider/user/pw_spec.rb +24 -12
- data/spec/unit/provider/user/user_role_add_spec.rb +1 -1
- data/spec/unit/provider/user/useradd_spec.rb +179 -15
- data/spec/unit/resource/type_spec.rb +3 -3
- data/spec/unit/scheduler/job_spec.rb +79 -0
- data/spec/unit/scheduler/scheduler_spec.rb +129 -0
- data/spec/unit/scheduler/splay_job_spec.rb +35 -0
- data/spec/unit/ssl/base_spec.rb +3 -9
- data/spec/unit/ssl/certificate_authority_spec.rb +1 -0
- data/spec/unit/ssl/certificate_request_spec.rb +3 -1
- data/spec/unit/ssl/certificate_spec.rb +3 -1
- data/spec/unit/ssl/configuration_spec.rb +74 -0
- data/spec/unit/ssl/host_spec.rb +28 -7
- data/spec/unit/ssl/validator_spec.rb +311 -0
- data/spec/unit/transaction/event_manager_spec.rb +49 -0
- data/spec/unit/transaction/event_spec.rb +20 -5
- data/spec/unit/transaction/report_spec.rb +8 -0
- data/spec/unit/type/cron_spec.rb +9 -0
- data/spec/unit/type/exec_spec.rb +11 -0
- data/spec/unit/type/file/content_spec.rb +20 -20
- data/spec/unit/type/file/mode_spec.rb +6 -0
- data/spec/unit/type/file/source_spec.rb +9 -7
- data/spec/unit/type/file_spec.rb +22 -3
- data/spec/unit/type/service_spec.rb +34 -21
- data/spec/unit/type_spec.rb +46 -1
- data/spec/unit/util/backups_spec.rb +2 -2
- data/spec/unit/util/execution_spec.rb +4 -1
- data/spec/unit/util/filetype_spec.rb +6 -0
- data/spec/unit/util/monkey_patches_spec.rb +18 -0
- data/spec/unit/util/network_device/cisco/device_spec.rb +37 -0
- data/spec/unit/util/network_device/config_spec.rb +14 -0
- data/spec/unit/util/network_device_spec.rb +3 -3
- data/spec/unit/util/profiler/logging_spec.rb +81 -0
- data/spec/unit/util/profiler/none_spec.rb +12 -0
- data/spec/unit/util/profiler/object_counts_spec.rb +14 -0
- data/spec/unit/util/profiler/wall_clock_spec.rb +13 -0
- data/spec/unit/util/pson_spec.rb +5 -0
- data/spec/unit/util/ssl_spec.rb +51 -0
- data/spec/unit/util/windows/root_certs_spec.rb +15 -0
- data/spec/unit/util_spec.rb +28 -0
- metadata +2593 -2307
- data/spec/unit/module_tool/applications/application_spec.rb +0 -19
@@ -0,0 +1,311 @@
|
|
1
|
+
require 'spec_helper'
|
2
|
+
require 'puppet/ssl/validator'
|
3
|
+
require 'puppet/ssl/configuration'
|
4
|
+
|
5
|
+
describe Puppet::SSL::Validator do
|
6
|
+
let(:ssl_context) do
|
7
|
+
mock('OpenSSL::X509::StoreContext')
|
8
|
+
end
|
9
|
+
|
10
|
+
let(:ssl_configuration) do
|
11
|
+
Puppet::SSL::Configuration.new(
|
12
|
+
Puppet[:localcacert],
|
13
|
+
:ca_chain_file => Puppet[:ssl_client_ca_chain],
|
14
|
+
:ca_auth_file => Puppet[:ssl_client_ca_auth])
|
15
|
+
end
|
16
|
+
|
17
|
+
subject do
|
18
|
+
described_class.new(:ssl_configuration => ssl_configuration)
|
19
|
+
end
|
20
|
+
|
21
|
+
before :each do
|
22
|
+
ssl_configuration.stubs(:read_file).
|
23
|
+
with(Puppet[:localcacert]).
|
24
|
+
returns(root_ca)
|
25
|
+
end
|
26
|
+
|
27
|
+
describe '#call' do
|
28
|
+
before :each do
|
29
|
+
ssl_context.stubs(:current_cert).returns(*cert_chain_in_callback_order)
|
30
|
+
ssl_context.stubs(:chain).returns(cert_chain)
|
31
|
+
end
|
32
|
+
|
33
|
+
context 'When pre-verification is not OK' do
|
34
|
+
context 'and the ssl_context is in an error state' do
|
35
|
+
before :each do
|
36
|
+
ssl_context.stubs(:error_string).returns("Something went wrong.")
