Just moved from the 0.1.2 to 0.2.0 release and am now seeing errors when trying to create a working copy; svnlook is consistently throwing an error when checking to see if the working copy already exists:

Error: /Vcsrepo[/path/to/working/copy]: Could not evaluate: Execution of '/usr/bin/svnlook uuid /path/to/working/copy' returned 1: svnlook: Can't open file '/path/to/working/copy/format': No such file or directory

The errors are originating with the following method defined in the svn provider:

  def working_copy_exists?
    if File.directory?(@resource.value(:path))
      # :path is an svn checkout
      return true if File.directory?(File.join(@resource.value(:path), '.svn'))
      # :path is an svn server
      return true if svnlook('uuid', @resource.value(:path))
    end
    false
  end

Does svnlook's behavior vary across platforms? I'm running this on the puppet labs ubuntu 12.04 LTS.

We have constant issues with the repo getting into a detached state somehow and receive these error messages:

err: Vcsrepo[-------]: Could not evaluate: Execution of '/bin/su tomcat -c git rev-parse origin/(detached from 84bfb1f)' returned 1: bash: -c: line 0: syntax error near unexpected token `('
bash: -c: line 0: `git rev-parse origin/(detached from 84bfb1f)'

I have the vcsrepo configured as such:

  vcsrepo { "$target":
    ensure => latest,
    provider => git,
    source => 'ssh://git@*************/deployer.git',
    user => 'tomcat',
    revision => 'master',
  }

Describe the Bug

Trying to copy a repo via HTTPS where an authentication to the repository is required fails.
The error message:

Error: Execution of 'git clone --branch Preview https://xxxxxx/xxxxxxx/_git/xxx /var/www/' returned 128: Cloning into '/var/www/'...
fatal: could not read Username for 'https://xxxxxx': No such device or address

Expected Behavior

Define base_auth_(username|password) and git should be able to fetch the repository.

Steps to Reproduce

Steps to reproduce the behavior:

1. Try to load a git repository over an HTTPS, that is protected via user authentication.
2. Provide both base_auth_(username|password).
3. Get the error.

Environment

• vcsrepo 5.2.0
• Puppet 7.18.0
• Debian 11
• Azure Devops Server (in a git environment)

Additional Context

• Similar to #97, but couldn't be resolved by providing a .netrc file to the user set via the "user" variable.
• Providing username and password by adding them in the https://username:[email protected] syntax does not solve the issue.

Describe the Bug

Since the release of v5.2.0, when using the vcsrepo module on Windows customer gets the error "Could not evaluate: undefined method `dir' for nil:NilClass" on every run. Problem does not occur with v5.1.0 of this module.

Expected Behavior

Repository should be handled without error

Steps to Reproduce

Error is consistent using module as follows

class profile::vcsrepotest {
  vcsrepo { "C:/admkrdev.ide/Jobs":
    ensure   => latest,
    provider => git,
    source   => '[email protected]:aaronhilton0/control-repo.git',
    identity => 'C:/keys/id_rsa',
  }
}

Environment

• Windows Server 2019
• Puppet Enterprise 2021.5

Additional Context

Currently affecting customer on ticket 48952

Describe the Bug

I am trying to clone/pull repository with custom user + custom ssh identity, but it returns

Error: Execution of 'git clone [email protected]:root/zones.git /var/lib/powerdns/zones.master.d' returned 128: Cloning into '/var/lib/powerdns/zones.master.d'...
Host key verification failed.
fatal: Could not read from remote repository.

But if I try same with default user (root) it works fine, checked permissions, custom user can access id_rsa file. I suspect when custom user used, identity parameter is ignored because when I use non existing key file with default user it returns "Warning: Identity file /opt/id_rsa not accessible: No such file or directory." but with custom user it does not return any warning.

After updating to the newer vcsrepo, test runs show an interesting new message about svn and remotes. Things appear to work fine, however.

