| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
When Markus reverted changes made by 2890 he reintroduced a
method certificate_matches_key? that then caused failures in
network/xmlrpc/client.rb. I just stubbed that method to return true
since the failing tests weren't trying to test that methods behavior.
Reviewed-by: Markus Roberts
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
deprecation warnings from Rails ActiveSupport
The metaid.rb file came straight from why the lucky stiff's "seeing
metaclasses clearly" article. Rails used this too, but they recently
deprecated the name metaclass in favor of singleton_class to match what
ruby-core decided to do. meta, eigen and singlton class were all
suggested and in the end singleton was agreed upon.
http://redmine.ruby-lang.org/issues/show/1082
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| | |
Ideally it would be nice if the rake task used personalized RSpec
settings on a per user basis, but until someone figures that out color
would be nice
Signed-off-by: Matt Robinson <matt@puppetlabs.com>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
There are several issues with changing the real, effective, and saved group
and user ids in different environments (which methods to call, in what order,
etc). While the code being replaced by this patch appeared to work for Linux,
Solaris, and (with a special case test) Darwin; it was failing under AIX and
may have had edge-case problems under the others.
Ruby back to 1.8.1 has supported a higher level interface that deals with the
problem and captures a broader range of OSes; it's a single call for group and
one for user--the details of rid/eid/svid, etc ordering are handled internally.
Switching to that simplifies our code and should improve/unify our support of
various OSes.
|
| | |
| |
| |
| | |
Adds a --signed option to the --list feature that only displays signed certificates
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| | |
Signed-off-by: Luke Kanies <luke@puppetlabs.com>
Conflicts:
lib/puppet/ssl/host.rb
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The problem was caused by a conflict between our yaml post processing
(which expects the malformed output of the standard library's yaml
class) and zaml (which produces the right output).
This patch implements the minimal footprint solution. It just causes
zaml to always escape \r and \n, so that the fixups won't be triggered
and the results will be properly interpreted by any version of puppet.
For Rowlf, this patch should NOT be used, and instead the fix for #3766
(actually rooting out and removing the vestigial fixups) should be used.
Signed-off-by: Markus Roberts <Markus@reality.com>
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| | |
With RHEL-6 just around the corner, now is also a good time to adjust
the ruby(selinux) conditional to work there. The rundir-perms patch
from tarball is applied rather than including it separately in the SRPM.
It makes for one less file to track in downstream distros. Other minor
changes are pulled in from the Fedora/EPEL spec file.
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
It's really slow and has no actual functionality
any more, since we just remove the catalogs from memory
anyway.
This should be a good speed boost for very little effort.
Signed-off-by: Luke Kanies <luke@puppetlabs.com>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The semantic interaction of tidy/matches and tidy/recurse is tricky to get
right; it only makes sense to use matches with recursion (a fixed path will
either statically match or it won't, no need for a run-time check) but there
was nothing to warn users of this fact. To compound matters, the example
in the matches parameter doc string even made this mistake.
This patch: 1) fixes the doc string; 2) prohibits the use of match without a
value of recurse capable of generating files to match, 3) fixes tests that
were passing for the wrong reason and adds tests on the prohibition added
in (2).
|
| | |
| |
| |
| |
| |
| |
| | |
Puppet::Resource::Catalog's spec
This issue causes other specs to fail, because they depend on the
default terminus being unchanged.
|
| | |
| |
| |
| |
| |
| | |
The output variable in the inner block wasn't visible in the outer block,
and wasn't needed in any case, since the results are returned naturally
if you just leave everything alone.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
This is a targeted fix to the issue of permissions when writing ssh authorized
key files by 1) requiring that an existing users be specified on the resource
and 2) doing the write as that user. It's based on Michael DeHaan's initial
implementation of Luke's idea, but with a number of simplifications (mostly by
testing necessary conditions as early as possible so the code isn't cluttered
up with a lot of checks).
|
| | |
| |
| |
| |
| |
| | |
It's about 10x faster to read the whole file than to read each line and
concatenate them (actually, it's O(n) vs. O(n^2), so the exact speedup
depends on the file size).
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The plussignment operator was constructing the new parameter value by
modifying the param object's value in place (so as to preserve the file
and line information for debugging). However, when multiple resources
are overridden by the same plussignment this would result in all of the
resources sharing the same value (the union of all the prior values and
the new value), which is wrong.
Instead, we need to give each resource its own copy of the value (e.g.,
a copy of the param object), which this patch implements.
Signed-off-by: Markus Roberts <Markus@reality.com>
|
| | |
| |
| |
| | |
Thanks to Benedikt Böhm for the patch
|
| | | |
|
| | |
| |
| |
| |
| | |
We default to logging via syslog so there aren't any puppet logs on many
boxes. Causing a weekly restart shouldn't be necessary.
|
| | | |
|
| | |
| |
| |
| | |
modules
|
| | | |
|
| | |
| |
| |
| |
| | |
As purged is not contained by default within ensureable we need to
extend the parameter to properly deal with purged lists.
|
| | |
| |
| |
| |
| |
| |
| | |
The new to_yaml method doesn't take format arguments (as they are
unnneeded).
Signed-off-by: Markus Roberts <Markus@reality.com>
|
| | | |
|
| | | |
|
| | |
| |
| |
| |
| | |
The "Ensure Parameter" tries to call destroy on the
provider and not delete.
|
| | |
| |
| |
| |
| |
| | |
containing the specified command.
Also adds rspec tests for generate().
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
You need to:
gem install yard
Then run:
rake yard
This will generate a "doc" directory containing YARD documentation.
|
| | | |
|
| | |
| |
| |
| | |
Thanks to Jasper Lievisse Adriaanse for the fix.
|
| | |
| |
| |
| | |
Fix via Brice Figureau
|
| | | |
|
| | |
| |
| |
| | |
puppetd/puppetmasterd
|
| | |
| |
| |
| | |
/var/lib/puppet
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Due to a bug in Ruby 1.8.7 net/http will attempt to close a connection
that wasn't successfully opened (it's nil), first checking to see if the
connection is already close, and thus raising a method missing exception.
This bug causes error messages that are confusing / misleading.
To get around this, we add a closed? method to nil such that a nil (unopened)
connection is always considered closed, allowing the real problem to be
reported.
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This patch reverts the semantically significant parts of #2890 due to the
issues discussed on #3360 (security concerns when used with autosign,
inconsistency between REST & XMLRPC semantics) but leaves the semantically
neutral changes (code cleanup, added tests) in place.
This patch is intended for 0.25.x, but may also be applied as a step in the
resolution of #3450 (refactored #2890, add "remove_certs" flag) in Rolwf.
|
| | |
| |
| |
| | |
dev-lang/php).
|
| | | |
|
| | |
| |
| |
| | |
Thanks for Eric Sorenson for the patch.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This will rarely be used, but it enables even more architectural
flexibility, such as precompiling catalogs and storing them in memcached
or equivalent. With this setup, a single host can probably serve all
catalogs and you would then just have as many compiling hosts as
needed.
Signed-off-by: Luke Kanies <luke@reductivelabs.com>
|
| | |
| |
| |
| | |
Signed-off-by: Luke Kanies <luke@reductivelabs.com>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
This basically allows a sysadmin to control when a client
will compile a new catalog - with this option enabled,
the client will use the cached catalog as long as it has
one, only recompiling when run with the option disabled.
Signed-off-by: Luke Kanies <luke@reductivelabs.com>
|
