chef 15.0.300-universal-mingw32 → 15.1.36-universal-mingw32

Sign up to get free protection for your applications and to get access to all the features.
Files changed (1983) hide show
  1. checksums.yaml +4 -4
  2. data/Gemfile +94 -93
  3. data/LICENSE +201 -201
  4. data/README.md +64 -64
  5. data/Rakefile +81 -80
  6. data/bin/knife +24 -24
  7. data/chef-universal-mingw32.gemspec +22 -22
  8. data/chef.gemspec +60 -60
  9. data/distro/powershell/chef/chef.psm1 +459 -459
  10. data/ext/win32-eventlog/Rakefile +53 -53
  11. data/ext/win32-eventlog/chef-log.man +56 -56
  12. data/lib/.DS_Store +0 -0
  13. data/lib/chef.rb +35 -35
  14. data/lib/chef/.DS_Store +0 -0
  15. data/lib/chef/action_collection.rb +252 -252
  16. data/lib/chef/api_client.rb +228 -228
  17. data/lib/chef/api_client/registration.rb +200 -200
  18. data/lib/chef/api_client_v1.rb +326 -326
  19. data/lib/chef/application.rb +415 -409
  20. data/lib/chef/application/apply.rb +225 -225
  21. data/lib/chef/application/client.rb +546 -546
  22. data/lib/chef/application/exit_code.rb +157 -157
  23. data/lib/chef/application/knife.rb +222 -222
  24. data/lib/chef/application/solo.rb +377 -377
  25. data/lib/chef/application/windows_service.rb +338 -338
  26. data/lib/chef/application/windows_service_manager.rb +205 -205
  27. data/lib/chef/applications.rb +4 -4
  28. data/lib/chef/blacklist.rb +81 -81
  29. data/lib/chef/chef_class.rb +248 -248
  30. data/lib/chef/chef_fs.rb +59 -59
  31. data/lib/chef/chef_fs/chef_fs_data_store.rb +870 -870
  32. data/lib/chef/chef_fs/command_line.rb +291 -291
  33. data/lib/chef/chef_fs/config.rb +284 -284
  34. data/lib/chef/chef_fs/data_handler/acl_data_handler.rb +26 -26
  35. data/lib/chef/chef_fs/data_handler/client_data_handler.rb +39 -39
  36. data/lib/chef/chef_fs/data_handler/client_key_data_handler.rb +11 -11
  37. data/lib/chef/chef_fs/data_handler/container_data_handler.rb +35 -35
  38. data/lib/chef/chef_fs/data_handler/cookbook_data_handler.rb +38 -38
  39. data/lib/chef/chef_fs/data_handler/data_bag_item_data_handler.rb +67 -67
  40. data/lib/chef/chef_fs/data_handler/data_handler_base.rb +207 -207
  41. data/lib/chef/chef_fs/data_handler/environment_data_handler.rb +40 -40
  42. data/lib/chef/chef_fs/data_handler/group_data_handler.rb +55 -55
  43. data/lib/chef/chef_fs/data_handler/node_data_handler.rb +36 -36
  44. data/lib/chef/chef_fs/data_handler/organization_data_handler.rb +36 -36
  45. data/lib/chef/chef_fs/data_handler/organization_invites_data_handler.rb +17 -17
  46. data/lib/chef/chef_fs/data_handler/organization_members_data_handler.rb +17 -17
  47. data/lib/chef/chef_fs/data_handler/policy_data_handler.rb +48 -48
  48. data/lib/chef/chef_fs/data_handler/policy_group_data_handler.rb +33 -33
  49. data/lib/chef/chef_fs/data_handler/role_data_handler.rb +40 -40
  50. data/lib/chef/chef_fs/data_handler/user_data_handler.rb +29 -29
  51. data/lib/chef/chef_fs/file_pattern.rb +301 -301
  52. data/lib/chef/chef_fs/file_system.rb +431 -431
  53. data/lib/chef/chef_fs/file_system/base_fs_dir.rb +47 -47
  54. data/lib/chef/chef_fs/file_system/base_fs_object.rb +187 -187
  55. data/lib/chef/chef_fs/file_system/chef_server/acl_dir.rb +65 -65
  56. data/lib/chef/chef_fs/file_system/chef_server/acl_entry.rb +67 -67
  57. data/lib/chef/chef_fs/file_system/chef_server/acls_dir.rb +75 -75
  58. data/lib/chef/chef_fs/file_system/chef_server/chef_server_root_dir.rb +196 -196
  59. data/lib/chef/chef_fs/file_system/chef_server/cookbook_artifact_dir.rb +38 -38
  60. data/lib/chef/chef_fs/file_system/chef_server/cookbook_artifacts_dir.rb +106 -106
  61. data/lib/chef/chef_fs/file_system/chef_server/cookbook_dir.rb +208 -208
  62. data/lib/chef/chef_fs/file_system/chef_server/cookbook_file.rb +78 -78
  63. data/lib/chef/chef_fs/file_system/chef_server/cookbook_subdir.rb +61 -61
  64. data/lib/chef/chef_fs/file_system/chef_server/cookbooks_acl_dir.rb +42 -42
  65. data/lib/chef/chef_fs/file_system/chef_server/cookbooks_dir.rb +105 -105
  66. data/lib/chef/chef_fs/file_system/chef_server/data_bag_dir.rb +76 -76
  67. data/lib/chef/chef_fs/file_system/chef_server/data_bag_entry.rb +19 -19
  68. data/lib/chef/chef_fs/file_system/chef_server/data_bags_dir.rb +67 -67
  69. data/lib/chef/chef_fs/file_system/chef_server/environments_dir.rb +56 -56
  70. data/lib/chef/chef_fs/file_system/chef_server/nodes_dir.rb +51 -51
  71. data/lib/chef/chef_fs/file_system/chef_server/org_entry.rb +35 -35
  72. data/lib/chef/chef_fs/file_system/chef_server/organization_invites_entry.rb +65 -65
  73. data/lib/chef/chef_fs/file_system/chef_server/organization_members_entry.rb +64 -64
  74. data/lib/chef/chef_fs/file_system/chef_server/policies_acl_dir.rb +41 -41
  75. data/lib/chef/chef_fs/file_system/chef_server/policies_dir.rb +158 -158
  76. data/lib/chef/chef_fs/file_system/chef_server/policy_group_entry.rb +136 -136
  77. data/lib/chef/chef_fs/file_system/chef_server/policy_groups_dir.rb +43 -43
  78. data/lib/chef/chef_fs/file_system/chef_server/policy_revision_entry.rb +38 -38
  79. data/lib/chef/chef_fs/file_system/chef_server/rest_list_dir.rb +176 -176
  80. data/lib/chef/chef_fs/file_system/chef_server/rest_list_entry.rb +207 -207
  81. data/lib/chef/chef_fs/file_system/chef_server/versioned_cookbook_dir.rb +45 -45
  82. data/lib/chef/chef_fs/file_system/chef_server/versioned_cookbooks_dir.rb +111 -111
  83. data/lib/chef/chef_fs/file_system/exceptions.rb +105 -105
  84. data/lib/chef/chef_fs/file_system/memory/memory_dir.rb +53 -53
  85. data/lib/chef/chef_fs/file_system/memory/memory_file.rb +20 -20
  86. data/lib/chef/chef_fs/file_system/memory/memory_root.rb +23 -23
  87. data/lib/chef/chef_fs/file_system/multiplexed_dir.rb +62 -62
  88. data/lib/chef/chef_fs/file_system/nonexistent_fs_object.rb +32 -32
  89. data/lib/chef/chef_fs/file_system/repository/acl.rb +45 -45
  90. data/lib/chef/chef_fs/file_system/repository/acls_dir.rb +50 -50
  91. data/lib/chef/chef_fs/file_system/repository/acls_sub_dir.rb +38 -38
  92. data/lib/chef/chef_fs/file_system/repository/base_file.rb +155 -155
  93. data/lib/chef/chef_fs/file_system/repository/chef_repository_file_system_cookbook_artifact_dir.rb +41 -41
  94. data/lib/chef/chef_fs/file_system/repository/chef_repository_file_system_cookbook_dir.rb +143 -143
  95. data/lib/chef/chef_fs/file_system/repository/chef_repository_file_system_cookbook_entry.rb +177 -177
  96. data/lib/chef/chef_fs/file_system/repository/chef_repository_file_system_root_dir.rb +232 -232
  97. data/lib/chef/chef_fs/file_system/repository/chef_repository_file_system_versioned_cookbook_dir.rb +42 -42
  98. data/lib/chef/chef_fs/file_system/repository/client.rb +38 -38
  99. data/lib/chef/chef_fs/file_system/repository/client_key.rb +38 -38
  100. data/lib/chef/chef_fs/file_system/repository/client_keys_dir.rb +42 -42
  101. data/lib/chef/chef_fs/file_system/repository/client_keys_sub_dir.rb +38 -38
  102. data/lib/chef/chef_fs/file_system/repository/clients_dir.rb +37 -37
  103. data/lib/chef/chef_fs/file_system/repository/container.rb +38 -38
  104. data/lib/chef/chef_fs/file_system/repository/containers_dir.rb +37 -37
  105. data/lib/chef/chef_fs/file_system/repository/cookbook_artifacts_dir.rb +36 -36
  106. data/lib/chef/chef_fs/file_system/repository/cookbooks_dir.rb +51 -51
  107. data/lib/chef/chef_fs/file_system/repository/data_bag.rb +39 -39
  108. data/lib/chef/chef_fs/file_system/repository/data_bag_item.rb +38 -38
  109. data/lib/chef/chef_fs/file_system/repository/data_bags_dir.rb +39 -39
  110. data/lib/chef/chef_fs/file_system/repository/directory.rb +167 -167
  111. data/lib/chef/chef_fs/file_system/repository/environment.rb +38 -38
  112. data/lib/chef/chef_fs/file_system/repository/environments_dir.rb +37 -37
  113. data/lib/chef/chef_fs/file_system/repository/file_system_entry.rb +151 -151
  114. data/lib/chef/chef_fs/file_system/repository/group.rb +38 -38
  115. data/lib/chef/chef_fs/file_system/repository/groups_dir.rb +37 -37
  116. data/lib/chef/chef_fs/file_system/repository/node.rb +38 -38
  117. data/lib/chef/chef_fs/file_system/repository/nodes_dir.rb +59 -59
  118. data/lib/chef/chef_fs/file_system/repository/policies_dir.rb +42 -42
  119. data/lib/chef/chef_fs/file_system/repository/policy.rb +38 -38
  120. data/lib/chef/chef_fs/file_system/repository/policy_group.rb +38 -38
  121. data/lib/chef/chef_fs/file_system/repository/policy_groups_dir.rb +37 -37
  122. data/lib/chef/chef_fs/file_system/repository/role.rb +38 -38
  123. data/lib/chef/chef_fs/file_system/repository/roles_dir.rb +37 -37
  124. data/lib/chef/chef_fs/file_system/repository/user.rb +38 -38
  125. data/lib/chef/chef_fs/file_system/repository/users_dir.rb +37 -37
  126. data/lib/chef/chef_fs/file_system/repository/versioned_cookbooks_dir.rb +34 -34
  127. data/lib/chef/chef_fs/file_system_cache.rb +80 -80
  128. data/lib/chef/chef_fs/knife.rb +160 -161
  129. data/lib/chef/chef_fs/parallelizer.rb +103 -103
  130. data/lib/chef/chef_fs/parallelizer/flatten_enumerable.rb +35 -35
  131. data/lib/chef/chef_fs/parallelizer/parallel_enumerable.rb +277 -277
  132. data/lib/chef/chef_fs/path_utils.rb +127 -127
  133. data/lib/chef/client.rb +934 -934
  134. data/lib/chef/config.rb +84 -84
  135. data/lib/chef/config_fetcher.rb +72 -72
  136. data/lib/chef/constants.rb +28 -28
  137. data/lib/chef/cookbook/chefignore.rb +77 -77
  138. data/lib/chef/cookbook/cookbook_collection.rb +62 -62
  139. data/lib/chef/cookbook/cookbook_version_loader.rb +278 -278
  140. data/lib/chef/cookbook/file_system_file_vendor.rb +57 -57
  141. data/lib/chef/cookbook/file_vendor.rb +70 -70
  142. data/lib/chef/cookbook/gem_installer.rb +94 -94
  143. data/lib/chef/cookbook/manifest_v0.rb +73 -73
  144. data/lib/chef/cookbook/manifest_v2.rb +45 -45
  145. data/lib/chef/cookbook/metadata.rb +752 -752
  146. data/lib/chef/cookbook/remote_file_vendor.rb +86 -86
  147. data/lib/chef/cookbook/synchronizer.rb +328 -328
  148. data/lib/chef/cookbook/syntax_check.rb +259 -259
  149. data/lib/chef/cookbook_loader.rb +185 -185
  150. data/lib/chef/cookbook_manifest.rb +328 -328
  151. data/lib/chef/cookbook_site_streaming_uploader.rb +241 -241
  152. data/lib/chef/cookbook_uploader.rb +156 -156
  153. data/lib/chef/cookbook_version.rb +544 -544
  154. data/lib/chef/daemon.rb +131 -131
  155. data/lib/chef/data_bag.rb +174 -174
  156. data/lib/chef/data_bag_item.rb +209 -209
  157. data/lib/chef/data_collector.rb +282 -324
  158. data/lib/chef/data_collector/config_validation.rb +131 -88
  159. data/lib/chef/data_collector/error_handlers.rb +116 -116
  160. data/lib/chef/data_collector/message_helpers.rb +50 -50
  161. data/lib/chef/data_collector/run_end_message.rb +172 -172
  162. data/lib/chef/data_collector/run_start_message.rb +60 -60
  163. data/lib/chef/decorator.rb +81 -81
  164. data/lib/chef/decorator/lazy.rb +60 -60
  165. data/lib/chef/decorator/lazy_array.rb +59 -59
  166. data/lib/chef/decorator/unchain.rb +43 -43
  167. data/lib/chef/delayed_evaluator.rb +21 -21
  168. data/lib/chef/deprecated.rb +241 -241
  169. data/lib/chef/deprecation/warnings.rb +38 -38
  170. data/lib/chef/digester.rb +74 -74
  171. data/lib/chef/dist.rb +50 -19
  172. data/lib/chef/dsl.rb +6 -6
  173. data/lib/chef/dsl/.DS_Store +0 -0
  174. data/lib/chef/dsl/cheffish.rb +65 -65
  175. data/lib/chef/dsl/core.rb +52 -52
  176. data/lib/chef/dsl/data_query.rb +103 -103
  177. data/lib/chef/dsl/declare_resource.rb +319 -319
  178. data/lib/chef/dsl/definitions.rb +43 -43
  179. data/lib/chef/dsl/include_attribute.rb +57 -57
  180. data/lib/chef/dsl/include_recipe.rb +34 -34
  181. data/lib/chef/dsl/platform_introspection.rb +269 -269
  182. data/lib/chef/dsl/powershell.rb +29 -29
  183. data/lib/chef/dsl/reboot_pending.rb +57 -57
  184. data/lib/chef/dsl/recipe.rb +74 -74
  185. data/lib/chef/dsl/registry_helper.rb +63 -63
  186. data/lib/chef/dsl/resources.rb +47 -47
  187. data/lib/chef/dsl/universal.rb +60 -62
  188. data/lib/chef/encrypted_data_bag_item.rb +158 -157
  189. data/lib/chef/encrypted_data_bag_item/assertions.rb +54 -54
  190. data/lib/chef/encrypted_data_bag_item/check_encrypted.rb +56 -56
  191. data/lib/chef/encrypted_data_bag_item/decryption_failure.rb +22 -22
  192. data/lib/chef/encrypted_data_bag_item/decryptor.rb +232 -232
  193. data/lib/chef/encrypted_data_bag_item/encrypted_data_bag_item_assertions.rb +37 -37
  194. data/lib/chef/encrypted_data_bag_item/encryption_failure.rb +22 -22
  195. data/lib/chef/encrypted_data_bag_item/encryptor.rb +225 -225
  196. data/lib/chef/encrypted_data_bag_item/unacceptable_encrypted_data_bag_item_format.rb +22 -22
  197. data/lib/chef/encrypted_data_bag_item/unsupported_cipher.rb +22 -22
  198. data/lib/chef/encrypted_data_bag_item/unsupported_encrypted_data_bag_item_format.rb +22 -22
  199. data/lib/chef/environment.rb +320 -319
  200. data/lib/chef/event_dispatch/base.rb +431 -431
  201. data/lib/chef/event_dispatch/dispatcher.rb +88 -88
  202. data/lib/chef/event_dispatch/dsl.rb +65 -65
  203. data/lib/chef/event_dispatch/events_output_stream.rb +37 -37
  204. data/lib/chef/event_loggers/base.rb +62 -62
  205. data/lib/chef/event_loggers/windows_eventlog.rb +102 -101
  206. data/lib/chef/exceptions.rb +514 -514
  207. data/lib/chef/file_access_control.rb +75 -75
  208. data/lib/chef/file_access_control/unix.rb +290 -290
  209. data/lib/chef/file_access_control/windows.rb +337 -337
  210. data/lib/chef/file_cache.rb +223 -223
  211. data/lib/chef/file_content_management/content_base.rb +58 -58
  212. data/lib/chef/file_content_management/deploy.rb +37 -37
  213. data/lib/chef/file_content_management/deploy/cp.rb +48 -48
  214. data/lib/chef/file_content_management/deploy/mv_unix.rb +77 -77
  215. data/lib/chef/file_content_management/deploy/mv_windows.rb +103 -103
  216. data/lib/chef/file_content_management/tempfile.rb +107 -107
  217. data/lib/chef/formatters/base.rb +246 -246
  218. data/lib/chef/formatters/doc.rb +401 -401
  219. data/lib/chef/formatters/error_description.rb +86 -86
  220. data/lib/chef/formatters/error_inspectors.rb +19 -19
  221. data/lib/chef/formatters/error_inspectors/api_error_formatting.rb +184 -184
  222. data/lib/chef/formatters/error_inspectors/compile_error_inspector.rb +154 -154
  223. data/lib/chef/formatters/error_inspectors/cookbook_resolve_error_inspector.rb +168 -168
  224. data/lib/chef/formatters/error_inspectors/cookbook_sync_error_inspector.rb +82 -82
  225. data/lib/chef/formatters/error_inspectors/node_load_error_inspector.rb +129 -129
  226. data/lib/chef/formatters/error_inspectors/registration_error_inspector.rb +148 -148
  227. data/lib/chef/formatters/error_inspectors/resource_failure_inspector.rb +125 -125
  228. data/lib/chef/formatters/error_inspectors/run_list_expansion_error_inspector.rb +122 -122
  229. data/lib/chef/formatters/error_mapper.rb +85 -85
  230. data/lib/chef/formatters/indentable_output_stream.rb +182 -182
  231. data/lib/chef/formatters/minimal.rb +235 -235
  232. data/lib/chef/guard_interpreter.rb +32 -32
  233. data/lib/chef/guard_interpreter/default_guard_interpreter.rb +44 -44
  234. data/lib/chef/guard_interpreter/resource_guard_interpreter.rb +138 -138
  235. data/lib/chef/handler.rb +266 -266
  236. data/lib/chef/handler/error_report.rb +33 -33
  237. data/lib/chef/handler/json_file.rb +62 -62
  238. data/lib/chef/http.rb +539 -539
  239. data/lib/chef/http/api_versions.rb +56 -56
  240. data/lib/chef/http/auth_credentials.rb +59 -59
  241. data/lib/chef/http/authenticator.rb +118 -118
  242. data/lib/chef/http/basic_client.rb +157 -157
  243. data/lib/chef/http/cookie_jar.rb +31 -31
  244. data/lib/chef/http/cookie_manager.rb +59 -59
  245. data/lib/chef/http/decompressor.rb +142 -142
  246. data/lib/chef/http/http_request.rb +190 -190
  247. data/lib/chef/http/json_input.rb +73 -73
  248. data/lib/chef/http/json_output.rb +81 -81
  249. data/lib/chef/http/json_to_model_output.rb +34 -34
  250. data/lib/chef/http/remote_request_id.rb +46 -46
  251. data/lib/chef/http/simple.rb +40 -40
  252. data/lib/chef/http/simple_json.rb +43 -43
  253. data/lib/chef/http/socketless_chef_zero_client.rb +210 -209
  254. data/lib/chef/http/ssl_policies.rb +130 -130
  255. data/lib/chef/http/validate_content_length.rb +114 -114
  256. data/lib/chef/json_compat.rb +68 -68
  257. data/lib/chef/key.rb +269 -269
  258. data/lib/chef/knife.rb +649 -648
  259. data/lib/chef/knife/.DS_Store +0 -0
  260. data/lib/chef/knife/bootstrap.rb +1092 -1065
  261. data/lib/chef/knife/bootstrap/chef_vault_handler.rb +157 -158
  262. data/lib/chef/knife/bootstrap/client_builder.rb +207 -207
  263. data/lib/chef/knife/bootstrap/templates/README.md +11 -11
  264. data/lib/chef/knife/bootstrap/templates/chef-full.erb +243 -243
  265. data/lib/chef/knife/bootstrap/templates/windows-chef-client-msi.erb +276 -276
  266. data/lib/chef/knife/bootstrap/train_connector.rb +329 -325
  267. data/lib/chef/knife/client_bulk_delete.rb +103 -103
  268. data/lib/chef/knife/client_create.rb +101 -101
  269. data/lib/chef/knife/client_delete.rb +62 -62
  270. data/lib/chef/knife/client_edit.rb +52 -52
  271. data/lib/chef/knife/client_key_create.rb +70 -70
  272. data/lib/chef/knife/client_key_delete.rb +77 -77
  273. data/lib/chef/knife/client_key_edit.rb +80 -80
  274. data/lib/chef/knife/client_key_list.rb +70 -70
  275. data/lib/chef/knife/client_key_show.rb +77 -77
  276. data/lib/chef/knife/client_list.rb +41 -41
  277. data/lib/chef/knife/client_reregister.rb +58 -58
  278. data/lib/chef/knife/client_show.rb +48 -48
  279. data/lib/chef/knife/config_get.rb +126 -126
  280. data/lib/chef/knife/config_get_profile.rb +37 -37
  281. data/lib/chef/knife/config_list_profiles.rb +121 -121
  282. data/lib/chef/knife/config_use_profile.rb +50 -50
  283. data/lib/chef/knife/configure.rb +148 -147
  284. data/lib/chef/knife/configure_client.rb +48 -48
  285. data/lib/chef/knife/cookbook_bulk_delete.rb +71 -71
  286. data/lib/chef/knife/cookbook_delete.rb +151 -151
  287. data/lib/chef/knife/cookbook_download.rb +142 -142
  288. data/lib/chef/knife/cookbook_list.rb +47 -47
  289. data/lib/chef/knife/cookbook_metadata.rb +106 -106
  290. data/lib/chef/knife/cookbook_metadata_from_file.rb +43 -43
  291. data/lib/chef/knife/cookbook_show.rb +98 -98
  292. data/lib/chef/knife/cookbook_site_download.rb +40 -40
  293. data/lib/chef/knife/cookbook_site_install.rb +40 -40
  294. data/lib/chef/knife/cookbook_site_list.rb +40 -40
  295. data/lib/chef/knife/cookbook_site_search.rb +40 -40
  296. data/lib/chef/knife/cookbook_site_share.rb +41 -41
  297. data/lib/chef/knife/cookbook_site_show.rb +40 -40
  298. data/lib/chef/knife/cookbook_site_unshare.rb +41 -41
  299. data/lib/chef/knife/cookbook_upload.rb +273 -273
  300. data/lib/chef/knife/core/bootstrap_context.rb +259 -259
  301. data/lib/chef/knife/core/cookbook_scm_repo.rb +159 -159
  302. data/lib/chef/knife/core/gem_glob_loader.rb +138 -138
  303. data/lib/chef/knife/core/generic_presenter.rb +231 -231
  304. data/lib/chef/knife/core/hashed_command_loader.rb +99 -99
  305. data/lib/chef/knife/core/node_editor.rb +130 -130
  306. data/lib/chef/knife/core/node_presenter.rb +158 -158
  307. data/lib/chef/knife/core/object_loader.rb +115 -115
  308. data/lib/chef/knife/core/status_presenter.rb +172 -172
  309. data/lib/chef/knife/core/subcommand_loader.rb +183 -183
  310. data/lib/chef/knife/core/text_formatter.rb +85 -85
  311. data/lib/chef/knife/core/ui.rb +309 -309
  312. data/lib/chef/knife/core/windows_bootstrap_context.rb +379 -379
  313. data/lib/chef/knife/data_bag_create.rb +80 -80
  314. data/lib/chef/knife/data_bag_delete.rb +49 -49
  315. data/lib/chef/knife/data_bag_edit.rb +74 -74
  316. data/lib/chef/knife/data_bag_from_file.rb +113 -113
  317. data/lib/chef/knife/data_bag_list.rb +42 -42
  318. data/lib/chef/knife/data_bag_secret_options.rb +142 -142
  319. data/lib/chef/knife/data_bag_show.rb +69 -69
  320. data/lib/chef/knife/delete.rb +125 -125
  321. data/lib/chef/knife/deps.rb +156 -156
  322. data/lib/chef/knife/diff.rb +83 -83
  323. data/lib/chef/knife/download.rb +84 -84
  324. data/lib/chef/knife/edit.rb +88 -88
  325. data/lib/chef/knife/environment_compare.rb +127 -127
  326. data/lib/chef/knife/environment_create.rb +52 -52
  327. data/lib/chef/knife/environment_delete.rb +44 -44
  328. data/lib/chef/knife/environment_edit.rb +44 -44
  329. data/lib/chef/knife/environment_from_file.rb +84 -84
  330. data/lib/chef/knife/environment_list.rb +41 -41
  331. data/lib/chef/knife/environment_show.rb +47 -47
  332. data/lib/chef/knife/exec.rb +88 -87
  333. data/lib/chef/knife/key_create.rb +112 -112
  334. data/lib/chef/knife/key_create_base.rb +50 -50
  335. data/lib/chef/knife/key_delete.rb +55 -55
  336. data/lib/chef/knife/key_edit.rb +118 -118
  337. data/lib/chef/knife/key_edit_base.rb +55 -55
  338. data/lib/chef/knife/key_list.rb +88 -88
  339. data/lib/chef/knife/key_list_base.rb +45 -45
  340. data/lib/chef/knife/key_show.rb +53 -53
  341. data/lib/chef/knife/list.rb +177 -177
  342. data/lib/chef/knife/node_bulk_delete.rb +74 -74
  343. data/lib/chef/knife/node_create.rb +47 -47
  344. data/lib/chef/knife/node_delete.rb +46 -46
  345. data/lib/chef/knife/node_edit.rb +70 -70
  346. data/lib/chef/knife/node_environment_set.rb +54 -54
  347. data/lib/chef/knife/node_from_file.rb +51 -51
  348. data/lib/chef/knife/node_list.rb +44 -44
  349. data/lib/chef/knife/node_policy_set.rb +79 -79
  350. data/lib/chef/knife/node_run_list_add.rb +104 -104
  351. data/lib/chef/knife/node_run_list_remove.rb +67 -67
  352. data/lib/chef/knife/node_run_list_set.rb +66 -66
  353. data/lib/chef/knife/node_show.rb +62 -61
  354. data/lib/chef/knife/null.rb +13 -13
  355. data/lib/chef/knife/raw.rb +124 -124
  356. data/lib/chef/knife/recipe_list.rb +32 -32
  357. data/lib/chef/knife/rehash.rb +65 -65
  358. data/lib/chef/knife/role_bulk_delete.rb +65 -65
  359. data/lib/chef/knife/role_create.rb +53 -53
  360. data/lib/chef/knife/role_delete.rb +46 -46
  361. data/lib/chef/knife/role_edit.rb +45 -45
  362. data/lib/chef/knife/role_env_run_list_add.rb +87 -87
  363. data/lib/chef/knife/role_env_run_list_clear.rb +55 -55
  364. data/lib/chef/knife/role_env_run_list_remove.rb +57 -57
  365. data/lib/chef/knife/role_env_run_list_replace.rb +60 -60
  366. data/lib/chef/knife/role_env_run_list_set.rb +70 -70
  367. data/lib/chef/knife/role_from_file.rb +51 -51
  368. data/lib/chef/knife/role_list.rb +42 -42
  369. data/lib/chef/knife/role_run_list_add.rb +87 -87
  370. data/lib/chef/knife/role_run_list_clear.rb +55 -55
  371. data/lib/chef/knife/role_run_list_remove.rb +56 -56
  372. data/lib/chef/knife/role_run_list_replace.rb +60 -60
  373. data/lib/chef/knife/role_run_list_set.rb +69 -69
  374. data/lib/chef/knife/role_show.rb +48 -48
  375. data/lib/chef/knife/search.rb +194 -194
  376. data/lib/chef/knife/serve.rb +65 -64
  377. data/lib/chef/knife/show.rb +72 -72
  378. data/lib/chef/knife/ssh.rb +633 -634
  379. data/lib/chef/knife/ssl_check.rb +284 -283
  380. data/lib/chef/knife/ssl_fetch.rb +161 -161
  381. data/lib/chef/knife/status.rb +98 -97
  382. data/lib/chef/knife/supermarket_download.rb +122 -122
  383. data/lib/chef/knife/supermarket_install.rb +193 -193
  384. data/lib/chef/knife/supermarket_list.rb +65 -65
  385. data/lib/chef/knife/supermarket_search.rb +53 -53
  386. data/lib/chef/knife/supermarket_share.rb +166 -166
  387. data/lib/chef/knife/supermarket_show.rb +67 -67
  388. data/lib/chef/knife/supermarket_unshare.rb +61 -61
  389. data/lib/chef/knife/tag_create.rb +52 -52
  390. data/lib/chef/knife/tag_delete.rb +60 -60
  391. data/lib/chef/knife/tag_list.rb +47 -47
  392. data/lib/chef/knife/upload.rb +86 -86
  393. data/lib/chef/knife/user_create.rb +107 -107
  394. data/lib/chef/knife/user_delete.rb +44 -44
  395. data/lib/chef/knife/user_edit.rb +52 -52
  396. data/lib/chef/knife/user_key_create.rb +70 -70
  397. data/lib/chef/knife/user_key_delete.rb +77 -77
  398. data/lib/chef/knife/user_key_edit.rb +80 -80
  399. data/lib/chef/knife/user_key_list.rb +70 -70
  400. data/lib/chef/knife/user_key_show.rb +77 -77
  401. data/lib/chef/knife/user_list.rb +42 -42
  402. data/lib/chef/knife/user_reregister.rb +59 -59
  403. data/lib/chef/knife/user_show.rb +48 -48
  404. data/lib/chef/knife/xargs.rb +282 -282
  405. data/lib/chef/local_mode.rb +127 -126
  406. data/lib/chef/log.rb +70 -70
  407. data/lib/chef/log/syslog.rb +46 -46
  408. data/lib/chef/log/winevt.rb +100 -99
  409. data/lib/chef/mash.rb +232 -232
  410. data/lib/chef/mixin/.DS_Store +0 -0
  411. data/lib/chef/mixin/api_version_request_handling.rb +64 -64
  412. data/lib/chef/mixin/checksum.rb +37 -37
  413. data/lib/chef/mixin/convert_to_class_name.rb +126 -126
  414. data/lib/chef/mixin/create_path.rb +71 -71
  415. data/lib/chef/mixin/deep_merge.rb +140 -140
  416. data/lib/chef/mixin/deprecation.rb +117 -117
  417. data/lib/chef/mixin/descendants_tracker.rb +81 -81
  418. data/lib/chef/mixin/enforce_ownership_and_permissions.rb +39 -39
  419. data/lib/chef/mixin/file_class.rb +35 -35
  420. data/lib/chef/mixin/from_file.rb +55 -55
  421. data/lib/chef/mixin/get_source_from_package.rb +47 -47
  422. data/lib/chef/mixin/homebrew_user.rb +79 -79
  423. data/lib/chef/mixin/lazy_module_include.rb +77 -77
  424. data/lib/chef/mixin/notifying_block.rb +51 -51
  425. data/lib/chef/mixin/openssl_helper.rb +402 -402
  426. data/lib/chef/mixin/params_validate.rb +498 -498
  427. data/lib/chef/mixin/path_sanity.rb +66 -66
  428. data/lib/chef/mixin/powershell_exec.rb +105 -105
  429. data/lib/chef/mixin/powershell_out.rb +98 -98
  430. data/lib/chef/mixin/powershell_type_coercions.rb +84 -84
  431. data/lib/chef/mixin/properties.rb +355 -355
  432. data/lib/chef/mixin/provides.rb +29 -29
  433. data/lib/chef/mixin/proxified_socket.rb +42 -42
  434. data/lib/chef/mixin/securable.rb +192 -192
  435. data/lib/chef/mixin/shell_out.rb +216 -187
  436. data/lib/chef/mixin/subclass_directive.rb +37 -37
  437. data/lib/chef/mixin/template.rb +265 -260
  438. data/lib/chef/mixin/train_helpers.rb +60 -0
  439. data/lib/chef/mixin/unformatter.rb +32 -32
  440. data/lib/chef/mixin/uris.rb +42 -42
  441. data/lib/chef/mixin/user_context.rb +55 -55
  442. data/lib/chef/mixin/versioned_api.rb +84 -84
  443. data/lib/chef/mixin/which.rb +63 -52
  444. data/lib/chef/mixin/why_run.rb +326 -326
  445. data/lib/chef/mixin/wide_string.rb +54 -54
  446. data/lib/chef/mixin/windows_architecture_helper.rb +113 -113
  447. data/lib/chef/mixin/windows_env_helper.rb +67 -67
  448. data/lib/chef/mixin/xml_escape.rb +138 -138
  449. data/lib/chef/mixins.rb +12 -12
  450. data/lib/chef/monkey_patches/net_http.rb +64 -64
  451. data/lib/chef/monkey_patches/webrick-utils.rb +51 -51
  452. data/lib/chef/monkey_patches/win32/registry.rb +60 -60
  453. data/lib/chef/monologger.rb +4 -4
  454. data/lib/chef/nil_argument.rb +3 -3
  455. data/lib/chef/node.rb +732 -732
  456. data/lib/chef/node/attribute.rb +651 -651
  457. data/lib/chef/node/attribute_collections.rb +178 -178
  458. data/lib/chef/node/common_api.rb +121 -121
  459. data/lib/chef/node/immutable_collections.rb +182 -182
  460. data/lib/chef/node/mixin/deep_merge_cache.rb +61 -61
  461. data/lib/chef/node/mixin/immutablize_array.rb +179 -179
  462. data/lib/chef/node/mixin/immutablize_hash.rb +165 -165
  463. data/lib/chef/node/mixin/mashy_array.rb +68 -68
  464. data/lib/chef/node/mixin/state_tracking.rb +96 -96
  465. data/lib/chef/node_map.rb +326 -328
  466. data/lib/chef/null_logger.rb +79 -79
  467. data/lib/chef/org.rb +144 -144
  468. data/lib/chef/platform.rb +30 -30
  469. data/lib/chef/platform/priority_map.rb +41 -41
  470. data/lib/chef/platform/provider_handler_map.rb +29 -29
  471. data/lib/chef/platform/provider_mapping.rb +55 -55
  472. data/lib/chef/platform/provider_priority_map.rb +11 -11
  473. data/lib/chef/platform/query_helpers.rb +100 -100
  474. data/lib/chef/platform/rebooter.rb +71 -71
  475. data/lib/chef/platform/resource_handler_map.rb +29 -29
  476. data/lib/chef/platform/resource_priority_map.rb +11 -11
  477. data/lib/chef/platform/service_helpers.rb +125 -122
  478. data/lib/chef/policy_builder.rb +42 -42
  479. data/lib/chef/policy_builder/dynamic.rb +186 -186
  480. data/lib/chef/policy_builder/expand_node_object.rb +261 -261
  481. data/lib/chef/policy_builder/policyfile.rb +571 -571
  482. data/lib/chef/powershell.rb +57 -57
  483. data/lib/chef/property.rb +731 -731
  484. data/lib/chef/provider.rb +419 -419
  485. data/lib/chef/provider/.DS_Store +0 -0
  486. data/lib/chef/provider/apt_preference.rb +94 -94
  487. data/lib/chef/provider/apt_repository.rb +360 -360
  488. data/lib/chef/provider/apt_update.rb +80 -80
  489. data/lib/chef/provider/batch.rb +45 -45
  490. data/lib/chef/provider/cookbook_file.rb +47 -47
  491. data/lib/chef/provider/cookbook_file/content.rb +49 -49
  492. data/lib/chef/provider/cron.rb +256 -256
  493. data/lib/chef/provider/cron/aix.rb +50 -50
  494. data/lib/chef/provider/cron/solaris.rb +22 -22
  495. data/lib/chef/provider/cron/unix.rb +83 -83
  496. data/lib/chef/provider/directory.rb +164 -164
  497. data/lib/chef/provider/dsc_resource.rb +209 -209
  498. data/lib/chef/provider/dsc_script.rb +185 -185
  499. data/lib/chef/provider/execute.rb +130 -133
  500. data/lib/chef/provider/file.rb +479 -479
  501. data/lib/chef/provider/file/content.rb +39 -39
  502. data/lib/chef/provider/git.rb +359 -359
  503. data/lib/chef/provider/group.rb +179 -179
  504. data/lib/chef/provider/group/aix.rb +79 -79
  505. data/lib/chef/provider/group/dscl.rb +177 -177
  506. data/lib/chef/provider/group/gpasswd.rb +58 -58
  507. data/lib/chef/provider/group/groupadd.rb +133 -133
  508. data/lib/chef/provider/group/groupmod.rb +123 -123
  509. data/lib/chef/provider/group/pw.rb +137 -137
  510. data/lib/chef/provider/group/solaris.rb +62 -62
  511. data/lib/chef/provider/group/suse.rb +82 -82
  512. data/lib/chef/provider/group/usermod.rb +87 -87
  513. data/lib/chef/provider/group/windows.rb +110 -110
  514. data/lib/chef/provider/http_request.rb +132 -132
  515. data/lib/chef/provider/ifconfig.rb +271 -271
  516. data/lib/chef/provider/ifconfig/aix.rb +94 -94
  517. data/lib/chef/provider/ifconfig/debian.rb +88 -88
  518. data/lib/chef/provider/ifconfig/redhat.rb +54 -54
  519. data/lib/chef/provider/launchd.rb +232 -231
  520. data/lib/chef/provider/link.rb +168 -168
  521. data/lib/chef/provider/log.rb +43 -43
  522. data/lib/chef/provider/lwrp_base.rb +89 -89
  523. data/lib/chef/provider/mdadm.rb +85 -85
  524. data/lib/chef/provider/mount.rb +175 -175
  525. data/lib/chef/provider/mount/aix.rb +221 -221
  526. data/lib/chef/provider/mount/mount.rb +283 -283
  527. data/lib/chef/provider/mount/solaris.rb +275 -275
  528. data/lib/chef/provider/mount/windows.rb +92 -92
  529. data/lib/chef/provider/noop.rb +37 -37
  530. data/lib/chef/provider/ohai.rb +45 -45
  531. data/lib/chef/provider/osx_profile.rb +251 -251
  532. data/lib/chef/provider/package.rb +600 -600
  533. data/lib/chef/provider/package/.DS_Store +0 -0
  534. data/lib/chef/provider/package/apt.rb +234 -234
  535. data/lib/chef/provider/package/bff.rb +142 -142
  536. data/lib/chef/provider/package/cab.rb +187 -187
  537. data/lib/chef/provider/package/chocolatey.rb +285 -285
  538. data/lib/chef/provider/package/deb.rb +131 -131
  539. data/lib/chef/provider/package/dnf.rb +196 -196
  540. data/lib/chef/provider/package/dnf/dnf_helper.py +100 -100
  541. data/lib/chef/provider/package/dnf/python_helper.rb +171 -171
  542. data/lib/chef/provider/package/dnf/version.rb +56 -56
  543. data/lib/chef/provider/package/dpkg.rb +227 -227
  544. data/lib/chef/provider/package/freebsd/.DS_Store +0 -0
  545. data/lib/chef/provider/package/freebsd/base.rb +89 -89
  546. data/lib/chef/provider/package/freebsd/pkgng.rb +76 -76
  547. data/lib/chef/provider/package/freebsd/port.rb +56 -56
  548. data/lib/chef/provider/package/homebrew.rb +138 -138
  549. data/lib/chef/provider/package/ips.rb +85 -85
  550. data/lib/chef/provider/package/macports.rb +101 -101
  551. data/lib/chef/provider/package/msu.rb +161 -161
  552. data/lib/chef/provider/package/openbsd.rb +139 -139
  553. data/lib/chef/provider/package/pacman.rb +103 -103
  554. data/lib/chef/provider/package/paludis.rb +85 -85
  555. data/lib/chef/provider/package/portage.rb +133 -133
  556. data/lib/chef/provider/package/powershell.rb +133 -133
  557. data/lib/chef/provider/package/rpm.rb +126 -126
  558. data/lib/chef/provider/package/rubygems.rb +618 -617
  559. data/lib/chef/provider/package/smartos.rb +92 -92
  560. data/lib/chef/provider/package/snap.rb +358 -358
  561. data/lib/chef/provider/package/solaris.rb +137 -137
  562. data/lib/chef/provider/package/windows.rb +317 -317
  563. data/lib/chef/provider/package/windows/exe.rb +117 -117
  564. data/lib/chef/provider/package/windows/msi.rb +96 -96
  565. data/lib/chef/provider/package/windows/registry_uninstall_entry.rb +99 -99