|
37
|
+
end
|
38
|
+
|
39
|
+
it 'makes the error available via #verify_errors' do
|
40
|
+
subject.call(false, ssl_context)
|
41
|
+
msg_suffix = OpenSSL::X509::Certificate.new(root_ca).subject
|
42
|
+
subject.verify_errors.should == ["Something went wrong. for #{msg_suffix}"]
|
43
|
+
end
|
44
|
+
end
|
45
|
+
end
|
46
|
+
|
47
|
+
context 'When pre-verification is OK' do
|
48
|
+
context 'and the ssl_context is in an error state' do
|
49
|
+
before :each do
|
50
|
+
ssl_context.stubs(:error_string).returns("Something went wrong.")
|
51
|
+
end
|
52
|
+
it 'does not make the error available via #verify_errors' do
|
53
|
+
subject.call(true, ssl_context)
|
54
|
+
subject.verify_errors.should == []
|
55
|
+
end
|
56
|
+
end
|
57
|
+
context 'and the chain is valid' do
|
58
|
+
it 'is true for each CA certificate in the chain' do
|
59
|
+
(cert_chain.length - 1).times do
|
60
|
+
subject.call(true, ssl_context).should be_true
|
61
|
+
end
|
62
|
+
end
|
63
|
+
it 'is true for the SSL certificate ending the chain' do
|
64
|
+
(cert_chain.length - 1).times do
|
65
|
+
subject.call(true, ssl_context)
|
66
|
+
end
|
67
|
+
subject.call(true, ssl_context).should be_true
|
68
|
+
end
|
69
|
+
end
|
70
|
+
context 'and the chain is invalid' do
|
71
|
+
before :each do
|
72
|
+
ssl_configuration.stubs(:read_file).
|
73
|
+
with(Puppet[:localcacert]).
|
74
|
+
returns(agent_ca)
|
75
|
+
end
|
76
|
+
it 'is true for each CA certificate in the chain' do
|
77
|
+
(cert_chain.length - 1).times do
|
78
|
+
subject.call(true, ssl_context).should be_true
|
79
|
+
end
|
80
|
+
end
|
81
|
+
it 'is false for the SSL certificate ending the chain' do
|
82
|
+
(cert_chain.length - 1).times do
|
83
|
+
subject.call(true, ssl_context)
|
84
|
+
end
|
85
|
+
subject.call(true, ssl_context).should be_false
|
86
|
+
end
|
87
|
+
end
|
88
|
+
context 'an error is raised inside of #call' do
|
89
|
+
before :each do
|
90
|
+
ssl_context.expects(:current_cert).raises(StandardError, "BOOM!")
|
91
|
+
end
|
92
|
+
it 'is false' do
|
93
|
+
subject.call(true, ssl_context).should be_false
|
94
|
+
end
|
95
|
+
it 'makes the error available through #verify_errors' do
|
96
|
+
subject.call(true, ssl_context)
|
97
|
+
subject.verify_errors.should == ["BOOM!"]
|
98
|
+
end
|
99
|
+
end
|
100
|
+
end
|
101
|
+
end
|
102
|
+
|
103
|
+
describe '#register_verify_callback' do
|
104
|
+
it 'registers itself using #verify_callback' do
|
105
|
+
connection = mock('Net::HTTP')
|
106
|
+
connection.expects(:verify_callback=).with(subject)
|
107
|
+
subject.register_verify_callback(connection)
|
108
|
+
end
|
109
|
+
end
|
110
|
+
|
111
|
+
describe '#valid_peer?' do
|
112
|
+
before :each do
|
113
|
+
peer_certs = cert_chain_in_callback_order.map do |c|
|
114
|
+
Puppet::SSL::Certificate.from_instance(c)
|
115
|
+
end
|
116
|
+
subject.instance_variable_set(:@peer_certs, peer_certs)
|
117
|
+
end
|
118
|
+
|
119
|
+
context 'when the peer presents a valid chain' do
|
120
|
+
before :each do
|
121
|
+
subject.stubs(:has_authz_peer_cert).returns(true)
|
122
|
+
end
|
123
|
+
it 'is true' do
|
124
|
+
subject.valid_peer?.should be_true
|
125
|
+
end
|
126
|
+
end
|
127
|
+
context 'when the peer presents an invalid chain' do
|
128
|
+
before :each do
|
129
|
+
subject.stubs(:has_authz_peer_cert).returns(false)
|
130
|
+
end
|
131
|
+
it 'is false' do
|
132
|
+
subject.valid_peer?.should be_false
|
133
|
+
end
|
134
|
+
it 'makes a helpful error message available via #verify_errors' do
|
135
|
+
subject.valid_peer?
