RubyGems - chef - Versions diffs - 12.3.0 → 12.4.0.rc.0 - Mend

chef 12.3.0 → 12.4.0.rc.0

Files changed (247) hide show

checksums.yaml +4 -4
data/Rakefile +86 -7
data/distro/common/markdown/man1/chef-shell.mkd +4 -4
data/distro/common/markdown/man1/knife-bootstrap.mkd +1 -1
data/distro/common/markdown/man1/knife-client.mkd +1 -1
data/distro/common/markdown/man1/knife-configure.mkd +1 -1
data/distro/common/markdown/man1/knife-cookbook-site.mkd +1 -1
data/distro/common/markdown/man1/knife-cookbook.mkd +4 -4
data/distro/common/markdown/man1/knife-data-bag.mkd +1 -1
data/distro/common/markdown/man1/knife-environment.mkd +3 -3
data/distro/common/markdown/man1/knife-exec.mkd +1 -1
data/distro/common/markdown/man1/knife-index.mkd +1 -1
data/distro/common/markdown/man1/knife-node.mkd +1 -1
data/distro/common/markdown/man1/knife-role.mkd +3 -3
data/distro/common/markdown/man1/knife-search.mkd +2 -2
data/distro/common/markdown/man1/knife-ssh.mkd +1 -1
data/distro/common/markdown/man1/knife-status.mkd +1 -1
data/distro/common/markdown/man1/knife-tag.mkd +1 -1
data/distro/common/markdown/man1/knife.mkd +2 -2
data/distro/common/markdown/man8/chef-client.mkd +1 -2
data/distro/common/markdown/man8/chef-expander.mkd +1 -2
data/distro/common/markdown/man8/chef-expanderctl.mkd +1 -2
data/distro/common/markdown/man8/chef-server-webui.mkd +1 -1
data/distro/common/markdown/man8/chef-server.mkd +1 -2
data/distro/common/markdown/man8/chef-solo.mkd +2 -2
data/distro/common/markdown/man8/chef-solr.mkd +1 -1
data/lib/chef/client.rb +2 -2
data/lib/chef/config.rb +17 -709
data/lib/chef/cookbook/metadata.rb +9 -5
data/lib/chef/cookbook_loader.rb +1 -1
data/lib/chef/cookbook_site_streaming_uploader.rb +2 -18
data/lib/chef/dsl/definitions.rb +44 -0
data/lib/chef/dsl/recipe.rb +50 -35
data/lib/chef/dsl/resources.rb +28 -0
data/lib/chef/event_dispatch/dispatcher.rb +2 -0
data/lib/chef/event_loggers/windows_eventlog.rb +1 -11
data/lib/chef/exceptions.rb +4 -0
data/lib/chef/file_access_control/unix.rb +5 -0
data/lib/chef/formatters/error_inspectors/api_error_formatting.rb +17 -0
data/lib/chef/formatters/error_inspectors/compile_error_inspector.rb +21 -9
data/lib/chef/formatters/error_inspectors/cookbook_resolve_error_inspector.rb +2 -0
data/lib/chef/formatters/error_inspectors/cookbook_sync_error_inspector.rb +2 -0
data/lib/chef/formatters/error_inspectors/node_load_error_inspector.rb +2 -0
data/lib/chef/formatters/error_inspectors/registration_error_inspector.rb +4 -0
data/lib/chef/formatters/error_inspectors/resource_failure_inspector.rb +11 -1
data/lib/chef/formatters/error_inspectors/run_list_expansion_error_inspector.rb +2 -0
data/lib/chef/http/authenticator.rb +3 -0
data/lib/chef/http/basic_client.rb +10 -6
data/lib/chef/http/json_input.rb +6 -1
data/lib/chef/key.rb +271 -0
data/lib/chef/knife.rb +11 -1
data/lib/chef/knife/bootstrap.rb +6 -0
data/lib/chef/knife/bootstrap/templates/chef-full.erb +166 -23
data/lib/chef/knife/client_key_create.rb +67 -0
data/lib/chef/knife/client_key_delete.rb +76 -0
data/lib/chef/knife/client_key_edit.rb +80 -0
data/lib/chef/knife/client_key_list.rb +69 -0
data/lib/chef/knife/client_key_show.rb +76 -0
data/lib/chef/knife/key_create.rb +108 -0
data/lib/chef/knife/key_create_base.rb +50 -0
data/lib/chef/knife/key_delete.rb +55 -0
data/lib/chef/knife/key_edit.rb +114 -0
data/lib/chef/knife/key_edit_base.rb +55 -0
data/lib/chef/knife/key_list.rb +88 -0
data/lib/chef/knife/key_list_base.rb +45 -0
data/lib/chef/knife/key_show.rb +53 -0
data/lib/chef/knife/ssh.rb +26 -28
data/lib/chef/knife/user_key_create.rb +69 -0
data/lib/chef/knife/user_key_delete.rb +76 -0
data/lib/chef/knife/user_key_edit.rb +80 -0
data/lib/chef/knife/user_key_list.rb +69 -0
data/lib/chef/knife/user_key_show.rb +76 -0
data/lib/chef/log.rb +2 -0
data/lib/chef/log/syslog.rb +46 -0
data/lib/chef/log/winevt.rb +99 -0
data/lib/chef/mixin/provides.rb +8 -1
data/lib/chef/mixin/unformatter.rb +32 -0
