RubyGems - chef - Versions diffs - 12.0.0.alpha.0 → 12.0.0.alpha.1 - Mend

chef 12.0.0.alpha.0 → 12.0.0.alpha.1

Files changed (207) hide show

checksums.yaml +4 -4
data/CONTRIBUTING.md +3 -5
data/lib/chef/api_client.rb +1 -1
data/lib/chef/application.rb +16 -8
data/lib/chef/chef_fs/chef_fs_data_store.rb +1 -1
data/lib/chef/chef_fs/command_line.rb +1 -1
data/lib/chef/chef_fs/file_system.rb +1 -1
data/lib/chef/chef_fs/file_system/acl_entry.rb +1 -1
data/lib/chef/chef_fs/file_system/chef_repository_file_system_entry.rb +3 -3
data/lib/chef/chef_fs/file_system/cookbook_file.rb +2 -2
data/lib/chef/chef_fs/file_system/rest_list_dir.rb +2 -2
data/lib/chef/chef_fs/file_system/rest_list_entry.rb +4 -4
data/lib/chef/config.rb +6 -5
data/lib/chef/config_fetcher.rb +1 -1
data/lib/chef/cookbook/cookbook_version_loader.rb +126 -43
data/lib/chef/cookbook/metadata.rb +102 -53
data/lib/chef/cookbook/syntax_check.rb +1 -1
data/lib/chef/cookbook_loader.rb +62 -14
data/lib/chef/cookbook_site_streaming_uploader.rb +12 -1
data/lib/chef/cookbook_version.rb +13 -4
data/lib/chef/data_bag.rb +28 -15
data/lib/chef/data_bag_item.rb +5 -7
data/lib/chef/digester.rb +5 -9
data/lib/chef/dsl/recipe.rb +14 -0
data/lib/chef/encrypted_data_bag_item.rb +1 -0
data/lib/chef/encrypted_data_bag_item/assertions.rb +57 -0
data/lib/chef/encrypted_data_bag_item/decryptor.rb +52 -28
data/lib/chef/encrypted_data_bag_item/encrypted_data_bag_item_assertions.rb +37 -0
data/lib/chef/encrypted_data_bag_item/encryption_failure.rb +22 -0
data/lib/chef/encrypted_data_bag_item/encryptor.rb +79 -8
data/lib/chef/environment.rb +1 -3
data/lib/chef/exceptions.rb +18 -3
data/lib/chef/formatters/base.rb +7 -0
data/lib/chef/formatters/error_inspectors/cookbook_resolve_error_inspector.rb +1 -1
data/lib/chef/handler/json_file.rb +0 -1
data/lib/chef/http/json_output.rb +1 -1
data/lib/chef/json_compat.rb +24 -6
data/lib/chef/knife/bootstrap.rb +2 -2
data/lib/chef/knife/client_delete.rb +1 -1
data/lib/chef/knife/cookbook_site_download.rb +1 -1
data/lib/chef/knife/cookbook_site_list.rb +1 -1
data/lib/chef/knife/cookbook_site_search.rb +1 -1
data/lib/chef/knife/cookbook_site_share.rb +2 -2
data/lib/chef/knife/cookbook_site_show.rb +3 -3
data/lib/chef/knife/cookbook_site_unshare.rb +1 -1
data/lib/chef/knife/core/node_editor.rb +2 -3
data/lib/chef/knife/core/ui.rb +2 -2
data/lib/chef/knife/deps.rb +2 -3
data/lib/chef/mixin/shell_out.rb +1 -1
data/lib/chef/mixin/windows_architecture_helper.rb +1 -0
data/lib/chef/node.rb +1 -2
data/lib/chef/platform/provider_mapping.rb +33 -6
data/lib/chef/provider.rb +0 -2
data/lib/chef/provider/cookbook_file/content.rb +1 -1
data/lib/chef/provider/cron.rb +11 -0
data/lib/chef/provider/deploy.rb +3 -2
data/lib/chef/provider/deploy/revision.rb +2 -2
data/lib/chef/provider/env.rb +1 -1
data/lib/chef/provider/env/windows.rb +5 -9
data/lib/chef/provider/file.rb +84 -33
data/lib/chef/provider/git.rb +2 -1
data/lib/chef/provider/group/aix.rb +17 -2
data/lib/chef/provider/group/dscl.rb +27 -9
data/lib/chef/provider/group/pw.rb +8 -1
data/lib/chef/provider/http_request.rb +4 -4
data/lib/chef/provider/log.rb +4 -14
data/lib/chef/provider/mount/mount.rb +2 -2
data/lib/chef/provider/package/ips.rb +17 -23
data/lib/chef/provider/package/paludis.rb +2 -2
data/lib/chef/provider/package/rpm.rb +2 -2
data/lib/chef/provider/package/rubygems.rb +2 -0
data/lib/chef/provider/package/yum.rb +2 -0
data/lib/chef/provider/package/zypper.rb +1 -1