$ cat modules/vcsrepo/Modulefile 
name 'puppetlabs/vcsrepo'
version '0.1.1'

# puppet agent --test --logdest=/dev/null --noop
[snip]
info: Caching catalog for localhost.localdomain
info: /Vcsrepo[reponame]: Provider svn does not support features multiple_remotes; not managing attribute remote
info: Applying configuration version '1234567890'

Hello,

I have the following configuration:

vcsrepo { "$directory" :
    ensure => latest,
    provider => git,
    source => "[email protected]:example/project.git",
    revision => "$revision",
    user => "$user",
    require => Class['::nginx'],
}

And when I run puppet agent on my node, I get this error:

Error: Could not retrieve catalog from remote server: Error 400 on SERVER: Invalid parameter provider at /var/lib/puppet/modules/project/manifests/init.pp:21 on node mynode.example.com

This error is repeated in the puppetmaster's log as well.

I've found a few old mentions of similar issues (http://projects.puppetlabs.com/issues/17814) but I can't find any definitive solutions.

Based on the hints in the above link, I restarted the puppet master, but that didn't solve the problem. I did verify that the git.rb file is in the puppet repository.

Both the master and slave are running Puppet 3.4.2

Any help would be appreciated.

The latest release of this module in forge.puppetlabs.com is over a year old. There has been quite a bit of improvement to the module since then, for instance support for #latest? for the Git provider.

Could you release a new version to forge.puppetlabs.com, please? That way it is easier to get an up to date version by using the puppet-module tool.

Hey,

As there's a ton of commits and work that's gone into this recently, do you think we're ready for a release @sodabrew?

When attempting to change the checked out branch of an existing repo, the git provider fails as git rev-parse <ref> fails on branch names that have not been fetched into the local repo.

eg.

Error: /Stage[main]/Portal::Source/Vcsrepo[/www/rails/portal]: Could not evaluate: Execution of '/bin/su root -c git rev-parse develop' returned 128: fatal: ambiguous argument 'develop': unknown revision or path not in the working tree.
Use '--' to separate paths from revisions
develop

Describe the Bug

I am installing the vcsrepo module via r10k in a masterless machine. Whenever I install the repo, during compilaton but before the puppet code is run, I get this error:

# puppet apply /etc/puppet Error: Evaluation Error: Error while evaluating a Resource Statement, Duplicate declaration: Vcsrepo[/tmp/vcstest/p4_client_root] is already declared at (file: /etc/puppet/modules/vcsrepo/examples/p4/create_client.pp, line: 1); cannot redeclare (file: /etc/puppet/modules/vcsrepo/examples/p4/delete_client.pp, line: 1) (file: /etc/puppet/modules/vcsrepo/examples/p4/delete_client.pp, line: 1, column: 1) on node ip-10-251-0-196.ec2.internal

I noticed that the issue is the "examples/p4" folder which declares the

vcsrepo { '/tmp/vcstest/p4_client_root': twice, which is causing the error.

Here's the reference to the code in question:

https://github.com/puppetlabs/puppetlabs-vcsrepo/blob/main/examples/p4/create_client.pp
https://github.com/puppetlabs/puppetlabs-vcsrepo/blob/main/examples/p4/delete_client.pp

Expected Behavior

The module should install and run without issue since this is just a module installation from source

Steps to Reproduce

Steps to reproduce the behavior:

1. Add mod 'puppetlabs-vcsrepo', '5.2.0' to the Puppetfile
2. Run r10k puppetfile install --puppetfile /etc/puppet/Puppetfile --moduledir /etc/puppet/modules to install the module
3. Run puppet apply /etc/puppet

Environment

• Version 5.5.22
• Debian 11 (bullseye)

Additional Context

I have commented out all invocations of vcsrepo in my code and have isolated the issue to the module install

Hello,

Please consider using RSpec-2 in the Rakefile.

Thanks!

-mz

Describe the Bug

Upgrading vcsrepo from 4.0.0 to 5.0.0 results in the identity attribute not being used on EL7. Looks to be related to this issue https://tickets.puppetlabs.com/browse/MODULES-11111.

