puppet 6.29.0-x64-mingw32 → 7.0.0-x64-mingw32
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of puppet might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/CODEOWNERS +16 -2
- data/CONTRIBUTING.md +5 -5
- data/Gemfile +5 -7
- data/Gemfile.lock +52 -143
- data/README.md +5 -5
- data/conf/fileserver.conf +5 -10
- data/ext/README.environment +8 -0
- data/ext/build_defaults.yaml +1 -1
- data/ext/dbfix.sql +132 -0
- data/ext/debian/README.Debian +8 -0
- data/ext/debian/README.source +2 -0
- data/ext/debian/TODO.Debian +1 -0
- data/ext/debian/changelog.erb +1122 -0
- data/ext/debian/compat +1 -0
- data/ext/debian/control +144 -0
- data/ext/debian/copyright +339 -0
- data/ext/debian/docs +1 -0
- data/ext/debian/fileserver.conf +41 -0
- data/ext/debian/puppet-common.dirs +13 -0
- data/ext/debian/puppet-common.install +3 -0
- data/ext/debian/puppet-common.lintian-overrides +5 -0
- data/ext/debian/puppet-common.manpages +28 -0
- data/ext/debian/puppet-common.postinst +35 -0
- data/ext/debian/puppet-common.postrm +33 -0
- data/ext/debian/puppet-el.dirs +1 -0
- data/ext/debian/puppet-el.emacsen-install +25 -0
- data/ext/debian/puppet-el.emacsen-remove +11 -0
- data/ext/debian/puppet-el.emacsen-startup +9 -0
- data/ext/debian/puppet-el.install +1 -0
- data/ext/debian/puppet-testsuite.install +2 -0
- data/ext/debian/puppet-testsuite.lintian-overrides +4 -0
- data/ext/debian/puppet.lintian-overrides +3 -0
- data/ext/debian/puppet.logrotate +20 -0
- data/ext/debian/puppet.postinst +20 -0
- data/ext/debian/puppet.postrm +20 -0
- data/ext/debian/puppet.preinst +20 -0
- data/ext/debian/puppetmaster-common.install +2 -0
- data/ext/debian/puppetmaster-common.manpages +2 -0
- data/ext/debian/puppetmaster-common.postinst +6 -0
- data/ext/debian/puppetmaster-passenger.dirs +4 -0
- data/ext/debian/puppetmaster-passenger.postinst +162 -0
- data/ext/debian/puppetmaster-passenger.postrm +61 -0
- data/ext/debian/puppetmaster.README.debian +17 -0
- data/ext/debian/puppetmaster.default +14 -0
- data/ext/debian/puppetmaster.init +137 -0
- data/ext/debian/puppetmaster.lintian-overrides +3 -0
- data/ext/debian/puppetmaster.postinst +20 -0
- data/ext/debian/puppetmaster.postrm +5 -0
- data/ext/debian/puppetmaster.preinst +22 -0
- data/ext/debian/rules +132 -0
- data/ext/debian/source/format +1 -0
- data/ext/debian/source/options +1 -0
- data/ext/debian/vim-puppet.README.Debian +13 -0
- data/ext/debian/vim-puppet.dirs +5 -0
- data/ext/debian/vim-puppet.yaml +7 -0
- data/ext/debian/watch +2 -0
- data/ext/freebsd/puppetd +26 -0
- data/ext/freebsd/puppetmasterd +26 -0
- data/ext/gentoo/conf.d/puppet +5 -0
- data/ext/gentoo/conf.d/puppetmaster +12 -0
- data/ext/gentoo/init.d/puppet +38 -0
- data/ext/gentoo/init.d/puppetmaster +51 -0
- data/ext/gentoo/puppet/fileserver.conf +41 -0
- data/ext/ips/puppet-agent +44 -0
- data/ext/ips/puppet-master +44 -0
- data/ext/ips/puppet.p5m.erb +12 -0
- data/ext/ips/puppetagent.xml +42 -0
- data/ext/ips/puppetmaster.xml +42 -0
- data/ext/ips/rules +19 -0
- data/ext/ips/transforms +34 -0
- data/ext/ldap/puppet.schema +24 -0
- data/ext/logcheck/puppet +23 -0
- data/{examples → ext}/nagios/check_puppet.rb +2 -2
- data/ext/osx/file_mapping.yaml +28 -0
- data/ext/osx/postflight.erb +109 -0
- data/ext/osx/preflight.erb +52 -0
- data/ext/osx/prototype.plist.erb +38 -0
- data/ext/osx/puppet.plist +0 -2
- data/ext/project_data.yaml +2 -16
- data/ext/redhat/fileserver.conf +41 -0
- data/ext/redhat/logrotate +21 -0
- data/ext/redhat/puppet.spec.erb +841 -0
- data/ext/redhat/server.init +128 -0
- data/ext/redhat/server.sysconfig +13 -0
- data/ext/solaris/pkginfo +6 -0
- data/ext/solaris/smf/puppetd.xml +77 -0
- data/ext/solaris/smf/puppetmasterd.xml +77 -0
- data/ext/solaris/smf/svc-puppetd +71 -0
- data/ext/solaris/smf/svc-puppetmasterd +67 -0
- data/ext/suse/puppet.spec +310 -0
- data/ext/suse/server.init +173 -0
- data/ext/windows/service/daemon.rb +6 -5
- data/ext/yaml_nodes.rb +105 -0
- data/install.rb +21 -17
- data/lib/puppet/agent.rb +11 -47
- data/lib/puppet/application/agent.rb +16 -18
- data/lib/puppet/application/apply.rb +4 -24
- data/lib/puppet/application/device.rb +100 -106
- data/lib/puppet/application/filebucket.rb +13 -10
- data/lib/puppet/application/lookup.rb +24 -74
- data/lib/puppet/application/resource.rb +16 -32
- data/lib/puppet/application/script.rb +0 -2
- data/lib/puppet/application/ssl.rb +1 -13
- data/lib/puppet/application.rb +178 -108
- data/lib/puppet/application_support.rb +0 -7
- data/lib/puppet/concurrent/thread_local_singleton.rb +3 -6
- data/lib/puppet/configurer/downloader.rb +1 -2
- data/lib/puppet/configurer/plugin_handler.rb +21 -19
- data/lib/puppet/configurer.rb +86 -183
- data/lib/puppet/confine/variable.rb +1 -1
- data/lib/puppet/defaults.rb +130 -244
- data/lib/puppet/environments.rb +82 -146
- data/lib/puppet/face/facts.rb +5 -103
- data/lib/puppet/face/generate.rb +0 -2
- data/lib/puppet/face/help/action.erb +0 -1
- data/lib/puppet/face/help/face.erb +0 -1
- data/lib/puppet/face/help.rb +1 -1
- data/lib/puppet/face/node/clean.rb +0 -11
- data/lib/puppet/face/plugin.rb +5 -8
- data/lib/puppet/ffi/windows/api_types.rb +311 -0
- data/lib/puppet/ffi/windows/constants.rb +404 -0
- data/lib/puppet/ffi/windows/functions.rb +628 -0
- data/lib/puppet/ffi/windows/structs.rb +338 -0
- data/lib/puppet/ffi/windows.rb +12 -0
- data/lib/puppet/file_serving/configuration/parser.rb +3 -34
- data/lib/puppet/file_serving/configuration.rb +0 -8
- data/lib/puppet/file_serving/fileset.rb +2 -14
- data/lib/puppet/file_serving/http_metadata.rb +1 -1
- data/lib/puppet/file_serving/metadata.rb +0 -3
- data/lib/puppet/file_serving/mount/file.rb +4 -4
- data/lib/puppet/file_serving/mount.rb +1 -2
- data/lib/puppet/file_system/file_impl.rb +8 -10
- data/lib/puppet/file_system/jruby.rb +1 -1
- data/lib/puppet/file_system/memory_file.rb +1 -8
- data/lib/puppet/file_system/windows.rb +6 -8
- data/lib/puppet/file_system.rb +1 -1
- data/lib/puppet/forge/repository.rb +0 -1
- data/lib/puppet/forge.rb +4 -4
- data/lib/puppet/functions/all.rb +1 -1
- data/lib/puppet/functions/camelcase.rb +1 -1
- data/lib/puppet/functions/capitalize.rb +2 -2
- data/lib/puppet/functions/downcase.rb +2 -2
- data/lib/puppet/functions/empty.rb +0 -8
- data/lib/puppet/functions/find_template.rb +2 -2
- data/lib/puppet/functions/get.rb +5 -5
- data/lib/puppet/functions/group_by.rb +5 -13
- data/lib/puppet/functions/lest.rb +1 -1
- data/lib/puppet/functions/new.rb +100 -100
- data/lib/puppet/functions/next.rb +1 -18
- data/lib/puppet/functions/partition.rb +4 -12
- data/lib/puppet/functions/require.rb +5 -5
- data/lib/puppet/functions/sort.rb +3 -3
- data/lib/puppet/functions/strftime.rb +0 -1
- data/lib/puppet/functions/tree_each.rb +10 -7
- data/lib/puppet/functions/type.rb +4 -4
- data/lib/puppet/functions/unwrap.rb +2 -17
- data/lib/puppet/functions/upcase.rb +2 -2
- data/lib/puppet/functions/versioncmp.rb +2 -6
- data/lib/puppet/generate/models/type/type.rb +4 -1
- data/lib/puppet/generate/type.rb +0 -9
- data/lib/puppet/http/client.rb +167 -137
- data/lib/puppet/{network/resolver.rb → http/dns.rb} +2 -2
- data/lib/puppet/http/errors.rb +16 -0
- data/lib/puppet/http/external_client.rb +5 -7
- data/lib/puppet/{network/http → http}/factory.rb +8 -15
- data/lib/puppet/{network/http → http}/pool.rb +61 -26
- data/lib/puppet/{network/http/session.rb → http/pool_entry.rb} +2 -3
- data/lib/puppet/http/proxy.rb +137 -0
- data/lib/puppet/http/redirector.rb +4 -17
- data/lib/puppet/http/resolver/server_list.rb +10 -25
- data/lib/puppet/http/resolver/settings.rb +4 -7
- data/lib/puppet/http/resolver/srv.rb +7 -11
- data/lib/puppet/http/resolver.rb +5 -15
- data/lib/puppet/http/response.rb +36 -54
- data/lib/puppet/http/response_converter.rb +24 -0
- data/lib/puppet/http/response_net_http.rb +42 -0
- data/lib/puppet/http/retry_after_handler.rb +4 -13
- data/lib/puppet/http/service/ca.rb +11 -22
- data/lib/puppet/http/service/compiler.rb +23 -144
- data/lib/puppet/http/service/file_server.rb +19 -29
- data/lib/puppet/http/service/puppetserver.rb +26 -12
- data/lib/puppet/http/service/report.rb +8 -10
- data/lib/puppet/http/service.rb +12 -26
- data/lib/puppet/http/session.rb +11 -20
- data/lib/puppet/{network/http → http}/site.rb +1 -2
- data/lib/puppet/http.rb +22 -13
- data/lib/puppet/indirector/catalog/compiler.rb +6 -25
- data/lib/puppet/indirector/catalog/rest.rb +2 -5
