RubyGems - puppet - Versions diffs - 6.4.5-x64-mingw32 → 6.5.0-x64-mingw32 - Mend

puppet 6.4.5-x64-mingw32 → 6.5.0-x64-mingw32

Potentially problematic release.

This version of puppet might be problematic. Click here for more details.

Files changed (329) hide show

checksums.yaml +4 -4
data/CODEOWNERS +10 -10
data/Gemfile +6 -6
data/Gemfile.lock +46 -52
data/ext/build_defaults.yaml +0 -1
data/ext/project_data.yaml +3 -3
data/ext/regexp_nodes/regexp_nodes.rb +4 -4
data/ext/solaris/smf/puppet.xml +0 -2
data/ext/windows/eventlog/Rakefile +32 -0
data/ext/windows/eventlog/puppetres.dll +0 -0
data/ext/windows/eventlog/puppetres.mc +18 -0
data/ext/windows/service/daemon.rb +8 -38
data/install.rb +24 -6
data/lib/puppet.rb +3 -1
data/lib/puppet/application.rb +1 -1
data/lib/puppet/application/agent.rb +11 -34
data/lib/puppet/application/apply.rb +6 -6
data/lib/puppet/application/describe.rb +9 -3
data/lib/puppet/application/device.rb +4 -14
data/lib/puppet/application/doc.rb +1 -1
data/lib/puppet/application/lookup.rb +2 -2
data/lib/puppet/application/resource.rb +4 -4
data/lib/puppet/application/script.rb +2 -2
data/lib/puppet/application/ssl.rb +10 -9
data/lib/puppet/configurer.rb +30 -86
data/lib/puppet/configurer/downloader.rb +6 -2
data/lib/puppet/defaults.rb +50 -44
data/lib/puppet/error.rb +14 -9
data/lib/puppet/face/catalog.rb +20 -1
data/lib/puppet/face/config.rb +48 -10
data/lib/puppet/face/facts.rb +1 -1
data/lib/puppet/face/help.rb +1 -1
data/lib/puppet/face/module/list.rb +5 -5
data/lib/puppet/face/module/search.rb +1 -1
data/lib/puppet/face/module/uninstall.rb +1 -1
data/lib/puppet/face/module/upgrade.rb +1 -1
data/lib/puppet/face/parser.rb +48 -9
data/lib/puppet/face/plugin.rb +2 -9
data/lib/puppet/file_serving/http_metadata.rb +1 -1
data/lib/puppet/file_system.rb +12 -2
data/lib/puppet/file_system/file_impl.rb +6 -3
data/lib/puppet/file_system/memory_file.rb +1 -1
data/lib/puppet/file_system/posix.rb +2 -3
data/lib/puppet/forge.rb +3 -3
data/lib/puppet/functions.rb +2 -1
data/lib/puppet/functions/camelcase.rb +2 -2
data/lib/puppet/functions/epp.rb +4 -4
data/lib/puppet/functions/find_file.rb +9 -9
data/lib/puppet/functions/inline_epp.rb +5 -5
data/lib/puppet/functions/regsubst.rb +6 -8
data/lib/puppet/gettext/module_translations.rb +1 -1
data/lib/puppet/graph/rb_tree_map.rb +2 -2
data/lib/puppet/graph/simple_graph.rb +3 -4
data/lib/puppet/indirector/catalog/compiler.rb +5 -11
data/lib/puppet/indirector/file_bucket_file/file.rb +1 -1
data/lib/puppet/indirector/hiera.rb +0 -2
data/lib/puppet/indirector/resource/ral.rb +3 -1
data/lib/puppet/indirector/resource/validator.rb +1 -1
data/lib/puppet/interface.rb +1 -2
data/lib/puppet/loaders.rb +1 -0
data/lib/puppet/metatype/manager.rb +1 -1
data/lib/puppet/module.rb +1 -1
data/lib/puppet/module/task.rb +4 -20
data/lib/puppet/module_tool/applications/installer.rb +1 -1
data/lib/puppet/module_tool/applications/uninstaller.rb +3 -3
data/lib/puppet/module_tool/metadata.rb +1 -1
data/lib/puppet/module_tool/shared_behaviors.rb +4 -4
data/lib/puppet/module_tool/tar/mini.rb +2 -12
data/lib/puppet/network/http/api/indirected_routes.rb +11 -12
data/lib/puppet/network/http/connection.rb +12 -10
data/lib/puppet/network/http/factory.rb +11 -1
data/lib/puppet/network/http/pool.rb +0 -2
data/lib/puppet/network/http/site.rb +1 -1
data/lib/puppet/network/resolver.rb +2 -2
data/lib/puppet/node/environment.rb +2 -4
data/lib/puppet/pal/pal_impl.rb +2 -2
data/lib/puppet/parser/ast.rb +1 -1
data/lib/puppet/parser/ast/resourceparam.rb +1 -1
data/lib/puppet/parser/functions.rb +1 -1
data/lib/puppet/parser/functions/epp.rb +3 -3
data/lib/puppet/parser/functions/fail.rb +8 -1
data/lib/puppet/parser/functions/inline_epp.rb +5 -5
data/lib/puppet/parser/scope.rb +7 -8
data/lib/puppet/pops/evaluator/collectors/catalog_collector.rb +1 -1
