RubyGems - puppet - Versions diffs - 4.3.2 → 4.4.0 - Mend

puppet 4.3.2 → 4.4.0

Potentially problematic release.

This version of puppet might be problematic. Click here for more details.

Files changed (487) hide show

checksums.yaml +4 -4
data/COMMITTERS.md +2 -2
data/CONTRIBUTING.md +6 -6
data/LICENSE +1 -1
data/README.md +8 -9
data/conf/auth.conf +2 -2
data/ext/README.environment +1 -1
data/ext/debian/README.source +1 -1
data/ext/debian/control +1 -1
data/ext/debian/copyright +4 -4
data/ext/debian/puppetmaster.README.debian +11 -9
data/ext/emacs/puppet-mode.el +1 -1
data/ext/envpuppet +2 -2
data/ext/ips/puppetagent.xml +1 -1
data/ext/ips/puppetmaster.xml +1 -1
data/ext/project_data.yaml +8 -0
data/ext/puppet-test +3 -3
data/ext/rack/example-passenger-vhost.conf +1 -1
data/ext/redhat/puppet.spec.erb +2 -2
data/ext/regexp_nodes/regexp_nodes.rb +1 -1
data/ext/solaris/pkginfo +1 -1
data/ext/solaris/smf/puppet.xml +1 -1
data/ext/suse/puppet.spec +2 -2
data/ext/upload_facts.rb +1 -1
data/ext/windows/puppet_interactive.bat +6 -0
data/ext/windows/puppet_shell.bat +9 -0
data/ext/windows/run_puppet_interactive.bat +9 -0
data/ext/yaml_nodes.rb +1 -1
data/install.rb +30 -20
data/lib/puppet/agent.rb +1 -1
data/lib/puppet/application/agent.rb +4 -2
data/lib/puppet/application/apply.rb +7 -4
data/lib/puppet/application/cert.rb +1 -1
data/lib/puppet/application/device.rb +1 -1
data/lib/puppet/application/filebucket.rb +1 -1
data/lib/puppet/application/inspect.rb +1 -1
data/lib/puppet/application/lookup.rb +4 -4
data/lib/puppet/application/master.rb +2 -2
data/lib/puppet/application/resource.rb +1 -1
data/lib/puppet/configurer.rb +100 -22
data/lib/puppet/data_providers/hiera_config.rb +28 -3
data/lib/puppet/data_providers/hiera_interpolate.rb +30 -15
data/lib/puppet/data_providers/hiera_support.rb +1 -1
data/lib/puppet/data_providers/json_data_provider_factory.rb +2 -2
data/lib/puppet/data_providers/yaml_data_provider_factory.rb +2 -2
data/lib/puppet/defaults.rb +65 -19
data/lib/puppet/environments.rb +3 -1
data/lib/puppet/face/config.rb +1 -1
data/lib/puppet/face/epp.rb +1 -1
data/lib/puppet/face/help/man.erb +1 -1
data/lib/puppet/face/module/install.rb +6 -6
data/lib/puppet/face/parser.rb +12 -9
data/lib/puppet/face/status.rb +2 -1
data/lib/puppet/feature/cfpropertylist.rb +3 -0
data/lib/puppet/feature/telnet.rb +9 -0
data/lib/puppet/file_serving/http_metadata.rb +46 -0
data/lib/puppet/file_serving/metadata.rb +18 -2
data/lib/puppet/file_serving/terminus_selector.rb +2 -0
data/lib/puppet/file_system.rb +2 -2
data/lib/puppet/file_system/file_impl.rb +2 -2
data/lib/puppet/file_system/memory_impl.rb +1 -1
data/lib/puppet/file_system/uniquefile.rb +1 -1
data/lib/puppet/forge.rb +1 -1
data/lib/puppet/forge/repository.rb +1 -31
data/lib/puppet/functions.rb +45 -6
data/lib/puppet/functions/assert_type.rb +9 -9
data/lib/puppet/functions/each.rb +5 -13
data/lib/puppet/functions/filter.rb +5 -14
data/lib/puppet/functions/map.rb +6 -14
data/lib/puppet/functions/reduce.rb +5 -13
data/lib/puppet/functions/reverse_each.rb +82 -0
data/lib/puppet/functions/scanf.rb +15 -18
data/lib/puppet/functions/slice.rb +22 -36
data/lib/puppet/functions/split.rb +2 -2
data/lib/puppet/functions/step.rb +88 -0
data/lib/puppet/functions/type.rb +70 -0
data/lib/puppet/graph/rb_tree_map.rb +1 -1
data/lib/puppet/indirector/catalog/compiler.rb +188 -5
data/lib/puppet/indirector/file_content/http.rb +15 -0
data/lib/puppet/indirector/file_metadata/http.rb +27 -0
data/lib/puppet/indirector/generic_http.rb +16 -0
data/lib/puppet/indirector/node/exec.rb +1 -1
data/lib/puppet/indirector/node/ldap.rb +1 -1
data/lib/puppet/indirector/rest.rb +2 -1
data/lib/puppet/info_service/class_information_service.rb +13 -12
data/lib/puppet/loaders.rb +1 -0
data/lib/puppet/module.rb +3 -0
data/lib/puppet/module_tool/skeleton/templates/generator/Gemfile +9 -2
data/lib/puppet/module_tool/skeleton/templates/generator/spec/classes/init_spec.rb.erb +1 -1
data/lib/puppet/module_tool/skeleton/templates/generator/tests/init.pp.erb +2 -2
data/lib/puppet/module_tool/tar/mini.rb +3 -3
data/lib/puppet/network/http/pool.rb +9 -0
data/lib/puppet/node.rb +1 -1
data/lib/puppet/node/environment.rb +11 -2
data/lib/puppet/parser/ast/pops_bridge.rb +19 -22
data/lib/puppet/parser/compiler.rb +3 -3
data/lib/puppet/parser/environment_compiler.rb +0 -1
data/lib/puppet/parser/functions.rb +28 -16
data/lib/puppet/parser/functions/fqdn_rand.rb +1 -1
data/lib/puppet/parser/functions/inline_template.rb +1 -1
data/lib/puppet/parser/functions/map.rb +1 -1
data/lib/puppet/parser/functions/scanf.rb +15 -26
data/lib/puppet/parser/functions/slice.rb +17 -24
data/lib/puppet/parser/functions/split.rb +1 -1
data/lib/puppet/parser/resource.rb +19 -17
data/lib/puppet/parser/scope.rb +176 -5
data/lib/puppet/plugins/data_providers/data_provider.rb +54 -13
data/lib/puppet/pops.rb +0 -8
data/lib/puppet/pops/adaptable.rb +4 -1
data/lib/puppet/pops/adapters.rb +38 -13
data/lib/puppet/pops/binder/binder.rb +21 -17