|
136
|
+
subject.verify_errors.should == [expected_authz_error_msg]
|
137
|
+
end
|
138
|
+
end
|
139
|
+
end
|
140
|
+
|
141
|
+
describe '#has_authz_peer_cert' do
|
142
|
+
context 'when the Root CA is listed as authorized' do
|
143
|
+
it 'returns true when the SSL cert is issued by the Master CA' do
|
144
|
+
subject.has_authz_peer_cert(cert_chain, [root_ca_cert]).should be_true
|
145
|
+
end
|
146
|
+
it 'returns true when the SSL cert is issued by the Agent CA' do
|
147
|
+
subject.has_authz_peer_cert(cert_chain_agent_ca, [root_ca_cert]).should be_true
|
148
|
+
end
|
149
|
+
end
|
150
|
+
context 'when the Master CA is listed as authorized' do
|
151
|
+
it 'returns false when the SSL cert is issued by the Master CA' do
|
152
|
+
subject.has_authz_peer_cert(cert_chain, [master_ca_cert]).should be_true
|
153
|
+
end
|
154
|
+
it 'returns true when the SSL cert is issued by the Agent CA' do
|
155
|
+
subject.has_authz_peer_cert(cert_chain_agent_ca, [master_ca_cert]).should be_false
|
156
|
+
end
|
157
|
+
end
|
158
|
+
context 'when the Agent CA is listed as authorized' do
|
159
|
+
it 'returns true when the SSL cert is issued by the Master CA' do
|
160
|
+
subject.has_authz_peer_cert(cert_chain, [agent_ca_cert]).should be_false
|
161
|
+
end
|
162
|
+
it 'returns true when the SSL cert is issued by the Agent CA' do
|
163
|
+
subject.has_authz_peer_cert(cert_chain_agent_ca, [agent_ca_cert]).should be_true
|
164
|
+
end
|
165
|
+
end
|
166
|
+
end
|
167
|
+
|
168
|
+
def root_ca
|
169
|
+
<<-ROOT_CA
|
170
|
+
-----BEGIN CERTIFICATE-----
|
171
|
+
MIICYDCCAcmgAwIBAgIJALf2Pk2HvtBzMA0GCSqGSIb3DQEBBQUAMEkxEDAOBgNV
|
172
|
+
BAMMB1Jvb3QgQ0ExGjAYBgNVBAsMEVNlcnZlciBPcGVyYXRpb25zMRkwFwYDVQQK
|
173
|
+
DBBFeGFtcGxlIE9yZywgTExDMB4XDTEzMDMzMDA1NTA0OFoXDTMzMDMyNTA1NTA0
|
174
|
+
OFowSTEQMA4GA1UEAwwHUm9vdCBDQTEaMBgGA1UECwwRU2VydmVyIE9wZXJhdGlv
|
175
|
+
bnMxGTAXBgNVBAoMEEV4YW1wbGUgT3JnLCBMTEMwgZ8wDQYJKoZIhvcNAQEBBQAD
|
176
|
+
gY0AMIGJAoGBAMGSpafR4lboYOPfPJC1wVHHl0gD49ZVRjOlJ9jidEUjBdFXK6SA
|
177
|
+
S1tecDv2G4tM1ANmfMKjZl0m+KaZ8O2oq0g6kxkq1Mg0eSNvlnEyehjmTLRzHC2i
|
178
|
+
a0biH2wMtCLzfAoXDKy4GPlciBPE9mup5I8Kien5s91t92tc7K8AJ8oBAgMBAAGj
|
179
|
+
UDBOMB0GA1UdDgQWBBQwTdZqjjXOIFK2hOM0bcOrnhQw2jAfBgNVHSMEGDAWgBQw
|
180
|
+
TdZqjjXOIFK2hOM0bcOrnhQw2jAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBBQUA
|
181
|
+
A4GBACs8EZRrzgzAlcKC1Tz8GYlNHQg0XhpbEDm+p2mOV//PuDD190O+UBpWxo9Q
|
182
|
+
rrkkx8En0wXQZJf6iH3hwewwHLOq5yXZKbJN+SmvJvRNL95Yhyy08Y9N65tJveE7
|
183
|
+
rPsNU/Tx19jHC87oXlmAePLI4IaUHXrWb7CRbY9TEcPdmj1R
|
184
|
+
-----END CERTIFICATE-----
|
185
|
+
ROOT_CA
|
186
|
+