data/lib/puppet/pops/evaluator/collectors/exported_collector.rb +1 -1
data/lib/puppet/pops/evaluator/external_syntax_support.rb +2 -3
data/lib/puppet/pops/evaluator/runtime3_support.rb +4 -4
data/lib/puppet/pops/loader/null_loader.rb +60 -0
data/lib/puppet/pops/loader/ruby_legacy_function_instantiator.rb +6 -4
data/lib/puppet/pops/loader/task_instantiator.rb +0 -4
data/lib/puppet/pops/loaders.rb +1 -1
data/lib/puppet/pops/lookup/hiera_config.rb +0 -1
data/lib/puppet/pops/lookup/sub_lookup.rb +1 -1
data/lib/puppet/pops/merge_strategy.rb +18 -22
data/lib/puppet/pops/parser/heredoc_support.rb +1 -1
data/lib/puppet/pops/parser/interpolation_support.rb +4 -4
data/lib/puppet/pops/parser/locator.rb +1 -1
data/lib/puppet/pops/parser/pn_parser.rb +16 -17
data/lib/puppet/pops/puppet_stack.rb +49 -51
data/lib/puppet/pops/types/p_sensitive_type.rb +1 -1
data/lib/puppet/pops/types/string_converter.rb +10 -10
data/lib/puppet/pops/types/types.rb +6 -5
data/lib/puppet/property.rb +1 -1
data/lib/puppet/property/ensure.rb +1 -1
data/lib/puppet/provider/exec.rb +2 -6
data/lib/puppet/provider/file/posix.rb +0 -5
data/lib/puppet/provider/nameservice.rb +3 -10
data/lib/puppet/provider/nameservice/directoryservice.rb +1 -1
data/lib/puppet/provider/nameservice/pw.rb +2 -2
data/lib/puppet/provider/package.rb +0 -2
data/lib/puppet/provider/package/apt.rb +1 -5
data/lib/puppet/provider/package/dnf.rb +1 -1
data/lib/puppet/provider/package/dpkg.rb +18 -34
data/lib/puppet/provider/package/openbsd.rb +1 -1
data/lib/puppet/provider/package/pip.rb +13 -37
data/lib/puppet/provider/package/portage.rb +4 -4
data/lib/puppet/provider/package/puppet_gem.rb +1 -1
data/lib/puppet/provider/package/rpm.rb +18 -56
data/lib/puppet/provider/package/windows/package.rb +1 -1
data/lib/puppet/provider/package/yum.rb +5 -9
data/lib/puppet/provider/package_targetable.rb +4 -7
data/lib/puppet/provider/parsedfile.rb +1 -1
data/lib/puppet/provider/service/daemontools.rb +9 -9
data/lib/puppet/provider/service/launchd.rb +5 -20
data/lib/puppet/provider/service/openbsd.rb +1 -1
data/lib/puppet/provider/service/rcng.rb +2 -2
data/lib/puppet/provider/service/runit.rb +8 -2
data/lib/puppet/provider/service/systemd.rb +19 -14
data/lib/puppet/provider/service/windows.rb +0 -8
data/lib/puppet/provider/user/directoryservice.rb +1 -1
data/lib/puppet/provider/user/hpux.rb +1 -1
data/lib/puppet/provider/user/pw.rb +3 -12
data/lib/puppet/provider/user/user_role_add.rb +1 -5
data/lib/puppet/provider/user/useradd.rb +20 -45
data/lib/puppet/provider/user/windows_adsi.rb +5 -4
data/lib/puppet/reference/configuration.rb +3 -3
data/lib/puppet/reference/indirection.rb +2 -2
data/lib/puppet/reference/metaparameter.rb +3 -1
data/lib/puppet/reference/providers.rb +3 -1
data/lib/puppet/reference/type.rb +9 -3
data/lib/puppet/reports.rb +1 -1
data/lib/puppet/resource.rb +1 -18
data/lib/puppet/resource/catalog.rb +1 -1
data/lib/puppet/rest/routes.rb +30 -17
data/lib/puppet/settings.rb +3 -43
data/lib/puppet/settings/environment_conf.rb +0 -1
data/lib/puppet/ssl/certificate_request.rb +12 -2
data/lib/puppet/ssl/host.rb +2 -2
data/lib/puppet/ssl/oids.rb +1 -1
data/lib/puppet/ssl/ssl_provider.rb +11 -5
data/lib/puppet/ssl/state_machine.rb +102 -98
data/lib/puppet/test/test_helper.rb +1 -0
data/lib/puppet/transaction.rb +11 -33
data/lib/puppet/transaction/report.rb +1 -1
data/lib/puppet/type.rb +4 -2
data/lib/puppet/type/exec.rb +17 -23
data/lib/puppet/type/file.rb +39 -11
data/lib/puppet/type/file/data_sync.rb +1 -5
data/lib/puppet/type/group.rb +2 -4
data/lib/puppet/type/notify.rb +3 -4
data/lib/puppet/type/package.rb +3 -20
data/lib/puppet/type/schedule.rb +1 -1
data/lib/puppet/type/service.rb +3 -8
data/lib/puppet/type/user.rb +2 -4
data/lib/puppet/util.rb +29 -39
data/lib/puppet/util/command_line/trollop.rb +1 -1
