RubyGems - chef - Versions diffs - 12.0.3-x86-mingw32 → 12.1.0.rc.0-x86-mingw32 - Mend

chef 12.0.3-x86-mingw32 → 12.1.0.rc.0-x86-mingw32

Files changed (653) hide show

checksums.yaml +4 -4
data/CONTRIBUTING.md +4 -1
data/README.md +42 -18
data/distro/common/html/_sources/ctl_chef_client.txt +1 -1
data/distro/common/html/_sources/ctl_chef_server.txt +53 -35
data/distro/common/html/_sources/ctl_chef_solo.txt +1 -1
data/distro/common/html/_sources/knife_bootstrap.txt +1 -1
data/distro/common/html/_sources/knife_cookbook_site.txt +1 -1
data/distro/common/html/_sources/knife_data_bag.txt +4 -4
data/distro/common/html/_sources/knife_status.txt +1 -1
data/distro/common/html/_static/searchtools.js +1 -1
data/distro/common/html/ctl_chef_client.html +55 -7
data/distro/common/html/ctl_chef_server.html +84 -41
data/distro/common/html/ctl_chef_shell.html +45 -1
data/distro/common/html/ctl_chef_solo.html +51 -5
data/distro/common/html/index.html +2 -2
data/distro/common/html/knife.html +1 -1
data/distro/common/html/knife_bootstrap.html +30 -10
data/distro/common/html/knife_cookbook_site.html +2 -0
data/distro/common/html/knife_data_bag.html +4 -4
data/distro/common/html/knife_node.html +2 -2
data/distro/common/html/knife_raw.html +1 -1
data/distro/common/html/knife_role.html +1 -1
data/distro/common/html/knife_search.html +3 -3
data/distro/common/html/knife_status.html +4 -0
data/distro/common/html/searchindex.js +1 -1
data/distro/common/man/man1/chef-shell.1 +72 -1
data/distro/common/man/man1/knife-bootstrap.1 +71 -63
data/distro/common/man/man1/knife-client.1 +1 -1
data/distro/common/man/man1/knife-configure.1 +1 -1
data/distro/common/man/man1/knife-cookbook-site.1 +4 -1
data/distro/common/man/man1/knife-cookbook.1 +1 -1
data/distro/common/man/man1/knife-data-bag.1 +5 -5
data/distro/common/man/man1/knife-delete.1 +1 -1
data/distro/common/man/man1/knife-deps.1 +1 -1
data/distro/common/man/man1/knife-diff.1 +1 -1
data/distro/common/man/man1/knife-download.1 +1 -1
data/distro/common/man/man1/knife-edit.1 +1 -1
data/distro/common/man/man1/knife-environment.1 +1 -1
data/distro/common/man/man1/knife-exec.1 +1 -1
data/distro/common/man/man1/knife-index-rebuild.1 +1 -1
data/distro/common/man/man1/knife-list.1 +1 -1
data/distro/common/man/man1/knife-node.1 +3 -3
data/distro/common/man/man1/knife-raw.1 +2 -2
data/distro/common/man/man1/knife-recipe-list.1 +1 -1
data/distro/common/man/man1/knife-role.1 +2 -2
data/distro/common/man/man1/knife-search.1 +4 -4
data/distro/common/man/man1/knife-serve.1 +1 -1
data/distro/common/man/man1/knife-show.1 +1 -1
data/distro/common/man/man1/knife-ssh.1 +1 -1
data/distro/common/man/man1/knife-ssl-check.1 +1 -1
data/distro/common/man/man1/knife-ssl-fetch.1 +1 -1
data/distro/common/man/man1/knife-status.1 +1 -1
data/distro/common/man/man1/knife-tag.1 +1 -1
data/distro/common/man/man1/knife-upload.1 +1 -1
data/distro/common/man/man1/knife-user.1 +1 -1
data/distro/common/man/man1/knife-xargs.1 +1 -1
data/distro/common/man/man1/knife.1 +1 -1
data/distro/common/man/man8/chef-apply.8 +86 -0
data/distro/common/man/man8/chef-client.8 +76 -5
data/distro/common/man/man8/chef-solo.8 +79 -6
data/distro/common/markdown/man1/knife-bootstrap.mkd +1 -1
data/distro/common/markdown/man1/knife-cookbook-site.mkd +1 -1
data/distro/common/markdown/man1/knife-data-bag.mkd +1 -1
data/distro/common/markdown/man1/knife-environment.mkd +1 -1
data/distro/common/markdown/man1/knife.mkd +1 -1
data/lib/chef.rb +0 -7
data/lib/chef/api_client.rb +10 -2
data/lib/chef/api_client/registration.rb +7 -9
data/lib/chef/application.rb +28 -12
data/lib/chef/application/apply.rb +17 -1
data/lib/chef/application/client.rb +74 -6
data/lib/chef/application/knife.rb +1 -2
data/lib/chef/application/solo.rb +30 -0
data/lib/chef/application/windows_service.rb +1 -0
data/lib/chef/application/windows_service_manager.rb +8 -2
data/lib/chef/applications.rb +0 -1
data/lib/chef/audit/audit_event_proxy.rb +93 -0
data/lib/chef/audit/audit_reporter.rb +169 -0
data/lib/chef/audit/control_group_data.rb +140 -0
data/lib/chef/audit/rspec_formatter.rb +37 -0
data/lib/chef/audit/runner.rb +178 -0
data/lib/chef/chef_fs/chef_fs_data_store.rb +11 -2
data/lib/chef/chef_fs/config.rb +25 -4
data/lib/chef/chef_fs/data_handler/policy_data_handler.rb +15 -0
data/lib/chef/chef_fs/data_handler/user_data_handler.rb +1 -0
data/lib/chef/chef_fs/file_system.rb +1 -1
data/lib/chef/chef_fs/file_system/base_fs_dir.rb +5 -0
data/lib/chef/chef_fs/file_system/chef_repository_file_system_cookbook_entry.rb +3 -2
data/lib/chef/{shef/ext.rb → chef_fs/file_system/chef_repository_file_system_policies_dir.rb} +22 -3
data/lib/chef/chef_fs/file_system/chef_repository_file_system_root_dir.rb +4 -0
data/lib/chef/client.rb +81 -52
data/lib/chef/config.rb +35 -3
data/lib/chef/cookbook/metadata.rb +3 -3
data/lib/chef/cookbook_manifest.rb +275 -0
data/lib/chef/cookbook_site_streaming_uploader.rb +24 -23
data/lib/chef/cookbook_uploader.rb +11 -2
data/lib/chef/cookbook_version.rb +71 -194
data/lib/chef/data_bag.rb +5 -2
data/lib/chef/data_bag_item.rb +6 -3
data/lib/chef/deprecation/warnings.rb +5 -4
data/lib/chef/dsl/audit.rb +51 -0
data/lib/chef/dsl/include_recipe.rb +2 -3
data/lib/chef/dsl/reboot_pending.rb +1 -1
data/lib/chef/dsl/recipe.rb +49 -31
data/lib/chef/encrypted_data_bag_item/assertions.rb +0 -3
data/lib/chef/environment.rb +5 -2
data/lib/chef/event_dispatch/base.rb +36 -1
data/lib/chef/event_dispatch/dispatcher.rb +3 -5
data/lib/chef/exceptions.rb +61 -2
data/lib/chef/file_access_control/unix.rb +12 -0
data/lib/chef/file_access_control/windows.rb +14 -0
data/lib/chef/formatters/doc.rb +47 -1
data/{spec/unit/monkey_patches/string_spec.rb → lib/chef/guard_interpreter.rb} +11 -16
data/lib/chef/guard_interpreter/resource_guard_interpreter.rb +3 -2
data/lib/chef/http.rb +1 -2
data/lib/chef/knife.rb +5 -3
data/lib/chef/knife/bootstrap.rb +84 -15
data/lib/chef/knife/bootstrap/chef_vault_handler.rb +165 -0
data/lib/chef/knife/bootstrap/client_builder.rb +190 -0
data/lib/chef/knife/bootstrap/{README.md → templates/README.md} +0 -0
data/lib/chef/knife/bootstrap/{archlinux-gems.erb → templates/archlinux-gems.erb} +9 -0
data/lib/chef/knife/bootstrap/{chef-aix.erb → templates/chef-aix.erb} +9 -0
data/lib/chef/knife/bootstrap/{chef-full.erb → templates/chef-full.erb} +10 -1
data/lib/chef/knife/client_create.rb +8 -7
data/lib/chef/knife/cookbook_site_download.rb +1 -1
data/lib/chef/knife/cookbook_site_install.rb +1 -1
data/lib/chef/knife/cookbook_site_list.rb +1 -1
data/lib/chef/knife/cookbook_site_search.rb +1 -1
data/lib/chef/knife/cookbook_site_share.rb +39 -28
data/lib/chef/knife/cookbook_site_show.rb +3 -3
data/lib/chef/knife/cookbook_site_unshare.rb +1 -1
data/lib/chef/knife/cookbook_test.rb +1 -0
data/lib/chef/knife/cookbook_upload.rb +13 -8
data/lib/chef/knife/core/bootstrap_context.rb +14 -3
data/lib/chef/knife/core/generic_presenter.rb +5 -2
data/lib/chef/knife/core/object_loader.rb +1 -1
data/lib/chef/knife/core/subcommand_loader.rb +24 -0
data/lib/chef/knife/core/ui.rb +9 -1
data/lib/chef/knife/node_run_list_remove.rb +11 -3
data/lib/chef/knife/raw.rb +14 -3
data/lib/chef/knife/role_env_run_list_add.rb +86 -0
data/lib/chef/knife/role_env_run_list_clear.rb +55 -0
data/lib/chef/knife/role_env_run_list_remove.rb +57 -0
data/lib/chef/knife/role_env_run_list_replace.rb +59 -0
data/lib/chef/knife/role_env_run_list_set.rb +70 -0
data/lib/chef/knife/role_run_list_add.rb +86 -0
data/lib/chef/knife/role_run_list_clear.rb +55 -0
data/lib/chef/knife/role_run_list_remove.rb +57 -0
data/lib/chef/knife/role_run_list_replace.rb +59 -0
data/lib/chef/knife/role_run_list_set.rb +70 -0
data/lib/chef/knife/search.rb +4 -4
data/lib/chef/knife/serve.rb +3 -0
data/lib/chef/knife/ssh.rb +1 -1
data/lib/chef/knife/ssl_check.rb +2 -2
data/lib/chef/knife/ssl_fetch.rb +14 -1
data/lib/chef/log.rb +10 -1
data/lib/chef/mixin/command.rb +1 -1
data/lib/chef/mixin/command/windows.rb +1 -5
data/lib/chef/mixin/get_source_from_package.rb +1 -0
data/lib/chef/mixin/params_validate.rb +2 -2
data/lib/chef/mixin/securable.rb +1 -7
data/lib/chef/mixin/shell_out.rb +7 -1
data/lib/chef/mixin/template.rb +2 -14
data/lib/chef/mixin/why_run.rb +1 -1