end
|
187
|
+
|
188
|
+
def master_ca
|
189
|
+
<<-MASTER_CA
|
190
|
+
-----BEGIN CERTIFICATE-----
|
191
|
+
MIICljCCAf+gAwIBAgIBAjANBgkqhkiG9w0BAQUFADBJMRAwDgYDVQQDDAdSb290
|
192
|
+
IENBMRowGAYDVQQLDBFTZXJ2ZXIgT3BlcmF0aW9uczEZMBcGA1UECgwQRXhhbXBs
|
193
|
+
ZSBPcmcsIExMQzAeFw0xMzAzMzAwNTUwNDhaFw0zMzAzMjUwNTUwNDhaMH4xJDAi
|
194
|
+
BgNVBAMTG0ludGVybWVkaWF0ZSBDQSAobWFzdGVyLWNhKTEfMB0GCSqGSIb3DQEJ
|
195
|
+
ARYQdGVzdEBleGFtcGxlLm9yZzEZMBcGA1UEChMQRXhhbXBsZSBPcmcsIExMQzEa
|
196
|
+
MBgGA1UECxMRU2VydmVyIE9wZXJhdGlvbnMwXDANBgkqhkiG9w0BAQEFAANLADBI
|
197
|
+
AkEAvo/az3oR69SP92jGnUHMJLEyyD1Ui1BZ/rUABJcQTRQqn3RqtlfYePWZnUaZ
|
198
|
+
srKbXRS4q0w5Vqf1kx5w3q5tIwIDAQABo4GcMIGZMHkGA1UdIwRyMHCAFDBN1mqO
|
199
|
+
Nc4gUraE4zRtw6ueFDDaoU2kSzBJMRAwDgYDVQQDDAdSb290IENBMRowGAYDVQQL
|
200
|
+
DBFTZXJ2ZXIgT3BlcmF0aW9uczEZMBcGA1UECgwQRXhhbXBsZSBPcmcsIExMQ4IJ
|
201
|
+
ALf2Pk2HvtBzMA8GA1UdEwEB/wQFMAMBAf8wCwYDVR0PBAQDAgEGMA0GCSqGSIb3
|
202
|
+
DQEBBQUAA4GBACRfa1YPS7RQUuhYovGgV0VYqxuATC7WwdIRihVh5FceSXKgSIbz
|
203
|
+
BKmOBAy/KixEhpnHTbkpaJ0d9ITkvjMTmj3M5YMahKaQA5niVPckQPecMMd6jg9U
|
204
|
+
l1k75xLLIcrlsDYo3999KOSSchH2K7bLT7TuQ2okdP6FHWmeWmudewlu
|
205
|
+
-----END CERTIFICATE-----
|
206
|
+
MASTER_CA
|
207
|
+
end
|
208
|
+
|
209
|
+
def agent_ca
|
210
|
+
<<-AGENT_CA
|
211
|
+
-----BEGIN CERTIFICATE-----
|
212
|
+
MIIClTCCAf6gAwIBAgIBATANBgkqhkiG9w0BAQUFADBJMRAwDgYDVQQDDAdSb290
|
213
|
+
IENBMRowGAYDVQQLDBFTZXJ2ZXIgT3BlcmF0aW9uczEZMBcGA1UECgwQRXhhbXBs
|
214
|
+
ZSBPcmcsIExMQzAeFw0xMzAzMzAwNTUwNDhaFw0zMzAzMjUwNTUwNDhaMH0xIzAh
|
215
|
+
BgNVBAMTGkludGVybWVkaWF0ZSBDQSAoYWdlbnQtY2EpMR8wHQYJKoZIhvcNAQkB
|
216
|
+
FhB0ZXN0QGV4YW1wbGUub3JnMRkwFwYDVQQKExBFeGFtcGxlIE9yZywgTExDMRow
|
217
|
+
GAYDVQQLExFTZXJ2ZXIgT3BlcmF0aW9uczBcMA0GCSqGSIb3DQEBAQUAA0sAMEgC
|
218
|
+
QQDkEj/Msmi4hJImxP5+ocixMTHuYC1M1E2p4QcuzOkZYrfHf+5hJMcahfYhLiXU
|
219
|
+
jHBredOXhgSisHh6CLSb/rKzAgMBAAGjgZwwgZkweQYDVR0jBHIwcIAUME3Wao41
|
220
|
+
ziBStoTjNG3Dq54UMNqhTaRLMEkxEDAOBgNVBAMMB1Jvb3QgQ0ExGjAYBgNVBAsM
|
221
|
+
EVNlcnZlciBPcGVyYXRpb25zMRkwFwYDVQQKDBBFeGFtcGxlIE9yZywgTExDggkA
|
222
|
+
t/Y+TYe+0HMwDwYDVR0TAQH/BAUwAwEB/zALBgNVHQ8EBAMCAQYwDQYJKoZIhvcN
|
223
|
+
AQEFBQADgYEAujSj9rxIxJHEuuYXb15L30yxs9Tdvy4OCLiKdjvs9Z7gG8Pbutls
|
224
|
+
ooCwyYAkmzKVs/8cYjZJnvJrPEW1gFwqX7Xknp85Cfrl+/pQEPYq5sZVa5BIm9tI
|
225
|
+
0EvlDax/Hd28jI6Bgq5fsTECNl9GDGknCy7vwRZem0h+hI56lzR3pYE=
|
226
|
+
-----END CERTIFICATE-----
|
227
|
+
AGENT_CA
|
228
|
+
end
|
229
|
+
|
230
|
+
# Signed by the master CA (Good)
|
231
|
+
def master_issued_by_master_ca
|
232
|
+
<<-GOOD_SSL_CERT
|
233
|
+
-----BEGIN CERTIFICATE-----
|
234
|
+