data/lib/puppet/util/execution.rb +3 -4
data/lib/puppet/util/http_proxy.rb +19 -27
data/lib/puppet/util/log.rb +2 -2
data/lib/puppet/util/log/destinations.rb +2 -2
data/lib/puppet/util/logging.rb +20 -32
data/lib/puppet/util/metric.rb +2 -2
data/lib/puppet/util/monkey_patches.rb +33 -0
data/lib/puppet/util/pidlock.rb +2 -3
data/lib/puppet/util/provider_features.rb +4 -2
data/lib/puppet/util/rdoc.rb +1 -1
data/lib/puppet/util/reference.rb +1 -1
data/lib/puppet/util/resource_template.rb +1 -1
data/lib/puppet/util/selinux.rb +2 -8
data/lib/puppet/util/skip_tags.rb +4 -0
data/lib/puppet/util/windows/adsi.rb +18 -48
data/lib/puppet/util/windows/process.rb +8 -8
data/lib/puppet/util/windows/registry.rb +5 -7
data/lib/puppet/util/windows/security.rb +0 -2
data/lib/puppet/util/windows/service.rb +4 -149
data/lib/puppet/util/windows/sid.rb +0 -1
data/lib/puppet/vendor.rb +1 -1
data/lib/puppet/version.rb +1 -1
data/lib/puppet/x509/cert_provider.rb +81 -24
data/locales/puppet.pot +462 -482
data/man/man5/puppet.conf.5 +43 -44
data/man/man8/puppet-agent.8 +1 -1
data/man/man8/puppet-apply.8 +3 -3
data/man/man8/puppet-catalog.8 +31 -3
data/man/man8/puppet-config.8 +1 -1
data/man/man8/puppet-describe.8 +1 -1
data/man/man8/puppet-device.8 +1 -1
data/man/man8/puppet-doc.8 +1 -1
data/man/man8/puppet-epp.8 +1 -1
data/man/man8/puppet-facts.8 +1 -1
data/man/man8/puppet-filebucket.8 +1 -1
data/man/man8/puppet-generate.8 +1 -1
data/man/man8/puppet-help.8 +1 -1
data/man/man8/puppet-key.8 +1 -1
data/man/man8/puppet-lookup.8 +1 -1
data/man/man8/puppet-man.8 +1 -1
data/man/man8/puppet-module.8 +1 -1
data/man/man8/puppet-node.8 +1 -1
data/man/man8/puppet-parser.8 +1 -1
data/man/man8/puppet-plugin.8 +1 -1
data/man/man8/puppet-report.8 +1 -1
data/man/man8/puppet-resource.8 +1 -1
data/man/man8/puppet-script.8 +1 -1
data/man/man8/puppet-ssl.8 +1 -1
data/man/man8/puppet-status.8 +1 -1
data/man/man8/puppet.8 +3 -3
data/spec/fixtures/ssl/127.0.0.1-key.pem +56 -56
data/spec/fixtures/ssl/127.0.0.1.pem +27 -27
data/spec/fixtures/ssl/bad-basic-constraints.pem +32 -32
data/spec/fixtures/ssl/bad-int-basic-constraints.pem +30 -30
data/spec/fixtures/ssl/ca.pem +30 -30
data/spec/fixtures/ssl/crl.pem +15 -15
data/spec/fixtures/ssl/ec-key.pem +18 -0
data/spec/fixtures/ssl/ec.pem +40 -0
data/spec/fixtures/ssl/encrypted-ec-key.pem +21 -0
data/spec/fixtures/ssl/encrypted-key.pem +57 -57
data/spec/fixtures/ssl/intermediate-agent-crl.pem +16 -16
data/spec/fixtures/ssl/intermediate-agent.pem +33 -33
data/spec/fixtures/ssl/intermediate-crl.pem +17 -17
data/spec/fixtures/ssl/intermediate.pem +31 -31
data/spec/fixtures/ssl/pluto-key.pem +56 -56
data/spec/fixtures/ssl/pluto.pem +28 -28
data/spec/fixtures/ssl/request-key.pem +56 -56
data/spec/fixtures/ssl/request.pem +24 -24
data/spec/fixtures/ssl/revoked-key.pem +56 -56
data/spec/fixtures/ssl/revoked.pem +25 -25
data/spec/fixtures/ssl/signed-key.pem +56 -56
data/spec/fixtures/ssl/signed.pem +25 -25
data/spec/fixtures/ssl/tampered-cert.pem +27 -27
data/spec/fixtures/ssl/tampered-csr.pem +24 -24
data/spec/fixtures/unit/pops/loaders/loaders/mix_4x_and_3x_functions/usee/lib/puppet/parser/functions/func_with_syntax_error.rb +9 -0
data/spec/fixtures/vcr/cassettes/Puppet_Network_HTTP_Connection/when_handling_requests/_request_get/should_yield_to_the_block.yml +24 -0
data/spec/fixtures/vcr/cassettes/Puppet_Network_HTTP_Connection/when_handling_requests/_request_head/should_yield_to_the_block.yml +24 -0
data/spec/fixtures/vcr/cassettes/Puppet_Network_HTTP_Connection/when_handling_requests/_request_post/should_yield_to_the_block.yml +24 -0
data/spec/integration/configurer_spec.rb +0 -52
data/spec/integration/provider/service/init_spec.rb +1 -0
data/spec/integration/provider/service/systemd_spec.rb +5 -8
data/spec/integration/type/file_spec.rb +38 -28
