puppet 6.4.0-x64-mingw32 → 6.4.1-x64-mingw32
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of puppet might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/Gemfile +0 -1
- data/Gemfile.lock +7 -11
- data/lib/puppet/application/device.rb +97 -82
- data/lib/puppet/application/filebucket.rb +4 -0
- data/lib/puppet/application/ssl.rb +2 -2
- data/lib/puppet/configurer.rb +5 -4
- data/lib/puppet/defaults.rb +33 -11
- data/lib/puppet/indirector/request.rb +28 -15
- data/lib/puppet/ssl.rb +1 -1
- data/lib/puppet/ssl/certificate.rb +1 -1
- data/lib/puppet/ssl/error.rb +1 -1
- data/lib/puppet/ssl/host.rb +0 -47
- data/lib/puppet/ssl/ssl_provider.rb +2 -2
- data/lib/puppet/ssl/state_machine.rb +16 -17
- data/lib/puppet/ssl/validator/default_validator.rb +4 -4
- data/lib/puppet/ssl/verifier.rb +1 -1
- data/lib/puppet/transaction/event_manager.rb +1 -5
- data/lib/puppet/util/connection.rb +15 -8
- data/lib/puppet/util/monkey_patches.rb +20 -1
- data/lib/puppet/version.rb +1 -1
- data/locales/puppet.pot +135 -68
- data/man/man5/puppet.conf.5 +9 -9
- data/man/man8/puppet-agent.8 +1 -1
- data/man/man8/puppet-apply.8 +1 -1
- data/man/man8/puppet-catalog.8 +1 -1
- data/man/man8/puppet-config.8 +1 -1
- data/man/man8/puppet-describe.8 +1 -1
- data/man/man8/puppet-device.8 +1 -1
- data/man/man8/puppet-doc.8 +1 -1
- data/man/man8/puppet-epp.8 +1 -1
- data/man/man8/puppet-facts.8 +1 -1
- data/man/man8/puppet-filebucket.8 +1 -1
- data/man/man8/puppet-generate.8 +1 -1
- data/man/man8/puppet-help.8 +1 -1
- data/man/man8/puppet-key.8 +1 -1
- data/man/man8/puppet-lookup.8 +1 -1
- data/man/man8/puppet-man.8 +1 -1
- data/man/man8/puppet-module.8 +1 -1
- data/man/man8/puppet-node.8 +1 -1
- data/man/man8/puppet-parser.8 +1 -1
- data/man/man8/puppet-plugin.8 +1 -1
- data/man/man8/puppet-report.8 +1 -1
- data/man/man8/puppet-resource.8 +1 -1
- data/man/man8/puppet-script.8 +1 -1
- data/man/man8/puppet-ssl.8 +1 -1
- data/man/man8/puppet-status.8 +1 -1
- data/man/man8/puppet.8 +2 -2
- data/spec/integration/agent/logging_spec.rb +5 -7
- data/spec/integration/application/apply_spec.rb +18 -16
- data/spec/integration/application/doc_spec.rb +1 -2
- data/spec/integration/application/lookup_spec.rb +5 -5
- data/spec/integration/configurer_spec.rb +5 -6
- data/spec/integration/defaults_spec.rb +5 -6
- data/spec/integration/directory_environments_spec.rb +1 -1
- data/spec/integration/faces/config_spec.rb +3 -4
- data/spec/integration/faces/documentation_spec.rb +0 -1
- data/spec/integration/faces/plugin_spec.rb +1 -1
- data/spec/integration/file_bucket/file_spec.rb +2 -4
- data/spec/integration/file_serving/content_spec.rb +0 -1
- data/spec/integration/file_serving/fileset_spec.rb +0 -1
- data/spec/integration/file_serving/metadata_spec.rb +0 -1
- data/spec/integration/file_serving/terminus_helper_spec.rb +0 -1
- data/spec/integration/indirector/catalog/compiler_spec.rb +10 -11
- data/spec/integration/indirector/direct_file_server_spec.rb +1 -1
- data/spec/integration/indirector/facts/facter_spec.rb +4 -5
- data/spec/integration/indirector/file_content/file_server_spec.rb +7 -8
- data/spec/integration/indirector/file_metadata/file_server_spec.rb +7 -8
- data/spec/integration/network/authconfig_spec.rb +23 -24
- data/spec/integration/network/formats_spec.rb +0 -1
- data/spec/integration/network/http_pool_spec.rb +3 -3
- data/spec/integration/node/environment_spec.rb +0 -1
- data/spec/integration/node/facts_spec.rb +9 -10
- data/spec/integration/node_spec.rb +6 -7
- data/spec/integration/parser/catalog_spec.rb +1 -5
- data/spec/integration/parser/collection_spec.rb +1 -2
- data/spec/integration/parser/compiler_spec.rb +6 -6
- data/spec/integration/parser/scope_spec.rb +1 -1
- data/spec/integration/parser/undef_param_spec.rb +1 -1
- data/spec/integration/provider/service/init_spec.rb +4 -5
- data/spec/integration/provider/service/systemd_spec.rb +0 -2
- data/spec/integration/provider/service/windows_spec.rb +1 -2
- data/spec/integration/reference/providers_spec.rb +1 -2
- data/spec/integration/reports_spec.rb +1 -2
- data/spec/integration/resource/catalog_spec.rb +14 -17
- data/spec/integration/resource/type_collection_spec.rb +4 -5
- data/spec/integration/rest/client_spec.rb +1 -1
- data/spec/integration/ssl/certificate_request_spec.rb +0 -1
- data/spec/integration/ssl/host_spec.rb +1 -2
- data/spec/integration/ssl/key_spec.rb +0 -1
- data/spec/integration/test/test_helper_spec.rb +0 -1
- data/spec/integration/transaction/report_spec.rb +6 -11
- data/spec/integration/transaction_spec.rb +18 -19
- data/spec/integration/type/exec_spec.rb +0 -1
- data/spec/integration/type/file_spec.rb +13 -14
- data/spec/integration/type/package_spec.rb +19 -23
- data/spec/integration/type/tidy_spec.rb +1 -2
- data/spec/integration/type_spec.rb +0 -1
- data/spec/integration/util/autoload_spec.rb +1 -2
- data/spec/integration/util/rdoc/parser_spec.rb +0 -1
- data/spec/integration/util/settings_spec.rb +0 -1
- data/spec/integration/util/windows/adsi_spec.rb +3 -5
- data/spec/integration/util/windows/principal_spec.rb +0 -1
- data/spec/integration/util/windows/process_spec.rb +4 -6
- data/spec/integration/util/windows/registry_spec.rb +41 -51
- data/spec/integration/util/windows/security_spec.rb +2 -4
- data/spec/integration/util/windows/user_spec.rb +18 -20
- data/spec/integration/util_spec.rb +4 -7
- data/spec/lib/puppet_spec/compiler.rb +1 -1
- data/spec/lib/puppet_spec/files.rb +0 -1
- data/spec/lib/puppet_spec/module_tool/shared_functions.rb +1 -1
- data/spec/lib/puppet_spec/scope.rb +1 -2
- data/spec/shared_behaviours/all_parsedfile_providers.rb +1 -1
- data/spec/shared_behaviours/file_server_terminus.rb +8 -9
- data/spec/shared_behaviours/file_serving.rb +6 -8
- data/spec/shared_behaviours/file_serving_model.rb +3 -5
- data/spec/shared_behaviours/hiera_indirections.rb +3 -4
- data/spec/shared_behaviours/iterative_functions.rb +0 -1
- data/spec/shared_behaviours/memory_terminus.rb +2 -2
- data/spec/shared_examples/rhel_package_provider.rb +112 -70
- data/spec/spec_helper.rb +10 -1
- data/spec/unit/agent/disabler_spec.rb +4 -5
- data/spec/unit/agent/locker_spec.rb +12 -13
- data/spec/unit/agent_spec.rb +80 -85
- data/spec/unit/application/agent_spec.rb +88 -94
- data/spec/unit/application/apply_spec.rb +82 -83
- data/spec/unit/application/config_spec.rb +0 -1
- data/spec/unit/application/describe_spec.rb +6 -7
- data/spec/unit/application/device_spec.rb +379 -384
- data/spec/unit/application/doc_spec.rb +44 -46
- data/spec/unit/application/face_base_spec.rb +61 -62
- data/spec/unit/application/facts_spec.rb +3 -4
- data/spec/unit/application/filebucket_spec.rb +66 -74
- data/spec/unit/application/indirection_base_spec.rb +8 -6
- data/spec/unit/application/lookup_spec.rb +26 -26
- data/spec/unit/application/resource_spec.rb +42 -48
- data/spec/unit/application/ssl_spec.rb +9 -9
- data/spec/unit/application_spec.rb +82 -92
- data/spec/unit/capability_spec.rb +6 -6
- data/spec/unit/certificate_factory_spec.rb +3 -5
- data/spec/unit/configurer/downloader_spec.rb +20 -21
- data/spec/unit/configurer/fact_handler_spec.rb +2 -3
- data/spec/unit/configurer/plugin_handler_spec.rb +41 -8
- data/spec/unit/configurer_spec.rb +189 -192
- data/spec/unit/confine/exists_spec.rb +17 -15
- data/spec/unit/confine/false_spec.rb +5 -6
- data/spec/unit/confine/feature_spec.rb +7 -5
- data/spec/unit/confine/true_spec.rb +5 -6
- data/spec/unit/confine/variable_spec.rb +14 -15
- data/spec/unit/confine_collection_spec.rb +28 -29
- data/spec/unit/confine_spec.rb +13 -14
- data/spec/unit/confiner_spec.rb +10 -11
- data/spec/unit/context/trusted_information_spec.rb +1 -1
- data/spec/unit/daemon_spec.rb +35 -36
- data/spec/unit/data_providers/function_data_provider_spec.rb +0 -1
- data/spec/unit/data_providers/hiera_data_provider_spec.rb +0 -1
- data/spec/unit/datatypes_spec.rb +3 -4
- data/spec/unit/defaults_spec.rb +18 -13
- data/spec/unit/environments_spec.rb +7 -7
- data/spec/unit/etc_spec.rb +30 -32
- data/spec/unit/external/pson_spec.rb +0 -1
- data/spec/unit/face/catalog_spec.rb +0 -1
- data/spec/unit/face/config_spec.rb +31 -35
- data/spec/unit/face/epp_face_spec.rb +3 -4
- data/spec/unit/face/facts_spec.rb +5 -6
- data/spec/unit/face/generate_spec.rb +4 -5
- data/spec/unit/face/help_spec.rb +7 -8
- data/spec/unit/face/key_spec.rb +0 -1
- data/spec/unit/face/man_spec.rb +1 -2
- data/spec/unit/face/module/install_spec.rb +3 -5
- data/spec/unit/face/module/list_spec.rb +2 -12
- data/spec/unit/face/module/search_spec.rb +11 -9
- data/spec/unit/face/module/uninstall_spec.rb +4 -8