- data/lib/puppet/indirector/facts/facter.rb +6 -6
- data/lib/puppet/indirector/facts/rest.rb +3 -22
- data/lib/puppet/indirector/file_bucket_file/rest.rb +3 -9
- data/lib/puppet/indirector/file_content/rest.rb +2 -6
- data/lib/puppet/indirector/file_metadata/rest.rb +3 -10
- data/lib/puppet/indirector/file_server.rb +1 -8
- data/lib/puppet/indirector/generic_http.rb +0 -11
- data/lib/puppet/indirector/indirection.rb +1 -1
- data/lib/puppet/indirector/node/rest.rb +2 -4
- data/lib/puppet/indirector/report/rest.rb +3 -8
- data/lib/puppet/indirector/request.rb +0 -101
- data/lib/puppet/indirector/resource/ral.rb +1 -6
- data/lib/puppet/indirector/rest.rb +12 -263
- data/lib/puppet/indirector/terminus.rb +0 -4
- data/lib/puppet/interface/documentation.rb +0 -1
- data/lib/puppet/module/plan.rb +1 -0
- data/lib/puppet/module/task.rb +1 -1
- data/lib/puppet/module.rb +0 -1
- data/lib/puppet/module_tool/applications/installer.rb +2 -56
- data/lib/puppet/module_tool/applications/uninstaller.rb +1 -1
- data/lib/puppet/module_tool/applications/upgrader.rb +1 -1
- data/lib/puppet/module_tool/applications.rb +0 -1
- data/lib/puppet/module_tool/errors/shared.rb +2 -34
- data/lib/puppet/network/authconfig.rb +2 -96
- data/lib/puppet/network/authorization.rb +13 -35
- data/lib/puppet/network/formats.rb +0 -67
- data/lib/puppet/network/http/api/indirected_routes.rb +3 -21
- data/lib/puppet/network/http/api/master/v3.rb +11 -13
- data/lib/puppet/network/http/connection.rb +247 -316
- data/lib/puppet/network/http/handler.rb +0 -1
- data/lib/puppet/network/http.rb +3 -3
- data/lib/puppet/network/http_pool.rb +16 -34
- data/lib/puppet/node/environment.rb +11 -10
- data/lib/puppet/node.rb +2 -31
- data/lib/puppet/pal/json_catalog_encoder.rb +4 -0
- data/lib/puppet/pal/pal_impl.rb +4 -2
- data/lib/puppet/parser/ast/leaf.rb +2 -3
- data/lib/puppet/parser/ast/pops_bridge.rb +0 -38
- data/lib/puppet/parser/compiler/catalog_validator/relationship_validator.rb +14 -39
- data/lib/puppet/parser/compiler.rb +0 -198
- data/lib/puppet/parser/functions/fqdn_rand.rb +6 -14
- data/lib/puppet/parser/resource.rb +1 -70
- data/lib/puppet/parser/scope.rb +0 -1
- data/lib/puppet/parser/templatewrapper.rb +1 -2
- data/lib/puppet/pops/evaluator/closure.rb +5 -7
- data/lib/puppet/pops/evaluator/deferred_resolver.rb +3 -5
- data/lib/puppet/pops/evaluator/evaluator_impl.rb +0 -5
- data/lib/puppet/pops/evaluator/runtime3_resource_support.rb +3 -4
- data/lib/puppet/pops/evaluator/runtime3_support.rb +1 -1
- data/lib/puppet/pops/issues.rb +0 -5
- data/lib/puppet/pops/loader/ruby_legacy_function_instantiator.rb +6 -8
- data/lib/puppet/pops/lookup/lookup_adapter.rb +2 -3
- data/lib/puppet/pops/model/ast.pp +0 -42
- data/lib/puppet/pops/model/ast.rb +0 -291
- data/lib/puppet/pops/model/ast_transformer.rb +1 -1
- data/lib/puppet/pops/model/factory.rb +1 -47
- data/lib/puppet/pops/model/model_label_provider.rb +0 -5
- data/lib/puppet/pops/model/model_tree_dumper.rb +0 -22
- data/lib/puppet/pops/model/pn_transformer.rb +0 -16
- data/lib/puppet/pops/parser/code_merger.rb +4 -4
- data/lib/puppet/pops/parser/egrammar.ra +0 -58
- data/lib/puppet/pops/parser/eparser.rb +1685 -1896
- data/lib/puppet/pops/parser/lexer2.rb +91 -92
- data/lib/puppet/pops/parser/parser_support.rb +0 -5
- data/lib/puppet/pops/parser/slurp_support.rb +0 -1
- data/lib/puppet/pops/resource/resource_type_impl.rb +2 -24
- data/lib/puppet/pops/serialization/to_stringified_converter.rb +1 -1
- data/lib/puppet/pops/types/p_sem_ver_type.rb +2 -8
- data/lib/puppet/pops/types/p_sensitive_type.rb +0 -10
- data/lib/puppet/pops/types/type_calculator.rb +0 -7
- data/lib/puppet/pops/types/type_formatter.rb +3 -4
- data/lib/puppet/pops/types/type_mismatch_describer.rb +1 -1
- data/lib/puppet/pops/types/type_parser.rb +0 -4
- data/lib/puppet/pops/types/types.rb +1 -2
- data/lib/puppet/pops/validation/checker4_0.rb +9 -37
- data/lib/puppet/pops/validation/tasks_checker.rb +0 -12
- data/lib/puppet/pops/validation/validator_factory_4_0.rb +1 -2
- data/lib/puppet/property/list.rb +1 -1
- data/lib/puppet/provider/aix_object.rb +1 -1
- data/lib/puppet/provider/exec/posix.rb +4 -16
- data/lib/puppet/provider/group/groupadd.rb +10 -18
- data/lib/puppet/provider/nameservice.rb +0 -18
- data/lib/puppet/provider/package/apt.rb +2 -34
- data/lib/puppet/provider/package/aptitude.rb +0 -6
- data/lib/puppet/provider/package/dnfmodule.rb +1 -1
- data/lib/puppet/provider/package/dpkg.rb +0 -10
- data/lib/puppet/provider/package/gem.rb +23 -3
- data/lib/puppet/provider/package/nim.rb +6 -11
- data/lib/puppet/provider/package/pip.rb +3 -16
- data/lib/puppet/provider/package/pkg.rb +2 -23
- data/lib/puppet/provider/package/portage.rb +1 -1
- data/lib/puppet/provider/package/puppet_gem.rb +1 -4
- data/lib/puppet/provider/package/puppetserver_gem.rb +17 -8
- data/lib/puppet/provider/package/windows/exe_package.rb +1 -30
- data/lib/puppet/provider/package/windows/package.rb +1 -2
- data/lib/puppet/provider/package/windows.rb +1 -14
- data/lib/puppet/provider/package/yum.rb +1 -1
- data/lib/puppet/provider/parsedfile.rb +0 -3
- data/lib/puppet/provider/service/base.rb +1 -1
- data/lib/puppet/provider/service/debian.rb +0 -2
- data/lib/puppet/provider/service/init.rb +9 -10
- data/lib/puppet/provider/service/launchd.rb +2 -2
- data/lib/puppet/provider/service/redhat.rb +1 -1
- data/lib/puppet/provider/service/smf.rb +194 -76
- data/lib/puppet/provider/service/systemd.rb +6 -16
- data/lib/puppet/provider/service/upstart.rb +5 -5
- data/lib/puppet/provider/service/windows.rb +0 -38
- data/lib/puppet/provider/user/aix.rb +3 -46
- data/lib/puppet/provider/user/directoryservice.rb +11 -39
- data/lib/puppet/provider/user/useradd.rb +24 -134
- data/lib/puppet/provider.rb +1 -14
- data/lib/puppet/reference/configuration.rb +8 -7
- data/lib/puppet/reference/indirection.rb +1 -1
- data/lib/puppet/reference/providers.rb +2 -2
- data/lib/puppet/resource/catalog.rb +2 -15
- data/lib/puppet/resource/type.rb +3 -119
- data/lib/puppet/resource/type_collection.rb +3 -49
- data/lib/puppet/resource.rb +6 -127
- data/lib/puppet/runtime.rb +2 -13
- data/lib/puppet/settings/environment_conf.rb +0 -1
- data/lib/puppet/settings/integer_setting.rb +17 -0
- data/lib/puppet/settings/port_setting.rb +15 -0
- data/lib/puppet/settings/priority_setting.rb +5 -4
- data/lib/puppet/settings.rb +82 -98
- data/lib/puppet/ssl/base.rb +3 -5
- data/lib/puppet/ssl/certificate.rb +0 -6
- data/lib/puppet/ssl/certificate_request.rb +1 -12
- data/lib/puppet/ssl/certificate_signer.rb +6 -0
- data/lib/puppet/ssl/oids.rb +3 -1
- data/lib/puppet/ssl/ssl_provider.rb +36 -75
- data/lib/puppet/ssl/state_machine.rb +20 -14
- data/lib/puppet/ssl/verifier.rb +2 -6
- data/lib/puppet/ssl.rb +10 -6
- data/lib/puppet/test/test_helper.rb +2 -7
- data/lib/puppet/transaction/additional_resource_generator.rb +1 -1
- data/lib/puppet/transaction/persistence.rb +1 -21
- data/lib/puppet/transaction/report.rb +3 -19
- data/lib/puppet/transaction.rb +1 -7
- data/lib/puppet/type/exec.rb +6 -36
- data/lib/puppet/type/file/checksum.rb +1 -1
- data/lib/puppet/type/file/data_sync.rb +1 -1
- data/lib/puppet/type/file/mode.rb +0 -6
- data/lib/puppet/type/file/selcontext.rb +1 -1
- data/lib/puppet/type/file/source.rb +1 -1
- data/lib/puppet/type/file.rb +12 -32
- data/lib/puppet/type/filebucket.rb +4 -4
- data/lib/puppet/type/group.rb +1 -0
- data/lib/puppet/type/package.rb +8 -16
- data/lib/puppet/type/resources.rb +1 -1
- data/lib/puppet/type/service.rb +41 -26
- data/lib/puppet/type/tidy.rb +3 -22
- data/lib/puppet/type/user.rb +13 -35
- data/lib/puppet/type.rb +1 -77
- data/lib/puppet/util/autoload.rb +8 -1
- data/lib/puppet/util/command_line.rb +1 -1
- data/lib/puppet/util/execution.rb +0 -11
- data/lib/puppet/util/filetype.rb +2 -2
- data/lib/puppet/util/http_proxy.rb +2 -215
- data/lib/puppet/util/json.rb +0 -20
- data/lib/puppet/util/log.rb +4 -8
- data/lib/puppet/util/logging.rb +25 -1
- data/lib/puppet/util/monkey_patches.rb +2 -59
- data/lib/puppet/util/package.rb +16 -25
- data/lib/puppet/util/pidlock.rb +1 -1
- data/lib/puppet/util/posix.rb +5 -54
- data/lib/puppet/util/rdoc/parser/puppet_parser_core.rb +1 -1
- data/lib/puppet/util/rdoc.rb +0 -7
- data/lib/puppet/util/retry_action.rb +1 -1
- data/lib/puppet/util/run_mode.rb +9 -1
- data/lib/puppet/util/selinux.rb +4 -30
- data/lib/puppet/util/suidmanager.rb +2 -1
