RubyGems - chef - Versions diffs - 12.0.0.alpha.2-x86-mingw32 → 12.0.0.rc.0-x86-mingw32 - Mend

chef 12.0.0.alpha.2-x86-mingw32 → 12.0.0.rc.0-x86-mingw32

Files changed (628) hide show

data/CONTRIBUTING.md +9 -0
data/README.md +1 -1
data/Rakefile +12 -0
data/bin/chef-service-manager +1 -1
data/bin/chef-windows-service +35 -0
data/distro/common/html/_sources/ctl_chef_server.txt +307 -10
data/distro/common/html/ctl_chef_client.html +3 -7
data/distro/common/html/ctl_chef_server.html +609 -41
data/distro/common/html/ctl_chef_shell.html +2 -2
data/distro/common/html/ctl_chef_solo.html +1 -1
data/distro/common/html/index.html +13 -13
data/distro/common/html/knife.html +10 -10
data/distro/common/html/knife_bootstrap.html +8 -8
data/distro/common/html/knife_client.html +12 -12
data/distro/common/html/knife_common_options.html +7 -7
data/distro/common/html/knife_configure.html +3 -3
data/distro/common/html/knife_cookbook.html +19 -19
data/distro/common/html/knife_cookbook_site.html +28 -28
data/distro/common/html/knife_data_bag.html +28 -13
data/distro/common/html/knife_delete.html +2 -2
data/distro/common/html/knife_deps.html +3 -3
data/distro/common/html/knife_diff.html +4 -4
data/distro/common/html/knife_download.html +3 -3
data/distro/common/html/knife_edit.html +2 -2
data/distro/common/html/knife_environment.html +14 -14
data/distro/common/html/knife_exec.html +11 -11
data/distro/common/html/knife_index_rebuild.html +2 -2
data/distro/common/html/knife_list.html +3 -3
data/distro/common/html/knife_node.html +23 -23
data/distro/common/html/knife_raw.html +4 -4
data/distro/common/html/knife_recipe_list.html +3 -3
data/distro/common/html/knife_role.html +11 -11
data/distro/common/html/knife_search.html +4 -4
data/distro/common/html/knife_serve.html +3 -3
data/distro/common/html/knife_show.html +3 -3
data/distro/common/html/knife_ssh.html +7 -7
data/distro/common/html/knife_ssl_check.html +7 -7
data/distro/common/html/knife_ssl_fetch.html +9 -9
data/distro/common/html/knife_status.html +3 -3
data/distro/common/html/knife_tag.html +9 -9
data/distro/common/html/knife_upload.html +3 -3
data/distro/common/html/knife_user.html +9 -9
data/distro/common/html/knife_using.html +11 -11
data/distro/common/html/knife_xargs.html +14 -5
data/distro/common/html/search.html +2 -2
data/distro/common/html/searchindex.js +1 -1
data/distro/common/man/man1/chef-shell.1 +2 -2
data/distro/common/man/man1/knife-bootstrap.1 +7 -7
data/distro/common/man/man1/knife-client.1 +10 -10
data/distro/common/man/man1/knife-configure.1 +5 -5
data/distro/common/man/man1/knife-cookbook-site.1 +24 -24
data/distro/common/man/man1/knife-cookbook.1 +12 -12
data/distro/common/man/man1/knife-data-bag.1 +34 -10
data/distro/common/man/man1/knife-delete.1 +5 -5
data/distro/common/man/man1/knife-deps.1 +5 -5
data/distro/common/man/man1/knife-diff.1 +7 -7
data/distro/common/man/man1/knife-download.1 +5 -5
data/distro/common/man/man1/knife-edit.1 +5 -5
data/distro/common/man/man1/knife-environment.1 +11 -11
data/distro/common/man/man1/knife-exec.1 +11 -11
data/distro/common/man/man1/knife-index-rebuild.1 +1 -1
data/distro/common/man/man1/knife-list.1 +5 -5
data/distro/common/man/man1/knife-node.1 +16 -16
data/distro/common/man/man1/knife-raw.1 +6 -6
data/distro/common/man/man1/knife-recipe-list.1 +1 -1
data/distro/common/man/man1/knife-role.1 +7 -7
data/distro/common/man/man1/knife-search.1 +6 -6
data/distro/common/man/man1/knife-serve.1 +6 -6
data/distro/common/man/man1/knife-show.1 +5 -5
data/distro/common/man/man1/knife-ssh.1 +9 -9
data/distro/common/man/man1/knife-ssl-check.1 +7 -7
data/distro/common/man/man1/knife-ssl-fetch.1 +9 -9
data/distro/common/man/man1/knife-status.1 +5 -5
data/distro/common/man/man1/knife-tag.1 +8 -8
data/distro/common/man/man1/knife-upload.1 +5 -5
data/distro/common/man/man1/knife-user.1 +8 -8
data/distro/common/man/man1/knife-xargs.1 +36 -10
data/distro/common/man/man1/knife.1 +14 -14
data/distro/common/man/man8/chef-client.8 +3 -10
data/distro/common/man/man8/chef-solo.8 +1 -1
data/ext/win32-eventlog/Rakefile +50 -0
data/ext/win32-eventlog/chef-log.man +26 -0
data/lib/chef/application.rb +313 -241
data/lib/chef/application/apply.rb +10 -8
data/lib/chef/application/client.rb +58 -33
data/lib/chef/application/solo.rb +33 -12
data/lib/chef/chef_fs/chef_fs_data_store.rb +1 -1
data/lib/chef/chef_fs/command_line.rb +1 -1
data/lib/chef/chef_fs/file_system/organization_invites_entry.rb +2 -1
data/lib/chef/chef_fs/file_system/organization_members_entry.rb +2 -1
data/lib/chef/chef_fs/file_system/rest_list_entry.rb +2 -1
data/lib/chef/client.rb +18 -48
data/lib/chef/config.rb +43 -11
data/lib/chef/cookbook/cookbook_version_loader.rb +14 -7
data/lib/chef/cookbook/metadata.rb +81 -38
data/lib/chef/cookbook/syntax_check.rb +18 -52
data/lib/chef/cookbook_loader.rb +1 -1
data/lib/chef/cookbook_version.rb +58 -39
data/lib/chef/data_bag.rb +2 -2
data/lib/chef/deprecation/provider/file.rb +2 -1
data/lib/chef/dsl/data_query.rb +2 -29
data/lib/chef/dsl/recipe.rb +8 -22
data/lib/chef/encrypted_data_bag_item/assertions.rb +1 -1
data/lib/chef/encrypted_data_bag_item/check_encrypted.rb +56 -0
data/lib/chef/encrypted_data_bag_item/encrypted_data_bag_item_assertions.rb +1 -1
data/lib/chef/event_loggers/base.rb +62 -0
data/lib/chef/event_loggers/windows_eventlog.rb +104 -0
data/lib/chef/exceptions.rb +18 -1
data/lib/chef/file_cache.rb +3 -2
data/lib/chef/guard_interpreter/resource_guard_interpreter.rb +15 -6
data/lib/chef/http.rb +20 -13
data/lib/chef/http/ssl_policies.rb +2 -1
data/lib/chef/json_compat.rb +9 -3
data/lib/chef/knife.rb +2 -1
data/lib/chef/knife/bootstrap.rb +12 -18
data/lib/chef/knife/bootstrap/archlinux-gems.erb +2 -2
data/lib/chef/knife/bootstrap/chef-aix.erb +2 -2
data/lib/chef/knife/bootstrap/chef-full.erb +2 -2
data/lib/chef/knife/cookbook_create.rb +1 -1
data/lib/chef/knife/cookbook_site_share.rb +43 -8
data/lib/chef/knife/core/bootstrap_context.rb +6 -11
data/lib/chef/knife/core/object_loader.rb +5 -5
data/lib/chef/knife/core/status_presenter.rb +156 -0
data/lib/chef/knife/core/subcommand_loader.rb +6 -5
data/lib/chef/knife/core/ui.rb +4 -4
data/lib/chef/knife/data_bag_create.rb +7 -32