- data/spec/unit/face/node_spec.rb +23 -24
- data/spec/unit/face/parser_spec.rb +3 -3
- data/spec/unit/face/plugin_spec.rb +36 -9
- data/spec/unit/face/status_spec.rb +0 -1
- data/spec/unit/file_bucket/dipper_spec.rb +24 -20
- data/spec/unit/file_bucket/file_spec.rb +0 -2
- data/spec/unit/file_serving/base_spec.rb +14 -15
- data/spec/unit/file_serving/configuration/parser_spec.rb +27 -28
- data/spec/unit/file_serving/configuration_spec.rb +63 -66
- data/spec/unit/file_serving/content_spec.rb +10 -11
- data/spec/unit/file_serving/fileset_spec.rb +63 -58
- data/spec/unit/file_serving/http_metadata_spec.rb +8 -7
- data/spec/unit/file_serving/metadata_spec.rb +36 -36
- data/spec/unit/file_serving/mount/file_spec.rb +31 -32
- data/spec/unit/file_serving/mount/locales_spec.rb +23 -24
- data/spec/unit/file_serving/mount/modules_spec.rb +14 -15
- data/spec/unit/file_serving/mount/pluginfacts_spec.rb +23 -24
- data/spec/unit/file_serving/mount/plugins_spec.rb +23 -24
- data/spec/unit/file_serving/mount/tasks_spec.rb +14 -15
- data/spec/unit/file_serving/mount_spec.rb +0 -1
- data/spec/unit/file_serving/terminus_helper_spec.rb +37 -42
- data/spec/unit/file_serving/terminus_selector_spec.rb +12 -13
- data/spec/unit/file_system/uniquefile_spec.rb +4 -4
- data/spec/unit/file_system_spec.rb +4 -4
- data/spec/unit/forge/errors_spec.rb +1 -1
- data/spec/unit/forge/forge_spec.rb +13 -14
- data/spec/unit/forge/module_release_spec.rb +18 -18
- data/spec/unit/forge/repository_spec.rb +29 -30
- data/spec/unit/forge_spec.rb +15 -11
- data/spec/unit/functions/binary_file_spec.rb +3 -3
- data/spec/unit/functions/contain_spec.rb +0 -2
- data/spec/unit/functions/defined_spec.rb +0 -1
- data/spec/unit/functions/epp_spec.rb +2 -2
- data/spec/unit/functions/find_file_spec.rb +7 -7
- data/spec/unit/functions/include_spec.rb +0 -4
- data/spec/unit/functions/lookup_fixture_spec.rb +0 -1
- data/spec/unit/functions/lookup_spec.rb +1 -2
- data/spec/unit/functions/module_directory_spec.rb +12 -12
- data/spec/unit/functions/require_spec.rb +0 -3
- data/spec/unit/functions/shared.rb +5 -8
- data/spec/unit/functions/versioncmp_spec.rb +1 -2
- data/spec/unit/functions4_spec.rb +9 -10
- data/spec/unit/gettext/config_spec.rb +4 -4
- data/spec/unit/gettext/module_loading_spec.rb +7 -7
- data/spec/unit/graph/rb_tree_map_spec.rb +0 -2
- data/spec/unit/graph/relationship_graph_spec.rb +1 -2
- data/spec/unit/graph/simple_graph_spec.rb +9 -10
- data/spec/unit/hiera_puppet_spec.rb +20 -20
- data/spec/unit/indirector/catalog/compiler_spec.rb +147 -149
- data/spec/unit/indirector/catalog/json_spec.rb +1 -2
- data/spec/unit/indirector/catalog/msgpack_spec.rb +0 -1
- data/spec/unit/indirector/catalog/rest_spec.rb +0 -1
- data/spec/unit/indirector/catalog/store_configs_spec.rb +0 -1
- data/spec/unit/indirector/catalog/yaml_spec.rb +0 -1
- data/spec/unit/indirector/certificate/file_spec.rb +0 -1
- data/spec/unit/indirector/certificate/rest_spec.rb +8 -10
- data/spec/unit/indirector/certificate_request/file_spec.rb +0 -1
- data/spec/unit/indirector/certificate_request/rest_spec.rb +0 -1
- data/spec/unit/indirector/direct_file_server_spec.rb +17 -18
- data/spec/unit/indirector/envelope_spec.rb +1 -2
- data/spec/unit/indirector/exec_spec.rb +4 -5
- data/spec/unit/indirector/face_spec.rb +9 -9
- data/spec/unit/indirector/facts/facter_spec.rb +37 -43
- data/spec/unit/indirector/facts/network_device_spec.rb +8 -9
- data/spec/unit/indirector/facts/rest_spec.rb +7 -8
- data/spec/unit/indirector/facts/store_configs_spec.rb +0 -1
- data/spec/unit/indirector/facts/yaml_spec.rb +0 -1
- data/spec/unit/indirector/file_bucket_file/file_spec.rb +3 -4
- data/spec/unit/indirector/file_bucket_file/rest_spec.rb +0 -1
- data/spec/unit/indirector/file_bucket_file/selector_spec.rb +4 -5
- data/spec/unit/indirector/file_content/file_server_spec.rb +0 -1
- data/spec/unit/indirector/file_content/file_spec.rb +0 -1
- data/spec/unit/indirector/file_content/rest_spec.rb +0 -1
- data/spec/unit/indirector/file_content/selector_spec.rb +0 -1
- data/spec/unit/indirector/file_metadata/file_server_spec.rb +0 -1
- data/spec/unit/indirector/file_metadata/file_spec.rb +12 -13
- data/spec/unit/indirector/file_metadata/rest_spec.rb +0 -1
- data/spec/unit/indirector/file_metadata/selector_spec.rb +0 -1
- data/spec/unit/indirector/file_server_spec.rb +87 -87
- data/spec/unit/indirector/indirection_spec.rb +242 -226
- data/spec/unit/indirector/json_spec.rb +7 -9
- data/spec/unit/indirector/key/file_spec.rb +21 -22
- data/spec/unit/indirector/memory_spec.rb +6 -7
- data/spec/unit/indirector/msgpack_spec.rb +7 -9
- data/spec/unit/indirector/node/exec_spec.rb +2 -3
- data/spec/unit/indirector/node/memory_spec.rb +2 -4
- data/spec/unit/indirector/node/msgpack_spec.rb +0 -1
- data/spec/unit/indirector/node/plain_spec.rb +2 -4
- data/spec/unit/indirector/node/rest_spec.rb +0 -1
- data/spec/unit/indirector/node/store_configs_spec.rb +0 -1
- data/spec/unit/indirector/node/yaml_spec.rb +0 -1
- data/spec/unit/indirector/none_spec.rb +5 -5
- data/spec/unit/indirector/plain_spec.rb +7 -8
- data/spec/unit/indirector/report/msgpack_spec.rb +0 -1
- data/spec/unit/indirector/report/processor_spec.rb +21 -22
- data/spec/unit/indirector/report/rest_spec.rb +11 -12
- data/spec/unit/indirector/report/yaml_spec.rb +0 -1
- data/spec/unit/indirector/request_spec.rb +11 -12
- data/spec/unit/indirector/resource/ral_spec.rb +47 -54
- data/spec/unit/indirector/resource/store_configs_spec.rb +0 -1
- data/spec/unit/indirector/rest_spec.rb +113 -110
- data/spec/unit/indirector/ssl_file_spec.rb +64 -65
- data/spec/unit/indirector/status/local_spec.rb +0 -1
- data/spec/unit/indirector/status/rest_spec.rb +0 -1
- data/spec/unit/indirector/store_configs_spec.rb +0 -1
- data/spec/unit/indirector/terminus_spec.rb +27 -27
- data/spec/unit/indirector/yaml_spec.rb +5 -6
- data/spec/unit/indirector_spec.rb +1 -2
- data/spec/unit/info_service_spec.rb +1 -1
- data/spec/unit/interface/action_builder_spec.rb +0 -1
- data/spec/unit/interface/action_manager_spec.rb +0 -1
- data/spec/unit/interface/action_spec.rb +2 -3
- data/spec/unit/interface/documentation_spec.rb +0 -1
- data/spec/unit/interface/face_collection_spec.rb +19 -12
- data/spec/unit/interface_spec.rb +3 -3
- data/spec/unit/man_spec.rb +3 -4
- data/spec/unit/module_spec.rb +46 -51
- data/spec/unit/module_tool/applications/installer_spec.rb +10 -11
- data/spec/unit/module_tool/applications/searcher_spec.rb +3 -3
- data/spec/unit/module_tool/applications/uninstaller_spec.rb +1 -2
- data/spec/unit/module_tool/applications/unpacker_spec.rb +13 -13
- data/spec/unit/module_tool/applications/upgrader_spec.rb +5 -5
- data/spec/unit/module_tool/install_directory_spec.rb +8 -8
- data/spec/unit/module_tool/installed_modules_spec.rb +3 -3
- data/spec/unit/module_tool/tar/gnu_spec.rb +6 -6
- data/spec/unit/module_tool/tar/mini_spec.rb +12 -12
- data/spec/unit/module_tool/tar_spec.rb +12 -13
- data/spec/unit/module_tool_spec.rb +7 -12
- data/spec/unit/network/auth_config_parser_spec.rb +11 -13
- data/spec/unit/network/authconfig_spec.rb +17 -18
- data/spec/unit/network/authorization_spec.rb +4 -5
- data/spec/unit/network/authstore_spec.rb +0 -1
- data/spec/unit/network/format_handler_spec.rb +0 -1
- data/spec/unit/network/format_spec.rb +9 -10
- data/spec/unit/network/format_support_spec.rb +28 -29
- data/spec/unit/network/formats_spec.rb +4 -5
- data/spec/unit/network/http/api/indirected_routes_spec.rb +24 -29
- data/spec/unit/network/http/api/master/v3/authorization_spec.rb +2 -2
- data/spec/unit/network/http/api/master/v3/environment_spec.rb +1 -1
- data/spec/unit/network/http/api/master/v3/environments_spec.rb +6 -7
- data/spec/unit/network/http/api_spec.rb +0 -2
- data/spec/unit/network/http/compression_spec.rb +21 -22
- data/spec/unit/network/http/connection_spec.rb +35 -35
- data/spec/unit/network/http/factory_spec.rb +5 -6
- data/spec/unit/network/http/handler_spec.rb +9 -18
- data/spec/unit/network/http/nocache_pool_spec.rb +6 -7
- data/spec/unit/network/http/pool_spec.rb +33 -34
- data/spec/unit/network/http/request_spec.rb +0 -2
- data/spec/unit/network/http/response_spec.rb +11 -13
- data/spec/unit/network/http/route_spec.rb +0 -1
- data/spec/unit/network/http/session_spec.rb +2 -3
- data/spec/unit/network/http/site_spec.rb +0 -1
- data/spec/unit/network/http_pool_spec.rb +19 -10
- data/spec/unit/network/http_spec.rb +0 -1
- data/spec/unit/network/resolver_spec.rb +25 -26
- data/spec/unit/network/rights_spec.rb +52 -53
- data/spec/unit/node/environment_spec.rb +14 -15
- data/spec/unit/node/facts_spec.rb +5 -7