  566. data/lib/chef/provider/package/yum.rb +287 -289
  567. data/lib/chef/provider/package/yum/python_helper.rb +222 -222
  568. data/lib/chef/provider/package/yum/rpm_utils.rb +641 -641
  569. data/lib/chef/provider/package/yum/simplejson/LICENSE.txt +79 -79
  570. data/lib/chef/provider/package/yum/simplejson/__init__.py +318 -318
  571. data/lib/chef/provider/package/yum/simplejson/decoder.py +354 -354
  572. data/lib/chef/provider/package/yum/simplejson/encoder.py +440 -440
  573. data/lib/chef/provider/package/yum/simplejson/scanner.py +65 -65
  574. data/lib/chef/provider/package/yum/simplejson/tool.py +37 -37
  575. data/lib/chef/provider/package/yum/version.rb +60 -60
  576. data/lib/chef/provider/package/yum/yum_cache.rb +93 -93
  577. data/lib/chef/provider/package/yum/yum_helper.py +216 -211
  578. data/lib/chef/provider/package/zypper.rb +167 -167
  579. data/lib/chef/provider/powershell_script.rb +193 -193
  580. data/lib/chef/provider/reboot.rb +78 -78
  581. data/lib/chef/provider/registry_key.rb +199 -199
  582. data/lib/chef/provider/remote_directory.rb +269 -269
  583. data/lib/chef/provider/remote_file.rb +66 -66
  584. data/lib/chef/provider/remote_file/cache_control_data.rb +195 -195
  585. data/lib/chef/provider/remote_file/content.rb +81 -81
  586. data/lib/chef/provider/remote_file/fetcher.rb +60 -60
  587. data/lib/chef/provider/remote_file/ftp.rb +172 -172
  588. data/lib/chef/provider/remote_file/http.rb +143 -143
  589. data/lib/chef/provider/remote_file/local_file.rb +60 -60
  590. data/lib/chef/provider/remote_file/network_file.rb +61 -61
  591. data/lib/chef/provider/remote_file/sftp.rb +105 -105
  592. data/lib/chef/provider/resource_update.rb +52 -52
  593. data/lib/chef/provider/route.rb +248 -248
  594. data/lib/chef/provider/ruby_block.rb +40 -40
  595. data/lib/chef/provider/script.rb +117 -117
  596. data/lib/chef/provider/service.rb +252 -252
  597. data/lib/chef/provider/service/aix.rb +125 -125
  598. data/lib/chef/provider/service/aixinit.rb +117 -117
  599. data/lib/chef/provider/service/arch.rb +118 -118
  600. data/lib/chef/provider/service/debian.rb +193 -193
  601. data/lib/chef/provider/service/freebsd.rb +194 -194
  602. data/lib/chef/provider/service/gentoo.rb +70 -70
  603. data/lib/chef/provider/service/init.rb +93 -93
  604. data/lib/chef/provider/service/insserv.rb +61 -59
  605. data/lib/chef/provider/service/invokercd.rb +41 -41
  606. data/lib/chef/provider/service/macosx.rb +252 -252
  607. data/lib/chef/provider/service/openbsd.rb +216 -216
  608. data/lib/chef/provider/service/redhat.rb +126 -126
  609. data/lib/chef/provider/service/simple.rb +172 -172
  610. data/lib/chef/provider/service/solaris.rb +127 -127
  611. data/lib/chef/provider/service/systemd.rb +190 -189
  612. data/lib/chef/provider/service/upstart.rb +260 -260
  613. data/lib/chef/provider/service/windows.rb +485 -485
  614. data/lib/chef/provider/subversion.rb +227 -227
  615. data/lib/chef/provider/support/yum_repo.erb +138 -138
  616. data/lib/chef/provider/support/zypper_repo.erb +17 -17
  617. data/lib/chef/provider/systemd_unit.rb +261 -261
  618. data/lib/chef/provider/template.rb +59 -59
  619. data/lib/chef/provider/template/content.rb +93 -93
  620. data/lib/chef/provider/template_finder.rb +62 -62
  621. data/lib/chef/provider/user.rb +221 -221
  622. data/lib/chef/provider/user/aix.rb +131 -131
  623. data/lib/chef/provider/user/dscl.rb +632 -632
  624. data/lib/chef/provider/user/linux.rb +116 -116
  625. data/lib/chef/provider/user/pw.rb +105 -105
  626. data/lib/chef/provider/user/solaris.rb +160 -160
  627. data/lib/chef/provider/user/windows.rb +124 -124
  628. data/lib/chef/provider/whyrun_safe_ruby_block.rb +32 -32
  629. data/lib/chef/provider/windows_env.rb +207 -207
  630. data/lib/chef/provider/windows_path.rb +61 -61
  631. data/lib/chef/provider/windows_script.rb +75 -75
  632. data/lib/chef/provider/windows_task.rb +634 -634
  633. data/lib/chef/provider/yum_repository.rb +130 -130
  634. data/lib/chef/provider/zypper_repository.rb +170 -169
  635. data/lib/chef/provider_resolver.rb +146 -146
  636. data/lib/chef/providers.rb +147 -147
  637. data/lib/chef/recipe.rb +95 -95
  638. data/lib/chef/request_id.rb +37 -37
  639. data/lib/chef/reserved_names.rb +9 -9
  640. data/lib/chef/resource.rb +1592 -1592
  641. data/lib/chef/resource/.DS_Store +0 -0
  642. data/lib/chef/resource/action_class.rb +90 -90
  643. data/lib/chef/resource/apt_package.rb +49 -48
  644. data/lib/chef/resource/apt_preference.rb +52 -52
  645. data/lib/chef/resource/apt_repository.rb +86 -86
  646. data/lib/chef/resource/apt_update.rb +41 -41
  647. data/lib/chef/resource/archive_file.rb +172 -172
  648. data/lib/chef/resource/bash.rb +34 -34
  649. data/lib/chef/resource/batch.rb +34 -34
  650. data/lib/chef/resource/bff_package.rb +31 -31
  651. data/lib/chef/resource/breakpoint.rb +48 -48
  652. data/lib/chef/resource/build_essential.rb +143 -143
  653. data/lib/chef/resource/cab_package.rb +45 -45
  654. data/lib/chef/resource/chef_gem.rb +62 -62
  655. data/lib/chef/resource/chef_handler.rb +136 -135
  656. data/lib/chef/resource/chocolatey_config.rb +82 -82
  657. data/lib/chef/resource/chocolatey_feature.rb +80 -0
  658. data/lib/chef/resource/chocolatey_package.rb +50 -50
  659. data/lib/chef/resource/chocolatey_source.rb +129 -94
  660. data/lib/chef/resource/conditional.rb +135 -135
  661. data/lib/chef/resource/conditional_action_not_nothing.rb +48 -48
  662. data/lib/chef/resource/cookbook_file.rb +46 -46
  663. data/lib/chef/resource/cron.rb +174 -174
  664. data/lib/chef/resource/cron_access.rb +69 -69
  665. data/lib/chef/resource/cron_d.rb +238 -237
  666. data/lib/chef/resource/csh.rb +39 -39
  667. data/lib/chef/resource/directory.rb +51 -51
  668. data/lib/chef/resource/dmg_package.rb +171 -171
  669. data/lib/chef/resource/dnf_package.rb +80 -80
  670. data/lib/chef/resource/dpkg_package.rb +41 -41
  671. data/lib/chef/resource/dsc_resource.rb +121 -120
  672. data/lib/chef/resource/dsc_script.rb +125 -124
  673. data/lib/chef/resource/execute.rb +200 -200
  674. data/lib/chef/resource/file.rb +106 -106
  675. data/lib/chef/resource/file/.DS_Store +0 -0
  676. data/lib/chef/resource/file/verification.rb +139 -139
  677. data/lib/chef/resource/file/verification/systemd_unit.rb +67 -67
  678. data/lib/chef/resource/freebsd_package.rb +55 -55
  679. data/lib/chef/resource/gem_package.rb +59 -59
  680. data/lib/chef/resource/git.rb +35 -35
  681. data/lib/chef/resource/group.rb +61 -61
  682. data/lib/chef/resource/homebrew_cask.rb +103 -103
  683. data/lib/chef/resource/homebrew_package.rb +39 -39
  684. data/lib/chef/resource/homebrew_tap.rb +90 -90
  685. data/lib/chef/resource/hostname.rb +267 -267
  686. data/lib/chef/resource/http_request.rb +55 -55
  687. data/lib/chef/resource/ifconfig.rb +105 -105
  688. data/lib/chef/resource/ips_package.rb +38 -38
  689. data/lib/chef/resource/kernel_module.rb +134 -134
  690. data/lib/chef/resource/ksh.rb +39 -39
  691. data/lib/chef/resource/launchd.rb +256 -252
  692. data/lib/chef/resource/link.rb +92 -92
  693. data/lib/chef/resource/locale.rb +150 -149
  694. data/lib/chef/resource/log.rb +53 -52
  695. data/lib/chef/resource/lwrp_base.rb +123 -123
  696. data/lib/chef/resource/macos_userdefaults.rb +132 -132
  697. data/lib/chef/resource/macosx_service.rb +37 -37
  698. data/lib/chef/resource/macports_package.rb +29 -29
  699. data/lib/chef/resource/mdadm.rb +67 -67
  700. data/lib/chef/resource/mount.rb +96 -96
  701. data/lib/chef/resource/msu_package.rb +49 -49
  702. data/lib/chef/resource/ohai.rb +38 -38
  703. data/lib/chef/resource/ohai_hint.rb +97 -97
  704. data/lib/chef/resource/openbsd_package.rb +38 -38
  705. data/lib/chef/resource/openssl_dhparam.rb +77 -77
  706. data/lib/chef/resource/openssl_ec_private_key.rb +92 -92
  707. data/lib/chef/resource/openssl_ec_public_key.rb +74 -74
  708. data/lib/chef/resource/openssl_rsa_private_key.rb +91 -91
  709. data/lib/chef/resource/openssl_rsa_public_key.rb +74 -74
  710. data/lib/chef/resource/openssl_x509_certificate.rb +220 -220
  711. data/lib/chef/resource/openssl_x509_crl.rb +131 -131
  712. data/lib/chef/resource/openssl_x509_request.rb +150 -150
  713. data/lib/chef/resource/osx_profile.rb +48 -48
  714. data/lib/chef/resource/package.rb +65 -65
  715. data/lib/chef/resource/pacman_package.rb +30 -30
  716. data/lib/chef/resource/paludis_package.rb +38 -38
  717. data/lib/chef/resource/perl.rb +38 -38
  718. data/lib/chef/resource/portage_package.rb +33 -33
  719. data/lib/chef/resource/powershell_package.rb +52 -52
  720. data/lib/chef/resource/powershell_package_source.rb +168 -168
  721. data/lib/chef/resource/powershell_script.rb +95 -95
  722. data/lib/chef/resource/python.rb +36 -36
  723. data/lib/chef/resource/reboot.rb +47 -46
  724. data/lib/chef/resource/registry_key.rb +130 -130
  725. data/lib/chef/resource/remote_directory.rb +84 -84
  726. data/lib/chef/resource/remote_file.rb +181 -181
  727. data/lib/chef/resource/resource_notification.rb +139 -139
  728. data/lib/chef/resource/rhsm_errata.rb +46 -46
  729. data/lib/chef/resource/rhsm_errata_level.rb +51 -51
  730. data/lib/chef/resource/rhsm_register.rb +168 -168
  731. data/lib/chef/resource/rhsm_repo.rb +65 -65
  732. data/lib/chef/resource/rhsm_subscription.rb +98 -98
  733. data/lib/chef/resource/route.rb +56 -56
  734. data/lib/chef/resource/rpm_package.rb +33 -33
  735. data/lib/chef/resource/ruby.rb +37 -37
  736. data/lib/chef/resource/ruby_block.rb +48 -46
  737. data/lib/chef/resource/scm.rb +75 -75
  738. data/lib/chef/resource/script.rb +54 -54
  739. data/lib/chef/resource/service.rb +126 -125
  740. data/lib/chef/resource/smartos_package.rb +31 -31
  741. data/lib/chef/resource/snap_package.rb +36 -36
  742. data/lib/chef/resource/solaris_package.rb +33 -33
  743. data/lib/chef/resource/ssh_known_hosts_entry.rb +146 -145
  744. data/lib/chef/resource/subversion.rb +56 -56
  745. data/lib/chef/resource/sudo.rb +230 -230
  746. data/lib/chef/resource/support/cron.d.erb +28 -28
  747. data/lib/chef/resource/support/cron_access.erb +4 -4
  748. data/lib/chef/resource/support/ssh_known_hosts.erb +3 -3
  749. data/lib/chef/resource/support/sudoer.erb +18 -18
  750. data/lib/chef/resource/swap_file.rb +209 -209
  751. data/lib/chef/resource/sysctl.rb +151 -151
  752. data/lib/chef/resource/systemd_unit.rb +87 -86
  753. data/lib/chef/resource/template.rb +212 -212
  754. data/lib/chef/resource/timezone.rb +134 -134
  755. data/lib/chef/resource/user.rb +77 -77
  756. data/lib/chef/resource/user/aix_user.rb +31 -31
  757. data/lib/chef/resource/user/dscl_user.rb +35 -35
  758. data/lib/chef/resource/user/linux_user.rb +32 -32
  759. data/lib/chef/resource/user/pw_user.rb +31 -31
  760. data/lib/chef/resource/user/solaris_user.rb +31 -31
  761. data/lib/chef/resource/user/windows_user.rb +35 -35
  762. data/lib/chef/resource/whyrun_safe_ruby_block.rb +24 -24
  763. data/lib/chef/resource/windows_ad_join.rb +121 -120
  764. data/lib/chef/resource/windows_auto_run.rb +87 -87
  765. data/lib/chef/resource/windows_certificate.rb +332 -332
  766. data/lib/chef/resource/windows_dfs_folder.rb +75 -75
  767. data/lib/chef/resource/windows_dfs_namespace.rb +114 -114
  768. data/lib/chef/resource/windows_dfs_server.rb +76 -76
  769. data/lib/chef/resource/windows_dns_record.rb +76 -76
  770. data/lib/chef/resource/windows_dns_zone.rb +80 -80
  771. data/lib/chef/resource/windows_env.rb +49 -49
  772. data/lib/chef/resource/windows_feature.rb +90 -90
  773. data/lib/chef/resource/windows_feature_dism.rb +222 -222
  774. data/lib/chef/resource/windows_feature_powershell.rb +262 -262
  775. data/lib/chef/resource/windows_firewall_rule.rb +204 -204
  776. data/lib/chef/resource/windows_font.rb +125 -125
  777. data/lib/chef/resource/windows_package.rb +61 -61
  778. data/lib/chef/resource/windows_pagefile.rb +206 -206
  779. data/lib/chef/resource/windows_path.rb +38 -38
  780. data/lib/chef/resource/windows_printer.rb +146 -146
  781. data/lib/chef/resource/windows_printer_port.rb +136 -136
  782. data/lib/chef/resource/windows_script.rb +65 -65
  783. data/lib/chef/resource/windows_service.rb +115 -115
  784. data/lib/chef/resource/windows_share.rb +323 -323
  785. data/lib/chef/resource/windows_shortcut.rb +79 -79
  786. data/lib/chef/resource/windows_task.rb +353 -353
  787. data/lib/chef/resource/windows_uac.rb +94 -94
  788. data/lib/chef/resource/windows_workgroup.rb +113 -112
  789. data/lib/chef/resource/yum_package.rb +79 -79
  790. data/lib/chef/resource/yum_repository.rb +187 -187
  791. data/lib/chef/resource/zypper_package.rb +46 -46
  792. data/lib/chef/resource/zypper_repository.rb +103 -103
  793. data/lib/chef/resource_builder.rb +92 -92
  794. data/lib/chef/resource_collection.rb +147 -146
  795. data/lib/chef/resource_collection/resource_collection_serialization.rb +68 -68
  796. data/lib/chef/resource_collection/resource_list.rb +106 -106
  797. data/lib/chef/resource_collection/resource_set.rb +200 -200
  798. data/lib/chef/resource_collection/stepable_iterator.rb +122 -122
  799. data/lib/chef/resource_definition.rb +68 -68
  800. data/lib/chef/resource_definition_list.rb +38 -38
  801. data/lib/chef/resource_inspector.rb +108 -108
  802. data/lib/chef/resource_reporter.rb +246 -246
  803. data/lib/chef/resource_resolver.rb +160 -160
  804. data/lib/chef/resources.rb +156 -155
  805. data/lib/chef/role.rb +274 -274
  806. data/lib/chef/run_context.rb +719 -719
  807. data/lib/chef/run_context/cookbook_compiler.rb +343 -343
  808. data/lib/chef/run_list.rb +168 -168
  809. data/lib/chef/run_list/run_list_expansion.rb +236 -236
  810. data/lib/chef/run_list/run_list_item.rb +98 -98
  811. data/lib/chef/run_list/versioned_recipe_list.rb +104 -104
  812. data/lib/chef/run_lock.rb +198 -198
  813. data/lib/chef/run_status.rb +128 -128
  814. data/lib/chef/runner.rb +148 -148
  815. data/lib/chef/sandbox.rb +20 -20
  816. data/lib/chef/scan_access_control.rb +138 -138
  817. data/lib/chef/search/query.rb +182 -182
  818. data/lib/chef/server_api.rb +83 -83
  819. data/lib/chef/server_api_versions.rb +59 -59
  820. data/lib/chef/shell.rb +354 -354
  821. data/lib/chef/shell/ext.rb +594 -593
  822. data/lib/chef/shell/model_wrapper.rb +120 -120
  823. data/lib/chef/shell/shell_session.rb +311 -310
  824. data/lib/chef/train_transport.rb +126 -129
  825. data/lib/chef/user.rb +194 -194
  826. data/lib/chef/user_v1.rb +325 -325
  827. data/lib/chef/util/backup.rb +94 -94
  828. data/lib/chef/util/diff.rb +184 -184
  829. data/lib/chef/util/dsc/configuration_generator.rb +139 -139
  830. data/lib/chef/util/dsc/lcm_output_parser.rb +192 -192
  831. data/lib/chef/util/dsc/local_configuration_manager.rb +151 -151
  832. data/lib/chef/util/dsc/resource_info.rb +26 -26
  833. data/lib/chef/util/dsc/resource_store.rb +109 -109
  834. data/lib/chef/util/editor.rb +91 -91
  835. data/lib/chef/util/file_edit.rb +100 -100
  836. data/lib/chef/util/path_helper.rb +25 -25
  837. data/lib/chef/util/powershell/cmdlet.rb +173 -173
  838. data/lib/chef/util/powershell/cmdlet_result.rb +61 -61
  839. data/lib/chef/util/powershell/ps_credential.rb +41 -41
  840. data/lib/chef/util/selinux.rb +93 -93
  841. data/lib/chef/util/threaded_job_queue.rb +61 -61
  842. data/lib/chef/util/windows.rb +24 -24
  843. data/lib/chef/util/windows/logon_session.rb +129 -129
  844. data/lib/chef/util/windows/net_group.rb +78 -78
  845. data/lib/chef/util/windows/net_use.rb +81 -81
  846. data/lib/chef/util/windows/net_user.rb +172 -172
  847. data/lib/chef/util/windows/volume.rb +49 -49
  848. data/lib/chef/version.rb +36 -36
  849. data/lib/chef/version/platform.rb +62 -62
  850. data/lib/chef/version_class.rb +75 -75
  851. data/lib/chef/version_constraint.rb +118 -118
  852. data/lib/chef/version_constraint/platform.rb +28 -28
  853. data/lib/chef/version_string.rb +143 -143
  854. data/lib/chef/whitelist.rb +86 -86
  855. data/lib/chef/win32/api.rb +372 -372
  856. data/lib/chef/win32/api/crypto.rb +63 -63
  857. data/lib/chef/win32/api/error.rb +953 -953
  858. data/lib/chef/win32/api/file.rb +620 -620
  859. data/lib/chef/win32/api/installer.rb +165 -165
  860. data/lib/chef/win32/api/memory.rb +105 -105
  861. data/lib/chef/win32/api/net.rb +328 -328
  862. data/lib/chef/win32/api/process.rb +42 -42
  863. data/lib/chef/win32/api/psapi.rb +51 -51
  864. data/lib/chef/win32/api/registry.rb +51 -51
  865. data/lib/chef/win32/api/security.rb +476 -476
  866. data/lib/chef/win32/api/synchronization.rb +89 -89
  867. data/lib/chef/win32/api/system.rb +238 -238
  868. data/lib/chef/win32/api/unicode.rb +135 -135
  869. data/lib/chef/win32/crypto.rb +50 -50
  870. data/lib/chef/win32/error.rb +86 -86
  871. data/lib/chef/win32/eventlog.rb +31 -31
  872. data/lib/chef/win32/file.rb +226 -226
  873. data/lib/chef/win32/file/info.rb +99 -99
  874. data/lib/chef/win32/file/version_info.rb +93 -93
  875. data/lib/chef/win32/handle.rb +55 -55
  876. data/lib/chef/win32/memory.rb +101 -101
  877. data/lib/chef/win32/mutex.rb +116 -116
  878. data/lib/chef/win32/net.rb +326 -326
  879. data/lib/chef/win32/process.rb +97 -97
  880. data/lib/chef/win32/registry.rb +374 -374
  881. data/lib/chef/win32/security.rb +698 -698
  882. data/lib/chef/win32/security/ace.rb +123 -123
  883. data/lib/chef/win32/security/acl.rb +103 -103
  884. data/lib/chef/win32/security/securable_object.rb +109 -109
  885. data/lib/chef/win32/security/security_descriptor.rb +93 -93
  886. data/lib/chef/win32/security/sid.rb +347 -347
  887. data/lib/chef/win32/security/token.rb +72 -72
  888. data/lib/chef/win32/system.rb +62 -62
  889. data/lib/chef/win32/unicode.rb +66 -66
  890. data/lib/chef/win32/version.rb +151 -151
  891. data/lib/chef/win32_service_constants.rb +143 -143
  892. data/lib/chef/workstation_config_loader.rb +23 -23
  893. data/spec/.DS_Store +0 -0
  894. data/spec/data/.DS_Store +0 -0
  895. data/spec/data/apt/chef-integration-test-1.0/debian/changelog +5 -5
  896. data/spec/data/apt/chef-integration-test-1.0/debian/compat +1 -1
  897. data/spec/data/apt/chef-integration-test-1.0/debian/control +13 -13
  898. data/spec/data/apt/chef-integration-test-1.0/debian/copyright +34 -34
  899. data/spec/data/apt/chef-integration-test-1.0/debian/files +1 -1
  900. data/spec/data/apt/chef-integration-test-1.0/debian/rules +13 -13
  901. data/spec/data/apt/chef-integration-test-1.0/debian/source/format +1 -1
  902. data/spec/data/apt/chef-integration-test-1.1/debian/changelog +11 -11
  903. data/spec/data/apt/chef-integration-test-1.1/debian/compat +1 -1
  904. data/spec/data/apt/chef-integration-test-1.1/debian/control +13 -13
  905. data/spec/data/apt/chef-integration-test-1.1/debian/copyright +34 -34
  906. data/spec/data/apt/chef-integration-test-1.1/debian/files +1 -1
  907. data/spec/data/apt/chef-integration-test-1.1/debian/rules +13 -13
  908. data/spec/data/apt/chef-integration-test-1.1/debian/source/format +1 -1
  909. data/spec/data/apt/chef-integration-test2-1.0/debian/changelog +5 -5
  910. data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2.debhelper.log +45 -45
  911. data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2.substvars +1 -1
  912. data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2/DEBIAN/conffiles +1 -1
  913. data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2/DEBIAN/control +10 -10
  914. data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2/DEBIAN/md5sums +1 -1
  915. data/spec/data/apt/chef-integration-test2-1.0/debian/compat +1 -1
  916. data/spec/data/apt/chef-integration-test2-1.0/debian/conffiles +1 -1
  917. data/spec/data/apt/chef-integration-test2-1.0/debian/control +13 -13
  918. data/spec/data/apt/chef-integration-test2-1.0/debian/copyright +34 -34
  919. data/spec/data/apt/chef-integration-test2-1.0/debian/files +1 -1
  920. data/spec/data/apt/chef-integration-test2-1.0/debian/rules +13 -13
  921. data/spec/data/apt/chef-integration-test2-1.0/debian/source/format +1 -1
  922. data/spec/data/apt/chef-integration-test2_1.0-1.dsc +18 -18
  923. data/spec/data/apt/chef-integration-test2_1.0-1_amd64.build +91 -91
  924. data/spec/data/apt/chef-integration-test2_1.0-1_amd64.changes +31 -31
  925. data/spec/data/apt/chef-integration-test_1.0-1_amd64.changes +22 -22
  926. data/spec/data/apt/chef-integration-test_1.1-1_amd64.changes +22 -22
  927. data/spec/data/apt/var/www/apt/conf/distributions +7 -7
  928. data/spec/data/apt/var/www/apt/conf/incoming +4 -4
  929. data/spec/data/apt/var/www/apt/conf/pulls +3 -3
  930. data/spec/data/apt/var/www/apt/db/version +4 -4
  931. data/spec/data/apt/var/www/apt/dists/sid/Release +19 -19
  932. data/spec/data/apt/var/www/apt/dists/sid/main/binary-amd64/Packages +16 -16
  933. data/spec/data/apt/var/www/apt/dists/sid/main/binary-amd64/Release +5 -5
  934. data/spec/data/bootstrap/encrypted_data_bag_secret +1 -1
  935. data/spec/data/bootstrap/no_proxy.erb +2 -2
  936. data/spec/data/bootstrap/secret.erb +9 -9
  937. data/spec/data/bootstrap/test-hints.erb +12 -12
  938. data/spec/data/bootstrap/test.erb +1 -1
  939. data/spec/data/cb_version_cookbooks/tatft/README.rdoc +2 -2
  940. data/spec/data/cb_version_cookbooks/tatft/attributes/default.rb +1 -1
  941. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-600hhz-0 +1 -1
  942. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ahd2gq-0 +1 -1
  943. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-api8ux-0 +1 -1
  944. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-b0r1m1-0 +1 -1
  945. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-bfygsi-0 +1 -1
  946. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-el14l6-0 +1 -1
  947. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ivrl3y-0 +1 -1
  948. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-kkbs85-0 +1 -1
  949. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ory1ux-0 +1 -1
  950. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-pgsq76-0 +1 -1
  951. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ra8uim-0 +1 -1
  952. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-t7k1g-0 +1 -1
  953. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-t8g0sv-0 +1 -1
  954. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ufy6g3-0 +1 -1
  955. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-x2d6j9-0 +1 -1
  956. data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-xi0l6h-0 +1 -1
  957. data/spec/data/client.d_00/00-foo.rb +2 -2
  958. data/spec/data/client.d_00/01-bar.rb +1 -1
  959. data/spec/data/client.d_00/02-strings.rb +2 -2
  960. data/spec/data/client.d_00/bar +1 -1
  961. data/spec/data/client.d_01/foo/bar.rb +1 -1
  962. data/spec/data/client.d_02/foo.rb/foo.txt +1 -1
  963. data/spec/data/config.rb +6 -6
  964. data/spec/data/cookbooks/.DS_Store +0 -0
  965. data/spec/data/cookbooks/angrybash/metadata.rb +2 -2
  966. data/spec/data/cookbooks/angrybash/recipes/default.rb +8 -8
  967. data/spec/data/cookbooks/apache2/files/default/apache2_module_conf_generate.pl +2 -2
  968. data/spec/data/cookbooks/apache2/metadata.rb +2 -2
  969. data/spec/data/cookbooks/apache2/recipes/default.rb +2 -2
  970. data/spec/data/cookbooks/borken/metadata.rb +2 -2
  971. data/spec/data/cookbooks/borken/recipes/default.rb +1 -1
  972. data/spec/data/cookbooks/borken/templates/default/borken.erb +1 -1
  973. data/spec/data/cookbooks/chefignore +8 -8
  974. data/spec/data/cookbooks/ignorken/files/default/not_me.rb +2 -2
  975. data/spec/data/cookbooks/ignorken/metadata.rb +2 -2
  976. data/spec/data/cookbooks/ignorken/recipes/ignoreme.rb +1 -1
  977. data/spec/data/cookbooks/ignorken/templates/ubuntu-12.10/not_me.rb +2 -2
  978. data/spec/data/cookbooks/irssi/files/default/irssi.response +2 -2
  979. data/spec/data/cookbooks/java/.DS_Store +0 -0
  980. data/spec/data/cookbooks/java/files/.DS_Store +0 -0
  981. data/spec/data/cookbooks/java/files/default/java.response +1 -1
  982. data/spec/data/cookbooks/java/metadata.rb +2 -2
  983. data/spec/data/cookbooks/name-mismatch-versionnumber/README.md +4 -4
  984. data/spec/data/cookbooks/name-mismatch-versionnumber/metadata.rb +8 -8
  985. data/spec/data/cookbooks/name-mismatch-versionnumber/recipes/default.rb +8 -8
  986. data/spec/data/cookbooks/openldap/attributes/default.rb +16 -16
  987. data/spec/data/cookbooks/openldap/attributes/smokey.rb +1 -1
  988. data/spec/data/cookbooks/openldap/definitions/client.rb +5 -5
  989. data/spec/data/cookbooks/openldap/definitions/server.rb +5 -5
  990. data/spec/data/cookbooks/openldap/files/default/.dotfile +1 -1
  991. data/spec/data/cookbooks/openldap/files/default/remotedir/.a_dotdir/.a_dotfile_in_a_dotdir +1 -1
  992. data/spec/data/cookbooks/openldap/files/default/remotedir/not_a_template.erb +2 -2
  993. data/spec/data/cookbooks/openldap/files/default/remotedir/remote_dir_file1.txt +2 -2
  994. data/spec/data/cookbooks/openldap/files/default/remotedir/remote_dir_file2.txt +2 -2
  995. data/spec/data/cookbooks/openldap/files/default/remotedir/remotesubdir/.a_dotfile +1 -1
  996. data/spec/data/cookbooks/openldap/files/default/remotedir/remotesubdir/remote_subdir_file1.txt +2 -2
  997. data/spec/data/cookbooks/openldap/files/default/remotedir/remotesubdir/remote_subdir_file2.txt +2 -2
  998. data/spec/data/cookbooks/openldap/files/default/remotedir/subdir_with_no_file_just_a_subsubdir/the_subsubdir/some_file.txt +3 -3
  999. data/spec/data/cookbooks/openldap/libraries/openldap.rb +4 -4
  1000. data/spec/data/cookbooks/openldap/libraries/openldap/version.rb +3 -3
  1001. data/spec/data/cookbooks/openldap/metadata.rb +8 -8
  1002. data/spec/data/cookbooks/openldap/recipes/default.rb +4 -4
  1003. data/spec/data/cookbooks/openldap/recipes/gigantor.rb +3 -3
  1004. data/spec/data/cookbooks/openldap/recipes/one.rb +15 -15
  1005. data/spec/data/cookbooks/openldap/recipes/return.rb +2 -2
  1006. data/spec/data/cookbooks/openldap/templates/default/helper_test.erb +1 -1
  1007. data/spec/data/cookbooks/openldap/templates/default/helpers.erb +14 -14
  1008. data/spec/data/cookbooks/openldap/templates/default/helpers_via_partial_test.erb +1 -1
  1009. data/spec/data/cookbooks/openldap/templates/default/nested_openldap_partials.erb +1 -1
  1010. data/spec/data/cookbooks/openldap/templates/default/nested_partial.erb +1 -1
  1011. data/spec/data/cookbooks/openldap/templates/default/no_windows_line_endings.erb +4 -4
  1012. data/spec/data/cookbooks/openldap/templates/default/openldap_nested_variable_stuff.erb +1 -1
  1013. data/spec/data/cookbooks/openldap/templates/default/openldap_variable_stuff.conf.erb +1 -1
  1014. data/spec/data/cookbooks/openldap/templates/default/test.erb +1 -1
  1015. data/spec/data/cookbooks/preseed/files/default/preseed-file.seed +1 -1
  1016. data/spec/data/cookbooks/preseed/files/default/preseed-template.seed +4 -4
  1017. data/spec/data/cookbooks/preseed/metadata.rb +2 -2
  1018. data/spec/data/cookbooks/preseed/templates/default/preseed-template-variables.seed +1 -1
  1019. data/spec/data/cookbooks/preseed/templates/default/preseed-template.seed +1 -1
  1020. data/spec/data/cookbooks/supports-platform-constraints/metadata.rb +5 -5
  1021. data/spec/data/cookbooks/wget/files/default/wget.response +2 -2
  1022. data/spec/data/definitions/test.rb +4 -4
  1023. data/spec/data/environment-config.rb +4 -4
  1024. data/spec/data/file-providers-method-snapshot-chef-11-4.json +127 -127
  1025. data/spec/data/fileedit/hosts +4 -4
  1026. data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/README.md +4 -4
  1027. data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/metadata.rb +13 -13
  1028. data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/recipes/default.rb +8 -8
  1029. data/spec/data/invalid-metadata-chef-repo/invalid-metadata/README.md +4 -4
  1030. data/spec/data/invalid-metadata-chef-repo/invalid-metadata/metadata.rb +9 -9
  1031. data/spec/data/invalid-metadata-chef-repo/invalid-metadata/recipes/default.rb +8 -8
  1032. data/spec/data/kitchen/chefignore +6 -6
  1033. data/spec/data/kitchen/openldap/attributes/default.rb +3 -3
  1034. data/spec/data/kitchen/openldap/attributes/robinson.rb +2 -2
  1035. data/spec/data/kitchen/openldap/definitions/client.rb +3 -3
  1036. data/spec/data/kitchen/openldap/definitions/drewbarrymore.rb +2 -2
  1037. data/spec/data/kitchen/openldap/recipes/gigantor.rb +2 -2
  1038. data/spec/data/kitchen/openldap/recipes/ignoreme.rb +2 -2
  1039. data/spec/data/kitchen/openldap/recipes/woot.rb +3 -3
  1040. data/spec/data/knife_subcommand/test_explicit_category.rb +6 -6
  1041. data/spec/data/knife_subcommand/test_name_mapping.rb +4 -4
  1042. data/spec/data/knife_subcommand/test_yourself.rb +21 -21
  1043. data/spec/data/lwrp/providers/buck_passer.rb +28 -28
  1044. data/spec/data/lwrp/providers/buck_passer_2.rb +26 -26
  1045. data/spec/data/lwrp/providers/embedded_resource_accesses_providers_scope.rb +28 -28
  1046. data/spec/data/lwrp/providers/inline_compiler.rb +24 -24
  1047. data/spec/data/lwrp/providers/monkey_name_printer.rb +5 -5
  1048. data/spec/data/lwrp/providers/paint_drying_watcher.rb +7 -7
  1049. data/spec/data/lwrp/providers/thumb_twiddler.rb +7 -7
  1050. data/spec/data/lwrp/resources/bar.rb +2 -2
  1051. data/spec/data/lwrp/resources/buck_passer.rb +5 -5
  1052. data/spec/data/lwrp/resources/buck_passer_2.rb +3 -3
  1053. data/spec/data/lwrp/resources/embedded_resource_accesses_providers_scope.rb +3 -3
  1054. data/spec/data/lwrp/resources/foo.rb +4 -4
  1055. data/spec/data/lwrp/resources/inline_compiler.rb +3 -3
  1056. data/spec/data/lwrp/resources/monkey_name_printer.rb +5 -5
  1057. data/spec/data/lwrp/resources/paint_drying_watcher.rb +3 -3
  1058. data/spec/data/lwrp/resources/thumb_twiddler.rb +3 -3
  1059. data/spec/data/lwrp/resources_with_default_attributes/nodeattr.rb +1 -1
  1060. data/spec/data/lwrp_override/providers/buck_passer.rb +5 -5
  1061. data/spec/data/lwrp_override/resources/foo.rb +10 -10
  1062. data/spec/data/mac_users/.DS_Store +0 -0
  1063. data/spec/data/mac_users/10.9.plist.xml +560 -560
  1064. data/spec/data/mac_users/10.9.shadow.xml +21 -21
  1065. data/spec/data/metadata/quick_start/metadata.rb +14 -14
  1066. data/spec/data/mixin/invalid_data.rb +3 -3
  1067. data/spec/data/mixin/real_data.rb +2 -2
  1068. data/spec/data/nested.json +2 -2
  1069. data/spec/data/nodes/Tim.local.json +3 -0
  1070. data/spec/data/nodes/Tims-MBP.local.json +3 -0
  1071. data/spec/data/nodes/default.rb +15 -15
  1072. data/spec/data/nodes/test.example.com.rb +17 -17
  1073. data/spec/data/nodes/test.rb +15 -15
  1074. data/spec/data/null_config.rb +1 -1
  1075. data/spec/data/object_loader/environments/test.json +7 -7
  1076. data/spec/data/object_loader/environments/test.rb +2 -2
  1077. data/spec/data/object_loader/environments/test_json_class.json +8 -8
  1078. data/spec/data/object_loader/nodes/test.json +7 -7
  1079. data/spec/data/object_loader/nodes/test.rb +2 -2
  1080. data/spec/data/object_loader/nodes/test_json_class.json +8 -8
  1081. data/spec/data/object_loader/roles/test.json +7 -7
  1082. data/spec/data/object_loader/roles/test.rb +2 -2
  1083. data/spec/data/object_loader/roles/test_json_class.json +8 -8
  1084. data/spec/data/partial_one.erb +1 -1
  1085. data/spec/data/prefer_metadata_json/metadata.json +51 -51
  1086. data/spec/data/prefer_metadata_json/metadata.rb +6 -6
  1087. data/spec/data/recipes/test.rb +7 -7
  1088. data/spec/data/root_alias_cookbooks/dup_attr/attributes.rb +1 -1
  1089. data/spec/data/root_alias_cookbooks/dup_attr/attributes/default.rb +1 -1
  1090. data/spec/data/root_alias_cookbooks/dup_attr/metadata.rb +2 -2
  1091. data/spec/data/root_alias_cookbooks/dup_attr/recipe.rb +3 -3
  1092. data/spec/data/root_alias_cookbooks/dup_recipe/attributes.rb +1 -1
  1093. data/spec/data/root_alias_cookbooks/dup_recipe/metadata.rb +2 -2
  1094. data/spec/data/root_alias_cookbooks/dup_recipe/recipe.rb +3 -3
  1095. data/spec/data/root_alias_cookbooks/dup_recipe/recipes/default.rb +3 -3
  1096. data/spec/data/root_alias_cookbooks/simple/attributes.rb +1 -1
  1097. data/spec/data/root_alias_cookbooks/simple/metadata.rb +2 -2
  1098. data/spec/data/root_alias_cookbooks/simple/recipe.rb +3 -3
  1099. data/spec/data/run_context/.DS_Store +0 -0
  1100. data/spec/data/run_context/cookbooks/.DS_Store +0 -0
  1101. data/spec/data/run_context/cookbooks/circular-dep1/attributes/default.rb +2 -2
  1102. data/spec/data/run_context/cookbooks/circular-dep1/definitions/circular_dep1_res.rb +1 -1
  1103. data/spec/data/run_context/cookbooks/circular-dep1/libraries/lib.rb +2 -2
  1104. data/spec/data/run_context/cookbooks/circular-dep1/metadata.rb +2 -2
  1105. data/spec/data/run_context/cookbooks/circular-dep1/providers/provider.rb +1 -1
  1106. data/spec/data/run_context/cookbooks/circular-dep1/resources/resource.rb +1 -1
  1107. data/spec/data/run_context/cookbooks/circular-dep2/attributes/default.rb +2 -2
