RubyGems - puppet - Versions diffs - 5.5.12-x64-mingw32 → 5.5.13-x64-mingw32 - Mend

puppet 5.5.12-x64-mingw32 → 5.5.13-x64-mingw32

Potentially problematic release.

This version of puppet might be problematic. Click here for more details.

Files changed (733) hide show

checksums.yaml +4 -4
data/Gemfile +0 -5
data/Gemfile.lock +11 -11
data/lib/puppet/application/filebucket.rb +4 -0
data/lib/puppet/configurer.rb +9 -3
data/lib/puppet/indirector/request.rb +26 -15
data/lib/puppet/indirector/rest.rb +16 -7
data/lib/puppet/network/http/connection.rb +15 -7
data/lib/puppet/transaction/event_manager.rb +1 -5
data/lib/puppet/type/file/source.rb +0 -1
data/lib/puppet/util/http_proxy.rb +3 -2
data/lib/puppet/version.rb +1 -1
data/locales/puppet.pot +108 -36
data/man/man5/puppet.conf.5 +2 -2
data/man/man8/puppet-agent.8 +1 -1
data/man/man8/puppet-apply.8 +1 -1
data/man/man8/puppet-ca.8 +1 -1
data/man/man8/puppet-catalog.8 +1 -1
data/man/man8/puppet-cert.8 +1 -1
data/man/man8/puppet-certificate.8 +1 -1
data/man/man8/puppet-certificate_request.8 +1 -1
data/man/man8/puppet-certificate_revocation_list.8 +1 -1
data/man/man8/puppet-config.8 +1 -1
data/man/man8/puppet-describe.8 +1 -1
data/man/man8/puppet-device.8 +1 -1
data/man/man8/puppet-doc.8 +1 -1
data/man/man8/puppet-epp.8 +1 -1
data/man/man8/puppet-facts.8 +1 -1
data/man/man8/puppet-filebucket.8 +1 -1
data/man/man8/puppet-generate.8 +1 -1
data/man/man8/puppet-help.8 +1 -1
data/man/man8/puppet-key.8 +1 -1
data/man/man8/puppet-lookup.8 +1 -1
data/man/man8/puppet-man.8 +1 -1
data/man/man8/puppet-master.8 +1 -1
data/man/man8/puppet-module.8 +1 -1
data/man/man8/puppet-node.8 +1 -1
data/man/man8/puppet-parser.8 +1 -1
data/man/man8/puppet-plugin.8 +1 -1
data/man/man8/puppet-report.8 +1 -1
data/man/man8/puppet-resource.8 +1 -1
data/man/man8/puppet-script.8 +1 -1
data/man/man8/puppet-status.8 +1 -1
data/man/man8/puppet.8 +2 -2
data/spec/integration/agent/logging_spec.rb +5 -7
data/spec/integration/application/apply_spec.rb +28 -26
data/spec/integration/application/doc_spec.rb +1 -2
data/spec/integration/application/lookup_spec.rb +5 -5
data/spec/integration/configurer_spec.rb +5 -6
data/spec/integration/defaults_spec.rb +5 -6
data/spec/integration/directory_environments_spec.rb +1 -1
data/spec/integration/faces/ca_spec.rb +2 -3
data/spec/integration/faces/config_spec.rb +3 -4
data/spec/integration/faces/documentation_spec.rb +0 -1
data/spec/integration/faces/plugin_spec.rb +1 -1
data/spec/integration/file_bucket/file_spec.rb +3 -5
data/spec/integration/file_serving/content_spec.rb +0 -1
data/spec/integration/file_serving/fileset_spec.rb +0 -1
data/spec/integration/file_serving/metadata_spec.rb +0 -1
data/spec/integration/file_serving/terminus_helper_spec.rb +0 -1
data/spec/integration/indirector/catalog/compiler_spec.rb +10 -11
data/spec/integration/indirector/direct_file_server_spec.rb +1 -1
data/spec/integration/indirector/facts/facter_spec.rb +5 -5
data/spec/integration/indirector/file_content/file_server_spec.rb +7 -8
data/spec/integration/indirector/file_metadata/file_server_spec.rb +7 -8
data/spec/integration/indirector/node/ldap_spec.rb +2 -3
data/spec/integration/network/authconfig_spec.rb +23 -24
data/spec/integration/network/formats_spec.rb +0 -1
data/spec/integration/network/http/api/indirected_routes_spec.rb +0 -1
data/spec/integration/node/environment_spec.rb +0 -1
data/spec/integration/node/facts_spec.rb +9 -10
data/spec/integration/node_spec.rb +6 -7
data/spec/integration/parser/catalog_spec.rb +4 -2
data/spec/integration/parser/collection_spec.rb +1 -2
data/spec/integration/parser/compiler_spec.rb +6 -6
data/spec/integration/parser/scope_spec.rb +1 -1
data/spec/integration/parser/undef_param_spec.rb +1 -1
data/spec/integration/provider/cron/crontab_spec.rb +8 -10
data/spec/integration/provider/mailalias/aliases_spec.rb +0 -1
data/spec/integration/provider/mount_spec.rb +9 -9
data/spec/integration/provider/service/init_spec.rb +4 -5
data/spec/integration/provider/service/systemd_spec.rb +0 -2
data/spec/integration/provider/service/windows_spec.rb +1 -2
data/spec/integration/provider/ssh_authorized_key_spec.rb +6 -8
data/spec/integration/provider/sshkey_spec.rb +6 -12
data/spec/integration/provider/yumrepo_spec.rb +8 -12
data/spec/integration/reference/providers_spec.rb +0 -1
data/spec/integration/reports_spec.rb +1 -2
data/spec/integration/resource/catalog_spec.rb +14 -17
data/spec/integration/resource/type_collection_spec.rb +4 -5
data/spec/integration/ssl/certificate_authority_spec.rb +0 -1
data/spec/integration/ssl/certificate_request_spec.rb +0 -1
data/spec/integration/ssl/certificate_revocation_list_spec.rb +0 -1
data/spec/integration/ssl/host_spec.rb +0 -1
data/spec/integration/ssl/key_spec.rb +0 -1
data/spec/integration/test/test_helper_spec.rb +1 -2
data/spec/integration/transaction/report_spec.rb +6 -11
data/spec/integration/transaction_spec.rb +18 -19
data/spec/integration/type/exec_spec.rb +0 -1
data/spec/integration/type/file_spec.rb +13 -14
data/spec/integration/type/nagios_spec.rb +3 -5
data/spec/integration/type/package_spec.rb +19 -23
data/spec/integration/type/tidy_spec.rb +1 -2
data/spec/integration/type/user_spec.rb +0 -1
data/spec/integration/type_spec.rb +0 -1
data/spec/integration/util/autoload_spec.rb +1 -2
data/spec/integration/util/rdoc/parser_spec.rb +0 -1
data/spec/integration/util/settings_spec.rb +0 -1
data/spec/integration/util/windows/adsi_spec.rb +3 -5
data/spec/integration/util/windows/principal_spec.rb +0 -1
data/spec/integration/util/windows/process_spec.rb +4 -6
data/spec/integration/util/windows/registry_spec.rb +41 -51
data/spec/integration/util/windows/security_spec.rb +2 -4
data/spec/integration/util/windows/user_spec.rb +18 -20
data/spec/integration/util_spec.rb +4 -7
data/spec/lib/puppet_spec/compiler.rb +1 -1
data/spec/lib/puppet_spec/files.rb +0 -1
data/spec/lib/puppet_spec/module_tool/shared_functions.rb +1 -1
data/spec/lib/puppet_spec/scope.rb +1 -2
data/spec/shared_behaviours/all_parsedfile_providers.rb +1 -1
data/spec/shared_behaviours/file_server_terminus.rb +8 -9
data/spec/shared_behaviours/file_serving.rb +6 -8
data/spec/shared_behaviours/file_serving_model.rb +4 -6
data/spec/shared_behaviours/hiera_indirections.rb +3 -4
data/spec/shared_behaviours/iterative_functions.rb +0 -1
data/spec/shared_behaviours/memory_terminus.rb +2 -2
data/spec/shared_examples/rhel_package_provider.rb +112 -70
data/spec/spec_helper.rb +11 -2
data/spec/unit/agent/disabler_spec.rb +4 -5
data/spec/unit/agent/locker_spec.rb +12 -13
data/spec/unit/agent_spec.rb +80 -85
data/spec/unit/application/agent_spec.rb +88 -93
data/spec/unit/application/apply_spec.rb +78 -79
data/spec/unit/application/cert_spec.rb +42 -49
data/spec/unit/application/certificate_spec.rb +2 -3
data/spec/unit/application/config_spec.rb +0 -1
data/spec/unit/application/describe_spec.rb +6 -7
data/spec/unit/application/device_spec.rb +175 -184
data/spec/unit/application/doc_spec.rb +44 -46
data/spec/unit/application/face_base_spec.rb +61 -62
data/spec/unit/application/facts_spec.rb +3 -4
data/spec/unit/application/filebucket_spec.rb +66 -74
data/spec/unit/application/indirection_base_spec.rb +8 -6
data/spec/unit/application/lookup_spec.rb +26 -26
data/spec/unit/application/master_spec.rb +95 -95
data/spec/unit/application/resource_spec.rb +42 -48
data/spec/unit/application_spec.rb +74 -84
data/spec/unit/capability_spec.rb +9 -6
data/spec/unit/configurer/downloader_spec.rb +20 -21
data/spec/unit/configurer/fact_handler_spec.rb +2 -3
data/spec/unit/configurer/plugin_handler_spec.rb +41 -8
data/spec/unit/configurer_spec.rb +190 -193
data/spec/unit/confine/exists_spec.rb +17 -15
data/spec/unit/confine/false_spec.rb +5 -6
data/spec/unit/confine/feature_spec.rb +7 -5
data/spec/unit/confine/true_spec.rb +5 -6
data/spec/unit/confine/variable_spec.rb +14 -15
data/spec/unit/confine_collection_spec.rb +28 -29
data/spec/unit/confine_spec.rb +13 -14
data/spec/unit/confiner_spec.rb +10 -11
data/spec/unit/context/trusted_information_spec.rb +1 -1
data/spec/unit/daemon_spec.rb +34 -35
data/spec/unit/data_providers/function_data_provider_spec.rb +0 -1
data/spec/unit/data_providers/hiera_data_provider_spec.rb +0 -1