data/lib/chef/provider/remote_file/cache_control_data.rb +2 -2
data/lib/chef/provider/service/windows.rb +87 -21
data/lib/chef/provider/user/aix.rb +95 -0
data/lib/chef/provider/user/dscl.rb +544 -156
data/lib/chef/provider/user/useradd.rb +1 -0
data/lib/chef/providers.rb +1 -0
data/lib/chef/resource.rb +4 -3
data/lib/chef/resource/freebsd_package.rb +10 -2
data/lib/chef/resource/paludis_package.rb +1 -0
data/lib/chef/resource/scm.rb +10 -0
data/lib/chef/resource/user.rb +27 -0
data/lib/chef/resource/windows_service.rb +53 -0
data/lib/chef/resource_collection.rb +23 -12
data/lib/chef/resource_reporter.rb +10 -10
data/lib/chef/resources.rb +1 -0
data/lib/chef/role.rb +3 -3
data/lib/chef/run_list.rb +6 -3
data/lib/chef/user.rb +1 -1
data/lib/chef/util/diff.rb +1 -2
data/lib/chef/version.rb +1 -1
data/lib/chef/version_constraint.rb +4 -4
data/spec/data/cookbooks/angrybash/metadata.rb +2 -0
data/spec/data/cookbooks/apache2/metadata.rb +2 -0
data/spec/data/cookbooks/borken/metadata.rb +2 -0
data/spec/data/cookbooks/ignorken/metadata.rb +2 -0
data/spec/data/cookbooks/java/metadata.rb +2 -0
data/spec/data/cookbooks/name-mismatch-versionnumber/README.md +4 -0
data/spec/data/cookbooks/name-mismatch-versionnumber/metadata.rb +8 -0
data/spec/data/cookbooks/name-mismatch-versionnumber/recipes/default.rb +8 -0
data/spec/data/cookbooks/openldap/files/default/remotedir/not_a_template.erb +2 -0
data/spec/data/cookbooks/preseed/metadata.rb +2 -0
data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/README.md +4 -0
data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/metadata.rb +13 -0
data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/recipes/default.rb +8 -0
data/spec/data/invalid-metadata-chef-repo/invalid-metadata/README.md +4 -0
data/spec/data/invalid-metadata-chef-repo/invalid-metadata/metadata.rb +10 -0
data/spec/data/invalid-metadata-chef-repo/invalid-metadata/recipes/default.rb +8 -0
data/spec/data/mac_users/10.7-8.plist.xml +559 -0
data/spec/data/mac_users/10.7-8.shadow.xml +11 -0
data/spec/data/mac_users/10.7.plist.xml +559 -0
data/spec/data/mac_users/10.7.shadow.xml +11 -0
data/spec/data/mac_users/10.8.plist.xml +559 -0
data/spec/data/mac_users/10.8.shadow.xml +21 -0
data/spec/data/mac_users/10.9.plist.xml +560 -0
data/spec/data/mac_users/10.9.shadow.xml +21 -0
data/spec/data/object_loader/environments/test.json +2 -0
data/spec/data/object_loader/environments/test_json_class.json +2 -0
data/spec/data/object_loader/nodes/test.json +2 -0
data/spec/data/object_loader/nodes/test_json_class.json +2 -0
data/spec/data/object_loader/roles/test.json +2 -0
data/spec/data/object_loader/roles/test_json_class.json +2 -0
data/spec/functional/resource/bff_spec.rb +1 -1
data/spec/functional/resource/cron_spec.rb +20 -1
data/spec/functional/resource/env_spec.rb +137 -0
data/spec/functional/resource/group_spec.rb +7 -5
data/spec/functional/resource/remote_file_spec.rb +12 -1
data/spec/functional/resource/user/dscl_spec.rb +198 -0
data/spec/functional/resource/{user_spec.rb → user/useradd_spec.rb} +175 -37
data/spec/integration/client/client_spec.rb +6 -4
data/spec/integration/client/ipv6_spec.rb +16 -14
data/spec/integration/knife/chef_fs_data_store_spec.rb +57 -46
data/spec/integration/knife/chef_repo_path_spec.rb +105 -78
data/spec/integration/knife/chef_repository_file_system_spec.rb +100 -84
data/spec/integration/knife/chefignore_spec.rb +76 -46
data/spec/integration/knife/common_options_spec.rb +16 -21