data/spec/integration/util/execution_spec.rb +0 -27
data/spec/lib/puppet/certificate_factory.rb +2 -2
data/spec/lib/puppet/test_ca.rb +17 -4
data/spec/lib/puppet_spec/fixtures.rb +4 -0
data/spec/spec_helper.rb +0 -28
data/spec/unit/application/agent_spec.rb +34 -67
data/spec/unit/application/device_spec.rb +1 -27
data/spec/unit/application/ssl_spec.rb +60 -35
data/spec/unit/configurer_spec.rb +399 -395
data/spec/unit/defaults_spec.rb +4 -4
data/spec/unit/face/facts_spec.rb +0 -9
data/spec/unit/face/parser_spec.rb +69 -22
data/spec/unit/face/plugin_spec.rb +0 -8
data/spec/unit/file_system_spec.rb +30 -1
data/spec/unit/forge/forge_spec.rb +3 -1
data/spec/unit/forge/repository_spec.rb +3 -1
data/spec/unit/indirector/catalog/compiler_spec.rb +5 -62
data/spec/unit/indirector/resource/ral_spec.rb +4 -4
data/spec/unit/module_tool/tar/mini_spec.rb +1 -1
data/spec/unit/network/http/api/indirected_routes_spec.rb +10 -25
data/spec/unit/network/http/connection_spec.rb +145 -119
data/spec/unit/network/http/factory_spec.rb +5 -27
data/spec/unit/parser/scope_spec.rb +0 -10
data/spec/unit/pops/evaluator/evaluating_parser_spec.rb +3 -8
data/spec/unit/pops/loaders/loaders_spec.rb +4 -0
data/spec/unit/pops/loaders/module_loaders_spec.rb +0 -37
data/spec/unit/pops/types/types_spec.rb +27 -0
data/spec/unit/provider/exec_spec.rb +0 -209
data/spec/unit/provider/package/aptrpm_spec.rb +1 -1
data/spec/unit/provider/package/dnf_spec.rb +0 -7
data/spec/unit/provider/package/dpkg_spec.rb +80 -240
data/spec/unit/provider/package/pip_spec.rb +8 -61
data/spec/unit/provider/package/portage_spec.rb +4 -4
data/spec/unit/provider/package/rpm_spec.rb +16 -150
data/spec/unit/provider/package/yum_spec.rb +0 -7
data/spec/unit/provider/service/daemontools_spec.rb +0 -24
data/spec/unit/provider/service/launchd_spec.rb +0 -28
data/spec/unit/provider/service/runit_spec.rb +0 -24
data/spec/unit/provider/service/systemd_spec.rb +25 -39
data/spec/unit/provider/service/windows_spec.rb +0 -20
data/spec/unit/provider/user/hpux_spec.rb +2 -2
data/spec/unit/provider/user/pw_spec.rb +0 -37
data/spec/unit/provider/user/useradd_spec.rb +0 -88
data/spec/unit/resource_spec.rb +1 -26
data/spec/unit/ssl/host_spec.rb +5 -0
data/spec/unit/ssl/ssl_provider_spec.rb +36 -11
data/spec/unit/ssl/state_machine_spec.rb +233 -158
data/spec/unit/transaction_spec.rb +0 -64
data/spec/unit/type/exec_spec.rb +12 -15
data/spec/unit/type/file/content_spec.rb +3 -9
data/spec/unit/type/file/source_spec.rb +4 -4
data/spec/unit/type/file_spec.rb +15 -11
data/spec/unit/type/package_spec.rb +0 -5
data/spec/unit/type/schedule_spec.rb +1 -3
data/spec/unit/type/service_spec.rb +0 -16
data/spec/unit/util/execution_spec.rb +0 -16
data/spec/unit/util/http_proxy_spec.rb +21 -151
data/spec/unit/util/ldap/manager_spec.rb +0 -15
data/spec/unit/util/log/destinations_spec.rb +3 -7
data/spec/unit/util/log_spec.rb +138 -0
data/spec/unit/util/logging_spec.rb +0 -200
data/spec/unit/util/pidlock_spec.rb +0 -26
data/spec/unit/util/skip_tags_spec.rb +14 -0
data/spec/unit/util/windows/adsi_spec.rb +0 -51
data/spec/unit/util/windows/service_spec.rb +0 -9
data/spec/unit/util_spec.rb +10 -0
data/spec/unit/x509/cert_provider_spec.rb +82 -43
data/tasks/generate_cert_fixtures.rake +13 -1
data/tasks/manpages.rake +0 -1
metadata +28 -22
data/ext/cert_inspector +0 -140
data/ext/envpuppet +0 -139
data/ext/envpuppet.bat +0 -14
data/ext/puppet-test +0 -476
data/ext/pure_ruby_dsl/dsl_test.rb +0 -7
data/ext/upload_facts.rb +0 -119
data/lib/puppet/provider/package/dnfmodule.rb +0 -87
data/spec/fixtures/unit/provider/package/dnfmodule/dnf-module-list-installed.txt +0 -11
data/spec/integration/type/notify_spec.rb +0 -46
data/spec/unit/provider/package/dnfmodule_spec.rb +0 -186
data/spec/unit/provider/package_targetable_spec.rb +0 -60