data/spec/unit/datatypes_spec.rb +3 -4
data/spec/unit/defaults_spec.rb +17 -12
data/spec/unit/environments_spec.rb +7 -7
data/spec/unit/etc_spec.rb +30 -32
data/spec/unit/external/pson_spec.rb +0 -1
data/spec/unit/face/ca_spec.rb +0 -1
data/spec/unit/face/catalog_spec.rb +0 -1
data/spec/unit/face/certificate_request_spec.rb +0 -1
data/spec/unit/face/certificate_revocation_list_spec.rb +0 -1
data/spec/unit/face/certificate_spec.rb +7 -10
data/spec/unit/face/config_spec.rb +31 -35
data/spec/unit/face/epp_face_spec.rb +3 -4
data/spec/unit/face/facts_spec.rb +5 -6
data/spec/unit/face/generate_spec.rb +4 -5
data/spec/unit/face/help_spec.rb +7 -8
data/spec/unit/face/key_spec.rb +0 -1
data/spec/unit/face/man_spec.rb +1 -2
data/spec/unit/face/module/build_spec.rb +17 -17
data/spec/unit/face/module/install_spec.rb +3 -5
data/spec/unit/face/module/list_spec.rb +2 -12
data/spec/unit/face/module/search_spec.rb +11 -9
data/spec/unit/face/module/uninstall_spec.rb +4 -8
data/spec/unit/face/node_spec.rb +33 -34
data/spec/unit/face/parser_spec.rb +3 -3
data/spec/unit/face/plugin_spec.rb +36 -9
data/spec/unit/face/status_spec.rb +0 -1
data/spec/unit/file_bucket/dipper_spec.rb +24 -20
data/spec/unit/file_bucket/file_spec.rb +0 -2
data/spec/unit/file_serving/base_spec.rb +16 -17
data/spec/unit/file_serving/configuration/parser_spec.rb +27 -28
data/spec/unit/file_serving/configuration_spec.rb +63 -66
data/spec/unit/file_serving/content_spec.rb +10 -11
data/spec/unit/file_serving/fileset_spec.rb +63 -58
data/spec/unit/file_serving/http_metadata_spec.rb +8 -7
data/spec/unit/file_serving/metadata_spec.rb +36 -36
data/spec/unit/file_serving/mount/file_spec.rb +31 -32
data/spec/unit/file_serving/mount/locales_spec.rb +23 -24
data/spec/unit/file_serving/mount/modules_spec.rb +14 -15
data/spec/unit/file_serving/mount/pluginfacts_spec.rb +23 -24
data/spec/unit/file_serving/mount/plugins_spec.rb +23 -24
data/spec/unit/file_serving/mount/tasks_spec.rb +14 -15
data/spec/unit/file_serving/mount_spec.rb +0 -1
data/spec/unit/file_serving/terminus_helper_spec.rb +37 -42
data/spec/unit/file_serving/terminus_selector_spec.rb +12 -13
data/spec/unit/file_system/uniquefile_spec.rb +4 -4
data/spec/unit/file_system_spec.rb +2 -2
data/spec/unit/forge/errors_spec.rb +1 -1
data/spec/unit/forge/forge_spec.rb +13 -14
data/spec/unit/forge/module_release_spec.rb +18 -18
data/spec/unit/forge/repository_spec.rb +29 -30
data/spec/unit/forge_spec.rb +15 -11
data/spec/unit/functions/binary_file_spec.rb +3 -3
data/spec/unit/functions/contain_spec.rb +0 -2
data/spec/unit/functions/defined_spec.rb +0 -1
data/spec/unit/functions/epp_spec.rb +2 -2
data/spec/unit/functions/find_file_spec.rb +7 -7
data/spec/unit/functions/include_spec.rb +0 -4
data/spec/unit/functions/lookup_fixture_spec.rb +0 -1
data/spec/unit/functions/lookup_spec.rb +1 -2
data/spec/unit/functions/module_directory_spec.rb +12 -12
data/spec/unit/functions/require_spec.rb +0 -3
data/spec/unit/functions/shared.rb +5 -8
data/spec/unit/functions/versioncmp_spec.rb +1 -2
data/spec/unit/functions4_spec.rb +7 -8
data/spec/unit/gettext/config_spec.rb +4 -4
data/spec/unit/gettext/module_loading_spec.rb +7 -7
data/spec/unit/graph/rb_tree_map_spec.rb +0 -2
data/spec/unit/graph/relationship_graph_spec.rb +1 -2
data/spec/unit/graph/simple_graph_spec.rb +8 -9
data/spec/unit/hiera_puppet_spec.rb +20 -20
data/spec/unit/indirector/catalog/compiler_spec.rb +147 -149
data/spec/unit/indirector/catalog/json_spec.rb +1 -2
data/spec/unit/indirector/catalog/msgpack_spec.rb +0 -1
data/spec/unit/indirector/catalog/rest_spec.rb +0 -1
data/spec/unit/indirector/catalog/store_configs_spec.rb +0 -1
data/spec/unit/indirector/catalog/yaml_spec.rb +0 -1
data/spec/unit/indirector/certificate/ca_spec.rb +2 -4
data/spec/unit/indirector/certificate/disabled_ca_spec.rb +1 -2
data/spec/unit/indirector/certificate/file_spec.rb +2 -3
data/spec/unit/indirector/certificate/rest_spec.rb +8 -10
data/spec/unit/indirector/certificate_request/ca_spec.rb +0 -1
data/spec/unit/indirector/certificate_request/disabled_ca_spec.rb +1 -2
data/spec/unit/indirector/certificate_request/file_spec.rb +0 -1
data/spec/unit/indirector/certificate_request/rest_spec.rb +0 -1
data/spec/unit/indirector/certificate_revocation_list/ca_spec.rb +1 -2
data/spec/unit/indirector/certificate_revocation_list/disabled_ca_spec.rb +1 -2
data/spec/unit/indirector/certificate_revocation_list/file_spec.rb +1 -2
data/spec/unit/indirector/certificate_revocation_list/rest_spec.rb +2 -3
data/spec/unit/indirector/certificate_status/file_spec.rb +2 -3
data/spec/unit/indirector/certificate_status/rest_spec.rb +0 -1
data/spec/unit/indirector/code_spec.rb +5 -6
data/spec/unit/indirector/direct_file_server_spec.rb +33 -27
data/spec/unit/indirector/envelope_spec.rb +1 -2
data/spec/unit/indirector/exec_spec.rb +15 -14
data/spec/unit/indirector/face_spec.rb +9 -9
data/spec/unit/indirector/facts/facter_spec.rb +37 -43
data/spec/unit/indirector/facts/network_device_spec.rb +8 -9
data/spec/unit/indirector/facts/rest_spec.rb +7 -8
data/spec/unit/indirector/facts/store_configs_spec.rb +0 -1
data/spec/unit/indirector/facts/yaml_spec.rb +2 -4
data/spec/unit/indirector/file_bucket_file/file_spec.rb +3 -4
data/spec/unit/indirector/file_bucket_file/rest_spec.rb +0 -1
data/spec/unit/indirector/file_bucket_file/selector_spec.rb +4 -5
data/spec/unit/indirector/file_content/file_server_spec.rb +0 -1
data/spec/unit/indirector/file_content/file_spec.rb +0 -1
data/spec/unit/indirector/file_content/rest_spec.rb +0 -1
data/spec/unit/indirector/file_content/selector_spec.rb +0 -1
data/spec/unit/indirector/file_metadata/file_server_spec.rb +0 -1
data/spec/unit/indirector/file_metadata/file_spec.rb +12 -13
data/spec/unit/indirector/file_metadata/rest_spec.rb +0 -1
data/spec/unit/indirector/file_metadata/selector_spec.rb +0 -1
data/spec/unit/indirector/file_server_spec.rb +99 -93
data/spec/unit/indirector/indirection_spec.rb +242 -226
data/spec/unit/indirector/json_spec.rb +7 -9
data/spec/unit/indirector/key/ca_spec.rb +2 -3
data/spec/unit/indirector/key/disabled_ca_spec.rb +1 -2
data/spec/unit/indirector/key/file_spec.rb +25 -26
data/spec/unit/indirector/ldap_spec.rb +34 -41
data/spec/unit/indirector/memory_spec.rb +6 -7
data/spec/unit/indirector/msgpack_spec.rb +7 -9
data/spec/unit/indirector/node/exec_spec.rb +6 -6
data/spec/unit/indirector/node/ldap_spec.rb +74 -76
data/spec/unit/indirector/node/memory_spec.rb +2 -4
data/spec/unit/indirector/node/msgpack_spec.rb +0 -1
data/spec/unit/indirector/node/plain_spec.rb +2 -4
data/spec/unit/indirector/node/rest_spec.rb +0 -1
data/spec/unit/indirector/node/store_configs_spec.rb +0 -1
data/spec/unit/indirector/node/write_only_yaml_spec.rb +1 -2
data/spec/unit/indirector/node/yaml_spec.rb +0 -1
data/spec/unit/indirector/none_spec.rb +5 -5
data/spec/unit/indirector/plain_spec.rb +7 -8
data/spec/unit/indirector/report/msgpack_spec.rb +0 -1
data/spec/unit/indirector/report/processor_spec.rb +21 -22
data/spec/unit/indirector/report/rest_spec.rb +11 -12
data/spec/unit/indirector/report/yaml_spec.rb +0 -1
data/spec/unit/indirector/request_spec.rb +11 -12
data/spec/unit/indirector/resource/ral_spec.rb +47 -54
data/spec/unit/indirector/resource/store_configs_spec.rb +0 -1
data/spec/unit/indirector/rest_spec.rb +113 -110
data/spec/unit/indirector/ssl_file_spec.rb +74 -77
data/spec/unit/indirector/status/local_spec.rb +0 -1
data/spec/unit/indirector/status/rest_spec.rb +0 -1
data/spec/unit/indirector/store_configs_spec.rb +0 -1
data/spec/unit/indirector/terminus_spec.rb +31 -29
data/spec/unit/indirector/yaml_spec.rb +33 -32
data/spec/unit/indirector_spec.rb +1 -2
data/spec/unit/info_service_spec.rb +3 -1
data/spec/unit/interface/action_builder_spec.rb +0 -1
data/spec/unit/interface/action_manager_spec.rb +0 -1
data/spec/unit/interface/action_spec.rb +2 -3
data/spec/unit/interface/documentation_spec.rb +0 -1
data/spec/unit/interface/face_collection_spec.rb +19 -12
data/spec/unit/interface_spec.rb +3 -3
data/spec/unit/man_spec.rb +3 -4
data/spec/unit/module_spec.rb +46 -51
data/spec/unit/module_tool/applications/builder_spec.rb +5 -5
data/spec/unit/module_tool/applications/installer_spec.rb +10 -11