data/lib/chef/monkey_patches/net_http.rb +4 -0
data/lib/chef/monologger.rb +0 -2
data/lib/chef/node.rb +5 -2
data/lib/chef/node/attribute.rb +11 -9
data/lib/chef/node/attribute_collections.rb +8 -12
data/lib/chef/node/immutable_collections.rb +4 -10
data/lib/chef/org.rb +148 -0
data/lib/chef/platform/provider_mapping.rb +3 -2
data/lib/chef/platform/provider_priority_map.rb +2 -0
data/lib/chef/platform/query_helpers.rb +0 -3
data/lib/chef/policy_builder/policyfile.rb +51 -8
data/lib/chef/provider/deploy.rb +1 -2
data/lib/chef/provider/directory.rb +3 -3
data/lib/chef/provider/dsc_script.rb +13 -7
data/lib/chef/provider/env.rb +8 -8
data/lib/chef/provider/execute.rb +55 -36
data/lib/chef/provider/file.rb +8 -0
data/lib/chef/provider/group.rb +2 -0
data/lib/chef/provider/group/dscl.rb +3 -4
data/lib/chef/provider/ifconfig.rb +25 -25
data/lib/chef/provider/ifconfig/aix.rb +25 -27
data/lib/chef/provider/lwrp_base.rb +1 -1
data/lib/chef/provider/mount.rb +2 -2
data/lib/chef/provider/mount/mount.rb +3 -4
data/lib/chef/provider/mount/solaris.rb +1 -1
data/lib/chef/provider/package.rb +297 -48
data/lib/chef/provider/package/aix.rb +25 -30
data/lib/chef/provider/package/apt.rb +63 -19
data/lib/chef/provider/package/dpkg.rb +15 -16
data/lib/chef/provider/package/macports.rb +7 -7
data/lib/chef/provider/package/openbsd.rb +107 -0
data/lib/chef/provider/package/pacman.rb +13 -15
data/lib/chef/provider/package/portage.rb +3 -4
data/lib/chef/provider/package/rpm.rb +28 -17
data/lib/chef/provider/package/rubygems.rb +9 -9
data/lib/chef/provider/package/solaris.rb +17 -21
data/lib/chef/provider/package/windows/msi.rb +1 -1
data/lib/chef/provider/package/yum-dump.py +2 -2
data/lib/chef/provider/package/yum.rb +117 -51
data/lib/chef/provider/package/zypper.rb +17 -18
data/lib/chef/provider/powershell_script.rb +4 -4
data/lib/chef/provider/registry_key.rb +2 -2
data/lib/chef/provider/remote_directory.rb +1 -1
data/lib/chef/provider/script.rb +25 -16
data/lib/chef/provider/service.rb +1 -1
data/lib/chef/provider/service/freebsd.rb +1 -1
data/lib/chef/provider/service/openbsd.rb +216 -0
data/lib/chef/provider/service/upstart.rb +1 -1
data/lib/chef/provider/service/windows.rb +99 -1
data/lib/chef/provider/user.rb +1 -1
data/lib/chef/provider/user/dscl.rb +19 -4
data/lib/chef/providers.rb +2 -0
data/lib/chef/recipe.rb +11 -5
data/lib/chef/request_id.rb +1 -1
data/lib/chef/resource.rb +839 -444
data/lib/chef/resource/chef_gem.rb +20 -3
data/lib/chef/resource/conditional.rb +3 -14
data/lib/chef/resource/dsc_script.rb +14 -0
data/lib/chef/resource/execute.rb +14 -7
data/lib/chef/resource/file.rb +14 -0
data/lib/chef/resource/file/verification.rb +122 -0
data/lib/chef/resource/ips_package.rb +1 -1
data/lib/chef/resource/lwrp_base.rb +2 -11
data/lib/chef/resource/macports_package.rb +2 -1
data/lib/chef/resource/openbsd_package.rb +51 -0
data/lib/chef/resource/package.rb +2 -2
data/lib/chef/resource/paludis_package.rb +1 -1
data/lib/chef/resource/reboot.rb +1 -1
data/lib/chef/resource/remote_file.rb +1 -0
data/lib/chef/resource/rpm_package.rb +9 -0
data/lib/chef/resource/script.rb +11 -0
data/lib/chef/resource/template.rb +2 -3
data/lib/chef/resource/windows_package.rb +1 -1
data/lib/chef/resource/windows_service.rb +18 -0
data/lib/chef/resource_builder.rb +137 -0
data/lib/chef/resource_definition.rb +1 -1
data/lib/chef/resource_reporter.rb +1 -1
data/lib/chef/resources.rb +1 -0
data/lib/chef/role.rb +17 -4
data/lib/chef/run_context.rb +10 -6
data/lib/chef/search/query.rb +66 -87
data/lib/chef/shell/ext.rb +2 -2
data/lib/chef/util/diff.rb +1 -4
data/lib/chef/util/dsc/configuration_generator.rb +30 -6
data/lib/chef/util/dsc/lcm_output_parser.rb +7 -3
data/lib/chef/util/dsc/local_configuration_manager.rb +8 -8
data/lib/chef/util/file_edit.rb +2 -2
data/lib/chef/util/path_helper.rb +1 -4
data/lib/chef/util/windows/net_use.rb +3 -3
data/lib/chef/version.rb +1 -1
data/lib/chef/win32/api.rb +1 -0
data/lib/chef/win32/api/security.rb +26 -0
data/lib/chef/win32/file.rb +21 -0
data/lib/chef/win32/security.rb +46 -0
data/lib/chef/win32/security/token.rb +8 -0
data/lib/chef/win32/version.rb +0 -4
data/spec/data/recipes.tgz +0 -0
data/spec/functional/application_spec.rb +1 -1
data/spec/functional/audit/rspec_formatter_spec.rb +54 -0
data/spec/functional/audit/runner_spec.rb +137 -0
data/spec/functional/dsl/reboot_pending_spec.rb +10 -10
data/spec/functional/dsl/registry_helper_spec.rb +6 -6
data/spec/functional/event_loggers/windows_eventlog_spec.rb +5 -5
data/spec/functional/file_content_management/deploy_strategies_spec.rb +12 -21
data/spec/functional/http/simple_spec.rb +1 -1
data/spec/functional/knife/cookbook_delete_spec.rb +24 -24
data/spec/functional/knife/exec_spec.rb +2 -4
data/spec/functional/knife/smoke_test.rb +1 -1
data/spec/functional/knife/ssh_spec.rb +23 -23
data/spec/functional/provider/remote_file/cache_control_data_spec.rb +8 -8
data/spec/functional/provider/whyrun_safe_ruby_block_spec.rb +2 -2
data/spec/functional/rebooter_spec.rb +1 -1
data/spec/functional/resource/aix_service_spec.rb +3 -0
data/spec/functional/resource/aixinit_service_spec.rb +3 -3
data/spec/functional/resource/bash_spec.rb +88 -0
data/spec/functional/resource/deploy_revision_spec.rb +99 -100
data/spec/functional/resource/env_spec.rb +3 -3
data/spec/functional/resource/execute_spec.rb +97 -63
data/spec/functional/resource/file_spec.rb +7 -7
data/spec/functional/resource/git_spec.rb +13 -13
data/spec/functional/resource/group_spec.rb +28 -25
data/spec/functional/resource/ifconfig_spec.rb +2 -2
data/spec/functional/resource/link_spec.rb +77 -78
data/spec/functional/resource/mount_spec.rb +5 -5
data/spec/functional/resource/ohai_spec.rb +1 -1
data/spec/functional/resource/package_spec.rb +22 -22
data/spec/functional/resource/powershell_spec.rb +57 -42
data/spec/functional/resource/reboot_spec.rb +2 -2
data/spec/functional/resource/registry_spec.rb +91 -91
data/spec/functional/resource/remote_directory_spec.rb +19 -19
data/spec/functional/resource/remote_file_spec.rb +18 -18
data/spec/functional/resource/template_spec.rb +4 -4
data/spec/functional/resource/user/dscl_spec.rb +4 -4
data/spec/functional/resource/user/useradd_spec.rb +64 -51
data/spec/functional/resource/windows_service_spec.rb +98 -0
data/spec/functional/run_lock_spec.rb +9 -9
data/spec/functional/shell_spec.rb +3 -3
data/spec/functional/tiny_server_spec.rb +12 -12
data/spec/functional/util/path_helper_spec.rb +1 -1
data/spec/functional/version_spec.rb +1 -1
data/spec/functional/win32/registry_helper_spec.rb +125 -125
data/spec/functional/win32/security_spec.rb +65 -2
data/spec/functional/win32/service_manager_spec.rb +30 -84
data/spec/functional/win32/versions_spec.rb +6 -6
data/spec/integration/client/client_spec.rb +102 -9
data/spec/integration/knife/chef_fs_data_store_spec.rb +12 -8
data/spec/integration/knife/common_options_spec.rb +3 -3
data/spec/integration/knife/cookbook_api_ipv6_spec.rb +2 -2
data/spec/integration/knife/deps_spec.rb +4 -4
data/spec/integration/knife/diff_spec.rb +6 -6
data/spec/integration/knife/download_spec.rb +6 -6
data/spec/integration/knife/list_spec.rb +2 -2
data/spec/integration/knife/raw_spec.rb +5 -5
data/spec/integration/knife/serve_spec.rb +3 -3
data/spec/integration/knife/show_spec.rb +3 -3
data/spec/integration/knife/upload_spec.rb +18 -18
data/spec/integration/recipes/lwrp_inline_resources_spec.rb +1 -1
data/spec/integration/solo/solo_spec.rb +11 -12
data/spec/spec_helper.rb +27 -15
data/spec/stress/win32/file_spec.rb +4 -4
data/spec/stress/win32/security_spec.rb +4 -4
data/spec/support/chef_helpers.rb +3 -3
data/spec/support/matchers/leak.rb +2 -2
data/spec/support/mock/platform.rb +1 -1
data/spec/support/pedant/Gemfile +3 -0
data/spec/support/pedant/pedant_config.rb +9 -2
data/spec/support/pedant/run_pedant.rb +15 -16
data/spec/support/platform_helpers.rb +8 -12
data/spec/support/shared/functional/directory_resource.rb +13 -13
data/spec/support/shared/functional/file_resource.rb +83 -83
data/spec/support/shared/functional/http.rb +1 -1
data/spec/support/shared/functional/securable_resource.rb +64 -64
data/spec/support/shared/functional/securable_resource_with_reporting.rb +43 -41
