puppet 7.9.0 → 7.10.0

data/ext/debian/docs

@@ -1 +0,0 @@
-README.md

data/ext/debian/fileserver.conf

@@ -1,41 +0,0 @@
-# fileserver.conf
-
-# Puppet automatically serves PLUGINS and FILES FROM MODULES: anything in
-# <module name>/files/<file name> is available to authenticated nodes at
-# puppet:///modules/<module name>/<file name>. You do not need to edit this
-# file to enable this.
-
-# MOUNT POINTS
-
-# If you need to serve files from a directory that is NOT in a module,
-# you must create a static mount point in this file:
-#
-# [extra_files]
-#   path /etc/puppet/files
-#   allow *
-#
-# In the example above, anything in /etc/puppet/files/<file name> would be
-# available to authenticated nodes at puppet:///extra_files/<file name>.
-#
-# Mount points may also use three placeholders as part of their path:
-#
-# %H - The node's certname.
-# %h - The portion of the node's certname before the first dot. (Usually the
-#      node's short hostname.)
-# %d - The portion of the node's certname after the first dot. (Usually the
-#      node's domain name.)
-
-# PERMISSIONS
-
-# Every static mount point should have an `allow *` line; setting more
-# granular permissions in this file is deprecated. Instead, you can
-# control file access in auth.conf by controlling the
-# /file_metadata/<mount point> and /file_content/<mount point> paths:
-#
-# path ~ ^/file_(metadata|content)/extra_files/
-# auth yes
-# allow /^(.+)\.example\.com$/
-# allow_ip 192.168.100.0/24
-#
-# If added to auth.conf BEFORE the "path /file" rule, the rule above
-# will add stricter restrictions to the extra_files mount point.

data/ext/debian/puppet-common.dirs

@@ -1,13 +0,0 @@
-etc/puppet
-etc/puppet/environments
-etc/puppet/environments/example_env
-etc/puppet/environments/example_env/modules
-etc/puppet/environments/example_env/manifests
-etc/puppet/manifests
-etc/puppet/templates
-etc/puppet/modules
-usr/lib/ruby/vendor_ruby
-usr/share/puppet/ext
-var/lib/puppet
-var/log/puppet
-var/run/puppet

data/ext/debian/puppet-common.install

@@ -1,3 +0,0 @@
-debian/puppet.conf etc/puppet
-debian/tmp/usr/bin/puppet usr/bin
-debian/tmp/usr/lib/ruby/vendor_ruby/* usr/lib/ruby/vendor_ruby

data/ext/debian/puppet-common.lintian-overrides

@@ -1,5 +0,0 @@
-# Man pages are automatically generated, not much to do here
-puppet-common binary: manpage-has-bad-whatis-entry
-puppet-common binary: manpage-has-errors-from-man
-# These are "scripts" but do nothing other than providing documentation
-puppet-common: script-not-executable

data/ext/debian/puppet-common.manpages

@@ -1,28 +0,0 @@
-man/man5/puppet.conf.5
-man/man8/puppet.8
-man/man8/puppet-agent.8
-man/man8/puppet-apply.8
-man/man8/puppet-catalog.8
-man/man8/puppet-cert.8
-man/man8/puppet-certificate.8
-man/man8/puppet-certificate_request.8
-man/man8/puppet-certificate_revocation_list.8
-man/man8/puppet-config.8
-man/man8/puppet-describe.8
-man/man8/puppet-device.8
-man/man8/puppet-doc.8
-man/man8/puppet-facts.8
-man/man8/puppet-file.8
-man/man8/puppet-filebucket.8
-man/man8/puppet-help.8
-man/man8/puppet-inspect.8
-man/man8/puppet-key.8
-man/man8/puppet-kick.8
-man/man8/puppet-man.8
-man/man8/puppet-module.8
-man/man8/puppet-node.8
-man/man8/puppet-parser.8
-man/man8/puppet-plugin.8
-man/man8/puppet-report.8
-man/man8/puppet-resource.8
-man/man8/puppet-status.8