data/spec/unit/module_tool/applications/searcher_spec.rb +3 -3
data/spec/unit/module_tool/applications/uninstaller_spec.rb +1 -2
data/spec/unit/module_tool/applications/unpacker_spec.rb +13 -13
data/spec/unit/module_tool/applications/upgrader_spec.rb +5 -5
data/spec/unit/module_tool/install_directory_spec.rb +8 -8
data/spec/unit/module_tool/installed_modules_spec.rb +3 -3
data/spec/unit/module_tool/tar/gnu_spec.rb +6 -6
data/spec/unit/module_tool/tar/mini_spec.rb +12 -12
data/spec/unit/module_tool/tar_spec.rb +12 -13
data/spec/unit/module_tool_spec.rb +7 -12
data/spec/unit/network/auth_config_parser_spec.rb +11 -13
data/spec/unit/network/authconfig_spec.rb +17 -18
data/spec/unit/network/authorization_spec.rb +4 -5
data/spec/unit/network/authstore_spec.rb +0 -1
data/spec/unit/network/format_handler_spec.rb +0 -1
data/spec/unit/network/format_spec.rb +9 -10
data/spec/unit/network/format_support_spec.rb +28 -29
data/spec/unit/network/formats_spec.rb +4 -5
data/spec/unit/network/http/api/ca/v1_spec.rb +1 -1
data/spec/unit/network/http/api/indirected_routes_spec.rb +22 -29
data/spec/unit/network/http/api/master/v3/authorization_spec.rb +2 -2
data/spec/unit/network/http/api/master/v3/environment_spec.rb +1 -1
data/spec/unit/network/http/api/master/v3/environments_spec.rb +6 -7
data/spec/unit/network/http/api_spec.rb +1 -3
data/spec/unit/network/http/compression_spec.rb +21 -22
data/spec/unit/network/http/connection_spec.rb +39 -36
data/spec/unit/network/http/factory_spec.rb +5 -6
data/spec/unit/network/http/handler_spec.rb +9 -18
data/spec/unit/network/http/nocache_pool_spec.rb +6 -7
data/spec/unit/network/http/pool_spec.rb +28 -29
data/spec/unit/network/http/rack/rest_spec.rb +24 -27
data/spec/unit/network/http/rack_spec.rb +5 -6
data/spec/unit/network/http/request_spec.rb +0 -2
data/spec/unit/network/http/response_spec.rb +11 -13
data/spec/unit/network/http/route_spec.rb +0 -1
data/spec/unit/network/http/session_spec.rb +1 -2
data/spec/unit/network/http/site_spec.rb +0 -1
data/spec/unit/network/http/webrick/rest_spec.rb +40 -41
data/spec/unit/network/http/webrick_spec.rb +49 -52
data/spec/unit/network/http_pool_spec.rb +18 -9
data/spec/unit/network/http_spec.rb +0 -1
data/spec/unit/network/resolver_spec.rb +16 -17
data/spec/unit/network/rights_spec.rb +52 -53
data/spec/unit/network/server_spec.rb +12 -13
data/spec/unit/node/environment_spec.rb +16 -14
data/spec/unit/node/facts_spec.rb +5 -7
data/spec/unit/node_spec.rb +4 -10
data/spec/unit/other/selinux_spec.rb +2 -3
data/spec/unit/parameter/boolean_spec.rb +1 -2
data/spec/unit/parameter/package_options_spec.rb +1 -2
data/spec/unit/parameter/path_spec.rb +0 -1
data/spec/unit/parameter/value_collection_spec.rb +0 -1
data/spec/unit/parameter/value_spec.rb +0 -1
data/spec/unit/parameter_spec.rb +9 -9
data/spec/unit/parser/ast/block_expression_spec.rb +6 -8
data/spec/unit/parser/ast/leaf_spec.rb +20 -21
data/spec/unit/parser/compiler_spec.rb +84 -96
data/spec/unit/parser/environment_compiler_spec.rb +11 -9
data/spec/unit/parser/files_spec.rb +0 -1
data/spec/unit/parser/functions/create_resources_spec.rb +1 -1
data/spec/unit/parser/functions/digest_spec.rb +0 -1
data/spec/unit/parser/functions/fail_spec.rb +1 -2
data/spec/unit/parser/functions/file_spec.rb +13 -14
data/spec/unit/parser/functions/fqdn_rand_spec.rb +5 -6
data/spec/unit/parser/functions/generate_spec.rb +7 -8
data/spec/unit/parser/functions/inline_template_spec.rb +0 -1
data/spec/unit/parser/functions/regsubst_spec.rb +0 -1
data/spec/unit/parser/functions/scanf_spec.rb +0 -1
data/spec/unit/parser/functions/shellquote_spec.rb +0 -1
data/spec/unit/parser/functions/split_spec.rb +0 -1
data/spec/unit/parser/functions/sprintf_spec.rb +0 -1
data/spec/unit/parser/functions/tag_spec.rb +1 -2
data/spec/unit/parser/functions/tagged_spec.rb +2 -3
data/spec/unit/parser/functions/template_spec.rb +13 -13
data/spec/unit/parser/functions/versioncmp_spec.rb +1 -2
data/spec/unit/parser/functions_spec.rb +3 -4
data/spec/unit/parser/relationship_spec.rb +0 -1
data/spec/unit/parser/resource_spec.rb +42 -42
data/spec/unit/parser/scope_spec.rb +39 -35
data/spec/unit/parser/templatewrapper_spec.rb +11 -12
data/spec/unit/parser/type_loader_spec.rb +17 -19
data/spec/unit/pops/adaptable_spec.rb +0 -1
data/spec/unit/pops/benchmark_spec.rb +0 -1
data/spec/unit/pops/evaluator/access_ops_spec.rb +0 -1
data/spec/unit/pops/evaluator/arithmetic_ops_spec.rb +0 -1
data/spec/unit/pops/evaluator/basic_expressions_spec.rb +0 -1
data/spec/unit/pops/evaluator/collections_ops_spec.rb +0 -1
data/spec/unit/pops/evaluator/comparison_ops_spec.rb +0 -1
data/spec/unit/pops/evaluator/conditionals_spec.rb +0 -1
data/spec/unit/pops/evaluator/evaluating_parser_spec.rb +6 -6
data/spec/unit/pops/evaluator/logical_ops_spec.rb +0 -1
data/spec/unit/pops/evaluator/runtime3_converter_spec.rb +0 -1
data/spec/unit/pops/evaluator/string_interpolation_spec.rb +0 -1
data/spec/unit/pops/evaluator/variables_spec.rb +0 -1
data/spec/unit/pops/factory_spec.rb +3 -4
data/spec/unit/pops/issues_spec.rb +19 -20
data/spec/unit/pops/loaders/loader_spec.rb +8 -4
data/spec/unit/pops/loaders/loaders_spec.rb +30 -27
data/spec/unit/pops/lookup/context_spec.rb +0 -1
data/spec/unit/pops/lookup/interpolation_spec.rb +2 -3
data/spec/unit/pops/merge_strategy_spec.rb +0 -1
data/spec/unit/pops/migration_spec.rb +3 -5
data/spec/unit/pops/model/model_spec.rb +0 -1
data/spec/unit/pops/model/pn_transformer_spec.rb +0 -1
data/spec/unit/pops/parser/locator_spec.rb +3 -6
data/spec/unit/pops/parser/parse_application_spec.rb +0 -1
data/spec/unit/pops/parser/parse_basic_expressions_spec.rb +0 -1
data/spec/unit/pops/parser/parse_calls_spec.rb +0 -1
data/spec/unit/pops/parser/parse_capabilities_spec.rb +0 -1
data/spec/unit/pops/parser/parse_conditionals_spec.rb +0 -1
data/spec/unit/pops/parser/parse_containers_spec.rb +0 -1
data/spec/unit/pops/parser/parse_plan_spec.rb +0 -1
data/spec/unit/pops/parser/parse_resource_spec.rb +0 -1
data/spec/unit/pops/parser/parse_site_spec.rb +0 -1
data/spec/unit/pops/parser/pn_parser_spec.rb +0 -1
data/spec/unit/pops/pn_spec.rb +0 -1
data/spec/unit/pops/resource/resource_type_impl_spec.rb +0 -1
data/spec/unit/pops/serialization/serialization_spec.rb +1 -1
data/spec/unit/pops/serialization/to_from_hr_spec.rb +1 -1
data/spec/unit/pops/types/recursion_guard_spec.rb +10 -10
data/spec/unit/pops/types/ruby_generator_spec.rb +2 -2
data/spec/unit/pops/types/type_asserter_spec.rb +2 -2
data/spec/unit/pops/types/type_calculator_spec.rb +36 -36
data/spec/unit/pops/types/type_parser_spec.rb +13 -13
data/spec/unit/pops/validator/validator_spec.rb +1 -2
data/spec/unit/pops/visitor_spec.rb +0 -1
data/spec/unit/property/boolean_spec.rb +1 -1
data/spec/unit/property/ensure_spec.rb +0 -1
data/spec/unit/property/keyvalue_spec.rb +32 -34
data/spec/unit/property/list_spec.rb +26 -27
data/spec/unit/property/ordered_list_spec.rb +10 -14
data/spec/unit/property_spec.rb +42 -43
data/spec/unit/provider/aix_object_spec.rb +47 -45
data/spec/unit/provider/augeas/augeas_spec.rb +192 -192
data/spec/unit/provider/cisco_spec.rb +1 -2
data/spec/unit/provider/command_spec.rb +9 -9
data/spec/unit/provider/cron/crontab_spec.rb +10 -11
data/spec/unit/provider/cron/parsed_spec.rb +22 -24
data/spec/unit/provider/exec/posix_spec.rb +6 -7
data/spec/unit/provider/exec/shell_spec.rb +0 -1
data/spec/unit/provider/exec/windows_spec.rb +2 -4
data/spec/unit/provider/exec_spec.rb +0 -1
data/spec/unit/provider/file/posix_spec.rb +22 -24
data/spec/unit/provider/file/windows_spec.rb +15 -17
data/spec/unit/provider/group/aix_spec.rb +3 -2
data/spec/unit/provider/group/groupadd_spec.rb +30 -26
data/spec/unit/provider/group/ldap_spec.rb +18 -18
data/spec/unit/provider/group/pw_spec.rb +11 -11
data/spec/unit/provider/group/windows_adsi_spec.rb +54 -54
data/spec/unit/provider/host/parsed_spec.rb +6 -6
data/spec/unit/provider/interface/cisco_spec.rb +20 -24
data/spec/unit/provider/ldap_spec.rb +61 -62
data/spec/unit/provider/macauthorization_spec.rb +26 -47
data/spec/unit/provider/mcx/mcxcontent_spec.rb +45 -47
data/spec/unit/provider/mount/parsed_spec.rb +18 -24
data/spec/unit/provider/mount_spec.rb +57 -66