data/spec/integration/knife/cookbook_api_ipv6_spec.rb +3 -3
data/spec/integration/knife/delete_spec.rb +66 -46
data/spec/integration/knife/deps_spec.rb +145 -94
data/spec/integration/knife/diff_spec.rb +176 -110
data/spec/integration/knife/download_spec.rb +229 -133
data/spec/integration/knife/list_spec.rb +62 -54
data/spec/integration/knife/raw_spec.rb +24 -9
data/spec/integration/knife/redirection_spec.rb +2 -2
data/spec/integration/knife/serve_spec.rb +2 -2
data/spec/integration/knife/show_spec.rb +32 -26
data/spec/integration/knife/upload_spec.rb +308 -165
data/spec/integration/recipes/lwrp_inline_resources_spec.rb +10 -8
data/spec/integration/solo/solo_spec.rb +22 -11
data/spec/spec_helper.rb +3 -0
data/spec/support/lib/chef/resource/zen_follower.rb +46 -0
data/spec/support/platform_helpers.rb +12 -0
data/spec/support/shared/functional/file_resource.rb +10 -0
data/spec/support/shared/integration/chef_zero_support.rb +130 -0
data/spec/support/shared/integration/integration_helper.rb +100 -98
data/spec/support/shared/integration/knife_support.rb +0 -1
data/spec/support/shared/unit/provider/file.rb +6 -4
data/spec/support/shared/unit/provider/useradd_based_user_provider.rb +10 -1
data/spec/unit/api_client/registration_spec.rb +83 -74
data/spec/unit/application_spec.rb +32 -9
data/spec/unit/cookbook/cookbook_version_loader_spec.rb +179 -0
data/spec/unit/cookbook/metadata_spec.rb +190 -150
data/spec/unit/cookbook/syntax_check_spec.rb +3 -2
data/spec/unit/cookbook_loader_spec.rb +114 -53
data/spec/unit/{cookbook_site_streaming_uploader.rb → cookbook_site_streaming_uploader_spec.rb} +21 -1
data/spec/unit/data_bag_spec.rb +88 -13
data/spec/unit/deprecation_spec.rb +1 -2
data/spec/unit/encrypted_data_bag_item_spec.rb +145 -9
data/spec/unit/environment_spec.rb +1 -1
data/spec/unit/formatters/base_spec.rb +48 -0
data/spec/unit/json_compat_spec.rb +48 -17
data/spec/unit/knife/client_delete_spec.rb +4 -4
data/spec/unit/knife/client_show_spec.rb +15 -5
data/spec/unit/knife/cookbook_site_download_spec.rb +1 -1
data/spec/unit/knife/cookbook_site_share_spec.rb +3 -3
data/spec/unit/knife/data_bag_from_file_spec.rb +0 -2
data/spec/unit/knife/data_bag_show_spec.rb +23 -14
data/spec/unit/knife/node_show_spec.rb +32 -15
data/spec/unit/knife/role_show_spec.rb +59 -0
data/spec/unit/platform_spec.rb +10 -0
data/spec/unit/provider/deploy_spec.rb +4 -0
data/spec/unit/provider/env_spec.rb +19 -0
data/spec/unit/provider/git_spec.rb +22 -2
data/spec/unit/provider/group/dscl_spec.rb +38 -1
data/spec/unit/provider/group/pw_spec.rb +2 -2
data/spec/unit/provider/http_request_spec.rb +8 -8
data/spec/unit/provider/log_spec.rb +33 -53
data/spec/unit/provider/mount/mount_spec.rb +12 -3
data/spec/unit/provider/package/ips_spec.rb +96 -63
data/spec/unit/provider/package/paludis_spec.rb +5 -5
data/spec/unit/provider/package/rpm_spec.rb +12 -0
data/spec/unit/provider/package/zypper_spec.rb +28 -16
data/spec/unit/provider/service/windows_spec.rb +77 -17
data/spec/unit/provider/user/dscl_spec.rb +659 -264
data/spec/unit/provider/user/useradd_spec.rb +1 -0
data/spec/unit/recipe_spec.rb +41 -0
data/spec/unit/resource/scm_spec.rb +11 -0
data/spec/unit/resource/user_spec.rb +4 -0
data/spec/unit/resource/windows_service_spec.rb +46 -0
data/spec/unit/resource_collection_spec.rb +33 -0
data/spec/unit/resource_reporter_spec.rb +48 -0
data/spec/unit/resource_spec.rb +9 -2
data/spec/unit/role_spec.rb +6 -0
data/spec/unit/version_constraint_spec.rb +28 -0
metadata +61 -4

