RubyGems - puppet - Versions diffs - 6.22.1 → 6.23.0 - Mend

puppet 6.22.1 → 6.23.0

Potentially problematic release.

This version of puppet might be problematic. Click here for more details.

Files changed (129) hide show

checksums.yaml +4 -4
data/Gemfile.lock +14 -14
data/ext/osx/puppet.plist +2 -0
data/lib/puppet/application/agent.rb +12 -5
data/lib/puppet/application/apply.rb +2 -1
data/lib/puppet/application/device.rb +2 -1
data/lib/puppet/application/resource.rb +2 -1
data/lib/puppet/application/script.rb +2 -1
data/lib/puppet/configurer/downloader.rb +2 -1
data/lib/puppet/defaults.rb +5 -3
data/lib/puppet/file_serving/fileset.rb +14 -2
data/lib/puppet/functions/all.rb +1 -1
data/lib/puppet/functions/camelcase.rb +1 -1
data/lib/puppet/functions/capitalize.rb +2 -2
data/lib/puppet/functions/downcase.rb +2 -2
data/lib/puppet/functions/get.rb +5 -5
data/lib/puppet/functions/group_by.rb +13 -5
data/lib/puppet/functions/lest.rb +1 -1
data/lib/puppet/functions/new.rb +100 -100
data/lib/puppet/functions/partition.rb +4 -4
data/lib/puppet/functions/require.rb +5 -5
data/lib/puppet/functions/sort.rb +3 -3
data/lib/puppet/functions/tree_each.rb +7 -9
data/lib/puppet/functions/type.rb +4 -4
data/lib/puppet/functions/upcase.rb +2 -2
data/lib/puppet/http/resolver/server_list.rb +15 -4
data/lib/puppet/http/service/compiler.rb +69 -0
data/lib/puppet/http/service/file_server.rb +2 -1
data/lib/puppet/indirector/catalog/compiler.rb +1 -0
data/lib/puppet/indirector/file_metadata/rest.rb +1 -0
data/lib/puppet/parser/functions/fqdn_rand.rb +14 -6
data/lib/puppet/pops/types/p_sem_ver_type.rb +8 -2
data/lib/puppet/pops/types/p_sensitive_type.rb +10 -0
data/lib/puppet/provider/package/nim.rb +11 -6
data/lib/puppet/provider/service/systemd.rb +13 -3
data/lib/puppet/provider/service/windows.rb +38 -0
data/lib/puppet/provider/user/directoryservice.rb +25 -12
data/lib/puppet/reference/configuration.rb +1 -1
data/lib/puppet/transaction/additional_resource_generator.rb +1 -1
data/lib/puppet/type/file.rb +19 -1
data/lib/puppet/type/file/selcontext.rb +1 -1
data/lib/puppet/type/service.rb +18 -38
data/lib/puppet/type/tidy.rb +21 -2
data/lib/puppet/type/user.rb +38 -20
data/lib/puppet/util/selinux.rb +30 -4
data/lib/puppet/version.rb +1 -1
data/locales/puppet.pot +109 -101
data/man/man5/puppet.conf.5 +272 -252
data/man/man8/puppet-agent.8 +1 -1
data/man/man8/puppet-apply.8 +1 -1
data/man/man8/puppet-catalog.8 +1 -1
data/man/man8/puppet-config.8 +1 -1
data/man/man8/puppet-describe.8 +1 -1
data/man/man8/puppet-device.8 +1 -1
data/man/man8/puppet-doc.8 +1 -1
data/man/man8/puppet-epp.8 +1 -1
data/man/man8/puppet-facts.8 +1 -1
data/man/man8/puppet-filebucket.8 +1 -1
data/man/man8/puppet-generate.8 +1 -1
data/man/man8/puppet-help.8 +1 -1
data/man/man8/puppet-key.8 +1 -1
data/man/man8/puppet-lookup.8 +1 -1
data/man/man8/puppet-man.8 +1 -1
data/man/man8/puppet-module.8 +1 -1
data/man/man8/puppet-node.8 +1 -1
data/man/man8/puppet-parser.8 +1 -1
data/man/man8/puppet-plugin.8 +1 -1
data/man/man8/puppet-report.8 +1 -1
data/man/man8/puppet-resource.8 +1 -1
data/man/man8/puppet-script.8 +1 -1
data/man/man8/puppet-ssl.8 +1 -1
data/man/man8/puppet-status.8 +1 -1
data/man/man8/puppet.8 +2 -2
data/spec/fixtures/ssl/127.0.0.1-key.pem +107 -57
data/spec/fixtures/ssl/127.0.0.1.pem +52 -31
data/spec/fixtures/ssl/bad-basic-constraints.pem +57 -35
data/spec/fixtures/ssl/bad-int-basic-constraints.pem +57 -35
data/spec/fixtures/ssl/ca.pem +57 -35
data/spec/fixtures/ssl/crl.pem +28 -18
data/spec/fixtures/ssl/ec-key.pem +11 -11
data/spec/fixtures/ssl/ec.pem +33 -24
data/spec/fixtures/ssl/encrypted-ec-key.pem +12 -12
data/spec/fixtures/ssl/encrypted-key.pem +108 -58
data/spec/fixtures/ssl/intermediate-agent-crl.pem +28 -19
data/spec/fixtures/ssl/intermediate-agent.pem +57 -36
data/spec/fixtures/ssl/intermediate-crl.pem +31 -21
data/spec/fixtures/ssl/intermediate.pem +57 -36
data/spec/fixtures/ssl/pluto-key.pem +107 -57
data/spec/fixtures/ssl/pluto.pem +52 -30
data/spec/fixtures/ssl/request-key.pem +107 -57
data/spec/fixtures/ssl/request.pem +47 -26
data/spec/fixtures/ssl/revoked-key.pem +107 -57
data/spec/fixtures/ssl/revoked.pem +52 -30
data/spec/fixtures/ssl/signed-key.pem +107 -57
data/spec/fixtures/ssl/signed.pem +52 -30
data/spec/fixtures/ssl/tampered-cert.pem +52 -30
data/spec/fixtures/ssl/tampered-csr.pem +47 -26
data/spec/fixtures/ssl/unknown-127.0.0.1-key.pem +107 -57
data/spec/fixtures/ssl/unknown-127.0.0.1.pem +50 -29
data/spec/fixtures/ssl/unknown-ca-key.pem +107 -57
data/spec/fixtures/ssl/unknown-ca.pem +55 -33
data/spec/integration/application/resource_spec.rb +30 -0
data/spec/lib/puppet/test_ca.rb +2 -2
data/spec/unit/application/agent_spec.rb +7 -2
data/spec/unit/configurer/downloader_spec.rb +6 -0
data/spec/unit/configurer_spec.rb +23 -0
data/spec/unit/file_serving/fileset_spec.rb +60 -0
data/spec/unit/gettext/config_spec.rb +12 -0
data/spec/unit/http/service/compiler_spec.rb +123 -0
data/spec/unit/indirector/catalog/compiler_spec.rb +14 -10
data/spec/unit/parser/functions/fqdn_rand_spec.rb +15 -1
data/spec/unit/pops/types/p_sem_ver_type_spec.rb +18 -0
data/spec/unit/pops/types/p_sensitive_type_spec.rb +18 -0
data/spec/unit/provider/package/nim_spec.rb +42 -0
data/spec/unit/provider/service/init_spec.rb +1 -0
data/spec/unit/provider/service/openwrt_spec.rb +3 -1
data/spec/unit/provider/service/systemd_spec.rb +42 -8
data/spec/unit/provider/service/windows_spec.rb +202 -0
data/spec/unit/provider/user/directoryservice_spec.rb +67 -35
data/spec/unit/ssl/state_machine_spec.rb +19 -5
data/spec/unit/transaction/additional_resource_generator_spec.rb +0 -2
data/spec/unit/transaction_spec.rb +18 -20
data/spec/unit/type/file/selinux_spec.rb +3 -3
data/spec/unit/type/service_spec.rb +59 -188
data/spec/unit/type/tidy_spec.rb +17 -7
data/spec/unit/type/user_spec.rb +45 -0
data/spec/unit/util/selinux_spec.rb +87 -16
data/tasks/generate_cert_fixtures.rake +2 -2
metadata +4 -2