- data/lib/puppet/util/symbolic_file_mode.rb +17 -29
- data/lib/puppet/util/tagging.rb +0 -1
- data/lib/puppet/util/windows/adsi.rb +0 -46
- data/lib/puppet/util/windows/daemon.rb +360 -0
- data/lib/puppet/util/windows/error.rb +1 -0
- data/lib/puppet/util/windows/eventlog.rb +4 -9
- data/lib/puppet/util/windows/file.rb +8 -242
- data/lib/puppet/util/windows/monkey_patches/process.rb +414 -0
- data/lib/puppet/util/windows/principal.rb +2 -9
- data/lib/puppet/util/windows/process.rb +4 -226
- data/lib/puppet/util/windows/service.rb +11 -457
- data/lib/puppet/util/windows/sid.rb +2 -6
- data/lib/puppet/util/windows/string.rb +12 -13
- data/lib/puppet/util/windows/user.rb +2 -0
- data/lib/puppet/util/windows.rb +3 -11
- data/lib/puppet/util/yaml.rb +1 -42
- data/lib/puppet/util.rb +5 -5
- data/lib/puppet/vendor/require_vendored.rb +0 -1
- data/lib/puppet/version.rb +1 -1
- data/lib/puppet/x509/cert_provider.rb +29 -1
- data/lib/puppet/x509.rb +5 -1
- data/lib/puppet.rb +34 -27
- data/locales/puppet.pot +9633 -5
- data/man/man5/puppet.conf.5 +286 -401
- data/man/man8/puppet-agent.8 +2 -5
- data/man/man8/puppet-apply.8 +2 -2
- data/man/man8/puppet-catalog.8 +9 -9
- data/man/man8/puppet-config.8 +1 -1
- data/man/man8/puppet-describe.8 +1 -1
- data/man/man8/puppet-device.8 +2 -2
- data/man/man8/puppet-doc.8 +1 -1
- data/man/man8/puppet-epp.8 +1 -1
- data/man/man8/puppet-facts.8 +8 -51
- data/man/man8/puppet-filebucket.8 +4 -4
- data/man/man8/puppet-generate.8 +1 -1
- data/man/man8/puppet-help.8 +1 -1
- data/man/man8/puppet-lookup.8 +6 -9
- data/man/man8/puppet-module.8 +3 -60
- data/man/man8/puppet-node.8 +5 -5
- data/man/man8/puppet-parser.8 +1 -1
- data/man/man8/puppet-plugin.8 +1 -1
- data/man/man8/puppet-report.8 +5 -5
- data/man/man8/puppet-resource.8 +1 -1
- data/man/man8/puppet-script.8 +2 -2
- data/man/man8/puppet-ssl.8 +1 -5
- data/man/man8/puppet.8 +2 -2
- data/spec/fixtures/ssl/127.0.0.1-key.pem +57 -107
- data/spec/fixtures/ssl/127.0.0.1.pem +31 -52
- data/spec/fixtures/ssl/bad-basic-constraints.pem +35 -57
- data/spec/fixtures/ssl/bad-int-basic-constraints.pem +35 -57
- data/spec/fixtures/ssl/ca.pem +35 -57
- data/spec/fixtures/ssl/crl.pem +18 -28
- data/spec/fixtures/ssl/ec-key.pem +11 -11
- data/spec/fixtures/ssl/ec.pem +24 -33
- data/spec/fixtures/ssl/encrypted-ec-key.pem +12 -12
- data/spec/fixtures/ssl/encrypted-key.pem +58 -108
- data/spec/fixtures/ssl/intermediate-agent-crl.pem +19 -28
- data/spec/fixtures/ssl/intermediate-agent.pem +36 -57
- data/spec/fixtures/ssl/intermediate-crl.pem +21 -31
- data/spec/fixtures/ssl/intermediate.pem +36 -57
- data/spec/fixtures/ssl/pluto-key.pem +57 -107
- data/spec/fixtures/ssl/pluto.pem +30 -52
- data/spec/fixtures/ssl/request-key.pem +57 -107
- data/spec/fixtures/ssl/request.pem +26 -47
- data/spec/fixtures/ssl/revoked-key.pem +57 -107
- data/spec/fixtures/ssl/revoked.pem +30 -52
- data/spec/fixtures/ssl/signed-key.pem +57 -107
- data/spec/fixtures/ssl/signed.pem +30 -52
- data/spec/fixtures/ssl/tampered-cert.pem +30 -52
- data/spec/fixtures/ssl/tampered-csr.pem +26 -47
- data/spec/fixtures/ssl/unknown-127.0.0.1-key.pem +57 -107
- data/spec/fixtures/ssl/unknown-127.0.0.1.pem +29 -50
- data/spec/fixtures/ssl/unknown-ca-key.pem +57 -107
- data/spec/fixtures/ssl/unknown-ca.pem +33 -55
- data/spec/fixtures/unit/forge/bacula.json +1 -1
- data/spec/fixtures/unit/provider/user/aix/aix_passwd_file.out +0 -4
- data/spec/integration/application/agent_spec.rb +50 -406
- data/spec/integration/application/apply_spec.rb +1 -20
- data/spec/integration/application/filebucket_spec.rb +16 -32
- data/spec/integration/application/help_spec.rb +2 -0
- data/spec/integration/application/lookup_spec.rb +50 -81
- data/spec/integration/application/module_spec.rb +0 -21
- data/spec/integration/application/plugin_spec.rb +24 -2
- data/spec/integration/configurer_spec.rb +2 -18
- data/spec/integration/defaults_spec.rb +14 -3
- data/spec/integration/environments/settings_interpolation_spec.rb +4 -0
- data/spec/integration/http/client_spec.rb +4 -63
- data/spec/integration/indirector/direct_file_server_spec.rb +3 -1
- data/spec/integration/indirector/facts/facter_spec.rb +39 -93
- data/spec/integration/network/http_pool_spec.rb +3 -21
- data/spec/integration/parser/catalog_spec.rb +0 -38
- data/spec/integration/parser/node_spec.rb +0 -9
- data/spec/integration/parser/pcore_resource_spec.rb +0 -47
- data/spec/integration/resource/type_collection_spec.rb +6 -2
- data/spec/integration/transaction/report_spec.rb +1 -1
- data/spec/integration/transaction_spec.rb +9 -4
- data/spec/integration/type/exec_spec.rb +45 -70
- data/spec/integration/type/file_spec.rb +7 -6
- data/spec/integration/type/package_spec.rb +6 -6
- data/spec/integration/util/rdoc/parser_spec.rb +1 -1
- data/spec/integration/util/windows/adsi_spec.rb +1 -21
- data/spec/integration/util/windows/monkey_patches/process_spec.rb +231 -0
- data/spec/integration/util/windows/principal_spec.rb +0 -21
- data/spec/integration/util/windows/process_spec.rb +9 -1
- data/spec/integration/util/windows/registry_spec.rb +10 -6
- data/spec/integration/util/windows/security_spec.rb +1 -1
- data/spec/lib/matchers/include.rb +27 -0
- data/spec/lib/matchers/include_spec.rb +32 -0
- data/spec/lib/puppet/test_ca.rb +2 -7
- data/spec/lib/puppet_spec/https.rb +1 -1
- data/spec/lib/puppet_spec/modules.rb +2 -13
- data/spec/lib/puppet_spec/puppetserver.rb +3 -55
- data/spec/lib/puppet_spec/settings.rb +1 -1
- data/spec/shared_behaviours/documentation_on_faces.rb +2 -0
- data/spec/spec_helper.rb +17 -13
- data/spec/unit/agent_spec.rb +8 -38
- data/spec/unit/application/agent_spec.rb +19 -33
- data/spec/unit/application/apply_spec.rb +56 -76
- data/spec/unit/application/facts_spec.rb +12 -456
- data/spec/unit/application/filebucket_spec.rb +43 -39
- data/spec/unit/application/lookup_spec.rb +10 -131
- data/spec/unit/application/resource_spec.rb +0 -29
- data/spec/unit/application/ssl_spec.rb +2 -25
- data/spec/unit/application_spec.rb +9 -51
- data/spec/unit/certificate_factory_spec.rb +1 -1
- data/spec/unit/configurer/downloader_spec.rb +6 -8
- data/spec/unit/configurer/plugin_handler_spec.rb +56 -18
- data/spec/unit/configurer_spec.rb +68 -327
- data/spec/unit/confine/feature_spec.rb +1 -1
- data/spec/unit/confine_spec.rb +2 -8
- data/spec/unit/context/trusted_information_spec.rb +2 -6
- data/spec/unit/daemon_spec.rb +11 -2
- data/spec/unit/defaults_spec.rb +68 -55
- data/spec/unit/environments_spec.rb +68 -408
- data/spec/unit/face/generate_spec.rb +0 -64
- data/spec/unit/face/node_spec.rb +11 -0
- data/spec/unit/face/plugin_spec.rb +73 -33
- data/spec/unit/file_bucket/dipper_spec.rb +2 -2
- data/spec/unit/file_bucket/file_spec.rb +1 -1
- data/spec/unit/file_serving/configuration/parser_spec.rb +15 -41
- data/spec/unit/file_serving/configuration_spec.rb +10 -26
- data/spec/unit/file_serving/fileset_spec.rb +0 -60
- data/spec/unit/file_serving/metadata_spec.rb +3 -3
- data/spec/unit/file_serving/terminus_helper_spec.rb +4 -11
- data/spec/unit/file_system_spec.rb +4 -56
- data/spec/unit/forge/module_release_spec.rb +10 -5
- data/spec/unit/functions/assert_type_spec.rb +1 -1
- data/spec/unit/functions/camelcase_spec.rb +1 -1
- data/spec/unit/functions/capitalize_spec.rb +1 -1
- data/spec/unit/functions/downcase_spec.rb +1 -1
- data/spec/unit/functions/empty_spec.rb +0 -10
- data/spec/unit/functions/logging_spec.rb +0 -1
- data/spec/unit/functions/lookup_spec.rb +0 -64
- data/spec/unit/functions/unwrap_spec.rb +0 -8
- data/spec/unit/functions/upcase_spec.rb +1 -1
- data/spec/unit/functions/versioncmp_spec.rb +4 -40
- data/spec/unit/functions4_spec.rb +2 -2
- data/spec/unit/gettext/config_spec.rb +0 -12
- data/spec/unit/http/client_spec.rb +8 -84
- data/spec/unit/{network/resolver_spec.rb → http/dns_spec.rb} +3 -3
- data/spec/unit/http/external_client_spec.rb +4 -4
- data/spec/unit/{network/http → http}/factory_spec.rb +5 -30
- data/spec/unit/{network/http/session_spec.rb → http/pool_entry_spec.rb} +3 -3
- data/spec/unit/{network/http → http}/pool_spec.rb +12 -17
- data/spec/unit/{util/http_proxy_spec.rb → http/proxy_spec.rb} +2 -69
- data/spec/unit/http/resolver_spec.rb +13 -13
- data/spec/unit/http/service/compiler_spec.rb +0 -193
- data/spec/unit/http/service/file_server_spec.rb +3 -3
- data/spec/unit/http/service/puppetserver_spec.rb +34 -4
- data/spec/unit/http/service_spec.rb +0 -1