data/lib/chef/mixin/uris.rb +33 -0
data/lib/chef/mixin/wstring.rb +31 -0
data/lib/chef/node.rb +21 -2
data/lib/chef/platform/provider_mapping.rb +8 -4
data/lib/chef/platform/query_helpers.rb +1 -5
data/lib/chef/platform/service_helpers.rb +21 -21
data/lib/chef/provider.rb +33 -0
data/lib/chef/provider/cron/unix.rb +1 -0
data/lib/chef/provider/file.rb +5 -3
data/lib/chef/provider/lwrp_base.rb +76 -58
data/lib/chef/provider/ohai.rb +1 -0
data/lib/chef/provider/package.rb +7 -4
data/lib/chef/provider/package/aix.rb +1 -0
data/lib/chef/provider/package/smartos.rb +5 -5
data/lib/chef/provider/package/windows.rb +90 -6
data/lib/chef/provider/package/yum.rb +102 -32
data/lib/chef/provider/reboot.rb +1 -0
data/lib/chef/provider/registry_key.rb +2 -0
data/lib/chef/provider/remote_file.rb +1 -0
data/lib/chef/provider/remote_file/content.rb +5 -1
data/lib/chef/provider/remote_file/fetcher.rb +22 -8
data/lib/chef/provider/remote_file/network_file.rb +48 -0
data/lib/chef/provider/service/aix.rb +13 -12
data/lib/chef/provider_resolver.rb +87 -0
data/lib/chef/providers.rb +1 -0
data/lib/chef/resource.rb +67 -8
data/lib/chef/resource/bash.rb +1 -0
data/lib/chef/resource/bff_package.rb +1 -2
data/lib/chef/resource/breakpoint.rb +1 -0
data/lib/chef/resource/csh.rb +1 -0
data/lib/chef/resource/deploy.rb +1 -0
data/lib/chef/resource/erl_call.rb +1 -0
data/lib/chef/resource/execute.rb +1 -0
data/lib/chef/resource/file.rb +18 -0
data/lib/chef/resource/http_request.rb +1 -0
data/lib/chef/resource/ifconfig.rb +1 -2
data/lib/chef/resource/log.rb +1 -2
data/lib/chef/resource/lwrp_base.rb +106 -87
data/lib/chef/resource/ohai.rb +1 -0
data/lib/chef/resource/package.rb +1 -0
data/lib/chef/resource/perl.rb +1 -0
data/lib/chef/resource/portage_package.rb +1 -0
data/lib/chef/resource/python.rb +1 -0
data/lib/chef/resource/reboot.rb +2 -0
data/lib/chef/resource/registry_key.rb +1 -0
data/lib/chef/resource/remote_file.rb +1 -1
data/lib/chef/resource/route.rb +1 -2
data/lib/chef/resource/ruby.rb +1 -0
data/lib/chef/resource/ruby_block.rb +1 -0
data/lib/chef/resource/scm.rb +1 -0
data/lib/chef/resource/script.rb +1 -0
data/lib/chef/resource/service.rb +1 -0
data/lib/chef/resource/subversion.rb +1 -0
data/lib/chef/resource/whyrun_safe_ruby_block.rb +1 -0
data/lib/chef/resource/windows_package.rb +24 -2
data/lib/chef/resource/windows_script.rb +1 -0
data/lib/chef/resource/yum_package.rb +1 -1
data/lib/chef/resource_definition.rb +1 -0
data/lib/chef/resource_reporter.rb +3 -10
data/lib/chef/resource_resolver.rb +20 -10
data/lib/chef/run_context.rb +1 -0
data/lib/chef/run_list/versioned_recipe_list.rb +18 -0
data/lib/chef/run_status.rb +2 -4
data/lib/chef/shell.rb +1 -1
data/lib/chef/util/path_helper.rb +3 -204
data/lib/chef/util/windows/net_user.rb +73 -118
data/lib/chef/version.rb +8 -4
data/lib/chef/win32/api.rb +2 -1
data/lib/chef/win32/api/installer.rb +1 -1
data/lib/chef/win32/api/net.rb +115 -2
data/lib/chef/win32/api/security.rb +24 -0
data/lib/chef/win32/api/unicode.rb +1 -1
data/lib/chef/win32/eventlog.rb +31 -0
data/lib/chef/win32/net.rb +190 -0
data/lib/chef/win32/security.rb +51 -2
data/lib/chef/win32/security/sid.rb +17 -0
data/spec/data/lwrp/providers/buck_passer.rb +18 -2
data/spec/data/lwrp/providers/buck_passer_2.rb +18 -2
data/spec/data/lwrp/providers/embedded_resource_accesses_providers_scope.rb +14 -2
data/spec/data/lwrp_override/resources/foo.rb +5 -0
data/spec/functional/knife/ssh_spec.rb +2 -2
data/spec/functional/rebooter_spec.rb +1 -1
data/spec/functional/resource/aixinit_service_spec.rb +1 -1
data/spec/functional/resource/user/windows_spec.rb +125 -0
data/spec/functional/shell_spec.rb +25 -10
data/spec/functional/win32/sid_spec.rb +55 -0
data/spec/integration/client/client_spec.rb +53 -29
data/spec/integration/knife/deps_spec.rb +8 -14
data/spec/integration/knife/upload_spec.rb +18 -0
data/spec/integration/recipes/lwrp_inline_resources_spec.rb +1 -1