data/lib/puppet/provider/service/windows.rb CHANGED

@@ -35,12 +35,6 @@ Puppet::Type.type(:service).provide :windows, :parent => :service do
     raise Puppet::Error.new(_("Cannot enable %{resource_name} for manual start, error was: %{detail}") % { resource_name: @resource[:name], detail: detail }, detail )
   end
-  def delayed_start
-    Puppet::Util::Windows::Service.set_startup_mode( @resource[:name], :SERVICE_AUTO_START, true )
-  rescue => detail
-    raise Puppet::Error.new(_("Cannot enable %{resource_name} for delayed start, error was: %{detail}") % { resource_name: @resource[:name], detail: detail }, detail )
-  end
   def enabled?
     return :false unless Puppet::Util::Windows::Service.exists?(@resource[:name])
@@ -53,8 +47,6 @@ Puppet::Type.type(:service).provide :windows, :parent => :service do
         :true
       when :SERVICE_DEMAND_START
         :manual
-      when :SERVICE_DELAYED_AUTO_START
-        :delayed
       when :SERVICE_DISABLED
         :false
       else

data/lib/puppet/provider/user/directoryservice.rb CHANGED

@@ -503,7 +503,7 @@ Puppet::Type.type(:user).provide :directoryservice do
   def next_system_id(min_id=20)
     dscl_output = dscl '.', '-list', '/Users', 'uid'
     # We're ok with throwing away negative uids here. Also, remove nil values.
-    user_ids = dscl_output.split.compact.collect { |l| l.to_i if l =~ /^\d+$/ }
+    user_ids = dscl_output.split.compact.collect { |l| l.to_i if l.match(/^\d+$/) }
     ids = user_ids.compact!.sort! { |a,b| a.to_f <=> b.to_f }
     # We're just looking for an unused id in our sorted array.
     ids.each_index do |i|

data/lib/puppet/provider/user/hpux.rb CHANGED

@@ -29,7 +29,7 @@ Puppet::Type.type(:user).provide :hpuxuseradd, :parent => :useradd do
   def modifycmd(param,value)
      cmd = super(param, value)
-     cmd.insert(1,"-F")
+     cmd << "-F"
      if trusted then
        # Append an additional command to reset the password age to 0
        # until a workaround with expiry module can be found for trusted

data/lib/puppet/provider/user/pw.rb CHANGED

@@ -66,11 +66,11 @@ Puppet::Type.type(:user).provide :pw, :parent => Puppet::Provider::NameService::
   # use pw to update password hash
   def password=(cryptopw)
-    Puppet.debug "change password for user '#{@resource[:name]}' method called with hash [redacted]"
+    Puppet.debug "change password for user '#{@resource[:name]}' method called with hash '#{cryptopw}'"
     stdin, _, _ = Open3.popen3("pw user mod #{@resource[:name]} -H 0")
     stdin.puts(cryptopw)
     stdin.close
-    Puppet.debug "finished password for user '#{@resource[:name]}' method called with hash [redacted]"
+    Puppet.debug "finished password for user '#{@resource[:name]}' method called with hash '#{cryptopw}'"
   end
   # get password from /etc/master.passwd
@@ -78,19 +78,10 @@ Puppet::Type.type(:user).provide :pw, :parent => Puppet::Provider::NameService::
     Puppet.debug "checking password for user '#{@resource[:name]}' method called"
     current_passline = `getent passwd #{@resource[:name]}`
     current_password = current_passline.chomp.split(':')[1] if current_passline
-    Puppet.debug "finished password for user '#{@resource[:name]}' method called : [redacted]"
+    Puppet.debug "finished password for user '#{@resource[:name]}' method called : '#{current_password}'"
     current_password
   end
-  def has_sensitive_data?(property = nil)
-    #Check for sensitive values?
-    properties = property ? [property] : Puppet::Type.type(:user).validproperties
-    properties.any? do |prop|
-      p = @resource.parameter(prop)
-      p && p.respond_to?(:is_sensitive) && p.is_sensitive
-    end
-  end
   # Get expiry from system and convert to Puppet-style date
   def expiry
     expiry = self.get(:expiry)

data/lib/puppet/provider/user/user_role_add.rb CHANGED

@@ -36,7 +36,7 @@ Puppet::Type.type(:user).provide :user_role_add, :parent => :useradd, :source =>
   has_features :manages_homedir, :allows_duplicates, :manages_solaris_rbac, :manages_passwords, :manages_password_age, :manages_shell
   def check_valid_shell
-    unless File.exist?(@resource.should(:shell))
+    unless File.exists?(@resource.should(:shell))
       raise(Puppet::Error, "Shell #{@resource.should(:shell)} must exist")
     end
     unless File.executable?(@resource.should(:shell).to_s)
@@ -202,10 +202,6 @@ Puppet::Type.type(:user).provide :user_role_add, :parent => :useradd, :source =>
     shadow_entry[5].empty? ? -1 : shadow_entry[5]
   end
-  def has_sensitive_data?(property = nil)
-    false
-  end
   # Read in /etc/shadow, find the line for our used and rewrite it with the
   # new pw.  Smooth like 80 grit sandpaper.
   #