data/lib/chef/encrypted_data_bag_item/encryptor.rb CHANGED

@@ -22,6 +22,8 @@ require 'openssl'
 require 'ffi_yajl'
 require 'chef/encrypted_data_bag_item'
 require 'chef/encrypted_data_bag_item/unsupported_encrypted_data_bag_item_format'
+require 'chef/encrypted_data_bag_item/encryption_failure'
+require 'chef/encrypted_data_bag_item/assertions'
 class Chef::EncryptedDataBagItem
@@ -40,9 +42,11 @@ class Chef::EncryptedDataBagItem
         Version1Encryptor.new(value, secret, iv)
       when 2
         Version2Encryptor.new(value, secret, iv)
+      when 3
+        Version3Encryptor.new(value, secret, iv)
       else
         raise UnsupportedEncryptedDataBagItemFormat,
-          "Invalid encrypted data bag format version `#{format_version}'. Supported versions are '1', '2'"
+          "Invalid encrypted data bag format version `#{format_version}'. Supported versions are '1', '2', '3'"
       end
     end
@@ -50,6 +54,8 @@ class Chef::EncryptedDataBagItem
       attr_reader :key
       attr_reader :plaintext_data
+      include Chef::EncryptedDataBagItem::Assertions
       # Create a new Encryptor for +data+, which will be encrypted with the given
       # +key+.
       #
@@ -65,6 +71,11 @@ class Chef::EncryptedDataBagItem
         @iv = iv && Base64.decode64(iv)
       end
+      # Returns the used encryption algorithm
+      def algorithm
+        ALGORITHM
+      end
       # Returns a wrapped and encrypted version of +plaintext_data+ suitable for
       # using as the value in an encrypted data bag item.
       def for_encrypted_item
@@ -72,27 +83,28 @@ class Chef::EncryptedDataBagItem
           "encrypted_data" => encrypted_data,
           "iv" => Base64.encode64(iv),
           "version" => 1,
-          "cipher" => ALGORITHM
+          "cipher" => algorithm
         }
       end
       # Generates or returns the IV.
       def iv
-        # Generated IV comes from OpenSSL::Cipher::Cipher#random_iv
+        # Generated IV comes from OpenSSL::Cipher#random_iv
         # This gets generated when +openssl_encryptor+ gets created.
         openssl_encryptor if @iv.nil?
         @iv
       end
-      # Generates (and memoizes) an OpenSSL::Cipher::Cipher object and configures
+      # Generates (and memoizes) an OpenSSL::Cipher object and configures
       # it for the specified iv and encryption key.
       def openssl_encryptor
         @openssl_encryptor ||= begin
-          encryptor = OpenSSL::Cipher::Cipher.new(ALGORITHM)
+          encryptor = OpenSSL::Cipher.new(algorithm)
           encryptor.encrypt
+          # We must set key before iv: https://bugs.ruby-lang.org/issues/8221
+          encryptor.key = OpenSSL::Digest::SHA256.digest(key)
           @iv ||= encryptor.random_iv
           encryptor.iv = @iv
-          encryptor.key = Digest::SHA256.digest(key)
           encryptor
         end
       end
@@ -125,18 +137,77 @@ class Chef::EncryptedDataBagItem
           "hmac" => hmac,