MIICZzCCAhGgAwIBAgIBATANBgkqhkiG9w0BAQUFADB+MSQwIgYDVQQDExtJbnRl
|
235
|
+
cm1lZGlhdGUgQ0EgKG1hc3Rlci1jYSkxHzAdBgkqhkiG9w0BCQEWEHRlc3RAZXhh
|
236
|
+
bXBsZS5vcmcxGTAXBgNVBAoTEEV4YW1wbGUgT3JnLCBMTEMxGjAYBgNVBAsTEVNl
|
237
|
+
cnZlciBPcGVyYXRpb25zMB4XDTEzMDMzMDA1NTA0OFoXDTMzMDMyNTA1NTA0OFow
|
238
|
+
HjEcMBoGA1UEAwwTbWFzdGVyMS5leGFtcGxlLm9yZzBcMA0GCSqGSIb3DQEBAQUA
|
239
|
+
A0sAMEgCQQDACW8fryVZH0dC7vYUASonVBKYcILnKN2O9QX7RenZGN1TWek9LQxr
|
240
|
+
yQFDyp7WJ8jUw6nENGniLU8J+QSSxryjAgMBAAGjgdkwgdYwWwYDVR0jBFQwUqFN
|
241
|
+
pEswSTEQMA4GA1UEAwwHUm9vdCBDQTEaMBgGA1UECwwRU2VydmVyIE9wZXJhdGlv
|
242
|
+
bnMxGTAXBgNVBAoMEEV4YW1wbGUgT3JnLCBMTEOCAQIwDAYDVR0TAQH/BAIwADAL
|
243
|
+
BgNVHQ8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMD0GA1Ud
|
244
|
+
EQQ2MDSCE21hc3RlcjEuZXhhbXBsZS5vcmeCB21hc3RlcjGCBnB1cHBldIIMcHVw
|
245
|
+
cGV0bWFzdGVyMA0GCSqGSIb3DQEBBQUAA0EAo8PvgLrah6jQVs6YCBxOTn13PDip
|
246
|
+
fVbcRsFd0dtIr00N61bCqr6Fa0aRwy424gh6bVJTNmk2zoaH7r025dZRhw==
|
247
|
+
-----END CERTIFICATE-----
|
248
|
+
GOOD_SSL_CERT
|
249
|
+
end
|
250
|
+
|
251
|
+
# Signed by the agent CA, not the master CA (Rogue)
|
252
|
+
def master_issued_by_agent_ca
|
253
|
+
<<-BAD_SSL_CERT
|
254
|
+
-----BEGIN CERTIFICATE-----
|
255
|
+
MIICZjCCAhCgAwIBAgIBBDANBgkqhkiG9w0BAQUFADB9MSMwIQYDVQQDExpJbnRl
|
256
|
+
cm1lZGlhdGUgQ0EgKGFnZW50LWNhKTEfMB0GCSqGSIb3DQEJARYQdGVzdEBleGFt
|
257
|
+
cGxlLm9yZzEZMBcGA1UEChMQRXhhbXBsZSBPcmcsIExMQzEaMBgGA1UECxMRU2Vy
|
258
|
+
dmVyIE9wZXJhdGlvbnMwHhcNMTMwMzMwMDU1MDQ4WhcNMzMwMzI1MDU1MDQ4WjAe
|
259
|
+
MRwwGgYDVQQDDBNtYXN0ZXIxLmV4YW1wbGUub3JnMFwwDQYJKoZIhvcNAQEBBQAD
|
260
|
+
SwAwSAJBAPnCDnryLLXWepGLqsdBWlytfeakE/yijM8GlE/yT0SbpJInIhJR1N1A
|
261
|
+
0RskriHrxTU5qQEhd0RIja7K5o4NYksCAwEAAaOB2TCB1jBbBgNVHSMEVDBSoU2k
|
262
|
+
SzBJMRAwDgYDVQQDDAdSb290IENBMRowGAYDVQQLDBFTZXJ2ZXIgT3BlcmF0aW9u
|
263
|
+
czEZMBcGA1UECgwQRXhhbXBsZSBPcmcsIExMQ4IBATAMBgNVHRMBAf8EAjAAMAsG
|
264
|
+
A1UdDwQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPQYDVR0R
|
265
|
+
BDYwNIITbWFzdGVyMS5leGFtcGxlLm9yZ4IHbWFzdGVyMYIGcHVwcGV0ggxwdXBw
|
266
|
+
ZXRtYXN0ZXIwDQYJKoZIhvcNAQEFBQADQQA841IzHLlnn4RIJ0/BOZ/16iWC1dNr
|
267
|
+
jV9bELC5OxeMNSsVXbFNeTHwbHEYjDg5dQ6eUkxPdBSMWBeQwe2Mw+xG
|
268
|
+
-----END CERTIFICATE-----
|
269
|
+
BAD_SSL_CERT
|
270
|
+
end
|
271
|
+
|
272
|
+
def cert_chain
|
273
|
+
[ master_issued_by_master_ca, master_ca, root_ca ].map do |pem|
|
274
|
+
OpenSSL::X509::Certificate.new(pem)
|
275
|
+
end
|
276
|
+
end
|
277
|
+
|
278
|
+
def cert_chain_agent_ca
|
279
|
+
[ master_issued_by_agent_ca, agent_ca, root_ca ].map do |pem|
|
280
|
+
OpenSSL::X509::Certificate.new(pem)
|
281
|
+
end
|
282
|
+
end
|
283
|