Expected Behavior

identity should be usable on all OSes supported by the module

Steps to Reproduce

Steps to reproduce the behavior:
Install puppetlabs-vcsrepo 5.0.0

Use identity in a vcsrepo declaration:

  vcsrepo { '/tmp/repository':
    ensure   => present,
    provider => git,
    source   => 'git@host:repo.git',
    identity => '/root/.ssh/id_key',
  }

Compare results on different machines:

Centos7 (git version 1.8.3.1)

Cloning into '/tmp/repository'...
Host key verification failed.
fatal: Could not read from remote repository.
Please make sure you have the correct access rights

Ubuntu 20.04 (git version 2.25.1)

�[0;36mDebug: Executing: '/usr/bin/git config -l'�[0m
�[0;36mDebug: Executing: '/usr/bin/git submodule update --init --recursive'�[0m
�[mNotice: /Stage[main]/Main/Node[nodel]/Vcsrepo[/tmp/repository]/ensure: created�[0m

Environment

• vcsrepo version 5.0.0
• Platform EL7

Additional Context

The issue is not reproducible with vcsrepo v 4.0.0

Use Case

GPG signatures on git commits are a great way to ensure the code being checked out hasn't been tampered with. This is particularly true for automated checkouts.

Describe the Solution You Would Like

It would be nice for certain repos to be able to set --verify-signatures so that only correctly signed commit can be checked out.

Describe Alternatives You've Considered

There doesn't seem to be a great way to work around this....

Additional Context

https://git-scm.com/book/en/v2/Git-Tools-Signing-Your-Work

Describe the Bug

I use the svn provider to check out a repository. The password passed via basic_auth_password contains a "(" character.

Expected Behavior

The repository gets checked out correctly.

Steps to Reproduce

Steps to reproduce the behavior:
Configure a vcsrepo like this:

  vcsrepo { "/checkout/folder":
    ensure              => latest,
    provider            => svn,
    source              => <YourURL>,
    basic_auth_username => user,
    basic_auth_password => "password(fails)",
  }

The provider tries to call svn for getting the latest and the current revision. Since each call fails, the variables contain nil. The user will see the following misleading error on the console:
/Stage[main]/Vcsrepo[/checkout/folder] | Could not evaluate: undefined method >=' for nil:NilClass`

Environment

• Version 5.0.0
• Platform 20.04

Error Analysis

The error shown above stems from the latest? function in line 79 of svn.rb. The issue MODULES-10659 brought me on track, since it has a similar background. It is a follow up issue as the previous calls of latest and revision returned nil, since the svn commands fail. It took me a while to find the issue, but it seems that ruby in the background just opens a shell to execute its commands. When you add :combine => true for the svn_wrapper you will register the error from svn which gets consumed by the ruby code otherwise:

Error: /Vcsrepo[/checkout/folder]: Could not evaluate: Execution of 'svn --non-interactive --username user --password password(fails) --no-auth-cache info' returned 2: sh: 1: Syntax
error: "(" unexpected

You will get the same error trying to execute the command on the shell due to shell expansion.

Workaround

The issue can be circumvented by just adding the quotes when passing the text from puppet like this:
basic_auth_password => "\"password(fails)\"",
Another possibly not so intelligent workaround is to downgrade to version 2.2.0, which obviously used another mechanism to call svn and does not show the error. I was unable to reproduce why it works with that version since I was unable to find the origin of the svn function used back then instead of Puppet::Util::Execution.execute, which is used nowadays.

Suggested Fix

Escape the password when pushing it to the args list in the buildargs function.

It would be nice to have the option whether or not to log output, like the Exec resource type does. That avoids passwords being logged in puppet reports/logging/etc.

We are seeing repos that are supposed to be the latest of a given branch@origin going into a detatched head state. When first doing a puppet run the checkout is perfect. The correct branch is checked out and all is well.

However if there are any commits to origin/ then after the next puppet-run the repo is left without a branch set. If we manually do

git checkout <BRANCH>
git merge --ff-only origin/<BRANCH>

Then the repo is again back to where it should be.

The resources are defined like so:

vcsrepo { "$checkoutroot/testing":
  provider => git,
  ensure   => latest,
  source   => '[email protected]:foobar/<REPO>.git',
  identity => "${ssh_priv_key}",
  revision => '<BRANCH>',
  force    => true,
}

Substitute for a branch that exists at origin. The branch at origin that we in our case want to 'lock' to is 'develop', however I do not believe that the name of this matters. Having "force => true" in or not does not affect outcome.

We are using vcsrepo at 8356fc9, latest on master at the moment.

The vcsrepo module does not install version control software.The documentation should cover that the software should be installed prior to vcsrepo.