data/lib/puppet/pops/binder/binder_issues.rb +8 -6
data/lib/puppet/pops/binder/bindings_checker.rb +12 -8
data/lib/puppet/pops/binder/bindings_composer.rb +16 -12
data/lib/puppet/pops/binder/bindings_factory.rb +108 -104
data/lib/puppet/pops/binder/bindings_model.rb +49 -47
data/lib/puppet/pops/binder/config/diagnostic_producer.rb +10 -6
data/lib/puppet/pops/binder/injector.rb +53 -48
data/lib/puppet/pops/binder/key_factory.rb +10 -6
data/lib/puppet/pops/binder/producers.rb +67 -62
data/lib/puppet/pops/evaluator/access_operator.rb +95 -93
data/lib/puppet/pops/evaluator/closure.rb +84 -68
data/lib/puppet/pops/evaluator/collector_transformer.rb +18 -14
data/lib/puppet/pops/evaluator/collectors/exported_collector.rb +0 -1
data/lib/puppet/pops/evaluator/compare_operator.rb +13 -9
data/lib/puppet/pops/evaluator/epp_evaluator.rb +9 -8
data/lib/puppet/pops/evaluator/evaluator_impl.rb +78 -76
data/lib/puppet/pops/evaluator/json_strict_literal_evaluator.rb +85 -0
data/lib/puppet/pops/evaluator/relationship_operator.rb +13 -11
data/lib/puppet/pops/evaluator/runtime3_converter.rb +5 -0
data/lib/puppet/pops/evaluator/runtime3_support.rb +41 -45
data/lib/puppet/pops/issue_reporter.rb +6 -4
data/lib/puppet/pops/issues.rb +34 -11
data/lib/puppet/pops/loader/base_loader.rb +1 -1
data/lib/puppet/pops/loader/loader.rb +1 -1
data/lib/puppet/pops/loader/loader_paths.rb +15 -0
data/lib/puppet/pops/loader/module_loaders.rb +17 -13
data/lib/puppet/pops/loader/puppet_function_instantiator.rb +16 -12
data/lib/puppet/pops/loader/ruby_function_instantiator.rb +16 -3
data/lib/puppet/pops/loader/type_definition_instantiator.rb +55 -0
data/lib/puppet/pops/loaders.rb +51 -9
data/lib/puppet/pops/lookup.rb +14 -12
data/lib/puppet/pops/merge_strategy.rb +16 -19
data/lib/puppet/pops/model/factory.rb +26 -2
data/lib/puppet/pops/model/model.rb +8 -8
data/lib/puppet/pops/model/model_label_provider.rb +13 -7
data/lib/puppet/pops/model/model_meta.rb +17 -0
data/lib/puppet/pops/model/model_tree_dumper.rb +8 -0
data/lib/puppet/pops/parser/egrammar.ra +38 -14
data/lib/puppet/pops/parser/eparser.rb +1353 -1276
data/lib/puppet/pops/parser/epp_support.rb +11 -7
data/lib/puppet/pops/parser/evaluating_parser.rb +14 -10
data/lib/puppet/pops/parser/heredoc_support.rb +15 -11
data/lib/puppet/pops/parser/lexer2.rb +26 -19
data/lib/puppet/pops/parser/lexer_support.rb +85 -7
data/lib/puppet/pops/parser/locator.rb +21 -0
data/lib/puppet/pops/parser/parser_support.rb +19 -16
data/lib/puppet/pops/parser/slurp_support.rb +11 -7
data/lib/puppet/pops/types/class_loader.rb +23 -19
data/lib/puppet/pops/types/enumeration.rb +9 -26
data/lib/puppet/pops/types/iterable.rb +308 -0
data/lib/puppet/pops/types/recursion_guard.rb +82 -0
data/lib/puppet/pops/types/type_acceptor.rb +25 -0
data/lib/puppet/pops/types/type_asserter.rb +10 -9
data/lib/puppet/pops/types/type_calculator.rb +138 -381
data/lib/puppet/pops/types/type_factory.rb +91 -57
data/lib/puppet/pops/types/type_formatter.rb +334 -0
data/lib/puppet/pops/types/type_mismatch_describer.rb +226 -59
data/lib/puppet/pops/types/type_parser.rb +159 -112
data/lib/puppet/pops/types/types.rb +2057 -1247
data/lib/puppet/pops/utils.rb +11 -10
data/lib/puppet/pops/validation.rb +11 -9
data/lib/puppet/pops/validation/checker4_0.rb +83 -55
data/lib/puppet/pops/validation/validator_factory_4_0.rb +8 -4
data/lib/puppet/provider/aixobject.rb +1 -1
data/lib/puppet/provider/augeas/augeas.rb +1 -1
data/lib/puppet/provider/cron/crontab.rb +1 -1
data/lib/puppet/provider/exec/windows.rb +1 -1
data/lib/puppet/provider/macauthorization/macauthorization.rb +10 -9
data/lib/puppet/provider/nameservice/directoryservice.rb +35 -50
data/lib/puppet/provider/package/appdmg.rb +3 -2
data/lib/puppet/provider/package/dnf.rb +1 -1
data/lib/puppet/provider/package/pip.rb +5 -8
data/lib/puppet/provider/package/pip3.rb +1 -1
data/lib/puppet/provider/package/pkg.rb +1 -1
data/lib/puppet/provider/package/pkgdmg.rb +3 -2
data/lib/puppet/provider/package/pkgng.rb +13 -4
data/lib/puppet/provider/package/windows.rb +1 -1
data/lib/puppet/provider/package/yum.rb +1 -1
data/lib/puppet/provider/package/zypper.rb +19 -0
data/lib/puppet/provider/service/debian.rb +2 -2
data/lib/puppet/provider/service/launchd.rb +6 -18
data/lib/puppet/provider/service/systemd.rb +9 -2
data/lib/puppet/provider/sshkey/parsed.rb +1 -1
data/lib/puppet/provider/user/aix.rb +1 -1
data/lib/puppet/provider/user/directoryservice.rb +33 -58
data/lib/puppet/provider/zfs/zfs.rb +1 -1
data/lib/puppet/provider/zpool/zpool.rb +1 -1
data/lib/puppet/reference/configuration.rb +1 -1
data/lib/puppet/reference/providers.rb +1 -1
data/lib/puppet/resource.rb +15 -12
data/lib/puppet/resource/capability_finder.rb +20 -13
data/lib/puppet/resource/catalog.rb +60 -3
data/lib/puppet/resource/status.rb +11 -2
data/lib/puppet/resource/type.rb +28 -38
data/lib/puppet/settings.rb +1 -1
data/lib/puppet/settings/config_file.rb +1 -1
data/lib/puppet/settings/environment_conf.rb +13 -5