data/ext/debian/puppet-common.postinst

@@ -1,35 +0,0 @@
-#!/bin/bash
-
-set -e
-
-if [ "$1" = "configure" ]; then
-
-	# Create the "puppet" user
-	if ! getent passwd puppet > /dev/null; then
-		useradd --system --user-group --home-dir /var/lib/puppet \
-			--no-create-home --shell /bin/false \
-			--comment "Puppet configuration management daemon" \
-			puppet
-	fi
-
-	# Set correct permissions and ownership for puppet directories
-	for dir in /var/{run,lib,log}/puppet; do
-		if ! dpkg-statoverride --list "$dir" >/dev/null 2>&1; then
-			dpkg-statoverride --update --add puppet puppet 0750 "$dir"
-		fi
-	done
-
-	# Create folders common to "puppet" and "puppetmaster", which need
-	# to be owned by the "puppet" user
-	install --owner puppet --group puppet --directory \
-		/var/lib/puppet/state
-	install --owner puppet --group puppet --directory \
-		/var/lib/puppet/reports
-	
-	# Handle 
-	if [ -d /etc/puppet/ssl ] && [ ! -e /var/lib/puppet/ssl ] && grep -q 'ssldir=/var/lib/puppet/ssl' /etc/puppet/puppet.conf; then
-		mv /etc/puppet/ssl /var/lib/puppet/ssl
-	fi
-fi
-
-#DEBHELPER#

data/ext/debian/puppet-common.postrm

@@ -1,33 +0,0 @@
-#!/bin/sh -e
-
-case "$1" in
-    purge)
-		# Remove puppetd.conf (used in > 0.24)
-		rm -f /etc/puppet/puppetd.conf
-
-		# Remove puppet state directory created by the postinst script.
-		# This directory can be removed without causing harm
-		# according to upstream documentation.
-		rm -rf /var/lib/puppet/state
-		rm -rf /var/lib/puppet/reports
-		if [ -d /var/lib/puppet ]; then
-			rmdir --ignore-fail-on-non-empty /var/lib/puppet
-		fi
-
-		# Remove puppet log files
-		rm -rf /var/log/puppet/
-		;;
-    remove|upgrade|failed-upgrade|abort-install|abort-upgrade|disappear)
-
-
-        ;;
-
-    *)
-        echo "postrm called with unknown argument \`$1'" >&2
-        exit 1
-
-esac
-
-#DEBHELPER#
-
-exit 0

data/ext/debian/puppet-el.dirs

@@ -1 +0,0 @@
-usr/share/emacs/site-lisp

data/ext/debian/puppet-el.emacsen-install

@@ -1,25 +0,0 @@
-#!/bin/sh
-#
-# emacsen install script for the Debian GNU/Linux puppet-el package
-
-FLAVOR=$1
-PACKAGE=puppet-el
-
-ELDIR=/usr/share/emacs/site-lisp/
-ELCDIR=/usr/share/${FLAVOR}/site-lisp/${PACKAGE}
-ELFILE="puppet-mode.el"
-FLAGS="-batch -no-site-file -l path.el -f batch-byte-compile"
-
-if [ ${FLAVOR} != emacs ]; then
-  echo install/${PACKAGE}: Byte-compiling for ${FLAVOR}
-
-  install -m 755 -d ${ELCDIR}
-  cd ${ELDIR}
-  cp ${ELFILE} ${ELCDIR}
-  cd ${ELCDIR}
-  cat << EOF > path.el
-(setq load-path (cons "." load-path) byte-compile-warnings nil)
-EOF
-  ${FLAVOR} ${FLAGS} ${ELFILE}
-  rm -f ${ELFILE} path.el
-fi

data/ext/debian/puppet-el.emacsen-remove

@@ -1,11 +0,0 @@
-#!/bin/sh
-set -e
-
-FLAVOR=$1
-PACKAGE=puppet-el
-ELCFILE=puppet-mode.elc
-
-if [ ${FLAVOR} != emacs ]; then
-  echo remove/${PACKAGE}: Purging byte-compiled files for ${FLAVOR}
-  rm -f /usr/share/${FLAVOR}/site-lisp/${ELCFILE}
-fi

data/ext/debian/puppet-el.emacsen-startup

@@ -1,9 +0,0 @@
-;; -*-emacs-lisp-*-
-;;
-;; Emacs startup file for the Debian GNU/Linux puppet-el package
-
-(autoload 'puppet-mode "puppet-mode" "Major mode for editing puppet manifests")
-
-(add-to-list 'auto-mode-alist '("\\.pp$" . puppet-mode))
-
-