- data/spec/unit/http/session_spec.rb +16 -14
- data/spec/unit/{network/http → http}/site_spec.rb +3 -3
- data/spec/unit/indirector/catalog/compiler_spec.rb +10 -101
- data/spec/unit/indirector/catalog/rest_spec.rb +0 -8
- data/spec/unit/indirector/face_spec.rb +1 -0
- data/spec/unit/indirector/facts/facter_spec.rb +3 -0
- data/spec/unit/indirector/file_bucket_file/file_spec.rb +5 -3
- data/spec/unit/indirector/file_bucket_file/selector_spec.rb +8 -26
- data/spec/unit/indirector/file_content/rest_spec.rb +0 -4
- data/spec/unit/indirector/file_metadata/rest_spec.rb +0 -4
- data/spec/unit/indirector/file_server_spec.rb +1 -15
- data/spec/unit/indirector/indirection_spec.rb +15 -18
- data/spec/unit/indirector/report/rest_spec.rb +2 -17
- data/spec/unit/indirector/request_spec.rb +0 -264
- data/spec/unit/indirector/resource/ral_spec.rb +75 -40
- data/spec/unit/indirector/rest_spec.rb +98 -752
- data/spec/unit/indirector/store_configs_spec.rb +7 -0
- data/spec/unit/indirector_spec.rb +2 -2
- data/spec/unit/interface/action_spec.rb +9 -0
- data/spec/unit/module_spec.rb +1 -15
- data/spec/unit/module_tool/applications/installer_spec.rb +0 -105
- data/spec/unit/network/authconfig_spec.rb +2 -129
- data/spec/unit/network/authorization_spec.rb +2 -55
- data/spec/unit/network/formats_spec.rb +4 -51
- data/spec/unit/network/http/api/indirected_routes_spec.rb +5 -92
- data/spec/unit/network/http/api/master/v3_spec.rb +28 -7
- data/spec/unit/network/http/api_spec.rb +10 -0
- data/spec/unit/network/http/connection_spec.rb +19 -41
- data/spec/unit/network/http/handler_spec.rb +0 -1
- data/spec/unit/network/http_pool_spec.rb +0 -4
- data/spec/unit/node/environment_spec.rb +33 -21
- data/spec/unit/node_spec.rb +2 -60
- data/spec/unit/parser/compiler_spec.rb +19 -3
- data/spec/unit/parser/functions/create_resources_spec.rb +2 -20
- data/spec/unit/parser/functions/fqdn_rand_spec.rb +1 -15
- data/spec/unit/parser/resource_spec.rb +8 -14
- data/spec/unit/parser/templatewrapper_spec.rb +5 -16
- data/spec/unit/pops/evaluator/evaluating_parser_spec.rb +4 -7
- data/spec/unit/pops/loaders/loaders_spec.rb +6 -21
- data/spec/unit/pops/parser/parse_application_spec.rb +4 -22
- data/spec/unit/pops/parser/parse_basic_expressions_spec.rb +0 -1
- data/spec/unit/pops/parser/parse_capabilities_spec.rb +8 -21
- data/spec/unit/pops/parser/parse_containers_spec.rb +13 -2
- data/spec/unit/pops/parser/parse_site_spec.rb +20 -24
- data/spec/unit/pops/resource/resource_type_impl_spec.rb +0 -71
- data/spec/unit/pops/serialization/to_from_hr_spec.rb +1 -1
- data/spec/unit/pops/serialization/to_stringified_spec.rb +0 -5
- data/spec/unit/pops/types/p_sem_ver_type_spec.rb +0 -18
- data/spec/unit/pops/types/p_sensitive_type_spec.rb +0 -18
- data/spec/unit/pops/types/type_calculator_spec.rb +6 -12
- data/spec/unit/pops/types/type_factory_spec.rb +1 -1
- data/spec/unit/pops/validator/validator_spec.rb +61 -51
- data/spec/unit/pops/visitor_spec.rb +1 -1
- data/spec/unit/property_spec.rb +0 -1
- data/spec/unit/provider/group/groupadd_spec.rb +2 -5
- data/spec/unit/provider/nameservice_spec.rb +64 -122
- data/spec/unit/provider/package/apt_spec.rb +23 -28
- data/spec/unit/provider/package/aptitude_spec.rb +1 -1
- data/spec/unit/provider/package/base_spec.rb +5 -6
- data/spec/unit/provider/package/dnfmodule_spec.rb +1 -10
- data/spec/unit/provider/package/dpkg_spec.rb +0 -48
- data/spec/unit/provider/package/gem_spec.rb +33 -1
- data/spec/unit/provider/package/nim_spec.rb +0 -42
- data/spec/unit/provider/package/pacman_spec.rb +12 -18
- data/spec/unit/provider/package/pip2_spec.rb +1 -1
- data/spec/unit/provider/package/pip3_spec.rb +1 -1
- data/spec/unit/provider/package/pip_spec.rb +12 -44
- data/spec/unit/provider/package/pkg_spec.rb +4 -29
- data/spec/unit/provider/package/pkgdmg_spec.rb +4 -0
- data/spec/unit/provider/package/puppet_gem_spec.rb +4 -3
- data/spec/unit/provider/package/puppetserver_gem_spec.rb +3 -3
- data/spec/unit/provider/package/windows/exe_package_spec.rb +0 -17
- data/spec/unit/provider/parsedfile_spec.rb +0 -10
- data/spec/unit/provider/service/gentoo_spec.rb +5 -6
- data/spec/unit/provider/service/init_spec.rb +9 -16
- data/spec/unit/provider/service/launchd_spec.rb +0 -11
- data/spec/unit/provider/service/openwrt_spec.rb +29 -23
- data/spec/unit/provider/service/redhat_spec.rb +2 -3
- data/spec/unit/provider/service/smf_spec.rb +401 -165
- data/spec/unit/provider/service/systemd_spec.rb +9 -54
- data/spec/unit/provider/service/windows_spec.rb +0 -203
- data/spec/unit/provider/user/aix_spec.rb +0 -105
- data/spec/unit/provider/user/directoryservice_spec.rb +36 -68
- data/spec/unit/provider/user/hpux_spec.rb +1 -1
- data/spec/unit/provider/user/pw_spec.rb +0 -2
- data/spec/unit/provider/user/useradd_spec.rb +5 -114
- data/spec/unit/provider_spec.rb +12 -22
- data/spec/unit/puppet_spec.rb +4 -12
- data/spec/unit/resource/catalog_spec.rb +2 -15
- data/spec/unit/resource/type_collection_spec.rb +2 -22
- data/spec/unit/resource/type_spec.rb +1 -1
- data/spec/unit/resource_spec.rb +12 -125
- data/spec/unit/settings/http_extra_headers_spec.rb +2 -4
- data/spec/unit/settings/integer_setting_spec.rb +42 -0
- data/spec/unit/settings/port_setting_spec.rb +31 -0
- data/spec/unit/settings/priority_setting_spec.rb +4 -4
- data/spec/unit/settings_spec.rb +79 -110
- data/spec/unit/ssl/base_spec.rb +37 -3
- data/spec/unit/ssl/certificate_request_spec.rb +21 -45
- data/spec/unit/ssl/certificate_spec.rb +2 -11
- data/spec/unit/ssl/ssl_provider_spec.rb +3 -80
- data/spec/unit/ssl/state_machine_spec.rb +5 -21
- data/spec/unit/ssl/verifier_spec.rb +0 -21
- data/spec/unit/transaction/additional_resource_generator_spec.rb +9 -3
- data/spec/unit/transaction/event_manager_spec.rb +11 -14
- data/spec/unit/transaction/persistence_spec.rb +0 -51
- data/spec/unit/transaction/report_spec.rb +0 -2
- data/spec/unit/transaction/resource_harness_spec.rb +2 -2
- data/spec/unit/transaction_spec.rb +55 -96
- data/spec/unit/type/exec_spec.rb +29 -76
- data/spec/unit/type/file/checksum_spec.rb +6 -6
- data/spec/unit/type/file/content_spec.rb +2 -1
- data/spec/unit/type/file/ensure_spec.rb +1 -1
- data/spec/unit/type/file/mode_spec.rb +1 -1
- data/spec/unit/type/file/selinux_spec.rb +5 -3
- data/spec/unit/type/file/source_spec.rb +4 -5
- data/spec/unit/type/file_spec.rb +18 -6
- data/spec/unit/type/group_spec.rb +6 -13
- data/spec/unit/type/package_spec.rb +1 -1
- data/spec/unit/type/resources_spec.rb +7 -7
- data/spec/unit/type/service_spec.rb +189 -87
- data/spec/unit/type/tidy_spec.rb +8 -24
- data/spec/unit/type_spec.rb +24 -4
- data/spec/unit/util/at_fork_spec.rb +2 -2
- data/spec/unit/util/autoload_spec.rb +1 -5
- data/spec/unit/util/backups_spec.rb +2 -3
- data/spec/unit/util/execution_spec.rb +11 -44
- data/spec/unit/util/inifile_spec.rb +14 -6
- data/spec/unit/util/log_spec.rb +7 -8
- data/spec/unit/util/logging_spec.rb +3 -5
- data/spec/unit/util/monkey_patches_spec.rb +0 -6
- data/spec/unit/util/posix_spec.rb +15 -363
- data/spec/unit/util/run_mode_spec.rb +21 -121
- data/spec/unit/util/selinux_spec.rb +68 -163
- data/spec/unit/util/storage_spec.rb +1 -3
- data/spec/unit/util/suidmanager_spec.rb +41 -44
- data/spec/unit/util/windows/sid_spec.rb +0 -41
- data/spec/unit/util/windows/string_spec.rb +1 -3
- data/spec/unit/util/yaml_spec.rb +13 -92
- data/spec/unit/util_spec.rb +6 -31
- data/tasks/generate_cert_fixtures.rake +7 -17
- data/tasks/parallel.rake +3 -3
- metadata +138 -301
- data/conf/auth.conf +0 -150
- data/ext/README.md +0 -13
- data/lib/puppet/application/cert.rb +0 -76
- data/lib/puppet/application/key.rb +0 -4
- data/lib/puppet/application/man.rb +0 -4
- data/lib/puppet/application/status.rb +0 -4
- data/lib/puppet/face/key.rb +0 -16
- data/lib/puppet/face/man.rb +0 -145
- data/lib/puppet/face/module/build.rb +0 -14
- data/lib/puppet/face/module/generate.rb +0 -14
- data/lib/puppet/face/module/search.rb +0 -103
- data/lib/puppet/face/status.rb +0 -51
- data/lib/puppet/facter_impl.rb +0 -96
- data/lib/puppet/ffi/posix/constants.rb +0 -14
- data/lib/puppet/ffi/posix/functions.rb +0 -24
- data/lib/puppet/ffi/posix.rb +0 -10
- data/lib/puppet/file_serving/mount/scripts.rb +0 -24
- data/lib/puppet/indirector/certificate/file.rb +0 -9
- data/lib/puppet/indirector/certificate/rest.rb +0 -18
- data/lib/puppet/indirector/certificate_request/file.rb +0 -9
- data/lib/puppet/indirector/certificate_request/memory.rb +0 -7