- data/spec/unit/node_spec.rb +4 -10
- data/spec/unit/other/selinux_spec.rb +0 -1
- data/spec/unit/parameter/boolean_spec.rb +1 -2
- data/spec/unit/parameter/package_options_spec.rb +1 -2
- data/spec/unit/parameter/path_spec.rb +0 -1
- data/spec/unit/parameter/value_collection_spec.rb +0 -1
- data/spec/unit/parameter/value_spec.rb +0 -1
- data/spec/unit/parameter_spec.rb +9 -9
- data/spec/unit/parser/ast/block_expression_spec.rb +6 -8
- data/spec/unit/parser/ast/leaf_spec.rb +20 -21
- data/spec/unit/parser/compiler_spec.rb +84 -96
- data/spec/unit/parser/environment_compiler_spec.rb +7 -8
- data/spec/unit/parser/files_spec.rb +0 -1
- data/spec/unit/parser/functions/create_resources_spec.rb +1 -1
- data/spec/unit/parser/functions/digest_spec.rb +0 -1
- data/spec/unit/parser/functions/fail_spec.rb +1 -2
- data/spec/unit/parser/functions/file_spec.rb +13 -14
- data/spec/unit/parser/functions/fqdn_rand_spec.rb +5 -6
- data/spec/unit/parser/functions/generate_spec.rb +7 -8
- data/spec/unit/parser/functions/inline_template_spec.rb +0 -1
- data/spec/unit/parser/functions/regsubst_spec.rb +0 -1
- data/spec/unit/parser/functions/scanf_spec.rb +0 -1
- data/spec/unit/parser/functions/shellquote_spec.rb +0 -1
- data/spec/unit/parser/functions/split_spec.rb +0 -1
- data/spec/unit/parser/functions/sprintf_spec.rb +0 -1
- data/spec/unit/parser/functions/tag_spec.rb +1 -2
- data/spec/unit/parser/functions/tagged_spec.rb +2 -3
- data/spec/unit/parser/functions/template_spec.rb +13 -13
- data/spec/unit/parser/functions/versioncmp_spec.rb +1 -2
- data/spec/unit/parser/functions_spec.rb +6 -7
- data/spec/unit/parser/relationship_spec.rb +0 -1
- data/spec/unit/parser/resource_spec.rb +42 -42
- data/spec/unit/parser/scope_spec.rb +39 -35
- data/spec/unit/parser/templatewrapper_spec.rb +11 -12
- data/spec/unit/parser/type_loader_spec.rb +17 -19
- data/spec/unit/pops/adaptable_spec.rb +0 -1
- data/spec/unit/pops/benchmark_spec.rb +0 -1
- data/spec/unit/pops/evaluator/access_ops_spec.rb +0 -1
- data/spec/unit/pops/evaluator/arithmetic_ops_spec.rb +0 -1
- data/spec/unit/pops/evaluator/basic_expressions_spec.rb +0 -1
- data/spec/unit/pops/evaluator/collections_ops_spec.rb +0 -1
- data/spec/unit/pops/evaluator/comparison_ops_spec.rb +0 -1
- data/spec/unit/pops/evaluator/conditionals_spec.rb +0 -1
- data/spec/unit/pops/evaluator/evaluating_parser_spec.rb +10 -11
- data/spec/unit/pops/evaluator/logical_ops_spec.rb +0 -1
- data/spec/unit/pops/evaluator/runtime3_converter_spec.rb +0 -1
- data/spec/unit/pops/evaluator/string_interpolation_spec.rb +0 -1
- data/spec/unit/pops/evaluator/variables_spec.rb +0 -1
- data/spec/unit/pops/factory_spec.rb +3 -4
- data/spec/unit/pops/issues_spec.rb +19 -20
- data/spec/unit/pops/loaders/loader_spec.rb +9 -5
- data/spec/unit/pops/loaders/loaders_spec.rb +31 -28
- data/spec/unit/pops/lookup/context_spec.rb +0 -1
- data/spec/unit/pops/lookup/interpolation_spec.rb +2 -3
- data/spec/unit/pops/merge_strategy_spec.rb +0 -1
- data/spec/unit/pops/migration_spec.rb +3 -5
- data/spec/unit/pops/model/model_spec.rb +0 -1
- data/spec/unit/pops/model/pn_transformer_spec.rb +0 -1
- data/spec/unit/pops/parser/locator_spec.rb +3 -6
- data/spec/unit/pops/parser/parse_application_spec.rb +0 -1
- data/spec/unit/pops/parser/parse_basic_expressions_spec.rb +0 -1
- data/spec/unit/pops/parser/parse_calls_spec.rb +0 -1
- data/spec/unit/pops/parser/parse_capabilities_spec.rb +0 -1
- data/spec/unit/pops/parser/parse_conditionals_spec.rb +0 -1
- data/spec/unit/pops/parser/parse_containers_spec.rb +0 -1
- data/spec/unit/pops/parser/parse_plan_spec.rb +0 -1
- data/spec/unit/pops/parser/parse_resource_spec.rb +0 -1
- data/spec/unit/pops/parser/parse_site_spec.rb +0 -1
- data/spec/unit/pops/parser/pn_parser_spec.rb +0 -1
- data/spec/unit/pops/pn_spec.rb +0 -1
- data/spec/unit/pops/resource/resource_type_impl_spec.rb +0 -1
- data/spec/unit/pops/serialization/serialization_spec.rb +1 -1
- data/spec/unit/pops/serialization/to_from_hr_spec.rb +1 -1
- data/spec/unit/pops/types/recursion_guard_spec.rb +10 -10
- data/spec/unit/pops/types/ruby_generator_spec.rb +2 -2
- data/spec/unit/pops/types/type_asserter_spec.rb +2 -2
- data/spec/unit/pops/types/type_calculator_spec.rb +30 -30
- data/spec/unit/pops/types/type_parser_spec.rb +13 -13
- data/spec/unit/pops/validator/validator_spec.rb +1 -2
- data/spec/unit/pops/visitor_spec.rb +0 -1
- data/spec/unit/property/boolean_spec.rb +1 -1
- data/spec/unit/property/ensure_spec.rb +0 -1
- data/spec/unit/property/keyvalue_spec.rb +32 -34
- data/spec/unit/property/list_spec.rb +26 -27
- data/spec/unit/property/ordered_list_spec.rb +10 -14
- data/spec/unit/property_spec.rb +42 -43
- data/spec/unit/provider/aix_object_spec.rb +47 -45
- data/spec/unit/provider/command_spec.rb +9 -9
- data/spec/unit/provider/exec/posix_spec.rb +8 -9
- data/spec/unit/provider/exec/shell_spec.rb +0 -1
- data/spec/unit/provider/exec/windows_spec.rb +2 -4
- data/spec/unit/provider/exec_spec.rb +0 -1
- data/spec/unit/provider/file/posix_spec.rb +22 -24
- data/spec/unit/provider/file/windows_spec.rb +15 -17
- data/spec/unit/provider/group/aix_spec.rb +3 -2
- data/spec/unit/provider/group/groupadd_spec.rb +30 -26
- data/spec/unit/provider/group/ldap_spec.rb +18 -18
- data/spec/unit/provider/group/pw_spec.rb +11 -11
- data/spec/unit/provider/group/windows_adsi_spec.rb +54 -54
- data/spec/unit/provider/ldap_spec.rb +61 -62
- data/spec/unit/provider/nameservice/directoryservice_spec.rb +35 -36
- data/spec/unit/provider/nameservice_spec.rb +38 -40
- data/spec/unit/provider/package/aix_spec.rb +15 -15
- data/spec/unit/provider/package/appdmg_spec.rb +13 -13
- data/spec/unit/provider/package/apt_spec.rb +44 -27
- data/spec/unit/provider/package/aptitude_spec.rb +6 -7
- data/spec/unit/provider/package/aptrpm_spec.rb +7 -12
- data/spec/unit/provider/package/base_spec.rb +4 -4
- data/spec/unit/provider/package/dnf_spec.rb +18 -20
- data/spec/unit/provider/package/dpkg_spec.rb +52 -52
- data/spec/unit/provider/package/freebsd_spec.rb +11 -11
- data/spec/unit/provider/package/gem_spec.rb +51 -43
- data/spec/unit/provider/package/hpux_spec.rb +8 -8
- data/spec/unit/provider/package/macports_spec.rb +46 -42
- data/spec/unit/provider/package/nim_spec.rb +30 -39
- data/spec/unit/provider/package/openbsd_spec.rb +36 -39
- data/spec/unit/provider/package/opkg_spec.rb +23 -26
- data/spec/unit/provider/package/pacman_spec.rb +97 -118
- data/spec/unit/provider/package/pip_spec.rb +71 -72
- data/spec/unit/provider/package/pkg_spec.rb +113 -114
- data/spec/unit/provider/package/pkgdmg_spec.rb +65 -63
- data/spec/unit/provider/package/pkgin_spec.rb +10 -8
- data/spec/unit/provider/package/pkgng_spec.rb +21 -22
- data/spec/unit/provider/package/pkgutil_spec.rb +45 -49
- data/spec/unit/provider/package/portage_spec.rb +71 -75
- data/spec/unit/provider/package/puppet_gem_spec.rb +28 -8
- data/spec/unit/provider/package/rpm_spec.rb +53 -64
- data/spec/unit/provider/package/sun_spec.rb +16 -18
- data/spec/unit/provider/package/tdnf_spec.rb +2 -2
- data/spec/unit/provider/package/up2date_spec.rb +2 -4
- data/spec/unit/provider/package/urpmi_spec.rb +15 -17
- data/spec/unit/provider/package/windows/exe_package_spec.rb +12 -15
- data/spec/unit/provider/package/windows/msi_package_spec.rb +19 -22
- data/spec/unit/provider/package/windows/package_spec.rb +37 -42
- data/spec/unit/provider/package/windows_spec.rb +36 -32
- data/spec/unit/provider/package/yum_spec.rb +7 -7
- data/spec/unit/provider/package/zypper_spec.rb +87 -87
- data/spec/unit/provider/parsedfile_spec.rb +44 -45
- data/spec/unit/provider/service/base_spec.rb +4 -5
- data/spec/unit/provider/service/bsd_spec.rb +27 -29
- data/spec/unit/provider/service/daemontools_spec.rb +35 -35
- data/spec/unit/provider/service/debian_spec.rb +38 -38
- data/spec/unit/provider/service/freebsd_spec.rb +18 -18
- data/spec/unit/provider/service/gentoo_spec.rb +50 -55
- data/spec/unit/provider/service/init_spec.rb +53 -52
- data/spec/unit/provider/service/launchd_spec.rb +138 -116
- data/spec/unit/provider/service/openbsd_spec.rb +50 -50
- data/spec/unit/provider/service/openrc_spec.rb +43 -45
- data/spec/unit/provider/service/openwrt_spec.rb +26 -31
- data/spec/unit/provider/service/rcng_spec.rb +14 -14
- data/spec/unit/provider/service/redhat_spec.rb +45 -43
- data/spec/unit/provider/service/runit_spec.rb +29 -27
- data/spec/unit/provider/service/smf_spec.rb +74 -66
- data/spec/unit/provider/service/src_spec.rb +46 -47
- data/spec/unit/provider/service/systemd_spec.rb +113 -122