data/spec/support/shared/functional/win32_service.rb +60 -0
data/spec/support/shared/functional/windows_script.rb +8 -8
data/spec/support/shared/integration/knife_support.rb +8 -5
data/spec/support/shared/matchers/exit_with_code.rb +6 -2
data/spec/support/shared/unit/api_error_inspector.rb +8 -8
data/spec/support/shared/unit/execute_resource.rb +24 -20
data/spec/support/shared/unit/file_system_support.rb +2 -2
data/spec/support/shared/unit/platform_introspector.rb +21 -21
data/spec/support/shared/unit/provider/file.rb +239 -210
data/spec/support/shared/unit/provider/useradd_based_user_provider.rb +69 -69
data/spec/support/shared/unit/script_resource.rb +40 -32
data/spec/support/shared/unit/windows_script_resource.rb +8 -8
data/spec/unit/api_client/registration_spec.rb +47 -47
data/spec/unit/api_client_spec.rb +107 -69
data/spec/unit/application/apply_spec.rb +31 -15
data/spec/unit/application/client_spec.rb +146 -45
data/spec/unit/application/knife_spec.rb +31 -31
data/spec/unit/application/solo_spec.rb +59 -43
data/spec/unit/application_spec.rb +109 -74
data/spec/unit/audit/audit_event_proxy_spec.rb +311 -0
data/spec/unit/audit/audit_reporter_spec.rb +393 -0
data/spec/unit/audit/control_group_data_spec.rb +478 -0
data/{lib/chef/monkey_patches/file.rb → spec/unit/audit/rspec_formatter_spec.rb} +11 -8
data/spec/unit/audit/runner_spec.rb +135 -0
data/spec/unit/chef_fs/config_spec.rb +52 -0
data/spec/unit/chef_fs/diff_spec.rb +12 -12
data/spec/unit/chef_fs/file_pattern_spec.rb +276 -277
data/spec/unit/chef_fs/file_system/operation_failed_error_spec.rb +6 -6
data/spec/unit/chef_fs/file_system_spec.rb +26 -13
data/spec/unit/chef_fs/parallelizer.rb +87 -87
data/spec/unit/chef_spec.rb +1 -1
data/spec/unit/client_spec.rb +263 -97
data/spec/unit/config_fetcher_spec.rb +13 -13
data/spec/unit/config_spec.rb +105 -66
data/spec/unit/cookbook/chefignore_spec.rb +6 -6
data/spec/unit/cookbook/cookbook_version_loader_spec.rb +3 -3
data/spec/unit/cookbook/metadata_spec.rb +149 -149
data/spec/unit/cookbook/syntax_check_spec.rb +36 -31
data/spec/unit/cookbook_loader_spec.rb +62 -58
data/spec/unit/cookbook_manifest_spec.rb +141 -468
data/spec/unit/cookbook_site_streaming_uploader_spec.rb +27 -27
data/spec/unit/cookbook_spec.rb +15 -15
data/spec/unit/cookbook_uploader_spec.rb +37 -3
data/spec/unit/cookbook_version_file_specificity_spec.rb +554 -0
data/spec/unit/cookbook_version_spec.rb +98 -240
data/spec/unit/daemon_spec.rb +31 -31
data/spec/unit/data_bag_item_spec.rb +121 -89
data/spec/unit/data_bag_spec.rb +35 -35
data/spec/unit/deprecation_spec.rb +27 -14
data/spec/unit/digester_spec.rb +3 -3
data/spec/unit/dsl/audit_spec.rb +43 -0
data/spec/unit/dsl/data_query_spec.rb +1 -1
data/spec/unit/dsl/platform_introspection_spec.rb +14 -14
data/spec/unit/dsl/reboot_pending_spec.rb +18 -18
data/spec/unit/dsl/regsitry_helper_spec.rb +6 -6
data/spec/unit/encrypted_data_bag_item_spec.rb +58 -82
data/spec/unit/environment_spec.rb +105 -105
data/spec/unit/exceptions_spec.rb +47 -1
data/spec/unit/file_access_control_spec.rb +62 -56
data/spec/unit/file_cache_spec.rb +11 -11
data/spec/unit/file_content_management/deploy/cp_spec.rb +2 -2
data/spec/unit/file_content_management/deploy/mv_unix_spec.rb +10 -10
data/spec/unit/file_content_management/deploy/mv_windows_spec.rb +23 -23
data/spec/unit/formatters/error_inspectors/compile_error_inspector_spec.rb +14 -14
data/spec/unit/formatters/error_inspectors/cookbook_resolve_error_inspector_spec.rb +12 -12
data/spec/unit/formatters/error_inspectors/cookbook_sync_error_inspector_spec.rb +1 -1
data/spec/unit/formatters/error_inspectors/resource_failure_inspector_spec.rb +16 -16
data/spec/unit/formatters/error_inspectors/run_list_expansion_error_inspector_spec.rb +4 -4
data/spec/unit/guard_interpreter/resource_guard_interpreter_spec.rb +103 -13
data/spec/unit/guard_interpreter_spec.rb +41 -0
data/spec/unit/handler/json_file_spec.rb +10 -10
data/spec/unit/handler_spec.rb +39 -39
data/spec/unit/http/basic_client_spec.rb +3 -3
data/spec/unit/http/http_request_spec.rb +10 -10
data/spec/unit/http/simple_spec.rb +3 -3
data/spec/unit/http/ssl_policies_spec.rb +15 -15
data/spec/unit/http/validate_content_length_spec.rb +18 -13
data/spec/unit/http_spec.rb +16 -9
data/spec/unit/knife/bootstrap/chef_vault_handler_spec.rb +153 -0
data/spec/unit/knife/bootstrap/client_builder_spec.rb +178 -0
data/spec/unit/knife/bootstrap_spec.rb +144 -91
data/spec/unit/knife/client_bulk_delete_spec.rb +24 -24
data/spec/unit/knife/client_create_spec.rb +57 -43
data/spec/unit/knife/client_delete_spec.rb +15 -15
data/spec/unit/knife/client_edit_spec.rb +4 -4
data/spec/unit/knife/client_list_spec.rb +2 -2
data/spec/unit/knife/client_reregister_spec.rb +9 -9
data/spec/unit/knife/configure_client_spec.rb +20 -20
data/spec/unit/knife/configure_spec.rb +85 -85
data/spec/unit/knife/cookbook_bulk_delete_spec.rb +15 -15
data/spec/unit/knife/cookbook_create_spec.rb +59 -59
data/spec/unit/knife/cookbook_delete_spec.rb +49 -49
data/spec/unit/knife/cookbook_download_spec.rb +56 -56
data/spec/unit/knife/cookbook_list_spec.rb +9 -9
data/spec/unit/knife/cookbook_metadata_from_file_spec.rb +8 -8
data/spec/unit/knife/cookbook_metadata_spec.rb +44 -44
data/spec/unit/knife/cookbook_show_spec.rb +29 -29
data/spec/unit/knife/cookbook_site_download_spec.rb +26 -26
data/spec/unit/knife/cookbook_site_install_spec.rb +5 -1
data/spec/unit/knife/cookbook_site_share_spec.rb +68 -59
data/spec/unit/knife/cookbook_site_unshare_spec.rb +15 -15
data/spec/unit/knife/cookbook_test_spec.rb +16 -16
data/spec/unit/knife/cookbook_upload_spec.rb +105 -71
data/spec/unit/knife/core/bootstrap_context_spec.rb +37 -22
data/spec/unit/knife/core/cookbook_scm_repo_spec.rb +36 -36
data/spec/unit/knife/core/object_loader_spec.rb +3 -3
data/spec/unit/knife/core/subcommand_loader_spec.rb +107 -33
data/spec/unit/knife/core/ui_spec.rb +84 -72
data/spec/unit/knife/data_bag_from_file_spec.rb +1 -1
data/spec/unit/knife/environment_compare_spec.rb +12 -12
data/spec/unit/knife/environment_create_spec.rb +16 -16
data/spec/unit/knife/environment_delete_spec.rb +14 -14
data/spec/unit/knife/environment_edit_spec.rb +15 -15
data/spec/unit/knife/environment_from_file_spec.rb +17 -17
data/spec/unit/knife/environment_list_spec.rb +7 -7
data/spec/unit/knife/environment_show_spec.rb +10 -10
data/spec/unit/knife/index_rebuild_spec.rb +17 -17
data/spec/unit/knife/knife_help.rb +24 -24
data/spec/unit/knife/node_bulk_delete_spec.rb +14 -14
data/spec/unit/knife/node_delete_spec.rb +11 -11
data/spec/unit/knife/node_edit_spec.rb +17 -17
data/spec/unit/knife/node_environment_set_spec.rb +12 -12
data/spec/unit/knife/node_from_file_spec.rb +8 -8
data/spec/unit/knife/node_list_spec.rb +9 -9
data/spec/unit/knife/node_run_list_add_spec.rb +29 -29
data/spec/unit/knife/node_run_list_remove_spec.rb +28 -13
data/spec/unit/knife/node_run_list_set_spec.rb +27 -27
data/spec/unit/knife/raw_spec.rb +43 -0
data/spec/unit/knife/role_bulk_delete_spec.rb +12 -12
data/spec/unit/knife/role_create_spec.rb +12 -12
data/spec/unit/knife/role_delete_spec.rb +10 -10
data/spec/unit/knife/role_edit_spec.rb +13 -13
data/spec/unit/knife/role_env_run_list_add_spec.rb +217 -0
data/spec/unit/knife/role_env_run_list_clear_spec.rb +100 -0
data/spec/unit/knife/role_env_run_list_remove_spec.rb +108 -0
data/spec/unit/knife/role_env_run_list_replace_spec.rb +108 -0
data/spec/unit/knife/role_env_run_list_set_spec.rb +102 -0
data/spec/unit/knife/role_from_file_spec.rb +10 -10
data/spec/unit/knife/role_list_spec.rb +7 -7
data/spec/unit/knife/role_run_list_add_spec.rb +179 -0
data/spec/unit/knife/role_run_list_clear_spec.rb +90 -0
data/spec/unit/knife/role_run_list_remove_spec.rb +98 -0
data/spec/unit/knife/role_run_list_replace_spec.rb +101 -0
data/spec/unit/knife/role_run_list_set_spec.rb +92 -0
data/spec/unit/knife/ssh_spec.rb +66 -66
data/spec/unit/knife/ssl_check_spec.rb +27 -27
data/spec/unit/knife/ssl_fetch_spec.rb +45 -12
data/spec/unit/knife/status_spec.rb +5 -5
data/spec/unit/knife/tag_create_spec.rb +5 -5
data/spec/unit/knife/tag_delete_spec.rb +6 -6
data/spec/unit/knife/tag_list_spec.rb +4 -4
data/spec/unit/knife/user_create_spec.rb +18 -18