- data/lib/puppet/indirector/certificate_request/rest.rb +0 -11
- data/lib/puppet/indirector/file_content/http.rb +0 -22
- data/lib/puppet/indirector/key/file.rb +0 -46
- data/lib/puppet/indirector/key/memory.rb +0 -7
- data/lib/puppet/indirector/ssl_file.rb +0 -162
- data/lib/puppet/indirector/status/local.rb +0 -12
- data/lib/puppet/indirector/status/rest.rb +0 -27
- data/lib/puppet/indirector/status.rb +0 -3
- data/lib/puppet/module_tool/applications/searcher.rb +0 -29
- data/lib/puppet/network/auth_config_parser.rb +0 -90
- data/lib/puppet/network/authstore.rb +0 -283
- data/lib/puppet/network/http/api/master/v3/authorization.rb +0 -18
- data/lib/puppet/network/http/api/master/v3/environment.rb +0 -88
- data/lib/puppet/network/http/base_pool.rb +0 -36
- data/lib/puppet/network/http/compression.rb +0 -127
- data/lib/puppet/network/http/connection_adapter.rb +0 -184
- data/lib/puppet/network/http/nocache_pool.rb +0 -28
- data/lib/puppet/network/rest_controller.rb +0 -2
- data/lib/puppet/network/rights.rb +0 -210
- data/lib/puppet/parser/compiler/catalog_validator/env_relationship_validator.rb +0 -66
- data/lib/puppet/parser/compiler/catalog_validator/site_validator.rb +0 -22
- data/lib/puppet/parser/environment_compiler.rb +0 -202
- data/lib/puppet/pops/types/enumeration.rb +0 -16
- data/lib/puppet/resource/capability_finder.rb +0 -154
- data/lib/puppet/rest/errors.rb +0 -15
- data/lib/puppet/rest/response.rb +0 -35
- data/lib/puppet/rest/route.rb +0 -85
- data/lib/puppet/rest/routes.rb +0 -135
- data/lib/puppet/settings/alias_setting.rb +0 -37
- data/lib/puppet/ssl/host.rb +0 -505
- data/lib/puppet/ssl/key.rb +0 -61
- data/lib/puppet/ssl/validator/default_validator.rb +0 -209
- data/lib/puppet/ssl/validator/no_validator.rb +0 -22
- data/lib/puppet/ssl/validator.rb +0 -61
- data/lib/puppet/ssl/verifier_adapter.rb +0 -58
- data/lib/puppet/status.rb +0 -40
- data/lib/puppet/util/connection.rb +0 -88
- data/lib/puppet/util/fact_dif.rb +0 -81
- data/lib/puppet/util/ssl.rb +0 -83
- data/lib/puppet/util/windows/api_types.rb +0 -309
- data/lib/puppet/util/windows/monkey_patches/dir.rb +0 -40
- data/lib/puppet/vendor/load_pathspec.rb +0 -1
- data/lib/puppet/vendor/pathspec/CHANGELOG.md +0 -2
- data/lib/puppet/vendor/pathspec/LICENSE +0 -201
- data/lib/puppet/vendor/pathspec/PUPPET_README.md +0 -6
- data/lib/puppet/vendor/pathspec/README.md +0 -53
- data/lib/puppet/vendor/pathspec/lib/pathspec/gitignorespec.rb +0 -275
- data/lib/puppet/vendor/pathspec/lib/pathspec/regexspec.rb +0 -17
- data/lib/puppet/vendor/pathspec/lib/pathspec/spec.rb +0 -14
- data/lib/puppet/vendor/pathspec/lib/pathspec.rb +0 -122
- data/man/man8/puppet-key.8 +0 -126
- data/man/man8/puppet-man.8 +0 -76
- data/man/man8/puppet-status.8 +0 -108
- data/spec/fixtures/integration/application/agent/cached_deferred_catalog.json +0 -92
- data/spec/fixtures/integration/application/agent/lib/facter/agent_spec_role.rb +0 -3
- data/spec/fixtures/integration/l10n/envs/prod/modules/demo/Gemfile +0 -4
- data/spec/fixtures/integration/l10n/envs/prod/modules/demo/Rakefile +0 -3
- data/spec/fixtures/integration/l10n/envs/prod/modules/demo/lib/puppet/functions/l10n.rb +0 -8
- data/spec/fixtures/integration/l10n/envs/prod/modules/demo/locales/config.yaml +0 -25
- data/spec/fixtures/integration/l10n/envs/prod/modules/demo/locales/ja/puppet-l10n.po +0 -19
- data/spec/fixtures/integration/l10n/envs/prod/modules/demo/locales/puppet-l10n.pot +0 -20
- data/spec/fixtures/integration/l10n/envs/prod/modules/demo/metadata.json +0 -8
- data/spec/fixtures/ssl/oid-key.pem +0 -117
- data/spec/fixtures/ssl/oid.pem +0 -69
- data/spec/fixtures/ssl/trusted_oid_mapping.yaml +0 -5
- data/spec/fixtures/unit/provider/service/systemd/list_unit_files_services_vendor_preset +0 -9
- data/spec/integration/application/resource_spec.rb +0 -68
- data/spec/integration/application/ssl_spec.rb +0 -20
- data/spec/integration/l10n/compiler_spec.rb +0 -37
- data/spec/integration/network/authconfig_spec.rb +0 -256
- data/spec/integration/util/windows/monkey_patches/dir_spec.rb +0 -11
- data/spec/shared_contexts/l10n.rb +0 -32
- data/spec/unit/application/man_spec.rb +0 -52
- data/spec/unit/capability_spec.rb +0 -414
- data/spec/unit/concurrent/thread_local_singleton_spec.rb +0 -39
- data/spec/unit/face/key_spec.rb +0 -9
- data/spec/unit/face/module/search_spec.rb +0 -231
- data/spec/unit/face/status_spec.rb +0 -9
- data/spec/unit/facter_impl_spec.rb +0 -31
- data/spec/unit/file_serving/mount/scripts_spec.rb +0 -69
- data/spec/unit/indirector/certificate/file_spec.rb +0 -14
- data/spec/unit/indirector/certificate/rest_spec.rb +0 -61
- data/spec/unit/indirector/certificate_request/file_spec.rb +0 -14
- data/spec/unit/indirector/certificate_request/rest_spec.rb +0 -25
- data/spec/unit/indirector/key/file_spec.rb +0 -78
- data/spec/unit/indirector/ssl_file_spec.rb +0 -305
- data/spec/unit/indirector/status/local_spec.rb +0 -10
- data/spec/unit/indirector/status/rest_spec.rb +0 -50
- data/spec/unit/module_tool/applications/searcher_spec.rb +0 -38
- data/spec/unit/network/auth_config_parser_spec.rb +0 -115
- data/spec/unit/network/authstore_spec.rb +0 -407
- data/spec/unit/network/http/api/master/v3/authorization_spec.rb +0 -57
- data/spec/unit/network/http/api/master/v3/environment_spec.rb +0 -185
- data/spec/unit/network/http/compression_spec.rb +0 -240
- data/spec/unit/network/http/nocache_pool_spec.rb +0 -64
- data/spec/unit/network/http_spec.rb +0 -9
- data/spec/unit/network/rights_spec.rb +0 -439
- data/spec/unit/parser/environment_compiler_spec.rb +0 -730
- data/spec/unit/pops/evaluator/deferred_resolver_spec.rb +0 -20
- data/spec/unit/pops/types/enumeration_spec.rb +0 -51
- data/spec/unit/resource/capability_finder_spec.rb +0 -148
- data/spec/unit/rest/route_spec.rb +0 -132
- data/spec/unit/ssl/host_spec.rb +0 -645
- data/spec/unit/ssl/key_spec.rb +0 -173
- data/spec/unit/ssl/validator_spec.rb +0 -278
- data/spec/unit/status_spec.rb +0 -45
- data/spec/unit/util/json_spec.rb +0 -126
- data/spec/unit/util/ssl_spec.rb +0 -91
- data/spec/unit/util/windows_spec.rb +0 -23
- /data/{examples/enc → ext}/regexp_nodes/classes/databases +0 -0
- /data/{examples/enc → ext}/regexp_nodes/classes/webservers +0 -0
- /data/{examples/enc → ext}/regexp_nodes/environment/development +0 -0
- /data/{examples/enc → ext}/regexp_nodes/parameters/service/prod +0 -0
- /data/{examples/enc → ext}/regexp_nodes/parameters/service/qa +0 -0
- /data/{examples/enc → ext}/regexp_nodes/parameters/service/sandbox +0 -0
- /data/{examples/enc → ext}/regexp_nodes/regexp_nodes.rb +0 -0
- /data/spec/fixtures/unit/provider/service/smf/{svcs.out → svcs_instances.out} +0 -0
@@ -1,31 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
describe 'Puppet::FacterImpl' do
|
4
|
-
subject(:facter_impl) { Puppet::FacterImpl.new }
|
5
|
-
|
6
|
-
it { is_expected.to respond_to(:value) }
|
7
|
-
it { is_expected.to respond_to(:add) }
|
8
|
-
|
9
|
-
describe '.value' do
|
10
|
-
let(:method_name) { :value }
|
11
|
-
|
12
|
-
before { allow(Facter).to receive(method_name) }
|
13
|
-
|
14
|
-
it 'delegates to Facter API' do
|
15
|
-
facter_impl.value('test_fact')
|
16
|
-
expect(Facter).to have_received(method_name).with('test_fact')
|
17
|
-
end
|
18
|
-
end
|
19
|
-
|
20
|
-
describe '.add' do
|
21
|
-
let(:block) { Proc.new { setcode 'test' } }
|
22
|
-
let(:method_name) { :add }
|
23
|
-
|
24
|
-
before { allow(Facter).to receive(method_name) }
|
25
|
-
|
26
|
-
it 'delegates to Facter API' do
|
27
|
-
facter_impl.add('test_fact', &block)
|
28
|
-
expect(Facter).to have_received(method_name).with('test_fact', &block)
|
29
|
-
end
|
30
|
-
end
|
31
|
-
end
|
@@ -1,69 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
require 'puppet/file_serving/mount/scripts'
|
3
|
-
|
4
|
-
describe Puppet::FileServing::Mount::Scripts do
|
5
|
-
before do
|
6
|
-
@mount = Puppet::FileServing::Mount::Scripts.new("scripts")
|
7
|
-
|
8
|
-
@environment = double('environment', :module => nil)
|
9
|
-
@request = double('request', :environment => @environment)
|
10
|
-
end
|
11
|
-
|
12
|
-
describe "when finding files" do
|
13
|
-
it "should fail if no module is specified" do
|
14
|
-
expect { @mount.find("", @request) }.to raise_error(/No module specified/)
|
15
|
-
end
|
16
|
-
|
17
|
-
it "should use the provided environment to find the module" do
|
18
|
-
expect(@environment).to receive(:module)
|