data/lib/chef/knife/data_bag_edit.rb +24 -43
data/lib/chef/knife/data_bag_from_file.rb +6 -31
data/lib/chef/knife/data_bag_secret_options.rb +142 -0
data/lib/chef/knife/data_bag_show.rb +19 -33
data/lib/chef/knife/node_from_file.rb +9 -8
data/lib/chef/knife/ssh.rb +0 -7
data/lib/chef/knife/ssl_check.rb +70 -6
data/lib/chef/knife/status.rb +11 -58
data/lib/chef/mixin/command/unix.rb +2 -2
data/lib/chef/mixin/convert_to_class_name.rb +54 -0
data/lib/chef/mixin/descendants_tracker.rb +82 -0
data/lib/chef/mixin/homebrew_user.rb +68 -0
data/lib/chef/mixin/shell_out.rb +0 -4
data/lib/chef/mixin/windows_architecture_helper.rb +16 -0
data/lib/chef/mixin/windows_env_helper.rb +56 -0
data/lib/chef/node.rb +2 -2
data/lib/chef/node_map.rb +146 -0
data/lib/chef/platform/provider_mapping.rb +11 -39
data/lib/chef/platform/provider_priority_map.rb +80 -0
data/lib/chef/platform/query_helpers.rb +5 -1
data/lib/chef/platform/service_helpers.rb +113 -0
data/lib/chef/provider.rb +24 -0
data/lib/chef/provider/breakpoint.rb +2 -0
data/lib/chef/provider/cookbook_file.rb +2 -0
data/lib/chef/provider/cron.rb +1 -1
data/lib/chef/provider/cron/unix.rb +13 -9
data/lib/chef/provider/deploy.rb +3 -2
data/lib/chef/provider/deploy/revision.rb +4 -2
data/lib/chef/provider/deploy/timestamped.rb +2 -0
data/lib/chef/provider/directory.rb +2 -0
data/lib/chef/provider/dsc_script.rb +179 -0
data/lib/chef/provider/env.rb +25 -10
data/lib/chef/provider/env/windows.rb +9 -16
data/lib/chef/provider/erl_call.rb +2 -0
data/lib/chef/provider/execute.rb +5 -2
data/lib/chef/provider/file.rb +2 -0
data/lib/chef/provider/git.rb +51 -23
data/lib/chef/provider/group/dscl.rb +2 -2
data/lib/chef/provider/group/pw.rb +9 -13
data/lib/chef/provider/http_request.rb +2 -0
data/lib/chef/provider/link.rb +3 -0
data/lib/chef/provider/log.rb +2 -0
data/lib/chef/provider/lwrp_base.rb +11 -9
data/lib/chef/provider/mount/mount.rb +1 -1
data/lib/chef/provider/package/aix.rb +2 -0
data/lib/chef/provider/package/apt.rb +2 -0
data/lib/chef/provider/package/dpkg.rb +2 -0
data/lib/chef/provider/package/easy_install.rb +2 -0
data/lib/chef/provider/package/freebsd/pkg.rb +2 -1
data/lib/chef/provider/package/freebsd/pkgng.rb +1 -1
data/lib/chef/provider/package/freebsd/port.rb +1 -9
data/lib/chef/provider/package/homebrew.rb +127 -0
data/lib/chef/provider/package/ips.rb +2 -0
data/lib/chef/provider/package/macports.rb +3 -0
data/lib/chef/provider/package/pacman.rb +5 -4
data/lib/chef/provider/package/paludis.rb +4 -2
data/lib/chef/provider/package/portage.rb +4 -1
data/lib/chef/provider/package/rpm.rb +2 -0
data/lib/chef/provider/package/rubygems.rb +4 -0
data/lib/chef/provider/package/smartos.rb +2 -0
data/lib/chef/provider/package/solaris.rb +2 -0
data/lib/chef/provider/package/windows.rb +5 -2
data/lib/chef/provider/package/yum.rb +2 -0
data/lib/chef/provider/powershell_script.rb +3 -1
data/lib/chef/provider/remote_directory.rb +25 -10
data/lib/chef/provider/route.rb +2 -0
data/lib/chef/provider/ruby_block.rb +2 -0
data/lib/chef/provider/script.rb +6 -0
data/lib/chef/provider/service/aix.rb +128 -0
data/lib/chef/provider/service/aixinit.rb +117 -0
data/lib/chef/provider/service/arch.rb +6 -0
data/lib/chef/provider/service/debian.rb +35 -29
data/lib/chef/provider/service/freebsd.rb +7 -1
data/lib/chef/provider/service/gentoo.rb +5 -1
data/lib/chef/provider/service/init.rb +2 -0
data/lib/chef/provider/service/insserv.rb +15 -8
data/lib/chef/provider/service/invokercd.rb +6 -0
data/lib/chef/provider/service/macosx.rb +4 -1
data/lib/chef/provider/service/redhat.rb +9 -3
data/lib/chef/provider/service/simple.rb +2 -0
data/lib/chef/provider/service/solaris.rb +2 -0
data/lib/chef/provider/service/systemd.rb +7 -0
data/lib/chef/provider/service/upstart.rb +7 -0
data/lib/chef/provider/service/windows.rb +5 -0
data/lib/chef/provider/subversion.rb +2 -0
data/lib/chef/provider/template.rb +1 -0
data/lib/chef/provider/user/dscl.rb +3 -2
data/lib/chef/provider/whyrun_safe_ruby_block.rb +2 -0
data/lib/chef/provider_resolver.rb +103 -0
data/lib/chef/providers.rb +6 -2
data/lib/chef/recipe.rb +2 -0
data/lib/chef/resource.rb +69 -78
data/lib/chef/resource/apt_package.rb +3 -1
data/lib/chef/resource/bash.rb +1 -0
data/lib/chef/resource/bff_package.rb +0 -1
data/lib/chef/resource/breakpoint.rb +1 -1
data/lib/chef/resource/chef_gem.rb +1 -2
data/lib/chef/resource/conditional.rb +26 -6
data/lib/chef/resource/cookbook_file.rb +2 -3
data/lib/chef/resource/csh.rb +1 -0
data/lib/chef/resource/deploy.rb +0 -1
data/lib/chef/resource/deploy_revision.rb +6 -1
data/lib/chef/resource/directory.rb +1 -2
data/lib/chef/resource/dpkg_package.rb +2 -1
data/lib/chef/resource/dsc_script.rb +125 -0
data/lib/chef/resource/easy_install_package.rb +2 -1
data/lib/chef/resource/erl_call.rb +1 -0
data/lib/chef/resource/execute.rb +26 -9
data/lib/chef/resource/file.rb +1 -3
data/lib/chef/resource/freebsd_package.rb +10 -23
data/lib/chef/resource/gem_package.rb +2 -1
data/lib/chef/resource/git.rb +2 -1
data/lib/chef/resource/homebrew_package.rb +46 -0
data/lib/chef/resource/http_request.rb +1 -0
data/lib/chef/resource/ips_package.rb +3 -1
data/lib/chef/resource/link.rb +1 -2
data/lib/chef/resource/log.rb +4 -0
data/lib/chef/resource/lwrp_base.rb +24 -15
data/lib/chef/resource/macports_package.rb +3 -1
data/lib/chef/resource/pacman_package.rb +2 -1
data/lib/chef/resource/paludis_package.rb +3 -1
data/lib/chef/resource/perl.rb +1 -0
data/lib/chef/resource/powershell_script.rb +0 -2
data/lib/chef/resource/python.rb +1 -1
data/lib/chef/resource/remote_directory.rb +1 -2
data/lib/chef/resource/remote_file.rb +1 -1
data/lib/chef/resource/rpm_package.rb +2 -1
data/lib/chef/resource/ruby.rb +1 -0
data/lib/chef/resource/ruby_block.rb +3 -0
data/lib/chef/resource/script.rb +2 -25
data/lib/chef/resource/service.rb +0 -4
data/lib/chef/resource/smartos_package.rb +3 -4
data/lib/chef/resource/solaris_package.rb +7 -1
data/lib/chef/resource/subversion.rb +0 -1
data/lib/chef/resource/template.rb +2 -3
data/lib/chef/resource/timestamped_deploy.rb +1 -2
data/lib/chef/resource/whyrun_safe_ruby_block.rb +0 -1
data/lib/chef/resource/windows_package.rb +3 -4
data/lib/chef/resource/windows_script.rb +3 -0