  1108. data/spec/data/run_context/cookbooks/circular-dep2/definitions/circular_dep2_res.rb +1 -1
  1109. data/spec/data/run_context/cookbooks/circular-dep2/libraries/lib.rb +2 -2
  1110. data/spec/data/run_context/cookbooks/circular-dep2/metadata.rb +2 -2
  1111. data/spec/data/run_context/cookbooks/circular-dep2/providers/provider.rb +1 -1
  1112. data/spec/data/run_context/cookbooks/circular-dep2/resources/resource.rb +1 -1
  1113. data/spec/data/run_context/cookbooks/dependency1/attributes/aa_first.rb +2 -2
  1114. data/spec/data/run_context/cookbooks/dependency1/attributes/default.rb +2 -2
  1115. data/spec/data/run_context/cookbooks/dependency1/attributes/unparsed_file +1 -1
  1116. data/spec/data/run_context/cookbooks/dependency1/attributes/zz_last.rb +2 -2
  1117. data/spec/data/run_context/cookbooks/dependency1/definitions/dependency1_res.rb +1 -1
  1118. data/spec/data/run_context/cookbooks/dependency1/definitions/unparsed_file +1 -1
  1119. data/spec/data/run_context/cookbooks/dependency1/libraries/lib.rb +2 -2
  1120. data/spec/data/run_context/cookbooks/dependency1/libraries/unparsed_file +1 -1
  1121. data/spec/data/run_context/cookbooks/dependency1/providers/provider.rb +1 -1
  1122. data/spec/data/run_context/cookbooks/dependency1/providers/unparsed_file +1 -1
  1123. data/spec/data/run_context/cookbooks/dependency1/recipes/unparsed_file +1 -1
  1124. data/spec/data/run_context/cookbooks/dependency1/resources/resource.rb +1 -1
  1125. data/spec/data/run_context/cookbooks/dependency1/resources/unparsed_file +1 -1
  1126. data/spec/data/run_context/cookbooks/dependency2/attributes/default.rb +2 -2
  1127. data/spec/data/run_context/cookbooks/dependency2/definitions/dependency2_res.rb +1 -1
  1128. data/spec/data/run_context/cookbooks/dependency2/libraries/lib.rb +2 -2
  1129. data/spec/data/run_context/cookbooks/dependency2/providers/provider.rb +1 -1
  1130. data/spec/data/run_context/cookbooks/dependency2/resources/resource.rb +1 -1
  1131. data/spec/data/run_context/cookbooks/include/recipes/default.rb +24 -24
  1132. data/spec/data/run_context/cookbooks/include/recipes/includee.rb +3 -3
  1133. data/spec/data/run_context/cookbooks/no-default-attr/attributes/server.rb +2 -2
  1134. data/spec/data/run_context/cookbooks/no-default-attr/definitions/no_default-attr_res.rb +1 -1
  1135. data/spec/data/run_context/cookbooks/no-default-attr/providers/provider.rb +1 -1
  1136. data/spec/data/run_context/cookbooks/no-default-attr/resources/resource.rb +1 -1
  1137. data/spec/data/run_context/cookbooks/test-with-circular-deps/attributes/default.rb +2 -2
  1138. data/spec/data/run_context/cookbooks/test-with-circular-deps/definitions/test_with-circular-deps_res.rb +1 -1
  1139. data/spec/data/run_context/cookbooks/test-with-circular-deps/libraries/lib.rb +2 -2
  1140. data/spec/data/run_context/cookbooks/test-with-circular-deps/metadata.rb +2 -2
  1141. data/spec/data/run_context/cookbooks/test-with-circular-deps/providers/provider.rb +1 -1
  1142. data/spec/data/run_context/cookbooks/test-with-circular-deps/resources/resource.rb +1 -1
  1143. data/spec/data/run_context/cookbooks/test-with-deps/attributes/default.rb +2 -2
  1144. data/spec/data/run_context/cookbooks/test-with-deps/definitions/test_with-deps_res.rb +1 -1
  1145. data/spec/data/run_context/cookbooks/test-with-deps/libraries/lib.rb +1 -1
  1146. data/spec/data/run_context/cookbooks/test-with-deps/metadata.rb +3 -3
  1147. data/spec/data/run_context/cookbooks/test-with-deps/providers/provider.rb +1 -1
  1148. data/spec/data/run_context/cookbooks/test-with-deps/resources/resource.rb +1 -1
  1149. data/spec/data/run_context/cookbooks/test/attributes/george.rb +1 -1
  1150. data/spec/data/run_context/cookbooks/test/definitions/new_animals.rb +9 -9
  1151. data/spec/data/run_context/cookbooks/test/definitions/new_cat.rb +5 -5
  1152. data/spec/data/run_context/cookbooks/test/definitions/test_res.rb +1 -1
  1153. data/spec/data/run_context/cookbooks/test/providers/provider.rb +1 -1
  1154. data/spec/data/run_context/cookbooks/test/recipes/default.rb +5 -5
  1155. data/spec/data/run_context/cookbooks/test/recipes/one.rb +7 -7
  1156. data/spec/data/run_context/cookbooks/test/recipes/two.rb +7 -7
  1157. data/spec/data/run_context/cookbooks/test/resources/resource.rb +1 -1
  1158. data/spec/data/run_context/nodes/run_context.rb +5 -5
  1159. data/spec/data/sample_msu1.xml +10 -10
  1160. data/spec/data/sample_msu2.xml +14 -14
  1161. data/spec/data/sample_msu3.xml +16 -16
  1162. data/spec/data/search_queries_to_transform.txt +98 -98
  1163. data/spec/data/shef-config.rb +11 -11
  1164. data/spec/data/snap_package/async_result_success.json +6 -6
  1165. data/spec/data/snap_package/change_id_result.json +175 -175
  1166. data/spec/data/snap_package/find_result_failure.json +10 -10
  1167. data/spec/data/snap_package/find_result_success.json +70 -70
  1168. data/spec/data/snap_package/get_by_name_result_failure.json +10 -10
  1169. data/spec/data/snap_package/get_by_name_result_success.json +38 -38
  1170. data/spec/data/snap_package/get_conf_success.json +10 -10
  1171. data/spec/data/snap_package/result_failure.json +9 -9
  1172. data/spec/data/ssl/5e707473.0 +18 -18
  1173. data/spec/data/ssl/chef-rspec.cert +27 -27
  1174. data/spec/data/ssl/chef-rspec.key +27 -27
  1175. data/spec/data/ssl/key.pem +15 -15
  1176. data/spec/data/ssl/private_key.pem +27 -27
  1177. data/spec/data/ssl/private_key_with_whitespace.pem +32 -32
  1178. data/spec/data/standalone_cookbook/chefignore +9 -9
  1179. data/spec/data/standalone_cookbook/recipes/default.rb +2 -2
  1180. data/spec/data/templates/failed.erb +5 -0
  1181. data/spec/data/trusted_certs/example.crt +22 -22
  1182. data/spec/data/trusted_certs/example_no_cn.crt +36 -36
  1183. data/spec/data/trusted_certs/intermediate.pem +27 -27
  1184. data/spec/data/trusted_certs/opscode.pem +57 -57
  1185. data/spec/data/trusted_certs/root.pem +22 -22
  1186. data/spec/data/trusted_certs_empty/README.md +1 -1
  1187. data/spec/data/windows_certificates/base64_test.cer +22 -22
  1188. data/spec/data/windows_certificates/test.pem +21 -21
  1189. data/spec/functional/.DS_Store +0 -0
  1190. data/spec/functional/application_spec.rb +58 -58
  1191. data/spec/functional/assets/chefinittest +36 -36
  1192. data/spec/functional/assets/inittest +36 -0
  1193. data/spec/functional/assets/testchefsubsys +10 -10
  1194. data/spec/functional/assets/yumrepo/repodata/repomd.xml +21 -21
  1195. data/spec/functional/dsl/reboot_pending_spec.rb +87 -87
  1196. data/spec/functional/dsl/registry_helper_spec.rb +61 -61
  1197. data/spec/functional/event_loggers/windows_eventlog_spec.rb +104 -104
  1198. data/spec/functional/file_content_management/deploy_strategies_spec.rb +229 -229
  1199. data/spec/functional/http/simple_spec.rb +146 -146
  1200. data/spec/functional/knife/configure_spec.rb +33 -33
  1201. data/spec/functional/knife/cookbook_delete_spec.rb +156 -156
  1202. data/spec/functional/knife/exec_spec.rb +55 -55
  1203. data/spec/functional/knife/rehash_spec.rb +39 -39
  1204. data/spec/functional/knife/smoke_test.rb +42 -42
  1205. data/spec/functional/knife/ssh_spec.rb +359 -359
  1206. data/spec/functional/mixin/from_file_spec.rb +93 -82
  1207. data/spec/functional/mixin/powershell_out_spec.rb +43 -43
  1208. data/spec/functional/mixin/shell_out_spec.rb +48 -48
  1209. data/spec/functional/mixin/user_context_spec.rb +117 -117
  1210. data/spec/functional/notifications_spec.rb +238 -238
  1211. data/spec/functional/provider/remote_file/cache_control_data_spec.rb +100 -100
  1212. data/spec/functional/provider/whyrun_safe_ruby_block_spec.rb +51 -51
  1213. data/spec/functional/rebooter_spec.rb +117 -117
  1214. data/spec/functional/resource/.DS_Store +0 -0
  1215. data/spec/functional/resource/aix_service_spec.rb +138 -138
  1216. data/spec/functional/resource/aixinit_service_spec.rb +211 -211
  1217. data/spec/functional/resource/apt_package_spec.rb +386 -386
  1218. data/spec/functional/resource/base.rb +28 -28
  1219. data/spec/functional/resource/bash_spec.rb +54 -54
  1220. data/spec/functional/resource/batch_spec.rb +34 -34
  1221. data/spec/functional/resource/bff_spec.rb +120 -120
  1222. data/spec/functional/resource/chocolatey_package_spec.rb +118 -118
  1223. data/spec/functional/resource/cookbook_file_spec.rb +81 -81
  1224. data/spec/functional/resource/cron_spec.rb +179 -179
  1225. data/spec/functional/resource/directory_spec.rb +43 -43
  1226. data/spec/functional/resource/dnf_package_spec.rb +686 -686
  1227. data/spec/functional/resource/dpkg_package_spec.rb +339 -339
  1228. data/spec/functional/resource/dsc_resource_spec.rb +90 -90
  1229. data/spec/functional/resource/dsc_script_spec.rb +484 -484
  1230. data/spec/functional/resource/execute_spec.rb +171 -171
  1231. data/spec/functional/resource/file_spec.rb +167 -167
  1232. data/spec/functional/resource/git_spec.rb +257 -257
  1233. data/spec/functional/resource/group_spec.rb +464 -464
  1234. data/spec/functional/resource/ifconfig_spec.rb +172 -172
  1235. data/spec/functional/resource/insserv_spec.rb +206 -0
  1236. data/spec/functional/resource/link_spec.rb +699 -699
  1237. data/spec/functional/resource/locale_spec.rb +97 -97
  1238. data/spec/functional/resource/mount_spec.rb +207 -207
  1239. data/spec/functional/resource/msu_package_spec.rb +98 -98
  1240. data/spec/functional/resource/ohai_spec.rb +62 -62
  1241. data/spec/functional/resource/powershell_script_spec.rb +605 -605
  1242. data/spec/functional/resource/reboot_spec.rb +103 -103
  1243. data/spec/functional/resource/registry_spec.rb +676 -676
  1244. data/spec/functional/resource/remote_directory_spec.rb +220 -220
  1245. data/spec/functional/resource/remote_file_spec.rb +424 -424
  1246. data/spec/functional/resource/rpm_spec.rb +120 -120
  1247. data/spec/functional/resource/template_spec.rb +245 -245
  1248. data/spec/functional/resource/timezone_spec.rb +39 -39
  1249. data/spec/functional/resource/user/dscl_spec.rb +188 -188
  1250. data/spec/functional/resource/user/windows_spec.rb +245 -245
  1251. data/spec/functional/resource/windows_certificate_spec.rb +492 -492
  1252. data/spec/functional/resource/windows_env_spec.rb +285 -285
  1253. data/spec/functional/resource/windows_package_spec.rb +168 -168
  1254. data/spec/functional/resource/windows_path_spec.rb +64 -64
  1255. data/spec/functional/resource/windows_service_spec.rb +102 -102
  1256. data/spec/functional/resource/windows_task_spec.rb +1969 -1969
  1257. data/spec/functional/resource/yum_package_spec.rb +978 -978
  1258. data/spec/functional/resource/zypper_package_spec.rb +233 -233
  1259. data/spec/functional/root_alias_spec.rb +78 -78
  1260. data/spec/functional/run_lock_spec.rb +473 -473
  1261. data/spec/functional/shell_spec.rb +145 -145
  1262. data/spec/functional/tiny_server_spec.rb +79 -79
  1263. data/spec/functional/util/.DS_Store +0 -0
  1264. data/spec/functional/util/path_helper_spec.rb +37 -37
  1265. data/spec/functional/util/powershell/cmdlet_spec.rb +111 -111
  1266. data/spec/functional/version_spec.rb +36 -35
  1267. data/spec/functional/win32/crypto_spec.rb +54 -54
  1268. data/spec/functional/win32/registry_spec.rb +624 -624
  1269. data/spec/functional/win32/security_spec.rb +206 -206
  1270. data/spec/functional/win32/service_manager_spec.rb +220 -220
  1271. data/spec/functional/win32/sid_spec.rb +55 -55
  1272. data/spec/functional/win32/version_info_spec.rb +50 -50
  1273. data/spec/functional/win32/versions_spec.rb +115 -115
  1274. data/spec/integration/.DS_Store +0 -0
  1275. data/spec/integration/client/client_spec.rb +722 -721
  1276. data/spec/integration/client/exit_code_spec.rb +114 -114
  1277. data/spec/integration/client/ipv6_spec.rb +134 -134
  1278. data/spec/integration/knife/chef_fs_data_store_spec.rb +556 -556
  1279. data/spec/integration/knife/chef_repo_path_spec.rb +959 -959
  1280. data/spec/integration/knife/chef_repository_file_system_spec.rb +199 -199
  1281. data/spec/integration/knife/chefignore_spec.rb +300 -300
  1282. data/spec/integration/knife/client_bulk_delete_spec.rb +130 -130
  1283. data/spec/integration/knife/client_create_spec.rb +69 -69
  1284. data/spec/integration/knife/client_delete_spec.rb +63 -63
  1285. data/spec/integration/knife/client_key_create_spec.rb +65 -65
  1286. data/spec/integration/knife/client_key_delete_spec.rb +42 -42
  1287. data/spec/integration/knife/client_key_list_spec.rb +60 -60
  1288. data/spec/integration/knife/client_key_show_spec.rb +44 -44
  1289. data/spec/integration/knife/client_list_spec.rb +48 -48
  1290. data/spec/integration/knife/client_show_spec.rb +36 -36
  1291. data/spec/integration/knife/common_options_spec.rb +173 -173
  1292. data/spec/integration/knife/config_get_profile_spec.rb +112 -112
  1293. data/spec/integration/knife/config_get_spec.rb +183 -183
  1294. data/spec/integration/knife/config_list_profiles_spec.rb +188 -188
  1295. data/spec/integration/knife/config_use_profile_spec.rb +100 -100
  1296. data/spec/integration/knife/cookbook_api_ipv6_spec.rb +112 -112
  1297. data/spec/integration/knife/cookbook_bulk_delete_spec.rb +64 -64
  1298. data/spec/integration/knife/cookbook_download_spec.rb +71 -71
  1299. data/spec/integration/knife/cookbook_list_spec.rb +54 -54
  1300. data/spec/integration/knife/cookbook_show_spec.rb +146 -146
  1301. data/spec/integration/knife/cookbook_upload_spec.rb +90 -90
  1302. data/spec/integration/knife/data_bag_create_spec.rb +124 -124
  1303. data/spec/integration/knife/data_bag_delete_spec.rb +58 -58
  1304. data/spec/integration/knife/data_bag_edit_spec.rb +104 -104
  1305. data/spec/integration/knife/data_bag_from_file_spec.rb +115 -115
  1306. data/spec/integration/knife/data_bag_list_spec.rb +43 -43
  1307. data/spec/integration/knife/data_bag_show_spec.rb +94 -94
  1308. data/spec/integration/knife/delete_spec.rb +1017 -1017
  1309. data/spec/integration/knife/deps_spec.rb +702 -702
  1310. data/spec/integration/knife/diff_spec.rb +602 -602
  1311. data/spec/integration/knife/download_spec.rb +1333 -1333
  1312. data/spec/integration/knife/environment_compare_spec.rb +74 -74
  1313. data/spec/integration/knife/environment_create_spec.rb +40 -40
  1314. data/spec/integration/knife/environment_delete_spec.rb +36 -36
  1315. data/spec/integration/knife/environment_from_file_spec.rb +115 -115
  1316. data/spec/integration/knife/environment_list_spec.rb +41 -41
  1317. data/spec/integration/knife/environment_show_spec.rb +76 -76
  1318. data/spec/integration/knife/list_spec.rb +1059 -1059
  1319. data/spec/integration/knife/node_bulk_delete_spec.rb +51 -51
  1320. data/spec/integration/knife/node_create_spec.rb +46 -46
  1321. data/spec/integration/knife/node_delete_spec.rb +47 -47
  1322. data/spec/integration/knife/node_environment_set_spec.rb +45 -45
  1323. data/spec/integration/knife/node_from_file_spec.rb +58 -58
  1324. data/spec/integration/knife/node_list_spec.rb +44 -44
  1325. data/spec/integration/knife/node_run_list_add_spec.rb +53 -53
  1326. data/spec/integration/knife/node_run_list_remove_spec.rb +35 -35
  1327. data/spec/integration/knife/node_run_list_set_spec.rb +40 -40
  1328. data/spec/integration/knife/node_show_spec.rb +35 -35
  1329. data/spec/integration/knife/raw_spec.rb +248 -248
  1330. data/spec/integration/knife/redirection_spec.rb +54 -54
  1331. data/spec/integration/knife/role_bulk_delete_spec.rb +51 -51
  1332. data/spec/integration/knife/role_create_spec.rb +40 -40
  1333. data/spec/integration/knife/role_delete_spec.rb +47 -47
  1334. data/spec/integration/knife/role_from_file_spec.rb +95 -95
  1335. data/spec/integration/knife/role_list_spec.rb +44 -44
  1336. data/spec/integration/knife/role_show_spec.rb +50 -50
  1337. data/spec/integration/knife/search_node_spec.rb +39 -39
  1338. data/spec/integration/knife/serve_spec.rb +93 -93
  1339. data/spec/integration/knife/show_spec.rb +167 -167
  1340. data/spec/integration/knife/upload_spec.rb +1540 -1540
  1341. data/spec/integration/recipes/accumulator_spec.rb +232 -232
  1342. data/spec/integration/recipes/lwrp_inline_resources_spec.rb +171 -171
  1343. data/spec/integration/recipes/lwrp_spec.rb +53 -53
  1344. data/spec/integration/recipes/noop_resource_spec.rb +24 -24
  1345. data/spec/integration/recipes/notifies_spec.rb +394 -394
  1346. data/spec/integration/recipes/notifying_block_spec.rb +111 -111
  1347. data/spec/integration/recipes/provider_choice.rb +37 -37
  1348. data/spec/integration/recipes/recipe_dsl_spec.rb +1373 -1373
  1349. data/spec/integration/recipes/remote_directory.rb +74 -74
  1350. data/spec/integration/recipes/resource_action_spec.rb +504 -504
  1351. data/spec/integration/recipes/resource_converge_if_changed_spec.rb +552 -552
  1352. data/spec/integration/recipes/resource_load_spec.rb +192 -192
  1353. data/spec/integration/solo/solo_spec.rb +218 -217
  1354. data/spec/rcov.opts +2 -2
  1355. data/spec/scripts/ssl-serve.rb +47 -47
  1356. data/spec/spec_helper.rb +327 -326
  1357. data/spec/stress/.DS_Store +0 -0
  1358. data/spec/stress/win32/file_spec.rb +37 -37
  1359. data/spec/stress/win32/memory_spec.rb +22 -22
  1360. data/spec/stress/win32/security_spec.rb +69 -69
  1361. data/spec/support/.DS_Store +0 -0
  1362. data/spec/support/chef_helpers.rb +114 -114
  1363. data/spec/support/key_helpers.rb +104 -104
  1364. data/spec/support/lib/chef/provider/easy.rb +35 -35
  1365. data/spec/support/lib/chef/provider/openldap_includer.rb +29 -29
  1366. data/spec/support/lib/chef/provider/snakeoil.rb +42 -42
  1367. data/spec/support/lib/chef/resource/cat.rb +39 -39
  1368. data/spec/support/lib/chef/resource/one_two_three_four.rb +36 -36
  1369. data/spec/support/lib/chef/resource/openldap_includer.rb +28 -28
  1370. data/spec/support/lib/chef/resource/with_state.rb +30 -30
  1371. data/spec/support/lib/chef/resource/zen_follower.rb +35 -35
  1372. data/spec/support/lib/chef/resource/zen_master.rb +40 -40
  1373. data/spec/support/lib/library_load_order.rb +20 -20
  1374. data/spec/support/matchers/leak.rb +98 -98
  1375. data/spec/support/mock/constant.rb +52 -52
  1376. data/spec/support/mock/platform.rb +25 -25
  1377. data/spec/support/platform_helpers.rb +255 -251
  1378. data/spec/support/platforms/prof/gc.rb +51 -51
  1379. data/spec/support/platforms/prof/win32.rb +45 -45
  1380. data/spec/support/platforms/win32/spec_service.rb +59 -59
  1381. data/spec/support/shared/context/config.rb +21 -21
  1382. data/spec/support/shared/context/win32.rb +34 -34
  1383. data/spec/support/shared/functional/diff_disabled.rb +10 -10
  1384. data/spec/support/shared/functional/directory_resource.rb +178 -178
  1385. data/spec/support/shared/functional/execute_resource.rb +150 -150
  1386. data/spec/support/shared/functional/file_resource.rb +1050 -1050
  1387. data/spec/support/shared/functional/http.rb +248 -248
  1388. data/spec/support/shared/functional/knife.rb +37 -37
  1389. data/spec/support/shared/functional/securable_resource.rb +578 -578
  1390. data/spec/support/shared/functional/securable_resource_with_reporting.rb +394 -394
  1391. data/spec/support/shared/functional/win32_service.rb +57 -57
  1392. data/spec/support/shared/functional/windows_script.rb +272 -272
  1393. data/spec/support/shared/integration/app_server_support.rb +40 -40
  1394. data/spec/support/shared/integration/integration_helper.rb +154 -154
  1395. data/spec/support/shared/integration/knife_support.rb +196 -196
  1396. data/spec/support/shared/matchers/exit_with_code.rb +32 -32
  1397. data/spec/support/shared/matchers/match_environment_variable.rb +17 -17
  1398. data/spec/support/shared/shared_examples.rb +14 -14
  1399. data/spec/support/shared/unit/api_error_inspector.rb +190 -190
  1400. data/spec/support/shared/unit/api_versioning.rb +77 -77
  1401. data/spec/support/shared/unit/application_dot_d.rb +75 -75
  1402. data/spec/support/shared/unit/execute_resource.rb +168 -168
  1403. data/spec/support/shared/unit/file_system_support.rb +69 -69
  1404. data/spec/support/shared/unit/knife_shared.rb +39 -39
  1405. data/spec/support/shared/unit/mock_shellout.rb +49 -49
  1406. data/spec/support/shared/unit/platform_introspector.rb +189 -189
  1407. data/spec/support/shared/unit/provider/file.rb +854 -854
  1408. data/spec/support/shared/unit/provider/package/package_shared.rb +95 -95
  1409. data/spec/support/shared/unit/provider/useradd_based_user_provider.rb +402 -402
  1410. data/spec/support/shared/unit/resource/static_provider_resolution.rb +63 -63
  1411. data/spec/support/shared/unit/script_resource.rb +90 -90
  1412. data/spec/support/shared/unit/user_and_client_shared.rb +114 -114
  1413. data/spec/support/shared/unit/windows_script_resource.rb +80 -80
  1414. data/spec/tiny_server.rb +191 -191
  1415. data/spec/unit/.DS_Store +0 -0
  1416. data/spec/unit/action_collection_spec.rb +19 -19
  1417. data/spec/unit/api_client/registration_spec.rb +278 -278
  1418. data/spec/unit/api_client_spec.rb +341 -341
  1419. data/spec/unit/api_client_v1_spec.rb +455 -455
  1420. data/spec/unit/application/apply_spec.rb +113 -113
  1421. data/spec/unit/application/client_spec.rb +595 -595
  1422. data/spec/unit/application/exit_code_spec.rb +134 -134
  1423. data/spec/unit/application/knife_spec.rb +225 -225
  1424. data/spec/unit/application/solo_spec.rb +221 -220
  1425. data/spec/unit/application_spec.rb +581 -493
  1426. data/spec/unit/chef_class_spec.rb +240 -240
  1427. data/spec/unit/chef_fs/config_spec.rb +235 -235
  1428. data/spec/unit/chef_fs/data_handler/data_bag_item_data_handler.rb +82 -82
  1429. data/spec/unit/chef_fs/data_handler/data_handler_base_spec.rb +65 -65
  1430. data/spec/unit/chef_fs/data_handler/group_handler_spec.rb +63 -63
  1431. data/spec/unit/chef_fs/diff_spec.rb +328 -328
  1432. data/spec/unit/chef_fs/file_pattern_spec.rb +512 -512
  1433. data/spec/unit/chef_fs/file_system/cookbook_subdir_spec.rb +34 -34
  1434. data/spec/unit/chef_fs/file_system/operation_failed_error_spec.rb +47 -47
  1435. data/spec/unit/chef_fs/file_system/repository/base_file_spec.rb +126 -126
  1436. data/spec/unit/chef_fs/file_system/repository/directory_spec.rb +175 -175
  1437. data/spec/unit/chef_fs/file_system_spec.rb +148 -148
  1438. data/spec/unit/chef_fs/parallelizer.rb +475 -475
  1439. data/spec/unit/chef_fs/path_util_spec.rb +108 -108
  1440. data/spec/unit/chef_spec.rb +25 -25
  1441. data/spec/unit/client_spec.rb +785 -785
  1442. data/spec/unit/config_fetcher_spec.rb +125 -125
  1443. data/spec/unit/config_spec.rb +31 -31
  1444. data/spec/unit/cookbook/chefignore_spec.rb +49 -49
  1445. data/spec/unit/cookbook/cookbook_version_loader_spec.rb +210 -210
  1446. data/spec/unit/cookbook/file_vendor_spec.rb +123 -123
  1447. data/spec/unit/cookbook/gem_installer_spec.rb +92 -92
  1448. data/spec/unit/cookbook/manifest_v0_spec.rb +133 -133
  1449. data/spec/unit/cookbook/manifest_v2_spec.rb +70 -70
  1450. data/spec/unit/cookbook/metadata_spec.rb +600 -600
  1451. data/spec/unit/cookbook/synchronizer_spec.rb +558 -557
  1452. data/spec/unit/cookbook/syntax_check_spec.rb +226 -226
  1453. data/spec/unit/cookbook_loader_spec.rb +265 -265
  1454. data/spec/unit/cookbook_manifest_spec.rb +228 -228
  1455. data/spec/unit/cookbook_site_streaming_uploader_spec.rb +199 -199
  1456. data/spec/unit/cookbook_spec.rb +62 -62
  1457. data/spec/unit/cookbook_uploader_spec.rb +199 -199
  1458. data/spec/unit/cookbook_version_file_specificity_spec.rb +623 -623
  1459. data/spec/unit/cookbook_version_spec.rb +250 -250
  1460. data/spec/unit/daemon_spec.rb +183 -183
  1461. data/spec/unit/data_bag_item_spec.rb +392 -392
  1462. data/spec/unit/data_bag_spec.rb +260 -260
  1463. data/spec/unit/data_collector_spec.rb +882 -882
  1464. data/spec/unit/decorator/lazy_array_spec.rb +58 -58
  1465. data/spec/unit/decorator/lazy_spec.rb +39 -39
  1466. data/spec/unit/decorator_spec.rb +142 -142
  1467. data/spec/unit/deprecated_spec.rb +65 -65
  1468. data/spec/unit/deprecation_spec.rb +129 -129
  1469. data/spec/unit/digester_spec.rb +49 -49
  1470. data/spec/unit/dsl/data_query_spec.rb +107 -107
  1471. data/spec/unit/dsl/declare_resource_spec.rb +374 -374
  1472. data/spec/unit/dsl/platform_introspection_spec.rb +129 -129
  1473. data/spec/unit/dsl/reboot_pending_spec.rb +87 -87
  1474. data/spec/unit/dsl/recipe_spec.rb +76 -76
  1475. data/spec/unit/dsl/registry_helper_spec.rb +52 -52
  1476. data/spec/unit/dsl/resources_spec.rb +85 -85
  1477. data/spec/unit/encrypted_data_bag_item/check_encrypted_spec.rb +96 -96
  1478. data/spec/unit/encrypted_data_bag_item_spec.rb +438 -438
  1479. data/spec/unit/environment_spec.rb +472 -470
  1480. data/spec/unit/event_dispatch/dispatcher_spec.rb +169 -169
  1481. data/spec/unit/event_dispatch/dsl_spec.rb +83 -83
  1482. data/spec/unit/exceptions_spec.rb +132 -132
  1483. data/spec/unit/file_access_control_spec.rb +308 -308
  1484. data/spec/unit/file_cache_spec.rb +114 -114
  1485. data/spec/unit/file_content_management/deploy/cp_spec.rb +44 -44
  1486. data/spec/unit/file_content_management/deploy/mv_unix_spec.rb +113 -113
  1487. data/spec/unit/file_content_management/deploy/mv_windows_spec.rb +232 -232
  1488. data/spec/unit/file_content_management/tempfile_spec.rb +115 -115
  1489. data/spec/unit/formatters/base_spec.rb +100 -100
  1490. data/spec/unit/formatters/doc_spec.rb +92 -92
  1491. data/spec/unit/formatters/error_description_spec.rb +141 -141
  1492. data/spec/unit/formatters/error_inspectors/api_error_formatting_spec.rb +76 -76
  1493. data/spec/unit/formatters/error_inspectors/compile_error_inspector_spec.rb +265 -265
  1494. data/spec/unit/formatters/error_inspectors/cookbook_resolve_error_inspector_spec.rb +126 -126
  1495. data/spec/unit/formatters/error_inspectors/cookbook_sync_error_inspector_spec.rb +43 -43
  1496. data/spec/unit/formatters/error_inspectors/node_load_error_inspector_spec.rb +26 -26
  1497. data/spec/unit/formatters/error_inspectors/registration_error_inspector_spec.rb +26 -26
  1498. data/spec/unit/formatters/error_inspectors/resource_failure_inspector_spec.rb +191 -191
  1499. data/spec/unit/formatters/error_inspectors/run_list_expansion_error_inspector_spec.rb +91 -91
  1500. data/spec/unit/guard_interpreter/resource_guard_interpreter_spec.rb +155 -155
  1501. data/spec/unit/guard_interpreter_spec.rb +41 -41
  1502. data/spec/unit/handler/json_file_spec.rb +63 -63
  1503. data/spec/unit/handler_spec.rb +302 -302
  1504. data/spec/unit/http/api_versions_spec.rb +82 -82
  1505. data/spec/unit/http/authenticator_spec.rb +125 -125
  1506. data/spec/unit/http/basic_client_spec.rb +72 -72
  1507. data/spec/unit/http/http_request_spec.rb +97 -97
  1508. data/spec/unit/http/json_input_spec.rb +128 -128
  1509. data/spec/unit/http/simple_spec.rb +32 -32
  1510. data/spec/unit/http/socketless_chef_zero_client_spec.rb +174 -174
  1511. data/spec/unit/http/ssl_policies_spec.rb +169 -169
  1512. data/spec/unit/http/validate_content_length_spec.rb +207 -207
  1513. data/spec/unit/http_spec.rb +229 -229
  1514. data/spec/unit/json_compat_spec.rb +73 -73
  1515. data/spec/unit/key_spec.rb +631 -631
  1516. data/spec/unit/knife/bootstrap/chef_vault_handler_spec.rb +152 -152
  1517. data/spec/unit/knife/bootstrap/client_builder_spec.rb +207 -207
  1518. data/spec/unit/knife/bootstrap/train_connector_spec.rb +226 -216
  1519. data/spec/unit/knife/bootstrap_spec.rb +2167 -2197
  1520. data/spec/unit/knife/client_bulk_delete_spec.rb +166 -166
  1521. data/spec/unit/knife/client_create_spec.rb +169 -169
  1522. data/spec/unit/knife/client_delete_spec.rb +99 -99
  1523. data/spec/unit/knife/client_edit_spec.rb +53 -53
  1524. data/spec/unit/knife/client_list_spec.rb +34 -34
  1525. data/spec/unit/knife/client_reregister_spec.rb +62 -62
  1526. data/spec/unit/knife/client_show_spec.rb +52 -52
  1527. data/spec/unit/knife/configure_client_spec.rb +81 -81
  1528. data/spec/unit/knife/configure_spec.rb +190 -190
  1529. data/spec/unit/knife/cookbook_bulk_delete_spec.rb +87 -87
  1530. data/spec/unit/knife/cookbook_delete_spec.rb +239 -239
  1531. data/spec/unit/knife/cookbook_download_spec.rb +255 -255
  1532. data/spec/unit/knife/cookbook_list_spec.rb +88 -88
  1533. data/spec/unit/knife/cookbook_metadata_from_file_spec.rb +65 -65
  1534. data/spec/unit/knife/cookbook_metadata_spec.rb +182 -182
  1535. data/spec/unit/knife/cookbook_show_spec.rb +253 -253
  1536. data/spec/unit/knife/cookbook_upload_spec.rb +304 -304
  1537. data/spec/unit/knife/core/bootstrap_context_spec.rb +307 -307
  1538. data/spec/unit/knife/core/cookbook_scm_repo_spec.rb +187 -187
  1539. data/spec/unit/knife/core/gem_glob_loader_spec.rb +209 -209
  1540. data/spec/unit/knife/core/hashed_command_loader_spec.rb +110 -110
  1541. data/spec/unit/knife/core/node_editor_spec.rb +211 -211
  1542. data/spec/unit/knife/core/object_loader_spec.rb +81 -81
  1543. data/spec/unit/knife/core/subcommand_loader_spec.rb +64 -64
  1544. data/spec/unit/knife/core/ui_spec.rb +639 -639
  1545. data/spec/unit/knife/core/windows_bootstrap_context_spec.rb +278 -278
  1546. data/spec/unit/knife/data_bag_create_spec.rb +175 -175
  1547. data/spec/unit/knife/data_bag_edit_spec.rb +126 -126
  1548. data/spec/unit/knife/data_bag_from_file_spec.rb +173 -173
  1549. data/spec/unit/knife/data_bag_secret_options_spec.rb +165 -165
  1550. data/spec/unit/knife/data_bag_show_spec.rb +138 -138
  1551. data/spec/unit/knife/environment_compare_spec.rb +112 -112
  1552. data/spec/unit/knife/environment_create_spec.rb +91 -91
  1553. data/spec/unit/knife/environment_delete_spec.rb +71 -71
  1554. data/spec/unit/knife/environment_edit_spec.rb +79 -79
  1555. data/spec/unit/knife/environment_from_file_spec.rb +90 -90
  1556. data/spec/unit/knife/environment_list_spec.rb +54 -54
  1557. data/spec/unit/knife/environment_show_spec.rb +52 -52
  1558. data/spec/unit/knife/key_create_spec.rb +223 -223
  1559. data/spec/unit/knife/key_delete_spec.rb +133 -133
  1560. data/spec/unit/knife/key_edit_spec.rb +264 -264
  1561. data/spec/unit/knife/key_helper.rb +74 -74
  1562. data/spec/unit/knife/key_list_spec.rb +216 -216
  1563. data/spec/unit/knife/key_show_spec.rb +126 -126
  1564. data/spec/unit/knife/node_bulk_delete_spec.rb +94 -94
  1565. data/spec/unit/knife/node_delete_spec.rb +77 -77
  1566. data/spec/unit/knife/node_edit_spec.rb +116 -116
  1567. data/spec/unit/knife/node_environment_set_spec.rb +56 -56
  1568. data/spec/unit/knife/node_from_file_spec.rb +59 -59
  1569. data/spec/unit/knife/node_list_spec.rb +62 -62
  1570. data/spec/unit/knife/node_policy_set_spec.rb +122 -122
  1571. data/spec/unit/knife/node_run_list_add_spec.rb +145 -145
  1572. data/spec/unit/knife/node_run_list_remove_spec.rb +106 -106
  1573. data/spec/unit/knife/node_run_list_set_spec.rb +115 -115
  1574. data/spec/unit/knife/node_show_spec.rb +65 -65
  1575. data/spec/unit/knife/raw_spec.rb +43 -43
  1576. data/spec/unit/knife/role_bulk_delete_spec.rb +80 -80
  1577. data/spec/unit/knife/role_create_spec.rb +80 -80
  1578. data/spec/unit/knife/role_delete_spec.rb +67 -67
  1579. data/spec/unit/knife/role_edit_spec.rb +77 -77
  1580. data/spec/unit/knife/role_env_run_list_add_spec.rb +217 -217
  1581. data/spec/unit/knife/role_env_run_list_clear_spec.rb +94 -94
  1582. data/spec/unit/knife/role_env_run_list_remove_spec.rb +102 -102
  1583. data/spec/unit/knife/role_env_run_list_replace_spec.rb +105 -105
  1584. data/spec/unit/knife/role_env_run_list_set_spec.rb +99 -99
  1585. data/spec/unit/knife/role_from_file_spec.rb +69 -69
  1586. data/spec/unit/knife/role_list_spec.rb +54 -54
  1587. data/spec/unit/knife/role_run_list_add_spec.rb +179 -179
  1588. data/spec/unit/knife/role_run_list_clear_spec.rb +84 -84
  1589. data/spec/unit/knife/role_run_list_remove_spec.rb +92 -92
  1590. data/spec/unit/knife/role_run_list_replace_spec.rb +98 -98
  1591. data/spec/unit/knife/role_run_list_set_spec.rb +89 -89
  1592. data/spec/unit/knife/role_show_spec.rb +59 -59
  1593. data/spec/unit/knife/ssh_spec.rb +496 -496
  1594. data/spec/unit/knife/ssl_check_spec.rb +256 -256
  1595. data/spec/unit/knife/ssl_fetch_spec.rb +222 -222
  1596. data/spec/unit/knife/status_spec.rb +111 -111
  1597. data/spec/unit/knife/supermarket_download_spec.rb +152 -152
  1598. data/spec/unit/knife/supermarket_install_spec.rb +201 -201
  1599. data/spec/unit/knife/supermarket_share_spec.rb +209 -209
  1600. data/spec/unit/knife/supermarket_unshare_spec.rb +78 -78
  1601. data/spec/unit/knife/tag_create_spec.rb +23 -23
  1602. data/spec/unit/knife/tag_delete_spec.rb +25 -25
  1603. data/spec/unit/knife/tag_list_spec.rb +23 -23
  1604. data/spec/unit/knife/user_create_spec.rb +184 -184
  1605. data/spec/unit/knife/user_delete_spec.rb +46 -46
  1606. data/spec/unit/knife/user_edit_spec.rb +48 -48
  1607. data/spec/unit/knife/user_list_spec.rb +36 -36
  1608. data/spec/unit/knife/user_reregister_spec.rb +56 -56
  1609. data/spec/unit/knife/user_show_spec.rb +46 -46