data/spec/integration/recipes/provider_choice.rb +41 -0
data/spec/integration/recipes/recipe_dsl_spec.rb +259 -0
data/spec/spec_helper.rb +6 -1
data/spec/support/key_helpers.rb +104 -0
data/spec/support/lib/chef/resource/cat.rb +1 -0
data/spec/support/lib/chef/resource/one_two_three_four.rb +2 -0
data/spec/support/lib/chef/resource/zen_follower.rb +1 -0
data/spec/support/lib/chef/resource/zen_master.rb +2 -0
data/spec/support/mock/platform.rb +1 -1
data/spec/support/pedant/Gemfile.lock +67 -0
data/spec/support/shared/functional/securable_resource.rb +34 -12
data/spec/support/shared/integration/integration_helper.rb +6 -5
data/spec/support/shared/unit/provider/file.rb +31 -8
data/spec/unit/application/client_spec.rb +2 -2
data/spec/unit/client_spec.rb +21 -4
data/spec/unit/cookbook/cookbook_version_loader_spec.rb +1 -1
data/spec/unit/cookbook/metadata_spec.rb +15 -0
data/spec/unit/cookbook/syntax_check_spec.rb +1 -1
data/spec/unit/cookbook_loader_spec.rb +1 -1
data/spec/unit/cookbook_site_streaming_uploader_spec.rb +0 -21
data/spec/unit/data_bag_spec.rb +1 -1
data/spec/unit/event_dispatch/dispatcher_spec.rb +61 -0
data/spec/unit/formatters/error_inspectors/api_error_formatting_spec.rb +75 -0
data/spec/unit/formatters/error_inspectors/compile_error_inspector_spec.rb +149 -112
data/spec/unit/formatters/error_inspectors/resource_failure_inspector_spec.rb +7 -0
data/spec/unit/guard_interpreter/resource_guard_interpreter_spec.rb +1 -1
data/spec/unit/http/authenticator_spec.rb +69 -0
data/spec/unit/http/basic_client_spec.rb +16 -0
data/spec/unit/key_spec.rb +634 -0
data/spec/unit/knife/bootstrap_spec.rb +14 -1
data/spec/unit/knife/core/subcommand_loader_spec.rb +1 -1
data/spec/unit/knife/core/ui_spec.rb +1 -1
data/spec/unit/knife/data_bag_from_file_spec.rb +1 -1
data/spec/unit/knife/environment_from_file_spec.rb +1 -1
data/spec/unit/knife/key_create_spec.rb +224 -0
data/spec/unit/knife/key_delete_spec.rb +135 -0
data/spec/unit/knife/key_edit_spec.rb +267 -0
data/spec/unit/knife/key_helper.rb +74 -0
data/spec/unit/knife/key_list_spec.rb +216 -0
data/spec/unit/knife/key_show_spec.rb +126 -0
data/spec/unit/knife/ssh_spec.rb +23 -26
data/spec/unit/knife_spec.rb +33 -1
data/spec/unit/log/syslog_spec.rb +53 -0
data/spec/unit/log/winevt_spec.rb +55 -0
data/spec/unit/lwrp_spec.rb +105 -51
data/spec/unit/mixin/path_sanity_spec.rb +2 -2
data/spec/unit/mixin/template_spec.rb +2 -2
data/spec/unit/mixin/unformatter_spec.rb +61 -0
data/spec/unit/mixin/uris_spec.rb +45 -0
data/spec/unit/platform/query_helpers_spec.rb +1 -1
data/spec/unit/policy_builder/policyfile_spec.rb +7 -3
data/spec/unit/provider/deploy/revision_spec.rb +1 -1
data/spec/unit/provider/deploy_spec.rb +1 -1
data/spec/unit/provider/directory_spec.rb +1 -1
data/spec/unit/provider/execute_spec.rb +1 -1
data/spec/unit/provider/package/aix_spec.rb +20 -8
data/spec/unit/provider/package/smartos_spec.rb +50 -40
data/spec/unit/provider/package/windows_spec.rb +104 -25
data/spec/unit/provider/package/yum_spec.rb +111 -1
data/spec/unit/provider/package_spec.rb +6 -0
data/spec/unit/provider/remote_file/fetcher_spec.rb +20 -1
data/spec/unit/provider/remote_file/network_file_spec.rb +45 -0
data/spec/unit/provider/service/aix_service_spec.rb +26 -11
data/spec/unit/provider/user/dscl_spec.rb +1 -1
data/spec/unit/provider_spec.rb +20 -0
data/spec/unit/recipe_spec.rb +1 -1
data/spec/unit/resource/batch_spec.rb +1 -0
data/spec/unit/resource/powershell_spec.rb +1 -0
data/spec/unit/resource/remote_file_spec.rb +10 -0
data/spec/unit/resource/windows_package_spec.rb +16 -2
data/spec/unit/resource_spec.rb +40 -24
data/spec/unit/rest_spec.rb +10 -20
data/spec/unit/role_spec.rb +1 -1
data/spec/unit/run_context_spec.rb +31 -0
data/spec/unit/shell_spec.rb +4 -4
data/tasks/external_tests.rb +29 -0
data/tasks/rspec.rb +14 -1
metadata +105 -28
data/spec/unit/config_spec.rb +0 -544
data/spec/unit/util/path_helper_spec.rb +0 -255