data/lib/chef/resource/windows_service.rb +2 -2
data/lib/chef/resource/yum_package.rb +3 -1
data/lib/chef/resource_collection.rb +50 -227
data/lib/chef/resource_collection/resource_collection_serialization.rb +59 -0
data/lib/chef/resource_collection/resource_list.rb +89 -0
data/lib/chef/resource_collection/resource_set.rb +170 -0
data/lib/chef/resources.rb +2 -0
data/lib/chef/role.rb +1 -1
data/lib/chef/run_context.rb +5 -1
data/lib/chef/shell/ext.rb +1 -1
data/lib/chef/util/backup.rb +3 -2
data/lib/chef/util/dsc/configuration_generator.rb +115 -0
data/lib/chef/util/dsc/lcm_output_parser.rb +133 -0
data/lib/chef/util/dsc/local_configuration_manager.rb +141 -0
data/lib/chef/util/dsc/resource_info.rb +26 -0
data/lib/chef/util/path_helper.rb +12 -0
data/lib/chef/util/powershell/cmdlet.rb +136 -0
data/lib/chef/util/powershell/cmdlet_result.rb +46 -0
data/lib/chef/version.rb +1 -1
data/lib/chef/win32/api/system.rb +9 -0
data/lib/chef/win32/version.rb +2 -0
data/spec/.DS_Store +0 -0
data/spec/data/.DS_Store +0 -0
data/spec/data/bootstrap/test-hints.erb +1 -1
data/spec/data/bootstrap/test.erb +1 -1
data/spec/data/cb_version_cookbooks/cookbook2/files/test.txt +0 -0
data/spec/data/cb_version_cookbooks/cookbook2/templates/test.erb +0 -0
data/spec/data/cookbooks/ignorken/files/default/not_me.rb +2 -0
data/spec/data/cookbooks/ignorken/templates/ubuntu-12.10/not_me.rb +2 -0
data/spec/data/cookbooks/openldap/libraries/openldap.rb +4 -0
data/spec/data/cookbooks/openldap/libraries/openldap/version.rb +3 -0
data/spec/data/lwrp/.DS_Store +0 -0
data/spec/data/lwrp/providers/.DS_Store +0 -0
data/spec/data/lwrp/providers/buck_passer.rb +9 -2
data/spec/data/lwrp/resources/.DS_Store +0 -0
data/spec/data/lwrp/resources/foo.rb +3 -2
data/spec/data/lwrp_override/.DS_Store +0 -0
data/spec/data/lwrp_override/providers/.DS_Store +0 -0
data/spec/data/lwrp_override/providers/buck_passer.rb +5 -10
data/spec/data/lwrp_override/resources/.DS_Store +0 -0
data/spec/data/lwrp_override/resources/foo.rb +4 -3
data/spec/functional/assets/chefinittest +34 -0
data/spec/functional/assets/testchefsubsys +11 -0
data/spec/functional/dsl/reboot_pending_spec.rb +19 -16
data/spec/functional/event_loggers/windows_eventlog_spec.rb +82 -0
data/spec/functional/knife/cookbook_delete_spec.rb +3 -3
data/spec/functional/knife/exec_spec.rb +1 -1
data/spec/functional/resource/aix_service_spec.rb +136 -0
data/spec/functional/resource/aixinit_service_spec.rb +211 -0
data/spec/functional/resource/base.rb +1 -0
data/spec/functional/resource/batch_spec.rb +4 -11
data/spec/functional/resource/cron_spec.rb +7 -1
data/spec/functional/resource/dsc_script_spec.rb +382 -0
data/spec/functional/resource/env_spec.rb +54 -0
data/spec/functional/resource/execute_spec.rb +113 -0
data/spec/functional/resource/file_spec.rb +2 -0
data/spec/functional/resource/group_spec.rb +7 -4
data/spec/functional/resource/powershell_spec.rb +198 -185
data/spec/functional/resource/rpm_spec.rb +5 -4
data/spec/functional/resource/user/dscl_spec.rb +2 -1
data/spec/functional/util/path_helper_spec.rb +37 -0
data/spec/functional/util/powershell/cmdlet_spec.rb +114 -0
data/spec/integration/client/client_spec.rb +1 -1
data/spec/integration/client/ipv6_spec.rb +1 -1
data/spec/integration/knife/chef_fs_data_store_spec.rb +1 -1
data/spec/integration/knife/chef_repo_path_spec.rb +1 -1
data/spec/integration/knife/chef_repository_file_system_spec.rb +1 -1
data/spec/integration/knife/chefignore_spec.rb +1 -1
data/spec/integration/knife/common_options_spec.rb +1 -1
data/spec/integration/knife/cookbook_api_ipv6_spec.rb +2 -2
data/spec/integration/knife/delete_spec.rb +1 -1
data/spec/integration/knife/deps_spec.rb +1 -1
data/spec/integration/knife/diff_spec.rb +1 -1
data/spec/integration/knife/download_spec.rb +1 -1
data/spec/integration/knife/list_spec.rb +1 -1
data/spec/integration/knife/raw_spec.rb +1 -1
data/spec/integration/knife/redirection_spec.rb +1 -1
data/spec/integration/knife/serve_spec.rb +1 -1
data/spec/integration/knife/show_spec.rb +1 -1
data/spec/integration/knife/upload_spec.rb +4 -3
data/spec/integration/recipes/lwrp_inline_resources_spec.rb +1 -1
data/spec/spec_helper.rb +15 -0
data/spec/support/chef_helpers.rb +1 -0
data/spec/support/lib/chef/provider/snakeoil.rb +1 -0
data/spec/support/lib/chef/resource/zen_follower.rb +1 -7
data/spec/support/platform_helpers.rb +28 -0
data/spec/support/shared/functional/file_resource.rb +6 -0
data/spec/support/shared/functional/windows_script.rb +118 -0
data/spec/support/shared/integration/integration_helper.rb +5 -2
data/spec/support/shared/matchers/exit_with_code.rb +28 -0
data/spec/support/shared/matchers/match_environment_variable.rb +17 -0
data/spec/support/shared/shared_examples.rb +14 -0
data/spec/support/shared/unit/execute_resource.rb +0 -7
data/spec/support/shared/unit/resource/static_provider_resolution.rb +71 -0
data/spec/support/shared/unit/script_resource.rb +1 -1
data/spec/support/shared/unit/windows_script_resource.rb +35 -2
data/spec/tiny_server.rb +1 -2
data/spec/unit/api_client_spec.rb +5 -1
data/spec/unit/application/{apply.rb → apply_spec.rb} +13 -5
data/spec/unit/application/client_spec.rb +106 -13
data/spec/unit/application/solo_spec.rb +25 -1
data/spec/unit/client_spec.rb +1 -26
data/spec/unit/config_fetcher_spec.rb +2 -1
data/spec/unit/config_spec.rb +91 -2
data/spec/unit/cookbook/cookbook_version_loader_spec.rb +8 -0
data/spec/unit/cookbook/metadata_spec.rb +43 -6
data/spec/unit/cookbook/syntax_check_spec.rb +8 -2
data/spec/unit/cookbook_loader_spec.rb +4 -2
data/spec/unit/cookbook_version_spec.rb +83 -2
data/spec/unit/data_bag_item_spec.rb +5 -1
data/spec/unit/data_bag_spec.rb +6 -1
data/spec/unit/dsl/data_query_spec.rb +8 -110
data/spec/unit/encrypted_data_bag_item/check_encrypted_spec.rb +95 -0
data/spec/unit/encrypted_data_bag_item_spec.rb +16 -23
data/spec/unit/environment_spec.rb +6 -2
data/spec/unit/exceptions_spec.rb +6 -0
data/spec/unit/guard_interpreter/resource_guard_interpreter_spec.rb +16 -15
data/spec/unit/json_compat_spec.rb +12 -2
data/spec/unit/knife/bootstrap_spec.rb +16 -63
data/spec/unit/knife/cookbook_site_share_spec.rb +59 -6
data/spec/unit/knife/core/bootstrap_context_spec.rb +8 -37