data/spec/unit/knife/user_delete_spec.rb +4 -4
data/spec/unit/knife/user_edit_spec.rb +7 -7
data/spec/unit/knife/user_list_spec.rb +2 -2
data/spec/unit/knife/user_reregister_spec.rb +10 -10
data/spec/unit/knife/user_show_spec.rb +5 -5
data/spec/unit/knife_spec.rb +36 -36
data/spec/unit/lwrp_spec.rb +63 -39
data/spec/unit/mash_spec.rb +6 -6
data/spec/unit/mixin/checksum_spec.rb +2 -2
data/spec/unit/mixin/command_spec.rb +13 -13
data/spec/unit/mixin/convert_to_class_name_spec.rb +6 -6
data/spec/unit/mixin/deep_merge_spec.rb +49 -49
data/spec/unit/mixin/deprecation_spec.rb +5 -5
data/spec/unit/mixin/enforce_ownership_and_permissions_spec.rb +14 -14
data/spec/unit/mixin/homebrew_user_spec.rb +3 -3
data/spec/unit/mixin/params_validate_spec.rb +71 -71
data/spec/unit/mixin/path_sanity_spec.rb +14 -14
data/spec/unit/mixin/securable_spec.rb +177 -177
data/spec/unit/mixin/shell_out_spec.rb +56 -27
data/spec/unit/mixin/template_spec.rb +31 -31
data/spec/unit/mixin/windows_architecture_helper_spec.rb +5 -5
data/spec/unit/mixin/xml_escape_spec.rb +7 -7
data/spec/unit/monkey_patches/uri_spec.rb +1 -1
data/spec/unit/monologger_spec.rb +3 -3
data/spec/unit/node/attribute_spec.rb +185 -136
data/spec/unit/node/immutable_collections_spec.rb +22 -22
data/spec/unit/node_spec.rb +210 -179
data/spec/unit/org_spec.rb +196 -0
data/spec/unit/platform/query_helpers_spec.rb +5 -5
data/spec/unit/platform_spec.rb +46 -46
data/spec/unit/policy_builder/expand_node_object_spec.rb +17 -18
data/spec/unit/policy_builder/policyfile_spec.rb +159 -71
data/spec/unit/provider/directory_spec.rb +5 -5
data/spec/unit/provider/dsc_script_spec.rb +6 -6
data/spec/unit/provider/env_spec.rb +27 -14
data/spec/unit/provider/execute_spec.rb +139 -68
data/spec/unit/provider/file/content_spec.rb +8 -8
data/spec/unit/provider/git_spec.rb +10 -5
data/spec/unit/provider/group/dscl_spec.rb +8 -11
data/spec/unit/provider/group_spec.rb +13 -13
data/spec/unit/provider/ifconfig/aix_spec.rb +3 -2
data/spec/unit/provider/ifconfig/debian_spec.rb +19 -19
data/spec/unit/provider/ifconfig_spec.rb +2 -2
data/spec/unit/provider/mdadm_spec.rb +2 -2
data/spec/unit/provider/mount/aix_spec.rb +5 -5
data/spec/unit/provider/mount/mount_spec.rb +22 -22
data/spec/unit/provider/mount/solaris_spec.rb +20 -20
data/spec/unit/provider/package/aix_spec.rb +23 -22
data/spec/unit/provider/package/apt_spec.rb +23 -4
data/spec/unit/provider/package/dpkg_spec.rb +14 -15
data/spec/unit/provider/package/freebsd/pkgng_spec.rb +1 -1
data/spec/unit/provider/package/freebsd/port_spec.rb +1 -1
data/spec/unit/provider/package/ips_spec.rb +1 -2
data/spec/unit/provider/package/macports_spec.rb +14 -14
data/spec/unit/provider/package/openbsd_spec.rb +66 -0
data/spec/unit/provider/package/pacman_spec.rb +15 -14
data/spec/unit/provider/package/portage_spec.rb +11 -11
data/spec/unit/provider/package/rpm_spec.rb +132 -84
data/spec/unit/provider/package/rubygems_spec.rb +54 -25
data/spec/unit/provider/package/solaris_spec.rb +22 -25
data/spec/unit/provider/package/yum_spec.rb +237 -36
data/spec/unit/provider/package/zypper_spec.rb +9 -12
data/spec/unit/provider/package_spec.rb +276 -2
data/spec/unit/provider/package_spec.rbe +0 -0
data/spec/unit/provider/remote_directory_spec.rb +25 -25
data/spec/unit/provider/remote_file/ftp_spec.rb +3 -3
data/spec/unit/provider/route_spec.rb +3 -3
data/spec/unit/provider/script_spec.rb +61 -43
data/spec/unit/provider/service/aix_service_spec.rb +5 -5
data/spec/unit/provider/service/arch_service_spec.rb +5 -5
data/spec/unit/provider/service/debian_service_spec.rb +8 -8
data/spec/unit/provider/service/freebsd_service_spec.rb +16 -2
data/spec/unit/provider/service/gentoo_service_spec.rb +8 -8
data/spec/unit/provider/service/init_service_spec.rb +5 -5
data/spec/unit/provider/service/insserv_service_spec.rb +2 -2
data/spec/unit/provider/service/invokercd_service_spec.rb +5 -5
data/spec/unit/provider/service/macosx_spec.rb +7 -7
data/spec/unit/provider/service/openbsd_service_spec.rb +543 -0
data/spec/unit/provider/service/redhat_spec.rb +4 -4
data/spec/unit/provider/service/simple_service_spec.rb +2 -2
data/spec/unit/provider/service/solaris_smf_service_spec.rb +14 -14
data/spec/unit/provider/service/systemd_service_spec.rb +15 -7
data/spec/unit/provider/service/upstart_service_spec.rb +4 -4
data/spec/unit/provider/service/windows_spec.rb +119 -25
data/spec/unit/provider/service_spec.rb +1 -1
data/spec/unit/provider/user/dscl_spec.rb +38 -30
data/spec/unit/provider/user_spec.rb +1 -1
data/spec/unit/provider_resolver_spec.rb +7 -7
data/spec/unit/provider_spec.rb +23 -23
data/spec/unit/recipe_spec.rb +194 -83
data/spec/unit/registry_helper_spec.rb +143 -143
data/spec/unit/resource/chef_gem_spec.rb +117 -3
data/spec/unit/resource/conditional_action_not_nothing_spec.rb +2 -2
data/spec/unit/resource/conditional_spec.rb +56 -15
data/spec/unit/resource/deploy_spec.rb +2 -2
data/spec/unit/resource/dsc_script_spec.rb +32 -0
data/spec/unit/resource/execute_spec.rb +4 -0
data/spec/unit/resource/file/verification_spec.rb +111 -0
data/spec/unit/resource/file_spec.rb +14 -0
data/spec/unit/resource/openbsd_package_spec.rb +49 -0
data/spec/unit/resource/remote_file_spec.rb +12 -12
data/spec/unit/resource/resource_notification_spec.rb +18 -18
data/spec/unit/resource/rpm_package_spec.rb +12 -0
data/spec/unit/resource/scm_spec.rb +4 -4
data/spec/unit/resource/script_spec.rb +3 -5
data/spec/unit/resource/subversion_spec.rb +1 -1
data/spec/unit/resource_builder_spec.rb +1 -0
data/spec/unit/resource_collection/resource_list_spec.rb +2 -2
data/spec/unit/resource_collection/resource_set_spec.rb +3 -3
data/spec/unit/resource_collection/stepable_iterator_spec.rb +24 -24
data/spec/unit/resource_collection_spec.rb +52 -52
data/spec/unit/resource_definition_spec.rb +1 -1
data/spec/unit/resource_reporter_spec.rb +118 -118
data/spec/unit/resource_spec.rb +131 -125
data/spec/unit/rest/auth_credentials_spec.rb +73 -73
data/spec/unit/rest_spec.rb +12 -12
data/spec/unit/role_spec.rb +85 -84
data/spec/unit/run_context/cookbook_compiler_spec.rb +18 -18
data/spec/unit/run_context_spec.rb +39 -68
data/spec/unit/run_list/run_list_expansion_spec.rb +21 -21
data/spec/unit/run_list/run_list_item_spec.rb +28 -28
data/spec/unit/run_list/versioned_recipe_list_spec.rb +14 -14
data/spec/unit/run_list_spec.rb +55 -55
data/spec/unit/run_lock_spec.rb +14 -14
data/spec/unit/run_status_spec.rb +24 -24
data/spec/unit/scan_access_control_spec.rb +23 -23
data/spec/unit/search/query_spec.rb +54 -66
data/spec/unit/shell/model_wrapper_spec.rb +13 -13
data/spec/unit/shell/shell_ext_spec.rb +32 -32
data/spec/unit/shell/shell_session_spec.rb +24 -24
data/spec/unit/shell_out_spec.rb +4 -4
data/spec/unit/shell_spec.rb +27 -27
data/spec/unit/user_spec.rb +50 -50
data/spec/unit/util/backup_spec.rb +32 -32
data/spec/unit/util/diff_spec.rb +31 -31
data/spec/unit/util/dsc/configuration_generator_spec.rb +38 -16
data/spec/unit/util/dsc/lcm_output_parser_spec.rb +21 -26
data/spec/unit/util/dsc/local_configuration_manager_spec.rb +10 -10
data/spec/unit/util/editor_spec.rb +10 -10
data/spec/unit/util/file_edit_spec.rb +10 -10
data/spec/unit/util/path_helper_spec.rb +38 -46
data/spec/unit/util/powershell/cmdlet_spec.rb +9 -9
data/spec/unit/util/selinux_spec.rb +30 -30
data/spec/unit/util/threaded_job_queue_spec.rb +6 -6
data/spec/unit/version/platform_spec.rb +5 -5
data/spec/unit/version_class_spec.rb +15 -15
data/spec/unit/version_constraint/platform_spec.rb +7 -7
data/spec/unit/version_constraint_spec.rb +43 -43
data/spec/unit/windows_service_spec.rb +15 -15
data/spec/unit/workstation_config_loader_spec.rb +2 -2
data/tasks/rspec.rb +16 -18
metadata +126 -49
data/bin/shef +0 -35
data/lib/chef/application/agent.rb +0 -18
data/lib/chef/monkey_patches/fileutils.rb +0 -65
data/lib/chef/monkey_patches/numeric.rb +0 -15
data/lib/chef/monkey_patches/object.rb +0 -9
data/lib/chef/monkey_patches/pathname.rb +0 -32
data/lib/chef/monkey_patches/regexp.rb +0 -34
data/lib/chef/monkey_patches/securerandom.rb +0 -44
data/lib/chef/monkey_patches/string.rb +0 -49
data/lib/chef/monkey_patches/tempfile.rb +0 -64
data/lib/chef/monkey_patches/uri.rb +0 -70