           "iv" => Base64.encode64(iv),
           "version" => 2,
-          "cipher" => ALGORITHM
+          "cipher" => algorithm
         }
       end
       # Generates an HMAC-SHA2-256 of the encrypted data (encrypt-then-mac)
       def hmac
         @hmac ||= begin
-          digest = OpenSSL::Digest::Digest.new("sha256")
+          digest = OpenSSL::Digest.new("sha256")
           raw_hmac = OpenSSL::HMAC.digest(digest, key, encrypted_data)
           Base64.encode64(raw_hmac)
         end
       end
     end
+    class Version3Encryptor < Version1Encryptor
+      include Chef::EncryptedDataBagItem::Assertions
+      def initialize(plaintext_data, key, iv=nil)
+        super
+        assert_aead_requirements_met!(algorithm)
+        @auth_tag = nil
+      end
+      # Returns a wrapped and encrypted version of +plaintext_data+ suitable for
+      # using as the value in an encrypted data bag item.
+      def for_encrypted_item
+        {
+          "encrypted_data" => encrypted_data,
+          "iv" => Base64.encode64(iv),
+          "auth_tag" => Base64.encode64(auth_tag),
+          "version" => 3,
+          "cipher" => algorithm
+        }
+      end
+      # Returns the used encryption algorithm
+      def algorithm
+        AEAD_ALGORITHM
+      end
+      # Returns a wrapped and encrypted version of +plaintext_data+ suitable for
+      # Returns the auth_tag.
+      def auth_tag
+        # Generated auth_tag comes from OpenSSL::Cipher#auth_tag
+        # This must be generated after the data is encrypted
+        if @auth_tag.nil?
+          raise EncryptionFailure, "Internal Error: GCM authentication tag read before encryption"
+        end
+        @auth_tag
+      end
+      # Generates (and memoizes) an OpenSSL::Cipher object and configures
+      # it for the specified iv and encryption key using AEAD
+      def openssl_encryptor
+        @openssl_encryptor ||= begin
+          encryptor = super
+          encryptor.auth_data = ''
+          encryptor
+        end
+      end
+      # Encrypts, Base64 encodes +serialized_data+ and gets the authentication tag
+      def encrypted_data
+        @encrypted_data ||= begin
+          enc_data_b64 = super
+          @auth_tag = openssl_encryptor.auth_tag
+          enc_data_b64
+        end
+      end
+    end
   end
 end

data/lib/chef/environment.rb CHANGED

@@ -129,7 +129,7 @@ class Chef
     end
     def to_json(*a)
-      to_hash.to_json(*a)
+      Chef::JSONCompat.to_json(to_hash, *a)
     end
     def update_from!(o)
@@ -140,7 +140,6 @@ class Chef
       self
     end
     def update_attributes_from_params(params)
       unless params[:default_attributes].nil? || params[:default_attributes].size == 0
         default_attributes(Chef::JSONCompat.from_json(params[:default_attributes]))
@@ -213,7 +212,6 @@ class Chef
       end
     end
     def self.json_create(o)
       environment = new
       environment.name(o["name"])