data/spec/unit/knife/core/subcommand_loader_spec.rb +1 -1
data/spec/unit/knife/core/ui_spec.rb +28 -0
data/spec/unit/knife/data_bag_create_spec.rb +63 -71
data/spec/unit/knife/data_bag_edit_spec.rb +83 -49
data/spec/unit/knife/data_bag_from_file_spec.rb +104 -126
data/spec/unit/knife/data_bag_secret_options_spec.rb +165 -0
data/spec/unit/knife/data_bag_show_spec.rb +74 -72
data/spec/unit/knife/environment_from_file_spec.rb +3 -2
data/spec/unit/knife/ssl_check_spec.rb +46 -1
data/spec/unit/knife/status_spec.rb +1 -2
data/spec/unit/knife_spec.rb +18 -1
data/spec/unit/lwrp_spec.rb +29 -8
data/spec/unit/mixin/homebrew_user_spec.rb +100 -0
data/spec/unit/node_map_spec.rb +155 -0
data/spec/unit/node_spec.rb +11 -0
data/spec/unit/platform/query_helpers_spec.rb +23 -0
data/spec/unit/platform_spec.rb +23 -0
data/spec/unit/provider/breakpoint_spec.rb +9 -9
data/spec/unit/provider/cookbook_file/content_spec.rb +3 -3
data/spec/unit/provider/cookbook_file_spec.rb +1 -1
data/spec/unit/provider/cron/unix_spec.rb +78 -60
data/spec/unit/provider/cron_spec.rb +175 -175
data/spec/unit/provider/deploy/revision_spec.rb +22 -21
data/spec/unit/provider/deploy/timestamped_spec.rb +3 -3
data/spec/unit/provider/deploy_spec.rb +231 -230
data/spec/unit/provider/directory_spec.rb +55 -55
data/spec/unit/provider/dsc_script_spec.rb +174 -0
data/spec/unit/provider/env/windows_spec.rb +70 -34
data/spec/unit/provider/env_spec.rb +95 -49
data/spec/unit/provider/erl_call_spec.rb +9 -9
data/spec/unit/provider/execute_spec.rb +43 -27
data/spec/unit/provider/file/content_spec.rb +9 -9
data/spec/unit/provider/file_spec.rb +1 -1
data/spec/unit/provider/git_spec.rb +221 -159
data/spec/unit/provider/group/dscl_spec.rb +64 -63
data/spec/unit/provider/group/gpasswd_spec.rb +14 -14
data/spec/unit/provider/group/groupadd_spec.rb +33 -33
data/spec/unit/provider/group/groupmod_spec.rb +23 -23
data/spec/unit/provider/group/pw_spec.rb +21 -21
data/spec/unit/provider/group/usermod_spec.rb +20 -20
data/spec/unit/provider/group/windows_spec.rb +15 -15
data/spec/unit/provider/group_spec.rb +76 -76
data/spec/unit/provider/http_request_spec.rb +30 -30
data/spec/unit/provider/ifconfig/aix_spec.rb +20 -20
data/spec/unit/provider/ifconfig/debian_spec.rb +25 -9
data/spec/unit/provider/ifconfig/redhat_spec.rb +13 -13
data/spec/unit/provider/ifconfig_spec.rb +43 -43
data/spec/unit/provider/link_spec.rb +60 -60
data/spec/unit/provider/log_spec.rb +0 -4
data/spec/unit/provider/mdadm_spec.rb +23 -23
data/spec/unit/provider/mount/aix_spec.rb +17 -17
data/spec/unit/provider/mount/mount_spec.rb +115 -119
data/spec/unit/provider/mount/solaris_spec.rb +72 -72
data/spec/unit/provider/mount/windows_spec.rb +24 -24
data/spec/unit/provider/ohai_spec.rb +11 -11
data/spec/unit/provider/package/aix_spec.rb +34 -34
data/spec/unit/provider/package/apt_spec.rb +36 -36
data/spec/unit/provider/package/dpkg_spec.rb +27 -27
data/spec/unit/provider/package/easy_install_spec.rb +16 -16
data/spec/unit/provider/package/freebsd/pkg_spec.rb +53 -53
data/spec/unit/provider/package/freebsd/pkgng_spec.rb +24 -24
data/spec/unit/provider/package/freebsd/port_spec.rb +45 -35
data/spec/unit/provider/package/homebrew_spec.rb +266 -0
data/spec/unit/provider/package/ips_spec.rb +34 -34
data/spec/unit/provider/package/macports_spec.rb +49 -49
data/spec/unit/provider/package/pacman_spec.rb +35 -39
data/spec/unit/provider/package/paludis_spec.rb +20 -20
data/spec/unit/provider/package/portage_spec.rb +38 -38
data/spec/unit/provider/package/rpm_spec.rb +29 -29
data/spec/unit/provider/package/rubygems_spec.rb +284 -270
data/spec/unit/provider/package/smartos_spec.rb +15 -15
data/spec/unit/provider/package/solaris_spec.rb +35 -35
data/spec/unit/provider/package/windows/msi_spec.rb +3 -3
data/spec/unit/provider/package/windows_spec.rb +6 -6
data/spec/unit/provider/package/yum_spec.rb +416 -416
data/spec/unit/provider/package/zypper_spec.rb +47 -47
data/spec/unit/provider/package_spec.rb +107 -107
data/spec/unit/provider/powershell_spec.rb +1 -1
data/spec/unit/provider/registry_key_spec.rb +61 -61
data/spec/unit/provider/remote_directory_spec.rb +36 -36
data/spec/unit/provider/remote_file/cache_control_data_spec.rb +24 -24
data/spec/unit/provider/remote_file/content_spec.rb +45 -45
data/spec/unit/provider/remote_file/fetcher_spec.rb +9 -9
data/spec/unit/provider/remote_file/ftp_spec.rb +32 -32
data/spec/unit/provider/remote_file/http_spec.rb +44 -44
data/spec/unit/provider/remote_file/local_file_spec.rb +9 -9
data/spec/unit/provider/remote_file_spec.rb +3 -3
data/spec/unit/provider/route_spec.rb +63 -63
data/spec/unit/provider/ruby_block_spec.rb +4 -4
data/spec/unit/provider/script_spec.rb +12 -12
data/spec/unit/provider/service/aix_service_spec.rb +181 -0
data/spec/unit/provider/service/aixinit_service_spec.rb +269 -0
data/spec/unit/provider/service/arch_service_spec.rb +48 -48
data/spec/unit/provider/service/debian_service_spec.rb +40 -40
data/spec/unit/provider/service/gentoo_service_spec.rb +28 -28
data/spec/unit/provider/service/init_service_spec.rb +39 -39
data/spec/unit/provider/service/insserv_service_spec.rb +8 -8
data/spec/unit/provider/service/invokercd_service_spec.rb +35 -35
data/spec/unit/provider/service/macosx_spec.rb +49 -49
data/spec/unit/provider/service/redhat_spec.rb +27 -27
data/spec/unit/provider/service/simple_service_spec.rb +28 -28
data/spec/unit/provider/service/solaris_smf_service_spec.rb +43 -46
data/spec/unit/provider/service/systemd_service_spec.rb +63 -63
data/spec/unit/provider/service/upstart_service_spec.rb +78 -78
data/spec/unit/provider/service/windows_spec.rb +92 -92
data/spec/unit/provider/service_spec.rb +40 -40
data/spec/unit/provider/subversion_spec.rb +80 -80
data/spec/unit/provider/template/content_spec.rb +9 -9
data/spec/unit/provider/template_spec.rb +6 -6
data/spec/unit/provider/user/dscl_spec.rb +170 -167
data/spec/unit/provider/user/pw_spec.rb +48 -48
data/spec/unit/provider/user/solaris_spec.rb +8 -8
data/spec/unit/provider/user/useradd_spec.rb +1 -1
data/spec/unit/provider/user/windows_spec.rb +26 -26
data/spec/unit/provider/user_spec.rb +72 -72
data/spec/unit/provider/whyrun_safe_ruby_block_spec.rb +4 -4
data/spec/unit/provider_resolver_spec.rb +387 -0