  1610. data/spec/unit/knife_spec.rb +616 -613
  1611. data/spec/unit/log/syslog_spec.rb +51 -51
  1612. data/spec/unit/log/winevt_spec.rb +54 -54
  1613. data/spec/unit/log_spec.rb +24 -24
  1614. data/spec/unit/lwrp_spec.rb +690 -690
  1615. data/spec/unit/mash_spec.rb +51 -51
  1616. data/spec/unit/mixin/api_version_request_handling_spec.rb +126 -126
  1617. data/spec/unit/mixin/checksum_spec.rb +54 -54
  1618. data/spec/unit/mixin/convert_to_class_name_spec.rb +54 -54
  1619. data/spec/unit/mixin/deep_merge_spec.rb +342 -342
  1620. data/spec/unit/mixin/deprecation_spec.rb +57 -57
  1621. data/spec/unit/mixin/enforce_ownership_and_permissions_spec.rb +96 -96
  1622. data/spec/unit/mixin/homebrew_user_spec.rb +96 -96
  1623. data/spec/unit/mixin/lazy_module_include.rb +71 -71
  1624. data/spec/unit/mixin/openssl_helper_spec.rb +857 -857
  1625. data/spec/unit/mixin/params_validate_spec.rb +421 -421
  1626. data/spec/unit/mixin/path_sanity_spec.rb +92 -92
  1627. data/spec/unit/mixin/powershell_exec_spec.rb +43 -43
  1628. data/spec/unit/mixin/powershell_out_spec.rb +94 -94
  1629. data/spec/unit/mixin/powershell_type_coercions_spec.rb +84 -84
  1630. data/spec/unit/mixin/properties_spec.rb +107 -107
  1631. data/spec/unit/mixin/proxified_socket_spec.rb +97 -97
  1632. data/spec/unit/mixin/securable_spec.rb +314 -314
  1633. data/spec/unit/mixin/shell_out_spec.rb +318 -318
  1634. data/spec/unit/mixin/subclass_directive_spec.rb +45 -45
  1635. data/spec/unit/mixin/template_spec.rb +321 -276
  1636. data/spec/unit/mixin/unformatter_spec.rb +61 -61
  1637. data/spec/unit/mixin/uris_spec.rb +57 -57
  1638. data/spec/unit/mixin/user_context_spec.rb +108 -108
  1639. data/spec/unit/mixin/versioned_api_spec.rb +128 -128
  1640. data/spec/unit/mixin/which.rb +160 -160
  1641. data/spec/unit/mixin/windows_architecture_helper_spec.rb +85 -85
  1642. data/spec/unit/mixin/xml_escape_spec.rb +54 -54
  1643. data/spec/unit/monkey_patches/uri_spec.rb +34 -34
  1644. data/spec/unit/monologger_spec.rb +45 -45
  1645. data/spec/unit/node/attribute_spec.rb +1300 -1300
  1646. data/spec/unit/node/immutable_collections_spec.rb +326 -326
  1647. data/spec/unit/node/vivid_mash_spec.rb +458 -458
  1648. data/spec/unit/node_map_spec.rb +276 -276
  1649. data/spec/unit/node_spec.rb +1843 -1843
  1650. data/spec/unit/org_spec.rb +196 -196
  1651. data/spec/unit/platform/query_helpers_spec.rb +207 -207
  1652. data/spec/unit/policy_builder/dynamic_spec.rb +261 -261
  1653. data/spec/unit/policy_builder/expand_node_object_spec.rb +311 -311
  1654. data/spec/unit/policy_builder/policyfile_spec.rb +872 -872
  1655. data/spec/unit/policy_builder_spec.rb +26 -26
  1656. data/spec/unit/property/state_spec.rb +508 -508
  1657. data/spec/unit/property/validation_spec.rb +758 -758
  1658. data/spec/unit/property_spec.rb +1324 -1324
  1659. data/spec/unit/provider/apt_preference_spec.rb +87 -87
  1660. data/spec/unit/provider/apt_repository_spec.rb +254 -254
  1661. data/spec/unit/provider/apt_update_spec.rb +116 -116
  1662. data/spec/unit/provider/cookbook_file/content_spec.rb +39 -39
  1663. data/spec/unit/provider/cookbook_file_spec.rb +59 -59
  1664. data/spec/unit/provider/cron/unix_spec.rb +144 -144
  1665. data/spec/unit/provider/cron_spec.rb +1084 -1084
  1666. data/spec/unit/provider/directory_spec.rb +300 -300
  1667. data/spec/unit/provider/dsc_resource_spec.rb +343 -343
  1668. data/spec/unit/provider/dsc_script_spec.rb +173 -173
  1669. data/spec/unit/provider/execute_spec.rb +251 -251
  1670. data/spec/unit/provider/file/content_spec.rb +114 -114
  1671. data/spec/unit/provider/file_spec.rb +57 -57
  1672. data/spec/unit/provider/git_spec.rb +782 -782
  1673. data/spec/unit/provider/group/dscl_spec.rb +339 -339
  1674. data/spec/unit/provider/group/gpasswd_spec.rb +119 -119
  1675. data/spec/unit/provider/group/groupadd_spec.rb +194 -194
  1676. data/spec/unit/provider/group/groupmod_spec.rb +136 -136
  1677. data/spec/unit/provider/group/pw_spec.rb +141 -141
  1678. data/spec/unit/provider/group/solaris_spec.rb +106 -106
  1679. data/spec/unit/provider/group/suse_spec.rb +90 -90
  1680. data/spec/unit/provider/group/usermod_spec.rb +112 -112
  1681. data/spec/unit/provider/group/windows_spec.rb +124 -124
  1682. data/spec/unit/provider/group_spec.rb +286 -286
  1683. data/spec/unit/provider/http_request_spec.rb +159 -159
  1684. data/spec/unit/provider/ifconfig/aix_spec.rb +180 -180
  1685. data/spec/unit/provider/ifconfig/debian_spec.rb +332 -332
  1686. data/spec/unit/provider/ifconfig/redhat_spec.rb +83 -83
  1687. data/spec/unit/provider/ifconfig_spec.rb +206 -206
  1688. data/spec/unit/provider/launchd_spec.rb +268 -268
  1689. data/spec/unit/provider/link_spec.rb +409 -409
  1690. data/spec/unit/provider/log_spec.rb +94 -94
  1691. data/spec/unit/provider/mdadm_spec.rb +140 -140
  1692. data/spec/unit/provider/mount/aix_spec.rb +277 -277
  1693. data/spec/unit/provider/mount/mount_spec.rb +527 -527
  1694. data/spec/unit/provider/mount/solaris_spec.rb +822 -822
  1695. data/spec/unit/provider/mount/windows_spec.rb +149 -149
  1696. data/spec/unit/provider/mount_spec.rb +191 -191
  1697. data/spec/unit/provider/ohai_spec.rb +84 -84
  1698. data/spec/unit/provider/osx_profile_spec.rb +257 -257
  1699. data/spec/unit/provider/package/apt_spec.rb +632 -632
  1700. data/spec/unit/provider/package/bff_spec.rb +187 -187
  1701. data/spec/unit/provider/package/cab_spec.rb +272 -272
  1702. data/spec/unit/provider/package/chocolatey_spec.rb +507 -507
  1703. data/spec/unit/provider/package/deb_spec.rb +135 -135
  1704. data/spec/unit/provider/package/dnf/python_helper_spec.rb +29 -29
  1705. data/spec/unit/provider/package/dpkg_spec.rb +314 -314
  1706. data/spec/unit/provider/package/freebsd/pkgng_spec.rb +147 -147
  1707. data/spec/unit/provider/package/freebsd/port_spec.rb +151 -151
  1708. data/spec/unit/provider/package/homebrew_spec.rb +293 -293
  1709. data/spec/unit/provider/package/ips_spec.rb +233 -233
  1710. data/spec/unit/provider/package/macports_spec.rb +203 -203
  1711. data/spec/unit/provider/package/msu_spec.rb +283 -283
  1712. data/spec/unit/provider/package/openbsd_spec.rb +132 -132
  1713. data/spec/unit/provider/package/pacman_spec.rb +194 -194
  1714. data/spec/unit/provider/package/paludis_spec.rb +134 -134
  1715. data/spec/unit/provider/package/portage_spec.rb +179 -179
  1716. data/spec/unit/provider/package/powershell_spec.rb +501 -501
  1717. data/spec/unit/provider/package/rpm_spec.rb +440 -440
  1718. data/spec/unit/provider/package/rubygems_spec.rb +981 -981
  1719. data/spec/unit/provider/package/smartos_spec.rb +110 -110
  1720. data/spec/unit/provider/package/snap_spec.rb +208 -208
  1721. data/spec/unit/provider/package/solaris_spec.rb +167 -167
  1722. data/spec/unit/provider/package/windows/exe_spec.rb +201 -201
  1723. data/spec/unit/provider/package/windows/msi_spec.rb +168 -168
  1724. data/spec/unit/provider/package/windows/registry_uninstall_entry_spec.rb +78 -78
  1725. data/spec/unit/provider/package/windows_spec.rb +463 -463
  1726. data/spec/unit/provider/package/yum/python_helper_spec.rb +29 -29
  1727. data/spec/unit/provider/package/yum/yum_cache_spec.rb +109 -109
  1728. data/spec/unit/provider/package/zypper_spec.rb +478 -478
  1729. data/spec/unit/provider/package_spec.rb +791 -791
  1730. data/spec/unit/provider/powershell_script_spec.rb +125 -125
  1731. data/spec/unit/provider/registry_key_spec.rb +487 -487
  1732. data/spec/unit/provider/remote_directory_spec.rb +236 -236
  1733. data/spec/unit/provider/remote_file/cache_control_data_spec.rb +245 -245
  1734. data/spec/unit/provider/remote_file/content_spec.rb +253 -253
  1735. data/spec/unit/provider/remote_file/fetcher_spec.rb +95 -95
  1736. data/spec/unit/provider/remote_file/ftp_spec.rb +217 -217
  1737. data/spec/unit/provider/remote_file/http_spec.rb +324 -324
  1738. data/spec/unit/provider/remote_file/local_file_spec.rb +105 -105
  1739. data/spec/unit/provider/remote_file/network_file_spec.rb +50 -50
  1740. data/spec/unit/provider/remote_file/sftp_spec.rb +150 -150
  1741. data/spec/unit/provider/remote_file_spec.rb +62 -62
  1742. data/spec/unit/provider/route_spec.rb +270 -270
  1743. data/spec/unit/provider/ruby_block_spec.rb +45 -45
  1744. data/spec/unit/provider/script_spec.rb +157 -157
  1745. data/spec/unit/provider/service/aix_service_spec.rb +195 -195
  1746. data/spec/unit/provider/service/aixinit_service_spec.rb +272 -272
  1747. data/spec/unit/provider/service/arch_service_spec.rb +324 -324
  1748. data/spec/unit/provider/service/debian_service_spec.rb +249 -249
  1749. data/spec/unit/provider/service/freebsd_service_spec.rb +617 -617
  1750. data/spec/unit/provider/service/gentoo_service_spec.rb +144 -144
  1751. data/spec/unit/provider/service/init_service_spec.rb +235 -235
  1752. data/spec/unit/provider/service/insserv_service_spec.rb +75 -75
  1753. data/spec/unit/provider/service/invokercd_service_spec.rb +211 -211
  1754. data/spec/unit/provider/service/macosx_spec.rb +340 -340
  1755. data/spec/unit/provider/service/openbsd_service_spec.rb +549 -549
  1756. data/spec/unit/provider/service/redhat_spec.rb +250 -250
  1757. data/spec/unit/provider/service/simple_service_spec.rb +169 -169
  1758. data/spec/unit/provider/service/solaris_smf_service_spec.rb +292 -292
  1759. data/spec/unit/provider/service/systemd_service_spec.rb +364 -364
  1760. data/spec/unit/provider/service/upstart_service_spec.rb +351 -351
  1761. data/spec/unit/provider/service/windows_spec.rb +952 -952
  1762. data/spec/unit/provider/service_spec.rb +168 -168
  1763. data/spec/unit/provider/subversion_spec.rb +361 -361
  1764. data/spec/unit/provider/systemd_unit_spec.rb +967 -967
  1765. data/spec/unit/provider/template/content_spec.rb +169 -169
  1766. data/spec/unit/provider/template_spec.rb +87 -87
  1767. data/spec/unit/provider/user/aix_spec.rb +96 -96
  1768. data/spec/unit/provider/user/dscl_spec.rb +698 -698
  1769. data/spec/unit/provider/user/linux_spec.rb +73 -73
  1770. data/spec/unit/provider/user/pw_spec.rb +235 -235
  1771. data/spec/unit/provider/user/solaris_spec.rb +177 -177
  1772. data/spec/unit/provider/user/windows_spec.rb +197 -197
  1773. data/spec/unit/provider/user_spec.rb +478 -478
  1774. data/spec/unit/provider/whyrun_safe_ruby_block_spec.rb +46 -46
  1775. data/spec/unit/provider/windows_env_spec.rb +400 -400
  1776. data/spec/unit/provider/windows_path_spec.rb +65 -65
  1777. data/spec/unit/provider/windows_task_spec.rb +430 -430
  1778. data/spec/unit/provider/yum_repository_spec.rb +35 -35
  1779. data/spec/unit/provider/zypper_repository_spec.rb +126 -126
  1780. data/spec/unit/provider_resolver_spec.rb +900 -900
  1781. data/spec/unit/provider_spec.rb +201 -201
  1782. data/spec/unit/pure_application_spec.rb +32 -32
  1783. data/spec/unit/recipe_spec.rb +584 -584
  1784. data/spec/unit/resource/apt_package_spec.rb +66 -66
  1785. data/spec/unit/resource/apt_preference_spec.rb +57 -57
  1786. data/spec/unit/resource/apt_repository_spec.rb +92 -92
  1787. data/spec/unit/resource/apt_update_spec.rb +62 -62
  1788. data/spec/unit/resource/archive_file_spec.rb +47 -47
  1789. data/spec/unit/resource/bash_spec.rb +45 -45
  1790. data/spec/unit/resource/batch_spec.rb +46 -46
  1791. data/spec/unit/resource/bff_package_spec.rb +51 -51
  1792. data/spec/unit/resource/breakpoint_spec.rb +64 -64
  1793. data/spec/unit/resource/build_essential_spec.rb +43 -43
  1794. data/spec/unit/resource/cab_package_spec.rb +64 -64
  1795. data/spec/unit/resource/chef_gem_spec.rb +122 -122
  1796. data/spec/unit/resource/chef_handler_spec.rb +40 -40
  1797. data/spec/unit/resource/chocolatey_config_spec.rb +93 -93
  1798. data/spec/unit/resource/chocolatey_feature_spec.rb +89 -0
  1799. data/spec/unit/resource/chocolatey_package_spec.rb +91 -91
  1800. data/spec/unit/resource/chocolatey_source_spec.rb +150 -97
  1801. data/spec/unit/resource/conditional_action_not_nothing_spec.rb +45 -45
  1802. data/spec/unit/resource/conditional_spec.rb +254 -254
  1803. data/spec/unit/resource/cookbook_file_spec.rb +93 -93
  1804. data/spec/unit/resource/cron_access_spec.rb +36 -36
  1805. data/spec/unit/resource/cron_d_spec.rb +90 -90
  1806. data/spec/unit/resource/cron_spec.rb +173 -173
  1807. data/spec/unit/resource/csh_spec.rb +45 -45
  1808. data/spec/unit/resource/directory_spec.rb +69 -69
  1809. data/spec/unit/resource/dmg_package_spec.rb +39 -39
  1810. data/spec/unit/resource/dnf_package_spec.rb +108 -108
  1811. data/spec/unit/resource/dpkg_package_spec.rb +60 -60
  1812. data/spec/unit/resource/dsc_resource_spec.rb +102 -102
  1813. data/spec/unit/resource/dsc_script_spec.rb +134 -134
  1814. data/spec/unit/resource/execute_spec.rb +277 -277
  1815. data/spec/unit/resource/file/verification/systemd_unit_spec.rb +103 -103
  1816. data/spec/unit/resource/file/verification_spec.rb +147 -147
  1817. data/spec/unit/resource/file_spec.rb +127 -127
  1818. data/spec/unit/resource/freebsd_package_spec.rb +77 -77
  1819. data/spec/unit/resource/gem_package_spec.rb +67 -67
  1820. data/spec/unit/resource/git_spec.rb +62 -62
  1821. data/spec/unit/resource/group_spec.rb +165 -165
  1822. data/spec/unit/resource/homebrew_cask_spec.rb +40 -40
  1823. data/spec/unit/resource/homebrew_package_spec.rb +68 -68
  1824. data/spec/unit/resource/homebrew_tap_spec.rb +44 -44
  1825. data/spec/unit/resource/hostname_spec.rb +47 -47
  1826. data/spec/unit/resource/http_request_spec.rb +65 -65
  1827. data/spec/unit/resource/ifconfig_spec.rb +109 -109
  1828. data/spec/unit/resource/ips_package_spec.rb +54 -54
  1829. data/spec/unit/resource/kernel_module_spec.rb +43 -43
  1830. data/spec/unit/resource/ksh_spec.rb +45 -45
  1831. data/spec/unit/resource/launchd_spec.rb +40 -40
  1832. data/spec/unit/resource/link_spec.rb +124 -124
  1833. data/spec/unit/resource/locale_spec.rb +223 -223
  1834. data/spec/unit/resource/log_spec.rb +64 -64
  1835. data/spec/unit/resource/macos_user_defaults_spec.rb +35 -35
  1836. data/spec/unit/resource/macosx_service.rb +37 -37
  1837. data/spec/unit/resource/macports_package_spec.rb +51 -51
  1838. data/spec/unit/resource/mdadm_spec.rb +104 -104
  1839. data/spec/unit/resource/mount_spec.rb +178 -178
  1840. data/spec/unit/resource/msu_package_spec.rb +63 -63
  1841. data/spec/unit/resource/ohai_hint_spec.rb +44 -44
  1842. data/spec/unit/resource/ohai_spec.rb +58 -58
  1843. data/spec/unit/resource/openbsd_package_spec.rb +58 -58
  1844. data/spec/unit/resource/openssl_dhparam_spec.rb +61 -61
  1845. data/spec/unit/resource/openssl_ec_private_key_spec.rb +64 -64
  1846. data/spec/unit/resource/openssl_ec_public_key_spec.rb +43 -43
  1847. data/spec/unit/resource/openssl_rsa_private_key_spec.rb +64 -64
  1848. data/spec/unit/resource/openssl_rsa_public_key_spec.rb +43 -43
  1849. data/spec/unit/resource/openssl_x509_certificate_spec.rb +72 -72
  1850. data/spec/unit/resource/openssl_x509_crl_spec.rb +61 -61
  1851. data/spec/unit/resource/openssl_x509_request.rb +68 -68
  1852. data/spec/unit/resource/osx_profile_spec.rb +60 -60
  1853. data/spec/unit/resource/package_spec.rb +98 -98
  1854. data/spec/unit/resource/pacman_package_spec.rb +46 -46
  1855. data/spec/unit/resource/paludis_package_spec.rb +36 -36
  1856. data/spec/unit/resource/perl_spec.rb +44 -44
  1857. data/spec/unit/resource/portage_package_spec.rb +46 -46
  1858. data/spec/unit/resource/powershell_package_source_spec.rb +219 -219
  1859. data/spec/unit/resource/powershell_package_spec.rb +98 -98
  1860. data/spec/unit/resource/powershell_script_spec.rb +158 -158
  1861. data/spec/unit/resource/python_spec.rb +40 -40
  1862. data/spec/unit/resource/reboot_spec.rb +47 -47
  1863. data/spec/unit/resource/registry_key_spec.rb +215 -215
  1864. data/spec/unit/resource/remote_directory_spec.rb +118 -118
  1865. data/spec/unit/resource/remote_file_spec.rb +220 -220
  1866. data/spec/unit/resource/resource_notification_spec.rb +169 -169
  1867. data/spec/unit/resource/rhsm_errata_level_spec.rb +50 -50
  1868. data/spec/unit/resource/rhsm_errata_spec.rb +39 -39
  1869. data/spec/unit/resource/rhsm_register_spec.rb +204 -204
  1870. data/spec/unit/resource/rhsm_repo_spec.rb +64 -64
  1871. data/spec/unit/resource/rhsm_subscription_spec.rb +98 -98
  1872. data/spec/unit/resource/route_spec.rb +100 -100
  1873. data/spec/unit/resource/rpm_package_spec.rb +62 -62
  1874. data/spec/unit/resource/ruby_block_spec.rb +58 -58
  1875. data/spec/unit/resource/ruby_spec.rb +39 -39
  1876. data/spec/unit/resource/scm_spec.rb +173 -173
  1877. data/spec/unit/resource/script_spec.rb +52 -52
  1878. data/spec/unit/resource/service_spec.rb +199 -199
  1879. data/spec/unit/resource/smartos_package_spec.rb +52 -52
  1880. data/spec/unit/resource/snap_package_spec.rb +60 -60
  1881. data/spec/unit/resource/solaris_package_spec.rb +54 -54
  1882. data/spec/unit/resource/ssh_known_hosts_entry_spec.rb +50 -50
  1883. data/spec/unit/resource/subversion_spec.rb +91 -91
  1884. data/spec/unit/resource/sudo_spec.rb +99 -99
  1885. data/spec/unit/resource/swap_file_spec.rb +39 -39
  1886. data/spec/unit/resource/sysctl_spec.rb +54 -54
  1887. data/spec/unit/resource/systemd_unit_spec.rb +130 -130
  1888. data/spec/unit/resource/template_spec.rb +222 -222
  1889. data/spec/unit/resource/timezone_spec.rb +39 -39
  1890. data/spec/unit/resource/user_spec.rb +121 -121
  1891. data/spec/unit/resource/windows_ad_join_spec.rb +51 -51
  1892. data/spec/unit/resource/windows_auto_run_spec.rb +50 -50
  1893. data/spec/unit/resource/windows_certificate_spec.rb +83 -83
  1894. data/spec/unit/resource/windows_dfs_folder_spec.rb +39 -39
  1895. data/spec/unit/resource/windows_dfs_namespace_spec.rb +39 -39
  1896. data/spec/unit/resource/windows_dfs_server_spec.rb +34 -34
  1897. data/spec/unit/resource/windows_dns_record_spec.rb +55 -55
  1898. data/spec/unit/resource/windows_dns_zone_spec.rb +51 -51
  1899. data/spec/unit/resource/windows_env_spec.rb +75 -75
  1900. data/spec/unit/resource/windows_feature_dism_spec.rb +72 -72
  1901. data/spec/unit/resource/windows_feature_powershell_spec.rb +72 -72
  1902. data/spec/unit/resource/windows_feature_spec.rb +64 -64
  1903. data/spec/unit/resource/windows_firewall_rule_spec.rb +401 -401
  1904. data/spec/unit/resource/windows_font_spec.rb +43 -43
  1905. data/spec/unit/resource/windows_package_spec.rb +105 -105
  1906. data/spec/unit/resource/windows_pagefile_spec.rb +49 -49
  1907. data/spec/unit/resource/windows_path_spec.rb +40 -40
  1908. data/spec/unit/resource/windows_printer_port_spec.rb +62 -62
  1909. data/spec/unit/resource/windows_printer_spec.rb +52 -52
  1910. data/spec/unit/resource/windows_service_spec.rb +108 -108
  1911. data/spec/unit/resource/windows_share_spec.rb +39 -39
  1912. data/spec/unit/resource/windows_shortcut_spec.rb +38 -38
  1913. data/spec/unit/resource/windows_task_spec.rb +403 -403
  1914. data/spec/unit/resource/windows_uac_spec.rb +50 -50
  1915. data/spec/unit/resource/windows_workgroup_spec.rb +74 -74
  1916. data/spec/unit/resource/yum_package_spec.rb +150 -150
  1917. data/spec/unit/resource/yum_repository_spec.rb +152 -152
  1918. data/spec/unit/resource/zypper_package_spec.rb +51 -51
  1919. data/spec/unit/resource/zypper_repository_spec.rb +115 -115
  1920. data/spec/unit/resource_builder_spec.rb +1 -1
  1921. data/spec/unit/resource_collection/resource_list_spec.rb +137 -137
  1922. data/spec/unit/resource_collection/resource_set_spec.rb +244 -244
  1923. data/spec/unit/resource_collection/stepable_iterator_spec.rb +144 -144
  1924. data/spec/unit/resource_collection_spec.rb +408 -400
  1925. data/spec/unit/resource_definition_spec.rb +117 -117
  1926. data/spec/unit/resource_inspector_spec.rb +60 -60
  1927. data/spec/unit/resource_reporter_spec.rb +808 -808
  1928. data/spec/unit/resource_resolver_spec.rb +52 -52
  1929. data/spec/unit/resource_spec.rb +1218 -1218
  1930. data/spec/unit/role_spec.rb +361 -358
  1931. data/spec/unit/run_context/child_run_context_spec.rb +126 -126
  1932. data/spec/unit/run_context/cookbook_compiler_spec.rb +236 -236
  1933. data/spec/unit/run_context_spec.rb +241 -241
  1934. data/spec/unit/run_list/run_list_expansion_spec.rb +144 -144
  1935. data/spec/unit/run_list/run_list_item_spec.rb +117 -117
  1936. data/spec/unit/run_list/versioned_recipe_list_spec.rb +197 -197
  1937. data/spec/unit/run_list_spec.rb +312 -312
  1938. data/spec/unit/run_lock_spec.rb +140 -140
  1939. data/spec/unit/run_status_spec.rb +144 -144
  1940. data/spec/unit/runner_spec.rb +398 -398
  1941. data/spec/unit/scan_access_control_spec.rb +183 -183
  1942. data/spec/unit/search/query_spec.rb +283 -283
  1943. data/spec/unit/server_api_spec.rb +124 -124
  1944. data/spec/unit/server_api_versions_spec.rb +66 -66
  1945. data/spec/unit/shell/model_wrapper_spec.rb +96 -96
  1946. data/spec/unit/shell/shell_ext_spec.rb +153 -153
  1947. data/spec/unit/shell/shell_session_spec.rb +250 -250
  1948. data/spec/unit/shell_spec.rb +162 -162
  1949. data/spec/unit/train_transport_spec.rb +84 -79
  1950. data/spec/unit/user_spec.rb +275 -275
  1951. data/spec/unit/user_v1_spec.rb +583 -583
  1952. data/spec/unit/util/backup_spec.rb +141 -141
  1953. data/spec/unit/util/diff_spec.rb +576 -576
  1954. data/spec/unit/util/dsc/configuration_generator_spec.rb +193 -193
  1955. data/spec/unit/util/dsc/lcm_output_parser_spec.rb +248 -248
  1956. data/spec/unit/util/dsc/local_configuration_manager_spec.rb +200 -200
  1957. data/spec/unit/util/dsc/resource_store.rb +78 -78
  1958. data/spec/unit/util/editor_spec.rb +152 -152
  1959. data/spec/unit/util/file_edit_spec.rb +224 -224
  1960. data/spec/unit/util/powershell/cmdlet_spec.rb +106 -106
  1961. data/spec/unit/util/powershell/ps_credential_spec.rb +44 -44
  1962. data/spec/unit/util/selinux_spec.rb +157 -157
  1963. data/spec/unit/util/threaded_job_queue_spec.rb +51 -51
  1964. data/spec/unit/util/windows/logon_session_spec.rb +285 -285
  1965. data/spec/unit/version/platform_spec.rb +60 -60
  1966. data/spec/unit/version_class_spec.rb +171 -171
  1967. data/spec/unit/version_constraint/platform_spec.rb +45 -45
  1968. data/spec/unit/version_constraint_spec.rb +179 -179
  1969. data/spec/unit/version_string_spec.rb +79 -79
  1970. data/spec/unit/win32/error_spec.rb +77 -77
  1971. data/spec/unit/win32/link_spec.rb +73 -73
  1972. data/spec/unit/win32/registry_spec.rb +394 -394
  1973. data/spec/unit/win32/security_spec.rb +134 -134
  1974. data/spec/unit/windows_service_spec.rb +118 -118
  1975. data/tasks/.DS_Store +0 -0
  1976. data/tasks/announce.rb +51 -51
  1977. data/tasks/bin/run_external_test +39 -33
  1978. data/tasks/dependencies.rb +58 -58
  1979. data/tasks/docs.rb +337 -0
  1980. data/tasks/rspec.rb +90 -90
  1981. data/tasks/templates/release.md.erb +34 -34
  1982. metadata +41 -7
  1983. data/lib/chef/mixin/train_or_shell.rb +0 -83
@@ -1,216 +1,226 @@
1
- #
2
- # Copyright:: Copyright (c) 2019 Chef Software Inc.
3
- # License:: Apache License, Version 2.0
4
- #
5
- # Licensed under the Apache License, Version 2.0 (the "License");
6
- # you may not use this file except in compliance with the License.
7
- # You may obtain a copy of the License at
8
- #
9
- # http://www.apache.org/licenses/LICENSE-2.0
10
- #
11
- # Unless required by applicable law or agreed to in writing, software
12
- # distributed under the License is distributed on an "AS IS" BASIS,
13
- # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14
- # See the License for the specific language governing permissions and
15
- # limitations under the License.
16
- #
17
-
18
- require "spec_helper"
19
- require "ostruct"
20
- require "chef/knife/bootstrap/train_connector"
21
-
22
- describe Chef::Knife::Bootstrap::TrainConnector do
23
- let(:protocol) { "mock" }
24
- let(:family) { "unknown" }
25
- let(:release) { "unknown" } # version
26
- let(:name) { "unknown" }
27
- let(:arch) { "x86_64" }
28
- let(:connection_opts) { {} } # connection opts
29
- let(:host_url) { "mock://user1@example.com" }
30
- let(:mock_connection) { true }
31
-
32
- subject do
33
- # Example groups can still override by setting explicitly it in 'connection_opts'
34
- tc = Chef::Knife::Bootstrap::TrainConnector.new(host_url, protocol, connection_opts)
35
- tc
36
- end
37
-
38
- before(:each) do
39
- if mock_connection
40
- subject.connect!
41
- subject.connection.mock_os(
42
- family: family,
43
- name: name,
44
- release: release,
45
- arch: arch
46
- )
47
- end
48
- end
49
-
50
- describe "platform helpers" do
51
- context "on linux" do
52
- let(:family) { "debian" }
53
- let(:name) { "ubuntu" }
54
- it "reports that it is linux and unix, because that is how train classifies it" do
55
- expect(subject.unix?).to eq true
56
- expect(subject.linux?).to eq true
57
- expect(subject.windows?).to eq false
58
- end
59
- end
60
- context "on unix" do
61
- let(:family) { "os" }
62
- let(:name) { "mac_os_x" }
63
- it "reports only a unix OS" do
64
- expect(subject.unix?).to eq true
65
- expect(subject.linux?).to eq false
66
- expect(subject.windows?).to eq false
67
- end
68
- end
69
- context "on windows" do
70
- let(:family) { "windows" }
71
- let(:name) { "windows" }
72
- it "reports only a windows OS" do
73
- expect(subject.unix?).to eq false
74
- expect(subject.linux?).to eq false
75
- expect(subject.windows?).to eq true
76
- end
77
- end
78
- end
79
-
80
- describe "#connect!" do
81
- it "establishes the connection to the remote host by waiting for it" do
82
- expect(subject.connection).to receive(:wait_until_ready)
83
- subject.connect!
84
- end
85
- end
86
-
87
- describe "#initialize" do
88
- let(:mock_connection) { false }
89
-
90
- context "when provided target is a proper URL" do
91
- let(:protocol) { "ssh" }
92
- let(:host_url) { "mock://user1@localhost:2200" }
93
- it "correctly configures the instance from the URL" do
94
- expect(subject.config[:backend]).to eq "mock"
95
- expect(subject.config[:port]).to eq 2200
96
- expect(subject.config[:host]).to eq "localhost"
97
- expect(subject.config[:user]).to eq "user1"
98
- end
99
-
100
- context "and conflicting options are given" do
101
- let(:connection_opts) { { user: "user2", host: "example.com", port: 15 } }
102
- it "resolves them from the URI" do
103
- expect(subject.config[:backend]).to eq "mock"
104
- expect(subject.config[:port]).to eq 2200
105
- expect(subject.config[:host]).to eq "localhost"
106
- expect(subject.config[:user]).to eq "user1"
107
- end
108
- end
109
- end
110
-
111
- context "when provided target is just a hostname" do
112
- let(:host_url) { "localhost" }
113
- let(:protocol) { "mock" }
114
- it "correctly sets backend protocol from the default" do
115
- expect(subject.config[:backend]).to eq "mock"
116
- end
117
-
118
- context "and options have been provided that are supported by the transport" do
119
- let(:protocol) { "ssh" }
120
- let(:connection_opts) { { port: 15, user: "user2" } }
121
-
122
- it "sets hostname and transport from arguments and provided fields from options" do
123
- expect(subject.config[:backend]).to eq "ssh"
124
- expect(subject.config[:host]).to eq "localhost"
125
- expect(subject.config[:user]).to eq "user2"
126
- expect(subject.config[:port]).to eq 15
127
- end
128
-
129
- end
130
-
131
- end
132
-
133
- context "when provided target is just a an IP address" do
134
- let(:host_url) { "127.0.0.1" }
135
- let(:protocol) { "mock" }
136
- it "correctly sets backend protocol from the default" do
137
- expect(subject.config[:backend]).to eq "mock"
138
- end
139
- end
140
- end
141
-
142
- describe "#temp_dir" do
143
- context "under windows" do
144
- let(:family) { "windows" }
145
- let(:name) { "windows" }
146
-
147
- it "uses the windows command to create the temp dir" do
148
- expected_command = Chef::Knife::Bootstrap::TrainConnector::MKTEMP_WIN_COMMAND
149
- expect(subject).to receive(:run_command!).with(expected_command)
150
- .and_return double("result", stdout: "C:/a/path")
151
- expect(subject.temp_dir).to eq "C:/a/path"
152
- end
153
-
154
- end
155
- context "under linux and unix-like" do
156
- let(:family) { "debian" }
157
- let(:name) { "ubuntu" }
158
- it "uses the *nix command to create the temp dir and sets ownership to logged-in user" do
159
- expected_command = Chef::Knife::Bootstrap::TrainConnector::MKTEMP_NIX_COMMAND
160
- expect(subject).to receive(:run_command!).with(expected_command)
161
- .and_return double("result", stdout: "/a/path")
162
- expect(subject).to receive(:run_command!).with("chown user1 '/a/path'")
163
- expect(subject.temp_dir).to eq "/a/path"
164
- end
165
-
166
- end
167
- end
168
- context "#upload_file_content!" do
169
- it "creates a local file with expected content and uploads it" do
170
- expect(subject).to receive(:upload_file!) do |local_path, remote_path|
171
- expect(File.read(local_path)).to eq "test data"
172
- expect(remote_path).to eq "/target/path"
173
- end
174
- subject.upload_file_content!("test data", "/target/path")
175
- end
176
- end
177
-
178
- context "del_file" do
179
- context "on windows" do
180
- let(:family) { "windows" }
181
- let(:name) { "windows" }
182
- it "deletes the file with a windows command" do
183
- expect(subject).to receive(:run_command!) do |cmd, &_handler|
184
- expect(cmd).to match(/Test-Path "deleteme\.txt".*/)
185
- end
186
- subject.del_file!("deleteme.txt")
187
- end
188
- end
189
- context "on unix-like" do
190
- let(:family) { "debian" }
191
- let(:name) { "ubuntu" }
192
- it "deletes the file with a windows command" do
193
- expect(subject).to receive(:run_command!) do |cmd, &_handler|
194
- expect(cmd).to match(/rm -f "deleteme\.txt".*/)
195
- end
196
- subject.del_file!("deleteme.txt")
197
- end
198
- end
199
- end
200
-
201
- context "#run_command!" do
202
- it "raises a RemoteExecutionFailed when the remote execution failed" do
203
- command_result = double("results", stdout: "", stderr: "failed", exit_status: 1)
204
- expect(subject).to receive(:run_command).and_return command_result
205
-
206
- expect { subject.run_command!("test") }.to raise_error do |e|
207
- expect(e.hostname).to eq subject.hostname
208
- expect(e.class).to eq Chef::Knife::Bootstrap::RemoteExecutionFailed
209
- expect(e.stderr).to eq "failed"
210
- expect(e.stdout).to eq ""
211
- expect(e.exit_status).to eq 1
212
- end
213
- end
214
- end
215
-
216
- end
1
+ #
2
+ # Copyright:: Copyright (c) 2019 Chef Software Inc.
3
+ # License:: Apache License, Version 2.0
4
+ #
5
+ # Licensed under the Apache License, Version 2.0 (the "License");
6
+ # you may not use this file except in compliance with the License.
7
+ # You may obtain a copy of the License at
8
+ #
9
+ # http://www.apache.org/licenses/LICENSE-2.0
10
+ #
11
+ # Unless required by applicable law or agreed to in writing, software
12
+ # distributed under the License is distributed on an "AS IS" BASIS,
13
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14
+ # See the License for the specific language governing permissions and
15
+ # limitations under the License.
16
+ #
17
+
18
+ require "spec_helper"
19
+ require "ostruct"
20
+ require "chef/knife/bootstrap/train_connector"
21
+
22
+ describe Chef::Knife::Bootstrap::TrainConnector do
23
+ let(:protocol) { "mock" }
24
+ let(:family) { "unknown" }
25
+ let(:release) { "unknown" } # version
26
+ let(:name) { "unknown" }
27
+ let(:arch) { "x86_64" }
28
+ let(:connection_opts) { {} } # connection opts
29
+ let(:host_url) { "mock://user1@example.com" }
30
+ let(:mock_connection) { true }
31
+
32
+ subject do
33
+ # Example groups can still override by setting explicitly it in 'connection_opts'
34
+ tc = Chef::Knife::Bootstrap::TrainConnector.new(host_url, protocol, connection_opts)
35
+ tc
36
+ end
37
+
38
+ before(:each) do
39
+ if mock_connection
40
+ subject.connect!
41
+ subject.connection.mock_os(
42
+ family: family,
43
+ name: name,
44
+ release: release,
45
+ arch: arch
46
+ )
47
+ end
48
+ end
49
+
50
+ describe "platform helpers" do
51
+ context "on linux" do
52
+ let(:family) { "debian" }
53
+ let(:name) { "ubuntu" }
54
+ it "reports that it is linux and unix, because that is how train classifies it" do
55
+ expect(subject.unix?).to eq true
56
+ expect(subject.linux?).to eq true
57
+ expect(subject.windows?).to eq false
58
+ end
59
+ end
60
+ context "on unix" do
61
+ let(:family) { "os" }
62
+ let(:name) { "mac_os_x" }
63
+ it "reports only a unix OS" do
64
+ expect(subject.unix?).to eq true
65
+ expect(subject.linux?).to eq false
66
+ expect(subject.windows?).to eq false
67
+ end
68
+ end
69
+ context "on windows" do
70
+ let(:family) { "windows" }
71
+ let(:name) { "windows" }
72
+ it "reports only a windows OS" do
73
+ expect(subject.unix?).to eq false
74
+ expect(subject.linux?).to eq false
75
+ expect(subject.windows?).to eq true
76
+ end
77
+ end
78
+ end
79
+
80
+ describe "#connect!" do
81
+ it "establishes the connection to the remote host by waiting for it" do
82
+ expect(subject.connection).to receive(:wait_until_ready)
83
+ subject.connect!