data/lib/chef/exceptions.rb CHANGED

@@ -83,6 +83,7 @@ class Chef
     class RequestedUIDUnavailable < RuntimeError; end
     class InvalidHomeDirectory < ArgumentError; end
     class DsclCommandFailed < RuntimeError; end
+    class PlistUtilCommandFailed < RuntimeError; end
     class UserIDNotFound < ArgumentError; end
     class GroupIDNotFound < ArgumentError; end
     class ConflictingMembersInGroup < ArgumentError; end
@@ -115,6 +116,7 @@ class Chef
     class Win32ArchitectureIncorrect < RuntimeError; end
     class ObsoleteDependencySyntax < ArgumentError; end
     class InvalidDataBagPath < ArgumentError; end
+    class DuplicateDataBagItem < RuntimeError; end
     # A different version of a cookbook was added to a
     # VersionedRecipeList than the one already there.
@@ -131,6 +133,8 @@ class Chef
     # Version constraints are not allowed in chef-solo
     class IllegalVersionConstraint < NotImplementedError; end
+    class MetadataNotValid < StandardError; end
     # File operation attempted but no permissions to perform it
     class InsufficientPermissions < RuntimeError; end
@@ -194,7 +198,6 @@ class Chef
         end
       end
     end
     # Exception class for collecting multiple failures. Used when running
     # delayed notifications so that chef can process each delayed
@@ -262,7 +265,7 @@ class Chef
             "non_existent_cookbooks" => non_existent_cookbooks,
             "cookbooks_with_no_versions" => cookbooks_with_no_matching_versions
           }
-          result.to_json(*a)
+          Chef::JSONCompat.to_json(result, *a)
         end
       end
@@ -297,7 +300,7 @@ class Chef
             "non_existent_cookbooks" => non_existent_cookbooks,
             "most_constrained_cookbooks" => most_constrained_cookbooks
           }
-          result.to_json(*a)
+          Chef::JSONCompat.to_json(result, *a)
         end
       end
@@ -331,6 +334,18 @@ class Chef
       end
     end
+    class ChecksumMismatch < RuntimeError
+      def initialize(res_cksum, cont_cksum)
+        super "Checksum on resource (#{res_cksum}) does not match checksum on content (#{cont_cksum})"
+      end
+    end
     class BadProxyURI < RuntimeError; end
+    # Raised by Chef::JSONCompat
+    class JSON
+      class EncodeError < RuntimeError; end
+      class ParseError < RuntimeError; end
+    end
   end
 end

data/lib/chef/formatters/base.rb CHANGED

@@ -93,6 +93,13 @@ class Chef
       def indent_by(amount)
         @output.indent += amount
+        if @output.indent < 0
+          # This is left commented out for now.  We need to uncomment it and fix at least one bug in
+          # the formatter, and then leave this line uncommented in the future.
+          #Chef::Log.warn "Internal Formatter Error -- Attempt to indent by negative number of spaces"
+          @output.indent = 0
+        end
+        @output.indent
       end
       # Input: a Formatters::ErrorDescription object.

data/lib/chef/formatters/error_inspectors/cookbook_resolve_error_inspector.rb CHANGED

@@ -56,7 +56,7 @@ class Chef
             # * could be no read on the node
             error_description.section("Authorization Error",<<-E)
 This client is not authorized to read some of the information required to
-access its coobooks (HTTP 403).
+access its cookbooks (HTTP 403).
 To access its cookbooks, a client needs to be able to read its environment and
 all of the cookbooks in its expanded run list.