(I use our own git module to install git, but use vcsrepo to handle repositories)

Describe the Bug

When running acceptance tests, Debian 9 is timing out and throwing the following error empty service_name.

Expected Behavior

service_name to be set and acceptance tests to run on the machine.

Steps to Reproduce

Steps to reproduce the behavior:

1. Go to https://github.com/puppetlabs/puppetlabs-vcsrepo/runs/7324094720?check_suite_focus=true
2. Confirm test suite times out and throws empty service_name at the acceptance test stage.

Environment

• Version puppet6-nightly, puppet7-nightly
• Platform Debian9

Additional Context

N/A

I would like to clone a git repo, and "checkout" a tag as a named branch. I can do this manually with exec, but I'd prefer to use vcsrepo if possible.

Does vcsrepo currently support this (e.g., with revision => "<tag>")?

err: /Stage[main]//Vcsrepo[/home/p2pool/p2pool]/ensure: change from present to latest failed: Execution of '/bin/su p2pool -c git checkout -b a32b6efd20124352d7a74047f0d95283b8e5c09c --track origin/a32b6efd20124352d7a74047f0d95283b8e5c09c' returned 128: fatal: git checkout: updating paths is incompatible with switching branches.

Did you intend to checkout 'origin/a32b6efd20124352d7a74047f0d95283b8e5c09c' which can not be resolved as commit?

If you have a private repository with submodules and a deployment key at Github, clone using puppet will fail when iterating over the submodules, as the same 'identity' will be used for all the repositories you reference in .gitmodules. Possibly related to f2806a1 .

Describe the Bug

After applying the patch for git on both ubuntu 18.04 and ubuntu 20.04 machines, puppet runs now fail.

change from 'absent' to 'latest' failed: Path /destination/path exists and is not the desired repository. (corrective)

Expected Behavior

Successful puppet run by cloning the desired repo to the desired location

Steps to Reproduce

update git to 1:2.25.1-1ubuntu3.3 on 20.04 and rerun puppet.

Environment

• Version v4.0.0
• Platform Ubuntu 20.04, and Ubuntu 18.04

I tried to clone a github repo from a brand new server; when it failed, I ssh [email protected] and shown me the initial, 'host unknown' banner; after I accepted the remote key, I was able to puppet apply without trouble.

Thanks!

The bzr backend never calls set_owner, so files are owned by root if "owner=..." given

I'm considering adding ensure => mirror for keeping bare repositories up-to-date.

1. is the :mirror the best name for it?
2. does anyone have any objections for such feature?

I have a checkout and whenever a file changes a command should be executed. Unfortunately the command is executed everytime, because vcsrepo notifies the exec regardless of whether changes occurred or not.

Example:

vcsrepo { "${app_root}/checkout":
    ensure   => present,
    provider => 'git',
    source   => $source,
    user     => $user,
    revision => $revision,
    require  => File[$app_root],
  }
exec { 'test-vcsrepo':
   command     => 'echo "========\n\n\n\nTHIS SHOULD NOT RUN \n\n\n\n\n======="; exit 1;',
   refreshonly => true,
   subscribe   => Vcsrepo["${app_root}/checkout"],
   user        => 'deployment',
 }

Each vcsrepo parameter stays the same. It executes all checks each puppet agent run, but also notifies test-vcsrepo each run. I would love to see it behave like file or similar resources, that only notify on change.

Right now, if you specify ensure => latest and revision => origin/integration, for example, it will always trigger a refresh notifying the repo has changed.

This is undesirable behavior when other scripts are triggered to run when your reop has updated.

Describe the Bug

Execution of 'git config --global --unset safe.directory /tmp/test' returned 5

Expected Behavior

No error

Environment

• Vcsrepo 5.2.0
• Git 2.25.1
• Ubuntu 20.04

Additional Context

The new functionality regarding git safe directories (#549) inside the git provider tries to always unset the directory, even when it has not been set before. But the git config command will return 5 when that occurs:

https://git-scm.com/docs/git-config
This command will fail with non-zero status upon error. Some exit codes are: ... you try to unset an option which does not exist (ret=5),

I upgraded this module to 5.2.0 on a test puppet server and now a puppet run on the server is returning this:

Error: Facter: error while resolving custom facts in /opt/puppetlabs/puppet/cache/lib/facter/vcsrepo_svn_ver.rb: /opt/puppetlabs/puppet/cache/lib/facter/vcsrepo_svn_ver.rb:15: syntax error, unexpected keyword_rescue, expecting keyword_end
  rescue StandardError
        ^
/opt/puppetlabs/puppet/cache/lib/facter/vcsrepo_svn_ver.rb:18: syntax error, unexpected keyword_end, expecting end-of-input

I did restart the puppetserver service before, just to make sure.