+
|
284
|
+
def cert_chain_in_callback_order
|
285
|
+
cert_chain.reverse
|
286
|
+
end
|
287
|
+
|
288
|
+
let :authz_error_prefix do
|
289
|
+
"The server presented a SSL certificate chain which does not include a CA listed in the ssl_client_ca_auth file. "
|
290
|
+
end
|
291
|
+
|
292
|
+
let :expected_authz_error_msg do
|
293
|
+
authz_ca_certs = ssl_configuration.ca_auth_certificates
|
294
|
+
msg = authz_error_prefix
|
295
|
+
msg << "Authorized Issuers: #{authz_ca_certs.collect {|c| c.subject}.join(', ')} "
|
296
|
+
msg << "Peer Chain: #{cert_chain.collect {|c| c.subject}.join(' => ')}"
|
297
|
+
msg
|
298
|
+
end
|
299
|
+
|
300
|
+
let :root_ca_cert do
|
301
|
+
OpenSSL::X509::Certificate.new(root_ca)
|
302
|
+
end
|
303
|
+
|
304
|
+
let :master_ca_cert do
|
305
|
+
OpenSSL::X509::Certificate.new(master_ca)
|
306
|
+
end
|
307
|
+
|
308
|
+
let :agent_ca_cert do
|
309
|
+
OpenSSL::X509::Certificate.new(agent_ca)
|
310
|
+
end
|
311
|
+
end
|
@@ -102,6 +102,16 @@ describe Puppet::Transaction::EventManager do
|
|
102
102
|
|
103
103
|
@manager.queue_events(@resource, [@event])
|
104
104
|
end
|
105
|
+
|
106
|
+
it "should dequeue events for the changed resource if an event with invalidate_refreshes is processed" do
|
107
|
+
@event2 = Puppet::Transaction::Event.new(:name => :foo, :resource => @resource, :invalidate_refreshes => true)
|
108
|
+
|
109
|
+
@graph.stubs(:matching_edges).returns []
|
110
|
+
|
111
|
+
@manager.expects(:dequeue_events_for_resource).with(@resource, :refresh)
|
112
|
+
|
113
|
+
@manager.queue_events(@resource, [@event, @event2])
|
114
|
+
end
|
105
115
|
end
|
106
116
|
|
107
117
|
describe "when queueing events for a resource" do
|
@@ -258,4 +268,43 @@ describe Puppet::Transaction::EventManager do
|
|
258
268
|
end
|
259
269
|
end
|
260
270
|
end
|
271
|
+
|
272
|
+
describe "when queueing then processing events for a given resource" do
|
273
|
+
before do
|
274
|
+
@transaction = Puppet::Transaction.new(Puppet::Resource::Catalog.new)
|
275
|
+
@manager = Puppet::Transaction::EventManager.new(@transaction)
|
276
|
+
|
277
|
+
@resource = Puppet::Type.type(:file).new :path => make_absolute("/my/file")
|
278
|
+
@target = Puppet::Type.type(:file).new :path => make_absolute("/your/file")
|
279
|
+
|
280
|
+
@graph = stub 'graph'
|
281
|
+
@graph.stubs(:matching_edges).returns []
|
282
|
+
@graph.stubs(:matching_edges).with(anything, @resource).returns [stub('edge', :target => @target, :callback => :refresh)]
|
283
|
+
@manager.stubs(:relationship_graph).returns @graph
|
284
|
+
|
285
|
+
@event = Puppet::Transaction::Event.new(:name => :notify, :resource => @target)