- data/spec/unit/provider/service/upstart_spec.rb +74 -71
- data/spec/unit/provider/service/windows_spec.rb +33 -41
- data/spec/unit/provider/user/aix_spec.rb +31 -31
- data/spec/unit/provider/user/directoryservice_spec.rb +109 -114
- data/spec/unit/provider/user/hpux_spec.rb +16 -16
- data/spec/unit/provider/user/ldap_spec.rb +57 -57
- data/spec/unit/provider/user/openbsd_spec.rb +10 -12
- data/spec/unit/provider/user/pw_spec.rb +37 -35
- data/spec/unit/provider/user/user_role_add_spec.rb +93 -93
- data/spec/unit/provider/user/useradd_spec.rb +93 -92
- data/spec/unit/provider/user/windows_adsi_spec.rb +59 -60
- data/spec/unit/provider_spec.rb +35 -35
- data/spec/unit/puppet_pal_2pec.rb +4 -5
- data/spec/unit/puppet_pal_spec.rb +0 -1
- data/spec/unit/puppet_spec.rb +6 -7
- data/spec/unit/relationship_spec.rb +0 -1
- data/spec/unit/reports/http_spec.rb +22 -24
- data/spec/unit/reports/store_spec.rb +3 -4
- data/spec/unit/reports_spec.rb +12 -14
- data/spec/unit/resource/capability_finder_spec.rb +15 -17
- data/spec/unit/resource/catalog_spec.rb +72 -68
- data/spec/unit/resource/status_spec.rb +6 -8
- data/spec/unit/resource/type_collection_spec.rb +17 -18
- data/spec/unit/resource/type_spec.rb +34 -35
- data/spec/unit/resource_spec.rb +36 -32
- data/spec/unit/rest/client_spec.rb +56 -25
- data/spec/unit/rest/route_spec.rb +5 -5
- data/spec/unit/scheduler/job_spec.rb +0 -1
- data/spec/unit/scheduler/scheduler_spec.rb +0 -1
- data/spec/unit/scheduler/splay_job_spec.rb +1 -2
- data/spec/unit/settings/array_setting_spec.rb +1 -1
- data/spec/unit/settings/autosign_setting_spec.rb +9 -9
- data/spec/unit/settings/certificate_revocation_setting_spec.rb +1 -1
- data/spec/unit/settings/config_file_spec.rb +0 -1
- data/spec/unit/settings/directory_setting_spec.rb +2 -7
- data/spec/unit/settings/duration_setting_spec.rb +1 -2
- data/spec/unit/settings/enum_setting_spec.rb +1 -1
- data/spec/unit/settings/environment_conf_spec.rb +4 -6
- data/spec/unit/settings/file_setting_spec.rb +44 -46
- data/spec/unit/settings/path_setting_spec.rb +1 -2
- data/spec/unit/settings/priority_setting_spec.rb +1 -2
- data/spec/unit/settings/string_setting_spec.rb +14 -15
- data/spec/unit/settings/terminus_setting_spec.rb +1 -2
- data/spec/unit/settings/value_translator_spec.rb +0 -1
- data/spec/unit/settings_spec.rb +228 -235
- data/spec/unit/ssl/base_spec.rb +14 -15
- data/spec/unit/ssl/certificate_request_spec.rb +62 -58
- data/spec/unit/ssl/certificate_spec.rb +23 -25
- data/spec/unit/ssl/digest_spec.rb +0 -1
- data/spec/unit/ssl/host_spec.rb +147 -130
- data/spec/unit/ssl/key_spec.rb +30 -31
- data/spec/unit/ssl/ssl_provider_spec.rb +24 -24
- data/spec/unit/ssl/state_machine_spec.rb +50 -58
- data/spec/unit/ssl/validator_spec.rb +43 -54
- data/spec/unit/ssl/verifier_spec.rb +10 -10
- data/spec/unit/task_spec.rb +44 -45
- data/spec/unit/transaction/additional_resource_generator_spec.rb +3 -5
- data/spec/unit/transaction/event_manager_spec.rb +87 -88
- data/spec/unit/transaction/event_spec.rb +16 -15
- data/spec/unit/transaction/persistence_spec.rb +16 -17
- data/spec/unit/transaction/report_spec.rb +11 -12
- data/spec/unit/transaction/resource_harness_spec.rb +28 -33
- data/spec/unit/transaction_spec.rb +100 -101
- data/spec/unit/type/component_spec.rb +0 -1
- data/spec/unit/type/exec_spec.rb +60 -56
- data/spec/unit/type/file/checksum_spec.rb +9 -10
- data/spec/unit/type/file/checksum_value_spec.rb +31 -32
- data/spec/unit/type/file/content_spec.rb +58 -61
- data/spec/unit/type/file/ctime_spec.rb +0 -1
- data/spec/unit/type/file/ensure_spec.rb +12 -13
- data/spec/unit/type/file/group_spec.rb +5 -7
- data/spec/unit/type/file/mode_spec.rb +4 -6
- data/spec/unit/type/file/mtime_spec.rb +0 -1
- data/spec/unit/type/file/owner_spec.rb +6 -8
- data/spec/unit/type/file/selinux_spec.rb +17 -19
- data/spec/unit/type/file/source_spec.rb +104 -101
- data/spec/unit/type/file/type_spec.rb +0 -1
- data/spec/unit/type/file_spec.rb +195 -185
- data/spec/unit/type/filebucket_spec.rb +4 -5
- data/spec/unit/type/group_spec.rb +6 -8
- data/spec/unit/type/noop_metaparam_spec.rb +1 -2
- data/spec/unit/type/package/package_settings_spec.rb +44 -23
- data/spec/unit/type/package_spec.rb +56 -57
- data/spec/unit/type/resources_spec.rb +72 -74
- data/spec/unit/type/schedule_spec.rb +24 -26
- data/spec/unit/type/service_spec.rb +49 -49
- data/spec/unit/type/stage_spec.rb +0 -1
- data/spec/unit/type/tidy_spec.rb +61 -62
- data/spec/unit/type/user_spec.rb +24 -25
- data/spec/unit/type/whit_spec.rb +0 -1
- data/spec/unit/type_spec.rb +55 -54
- data/spec/unit/util/at_fork_spec.rb +18 -19
- data/spec/unit/util/autoload_spec.rb +55 -56
- data/spec/unit/util/backups_spec.rb +34 -35
- data/spec/unit/util/character_encoding_spec.rb +5 -5
- data/spec/unit/util/checksums_spec.rb +38 -39
- data/spec/unit/util/colors_spec.rb +1 -2
- data/spec/unit/util/command_line_spec.rb +24 -25
- data/spec/unit/util/constant_inflector_spec.rb +0 -1
- data/spec/unit/util/diff_spec.rb +7 -8
- data/spec/unit/util/errors_spec.rb +0 -1
- data/spec/unit/util/execution_spec.rb +185 -161
- data/spec/unit/util/execution_stub_spec.rb +0 -1
- data/spec/unit/util/feature_spec.rb +23 -14
- data/spec/unit/util/filetype_spec.rb +49 -49
- data/spec/unit/util/http_proxy_spec.rb +12 -12
- data/spec/unit/util/inifile_spec.rb +26 -31
- data/spec/unit/util/json_lockfile_spec.rb +3 -5
- data/spec/unit/util/ldap/connection_spec.rb +26 -25
- data/spec/unit/util/ldap/generator_spec.rb +0 -1
- data/spec/unit/util/ldap/manager_spec.rb +102 -101
- data/spec/unit/util/lockfile_spec.rb +0 -1
- data/spec/unit/util/log/destinations_spec.rb +30 -33
- data/spec/unit/util/log_spec.rb +35 -36
- data/spec/unit/util/logging_spec.rb +58 -72
- data/spec/unit/util/metric_spec.rb +0 -1
- data/spec/unit/util/monkey_patches_spec.rb +7 -9
- data/spec/unit/util/multi_match_spec.rb +0 -1
- data/spec/unit/util/network_device/config_spec.rb +0 -1
- data/spec/unit/util/network_device/transport/base_spec.rb +5 -6
- data/spec/unit/util/network_device_spec.rb +7 -9
- data/spec/unit/util/package_spec.rb +0 -1
- data/spec/unit/util/pidlock_spec.rb +21 -22
- data/spec/unit/util/plist_spec.rb +40 -33
- data/spec/unit/util/posix_spec.rb +54 -51
- data/spec/unit/util/rdoc_spec.rb +9 -10
- data/spec/unit/util/reference_spec.rb +0 -1
- data/spec/unit/util/resource_template_spec.rb +20 -20
- data/spec/unit/util/retry_action_spec.rb +7 -8
- data/spec/unit/util/rubygems_spec.rb +7 -8
- data/spec/unit/util/run_mode_spec.rb +3 -4
- data/spec/unit/util/selinux_spec.rb +79 -72
- data/spec/unit/util/splayer_spec.rb +8 -9
- data/spec/unit/util/ssl_spec.rb +0 -1
- data/spec/unit/util/storage_spec.rb +3 -4
- data/spec/unit/util/suidmanager_spec.rb +45 -54
- data/spec/unit/util/symbolic_file_mode_spec.rb +0 -1
- data/spec/unit/util/tag_set_spec.rb +0 -1
- data/spec/unit/util/tagging_spec.rb +0 -1
- data/spec/unit/util/terminal_spec.rb +9 -10
- data/spec/unit/util/user_attr_spec.rb +1 -2
- data/spec/unit/util/warnings_spec.rb +3 -4
- data/spec/unit/util/watcher/periodic_watcher_spec.rb +2 -2
- data/spec/unit/util/watcher_spec.rb +51 -21
- data/spec/unit/util/windows/access_control_entry_spec.rb +0 -1
- data/spec/unit/util/windows/access_control_list_spec.rb +0 -1
- data/spec/unit/util/windows/adsi_spec.rb +136 -138
- data/spec/unit/util/windows/api_types_spec.rb +0 -1
- data/spec/unit/util/windows/eventlog_spec.rb +9 -12
- data/spec/unit/util/windows/file_spec.rb +0 -1
- data/spec/unit/util/windows/root_certs_spec.rb +1 -2
- data/spec/unit/util/windows/security_descriptor_spec.rb +0 -2
- data/spec/unit/util/windows/service_spec.rb +66 -68
- data/spec/unit/util/windows/sid_spec.rb +11 -13
- data/spec/unit/util/windows/string_spec.rb +0 -1
- data/spec/unit/util_spec.rb +55 -57
- data/spec/unit/version_spec.rb +6 -6
- data/spec/unit/x509/cert_provider_spec.rb +14 -14
- data/spec/unit/x509/pem_store_spec.rb +5 -5
- metadata +2 -2
data/lib/puppet/ssl.rb
CHANGED
@@ -39,7 +39,7 @@ DOC
|
|
39
39
|
# This name is what gets extracted from the subject before being passed
|
40
40
|
# to the constructor, so it's not downcased
|
41
41
|
def unmunged_name
|
42
|
-
self.class.name_from_subject(content.subject)
|
42
|
+
self.class.name_from_subject(content.subject.to_utf8)
|
43
43
|
end
|
44
44
|
|
45
45
|
# Any extensions registered with custom OIDs as defined in module
|
data/lib/puppet/ssl/error.rb
CHANGED
@@ -12,7 +12,7 @@ module Puppet::SSL
|
|
12
12
|
|
13
13
|
class CertMismatchError < Puppet::SSL::SSLError
|
14
14
|
def initialize(peer_cert, host)
|
15
|
-
valid_certnames = [peer_cert.subject.