data/spec/unit/provider/naginator_spec.rb +13 -14
data/spec/unit/provider/nameservice/directoryservice_spec.rb +35 -36
data/spec/unit/provider/nameservice_spec.rb +38 -40
data/spec/unit/provider/network_device_spec.rb +28 -28
data/spec/unit/provider/package/aix_spec.rb +15 -15
data/spec/unit/provider/package/appdmg_spec.rb +13 -13
data/spec/unit/provider/package/apt_spec.rb +44 -27
data/spec/unit/provider/package/aptitude_spec.rb +6 -7
data/spec/unit/provider/package/aptrpm_spec.rb +7 -12
data/spec/unit/provider/package/base_spec.rb +4 -4
data/spec/unit/provider/package/dnf_spec.rb +14 -16
data/spec/unit/provider/package/dpkg_spec.rb +52 -52
data/spec/unit/provider/package/freebsd_spec.rb +11 -11
data/spec/unit/provider/package/gem_spec.rb +51 -43
data/spec/unit/provider/package/hpux_spec.rb +8 -8
data/spec/unit/provider/package/macports_spec.rb +46 -42
data/spec/unit/provider/package/nim_spec.rb +30 -39
data/spec/unit/provider/package/openbsd_spec.rb +36 -39
data/spec/unit/provider/package/opkg_spec.rb +23 -26
data/spec/unit/provider/package/pacman_spec.rb +97 -118
data/spec/unit/provider/package/pip_spec.rb +69 -71
data/spec/unit/provider/package/pkg_spec.rb +109 -109
data/spec/unit/provider/package/pkgdmg_spec.rb +65 -63
data/spec/unit/provider/package/pkgin_spec.rb +10 -8
data/spec/unit/provider/package/pkgng_spec.rb +17 -18
data/spec/unit/provider/package/pkgutil_spec.rb +45 -49
data/spec/unit/provider/package/portage_spec.rb +70 -74
data/spec/unit/provider/package/puppet_gem_spec.rb +28 -8
data/spec/unit/provider/package/rpm_spec.rb +53 -64
data/spec/unit/provider/package/sun_spec.rb +16 -18
data/spec/unit/provider/package/tdnf_spec.rb +2 -2
data/spec/unit/provider/package/up2date_spec.rb +2 -4
data/spec/unit/provider/package/urpmi_spec.rb +15 -17
data/spec/unit/provider/package/windows/exe_package_spec.rb +12 -15
data/spec/unit/provider/package/windows/msi_package_spec.rb +19 -22
data/spec/unit/provider/package/windows/package_spec.rb +37 -42
data/spec/unit/provider/package/windows_spec.rb +36 -32
data/spec/unit/provider/package/yum_spec.rb +4 -4
data/spec/unit/provider/package/zypper_spec.rb +87 -87
data/spec/unit/provider/parsedfile_spec.rb +44 -45
data/spec/unit/provider/scheduled_task/win32_taskscheduler_spec.rb +120 -130
data/spec/unit/provider/selboolean_spec.rb +9 -11
data/spec/unit/provider/selmodule_spec.rb +20 -22
data/spec/unit/provider/service/base_spec.rb +4 -5
data/spec/unit/provider/service/bsd_spec.rb +27 -29
data/spec/unit/provider/service/daemontools_spec.rb +35 -35
data/spec/unit/provider/service/debian_spec.rb +37 -37
data/spec/unit/provider/service/freebsd_spec.rb +18 -18
data/spec/unit/provider/service/gentoo_spec.rb +50 -56
data/spec/unit/provider/service/init_spec.rb +55 -55
data/spec/unit/provider/service/launchd_spec.rb +138 -116
data/spec/unit/provider/service/openbsd_spec.rb +50 -50
data/spec/unit/provider/service/openrc_spec.rb +43 -46
data/spec/unit/provider/service/openwrt_spec.rb +26 -32
data/spec/unit/provider/service/rcng_spec.rb +14 -14
data/spec/unit/provider/service/redhat_spec.rb +45 -43
data/spec/unit/provider/service/runit_spec.rb +29 -27
data/spec/unit/provider/service/smf_spec.rb +74 -66
data/spec/unit/provider/service/src_spec.rb +46 -47
data/spec/unit/provider/service/systemd_spec.rb +93 -98
data/spec/unit/provider/service/upstart_spec.rb +74 -72
data/spec/unit/provider/service/windows_spec.rb +33 -41
data/spec/unit/provider/ssh_authorized_key/parsed_spec.rb +54 -68
data/spec/unit/provider/sshkey/parsed_spec.rb +7 -8
data/spec/unit/provider/user/aix_spec.rb +31 -31
data/spec/unit/provider/user/directoryservice_spec.rb +109 -114
data/spec/unit/provider/user/hpux_spec.rb +15 -15
data/spec/unit/provider/user/ldap_spec.rb +57 -57
data/spec/unit/provider/user/openbsd_spec.rb +10 -12
data/spec/unit/provider/user/pw_spec.rb +37 -35
data/spec/unit/provider/user/user_role_add_spec.rb +93 -93
data/spec/unit/provider/user/useradd_spec.rb +93 -92
data/spec/unit/provider/user/windows_adsi_spec.rb +59 -60
data/spec/unit/provider/vlan/cisco_spec.rb +10 -12
data/spec/unit/provider/yumrepo/inifile_spec.rb +75 -80
data/spec/unit/provider/zfs/zfs_spec.rb +26 -21
data/spec/unit/provider/zone/solaris_spec.rb +56 -42
data/spec/unit/provider/zpool/zpool_spec.rb +19 -20
data/spec/unit/provider_spec.rb +29 -29
data/spec/unit/puppet_pal_2pec.rb +4 -5
data/spec/unit/puppet_pal_spec.rb +0 -1
data/spec/unit/puppet_spec.rb +7 -8
data/spec/unit/relationship_spec.rb +0 -1
data/spec/unit/reports/http_spec.rb +21 -23
data/spec/unit/reports/store_spec.rb +3 -4
data/spec/unit/reports_spec.rb +12 -14
data/spec/unit/resource/capability_finder_spec.rb +18 -16
data/spec/unit/resource/catalog_spec.rb +72 -68
data/spec/unit/resource/status_spec.rb +6 -8
data/spec/unit/resource/type_collection_spec.rb +17 -18
data/spec/unit/resource/type_spec.rb +34 -35
data/spec/unit/resource_spec.rb +36 -32
data/spec/unit/scheduler/job_spec.rb +0 -1
data/spec/unit/scheduler/scheduler_spec.rb +0 -1
data/spec/unit/scheduler/splay_job_spec.rb +1 -2
data/spec/unit/settings/array_setting_spec.rb +1 -1
data/spec/unit/settings/autosign_setting_spec.rb +9 -9
data/spec/unit/settings/certificate_revocation_setting_spec.rb +1 -1
data/spec/unit/settings/config_file_spec.rb +0 -1
data/spec/unit/settings/directory_setting_spec.rb +2 -7
data/spec/unit/settings/duration_setting_spec.rb +1 -2
data/spec/unit/settings/enum_setting_spec.rb +1 -1
data/spec/unit/settings/environment_conf_spec.rb +4 -6
data/spec/unit/settings/file_setting_spec.rb +44 -46
data/spec/unit/settings/path_setting_spec.rb +1 -2
data/spec/unit/settings/priority_setting_spec.rb +1 -2
data/spec/unit/settings/string_setting_spec.rb +14 -15
data/spec/unit/settings/terminus_setting_spec.rb +1 -2
data/spec/unit/settings/value_translator_spec.rb +0 -1
data/spec/unit/settings_spec.rb +226 -233
data/spec/unit/ssl/base_spec.rb +14 -15
data/spec/unit/ssl/certificate_authority/autosign_command_spec.rb +6 -7
data/spec/unit/ssl/certificate_authority/interface_spec.rb +116 -113
data/spec/unit/ssl/certificate_authority_spec.rb +258 -268
data/spec/unit/ssl/certificate_factory_spec.rb +3 -5
data/spec/unit/ssl/certificate_request_attributes_spec.rb +2 -3
data/spec/unit/ssl/certificate_request_spec.rb +66 -67
data/spec/unit/ssl/certificate_revocation_list_spec.rb +3 -4
data/spec/unit/ssl/certificate_spec.rb +23 -25
data/spec/unit/ssl/configuration_spec.rb +1 -4
data/spec/unit/ssl/digest_spec.rb +0 -1
data/spec/unit/ssl/host_spec.rb +217 -188
data/spec/unit/ssl/inventory_spec.rb +25 -21
data/spec/unit/ssl/key_spec.rb +30 -31
data/spec/unit/ssl/validator_spec.rb +40 -40
data/spec/unit/task_spec.rb +6 -7
data/spec/unit/transaction/additional_resource_generator_spec.rb +6 -5
data/spec/unit/transaction/event_manager_spec.rb +88 -88
data/spec/unit/transaction/event_spec.rb +16 -15
data/spec/unit/transaction/persistence_spec.rb +16 -17
data/spec/unit/transaction/report_spec.rb +11 -12
data/spec/unit/transaction/resource_harness_spec.rb +28 -33
data/spec/unit/transaction_spec.rb +98 -100
data/spec/unit/type/augeas_spec.rb +11 -10
data/spec/unit/type/component_spec.rb +0 -1
data/spec/unit/type/computer_spec.rb +7 -10
data/spec/unit/type/cron_spec.rb +3 -7
data/spec/unit/type/exec_spec.rb +60 -56
data/spec/unit/type/file/checksum_spec.rb +9 -10
data/spec/unit/type/file/checksum_value_spec.rb +31 -32
data/spec/unit/type/file/content_spec.rb +58 -61
data/spec/unit/type/file/ctime_spec.rb +0 -1
data/spec/unit/type/file/ensure_spec.rb +12 -13
data/spec/unit/type/file/group_spec.rb +5 -7
data/spec/unit/type/file/mode_spec.rb +4 -6
data/spec/unit/type/file/mtime_spec.rb +0 -1
data/spec/unit/type/file/owner_spec.rb +6 -8
data/spec/unit/type/file/selinux_spec.rb +17 -19
data/spec/unit/type/file/source_spec.rb +104 -101
data/spec/unit/type/file/type_spec.rb +0 -1
data/spec/unit/type/file_spec.rb +195 -185
data/spec/unit/type/filebucket_spec.rb +4 -5
data/spec/unit/type/group_spec.rb +6 -8
data/spec/unit/type/host_spec.rb +2 -3
data/spec/unit/type/interface_spec.rb +2 -3
data/spec/unit/type/k5login_spec.rb +3 -4
data/spec/unit/type/macauthorization_spec.rb +6 -8
data/spec/unit/type/mailalias_spec.rb +2 -3
data/spec/unit/type/maillist_spec.rb +6 -9