data/ext/debian/puppet-el.install

@@ -1 +0,0 @@
-ext/emacs/puppet-mode.el usr/share/emacs/site-lisp

data/ext/debian/puppet-testsuite.install

@@ -1,2 +0,0 @@
-spec/* /usr/share/puppet-testsuite/spec
-Rakefile /usr/share/puppet-testsuite/

data/ext/debian/puppet-testsuite.lintian-overrides

@@ -1,4 +0,0 @@
-# Upstream distributes it like this
-puppet-testsuite binary: executable-not-elf-or-script
-puppet-testsuite binary: script-not-executable
-puppet-testsuite binary: unusual-interpreter

data/ext/debian/puppet.lintian-overrides

@@ -1,3 +0,0 @@
-# Man pages are automatically generated, not much to do here
-puppet binary: manpage-has-bad-whatis-entry
-puppet binary: manpage-has-errors-from-man

data/ext/debian/puppet.logrotate

@@ -1,20 +0,0 @@
-/var/log/puppetlabs/masterhttp.log /var/log/puppet/masterhttp.log {
-  compress
-  rotate 4
-  missingok
-  notifempty
-  nocreate
-}
-
-/var/log/puppetlabs/puppetd.log /var/log/puppet/puppetd.log {
-  compress
-  rotate 4
-  missingok
-  notifempty
-  nocreate
-  sharedscripts
-  postrotate
-   ([ -x /etc/init.d/puppet ] && /etc/init.d/puppet reload > /dev/null 2>&1) ||
-    ([ -x /usr/bin/systemctl ] && /usr/bin/systemctl kill -s USR2 puppet.service > /dev/null 2>&1) || true
-  endscript
-}

data/ext/debian/puppet.postinst

@@ -1,20 +0,0 @@
-#!/bin/sh
-
-set -e
-
-# Remove renamed configuration files which are now handled by other
-# packages
-if dpkg-maintscript-helper supports rm_conffile 2>/dev/null; then
-
-    dpkg-maintscript-helper rm_conffile \
-        /etc/logrotate.d/puppet 2.6.4-2 puppet -- "$@"
-
-    dpkg-maintscript-helper rm_conffile \
-        /etc/logcheck/ignore.d.server/puppet 2.6.4-2 puppet -- "$@"
-
-    dpkg-maintscript-helper rm_conffile \
-        /etc/emacs/site-start.d/50puppet-mode-init.el 2.6.4-2 puppet -- "$@"
-
-fi
-
-#DEBHELPER#

data/ext/debian/puppet.postrm

@@ -1,20 +0,0 @@
-#!/bin/sh
-
-set -e
-
-# Remove renamed configuration files which are now handled by other
-# packages
-if dpkg-maintscript-helper supports rm_conffile 2>/dev/null; then
-
-    dpkg-maintscript-helper rm_conffile \
-        /etc/logrotate.d/puppet 2.6.4-2 puppet -- "$@"
-
-    dpkg-maintscript-helper rm_conffile \
-        /etc/logcheck/ignore.d.server/puppet 2.6.4-2 puppet -- "$@"
-
-    dpkg-maintscript-helper rm_conffile \
-        /etc/emacs/site-start.d/50puppet-mode-init.el 2.6.4-2 puppet -- "$@"
-
-fi
-
-#DEBHELPER#

data/ext/debian/puppet.preinst

@@ -1,20 +0,0 @@
-#!/bin/sh
-
-set -e
-
-# Remove renamed configuration files which are now handled by other
-# packages
-if dpkg-maintscript-helper supports rm_conffile 2>/dev/null; then
-
-    dpkg-maintscript-helper rm_conffile \
-        /etc/logrotate.d/puppet 2.6.4-2 puppet -- "$@"
-
-    dpkg-maintscript-helper rm_conffile \
-        /etc/logcheck/ignore.d.server/puppet 2.6.4-2 puppet -- "$@"
-
-    dpkg-maintscript-helper rm_conffile \
-        /etc/emacs/site-start.d/50puppet-mode-init.el 2.6.4-2 puppet -- "$@"
-
-fi
-
-#DEBHELPER#