19
|
-
|
20
|
-
@mount.find("foo", @request)
|
21
|
-
end
|
22
|
-
|
23
|
-
it "should treat the first field of the relative path as the module name" do
|
24
|
-
expect(@environment).to receive(:module).with("foo")
|
25
|
-
@mount.find("foo/bar/baz", @request)
|
26
|
-
end
|
27
|
-
|
28
|
-
it "should return nil if the specified module does not exist" do
|
29
|
-
expect(@environment).to receive(:module).with("foo")
|
30
|
-
@mount.find("foo/bar/baz", @request)
|
31
|
-
end
|
32
|
-
|
33
|
-
it "should return the file path from the module" do
|
34
|
-
mod = double('module')
|
35
|
-
expect(mod).to receive(:script).with("bar/baz").and_return("eh")
|
36
|
-
expect(@environment).to receive(:module).with("foo").and_return(mod)
|
37
|
-
expect(@mount.find("foo/bar/baz", @request)).to eq("eh")
|
38
|
-
end
|
39
|
-
end
|
40
|
-
|
41
|
-
describe "when searching for files" do
|
42
|
-
it "should fail if no module is specified" do
|
43
|
-
expect { @mount.search("", @request) }.to raise_error(/No module specified/)
|
44
|
-
end
|
45
|
-
|
46
|
-
it "should use the node's environment to search the module" do
|
47
|
-
expect(@environment).to receive(:module)
|
48
|
-
|
49
|
-
@mount.search("foo", @request)
|
50
|
-
end
|
51
|
-
|
52
|
-
it "should treat the first field of the relative path as the module name" do
|
53
|
-
expect(@environment).to receive(:module).with("foo")
|
54
|
-
@mount.search("foo/bar/baz", @request)
|
55
|
-
end
|
56
|
-
|
57
|
-
it "should return nil if the specified module does not exist" do
|
58
|
-
expect(@environment).to receive(:module).with("foo").and_return(nil)
|
59
|
-
@mount.search("foo/bar/baz", @request)
|
60
|
-
end
|
61
|
-
|
62
|
-
it "should return the script path as an array from the module" do
|
63
|
-
mod = double('module')
|
64
|
-
expect(mod).to receive(:script).with("bar/baz").and_return("eh")
|
65
|
-
expect(@environment).to receive(:module).with("foo").and_return(mod)
|
66
|
-
expect(@mount.search("foo/bar/baz", @request)).to eq(["eh"])
|
67
|
-
end
|
68
|
-
end
|
69
|
-
end
|
@@ -1,14 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
require 'puppet/indirector/certificate/file'
|
4
|
-
|
5
|
-
describe Puppet::SSL::Certificate::File do
|
6
|
-
it "should have documentation" do
|
7
|
-
expect(Puppet::SSL::Certificate::File.doc).to be_instance_of(String)
|
8
|
-
end
|
9
|
-
|
10
|
-
it "should use the :certdir as the collection directory" do
|
11
|
-
Puppet[:certdir] = File.expand_path("/cert/dir")
|
12
|
-
expect(Puppet::SSL::Certificate::File.collection_directory).to eq(Puppet[:certdir])
|
13
|
-
end
|
14
|
-
end
|
@@ -1,61 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
require 'puppet/indirector/certificate/rest'
|
3
|
-
|
4
|
-
describe Puppet::SSL::Certificate::Rest do
|
5
|
-
before do
|
6
|
-
@searcher = Puppet::SSL::Certificate::Rest.new
|
7
|
-
end
|
8
|
-
|
9
|
-
it "should be a sublcass of Puppet::Indirector::REST" do
|
10
|
-
expect(Puppet::SSL::Certificate::Rest.superclass).to equal(Puppet::Indirector::REST)
|
11
|
-
end
|
12
|
-
|
13
|
-
it "should set server_setting to :ca_server" do
|
14
|
-
expect(Puppet::SSL::Certificate::Rest.server_setting).to eq(:ca_server)
|
15
|
-
end
|
16
|
-
|
17
|
-
it "should set port_setting to :ca_port" do
|
18
|
-
expect(Puppet::SSL::Certificate::Rest.port_setting).to eq(:ca_port)
|
19
|
-
end
|
20
|
-
|
21
|
-
it "should use the :ca SRV service" do
|
22
|
-
expect(Puppet::SSL::Certificate::Rest.srv_service).to eq(:ca)
|
23
|
-
end
|
24
|
-
|
25
|
-
it "should make sure found certificates have their names set to the search string" do
|
26
|
-
terminus = Puppet::SSL::Certificate::Rest.new
|
27
|
-
|
28
|
-
# This has 'boo.com' in the CN
|
29
|
-
cert_string = "-----BEGIN CERTIFICATE-----
|
30
|
-
MIICPzCCAaigAwIBAgIBBDANBgkqhkiG9w0BAQUFADAWMRQwEgYDVQQDDAtidWNr
|
31
|
-
eS5sb2NhbDAeFw0wOTA5MTcxNzI1MzJaFw0xNDA5MTYxNzI1MzJaMBIxEDAOBgNV
|
32
|
-
BAMMB2Jvby5jb20wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAKG9B+DkTCNh
|
33
|
-
F5xHchNDfnbC9NzWKM600oxrr84pgUVAG6B2wAZcdfoEtXszhsY9Jzpwqkvxk4Mx
|
34
|
-
AbYqo9+TCi4UoiH6e+vAKOOJD3DHrlf+/RW4hGtyaI41DBhf4+B4/oFz5PH9mvKe
|
35
|
-
NSfHFI/yPW+1IXYjxKLQNwF9E7q3JbnzAgMBAAGjgaAwgZ0wOAYJYIZIAYb4QgEN
|
36
|
-
BCsWKVB1cHBldCBSdWJ5L09wZW5TU0wgR2VuZXJhdGVkIENlcnRpZmljYXRlMAwG
|
37
|
-
A1UdEwEB/wQCMAAwHQYDVR0OBBYEFJOxEUeyf4cNOBmf9zIaE1JTuNdLMAsGA1Ud
|
38
|
-
DwQEAwIFoDAnBgNVHSUEIDAeBggrBgEFBQcDAQYIKwYBBQUHAwIGCCsGAQUFBwME
|
39
|
-
MA0GCSqGSIb3DQEBBQUAA4GBAFTJxKprMg6tfhGnvEvURPmlJrINn9c2b5Y4AGYp
|
40
|
-
tO86PFFkWw/EIJvvJzbj3s+Butr+eUo//+f1xxX7UCwwGqGxKqjtVS219oU/wkx8
|
41
|
-
h7rW4Xk7MrLl0auSS1p4wLcAMm+ZImf94+j8Cj+tkr8eGozZceRV13b8+EkdaE3S
|
42
|
-
rn/G
|
43
|
-
-----END CERTIFICATE-----
|
44
|
-
"
|
45
|
-
|
46
|
-
network = double('network')
|
47
|
-
allow(terminus).to receive(:network).and_return(network)
|
48
|
-
|
49
|
-
response = double('response', :code => "200", :body => cert_string)
|
50
|
-
allow(response).to receive(:[]).with('content-type').and_return("text/plain")
|
51
|
-
allow(response).to receive(:[]).with('content-encoding')
|
52
|
-
allow(response).to receive(:[]).with(Puppet::Network::HTTP::HEADER_PUPPET_VERSION).and_return(Puppet.version)
|
53
|
-
allow(network).to receive(:verify_callback=)
|
54
|
-
expect(network).to receive(:get).and_return(response)
|
55
|
-
|
56
|
-
request = Puppet::Indirector::Request.new(:certificate, :find, "foo.com", nil)
|
57
|
-
result = terminus.find(request)
|
58
|
-
expect(result).not_to be_nil
|
59
|
-
expect(result.name).to eq("foo.com")
|
60
|
-
end
|
61
|
-
end
|
@@ -1,14 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
require 'puppet/indirector/certificate_request/file'
|
4
|
-
|
5
|
-
describe Puppet::SSL::CertificateRequest::File do
|
6
|
-
it "should have documentation" do
|
7
|
-
expect(Puppet::SSL::CertificateRequest::File.doc).to be_instance_of(String)
|
8
|
-
end
|
9
|
-
|
10
|
-
it "should use the :requestdir as the collection directory" do
|
11
|
-
Puppet[:requestdir] = File.expand_path("/request/dir")
|
12
|
-
expect(Puppet::SSL::CertificateRequest::File.collection_directory).to eq(Puppet[:requestdir])
|
13
|
-
end
|
14
|
-
end
|
@@ -1,25 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
require 'puppet/indirector/certificate_request/rest'
|
4
|
-
|
5
|
-
describe Puppet::SSL::CertificateRequest::Rest do
|
6
|
-
before do
|
7
|
-
@searcher = Puppet::SSL::CertificateRequest::Rest.new
|
8
|
-
end
|
9
|
-
|
10
|
-
it "should be a sublcass of Puppet::Indirector::REST" do
|
11
|
-
expect(Puppet::SSL::CertificateRequest::Rest.superclass).to equal(Puppet::Indirector::REST)
|
12
|
-
end
|
13
|
-
|
14
|
-
it "should set server_setting to :ca_server" do
|
15
|
-
expect(Puppet::SSL::CertificateRequest::Rest.server_setting).to eq(:ca_server)
|
16
|
-
end
|
17
|
-
|
18
|
-
it "should set port_setting to :ca_port" do
|
19
|
-
expect(Puppet::SSL::CertificateRequest::Rest.port_setting).to eq(:ca_port)
|
20
|
-
end
|
21
|
-
|
22
|
-
it "should use the :ca SRV service" do
|
23
|
-
expect(Puppet::SSL::CertificateRequest::Rest.srv_service).to eq(:ca)
|
24
|
-
end
|
25
|
-
end
|
@@ -1,78 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
require 'puppet/indirector/key/file'
|
4
|
-
|
5
|
-
describe Puppet::SSL::Key::File do
|
6
|
-
it "should have documentation" do
|
7
|
-
expect(Puppet::SSL::Key::File.doc).to be_instance_of(String)
|
8
|
-
end
|
9
|
-
|
10
|
-
it "should use the :privatekeydir as the collection directory" do
|
11
|
-
Puppet[:privatekeydir] = File.expand_path("/key/dir")
|
12
|
-
expect(Puppet::SSL::Key::File.collection_directory).to eq(Puppet[:privatekeydir])
|
13
|
-
end
|
14
|
-
|
15
|
-
describe "when choosing the path for the public key" do
|
16
|
-
it "should use the host name plus '.pem' in :publickeydir for normal hosts" do
|
17
|
-
Puppet[:privatekeydir] = File.expand_path("/private/key/dir")
|
18
|
-
Puppet[:publickeydir] = File.expand_path("/public/key/dir")
|
19
|
-
allow(Puppet.settings).to receive(:use)
|
20
|
-
|
21
|
-
@searcher = Puppet::SSL::Key::File.new
|
22
|
-
expect(@searcher.public_key_path("whatever")).to eq(File.expand_path("/public/key/dir/whatever.pem"))
|
23
|
-
end
|
24
|
-
end
|
25
|
-
|
26
|
-
describe "when managing private keys" do
|
27
|
-
before do
|
28
|
-
@searcher = Puppet::SSL::Key::File.new
|
29
|
-
|
30
|
-
@private_key_path = File.join("/fake/key/path")
|
31
|
-
@public_key_path = File.join("/other/fake/key/path")