data/spec/unit/type/mcx_spec.rb +4 -8
data/spec/unit/type/mount_spec.rb +26 -38
data/spec/unit/type/nagios_spec.rb +0 -1
data/spec/unit/type/noop_metaparam_spec.rb +1 -2
data/spec/unit/type/package/package_settings_spec.rb +44 -23
data/spec/unit/type/package_spec.rb +53 -54
data/spec/unit/type/resources_spec.rb +86 -88
data/spec/unit/type/schedule_spec.rb +24 -26
data/spec/unit/type/scheduled_task_spec.rb +1 -2
data/spec/unit/type/selboolean_spec.rb +5 -6
data/spec/unit/type/selmodule_spec.rb +0 -1
data/spec/unit/type/service_spec.rb +47 -47
data/spec/unit/type/ssh_authorized_key_spec.rb +5 -35
data/spec/unit/type/sshkey_spec.rb +0 -2
data/spec/unit/type/stage_spec.rb +0 -1
data/spec/unit/type/tidy_spec.rb +61 -62
data/spec/unit/type/user_spec.rb +41 -27
data/spec/unit/type/vlan_spec.rb +2 -4
data/spec/unit/type/whit_spec.rb +0 -1
data/spec/unit/type/zfs_spec.rb +6 -7
data/spec/unit/type/zone_spec.rb +14 -4
data/spec/unit/type/zpool_spec.rb +4 -5
data/spec/unit/type_spec.rb +54 -53
data/spec/unit/util/at_fork_spec.rb +18 -19
data/spec/unit/util/autoload_spec.rb +53 -54
data/spec/unit/util/backups_spec.rb +34 -35
data/spec/unit/util/character_encoding_spec.rb +8 -8
data/spec/unit/util/checksums_spec.rb +38 -39
data/spec/unit/util/colors_spec.rb +1 -2
data/spec/unit/util/command_line_spec.rb +24 -25
data/spec/unit/util/constant_inflector_spec.rb +0 -1
data/spec/unit/util/diff_spec.rb +7 -8
data/spec/unit/util/errors_spec.rb +0 -1
data/spec/unit/util/execution_spec.rb +187 -162
data/spec/unit/util/execution_stub_spec.rb +0 -1
data/spec/unit/util/feature_spec.rb +13 -13
data/spec/unit/util/filetype_spec.rb +49 -49
data/spec/unit/util/http_proxy_spec.rb +12 -12
data/spec/unit/util/inifile_spec.rb +26 -31
data/spec/unit/util/json_lockfile_spec.rb +3 -5
data/spec/unit/util/ldap/connection_spec.rb +26 -25
data/spec/unit/util/ldap/generator_spec.rb +0 -1
data/spec/unit/util/ldap/manager_spec.rb +102 -101
data/spec/unit/util/lockfile_spec.rb +0 -1
data/spec/unit/util/log/destinations_spec.rb +30 -33
data/spec/unit/util/log_spec.rb +35 -36
data/spec/unit/util/logging_spec.rb +58 -66
data/spec/unit/util/metric_spec.rb +0 -1
data/spec/unit/util/monkey_patches_spec.rb +7 -9
data/spec/unit/util/multi_match_spec.rb +0 -1
data/spec/unit/util/nagios_maker_spec.rb +35 -36
data/spec/unit/util/network_device/cisco/device_spec.rb +59 -50
data/spec/unit/util/network_device/cisco/facts_spec.rb +4 -5
data/spec/unit/util/network_device/cisco/interface_spec.rb +29 -20
data/spec/unit/util/network_device/config_spec.rb +0 -1
data/spec/unit/util/network_device/ipcalc_spec.rb +0 -1
data/spec/unit/util/network_device/transport/base_spec.rb +5 -6
data/spec/unit/util/network_device/transport/ssh_spec.rb +94 -60
data/spec/unit/util/network_device/transport/telnet_spec.rb +18 -14
data/spec/unit/util/network_device_spec.rb +7 -9
data/spec/unit/util/package_spec.rb +0 -1
data/spec/unit/util/pidlock_spec.rb +13 -14
data/spec/unit/util/plist_spec.rb +40 -33
data/spec/unit/util/posix_spec.rb +54 -51
data/spec/unit/util/rdoc_spec.rb +9 -10
data/spec/unit/util/reference_spec.rb +0 -1
data/spec/unit/util/resource_template_spec.rb +20 -20
data/spec/unit/util/retry_action_spec.rb +7 -8
data/spec/unit/util/rubygems_spec.rb +14 -14
data/spec/unit/util/run_mode_spec.rb +3 -4
data/spec/unit/util/selinux_spec.rb +79 -72
data/spec/unit/util/splayer_spec.rb +8 -9
data/spec/unit/util/ssl_spec.rb +0 -1
data/spec/unit/util/storage_spec.rb +3 -4
data/spec/unit/util/suidmanager_spec.rb +45 -54
data/spec/unit/util/symbolic_file_mode_spec.rb +0 -1
data/spec/unit/util/tag_set_spec.rb +0 -1
data/spec/unit/util/tagging_spec.rb +0 -1
data/spec/unit/util/terminal_spec.rb +9 -10
data/spec/unit/util/user_attr_spec.rb +1 -2
data/spec/unit/util/warnings_spec.rb +3 -4
data/spec/unit/util/watcher/periodic_watcher_spec.rb +2 -2
data/spec/unit/util/watcher_spec.rb +51 -21
data/spec/unit/util/windows/access_control_entry_spec.rb +0 -1
data/spec/unit/util/windows/access_control_list_spec.rb +0 -1
data/spec/unit/util/windows/adsi_spec.rb +136 -138
data/spec/unit/util/windows/api_types_spec.rb +0 -1
data/spec/unit/util/windows/eventlog_spec.rb +9 -12
data/spec/unit/util/windows/file_spec.rb +0 -1
data/spec/unit/util/windows/root_certs_spec.rb +0 -1
data/spec/unit/util/windows/security_descriptor_spec.rb +0 -2
data/spec/unit/util/windows/service_spec.rb +66 -68
data/spec/unit/util/windows/sid_spec.rb +11 -13
data/spec/unit/util/windows/string_spec.rb +0 -1
data/spec/unit/util_spec.rb +55 -59
data/spec/unit/version_spec.rb +6 -6
metadata +2 -2

data/spec/unit/ssl/digest_spec.rb CHANGED Viewed

@@ -1,4 +1,3 @@
-#! /usr/bin/env ruby
 require 'spec_helper'
 require 'puppet/ssl/digest'

data/spec/unit/ssl/host_spec.rb CHANGED Viewed

@@ -1,4 +1,3 @@
-#! /usr/bin/env ruby
 require 'spec_helper'
 require 'puppet/ssl/host'
@@ -37,11 +36,11 @@ describe Puppet::SSL::Host do
   end
   it "should retrieve its public key from its private key" do
-    realkey = mock 'realkey'
-    key = stub 'key', :content => realkey
-    Puppet::SSL::Key.indirection.stubs(:find).returns(key)
-    pubkey = mock 'public_key'
-    realkey.expects(:public_key).returns pubkey
+    realkey = double('realkey')
+    key = double('key', :content => realkey)
+    allow(Puppet::SSL::Key.indirection).to receive(:find).and_return(key)
+    pubkey = double('public_key')
+    expect(realkey).to receive(:public_key).and_return(pubkey)
     expect(@host.public_key).to equal(pubkey)
   end
@@ -51,7 +50,7 @@ describe Puppet::SSL::Host do
   end
   it "should be a ca host if its name matches the CA_NAME" do
-    Puppet::SSL::Host.stubs(:ca_name).returns "yayca"
+    allow(Puppet::SSL::Host).to receive(:ca_name).and_return("yayca")
     expect(Puppet::SSL::Host.new("yayca")).to be_ca
   end
@@ -78,11 +77,11 @@ describe Puppet::SSL::Host do
   end
   it "should generate the certificate for the localhost instance if no certificate is available" do
-    host = stub 'host', :key => nil
-    Puppet::SSL::Host.expects(:new).returns host
+    host = double('host', :key => nil)
+    expect(Puppet::SSL::Host).to receive(:new).and_return(host)
-    host.expects(:certificate).returns nil
-    host.expects(:generate)
+    expect(host).to receive(:certificate).and_return(nil)
+    expect(host).to receive(:generate)
     expect(Puppet::SSL::Host.localhost).to equal(host)
   end
@@ -92,7 +91,7 @@ describe Puppet::SSL::Host do
     Puppet[:confdir] = tmpdir('conf')
     Puppet[:dns_alt_names] = "foo,bar,baz"
     ca = Puppet::SSL::CertificateAuthority.new
-    Puppet::SSL::CertificateAuthority.stubs(:instance).returns ca
+    allow(Puppet::SSL::CertificateAuthority).to receive(:instance).and_return(ca)
     localhost = Puppet::SSL::Host.localhost
     cert = localhost.certificate
@@ -103,14 +102,14 @@ describe Puppet::SSL::Host do
   context "with dns_alt_names" do
     before :each do
-      @key = stub('key content')
-      key = stub('key', :generate => true, :content => @key)
-      Puppet::SSL::Key.stubs(:new).returns key
-      Puppet::SSL::Key.indirection.stubs(:save).with(key)
+      @key = double('key content')
+      key = double('key', :generate => true, :content => @key)
+      allow(Puppet::SSL::Key).to receive(:new).and_return(key)
+      allow(Puppet::SSL::Key.indirection).to receive(:save).with(key)
-      @cr = stub('certificate request')
-      Puppet::SSL::CertificateRequest.stubs(:new).returns @cr
-      Puppet::SSL::CertificateRequest.indirection.stubs(:save).with(@cr)
+      @cr = double('certificate request')
+      allow(Puppet::SSL::CertificateRequest).to receive(:new).and_return(@cr)
+      allow(Puppet::SSL::CertificateRequest.indirection).to receive(:save).with(@cr)
     end
     describe "explicitly specified" do
@@ -119,13 +118,13 @@ describe Puppet::SSL::Host do
       end
       it "should not include subjectAltName if not the local node" do
-        @cr.expects(:generate).with(@key, {})
+        expect(@cr).to receive(:generate).with(@key, {})
         Puppet::SSL::Host.new('not-the-' + Puppet[:certname]).generate
       end
       it "should include subjectAltName if I am a CA" do
-        @cr.expects(:generate).