data/ext/debian/puppetmaster-common.install

@@ -1,2 +0,0 @@
-debian/fileserver.conf etc/puppet
-conf/auth.conf etc/puppet

data/ext/debian/puppetmaster-common.manpages

@@ -1,2 +0,0 @@
-man/man8/puppet-ca.8
-man/man8/puppet-master.8

data/ext/debian/puppetmaster-common.postinst

@@ -1,6 +0,0 @@
-#!/bin/sh
-
-set -e
-
-rm -f /etc/init.d/puppetqd
-rm -f /etc/default/puppetqd

data/ext/debian/puppetmaster-passenger.dirs

@@ -1,4 +0,0 @@
-usr/share/puppet/rack/puppetmasterd
-usr/share/puppet/rack/puppetmasterd/public
-usr/share/puppet/rack/puppetmasterd/tmp
-usr/share/puppetmaster-passenger/

data/ext/debian/puppetmaster-passenger.postinst

@@ -1,162 +0,0 @@
-#!/bin/sh
-
-set -e
-
-sitename="puppetmaster"
-apache2_version="$(dpkg-query --showformat='${Version}\n' --show apache2)"
-
-# The debian provided a2* utils in Apache 2.4 uses "site name" as
-# argument, while the version in Apache 2.2 uses "file name".
-#
-# For added fun, the Apache 2.4 version requires files to have a
-# ".conf" suffix, but this must be stripped when using it as argument
-# for the a2* utilities.
-#
-# This will end in tears…
-# Can be removed when we only support apache >= 2.4
-apache2_puppetmaster_sitename() {
-    if dpkg --compare-versions "$apache2_version" gt "2.4~"; then
-        echo "${sitename}.conf"
-    else
-        echo "${sitename}"
-    fi
-}
-
-# Can be removed when we only support apache >= 2.4
-restart_apache2() {
-    if [ -x "/etc/init.d/apache2" ]; then
-        # Seems that a restart is needed. reload breaks ssl apparently.
-        if [ -x "`which invoke-rc.d 2>/dev/null`" ]; then
-            invoke-rc.d apache2 restart || exit $?
-        else
-            /etc/init.d/apache2 restart || exit $?
-        fi
-    fi
-}
-
-# We may need to update the passenger directives in the apache vhost because
-# RailsAutoDetect and RackAutoDetect were removed in passenger 4.0.0
-#       see http://www.modrails.com/documentation/Users%20guide%20Apache.html#_railsautodetect_rackautodetect_and_wsgiautodetect
-update_vhost_for_passenger4() {
-    # Get passenger version from dpkg.
-    # This will end in tears…
-    passenger_version="$(dpkg-query --showformat='${Version}\n' --show libapache2-mod-passenger)"
-    if dpkg --compare-versions "$passenger_version" gt "4.0~"; then
-        sed -r -i \
-            -e "/RailsAutoDetect/d" \
-            -e "/RackAutoDetect/d" \
-            $tempfile
-    fi
-}
-
-# In Apache 2.2, if either the SSLCARevocationFile or SSLCARevocationPath
-# directives were specified then the specified file(s) would be checked when
-# establishing an SSL connection. Apache 2.4+ the SSLCARevocationCheck directive
-# was added to control how CRLs were checked when verifying a connection and had
-# a default value of none.  This means that Apache defaults to ignoring CRLs even
-# if paths are specified to CRL files.
-#
-# This function automatically uncomments the SSLCARevocationCheck directive when
-# the currently installed version of Apache is 2.4.
-update_vhost_for_apache24() {
-    if dpkg --compare-versions "$apache2_version" gt "2.4~"; then
-        sed -r -i \
-            -e "/# SSLCARevocationCheck/s/# //" \
-        $tempfile
-    fi
-}
-
-# Update an existing vhost definition with the SSLCARevocationCheck directive
-# on Apache 2.4+. This scans an existing vhost file for the SSLCARevocationCheck
-# directive and adds it to the file after the SSLCARevocationFile directive.
-#
-# See https://tickets.puppetlabs.com/browse/PUP-2533 for more information.
-update_vhost_for_apache24_upgrade() {
-    APACHE2_SITE_FILE="/etc/apache2/sites-available/$(apache2_puppetmaster_sitename)"
-