data/lib/puppet/ssl/certificate_factory.rb +3 -3
data/lib/puppet/ssl/certificate_request.rb +4 -4
data/lib/puppet/ssl/certificate_signer.rb +1 -1
data/lib/puppet/ssl/validator/default_validator.rb +1 -1
data/lib/puppet/test/test_helper.rb +16 -4
data/lib/puppet/transaction.rb +15 -2
data/lib/puppet/transaction/additional_resource_generator.rb +6 -2
data/lib/puppet/transaction/report.rb +31 -1
data/lib/puppet/transaction/resource_harness.rb +0 -25
data/lib/puppet/type.rb +11 -11
data/lib/puppet/type/augeas.rb +1 -1
data/lib/puppet/type/cron.rb +12 -12
data/lib/puppet/type/file.rb +91 -39
data/lib/puppet/type/file/checksum_value.rb +53 -0
data/lib/puppet/type/file/content.rb +26 -111
data/lib/puppet/type/file/data_sync.rb +84 -0
data/lib/puppet/type/file/ensure.rb +17 -14
data/lib/puppet/type/file/selcontext.rb +1 -1
data/lib/puppet/type/file/source.rb +103 -18
data/lib/puppet/type/filebucket.rb +1 -1
data/lib/puppet/type/interface.rb +8 -3
data/lib/puppet/type/macauthorization.rb +1 -1
data/lib/puppet/type/package.rb +6 -0
data/lib/puppet/type/schedule.rb +1 -1
data/lib/puppet/type/stage.rb +1 -1
data/lib/puppet/type/user.rb +19 -17
data/lib/puppet/type/yumrepo.rb +20 -0
data/lib/puppet/util.rb +109 -22
data/lib/puppet/util/autoload.rb +16 -11
data/lib/puppet/util/checksums.rb +74 -31
data/lib/puppet/util/execution.rb +1 -1
data/lib/puppet/util/http_proxy.rb +72 -0
data/lib/puppet/util/log.rb +2 -0
data/lib/puppet/util/logging.rb +43 -1
data/lib/puppet/util/monkey_patches.rb +2 -2
data/lib/puppet/util/multi_match.rb +51 -0
data/lib/puppet/util/network_device/cisco/device.rb +10 -2
data/lib/puppet/util/network_device/cisco/interface.rb +21 -8
data/lib/puppet/util/network_device/transport/ssh.rb +7 -3
data/lib/puppet/util/network_device/transport/telnet.rb +39 -36
data/lib/puppet/util/plist.rb +130 -0
data/lib/puppet/util/resource_template.rb +1 -1
data/lib/puppet/util/run_mode.rb +2 -2
data/lib/puppet/util/skip_tags.rb +9 -0
data/lib/puppet/util/windows/access_control_entry.rb +1 -1
data/lib/puppet/util/windows/access_control_list.rb +3 -3
data/lib/puppet/util/windows/adsi.rb +4 -4
data/lib/puppet/util/windows/api_types.rb +24 -18
data/lib/puppet/util/windows/com.rb +3 -3
data/lib/puppet/util/windows/error.rb +1 -1
data/lib/puppet/util/windows/file.rb +8 -8
data/lib/puppet/util/windows/principal.rb +23 -14
data/lib/puppet/util/windows/process.rb +78 -11
data/lib/puppet/util/windows/registry.rb +1 -1
data/lib/puppet/util/windows/root_certs.rb +5 -5
data/lib/puppet/util/windows/security.rb +33 -35
data/lib/puppet/util/windows/security_descriptor.rb +1 -1
data/lib/puppet/util/windows/sid.rb +42 -4
data/lib/puppet/util/windows/taskscheduler.rb +15 -15
data/lib/puppet/util/windows/user.rb +10 -10
data/lib/puppet/vendor/deep_merge/deep_merge.gemspec +1 -1
data/lib/puppet/vendor/pathspec/LICENSE +2 -2
data/lib/puppet/vendor/pathspec/README.md +1 -1
data/lib/puppet/vendor/rgen/README.rdoc +1 -1
data/lib/puppet/vendor/semantic/lib/semantic/dependency/module_release.rb +14 -0
data/lib/puppet/version.rb +1 -1
data/lib/semver.rb +17 -1
data/man/man5/puppet.conf.5 +12 -12
data/man/man8/extlookup2hiera.8 +1 -1
data/man/man8/puppet-agent.8 +2 -2
data/man/man8/puppet-apply.8 +2 -2
data/man/man8/puppet-ca.8 +2 -2
data/man/man8/puppet-catalog.8 +2 -2
data/man/man8/puppet-cert.8 +2 -2
data/man/man8/puppet-certificate.8 +2 -2
data/man/man8/puppet-certificate_request.8 +2 -2
data/man/man8/puppet-certificate_revocation_list.8 +2 -2
data/man/man8/puppet-config.8 +3 -3
data/man/man8/puppet-describe.8 +1 -1
data/man/man8/puppet-device.8 +1 -1
data/man/man8/puppet-doc.8 +1 -1
data/man/man8/puppet-epp.8 +2 -2
data/man/man8/puppet-facts.8 +2 -2
data/man/man8/puppet-file.8 +2 -2
data/man/man8/puppet-filebucket.8 +2 -2
data/man/man8/puppet-help.8 +2 -2
data/man/man8/puppet-inspect.8 +2 -2
data/man/man8/puppet-key.8 +2 -2
data/man/man8/puppet-man.8 +2 -2
data/man/man8/puppet-master.8 +2 -2
data/man/man8/puppet-module.8 +9 -9
data/man/man8/puppet-node.8 +2 -2
data/man/man8/puppet-parser.8 +2 -2
data/man/man8/puppet-plugin.8 +2 -2
data/man/man8/puppet-report.8 +2 -2
data/man/man8/puppet-resource.8 +2 -2
data/man/man8/puppet-resource_type.8 +2 -2
data/man/man8/puppet-status.8 +3 -3
data/man/man8/puppet.8 +1 -1
data/spec/fixtures/module.tar.gz +0 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/bad_data/lib/puppet/functions/bad_data/data.rb +1 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/bad_data/manifests/init.pp +0 -1
data/spec/fixtures/unit/functions/lookup/environments/production/modules/empty_json/data/empty.json +0 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/empty_json/hiera.yaml +5 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/empty_json/manifests/init.pp +2 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/empty_json/metadata.json +9 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/empty_yaml/data/empty.yaml +1 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/empty_yaml/hiera.yaml +5 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/empty_yaml/manifests/init.pp +2 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/empty_yaml/metadata.json +9 -0