data/spec/unit/recipe_spec.rb +33 -12
data/spec/unit/resource/apt_package_spec.rb +10 -13
data/spec/unit/resource/bash_spec.rb +4 -4
data/spec/unit/resource/batch_spec.rb +1 -1
data/spec/unit/resource/breakpoint_spec.rb +11 -7
data/spec/unit/resource/chef_gem_spec.rb +8 -15
data/spec/unit/resource/conditional_action_not_nothing_spec.rb +2 -2
data/spec/unit/resource/conditional_spec.rb +35 -16
data/spec/unit/resource/cookbook_file_spec.rb +13 -13
data/spec/unit/resource/cron_spec.rb +37 -37
data/spec/unit/resource/csh_spec.rb +4 -4
data/spec/unit/resource/deploy_revision_spec.rb +13 -18
data/spec/unit/resource/deploy_spec.rb +60 -55
data/spec/unit/resource/directory_spec.rb +18 -18
data/spec/unit/resource/dpkg_package_spec.rb +8 -14
data/spec/unit/resource/dsc_script_spec.rb +98 -0
data/spec/unit/resource/easy_install_package_spec.rb +9 -18
data/spec/unit/resource/env_spec.rb +12 -12
data/spec/unit/resource/erl_call_spec.rb +11 -11
data/spec/unit/resource/execute_spec.rb +5 -0
data/spec/unit/resource/file_spec.rb +29 -29
data/spec/unit/resource/freebsd_package_spec.rb +11 -12
data/spec/unit/resource/gem_package_spec.rb +8 -15
data/spec/unit/resource/git_spec.rb +12 -8
data/spec/unit/resource/group_spec.rb +27 -27
data/spec/unit/resource/homebrew_package_spec.rb +50 -0
data/spec/unit/resource/http_request_spec.rb +6 -6
data/spec/unit/resource/ifconfig_spec.rb +8 -8
data/spec/unit/resource/ips_package_spec.rb +10 -13
data/spec/unit/resource/link_spec.rb +25 -25
data/spec/unit/resource/log_spec.rb +9 -9
data/spec/unit/resource/macports_package_spec.rb +8 -13
data/spec/unit/resource/mdadm_spec.rb +18 -18
data/spec/unit/resource/mount_spec.rb +45 -45
data/spec/unit/resource/ohai_spec.rb +7 -7
data/spec/unit/resource/package_spec.rb +12 -12
data/spec/unit/resource/pacman_package_spec.rb +8 -14
data/spec/unit/resource/perl_spec.rb +4 -4
data/spec/unit/resource/portage_package_spec.rb +3 -3
data/spec/unit/resource/powershell_spec.rb +7 -7
data/spec/unit/resource/python_spec.rb +4 -4
data/spec/unit/resource/registry_key_spec.rb +32 -32
data/spec/unit/resource/remote_directory_spec.rb +17 -17
data/spec/unit/resource/remote_file_spec.rb +41 -41
data/spec/unit/resource/route_spec.rb +19 -19
data/spec/unit/resource/rpm_package_spec.rb +9 -13
data/spec/unit/resource/ruby_block_spec.rb +8 -8
data/spec/unit/resource/ruby_spec.rb +4 -4
data/spec/unit/resource/scm_spec.rb +40 -40
data/spec/unit/resource/script_spec.rb +2 -2
data/spec/unit/resource/service_spec.rb +37 -47
data/spec/unit/resource/smartos_package_spec.rb +10 -15
data/spec/unit/resource/solaris_package_spec.rb +13 -28
data/spec/unit/resource/subversion_spec.rb +16 -12
data/spec/unit/resource/template_spec.rb +35 -35
data/spec/unit/resource/timestamped_deploy_spec.rb +30 -4
data/spec/unit/resource/user_spec.rb +23 -23
data/spec/unit/resource/windows_package_spec.rb +17 -10
data/spec/unit/resource/windows_service_spec.rb +9 -6
data/spec/unit/resource/yum_package_spec.rb +16 -21
data/spec/unit/resource_collection/resource_list_spec.rb +137 -0
data/spec/unit/resource_collection/resource_set_spec.rb +199 -0
data/spec/unit/resource_collection_spec.rb +73 -92
data/spec/unit/resource_definition_spec.rb +38 -40
data/spec/unit/resource_reporter_spec.rb +3 -3
data/spec/unit/resource_spec.rb +68 -33
data/spec/unit/rest_spec.rb +83 -76
data/spec/unit/role_spec.rb +5 -0
data/spec/unit/run_list_spec.rb +5 -1
data/spec/unit/runner_spec.rb +245 -238
data/spec/unit/shell/shell_ext_spec.rb +1 -1
data/spec/unit/user_spec.rb +5 -1
data/spec/unit/util/dsc/configuration_generator_spec.rb +171 -0
data/spec/unit/util/dsc/lcm_output_parser_spec.rb +169 -0
data/spec/unit/util/dsc/local_configuration_manager_spec.rb +139 -0
data/spec/unit/util/path_helper_spec.rb +23 -1
data/spec/unit/util/powershell/cmdlet_spec.rb +106 -0
data/spec/unit/workstation_config_loader_spec.rb +1 -1
metadata +303 -196
checksums.yaml +0 -7
data/distro/README +0 -2
data/distro/arch/etc/conf.d/chef-client.conf +0 -5
data/distro/arch/etc/conf.d/chef-expander.conf +0 -8
data/distro/arch/etc/conf.d/chef-server-webui.conf +0 -10
data/distro/arch/etc/conf.d/chef-server.conf +0 -10
data/distro/arch/etc/conf.d/chef-solr.conf +0 -8
data/distro/arch/etc/rc.d/chef-client +0 -90
data/distro/arch/etc/rc.d/chef-expander +0 -78
data/distro/arch/etc/rc.d/chef-server +0 -78
data/distro/arch/etc/rc.d/chef-server-webui +0 -78
data/distro/arch/etc/rc.d/chef-solr +0 -78
data/distro/debian/etc/default/chef-client +0 -4
data/distro/debian/etc/default/chef-expander +0 -8
data/distro/debian/etc/default/chef-server +0 -9
data/distro/debian/etc/default/chef-server-webui +0 -9
data/distro/debian/etc/default/chef-solr +0 -8
data/distro/debian/etc/init.d/chef-client +0 -212
data/distro/debian/etc/init.d/chef-expander +0 -176
data/distro/debian/etc/init.d/chef-server +0 -122
data/distro/debian/etc/init.d/chef-server-webui +0 -123
data/distro/debian/etc/init.d/chef-solr +0 -176
data/distro/debian/etc/init/chef-client.conf +0 -17
data/distro/debian/etc/init/chef-expander.conf +0 -17
data/distro/debian/etc/init/chef-server-webui.conf +0 -17
data/distro/debian/etc/init/chef-server.conf +0 -17
data/distro/debian/etc/init/chef-solr.conf +0 -17
data/distro/redhat/etc/init.d/chef-client +0 -121
data/distro/redhat/etc/init.d/chef-expander +0 -104
data/distro/redhat/etc/init.d/chef-server +0 -112
data/distro/redhat/etc/init.d/chef-server-webui +0 -112
data/distro/redhat/etc/init.d/chef-solr +0 -104
data/distro/redhat/etc/logrotate.d/chef-client +0 -8
data/distro/redhat/etc/logrotate.d/chef-expander +0 -8
data/distro/redhat/etc/logrotate.d/chef-server +0 -8
data/distro/redhat/etc/logrotate.d/chef-server-webui +0 -8
data/distro/redhat/etc/logrotate.d/chef-solr +0 -8
data/distro/redhat/etc/sysconfig/chef-client +0 -15
data/distro/redhat/etc/sysconfig/chef-expander +0 -7
data/distro/redhat/etc/sysconfig/chef-server +0 -14
data/distro/redhat/etc/sysconfig/chef-server-webui +0 -14
data/distro/redhat/etc/sysconfig/chef-solr +0 -8
data/distro/windows/service_manager.rb +0 -20
data/lib/chef/resource_platform_map.rb +0 -151
data/spec/support/shared/matchers.rb +0 -17
data/spec/unit/resource_platform_map_spec.rb +0 -164