@@ -8,7 +8,9 @@ class Chef
     # "specdoc"
     class Doc < Formatters::Base
-      attr_reader :start_time, :end_time
+      attr_reader :start_time, :end_time, :successful_audits, :failed_audits
+      private :successful_audits, :failed_audits
       cli_name(:doc)
       def initialize(out, err)
@@ -16,6 +18,8 @@ class Chef
         @updated_resources = 0
         @up_to_date_resources = 0
+        @successful_audits = 0
+        @failed_audits = 0
         @start_time = Time.now
         @end_time = @start_time
       end
@@ -32,12 +36,19 @@ class Chef
         @up_to_date_resources + @updated_resources
       end
+      def total_audits
+        successful_audits + failed_audits
+      end
       def run_completed(node)
         @end_time = Time.now
         if Chef::Config[:why_run]
           puts_line "Chef Client finished, #{@updated_resources}/#{total_resources} resources would have been updated"
         else
           puts_line "Chef Client finished, #{@updated_resources}/#{total_resources} resources updated in #{elapsed_time} seconds"
+          if total_audits > 0
+            puts_line "  #{successful_audits}/#{total_audits} Audits succeeded"
+          end
         end
       end
@@ -47,6 +58,9 @@ class Chef
           puts_line "Chef Client failed. #{@updated_resources} resources would have been updated"
         else
           puts_line "Chef Client failed. #{@updated_resources} resources updated in #{elapsed_time} seconds"
+          if total_audits > 0
+            puts_line "  #{successful_audits} Audits succeeded"
+          end
         end
       end
@@ -151,6 +165,38 @@ class Chef
         unindent if @current_recipe
       end
+      def converge_failed(e)
+        # Currently a failed converge is handled the same way as a successful converge
+        converge_complete
+      end
+      # Called before audit phase starts
+      def audit_phase_start(run_status)
+        puts_line "Starting audit phase"
+      end
+      def audit_phase_complete
+        puts_line "Auditing complete"
+      end
+      def audit_phase_failed(error)
+        puts_line ""
+        puts_line "Audit phase exception:"
+        indent
+        puts_line "#{error.message}"
+        error.backtrace.each do |l|
+          puts_line l
+        end
+      end
+      def control_example_success(control_group_name, example_data)
+        @successful_audits += 1
+      end
+      def control_example_failure(control_group_name, example_data, error)
+        @failed_audits += 1
+      end
       # Called before action is executed on a resource.
       def resource_action_start(resource, action, notification_type=nil, notifier=nil)
         if resource.cookbook_name && resource.recipe_name