data/spec/fixtures/unit/functions/lookup/environments/production/modules/hieraprovider/data/first.json +2 -1
data/spec/fixtures/unit/module/trailing-comma.json +1 -1
data/spec/fixtures/unit/pops/loaders/loaders/dependent_modules_with_metadata/modules/usee/manifests/init.pp +3 -1
data/spec/fixtures/unit/pops/loaders/loaders/dependent_modules_with_metadata/modules/usee/types/zero.pp +1 -0
data/spec/fixtures/unit/pops/loaders/loaders/dependent_modules_with_metadata/modules/user/types/withuseeone.pp +1 -0
data/spec/fixtures/unit/pops/loaders/loaders/dependent_modules_with_metadata/modules/user/types/withuseezero.pp +1 -0
data/spec/fixtures/unit/provider/package/yum/yum-check-update-broken-notices.txt +187 -0
data/spec/fixtures/unit/provider/sshkey/parsed/sample_with_blank_lines +8 -0
data/spec/fixtures/vcr/cassettes/Puppet_Type_File/when_sourcing/from_http/using_md5/should_fetch_if_not_on_the_local_disk.yml +205 -0
data/spec/fixtures/vcr/cassettes/Puppet_Type_File/when_sourcing/from_http/using_md5/should_not_update_if_content_on_disk_is_up-to-date.yml +213 -0
data/spec/fixtures/vcr/cassettes/Puppet_Type_File/when_sourcing/from_http/using_md5/should_update_if_content_differs_on_disk.yml +213 -0
data/spec/fixtures/vcr/cassettes/Puppet_Type_File/when_sourcing/from_http/using_mtime/should_fetch_if_mtime_is_older_on_disk.yml +205 -0
data/spec/fixtures/vcr/cassettes/Puppet_Type_File/when_sourcing/from_http/using_mtime/should_fetch_if_no_header_specified.yml +197 -0
data/spec/fixtures/vcr/cassettes/Puppet_Type_File/when_sourcing/from_http/using_mtime/should_fetch_if_not_on_the_local_disk.yml +205 -0
data/spec/fixtures/vcr/cassettes/Puppet_Type_File/when_sourcing/from_http/using_mtime/should_not_update_if_mtime_is_newer_on_disk.yml +205 -0
data/spec/integration/defaults_spec.rb +14 -2
data/spec/integration/file_system/uniquefile_spec.rb +29 -0
data/spec/integration/module_tool/tar/mini_spec.rb +28 -0
data/spec/integration/node/environment_spec.rb +13 -0
data/spec/integration/parser/dynamic_scoping_spec.rb +67 -0
data/spec/integration/parser/parameter_defaults_spec.rb +336 -0
data/spec/integration/parser/undef_param_spec.rb +8 -0
data/spec/integration/provider/yumrepo_spec.rb +1 -1
data/spec/integration/test/test_helper_spec.rb +28 -0
data/spec/integration/transaction/report_spec.rb +16 -0
data/spec/integration/transaction_spec.rb +11 -0
data/spec/integration/type/file_spec.rb +194 -4
data/spec/integration/type/package_spec.rb +5 -1
data/spec/integration/type/tidy_spec.rb +21 -9
data/spec/integration/util/execution_spec.rb +22 -0
data/spec/integration/util/windows/principal_spec.rb +90 -4
data/spec/integration/util/windows/process_spec.rb +31 -0
data/spec/integration/util/windows/security_spec.rb +6 -6
data/spec/integration/util/windows/user_spec.rb +1 -1
data/spec/integration/util_spec.rb +49 -27
data/spec/lib/puppet_spec/compiler.rb +17 -0
data/spec/lib/puppet_spec/files.rb +2 -2
data/spec/lib/puppet_spec/pops.rb +13 -0
data/spec/shared_behaviours/iterative_functions.rb +1 -1
data/spec/shared_contexts/types_setup.rb +96 -0
data/spec/unit/agent_spec.rb +1 -0
data/spec/unit/application/agent_spec.rb +10 -0
data/spec/unit/application/apply_spec.rb +9 -0
data/spec/unit/configurer/downloader_spec.rb +5 -5
data/spec/unit/configurer_spec.rb +271 -39
data/spec/unit/data_providers/hiera_interpolation_spec.rb +57 -0
data/spec/unit/defaults_spec.rb +15 -0
data/spec/unit/environments_spec.rb +24 -4
data/spec/unit/face/parser_spec.rb +43 -2
data/spec/unit/file_serving/http_metadata_spec.rb +85 -0
data/spec/unit/file_serving/metadata_spec.rb +50 -0
data/spec/unit/file_serving/terminus_selector_spec.rb +12 -2
data/spec/unit/file_system_spec.rb +26 -0
data/spec/unit/functions/assert_type_spec.rb +36 -2
data/spec/unit/functions/defined_spec.rb +2 -2
data/spec/unit/functions/epp_spec.rb +11 -3
data/spec/unit/functions/lookup_spec.rb +58 -13
data/spec/unit/functions/regsubst_spec.rb +1 -1
data/spec/unit/functions/reverse_each_spec.rb +108 -0
data/spec/unit/functions/step_spec.rb +113 -0
data/spec/unit/functions/type_spec.rb +35 -0
data/spec/unit/functions4_spec.rb +61 -5
data/spec/unit/indirector/catalog/compiler_spec.rb +705 -4
data/spec/unit/indirector/file_bucket_file/file_spec.rb +1 -1
data/spec/unit/indirector/indirection_spec.rb +1 -1
data/spec/unit/info_service_spec.rb +94 -32
data/spec/unit/module_spec.rb +14 -0
data/spec/unit/module_tool/applications/builder_spec.rb +4 -4
data/spec/unit/network/authstore_spec.rb +1 -1
data/spec/unit/network/http/connection_spec.rb +1 -0
data/spec/unit/network/http/pool_spec.rb +30 -0
data/spec/unit/node_spec.rb +1 -1
data/spec/unit/parser/compiler_spec.rb +16 -0
data/spec/unit/parser/scope_spec.rb +28 -11
data/spec/unit/pops/evaluator/access_ops_spec.rb +3 -3
data/spec/unit/pops/evaluator/comparison_ops_spec.rb +3 -0