data/spec/fixtures/ssl/bad-basic-constraints.pem CHANGED Viewed

@@ -1,26 +1,35 @@
 Certificate:
     Data:
         Version: 3 (0x2)
-        Serial Number: 8 (0x8)
-    Signature Algorithm: sha256WithRSAEncryption
+        Serial Number: 10 (0xa)
+        Signature Algorithm: sha256WithRSAEncryption
         Issuer: CN=Test CA
         Validity
             Not Before: Jan  1 00:00:00 1970 GMT
-            Not After : Apr 19 22:31:22 2029 GMT
+            Not After : Apr 18 18:46:23 2031 GMT
         Subject: CN=Test CA
         Subject Public Key Info:
             Public Key Algorithm: rsaEncryption
-                Public-Key: (1024 bit)
+                RSA Public-Key: (2048 bit)
                 Modulus:
-                    00:d0:b3:d8:3f:2b:c0:45:8c:f0:3d:96:58:2c:5e:
-                    0e:6a:46:81:ab:10:2f:22:9c:7c:69:f0:61:b7:2d:
-                    f2:2f:46:97:d5:d9:1b:08:c8:c9:e8:18:a5:d8:89:
-                    27:a7:80:cb:0a:8e:ee:26:32:89:70:37:2b:bf:6f:
-                    7e:ee:12:7d:49:c7:0c:19:46:7c:65:99:dc:1f:1a:
-                    31:af:ab:87:01:b3:68:8a:5b:51:a7:78:ca:cc:1d:
-                    7c:26:b4:27:5f:67:75:99:7e:9f:16:ed:88:b3:8f:
-                    77:0f:b3:e8:b3:97:bc:70:8b:ec:62:b9:a2:47:4b:
-                    ef:dc:af:d4:9f:3d:17:cd:03
+                    00:dd:a5:83:44:db:51:be:98:ef:b1:63:a7:04:b9:
+                    ff:cd:71:d3:06:76:c4:25:68:e8:ea:ef:c5:b4:f9:
+                    c2:76:aa:c0:1b:1b:0f:44:13:da:db:cf:d4:f4:88:
+                    5c:cc:ac:f2:76:fb:9e:b6:2e:40:da:b8:c1:c8:cd:
+                    24:90:63:10:6c:99:ee:0c:10:74:cc:38:b8:f3:b4:
+                    d9:ed:1e:ac:07:29:b4:fe:f1:16:c2:18:7c:34:fd:
+                    50:25:0f:f7:45:84:e0:4b:21:41:a4:5b:19:42:85:
+                    a3:a8:d3:6a:ea:0f:80:f3:1a:06:f8:aa:31:4b:e5:
+                    44:a8:37:80:d1:1b:01:ae:f3:b8:35:c6:3f:10:82:
+                    84:fc:59:d9:47:d6:a9:e3:5e:f3:9f:89:23:6a:ed:
+                    bc:92:6a:a1:49:2c:99:c3:89:b3:ab:3a:9f:6b:2d:
+                    e6:39:95:15:e0:71:5f:6b:6a:23:2e:bc:cd:40:b2:
+                    47:42:13:f4:f5:e7:43:76:5c:db:9d:10:3b:91:10:
+                    cc:c7:27:db:a8:18:53:c9:50:eb:83:39:80:98:bf:
+                    c0:cf:75:a8:31:56:2c:0f:32:44:b0:b8:2d:22:f9:
+                    f6:a2:d6:0b:cf:5f:a2:89:7c:15:97:a9:01:5c:97:
+                    6a:b9:9c:c2:aa:fd:a3:d9:aa:61:04:65:e4:13:7e:
+                    58:7d
                 Exponent: 65537 (0x10001)
         X509v3 extensions:
             X509v3 Basic Constraints: critical
@@ -28,32 +37,45 @@ Certificate:
             X509v3 Key Usage: critical
                 Certificate Sign, CRL Sign
             X509v3 Subject Key Identifier:
-                2C:25:19:A1:6C:B3:F7:69:FD:76:9B:3A:22:CB:0C:56:01:01:F1:31