The puppet nodes that use vcsrepo have more errors, but probably the root cause is the error above. This is on an Ubuntu 18.04 puppet master with packages from puppetlabs.

Describe the Bug

Svn provider performs a string comparison against integer revisions resulting in incorrectly saying it is as the latest revision when it is not. eg. revision 99 > 100

Expected Behavior

Version 100 should be > 99 resulting in an update to latest.

Steps to Reproduce

  vcsrepo { 'my svn repo':
    ensure              => latest,
    path                => '/opt/mysvnrepo',
    provider            => svn,
    source              => 'https://subversion.domain.com/svn/myrepo',
    basic_auth_username => 'myuser',
    basic_auth_password => Sensitive('mypass'),
  }

svn info | grep '^Revision'
Revision: 99

Latest revision in svn repo is >= 100

Run puppet - no change.

Environment

• Version vcsrepo 5.0.0
• Platform - RedHat 7

Additional Context

https://github.com/puppetlabs/puppetlabs-vcsrepo/blob/main/lib/puppet/provider/vcsrepo/svn.rb#L81
should simply use the to_i
(revision.to_i >= latest.to_i) && (@resource.value(:source) == source)

When checking out "latest" revision with provider cvs, I get the an error. My manifest looks like:

vcsrepo { '/usr/local/share/test':
ensure => 'latest',
provider => 'cvs',
source => ':extssh:cvstransfer@cvsserver:/path/to/repo',
module => [ 'test1', 'test2', 'test3' ],
#module => 'test1',
}

puppet outputs:
info: Applying configuration version '1384163061'
err: /Vcsrepo[/usr/local/share/test]: Could not evaluate: undefined method `strip' for nil:NilClass
notice: Finished catalog run in 40.31 seconds

It's the same whether the module is a string or an array.

I'm using ssh forwarding in order to clone private repos in Vagrant using the host's SSH keys. For some reason, my vcsrepo steps were failing until I wrote an exec { ... 'git -T [email protected] -o StrictHostKeyChecking=no; echo Success' ... } step as a requirement for my vcsrepo steps in my Puppet script.

Is there a way for Puppet users to give command line flags to the git command that vcsrepo builds?

In the future, could vcsrepo automatically accept server keys?

At least the svn provider does not deal with a changing source attribute at all (for example when the server is moving or the repository URL should point to a different branch). It still points out the old repository when it has already been checked out.

The corresponding command is "svn switch OLDURL NEWURL".

We use VCSrepo on servers, and would like to have the ability to check them out with a --depth 1.

Could we add a options hash, or something?

Or just add support directly to the git checkout. It doesn't look like there's a good way to add a single parameter to one VCS without adding it to the others, though..

This subversion repository revision:

[root@host somedir]# svn info
Path: .
URL: http://svn/someapp/trunk
Repository Root: http://svn/someapp
Repository UUID: 3086d4a2-aef2-4587-acb0-e7a012cffd39
Revision: 480863
Node Kind: directory
Schedule: normal
Last Changed Author: root
Last Changed Rev: 480862
Last Changed Date: 2012-11-12 12:35:48 -0600 (Mon, 12 Nov 2012)

causes this Vcsrepo code to constantly update (over and over)

vcsrepo { '/some/dir':
  ensure              => 'present',
  provider            => 'svn',
  source              => 'http://svn/someapp/trunk',
  revision            => '480863',
}

Mon Nov 26 10:37:49 -0700 2012 /Vcsrepo[/some/dir]/revision (notice): revision changed '480862' to '480863'

The code in lib/puppet/provider/vcsrepo/svn.rb should be changed from svn(*args)[/^Last Changed Rev:\s+(\d+)/m, 1] to svn(*args)[/^Revision:\s+(\d+)/m, 1].