data/lib/chef/knife/data_bag_edit.rb CHANGED

@@ -18,10 +18,12 @@
 #
 require 'chef/knife'
+require 'chef/knife/data_bag_secret_options'
 class Chef
   class Knife
     class DataBagEdit < Knife
+      include DataBagSecretOptions
       deps do
         require 'chef/data_bag_item'
@@ -31,48 +33,17 @@ class Chef
       banner "knife data bag edit BAG ITEM (options)"
       category "data bag"
-      option :secret,
-        :short => "-s SECRET",
-        :long  => "--secret ",
-        :description => "The secret key to use to encrypt data bag item values",
-        :proc => Proc.new { |s| Chef::Config[:knife][:secret] = s }
-      option :secret_file,
-        :long => "--secret-file SECRET_FILE",
-        :description => "A file containing the secret key to use to encrypt data bag item values",
-        :proc => Proc.new { |sf| Chef::Config[:knife][:secret_file] = sf }
-      def read_secret
-        if config[:secret]
-          config[:secret]
-        else
-          Chef::EncryptedDataBagItem.load_secret(config[:secret_file])
-        end
-      end
-      def use_encryption
-        if config[:secret] && config[:secret_file]
-          stdout.puts "please specify only one of --secret, --secret-file"
-          exit(1)
-        end
-        config[:secret] || config[:secret_file]
-      end
       def load_item(bag, item_name)
         item = Chef::DataBagItem.load(bag, item_name)
-        if use_encryption
-          Chef::EncryptedDataBagItem.new(item, read_secret).to_hash
+        if encrypted?(item.raw_data)
+          if encryption_secret_provided_ignore_encrypt_flag?
+            return Chef::EncryptedDataBagItem.new(item, read_secret).to_hash, true
+          else
+            ui.fatal("You cannot edit an encrypted data bag without providing the secret.")
+            exit(1)
+          end
         else
-          item
-        end
-      end
-      def edit_item(item)
-        output = edit_data(item)
-        if use_encryption
-          Chef::EncryptedDataBagItem.encrypt_data_bag_item(output, read_secret)
-        else
-          output
+          return item, false
         end
       end
@@ -82,11 +53,21 @@ class Chef
           stdout.puts opt_parser
           exit 1
         end
-        item = load_item(@name_args[0], @name_args[1])
-        output = edit_item(item)
-        rest.put_rest("data/#{@name_args[0]}/#{@name_args[1]}", output)
+        item, was_encrypted = load_item(@name_args[0], @name_args[1])
+        edited_item = edit_data(item)
+        if was_encrypted || encryption_secret_provided?
+          ui.info("Encrypting data bag using provided secret.")
+          item_to_save = Chef::EncryptedDataBagItem.encrypt_data_bag_item(edited_item, read_secret)
+        else
+          ui.info("Saving data bag unencrypted.  To encrypt it, provide an appropriate secret.")
+          item_to_save = edited_item
+        end
+        rest.put_rest("data/#{@name_args[0]}/#{@name_args[1]}", item_to_save)
         stdout.puts("Saved data_bag_item[#{@name_args[1]}]")
-        ui.output(output) if config[:print_after]
+        ui.output(edited_item) if config[:print_after]
       end
     end
   end