+                61:DF:EE:CE:DA:49:6B:5E:F3:EF:94:FE:F9:DC:C7:C0:5A:74:FE:DB
             Netscape Comment:
                 Puppet Server Internal Certificate
             X509v3 Authority Key Identifier:
-                keyid:2C:25:19:A1:6C:B3:F7:69:FD:76:9B:3A:22:CB:0C:56:01:01:F1:31
+                keyid:61:DF:EE:CE:DA:49:6B:5E:F3:EF:94:FE:F9:DC:C7:C0:5A:74:FE:DB
     Signature Algorithm: sha256WithRSAEncryption
-         12:60:01:ec:ea:6c:bc:d6:4e:e7:40:b6:9f:cd:8c:6e:6d:42:
-         4f:d8:db:42:f8:8d:04:09:48:ad:22:50:e5:de:7f:ec:d5:19:
-         21:3f:6b:d0:85:d4:75:20:18:a7:cc:a0:7c:b2:08:6f:d6:7b:
-         a7:63:22:25:1b:f8:20:66:ea:b7:40:09:25:05:7b:61:6d:a1:
-         4f:af:72:51:c9:c8:42:87:04:ab:6e:b6:98:ed:f9:9c:98:64:
-         dc:78:e0:f1:21:16:46:93:67:89:af:a7:da:b4:8d:b7:11:a8:
-         9a:9b:66:be:a4:7f:71:84:57:b4:2b:3c:56:e0:37:f9:6a:29:
-         cd:4a
+         86:10:78:cb:49:09:83:84:9c:7f:33:c8:fc:08:d6:db:02:b7:
+         d3:e7:6b:62:3a:fd:37:d6:b8:a7:5c:8c:42:fb:b0:d6:de:5c:
+         5b:47:2c:22:05:e3:9b:05:2d:96:23:96:2f:40:c7:22:aa:32:
+         5d:b9:73:31:44:c2:60:f1:e5:d8:a3:c1:38:68:ec:37:4e:b0:
+         da:5e:88:b6:64:6b:8d:c3:fc:bd:08:df:81:f9:16:5a:27:1b:
+         3e:7d:8c:ac:7c:59:52:b9:cd:f3:77:1a:dc:fe:4e:92:cd:2b:
+         29:1e:0b:ea:1a:90:a4:da:39:06:52:6f:15:db:58:58:b1:9f:
+         7a:3f:e2:a1:b2:8e:ce:32:e2:5c:f4:55:0d:21:0a:53:35:ce:
+         50:fd:98:6a:c1:1f:72:83:69:a3:43:0b:3b:f5:36:76:5e:c3:
+         cb:1d:47:51:a0:e4:1f:1f:2a:ce:8e:8c:da:41:ce:4b:ea:47:
+         2d:36:d5:2d:d5:e0:44:39:4d:07:1e:79:65:5c:69:46:1a:9a:
+         12:ba:ce:55:9c:73:ed:75:51:30:db:71:f9:34:87:08:ec:a0:
+         23:6e:c3:8e:da:81:4f:3d:3b:70:42:a6:f8:16:82:03:17:ca:
+         ba:73:4a:8d:34:36:c1:b6:2a:ef:85:89:26:2a:a2:34:db:fc:
+         c9:b8:1b:0b
 -----BEGIN CERTIFICATE-----
-MIICLzCCAZigAwIBAgIBCDANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDDAdUZXN0
-IENBMB4XDTcwMDEwMTAwMDAwMFoXDTI5MDQxOTIyMzEyMlowEjEQMA4GA1UEAwwH
-VGVzdCBDQTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA0LPYPyvARYzwPZZY
-LF4OakaBqxAvIpx8afBhty3yL0aX1dkbCMjJ6Bil2Iknp4DLCo7uJjKJcDcrv29+
-7hJ9SccMGUZ8ZZncHxoxr6uHAbNoiltRp3jKzB18JrQnX2d1mX6fFu2Is493D7Po
-s5e8cIvsYrmiR0vv3K/Unz0XzQMCAwEAAaOBlDCBkTAMBgNVHRMBAf8EAjAAMA4G
-A1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQULCUZoWyz92n9dps6IssMVgEB8TEwMQYJ
-YIZIAYb4QgENBCQWIlB1cHBldCBTZXJ2ZXIgSW50ZXJuYWwgQ2VydGlmaWNhdGUw
-HwYDVR0jBBgwFoAULCUZoWyz92n9dps6IssMVgEB8TEwDQYJKoZIhvcNAQELBQAD
-gYEAEmAB7OpsvNZO50C2n82Mbm1CT9jbQviNBAlIrSJQ5d5/7NUZIT9r0IXUdSAY
-p8ygfLIIb9Z7p2MiJRv4IGbqt0AJJQV7YW2hT69yUcnIQocEq262mO35nJhk3Hjg
-8SEWRpNnia+n2rSNtxGomptmvqR/cYRXtCs8VuA3+WopzUo=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 -----END CERTIFICATE-----