data/lib/chef/util/windows/net_user.rb CHANGED

@@ -18,98 +18,69 @@
 require 'chef/util/windows'
 require 'chef/exceptions'
+require 'chef/win32/net'
+require 'chef/win32/security'
 #wrapper around a subset of the NetUser* APIs.
 #nothing Chef specific, but not complete enough to be its own gem, so util for now.
 class Chef::Util::Windows::NetUser < Chef::Util::Windows
   private
-  LogonUser = Windows::API.new('LogonUser', 'SSSLLP', 'I', 'advapi32')
-  DOMAIN_GROUP_RID_USERS = 0x00000201
-  UF_SCRIPT              = 0x000001
-  UF_ACCOUNTDISABLE      = 0x000002
-  UF_PASSWD_CANT_CHANGE  = 0x000040
-  UF_NORMAL_ACCOUNT      = 0x000200
-  UF_DONT_EXPIRE_PASSWD  = 0x010000
-  #[:symbol_name, default_val]
-  #default_val duals as field type
-  #array index duals as structure offset
-  #OC-8391
-  #Changing [:password, nil], to [:password, ""],
-  #if :password is set to nil, windows user creation api ignores the password policy applied
-  #thus initializing it with empty string value.
-  USER_INFO_3 = [
-    [:name, nil],
-    [:password, ""],
-    [:password_age, 0],
-    [:priv, 0], #"The NetUserAdd and NetUserSetInfo functions ignore this member"
-    [:home_dir, nil],
-    [:comment, nil],
-    [:flags, UF_SCRIPT|UF_DONT_EXPIRE_PASSWD|UF_NORMAL_ACCOUNT],
-    [:script_path, nil],
-    [:auth_flags, 0],
-    [:full_name, nil],
-    [:user_comment, nil],
-    [:parms, nil],
-    [:workstations, nil],
-    [:last_logon, 0],
-    [:last_logoff, 0],
-    [:acct_expires, -1],
-    [:max_storage, -1],
-    [:units_per_week, 0],
-    [:logon_hours, nil],
-    [:bad_pw_count, 0],
-    [:num_logons, 0],
-    [:logon_server, nil],
-    [:country_code, 0],
-    [:code_page, 0],
-    [:user_id, 0],
-    [:primary_group_id, DOMAIN_GROUP_RID_USERS],
-    [:profile, nil],
-    [:home_dir_drive, nil],
-    [:password_expired, 0]
-  ]
-  USER_INFO_3_TEMPLATE =
-    USER_INFO_3.collect { |field| field[1].class == Fixnum ? 'i' : 'L' }.join
-  SIZEOF_USER_INFO_3 = #sizeof(USER_INFO_3)
-    USER_INFO_3.inject(0){|sum,item|
-      sum + (item[1].class == Fixnum ? 4 : PTR_SIZE)
-    }
-  def user_info_3(args)
-    USER_INFO_3.collect { |field|
-      args.include?(field[0]) ? args[field[0]] : field[1]
-    }
-  end
-  def user_info_3_pack(user)
-    user.collect { |v|
-      v.class == Fixnum ? v : str_to_ptr(multi_to_wide(v))
-    }.pack(USER_INFO_3_TEMPLATE)
+  NetUser = Chef::ReservedNames::Win32::NetUser
+  Security = Chef::ReservedNames::Win32::Security
+  USER_INFO_3_TRANSFORM = {
+    name: :usri3_name,
+    password: :usri3_password,
+    password_age: :usri3_password_age,
+    priv: :usri3_priv,
+    home_dir: :usri3_home_dir,
+    comment: :usri3_comment,
+    flags: :usri3_flags,
+    script_path: :usri3_script_path,
+    auth_flags: :usri3_auth_flags,
+    full_name: :usri3_full_name,
+    user_comment: :usri3_usr_comment,
+    parms: :usri3_parms,
+    workstations: :usri3_workstations,
+    last_logon: :usri3_last_logon,
+    last_logoff: :usri3_last_logoff,
+    acct_expires: :usri3_acct_expires,
+    max_storage: :usri3_max_storage,
+    units_per_week: :usri3_units_per_week,
+    logon_hours: :usri3_logon_hours,
+    bad_pw_count: :usri3_bad_pw_count,
+    num_logons: :usri3_num_logons,
+    logon_server: :usri3_logon_server,
+    country_code: :usri3_country_code,
+    code_page: :usri3_code_page,
+    user_id: :usri3_user_id,
+    primary_group_id: :usri3_primary_group_id,
+    profile: :usri3_profile,
+    home_dir_drive: :usri3_home_dir_drive,
+    password_expired: :usri3_password_expired,
+  }
+  def transform_usri3(args)
+    args.inject({}) do |memo, (k,v)|
+      memo[USER_INFO_3_TRANSFORM[k]] = v
+      memo
+    end
   end
-  def user_info_3_unpack(buffer)
-    user = Hash.new
-    USER_INFO_3.each_with_index do |field,offset|
-      user[field[0]] = field[1].class == Fixnum ?
-        dword_to_i(buffer, offset) : lpwstr_to_s(buffer, offset)
+  def usri3_to_hash(usri3)
+    t = USER_INFO_3_TRANSFORM.invert
+    usri3.inject({}) do |memo, (k,v)|
+      memo[t[k]] = v
+      memo
     end