data/lib/chef/knife/data_bag_from_file.rb CHANGED

@@ -18,10 +18,13 @@
 #
 require 'chef/knife'
+require 'chef/util/path_helper'
+require 'chef/knife/data_bag_secret_options'
 class Chef
   class Knife
     class DataBagFromFile < Knife
+      include DataBagSecretOptions
       deps do
         require 'chef/data_bag'
@@ -34,38 +37,11 @@ class Chef
       banner "knife data bag from file BAG FILE|FOLDER [FILE|FOLDER..] (options)"
       category "data bag"
-      option :secret,
-        :short => "-s SECRET",
-        :long  => "--secret ",
-        :description => "The secret key to use to encrypt data bag item values",
-        :proc => Proc.new { |s| Chef::Config[:knife][:secret] = s }
-      option :secret_file,
-        :long => "--secret-file SECRET_FILE",
-        :description => "A file containing the secret key to use to encrypt data bag item values",
-        :proc => Proc.new { |sf| Chef::Config[:knife][:secret_file] = sf }
       option :all,
         :short => "-a",
         :long  => "--all",
         :description => "Upload all data bags or all items for specified data bags"
-      def read_secret
-        if config[:secret]
-          config[:secret]
-        else
-          Chef::EncryptedDataBagItem.load_secret(config[:secret_file])
-        end
-      end
-      def use_encryption
-        if config[:secret] && config[:secret_file]
-          ui.fatal("please specify only one of --secret, --secret-file")
-          exit(1)
-        end
-        config[:secret] || config[:secret_file]
-      end
       def loader
         @loader ||= Knife::Core::ObjectLoader.new(DataBagItem, ui)
       end
@@ -108,9 +84,8 @@ class Chef
         item_paths = normalize_item_paths(items)
         item_paths.each do |item_path|
           item = loader.load_from("#{data_bags_path}", data_bag, item_path)
-          item = if use_encryption
-                   secret = read_secret
-                   Chef::EncryptedDataBagItem.encrypt_data_bag_item(item, secret)
+          item = if encryption_secret_provided?
+                   Chef::EncryptedDataBagItem.encrypt_data_bag_item(item, read_secret)
                  else
                    item
                  end
@@ -126,7 +101,7 @@ class Chef
         paths = Array.new
         args.each do |path|
           if File.directory?(path)
-            paths.concat(Dir.glob(File.join(path, "*.json")))
+            paths.concat(Dir.glob(File.join(Chef::Util::PathHelper.escape_glob(path), "*.json")))
           else
             paths << path
           end

data/lib/chef/knife/data_bag_secret_options.rb ADDED

@@ -0,0 +1,142 @@
+#
+# Author:: Tyler Ball (<tball@opscode.com>)
+# Copyright:: Copyright (c) 2014 Opscode, Inc.
+# License:: Apache License, Version 2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+require 'mixlib/cli'
+require 'chef/config'
+require 'chef/encrypted_data_bag_item/check_encrypted'
+class Chef
+  class Knife
+    module DataBagSecretOptions
+      include Mixlib::CLI
+      include Chef::EncryptedDataBagItem::CheckEncrypted
+      # The config object is populated by knife#merge_configs with knife.rb `knife[:*]` config values, but they do
+      # not overwrite the command line properties.  It does mean, however, that `knife[:secret]` and `--secret-file`
+      # passed at the same time populate both `config[:secret]` and `config[:secret_file]`.  We cannot differentiate
+      # the valid case (`knife[:secret]` in config file and `--secret-file` on CL) and the invalid case (`--secret`
+      # and `--secret-file` on the CL) - thats why I'm storing the CL options in a different config key if they
+      # are provided.
+      def self.included(base)
+        base.option :secret,
+               :short => "-s SECRET",
+               :long  => "--secret ",
+               :description => "The secret key to use to encrypt data bag item values.  Can also be defaulted in your config with the key 'secret'",
+               # Need to store value from command line in separate variable - knife#merge_configs populates same keys
+               # on config object from
+               :proc => Proc.new { |s| set_cl_secret(s) }
+        base.option :secret_file,
+               :long => "--secret-file SECRET_FILE",
+               :description => "A file containing the secret key to use to encrypt data bag item values.  Can also be defaulted in your config with the key 'secret_file'",
+               :proc => Proc.new { |sf| set_cl_secret_file(sf) }
+        base.option :encrypt,
+               :long => "--encrypt",
+               :description => "If 'secret' or 'secret_file' is present in your config, then encrypt data bags using it",
+               :boolean => true,
+               :default => false
+      end
+      def encryption_secret_provided?
+        base_encryption_secret_provided?
+      end
+      def encryption_secret_provided_ignore_encrypt_flag?
+        base_encryption_secret_provided?(false)
+      end
+      def read_secret
+        # Moving the non 'compile-time' requires into here to speed up knife command loading
+        # IE, if we are not running 'knife data bag *' we don't need to load 'chef/encrypted_data_bag_item'
+        require 'chef/encrypted_data_bag_item'
+        if has_cl_secret?
+          config[:secret]
+        elsif has_cl_secret_file?
+          Chef::EncryptedDataBagItem.load_secret(config[:secret_file])
+        elsif secret = knife_config[:secret]
+          secret
+        else
+          secret_file = knife_config[:secret_file]
+          Chef::EncryptedDataBagItem.load_secret(secret_file)
+        end
+      end
+      def validate_secrets
+        if has_cl_secret? && has_cl_secret_file?
+          ui.fatal("Please specify only one of --secret, --secret-file")
+          exit(1)
+        end
+        if knife_config[:secret] && knife_config[:secret_file]
+          ui.fatal("Please specify only one of 'secret' or 'secret_file' in your config file")
+          exit(1)
+        end
+      end
+      private
+      ##
+      # Determine if the user has specified an appropriate secret for encrypting data bag items.
+      # @returns boolean
+      def base_encryption_secret_provided?(need_encrypt_flag = true)
+        validate_secrets
+        return true if has_cl_secret? || has_cl_secret_file?
+        if need_encrypt_flag
+          if config[:encrypt]
+            unless knife_config[:secret] || knife_config[:secret_file]
+              ui.fatal("No secret or secret_file specified in config, unable to encrypt item.")
+              exit(1)
+            end
+            return true
+          end
+          return false
+        elsif knife_config[:secret] || knife_config[:secret_file]
+          # Certain situations (show and bootstrap) don't need a --encrypt flag to use the config file secret
+          return true
+        end
+        return false
+      end
+      def has_cl_secret?
+        Chef::Config[:knife].has_key?(:cl_secret)
+      end
+      def self.set_cl_secret(s)
+        Chef::Config[:knife][:cl_secret] = s
+      end
+      def has_cl_secret_file?
+        Chef::Config[:knife].has_key?(:cl_secret_file)
+      end
+      def self.set_cl_secret_file(sf)
+        Chef::Config[:knife][:cl_secret_file] = sf
+      end
+      def knife_config
+        Chef::Config.key?(:knife) ? Chef::Config[:knife] : {}
+      end
+    end
+  end
+end