data/spec/fixtures/ssl/bad-int-basic-constraints.pem CHANGED Viewed

@@ -1,26 +1,35 @@
 Certificate:
     Data:
         Version: 3 (0x2)
-        Serial Number: 1 (0x1)
-    Signature Algorithm: sha256WithRSAEncryption
+        Serial Number: 3 (0x3)
+        Signature Algorithm: sha256WithRSAEncryption
         Issuer: CN=Test CA
         Validity
             Not Before: Jan  1 00:00:00 1970 GMT
-            Not After : Apr 19 22:31:22 2029 GMT
+            Not After : Apr 18 18:46:23 2031 GMT
         Subject: CN=Test CA Subauthority
         Subject Public Key Info:
             Public Key Algorithm: rsaEncryption
-                Public-Key: (1024 bit)
+                RSA Public-Key: (2048 bit)
                 Modulus:
-                    00:c2:4a:6e:07:c6:1c:8b:2f:bf:91:3e:25:dc:54:
-                    2c:02:0f:1b:6f:5b:0e:5a:69:1d:dd:52:3f:8b:f4:
-                    c8:56:c6:f3:c5:56:2c:b8:82:67:81:09:7b:0d:6f:
-                    01:26:4a:ae:42:53:95:b1:32:ba:07:d4:64:bc:79:
-                    1f:16:0a:92:07:e5:af:5d:d6:b3:4d:09:58:b1:8a:
-                    ba:2c:c0:d3:9b:95:cc:a1:0d:e5:4d:40:1a:50:2d:
-                    a4:45:ff:05:63:62:84:35:73:2c:0f:b3:f6:69:fd:
-                    9b:d3:5e:a8:12:f0:c4:a0:77:25:59:e7:81:3d:ee:
-                    c5:22:10:75:ac:ad:cc:a4:1f
+                    00:cd:ef:ef:31:c5:33:69:3b:ee:25:06:b9:73:a7:
+                    09:e5:c9:9c:0b:39:48:26:fb:88:26:50:2d:8a:52:
+                    29:86:df:7a:12:f0:08:ea:61:52:80:98:9f:a5:45:
+                    26:ad:6d:05:e6:b5:81:e5:91:b3:6b:98:53:09:0a:
+                    e9:05:4b:29:de:3c:64:44:a7:d2:5d:3f:fc:5f:f8:
+                    29:1f:b0:40:e2:74:8a:26:fd:e8:d7:74:a5:78:de:
+                    bf:23:10:73:74:8d:1b:0c:4b:d7:1d:a9:ae:86:14:
+                    05:63:7c:2a:00:38:d6:57:8a:b7:a8:45:80:27:f5:
+                    71:0b:fa:e2:bd:a2:d1:08:8d:fa:cd:9c:f6:ad:89:
+                    76:ea:ab:1c:78:f9:26:5b:a3:18:2a:f7:90:15:ed:
+                    a7:db:50:e9:7d:55:99:7e:05:10:ca:56:11:51:5e:
+                    de:8c:e2:be:2a:8a:34:41:1d:1d:23:92:04:50:05:
+                    c5:5b:b8:7a:45:90:ee:0d:7f:01:b1:ed:d4:dd:c5:
+                    28:ed:7d:4d:6a:70:21:3b:95:5e:e2:31:d7:17:bd:
+                    5b:af:e4:ce:ad:6b:9f:5f:9e:e1:1e:86:ff:83:c1:
+                    88:ec:87:bb:bf:a1:26:22:75:b9:57:31:10:fd:a5:
+                    ca:82:70:6d:c8:a1:a3:f6:3e:76:3d:2e:cd:07:f9:
+                    7b:3f
                 Exponent: 65537 (0x10001)
         X509v3 extensions:
             X509v3 Basic Constraints: critical
@@ -28,32 +37,45 @@ Certificate:
             X509v3 Key Usage: critical
                 Certificate Sign, CRL Sign
             X509v3 Subject Key Identifier:
-                23:78:2F:09:81:B0:7B:C6:79:1F:30:FE:FC:5E:37:14:FF:20:A0:20