|
286
|
+
@event2 = Puppet::Transaction::Event.new(:name => :service_start, :resource => @target, :invalidate_refreshes => true)
|
287
|
+
end
|
288
|
+
|
289
|
+
it "should succeed when there's no invalidated event" do
|
290
|
+
@manager.queue_events(@target, [@event2])
|
291
|
+
end
|
292
|
+
|
293
|
+
describe "and the events were dequeued/invalidated" do
|
294
|
+
before do
|
295
|
+
@resource.expects(:info).with { |msg| msg.include?("Scheduling refresh") }
|
296
|
+
@target.expects(:info).with { |msg| msg.include?("Unscheduling") }
|
297
|
+
end
|
298
|
+
|
299
|
+
it "should not run an event or log" do
|
300
|
+
@target.expects(:notice).with { |msg| msg.include?("Would have triggered 'refresh'") }.never
|
301
|
+
@target.expects(:refresh).never
|
302
|
+
|
303
|
+
@manager.queue_events(@resource, [@event])
|
304
|
+
@manager.queue_events(@target, [@event2])
|
305
|
+
@manager.process_events(@resource)
|
306
|
+
@manager.process_events(@target)
|
307
|
+
end
|
308
|
+
end
|
309
|
+
end
|
261
310
|
end
|
@@ -3,10 +3,19 @@ require 'spec_helper'
|
|
3
3
|
|
4
4
|
require 'puppet/transaction/event'
|
5
5
|
|
6
|
+
class TestResource
|
7
|
+
def to_s
|
8
|
+
"Foo[bar]"
|
9
|
+
end
|
10
|
+
def [](v)
|
11
|
+
nil
|
12
|
+
end
|
13
|
+
end
|
14
|
+
|
6
15
|
describe Puppet::Transaction::Event do
|
7
16
|
include PuppetSpec::Files
|
8
17
|
|
9
|
-
[:previous_value, :desired_value, :property, :
|
18
|
+
[:previous_value, :desired_value, :property, :name, :message, :file, :line, :tags, :audited].each do |attr|
|
10
19
|
it "should support #{attr}" do
|
11
20
|
event = Puppet::Transaction::Event.new
|
12
21
|
event.send(attr.to_s + "=", "foo")
|
@@ -14,12 +23,18 @@ describe Puppet::Transaction::Event do
|
|
14
23
|
end
|
15
24
|
end
|
16
25
|
|
26
|
+
it "should support resource" do
|
27
|
+
event = Puppet::Transaction::Event.new
|
28
|
+
event.resource = TestResource.new
|
29
|
+
event.resource.should == "Foo[bar]"
|
30
|
+
end
|
31
|
+
|
17
32
|
it "should always convert the property to a string" do
|
18
33
|
Puppet::Transaction::Event.new(:property => :foo).property.should == "foo"
|
19
34
|
end
|
20
35
|
|
21
36
|
it "should always convert the resource to a string" do
|
22
|
-
Puppet::Transaction::Event.new(:resource =>
|
37
|
+
Puppet::Transaction::Event.new(:resource => TestResource.new).resource.should == "Foo[bar]"
|
23
38
|
end
|
24
39
|
|
25
40
|
it "should produce the message when converted to a string" do
|
@@ -99,17 +114,17 @@ describe Puppet::Transaction::Event do
|
|
99
114
|
|
100
115
|