-    user
   end
   def set_info(args)
-    user = user_info_3(args)
-    buffer = user_info_3_pack(user)
-    rc = NetUserSetInfo.call(nil, @name, 3, buffer, nil)
-    if rc != NERR_Success
-      raise ArgumentError, get_last_error(rc)
+    begin
+      rc = NetUser::net_user_set_info_l3(nil, @username, transform_usri3(args))
+    rescue Chef::Exceptions::Win32APIError => e
+      raise ArgumentError, e
     end
   end
@@ -120,49 +91,32 @@ class Chef::Util::Windows::NetUser < Chef::Util::Windows
     @name = multi_to_wide(username)
   end
-  LOGON32_PROVIDER_DEFAULT = 0
-  LOGON32_LOGON_NETWORK = 3
+  LOGON32_PROVIDER_DEFAULT = Security::LOGON32_PROVIDER_DEFAULT
+  LOGON32_LOGON_NETWORK = Security::LOGON32_LOGON_NETWORK
   #XXX for an extra painful alternative, see: http://support.microsoft.com/kb/180548
   def validate_credentials(passwd)
-    token = 0.chr * PTR_SIZE
-    res = LogonUser.call(@username, nil, passwd,
-                         LOGON32_LOGON_NETWORK, LOGON32_PROVIDER_DEFAULT, token)
-    if res == 0
+    begin
+      token = Security::logon_user(@username, nil, passwd,
+                 LOGON32_LOGON_NETWORK, LOGON32_PROVIDER_DEFAULT)
+      return true
+    rescue Chef::Exceptions::Win32APIError
       return false
     end
-    ::Windows::Handle::CloseHandle.call(token.unpack('L')[0])
-    return true
   end
   def get_info
-    ptr  = 0.chr * PTR_SIZE
-    rc = NetUserGetInfo.call(nil, @name, 3, ptr)
-    if rc == NERR_UserNotFound
-      raise Chef::Exceptions::UserIDNotFound, get_last_error(rc)
-    elsif rc != NERR_Success
-      raise ArgumentError, get_last_error(rc)
+    begin
+      ui3 = NetUser::net_user_get_info_l3(nil, @username)
+    rescue Chef::Exceptions::Win32APIError => e
+      raise ArgumentError, e
     end
-    ptr = ptr.unpack('L')[0]
-    buffer = 0.chr * SIZEOF_USER_INFO_3
-    memcpy(buffer, ptr, buffer.size)
-    NetApiBufferFree(ptr)
-    user_info_3_unpack(buffer)
+    usri3_to_hash(ui3)
   end
   def add(args)
-    user = user_info_3(args)
-    buffer = user_info_3_pack(user)
-    rc = NetUserAdd.call(nil, 3, buffer, rc)
-    if rc != NERR_Success
-      raise ArgumentError, get_last_error(rc)
-    end
-    #usri3_primary_group_id:
-    #"When you call the NetUserAdd function, this member must be DOMAIN_GROUP_RID_USERS"
-    NetLocalGroupAddMembers(nil, multi_to_wide("Users"), 3, buffer[0,PTR_SIZE], 1)
+    transformed_args = transform_usri3(args)
+    NetUser::net_user_add_l3(nil, transformed_args)
+    NetUser::net_local_group_add_member(nil, "Users", args[:name])
   end
   def user_modify(&proc)
@@ -182,15 +136,16 @@ class Chef::Util::Windows::NetUser < Chef::Util::Windows
   end
   def delete
-    rc = NetUserDel.call(nil, @name)
-    if rc != NERR_Success
-      raise ArgumentError, get_last_error(rc)
+    begin
+      NetUser::net_user_del(nil, @username)
+    rescue Chef::Exceptions::Win32APIError => e
+      raise ArgumentError, e
     end
   end
   def disable_account
     user_modify do |user|
-      user[:flags] |= UF_ACCOUNTDISABLE
+      user[:flags] |= NetUser::UF_ACCOUNTDISABLE
       #This does not set the password to nil. It (for some reason) means to ignore updating the field.
       #See similar behavior for the logon_hours field documented at
       #http://msdn.microsoft.com/en-us/library/windows/desktop/aa371338%28v=vs.85%29.aspx
@@ -200,7 +155,7 @@ class Chef::Util::Windows::NetUser < Chef::Util::Windows
   def enable_account
     user_modify do |user|
-      user[:flags] &= ~UF_ACCOUNTDISABLE
+      user[:flags] &= ~NetUser::UF_ACCOUNTDISABLE
       #This does not set the password to nil. It (for some reason) means to ignore updating the field.
       #See similar behavior for the logon_hours field documented at
       #http://msdn.microsoft.com/en-us/library/windows/desktop/aa371338%28v=vs.85%29.aspx
@@ -209,6 +164,6 @@ class Chef::Util::Windows::NetUser < Chef::Util::Windows
   end
   def check_enabled
-    (get_info()[:flags] & UF_ACCOUNTDISABLE) != 0
+    (get_info()[:flags] & NetUser::UF_ACCOUNTDISABLE) != 0
   end
 end