+                9A:15:19:07:A0:54:8D:C3:9D:4F:07:C4:05:A1:85:AC:92:D8:B1:E5
             Netscape Comment:
                 Puppet Server Internal Certificate
             X509v3 Authority Key Identifier:
-                keyid:2C:25:19:A1:6C:B3:F7:69:FD:76:9B:3A:22:CB:0C:56:01:01:F1:31
+                keyid:61:DF:EE:CE:DA:49:6B:5E:F3:EF:94:FE:F9:DC:C7:C0:5A:74:FE:DB
     Signature Algorithm: sha256WithRSAEncryption
-         7a:8a:07:aa:d1:4d:7b:5b:01:cf:d3:9f:b0:3f:03:2e:ac:4b:
-         31:e8:86:4d:ca:c0:fb:cb:c2:80:73:60:ea:1e:0c:2f:7c:01:
-         fc:78:4e:3d:9b:be:16:85:bf:bc:c9:7b:41:9d:de:74:69:82:
-         97:b6:e1:e2:37:40:4b:36:ba:ad:fa:bd:c6:73:21:d9:c4:e5:
-         96:d6:6a:bf:c9:dc:0a:0e:9e:0b:44:5c:2f:b3:5a:54:75:14:
-         2b:53:a8:27:6f:8b:94:c9:27:cc:ed:8b:82:5b:09:b1:db:6d:
-         90:78:0a:e8:e2:ac:30:f6:1a:9f:77:4f:70:aa:4f:b7:61:fe:
-         49:41
+         d7:3a:0b:c1:06:57:c2:6c:f8:4e:79:c6:f9:0e:9c:a6:64:cc:
+         7b:c8:a5:7a:93:aa:d6:f5:e7:51:9a:26:6f:6c:b5:48:37:39:
+         ba:4b:6c:f8:d6:95:2d:db:e0:44:bd:f6:c9:a1:36:7a:12:0a:
+         b2:77:7b:84:c8:14:68:1e:c2:04:29:b5:83:3b:cf:29:dc:6b:
+         27:b3:ae:a3:24:aa:3b:0c:4c:4b:c0:7d:52:6d:5c:2c:d0:5d:
+         06:af:89:9a:0c:0f:2e:df:53:ae:82:23:36:e3:1a:cb:49:46:
+         e2:77:a1:3e:55:1c:81:f5:8e:c8:f2:da:8c:22:14:e6:84:47:
+         e9:56:8e:7a:c7:c4:54:e0:f1:f5:2f:00:c4:ad:e1:ff:ba:cb:
+         5e:66:22:f2:71:db:0e:31:22:5b:5e:ad:63:6e:bf:52:c9:4d:
+         91:cc:29:5d:b8:b3:d4:b0:a7:17:9b:bd:87:9b:09:ef:a2:68:
+         24:b2:1d:62:0a:f3:d6:15:7b:ba:26:7e:ca:e2:df:ac:4c:f9:
+         70:76:fc:fb:39:bf:d3:a8:21:19:2d:6d:a6:71:6f:e5:0f:c8:
+         9c:97:b0:5f:2c:85:d2:1f:b4:27:28:54:6f:30:f4:66:8a:bf:
+         cc:09:5c:0d:19:85:b6:04:8c:7c:03:a4:fc:a3:80:dc:1c:5b:
+         61:6d:12:0a
 -----BEGIN CERTIFICATE-----
-MIICPDCCAaWgAwIBAgIBATANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDDAdUZXN0
-IENBMB4XDTcwMDEwMTAwMDAwMFoXDTI5MDQxOTIyMzEyMlowHzEdMBsGA1UEAwwU
-VGVzdCBDQSBTdWJhdXRob3JpdHkwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGB
-AMJKbgfGHIsvv5E+JdxULAIPG29bDlppHd1SP4v0yFbG88VWLLiCZ4EJew1vASZK
-rkJTlbEyugfUZLx5HxYKkgflr13Ws00JWLGKuizA05uVzKEN5U1AGlAtpEX/BWNi
-hDVzLA+z9mn9m9NeqBLwxKB3JVnngT3uxSIQdaytzKQfAgMBAAGjgZQwgZEwDAYD
-VR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFCN4LwmBsHvGeR8w
-/vxeNxT/IKAgMDEGCWCGSAGG+EIBDQQkFiJQdXBwZXQgU2VydmVyIEludGVybmFs
-IENlcnRpZmljYXRlMB8GA1UdIwQYMBaAFCwlGaFss/dp/XabOiLLDFYBAfExMA0G
-CSqGSIb3DQEBCwUAA4GBAHqKB6rRTXtbAc/Tn7A/Ay6sSzHohk3KwPvLwoBzYOoe
-DC98Afx4Tj2bvhaFv7zJe0Gd3nRpgpe24eI3QEs2uq36vcZzIdnE5ZbWar/J3AoO
-ngtEXC+zWlR1FCtTqCdvi5TJJ8zti4JbCbHbbZB4CujirDD2Gp93T3CqT7dh/klB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 -----END CERTIFICATE-----