|
15
|
+
valid_certnames = [peer_cert.subject.to_utf8.sub(/.*=/, ''),
|
16
16
|
*Puppet::SSL::Certificate.subject_alt_names_for(peer_cert)].uniq
|
17
17
|
if valid_certnames.size > 1
|
18
18
|
expected_certnames = _("expected one of %{certnames}") % { certnames: valid_certnames.join(', ') }
|
data/lib/puppet/ssl/host.rb
CHANGED
@@ -213,53 +213,6 @@ ERROR_STRING
|
|
213
213
|
generate_certificate_request unless existing_request
|
214
214
|
end
|
215
215
|
|
216
|
-
# Generate a keypair, generate a CSR, and submit it. If a local key pair
|
217
|
-
# already exists it will be used to generate the CSR. If a local CSR already
|
218
|
-
# exists and matches the key then the existing CSR will be submitted. If the
|
219
|
-
# CSR and key do not match an exception will be raised.
|
220
|
-
#
|
221
|
-
# @return [Puppet::SSL::CertificateRequest, nil]
|
222
|
-
def submit_request
|
223
|
-
generate_key unless key
|
224
|
-
|
225
|
-
csr = load_certificate_request_from_file
|
226
|
-
if csr
|
227
|
-
if key.content.public_key.to_s != csr.content.public_key.to_s
|
228
|
-
Puppet.warning("The local CSR does not match the agent's public key. Generating a new CSR.")
|
229
|
-
|
230
|
-
request_path = certificate_request_location(name)
|
231
|
-
Puppet::FileSystem.unlink(request_path)
|
232
|
-
csr = nil
|
233
|
-
end
|
234
|
-
end
|
235
|
-
|
236
|
-
if csr
|
237
|
-
validate_csr_with_key(csr, key)
|
238
|
-
submit_certificate_request(csr)
|
239
|
-
@certificate_request = csr
|
240
|
-
else
|
241
|
-
generate_certificate_request
|
242
|
-
end
|
243
|
-
|
244
|
-
@certificate_request
|
245
|
-
end
|
246
|
-
|
247
|
-
def validate_local_csr_with_key(csr, key)
|
248
|
-
if key.content.public_key.to_s != csr.content.public_key.to_s
|
249
|
-
raise Puppet::Error, _(<<ERROR_STRING) % { fingerprint: csr.fingerprint, csr_public_key: csr.content.public_key.to_text, agent_public_key: key.content.public_key.to_text, clean_params: clean_params, puppet_params: puppet_params }
|
250
|
-
The local CSR does not match the agent's public key.
|
251
|
-
CSR fingerprint: %{fingerprint}
|
252
|
-
CSR public key: %{csr_public_key}
|
253
|
-
Agent public key: %{agent_public_key}
|
254
|
-
To fix this, remove the CSR from the agent and then start a puppet run, which will automatically regenerate a CSR.
|
255
|
-
On the agent:
|
256
|
-
1. puppet ssl clean %{clean_params}
|
257
|
-
2. puppet %{puppet_params}
|
258
|
-
ERROR_STRING
|
259
|
-
end
|
260
|
-
end
|
261
|
-
private :validate_local_csr_with_key
|
262
|
-
|
263
216
|
def validate_csr_with_key(csr, key)
|
264
217
|
if key.content.public_key.to_s != csr.content.public_key.to_s
|
265
218
|
raise Puppet::Error, _(<<ERROR_STRING) % { fingerprint: csr.fingerprint, csr_public_key: csr.content.public_key.to_text, agent_public_key: key.content.public_key.to_text, cert_name: Puppet[:certname], clean_params: clean_params, puppet_params: puppet_params }
|
@@ -11,8 +11,6 @@ require 'puppet/ssl'
|
|
11
11
|
#
|
12
12
|
# @private
|
13
13
|
class Puppet::SSL::StateMachine
|
14
|
-
CA_NAME = 'ca'.freeze
|
15
|
-
|
16
14
|
class SSLState
|
17
15
|
attr_reader :ssl_context
|
18
16
|
|
@@ -39,7 +37,7 @@ class Puppet::SSL::StateMachine
|
|
39
37
|
if cacerts
|
40
38
|
next_ctx = @ssl_provider.create_root_context(cacerts: cacerts, revocation: false)
|
41
39
|
else
|
42
|
-
pem = Puppet::Rest::Routes.get_certificate(CA_NAME, @ssl_context)
|
40
|
+
pem = Puppet::Rest::Routes.get_certificate(Puppet::SSL::CA_NAME, @ssl_context)
|
43
41
|
cacerts = @cert_provider.load_cacerts_from_pem(pem)
|
44
42
|
# verify cacerts before saving
|
45
43
|
next_ctx = @ssl_provider.create_root_context(cacerts: cacerts, revocation: false)
|
@@ -72,7 +70,7 @@ class Puppet::SSL::StateMachine
|
|
72
70
|
if crls
|
73
71
|
next_ctx = @ssl_provider.create_root_context(cacerts: ssl_context[:cacerts], crls: crls)
|
74
72
|
else
|
75
|
-
pem = Puppet::Rest::Routes.get_crls(CA_NAME, @ssl_context)
|
73
|
+
pem = Puppet::Rest::Routes.get_crls(Puppet::SSL::CA_NAME, @ssl_context)
|
76
74
|
crls = @cert_provider.load_crls_from_pem(pem)
|
77
75
|
# verify crls before saving
|
78
76
|
next_ctx = @ssl_provider.create_root_context(cacerts: ssl_context[:cacerts], crls: crls)
|
@@ -100,6 +98,8 @@ class Puppet::SSL::StateMachine
|
|
100
98
|
#
|
101
99
|
class NeedKey < SSLState
|
102
100
|
def next_state
|
101
|
+
Puppet.debug(_("Loading/generating private key"))
|
102
|
+
|
103
103
|
key = @cert_provider.load_private_key(Puppet[:certname])
|
104
104
|
if key
|
105
105
|
cert = @cert_provider.load_client_cert(Puppet[:certname])
|
@@ -138,6 +138,8 @@ class Puppet::SSL::StateMachine
|
|
138
138
|
#
|
139
139
|
class NeedSubmitCSR < KeySSLState
|
140
140
|
def next_state
|
141
|
+
Puppet.debug(_("Generating and submitting a CSR"))
|
142
|
+
|
141
143
|
csr = @cert_provider.create_request(Puppet[:certname], @private_key)
|
142
144
|
Puppet::Rest::Routes.put_certificate_request(csr.to_pem, Puppet[:certname], @ssl_context)
|
143
145
|
@cert_provider.save_request(Puppet[:certname], csr)
|
@@ -155,6 +157,8 @@ class Puppet::SSL::StateMachine
|
|
155
157
|
#
|
156
158
|
class NeedCert < KeySSLState
|
157
159
|
def next_state
|
160
|
+
Puppet.debug(_("Downloading client certificate"))
|
161
|
+
|
158
162
|
cert = OpenSSL::X509::Certificate.new(
|
159
163
|
Puppet::Rest::Routes.get_certificate(Puppet[:certname], @ssl_context)
|
160
164
|
)
|
@@ -186,11 +190,13 @@ class Puppet::SSL::StateMachine
|
|
186
190
|
#
|
187
191
|
class Wait < SSLState
|
188
192
|
def next_state
|
189
|
-
time = @machine.
|
193
|
+
time = @machine.waitforcert
|
190
194
|
if time < 1
|
191
|
-
puts _("
|
195
|
+
puts _("Couldn't fetch certificate from CA server; you might still need to sign this agent's certificate (%{name}). Exiting now because the waitforcert setting is set to 0.") % { name: Puppet[:certname] }
|
192
196
|
exit(1)
|
193
197
|
else
|
198
|
+
Puppet.info(_("Couldn't fetch certificate from CA server; you might still need to sign this agent's certificate (%{name}). Will try again in %{time} seconds.") % {name: Puppet[:certname], time: time})
|
199
|
+
|
194
200
|
sleep(time)
|
195
201
|
|
196
202
|
# our ssl directory may have been cleaned while we were
|
@@ -205,10 +211,9 @@ class Puppet::SSL::StateMachine
|
|
205
211
|
#
|
206
212
|
class Done < SSLState; end
|
207
213
|
|
208
|
-
attr_reader :
|
214
|
+
attr_reader :waitforcert
|
209
215
|
|
210
|
-
def initialize(
|
211
|
-
@onetime = onetime
|
216
|
+
def initialize(waitforcert: Puppet[:waitforcert])
|
212
217
|
@waitforcert = waitforcert
|
213
218
|
end
|
214
219
|
|
@@ -233,9 +238,9 @@ class Puppet::SSL::StateMachine
|
|
233
238
|
chain.reverse.each_with_index do |cert, i|
|
234
239
|
digest = Puppet::SSL::Digest.new('SHA256', cert.to_der)
|
235
240
|
if i == chain.length - 1
|
236
|
-
Puppet.debug(_("Verified client certificate '%{subject}' fingerprint %{digest}") % {subject: cert.subject.
|
241
|
+
Puppet.debug(_("Verified client certificate '%{subject}' fingerprint %{digest}") % {subject: cert.subject.to_utf8, digest: digest})
|
237
242
|
else
|
238
|
-
Puppet.debug(_("Verified CA certificate '%{subject}' fingerprint %{digest}") % {subject: cert.subject.