data/lib/chef/version.rb CHANGED

@@ -1,6 +1,4 @@
-# Author:: Daniel DeLeo (<dan@opscode.com>)
-# Copyright:: Copyright (c) 2010-2011 Opscode, Inc.
+# Copyright:: Copyright (c) 2010-2015 Chef Software, Inc.
 # License:: Apache License, Version 2.0
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
@@ -15,9 +13,15 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
+#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+# NOTE: This file is generated by running `rake version` in the top level of
+# this repo. Do not edit this manually. Edit the VERSION file and run the rake
+# task instead.
+#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 class Chef
   CHEF_ROOT = File.dirname(File.expand_path(File.dirname(__FILE__)))
-  VERSION = '12.3.0'
+  VERSION = '12.4.0.rc.0'
 end
 #

data/lib/chef/win32/api.rb CHANGED

@@ -67,7 +67,7 @@ class Chef
         # BaseTsd.h: #ifdef (_WIN64) host.typedef int HALF_PTR; #else host.typedef short HALF_PTR;
         host.typedef :ulong,   :HACCEL # (L) Handle to an accelerator table. WinDef.h: #host.typedef HANDLE HACCEL;
         # See http://msdn.microsoft.com/en-us/library/ms645526%28VS.85%29.aspx
-        host.typedef :ulong,   :HANDLE # (L) Handle to an object. WinNT.h: #host.typedef PVOID HANDLE;
+        host.typedef :size_t,   :HANDLE # (L) Handle to an object. WinNT.h: #host.typedef PVOID HANDLE;
         # todo: Platform-dependent! Need to change to :uint64 for Win64
         host.typedef :ulong,   :HBITMAP # (L) Handle to a bitmap: http://msdn.microsoft.com/en-us/library/dd183377%28VS.85%29.aspx
         host.typedef :ulong,   :HBRUSH # (L) Handle to a brush. http://msdn.microsoft.com/en-us/library/dd183394%28VS.85%29.aspx
@@ -117,6 +117,7 @@ class Chef
         host.typedef :uint32,  :LCID # Locale identifier. For more information, see Locales.
         host.typedef :uint32,  :LCTYPE # Locale information type. For a list, see Locale Information Constants.
         host.typedef :uint32,  :LGRPID # Language group identifier. For a list, see EnumLanguageGroupLocales.
+        host.typedef :pointer, :LMSTR # Pointer to null termiated string of unicode characters
         host.typedef :long,    :LONG # 32-bit signed integer. The range is -2,147,483,648 through +...647 decimal.
         host.typedef :int32,   :LONG32 # 32-bit signed integer. The range is -2,147,483,648 through +...647 decimal.
         host.typedef :int64,   :LONG64 # 64-bit signed integer. The range is –9,223,372,036,854,775,808 through +...807

data/lib/chef/win32/api/installer.rb CHANGED

@@ -158,7 +158,7 @@ UINT MsiCloseHandle(
             raise Chef::Exceptions::Package, msg
           end
-          version
+          version.chomp(0.chr)
         end
       end
     end

data/lib/chef/win32/api/net.rb CHANGED

@@ -32,8 +32,24 @@ class Chef
         MAX_PREFERRED_LENGTH                = 0xFFFF
-        NERR_Success                        = 0
-        NERR_UserNotFound                   = 2221
+        DOMAIN_GROUP_RID_USERS = 0x00000201
+        UF_SCRIPT              = 0x000001
+        UF_ACCOUNTDISABLE      = 0x000002
+        UF_PASSWD_CANT_CHANGE  = 0x000040
+        UF_NORMAL_ACCOUNT      = 0x000200
+        UF_DONT_EXPIRE_PASSWD  = 0x010000
+        NERR_Success = 0