data/spec/fixtures/ssl/ca.pem CHANGED Viewed

@@ -1,26 +1,35 @@
 Certificate:
     Data:
         Version: 3 (0x2)
-        Serial Number: 0 (0x0)
-    Signature Algorithm: sha256WithRSAEncryption
+        Serial Number: 2 (0x2)
+        Signature Algorithm: sha256WithRSAEncryption
         Issuer: CN=Test CA
         Validity
             Not Before: Jan  1 00:00:00 1970 GMT
-            Not After : Apr 19 22:31:22 2029 GMT
+            Not After : Apr 18 18:46:23 2031 GMT
         Subject: CN=Test CA
         Subject Public Key Info:
             Public Key Algorithm: rsaEncryption
-                Public-Key: (1024 bit)
+                RSA Public-Key: (2048 bit)
                 Modulus:
-                    00:d0:b3:d8:3f:2b:c0:45:8c:f0:3d:96:58:2c:5e:
-                    0e:6a:46:81:ab:10:2f:22:9c:7c:69:f0:61:b7:2d:
-                    f2:2f:46:97:d5:d9:1b:08:c8:c9:e8:18:a5:d8:89:
-                    27:a7:80:cb:0a:8e:ee:26:32:89:70:37:2b:bf:6f:
-                    7e:ee:12:7d:49:c7:0c:19:46:7c:65:99:dc:1f:1a:
-                    31:af:ab:87:01:b3:68:8a:5b:51:a7:78:ca:cc:1d:
-                    7c:26:b4:27:5f:67:75:99:7e:9f:16:ed:88:b3:8f:
-                    77:0f:b3:e8:b3:97:bc:70:8b:ec:62:b9:a2:47:4b:
-                    ef:dc:af:d4:9f:3d:17:cd:03
+                    00:dd:a5:83:44:db:51:be:98:ef:b1:63:a7:04:b9:
+                    ff:cd:71:d3:06:76:c4:25:68:e8:ea:ef:c5:b4:f9:
+                    c2:76:aa:c0:1b:1b:0f:44:13:da:db:cf:d4:f4:88:
+                    5c:cc:ac:f2:76:fb:9e:b6:2e:40:da:b8:c1:c8:cd:
+                    24:90:63:10:6c:99:ee:0c:10:74:cc:38:b8:f3:b4:
+                    d9:ed:1e:ac:07:29:b4:fe:f1:16:c2:18:7c:34:fd:
+                    50:25:0f:f7:45:84:e0:4b:21:41:a4:5b:19:42:85:
+                    a3:a8:d3:6a:ea:0f:80:f3:1a:06:f8:aa:31:4b:e5:
+                    44:a8:37:80:d1:1b:01:ae:f3:b8:35:c6:3f:10:82:
+                    84:fc:59:d9:47:d6:a9:e3:5e:f3:9f:89:23:6a:ed:
+                    bc:92:6a:a1:49:2c:99:c3:89:b3:ab:3a:9f:6b:2d:
+                    e6:39:95:15:e0:71:5f:6b:6a:23:2e:bc:cd:40:b2:
+                    47:42:13:f4:f5:e7:43:76:5c:db:9d:10:3b:91:10:
+                    cc:c7:27:db:a8:18:53:c9:50:eb:83:39:80:98:bf:
+                    c0:cf:75:a8:31:56:2c:0f:32:44:b0:b8:2d:22:f9:
+                    f6:a2:d6:0b:cf:5f:a2:89:7c:15:97:a9:01:5c:97:
+                    6a:b9:9c:c2:aa:fd:a3:d9:aa:61:04:65:e4:13:7e:
+                    58:7d
                 Exponent: 65537 (0x10001)
         X509v3 extensions:
             X509v3 Basic Constraints: critical
@@ -28,32 +37,45 @@ Certificate:
             X509v3 Key Usage: critical
                 Certificate Sign, CRL Sign
             X509v3 Subject Key Identifier:
-                2C:25:19:A1:6C:B3:F7:69:FD:76:9B:3A:22:CB:0C:56:01:01:F1:31
+                61:DF:EE:CE:DA:49:6B:5E:F3:EF:94:FE:F9:DC:C7:C0:5A:74:FE:DB
             Netscape Comment:
                 Puppet Server Internal Certificate
             X509v3 Authority Key Identifier:
-                keyid:2C:25:19:A1:6C:B3:F7:69:FD:76:9B:3A:22:CB:0C:56:01:01:F1:31
+                keyid:61:DF:EE:CE:DA:49:6B:5E:F3:EF:94:FE:F9:DC:C7:C0:5A:74:FE:DB
     Signature Algorithm: sha256WithRSAEncryption
-         1c:a2:87:ce:19:24:db:66:41:6b:42:a9:19:85:76:5d:0f:9d:
-         30:18:6f:b7:90:7f:6a:c5:00:ce:21:73:4d:3e:c0:75:93:6d:
-         c6:d9:3b:ad:4c:4a:46:75:f3:51:96:f2:ad:c2:13:53:f0:e3:
-         f1:a6:49:0f:e7:4f:73:b6:60:9c:9d:52:c9:b6:61:4d:31:3f:
-         94:12:7f:ef:8c:f5:81:ea:7a:13:8e:11:8b:7c:83:80:65:50:
-         d2:3d:21:34:07:0a:58:25:43:8f:e6:c6:c9:30:7d:d8:8d:3d:
-         17:8b:43:78:43:0d:6b:43:ea:72:d7:84:2a:ac:f9:02:be:d1:
-         10:a0
+         28:6c:ca:8a:1f:b2:01:4b:35:d1:55:07:c8:7c:79:5f:fb:a2:
+         e0:09:e9:25:d5:db:9f:d6:91:a8:cc:66:b1:63:bd:ad:f8:80:
+         80:32:43:eb:77:ee:d7:fd:48:27:26:bb:e1:48:67:83:7c:91:
+         4d:62:96:d6:6c:ce:37:5d:ff:f8:6a:f4:8d:31:3b:4c:f4:0d:
+         4f:75:61:08:01:99:f0:92:d2:d0:50:08:6e:c3:0d:25:3b:5b:
+         53:60:da:fa:90:02:2b:29:90:3f:f8:23:bb:9c:4c:0f:ad:d0:
+         cc:1b:21:56:26:40:97:7c:86:33:31:7d:fd:a9:5f:53:14:3e:
+         80:5f:91:09:f7:76:e4:ad:30:17:d0:aa:52:ef:e8:f6:6e:b7:
+         8e:68:47:9b:f8:63:3e:50:52:ba:eb:4a:9e:40:c5:84:aa:94:
+         49:0a:8a:ff:17:57:18:bd:fc:4d:71:6d:83:ee:4d:7e:40:6c:
+         08:c5:ee:6e:0d:c6:97:ba:6d:35:80:89:c5:c5:95:7b:f0:d0:
+         0a:39:2f:8e:70:03:bf:da:56:1d:59:6c:2c:c9:04:9b:d6:b2:
+         f3:1b:cf:4f:f3:12:47:eb:05:ea:42:70:4f:02:33:d1:5e:27:
+         a0:e3:66:d6:b0:d5:ab:e2:32:ad:e8:50:e1:f2:eb:17:ad:87:
+         31:22:fe:22
 -----BEGIN CERTIFICATE-----
-MIICMjCCAZugAwIBAgIBADANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDDAdUZXN0
-IENBMB4XDTcwMDEwMTAwMDAwMFoXDTI5MDQxOTIyMzEyMlowEjEQMA4GA1UEAwwH
-VGVzdCBDQTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA0LPYPyvARYzwPZZY
-LF4OakaBqxAvIpx8afBhty3yL0aX1dkbCMjJ6Bil2Iknp4DLCo7uJjKJcDcrv29+
-7hJ9SccMGUZ8ZZncHxoxr6uHAbNoiltRp3jKzB18JrQnX2d1mX6fFu2Is493D7Po
-s5e8cIvsYrmiR0vv3K/Unz0XzQMCAwEAAaOBlzCBlDAPBgNVHRMBAf8EBTADAQH/
-MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQULCUZoWyz92n9dps6IssMVgEB8TEw
-MQYJYIZIAYb4QgENBCQWIlB1cHBldCBTZXJ2ZXIgSW50ZXJuYWwgQ2VydGlmaWNh
-dGUwHwYDVR0jBBgwFoAULCUZoWyz92n9dps6IssMVgEB8TEwDQYJKoZIhvcNAQEL
-BQADgYEAHKKHzhkk22ZBa0KpGYV2XQ+dMBhvt5B/asUAziFzTT7AdZNtxtk7rUxK
-RnXzUZbyrcITU/Dj8aZJD+dPc7ZgnJ1SybZhTTE/lBJ/74z1gep6E44Ri3yDgGVQ
-0j0hNAcKWCVDj+bGyTB92I09F4tDeEMNa0PqcteEKqz5Ar7REKA=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 -----END CERTIFICATE-----