+        expect(@cr).to receive(:generate).
           with(@key, { :dns_alt_names => Puppet[:dns_alt_names] })
         Puppet::SSL::Host.localhost
@@ -133,45 +132,45 @@ describe Puppet::SSL::Host do
     end
     describe "implicitly defaulted" do
-      let(:ca) { stub('ca', :sign => nil) }
+      let(:ca) { double('ca', :sign => nil) }
       before :each do
         Puppet[:dns_alt_names] = ''
-        Puppet::SSL::CertificateAuthority.stubs(:instance).returns ca
+        allow(Puppet::SSL::CertificateAuthority).to receive(:instance).and_return(ca)
       end
       it "should not include defaults if we're not the CA" do
-        Puppet::SSL::CertificateAuthority.stubs(:ca?).returns false
+        allow(Puppet::SSL::CertificateAuthority).to receive(:ca?).and_return(false)
-        @cr.expects(:generate).with(@key, {})
+        expect(@cr).to receive(:generate).with(@key, {})
         Puppet::SSL::Host.localhost
       end
       it "should not include defaults if not the local node" do
-        Puppet::SSL::CertificateAuthority.stubs(:ca?).returns true
+        allow(Puppet::SSL::CertificateAuthority).to receive(:ca?).and_return(true)
-        @cr.expects(:generate).with(@key, {})
+        expect(@cr).to receive(:generate).with(@key, {})
         Puppet::SSL::Host.new('not-the-' + Puppet[:certname]).generate
       end
       it "should not include defaults if we can't resolve our fqdn" do
-        Puppet::SSL::CertificateAuthority.stubs(:ca?).returns true
-        Facter.stubs(:value).with(:fqdn).returns nil
+        allow(Puppet::SSL::CertificateAuthority).to receive(:ca?).and_return(true)
+        allow(Facter).to receive(:value).with(:fqdn).and_return(nil)
-        @cr.expects(:generate).with(@key, {})
+        expect(@cr).to receive(:generate).with(@key, {})
         Puppet::SSL::Host.localhost
       end
       it "should provide defaults if we're bootstrapping the local master" do
-        Puppet::SSL::CertificateAuthority.stubs(:ca?).returns true
-        Facter.stubs(:value).with(:fqdn).returns 'web.foo.com'
-        Facter.stubs(:value).with(:domain).returns 'foo.com'
+        allow(Puppet::SSL::CertificateAuthority).to receive(:ca?).and_return(true)
+        allow(Facter).to receive(:value).with(:fqdn).and_return('web.foo.com')
+        allow(Facter).to receive(:value).with(:domain).and_return('foo.com')
-        @cr.expects(:generate).with(@key, {:dns_alt_names => "puppet, web.foo.com, puppet.foo.com"})
+        expect(@cr).to receive(:generate).with(@key, {:dns_alt_names => "puppet, web.foo.com, puppet.foo.com"})
         Puppet::SSL::Host.localhost
       end
@@ -179,17 +178,17 @@ describe Puppet::SSL::Host do
   end
   it "should always read the key for the localhost instance in from disk" do
-    host = stub 'host', :certificate => "eh"
-    Puppet::SSL::Host.expects(:new).returns host
+    host = double('host', :certificate => "eh")
+    expect(Puppet::SSL::Host).to receive(:new).and_return(host)
-    host.expects(:key)
+    expect(host).to receive(:key)
     Puppet::SSL::Host.localhost
   end
   it "should cache the localhost instance" do
-    host = stub 'host', :certificate => "eh", :key => 'foo'
-    Puppet::SSL::Host.expects(:new).once.returns host
+    host = double('host', :certificate => "eh", :key => 'foo')
+    expect(Puppet::SSL::Host).to receive(:new).once.and_return(host)
     expect(Puppet::SSL::Host.localhost).to eq(Puppet::SSL::Host.localhost)
   end
@@ -199,38 +198,38 @@ describe Puppet::SSL::Host do
   it "should consider the certificate invalid if it cannot find a key" do
     host = Puppet::SSL::Host.new("foo")
-    certificate = mock('cert', :fingerprint => 'DEADBEEF')
-    host.expects(:certificate).twice.returns certificate
-    host.expects(:key).returns nil
+    certificate = double('cert', :fingerprint => 'DEADBEEF')
+    expect(host).to receive(:certificate).twice.and_return(certificate)
+    expect(host).to receive(:key).and_return(nil)
     expect { host.validate_certificate_with_key }.to raise_error(Puppet::Error, "No private key with which to validate certificate with fingerprint: DEADBEEF")
   end
   it "should consider the certificate invalid if it cannot find a certificate" do
     host = Puppet::SSL::Host.new("foo")
-    host.expects(:key).never
-    host.expects(:certificate).returns nil
+    expect(host).not_to receive(:key)
+    expect(host).to receive(:certificate).and_return(nil)
     expect { host.validate_certificate_with_key }.to raise_error(Puppet::Error, "No certificate to validate.")
   end
   it "should consider the certificate invalid if the SSL certificate's key verification fails" do
     host = Puppet::SSL::Host.new("foo")
-    key = mock 'key', :content => "private_key"
-    sslcert = mock 'sslcert'
-    certificate = mock 'cert', {:content => sslcert, :fingerprint => 'DEADBEEF'}
-    host.stubs(:key).returns key
-    host.stubs(:certificate).returns certificate
-    sslcert.expects(:check_private_key).with("private_key").returns false
+    key = double('key', :content => "private_key")
+    sslcert = double('sslcert')
+    certificate = double('cert', {:content => sslcert, :fingerprint => 'DEADBEEF'})
+    allow(host).to receive(:key).and_return(key)
+    allow(host).to receive(:certificate).and_return(certificate)
+    expect(sslcert).to receive(:check_private_key).with("private_key").and_return(false)
     expect { host.validate_certificate_with_key }.to raise_error(Puppet::Error, /DEADBEEF/)
   end
   it "should consider the certificate valid if the SSL certificate's key verification succeeds" do
     host = Puppet::SSL::Host.new("foo")
-    key = mock 'key', :content => "private_key"
-    sslcert = mock 'sslcert'
-    certificate = mock 'cert', :content => sslcert
-    host.stubs(:key).returns key
-    host.stubs(:certificate).returns certificate
-    sslcert.expects(:check_private_key).with("private_key").returns true
+    key = double('key', :content => "private_key")
+    sslcert = double('sslcert')
+    certificate = double('cert', :content => sslcert)
+    allow(host).to receive(:key).and_return(key)
+    allow(host).to receive(:certificate).and_return(certificate)
+    expect(sslcert).to receive(:check_private_key).with("private_key").and_return(true)
     expect{ host.validate_certificate_with_key }.not_to raise_error
   end
@@ -348,21 +347,21 @@ describe Puppet::SSL::Host do
   describe "when destroying a host's SSL files" do
     before do
-      Puppet::SSL::Key.indirection.stubs(:destroy).returns false
-      Puppet::SSL::Certificate.indirection.stubs(:destroy).returns false
-      Puppet::SSL::CertificateRequest.indirection.stubs(:destroy).returns false
+      allow(Puppet::SSL::Key.indirection).to receive(:destroy).and_return(false)
+      allow(Puppet::SSL::Certificate.indirection).to receive(:destroy).and_return(false)
+      allow(Puppet::SSL::CertificateRequest.indirection).to receive(:destroy).and_return(false)
     end
     it "should destroy its certificate, certificate request, and key" do
-      Puppet::SSL::Key.indirection.expects(:destroy).with("myhost")
-      Puppet::SSL::Certificate.indirection.expects(:destroy).with("myhost")
-      Puppet::SSL::CertificateRequest.indirection.expects(:destroy).with("myhost")
+      expect(Puppet::SSL::Key.indirection).to receive(:destroy).with("myhost")
+      expect(Puppet::SSL::Certificate.indirection).to receive(:destroy).with("myhost")
+      expect(Puppet::SSL::CertificateRequest.indirection).to receive(:destroy).with("myhost")
       Puppet::SSL::Host.destroy("myhost")
     end
     it "should return true if any of the classes returned true" do
-      Puppet::SSL::Certificate.indirection.expects(:destroy).with("myhost").returns true
+      expect(Puppet::SSL::Certificate.indirection).to receive(:destroy).with("myhost").and_return(true)
       expect(Puppet::SSL::Host.destroy("myhost")).to be_truthy
     end
@@ -384,7 +383,7 @@ describe Puppet::SSL::Host do
     end
     it "should indicate that it is a CA host if its name matches the ca_name constant" do
-      Puppet::SSL::Host.stubs(:ca_name).returns "myca"
+      allow(Puppet::SSL::Host).to receive(:ca_name).and_return("myca")
       expect(Puppet::SSL::Host.new("myca")).to be_ca
     end
   end
@@ -397,37 +396,37 @@ describe Puppet::SSL::Host do
     end
     it "should return nil if the key is not set and cannot be found" do
-      Puppet::SSL::Key.indirection.expects(:find).with("myname").returns(nil)
+      expect(Puppet::SSL::Key.indirection).to receive(:find).with("myname").and_return(nil)
       expect(@host.key).to be_nil
     end
     it "should find the key in the Key class and return the Puppet instance" do
-      Puppet::SSL::Key.indirection.expects(:find).with("myname").returns(@key)
+      expect(Puppet::SSL::Key.indirection).to receive(:find).with("myname").and_return(@key)
       expect(@host.key).to equal(@key)
     end
     it "should be able to generate and save a new key" do
-      Puppet::SSL::Key.expects(:new).with("myname").returns(@key)
+      expect(Puppet::SSL::Key).to receive(:new).with("myname").and_return(@key)
-      @key.expects(:generate)
-      Puppet::SSL::Key.indirection.expects(:save)
+      expect(@key).to receive(:generate)
+      expect(Puppet::SSL::Key.indirection).to receive(:save)
       expect(@host.generate_key).to be_truthy
       expect(@host.key).to equal(@key)
     end
     it "should not retain keys that could not be saved" do
-      Puppet::SSL::Key.expects(:new).with("myname").returns(@key)
+      expect(Puppet::SSL::Key).to receive(:new).with("myname").and_return(@key)
-      @key.stubs(:generate)
-      Puppet::SSL::Key.indirection.expects(:save).raises "eh"
+      expect(@key).to receive(:generate)
+      expect(Puppet::SSL::Key.indirection).to receive(:save).and_raise("eh")
       expect { @host.generate_key }.to raise_error(RuntimeError)
       expect(@host.key).to be_nil
     end
     it "should return any previously found key without requerying" do
-      Puppet::SSL::Key.indirection.expects(:find).with("myname").returns(@key).once
+      expect(Puppet::SSL::Key.indirection).to receive(:find).with("myname").and_return(@key).once
       expect(@host.key).to equal(@key)
       expect(@host.key).to equal(@key)
     end
@@ -441,60 +440,63 @@ describe Puppet::SSL::Host do
     end
     it "should return nil if the key is not set and cannot be found" do
-      Puppet::SSL::CertificateRequest.indirection.expects(:find).with("myname").returns(nil)
+      expect(Puppet::SSL::CertificateRequest.indirection).to receive(:find).with("myname").and_return(nil)
       expect(@host.certificate_request).to be_nil
     end
     it "should find the request in the Key class and return it and return the Puppet SSL request" do
-      Puppet::SSL::CertificateRequest.indirection.expects(:find).with("myname").returns @request