|
32
|
-
|
33
|
-
allow(@searcher).to receive(:public_key_path).and_return(@public_key_path)
|
34
|
-
allow(@searcher).to receive(:path).and_return(@private_key_path)
|
35
|
-
|
36
|
-
allow(FileTest).to receive(:directory?).and_return(true)
|
37
|
-
allow(FileTest).to receive(:writable?).and_return(true)
|
38
|
-
|
39
|
-
@public_key = double('public_key')
|
40
|
-
@real_key = double('sslkey', :public_key => @public_key)
|
41
|
-
|
42
|
-
@key = double('key', :name => "myname", :content => @real_key)
|
43
|
-
|
44
|
-
@request = double('request', :key => "myname", :instance => @key)
|
45
|
-
end
|
46
|
-
|
47
|
-
it "should save the public key when saving the private key" do
|
48
|
-
fh = StringIO.new
|
49
|
-
|
50
|
-
expect(Puppet.settings.setting(:publickeydir)).to receive(:open_file).with(@public_key_path, 'w:ASCII').and_yield(fh)
|
51
|
-
allow(Puppet.settings.setting(:privatekeydir)).to receive(:open_file)
|
52
|
-
expect(@public_key).to receive(:to_pem).and_return("my pem")
|
53
|
-
|
54
|
-
@searcher.save(@request)
|
55
|
-
|
56
|
-
expect(fh.string).to eq("my pem")
|
57
|
-
end
|
58
|
-
|
59
|
-
it "should destroy the public key when destroying the private key" do
|
60
|
-
expect(Puppet::FileSystem).to receive(:unlink).with(Puppet::FileSystem.pathname(@private_key_path))
|
61
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(Puppet::FileSystem.pathname(@private_key_path)).and_return(true)
|
62
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(Puppet::FileSystem.pathname(@public_key_path)).and_return(true)
|
63
|
-
expect(Puppet::FileSystem).to receive(:unlink).with(Puppet::FileSystem.pathname(@public_key_path))
|
64
|
-
|
65
|
-
@searcher.destroy(@request)
|
66
|
-
end
|
67
|
-
|
68
|
-
it "should not fail if the public key does not exist when deleting the private key" do
|
69
|
-
allow(Puppet::FileSystem).to receive(:unlink).with(Puppet::FileSystem.pathname(@private_key_path))
|
70
|
-
|
71
|
-
allow(Puppet::FileSystem).to receive(:exist?).with(Puppet::FileSystem.pathname(@private_key_path)).and_return(true)
|
72
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(Puppet::FileSystem.pathname(@public_key_path)).and_return(false)
|
73
|
-
expect(Puppet::FileSystem).not_to receive(:unlink).with(Puppet::FileSystem.pathname(@public_key_path))
|
74
|
-
|
75
|
-
@searcher.destroy(@request)
|
76
|
-
end
|
77
|
-
end
|
78
|
-
end
|
@@ -1,305 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
require 'puppet/indirector/ssl_file'
|
4
|
-
|
5
|
-
describe Puppet::Indirector::SslFile do
|
6
|
-
include PuppetSpec::Files
|
7
|
-
|
8
|
-
before(:all) do
|
9
|
-
class Puppet::SslTestModel
|
10
|
-
extend Puppet::Indirector
|
11
|
-
indirects :ssl_test_model
|
12
|
-
end
|
13
|
-
|
14
|
-
class Puppet::SslTestModel::SslFile < Puppet::Indirector::SslFile
|
15
|
-
end
|
16
|
-
|
17
|
-
Puppet::SslTestModel.indirection.terminus_class = :ssl_file
|
18
|
-
end
|
19
|
-
|
20
|
-
after(:all) do
|
21
|
-
Puppet::SslTestModel.indirection.delete
|
22
|
-
Puppet.send(:remove_const, :SslTestModel)
|
23
|
-
end
|
24
|
-
|
25
|
-
let(:terminus_class) { Puppet::SslTestModel::SslFile }
|
26
|
-
let(:model) { Puppet::SslTestModel }
|
27
|
-
|
28
|
-
before :each do
|
29
|
-
@setting = :certdir
|
30
|
-
terminus_class.store_in @setting
|
31
|
-
terminus_class.store_at nil
|
32
|
-
@path = make_absolute("/thisdoesntexist/my_directory")
|
33
|
-
Puppet[:noop] = false
|
34
|
-
Puppet[@setting] = @path
|
35
|
-
Puppet[:trace] = false
|
36
|
-
end
|
37
|
-
|
38
|
-
after :each do
|
39
|
-
terminus_class.store_in nil
|
40
|
-
terminus_class.store_at nil
|
41
|
-
end
|
42
|
-
|
43
|
-
it "should use :main and :ssl upon initialization" do
|
44
|
-
expect(Puppet.settings).to receive(:use).with(:main, :ssl)
|
45
|
-
terminus_class.new
|
46
|
-
end
|
47
|
-
|
48
|
-
it "should return a nil collection directory if no directory setting has been provided" do
|
49
|
-
terminus_class.store_in nil
|
50
|
-
expect(terminus_class.collection_directory).to be_nil
|
51
|
-
end
|
52
|
-
|
53
|
-
it "should return a nil file location if no location has been provided" do
|
54
|
-
terminus_class.store_at nil
|
55
|
-
expect(terminus_class.file_location).to be_nil
|
56
|
-
end
|
57
|
-
|
58
|
-
it "should fail if no store directory or file location has been set" do
|
59
|
-
expect(Puppet.settings).to receive(:use).with(:main, :ssl)
|
60
|
-
terminus_class.store_in nil
|
61
|
-
terminus_class.store_at nil
|
62
|
-
expect {
|
63
|
-
terminus_class.new
|
64
|
-
}.to raise_error(Puppet::DevError, /No file or directory setting provided/)
|
65
|
-
end
|
66
|
-
|
67
|
-
describe "when managing ssl files" do
|
68
|
-
before do
|
69
|
-
allow(Puppet.settings).to receive(:use)
|
70
|
-
@searcher = terminus_class.new
|
71
|
-
|
72
|
-
@cert = double('certificate', :name => "myname")
|
73
|
-
@certpath = File.join(@path, "myname.pem")
|
74
|
-
|
75
|
-
@request = double('request', :key => @cert.name, :instance => @cert)
|
76
|
-
end
|
77
|
-
|
78
|
-
describe "when choosing the location for certificates" do
|
79
|
-
it "should set them at the file location if a file setting is available" do
|
80
|
-
terminus_class.store_in nil
|
81
|
-
terminus_class.store_at :hostcrl
|
82
|
-
|
83
|
-
Puppet[:hostcrl] = File.expand_path("/some/file")
|
84
|
-
|
85
|
-
expect(@searcher.path(@cert.name)).to eq(Puppet[:hostcrl])
|
86
|
-
end
|
87
|
-
|
88
|
-
it "should set them in the setting directory, with the certificate name plus '.pem', if a directory setting is available" do
|
89
|
-
expect(@searcher.path(@cert.name)).to eq(@certpath)
|
90
|
-
end
|
91
|
-
|
92
|
-
['../foo', '..\\foo', './../foo', '.\\..\\foo',
|
93
|
-
'/foo', '//foo', '\\foo', '\\\\goo',
|
94
|
-
"test\0/../bar", "test\0\\..\\bar",
|
95
|
-
"..\\/bar", "/tmp/bar", "/tmp\\bar", "tmp\\bar",
|
96
|
-
" / bar", " /../ bar", " \\..\\ bar",
|
97
|
-
"c:\\foo", "c:/foo", "\\\\?\\UNC\\bar", "\\\\foo\\bar",
|
98
|
-
"\\\\?\\c:\\foo", "//?/UNC/bar", "//foo/bar",
|
99
|
-
"//?/c:/foo",
|
100
|
-
].each do |input|
|
101
|
-
it "should resist directory traversal attacks (#{input.inspect})" do
|
102
|
-
expect { @searcher.path(input) }.to raise_error(ArgumentError, /invalid key/)
|
103
|
-
end
|
104
|
-
end
|
105
|
-
|
106
|
-
# REVISIT: Should probably test MS-DOS reserved names here, too, since
|
107
|
-
# they would represent a vulnerability on a Win32 system, should we ever
|
108
|
-
# support that path. Don't forget that 'CON.foo' == 'CON'
|
109
|
-
# --daniel 2011-09-24
|
110
|
-
end
|
111
|
-
|
112
|
-
describe "when finding certificates on disk" do
|
113
|
-
describe "and no certificate is present" do
|
114
|
-
it "should return nil" do
|
115
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(@path).and_return(true)
|
116
|
-
expect(Dir).to receive(:entries).with(@path).and_return([])
|
117
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(@certpath).and_return(false)
|
118
|
-
|
119
|
-
expect(@searcher.find(@request)).to be_nil
|
120
|
-
end
|
121
|
-
end
|
122
|
-
|
123
|
-
describe "and a certificate is present" do
|
124
|
-
let(:cert) { double('cert') }
|
125
|
-
let(:model) { double('model') }
|
126
|
-
|
127
|
-
before(:each) do
|
128
|
-
allow(terminus_class).to receive(:model).and_return(model)
|
129
|
-
end
|
130
|
-
|
131
|
-
context "is readable" do
|
132
|
-
it "should return an instance of the model, which it should use to read the certificate" do
|
133
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(@certpath).and_return(true)
|
134
|
-
|
135
|
-
expect(model).to receive(:new).with("myname").and_return(cert)
|
136
|
-
expect(cert).to receive(:read).with(@certpath)
|
137
|
-
|
138
|
-
expect(@searcher.find(@request)).to equal(cert)
|
139
|
-
end
|
140
|
-
end
|
141
|
-
|
142
|
-
context "is unreadable" do
|
143
|
-
it "should raise an exception" do
|
144
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(@certpath).and_return(true)
|
145
|
-
|
146
|
-
expect(model).to receive(:new).with("myname").and_return(cert)
|
147
|
-
expect(cert).to receive(:read).with(@certpath).and_raise(Errno::EACCES)
|
148
|
-
|
149
|
-
expect {
|
150
|
-
@searcher.find(@request)
|
151
|
-
}.to raise_error(Errno::EACCES)
|
152
|
-
end
|
153
|
-
end
|
154
|
-
end
|
155
|
-
|
156
|
-
describe "and a certificate is present but has uppercase letters" do
|
157
|
-
before do
|
158
|
-
@request = double('request', :key => "myhost")