data/{spec/unit/monkey_patches/string_spec.rb → lib/chef/guard_interpreter.rb} RENAMED

@@ -1,6 +1,6 @@
 #
-# Author:: Devin Ben-Hur <dbenhur@whitepages.com>
-# Copyright:: Copyright (c) 2008, 2011 Opscode, Inc.
+# Author:: Steven Danna (<steve@chef.io>)
+# Copyright:: Copyright (c) 2015 Chef Software, Inc.
 # License:: Apache License, Version 2.0
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
@@ -16,22 +16,17 @@
 # limitations under the License.
 #
-require 'spec_helper'
-require 'chef/monkey_patches/string'
+require 'chef/guard_interpreter/default_guard_interpreter'
+require 'chef/guard_interpreter/resource_guard_interpreter'
-describe String do
-  describe "#ord" do
-    it "converts each ASCII-8BIT character to corresponding positive Fixnum" do
-      (0..0xff).each do |num|
-        ch = num.chr
-        ch.force_encoding('ASCII-8BIT') if ch.respond_to? :force_encoding
-        ch.ord.should be_a_kind_of(Fixnum)
-        ch.ord.should == num
+class Chef
+  class GuardInterpreter
+    def self.for_resource(resource, command, command_opts)
+      if resource.guard_interpreter == :default
+        Chef::GuardInterpreter::DefaultGuardInterpreter.new(command, command_opts)
+      else
+        Chef::GuardInterpreter::ResourceGuardInterpreter.new(resource, command, command_opts)
       end
     end
   end
 end