84
+ end
85
+ end
86
+
87
+ describe "#initialize" do
88
+ let(:mock_connection) { false }
89
+
90
+ context "when provided target is a proper URL" do
91
+ let(:protocol) { "ssh" }
92
+ let(:host_url) { "mock://user1@localhost:2200" }
93
+ it "correctly configures the instance from the URL" do
94
+ expect(subject.config[:backend]).to eq "mock"
95
+ expect(subject.config[:port]).to eq 2200
96
+ expect(subject.config[:host]).to eq "localhost"
97
+ expect(subject.config[:user]).to eq "user1"
98
+ end
99
+
100
+ context "and conflicting options are given" do
101
+ let(:connection_opts) { { user: "user2", host: "example.com", port: 15 } }
102
+ it "resolves them from the URI" do
103
+ expect(subject.config[:backend]).to eq "mock"
104
+ expect(subject.config[:port]).to eq 2200
105
+ expect(subject.config[:host]).to eq "localhost"
106
+ expect(subject.config[:user]).to eq "user1"
107
+ end
108
+ end
109
+ end
110
+
111
+ context "when provided target is just a hostname" do
112
+ let(:host_url) { "localhost" }
113
+ let(:protocol) { "mock" }
114
+ it "correctly sets backend protocol from the default" do
115
+ expect(subject.config[:backend]).to eq "mock"
116
+ end
117
+
118
+ context "and options have been provided that are supported by the transport" do
119
+ let(:protocol) { "ssh" }
120
+ let(:connection_opts) { { port: 15, user: "user2" } }
121
+
122
+ it "sets hostname and transport from arguments and provided fields from options" do
123
+ expect(subject.config[:backend]).to eq "ssh"
124
+ expect(subject.config[:host]).to eq "localhost"
125
+ expect(subject.config[:user]).to eq "user2"
126
+ expect(subject.config[:port]).to eq 15
127
+ end
128
+
129
+ end
130
+
131
+ end
132
+
133
+ context "when provided target is just a an IP address" do
134
+ let(:host_url) { "127.0.0.1" }
135
+ let(:protocol) { "mock" }
136
+ it "correctly sets backend protocol from the default" do
137
+ expect(subject.config[:backend]).to eq "mock"
138
+ end
139
+ end
140
+ end
141
+
142
+ describe "#temp_dir" do
143
+ context "under windows" do
144
+ let(:family) { "windows" }
145
+ let(:name) { "windows" }
146
+
147
+ it "uses the windows command to create the temp dir" do
148
+ expected_command = Chef::Knife::Bootstrap::TrainConnector::MKTEMP_WIN_COMMAND
149
+ expect(subject).to receive(:run_command!).with(expected_command)
150
+ .and_return double("result", stdout: "C:/a/path")
151
+ expect(subject.temp_dir).to eq "C:/a/path"
152
+ end
153
+
154
+ end
155
+ context "under linux and unix-like" do
156
+ let(:family) { "debian" }
157
+ let(:name) { "ubuntu" }
158
+ it "uses the *nix command to create the temp dir and sets ownership to logged-in user" do
159
+ expected_command = Chef::Knife::Bootstrap::TrainConnector::MKTEMP_NIX_COMMAND
160
+ expect(subject).to receive(:run_command!).with(expected_command)
161
+ .and_return double("result", stdout: "/a/path")
162
+ expect(subject).to receive(:run_command!).with("chown user1 '/a/path'")
163
+ expect(subject.temp_dir).to eq "/a/path"
164
+ end
165
+
166
+ context "with noise in stderr" do
167
+ it "uses the *nix command to create the temp dir and sets ownership to logged-in user" do
168
+ expected_command = Chef::Knife::Bootstrap::TrainConnector::MKTEMP_NIX_COMMAND
169
+ expect(subject).to receive(:run_command!).with(expected_command)
170
+ .and_return double("result", stdout: "sudo: unable to resolve host hostname.localhost\r\n" + "/a/path\r\n")
171
+ expect(subject).to receive(:run_command!).with("chown user1 '/a/path'")
172
+ expect(subject.temp_dir).to eq "/a/path"
173
+ end
174
+ end
175
+ end
176
+ end
177
+ context "#upload_file_content!" do
178
+ it "creates a local file with expected content and uploads it" do
179
+ expect(subject).to receive(:upload_file!) do |local_path, remote_path|
180
+ expect(File.read(local_path)).to eq "test data"
181
+ expect(remote_path).to eq "/target/path"
182
+ end
183
+ expect_any_instance_of(Tempfile).to receive(:binmode)
184
+ subject.upload_file_content!("test data", "/target/path")
185
+ end
186
+ end
187
+
188
+ context "del_file" do
189
+ context "on windows" do
190
+ let(:family) { "windows" }
191
+ let(:name) { "windows" }
192
+ it "deletes the file with a windows command" do
193
+ expect(subject).to receive(:run_command!) do |cmd, &_handler|
194
+ expect(cmd).to match(/Test-Path "deleteme\.txt".*/)
195
+ end
196
+ subject.del_file!("deleteme.txt")
197
+ end
198
+ end
199
+ context "on unix-like" do
200
+ let(:family) { "debian" }
201
+ let(:name) { "ubuntu" }
202
+ it "deletes the file with a windows command" do
203
+ expect(subject).to receive(:run_command!) do |cmd, &_handler|
204
+ expect(cmd).to match(/rm -f "deleteme\.txt".*/)
205
+ end
206
+ subject.del_file!("deleteme.txt")
207
+ end
208
+ end
209
+ end
210
+
211
+ context "#run_command!" do
212
+ it "raises a RemoteExecutionFailed when the remote execution failed" do
213
+ command_result = double("results", stdout: "", stderr: "failed", exit_status: 1)
214
+ expect(subject).to receive(:run_command).and_return command_result
215
+
216
+ expect { subject.run_command!("test") }.to raise_error do |e|
217
+ expect(e.hostname).to eq subject.hostname
218
+ expect(e.class).to eq Chef::Knife::Bootstrap::RemoteExecutionFailed
219
+ expect(e.stderr).to eq "failed"
220
+ expect(e.stdout).to eq ""
221
+ expect(e.exit_status).to eq 1
222
+ end
223
+ end
224
+ end
225
+
226
+ end
@@ -1,2197 +1,2167 @@
1
- #
2
- # Author:: Ian Meyer (<ianmmeyer@gmail.com>)
3
- # Copyright:: Copyright 2010-2016, Ian Meyer
4
- # License:: Apache License, Version 2.0
5
- #
6
- # Licensed under the Apache License, Version 2.0 (the "License");
7
- # you may not use this file except in compliance with the License.
8
- # You may obtain a copy of the License at
9
- #
10
- # http://www.apache.org/licenses/LICENSE-2.0
11
- #
12
- # Unless required by applicable law or agreed to in writing, software
13
- # distributed under the License is distributed on an "AS IS" BASIS,
14
- # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15
- # See the License for the specific language governing permissions and
16
- # limitations under the License.
17
- #
18
-
19
- require "spec_helper"
20
-
21
- Chef::Knife::Bootstrap.load_deps
22
-
23
- describe Chef::Knife::Bootstrap do
24
- let(:bootstrap_template) { nil }
25
- let(:stderr) { StringIO.new }
26
- let(:bootstrap_cli_options) { [ ] }
27
- let(:linux_test) { true }
28
- let(:windows_test) { false }
29
- let(:linux_test) { false }
30
- let(:unix_test) { false }
31
- let(:ssh_test) { false }
32
-
33
- let(:connection) do
34
- double("TrainConnector",
35
- windows?: windows_test,
36
- linux?: linux_test,
37
- unix?: unix_test) end
38
-
39
- let(:knife) do
40
- Chef::Log.logger = Logger.new(StringIO.new)
41
- Chef::Config[:knife][:bootstrap_template] = bootstrap_template unless bootstrap_template.nil?
42
-
43
- k = Chef::Knife::Bootstrap.new(bootstrap_cli_options)
44
- allow(k.ui).to receive(:stderr).and_return(stderr)
45
- allow(k).to receive(:encryption_secret_provided_ignore_encrypt_flag?).and_return(false)
46
- allow(k).to receive(:connection).and_return connection
47
- k.merge_configs
48
- k
49
- end
50
-
51
- context "#check_license" do
52
- let(:acceptor) { instance_double(LicenseAcceptance::Acceptor) }
53
-
54
- before do
55
- expect(LicenseAcceptance::Acceptor).to receive(:new).and_return(acceptor)
56
- end
57
-
58
- describe "when a license is not required" do
59
- it "does not set the chef_license" do
60
- expect(acceptor).to receive(:license_required?).and_return(false)
61
- knife.check_license
62
- expect(Chef::Config[:chef_license]).to eq(nil)
63
- end
64
- end
65
-
66
- describe "when a license is required" do
67
- it "sets the chef_license" do
68
- expect(acceptor).to receive(:license_required?).and_return(true)
69
- expect(acceptor).to receive(:id_from_mixlib).and_return("id")
70
- expect(acceptor).to receive(:check_and_persist)
71
- expect(acceptor).to receive(:acceptance_value).and_return("accept-no-persist")
72
- knife.check_license
73
- expect(Chef::Config[:chef_license]).to eq("accept-no-persist")
74
- end
75
- end
76
- end
77
-
78
- context "#bootstrap_template" do
79
- it "should default to chef-full" do
80
- expect(knife.bootstrap_template).to be_a_kind_of(String)
81
- expect(File.basename(knife.bootstrap_template)).to eq("chef-full")
82
- end
83
- end
84
-
85
- context "#render_template - when using the chef-full default template" do
86
- let(:rendered_template) do
87
- knife.merge_configs
88
- knife.render_template
89
- end
90
-
91
- it "should render client.rb" do
92
- expect(rendered_template).to match("cat > /etc/chef/client.rb <<'EOP'")
93
- expect(rendered_template).to match("chef_server_url \"https://localhost:443\"")
94
- expect(rendered_template).to match("validation_client_name \"chef-validator\"")
95
- expect(rendered_template).to match("log_location STDOUT")
96
- end
97
-
98
- it "should render first-boot.json" do
99
- expect(rendered_template).to match("cat > /etc/chef/first-boot.json <<'EOP'")
100
- expect(rendered_template).to match('{"run_list":\[\]}')
101
- end
102
-
103
- context "and encrypted_data_bag_secret was provided" do
104
- it "should render encrypted_data_bag_secret file" do
105
- expect(knife).to receive(:encryption_secret_provided_ignore_encrypt_flag?).and_return(true)
106
- expect(knife).to receive(:read_secret).and_return("secrets")
107
- expect(rendered_template).to match("cat > /etc/chef/encrypted_data_bag_secret <<'EOP'")
108
- expect(rendered_template).to match('{"run_list":\[\]}')
109
- expect(rendered_template).to match(%r{secrets})
110
- end
111
- end
112
- end
113
-
114
- context "with --bootstrap-vault-item" do
115
- let(:bootstrap_cli_options) { [ "--bootstrap-vault-item", "vault1:item1", "--bootstrap-vault-item", "vault1:item2", "--bootstrap-vault-item", "vault2:item1" ] }
116
- it "sets the knife config cli option correctly" do
117
- expect(knife.config[:bootstrap_vault_item]).to eq({ "vault1" => %w{item1 item2}, "vault2" => ["item1"] })
118
- end
119
- end
120
-
121
- context "with --bootstrap-preinstall-command" do
122
- command = "while sudo fuser /var/lib/dpkg/lock >/dev/null 2>&1; do\n echo 'waiting for dpkg lock';\n sleep 1;\n done;"
123
- let(:bootstrap_cli_options) { [ "--bootstrap-preinstall-command", command ] }
124
- let(:rendered_template) do
125
- knife.merge_configs
126
- knife.render_template
127
- end
128
- it "configures the preinstall command in the bootstrap template correctly" do
129
- expect(rendered_template).to match(%r{command})
130
- end
131
- end
132
-
133
- context "with --bootstrap-proxy" do
134
- let(:bootstrap_cli_options) { [ "--bootstrap-proxy", "1.1.1.1" ] }
135
- let(:rendered_template) do
136
- knife.merge_configs
137
- knife.render_template
138
- end
139
- it "configures the https_proxy environment variable in the bootstrap template correctly" do
140
- expect(rendered_template).to match(%r{https_proxy="1.1.1.1" export https_proxy})
141
- end
142
- end
143
-
144
- context "with --bootstrap-no-proxy" do
145
- let(:bootstrap_cli_options) { [ "--bootstrap-no-proxy", "localserver" ] }
146
- let(:rendered_template) do
147
- knife.merge_configs
148
- knife.render_template
149
- end
150
- it "configures the https_proxy environment variable in the bootstrap template correctly" do
151
- expect(rendered_template).to match(%r{no_proxy="localserver" export no_proxy})
152
- end
153
- end
154
-
155
- context "with :bootstrap_template and :template_file cli options" do
156
- let(:bootstrap_cli_options) { [ "--bootstrap-template", "my-template", "other-template" ] }
157
-
158
- it "should select bootstrap template" do
159
- expect(File.basename(knife.bootstrap_template)).to eq("my-template")
160
- end
161
- end
162
-
163
- context "when finding templates" do
164
- context "when :bootstrap_template config is set to a file" do
165
- context "that doesn't exist" do
166
- let(:bootstrap_template) { "/opt/blah/not/exists/template.erb" }
167
-
168
- it "raises an error" do
169
- expect { knife.find_template }.to raise_error(Errno::ENOENT)
170
- end
171
- end
172
-
173
- context "that exists" do
174
- let(:bootstrap_template) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "test.erb")) }
175
-
176
- it "loads the given file as the template" do
177
- expect(Chef::Log).to receive(:trace)
178
- expect(knife.find_template).to eq(File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "test.erb")))
179
- end
180
- end
181
- end
182
-
183
- context "when :bootstrap_template config is set to a template name" do
184
- let(:bootstrap_template) { "example" }
185
-
186
- let(:builtin_template_path) { File.expand_path(File.join(File.dirname(__FILE__), "../../../lib/chef/knife/bootstrap/templates", "example.erb")) }
187
-
188
- let(:chef_config_dir_template_path) { "/knife/chef/config/bootstrap/example.erb" }
189
-
190
- let(:env_home_template_path) { "/env/home/.chef/bootstrap/example.erb" }
191
-
192
- let(:gem_files_template_path) { "/Users/schisamo/.rvm/gems/ruby-1.9.2-p180@chef-0.10/gems/knife-windows-0.5.4/lib/chef/knife/bootstrap/fake-bootstrap-template.erb" }
193
-
194
- def configure_chef_config_dir
195
- allow(Chef::Knife).to receive(:chef_config_dir).and_return("/knife/chef/config")
196
- end
197
-
198
- def configure_env_home
199
- allow(Chef::Util::PathHelper).to receive(:home).with(".chef", "bootstrap", "example.erb").and_yield(env_home_template_path)
200
- end
201
-
202
- def configure_gem_files
203
- allow(Gem).to receive(:find_files).and_return([ gem_files_template_path ])
204
- end
205
-
206
- before(:each) do
207
- expect(File).to receive(:exists?).with(bootstrap_template).and_return(false)
208
- end
209
-
210
- context "when file is available everywhere" do
211
- before do
212
- configure_chef_config_dir
213
- configure_env_home
214
- configure_gem_files
215
-
216
- expect(File).to receive(:exists?).with(builtin_template_path).and_return(true)
217
- end
218
-
219
- it "should load the template from built-in templates" do
220
- expect(knife.find_template).to eq(builtin_template_path)
221
- end
222
- end
223
-
224
- context "when file is available in chef_config_dir" do
225
- before do
226
- configure_chef_config_dir
227
- configure_env_home
228
- configure_gem_files
229
-
230
- expect(File).to receive(:exists?).with(builtin_template_path).and_return(false)
231
- expect(File).to receive(:exists?).with(chef_config_dir_template_path).and_return(true)
232
-
233
- it "should load the template from chef_config_dir" do
234
- knife.find_template.should eq(chef_config_dir_template_path)
235
- end
236
- end
237
- end
238
-
239
- context "when file is available in home directory" do
240
- before do
241
- configure_chef_config_dir
242
- configure_env_home
243
- configure_gem_files
244
-
245
- expect(File).to receive(:exists?).with(builtin_template_path).and_return(false)
246
- expect(File).to receive(:exists?).with(chef_config_dir_template_path).and_return(false)
247
- expect(File).to receive(:exists?).with(env_home_template_path).and_return(true)
248
- end
249
-
250
- it "should load the template from chef_config_dir" do
251
- expect(knife.find_template).to eq(env_home_template_path)
252
- end
253
- end
254
-
255
- context "when file is available in Gem files" do
256
- before do
257
- configure_chef_config_dir
258
- configure_env_home
259
- configure_gem_files
260
-
261
- expect(File).to receive(:exists?).with(builtin_template_path).and_return(false)
262
- expect(File).to receive(:exists?).with(chef_config_dir_template_path).and_return(false)
263
- expect(File).to receive(:exists?).with(env_home_template_path).and_return(false)
264
- expect(File).to receive(:exists?).with(gem_files_template_path).and_return(true)
265
- end
266
-
267
- it "should load the template from Gem files" do
268
- expect(knife.find_template).to eq(gem_files_template_path)
269
- end
270
- end
271
-
272
- context "when file is available in Gem files and home dir doesn't exist" do
273
- before do
274
- configure_chef_config_dir
275
- configure_gem_files
276
- allow(Chef::Util::PathHelper).to receive(:home).with(".chef", "bootstrap", "example.erb").and_return(nil)
277
-
278
- expect(File).to receive(:exists?).with(builtin_template_path).and_return(false)
279
- expect(File).to receive(:exists?).with(chef_config_dir_template_path).and_return(false)
280
- expect(File).to receive(:exists?).with(gem_files_template_path).and_return(true)
281
- end
282
-
283
- it "should load the template from Gem files" do
284
- expect(knife.find_template).to eq(gem_files_template_path)
285
- end
286
- end
287
- end
288
- end
289
-
290
- ["-t", "--bootstrap-template"].each do |t|
291
- context "when #{t} option is given in the command line" do
292
- it "sets the knife :bootstrap_template config" do
293
- knife.parse_options([t, "blahblah"])
294
- knife.merge_configs
295
- expect(knife.bootstrap_template).to eq("blahblah")
296
- end
297
- end
298
- end
299
-
300
- context "with run_list template" do
301
- let(:bootstrap_template) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "test.erb")) }
302
-
303
- it "should return an empty run_list" do
304
- expect(knife.render_template).to eq('{"run_list":[]}')
305
- end
306
-
307
- it "should have role[base] in the run_list" do
308
- knife.parse_options(["-r", "role[base]"])
309
- knife.merge_configs
310
- expect(knife.render_template).to eq('{"run_list":["role[base]"]}')
311
- end
312
-
313
- it "should have role[base] and recipe[cupcakes] in the run_list" do
314
- knife.parse_options(["-r", "role[base],recipe[cupcakes]"])
315
- knife.merge_configs
316
- expect(knife.render_template).to eq('{"run_list":["role[base]","recipe[cupcakes]"]}')
317
- end
318
-
319
- context "with bootstrap_attribute options" do
320
- let(:jsonfile) do
321
- file = Tempfile.new (["node", ".json"])
322
- File.open(file.path, "w") { |f| f.puts '{"foo":{"bar":"baz"}}' }
323
- file
324
- end
325
-
326
- it "should have foo => {bar => baz} in the first_boot from cli" do
327
- knife.parse_options(["-j", '{"foo":{"bar":"baz"}}'])
328
- knife.merge_configs
329
- expected_hash = FFI_Yajl::Parser.new.parse('{"foo":{"bar":"baz"},"run_list":[]}')
330
- actual_hash = FFI_Yajl::Parser.new.parse(knife.render_template)
331
- expect(actual_hash).to eq(expected_hash)
332
- end
333
-
334
- it "should have foo => {bar => baz} in the first_boot from file" do
335
- knife.parse_options(["--json-attribute-file", jsonfile.path])
336
- knife.merge_configs
337
- expected_hash = FFI_Yajl::Parser.new.parse('{"foo":{"bar":"baz"},"run_list":[]}')
338
- actual_hash = FFI_Yajl::Parser.new.parse(knife.render_template)
339
- expect(actual_hash).to eq(expected_hash)
340
- jsonfile.close
341
- end
342
-
343
- it "raises a Chef::Exceptions::BootstrapCommandInputError with the proper error message" do
344
- knife.parse_options(["-j", '{"foo":{"bar":"baz"}}'])
345
- knife.parse_options(["--json-attribute-file", jsonfile.path])
346
- knife.merge_configs
347
- allow(knife).to receive(:validate_name_args!)
348
- expect(knife).to receive(:check_license)
349
-
350
- expect { knife.run }.to raise_error(Chef::Exceptions::BootstrapCommandInputError)
351
- jsonfile.close
352
- end
353
- end
354
- end
355
-
356
- context "with hints template" do
357
- let(:bootstrap_template) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "test-hints.erb")) }
358
-
359
- it "should create a hint file when told to" do
360
- knife.parse_options(["--hint", "openstack"])
361
- knife.merge_configs
362
- expect(knife.render_template).to match(/\/etc\/chef\/ohai\/hints\/openstack.json/)
363
- end
364
-
365
- it "should populate a hint file with JSON when given a file to read" do
366
- allow(::File).to receive(:read).and_return('{ "foo" : "bar" }')
367
- knife.parse_options(["--hint", "openstack=hints/openstack.json"])
368
- knife.merge_configs
369
- expect(knife.render_template).to match(/\{\"foo\":\"bar\"\}/)
370
- end
371
- end
372
-
373
- describe "specifying no_proxy with various entries" do
374
- subject(:knife) do
375
- k = described_class.new
376
- Chef::Config[:knife][:bootstrap_template] = template_file
377
- allow(k).to receive(:connection).and_return connection
378
- k.parse_options(options)
379
- k.merge_configs
380
- k
381
- end
382
-
383
- let(:options) { ["--bootstrap-no-proxy", setting, "-s", "foo"] }
384
-
385
- let(:template_file) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "no_proxy.erb")) }
386
-
387
- let(:rendered_template) do
388
- knife.render_template
389
- end
390
-
391
- context "via --bootstrap-no-proxy" do
392
- let(:setting) { "api.opscode.com" }
393
-
394
- it "renders the client.rb with a single FQDN no_proxy entry" do
395
- expect(rendered_template).to match(%r{.*no_proxy\s*"api.opscode.com".*})
396
- end
397
- end
398
-
399
- context "via --bootstrap-no-proxy multiple" do
400
- let(:setting) { "api.opscode.com,172.16.10.*" }
401
-
402
- it "renders the client.rb with comma-separated FQDN and wildcard IP address no_proxy entries" do
403
- expect(rendered_template).to match(%r{.*no_proxy\s*"api.opscode.com,172.16.10.\*".*})
404
- end
405
- end
406
-
407
- context "via --ssl-verify-mode none" do
408
- let(:options) { ["--node-ssl-verify-mode", "none"] }
409
-
410
- it "renders the client.rb with ssl_verify_mode set to :verify_none" do
411
- expect(rendered_template).to match(/ssl_verify_mode :verify_none/)
412
- end
413
- end
414
-
415
- context "via --node-ssl-verify-mode peer" do
416
- let(:options) { ["--node-ssl-verify-mode", "peer"] }
417
-
418
- it "renders the client.rb with ssl_verify_mode set to :verify_peer" do
419
- expect(rendered_template).to match(/ssl_verify_mode :verify_peer/)
420
- end
421
- end
422
-
423
- context "via --node-ssl-verify-mode all" do
424
- let(:options) { ["--node-ssl-verify-mode", "all"] }
425
-
426
- it "raises error" do
427
- expect { rendered_template }.to raise_error(RuntimeError)
428
- end
429
- end
430
-
431
- context "via --node-verify-api-cert" do
432
- let(:options) { ["--node-verify-api-cert"] }
433
-
434
- it "renders the client.rb with verify_api_cert set to true" do
435
- expect(rendered_template).to match(/verify_api_cert true/)
436
- end
437
- end
438
-
439
- context "via --no-node-verify-api-cert" do
440
- let(:options) { ["--no-node-verify-api-cert"] }
441
-
442
- it "renders the client.rb with verify_api_cert set to false" do
443
- expect(rendered_template).to match(/verify_api_cert false/)
444
- end
445
- end
446
- end
447
-
448
- describe "specifying the encrypted data bag secret key" do
449
- let(:secret) { "supersekret" }
450
- let(:options) { [] }
451
- let(:bootstrap_template) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "secret.erb")) }
452
- let(:rendered_template) do
453
- knife.parse_options(options)
454
- knife.merge_configs
455
- knife.render_template
456
- end
457
-
458
- it "creates a secret file" do
459
- expect(knife).to receive(:encryption_secret_provided_ignore_encrypt_flag?).and_return(true)
460
- expect(knife).to receive(:read_secret).and_return(secret)
461
- expect(rendered_template).to match(%r{#{secret}})
462
- end
463
-
464
- it "renders the client.rb with an encrypted_data_bag_secret entry" do
465
- expect(knife).to receive(:encryption_secret_provided_ignore_encrypt_flag?).and_return(true)
466
- expect(knife).to receive(:read_secret).and_return(secret)
467
- expect(rendered_template).to match(%r{encrypted_data_bag_secret\s*"/etc/chef/encrypted_data_bag_secret"})
468
- end
469
-
470
- end
471
-
472
- describe "when transferring trusted certificates" do
473
- let(:trusted_certs_dir) { Chef::Util::PathHelper.cleanpath(File.join(File.dirname(__FILE__), "../../data/trusted_certs")) }
474
-
475
- let(:rendered_template) do
476
- knife.merge_configs
477
- knife.render_template
478
- end
479
-
480
- before do
481
- Chef::Config[:trusted_certs_dir] = trusted_certs_dir
482
- allow(IO).to receive(:read).and_call_original
483
- allow(IO).to receive(:read).with(File.expand_path(Chef::Config[:validation_key])).and_return("")
484
- end
485
-
486
- def certificates
487
- Dir[File.join(trusted_certs_dir, "*.{crt,pem}")]
488
- end
489
-
490
- it "creates /etc/chef/trusted_certs" do
491
- expect(rendered_template).to match(%r{mkdir -p /etc/chef/trusted_certs})
492
- end
493
-
494
- it "copies the certificates in the directory" do
495
- certificates.each do |cert|
496
- expect(IO).to receive(:read).with(File.expand_path(cert))
497
- end
498
-
499
- certificates.each do |cert|
500
- expect(rendered_template).to match(%r{cat > /etc/chef/trusted_certs/#{File.basename(cert)} <<'EOP'})
501
- end
502
- end
503
-
504
- context "when :trusted_cets_dir is empty" do
505
- let(:trusted_certs_dir) { Chef::Util::PathHelper.cleanpath(File.join(File.dirname(__FILE__), "../../data/trusted_certs_empty")) }
506
- it "doesn't create /etc/chef/trusted_certs if :trusted_certs_dir is empty" do
507
- expect(rendered_template).not_to match(%r{mkdir -p /etc/chef/trusted_certs})
508
- end
509
- end
510
-
511
- end
512
-
513
- context "when doing fips things" do
514
- let(:template_file) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "no_proxy.erb")) }
515
- let(:trusted_certs_dir) { Chef::Util::PathHelper.cleanpath(File.join(File.dirname(__FILE__), "../../data/trusted_certs")) }
516
-
517
- before do
518
- Chef::Config[:knife][:bootstrap_template] = template_file
519
- end
520
-
521
- let(:rendered_template) do
522
- knife.render_template
523
- end
524
-
525
- context "when knife is in fips mode" do
526
- before do
527
- Chef::Config[:fips] = true
528
- end
529
-
530
- it "renders 'fips true'" do
531
- Chef::Config[:fips] = true
532
- expect(rendered_template).to match("fips")
533
- end
534
- end
535
-
536
- context "when knife is not in fips mode" do
537
- before do
538
- # This is required because the chef-fips pipeline does
539
- # has a default value of true for fips
540
- Chef::Config[:fips] = false
541
- end
542
-
543
- it "does not render anything about fips" do
544
- expect(rendered_template).not_to match("fips")
545
- end
546
- end
547
- end
548
-
549
- describe "when transferring client.d" do
550
-
551
- let(:rendered_template) do
552
- knife.merge_configs
553
- knife.render_template
554
- end
555
-
556
- before do
557
- Chef::Config[:client_d_dir] = client_d_dir
558
- end
559
-
560
- context "when client_d_dir is nil" do
561
- let(:client_d_dir) { nil }
562
-
563
- it "does not create /etc/chef/client.d" do
564
- expect(rendered_template).not_to match(%r{mkdir -p /etc/chef/client\.d})
565
- end
566
- end
567
-
568
- context "when client_d_dir is set" do
569
- let(:client_d_dir) do
570
- Chef::Util::PathHelper.cleanpath(
571
- File.join(File.dirname(__FILE__), "../../data/client.d_00")) end
572
-
573
- it "creates /etc/chef/client.d" do
574
- expect(rendered_template).to match("mkdir -p /etc/chef/client\.d")
575
- end
576
-
577
- context "a flat directory structure" do
578
- it "escapes single-quotes" do
579
- expect(rendered_template).to match("cat > /etc/chef/client.d/02-strings.rb <<'EOP'")
580
- expect(rendered_template).to match("something '\\\\''/foo/bar'\\\\''")
581
- end
582
-
583
- it "creates a file 00-foo.rb" do
584
- expect(rendered_template).to match("cat > /etc/chef/client.d/00-foo.rb <<'EOP'")
585
- expect(rendered_template).to match("d6f9b976-289c-4149-baf7-81e6ffecf228")
586
- end
587
- it "creates a file bar" do
588
- expect(rendered_template).to match("cat > /etc/chef/client.d/bar <<'EOP'")
589
- expect(rendered_template).to match("1 / 0")
590
- end
591
- end
592
-
593
- context "a nested directory structure" do
594
- let(:client_d_dir) do
595
- Chef::Util::PathHelper.cleanpath(
596
- File.join(File.dirname(__FILE__), "../../data/client.d_01")) end
597
- it "creates a file foo/bar.rb" do
598
- expect(rendered_template).to match("cat > /etc/chef/client.d/foo/bar.rb <<'EOP'")
599
- expect(rendered_template).to match("1 / 0")
600
- end
601
- end
602
- end
603
- end
604
-
605
- describe "#connection_protocol" do
606
- let(:host_descriptor) { "example.com" }
607
- let(:config) { {} }
608
- let(:knife_connection_protocol) { nil }
609
- before do
610
- allow(knife).to receive(:config).and_return config
611
- allow(knife).to receive(:host_descriptor).and_return host_descriptor
612
- if knife_connection_protocol
613
- Chef::Config[:knife][:connection_protocol] = knife_connection_protocol
614
- end
615
- end
616
-
617
- context "when protocol is part of the host argument" do
618
- let(:host_descriptor) { "winrm://myhost" }
619
-
620
- it "returns the value provided by the host argument" do
621
- expect(knife.connection_protocol).to eq "winrm"
622
- end
623
- end
624
-
625
- context "when protocol is provided via the CLI flag" do
626
- let(:config) { { connection_protocol: "winrm" } }
627
- it "returns that value" do
628
- expect(knife.connection_protocol).to eq "winrm"
629
- end
630
-
631
- end
632
- context "when protocol is provided via the host argument and the CLI flag" do
633
- let(:host_descriptor) { "ssh://example.com" }
634
- let(:config) { { connection_protocol: "winrm" } }
635
-
636
- it "returns the value provided by the host argument" do
637
- expect(knife.connection_protocol).to eq "ssh"
638
- end
639
- end
640
-
641
- context "when no explicit protocol is provided" do
642
- let(:config) { {} }
643
- let(:host_descriptor) { "example.com" }
644
- let(:knife_connection_protocol) { "winrm" }
645
- it "falls back to knife config" do
646
- expect(knife.connection_protocol).to eq "winrm"
647
- end
648
- context "and there is no knife bootstrap_protocol" do
649
- let(:knife_connection_protocol) { nil }
650
- it "falls back to 'ssh'" do
651
- expect(knife.connection_protocol).to eq "ssh"
652
- end
653
- end
654
- end
655
-
656
- end
657
-
658
- describe "#validate_protocol!" do
659
- let(:host_descriptor) { "example.com" }
660
- let(:config) { {} }
661
- let(:connection_protocol) { "ssh" }
662
- before do
663
- allow(knife).to receive(:config).and_return config
664
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
665
- allow(knife).to receive(:host_descriptor).and_return host_descriptor
666
- end
667
-
668
- context "when protocol is provided both in the URL and via --protocol" do
669
-
670
- context "and they do not match" do
671
- let(:connection_protocol) { "ssh" }
672
- let(:config) { { connection_protocol: "winrm" } }
673
- it "outputs an error and exits" do
674
- expect(knife.ui).to receive(:error)
675
- expect { knife.validate_protocol! }.to raise_error SystemExit
676
- end
677
- end
678
-
679
- context "and they do match" do
680
- let(:connection_protocol) { "winrm" }
681
- let(:config) { { connection_protocol: "winrm" } }
682
- it "returns true" do
683
- expect(knife.validate_protocol!).to eq true
684
- end
685
- end
686
- end
687
-
688
- context "and the protocol is supported" do
689
-
690
- Chef::Knife::Bootstrap::SUPPORTED_CONNECTION_PROTOCOLS.each do |proto|
691
- let(:connection_protocol) { proto }
692
- it "returns true for #{proto}" do
693
- expect(knife.validate_protocol!).to eq true
694
- end
695
- end
696
- end
697
-
698
- context "and the protocol is not supported" do
699
- let(:connection_protocol) { "invalid" }
700
- it "outputs an error and exits" do
701
- expect(knife.ui).to receive(:error).with(/Unsupported protocol '#{connection_protocol}'/)
702
- expect { knife.validate_protocol! }.to raise_error SystemExit
703
- end
704
- end
705
- end
706
-
707
- describe "#validate_policy_options!" do
708
-
709
- context "when only policy_name is given" do
710
-
711
- let(:bootstrap_cli_options) { %w{ --policy-name my-app-server } }
712
-
713
- it "returns an error stating that policy_name and policy_group must be given together" do
714
- expect { knife.validate_policy_options! }.to raise_error(SystemExit)
715
- expect(stderr.string).to include("ERROR: --policy-name and --policy-group must be specified together")
716
- end
717
-
718
- end
719
-
720
- context "when only policy_group is given" do
721
-
722
- let(:bootstrap_cli_options) { %w{ --policy-group staging } }
723
-
724
- it "returns an error stating that policy_name and policy_group must be given together" do
725
- expect { knife.validate_policy_options! }.to raise_error(SystemExit)
726
- expect(stderr.string).to include("ERROR: --policy-name and --policy-group must be specified together")
727
- end
728
-
729
- end
730
-
731
- context "when both policy_name and policy_group are given, but run list is also given" do
732
-
733
- let(:bootstrap_cli_options) { %w{ --policy-name my-app --policy-group staging --run-list cookbook } }
734
-
735
- it "returns an error stating that policyfile and run_list are exclusive" do
736
- expect { knife.validate_policy_options! }.to raise_error(SystemExit)
737
- expect(stderr.string).to include("ERROR: Policyfile options and --run-list are exclusive")
738
- end
739
-
740
- end
741
-
742
- context "when policy_name and policy_group are given with no conflicting options" do
743
-
744
- let(:bootstrap_cli_options) { %w{ --policy-name my-app --policy-group staging } }
745
-
746
- it "passes options validation" do
747
- expect { knife.validate_policy_options! }.to_not raise_error
748
- end
749
-
750
- it "passes them into the bootstrap context" do
751
- expect(knife.bootstrap_context.first_boot).to have_key(:policy_name)
752
- expect(knife.bootstrap_context.first_boot).to have_key(:policy_group)
753
- end
754
-
755
- it "ensures that run_list is not set in the bootstrap context" do
756
- expect(knife.bootstrap_context.first_boot).to_not have_key(:run_list)
757
- end
758
-
759
- end
760
-
761
- # https://github.com/chef/chef/issues/4131
762
- # Arguably a bug in the plugin: it shouldn't be setting this to nil, but it
763
- # worked before, so make it work now.
764
- context "when a plugin sets the run list option to nil" do
765
- before do
766
- knife.config[:run_list] = nil
767
- end
768
-
769
- it "passes options validation" do
770
- expect { knife.validate_policy_options! }.to_not raise_error
771
- end
772
- end
773
- end
774
-
775
- # TODO - this is the only cli option we validate the _option_ itself -
776
- # so we'll know if someone accidentally deletes or renames use_sudo_password
777
- # Is this worht keeping? If so, then it seems we should expand it
778
- # to cover all options.
779
- context "validating use_sudo_password option" do
780
- it "use_sudo_password contains description and long params for help" do
781
- expect(knife.options).to(have_key(:use_sudo_password)) \
782
- && expect(knife.options[:use_sudo_password][:description].to_s).not_to(eq(""))\
783
- && expect(knife.options[:use_sudo_password][:long].to_s).not_to(eq(""))
784
- end
785
- end
786
-
787
- context "#connection_opts" do
788
- let(:connection_protocol) { "ssh" }
789
- before do
790
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
791
- end
792
- context "behavioral test: " do
793
- let(:expected_connection_opts) do
794
- { base_opts: true,
795
- ssh_identity_opts: true,
796
- ssh_opts: true,
797
- gateway_opts: true,
798
- host_verify_opts: true,
799
- sudo_opts: true,
800
- winrm_opts: true }
801
- end
802
-
803
- it "queries and merges only expected configurations" do
804
- expect(knife).to receive(:base_opts).and_return({ base_opts: true })
805
- expect(knife).to receive(:host_verify_opts).and_return({ host_verify_opts: true })
806
- expect(knife).to receive(:gateway_opts).and_return({ gateway_opts: true })
807
- expect(knife).to receive(:sudo_opts).and_return({ sudo_opts: true })
808
- expect(knife).to receive(:winrm_opts).and_return({ winrm_opts: true })
809
- expect(knife).to receive(:ssh_opts).and_return({ ssh_opts: true })
810
- expect(knife).to receive(:ssh_identity_opts).and_return({ ssh_identity_opts: true })
811
- expect(knife.connection_opts).to match expected_connection_opts
812
- end
813
- end
814
-
815
- context "functional test: " do
816
- context "when protocol is winrm" do
817
- let(:connection_protocol) { "winrm" }
818
- # context "and neither CLI nor Chef::Config config entries have been provided"
819
- # end
820
- context "and all supported values are provided as Chef::Config entries" do
821
- before do
822
- # Set everything to easily identifiable and obviously fake values
823
- # to verify that Chef::Config is being sourced instead of knife.config
824
- Chef::Config[:knife][:max_wait] = 9999
825
- Chef::Config[:knife][:winrm_user] = "winbob"
826
- Chef::Config[:knife][:winrm_port] = 9999
827
- Chef::Config[:knife][:ca_trust_file] = "trust.me"
828
- Chef::Config[:knife][:kerberos_realm] = "realm"
829
- Chef::Config[:knife][:kerberos_service] = "service"
830
- Chef::Config[:knife][:winrm_auth_method] = "kerberos" # default is negotiate
831
- Chef::Config[:knife][:winrm_basic_auth_only] = true
832
- Chef::Config[:knife][:winrm_no_verify_cert] = true
833
- Chef::Config[:knife][:session_timeout] = 9999
834
- Chef::Config[:knife][:winrm_ssl] = true
835
- Chef::Config[:knife][:winrm_ssl_peer_fingerprint] = "ABCDEF"
836
- end
837
-
838
- context "and unsupported Chef::Config options are given in Chef::Config, not in CLI" do
839
- before do
840
- Chef::Config[:knife][:connection_password] = "blah"
841
- Chef::Config[:knife][:winrm_password] = "blah"
842
- end
843
- it "does not include the corresponding option in the connection options" do
844
- expect(knife.connection_opts.key?(:password)).to eq false
845
- end
846
- end
847
-
848
- context "and no CLI options have been given" do
849
- before do
850
- knife.config = {}
851
- end
852
- let(:expected_result) do
853
- {
854
- logger: Chef::Log, # not configurable
855
- ca_trust_path: "trust.me",
856
- max_wait_until_ready: 9999,
857
- operation_timeout: 9999,
858
- ssl_peer_fingerprint: "ABCDEF",
859
- winrm_transport: "kerberos",
860
- winrm_basic_auth_only: true,
861
- user: "winbob",
862
- port: 9999,
863
- self_signed: true,
864
- ssl: true,
865
- kerberos_realm: "realm",
866
- kerberos_service: "service",
867
- }
868
- end
869
-
870
- it "generates a config hash using the Chef::Config values" do
871
- expect(knife.connection_opts).to match expected_result
872
- end
873
-
874
- end
875
-
876
- context "and some CLI options have been given" do
877
- let(:expected_result) do
878
- {
879
- logger: Chef::Log, # not configurable
880
- ca_trust_path: "no trust",
881
- max_wait_until_ready: 9999,
882
- operation_timeout: 60,
883
- ssl_peer_fingerprint: "ABCDEF",
884
- winrm_transport: "kerberos",
885
- winrm_basic_auth_only: true,
886
- user: "microsoftbob",
887
- port: 12,
888
- self_signed: true,
889
- ssl: true,
890
- kerberos_realm: "realm",
891
- kerberos_service: "service",
892
- password: "lobster",
893
- }
894
- end
895
-
896
- before do
897
- knife.config[:ca_trust_file] = "no trust"
898
- knife.config[:connection_user] = "microsoftbob"
899
- knife.config[:connection_port] = 12
900
- knife.config[:winrm_port] = "13" # indirectly verify we're not looking for the wrong CLI flag
901
- knife.config[:connection_password] = "lobster"
902
- end
903
-
904
- it "generates a config hash using the CLI options when available and falling back to Chef::Config values" do
905
- expect(knife.connection_opts).to match expected_result
906
- end
907
- end
908
-
909
- context "and all CLI options have been given" do
910
- before do
911
- # We'll force kerberos vi knife.config because it
912
- # causes additional options to populate - make sure
913
- # Chef::Config is different so we can be sure that we didn't
914
- # pull in the Chef::Config value
915
- Chef::Config[:knife][:winrm_auth_method] = "negotiate"
916
- knife.config[:connection_password] = "blue"
917
- knife.config[:max_wait] = 1000
918
- knife.config[:connection_user] = "clippy"
919
- knife.config[:connection_port] = 1000
920
- knife.config[:winrm_port] = 1001 # We should not see this value get used
921
-
922
- knife.config[:ca_trust_file] = "trust.the.internet"
923
- knife.config[:kerberos_realm] = "otherrealm"
924
- knife.config[:kerberos_service] = "otherservice"
925
- knife.config[:winrm_auth_method] = "kerberos" # default is negotiate
926
- knife.config[:winrm_basic_auth_only] = false
927
- knife.config[:winrm_no_verify_cert] = false
928
- knife.config[:session_timeout] = 1000
929
- knife.config[:winrm_ssl] = false
930
- knife.config[:winrm_ssl_peer_fingerprint] = "FEDCBA"
931
- end
932
- let(:expected_result) do
933
- {
934
- logger: Chef::Log, # not configurable
935
- ca_trust_path: "trust.the.internet",
936
- max_wait_until_ready: 1000,
937
- operation_timeout: 1000,
938
- ssl_peer_fingerprint: "FEDCBA",
939
- winrm_transport: "kerberos",
940
- winrm_basic_auth_only: false,
941
- user: "clippy",
942
- port: 1000,
943
- self_signed: false,
944
- ssl: false,
945
- kerberos_realm: "otherrealm",
946
- kerberos_service: "otherservice",
947
- password: "blue",
948
- }
949
- end
950
- it "generates a config hash using the CLI options and pulling nothing from Chef::Config" do
951
- expect(knife.connection_opts).to match expected_result
952
- end
953
- end
954
- end # with underlying Chef::Config values
955
-
956
- context "and no values are provided from Chef::Config or CLI" do
957
- before do
958
- # We will use knife's actual config since these tests
959
- # have assumptions based on CLI default values
960
- knife.merge_configs
961
- end
962
- let(:expected_result) do
963
- {
964
- logger: Chef::Log,
965
- operation_timeout: 60,
966
- self_signed: false,
967
- ssl: false,
968
- ssl_peer_fingerprint: nil,
969
- winrm_basic_auth_only: false,
970
- winrm_transport: "negotiate",
971
- }
972
- end
973
- it "populates appropriate defaults" do
974
- expect(knife.connection_opts).to match expected_result
975
- end
976
- end
977
- end # winrm
978
-
979
- context "when protocol is ssh" do
980
- let(:connection_protocol) { "ssh" }
981
- # context "and neither CLI nor Chef::Config config entries have been provided"
982
- # end
983
- context "and all supported values are provided as Chef::Config entries" do
984
- before do
985
- # Set everything to easily identifiable and obviously fake values
986
- # to verify that Chef::Config is being sourced instead of knife.config
987
- Chef::Config[:knife][:max_wait] = 9999
988
- Chef::Config[:knife][:session_timeout] = 9999
989
- Chef::Config[:knife][:ssh_user] = "sshbob"
990
- Chef::Config[:knife][:ssh_port] = 9999
991
- Chef::Config[:knife][:host_key_verify] = false
992
- Chef::Config[:knife][:ssh_gateway_identity] = "/gateway.pem"
993
- Chef::Config[:knife][:ssh_gateway] = "admin@mygateway.local:1234"
994
- Chef::Config[:knife][:ssh_identity_file] = "/identity.pem"
995
- Chef::Config[:knife][:use_sudo_password] = false # We have no password.