-    if dpkg --compare-versions "$apache2_version" gt "2.4~"; then
-        if ! grep -q "^[[:space:]]*SSLCARevocationCheck" $APACHE2_SITE_FILE ; then
-            tempfile=$(mktemp)
-            sed -r \
-                -e "/SSLCARevocationFile/a\\        SSLCARevocationCheck chain" \
-                $APACHE2_SITE_FILE > $tempfile
-            mv $tempfile $APACHE2_SITE_FILE
-        fi
-    fi
-}
-
-
-create_initial_puppetmaster_vhost() {
-    # Check that puppet master --configprint works properly
-    # If it doesn't the following steps to update the vhost will produce a very unhelpful and broken vhost
-    if [ $(puppet master --configprint all 2>&1 | grep "Could not parse" | wc -l) != "0" ]; then
-        echo "Puppet config print not working properly, exiting"
-        exit 1
-    fi
-
-    # Initialize puppetmaster CA and generate the master certificate
-    # only if the host doesn't already have any puppet ssl certificate.
-    # The ssl key and cert need to be available (eg generated) before
-    # apache2 is configured and started since apache2 ssl configuration
-    # uses the puppetmaster ssl files.
-    if [ ! -e "$(puppet master --configprint hostcert)" ]; then
-        puppet cert generate $(puppet master --configprint certname)
-    fi
-
-    # Setup apache2 configuration files
-    APACHE2_SITE_FILE="/etc/apache2/sites-available/$(apache2_puppetmaster_sitename)"
-    if  [ ! -e "${APACHE2_SITE_FILE}" ]; then
-        tempfile=$(mktemp)
-        sed -r \
-            -e "s|(SSLCertificateFile\s+).+$|\1$(puppet master --configprint hostcert)|" \
-            -e "s|(SSLCertificateKeyFile\s+).+$|\1$(puppet master --configprint hostprivkey)|" \
-            -e "s|(SSLCACertificateFile\s+).+$|\1$(puppet master --configprint localcacert)|" \
-            -e "s|(SSLCertificateChainFile\s+).+$|\1$(puppet master --configprint localcacert)|" \
-            -e "s|(SSLCARevocationFile\s+).+$|\1$(puppet master --configprint cacrl)|" \
-            -e "s|DocumentRoot /etc/puppet/rack/public|DocumentRoot /usr/share/puppet/rack/puppetmasterd/public|" \
-            -e "s|<Directory /etc/puppet/rack/>|<Directory /usr/share/puppet/rack/puppetmasterd/>|" \
-            /usr/share/puppetmaster-passenger/apache2.site.conf.tmpl > $tempfile
-        update_vhost_for_passenger4
-        update_vhost_for_apache24
-        mv $tempfile "${APACHE2_SITE_FILE}"
-    fi
-
-    # Enable needed modules
-    a2enmod ssl
-    a2enmod headers
-    a2ensite ${sitename}
-    restart_apache2
-}
-
-update_existing_puppetmaster_vhost() {
-    if dpkg --compare-versions "${1}" lt "3.6.2~"; then
-        update_vhost_for_apache24_upgrade
-    fi
-}
-
-if [ "$1" = "configure" ]; then
-
-    # Change the owner of the rack config.ru to be the puppet user
-    # because passenger will suid to that user, see #577366
-    if ! dpkg-statoverride --list /usr/share/puppet/rack/puppetmasterd/config.ru >/dev/null 2>&1
-    then
-        dpkg-statoverride --update --add puppet puppet 0644 /usr/share/puppet/rack/puppetmasterd/config.ru
-    fi
-
-    # Setup puppetmaster passenger vhost
-    if [ "$2" = "" ]; then
-        create_initial_puppetmaster_vhost
-    else
-        update_existing_puppetmaster_vhost $2
-    fi
-
-    # Fix CRL file on upgrade to use the CA crl file instead of the host crl.
-    if dpkg --compare-versions "$2" lt-nl "2.6.1-1"; then
-        if [ -e /etc/apache2/sites-available/puppetmaster ]; then
-            sed -r -i 's|SSLCARevocationFile[[:space:]]+/var/lib/puppet/ssl/crl.pem$|SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem|' /etc/apache2/sites-available/puppetmaster
-            restart_apache2
-        fi
-    fi
-fi
-
-#DEBHELPER#