fruit-bowl/environments/production/thirdparty/apt/manifests/pin.pp

# @summary Manages Apt pins. Does not trigger an apt-get update run.
#
# @see https://manpages.debian.org/stable/apt/apt_preferences.5.en.html for context on these parameters
#
# @param ensure
#   Specifies whether the pin should exist.
#
# @param explanation
#   Supplies a comment to explain the pin. Default: "${caller_module_name}: ${name}".
#
# @param order
#   Determines the order in which Apt processes the pin file. Files with lower order numbers are loaded first.
#
# @param packages
#   Specifies which package(s) to pin.
#
# @param priority
#   Sets the priority of the package. If multiple versions of a given package are available, `apt-get` installs the one with the highest
#   priority number (subject to dependency constraints).
#
# @param release
#   Tells APT to prefer packages that support the specified release. Typical values include 'stable', 'testing', and 'unstable'.
#
# @param release_version
#   Tells APT to prefer packages that support the specified operating system release version (such as Debian release version 7).
#
# @param component
#   Names the licensing component associated with the packages in the directory tree of the Release file.
#
# @param originator
#   Names the originator of the packages in the directory tree of the Release file.
#
# @param label
#   Names the label of the packages in the directory tree of the Release file.
#
# @param origin
#   The package origin (the hostname part of the package's sources.list entry)
#
# @param version
#   The version of the package
#
# @param codename
#   The codename of the release
#
define apt::pin (
  Enum['file', 'present', 'absent'] $ensure = present,
  Optional[String[1]] $explanation = undef,
  Variant[Integer[0]] $order = 50,
  Variant[String[1], Array[String[1]]] $packages = '*',
  Variant[Integer, String[1]] $priority = 0,
  Optional[String[1]] $release = undef, # a=
  Optional[String[1]] $origin = undef,
  Optional[String[1]] $version = undef,
  Optional[String[1]] $codename = undef, # n=
  Optional[String[1]] $release_version = undef, # v=
  Optional[String[1]] $component = undef, # c=
  Optional[String[1]] $originator = undef, # o=
  Optional[String[1]] $label = undef, # l=
) {
  if $explanation {
    $_explanation = $explanation
  } else {
    if defined('$caller_module_name') { # strict vars check
      $_explanation = "${caller_module_name}: ${name}"
    } else {
      $_explanation = ": ${name}"
    }
  }

  $pin_release_array = [
    $release,
    $codename,
    $release_version,
    $component,
    $originator,
    $label,
  ]
  $pin_release = join($pin_release_array, '')

  # Read the manpage 'apt_preferences(5)', especially the chapter
  # 'The Effect of APT Preferences' to understand the following logic
  # and the difference between specific and general form
  if $packages =~ Array {
    $packages_string = join($packages, ' ')
  } else {
    $packages_string = $packages
  }

  if $packages_string != '*' { # specific form
    if ( $pin_release != '' and ( $origin or $version )) or
    ( $version and ( $pin_release != '' or $origin )) {
      fail('parameters release, origin, and version are mutually exclusive')
    }
  } else { # general form
    if $version {
      fail('parameter version cannot be used in general form')
    }
    if ( $pin_release != '' and $origin ) {
      fail('parameters release and origin are mutually exclusive')
    }
  }

  # According to man 5 apt_preferences:
  # The files have either no or "pref" as filename extension
  # and only contain alphanumeric, hyphen (-), underscore (_) and period
  # (.) characters. Otherwise APT will print a notice that it has ignored a
  # file, unless that file matches a pattern in the
  # Dir::Ignore-Files-Silently configuration list - in which case it will
  # be silently ignored.
  $file_name = regsubst($title, '[^0-9a-z\-_\.]', '_', 'IG')

  $headertmp = epp('apt/_header.epp')

  $pinpreftmp = epp('apt/pin.pref.epp', {
      'name'            => $name,
      'pin_release'     => $pin_release,
      'release'         => $release,
      'codename'        => $codename,
      'release_version' => $release_version,
      'component'       => $component,
      'originator'      => $originator,
      'label'           => $label,
      'version'         => $version,
      'origin'          => $origin,
      'explanation'     => $_explanation,
      'packages_string' => $packages_string,
      'priority'        => $priority,
  })