I'm using this module for a development workstation where GithubFlow is the popular form of development. In this case, we have 2 remotes (named: upstream and fork).

I'm happy to work on this, but would like some direction on how the resource definition should look. I was was thinking of the following

vcsrepo { "awesome-project":
  ensure => present,
  path => "/opt/src/awesome-project",
  source => "git://github.com:awesome-project/awesome-project.git",
  remote => "upstream",
  provider => "git",
  remotes => { "fork" => "[email protected]:me/awesome-project.git" },
}

Thoughts?

Hello,

i am using vcsrepo to keep my modules up to date.

    vcsrepo { '/etc/puppet/modules/development':
        ensure   => latest,
        provider => git,
        source   => 'git://example.net/puppet.git',
        revision => 'development',
    }

    vcsrepo { '/etc/puppet/modules/testing':
        ensure   => latest,
        provider => git,
        source   => 'git://example.net/puppet.git',
        revision => 'testing',
    }

    vcsrepo { '/etc/puppet/modules/production':
        ensure   => latest,
        provider => git,
        source   => 'git://example.net/puppet.git',
        revision => 'master',
    }

This works fine, but i am wondering how i can override local changes. For example:

root@puppet:/etc/puppet/modules/production/lvm# git status
# On branch master
nothing to commit (working directory clean)
root@puppet:/etc/puppet/modules/production/lvm# git rm  README.markdown 
rm 'README.markdown'
root@puppet:/etc/puppet/modules/production/lvm# git status
# On branch master
# Changes to be committed:
#   (use "git reset HEAD <file>..." to unstage)
#
#   deleted:    README.markdown
#
root@puppet:/etc/puppet/modules/production/lvm# puppet agent --test
Ignoring --listen on onetime run
Info: Retrieving plugin
Info: Caching catalog for puppet.credativ.lan
Info: Applying configuration version '1354290723'
Finished catalog run in 6.87 seconds
root@puppet:/etc/puppet/modules/production/lvm# git status
# On branch master
# Changes to be committed:
#   (use "git reset HEAD <file>..." to unstage)
#
#   deleted:    README.markdown
#

Off course vcsrepo did not changed anything, because there are no new commits. But it would be great, if vcsrepo could undo the uncommited local changes, because i did not want anyone to mess with my modules directory.

Best regards, Dennis

can't provide git http credentials for pull repository

This is what I get when trying to setup a git repo, branch "release":

    vcsrepo { "$website_path":
        ensure => present,
        provider => git,
        source => $website_repo,
        revision => 'release',
    }

/Stage[main]/Website-profile/Vcsrepo[/var/www/html] (err): Could not evaluate: Execution of '/usr/bin/git rev-parse HEAD' returned 128: fatal: ambiguous argument 'HEAD': unknown revision or path not in the working tree.
Use '--' to separate paths from revisions
HEAD

puppetlabs-vcsrepo (v0.2.0)
git-1.7.1-3.el6_4.1.x86_64
puppet-3.3.2-1.el6.noarch

Describe the Bug

VCSRepo
Module Version: 5.2.0
Puppet Version: 7.12.1
The customer is trying to use the vcsrepo module with the git as the version control system.

Desired Behavior:

Puppet does not recognize changes that were not staged or committed, Git recognizes files that have been modified, added, removed, but have not been staged or committed, but puppet does not seem to recognize this scenario either.

I tried to simulate the customer issue in my lab environment and i am able to reproduce the issue details have been provided in the ticket on what steps i have taken to reproduce.

Expected Behavior

Puppet is also not recognizing changes that were not staged or committed, Git recognizes files that have been modified, added, removed, but have not been staged or committed, but puppet does not seem to recognize this scenario either.

Steps to Reproduce

Steps to reproduce the behavior:

1. Installed the vcsrepo module
2. copied the following code in the site.pp to enable the git

`
node 'testnode-5a3375-0.us-west1-c.c.customer-support-scratchpad.internal' {

 
vcsrepo { '/var/tmp/testrepo':
ensure => present,
provider => git,
source=>'[email protected]:kksubbu72/testcontrol.git',
keep_local_changes => false,
revision=>'StagingEnv',
}

`
3) I was able to clone the repository after running the puppet agent -t
4) I created some arbitrary file in the data folder of the local repo, Git status seems to be recognising the file by the name test.html got modified whereas, the puppet agent run coudn't recognize the same

`
root@0f:/var/tmp/testrepo/data# git status

On branch StagingEnv
Your branch is up to date with 'origin/StagingEnv'.
 