data/lib/puppet/provider/user/useradd.rb CHANGED

@@ -55,44 +55,35 @@ Puppet::Type.type(:user).provide :useradd, :parent => Puppet::Provider::NameServ
      get(:uid)
   end
-  def comment
-     return localcomment if @resource.forcelocal?
-     get(:comment)
-  end
   def finduser(key, value)
     passwd_file = "/etc/passwd"
-    passwd_keys = [:account, :password, :uid, :gid, :gecos, :directory, :shell]
+    passwd_keys = ['account', 'password', 'uid', 'gid', 'gecos', 'directory', 'shell']
     index = passwd_keys.index(key)
     File.open(passwd_file) do |f|
       f.each_line do |line|
-        user = line.split(":")
-        if user[index] == value
-          return Hash[passwd_keys.zip(user)]
-        end
+         user = line.split(":")
+         if user[index] == value
+             f.close
+             return user
+         end
       end
     end
     false
   end
   def local_username
-    finduser(:uid, @resource.uid)
+    finduser('uid', @resource.uid)
   end
   def localuid
-    user = finduser(:account, resource[:name])
-    return user[:uid] if user
+    user = finduser('account', resource[:name])
+    return user[2] if user
     false
   end
-  def localcomment
-    user = finduser(:account, resource[:name])
-    user[:gecos]
-  end
   def shell=(value)
     check_valid_shell
-    set(:shell, value)
+    set("shell", value)
   end
   verify :gid, "GID must be an integer" do |value|
@@ -115,8 +106,8 @@ Puppet::Type.type(:user).provide :useradd, :parent => Puppet::Provider::NameServ
     # to ensure consistent behaviour of the useradd provider when
     # using both useradd and luseradd
     if (!@resource.allowdupe?) && @resource.forcelocal?
-       if @resource.should(:uid) && finduser(:uid, @resource.should(:uid).to_s)
-           raise(Puppet::Error, "UID #{@resource.should(:uid)} already exists, use allowdupe to force user creation")
+       if @resource.should(:uid) && finduser('uid', @resource.should(:uid).to_s)
+           raise(Puppet::Error, "UID #{@resource.should(:uid).to_s} already exists, use allowdupe to force user creation")
        end
     elsif @resource.allowdupe? && (!@resource.forcelocal?)
        return ["-o"]
@@ -125,7 +116,7 @@ Puppet::Type.type(:user).provide :useradd, :parent => Puppet::Provider::NameServ
   end
   def check_valid_shell
-    unless File.exist?(@resource.should(:shell))
+    unless File.exists?(@resource.should(:shell))
       raise(Puppet::Error, "Shell #{@resource.should(:shell)} must exist")
     end
     unless File.executable?(@resource.should(:shell).to_s)
@@ -156,35 +147,19 @@ Puppet::Type.type(:user).provide :useradd, :parent => Puppet::Provider::NameServ
     # validproperties is a list of properties in undefined order
     # sort them to have a predictable command line in tests
     Puppet::Type.type(:user).validproperties.sort.each do |property|
-      value = get_value_for_property(property)
-      next if value.nil?
+      next if property == :ensure
+      next if property_manages_password_age?(property)
+      next if (property == :groups) && @resource.forcelocal?
+      next if (property == :expiry) && @resource.forcelocal?
       # the value needs to be quoted, mostly because -c might
       # have spaces in it
-      cmd << flag(property) << munge(property, value)
+      if (value = @resource.should(property)) && (value != "")
+        cmd << flag(property) << munge(property, value)
+      end
     end
     cmd
   end
-  def get_value_for_property(property)
-    return nil if property == :ensure
-    return nil if property_manages_password_age?(property)
-    return nil if property == :groups and @resource.forcelocal?
-    return nil if property == :expiry and @resource.forcelocal?
-    value = @resource.should(property)
-    return nil if !value || value == ""
-    value
-  end
-  def has_sensitive_data?(property = nil)
-    #Check for sensitive values?
-    properties = property ? [property] : Puppet::Type.type(:user).validproperties
-    properties.any? do |prop|
-      p = @resource.parameter(prop)
-      p && p.respond_to?(:is_sensitive) && p.is_sensitive
-    end
-  end
   def addcmd
     if @resource.forcelocal?
       cmd = [command(:localadd)]

data/lib/puppet/provider/user/windows_adsi.rb CHANGED

@@ -125,13 +125,14 @@ Puppet::Type.type(:user).provide :windows_adsi do
   def password=(value)
     if user.disabled?
-      info _("The user account '%s' is disabled; The password will still be changed" % @resource[:name])
+      warning _("The user account '%s' is disabled; puppet will not reset the password" % @resource[:name])
     elsif user.locked_out?
-      info _("The user account '%s' is locked out; The password will still be changed" % @resource[:name])
+      warning _("The user account '%s' is locked out; puppet will not reset the password" % @resource[:name])
     elsif user.expired?
-      info _("The user account '%s' is expired; The password will still be changed" % @resource[:name])
+      warning _("The user account '%s' is expired; puppet will not reset the password" % @resource[:name])
+    else
+      user.password = value
     end
-    user.password = value
   end
   def uid

data/lib/puppet/reference/configuration.rb CHANGED

@@ -33,9 +33,9 @@ config = Puppet::Util::Reference.newreference(:configuration, :depth => 1, :doc
     elsif name.to_s == 'logdir'
       val = 'Unix/Linux: /var/log/puppetlabs/puppet -- Windows: C:\ProgramData\PuppetLabs\puppet\var\log -- Non-root user: ~/.puppetlabs/var/log'
     elsif name.to_s == 'hiera_config'
-      val = '$confdir/hiera.yaml. However, if a file exists at $codedir/hiera.yaml, Puppet uses that instead.'
+      val = '$confdir/hiera.yaml. However, for backwards compatibility, if a file exists at $codedir/hiera.yaml, Puppet uses that instead.'
     elsif name.to_s == 'certname'
-      val = "the Host's fully qualified domain name, as determined by facter"
+      val = "the Host's fully qualified domain name, as determined by Facter"
     end
     # Leave out the section information; it was apparently confusing people.
@@ -80,7 +80,7 @@ config.header = <<EOT
 * Settings that take a single file or directory can optionally set the owner,
   group, and mode for their value: `rundir = $vardir/run { owner = puppet,
   group = puppet, mode = 644 }`
-* The Puppet executables will ignore any setting that isn't relevant to
+* The Puppet executables ignores any setting that isn't relevant to
   their function.
 See the [configuration guide][confguide] for more details.