data/spec/fixtures/ssl/crl.pem CHANGED Viewed

@@ -1,30 +1,40 @@
 Certificate Revocation List (CRL):
         Version 2 (0x1)
-    Signature Algorithm: sha256WithRSAEncryption
-        Issuer: /CN=Test CA
+        Signature Algorithm: sha256WithRSAEncryption
+        Issuer: CN=Test CA
         Last Update: Jan  1 00:00:00 1970 GMT
-        Next Update: Apr 19 22:31:22 2029 GMT
+        Next Update: Apr 18 18:46:23 2031 GMT
         CRL extensions:
             X509v3 Authority Key Identifier:
-                keyid:2C:25:19:A1:6C:B3:F7:69:FD:76:9B:3A:22:CB:0C:56:01:01:F1:31
+                keyid:61:DF:EE:CE:DA:49:6B:5E:F3:EF:94:FE:F9:DC:C7:C0:5A:74:FE:DB
             X509v3 CRL Number:
                 0
 No Revoked Certificates.
     Signature Algorithm: sha256WithRSAEncryption
-         48:c8:b3:f8:53:4c:79:92:ea:3e:19:c4:96:14:93:90:c4:e0:
-         6f:77:26:cb:6b:12:58:35:44:e7:5e:fb:b2:13:dc:5b:be:41:
-         09:1a:08:ab:15:38:73:a7:17:48:68:d0:64:d4:77:b6:5b:b1:
-         9c:1c:f6:2c:dd:ab:d7:83:97:ac:0d:5f:af:b2:81:90:2b:5f:
-         fa:2d:cf:f3:ee:1a:76:b5:3d:d2:9e:49:8c:71:dc:fc:cc:82:
-         2a:4a:81:80:35:2c:9f:8e:df:7e:83:89:f9:62:c1:e7:5a:7f:
-         34:cd:fa:da:83:bf:c9:4b:61:fd:c0:f5:16:e5:e1:b4:b9:70:
-         af:9a
+         6e:b5:9c:17:8b:61:3c:41:07:ac:de:27:18:ba:92:56:51:50:
+         23:d8:f9:1f:70:b8:a6:eb:ae:6c:2c:67:c1:0e:ae:96:0f:f4:
+         bc:0a:f3:bc:23:15:67:b0:32:a2:e0:4f:2c:7f:f9:c2:9d:91:
+         2e:32:01:60:3b:e4:ad:05:b6:60:f1:90:9d:cd:63:a5:62:c1:
+         4d:04:d6:90:30:f8:43:97:e6:88:0a:2a:65:8f:49:12:d6:41:
+         5e:11:62:00:a5:ff:0f:c3:3e:97:e0:93:31:de:64:7c:11:a5:
+         7b:f1:77:0a:8e:00:23:4c:9d:b1:c5:b5:41:bf:96:da:b7:c7:
+         e7:8c:44:1b:c2:de:15:0f:da:32:52:45:65:54:dc:1b:a7:5b:
+         d3:a2:b5:6e:85:3b:97:d9:09:52:c6:4d:6c:18:a4:22:58:11:
+         bf:12:27:2f:64:00:a5:9a:7d:b8:10:0c:6d:eb:b8:70:ee:e2:
+         58:86:eb:31:48:c0:af:92:92:fc:2e:1f:0f:61:77:7c:5c:a8:
+         ca:bc:52:94:e4:f2:bc:c2:f1:fa:aa:16:63:9d:16:51:92:7b:
+         ad:da:fd:94:ed:3d:e9:8c:ad:ba:95:34:98:6a:ea:e6:9c:8e:
+         38:a3:20:34:19:63:1e:7f:f3:26:07:7f:46:27:01:85:91:46:
+         44:66:c7:03
 -----BEGIN X509 CRL-----
-MIIBCjB1AgEBMA0GCSqGSIb3DQEBCwUAMBIxEDAOBgNVBAMMB1Rlc3QgQ0EXDTcw
-MDEwMTAwMDAwMFoXDTI5MDQxOTIyMzEyMlqgLzAtMB8GA1UdIwQYMBaAFCwlGaFs
-s/dp/XabOiLLDFYBAfExMAoGA1UdFAQDAgEAMA0GCSqGSIb3DQEBCwUAA4GBAEjI
-s/hTTHmS6j4ZxJYUk5DE4G93JstrElg1ROde+7IT3Fu+QQkaCKsVOHOnF0ho0GTU
-d7ZbsZwc9izdq9eDl6wNX6+ygZArX/otz/PuGna1PdKeSYxx3PzMgipKgYA1LJ+O
-336DifliwedafzTN+tqDv8lLYf3A9Rbl4bS5cK+a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 -----END X509 CRL-----

data/spec/fixtures/ssl/ec-key.pem CHANGED Viewed

@@ -1,18 +1,18 @@
 Private-Key: (256 bit)
 priv:
-    7e:cc:3d:2f:ed:f2:aa:9b:a4:9d:ad:13:f1:ef:5c:
-    e3:4f:3a:81:24:63:f3:cd:07:1c:74:6a:ec:c8:97:
-    47:83
+    f6:29:ef:a1:4b:33:2a:e1:ed:f9:25:c3:d1:53:81:
+    26:8d:65:e7:be:33:ea:b4:0e:7b:fa:d8:f5:58:53:
+    a6:a3
 pub:
-    04:b0:b9:7e:1e:25:44:42:3d:40:24:bb:e7:e5:34:
-    e6:16:05:b8:f0:ee:bf:0f:10:23:40:ff:af:40:7e:
-    1b:1c:3a:4b:e7:35:e4:06:98:97:ac:94:da:16:1f:
-    46:4f:72:0c:4b:08:b7:86:c0:a7:57:17:aa:57:a3:
-    1a:ba:b8:93:4e
+    04:c4:23:3b:de:c0:ca:4f:ea:d4:e9:b2:de:9f:df:
+    22:97:5b:89:48:de:a6:6c:82:f6:b6:fc:a9:e5:cb:
+    14:f9:e6:2c:ce:08:5c:e2:99:55:ff:55:c2:03:33:
+    90:49:13:9a:3f:25:29:70:19:2c:20:5e:8a:09:ad:
+    cd:9e:86:0a:e6
 ASN1 OID: prime256v1
 NIST CURVE: P-256
 -----BEGIN EC PRIVATE KEY-----
-MHcCAQEEIH7MPS/t8qqbpJ2tE/HvXONPOoEkY/PNBxx0auzIl0eDoAoGCCqGSM49
-AwEHoUQDQgAEsLl+HiVEQj1AJLvn5TTmFgW48O6/DxAjQP+vQH4bHDpL5zXkBpiX
-rJTaFh9GT3IMSwi3hsCnVxeqV6MauriTTg==
+MHcCAQEEIPYp76FLMyrh7fklw9FTgSaNZee+M+q0Dnv62PVYU6ajoAoGCCqGSM49
+AwEHoUQDQgAExCM73sDKT+rU6bLen98il1uJSN6mbIL2tvyp5csU+eYszghc4plV
+/1XCAzOQSROaPyUpcBksIF6KCa3NnoYK5g==
 -----END EC PRIVATE KEY-----