data/lib/chef/guard_interpreter/resource_guard_interpreter.rb CHANGED

@@ -16,7 +16,7 @@
 # limitations under the License.
 #
-require 'chef/guard_interpreter/default_guard_interpreter'
+require 'chef/guard_interpreter'
 class Chef
   class GuardInterpreter
@@ -41,7 +41,7 @@ class Chef
         # attribute by checking the type of the resources.
         # We need to make sure we check for Script first because any resource
         # that can get to here is an Execute resource.
-        if @parent_resource.is_a? Chef::Resource::Script
+        if @resource.is_a? Chef::Resource::Script
           block_attributes = @command_opts.merge({:code => @command})
         else
           block_attributes = @command_opts.merge({:command => @command})
@@ -95,6 +95,7 @@ class Chef
         empty_events = Chef::EventDispatch::Dispatcher.new
         anonymous_run_context = Chef::RunContext.new(parent_resource.node, {}, empty_events)
         interpreter_resource = resource_class.new('Guard resource', anonymous_run_context)
+        interpreter_resource.is_guard_interpreter = true
         interpreter_resource
       end

data/lib/chef/http.rb CHANGED

@@ -25,7 +25,6 @@ require 'tempfile'
 require 'net/https'
 require 'uri'
 require 'chef/http/basic_client'
-require 'chef/monkey_patches/string'
 require 'chef/monkey_patches/net_http'
 require 'chef/config'
 require 'chef/platform/query_helpers'
@@ -204,7 +203,7 @@ class Chef
     def create_url(path)
       return path if path.is_a?(URI)
-      if path =~ /^(http|https):\/\//
+      if path =~ /^(http|https):\/\//i
         URI.parse(path)
       elsif path.nil? or path.empty?
         URI.parse(@url)

data/lib/chef/knife.rb CHANGED

@@ -53,6 +53,7 @@ class Chef
     def_delegator :@ui, :format_for_display
     def_delegator :@ui, :format_cookbook_list_for_display
     def_delegator :@ui, :edit_data
+    def_delegator :@ui, :edit_hash
     def_delegator :@ui, :edit_object
     def_delegator :@ui, :confirm
@@ -260,7 +261,7 @@ class Chef
     OFFICIAL_PLUGINS = %w[ec2 rackspace windows openstack terremark bluebox]
     # :nodoc:
-    # Error out and print usage. probably becuase the arguments given by the
+    # Error out and print usage. probably because the arguments given by the
     # user could not be resolved to a subcommand.
     def self.subcommand_not_found!(args)
       ui.fatal("Cannot find sub command for: '#{args.join(' ')}'")
@@ -269,7 +270,8 @@ class Chef
         list_commands(category_commands)
       elsif missing_plugin = ( OFFICIAL_PLUGINS.find {|plugin| plugin == args[0]} )
         ui.info("The #{missing_plugin} commands were moved to plugins in Chef 0.10")
-        ui.info("You can install the plugin with `(sudo) gem install knife-#{missing_plugin}")
+        ui.info("You can install the plugin with `(sudo) gem install knife-#{missing_plugin}`")
+        ui.info("Use `chef gem install knife-#{missing_plugin}` instead if using ChefDK")
       else
         list_commands
       end
@@ -308,7 +310,7 @@ class Chef
         exit 1
       end
-      # copy Mixlib::CLI over so that it cab be configured in knife.rb
+      # copy Mixlib::CLI over so that it can be configured in knife.rb
       # config file
       Chef::Config[:verbosity] = config[:verbosity]
     end

data/lib/chef/knife/bootstrap.rb CHANGED

@@ -19,12 +19,17 @@
 require 'chef/knife'
 require 'chef/knife/data_bag_secret_options'
 require 'erubis'
+require 'chef/knife/bootstrap/chef_vault_handler'
+require 'chef/knife/bootstrap/client_builder'
 class Chef
   class Knife
     class Bootstrap < Knife
       include DataBagSecretOptions
+      attr_accessor :client_builder
+      attr_accessor :chef_vault_handler
       deps do
         require 'chef/knife/core/bootstrap_context'
         require 'chef/json_compat'
@@ -194,10 +199,55 @@ class Chef
         :description => "Verify the SSL cert for HTTPS requests to the Chef server API.",
         :boolean     => true
+      option :bootstrap_vault_file,
+        :long        => '--bootstrap-vault-file VAULT_FILE',
+        :description => 'A JSON file with a list of vault(s) and item(s) to be updated'
+      option :bootstrap_vault_json,
+        :long        => '--bootstrap-vault-json VAULT_JSON',
+        :description => 'A JSON string with the vault(s) and item(s) to be updated'
+      option :bootstrap_vault_item,
+        :long        => '--bootstrap-vault-item VAULT_ITEM',
+        :description => 'A single vault and item to update as "vault:item"',
+        :proc        => Proc.new { |i|
+          (vault, item) = i.split(/:/)
+          Chef::Config[:knife][:bootstrap_vault_item] ||= {}
+          Chef::Config[:knife][:bootstrap_vault_item][vault] ||= []
+          Chef::Config[:knife][:bootstrap_vault_item][vault].push(item)
+          Chef::Config[:knife][:bootstrap_vault_item]
+        }
+      def initialize(argv=[])
+        super
+        @client_builder = Chef::Knife::Bootstrap::ClientBuilder.new(
+          chef_config: Chef::Config,
+          knife_config: config,
+          ui: ui,
+        )
+        @chef_vault_handler = Chef::Knife::Bootstrap::ChefVaultHandler.new(
+          knife_config: config,
+          ui: ui
+        )
+      end
+      # The default bootstrap template to use to bootstrap a server This is a public API hook
+      # which knife plugins use or inherit and override.
+      #
+      # @return [String] Default bootstrap template
       def default_bootstrap_template
         "chef-full"
       end
+      # The server_name is the DNS or IP we are going to connect to, it is not necessarily
+      # the node name, the fqdn, or the hostname of the server.  This is a public API hook
+      # which knife plugins use or inherit and override.
+      #
+      # @return [String] The DNS or IP that bootstrap will connect to
+      def server_name
+        Array(@name_args).first
+      end
       def bootstrap_template
         # The order here is important. We want to check if we have the new Chef 12 option is set first.
         # Knife cloud plugins unfortunately all set a default option for the :distro so it should be at
@@ -216,7 +266,7 @@ class Chef
         # Otherwise search the template directories until we find the right one
         bootstrap_files = []
-        bootstrap_files << File.join(File.dirname(__FILE__), 'bootstrap', "#{template}.erb")
+        bootstrap_files << File.join(File.dirname(__FILE__), 'bootstrap/templates', "#{template}.erb")
         bootstrap_files << File.join(Knife.chef_config_dir, "bootstrap", "#{template}.erb") if Chef::Knife.chef_config_dir
         bootstrap_files << File.join(ENV['HOME'], '.chef', 'bootstrap', "#{template}.erb") if ENV['HOME']
         bootstrap_files << Gem.find_files(File.join("chef","knife","bootstrap","#{template}.erb"))
@@ -237,20 +287,45 @@ class Chef
         template_file
       end
+      def secret
+        @secret ||= encryption_secret_provided_ignore_encrypt_flag? ? read_secret : nil
+      end
+      def bootstrap_context
+        @bootstrap_context ||= Knife::Core::BootstrapContext.new(
+          config,
+          config[:run_list],
+          Chef::Config,
+          secret
+        )
+      end
       def render_template
         template_file = find_template
         template = IO.read(template_file).chomp
-        secret = encryption_secret_provided_ignore_encrypt_flag? ? read_secret : nil
-        context = Knife::Core::BootstrapContext.new(config, config[:run_list], Chef::Config, secret)
-        Erubis::Eruby.new(template).evaluate(context)
+        Erubis::Eruby.new(template).evaluate(bootstrap_context)
       end
       def run
         validate_name_args!
-        @node_name = Array(@name_args).first
         $stdout.sync = true
-        ui.info("Connecting to #{ui.color(@node_name, :bold)}")
+        # chef-vault integration must use the new client-side hawtness, otherwise to use the
+        # new client-side hawtness, just delete your validation key.
+        if chef_vault_handler.doing_chef_vault? || !File.exist?(File.expand_path(Chef::Config[:validation_key]))
+          client_builder.run
+          chef_vault_handler.run(node_name: config[:chef_node_name])
+          bootstrap_context.client_pem = client_builder.client_path
+        else
+          ui.info("Doing old-style registration with the validation key at #{Chef::Config[:validation_key]}...")
+          ui.info("Delete your validation key in order to use your user credentials instead")
+          ui.info("")
+        end
+        ui.info("Connecting to #{ui.color(server_name, :bold)}")
         begin
           knife_ssh.run
@@ -265,24 +340,19 @@ class Chef
       end
       def validate_name_args!
-        if Array(@name_args).first.nil?
+        if server_name.nil?
           ui.error("Must pass an FQDN or ip to bootstrap")
           exit 1
-        elsif Array(@name_args).first == "windows"
+        elsif server_name == "windows"
+          # catches "knife bootstrap windows" when that command is not installed
           ui.warn("Hostname containing 'windows' specified. Please install 'knife-windows' if you are attempting to bootstrap a Windows node via WinRM.")
         end
       end
-      def server_name
-        Array(@name_args).first
-      end
       def knife_ssh
         ssh = Chef::Knife::Ssh.new
         ssh.ui = ui
         ssh.name_args = [ server_name, ssh_command ]
-        # command line arguments and config file values are now merged into config in Chef::Knife#merge_configs
         ssh.config[:ssh_user] = config[:ssh_user]
         ssh.config[:ssh_password] = config[:ssh_password]
         ssh.config[:ssh_port] = config[:ssh_port]
@@ -311,7 +381,6 @@ class Chef
         command
       end
     end
   end
 end