Changes not staged for commit:
(use "git add ..." to update what will be committed)
(use "git checkout -- ..." to discard changes in working directory)
 
modified: test.html
 
no changes added to commit (use "git add" and/or "git commit -a")
root@0f:/var/tmp/testrepo/data# puppet agent -t
Info: Using environment 'production'
Info: Retrieving pluginfacts
Info: Retrieving plugin
Info: Loading facts
Info: Caching catalog for testnode-5a3375-0.us-west1-c.c.customer-support-scratchpad.internal
Info: Applying configuration version 'pe-server-1983ee-0-production-80329c0a2d4'
Notice: Applied catalog in 0.03 seconds
root@0f:/var/tmp/testrepo/data# git status
On branch StagingEnv
Your branch is up to date with 'origin/StagingEnv'.
 
Changes not staged for commit:
(use "git add ..." to update what will be committed)
(use "git checkout -- ..." to discard changes in working directory)
 
modified: test.html
 
no changes added to commit (use "git add" and/or "git commit -a")
`
5) I tried the set the variable keep_local_changes to be false and true and still the puppet agent -t didn't resolve the pending commit in the local repo.

Environment

VCSRepo
Module Version: 5.2.0
Puppet Version: 7.12.1

Additional Context

The customer expects that the module changes were not respected by puppet run.
Please review the changes and suggest if my understanding is correct as well as per the lab reproduction steps shared here.

Describe the Bug

Since 5.1.0 release with Centos 7 hosts, the agent fails after puppet agent is automatically executed from the SystemD service. No issue is spotted when puppet agent is executed manually.

The following message is raised when the bug occurs: Could not evaluate: couldn't find login name -- expanding ~'`

Expected Behavior

Puppet recipes should not fail when used

Steps to Reproduce

1. Let SystemD run puppet agent with VCSRepo 5.1.0
2. Check reports with Puppetboard

Environment

• Version: 5.1.0
• Platform: Centos 7.9 with Puppet Agent 6.27

Additional Context

This is probably the same problem as mentioned here and was addressed in this PR.

TLDR: it looks like Ruby has an issue with Dir.home because it will try expanding ~, but it will fail when HOME is not set, which is the case when running from a SystemD service.

Hi,

If I do a git clone to an existing directory with files , vcsrepo cloning throwing an error says files exists. Is it possible to implement support for git pull in vcsrepo or any work around ?

Config

Checkout the varnish config repo

vcsrepo { "/etc/varnish":
ensure => present,
provider=> git,
source => "git@git:varnishconf.git"
}

Logs

Sep 6 11:33:53 node9 puppet-agent[9055]: (/Stage[main]/Varnish/Vcsrepo[/etc/varnish]/ensure) change from absent to present failed: Execution of '/usr/bin/git
clone git@git:varnishconf.git /etc/varnish' returned 128: fatal: destination path '/etc/varnish' already exists and is not an empty directory.

We are using git for windows and it would be nice if you can include a new attribute under the VcsRepo resource type that indicates where the git.exe is located. For now i have to handle this using environment variable %PATH%.

I'm running into idempotency problems with the following code change to puppet-gitlab

We have revision => '1.7.9' (which is a tag), with ensure => 'present', yet it's being executed on every puppet run:

