From 2618ce5ec2c4a975c0d1450407f49473534d7869 Mon Sep 17 00:00:00 2001
From: Aria Li <aria.li@puppet.com>
Date: Wed, 13 Apr 2022 15:21:59 -0700
Subject: [PATCH] (maint) Update str2saltedpbkdf2.rb to use the correct salt
 length

The documentation in str2saltedpbkdf2.rb did not have the right length salt.
OS X versions 10.15 and higher require the salt to be 32-bytes. Since Puppet's user resource requires the value to be hex encoded, the length of the salt's string must be 64. str2saltedpbkdf2.rb was updated to reflect this.
---
 lib/puppet/parser/functions/str2saltedpbkdf2.rb | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/lib/puppet/parser/functions/str2saltedpbkdf2.rb b/lib/puppet/parser/functions/str2saltedpbkdf2.rb
index f3cd811a5..bbb92f99c 100644
--- a/lib/puppet/parser/functions/str2saltedpbkdf2.rb
+++ b/lib/puppet/parser/functions/str2saltedpbkdf2.rb
@@ -13,7 +13,7 @@ module Puppet::Parser::Functions
     the pasword using the parameters you provide to the user resource.
 
     @example Plain text password and salt
-      $pw_info = str2saltedpbkdf2('Pa55w0rd', 'Using s0m3 s@lt', 50000)
+      $pw_info = str2saltedpbkdf2('Pa55w0rd', 'Use a s@lt h3r3 th@t is 32 byt3s', 50000)
       user { 'jdoe':
         ensure     => present,
         iterations => $pw_info['interations'],
@@ -23,7 +23,7 @@ module Puppet::Parser::Functions
 
     @example Sensitive password and salt
       $pw = Sensitive.new('Pa55w0rd')
-      $salt = Sensitive.new('Using s0m3 s@lt')
+      $salt = Sensitive.new('Use a s@lt h3r3 th@t is 32 byt3s')
       $pw_info = Sensitive.new(str2saltedpbkdf2($pw, $salt, 50000))
       user { 'jdoe':
         ensure     => present,