|
243
|
+
Puppet.debug(_("Verified CA certificate '%{subject}' fingerprint %{digest}") % {subject: cert.subject.to_utf8, digest: digest})
|
239
244
|
end
|
240
245
|
end
|
241
246
|
end
|
@@ -247,15 +252,9 @@ class Puppet::SSL::StateMachine
|
|
247
252
|
|
248
253
|
def run_machine(state, stop)
|
249
254
|
loop do
|
250
|
-
Puppet.debug("Current SSL state #{state_name(state)}")
|
251
|
-
|
252
255
|
state = state.next_state
|
253
256
|
|
254
257
|
return state if state.is_a?(stop)
|
255
258
|
end
|
256
259
|
end
|
257
|
-
|
258
|
-
def state_name(state)
|
259
|
-
state.class.to_s.split('::').last
|
260
|
-
end
|
261
260
|
end
|
@@ -88,13 +88,13 @@ class Puppet::SSL::Validator::DefaultValidator #< class Puppet::SSL::Validator
|
|
88
88
|
Puppet.debug("Ignoring CRL not yet valid, current time #{Time.now.utc}, CRL last updated #{crl.last_update.utc}")
|
89
89
|
preverify_ok = true
|
90
90
|
else
|
91
|
-
@verify_errors << "#{error_string} for #{crl.issuer}"
|
91
|
+
@verify_errors << "#{error_string} for #{crl.issuer.to_utf8}"
|
92
92
|
end
|
93
93
|
else
|
94
94
|
@verify_errors << error_string
|
95
95
|
end
|
96
96
|
else
|
97
|
-
@verify_errors << "#{error_string} for #{current_cert.subject}"
|
97
|
+
@verify_errors << "#{error_string} for #{current_cert.subject.to_utf8}"
|
98
98
|
end
|
99
99
|
end
|
100
100
|
preverify_ok
|
@@ -156,8 +156,8 @@ class Puppet::SSL::Validator::DefaultValidator #< class Puppet::SSL::Validator
|
|
156
156
|
if not has_authz_peer_cert(descending_cert_chain, authz_ca_certs)
|
157
157
|
msg = "The server presented a SSL certificate chain which does not include a " <<
|
158
158
|
"CA listed in the ssl_client_ca_auth file. "
|
159
|
-
msg << "Authorized Issuers: #{authz_ca_certs.collect {|c| c.subject}.join(', ')} " <<
|
160
|
-
"Peer Chain: #{descending_cert_chain.collect {|c| c.subject}.join(' => ')}"
|
159
|
+
msg << "Authorized Issuers: #{authz_ca_certs.collect {|c| c.subject.to_utf8}.join(', ')} " <<
|
160
|
+
"Peer Chain: #{descending_cert_chain.collect {|c| c.subject.to_utf8}.join(' => ')}"
|
161
161
|
@verify_errors << msg
|
162
162
|
false
|
163
163
|
else
|
data/lib/puppet/ssl/verifier.rb
CHANGED
@@ -126,7 +126,7 @@ class Puppet::SSL::Verifier
|
|
126
126
|
# TRANSLATORS: `error` is an untranslated message from openssl describing why a certificate in the server's chain is invalid, and `subject` is the identity/name of the failed certificate
|
127
127
|
@last_error = Puppet::SSL::CertVerifyError.new(
|
128
128
|
_("certificate verify failed [%{error} for %{subject}]") %
|
129
|
-
{ error: store_context.error_string, subject: peer_cert.subject },
|
129
|
+
{ error: store_context.error_string, subject: peer_cert.subject.to_utf8 },
|
130
130
|
store_context.error, peer_cert
|
131
131
|
)
|
132
132
|
false
|
@@ -155,11 +155,7 @@ class Puppet::Transaction::EventManager
|
|
155
155
|
return true
|
156
156
|
rescue => detail
|
157
157
|
resource_error_message = _("Failed to call %{callback}: %{detail}") % { callback: callback, detail: detail }
|
158
|
-
resource.err
|
159
|
-
if not resource.is_a?(Puppet::Type.type(:whit))
|
160
|
-
add_callback_status_event(resource, callback, resource_error_message, "failure")
|
161
|
-
end
|
162
|
-
|
158
|
+
resource.err(resource_error_message)
|
163
159
|
transaction.resource_status(resource).failed_to_restart = true
|
164
160
|
transaction.resource_status(resource).fail_with_event(resource_error_message)
|
165
161
|
resource.log_exception(detail)
|
@@ -25,16 +25,17 @@ module Puppet::Util
|
|
25
25
|
# @return [String] the name of the server for use in the request
|
26
26
|
def self.determine_server(setting)
|
27
27
|
if setting && setting != :server && Puppet.settings.set_by_config?(setting)
|
28
|
+
debug_once _("Selected server from the %{setting} setting: %{server}") % {setting: setting, server: Puppet.settings[setting]}
|
28
29
|
Puppet[setting]
|
29
30
|
else
|
30
31
|
server = Puppet.lookup(:server) do
|
31
32
|
if primary_server = Puppet.settings[:server_list][0]
|
32
|
-
|
33
|
+
#TRANSLATORS 'server_list' is the name of a setting and should not be translated
|
34
|
+
debug_once _("Dynamically-bound server lookup failed; using first entry from the `server_list` setting: %{server}") % {server: primary_server[0]}
|
33
35
|
primary_server[0]
|
34
36
|
else
|
35
37
|
setting ||= :server
|
36
|
-
debug_once(
|
37
|
-
{setting: setting})
|
38
|
+
debug_once _("Dynamically-bound server lookup failed, falling back to %{setting} setting: %{server}") % {setting: setting, server: Puppet.settings[setting]}
|
38
39
|
Puppet.settings[setting]
|
39
40
|
end
|
40
41
|
end
|
@@ -55,20 +56,26 @@ module Puppet::Util
|
|
55
56
|
def self.determine_port(port_setting, server_setting)
|
56
57
|
if (port_setting && port_setting != :masterport && Puppet.settings.set_by_config?(port_setting)) ||
|
57
58
|
(server_setting && server_setting != :server && Puppet.settings.set_by_config?(server_setting))
|
59
|
+
debug_once _("Selected port from the %{setting} setting: %{port}") % {setting: port_setting, port: Puppet.settings[port_setting].to_i}
|
58
60
|
Puppet.settings[port_setting].to_i
|
59
61
|
else
|
60
62
|
port = Puppet.lookup(:serverport) do
|
61
63
|
if primary_server = Puppet.settings[:server_list][0]
|
62
|
-
debug_once('Dynamically-bound port lookup failed; using first entry')
|
63
|
-
|
64
64
|
# Port might not be set, so we want to fallback in that
|
65
65
|
# case. We know we don't need to use `setting` here, since
|
66
66
|
# the default value of every port setting is `masterport`
|
67
|
-
|
67
|
+
if primary_server[1]
|
68
|
+
#TRANSLATORS 'server_list' is the name of a setting and should not be translated
|
69
|
+
debug_once _("Dynamically-bound port lookup failed; using first entry from the `server_list` setting: %{port}") % {port: primary_server[1]}
|
70
|
+
primary_server[1]
|
71
|
+
else
|
72
|
+
#TRANSLATORS 'masterport' is the name of a setting and should not be translated
|
73
|
+
debug_once _("Dynamically-bound port lookup failed; falling back to `masterport` setting: %{port}") % {port: Puppet.settings[:masterport]}
|
74
|
+
Puppet.settings[:masterport]
|
75
|
+
end
|
68
76
|
else
|
69
77
|
port_setting ||= :masterport
|
70
|
-
debug_once(
|
71
|
-
{port_setting: port_setting})
|
78
|
+
debug_once _("Dynamically-bound port lookup failed; falling back to %{setting} setting: %{port}") % {setting: port_setting, port: Puppet.settings[port_setting]}
|
72
79
|
Puppet.settings[port_setting]
|
73
80
|
end
|
74
81
|
end
|
@@ -70,7 +70,7 @@ if Puppet::Util::Platform.windows?
|
|
70
70
|
begin
|
71
71
|
add_cert(x509)
|
72
72
|
rescue OpenSSL::X509::StoreError
|
73
|
-
warn "Failed to add #{x509.subject.
|
73
|
+
warn "Failed to add #{x509.subject.to_utf8}"
|
74
74
|
end
|
75
75
|
end
|
76
76
|
end
|
@@ -80,6 +80,25 @@ if Puppet::Util::Platform.windows?
|
|
80
80
|
end
|
81
81
|
end
|
82
82
|
|
83
|
+
unless OpenSSL::X509::Name.instance_methods.include?(:to_utf8)
|
84
|
+
class OpenSSL::X509::Name
|
85
|
+
# https://github.com/openssl/openssl/blob/OpenSSL_1_1_0j/include/openssl/asn1.h#L362
|
86
|
+
ASN1_STRFLGS_ESC_MSB = 4
|
87
|
+
|
88
|
+
FLAGS = if RUBY_PLATFORM == 'java'
|
89
|
+
OpenSSL::X509::Name::RFC2253
|
90
|
+
else
|
91
|
+
OpenSSL::X509::Name::RFC2253 & ~ASN1_STRFLGS_ESC_MSB
|
92
|
+
end
|
93
|
+
|
94
|
+
def to_utf8
|
95
|
+
# https://github.com/ruby/ruby/blob/v2_5_5/ext/openssl/ossl_x509name.c#L317
|
96
|
+
str = to_s(FLAGS)
|
97
|
+
str.force_encoding(Encoding::UTF_8)
|
98
|
+
end
|
99
|
+
end
|
100
|
+
end
|
101
|
+
|
83
102
|
# The Enumerable#uniq method was added in Ruby 2.4.0 (https://bugs.ruby-lang.org/issues/11090)
|
84
103
|
# This is a backport to earlier Ruby versions.
|
85
104
|
#
|
data/lib/puppet/version.rb
CHANGED
data/locales/puppet.pot
CHANGED
@@ -6,11 +6,11 @@
|
|
6
6
|
#, fuzzy
|
7
7
|
msgid ""
|
8
8
|
msgstr ""
|
9
|
-
"Project-Id-Version: Puppet automation framework 6.
|
9
|
+
"Project-Id-Version: Puppet automation framework 6.4.0-81-gcb43a63\n"
|
10
10
|
"\n"
|
11
11
|
"Report-Msgid-Bugs-To: https://tickets.puppetlabs.com\n"
|
12
|
-
"POT-Creation-Date: 2019-
|
13
|
-
"PO-Revision-Date: 2019-
|
12
|
+
"POT-Creation-Date: 2019-04-04 23:31+0000\n"
|
13
|
+
"PO-Revision-Date: 2019-04-04 23:31+0000\n"
|
14
14
|
"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
|
15
15
|
"Language-Team: LANGUAGE <LL@li.org>\n"
|
16
16
|
"Language: \n"
|
@@ -272,23 +272,23 @@ msgstr ""
|
|
272
272
|
msgid "No device found in %{config}"
|
273
273
|
msgstr ""
|
274
274
|
|
275
|
-
#: ../lib/puppet/application/device.rb:
|
275
|
+
#: ../lib/puppet/application/device.rb:297
|
276
276
|
msgid "retrieving resource: %{resource} from %{target} at %{scheme}%{url_host}%{port}%{url_path}"
|
277
277
|
msgstr ""
|
278
278
|
|
279
|
-
#: ../lib/puppet/application/device.rb:
|
279
|
+
#: ../lib/puppet/application/device.rb:312
|
280
280
|
msgid "retrieving facts from %{target} at %{scheme}%{url_host}%{port}%{url_path}"
|
281
281
|
msgstr ""
|
282
282
|
|
283
|
-
#: ../lib/puppet/application/device.rb:
|
283
|
+
#: ../lib/puppet/application/device.rb:335
|
284
284
|
msgid "starting applying configuration to %{target} at %{scheme}%{url_host}%{port}%{url_path}"
|
285
285
|
msgstr ""
|
286
286
|
|
287
|
-
#: ../lib/puppet/application/device.rb:
|
287
|
+
#: ../lib/puppet/application/device.rb:372 ../lib/puppet/application/resource.rb:196
|
288
288
|
msgid "You must specify the type to display"
|
289
289
|
msgstr ""
|
290
290
|
|
291
|
-
#: ../lib/puppet/application/device.rb:
|
291
|
+
#: ../lib/puppet/application/device.rb:373 ../lib/puppet/application/resource.rb:197
|
292
292
|
msgid "Could not find type %{type}"
|
293
293
|
msgstr ""
|
294
294
|
|
@@ -378,6 +378,17 @@ msgstr ""
|
|
378
378
|
msgid "Cancelling"
|
379
379
|
msgstr ""
|
380
380
|
|
381
|
+
#. TRANSLATORS 'server_list' is the name of a setting and should not be translated
|
382
|
+
#: ../lib/puppet/application/filebucket.rb:293
|
383
|
+
msgid "Selected server from first entry of the `server_list` setting: %{server}:%{port}"
|
384
|
+
msgstr ""
|
385
|
+
|
386
|
+
#. TRANSLATORS 'server' is the name of a setting and should not be translated
|
387
|
+
#. TRANSLATORS 'server' is the name of a setting and should not be translated
|
388
|
+
#: ../lib/puppet/application/filebucket.rb:300 ../lib/puppet/indirector/request.rb:215
|
389
|
+
msgid "Selected server from the `server` setting: %{server}"
|
390
|
+
msgstr ""
|
391
|
+
|
381
392
|
#: ../lib/puppet/application/lookup.rb:8
|
382
393
|
msgid "Run 'puppet lookup --help' for more details"
|
383
394
|
msgstr ""
|
@@ -548,67 +559,69 @@ msgstr ""
|
|
548
559
|
msgid "Could not select a functional puppet master from server_list: '%{server_list}'"
|
549
560
|
msgstr ""
|
550
561
|
|
551
|
-
|
552
|
-
|
562
|
+
#. TRANSLATORS 'server_list' is the name of a setting and should not be translated
|
563
|
+
#: ../lib/puppet/configurer.rb:233
|
564
|
+
msgid "Selected puppet server from the `server_list` setting: %{server}:%{port}"
|
553
565
|
msgstr ""
|
554
566
|
|
555
|
-
#: ../lib/puppet/configurer.rb:
|
567
|
+
#: ../lib/puppet/configurer.rb:265
|
556
568
|
msgid "Local environment: '%{local_env}' doesn't match the environment of the cached catalog '%{catalog_env}', switching agent to '%{catalog_env}'."