996
- end
997
-
998
- context "and no CLI options have been given" do
999
- before do
1000
- knife.config = {}
1001
- end
1002
- let(:expected_result) do
1003
- {
1004
- logger: Chef::Log, # not configurable
1005
- max_wait_until_ready: 9999,
1006
- connection_timeout: 9999,
1007
- user: "sshbob",
1008
- bastion_host: "mygateway.local",
1009
- bastion_port: 1234,
1010
- bastion_user: "admin",
1011
- forward_agent: false,
1012
- keys_only: true,
1013
- key_files: ["/identity.pem", "/gateway.pem"],
1014
- sudo: false,
1015
- verify_host_key: false,
1016
- port: 9999,
1017
- non_interactive: true,
1018
- pty: true,
1019
- }
1020
- end
1021
-
1022
- it "generates a correct config hash using the Chef::Config values" do
1023
- expect(knife.connection_opts).to match expected_result
1024
- end
1025
- end
1026
-
1027
- context "and unsupported Chef::Config options are given in Chef::Config, not in CLI" do
1028
- before do
1029
- Chef::Config[:knife][:password] = "blah"
1030
- Chef::Config[:knife][:ssh_password] = "blah"
1031
- Chef::Config[:knife][:preserve_home] = true
1032
- Chef::Config[:knife][:use_sudo] = true
1033
- Chef::Config[:knife][:ssh_forward_agent] = "blah"
1034
- end
1035
- it "does not include the corresponding option in the connection options" do
1036
- expect(knife.connection_opts.key?(:password)).to eq false
1037
- expect(knife.connection_opts.key?(:ssh_forward_agent)).to eq false
1038
- expect(knife.connection_opts.key?(:use_sudo)).to eq false
1039
- expect(knife.connection_opts.key?(:preserve_home)).to eq false
1040
- end
1041
- end
1042
-
1043
- context "and some CLI options have been given" do
1044
- before do
1045
- knife.config[:connection_user] = "sshalice"
1046
- knife.config[:connection_port] = 12
1047
- knife.config[:ssh_port] = "13" # canary to indirectly verify we're not looking for the wrong CLI flag
1048
- knife.config[:connection_password] = "feta cheese"
1049
- knife.config[:max_wait] = 150
1050
- knife.config[:session_timeout] = 120
1051
- knife.config[:use_sudo] = true
1052
- knife.config[:use_sudo_pasword] = true
1053
- knife.config[:ssh_forward_agent] = true
1054
- end
1055
-
1056
- let(:expected_result) do
1057
- {
1058
- logger: Chef::Log, # not configurable
1059
- max_wait_until_ready: 150, # cli
1060
- connection_timeout: 120, # cli
1061
- user: "sshalice", # cli
1062
- password: "feta cheese", # cli
1063
- bastion_host: "mygateway.local", # Config
1064
- bastion_port: 1234, # Config
1065
- bastion_user: "admin", # Config
1066
- forward_agent: true, # cli
1067
- keys_only: false, # implied false from config password present
1068
- key_files: ["/identity.pem", "/gateway.pem"], # Config
1069
- sudo: true, # ccli
1070
- verify_host_key: false, # Config
1071
- port: 12, # cli
1072
- non_interactive: true,
1073
- pty: true,
1074
- }
1075
- end
1076
-
1077
- it "generates a config hash using the CLI options when available and falling back to Chef::Config values" do
1078
- expect(knife.connection_opts).to match expected_result
1079
- end
1080
- end
1081
-
1082
- context "and all CLI options have been given" do
1083
- before do
1084
- knife.config[:max_wait] = 150
1085
- knife.config[:session_timeout] = 120
1086
- knife.config[:connection_user] = "sshroot"
1087
- knife.config[:connection_port] = 1000
1088
- knife.config[:connection_password] = "blah"
1089
- knife.config[:forward_agent] = true
1090
- knife.config[:use_sudo] = true
1091
- knife.config[:use_sudo_password] = true
1092
- knife.config[:preserve_home] = true
1093
- knife.config[:use_sudo_pasword] = true
1094
- knife.config[:ssh_forward_agent] = true
1095
- knife.config[:ssh_verify_host_key] = true
1096
- knife.config[:ssh_gateway_identity] = "/gateway-identity.pem"
1097
- knife.config[:ssh_gateway] = "me@example.com:10"
1098
- knife.config[:ssh_identity_file] = "/my-identity.pem"
1099
-
1100
- # We'll set these as canaries - if one of these values shows up
1101
- # in a failed test, then the behavior of not pulling from these keys
1102
- # out of knife.config is broken:
1103
- knife.config[:ssh_user] = "do not use"
1104
- knife.config[:ssh_port] = 1001
1105
- end
1106
- let(:expected_result) do
1107
- {
1108
- logger: Chef::Log, # not configurable
1109
- max_wait_until_ready: 150,
1110
- connection_timeout: 120,
1111
- user: "sshroot",
1112
- password: "blah",
1113
- port: 1000,
1114
- bastion_host: "example.com",
1115
- bastion_port: 10,
1116
- bastion_user: "me",
1117
- forward_agent: true,
1118
- keys_only: false,
1119
- key_files: ["/my-identity.pem", "/gateway-identity.pem"],
1120
- sudo: true,
1121
- sudo_options: "-H",
1122
- sudo_password: "blah",
1123
- verify_host_key: true,
1124
- non_interactive: true,
1125
- pty: true,
1126
- }
1127
- end
1128
- it "generates a config hash using the CLI options and pulling nothing from Chef::Config" do
1129
- expect(knife.connection_opts).to match expected_result
1130
- end
1131
- end
1132
- end
1133
- context "and no values are provided from Chef::Config or CLI" do
1134
- before do
1135
- # We will use knife's actual config since these tests
1136
- # have assumptions based on CLI default values
1137
- knife.merge_configs
1138
- end
1139
-
1140
- let(:expected_result) do
1141
- {
1142
- forward_agent: false,
1143
- key_files: [],
1144
- logger: Chef::Log,
1145
- keys_only: false,
1146
- sudo: false,
1147
- verify_host_key: "always",
1148
- non_interactive: true,
1149
- pty: true,
1150
- connection_timeout: 60,
1151
- }
1152
- end
1153
- it "populates appropriate defaults" do
1154
- expect(knife.connection_opts).to match expected_result
1155
- end
1156
- end
1157
-
1158
- end # ssh
1159
- end # functional tests
1160
-
1161
- end # connection_opts
1162
-
1163
- context "#base_opts" do
1164
- let(:connection_protocol) { nil }
1165
-
1166
- before do
1167
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
1168
- end
1169
-
1170
- context "when determining knife config keys for user and port" do
1171
- let(:connection_protocol) { "fake" }
1172
- it "uses the protocol name to resolve the knife config keys" do
1173
- allow(knife).to receive(:config_value).with(:max_wait)
1174
-
1175
- expect(knife).to receive(:config_value).with(:connection_port, :fake_port)
1176
- expect(knife).to receive(:config_value).with(:connection_user, :fake_user)
1177
- knife.base_opts
1178
- end
1179
- end
1180
-
1181
- context "for all protocols" do
1182
- context "when password is provided" do
1183
- before do
1184
- knife.config[:connection_port] = 250
1185
- knife.config[:connection_user] = "test"
1186
- knife.config[:connection_password] = "opscode"
1187
- end
1188
-
1189
- let(:expected_opts) do
1190
- {
1191
- port: 250,
1192
- user: "test",
1193
- logger: Chef::Log,
1194
- password: "opscode",
1195
- }
1196
- end
1197
- it "generates the correct options" do
1198
- expect(knife.base_opts).to eq expected_opts
1199
- end
1200
-
1201
- end
1202
-
1203
- context "when password is not provided" do
1204
- before do
1205
- knife.config[:connection_port] = 250
1206
- knife.config[:connection_user] = "test"
1207
- end
1208
-
1209
- let(:expected_opts) do
1210
- {
1211
- port: 250,
1212
- user: "test",
1213
- logger: Chef::Log,
1214
- }
1215
- end
1216
- it "generates the correct options" do
1217
- expect(knife.base_opts).to eq expected_opts
1218
- end
1219
- end
1220
- end
1221
- end
1222
-
1223
- context "#host_verify_opts" do
1224
- let(:connection_protocol) { nil }
1225
- before do
1226
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
1227
- end
1228
-
1229
- context "for winrm" do
1230
- let(:connection_protocol) { "winrm" }
1231
- it "returns the expected configuration" do
1232
- knife.config[:winrm_no_verify_cert] = true
1233
- expect(knife.host_verify_opts).to eq( { self_signed: true } )
1234
- end
1235
- it "provides a correct default when no option given" do
1236
- expect(knife.host_verify_opts).to eq( { self_signed: false } )
1237
- end
1238
- end
1239
-
1240
- context "for ssh" do
1241
- let(:connection_protocol) { "ssh" }
1242
- it "returns the expected configuration" do
1243
- knife.config[:ssh_verify_host_key] = false
1244
- expect(knife.host_verify_opts).to eq( { verify_host_key: false } )
1245
- end
1246
- it "provides a correct default when no option given" do
1247
- expect(knife.host_verify_opts).to eq( { verify_host_key: "always" } )
1248
- end
1249
- end
1250
- end
1251
-
1252
- # TODO - test keys_only, password, config source behavior
1253
- context "#ssh_identity_opts" do
1254
- let(:connection_protocol) { nil }
1255
- before do
1256
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
1257
- end
1258
-
1259
- context "for winrm" do
1260
- let(:connection_protocol) { "winrm" }
1261
- it "returns an empty hash" do
1262
- expect(knife.ssh_identity_opts).to eq({})
1263
- end
1264
- end
1265
-
1266
- context "for ssh" do
1267
- let(:connection_protocol) { "ssh" }
1268
- context "when an identity file is specified" do
1269
- before do
1270
- knife.config[:ssh_identity_file] = "/identity.pem"
1271
- end
1272
- it "generates the expected configuration" do
1273
- expect(knife.ssh_identity_opts).to eq({
1274
- key_files: [ "/identity.pem" ],
1275
- keys_only: true,
1276
- })
1277
- end
1278
- context "and a password is also specified" do
1279
- before do
1280
- knife.config[:connection_password] = "blah"
1281
- end
1282
- it "generates the expected configuration (key, keys_only false)" do
1283
- expect(knife.ssh_identity_opts).to eq({
1284
- key_files: [ "/identity.pem" ],
1285
- keys_only: false,
1286
- })
1287
- end
1288
- end
1289
-
1290
- context "and a gateway is not specified" do
1291
- context "but a gateway identity file is specified" do
1292
- it "does not include the gateway identity file in keys" do
1293
- expect(knife.ssh_identity_opts).to eq({
1294
- key_files: ["/identity.pem"],
1295
- keys_only: true,
1296
- })
1297
- end
1298
-
1299
- end
1300
-
1301
- end
1302
-
1303
- context "and a gatway is specified" do
1304
- before do
1305
- knife.config[:ssh_gateway] = "example.com"
1306
- end
1307
- context "and a gateway identity file is not specified" do
1308
- it "config includes only identity file and not gateway identity" do
1309
- expect(knife.ssh_identity_opts).to eq({
1310
- key_files: [ "/identity.pem" ],
1311
- keys_only: true,
1312
- })
1313
- end
1314
- end
1315
-
1316
- context "and a gateway identity file is also specified" do
1317
- before do
1318
- knife.config[:ssh_gateway_identity] = "/gateway.pem"
1319
- end
1320
-
1321
- it "generates the expected configuration (both keys, keys_only true)" do
1322
- expect(knife.ssh_identity_opts).to eq({
1323
- key_files: [ "/identity.pem", "/gateway.pem" ],
1324
- keys_only: true,
1325
- })
1326
- end
1327
- end
1328
- end
1329
- end
1330
-
1331
- context "when no identity file is specified" do
1332
- it "generates the expected configuration (no keys, keys_only false)" do
1333
- expect(knife.ssh_identity_opts).to eq( {
1334
- key_files: [ ],
1335
- keys_only: false,
1336
- })
1337
- end
1338
- context "and a gateway with gateway identity file is specified" do
1339
- before do
1340
- knife.config[:ssh_gateway] = "host"
1341
- knife.config[:ssh_gateway_identity] = "/gateway.pem"
1342
- end
1343
-
1344
- it "generates the expected configuration (gateway key, keys_only false)" do
1345
- expect(knife.ssh_identity_opts).to eq({
1346
- key_files: [ "/gateway.pem" ],
1347
- keys_only: false,
1348
- })
1349
- end
1350
- end
1351
- end
1352
- end
1353
- end
1354
-
1355
- context "#gateway_opts" do
1356
- let(:connection_protocol) { nil }
1357
- before do
1358
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
1359
- end
1360
-
1361
- context "for winrm" do
1362
- let(:connection_protocol) { "winrm" }
1363
- it "returns an empty hash" do
1364
- expect(knife.gateway_opts).to eq({})
1365
- end
1366
- end
1367
-
1368
- context "for ssh" do
1369
- let(:connection_protocol) { "ssh" }
1370
- context "and ssh_gateway with hostname, user and port provided" do
1371
- before do
1372
- knife.config[:ssh_gateway] = "testuser@gateway:9021"
1373
- end
1374
- it "returns a proper bastion host config subset" do
1375
- expect(knife.gateway_opts).to eq({
1376
- bastion_user: "testuser",
1377
- bastion_host: "gateway",
1378
- bastion_port: 9021,
1379
- })
1380
- end
1381
- end
1382
- context "and ssh_gateway with only hostname is given" do
1383
- before do
1384
- knife.config[:ssh_gateway] = "gateway"
1385
- end
1386
- it "returns a proper bastion host config subset" do
1387
- expect(knife.gateway_opts).to eq({
1388
- bastion_user: nil,
1389
- bastion_host: "gateway",
1390
- bastion_port: nil,
1391
- })
1392
- end
1393
- end
1394
- context "and ssh_gateway with hostname and user is is given" do
1395
- before do
1396
- knife.config[:ssh_gateway] = "testuser@gateway"
1397
- end
1398
- it "returns a proper bastion host config subset" do
1399
- expect(knife.gateway_opts).to eq({
1400
- bastion_user: "testuser",
1401
- bastion_host: "gateway",
1402
- bastion_port: nil,
1403
- })
1404
- end
1405
- end
1406
-
1407
- context "and ssh_gateway with hostname and port is is given" do
1408
- before do
1409
- knife.config[:ssh_gateway] = "gateway:11234"
1410
- end
1411
- it "returns a proper bastion host config subset" do
1412
- expect(knife.gateway_opts).to eq({
1413
- bastion_user: nil,
1414
- bastion_host: "gateway",
1415
- bastion_port: 11234,
1416
- })
1417
- end
1418
- end
1419
-
1420
- context "and ssh_gateway is not provided" do
1421
- it "returns an empty hash" do
1422
- expect(knife.gateway_opts).to eq({})
1423
- end
1424
- end
1425
- end
1426
- end
1427
-
1428
- context "#sudo_opts" do
1429
- let(:connection_protocol) { nil }
1430
- before do
1431
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
1432
- end
1433
-
1434
- context "for winrm" do
1435
- let(:connection_protocol) { "winrm" }
1436
- it "returns an empty hash" do
1437
- expect(knife.sudo_opts).to eq({})
1438
- end
1439
- end
1440
-
1441
- context "for ssh" do
1442
- let(:connection_protocol) { "ssh" }
1443
- context "when use_sudo is set" do
1444
- before do
1445
- knife.config[:use_sudo] = true
1446
- end
1447
-
1448
- it "returns a config that enables sudo" do
1449
- expect(knife.sudo_opts).to eq( { sudo: true } )
1450
- end
1451
-
1452
- context "when use_sudo_password is also set" do
1453
- before do
1454
- knife.config[:use_sudo_password] = true
1455
- knife.config[:connection_password] = "opscode"
1456
- end
1457
- it "includes :connection_password value in a sudo-enabled configuration" do
1458
- expect(knife.sudo_opts).to eq({
1459
- sudo: true,
1460
- sudo_password: "opscode",
1461
- })
1462
- end
1463
- end
1464
-
1465
- context "when preserve_home is set" do
1466
- before do
1467
- knife.config[:preserve_home] = true
1468
- end
1469
- it "enables sudo with sudo_option to preserve home" do
1470
- expect(knife.sudo_opts).to eq({
1471
- sudo_options: "-H",
1472
- sudo: true,
1473
- })
1474
- end
1475
- end
1476
- end
1477
-
1478
- context "when use_sudo is not set" do
1479
- before do
1480
- knife.config[:use_sudo_password] = true
1481
- knife.config[:preserve_home] = true
1482
- end
1483
- it "returns configuration for sudo off, ignoring other related options" do
1484
- expect(knife.sudo_opts).to eq( { sudo: false } )
1485
- end
1486
- end
1487
- end
1488
- end
1489
-
1490
- context "#ssh_opts" do
1491
- let(:connection_protocol) { nil }
1492
- before do
1493
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
1494
- end
1495
-
1496
- context "for ssh" do
1497
- let(:connection_protocol) { "ssh" }
1498
- let(:default_opts) do
1499
- {
1500
- non_interactive: true,
1501
- pty: true,
1502
- forward_agent: false,
1503
- connection_timeout: 60,
1504
- }
1505
- end
1506
-
1507
- context "by default" do
1508
- it "returns a configuration hash with appropriate defaults" do
1509
- expect(knife.ssh_opts).to eq default_opts
1510
- end
1511
- end
1512
-
1513
- context "when ssh_forward_agent has a value" do
1514
- before do
1515
- knife.config[:ssh_forward_agent] = true
1516
- end
1517
- it "returns a default configuration hash with forward_agent set to true" do
1518
- expect(knife.ssh_opts).to eq(default_opts.merge(forward_agent: true))
1519
- end
1520
- end
1521
- context "when session_timeout has a value" do
1522
- before do
1523
- knife.config[:session_timeout] = 120
1524
- end
1525
- it "returns a default configuration hash with updated timeout value." do
1526
- expect(knife.ssh_opts).to eq(default_opts.merge(connection_timeout: 120))
1527
- end
1528
- end
1529
-
1530
- end
1531
-
1532
- context "for winrm" do
1533
- let(:connection_protocol) { "winrm" }
1534
- it "returns an empty has because ssh is not winrm" do
1535
- expect(knife.ssh_opts).to eq({})
1536
- end
1537
- end
1538
-
1539
- end
1540
-
1541
- context "#winrm_opts" do
1542
- let(:connection_protocol) { nil }
1543
- before do
1544
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
1545
- end
1546
-
1547
- context "for winrm" do
1548
- let(:connection_protocol) { "winrm" }
1549
- let(:expected) do
1550
- {
1551
- winrm_transport: "negotiate",
1552
- winrm_basic_auth_only: false,
1553
- ssl: false,
1554
- ssl_peer_fingerprint: nil,
1555
- operation_timeout: 60,
1556
- } end
1557
-
1558
- it "generates a correct configuration hash with expected defaults" do
1559
- expect(knife.winrm_opts).to eq expected
1560
- end
1561
-
1562
- context "with ssl_peer_fingerprint" do
1563
- let(:ssl_peer_fingerprint_expected) do
1564
- expected.merge({ ssl_peer_fingerprint: "ABCD" })
1565
- end
1566
-
1567
- before do
1568
- knife.config[:winrm_ssl_peer_fingerprint] = "ABCD"
1569
- end
1570
-
1571
- it "generates a correct options hash with ssl_peer_fingerprint from the config provided" do
1572
- expect(knife.winrm_opts).to eq ssl_peer_fingerprint_expected
1573
- end
1574
- end
1575
-
1576
- context "with winrm_ssl" do
1577
- let(:ssl_expected) do
1578
- expected.merge({ ssl: true })
1579
- end
1580
- before do
1581
- knife.config[:winrm_ssl] = true
1582
- end
1583
-
1584
- it "generates a correct options hash with ssl from the config provided" do
1585
- expect(knife.winrm_opts).to eq ssl_expected
1586
- end
1587
- end
1588
-
1589
- context "with winrm_auth_method" do
1590
- let(:winrm_auth_method_expected) do
1591
- expected.merge({ winrm_transport: "freeaccess" })
1592
- end
1593
-
1594
- before do
1595
- knife.config[:winrm_auth_method] = "freeaccess"
1596
- end
1597
-
1598
- it "generates a correct options hash with winrm_transport from the config provided" do
1599
- expect(knife.winrm_opts).to eq winrm_auth_method_expected
1600
- end
1601
- end
1602
-
1603
- context "with ca_trust_file" do
1604
- let(:ca_trust_expected) do
1605
- expected.merge({ ca_trust_path: "/trust.me" })
1606
- end
1607
- before do
1608
- knife.config[:ca_trust_file] = "/trust.me"
1609
- end
1610
-
1611
- it "generates a correct options hash with ca_trust_file from the config provided" do
1612
- expect(knife.winrm_opts).to eq ca_trust_expected
1613
- end
1614
- end
1615
-
1616
- context "with kerberos auth" do
1617
- let(:kerberos_expected) do
1618
- expected.merge({
1619
- kerberos_service: "testsvc",
1620
- kerberos_realm: "TESTREALM",
1621
- winrm_transport: "kerberos",
1622
- })
1623
- end
1624
-
1625
- before do
1626
- knife.config[:winrm_auth_method] = "kerberos"
1627
- knife.config[:kerberos_service] = "testsvc"
1628
- knife.config[:kerberos_realm] = "TESTREALM"
1629
- end
1630
-
1631
- it "generates a correct options hash containing kerberos auth configuration from the config provided" do
1632
- expect(knife.winrm_opts).to eq kerberos_expected
1633
- end
1634
- end
1635
-
1636
- context "with winrm_basic_auth_only" do
1637
- before do
1638
- knife.config[:winrm_basic_auth_only] = true
1639
- end
1640
- let(:basic_auth_expected) do
1641
- expected.merge( { winrm_basic_auth_only: true } )
1642
- end
1643
- it "generates a correct options hash containing winrm_basic_auth_only from the config provided" do
1644
- expect(knife.winrm_opts).to eq basic_auth_expected
1645
- end
1646
- end
1647
- end
1648
-
1649
- context "for ssh" do
1650
- let(:connection_protocol) { "ssh" }
1651
- it "returns an empty hash because ssh is not winrm" do
1652
- expect(knife.winrm_opts).to eq({})
1653
- end
1654
- end
1655
- end
1656
- describe "#run" do
1657
- before do
1658
- allow(knife.client_builder).to receive(:client_path).and_return("/key.pem")
1659
- end
1660
-
1661
- it "performs the steps we expect to run a bootstrap" do
1662
- expect(knife).to receive(:check_license)
1663
- expect(knife).to receive(:verify_deprecated_flags!).ordered
1664
- expect(knife).to receive(:validate_name_args!).ordered
1665
- expect(knife).to receive(:validate_protocol!).ordered
1666
- expect(knife).to receive(:validate_first_boot_attributes!).ordered
1667
- expect(knife).to receive(:validate_winrm_transport_opts!).ordered
1668
- expect(knife).to receive(:validate_policy_options!).ordered
1669
- expect(knife).to receive(:winrm_warn_no_ssl_verification).ordered
1670
- expect(knife).to receive(:warn_on_short_session_timeout).ordered
1671
- expect(knife).to receive(:register_client).ordered
1672
- expect(knife).to receive(:connect!).ordered
1673
- expect(knife).to receive(:render_template).and_return "content"
1674
- expect(knife).to receive(:upload_bootstrap).with("content").and_return "/remote/path.sh"
1675
- expect(knife).to receive(:perform_bootstrap).with("/remote/path.sh")
1676
- expect(connection).to receive(:del_file!) # Make sure cleanup happens
1677
-
1678
- knife.run
1679
-
1680
- # Post-run verify expected state changes (not many directly in #run)
1681
- expect(knife.bootstrap_context.client_pem).to eq "/key.pem"
1682
- expect($stdout.sync).to eq true
1683
- end
1684
- end
1685
-
1686
- describe "#verify_deprecated_flags!" do
1687
- before do
1688
- Chef::Config[:silence_deprecation_warnings] = false
1689
- end
1690
-
1691
- context "when a deprecated CLI flag is given on the CLI" do
1692
- let(:bootstrap_cli_options) { %w{--ssh-user sshuser} }
1693
- it "maps the key value to the new key and points the human to the new flag" do
1694
- expect(knife.ui).to receive(:warn).with(/You provided --ssh-user. This flag is deprecated. Please use '--connection-user USERNAME' instead./)
1695
- knife.verify_deprecated_flags!
1696
- expect(knife.config[:connection_user]).to eq "sshuser"
1697
- end
1698
- end
1699
-
1700
- context "when a deprecated CLI flag is given on the CLI, along with its replacement" do
1701
- let(:bootstrap_cli_options) { %w{--connection-user a --ssh-user b} }
1702
-
1703
- it "informs the human that both are provided and exits" do
1704
- expect(knife.ui).to receive(:error).with(/You provided both --connection-user and --ssh-user.*Please use.*/m)
1705
- expect { knife.verify_deprecated_flags! }.to raise_error SystemExit
1706
- end
1707
- end
1708
-
1709
- context "when a deprecated boolean CLI flag is given on the CLI, and its non-boolean replacement is used" do
1710
- let(:bootstrap_cli_options) { %w{--prerelease} }
1711
- it "correctly maps the old boolean value to the new value" do
1712
- expect(knife.ui).to receive(:warn)
1713
- knife.verify_deprecated_flags!
1714
- expect(knife.config[:channel]).to eq "current"
1715
- end
1716
- end
1717
- end
1718
-
1719
- describe "#register_client" do
1720
- let(:vault_handler_mock) { double("ChefVaultHandler") }
1721
- let(:client_builder_mock) { double("ClientBuilder") }
1722
- let(:node_name) { nil }
1723
- before do
1724
- allow(knife).to receive(:chef_vault_handler).and_return vault_handler_mock
1725
- allow(knife).to receive(:client_builder).and_return client_builder_mock
1726
- knife.config[:chef_node_name] = node_name
1727
- end
1728
-
1729
- shared_examples_for "creating the client locally" do
1730
- context "when a valid node name is present" do
1731
- let(:node_name) { "test" }
1732
- before do
1733
- allow(client_builder_mock).to receive(:client).and_return "client"
1734
- end
1735
-
1736
- it "runs client_builder and vault_handler" do
1737
- expect(client_builder_mock).to receive(:run)
1738
- expect(vault_handler_mock).to receive(:run).with("client")
1739
- knife.register_client
1740
- end
1741
- end
1742
-
1743
- context "when no valid node name is present" do
1744
- let(:node_name) { nil }
1745
- it "shows an error and exits" do
1746
- expect(knife.ui).to receive(:error)
1747
- expect { knife.register_client }.to raise_error(SystemExit)
1748
- end
1749
- end
1750
- end
1751
- context "when chef_vault_handler says we're using vault" do
1752
- let(:vault_handler_mock) { double("ChefVaultHandler") }
1753
- before do
1754
- allow(vault_handler_mock).to receive(:doing_chef_vault?).and_return true
1755
- end
1756
- it_behaves_like "creating the client locally"
1757
- end
1758
-
1759
- context "when an non-existant validation key is specified in chef config" do
1760
- before do
1761
- Chef::Config[:validation_key] = "/blah"
1762
- allow(vault_handler_mock).to receive(:doing_chef_vault?).and_return false
1763
- allow(File).to receive(:exist?).with(/\/blah/).and_return false
1764
- end
1765
- it_behaves_like "creating the client locally"
1766
- end
1767
-
1768
- context "when a valid validation key is given and we're doing old-style client creation" do
1769
- before do
1770
- Chef::Config[:validation_key] = "/blah"
1771
- allow(File).to receive(:exist?).with(/\/blah/).and_return true
1772
- allow(vault_handler_mock).to receive(:doing_chef_vault?).and_return false
1773
- end
1774
-
1775
- it "shows a message" do
1776
- expect(knife.ui).to receive(:info)
1777
- knife.register_client
1778
- end
1779
- end
1780
- end
1781
-
1782
- describe "#perform_bootstrap" do
1783
- let(:exit_status) { 0 }
1784
- let(:result_mock) { double("result", exit_status: exit_status, stderr: "A message") }
1785
-
1786
- before do
1787
- allow(connection).to receive(:hostname).and_return "testhost"
1788
- end
1789
- it "runs the remote script and logs the output" do
1790
- expect(knife.ui).to receive(:info).with(/Bootstrapping.*/)
1791
- expect(knife).to receive(:bootstrap_command)
1792
- .with("/path.sh")
1793
- .and_return("sh /path.sh")
1794
- expect(connection)
1795
- .to receive(:run_command)
1796
- .with("sh /path.sh")
1797
- .and_yield("output here")
1798
- .and_return result_mock
1799
-
1800
- expect(knife.ui).to receive(:msg).with(/testhost/)
1801
- knife.perform_bootstrap("/path.sh")
1802
- end
1803
- context "when the remote command fails" do
1804
- let(:exit_status) { 1 }
1805
- it "shows an error and exits" do
1806
- expect(knife.ui).to receive(:info).with(/Bootstrapping.*/)
1807
- expect(knife).to receive(:bootstrap_command)
1808
- .with("/path.sh")
1809
- .and_return("sh /path.sh")
1810
- expect(connection).to receive(:run_command).with("sh /path.sh").and_return result_mock
1811
- expect { knife.perform_bootstrap("/path.sh") }.to raise_error(SystemExit)
1812
- end
1813
- end
1814
- end
1815
-
1816
- describe "#connect!" do
1817
- before do
1818
- # These are not required at run-time because train will handle its own
1819
- # protocol loading. In this case, we're simulating train failures and have to load
1820
- # them ourselves.
1821
- require "net/ssh"
1822
- require "train/transports/ssh"
1823
- end
1824
-
1825
- context "in the normal case" do
1826
- it "connects using the connection_opts and notifies the operator of progress" do
1827
- expect(knife.ui).to receive(:info).with(/Connecting to.*/)
1828
- expect(knife).to receive(:connection_opts).and_return( { opts: "here" })
1829
- expect(knife).to receive(:do_connect).with( { opts: "here" } )
1830
- knife.connect!
1831
- end
1832
- end
1833
-
1834
- context "when a general non-auth-failure occurs" do
1835
- let(:expected_error) { RuntimeError.new }
1836
- before do
1837
- allow(knife).to receive(:do_connect).and_raise(expected_error)
1838
- end
1839
- it "re-raises the exception" do
1840
- expect { knife.connect! }.to raise_error(expected_error)
1841
- end
1842
- end
1843
-
1844
- context "when ssh fingerprint is invalid" do
1845
- let(:expected_error) { Train::Error.new("fingerprint AA:BB is unknown for \"blah,127.0.0.1\"") }
1846
- before do
1847
- allow(knife).to receive(:do_connect).and_raise(expected_error)
1848
- end
1849
- it "warns, prompts to accept, then connects with verify_host_key of accept_new" do
1850
- expect(knife).to receive(:do_connect).and_raise(expected_error)
1851
- expect(knife.ui).to receive(:confirm)
1852
- .with(/.*host 'blah \(127.0.0.1\)'.*AA:BB.*Are you sure you want to continue.*/m)
1853
- .and_return(true)
1854
- expect(knife).to receive(:do_connect) do |opts|
1855
- expect(opts[:verify_host_key]).to eq :accept_new
1856
- end
1857
- knife.connect!
1858
- end
1859
- end
1860
-
1861
- context "when an auth failure occurs" do
1862
- let(:expected_error) do
1863
- e = Train::Error.new
1864
- actual = Net::SSH::AuthenticationFailed.new
1865
- # Simulate train's nested error - they wrap
1866
- # ssh/network errors in a TrainError.
1867
- allow(e).to receive(:cause).and_return(actual)
1868
- e
1869
- end
1870
-
1871
- context "and password auth was used" do
1872
- before do
1873
- allow(connection).to receive(:password_auth?).and_return true
1874
- end
1875
-
1876
- it "re-raises the error so as not to resubmit the same failing password" do
1877
- expect(knife).to receive(:do_connect).and_raise(expected_error)
1878
- expect { knife.connect! }.to raise_error(expected_error)
1879
- end
1880
- end
1881
-
1882
- context "and password auth was not used" do
1883
- before do
1884
- allow(connection).to receive(:password_auth?).and_return false
1885
- allow(connection).to receive(:user).and_return "testuser"
1886
- end
1887
-
1888
- it "warns, prompts for password, then reconnects with a password-enabled configuration using the new password" do
1889
- question_mock = double("question")
1890
- expect(knife).to receive(:do_connect).and_raise(expected_error)
1891
- expect(knife.ui).to receive(:warn).with(/Failed to auth.*/)
1892
- expect(knife.ui).to receive(:ask).and_yield(question_mock).and_return("newpassword")
1893
- # Ensure that we set echo off to prevent showing password on the screen
1894
- expect(question_mock).to receive(:echo=).with false
1895
- expect(knife).to receive(:do_connect) do |opts|
1896
- expect(opts[:password]).to eq "newpassword"
1897
- end
1898
- knife.connect!
1899
- end
1900
- end
1901
- end
1902
- end
1903
-
1904
- it "verifies that a server to bootstrap was given as a command line arg" do
1905
- knife.name_args = nil
1906
- expect(knife).to receive(:check_license)
1907
- expect { knife.run }.to raise_error(SystemExit)
1908
- expect(stderr.string).to match(/ERROR:.+FQDN or ip/)
1909
- end
1910
-
1911
- describe "#bootstrap_context" do
1912
- context "under Windows" do
1913
- let(:windows_test) { true }
1914
- it "creates a WindowsBootstrapContext" do
1915
- require "chef/knife/core/windows_bootstrap_context"
1916
- expect(knife.bootstrap_context.class).to eq Chef::Knife::Core::WindowsBootstrapContext
1917
- end
1918
- end
1919
-
1920
- context "under linux" do
1921
- let(:linux_test) { true }
1922
- it "creates a BootstrapContext" do
1923
- require "chef/knife/core/bootstrap_context"
1924
- expect(knife.bootstrap_context.class).to eq Chef::Knife::Core::BootstrapContext
1925
- end
1926
- end
1927
- end
1928
-
1929
- describe "#config_value" do
1930
- before do
1931
- knife.config[:test_key_a] = "a from cli"
1932
- knife.config[:test_key_b] = "b from cli"
1933
- Chef::Config[:knife][:test_key_a] = "a from Chef::Config"
1934
- Chef::Config[:knife][:test_key_c] = "c from Chef::Config"
1935
- Chef::Config[:knife][:alt_test_key_c] = "alt c from Chef::Config"
1936
- end
1937
-
1938
- it "returns CLI value when key is only provided by the CLI" do
1939
- expect(knife.config_value(:test_key_b)).to eq "b from cli"
1940
- end
1941
-
1942
- it "returns CLI value when key is provided by CLI and Chef::Config" do
1943
- expect(knife.config_value(:test_key_a)).to eq "a from cli"
1944
- end
1945
-
1946
- it "returns Chef::Config value whent he key is only provided by Chef::Config" do
1947
- expect(knife.config_value(:test_key_c)).to eq "c from Chef::Config"
1948
- end
1949
-
1950
- it "returns the Chef::Config value from the alternative key when the CLI key is not set" do
1951
- expect(knife.config_value(:test_key_c, :alt_test_key_c)).to eq "alt c from Chef::Config"
1952
- end
1953
-
1954
- it "returns the default value when the key is not provided by CLI or Chef::Config" do
1955
- expect(knife.config_value(:missing_key, :missing_key, "found")).to eq "found"
1956
- end
1957
- end
1958
-
1959
- describe "#upload_bootstrap" do
1960
- before do
1961
- allow(connection).to receive(:temp_dir).and_return(temp_dir)
1962
- allow(connection).to receive(:normalize_path) { |a| a }
1963
- end
1964
-
1965
- let(:content) { "bootstrap script content" }
1966
- context "under Windows" do
1967
- let(:windows_test) { true }
1968
- let(:temp_dir) { "C:/Temp/bootstrap" }
1969
- it "creates a bat file in the temp dir provided by connection, using given content" do
1970
- expect(connection).to receive(:upload_file_content!).with(content, "C:/Temp/bootstrap/bootstrap.bat")
1971
- expect(knife.upload_bootstrap(content)).to eq "C:/Temp/bootstrap/bootstrap.bat"
1972
- end
1973
- end
1974
-
1975
- context "under Linux" do
1976
- let(:linux_test) { true }
1977
- let(:temp_dir) { "/tmp/bootstrap" }
1978
- it "creates a 'sh file in the temp dir provided by connection, using given content" do
1979
- expect(connection).to receive(:upload_file_content!).with(content, "/tmp/bootstrap/bootstrap.sh")
1980
- expect(knife.upload_bootstrap(content)).to eq "/tmp/bootstrap/bootstrap.sh"
1981
- end
1982
- end
1983
- end
1984
-
1985
- describe "#bootstrap_command" do
1986
- context "under Windows" do
1987
- let(:windows_test) { true }
1988
- it "prefixes the command to run under cmd.exe" do
1989
- expect(knife.bootstrap_command("autoexec.bat")).to eq "cmd.exe /C autoexec.bat"
1990
- end
1991
-
1992
- end
1993
- context "under Linux" do
1994
- let(:linux_test) { true }
1995
- it "prefixes the command to run under sh" do
1996
- expect(knife.bootstrap_command("bootstrap")).to eq "sh bootstrap"
1997
- end
1998
- end
1999
- end
2000
-
2001
- describe "#default_bootstrap_template" do
2002
- context "under Windows" do
2003
- let(:windows_test) { true }
2004
- it "is windows-chef-client-msi" do
2005
- expect(knife.default_bootstrap_template).to eq "windows-chef-client-msi"
2006
- end
2007
-
2008
- end
2009
- context "under Linux" do
2010
- let(:linux_test) { true }
2011
- it "is chef-full" do
2012
- expect(knife.default_bootstrap_template).to eq "chef-full"
2013
- end
2014
- end
2015
- end
2016
-
2017
- describe "#do_connect" do
2018
- let(:host_descriptor) { "example.com" }
2019
- let(:connection) { double("TrainConnector") }
2020
- let(:connector_mock) { double("TargetResolver", targets: [ connection ]) }
2021
- before do
2022
- allow(knife).to receive(:host_descriptor).and_return host_descriptor
2023
- end
2024
-
2025
- it "creates a TrainConnector and connects it" do
2026
- expect(Chef::Knife::Bootstrap::TrainConnector).to receive(:new).and_return connection
2027
- expect(connection).to receive(:connect!)