data/spec/unit/pops/evaluator/evaluating_parser_spec.rb +7 -1
data/spec/unit/pops/evaluator/evaluator_rspec_helper.rb +4 -4
data/spec/unit/pops/evaluator/json_strict_literal_evaluator_spec.rb +63 -0
data/spec/unit/pops/evaluator/runtime3_converter_spec.rb +6 -0
data/spec/unit/pops/loaders/dependency_loader_spec.rb +53 -0
data/spec/unit/pops/loaders/loaders_spec.rb +44 -1
data/spec/unit/pops/parser/lexer2_spec.rb +112 -3
data/spec/unit/pops/parser/parse_calls_spec.rb +8 -0
data/spec/unit/pops/parser/parser_spec.rb +10 -0
data/spec/unit/pops/parser/source_pos_adapter_spec.rb +26 -0
data/spec/unit/pops/types/iterable_spec.rb +262 -0
data/spec/unit/pops/types/recursion_guard_spec.rb +91 -0
data/spec/unit/pops/types/type_acceptor_spec.rb +105 -0
data/spec/unit/pops/types/type_asserter_spec.rb +43 -0
data/spec/unit/pops/types/type_calculator_spec.rb +275 -373
data/spec/unit/pops/types/type_formatter_spec.rb +280 -0
data/spec/unit/pops/types/type_mismatch_describer_spec.rb +152 -0
data/spec/unit/pops/types/type_parser_spec.rb +58 -13
data/spec/unit/pops/types/types_spec.rb +241 -0
data/spec/unit/pops/validator/validator_spec.rb +100 -43
data/spec/unit/provider/cron/parsed_spec.rb +1 -0
data/spec/unit/provider/macauthorization_spec.rb +5 -2
data/spec/unit/provider/nameservice/directoryservice_spec.rb +14 -19
data/spec/unit/provider/package/appdmg_spec.rb +3 -3
data/spec/unit/provider/package/dnf_spec.rb +16 -0
data/spec/unit/provider/package/pip3_spec.rb +60 -42
data/spec/unit/provider/package/pip_spec.rb +47 -34
data/spec/unit/provider/package/pkgdmg_spec.rb +18 -9
data/spec/unit/provider/package/pkgng_spec.rb +4 -2
data/spec/unit/provider/package/yum_spec.rb +11 -0
data/spec/unit/provider/package/zypper_spec.rb +14 -0
data/spec/unit/provider/service/launchd_spec.rb +17 -35
data/spec/unit/provider/service/systemd_spec.rb +7 -0
data/spec/unit/provider/sshkey/parsed_spec.rb +20 -19
data/spec/unit/provider/user/directoryservice_spec.rb +40 -59
data/spec/unit/resource/capability_finder_spec.rb +28 -15
data/spec/unit/resource/catalog_spec.rb +33 -1
data/spec/unit/resource/type_spec.rb +149 -7
data/spec/unit/resource_spec.rb +96 -57
data/spec/unit/settings/environment_conf_spec.rb +18 -1
data/spec/unit/ssl/certificate_revocation_list_spec.rb +3 -3
data/spec/unit/transaction/report_spec.rb +27 -0
data/spec/unit/transaction/resource_harness_spec.rb +0 -47
data/spec/unit/transaction_spec.rb +5 -0
data/spec/unit/type/file/checksum_spec.rb +6 -0
data/spec/unit/type/file/checksum_value_spec.rb +286 -0
data/spec/unit/type/file/content_spec.rb +12 -193
data/spec/unit/type/file/source_spec.rb +211 -119
data/spec/unit/type/file_spec.rb +133 -34
data/spec/unit/type/interface_spec.rb +32 -0
data/spec/unit/type/macauthorization_spec.rb +4 -1
data/spec/unit/type/yumrepo_spec.rb +2 -2
data/spec/unit/util/filetype_spec.rb +1 -1
data/spec/unit/util/http_proxy_spec.rb +2 -2
data/spec/unit/util/log/destinations_spec.rb +0 -2
data/spec/unit/util/logging_spec.rb +69 -0
data/spec/unit/util/multi_match_spec.rb +39 -0
data/spec/unit/util/network_device/cisco/device_spec.rb +253 -216
data/spec/unit/util/network_device/transport/telnet_spec.rb +60 -58
data/spec/unit/util/plist_spec.rb +110 -0
data/spec/unit/util/resource_template_spec.rb +2 -2
data/spec/unit/util/run_mode_spec.rb +27 -3
data/spec/unit/util/windows/adsi_spec.rb +4 -4
data/spec/unit/util/windows/api_types_spec.rb +42 -0
data/spec/unit/util/windows/security_descriptor_spec.rb +3 -3
data/spec/unit/util/windows/sid_spec.rb +1 -1
data/spec/unit/util_spec.rb +123 -13
data/tasks/cfpropertylist.rake +15 -0
metadata +114 -26
data/lib/puppet/vendor/load_plist.rb +0 -1
data/lib/puppet/vendor/plist/CHANGELOG +0 -82
data/lib/puppet/vendor/plist/MIT-LICENSE +0 -21
data/lib/puppet/vendor/plist/PUPPET_README.md +0 -6
data/lib/puppet/vendor/plist/README +0 -36
data/lib/puppet/vendor/plist/Rakefile +0 -144
data/lib/puppet/vendor/plist/docs/USAGE +0 -104
data/lib/puppet/vendor/plist/docs/jamis-template.rb +0 -591
data/lib/puppet/vendor/plist/lib/plist.rb +0 -22
data/lib/puppet/vendor/plist/lib/plist/generator.rb +0 -224
data/lib/puppet/vendor/plist/lib/plist/parser.rb +0 -225
data/lib/puppet/vendor/plist/test/assets/AlbumData.xml +0 -203
data/lib/puppet/vendor/plist/test/assets/Cookies.plist +0 -104
data/lib/puppet/vendor/plist/test/assets/commented.plist +0 -9
data/lib/puppet/vendor/plist/test/assets/example_data.bin +0 -0
data/lib/puppet/vendor/plist/test/assets/example_data.jpg +0 -0
data/lib/puppet/vendor/plist/test/assets/example_data.plist +0 -259
data/lib/puppet/vendor/plist/test/assets/test_data_elements.plist +0 -24
data/lib/puppet/vendor/plist/test/assets/test_empty_key.plist +0 -13
data/lib/puppet/vendor/plist/test/test_data_elements.rb +0 -115
data/lib/puppet/vendor/plist/test/test_generator.rb +0 -59
data/lib/puppet/vendor/plist/test/test_generator_basic_types.rb +0 -58
data/lib/puppet/vendor/plist/test/test_generator_collections.rb +0 -82
data/lib/puppet/vendor/plist/test/test_parser.rb +0 -90