data/lib/puppet/reference/indirection.rb CHANGED

@@ -5,14 +5,14 @@ require 'puppet/file_serving/metadata'
 reference = Puppet::Util::Reference.newreference :indirection, :doc => "Indirection types and their terminus classes" do
   text = ""
-  Puppet::Indirector::Indirection.instances.sort_by(&:to_s).each do |indirection|
+  Puppet::Indirector::Indirection.instances.sort { |a,b| a.to_s <=> b.to_s }.each do |indirection|
     ind = Puppet::Indirector::Indirection.instance(indirection)
     name = indirection.to_s.capitalize
     text << "## " + indirection.to_s + "\n\n"
     text << Puppet::Util::Docs.scrub(ind.doc) + "\n\n"
-    Puppet::Indirector::Terminus.terminus_classes(ind.name).sort_by(&:to_s).each do |terminus|
+    Puppet::Indirector::Terminus.terminus_classes(ind.name).sort { |a,b| a.to_s <=> b.to_s }.each do |terminus|
       terminus_name = terminus.to_s
       term_class = Puppet::Indirector::Terminus.terminus_class(ind.name, terminus)
       if term_class

data/lib/puppet/reference/metaparameter.rb CHANGED

@@ -19,7 +19,9 @@ etc.), prevent Puppet from making changes (`noop`), and change logging verbosity
       params << param
     }
-    params.sort_by(&:to_s).each { |param|
+    params.sort { |a,b|
+      a.to_s <=> b.to_s
+    }.each { |param|
       str << markdown_header(param.to_s, 3)
       str << scrub(Puppet::Type.metaparamdoc(param))
       str << "\n\n"

data/lib/puppet/reference/providers.rb CHANGED

@@ -32,9 +32,10 @@ providers = Puppet::Util::Reference.newreference :providers, :title => "Provider
     table_data = {}
+    functional = false
     notes = []
     default = type.defaultprovider ? type.defaultprovider.name : 'none'
-    type.providers.sort_by(&:to_s).each do |pname|
+    type.providers.sort { |a,b| a.to_s <=> b.to_s }.each do |pname|
       data = []
       table_data[pname] = data
       provider = type.provider(pname)
@@ -43,6 +44,7 @@ providers = Puppet::Util::Reference.newreference :providers, :title => "Provider
       if missing = provider.suitable?(false) and missing.empty?
         data << "*X*"
         suit = true
+        functional = true
       else
         data << "[#{count}]_" # A pointer to the appropriate footnote
         suit = false

data/lib/puppet/reference/type.rb CHANGED

@@ -49,7 +49,9 @@ Puppet::Util::Reference.newreference :type, :doc => "All Puppet resource types a
   }
-  types.sort_by(&:to_s).each { |name,type|
+  types.sort { |a,b|
+    a.to_s <=> b.to_s
+  }.each { |name,type|
     str << "
@@ -67,7 +69,9 @@ Puppet::Util::Reference.newreference :type, :doc => "All Puppet resource types a
     end
     docs = {}
-    type.validproperties.sort_by(&:to_s).reject { |sname|
+    type.validproperties.sort { |a,b|
+      a.to_s <=> b.to_s
+    }.reject { |sname|
       property = type.propertybyname(sname)
       property.nodoc
     }.each { |sname|
@@ -87,7 +91,9 @@ Puppet::Util::Reference.newreference :type, :doc => "All Puppet resource types a
     }
     str << markdown_header("Parameters", 4) + "\n"
-    type.parameters.sort_by(&:to_s).each { |type_name, param|
+    type.parameters.sort { |a,b|
+      a.to_s <=> b.to_s
+    }.each { |type_name, param|
       docs[type_name] = scrub(type.paramdoc(type_name))
     }

data/lib/puppet/reports.rb CHANGED

@@ -74,7 +74,7 @@ class Puppet::Reports
     # Use this method so they all get loaded
     instance_loader(:report).loadall(Puppet.lookup(:current_environment))
-    loaded_instances(:report).sort_by(&:to_s).each do |name|
+    loaded_instances(:report).sort { |a,b| a.to_s <=> b.to_s }.each do |name|
       mod = self.report(name)
       docs << "#{name}\n#{"-" * name.to_s.length}\n"

data/lib/puppet/resource.rb CHANGED

@@ -209,7 +209,7 @@ class Puppet::Resource
   end
   def stage?
-    @is_stage ||= @type.to_s.casecmp("stage").zero?
+    @is_stage ||= @type.to_s.downcase == "stage"
   end
   # Construct a resource from data.
@@ -427,8 +427,6 @@ class Puppet::Resource
   end
   # Convert our resource to yaml for Hiera purposes.
-  #
-  # @deprecated Use {to_hiera_hash} instead.
   def to_hierayaml
     # Collect list of attributes to align => and move ensure first
     attr = parameters.keys
@@ -448,21 +446,6 @@ class Puppet::Resource
     "  %s:\n%s" % [self.title, attributes]
   end
-  # Convert our resource to a hiera hash suitable for serialization.
-  def to_hiera_hash
-    # to_data_hash converts to safe Data types, e.g. no symbols, unicode replacement character
-    h = to_data_hash
-    params = h['parameters'] || {}
-    value = params.delete('ensure')
-    res = {}
-    res['ensure'] = value if value
-    res.merge!(Hash[params.sort])
-    return { h['title'] => res }
-  end
   # Convert our resource to Puppet code.
   def to_manifest
     # Collect list of attributes to align => and move ensure first