2028
- knife.do_connect({})
2029
- end
2030
- end
2031
-
2032
- describe "validate_winrm_transport_opts!" do
2033
- before do
2034
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
2035
- end
2036
-
2037
- context "when using ssh" do
2038
- let(:connection_protocol) { "ssh" }
2039
- it "returns true" do
2040
- expect(knife.validate_winrm_transport_opts!).to eq true
2041
- end
2042
- end
2043
- context "when using winrm" do
2044
- let(:connection_protocol) { "winrm" }
2045
- context "with plaintext auth" do
2046
- before do
2047
- knife.config[:winrm_auth_method] = "plaintext"
2048
- end
2049
- context "with ssl" do
2050
- before do
2051
- knife.config[:winrm_ssl] = true
2052
- end
2053
- it "will not error because we won't send anything in plaintext regardless" do
2054
- expect(knife.validate_winrm_transport_opts!).to eq true
2055
- end
2056
- end
2057
- context "without ssl" do
2058
- before do
2059
- knife.config[:winrm_ssl] = false
2060
- end
2061
- context "and no validation key exists" do
2062
- before do
2063
- Chef::Config[:validation_key] = "validation_key.pem"
2064
- allow(File).to receive(:exist?).with(/.*validation_key.pem/).and_return false
2065
- end
2066
-
2067
- it "will error because we will generate and send a client key over the wire in plaintext" do
2068
- expect { knife.validate_winrm_transport_opts! }.to raise_error(SystemExit)
2069
- end
2070
-
2071
- end
2072
- context "and a validation key exists" do
2073
- before do
2074
- Chef::Config[:validation_key] = "validation_key.pem"
2075
- allow(File).to receive(:exist?).with(/.*validation_key.pem/).and_return true
2076
- end
2077
- # TODO - don't we still send validation key?
2078
- it "will not error because we don not send client key over the wire" do
2079
- expect(knife.validate_winrm_transport_opts!).to eq true
2080
- end
2081
- end
2082
- end
2083
- end
2084
-
2085
- context "with other auth" do
2086
- before do
2087
- knife.config[:winrm_auth_method] = "kerberos"
2088
- end
2089
-
2090
- context "and no validation key exists" do
2091
- before do
2092
-
2093
- Chef::Config[:validation_key] = "validation_key.pem"
2094
- allow(File).to receive(:exist?).with(/.*validation_key.pem/).and_return false
2095
- end
2096
-
2097
- it "will not error because we're not using plaintext auth" do
2098
- expect(knife.validate_winrm_transport_opts!).to eq true
2099
- end
2100
- end
2101
- context "and a validation key exists" do
2102
- before do
2103
- Chef::Config[:validation_key] = "validation_key.pem"
2104
- allow(File).to receive(:exist?).with(/.*validation_key.pem/).and_return true
2105
- end
2106
-
2107
- it "will not error because a client key won't be sent over the wire in plaintext when a validation key is present" do
2108
- expect(knife.validate_winrm_transport_opts!).to eq true
2109
- end
2110
- end
2111
-
2112
- end
2113
-
2114
- end
2115
-
2116
- end
2117
-
2118
- describe "#winrm_warn_no_ssl_verification" do
2119
- before do
2120
- allow(knife).to receive(:connection_protocol).and_return connection_protocol
2121
- end
2122
-
2123
- context "when using ssh" do
2124
- let(:connection_protocol) { "ssh" }
2125
- it "does not issue a warning" do
2126
- expect(knife.ui).to_not receive(:warn)
2127
- knife.winrm_warn_no_ssl_verification
2128
- end
2129
- end
2130
- context "when using winrm" do
2131
- let(:connection_protocol) { "winrm" }
2132
- context "winrm_no_verify_cert is set" do
2133
- before do
2134
- knife.config[:winrm_no_verify_cert] = true
2135
- end
2136
-
2137
- context "and ca_trust_file is present" do
2138
- before do
2139
- knife.config[:ca_trust_file] = "file"
2140
- end
2141
-
2142
- it "does not issue a warning" do
2143
- expect(knife.ui).to_not receive(:warn)
2144
- knife.winrm_warn_no_ssl_verification
2145
- end
2146
- end
2147
-
2148
- context "and winrm_ssl_peer_fingerprint is present" do
2149
- before do
2150
- knife.config[:winrm_ssl_peer_fingerprint] = "ABCD"
2151
- end
2152
- it "does not issue a warning" do
2153
- expect(knife.ui).to_not receive(:warn)
2154
- knife.winrm_warn_no_ssl_verification
2155
- end
2156
- end
2157
- context "and neither ca_trust_file nor winrm_ssl_peer_fingerprint is present" do
2158
- it "issues a warning" do
2159
- expect(knife.ui).to receive(:warn)
2160
- knife.winrm_warn_no_ssl_verification
2161
- end
2162
- end
2163
- end
2164
- end
2165
- end
2166
-
2167
- describe "#warn_on_short_session_timeout" do
2168
- let(:session_timeout) { 60 }
2169
-
2170
- before do
2171
- allow(knife).to receive(:session_timeout).and_return(session_timeout)
2172
- end
2173
-
2174
- context "timeout is not set at all" do
2175
- let(:session_timeout) { nil }
2176
- it "does not issue a warning" do
2177
- expect(knife.ui).to_not receive(:warn)
2178
- knife.warn_on_short_session_timeout
2179
- end
2180
- end
2181
-
2182
- context "timeout is more than 15" do
2183
- let(:session_timeout) { 16 }
2184
- it "does not issue a warning" do
2185
- expect(knife.ui).to_not receive(:warn)
2186
- knife.warn_on_short_session_timeout
2187
- end
2188
- end
2189
- context "timeout is 15 or less" do
2190
- let(:session_timeout) { 15 }
2191
- it "issues a warning" do
2192
- expect(knife.ui).to receive(:warn)
2193
- knife.warn_on_short_session_timeout
2194
- end
2195
- end
2196
- end
2197
- end
1
+ #
2
+ # Author:: Ian Meyer (<ianmmeyer@gmail.com>)
3
+ # Copyright:: Copyright 2010-2016, Ian Meyer
4
+ # Copyright:: Copyright 2010-2019, Chef Software Inc.
5
+ # License:: Apache License, Version 2.0
6
+ #
7
+ # Licensed under the Apache License, Version 2.0 (the "License");
8
+ # you may not use this file except in compliance with the License.
9
+ # You may obtain a copy of the License at
10
+ #
11
+ # http://www.apache.org/licenses/LICENSE-2.0
12
+ #
13
+ # Unless required by applicable law or agreed to in writing, software
14
+ # distributed under the License is distributed on an "AS IS" BASIS,
15
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16
+ # See the License for the specific language governing permissions and
17
+ # limitations under the License.
18
+ #
19
+
20
+ require "spec_helper"
21
+
22
+ Chef::Knife::Bootstrap.load_deps
23
+
24
+ describe Chef::Knife::Bootstrap do
25
+ let(:bootstrap_template) { nil }
26
+ let(:stderr) { StringIO.new }
27
+ let(:bootstrap_cli_options) { [ ] }
28
+ let(:linux_test) { true }
29
+ let(:windows_test) { false }
30
+ let(:linux_test) { false }
31
+ let(:unix_test) { false }
32
+ let(:ssh_test) { false }
33
+
34
+ let(:connection) do
35
+ double("TrainConnector",
36
+ windows?: windows_test,
37
+ linux?: linux_test,
38
+ unix?: unix_test) end
39
+
40
+ let(:knife) do
41
+ Chef::Log.logger = Logger.new(StringIO.new)
42
+ Chef::Config[:knife][:bootstrap_template] = bootstrap_template unless bootstrap_template.nil?
43
+
44
+ k = Chef::Knife::Bootstrap.new(bootstrap_cli_options)
45
+ allow(k.ui).to receive(:stderr).and_return(stderr)
46
+ allow(k).to receive(:encryption_secret_provided_ignore_encrypt_flag?).and_return(false)
47
+ allow(k).to receive(:connection).and_return connection
48
+ k.merge_configs
49
+ k
50
+ end
51
+
52
+ context "#check_license" do
53
+ let(:acceptor) { instance_double(LicenseAcceptance::Acceptor) }
54
+
55
+ before do
56
+ expect(LicenseAcceptance::Acceptor).to receive(:new).and_return(acceptor)
57
+ end
58
+
59
+ describe "when a license is not required" do
60
+ it "does not set the chef_license" do
61
+ expect(acceptor).to receive(:license_required?).and_return(false)
62
+ knife.check_license
63
+ expect(Chef::Config[:chef_license]).to eq(nil)
64
+ end
65
+ end
66
+
67
+ describe "when a license is required" do
68
+ it "sets the chef_license" do
69
+ expect(acceptor).to receive(:license_required?).and_return(true)
70
+ expect(acceptor).to receive(:id_from_mixlib).and_return("id")
71
+ expect(acceptor).to receive(:check_and_persist)
72
+ expect(acceptor).to receive(:acceptance_value).and_return("accept-no-persist")
73
+ knife.check_license
74
+ expect(Chef::Config[:chef_license]).to eq("accept-no-persist")
75
+ end
76
+ end
77
+ end
78
+
79
+ context "#bootstrap_template" do
80
+ it "should default to chef-full" do
81
+ expect(knife.bootstrap_template).to be_a_kind_of(String)
82
+ expect(File.basename(knife.bootstrap_template)).to eq("chef-full")
83
+ end
84
+ end
85
+
86
+ context "#render_template - when using the chef-full default template" do
87
+ let(:rendered_template) do
88
+ knife.merge_configs
89
+ knife.render_template
90
+ end
91
+
92
+ it "should render client.rb" do
93
+ expect(rendered_template).to match("cat > /etc/chef/client.rb <<'EOP'")
94
+ expect(rendered_template).to match("chef_server_url \"https://localhost:443\"")
95
+ expect(rendered_template).to match("validation_client_name \"chef-validator\"")
96
+ expect(rendered_template).to match("log_location STDOUT")
97
+ end
98
+
99
+ it "should render first-boot.json" do
100
+ expect(rendered_template).to match("cat > /etc/chef/first-boot.json <<'EOP'")
101
+ expect(rendered_template).to match('{"run_list":\[\]}')
102
+ end
103
+
104
+ context "and encrypted_data_bag_secret was provided" do
105
+ it "should render encrypted_data_bag_secret file" do
106
+ expect(knife).to receive(:encryption_secret_provided_ignore_encrypt_flag?).and_return(true)
107
+ expect(knife).to receive(:read_secret).and_return("secrets")
108
+ expect(rendered_template).to match("cat > /etc/chef/encrypted_data_bag_secret <<'EOP'")
109
+ expect(rendered_template).to match('{"run_list":\[\]}')
110
+ expect(rendered_template).to match(%r{secrets})
111
+ end
112
+ end
113
+ end
114
+
115
+ context "with --bootstrap-vault-item" do
116
+ let(:bootstrap_cli_options) { [ "--bootstrap-vault-item", "vault1:item1", "--bootstrap-vault-item", "vault1:item2", "--bootstrap-vault-item", "vault2:item1" ] }
117
+ it "sets the knife config cli option correctly" do
118
+ expect(knife.config[:bootstrap_vault_item]).to eq({ "vault1" => %w{item1 item2}, "vault2" => ["item1"] })
119
+ end
120
+ end
121
+
122
+ context "with --bootstrap-preinstall-command" do
123
+ command = "while sudo fuser /var/lib/dpkg/lock >/dev/null 2>&1; do\n echo 'waiting for dpkg lock';\n sleep 1;\n done;"
124
+ let(:bootstrap_cli_options) { [ "--bootstrap-preinstall-command", command ] }
125
+ let(:rendered_template) do
126
+ knife.merge_configs
127
+ knife.render_template
128
+ end
129
+ it "configures the preinstall command in the bootstrap template correctly" do
130
+ expect(rendered_template).to match(%r{command})
131
+ end
132
+ end
133
+
134
+ context "with --bootstrap-proxy" do
135
+ let(:bootstrap_cli_options) { [ "--bootstrap-proxy", "1.1.1.1" ] }
136
+ let(:rendered_template) do
137
+ knife.merge_configs
138
+ knife.render_template
139
+ end
140
+ it "configures the https_proxy environment variable in the bootstrap template correctly" do
141
+ expect(rendered_template).to match(%r{https_proxy="1.1.1.1" export https_proxy})
142
+ end
143
+ end
144
+
145
+ context "with --bootstrap-no-proxy" do
146
+ let(:bootstrap_cli_options) { [ "--bootstrap-no-proxy", "localserver" ] }
147
+ let(:rendered_template) do
148
+ knife.merge_configs
149
+ knife.render_template
150
+ end
151
+ it "configures the https_proxy environment variable in the bootstrap template correctly" do
152
+ expect(rendered_template).to match(%r{no_proxy="localserver" export no_proxy})
153
+ end
154
+ end
155
+
156
+ context "with :bootstrap_template and :template_file cli options" do
157
+ let(:bootstrap_cli_options) { [ "--bootstrap-template", "my-template", "other-template" ] }
158
+
159
+ it "should select bootstrap template" do
160
+ expect(File.basename(knife.bootstrap_template)).to eq("my-template")
161
+ end
162
+ end
163
+
164
+ context "when finding templates" do
165
+ context "when :bootstrap_template config is set to a file" do
166
+ context "that doesn't exist" do
167
+ let(:bootstrap_template) { "/opt/blah/not/exists/template.erb" }
168
+
169
+ it "raises an error" do
170
+ expect { knife.find_template }.to raise_error(Errno::ENOENT)
171
+ end
172
+ end
173
+
174
+ context "that exists" do
175
+ let(:bootstrap_template) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "test.erb")) }
176
+
177
+ it "loads the given file as the template" do
178
+ expect(Chef::Log).to receive(:trace)
179
+ expect(knife.find_template).to eq(File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "test.erb")))
180
+ end
181
+ end
182
+ end
183
+
184
+ context "when :bootstrap_template config is set to a template name" do
185
+ let(:bootstrap_template) { "example" }
186
+
187
+ let(:builtin_template_path) { File.expand_path(File.join(File.dirname(__FILE__), "../../../lib/chef/knife/bootstrap/templates", "example.erb")) }
188
+
189
+ let(:chef_config_dir_template_path) { "/knife/chef/config/bootstrap/example.erb" }
190
+
191
+ let(:env_home_template_path) { "/env/home/.chef/bootstrap/example.erb" }
192
+
193
+ let(:gem_files_template_path) { "/Users/schisamo/.rvm/gems/ruby-1.9.2-p180@chef-0.10/gems/knife-windows-0.5.4/lib/chef/knife/bootstrap/fake-bootstrap-template.erb" }
194
+
195
+ def configure_chef_config_dir
196
+ allow(Chef::Knife).to receive(:chef_config_dir).and_return("/knife/chef/config")
197
+ end
198
+
199
+ def configure_env_home
200
+ allow(Chef::Util::PathHelper).to receive(:home).with(".chef", "bootstrap", "example.erb").and_yield(env_home_template_path)
201
+ end
202
+
203
+ def configure_gem_files
204
+ allow(Gem).to receive(:find_files).and_return([ gem_files_template_path ])
205
+ end
206
+
207
+ before(:each) do
208
+ expect(File).to receive(:exists?).with(bootstrap_template).and_return(false)
209
+ end
210
+
211
+ context "when file is available everywhere" do
212
+ before do
213
+ configure_chef_config_dir
214
+ configure_env_home
215
+ configure_gem_files
216
+
217
+ expect(File).to receive(:exists?).with(builtin_template_path).and_return(true)
218
+ end
219
+
220
+ it "should load the template from built-in templates" do
221
+ expect(knife.find_template).to eq(builtin_template_path)
222
+ end
223
+ end
224
+
225
+ context "when file is available in chef_config_dir" do
226
+ before do
227
+ configure_chef_config_dir
228
+ configure_env_home
229
+ configure_gem_files
230
+
231
+ expect(File).to receive(:exists?).with(builtin_template_path).and_return(false)
232
+ expect(File).to receive(:exists?).with(chef_config_dir_template_path).and_return(true)
233
+
234
+ it "should load the template from chef_config_dir" do
235
+ knife.find_template.should eq(chef_config_dir_template_path)
236
+ end
237
+ end
238
+ end
239
+
240
+ context "when file is available in home directory" do
241
+ before do
242
+ configure_chef_config_dir
243
+ configure_env_home
244
+ configure_gem_files
245
+
246
+ expect(File).to receive(:exists?).with(builtin_template_path).and_return(false)
247
+ expect(File).to receive(:exists?).with(chef_config_dir_template_path).and_return(false)
248
+ expect(File).to receive(:exists?).with(env_home_template_path).and_return(true)
249
+ end
250
+
251
+ it "should load the template from chef_config_dir" do
252
+ expect(knife.find_template).to eq(env_home_template_path)
253
+ end
254
+ end
255
+
256
+ context "when file is available in Gem files" do
257
+ before do
258
+ configure_chef_config_dir
259
+ configure_env_home
260
+ configure_gem_files
261
+
262
+ expect(File).to receive(:exists?).with(builtin_template_path).and_return(false)
263
+ expect(File).to receive(:exists?).with(chef_config_dir_template_path).and_return(false)
264
+ expect(File).to receive(:exists?).with(env_home_template_path).and_return(false)
265
+ expect(File).to receive(:exists?).with(gem_files_template_path).and_return(true)
266
+ end
267
+
268
+ it "should load the template from Gem files" do
269
+ expect(knife.find_template).to eq(gem_files_template_path)
270
+ end
271
+ end
272
+
273
+ context "when file is available in Gem files and home dir doesn't exist" do
274
+ before do
275
+ configure_chef_config_dir
276
+ configure_gem_files
277
+ allow(Chef::Util::PathHelper).to receive(:home).with(".chef", "bootstrap", "example.erb").and_return(nil)
278
+
279
+ expect(File).to receive(:exists?).with(builtin_template_path).and_return(false)
280
+ expect(File).to receive(:exists?).with(chef_config_dir_template_path).and_return(false)
281
+ expect(File).to receive(:exists?).with(gem_files_template_path).and_return(true)
282
+ end
283
+
284
+ it "should load the template from Gem files" do
285
+ expect(knife.find_template).to eq(gem_files_template_path)
286
+ end
287
+ end
288
+ end
289
+ end
290
+
291
+ ["-t", "--bootstrap-template"].each do |t|
292
+ context "when #{t} option is given in the command line" do
293
+ it "sets the knife :bootstrap_template config" do
294
+ knife.parse_options([t, "blahblah"])
295
+ knife.merge_configs
296
+ expect(knife.bootstrap_template).to eq("blahblah")
297
+ end
298
+ end
299
+ end
300
+
301
+ context "with run_list template" do
302
+ let(:bootstrap_template) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "test.erb")) }
303
+
304
+ it "should return an empty run_list" do
305
+ expect(knife.render_template).to eq('{"run_list":[]}')
306
+ end
307
+
308
+ it "should have role[base] in the run_list" do
309
+ knife.parse_options(["-r", "role[base]"])
310
+ knife.merge_configs
311
+ expect(knife.render_template).to eq('{"run_list":["role[base]"]}')
312
+ end
313
+
314
+ it "should have role[base] and recipe[cupcakes] in the run_list" do
315
+ knife.parse_options(["-r", "role[base],recipe[cupcakes]"])
316
+ knife.merge_configs
317
+ expect(knife.render_template).to eq('{"run_list":["role[base]","recipe[cupcakes]"]}')
318
+ end
319
+
320
+ context "with bootstrap_attribute options" do
321
+ let(:jsonfile) do
322
+ file = Tempfile.new (["node", ".json"])
323
+ File.open(file.path, "w") { |f| f.puts '{"foo":{"bar":"baz"}}' }
324
+ file
325
+ end
326
+
327
+ it "should have foo => {bar => baz} in the first_boot from cli" do
328
+ knife.parse_options(["-j", '{"foo":{"bar":"baz"}}'])
329
+ knife.merge_configs
330
+ expected_hash = FFI_Yajl::Parser.new.parse('{"foo":{"bar":"baz"},"run_list":[]}')
331
+ actual_hash = FFI_Yajl::Parser.new.parse(knife.render_template)
332
+ expect(actual_hash).to eq(expected_hash)
333
+ end
334
+
335
+ it "should have foo => {bar => baz} in the first_boot from file" do
336
+ knife.parse_options(["--json-attribute-file", jsonfile.path])
337
+ knife.merge_configs
338
+ expected_hash = FFI_Yajl::Parser.new.parse('{"foo":{"bar":"baz"},"run_list":[]}')
339
+ actual_hash = FFI_Yajl::Parser.new.parse(knife.render_template)
340
+ expect(actual_hash).to eq(expected_hash)
341
+ jsonfile.close
342
+ end
343
+
344
+ it "raises a Chef::Exceptions::BootstrapCommandInputError with the proper error message" do
345
+ knife.parse_options(["-j", '{"foo":{"bar":"baz"}}'])
346
+ knife.parse_options(["--json-attribute-file", jsonfile.path])
347
+ knife.merge_configs
348
+ allow(knife).to receive(:validate_name_args!)
349
+ expect(knife).to receive(:check_license)
350
+
351
+ expect { knife.run }.to raise_error(Chef::Exceptions::BootstrapCommandInputError)
352
+ jsonfile.close
353
+ end
354
+ end
355
+ end
356
+
357
+ context "with hints template" do
358
+ let(:bootstrap_template) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "test-hints.erb")) }
359
+
360
+ it "should create a hint file when told to" do
361
+ knife.parse_options(["--hint", "openstack"])
362
+ knife.merge_configs
363
+ expect(knife.render_template).to match(/\/etc\/chef\/ohai\/hints\/openstack.json/)
364
+ end
365
+
366
+ it "should populate a hint file with JSON when given a file to read" do
367
+ allow(::File).to receive(:read).and_return('{ "foo" : "bar" }')
368
+ knife.parse_options(["--hint", "openstack=hints/openstack.json"])
369
+ knife.merge_configs
370
+ expect(knife.render_template).to match(/\{\"foo\":\"bar\"\}/)
371
+ end
372
+ end
373
+
374
+ describe "specifying no_proxy with various entries" do
375
+ subject(:knife) do
376
+ k = described_class.new
377
+ Chef::Config[:knife][:bootstrap_template] = template_file
378
+ allow(k).to receive(:connection).and_return connection
379
+ k.parse_options(options)
380
+ k.merge_configs
381
+ k
382
+ end
383
+
384
+ let(:options) { ["--bootstrap-no-proxy", setting, "-s", "foo"] }
385
+
386
+ let(:template_file) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "no_proxy.erb")) }
387
+
388
+ let(:rendered_template) do
389
+ knife.render_template
390
+ end
391
+
392
+ context "via --bootstrap-no-proxy" do
393
+ let(:setting) { "api.opscode.com" }
394
+
395
+ it "renders the client.rb with a single FQDN no_proxy entry" do
396
+ expect(rendered_template).to match(%r{.*no_proxy\s*"api.opscode.com".*})
397
+ end
398
+ end
399
+
400
+ context "via --bootstrap-no-proxy multiple" do
401
+ let(:setting) { "api.opscode.com,172.16.10.*" }
402
+
403
+ it "renders the client.rb with comma-separated FQDN and wildcard IP address no_proxy entries" do
404
+ expect(rendered_template).to match(%r{.*no_proxy\s*"api.opscode.com,172.16.10.\*".*})
405
+ end
406
+ end
407
+
408
+ context "via --ssl-verify-mode none" do
409
+ let(:options) { ["--node-ssl-verify-mode", "none"] }
410
+
411
+ it "renders the client.rb with ssl_verify_mode set to :verify_none" do
412
+ expect(rendered_template).to match(/ssl_verify_mode :verify_none/)
413
+ end
414
+ end
415
+
416
+ context "via --node-ssl-verify-mode peer" do
417
+ let(:options) { ["--node-ssl-verify-mode", "peer"] }
418
+
419
+ it "renders the client.rb with ssl_verify_mode set to :verify_peer" do
420
+ expect(rendered_template).to match(/ssl_verify_mode :verify_peer/)
421
+ end
422
+ end
423
+
424
+ context "via --node-ssl-verify-mode all" do
425
+ let(:options) { ["--node-ssl-verify-mode", "all"] }
426
+
427
+ it "raises error" do
428
+ expect { rendered_template }.to raise_error(RuntimeError)
429
+ end
430
+ end
431
+
432
+ context "via --node-verify-api-cert" do
433
+ let(:options) { ["--node-verify-api-cert"] }
434
+
435
+ it "renders the client.rb with verify_api_cert set to true" do
436
+ expect(rendered_template).to match(/verify_api_cert true/)
437
+ end
438
+ end
439
+
440
+ context "via --no-node-verify-api-cert" do
441
+ let(:options) { ["--no-node-verify-api-cert"] }
442
+
443
+ it "renders the client.rb with verify_api_cert set to false" do
444
+ expect(rendered_template).to match(/verify_api_cert false/)
445
+ end
446
+ end
447
+ end
448
+
449
+ describe "specifying the encrypted data bag secret key" do
450
+ let(:secret) { "supersekret" }
451
+ let(:options) { [] }
452
+ let(:bootstrap_template) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "secret.erb")) }
453
+ let(:rendered_template) do
454
+ knife.parse_options(options)
455
+ knife.merge_configs
456
+ knife.render_template
457
+ end
458
+
459
+ it "creates a secret file" do
460
+ expect(knife).to receive(:encryption_secret_provided_ignore_encrypt_flag?).and_return(true)
461
+ expect(knife).to receive(:read_secret).and_return(secret)
462
+ expect(rendered_template).to match(%r{#{secret}})
463
+ end
464
+
465
+ it "renders the client.rb with an encrypted_data_bag_secret entry" do
466
+ expect(knife).to receive(:encryption_secret_provided_ignore_encrypt_flag?).and_return(true)
467
+ expect(knife).to receive(:read_secret).and_return(secret)
468
+ expect(rendered_template).to match(%r{encrypted_data_bag_secret\s*"/etc/chef/encrypted_data_bag_secret"})
469
+ end
470
+
471
+ end
472
+
473
+ describe "when transferring trusted certificates" do
474
+ let(:trusted_certs_dir) { Chef::Util::PathHelper.cleanpath(File.join(File.dirname(__FILE__), "../../data/trusted_certs")) }
475
+
476
+ let(:rendered_template) do
477
+ knife.merge_configs
478
+ knife.render_template
479
+ end
480
+
481
+ before do
482
+ Chef::Config[:trusted_certs_dir] = trusted_certs_dir
483
+ allow(IO).to receive(:read).and_call_original
484
+ allow(IO).to receive(:read).with(File.expand_path(Chef::Config[:validation_key])).and_return("")
485
+ end
486
+
487
+ def certificates
488
+ Dir[File.join(trusted_certs_dir, "*.{crt,pem}")]
489
+ end
490
+
491
+ it "creates /etc/chef/trusted_certs" do
492
+ expect(rendered_template).to match(%r{mkdir -p /etc/chef/trusted_certs})
493
+ end
494
+
495
+ it "copies the certificates in the directory" do
496
+ certificates.each do |cert|
497
+ expect(IO).to receive(:read).with(File.expand_path(cert))
498
+ end
499
+
500
+ certificates.each do |cert|
501
+ expect(rendered_template).to match(%r{cat > /etc/chef/trusted_certs/#{File.basename(cert)} <<'EOP'})
502
+ end
503
+ end
504
+
505
+ context "when :trusted_cets_dir is empty" do
506
+ let(:trusted_certs_dir) { Chef::Util::PathHelper.cleanpath(File.join(File.dirname(__FILE__), "../../data/trusted_certs_empty")) }
507
+ it "doesn't create /etc/chef/trusted_certs if :trusted_certs_dir is empty" do
508
+ expect(rendered_template).not_to match(%r{mkdir -p /etc/chef/trusted_certs})
509
+ end
510
+ end
511
+
512
+ end
513
+
514
+ context "when doing fips things" do
515
+ let(:template_file) { File.expand_path(File.join(CHEF_SPEC_DATA, "bootstrap", "no_proxy.erb")) }
516
+ let(:trusted_certs_dir) { Chef::Util::PathHelper.cleanpath(File.join(File.dirname(__FILE__), "../../data/trusted_certs")) }
517
+
518
+ before do
519
+ Chef::Config[:knife][:bootstrap_template] = template_file
520
+ end
521
+
522
+ let(:rendered_template) do
523
+ knife.render_template
524
+ end
525
+
526
+ context "when knife is in fips mode" do
527
+ before do
528
+ Chef::Config[:fips] = true
529
+ end
530
+
531
+ it "renders 'fips true'" do
532
+ Chef::Config[:fips] = true
533
+ expect(rendered_template).to match("fips")
534
+ end
535
+ end
536
+
537
+ context "when knife is not in fips mode" do
538
+ before do
539
+ # This is required because the chef-fips pipeline does
540
+ # has a default value of true for fips
541
+ Chef::Config[:fips] = false
542
+ end
543
+
544
+ it "does not render anything about fips" do
545
+ expect(rendered_template).not_to match("fips")
546
+ end
547
+ end
548
+ end
549
+
550
+ describe "when transferring client.d" do
551
+
552
+ let(:rendered_template) do
553
+ knife.merge_configs
554
+ knife.render_template
555
+ end
556
+
557
+ before do
558
+ Chef::Config[:client_d_dir] = client_d_dir
559
+ end
560
+
561
+ context "when client_d_dir is nil" do
562
+ let(:client_d_dir) { nil }
563
+
564
+ it "does not create /etc/chef/client.d" do
565
+ expect(rendered_template).not_to match(%r{mkdir -p /etc/chef/client\.d})
566
+ end
567
+ end
568
+
569
+ context "when client_d_dir is set" do
570
+ let(:client_d_dir) do
571
+ Chef::Util::PathHelper.cleanpath(
572
+ File.join(File.dirname(__FILE__), "../../data/client.d_00")) end
573
+
574
+ it "creates /etc/chef/client.d" do
575
+ expect(rendered_template).to match("mkdir -p /etc/chef/client\.d")
576
+ end
577
+
578
+ context "a flat directory structure" do
579
+ it "escapes single-quotes" do
580
+ expect(rendered_template).to match("cat > /etc/chef/client.d/02-strings.rb <<'EOP'")
581
+ expect(rendered_template).to match("something '\\\\''/foo/bar'\\\\''")
582
+ end
583
+
584
+ it "creates a file 00-foo.rb" do
585
+ expect(rendered_template).to match("cat > /etc/chef/client.d/00-foo.rb <<'EOP'")
586
+ expect(rendered_template).to match("d6f9b976-289c-4149-baf7-81e6ffecf228")
587
+ end
588
+ it "creates a file bar" do
589
+ expect(rendered_template).to match("cat > /etc/chef/client.d/bar <<'EOP'")
590
+ expect(rendered_template).to match("1 / 0")
591
+ end
592
+ end
593
+
594
+ context "a nested directory structure" do
595
+ let(:client_d_dir) do
596
+ Chef::Util::PathHelper.cleanpath(
597
+ File.join(File.dirname(__FILE__), "../../data/client.d_01")) end
598
+ it "creates a file foo/bar.rb" do
599
+ expect(rendered_template).to match("cat > /etc/chef/client.d/foo/bar.rb <<'EOP'")
600
+ expect(rendered_template).to match("1 / 0")
601
+ end
602
+ end
603
+ end
604
+ end
605
+
606
+ describe "#connection_protocol" do
607
+ let(:host_descriptor) { "example.com" }
608
+ let(:config) { {} }
609
+ let(:knife_connection_protocol) { nil }
610
+ before do
611
+ allow(knife).to receive(:config).and_return config
612
+ allow(knife).to receive(:host_descriptor).and_return host_descriptor
613
+ if knife_connection_protocol
614
+ Chef::Config[:knife][:connection_protocol] = knife_connection_protocol
615
+ end
616
+ end
617
+
618
+ context "when protocol is part of the host argument" do
619
+ let(:host_descriptor) { "winrm://myhost" }
620
+
621
+ it "returns the value provided by the host argument" do
622
+ expect(knife.connection_protocol).to eq "winrm"
623
+ end
624
+ end
625
+
626
+ context "when protocol is provided via the CLI flag" do
627
+ let(:config) { { connection_protocol: "winrm" } }
628
+ it "returns that value" do
629
+ expect(knife.connection_protocol).to eq "winrm"
630
+ end
631
+
632
+ end
633
+ context "when protocol is provided via the host argument and the CLI flag" do
634
+ let(:host_descriptor) { "ssh://example.com" }
635
+ let(:config) { { connection_protocol: "winrm" } }
636
+
637
+ it "returns the value provided by the host argument" do
638
+ expect(knife.connection_protocol).to eq "ssh"
639
+ end
640
+ end
641
+
642
+ context "when no explicit protocol is provided" do
643
+ let(:config) { {} }
644
+ let(:host_descriptor) { "example.com" }
645
+ let(:knife_connection_protocol) { "winrm" }
646
+ it "falls back to knife config" do
647
+ expect(knife.connection_protocol).to eq "winrm"
648
+ end
649
+ context "and there is no knife bootstrap_protocol" do
650
+ let(:knife_connection_protocol) { nil }
651
+ it "falls back to 'ssh'" do
652
+ expect(knife.connection_protocol).to eq "ssh"
653
+ end
654
+ end
655
+ end
656
+
657
+ end
658
+
659
+ describe "#validate_protocol!" do
660
+ let(:host_descriptor) { "example.com" }
661
+ let(:config) { {} }
662
+ let(:connection_protocol) { "ssh" }
663
+ before do
664
+ allow(knife).to receive(:config).and_return config
665
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
666
+ allow(knife).to receive(:host_descriptor).and_return host_descriptor
667
+ end
668
+
669
+ context "when protocol is provided both in the URL and via --protocol" do
670
+
671
+ context "and they do not match" do
672
+ let(:connection_protocol) { "ssh" }
673
+ let(:config) { { connection_protocol: "winrm" } }
674
+ it "outputs an error and exits" do
675
+ expect(knife.ui).to receive(:error)
676
+ expect { knife.validate_protocol! }.to raise_error SystemExit
677
+ end
678
+ end
679
+
680
+ context "and they do match" do
681
+ let(:connection_protocol) { "winrm" }
682
+ let(:config) { { connection_protocol: "winrm" } }
683
+ it "returns true" do
684
+ expect(knife.validate_protocol!).to eq true
685
+ end
686
+ end
687
+ end
688
+
689
+ context "and the protocol is supported" do
690
+
691
+ Chef::Knife::Bootstrap::SUPPORTED_CONNECTION_PROTOCOLS.each do |proto|
692
+ let(:connection_protocol) { proto }
693
+ it "returns true for #{proto}" do
694
+ expect(knife.validate_protocol!).to eq true
695
+ end
696
+ end
697
+ end
698
+
699
+ context "and the protocol is not supported" do
700
+ let(:connection_protocol) { "invalid" }
701
+ it "outputs an error and exits" do
702
+ expect(knife.ui).to receive(:error).with(/Unsupported protocol '#{connection_protocol}'/)
703
+ expect { knife.validate_protocol! }.to raise_error SystemExit
704
+ end
705
+ end
706
+ end
707
+
708
+ describe "#validate_policy_options!" do
709
+
710
+ context "when only policy_name is given" do
711
+
712
+ let(:bootstrap_cli_options) { %w{ --policy-name my-app-server } }
713
+
714
+ it "returns an error stating that policy_name and policy_group must be given together" do
715
+ expect { knife.validate_policy_options! }.to raise_error(SystemExit)
716
+ expect(stderr.string).to include("ERROR: --policy-name and --policy-group must be specified together")
717
+ end
718
+
719
+ end
720
+
721
+ context "when only policy_group is given" do
722
+
723
+ let(:bootstrap_cli_options) { %w{ --policy-group staging } }
724
+
725
+ it "returns an error stating that policy_name and policy_group must be given together" do
726
+ expect { knife.validate_policy_options! }.to raise_error(SystemExit)
727
+ expect(stderr.string).to include("ERROR: --policy-name and --policy-group must be specified together")
728
+ end
729
+
730
+ end
731
+
732
+ context "when both policy_name and policy_group are given, but run list is also given" do
733
+
734
+ let(:bootstrap_cli_options) { %w{ --policy-name my-app --policy-group staging --run-list cookbook } }
735
+
736
+ it "returns an error stating that policyfile and run_list are exclusive" do
737
+ expect { knife.validate_policy_options! }.to raise_error(SystemExit)
738
+ expect(stderr.string).to include("ERROR: Policyfile options and --run-list are exclusive")
739
+ end
740
+
741
+ end
742
+
743
+ context "when policy_name and policy_group are given with no conflicting options" do
744
+
745
+ let(:bootstrap_cli_options) { %w{ --policy-name my-app --policy-group staging } }
746
+
747
+ it "passes options validation" do
748
+ expect { knife.validate_policy_options! }.to_not raise_error
749
+ end
750
+
751
+ it "passes them into the bootstrap context" do
752
+ expect(knife.bootstrap_context.first_boot).to have_key(:policy_name)
753
+ expect(knife.bootstrap_context.first_boot).to have_key(:policy_group)
754
+ end
755
+
756
+ it "ensures that run_list is not set in the bootstrap context" do
757
+ expect(knife.bootstrap_context.first_boot).to_not have_key(:run_list)
758
+ end
759
+
760
+ end
761
+
762
+ # https://github.com/chef/chef/issues/4131
763
+ # Arguably a bug in the plugin: it shouldn't be setting this to nil, but it
764
+ # worked before, so make it work now.
765
+ context "when a plugin sets the run list option to nil" do
766
+ before do
767
+ knife.config[:run_list] = nil
768
+ end
769
+
770
+ it "passes options validation" do
771
+ expect { knife.validate_policy_options! }.to_not raise_error
772
+ end
773
+ end
774
+ end
775
+
776
+ # TODO - this is the only cli option we validate the _option_ itself -
777
+ # so we'll know if someone accidentally deletes or renames use_sudo_password
778
+ # Is this worht keeping? If so, then it seems we should expand it
779
+ # to cover all options.