data/spec/fixtures/ssl/ec.pem CHANGED Viewed

@@ -1,40 +1,49 @@
 Certificate:
     Data:
         Version: 3 (0x2)
-        Serial Number: 5 (0x5)
-    Signature Algorithm: sha256WithRSAEncryption
+        Serial Number: 7 (0x7)
+        Signature Algorithm: sha256WithRSAEncryption
         Issuer: CN=Test CA Subauthority
         Validity
             Not Before: Jan  1 00:00:00 1970 GMT
-            Not After : Apr 19 22:31:22 2029 GMT
+            Not After : Apr 18 18:46:23 2031 GMT
         Subject: CN=ec
         Subject Public Key Info:
             Public Key Algorithm: id-ecPublicKey
                 Public-Key: (256 bit)
                 pub:
-                    04:b0:b9:7e:1e:25:44:42:3d:40:24:bb:e7:e5:34:
-                    e6:16:05:b8:f0:ee:bf:0f:10:23:40:ff:af:40:7e:
-                    1b:1c:3a:4b:e7:35:e4:06:98:97:ac:94:da:16:1f:
-                    46:4f:72:0c:4b:08:b7:86:c0:a7:57:17:aa:57:a3:
-                    1a:ba:b8:93:4e
+                    04:c4:23:3b:de:c0:ca:4f:ea:d4:e9:b2:de:9f:df:
+                    22:97:5b:89:48:de:a6:6c:82:f6:b6:fc:a9:e5:cb:
+                    14:f9:e6:2c:ce:08:5c:e2:99:55:ff:55:c2:03:33:
+                    90:49:13:9a:3f:25:29:70:19:2c:20:5e:8a:09:ad:
+                    cd:9e:86:0a:e6
                 ASN1 OID: prime256v1
                 NIST CURVE: P-256
     Signature Algorithm: sha256WithRSAEncryption
-         02:89:4d:ca:b0:89:38:e7:c3:ee:d8:55:76:7a:b6:b6:8c:8a:
-         a7:38:ef:62:97:3d:c6:83:5f:08:3d:39:d1:ea:50:12:32:37:
-         6d:c6:aa:42:21:8b:39:46:e7:a9:a0:16:6f:80:c0:8a:08:19:
-         4b:21:cb:14:59:49:d3:e7:f7:5b:ac:0f:ed:67:c3:b6:fa:c7:
-         7d:60:38:70:c5:6c:df:a0:3f:e5:c0:79:ce:2d:21:a5:4b:48:
-         50:a7:22:b3:71:d7:1a:44:47:8a:96:eb:e9:d3:fa:8d:dc:18:
-         7f:1e:45:86:a0:05:6e:61:8f:33:6a:ae:4e:21:60:5d:49:ee:
-         17:28
+         27:2e:2b:92:93:5d:39:da:ea:0e:ae:02:eb:aa:30:a5:bb:1a:
+         d5:e0:41:41:b5:6c:12:49:4d:61:39:1a:49:fc:5e:6a:22:ec:
+         7a:b0:4d:3e:ee:aa:f4:e9:c8:62:fd:c1:72:6d:c0:ee:21:0c:
+         eb:fb:5b:b1:81:ff:4e:bf:a7:c9:e8:37:02:2d:e3:f4:5c:49:
+         5f:e1:6f:96:9f:02:46:a6:8c:1d:d1:e8:50:f8:40:b2:db:a8:
+         c9:2d:5d:40:39:e7:31:c8:8f:9c:5a:bc:f8:a2:97:70:8d:fc:
+         0c:f1:ce:a2:66:7b:14:c8:ae:30:c7:90:8e:cb:ce:e3:b9:69:
+         9c:b8:6e:9e:61:a9:1b:90:28:2d:10:b3:5a:a1:b5:49:5a:48:
+         2f:7b:80:ef:db:e3:41:c6:c4:a1:46:87:0c:d9:b2:fc:16:fb:
+         ff:b6:93:ca:5e:67:73:1c:14:8a:a4:33:44:13:be:75:7c:6b:
+         61:3a:42:79:fc:a2:20:1a:cc:90:a4:63:3c:a2:b2:e2:52:0a:
+         03:21:6b:94:57:0e:4b:ab:30:b4:49:21:2f:bf:ae:aa:fc:62:
+         62:f9:f7:03:ba:5f:99:6d:50:5c:03:61:7f:9e:96:1d:07:dd:
+         32:f0:b7:80:22:4c:4c:00:50:59:2b:c8:76:1e:c3:b8:e5:0f:
+         ad:f0:1c:d8
 -----BEGIN CERTIFICATE-----
-MIIBWDCBwqADAgECAgEFMA0GCSqGSIb3DQEBCwUAMB8xHTAbBgNVBAMMFFRlc3Qg
-Q0EgU3ViYXV0aG9yaXR5MB4XDTcwMDEwMTAwMDAwMFoXDTI5MDQxOTIyMzEyMlow
-DTELMAkGA1UEAwwCZWMwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAASwuX4eJURC
-PUAku+flNOYWBbjw7r8PECNA/69AfhscOkvnNeQGmJeslNoWH0ZPcgxLCLeGwKdX
-F6pXoxq6uJNOMA0GCSqGSIb3DQEBCwUAA4GBAAKJTcqwiTjnw+7YVXZ6traMiqc4
-72KXPcaDXwg9OdHqUBIyN23GqkIhizlG56mgFm+AwIoIGUshyxRZSdPn91usD+1n
-w7b6x31gOHDFbN+gP+XAec4tIaVLSFCnIrNx1xpER4qW6+nT+o3cGH8eRYagBW5h
-jzNqrk4hYF1J7hco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 -----END CERTIFICATE-----