+      expect(Puppet::SSL::CertificateRequest.indirection).to receive(:find).with("myname").and_return(@request)
       expect(@host.certificate_request).to equal(@request)
     end
     it "should generate a new key when generating the cert request if no key exists" do
-      Puppet::SSL::CertificateRequest.expects(:new).with("myname").returns @request
+      expect(Puppet::SSL::CertificateRequest).to receive(:new).with("myname").and_return(@request)
-      key = stub 'key', :public_key => mock("public_key"), :content => "mycontent"
+      key = double('key', :public_key => double("public_key"), :content => "mycontent")
-      @host.expects(:key).times(2).returns(nil).then.returns(key)
-      @host.expects(:generate_key).returns(key)
+      expect(@host).to receive(:key).twice.and_return(nil, key)
+      expect(@host).to receive(:generate_key).and_return(key)
-      @request.stubs(:generate)
-      Puppet::SSL::CertificateRequest.indirection.stubs(:save)
+      allow(@request).to receive(:generate)
+      allow(Puppet::SSL::CertificateRequest.indirection).to receive(:save)
       @host.generate_certificate_request
     end
     it "should be able to generate and save a new request using the private key" do
-      Puppet::SSL::CertificateRequest.expects(:new).with("myname").returns @request
+      expect(Puppet::SSL::CertificateRequest).to receive(:new).with("myname").and_return(@request)
-      key = stub 'key', :public_key => mock("public_key"), :content => "mycontent"
-      @host.stubs(:key).returns(key)
-      @request.expects(:generate).with("mycontent", {})
-      Puppet::SSL::CertificateRequest.indirection.expects(:save).with(@request)
+      key = double('key', :public_key => double("public_key"), :content => "mycontent")
+      allow(@host).to receive(:key).and_return(key)
+      expect(@request).to receive(:generate).with("mycontent", {})
+      expect(Puppet::SSL::CertificateRequest.indirection).to receive(:save).with(@request)
       expect(@host.generate_certificate_request).to be_truthy
       expect(@host.certificate_request).to equal(@request)
     end
     it "should return any previously found request without requerying" do
-      Puppet::SSL::CertificateRequest.indirection.expects(:find).with("myname").returns(@request).once
+      expect(Puppet::SSL::CertificateRequest.indirection).to receive(:find).with("myname").and_return(@request).once
       expect(@host.certificate_request).to equal(@request)
       expect(@host.certificate_request).to equal(@request)
     end
     it "should not keep its certificate request in memory if the request cannot be saved" do
-      Puppet::SSL::CertificateRequest.expects(:new).with("myname").returns @request
-      key = stub 'key', :public_key => mock("public_key"), :content => "mycontent"
-      @host.stubs(:key).returns(key)
-      @request.stubs(:generate)
-      @request.stubs(:name).returns("myname")
-      terminus = stub 'terminus'
-      terminus.stubs(:validate)
-      Puppet::SSL::CertificateRequest.indirection.expects(:prepare).returns(terminus)
-      terminus.expects(:save).with { |req| req.instance == @request && req.key == "myname" }.raises "eh"
+      expect(Puppet::SSL::CertificateRequest).to receive(:new).with("myname").and_return(@request)
+      key = double('key', :public_key => double("public_key"), :content => "mycontent")
+      allow(@host).to receive(:key).and_return(key)
+      allow(@request).to receive(:generate)
+      allow(@request).to receive(:name).and_return("myname")
+      terminus = double('terminus')
+      allow(terminus).to receive(:validate)
+      expect(Puppet::SSL::CertificateRequest.indirection).to receive(:prepare).and_return(terminus)
+      expect(terminus).to receive(:save) do |req|
+        expect(req.instance).to eq(@request)
+        expect(req.key).to eq("myname")
+      end.and_raise("eh")
       expect { @host.generate_certificate_request }.to raise_error(RuntimeError)
@@ -504,55 +506,55 @@ describe Puppet::SSL::Host do
   describe "when managing its certificate" do
     before do
-      @realcert = mock 'certificate'
-      @cert = stub 'cert', :content => @realcert
-      @host.stubs(:key).returns mock("key")
-      @host.stubs(:validate_certificate_with_key)
+      @realcert = double('certificate')
+      @cert = double('cert', :content => @realcert)
+      allow(@host).to receive(:key).and_return(double("key"))
+      allow(@host).to receive(:validate_certificate_with_key)
     end
     it "should find the CA certificate if it does not have a certificate" do
-      Puppet::SSL::Certificate.indirection.expects(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true).returns mock("cacert")
-      Puppet::SSL::Certificate.indirection.stubs(:find).with("myname").returns @cert
+      expect(Puppet::SSL::Certificate.indirection).to receive(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true).and_return(double("cacert"))
+      allow(Puppet::SSL::Certificate.indirection).to receive(:find).with("myname").and_return(@cert)
       @host.certificate
     end
     it "should not find the CA certificate if it is the CA host" do
-      @host.expects(:ca?).returns true
-      Puppet::SSL::Certificate.indirection.stubs(:find)
-      Puppet::SSL::Certificate.indirection.expects(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true).never
+      expect(@host).to receive(:ca?).and_return(true)
+      allow(Puppet::SSL::Certificate.indirection).to receive(:find)
+      expect(Puppet::SSL::Certificate.indirection).not_to receive(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true)
       @host.certificate
     end
     it "should return nil if it cannot find a CA certificate" do
-      Puppet::SSL::Certificate.indirection.expects(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true).returns nil
-      Puppet::SSL::Certificate.indirection.expects(:find).with("myname").never
+      expect(Puppet::SSL::Certificate.indirection).to receive(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true).and_return(nil)
+      expect(Puppet::SSL::Certificate.indirection).not_to receive(:find).with("myname")
       expect(@host.certificate).to be_nil
     end
     it "should find the key if it does not have one" do
-      Puppet::SSL::Certificate.indirection.stubs(:find)
-      @host.expects(:key).returns mock("key")
+      allow(Puppet::SSL::Certificate.indirection).to receive(:find)
+      expect(@host).to receive(:key).and_return(double("key"))
       @host.certificate
     end
     it "should generate the key if one cannot be found" do
-      Puppet::SSL::Certificate.indirection.stubs(:find)
-      @host.expects(:key).returns nil
-      @host.expects(:generate_key)
+      allow(Puppet::SSL::Certificate.indirection).to receive(:find)
+      expect(@host).to receive(:key).and_return(nil)
+      expect(@host).to receive(:generate_key)
       @host.certificate
     end
     it "should find the certificate in the Certificate class and return the Puppet certificate instance" do
-      Puppet::SSL::Certificate.indirection.expects(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true).returns mock("cacert")
-      Puppet::SSL::Certificate.indirection.expects(:find).with("myname").returns @cert
+      expect(Puppet::SSL::Certificate.indirection).to receive(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true).and_return(double("cacert"))
+      expect(Puppet::SSL::Certificate.indirection).to receive(:find).with("myname").and_return(@cert)
       expect(@host.certificate).to equal(@cert)
     end
     it "should return any previously found certificate" do
-      Puppet::SSL::Certificate.indirection.expects(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true).returns mock("cacert")
-      Puppet::SSL::Certificate.indirection.expects(:find).with("myname").returns(@cert).once
+      expect(Puppet::SSL::Certificate.indirection).to receive(:find).with(Puppet::SSL::CA_NAME, :fail_on_404 => true).and_return(double("cacert"))
+      expect(Puppet::SSL::Certificate.indirection).to receive(:find).with("myname").and_return(@cert).once
       expect(@host.certificate).to equal(@cert)
       expect(@host.certificate).to equal(@cert)
@@ -565,47 +567,47 @@ describe Puppet::SSL::Host do
   describe "when listing certificate hosts" do
     it "should default to listing all clients with any file types" do
-      Puppet::SSL::Key.indirection.expects(:search).returns []
-      Puppet::SSL::Certificate.indirection.expects(:search).returns []
-      Puppet::SSL::CertificateRequest.indirection.expects(:search).returns []
+      expect(Puppet::SSL::Key.indirection).to receive(:search).and_return([])
+      expect(Puppet::SSL::Certificate.indirection).to receive(:search).and_return([])
+      expect(Puppet::SSL::CertificateRequest.indirection).to receive(:search).and_return([])
       Puppet::SSL::Host.search
     end
     it "should be able to list only clients with a key" do
-      Puppet::SSL::Key.indirection.expects(:search).returns []
-      Puppet::SSL::Certificate.indirection.expects(:search).never
-      Puppet::SSL::CertificateRequest.indirection.expects(:search).never
+      expect(Puppet::SSL::Key.indirection).to receive(:search).and_return([])
+      expect(Puppet::SSL::Certificate.indirection).not_to receive(:search)
+      expect(Puppet::SSL::CertificateRequest.indirection).not_to receive(:search)
       Puppet::SSL::Host.search :for => Puppet::SSL::Key
     end
     it "should be able to list only clients with a certificate" do
-      Puppet::SSL::Key.indirection.expects(:search).never
-      Puppet::SSL::Certificate.indirection.expects(:search).returns []
-      Puppet::SSL::CertificateRequest.indirection.expects(:search).never
+      expect(Puppet::SSL::Key.indirection).not_to receive(:search)
+      expect(Puppet::SSL::Certificate.indirection).to receive(:search).and_return([])
+      expect(Puppet::SSL::CertificateRequest.indirection).not_to receive(:search)
       Puppet::SSL::Host.search :for => Puppet::SSL::Certificate
     end
     it "should be able to list only clients with a certificate request" do
-      Puppet::SSL::Key.indirection.expects(:search).never
-      Puppet::SSL::Certificate.indirection.expects(:search).never
-      Puppet::SSL::CertificateRequest.indirection.expects(:search).returns []
+      expect(Puppet::SSL::Key.indirection).not_to receive(:search)
+      expect(Puppet::SSL::Certificate.indirection).not_to receive(:search)
+      expect(Puppet::SSL::CertificateRequest.indirection).to receive(:search).and_return([])
       Puppet::SSL::Host.search :for => Puppet::SSL::CertificateRequest
     end
     it "should return a Host instance created with the name of each found instance" do
-      key  = stub 'key',  :name => "key",  :to_ary => nil
-      cert = stub 'cert', :name => "cert", :to_ary => nil
-      csr  = stub 'csr',  :name => "csr",  :to_ary => nil