data/lib/puppet/resource/catalog.rb CHANGED

@@ -3,6 +3,7 @@ require 'puppet/indirector'
 require 'puppet/transaction'
 require 'puppet/util/tagging'
 require 'puppet/graph'
+require 'securerandom'
 require 'puppet/resource/capability_finder'
@@ -32,6 +33,22 @@ class Puppet::Resource::Catalog < Puppet::Graph::SimpleGraph
   # The id of the code input to the compiler.
   attr_accessor :code_id
+  # The UUID of the catalog
+  attr_accessor :catalog_uuid
+  # @return [Integer] catalog format version number. This value is constant
+  #  for a given version of Puppet; it is incremented when a new release of
+  #  Puppet changes the API for the various objects that make up the catalog.
+  attr_accessor :catalog_format
+  # Inlined file metadata for non-recursive find
+  # A hash of title => metadata
+  attr_accessor :metadata
+  # Inlined file metadata for recursive search
+  # A hash of title => { source => [metadata, ...] }
+  attr_accessor :recursive_metadata
   # How long this catalog took to retrieve.  Used for reporting stats.
   attr_accessor :retrieval_duration
@@ -272,6 +289,10 @@ class Puppet::Resource::Catalog < Puppet::Graph::SimpleGraph
   def initialize(name = nil, environment = Puppet::Node::Environment::NONE, code_id = nil)
     super()
     @name = name
+    @catalog_uuid = SecureRandom.uuid
+    @catalog_format = 1
+    @metadata = {}
+    @recursive_metadata = {}
     @classes = []
     @resource_table = {}
     @resources = []
@@ -379,6 +400,12 @@ class Puppet::Resource::Catalog < Puppet::Graph::SimpleGraph
       result.code_id = code_id
     end
+    if catalog_uuid = data['catalog_uuid']
+      result.catalog_uuid = catalog_uuid
+    end
+    result.catalog_format = data['catalog_format'] || 0
     if environment = data['environment']
       result.environment = environment
       result.environment_instance = Puppet::Node::Environment.remote(environment.to_sym)
@@ -411,20 +438,46 @@ class Puppet::Resource::Catalog < Puppet::Graph::SimpleGraph
       result.add_class(*classes)
     end
+    if metadata = data['metadata']
+      result.metadata = metadata.inject({}) { |h, (k, v)| h[k] = Puppet::FileServing::Metadata.from_data_hash(v); h }
+    end
+    if recursive_metadata = data['recursive_metadata']
+      result.recursive_metadata = recursive_metadata.inject({}) do |h, (title, source_to_meta_hash)|
+        h[title] = source_to_meta_hash.inject({}) do |inner_h, (source, metas)|
+          inner_h[source] = metas.map {|meta| Puppet::FileServing::Metadata.from_data_hash(meta)}
+          inner_h
+        end
+        h
+      end
+    end
     result
   end
   def to_data_hash
+    metadata_hash = metadata.inject({}) { |h, (k, v)| h[k] = v.to_data_hash; h }
+    recursive_metadata_hash = recursive_metadata.inject({}) do |h, (title, source_to_meta_hash)|
+      h[title] = source_to_meta_hash.inject({}) do |inner_h, (source, metas)|
+        inner_h[source] = metas.map {|meta| meta.to_data_hash}
+        inner_h
+      end
+      h
+    end
     {
       'tags'      => tags,
       'name'      => name,
       'version'   => version,
       'code_id'   => code_id,
-      'environment' => environment.to_s,
+      'catalog_uuid' => catalog_uuid,
+      'catalog_format' => catalog_format,
+      'environment'  => environment.to_s,
       'resources' => @resources.collect { |v| @resource_table[v].to_data_hash },
       'edges'     => edges.   collect { |e| e.to_data_hash },
-      'classes'   => classes
-    }
+      'classes'   => classes,
+    }.merge(metadata_hash.empty? ? {} : {'metadata' => metadata_hash})
+     .merge(recursive_metadata_hash.empty? ? {} : {'recursive_metadata' => recursive_metadata_hash})
   end
   # Convert our catalog into a RAL catalog.
@@ -536,6 +589,10 @@ class Puppet::Resource::Catalog < Puppet::Graph::SimpleGraph
     result.version = self.version
     result.code_id = self.code_id
+    result.catalog_uuid = self.catalog_uuid
+    result.catalog_format = self.catalog_format
+    result.metadata = self.metadata
+    result.recursive_metadata = self.recursive_metadata
     map = {}
     resources.each do |resource|

data/lib/puppet/resource/status.rb CHANGED

@@ -1,5 +1,6 @@
 require 'time'
 require 'puppet/network/format_support'
+require 'puppet/util/psych_support'
 module Puppet
   class Resource
@@ -11,6 +12,7 @@ module Puppet
     #
     # @api private
     class Status
+      include Puppet::Util::PsychSupport
       include Puppet::Util::Tagging
       include Puppet::Network::FormatSupport
@@ -181,7 +183,14 @@ module Puppet
         @failed = data['failed']
         @events = data['events'].map do |event|
-          Puppet::Transaction::Event.from_data_hash(event)
+          # in YAML (for reports) we serialize this as an object, but
+          # in PSON it becomes a hash. Depending on where we came from
+          # we might not need to deserialize it.
+          if event.class == Puppet::Transaction::Event
+            event
+          else
+            Puppet::Transaction::Event.from_data_hash(event)
+          end
         end
       end
@@ -194,7 +203,7 @@ module Puppet
           'resource_type' => @resource_type,
           'containment_path' => @containment_path,
           'evaluation_time' => @evaluation_time,
-          'tags' => @tags,
+          'tags' => @tags.to_a,
           'time' => @time.iso8601(9),
           'failed' => @failed,
           'changed' => @changed,