data/lib/chef/handler/json_file.rb CHANGED

@@ -58,7 +58,6 @@ class Chef
         end
       end
     end
   end
 end

data/lib/chef/http/json_output.rb CHANGED

@@ -50,7 +50,7 @@ class Chef
             if @inflate_json_class
               return_value = Chef::JSONCompat.from_json(http_response.body.chomp)
             else
-              return_value = Chef::JSONCompat.from_json(http_response.body.chomp, :create_additions => false)
+              return_value = Chef::JSONCompat.parse(http_response.body.chomp)
             end
           end
           [http_response, rest_request, return_value]

data/lib/chef/json_compat.rb CHANGED

@@ -18,7 +18,9 @@
 # Wrapper class for interacting with JSON.
 require 'ffi_yajl'
+require 'json'
 require 'ffi_yajl/json_gem'  # XXX: parts of chef require JSON gem's Hash#to_json monkeypatch
+require 'chef/exceptions'
 class Chef
   class JSONCompat
@@ -40,15 +42,24 @@ class Chef
     class <<self
+      # API to use to avoid create_addtions
+      def parse(source, opts = {})
+        begin
+          FFI_Yajl::Parser.parse(source, opts)
+        rescue FFI_Yajl::ParseError => e
+          raise Chef::Exceptions::JSON::ParseError, e.message
+        end
+      end
       # Just call the JSON gem's parse method with a modified :max_nesting field
       def from_json(source, opts = {})
-        obj = ::FFI_Yajl::Parser.parse(source)
+        obj = parse(source, opts)
         # JSON gem requires top level object to be a Hash or Array (otherwise
         # you get the "must contain two octets" error). Yajl doesn't impose the
         # same limitation. For compatibility, we re-impose this condition.
         unless obj.kind_of?(Hash) or obj.kind_of?(Array)
-          raise JSON::ParserError, "Top level JSON object must be a Hash or Array. (actual: #{obj.class})"
+          raise Chef::Exceptions::JSON::ParseError, "Top level JSON object must be a Hash or Array. (actual: #{obj.class})"
         end
         # The old default in the json gem (which we are mimicing because we
@@ -88,14 +99,21 @@ class Chef
       end
       def to_json(obj, opts = nil)
-        obj.to_json(opts)
+        begin
+          FFI_Yajl::Encoder.encode(obj, opts)
+        rescue FFI_Yajl::EncodeError => e
+          raise Chef::Exceptions::JSON::EncodeError, e.message
+        end
       end
       def to_json_pretty(obj, opts = nil)
-        ::JSON.pretty_generate(obj, opts)
+        opts ||= {}
+        options_map = {}
+        options_map[:pretty] = true
+        options_map[:indent] = opts[:indent] if opts.has_key?(:indent)
+        to_json(obj, options_map).chomp
       end
       # Map +json_class+ to a Class object. We use a +case+ instead of a Hash
       # assigned to a constant because otherwise this file could not be loaded
       # until all the constants were defined, which means you'd have to load
@@ -130,7 +148,7 @@ class Chef
         when /^Chef::Resource/
           Chef::Resource.find_subclass_by_name(json_class)
         else
-          raise JSON::ParserError, "Unsupported `json_class` type '#{json_class}'"
+          raise Chef::Exceptions::JSON::ParseError, "Unsupported `json_class` type '#{json_class}'"
         end
       end

data/lib/chef/knife/bootstrap.rb CHANGED

@@ -126,7 +126,7 @@ class Chef
         :short => "-j JSON_ATTRIBS",
         :long => "--json-attributes",
         :description => "A JSON string to be added to the first run of chef-client",
-        :proc => lambda { |o| JSON.parse(o) },
+        :proc => lambda { |o| Chef::JSONCompat.parse(o) },
         :default => {}
       option :host_key_verify,
@@ -141,7 +141,7 @@ class Chef
         :proc => Proc.new { |h|
           Chef::Config[:knife][:hints] ||= Hash.new
           name, path = h.split("=")
-          Chef::Config[:knife][:hints][name] = path ? JSON.parse(::File.read(path)) : Hash.new  }
+          Chef::Config[:knife][:hints][name] = path ? Chef::JSONCompat.parse(::File.read(path)) : Hash.new  }
       option :secret,
         :short => "-s SECRET",