data/lib/chef/knife/bootstrap/chef_vault_handler.rb ADDED

@@ -0,0 +1,165 @@
+#
+# Author:: Lamont Granquist (<lamont@chef.io>)
+# Copyright:: Copyright (c) 2015 Opscode, Inc.
+# License:: Apache License, Version 2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+class Chef
+  class Knife
+    class Bootstrap < Knife
+      class ChefVaultHandler
+        # @return [Hash] knife merged config, typically @config
+        attr_accessor :knife_config
+        # @return [Chef::Knife::UI] ui object for output
+        attr_accessor :ui
+        # @return [String] name of the node (technically name of the client)
+        attr_reader :node_name
+        # @param knife_config [Hash] knife merged config, typically @config
+        # @param ui [Chef::Knife::UI] ui object for output
+        def initialize(knife_config: {}, ui: nil)
+          @knife_config = knife_config
+          @ui           = ui
+        end
+        # Updates the chef vault items for the newly created node.
+        #
+        # @param node_name [String] name of the node (technically name of the client)
+        # @todo: node_name should be mandatory (ruby 2.0 compat)
+        def run(node_name: nil)
+          return unless doing_chef_vault?
+          sanity_check
+          @node_name = node_name
+          ui.info("Updating Chef Vault, waiting for client to be searchable..") while wait_for_client
+          update_bootstrap_vault_json!
+        end
+        # Iterate through all the vault items to update.  Items may be either a String
+        # or an Array of Strings:
+        #
+        # {
+        #   "vault1":  "item",
+        #   "vault2":  [ "item1", "item2", "item2" ]
+        # }
+        #
+        def update_bootstrap_vault_json!
+          vault_json.each do |vault, items|
+            [ items ].flatten.each do |item|
+              update_vault(vault, item)
+            end
+          end
+        end
+        # @return [Boolean] if we've got chef vault options to act on or not
+        def doing_chef_vault?
+          !!(bootstrap_vault_json || bootstrap_vault_file || bootstrap_vault_item)
+        end
+        private
+        # warn if the user has given mutual conflicting options
+        def sanity_check
+          if bootstrap_vault_item && (bootstrap_vault_json || bootstrap_vault_file)
+            ui.warn "--vault-item given with --vault-list or --vault-file, ignoring the latter"
+          end
+          if bootstrap_vault_json && bootstrap_vault_file
+            ui.warn "--vault-list given with --vault-file, ignoring the latter"
+          end
+        end
+        # @return [String] string with serialized JSON representing the chef vault items
+        def bootstrap_vault_json
+          knife_config[:bootstrap_vault_json]
+        end
+        # @return [String] JSON text in a file representing the chef vault items
+        def bootstrap_vault_file
+          knife_config[:bootstrap_vault_file]
+        end
+        # @return [Hash] Ruby object representing the chef vault items to create
+        def bootstrap_vault_item
+          knife_config[:bootstrap_vault_item]
+        end
+        # Helper to return a ruby object represeting all the data bags and items
+        # to update via chef-vault.
+        #
+        # @return [Hash] deserialized ruby hash with all the vault items
+        def vault_json
+          @vault_json ||=
+            begin
+              if bootstrap_vault_item
+                bootstrap_vault_item
+              else
+                json = bootstrap_vault_json ? bootstrap_vault_json : File.read(bootstrap_vault_file)
+                Chef::JSONCompat.from_json(json)
+              end
+            end
+        end
+        # Update an individual vault item and save it
+        #
+        # @param vault [String] name of the chef-vault encrypted data bag
+        # @param item [String] name of the chef-vault encrypted item
+        def update_vault(vault, item)
+          require_chef_vault!
+          bootstrap_vault_item = load_chef_bootstrap_vault_item(vault, item)
+          bootstrap_vault_item.clients("name:#{node_name}")
+          bootstrap_vault_item.save
+        end
+        # Hook to stub out ChefVault
+        #
+        # @param vault [String] name of the chef-vault encrypted data bag
+        # @param item [String] name of the chef-vault encrypted item
+        # @returns [ChefVault::Item] ChefVault::Item object
+        def load_chef_bootstrap_vault_item(vault, item)
+          ChefVault::Item.load(vault, item)
+        end
+        public :load_chef_bootstrap_vault_item  # for stubbing
+        # Helper used to spin waiting for the client to appear in search.
+        #
+        # @return [Boolean] true if the client is searchable
+        def wait_for_client
+          sleep 1
+          !Chef::Search::Query.new.search(:client, "name:#{node_name}")[0]
+        end
+        # Helper to very lazily require the chef-vault gem
+        def require_chef_vault!
+          @require_chef_vault ||=
+            begin
+              require 'chef-vault'
+              true
+            rescue LoadError
+              raise "Knife bootstrap cannot configure chef vault items when the chef-vault gem is not installed"
+            end
+        end
+      end
+    end
+  end
+end