+      key  = double('key',  :name => "key",  :to_ary => nil)
+      cert = double('cert', :name => "cert", :to_ary => nil)
+      csr  = double('csr',  :name => "csr",  :to_ary => nil)
-      Puppet::SSL::Key.indirection.expects(:search).returns [key]
-      Puppet::SSL::Certificate.indirection.expects(:search).returns [cert]
-      Puppet::SSL::CertificateRequest.indirection.expects(:search).returns [csr]
+      expect(Puppet::SSL::Key.indirection).to receive(:search).and_return([key])
+      expect(Puppet::SSL::Certificate.indirection).to receive(:search).and_return([cert])
+      expect(Puppet::SSL::CertificateRequest.indirection).to receive(:search).and_return([csr])
       returned = []
       %w{key cert csr}.each do |name|
-        result = mock(name)
+        result = double(name)
         returned << result
-        Puppet::SSL::Host.expects(:new).with(name).returns result
+        expect(Puppet::SSL::Host).to receive(:new).with(name).and_return(result)
       end
       result = Puppet::SSL::Host.search
@@ -622,34 +624,34 @@ describe Puppet::SSL::Host do
   describe "when generating files" do
     before do
       @host = Puppet::SSL::Host.new("me")
-      @host.stubs(:generate_key)
-      @host.stubs(:generate_certificate_request)
+      allow(@host).to receive(:generate_key)
+      allow(@host).to receive(:generate_certificate_request)
     end
     it "should generate a key if one is not present" do
-      @host.stubs(:key).returns nil
-      @host.expects(:generate_key)
+      allow(@host).to receive(:key).and_return nil
+      expect(@host).to receive(:generate_key)
       @host.generate
     end
     it "should generate a certificate request if one is not present" do
-      @host.expects(:certificate_request).returns nil
-      @host.expects(:generate_certificate_request)
+      expect(@host).to receive(:certificate_request).and_return nil
+      expect(@host).to receive(:generate_certificate_request)
       @host.generate
     end
     describe "and it can create a certificate authority" do
       before do
-        @ca = mock 'ca'
-        Puppet::SSL::CertificateAuthority.stubs(:instance).returns @ca
+        @ca = double('ca')
+        allow(Puppet::SSL::CertificateAuthority).to receive(:instance).and_return(@ca)
       end
       it "should use the CA to sign its certificate request if it does not have a certificate" do
-        @host.expects(:certificate).returns nil
+        expect(@host).to receive(:certificate).and_return(nil)
-        @ca.expects(:sign).with(@host.name, {allow_dns_alt_names: true})
+        expect(@ca).to receive(:sign).with(@host.name, {allow_dns_alt_names: true})
         @host.generate
       end
@@ -657,11 +659,11 @@ describe Puppet::SSL::Host do
     describe "and it cannot create a certificate authority" do
       before do
-        Puppet::SSL::CertificateAuthority.stubs(:instance).returns nil
+        allow(Puppet::SSL::CertificateAuthority).to receive(:instance).and_return(nil)
       end
       it "should seek its certificate" do
-        @host.expects(:certificate)
+        expect(@host).to receive(:certificate)
         @host.generate
       end
@@ -674,44 +676,52 @@ describe Puppet::SSL::Host do
   it "should always return the same store" do
     host = Puppet::SSL::Host.new("foo")
-    store = mock 'store'
-    store.stub_everything
-    OpenSSL::X509::Store.expects(:new).returns store
+    store = double(
+      'store',
+      :purpose= => nil,
+      :add_file => nil,
+    )
+    expect(OpenSSL::X509::Store).to receive(:new).and_return(store)
     expect(host.ssl_store).to equal(host.ssl_store)
   end
   describe "when creating an SSL store" do
     before do
       @host = Puppet::SSL::Host.new("me")
-      @store = mock 'store'
-      @store.stub_everything
-      OpenSSL::X509::Store.stubs(:new).returns @store
+      @store = double(
+        'store',
+        :purpose= => nil,
+        :add_file => nil,
+        :add_crl  => nil,
+        :flags=   => nil,
+      )
+      allow(OpenSSL::X509::Store).to receive(:new).and_return(@store)
       Puppet[:localcacert] = "ssl_host_testing"
-      Puppet::SSL::CertificateRevocationList.indirection.stubs(:find).returns(nil)
+      allow(Puppet::SSL::CertificateRevocationList.indirection).to receive(:find).and_return(nil)
     end
     it "should accept a purpose" do
-      @store.expects(:purpose=).with "my special purpose"
+      expect(@store).to receive(:purpose=).with("my special purpose")
       @host.ssl_store("my special purpose")
     end
     it "should default to OpenSSL::X509::PURPOSE_ANY as the purpose" do
-      @store.expects(:purpose=).with OpenSSL::X509::PURPOSE_ANY
+      expect(@store).to receive(:purpose=).with(OpenSSL::X509::PURPOSE_ANY)
       @host.ssl_store
     end
     it "should add the local CA cert file" do
       Puppet[:localcacert] = "/ca/cert/file"
-      @store.expects(:add_file).with Puppet[:localcacert]
+      expect(@store).to receive(:add_file).with(Puppet[:localcacert])
       @host.ssl_store
     end
     describe "and a CRL is available" do
       before do
-        @crl = stub 'crl', :content => "real_crl"
-        Puppet::SSL::CertificateRevocationList.indirection.stubs(:find).returns @crl
+        @crl = double('crl', :content => "real_crl")
+        allow(Puppet::SSL::CertificateRevocationList.indirection).to receive(:find).and_return(@crl)
       end
       [true, 'chain'].each do |crl_setting|
@@ -721,12 +731,12 @@ describe Puppet::SSL::Host do
           end
           it "should add the CRL" do
-            @store.expects(:add_crl).with "real_crl"
+            expect(@store).to receive(:add_crl).with("real_crl")
             @host.ssl_store
           end
           it "should set the flags to OpenSSL::X509::V_FLAG_CRL_CHECK_ALL|OpenSSL::X509::V_FLAG_CRL_CHECK" do
-            @store.expects(:flags=).with(OpenSSL::X509::V_FLAG_CRL_CHECK_ALL|OpenSSL::X509::V_FLAG_CRL_CHECK)
+            expect(@store).to receive(:flags=).with(OpenSSL::X509::V_FLAG_CRL_CHECK_ALL | OpenSSL::X509::V_FLAG_CRL_CHECK)
             @host.ssl_store
           end
         end
@@ -738,12 +748,12 @@ describe Puppet::SSL::Host do
         end
         it "should add the CRL" do
-          @store.expects(:add_crl).with "real_crl"
+          expect(@store).to receive(:add_crl).with("real_crl")
           @host.ssl_store
         end
         it "should set the flags to OpenSSL::X509::V_FLAG_CRL_CHECK" do
-          @store.expects(:flags=).with(OpenSSL::X509::V_FLAG_CRL_CHECK)
+          expect(@store).to receive(:flags=).with(OpenSSL::X509::V_FLAG_CRL_CHECK)
           @host.ssl_store
         end
       end
@@ -754,12 +764,12 @@ describe Puppet::SSL::Host do
         end
         it "should not add the CRL" do
-          @store.expects(:add_crl).never
+          expect(@store).not_to receive(:add_crl)
           @host.ssl_store
         end
         it "should not set the flags" do
-          @store.expects(:flags=).never
+          expect(@store).not_to receive(:flags=)
           @host.ssl_store
         end
       end
@@ -772,54 +782,73 @@ describe Puppet::SSL::Host do
     end
     it "should generate its certificate request and attempt to read the certificate again if no certificate is found" do
-      @host.expects(:certificate).times(2).returns(nil).then.returns "foo"
-      @host.expects(:generate)
+      expect(@host).to receive(:certificate).twice.and_return(nil, "foo")
+      expect(@host).to receive(:generate)
       @host.wait_for_cert(1)
     end
     it "should catch and log errors during CSR saving" do
-      @host.expects(:certificate).times(2).returns(nil).then.returns "foo"
-      @host.expects(:generate).raises(RuntimeError).then.returns nil
-      @host.stubs(:sleep)
+      expect(@host).to receive(:certificate).twice.and_return(nil, "foo")
+      times_generate_called = 0
+      expect(@host).to receive(:generate) do
+        times_generate_called += 1
+        raise RuntimeError if times_generate_called == 1
+        nil
+      end
+      allow(@host).to receive(:sleep)
       @host.wait_for_cert(1)
     end
     it "should sleep and retry after failures saving the CSR if waitforcert is enabled" do
-      @host.expects(:certificate).times(2).returns(nil).then.returns "foo"
-      @host.expects(:generate).raises(RuntimeError).then.returns nil
-      @host.expects(:sleep).with(1)
+      expect(@host).to receive(:certificate).twice.and_return(nil, "foo")
+      times_generate_called = 0
+      expect(@host).to receive(:generate) do
+        times_generate_called += 1
+        raise RuntimeError if times_generate_called == 1
+        nil
+      end
+      expect(@host).to receive(:sleep).with(1)
       @host.wait_for_cert(1)
     end
     it "should exit after failures saving the CSR of waitforcert is disabled" do
-      @host.expects(:certificate).returns(nil)
-      @host.expects(:generate).raises(RuntimeError)
-      @host.expects(:puts)
+      expect(@host).to receive(:certificate).and_return(nil)
+      expect(@host).to receive(:generate).and_raise(RuntimeError)
+      expect(@host).to receive(:puts)
       expect { @host.wait_for_cert(0) }.to exit_with 1
     end
     it "should exit if the wait time is 0 and it can neither find nor retrieve a certificate" do
-      @host.stubs(:certificate).returns nil
-      @host.expects(:generate)
-      @host.expects(:puts)
+      allow(@host).to receive(:certificate).and_return(nil)
+      expect(@host).to receive(:generate)
+      expect(@host).to receive(:puts)
       expect { @host.wait_for_cert(0) }.to exit_with 1
     end
     it "should sleep for the specified amount of time if no certificate is found after generating its certificate request" do
-      @host.expects(:certificate).times(3).returns(nil).then.returns(nil).then.returns "foo"
-      @host.expects(:generate)
+      expect(@host).to receive(:certificate).exactly(3).times().and_return(nil, nil, "foo")
+      expect(@host).to receive(:generate)
-      @host.expects(:sleep).with(1)
+      expect(@host).to receive(:sleep).with(1)
       @host.wait_for_cert(1)
     end
     it "should catch and log exceptions during certificate retrieval" do
-      @host.expects(:certificate).times(3).returns(nil).then.raises(RuntimeError).then.returns("foo")
-      @host.stubs(:generate)
-      @host.stubs(:sleep)
+      times_certificate_called = 0
+      expect(@host).to receive(:certificate) do
+        times_certificate_called += 1
+        if times_certificate_called == 1
+          return nil
+        elsif times_certificate_called == 2
+          raise RuntimeError
+        end
+        "foo"
+      end.exactly(3).times()
+      allow(@host).to receive(:generate)
+      allow(@host).to receive(:sleep)
-      Puppet.expects(:err)
+      expect(Puppet).to receive(:err).twice
       @host.wait_for_cert(1)
     end