  apt::setting { "pref-${file_name}":
    ensure        => $ensure,
    priority      => $order,
    content       => "${headertmp}${pinpreftmp}",
    notify_update => false,
  }
}
feat: initial commit 2025-04-01 17:40:03 +00:00			`# @summary Manages Apt pins. Does not trigger an apt-get update run.`
			`#`
			`# @see https://manpages.debian.org/stable/apt/apt_preferences.5.en.html for context on these parameters`
			`#`
			`# @param ensure`
			`# Specifies whether the pin should exist.`
			`#`
			`# @param explanation`
			`# Supplies a comment to explain the pin. Default: "${caller_module_name}: ${name}".`
			`#`
			`# @param order`
			`# Determines the order in which Apt processes the pin file. Files with lower order numbers are loaded first.`
			`#`
			`# @param packages`
			`# Specifies which package(s) to pin.`
			`#`
			`# @param priority`
			# Sets the priority of the package. If multiple versions of a given package are available, `apt-get` installs the one with the highest
			`# priority number (subject to dependency constraints).`
			`#`
			`# @param release`
			`# Tells APT to prefer packages that support the specified release. Typical values include 'stable', 'testing', and 'unstable'.`
			`#`
			`# @param release_version`
			`# Tells APT to prefer packages that support the specified operating system release version (such as Debian release version 7).`
			`#`
			`# @param component`
			`# Names the licensing component associated with the packages in the directory tree of the Release file.`
			`#`
			`# @param originator`
			`# Names the originator of the packages in the directory tree of the Release file.`
			`#`
			`# @param label`
			`# Names the label of the packages in the directory tree of the Release file.`
			`#`
			`# @param origin`
			`# The package origin (the hostname part of the package's sources.list entry)`
			`#`
			`# @param version`
			`# The version of the package`
			`#`
			`# @param codename`
			`# The codename of the release`
			`#`
			`define apt::pin (`
			`Enum['file', 'present', 'absent'] $ensure = present,`
			`Optional[String[1]] $explanation = undef,`
			`Variant[Integer[0]] $order = 50,`
			`Variant[String[1], Array[String[1]]] $packages = '*',`
			`Variant[Integer, String[1]] $priority = 0,`
			`Optional[String[1]] $release = undef, # a=`
			`Optional[String[1]] $origin = undef,`
			`Optional[String[1]] $version = undef,`
			`Optional[String[1]] $codename = undef, # n=`
			`Optional[String[1]] $release_version = undef, # v=`
			`Optional[String[1]] $component = undef, # c=`
			`Optional[String[1]] $originator = undef, # o=`
			`Optional[String[1]] $label = undef, # l=`
			`) {`
			`if $explanation {`
			`$_explanation = $explanation`
			`} else {`
			`if defined('$caller_module_name') { # strict vars check`
			`$_explanation = "${caller_module_name}: ${name}"`
			`} else {`
			`$_explanation = ": ${name}"`
			`}`
			`}`

			`$pin_release_array = [`
			`$release,`
			`$codename,`
			`$release_version,`
			`$component,`
			`$originator,`
			`$label,`
			`]`
			`$pin_release = join($pin_release_array, '')`

			`# Read the manpage 'apt_preferences(5)', especially the chapter`
			`# 'The Effect of APT Preferences' to understand the following logic`
			`# and the difference between specific and general form`
			`if $packages =~ Array {`
			`$packages_string = join($packages, ' ')`
			`} else {`
			`$packages_string = $packages`
			`}`

			`if $packages_string != '*' { # specific form`
			`if ( $pin_release != '' and ( $origin or $version )) or`
			`( $version and ( $pin_release != '' or $origin )) {`
			`fail('parameters release, origin, and version are mutually exclusive')`
			`}`
			`} else { # general form`
			`if $version {`
			`fail('parameter version cannot be used in general form')`
			`}`
			`if ( $pin_release != '' and $origin ) {`
			`fail('parameters release and origin are mutually exclusive')`
			`}`
			`}`

			`# According to man 5 apt_preferences:`
			`# The files have either no or "pref" as filename extension`
			`# and only contain alphanumeric, hyphen (-), underscore (_) and period`
			`# (.) characters. Otherwise APT will print a notice that it has ignored a`
			`# file, unless that file matches a pattern in the`
			`# Dir::Ignore-Files-Silently configuration list - in which case it will`
			`# be silently ignored.`
			`$file_name = regsubst($title, '[^0-9a-z\-_\.]', '_', 'IG')`

			`$headertmp = epp('apt/_header.epp')`

			`$pinpreftmp = epp('apt/pin.pref.epp', {`
			`'name' => $name,`
			`'pin_release' => $pin_release,`
			`'release' => $release,`
			`'codename' => $codename,`
			`'release_version' => $release_version,`
			`'component' => $component,`
			`'originator' => $originator,`
			`'label' => $label,`
			`'version' => $version,`
			`'origin' => $origin,`
			`'explanation' => $_explanation,`
			`'packages_string' => $packages_string,`
			`'priority' => $priority,`
			`})`

			`apt::setting { "pref-${file_name}":`
			`ensure => $ensure,`
			`priority => $order,`
			`content => "${headertmp}${pinpreftmp}",`
			`notify_update => false,`
			`}`
			`}`