igalic@git01 ~ % sudo puppet agent -t 
[sudo] password for igalic: 
Info: Retrieving plugin
Info: Loading facts in /var/lib/puppet/lib/facter/facter_dot_d.rb
Info: Loading facts in /var/lib/puppet/lib/facter/pe_version.rb
Info: Loading facts in /var/lib/puppet/lib/facter/concat_basedir.rb
Info: Loading facts in /var/lib/puppet/lib/facter/has_group_libvirtd.rb
Info: Loading facts in /var/lib/puppet/lib/facter/puppet_vardir.rb
Info: Loading facts in /var/lib/puppet/lib/facter/root_home.rb
Info: Loading facts in /var/lib/puppet/lib/facter/has_libvirtd.rb
Info: Caching catalog for git01.esat
Info: Applying configuration version '1386881409'
Notice: /Stage[main]/Gitlab::Package/Vcsrepo[/home/git/gitlab-shell]/revision: revision changed '9e00fb4078ca8a168687f876c1f6a98198a68155' to 'v1.7.9'
Notice: Finished catalog run in 10.65 seconds
sudo puppet agent -t  7,51s user 2,16s system 45% cpu 21,312 total
2 igalic@git01 ~ % sudo puppet agent -t 
Info: Retrieving plugin
Info: Loading facts in /var/lib/puppet/lib/facter/facter_dot_d.rb
Info: Loading facts in /var/lib/puppet/lib/facter/pe_version.rb
Info: Loading facts in /var/lib/puppet/lib/facter/concat_basedir.rb
Info: Loading facts in /var/lib/puppet/lib/facter/has_group_libvirtd.rb
Info: Loading facts in /var/lib/puppet/lib/facter/puppet_vardir.rb
Info: Loading facts in /var/lib/puppet/lib/facter/root_home.rb
Info: Loading facts in /var/lib/puppet/lib/facter/has_libvirtd.rb
Info: Caching catalog for git01.esat
Info: Applying configuration version '1386881409'
Notice: /Stage[main]/Gitlab::Package/Vcsrepo[/home/git/gitlab-shell]/revision: revision changed '9e00fb4078ca8a168687f876c1f6a98198a68155' to 'v1.7.9'
Notice: Finished catalog run in 8.95 seconds
sudo puppet agent -t  7,13s user 2,06s system 61% cpu 14,987 total
2 igalic@git01 ~ % 

Use Case

There is also an optimisation if the cloned repo is at the correct revision: https://github.com/puppetlabs/puppetlabs-vcsrepo/blob/main/lib/puppet/provider/vcsrepo/git.rb#L529-L532 introduced in #380

But this only works with full SHAs.

When the SHA isn't an exact match, a git fetch is run, which can potentially be slow for large repos

Describe the Solution You Would Like

git rev-parse HEAD is used to get the current commit for use in comparison, which returns the full sha.

Could that command change to git rev-parse --short={@resource.value(:revision).length} HEAD for the comparison?

This would then match, and not bother with the rest of the get_revision function.

Describe the Bug

VCSRepo seems to have crashed and has been burning for over 3 months now. There is, approximately, 70 (out of a total of 128 tests) test case errors for every OS that we support. Some outstanding error messages include:

Error: /Stage[main]/Main/Vcsrepo[/tmp/vcsrepo/testrepo_blank_with_revision_repo]/ensure: change from 'absent' to 'present' failed: Could not set 'present' on ensure: No such file or directory @ dir_s_mkdir - /tmp/vcsrepo/testrepo_blank_with_revision_repo (file: /root/manifest_20220516_3080_kmgh6q.pp, line: 1)

and

Error: Could not set 'bare' on ensure: No such file or directory @ dir_s_mkdir - /tmp/vcsrepo/testrepo_bare_repo (file: /root/manifest_20220516_3080_sla9tq.pp, line: 1)

Expected Behavior

Nightly runs should return all OS with a green pass.

Steps to Reproduce

Issue is reproduced every day in our nightly run system. Alternatively, it probably can be replicated locally by running acceptance testing in any OS machine.

Environment

• Puppet version: Both 6 and 7
• Platform: All supported OS

Additional Context

Last correct nightly run seems to be around early October 2021. After that date, we are missing nightly logs for about 1-2 months. The next puppet nightly run is around early February, on what seems to be a pdkSync to remove centOS 6 from supported OS.

puppetlabs-vcsrepo (v0.2.0)

If you clone a repo:

vcsrepo { "/path/to/repo":
    ensure => present,
    provider => git,
    source => "git://example.com/repo.git"
}

And then add a owner:group:

vcsrepo { "/path/to/repo":
    ensure => present,
    provider => git,
    source => "git://example.com/repo.git",
    owner => "someuser",
    group => "someuser",
}

The original ownership of the folder structure remains. It appears that the ownership is only set on the initial creation/clone of the repo.