+        NERR_InvalidComputer = 2351
+        NERR_NotPrimary = 2226
+        NERR_SpeGroupOp = 2234
+        NERR_LastAdmin = 2452
+        NERR_BadUsername = 2202
+        NERR_BadPassword = 2203
+        NERR_PasswordTooShort = 2245
+        NERR_UserNotFound = 2221
+        ERROR_ACCESS_DENIED = 5
         ffi_lib "netapi32"
@@ -67,6 +83,57 @@ class Chef
             :usri3_profile, :LPWSTR,
             :usri3_home_dir_drive, :LPWSTR,
             :usri3_password_expired, :DWORD
+          def set(key, val)
+            val = if val.is_a? String
+              encoded = if val.encoding == Encoding::UTF_16LE
+                val
+              else
+                val.to_wstring
+              end
+              FFI::MemoryPointer.from_string(encoded)
+            else
+              val
+            end
+            self[key] = val
+          end
+          def get(key)
+            if respond_to? key
+             send(key)
+            else
+              val = self[key]
+              if val.is_a? FFI::Pointer
+                if val.null?
+                  nil
+                else
+                  val.read_wstring
+                end
+              else
+                val
+              end
+            end
+          end
+          def usri3_logon_hours
+            val = self[:usri3_logon_hours]
+            if !val.nil? && !val.null?
+              val.read_bytes(21)
+            else
+              nil
+            end
+          end
+          def as_ruby
+            members.inject({}) do |memo, key|
+              memo[key] = get(key)
+              memo
+            end
+          end
+        end
+        class LOCALGROUP_MEMBERS_INFO_3 < FFI::Struct
+          layout :lgrmi3_domainandname, :LPWSTR
         end
 # NET_API_STATUS NetUserEnum(
@@ -85,6 +152,52 @@ class Chef
 #   _In_  LPVOID Buffer
 # );
         safe_attach_function :NetApiBufferFree, [ :LPVOID ], :DWORD
+#NET_API_STATUS NetUserAdd(
+  #_In_  LMSTR   servername,
+  #_In_  DWORD   level,
+  #_In_  LPBYTE  buf,
+  #_Out_ LPDWORD parm_err
+#);
+        safe_attach_function :NetUserAdd, [:LMSTR, :DWORD, :LPBYTE, :LPDWORD ], :DWORD
+#NET_API_STATUS NetLocalGroupAddMembers(
+#  _In_ LPCWSTR servername,
+#  _In_ LPCWSTR groupname,
+#  _In_ DWORD   level,
+#  _In_ LPBYTE  buf,
+#  _In_ DWORD   totalentries
+#);
+        safe_attach_function :NetLocalGroupAddMembers, [:LPCWSTR, :LPCWSTR, :DWORD, :LPBYTE, :DWORD ], :DWORD
+#NET_API_STATUS NetUserGetInfo(
+#  _In_  LPCWSTR servername,
+#  _In_  LPCWSTR username,
+#  _In_  DWORD   level,
+#  _Out_ LPBYTE  *bufptr
+#);
+        safe_attach_function :NetUserGetInfo, [:LPCWSTR, :LPCWSTR, :DWORD, :LPBYTE], :DWORD
+#NET_API_STATUS NetApiBufferFree(
+#  _In_ LPVOID Buffer
+#);
+        safe_attach_function :NetApiBufferFree, [:LPVOID], :DWORD
+#NET_API_STATUS NetUserSetInfo(
+#  _In_  LPCWSTR servername,
+#  _In_  LPCWSTR username,
+#  _In_  DWORD   level,
+#  _In_  LPBYTE  buf,
+#  _Out_ LPDWORD parm_err
+#);
+        safe_attach_function :NetUserSetInfo, [:LPCWSTR, :LPCWSTR, :DWORD, :LPBYTE, :LPDWORD], :DWORD
+#NET_API_STATUS NetUserDel(
+#  _In_ LPCWSTR servername,
+#  _In_ LPCWSTR username
+#);
+        safe_attach_function :NetUserDel, [:LPCWSTR, :LPCWSTR], :DWORD
       end
     end
   end