data/lib/puppet/resource/type.rb CHANGED

@@ -174,12 +174,9 @@ class Puppet::Resource::Type
     if code
       if @match # Only bother setting up the ephemeral scope if there are match variables to add into it
-        begin
-          elevel = scope.ephemeral_level
+        scope.with_guarded_scope do
           scope.ephemeral_from(@match, file, line)
           code.safeevaluate(scope)
-        ensure
-          scope.unset_ephemeral_var(elevel)
         end
       else
         code.safeevaluate(scope)
@@ -346,6 +343,9 @@ class Puppet::Resource::Type
   end
   # Validate and set any arguments passed by the resource as variables in the scope.
+  #
+  # This method is known to only be used on the server/compile side.
+  #
   # @param resource [Puppet::Parser::Resource] the resource
   # @param scope [Puppet::Parser::Scope] the scope
   #
@@ -360,9 +360,6 @@ class Puppet::Resource::Type
     resource.add_parameters_from_consume
     inject_external_parameters(resource, scope)
-    resource_hash = {}
-    resource.each { |k, v| resource_hash[k.to_s] = v.value unless k == :name || k == :title }
     if @type == :hostclass
       scope[TITLE] = resource.title.to_s.downcase
       scope[NAME] =  resource.name.to_s.downcase
@@ -370,12 +367,21 @@ class Puppet::Resource::Type
       scope[TITLE] = resource.title
       scope[NAME] =  resource.name
     end
     scope.class_set(self.name,scope) if hostclass? || node?
-    assign_defaults(resource, scope, resource_hash)
-    validate_resource_hash(resource, resource_hash)
-    resource_hash.each { |param, value| exceptwrap { scope[param] = value }}
+    param_hash = scope.with_parameter_scope(arguments.keys) do |param_scope|
+      # Assign directly to the parameter scope to avoid scope parameter validation at this point. It
+      # will happen anyway when the values are assigned to the scope after the parameter scoped has
+      # been popped.
+      resource.each { |k, v| param_scope[k.to_s] = v.value unless k == :name || k == :title }
+      assign_defaults(resource, param_scope, scope)
+      param_scope.to_hash
+    end
+    validate_resource_hash(resource, param_hash)
+    # Assign parameter values to current scope
+    param_hash.each { |param, value| exceptwrap { scope[param] = value }}
   end
   # Lookup and inject parameters from external scope
@@ -385,29 +391,30 @@ class Puppet::Resource::Type
     # Only lookup parameters for host classes
     return unless type == :hostclass
     parameters = resource.parameters
-    arguments.each do |param_name, _|
-      name = param_name.to_sym
-      param = parameters[name]
+    arguments.each do |param_name, default|
+      sym_name = param_name.to_sym
+      param = parameters[sym_name]
       next unless param.nil? || param.value.nil?
-      value = lookup_external_default_for(param_name, scope)
-      resource[name] = value unless value.nil?
+      catch(:no_such_key) do
+        bound_value = Puppet::Pops::Lookup.search_and_merge("#{name}::#{param_name}", Puppet::Pops::Lookup::Invocation.new(scope), nil)
+        # Assign bound value but don't let an undef trump a default expression
+        resource[sym_name] = bound_value unless bound_value.nil? && !default.nil?
+      end
     end
   end
   private :inject_external_parameters
-  def assign_defaults(resource, scope, resource_hash)
+  def assign_defaults(resource, param_scope, scope)
     return unless resource.is_a?(Puppet::Parser::Resource)
     parameters = resource.parameters
-    hashed_types = parameter_struct.hashed_elements
     arguments.each do |param_name, default|
       next if default.nil?
       name = param_name.to_sym
       param = parameters[name]
       next unless param.nil? || param.value.nil?
-      value = default.safeevaluate(scope)
+      value = exceptwrap { param_scope.evaluate3x(param_name, default, scope) }
       resource[name] = value
-      resource_hash[param_name] = value
+      param_scope[param_name] = value
     end
   end
   private :assign_defaults
@@ -552,21 +559,4 @@ class Puppet::Resource::Type
     type_factory.struct(members)
   end
   private :create_params_struct
-  # Consult external data bindings for class parameter values which must be
-  # namespaced in the backend.
-  #
-  # Example:
-  #
-  #   class foo($port=0){ ... }
-  #
-  # We make a request to the backend for the key 'foo::port' not 'foo'
-  #
-  def lookup_external_default_for(param, scope)
-    if type == :hostclass
-      catch(:no_such_key) { return Puppet::Pops::Lookup.search_and_merge("#{name}::#{param}", Puppet::Pops::Lookup::Invocation.new(scope), nil) }
-    end
-    nil
-  end
-  private :lookup_external_default_for
 end

data/lib/puppet/settings.rb CHANGED

@@ -1077,7 +1077,7 @@ Generated on #{Time.now}.
   #
   # @api private
   # @todo this code duplicates {Puppet::Util::RunMode#which_dir} as described
-  #   in {http://projects.puppetlabs.com/issues/16637 #16637}
+  #   in {https://projects.puppetlabs.com/issues/16637 #16637}
   def which_configuration_file
     if explicit_config_file? or Puppet.features.root? then
       return main_config_file

data/lib/puppet/settings/config_file.rb CHANGED

@@ -82,7 +82,7 @@ private
   def unique_sections_in(ini, file, allowed_section_names)
     ini.section_lines.collect do |section|
       if !allowed_section_names.empty? && !allowed_section_names.include?(section.name)
-        raise(Puppet::Error, "Illegal section '#{section.name}' in config file #{file} at line #{section.line_number}. The only valid puppet.conf sections are: [#{allowed_section_names.join(", ")}]. Please use the directory environments feature to specify environments. (See http://docs.puppetlabs.com/puppet/latest/reference/environments.html)")
+        raise(Puppet::Error, "Illegal section '#{section.name}' in config file #{file} at line #{section.line_number}. The only valid puppet.conf sections are: [#{allowed_section_names.join(", ")}]. Please use the directory environments feature to specify environments. (See https://docs.puppetlabs.com/puppet/latest/reference/environments.html)")
       end
       section.name
     end.uniq

data/lib/puppet/settings/environment_conf.rb CHANGED

@@ -3,7 +3,7 @@
 class Puppet::Settings::EnvironmentConf
   ENVIRONMENT_CONF_ONLY_SETTINGS = [:modulepath, :manifest, :config_version].freeze
-  VALID_SETTINGS = (ENVIRONMENT_CONF_ONLY_SETTINGS + [:environment_timeout, :environment_data_provider]).freeze
+  VALID_SETTINGS = (ENVIRONMENT_CONF_ONLY_SETTINGS + [:environment_timeout, :environment_data_provider, :static_catalogs]).freeze
   # Given a path to a directory environment, attempts to load and parse an
   # environment.conf in ini format, and return an EnvironmentConf instance.
@@ -39,8 +39,8 @@ class Puppet::Settings::EnvironmentConf
   # Configuration values are exactly those returned by the environment object,
   # without interpolation.  This is a special case for the default configured
   # environment returned by the Puppet::Environments::StaticPrivate loader.
-  def self.static_for(environment, environment_timeout = 0)
-    Static.new(environment, environment_timeout)
+  def self.static_for(environment, environment_timeout = 0, static_catalogs = false)
+    Static.new(environment, environment_timeout, static_catalogs)
   end
   attr_reader :section, :path_to_env, :global_modulepath
@@ -108,6 +108,12 @@ class Puppet::Settings::EnvironmentConf
     end
   end
+  def static_catalogs
+    get_setting(:static_catalogs, Puppet.settings.value(:static_catalogs)) do |value|
+      value
+    end
+  end
   def config_version
     get_setting(:config_version) do |config_version|
       absolute(config_version)
@@ -141,7 +147,7 @@ class Puppet::Settings::EnvironmentConf
   def get_setting(setting_name, default = nil)
     value = raw_setting(setting_name)
-    value ||= default
+    value = default if value.nil?
     yield value
   end
@@ -161,10 +167,12 @@ class Puppet::Settings::EnvironmentConf
   class Static
     attr_reader :environment_timeout
     attr_reader :environment_data_provider
+    attr_reader :static_catalogs
-    def initialize(environment, environment_timeout, environment_data_provider = 'none')
+    def initialize(environment, environment_timeout, static_catalogs, environment_data_provider = 'none')
       @environment = environment
       @environment_timeout = environment_timeout
+      @static_catalogs = static_catalogs
       @environment_data_provider = environment_data_provider
     end