|
159
|
-
end
|
160
|
-
|
161
|
-
# This is kind of more an integration test; it's for #1382, until
|
162
|
-
# the support for upper-case certs can be removed around mid-2009.
|
163
|
-
it "should rename the existing file to the lower-case path" do
|
164
|
-
@path = @searcher.path("myhost")
|
165
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(@path).and_return(false)
|
166
|
-
dir, file = File.split(@path)
|
167
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(dir).and_return(true)
|
168
|
-
expect(Dir).to receive(:entries).with(dir).and_return([".", "..", "something.pem", file.upcase])
|
169
|
-
|
170
|
-
expect(File).to receive(:rename).with(File.join(dir, file.upcase), @path)
|
171
|
-
|
172
|
-
cert = double('cert')
|
173
|
-
model = double('model')
|
174
|
-
allow(@searcher).to receive(:model).and_return(model)
|
175
|
-
expect(@searcher.model).to receive(:new).with("myhost").and_return(cert)
|
176
|
-
expect(cert).to receive(:read).with(@path)
|
177
|
-
|
178
|
-
@searcher.find(@request)
|
179
|
-
end
|
180
|
-
end
|
181
|
-
end
|
182
|
-
|
183
|
-
describe "when saving certificates to disk" do
|
184
|
-
before do
|
185
|
-
allow(FileTest).to receive(:directory?).and_return(true)
|
186
|
-
allow(FileTest).to receive(:writable?).and_return(true)
|
187
|
-
end
|
188
|
-
|
189
|
-
it "should fail if the directory is absent" do
|
190
|
-
expect(FileTest).to receive(:directory?).with(File.dirname(@certpath)).and_return(false)
|
191
|
-
expect { @searcher.save(@request) }.to raise_error(Puppet::Error)
|
192
|
-
end
|
193
|
-
|
194
|
-
it "should fail if the directory is not writeable" do
|
195
|
-
allow(FileTest).to receive(:directory?).and_return(true)
|
196
|
-
expect(FileTest).to receive(:writable?).with(File.dirname(@certpath)).and_return(false)
|
197
|
-
expect { @searcher.save(@request) }.to raise_error(Puppet::Error)
|
198
|
-
end
|
199
|
-
|
200
|
-
it "should save to the path the output of converting the certificate to a string" do
|
201
|
-
fh = double('filehandle')
|
202
|
-
expect(fh).to receive(:print).with("mycert")
|
203
|
-
|
204
|
-
allow(@searcher).to receive(:write).and_yield(fh)
|
205
|
-
expect(@cert).to receive(:to_s).and_return("mycert")
|
206
|
-
|
207
|
-
@searcher.save(@request)
|
208
|
-
end
|
209
|
-
|
210
|
-
describe "and a directory setting is set" do
|
211
|
-
it "should use the Settings class to write the file" do
|
212
|
-
@searcher.class.store_in @setting
|
213
|
-
fh = double('filehandle')
|
214
|
-
allow(fh).to receive(:print)
|
215
|
-
expect(Puppet.settings.setting(@setting)).to receive(:open_file).with(@certpath, 'w:ASCII').and_yield(fh)
|
216
|
-
|
217
|
-
@searcher.save(@request)
|
218
|
-
end
|
219
|
-
end
|
220
|
-
|
221
|
-
describe "and a file location is set" do
|
222
|
-
it "should use the filehandle provided by the Settings" do
|
223
|
-
@searcher.class.store_at @setting
|
224
|
-
|
225
|
-
fh = double('filehandle')
|
226
|
-
allow(fh).to receive(:print)
|
227
|
-
expect(Puppet.settings.setting(@setting)).to receive(:open).with('w:ASCII').and_yield(fh)
|
228
|
-
@searcher.save(@request)
|
229
|
-
end
|
230
|
-
end
|
231
|
-
end
|
232
|
-
|
233
|
-
describe "when destroying certificates" do
|
234
|
-
describe "that do not exist" do
|
235
|
-
before do
|
236
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(Puppet::FileSystem.pathname(@certpath)).and_return(false)
|
237
|
-
end
|
238
|
-
|
239
|
-
it "should return false" do
|
240
|
-
expect(@searcher.destroy(@request)).to be_falsey
|
241
|
-
end
|
242
|
-
end
|
243
|
-
|
244
|
-
describe "that exist" do
|
245
|
-
it "should unlink the certificate file" do
|
246
|
-
path = Puppet::FileSystem.pathname(@certpath)
|
247
|
-
expect(Puppet::FileSystem).to receive(:exist?).with(path).and_return(true)
|
248
|
-
expect(Puppet::FileSystem).to receive(:unlink).with(path)
|
249
|
-
@searcher.destroy(@request)
|
250
|
-
end
|
251
|
-
|
252
|
-
it "should log that is removing the file" do
|
253
|
-
allow(Puppet::FileSystem).to receive(:exist?).and_return(true)
|
254
|
-
allow(Puppet::FileSystem).to receive(:unlink)
|
255
|
-
expect(Puppet).to receive(:notice)
|
256
|
-
@searcher.destroy(@request)
|
257
|
-
end
|
258
|
-
end
|
259
|
-
end
|
260
|
-
|
261
|
-
describe "when searching for certificates" do
|
262
|
-
let(:one) { double('one') }
|
263
|
-
let(:two) { double('two') }
|
264
|
-
let(:one_path) { File.join(@path, 'one.pem') }
|
265
|
-
let(:two_path) { File.join(@path, 'two.pem') }
|
266
|
-
let(:model) { double('model') }
|
267
|
-
|
268
|
-
before :each do
|
269
|
-
allow(terminus_class).to receive(:model).and_return(model)
|
270
|
-
end
|
271
|
-
|
272
|
-
it "should return a certificate instance for all files that exist" do
|
273
|
-
expect(Dir).to receive(:entries).with(@path).and_return(%w{. .. one.pem two.pem})
|
274
|
-
|
275
|
-
expect(model).to receive(:new).with("one").and_return(one)
|
276
|
-
expect(one).to receive(:read).with(one_path)
|
277
|
-
expect(model).to receive(:new).with("two").and_return(two)
|
278
|
-
expect(two).to receive(:read).with(two_path)
|
279
|
-
|
280
|
-
expect(@searcher.search(@request)).to eq([one, two])
|
281
|
-
end
|
282
|
-
|
283
|
-
it "should raise an exception if any file is unreadable" do
|
284
|
-
expect(Dir).to receive(:entries).with(@path).and_return(%w{. .. one.pem two.pem})
|
285
|
-
|
286
|
-
expect(model).to receive(:new).with("one").and_return(one)
|
287
|
-
expect(one).to receive(:read).with(one_path)
|
288
|
-
expect(model).to receive(:new).with("two").and_return(two)
|
289
|
-
expect(two).to receive(:read).and_raise(Errno::EACCES)
|
290
|
-
|
291
|
-
expect {
|
292
|
-
@searcher.search(@request)
|
293
|
-
}.to raise_error(Errno::EACCES)
|
294
|
-
end
|
295
|
-
|
296
|
-
it "should skip any files that do not match /\.pem$/" do
|
297
|
-
expect(Dir).to receive(:entries).with(@path).and_return(%w{. .. one two.notpem})
|
298
|
-
|
299
|
-
expect(model).not_to receive(:new)
|
300
|
-
|
301
|
-
expect(@searcher.search(@request)).to eq([])
|
302
|
-
end
|
303
|
-
end
|
304
|
-
end
|
305
|
-
end
|
@@ -1,10 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
require 'puppet/indirector/status/local'
|
4
|
-
|
5
|
-
describe Puppet::Indirector::Status::Local do
|
6
|
-
it "should set the puppet version" do
|
7
|
-
Puppet::Status.indirection.terminus_class = :local
|
8
|
-
expect(Puppet::Status.indirection.find('*').version).to eq(Puppet.version)
|
9
|
-
end
|
10
|
-
end
|
@@ -1,50 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
require 'puppet/indirector/status/rest'
|
4
|
-
|
5
|
-
describe Puppet::Indirector::Status::Rest do
|
6
|
-
let(:certname) { 'ziggy' }
|
7
|
-
let(:uri) { %r{/puppet/v3/status/ziggy} }
|
8
|
-
let(:formatter) { Puppet::Network::FormatHandler.format(:json) }
|
9
|
-
|
10
|
-
before :each do
|
11
|
-
Puppet[:server] = 'compiler.example.com'
|
12
|
-
Puppet[:serverport] = 8140
|
13
|
-
|
14
|
-
described_class.indirection.terminus_class = :rest
|
15
|
-
end
|
16
|
-
|
17
|
-
def status_response(node)
|
18
|
-
{ body: formatter.render(node), headers: {'Content-Type' => formatter.mime } }
|
19
|
-
end
|
20
|
-
|
21
|
-
it 'finds server status' do
|
22
|
-
node = Puppet::Status.new(certname)
|
23
|
-
|
24
|
-
stub_request(:get, uri).to_return(**status_response(node))
|
25
|
-
|
26
|
-
expect(described_class.indirection.find(certname)).to be_a(Puppet::Status)
|
27
|
-
end
|
28
|
-
|
29
|
-
it 'returns nil if the node does not exist' do
|
30
|
-
stub_request(:get, uri).to_return(status: 404, headers: { 'Content-Type' => 'application/json' }, body: "{}")
|
31
|
-
|
32
|
-
expect(described_class.indirection.find(certname)).to be_nil
|
33
|
-
end
|
34
|
-
|
35
|
-
it 'raises if fail_on_404 is specified' do
|
36
|
-
stub_request(:get, uri).to_return(status: 404, headers: { 'Content-Type' => 'application/json' }, body: "{}")
|
37
|
-
|
38
|
-
expect{
|
39
|
-
described_class.indirection.find(certname, fail_on_404: true)
|
40
|
-
}.to raise_error(Puppet::Error, %r{Find /puppet/v3/status/ziggy resulted in 404 with the message: {}})
|
41
|
-
end
|
42
|
-
|
43
|
-
it 'raises Net::HTTPError on 500' do
|
44
|
-
stub_request(:get, uri).to_return(status: 500)
|
45
|
-
|
46
|
-
expect{
|
47
|
-
described_class.indirection.find(certname)
|
48
|
-
}.to raise_error(Net::HTTPError, %r{Error 500 on SERVER: })
|
49
|
-
end
|
50
|
-
end
|