|
557
569
|
msgstr ""
|
558
570
|
|
559
|
-
#: ../lib/puppet/configurer.rb:
|
571
|
+
#: ../lib/puppet/configurer.rb:310
|
560
572
|
msgid "Local environment: '%{local_env}' doesn't match server specified node environment '%{node_env}', switching agent to '%{node_env}'."
|
561
573
|
msgstr ""
|
562
574
|
|
563
|
-
#: ../lib/puppet/configurer.rb:
|
575
|
+
#: ../lib/puppet/configurer.rb:315
|
564
576
|
msgid "Using configured environment '%{env}'"
|
565
577
|
msgstr ""
|
566
578
|
|
567
|
-
#: ../lib/puppet/configurer.rb:
|
579
|
+
#: ../lib/puppet/configurer.rb:319
|
568
580
|
msgid "Unable to fetch my node definition, but the agent run will continue:"
|
569
581
|
msgstr ""
|
570
582
|
|
571
|
-
#: ../lib/puppet/configurer.rb:
|
583
|
+
#: ../lib/puppet/configurer.rb:347
|
572
584
|
msgid "Not using catalog because its environment '%{catalog_env}' does not match agent specified environment '%{local_env}' and strict_environment_mode is set"
|
573
585
|
msgstr ""
|
574
586
|
|
575
|
-
#: ../lib/puppet/configurer.rb:
|
587
|
+
#: ../lib/puppet/configurer.rb:358
|
576
588
|
msgid "Catalog environment didn't stabilize after %{tries} fetches, aborting run"
|
577
589
|
msgstr ""
|
578
590
|
|
579
|
-
#: ../lib/puppet/configurer.rb:
|
591
|
+
#: ../lib/puppet/configurer.rb:360
|
580
592
|
msgid "Local environment: '%{local_env}' doesn't match server specified environment '%{catalog_env}', restarting agent run with environment '%{catalog_env}'"
|
581
593
|
msgstr ""
|
582
594
|
|
583
|
-
#: ../lib/puppet/configurer.rb:
|
595
|
+
#: ../lib/puppet/configurer.rb:379
|
584
596
|
msgid "Failed to apply catalog: %{detail}"
|
585
597
|
msgstr ""
|
586
598
|
|
587
|
-
#: ../lib/puppet/configurer.rb:
|
599
|
+
#: ../lib/puppet/configurer.rb:404
|
588
600
|
msgid "Puppet server %{host}:%{port} is unavailable: %{code} %{reason}"
|
589
601
|
msgstr ""
|
590
602
|
|
591
|
-
|
592
|
-
|
603
|
+
#. TRANSLATORS 'server_list' is the name of a setting and should not be translated
|
604
|
+
#: ../lib/puppet/configurer.rb:408
|
605
|
+
msgid "Unable to connect to server from server_list setting: %{detail}"
|
593
606
|
msgstr ""
|
594
607
|
|
595
|
-
#: ../lib/puppet/configurer.rb:
|
608
|
+
#: ../lib/puppet/configurer.rb:420 ../lib/puppet/face/report.rb:47
|
596
609
|
msgid "Could not send report: %{detail}"
|
597
610
|
msgstr ""
|
598
611
|
|
599
|
-
#: ../lib/puppet/configurer.rb:
|
612
|
+
#: ../lib/puppet/configurer.rb:429
|
600
613
|
msgid "Could not save last run local report: %{detail}"
|
601
614
|
msgstr ""
|
602
615
|
|
603
|
-
#: ../lib/puppet/configurer.rb:
|
616
|
+
#: ../lib/puppet/configurer.rb:441
|
604
617
|
msgid "Could not run command from %{setting}: %{detail}"
|
605
618
|
msgstr ""
|
606
619
|
|
607
|
-
#: ../lib/puppet/configurer.rb:
|
620
|
+
#: ../lib/puppet/configurer.rb:459
|
608
621
|
msgid "Could not retrieve catalog from cache: %{detail}"
|
609
622
|
msgstr ""
|
610
623
|
|
611
|
-
#: ../lib/puppet/configurer.rb:
|
624
|
+
#: ../lib/puppet/configurer.rb:479
|
612
625
|
msgid "Could not retrieve catalog from remote server: %{detail}"
|
613
626
|
msgstr ""
|
614
627
|
|
@@ -691,15 +704,15 @@ msgid "Convert custom terminus to hiera 5 API."
|
|
691
704
|
msgstr ""
|
692
705
|
|
693
706
|
#. TRANSLATORS 'environment_data_provider' is a setting and should not be translated
|
694
|
-
#: ../lib/puppet/defaults.rb:
|
707
|
+
#: ../lib/puppet/defaults.rb:672
|
695
708
|
msgid "Setting 'environment_data_provider' is deprecated."
|
696
709
|
msgstr ""
|
697
710
|
|
698
|
-
#: ../lib/puppet/defaults.rb:
|
711
|
+
#: ../lib/puppet/defaults.rb:753
|
699
712
|
msgid "Certificate names must be lower case"
|
700
713
|
msgstr ""
|
701
714
|
|
702
|
-
#: ../lib/puppet/defaults.rb:
|
715
|
+
#: ../lib/puppet/defaults.rb:984 ../lib/puppet/settings/enum_setting.rb:13 ../lib/puppet/settings/symbolic_enum_setting.rb:14
|
703
716
|
msgid "Invalid value '%{value}' for parameter %{name}. Allowed values are '%{allowed_values}'"
|
704
717
|
msgstr ""
|
705
718
|
|
@@ -2644,19 +2657,34 @@ msgstr ""
|
|
2644
2657
|
msgid "Server version %{version} does not accept reports in '%{format}', use `preferred_serialization_format=pson`"
|
2645
2658
|
msgstr ""
|
2646
2659
|
|
2647
|
-
#: ../lib/puppet/indirector/request.rb:
|
2660
|
+
#: ../lib/puppet/indirector/request.rb:102
|
2648
2661
|
msgid "Could not find indirection '%{indirection}'"
|
2649
2662
|
msgstr ""
|
2650
2663
|
|
2651
|
-
#: ../lib/puppet/indirector/request.rb:
|
2664
|
+
#: ../lib/puppet/indirector/request.rb:141
|
2652
2665
|
msgid "HTTP REST queries cannot handle values of type '%{klass}'"
|
2653
2666
|
msgstr ""
|
2654
2667
|
|
2655
|
-
#: ../lib/puppet/indirector/request.rb:
|
2668
|
+
#: ../lib/puppet/indirector/request.rb:200
|
2656
2669
|
msgid "Error connecting to %{srv_server}:%{srv_port}: %{message}"
|
2657
2670
|
msgstr ""
|
2658
2671
|
|
2659
|
-
|
2672
|
+
#. TRANSLATORS 'server_list' is the name of a setting and should not be translated
|
2673
|
+
#: ../lib/puppet/indirector/request.rb:211
|
2674
|
+
msgid "Selected server from first entry of the `server_list` setting: %{server}"
|
2675
|
+
msgstr ""
|
2676
|
+
|
2677
|
+
#. TRANSLATORS 'server_list' is the name of a setting and should not be translated
|
2678
|
+
#: ../lib/puppet/indirector/request.rb:227
|
2679
|
+
msgid "Selected port from the first entry of the `server_list` setting: %{port}"
|
2680
|
+
msgstr ""
|
2681
|
+
|
2682
|
+
#. TRANSLATORS 'masterport' is the name of a setting and should not be translated
|
2683
|
+
#: ../lib/puppet/indirector/request.rb:231
|
2684
|
+
msgid "Selected port from the `masterport` setting: %{port}"
|
2685
|
+
msgstr ""
|
2686
|
+
|
2687
|
+
#: ../lib/puppet/indirector/request.rb:262
|
2660
2688
|
msgid "Could not understand URL %{key}: %{detail}"
|
2661
2689
|
msgstr ""
|
2662
2690
|
|
@@ -7684,19 +7712,7 @@ msgid ""
|
|
7684
7712
|
" 2. puppet %{puppet_params}\n"
|
7685
7713
|
msgstr ""
|
7686
7714
|
|
7687
|
-
#: ../lib/puppet/ssl/host.rb:
|
7688
|
-
msgid ""
|
7689
|
-
"The local CSR does not match the agent's public key.\n"
|
7690
|
-
"CSR fingerprint: %{fingerprint}\n"
|
7691
|
-
"CSR public key: %{csr_public_key}\n"
|
7692
|
-
"Agent public key: %{agent_public_key}\n"
|
7693
|
-
"To fix this, remove the CSR from the agent and then start a puppet run, which will automatically regenerate a CSR.\n"
|
7694
|
-
"On the agent:\n"
|
7695
|
-
" 1. puppet ssl clean %{clean_params}\n"
|
7696
|
-
" 2. puppet %{puppet_params}\n"
|
7697
|
-
msgstr ""
|
7698
|
-
|
7699
|
-
#: ../lib/puppet/ssl/host.rb:265
|
7715
|
+
#: ../lib/puppet/ssl/host.rb:218
|
7700
7716
|
msgid ""
|
7701
7717
|
"The CSR retrieved from the master does not match the agent's public key.\n"
|
7702
7718
|
"CSR fingerprint: %{fingerprint}\n"
|
@@ -7710,53 +7726,53 @@ msgid ""
|
|
7710
7726
|
" 2. puppet %{puppet_params}\n"
|
7711
7727
|
msgstr ""
|
7712
7728
|
|
7713
|
-
#: ../lib/puppet/ssl/host.rb:
|
7729
|
+
#: ../lib/puppet/ssl/host.rb:272 ../lib/puppet/ssl/host.rb:293
|
7714
7730
|
msgid "Could not request certificate: %{message}"
|
7715
7731
|
msgstr ""
|
7716
7732
|
|
7717
|
-
#: ../lib/puppet/ssl/host.rb:
|
7733
|
+
#: ../lib/puppet/ssl/host.rb:274
|
7718
7734
|
msgid "Exiting; failed to retrieve certificate and waitforcert is disabled"
|
7719
7735
|
msgstr ""
|
7720
7736
|
|
7721
|
-
#: ../lib/puppet/ssl/host.rb:
|
7737
|
+
#: ../lib/puppet/ssl/host.rb:283
|
7722
7738
|
msgid "Exiting; no certificate found and waitforcert is disabled"
|
7723
7739
|
msgstr ""
|
7724
7740
|
|
7725
|
-
#: ../lib/puppet/ssl/host.rb:
|
7741
|
+
#: ../lib/puppet/ssl/host.rb:291
|
7726
7742
|
msgid "Did not receive certificate"
|
7727
7743
|
msgstr ""
|
7728
7744
|
|
7729
|
-
#: ../lib/puppet/ssl/host.rb:
|
7745
|
+
#: ../lib/puppet/ssl/host.rb:331
|
7730
7746
|
msgid "Response from the CA did not contain a valid certificate request: %{message}"
|
7731
7747
|
msgstr ""
|
7732
7748
|
|
7733
|
-
#: ../lib/puppet/ssl/host.rb:
|
7749
|
+
#: ../lib/puppet/ssl/host.rb:337
|
7734
7750
|
msgid "Could not download certificate request: %{message}"
|
7735
7751
|
msgstr ""
|
7736
7752
|
|
7737
|
-
#: ../lib/puppet/ssl/host.rb:
|
7753
|
+
#: ../lib/puppet/ssl/host.rb:364
|
7738
7754
|
msgid ""
|
7739
7755
|
"Failed attempting to load CRL from %{crl_path}! The CRL below caused the error '%{error}':\n"
|
7740
7756
|
"%{crl}"
|
7741
7757
|
msgstr ""
|
7742
7758
|
|
7743
|
-
#: ../lib/puppet/ssl/host.rb:
|
7759
|
+
#: ../lib/puppet/ssl/host.rb:396 ../lib/puppet/ssl/state_machine.rb:89
|
7744
7760
|
msgid "Could not download CRLs: %{message}"
|
7745
7761
|
msgstr ""
|
7746
7762
|
|
7747
|
-
#: ../lib/puppet/ssl/host.rb:
|
7763
|
+
#: ../lib/puppet/ssl/host.rb:426
|
7748
7764
|
msgid "The certificate at %{file_path} is invalid. Could not load."