data/lib/chef/knife/client_delete.rb CHANGED

@@ -47,7 +47,7 @@ class Chef
           object = Chef::ApiClient.load(@client_name)
           if object.validator
             unless config[:delete_validators]
-              ui.fatal("You must specify --force to delete the validator client #{@client_name}")
+              ui.fatal("You must specify --delete-validators to delete the validator client #{@client_name}")
               exit 2
             end
           end

data/lib/chef/knife/cookbook_site_download.rb CHANGED

@@ -58,7 +58,7 @@ class Chef
       private
       def cookbooks_api_url
-        'http://cookbooks.opscode.com/api/v1/cookbooks'
+        'https://supermarket.getchef.com/api/v1/cookbooks'
       end
       def current_cookbook_data

data/lib/chef/knife/cookbook_site_list.rb CHANGED

@@ -41,7 +41,7 @@ class Chef
       end
       def get_cookbook_list(items=10, start=0, cookbook_collection={})
-        cookbooks_url = "http://cookbooks.opscode.com/api/v1/cookbooks?items=#{items}&start=#{start}"
+        cookbooks_url = "https://supermarket.getchef.com/api/v1/cookbooks?items=#{items}&start=#{start}"
         cr = noauth_rest.get_rest(cookbooks_url)
         cr["items"].each do |cookbook|
           cookbook_collection[cookbook["cookbook_name"]] = cookbook

data/lib/chef/knife/cookbook_site_search.rb CHANGED

@@ -29,7 +29,7 @@ class Chef
       end
       def search_cookbook(query, items=10, start=0, cookbook_collection={})
-        cookbooks_url = "http://cookbooks.opscode.com/api/v1/search?q=#{query}&items=#{items}&start=#{start}"
+        cookbooks_url = "https://supermarket.getchef.com/api/v1/search?q=#{query}&items=#{items}&start=#{start}"
         cr = noauth_rest.get_rest(cookbooks_url)
         cr["items"].each do |cookbook|
           cookbook_collection[cookbook["cookbook_name"]] = cookbook

data/lib/chef/knife/cookbook_site_share.rb CHANGED

@@ -85,9 +85,9 @@ class Chef
       end
       def do_upload(cookbook_filename, cookbook_category, user_id, user_secret_filename)
-         uri = "http://cookbooks.opscode.com/api/v1/cookbooks"
+         uri = "https://supermarket.getchef.com/api/v1/cookbooks"
-         category_string = { 'category'=>cookbook_category }.to_json
+         category_string = Chef::JSONCompat.to_json({ 'category'=>cookbook_category })
          http_resp = Chef::CookbookSiteStreamingUploader.post(uri, user_id, user_secret_filename, {
            :tarball => File.open(cookbook_filename),

data/lib/chef/knife/cookbook_site_show.rb CHANGED

@@ -31,14 +31,14 @@ class Chef
       def get_cookbook_data
         case @name_args.length
         when 1
-          noauth_rest.get_rest("http://cookbooks.opscode.com/api/v1/cookbooks/#{@name_args[0]}")
+          noauth_rest.get_rest("https://supermarket.getchef.com/api/v1/cookbooks/#{@name_args[0]}")
         when 2
-          noauth_rest.get_rest("http://cookbooks.opscode.com/api/v1/cookbooks/#{@name_args[0]}/versions/#{name_args[1].gsub('.', '_')}")
+          noauth_rest.get_rest("https://supermarket.getchef.com/api/v1/cookbooks/#{@name_args[0]}/versions/#{name_args[1].gsub('.', '_')}")
         end
       end
       def get_cookbook_list(items=10, start=0, cookbook_collection={})
-        cookbooks_url = "http://cookbooks.opscode.com/api/v1/cookbooks?items=#{items}&start=#{start}"
+        cookbooks_url = "https://supermarket.getchef.com/api/v1/cookbooks?items=#{items}&start=#{start}"
         cr = noauth_rest.get_rest(cookbooks_url)
         cr["items"].each do |cookbook|
           cookbook_collection[cookbook["cookbook_name"]] = cookbook