data/lib/chef/win32/api/security.rb CHANGED

@@ -193,6 +193,20 @@ class Chef
         MAXDWORD = 0xffffffff
+        # LOGON32 constants for LogonUser
+        LOGON32_LOGON_INTERACTIVE = 2;
+        LOGON32_LOGON_NETWORK = 3;
+        LOGON32_LOGON_BATCH = 4;
+        LOGON32_LOGON_SERVICE = 5;
+        LOGON32_LOGON_UNLOCK = 7;
+        LOGON32_LOGON_NETWORK_CLEARTEXT = 8;
+        LOGON32_LOGON_NEW_CREDENTIALS = 9;
+        LOGON32_PROVIDER_DEFAULT = 0;
+        LOGON32_PROVIDER_WINNT35 = 1;
+        LOGON32_PROVIDER_WINNT40 = 2;
+        LOGON32_PROVIDER_WINNT50 = 3;
         ###############################################
         # Win32 API Bindings
         ###############################################
@@ -270,6 +284,14 @@ class Chef
              :MaxTokenInfoClass
         ]
+        class TOKEN_OWNER < FFI::Struct
+          layout :Owner, :pointer
+        end
+        class TOKEN_PRIMARY_GROUP < FFI::Struct
+          layout :PrimaryGroup, :pointer
+        end
         # https://msdn.microsoft.com/en-us/library/windows/desktop/aa379572%28v=vs.85%29.aspx
         SECURITY_IMPERSONATION_LEVEL = enum :SECURITY_IMPERSONATION_LEVEL, [
              :SecurityAnonymous,
@@ -405,6 +427,8 @@ class Chef
         safe_attach_function :SetSecurityDescriptorOwner, [ :pointer, :pointer, :BOOL ], :BOOL
         safe_attach_function :SetSecurityDescriptorSacl, [ :pointer, :BOOL, :pointer, :BOOL ], :BOOL
         safe_attach_function :GetTokenInformation, [ :HANDLE, :TOKEN_INFORMATION_CLASS, :pointer, :DWORD, :PDWORD ], :BOOL
+        safe_attach_function :LogonUserW, [:LPTSTR, :LPTSTR, :LPTSTR, :DWORD, :DWORD, :PHANDLE], :BOOL
       end
     end
   end