data/lib/chef/knife/data_bag_show.rb CHANGED

@@ -18,10 +18,12 @@
 #
 require 'chef/knife'
+require 'chef/knife/data_bag_secret_options'
 class Chef
   class Knife
     class DataBagShow < Knife
+      include DataBagSecretOptions
       deps do
         require 'chef/data_bag'
@@ -31,45 +33,29 @@ class Chef
       banner "knife data bag show BAG [ITEM] (options)"
       category "data bag"
-      option :secret,
-        :short => "-s SECRET",
-        :long  => "--secret ",
-        :description => "The secret key to use to decrypt data bag item values",
-        :proc => Proc.new { |s| Chef::Config[:knife][:secret] = s }
-      option :secret_file,
-        :long => "--secret-file SECRET_FILE",
-        :description => "A file containing the secret key to use to decrypt data bag item values",
-        :proc => Proc.new { |sf| Chef::Config[:knife][:secret_file] = sf }
-      def read_secret
-        if config[:secret]
-          config[:secret]
-        else
-          Chef::EncryptedDataBagItem.load_secret(config[:secret_file])
-        end
-      end
-      def use_encryption
-        if config[:secret] && config[:secret_file]
-          stdout.puts "please specify only one of --secret, --secret-file"
-          exit(1)
-        end
-        config[:secret] || config[:secret_file]
-      end
       def run
         display = case @name_args.length
-        when 2
-          if use_encryption
+        when 2 # Bag and Item names provided
+          secret = encryption_secret_provided_ignore_encrypt_flag? ? read_secret : nil
+          raw_data = Chef::DataBagItem.load(@name_args[0], @name_args[1]).raw_data
+          encrypted = encrypted?(raw_data)
+          if encrypted && secret
+            # Users do not need to pass --encrypt to read data, we simply try to use the provided secret
+            ui.info("Encrypted data bag detected, decrypting with provided secret.")
             raw = Chef::EncryptedDataBagItem.load(@name_args[0],
                                                   @name_args[1],
-                                                  read_secret)
+                                                  secret)
             format_for_display(raw.to_hash)
+          elsif encrypted && !secret
+            ui.warn("Encrypted data bag detected, but no secret provided for decoding.  Displaying encrypted data.")
+            format_for_display(raw_data)
           else
-            format_for_display(Chef::DataBagItem.load(@name_args[0], @name_args[1]).raw_data)
+            ui.info("Unencrypted data bag detected, ignoring any provided secret options.")
+            format_for_display(raw_data)
           end
-        when 1
+        when 1 # Only Bag name provided
           format_list_for_display(Chef::DataBag.load(@name_args[0]))
         else
           stdout.puts opt_parser
@@ -77,7 +63,7 @@ class Chef
         end
         output(display)
       end
     end
   end
 end

data/lib/chef/knife/node_from_file.rb CHANGED

@@ -35,16 +35,17 @@ class Chef
       end
       def run
-        updated = loader.load_from('nodes', @name_args[0])
-        updated.save
-        output(format_for_display(updated)) if config[:print_after]
-        ui.info("Updated Node #{updated.name}!")
+        @name_args.each do |arg|
+          updated = loader.load_from('nodes', arg)
+          updated.save
+          output(format_for_display(updated)) if config[:print_after]
+          ui.info("Updated Node #{updated.name}!")
+        end
       end
     end
   end
 end

data/lib/chef/knife/ssh.rb CHANGED

@@ -106,13 +106,6 @@ class Chef
       def session
         config[:on_error] ||= :skip
         ssh_error_handler = Proc.new do |server|
-          if config[:manual]
-            node_name = server.host
-          else
-            @action_nodes.each do |n|
-              node_name = n if format_for_display(n)[config[:attribute]] == server.host
-            end
-          end
           case config[:on_error]
           when :skip
             ui.warn "Failed to connect to #{server.host} -- #{$!.class.name}: #{$!.message}"

data/lib/chef/knife/ssl_check.rb CHANGED

@@ -106,6 +106,22 @@ class Chef
         end
       end
+      def verify_X509
+        cert_debug_msg = ""
+        trusted_certificates.each do |cert_name|
+          message = check_X509_certificate(cert_name)
+          unless message.nil?
+            cert_debug_msg << File.expand_path(cert_name) + ": " + message + "\n"
+          end
+        end
+        unless cert_debug_msg.empty?
+          debug_invalid_X509(cert_debug_msg)
+        end
+        true # Maybe the bad certs won't hurt...
+      end
       def verify_cert
         ui.msg("Connecting to host #{host}:#{port}")
         verify_peer_socket.connect
@@ -127,6 +143,35 @@ class Chef
         false
       end
+      def debug_invalid_X509(cert_debug_msg)
+        ui.msg("\n#{ui.color("Configuration Info:", :bold)}\n\n")
+        debug_ssl_settings
+        debug_chef_ssl_config
+        ui.warn(<<-BAD_CERTS)
+There are invalid certificates in your trusted_certs_dir.
+OpenSSL will not use the following certificates when verifying SSL connections:
+#{cert_debug_msg}
+#{ui.color("TO FIX THESE WARNINGS:", :bold)}
+We are working on documentation for resolving common issues uncovered here.
+* If the certificate is generated by the server, you may try redownloading the
+server's certificate. By default, the certificate is stored in the following
+location on the host where your chef-server runs:
+  /var/opt/chef-server/nginx/ca/SERVER_HOSTNAME.crt
+Copy that file to your trusted_certs_dir (currently: #{configuration.trusted_certs_dir})
+using SSH/SCP or some other secure method, then re-run this command to confirm
+that the server's certificate is now trusted.
+BAD_CERTS
+        # @TODO: ^ needs URL once documentation is posted.
+      end
       def debug_invalid_cert
         noverify_socket.connect
         issuer_info = noverify_socket.peer_cert.issuer
@@ -148,7 +193,7 @@ where your chef-server runs:
   /var/opt/chef-server/nginx/ca/SERVER_HOSTNAME.crt
-Copy that file to you trusted_certs_dir (currently: #{configuration.trusted_certs_dir})
+Copy that file to your trusted_certs_dir (currently: #{configuration.trusted_certs_dir})
 using SSH/SCP or some other secure method, then re-run this command to confirm
 that the server's certificate is now trusted.
@@ -197,17 +242,36 @@ ADVICE
       def run
         validate_uri
-        if verify_cert && verify_cert_host
+        if verify_X509 && verify_cert && verify_cert_host
           ui.msg "Successfully verified certificates from `#{host}'"
         else
           exit 1
         end
       end
+      private
+      def trusted_certificates
+        if configuration.trusted_certs_dir && Dir.exist?(configuration.trusted_certs_dir)
+          Dir.glob(File.join(configuration.trusted_certs_dir, "*.{crt,pem}"))
+        else
+          []
+        end
+      end
+      def check_X509_certificate(cert_file)
+        store = OpenSSL::X509::Store.new
+        cert = OpenSSL::X509::Certificate.new(IO.read(File.expand_path(cert_file)))
+        begin
+          store.add_cert(cert)
+          # test if the store can verify the cert we just added
+          unless store.verify(cert) # true if verified, false if not
+            return store.error_string
+          end
+        rescue OpenSSL::X509::StoreError => e
+          return e.message
+        end
+        return nil
+      end
     end
   end
 end