data/lib/puppet/ssl/certificate_factory.rb CHANGED

@@ -62,7 +62,7 @@ module Puppet::SSL::CertificateFactory
   #   extensions to.
   # @param csr [OpenSSL::X509::Request] The CSR associated with the given
   #   certificate, which may specify requested extensions for the given cert.
-  #   See http://tools.ietf.org/html/rfc2985 Section 5.4.2 Extension request
+  #   See https://tools.ietf.org/html/rfc2985 Section 5.4.2 Extension request
   # @param issuer [OpenSSL::X509::Certificate, OpenSSL::X509::Request] An X509 CSR
   #   if this is a self signed certificate, or the X509 certificate of the CA if
   #   this is a CA signed certificate.
@@ -100,7 +100,7 @@ module Puppet::SSL::CertificateFactory
     # something went wrong up there. --daniel 2011-10-11
     defaults = { "nsComment" => "Puppet Ruby/OpenSSL Internal Certificate" }
-    # See http://www.openssl.org/docs/apps/x509v3_config.html
+    # See https://www.openssl.org/docs/apps/x509v3_config.html
     # for information about the special meanings of 'hash', 'keyid', 'issuer'
     override = {
       "subjectKeyIdentifier"   => "hash",
@@ -126,7 +126,7 @@ module Puppet::SSL::CertificateFactory
       # complaint that the issuer keyid can't be fetched, which breaks all
       # sorts of things in our test suite and, e.g., bootstrapping the CA.
       #
-      # http://tools.ietf.org/html/rfc5280#section-4.2.1.1 says that, to be a
+      # https://tools.ietf.org/html/rfc5280#section-4.2.1.1 says that, to be a
       # conforming CA we MAY omit the field if we are self-signed, which I
       # think gives us a pass in the specific case.
       #

data/lib/puppet/ssl/certificate_request.rb CHANGED

@@ -23,7 +23,7 @@ require 'puppet/ssl/certificate_signer'
 #
 # This behavior is dictated by PKCS#9/RFC 2985 section 5.4.2.
 #
-# @see http://tools.ietf.org/html/rfc2985 "RFC 2985 Section 5.4.2 Extension request"
+# @see https://tools.ietf.org/html/rfc2985 "RFC 2985 Section 5.4.2 Extension request"
 #
 class Puppet::SSL::CertificateRequest < Puppet::SSL::Base
   wraps OpenSSL::X509::Request
@@ -193,7 +193,7 @@ DOC
   #
   # The format of CSR attributes is specified in PKCS#10/RFC 2986
   #
-  # @see http://tools.ietf.org/html/rfc2986 "RFC 2986 Certification Request Syntax Specification"
+  # @see https://tools.ietf.org/html/rfc2986 "RFC 2986 Certification Request Syntax Specification"
   #
   # @api public
   #
@@ -289,8 +289,8 @@ DOC
   # that in turn holds the elements. This is why we have to unpack an array
   # every time we unpack a Set/Seq.
   #
-  # @see http://tools.ietf.org/html/rfc2985#ref-10 5.4.2 CSR Extension Request structure
-  # @see http://tools.ietf.org/html/rfc5280 4.1 Certificate Extension structure
+  # @see https://tools.ietf.org/html/rfc2985#ref-10 5.4.2 CSR Extension Request structure
+  # @see https://tools.ietf.org/html/rfc5280 4.1 Certificate Extension structure
   #
   # @api private
   #

data/lib/puppet/ssl/certificate_signer.rb CHANGED

@@ -1,6 +1,6 @@
 # Take care of signing a certificate in a FIPS 140-2 compliant manner.
 #
-# @see http://projects.puppetlabs.com/issues/17295
+# @see https://projects.puppetlabs.com/issues/17295
 #
 # @api private
 class Puppet::SSL::CertificateSigner

data/lib/puppet/ssl/validator/default_validator.rb CHANGED

@@ -48,7 +48,7 @@ class Puppet::SSL::Validator::DefaultValidator #< class Puppet::SSL::Validator
   # chain being verified.
   #
   # From the [OpenSSL
-  # documentation](http://www.openssl.org/docs/ssl/SSL_CTX_set_verify.html):
+  # documentation](https://www.openssl.org/docs/ssl/SSL_CTX_set_verify.html):
   # The `verify_callback` function is used to control the behaviour when the
   # SSL_VERIFY_PEER flag is set. It must be supplied by the application and
   # receives two arguments: preverify_ok indicates, whether the verification of

data/lib/puppet/test/test_helper.rb CHANGED

@@ -121,7 +121,13 @@ module Puppet::Test
       end
       # The process environment is a shared, persistent resource.
-      $old_env = ENV.to_hash
+      # Can't use Puppet.features.microsoft_windows? as it may be mocked out in a test.  This can cause test recurring test failures
+      if (!!File::ALT_SEPARATOR)
+        mode = :windows
+      else
+        mode = :posix
+      end
+      $old_env = Puppet::Util.get_environment(mode)
       # So is the load_path
       $old_load_path = $LOAD_PATH.dup
@@ -171,13 +177,19 @@ module Puppet::Test
       end
       $saved_indirection_state = nil
+      # Can't use Puppet.features.microsoft_windows? as it may be mocked out in a test.  This can cause test recurring test failures
+      if (!!File::ALT_SEPARATOR)
+        mode = :windows
+      else
+        mode = :posix
+      end
       # Restore the global process environment.  Can't just assign because this
       # is a magic variable, sadly, and doesn't do that™.  It is sufficiently
       # faster to use the compare-then-set model to avoid excessive work that it
       # justifies the complexity.  --daniel 2012-03-15
-      unless ENV.to_hash == $old_env
-        ENV.clear
-        $old_env.each {|k, v| ENV[k] = v }
+      unless Puppet::Util.get_environment(mode) == $old_env
+        Puppet::Util.clear_environment(mode)
+        $old_env.each {|k, v| Puppet::Util.set_env(k, v, mode) }
       end
       # Restore the load_path late, to avoid messing with stubs from the test.