data/lib/puppet/resource/catalog.rb CHANGED

@@ -637,7 +637,7 @@ class Puppet::Resource::Catalog < Puppet::Graph::SimpleGraph
       result.add_resource newres
     end
-    message = convert.to_s.tr "_", " "
+    message = convert.to_s.gsub "_", " "
     edges.each do |edge|
       # Skip edges between virtual resources.
       next if virtual_not_exported?(edge.source)

data/lib/puppet/rest/routes.rb CHANGED

@@ -1,10 +1,10 @@
+require 'time'
 require 'puppet/rest/route'
 require 'puppet/network/http_pool'
 require 'puppet/network/http/compression'
 module Puppet::Rest
   module Routes
     extend Puppet::Network::HTTP::Compression.module
     ACCEPT_ENCODING = 'gzip;q=1.0,deflate;q=0.6,identity;q=0.3'
@@ -16,9 +16,14 @@ module Puppet::Rest
                         srv_service: :ca)
     end
-    # Make an HTTP request to fetch the named certificate
-    # @param [String] name the name of the certificate to fetch
-    # @param [Puppet::SSL::SSLContext] ssl_context the ssl content to use when making the request
+    def self.clear
+      @ca = nil
+    end
+    # Make an HTTP request to fetch the named certificate.
+    #
+    # @param name [String] the name of the certificate to fetch
+    # @param ssl_context [Puppet::SSL::SSLContext] the ssl content to use when making the request
     # @raise [Puppet::Rest::ResponseError] if the response status is not OK
     # @return [String] the PEM-encoded certificate or certificate bundle
     def self.get_certificate(name, ssl_context)
@@ -41,14 +46,19 @@ module Puppet::Rest
       end
     end
-    # Make an HTTP request to fetch the named crl
-    # @param [String] name the crl to fetch
-    # @param [Puppet::SSL::SSLContext] ssl_context the ssl content to use when making the request
+    # Make an HTTP request to fetch the named crl.
+    #
+    # @param name [String] name of the crl to fetch
+    # @param ssl_context [Puppet::SSL::SSLContext] the ssl content to use when making the request
+    # @param if_modified_since [Time, nil] If non-nil, then only download the CRL if it has been
+    #   modified since the specified time.
     # @raise [Puppet::Rest::ResponseError] if the response status is not OK
     # @return [String] the PEM-encoded crl
-    def self.get_crls(name, ssl_context)
+    def self.get_crls(name, ssl_context, if_modified_since: nil)
       ca.with_base_url(Puppet::Network::Resolver.new) do |url|
         header = { 'Accept' => 'text/plain', 'Accept-Encoding' => ACCEPT_ENCODING }
+        header['If-Modified-Since'] = if_modified_since.httpdate if if_modified_since
         url.path += "certificate_revocation_list/#{name}"
         use_ssl = url.is_a? URI::HTTPS
@@ -66,11 +76,12 @@ module Puppet::Rest
       end
     end
-    # Make an HTTP request to send the named CSR
-    # @param [String] csr_pem the contents of the CSR to sent to the CA
-    # @param [String] name the name of the host whose CSR is being submitted
-    # @param [Puppet::SSL::SSLContext] ssl_context the ssl content to use when making the request
-    # @rasies [Puppet::Rest::ResponseError] if the response status is not OK
+    # Make an HTTP request to send the named CSR.
+    #
+    # @param csr_pem [String] the contents of the CSR to sent to the CA
+    # @param name [String] the name of the host whose CSR is being submitted
+    # @param ssl_context [Puppet::SSL::SSLContext] the ssl content to use when making the request
+    # @raise [Puppet::Rest::ResponseError] if the response status is not OK
     def self.put_certificate_request(csr_pem, name, ssl_context)
       ca.with_base_url(Puppet::Network::Resolver.new) do |url|
         header = { 'Accept' => 'text/plain',
@@ -91,11 +102,13 @@ module Puppet::Rest
       end
     end
-    # Make an HTTP request to get the named CSR
-    # @param [String] name the name of the host whose CSR is being queried
-    # @param [Puppet::SSL::SSLContext] ssl_context the ssl content to use when making the request
-    # @rasies [Puppet::Rest::ResponseError] if the response status is not OK
+    # Make an HTTP request to get the named CSR.
+    #
+    # @param name [String] the name of the host whose CSR is being queried
+    # @param ssl_context [Puppet::SSL::SSLContext] the ssl content to use when making the request
+    # @raise [Puppet::Rest::ResponseError] if the response status is not OK
     # @return [String] the PEM encoded certificate request
+    # @deprecated
     def self.get_certificate_request(name, ssl_context)
       ca.with_base_url(Puppet::Network::Resolver.new) do |url|
         header = { 'Accept' => 'text/plain', 'Accept-Encoding' => ACCEPT_ENCODING }