it "should use the source description as the source if one is set" do
|
101
116
|
Puppet::Util::Log.expects(:new).with { |args| args[:source] == "/my/param" }
|
102
|
-
Puppet::Transaction::Event.new(:source_description => "/my/param", :resource =>
|
117
|
+
Puppet::Transaction::Event.new(:source_description => "/my/param", :resource => TestResource.new, :property => "foo").send_log
|
103
118
|
end
|
104
119
|
|
105
120
|
it "should use the property as the source if one is available and no source description is set" do
|
106
121
|
Puppet::Util::Log.expects(:new).with { |args| args[:source] == "foo" }
|
107
|
-
Puppet::Transaction::Event.new(:resource =>
|
122
|
+
Puppet::Transaction::Event.new(:resource => TestResource.new, :property => "foo").send_log
|
108
123
|
end
|
109
124
|
|
110
125
|
it "should use the property as the source if one is available and no property or source description is set" do
|
111
126
|
Puppet::Util::Log.expects(:new).with { |args| args[:source] == "Foo[bar]" }
|
112
|
-
Puppet::Transaction::Event.new(:resource =>
|
127
|
+
Puppet::Transaction::Event.new(:resource => TestResource.new).send_log
|
113
128
|
end
|
114
129
|
end
|
115
130
|
|
@@ -130,6 +130,14 @@ describe Puppet::Transaction::Report do
|
|
130
130
|
report.exit_status.should == 4
|
131
131
|
end
|
132
132
|
|
133
|
+
it "should produce 4 if failures to restart are present" do
|
134
|
+
report = Puppet::Transaction::Report.new("apply")
|
135
|
+
report.add_metric("changes", {"total" => 0})
|
136
|
+
report.add_metric("resources", {"failed" => 0})
|
137
|
+
report.add_metric("resources", {"failed_to_restart" => 1})
|
138
|
+
report.exit_status.should == 4
|
139
|
+
end
|
140
|
+
|
133
141
|
it "should produce 6 if both changes and failures are present" do
|
134
142
|
report = Puppet::Transaction::Report.new("apply")
|
135
143
|
report.add_metric("changes", {"total" => 1})
|
data/spec/unit/type/cron_spec.rb
CHANGED
@@ -50,6 +50,15 @@ describe Puppet::Type.type(:cron), :unless => Puppet.features.microsoft_windows?
|
|
50
50
|
end
|
51
51
|
end
|
52
52
|
|
53
|
+
describe "command" do
|
54
|
+
it "should discard leading spaces" do
|
55
|
+
described_class.new(:name => 'foo', :command => " /bin/true")[:command].should_not match Regexp.new(" ")
|
56
|
+
end
|
57
|
+
it "should discard trailing spaces" do
|
58
|
+
described_class.new(:name => 'foo', :command => "/bin/true ")[:command].should_not match Regexp.new(" ")
|
59
|
+
end
|
60
|
+
end
|
61
|
+
|
53
62
|
describe "minute" do
|
54
63
|
it "should support absent" do
|
55
64
|
expect { described_class.new(:name => 'foo', :minute => 'absent') }.to_not raise_error
|