|
7749
7765
|
msgstr ""
|
7750
7766
|
|
7751
|
-
#: ../lib/puppet/ssl/host.rb:
|
7767
|
+
#: ../lib/puppet/ssl/host.rb:447
|
7752
7768
|
msgid "Response from the CA did not contain a valid certificate for %{cert_name}."
|
7753
7769
|
msgstr ""
|
7754
7770
|
|
7755
|
-
#: ../lib/puppet/ssl/host.rb:
|
7771
|
+
#: ../lib/puppet/ssl/host.rb:451
|
7756
7772
|
msgid "No certificate for %{cert_name} on CA"
|
7757
7773
|
msgstr ""
|
7758
7774
|
|
7759
|
-
#: ../lib/puppet/ssl/host.rb:
|
7775
|
+
#: ../lib/puppet/ssl/host.rb:454
|
7760
7776
|
msgid "Could not download host certificate: %{message}"
|
7761
7777
|
msgstr ""
|
7762
7778
|
|
@@ -7852,39 +7868,59 @@ msgstr ""
|
|
7852
7868
|
msgid "Certificate '%{subject}' failed verification (%{err}): %{err_utf8}"
|
7853
7869
|
msgstr ""
|
7854
7870
|
|
7855
|
-
#: ../lib/puppet/ssl/state_machine.rb:
|
7871
|
+
#: ../lib/puppet/ssl/state_machine.rb:50
|
7856
7872
|
msgid "CA certificate is missing from the server"
|
7857
7873
|
msgstr ""
|
7858
7874
|
|
7859
|
-
#: ../lib/puppet/ssl/state_machine.rb:
|
7875
|
+
#: ../lib/puppet/ssl/state_machine.rb:52
|
7860
7876
|
msgid "Could not download CA certificate: %{message}"
|
7861
7877
|
msgstr ""
|
7862
7878
|
|
7863
|
-
#: ../lib/puppet/ssl/state_machine.rb:
|
7879
|
+
#: ../lib/puppet/ssl/state_machine.rb:87
|
7864
7880
|
msgid "CRL is missing from the server"
|
7865
7881
|
msgstr ""
|
7866
7882
|
|
7867
|
-
#: ../lib/puppet/ssl/state_machine.rb:
|
7883
|
+
#: ../lib/puppet/ssl/state_machine.rb:101
|
7884
|
+
msgid "Loading/generating private key"
|
7885
|
+
msgstr ""
|
7886
|
+
|
7887
|
+
#: ../lib/puppet/ssl/state_machine.rb:141
|
7888
|
+
msgid "Generating and submitting a CSR"
|
7889
|
+
msgstr ""
|
7890
|
+
|
7891
|
+
#: ../lib/puppet/ssl/state_machine.rb:149
|
7868
7892
|
msgid "Failed to submit the CSR, HTTP response was %{code}"
|
7869
7893
|
msgstr ""
|
7870
7894
|
|
7871
|
-
#: ../lib/puppet/ssl/state_machine.rb:
|
7872
|
-
msgid "
|
7895
|
+
#: ../lib/puppet/ssl/state_machine.rb:160
|
7896
|
+
msgid "Downloading client certificate"
|
7873
7897
|
msgstr ""
|
7874
7898
|
|
7875
7899
|
#: ../lib/puppet/ssl/state_machine.rb:176
|
7900
|
+
msgid "Failed to parse certificate: %{message}"
|
7901
|
+
msgstr ""
|
7902
|
+
|
7903
|
+
#: ../lib/puppet/ssl/state_machine.rb:180
|
7876
7904
|
msgid "Certificate for %{certname} has not been signed yet"
|
7877
7905
|
msgstr ""
|
7878
7906
|
|
7879
|
-
#: ../lib/puppet/ssl/state_machine.rb:
|
7907
|
+
#: ../lib/puppet/ssl/state_machine.rb:182
|
7880
7908
|
msgid "Failed to retrieve certificate for %{certname}: %{message}"
|
7881
7909
|
msgstr ""
|
7882
7910
|
|
7883
|
-
#: ../lib/puppet/ssl/state_machine.rb:
|
7911
|
+
#: ../lib/puppet/ssl/state_machine.rb:195
|
7912
|
+
msgid "Couldn't fetch certificate from CA server; you might still need to sign this agent's certificate (%{name}). Exiting now because the waitforcert setting is set to 0."
|
7913
|
+
msgstr ""
|
7914
|
+
|
7915
|
+
#: ../lib/puppet/ssl/state_machine.rb:198
|
7916
|
+
msgid "Couldn't fetch certificate from CA server; you might still need to sign this agent's certificate (%{name}). Will try again in %{time} seconds."
|
7917
|
+
msgstr ""
|
7918
|
+
|
7919
|
+
#: ../lib/puppet/ssl/state_machine.rb:241
|
7884
7920
|
msgid "Verified client certificate '%{subject}' fingerprint %{digest}"
|
7885
7921
|
msgstr ""
|
7886
7922
|
|
7887
|
-
#: ../lib/puppet/ssl/state_machine.rb:
|
7923
|
+
#: ../lib/puppet/ssl/state_machine.rb:243
|
7888
7924
|
msgid "Verified CA certificate '%{subject}' fingerprint %{digest}"
|
7889
7925
|
msgstr ""
|
7890
7926
|
|
@@ -8061,7 +8097,7 @@ msgstr[1] ""
|
|
8061
8097
|
msgid "Failed to call %{callback}: %{detail}"
|
8062
8098
|
msgstr ""
|
8063
8099
|
|
8064
|
-
#: ../lib/puppet/transaction/event_manager.rb:
|
8100
|
+
#: ../lib/puppet/transaction/event_manager.rb:172
|
8065
8101
|
msgid "Would have triggered '%{callback}' from %{count} event"
|
8066
8102
|
msgid_plural "Would have triggered '%{callback}' from %{count} events"
|
8067
8103
|
msgstr[0] ""
|
@@ -8928,6 +8964,37 @@ msgstr ""
|
|
8928
8964
|
msgid "Trollop::die can only be called after Trollop::options"
|
8929
8965
|
msgstr ""
|
8930
8966
|
|
8967
|
+
#: ../lib/puppet/util/connection.rb:28
|
8968
|
+
msgid "Selected server from the %{setting} setting: %{server}"
|
8969
|
+
msgstr ""
|
8970
|
+
|
8971
|
+
#. TRANSLATORS 'server_list' is the name of a setting and should not be translated
|
8972
|
+
#: ../lib/puppet/util/connection.rb:34
|
8973
|
+
msgid "Dynamically-bound server lookup failed; using first entry from the `server_list` setting: %{server}"
|
8974
|
+
msgstr ""
|
8975
|
+
|
8976
|
+
#: ../lib/puppet/util/connection.rb:38
|
8977
|
+
msgid "Dynamically-bound server lookup failed, falling back to %{setting} setting: %{server}"
|
8978
|
+
msgstr ""
|
8979
|
+
|
8980
|
+
#: ../lib/puppet/util/connection.rb:59
|
8981
|
+
msgid "Selected port from the %{setting} setting: %{port}"
|
8982
|
+
msgstr ""
|
8983
|
+
|
8984
|
+
#. TRANSLATORS 'server_list' is the name of a setting and should not be translated
|
8985
|
+
#: ../lib/puppet/util/connection.rb:69
|
8986
|
+
msgid "Dynamically-bound port lookup failed; using first entry from the `server_list` setting: %{port}"
|
8987
|
+
msgstr ""
|
8988
|
+
|
8989
|
+
#. TRANSLATORS 'masterport' is the name of a setting and should not be translated
|
8990
|
+
#: ../lib/puppet/util/connection.rb:73
|
8991
|
+
msgid "Dynamically-bound port lookup failed; falling back to `masterport` setting: %{port}"
|
8992
|
+
msgstr ""
|
8993
|
+
|
8994
|
+
#: ../lib/puppet/util/connection.rb:78
|
8995
|
+
msgid "Dynamically-bound port lookup failed; falling back to %{setting} setting: %{port}"
|
8996
|
+
msgstr ""
|
8997
|
+
|
8931
8998
|
#: ../lib/puppet/util/diff.rb:28
|
8932
8999
|
msgid "Cannot provide diff without the diff/lcs Ruby library"
|
8933
9000
|
msgstr ""
|