780
+ context "validating use_sudo_password option" do
781
+ it "use_sudo_password contains description and long params for help" do
782
+ expect(knife.options).to(have_key(:use_sudo_password)) \
783
+ && expect(knife.options[:use_sudo_password][:description].to_s).not_to(eq(""))\
784
+ && expect(knife.options[:use_sudo_password][:long].to_s).not_to(eq(""))
785
+ end
786
+ end
787
+
788
+ context "#connection_opts" do
789
+ let(:connection_protocol) { "ssh" }
790
+ before do
791
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
792
+ end
793
+ context "behavioral test: " do
794
+ let(:expected_connection_opts) do
795
+ { base_opts: true,
796
+ ssh_identity_opts: true,
797
+ ssh_opts: true,
798
+ gateway_opts: true,
799
+ host_verify_opts: true,
800
+ sudo_opts: true,
801
+ winrm_opts: true }
802
+ end
803
+
804
+ it "queries and merges only expected configurations" do
805
+ expect(knife).to receive(:base_opts).and_return({ base_opts: true })
806
+ expect(knife).to receive(:host_verify_opts).and_return({ host_verify_opts: true })
807
+ expect(knife).to receive(:gateway_opts).and_return({ gateway_opts: true })
808
+ expect(knife).to receive(:sudo_opts).and_return({ sudo_opts: true })
809
+ expect(knife).to receive(:winrm_opts).and_return({ winrm_opts: true })
810
+ expect(knife).to receive(:ssh_opts).and_return({ ssh_opts: true })
811
+ expect(knife).to receive(:ssh_identity_opts).and_return({ ssh_identity_opts: true })
812
+ expect(knife.connection_opts).to match expected_connection_opts
813
+ end
814
+ end
815
+
816
+ context "functional test: " do
817
+ context "when protocol is winrm" do
818
+ let(:connection_protocol) { "winrm" }
819
+ # context "and neither CLI nor Chef::Config config entries have been provided"
820
+ # end
821
+ context "and all supported values are provided as Chef::Config entries" do
822
+ before do
823
+ # Set everything to easily identifiable and obviously fake values
824
+ # to verify that Chef::Config is being sourced instead of knife.config
825
+ Chef::Config[:knife][:max_wait] = 9999
826
+ Chef::Config[:knife][:winrm_user] = "winbob"
827
+ Chef::Config[:knife][:winrm_port] = 9999
828
+ Chef::Config[:knife][:ca_trust_file] = "trust.me"
829
+ Chef::Config[:knife][:kerberos_realm] = "realm"
830
+ Chef::Config[:knife][:kerberos_service] = "service"
831
+ Chef::Config[:knife][:winrm_auth_method] = "kerberos" # default is negotiate
832
+ Chef::Config[:knife][:winrm_basic_auth_only] = true
833
+ Chef::Config[:knife][:winrm_no_verify_cert] = true
834
+ Chef::Config[:knife][:session_timeout] = 9999
835
+ Chef::Config[:knife][:winrm_ssl] = true
836
+ Chef::Config[:knife][:winrm_ssl_peer_fingerprint] = "ABCDEF"
837
+ end
838
+
839
+ context "and unsupported Chef::Config options are given in Chef::Config, not in CLI" do
840
+ before do
841
+ Chef::Config[:knife][:connection_password] = "blah"
842
+ Chef::Config[:knife][:winrm_password] = "blah"
843
+ end
844
+ it "does not include the corresponding option in the connection options" do
845
+ expect(knife.connection_opts.key?(:password)).to eq false
846
+ end
847
+ end
848
+
849
+ context "and no CLI options have been given" do
850
+ before do
851
+ knife.config = {}
852
+ end
853
+ let(:expected_result) do
854
+ {
855
+ logger: Chef::Log, # not configurable
856
+ ca_trust_path: "trust.me",
857
+ max_wait_until_ready: 9999,
858
+ operation_timeout: 9999,
859
+ ssl_peer_fingerprint: "ABCDEF",
860
+ winrm_transport: "kerberos",
861
+ winrm_basic_auth_only: true,
862
+ user: "winbob",
863
+ port: 9999,
864
+ self_signed: true,
865
+ ssl: true,
866
+ kerberos_realm: "realm",
867
+ kerberos_service: "service",
868
+ }
869
+ end
870
+
871
+ it "generates a config hash using the Chef::Config values" do
872
+ expect(knife.connection_opts).to match expected_result
873
+ end
874
+
875
+ end
876
+
877
+ context "and some CLI options have been given" do
878
+ let(:expected_result) do
879
+ {
880
+ logger: Chef::Log, # not configurable
881
+ ca_trust_path: "no trust",
882
+ max_wait_until_ready: 9999,
883
+ operation_timeout: 60,
884
+ ssl_peer_fingerprint: "ABCDEF",
885
+ winrm_transport: "kerberos",
886
+ winrm_basic_auth_only: true,
887
+ user: "microsoftbob",
888
+ port: 12,
889
+ self_signed: true,
890
+ ssl: true,
891
+ kerberos_realm: "realm",
892
+ kerberos_service: "service",
893
+ password: "lobster",
894
+ }
895
+ end
896
+
897
+ before do
898
+ knife.config[:ca_trust_file] = "no trust"
899
+ knife.config[:connection_user] = "microsoftbob"
900
+ knife.config[:connection_port] = 12
901
+ knife.config[:winrm_port] = "13" # indirectly verify we're not looking for the wrong CLI flag
902
+ knife.config[:connection_password] = "lobster"
903
+ end
904
+
905
+ it "generates a config hash using the CLI options when available and falling back to Chef::Config values" do
906
+ expect(knife.connection_opts).to match expected_result
907
+ end
908
+ end
909
+
910
+ context "and all CLI options have been given" do
911
+ before do
912
+ # We'll force kerberos vi knife.config because it
913
+ # causes additional options to populate - make sure
914
+ # Chef::Config is different so we can be sure that we didn't
915
+ # pull in the Chef::Config value
916
+ Chef::Config[:knife][:winrm_auth_method] = "negotiate"
917
+ knife.config[:connection_password] = "blue"
918
+ knife.config[:max_wait] = 1000
919
+ knife.config[:connection_user] = "clippy"
920
+ knife.config[:connection_port] = 1000
921
+ knife.config[:winrm_port] = 1001 # We should not see this value get used
922
+
923
+ knife.config[:ca_trust_file] = "trust.the.internet"
924
+ knife.config[:kerberos_realm] = "otherrealm"
925
+ knife.config[:kerberos_service] = "otherservice"
926
+ knife.config[:winrm_auth_method] = "kerberos" # default is negotiate
927
+ knife.config[:winrm_basic_auth_only] = false
928
+ knife.config[:winrm_no_verify_cert] = false
929
+ knife.config[:session_timeout] = 1000
930
+ knife.config[:winrm_ssl] = false
931
+ knife.config[:winrm_ssl_peer_fingerprint] = "FEDCBA"
932
+ end
933
+ let(:expected_result) do
934
+ {
935
+ logger: Chef::Log, # not configurable
936
+ ca_trust_path: "trust.the.internet",
937
+ max_wait_until_ready: 1000,
938
+ operation_timeout: 1000,
939
+ ssl_peer_fingerprint: "FEDCBA",
940
+ winrm_transport: "kerberos",
941
+ winrm_basic_auth_only: false,
942
+ user: "clippy",
943
+ port: 1000,
944
+ self_signed: false,
945
+ ssl: false,
946
+ kerberos_realm: "otherrealm",
947
+ kerberos_service: "otherservice",
948
+ password: "blue",
949
+ }
950
+ end
951
+ it "generates a config hash using the CLI options and pulling nothing from Chef::Config" do
952
+ expect(knife.connection_opts).to match expected_result
953
+ end
954
+ end
955
+ end # with underlying Chef::Config values
956
+
957
+ context "and no values are provided from Chef::Config or CLI" do
958
+ before do
959
+ # We will use knife's actual config since these tests
960
+ # have assumptions based on CLI default values
961
+ knife.merge_configs
962
+ end
963
+ let(:expected_result) do
964
+ {
965
+ logger: Chef::Log,
966
+ operation_timeout: 60,
967
+ self_signed: false,
968
+ ssl: false,
969
+ ssl_peer_fingerprint: nil,
970
+ winrm_basic_auth_only: false,
971
+ winrm_transport: "negotiate",
972
+ }
973
+ end
974
+ it "populates appropriate defaults" do
975
+ expect(knife.connection_opts).to match expected_result
976
+ end
977
+ end
978
+ end # winrm
979
+
980
+ context "when protocol is ssh" do
981
+ let(:connection_protocol) { "ssh" }
982
+ # context "and neither CLI nor Chef::Config config entries have been provided"
983
+ # end
984
+ context "and all supported values are provided as Chef::Config entries" do
985
+ before do
986
+ # Set everything to easily identifiable and obviously fake values
987
+ # to verify that Chef::Config is being sourced instead of knife.config
988
+ Chef::Config[:knife][:max_wait] = 9999
989
+ Chef::Config[:knife][:session_timeout] = 9999
990
+ Chef::Config[:knife][:ssh_user] = "sshbob"
991
+ Chef::Config[:knife][:ssh_port] = 9999
992
+ Chef::Config[:knife][:host_key_verify] = false
993
+ Chef::Config[:knife][:ssh_gateway_identity] = "/gateway.pem"
994
+ Chef::Config[:knife][:ssh_gateway] = "admin@mygateway.local:1234"
995
+ Chef::Config[:knife][:ssh_identity_file] = "/identity.pem"
996
+ Chef::Config[:knife][:use_sudo_password] = false # We have no password.
997
+ end
998
+
999
+ context "and no CLI options have been given" do
1000
+ before do
1001
+ knife.config = {}
1002
+ end
1003
+ let(:expected_result) do
1004
+ {
1005
+ logger: Chef::Log, # not configurable
1006
+ max_wait_until_ready: 9999.0,
1007
+ connection_timeout: 9999,
1008
+ user: "sshbob",
1009
+ bastion_host: "mygateway.local",
1010
+ bastion_port: 1234,
1011
+ bastion_user: "admin",
1012
+ forward_agent: false,
1013
+ keys_only: true,
1014
+ key_files: ["/identity.pem", "/gateway.pem"],
1015
+ sudo: false,
1016
+ verify_host_key: nil,
1017
+ port: 9999,
1018
+ non_interactive: true,
1019
+ pty: true,
1020
+ }
1021
+ end
1022
+
1023
+ it "generates a correct config hash using the Chef::Config values" do
1024
+ expect(knife.connection_opts).to match expected_result
1025
+ end
1026
+ end
1027
+
1028
+ context "and unsupported Chef::Config options are given in Chef::Config, not in CLI" do
1029
+ before do
1030
+ Chef::Config[:knife][:password] = "blah"
1031
+ Chef::Config[:knife][:ssh_password] = "blah"
1032
+ Chef::Config[:knife][:preserve_home] = true
1033
+ Chef::Config[:knife][:use_sudo] = true
1034
+ Chef::Config[:knife][:ssh_forward_agent] = "blah"
1035
+ end
1036
+ it "does not include the corresponding option in the connection options" do
1037
+ expect(knife.connection_opts.key?(:password)).to eq false
1038
+ expect(knife.connection_opts.key?(:ssh_forward_agent)).to eq false
1039
+ expect(knife.connection_opts.key?(:use_sudo)).to eq false
1040
+ expect(knife.connection_opts.key?(:preserve_home)).to eq false
1041
+ end
1042
+ end
1043
+
1044
+ context "and some CLI options have been given" do
1045
+ before do
1046
+ knife.config[:connection_user] = "sshalice"
1047
+ knife.config[:connection_port] = 12
1048
+ knife.config[:ssh_port] = "13" # canary to indirectly verify we're not looking for the wrong CLI flag
1049
+ knife.config[:connection_password] = "feta cheese"
1050
+ knife.config[:max_wait] = 150
1051
+ knife.config[:session_timeout] = 120
1052
+ knife.config[:use_sudo] = true
1053
+ knife.config[:use_sudo_pasword] = true
1054
+ knife.config[:ssh_forward_agent] = true
1055
+ end
1056
+
1057
+ let(:expected_result) do
1058
+ {
1059
+ logger: Chef::Log, # not configurable
1060
+ max_wait_until_ready: 150.0, # cli
1061
+ connection_timeout: 120, # cli
1062
+ user: "sshalice", # cli
1063
+ password: "feta cheese", # cli
1064
+ bastion_host: "mygateway.local", # Config
1065
+ bastion_port: 1234, # Config
1066
+ bastion_user: "admin", # Config
1067
+ forward_agent: true, # cli
1068
+ keys_only: false, # implied false from config password present
1069
+ key_files: ["/identity.pem", "/gateway.pem"], # Config
1070
+ sudo: true, # ccli
1071
+ verify_host_key: nil, # Config
1072
+ port: 12, # cli
1073
+ non_interactive: true,
1074
+ pty: true,
1075
+ }
1076
+ end
1077
+
1078
+ it "generates a config hash using the CLI options when available and falling back to Chef::Config values" do
1079
+ expect(knife.connection_opts).to match expected_result
1080
+ end
1081
+ end
1082
+
1083
+ context "and all CLI options have been given" do
1084
+ before do
1085
+ knife.config[:max_wait] = 150
1086
+ knife.config[:session_timeout] = 120
1087
+ knife.config[:connection_user] = "sshroot"
1088
+ knife.config[:connection_port] = 1000
1089
+ knife.config[:connection_password] = "blah"
1090
+ knife.config[:forward_agent] = true
1091
+ knife.config[:use_sudo] = true
1092
+ knife.config[:use_sudo_password] = true
1093
+ knife.config[:preserve_home] = true
1094
+ knife.config[:use_sudo_pasword] = true
1095
+ knife.config[:ssh_forward_agent] = true
1096
+ knife.config[:ssh_verify_host_key] = true
1097
+ knife.config[:ssh_gateway_identity] = "/gateway-identity.pem"
1098
+ knife.config[:ssh_gateway] = "me@example.com:10"
1099
+ knife.config[:ssh_identity_file] = "/my-identity.pem"
1100
+
1101
+ # We'll set these as canaries - if one of these values shows up
1102
+ # in a failed test, then the behavior of not pulling from these keys
1103
+ # out of knife.config is broken:
1104
+ knife.config[:ssh_user] = "do not use"
1105
+ knife.config[:ssh_port] = 1001
1106
+ end
1107
+ let(:expected_result) do
1108
+ {
1109
+ logger: Chef::Log, # not configurable
1110
+ max_wait_until_ready: 150,
1111
+ connection_timeout: 120,
1112
+ user: "sshroot",
1113
+ password: "blah",
1114
+ port: 1000,
1115
+ bastion_host: "example.com",
1116
+ bastion_port: 10,
1117
+ bastion_user: "me",
1118
+ forward_agent: true,
1119
+ keys_only: false,
1120
+ key_files: ["/my-identity.pem", "/gateway-identity.pem"],
1121
+ sudo: true,
1122
+ sudo_options: "-H",
1123
+ sudo_password: "blah",
1124
+ verify_host_key: true,
1125
+ non_interactive: true,
1126
+ pty: true,
1127
+ }
1128
+ end
1129
+ it "generates a config hash using the CLI options and pulling nothing from Chef::Config" do
1130
+ expect(knife.connection_opts).to match expected_result
1131
+ end
1132
+ end
1133
+ end
1134
+ context "and no values are provided from Chef::Config or CLI" do
1135
+ before do
1136
+ # We will use knife's actual config since these tests
1137
+ # have assumptions based on CLI default values
1138
+ knife.merge_configs
1139
+ end
1140
+
1141
+ let(:expected_result) do
1142
+ {
1143
+ forward_agent: false,
1144
+ key_files: [],
1145
+ logger: Chef::Log,
1146
+ keys_only: false,
1147
+ sudo: false,
1148
+ verify_host_key: "always",
1149
+ non_interactive: true,
1150
+ pty: true,
1151
+ connection_timeout: 60,
1152
+ }
1153
+ end
1154
+ it "populates appropriate defaults" do
1155
+ expect(knife.connection_opts).to match expected_result
1156
+ end
1157
+ end
1158
+
1159
+ end # ssh
1160
+ end # functional tests
1161
+
1162
+ end # connection_opts
1163
+
1164
+ context "#base_opts" do
1165
+ let(:connection_protocol) { nil }
1166
+
1167
+ before do
1168
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
1169
+ end
1170
+
1171
+ context "when determining knife config keys for user and port" do
1172
+ let(:connection_protocol) { "fake" }
1173
+ it "uses the protocol name to resolve the knife config keys" do
1174
+ allow(knife).to receive(:config_value).with(:max_wait)
1175
+
1176
+ expect(knife).to receive(:config_value).with(:connection_port, :fake_port)
1177
+ expect(knife).to receive(:config_value).with(:connection_user, :fake_user)
1178
+ knife.base_opts
1179
+ end
1180
+ end
1181
+
1182
+ context "for all protocols" do
1183
+ context "when password is provided" do
1184
+ before do
1185
+ knife.config[:connection_port] = 250
1186
+ knife.config[:connection_user] = "test"
1187
+ knife.config[:connection_password] = "opscode"
1188
+ end
1189
+
1190
+ let(:expected_opts) do
1191
+ {
1192
+ port: 250,
1193
+ user: "test",
1194
+ logger: Chef::Log,
1195
+ password: "opscode",
1196
+ }
1197
+ end
1198
+ it "generates the correct options" do
1199
+ expect(knife.base_opts).to eq expected_opts
1200
+ end
1201
+
1202
+ end
1203
+
1204
+ context "when password is not provided" do
1205
+ before do
1206
+ knife.config[:connection_port] = 250
1207
+ knife.config[:connection_user] = "test"
1208
+ end
1209
+
1210
+ let(:expected_opts) do
1211
+ {
1212
+ port: 250,
1213
+ user: "test",
1214
+ logger: Chef::Log,
1215
+ }
1216
+ end
1217
+ it "generates the correct options" do
1218
+ expect(knife.base_opts).to eq expected_opts
1219
+ end
1220
+ end
1221
+ end
1222
+ end
1223
+
1224
+ context "#host_verify_opts" do
1225
+ let(:connection_protocol) { nil }
1226
+ before do
1227
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
1228
+ end
1229
+
1230
+ context "for winrm" do
1231
+ let(:connection_protocol) { "winrm" }
1232
+ it "returns the expected configuration" do
1233
+ knife.config[:winrm_no_verify_cert] = true
1234
+ expect(knife.host_verify_opts).to eq( { self_signed: true } )
1235
+ end
1236
+ it "provides a correct default when no option given" do
1237
+ expect(knife.host_verify_opts).to eq( { self_signed: false } )
1238
+ end
1239
+ end
1240
+
1241
+ context "for ssh" do
1242
+ let(:connection_protocol) { "ssh" }
1243
+ it "returns the expected configuration" do
1244
+ knife.config[:ssh_verify_host_key] = false
1245
+ expect(knife.host_verify_opts).to eq( { verify_host_key: false } )
1246
+ end
1247
+ it "provides a correct default when no option given" do
1248
+ expect(knife.host_verify_opts).to eq( { verify_host_key: "always" } )
1249
+ end
1250
+ end
1251
+ end
1252
+
1253
+ # TODO - test keys_only, password, config source behavior
1254
+ context "#ssh_identity_opts" do
1255
+ let(:connection_protocol) { nil }
1256
+ before do
1257
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
1258
+ end
1259
+
1260
+ context "for winrm" do
1261
+ let(:connection_protocol) { "winrm" }
1262
+ it "returns an empty hash" do
1263
+ expect(knife.ssh_identity_opts).to eq({})
1264
+ end
1265
+ end
1266
+
1267
+ context "for ssh" do
1268
+ let(:connection_protocol) { "ssh" }
1269
+ context "when an identity file is specified" do
1270
+ before do
1271
+ knife.config[:ssh_identity_file] = "/identity.pem"
1272
+ end
1273
+ it "generates the expected configuration" do
1274
+ expect(knife.ssh_identity_opts).to eq({
1275
+ key_files: [ "/identity.pem" ],
1276
+ keys_only: true,
1277
+ })
1278
+ end
1279
+ context "and a password is also specified" do
1280
+ before do
1281
+ knife.config[:connection_password] = "blah"
1282
+ end
1283
+ it "generates the expected configuration (key, keys_only false)" do
1284
+ expect(knife.ssh_identity_opts).to eq({
1285
+ key_files: [ "/identity.pem" ],
1286
+ keys_only: false,
1287
+ })
1288
+ end
1289
+ end
1290
+
1291
+ context "and a gateway is not specified" do
1292
+ context "but a gateway identity file is specified" do
1293
+ it "does not include the gateway identity file in keys" do
1294
+ expect(knife.ssh_identity_opts).to eq({
1295
+ key_files: ["/identity.pem"],
1296
+ keys_only: true,
1297
+ })
1298
+ end
1299
+
1300
+ end
1301
+
1302
+ end
1303
+
1304
+ context "and a gatway is specified" do
1305
+ before do
1306
+ knife.config[:ssh_gateway] = "example.com"
1307
+ end
1308
+ context "and a gateway identity file is not specified" do
1309
+ it "config includes only identity file and not gateway identity" do
1310
+ expect(knife.ssh_identity_opts).to eq({
1311
+ key_files: [ "/identity.pem" ],
1312
+ keys_only: true,
1313
+ })
1314
+ end
1315
+ end
1316
+
1317
+ context "and a gateway identity file is also specified" do
1318
+ before do
1319
+ knife.config[:ssh_gateway_identity] = "/gateway.pem"
1320
+ end
1321
+
1322
+ it "generates the expected configuration (both keys, keys_only true)" do
1323
+ expect(knife.ssh_identity_opts).to eq({
1324
+ key_files: [ "/identity.pem", "/gateway.pem" ],
1325
+ keys_only: true,
1326
+ })
1327
+ end
1328
+ end
1329
+ end
1330
+ end
1331
+
1332
+ context "when no identity file is specified" do
1333
+ it "generates the expected configuration (no keys, keys_only false)" do
1334
+ expect(knife.ssh_identity_opts).to eq( {
1335
+ key_files: [ ],
1336
+ keys_only: false,
1337
+ })
1338
+ end
1339
+ context "and a gateway with gateway identity file is specified" do
1340
+ before do
1341
+ knife.config[:ssh_gateway] = "host"
1342
+ knife.config[:ssh_gateway_identity] = "/gateway.pem"
1343
+ end
1344
+
1345
+ it "generates the expected configuration (gateway key, keys_only false)" do
1346
+ expect(knife.ssh_identity_opts).to eq({
1347
+ key_files: [ "/gateway.pem" ],
1348
+ keys_only: false,
1349
+ })
1350
+ end
1351
+ end
1352
+ end
1353
+ end
1354
+ end
1355
+
1356
+ context "#gateway_opts" do
1357
+ let(:connection_protocol) { nil }
1358
+ before do
1359
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
1360
+ end
1361
+
1362
+ context "for winrm" do
1363
+ let(:connection_protocol) { "winrm" }
1364
+ it "returns an empty hash" do
1365
+ expect(knife.gateway_opts).to eq({})
1366
+ end
1367
+ end
1368
+
1369
+ context "for ssh" do
1370
+ let(:connection_protocol) { "ssh" }
1371
+ context "and ssh_gateway with hostname, user and port provided" do
1372
+ before do
1373
+ knife.config[:ssh_gateway] = "testuser@gateway:9021"
1374
+ end
1375
+ it "returns a proper bastion host config subset" do
1376
+ expect(knife.gateway_opts).to eq({
1377
+ bastion_user: "testuser",
1378
+ bastion_host: "gateway",
1379
+ bastion_port: 9021,
1380
+ })
1381
+ end
1382
+ end
1383
+ context "and ssh_gateway with only hostname is given" do
1384
+ before do
1385
+ knife.config[:ssh_gateway] = "gateway"
1386
+ end
1387
+ it "returns a proper bastion host config subset" do
1388
+ expect(knife.gateway_opts).to eq({
1389
+ bastion_user: nil,
1390
+ bastion_host: "gateway",
1391
+ bastion_port: nil,
1392
+ })
1393
+ end
1394
+ end
1395
+ context "and ssh_gateway with hostname and user is is given" do
1396
+ before do
1397
+ knife.config[:ssh_gateway] = "testuser@gateway"
1398
+ end
1399
+ it "returns a proper bastion host config subset" do
1400
+ expect(knife.gateway_opts).to eq({
1401
+ bastion_user: "testuser",
1402
+ bastion_host: "gateway",
1403
+ bastion_port: nil,
1404
+ })
1405
+ end
1406
+ end
1407
+
1408
+ context "and ssh_gateway with hostname and port is is given" do
1409
+ before do
1410
+ knife.config[:ssh_gateway] = "gateway:11234"
1411
+ end
1412
+ it "returns a proper bastion host config subset" do
1413
+ expect(knife.gateway_opts).to eq({
1414
+ bastion_user: nil,
1415
+ bastion_host: "gateway",
1416
+ bastion_port: 11234,
1417
+ })
1418
+ end
1419
+ end
1420
+
1421
+ context "and ssh_gateway is not provided" do
1422
+ it "returns an empty hash" do
1423
+ expect(knife.gateway_opts).to eq({})
1424
+ end
1425
+ end
1426
+ end
1427
+ end
1428
+
1429
+ context "#sudo_opts" do
1430
+ let(:connection_protocol) { nil }
1431
+ before do
1432
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
1433
+ end
1434
+
1435
+ context "for winrm" do
1436
+ let(:connection_protocol) { "winrm" }
1437
+ it "returns an empty hash" do
1438
+ expect(knife.sudo_opts).to eq({})
1439
+ end
1440
+ end
1441
+
1442
+ context "for ssh" do
1443
+ let(:connection_protocol) { "ssh" }
1444
+ context "when use_sudo is set" do
1445
+ before do
1446
+ knife.config[:use_sudo] = true
1447
+ end
1448
+
1449
+ it "returns a config that enables sudo" do
1450
+ expect(knife.sudo_opts).to eq( { sudo: true } )
1451
+ end
1452
+
1453
+ context "when use_sudo_password is also set" do
1454
+ before do
1455
+ knife.config[:use_sudo_password] = true
1456
+ knife.config[:connection_password] = "opscode"
1457
+ end
1458
+ it "includes :connection_password value in a sudo-enabled configuration" do
1459
+ expect(knife.sudo_opts).to eq({
1460
+ sudo: true,
1461
+ sudo_password: "opscode",
1462
+ })
1463
+ end
1464
+ end
1465
+
1466
+ context "when preserve_home is set" do
1467
+ before do
1468
+ knife.config[:preserve_home] = true
1469
+ end
1470
+ it "enables sudo with sudo_option to preserve home" do
1471
+ expect(knife.sudo_opts).to eq({
1472
+ sudo_options: "-H",
1473
+ sudo: true,
1474
+ })
1475
+ end
1476
+ end
1477
+ end
1478
+
1479
+ context "when use_sudo is not set" do
1480
+ before do
1481
+ knife.config[:use_sudo_password] = true
1482
+ knife.config[:preserve_home] = true
1483
+ end
1484
+ it "returns configuration for sudo off, ignoring other related options" do
1485
+ expect(knife.sudo_opts).to eq( { sudo: false } )
1486
+ end
1487
+ end
1488
+ end
1489
+ end
1490
+
1491
+ context "#ssh_opts" do
1492
+ let(:connection_protocol) { nil }
1493
+ before do
1494
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
1495
+ end
1496
+
1497
+ context "for ssh" do
1498
+ let(:connection_protocol) { "ssh" }
1499
+ let(:default_opts) do
1500
+ {
1501
+ non_interactive: true,
1502
+ pty: true,
1503
+ forward_agent: false,
1504
+ connection_timeout: 60,
1505
+ }
1506
+ end
1507
+
1508
+ context "by default" do
1509
+ it "returns a configuration hash with appropriate defaults" do
1510
+ expect(knife.ssh_opts).to eq default_opts
1511
+ end
1512
+ end
1513
+
1514
+ context "when ssh_forward_agent has a value" do
1515
+ before do
1516
+ knife.config[:ssh_forward_agent] = true
1517
+ end
1518
+ it "returns a default configuration hash with forward_agent set to true" do
1519
+ expect(knife.ssh_opts).to eq(default_opts.merge(forward_agent: true))
1520
+ end
1521
+ end
1522
+ context "when session_timeout has a value" do
1523
+ before do
1524
+ knife.config[:session_timeout] = 120
1525
+ end
1526
+ it "returns a default configuration hash with updated timeout value." do
1527
+ expect(knife.ssh_opts).to eq(default_opts.merge(connection_timeout: 120))
1528
+ end
1529
+ end
1530
+
1531
+ end
1532
+
1533
+ context "for winrm" do
1534
+ let(:connection_protocol) { "winrm" }
1535
+ it "returns an empty has because ssh is not winrm" do
1536
+ expect(knife.ssh_opts).to eq({})
1537
+ end
1538
+ end
1539
+
1540
+ end
1541
+
1542
+ context "#winrm_opts" do
1543
+ let(:connection_protocol) { nil }
1544
+ before do
1545
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
1546
+ end
1547
+
1548
+ context "for winrm" do
1549
+ let(:connection_protocol) { "winrm" }
1550
+ let(:expected) do
1551
+ {
1552
+ winrm_transport: "negotiate",
1553
+ winrm_basic_auth_only: false,
1554
+ ssl: false,
1555
+ ssl_peer_fingerprint: nil,
1556
+ operation_timeout: 60,
1557
+ } end
1558
+
1559
+ it "generates a correct configuration hash with expected defaults" do
1560
+ expect(knife.winrm_opts).to eq expected
1561
+ end
1562
+
1563
+ context "with ssl_peer_fingerprint" do
1564
+ let(:ssl_peer_fingerprint_expected) do
1565
+ expected.merge({ ssl_peer_fingerprint: "ABCD" })
1566
+ end
1567
+
1568
+ before do
1569
+ knife.config[:winrm_ssl_peer_fingerprint] = "ABCD"
1570
+ end
1571
+
1572
+ it "generates a correct options hash with ssl_peer_fingerprint from the config provided" do
1573
+ expect(knife.winrm_opts).to eq ssl_peer_fingerprint_expected
1574
+ end
1575
+ end
1576
+
1577
+ context "with winrm_ssl" do
1578
+ let(:ssl_expected) do
1579
+ expected.merge({ ssl: true })
1580
+ end
1581
+ before do
1582
+ knife.config[:winrm_ssl] = true
1583
+ end
1584
+
1585
+ it "generates a correct options hash with ssl from the config provided" do
1586
+ expect(knife.winrm_opts).to eq ssl_expected
1587
+ end
1588
+ end
1589
+
1590
+ context "with winrm_auth_method" do
1591
+ let(:winrm_auth_method_expected) do
1592
+ expected.merge({ winrm_transport: "freeaccess" })
1593
+ end
1594
+
1595
+ before do
1596
+ knife.config[:winrm_auth_method] = "freeaccess"
1597
+ end
1598
+
1599
+ it "generates a correct options hash with winrm_transport from the config provided" do
1600
+ expect(knife.winrm_opts).to eq winrm_auth_method_expected
1601
+ end
1602
+ end
1603
+
1604
+ context "with ca_trust_file" do
1605
+ let(:ca_trust_expected) do
1606
+ expected.merge({ ca_trust_path: "/trust.me" })
1607
+ end
1608
+ before do
1609
+ knife.config[:ca_trust_file] = "/trust.me"
1610
+ end
1611
+
1612
+ it "generates a correct options hash with ca_trust_file from the config provided" do
1613
+ expect(knife.winrm_opts).to eq ca_trust_expected
1614
+ end
1615
+ end
1616
+
1617
+ context "with kerberos auth" do
1618
+ let(:kerberos_expected) do
1619
+ expected.merge({
1620
+ kerberos_service: "testsvc",
1621
+ kerberos_realm: "TESTREALM",
1622
+ winrm_transport: "kerberos",
1623
+ })
1624
+ end
1625
+
1626
+ before do
1627
+ knife.config[:winrm_auth_method] = "kerberos"
1628
+ knife.config[:kerberos_service] = "testsvc"
1629
+ knife.config[:kerberos_realm] = "TESTREALM"
1630
+ end
1631
+
1632
+ it "generates a correct options hash containing kerberos auth configuration from the config provided" do
1633
+ expect(knife.winrm_opts).to eq kerberos_expected
1634
+ end
1635
+ end
1636
+
1637
+ context "with winrm_basic_auth_only" do
1638
+ before do
1639
+ knife.config[:winrm_basic_auth_only] = true
1640
+ end
1641
+ let(:basic_auth_expected) do
1642
+ expected.merge( { winrm_basic_auth_only: true } )
1643
+ end
1644
+ it "generates a correct options hash containing winrm_basic_auth_only from the config provided" do
1645
+ expect(knife.winrm_opts).to eq basic_auth_expected
1646
+ end
1647
+ end
1648
+ end
1649
+
1650
+ context "for ssh" do
1651
+ let(:connection_protocol) { "ssh" }
1652
+ it "returns an empty hash because ssh is not winrm" do
1653
+ expect(knife.winrm_opts).to eq({})
1654
+ end
1655
+ end
1656
+ end
1657
+ describe "#run" do
1658
+ it "performs the steps we expect to run a bootstrap" do
1659
+ expect(knife).to receive(:check_license)
1660
+ expect(knife).to receive(:validate_name_args!).ordered
1661
+ expect(knife).to receive(:validate_protocol!).ordered
1662
+ expect(knife).to receive(:validate_first_boot_attributes!).ordered
1663
+ expect(knife).to receive(:validate_winrm_transport_opts!).ordered
1664
+ expect(knife).to receive(:validate_policy_options!).ordered
1665
+ expect(knife).to receive(:winrm_warn_no_ssl_verification).ordered
1666
+ expect(knife).to receive(:warn_on_short_session_timeout).ordered
1667
+ expect(knife).to receive(:connect!).ordered
1668
+ expect(knife).to receive(:register_client).ordered
1669
+ expect(knife).to receive(:render_template).and_return "content"
1670
+ expect(knife).to receive(:upload_bootstrap).with("content").and_return "/remote/path.sh"
1671
+ expect(knife).to receive(:perform_bootstrap).with("/remote/path.sh")
1672
+ expect(connection).to receive(:del_file!) # Make sure cleanup happens
1673
+
1674
+ knife.run
1675
+
1676
+ # Post-run verify expected state changes (not many directly in #run)
1677
+ expect($stdout.sync).to eq true
1678
+ end
1679
+ end
1680
+
1681
+ describe "#register_client" do
1682
+ let(:vault_handler_mock) { double("ChefVaultHandler") }
1683
+ let(:client_builder_mock) { double("ClientBuilder") }
1684
+ let(:node_name) { nil }
1685
+ before do
1686
+ allow(knife).to receive(:chef_vault_handler).and_return vault_handler_mock
1687
+ allow(knife).to receive(:client_builder).and_return client_builder_mock
1688
+ knife.config[:chef_node_name] = node_name
1689
+ end
1690
+
1691
+ shared_examples_for "creating the client locally" do
1692
+ context "when a valid node name is present" do
1693
+ let(:node_name) { "test" }
1694
+ before do
1695
+ allow(client_builder_mock).to receive(:client).and_return "client"
1696
+ allow(client_builder_mock).to receive(:client_path).and_return "/key.pem"
1697
+ end
1698
+
1699
+ it "runs client_builder and vault_handler" do
1700
+ expect(client_builder_mock).to receive(:run)
1701
+ expect(vault_handler_mock).to receive(:run).with("client")
1702
+ knife.register_client
1703
+ end
1704
+
1705
+ it "sets the path to the client key in the bootstrap context" do
1706
+ allow(client_builder_mock).to receive(:run)
1707
+ allow(vault_handler_mock).to receive(:run).with("client")
1708
+ knife.register_client
1709
+ expect(knife.bootstrap_context.client_pem).to eq "/key.pem"
1710
+ end
1711
+ end
1712
+
1713
+ context "when no valid node name is present" do
1714
+ let(:node_name) { nil }
1715
+ it "shows an error and exits" do
1716
+ expect(knife.ui).to receive(:error)
1717
+ expect { knife.register_client }.to raise_error(SystemExit)
1718
+ end
1719
+ end
1720
+ end
1721
+ context "when chef_vault_handler says we're using vault" do
1722
+ let(:vault_handler_mock) { double("ChefVaultHandler") }
1723
+ before do
1724
+ allow(vault_handler_mock).to receive(:doing_chef_vault?).and_return true
1725
+ end
1726
+ it_behaves_like "creating the client locally"
1727
+ end
1728
+
1729
+ context "when an non-existant validation key is specified in chef config" do
1730
+ before do
1731
+ Chef::Config[:validation_key] = "/blah"
1732
+ allow(vault_handler_mock).to receive(:doing_chef_vault?).and_return false
1733
+ allow(File).to receive(:exist?).with(/\/blah/).and_return false
1734
+ end
1735
+ it_behaves_like "creating the client locally"
1736
+ end
1737
+
1738
+ context "when a valid validation key is given and we're doing old-style client creation" do
1739
+ before do
1740
+ Chef::Config[:validation_key] = "/blah"
1741
+ allow(File).to receive(:exist?).with(/\/blah/).and_return true
1742
+ allow(vault_handler_mock).to receive(:doing_chef_vault?).and_return false
1743
+ end
1744
+
1745
+ it "shows a message" do
1746
+ expect(knife.ui).to receive(:info)
1747
+ knife.register_client
1748
+ end
1749
+ end
1750
+ end
1751
+
1752
+ describe "#perform_bootstrap" do
1753
+ let(:exit_status) { 0 }
1754
+ let(:result_mock) { double("result", exit_status: exit_status, stderr: "A message") }
1755
+
1756
+ before do
1757
+ allow(connection).to receive(:hostname).and_return "testhost"
1758
+ end
1759
+ it "runs the remote script and logs the output" do
1760
+ expect(knife.ui).to receive(:info).with(/Bootstrapping.*/)
1761
+ expect(knife).to receive(:bootstrap_command)
1762
+ .with("/path.sh")
1763
+ .and_return("sh /path.sh")
1764
+ expect(connection)
1765
+ .to receive(:run_command)
1766
+ .with("sh /path.sh")
1767
+ .and_yield("output here")
1768
+ .and_return result_mock
1769
+
1770
+ expect(knife.ui).to receive(:msg).with(/testhost/)
1771
+ knife.perform_bootstrap("/path.sh")
1772
+ end
1773
+ context "when the remote command fails" do
1774
+ let(:exit_status) { 1 }
1775
+ it "shows an error and exits" do
1776
+ expect(knife.ui).to receive(:info).with(/Bootstrapping.*/)
1777
+ expect(knife).to receive(:bootstrap_command)
1778
+ .with("/path.sh")
1779
+ .and_return("sh /path.sh")
1780
+ expect(connection).to receive(:run_command).with("sh /path.sh").and_return result_mock
1781
+ expect { knife.perform_bootstrap("/path.sh") }.to raise_error(SystemExit)
1782
+ end
1783
+ end
1784
+ end
1785
+
1786
+ describe "#connect!" do
1787
+ before do
1788
+ # These are not required at run-time because train will handle its own
1789
+ # protocol loading. In this case, we're simulating train failures and have to load
1790
+ # them ourselves.
1791
+ require "net/ssh"
1792
+ require "train/transports/ssh"
1793
+ end
1794
+
1795
+ context "in the normal case" do
1796
+ it "connects using the connection_opts and notifies the operator of progress" do
1797
+ expect(knife.ui).to receive(:info).with(/Connecting to.*/)
1798
+ expect(knife).to receive(:connection_opts).and_return( { opts: "here" })
1799
+ expect(knife).to receive(:do_connect).with( { opts: "here" } )
1800
+ knife.connect!
1801
+ end
1802
+ end
1803
+
1804
+ context "when a general non-auth-failure occurs" do
1805
+ let(:expected_error) { RuntimeError.new }
1806
+ before do
1807
+ allow(knife).to receive(:do_connect).and_raise(expected_error)
1808
+ end
1809
+ it "re-raises the exception" do
1810
+ expect { knife.connect! }.to raise_error(expected_error)
1811
+ end
1812
+ end
1813
+
1814
+ context "when ssh fingerprint is invalid" do
1815
+ let(:expected_error) { Train::Error.new("fingerprint AA:BB is unknown for \"blah,127.0.0.1\"") }
1816
+ before do
1817
+ allow(knife).to receive(:do_connect).and_raise(expected_error)
1818
+ end
1819
+ it "warns, prompts to accept, then connects with verify_host_key of accept_new" do
1820
+ expect(knife).to receive(:do_connect).and_raise(expected_error)
1821
+ expect(knife.ui).to receive(:confirm)
1822
+ .with(/.*host 'blah \(127.0.0.1\)'.*AA:BB.*Are you sure you want to continue.*/m)
1823
+ .and_return(true)
1824
+ expect(knife).to receive(:do_connect) do |opts|
1825
+ expect(opts[:verify_host_key]).to eq :accept_new
1826
+ end
1827
+ knife.connect!
1828
+ end
1829
+ end
1830
+
1831
+ context "when an auth failure occurs" do
1832
+ let(:expected_error) do
1833
+ e = Train::Error.new
1834
+ actual = Net::SSH::AuthenticationFailed.new
1835
+ # Simulate train's nested error - they wrap
1836
+ # ssh/network errors in a TrainError.
1837
+ allow(e).to receive(:cause).and_return(actual)
1838
+ e
1839
+ end
1840
+
1841
+ context "and password auth was used" do
1842
+ before do
1843
+ allow(connection).to receive(:password_auth?).and_return true
1844
+ end
1845
+
1846
+ it "re-raises the error so as not to resubmit the same failing password" do
1847
+ expect(knife).to receive(:do_connect).and_raise(expected_error)
1848
+ expect { knife.connect! }.to raise_error(expected_error)
1849
+ end
1850
+ end
1851
+
1852
+ context "and password auth was not used" do
1853
+ before do
1854
+ allow(connection).to receive(:password_auth?).and_return false
1855
+ allow(connection).to receive(:user).and_return "testuser"
1856
+ end
1857
+
1858
+ it "warns, prompts for password, then reconnects with a password-enabled configuration using the new password" do
1859
+ question_mock = double("question")
1860
+ expect(knife).to receive(:do_connect).and_raise(expected_error)
1861
+ expect(knife.ui).to receive(:warn).with(/Failed to auth.*/)
1862
+ expect(knife.ui).to receive(:ask).and_yield(question_mock).and_return("newpassword")
1863
+ # Ensure that we set echo off to prevent showing password on the screen
1864
+ expect(question_mock).to receive(:echo=).with false
1865
+ expect(knife).to receive(:do_connect) do |opts|
1866
+ expect(opts[:password]).to eq "newpassword"
1867
+ end
1868
+ knife.connect!
1869
+ end
1870
+ end
1871
+ end
1872
+ end
1873
+
1874
+ it "verifies that a server to bootstrap was given as a command line arg" do
1875
+ knife.name_args = nil
1876
+ expect(knife).to receive(:check_license)
1877
+ expect { knife.run }.to raise_error(SystemExit)
1878
+ expect(stderr.string).to match(/ERROR:.+FQDN or ip/)
1879
+ end
1880
+
1881
+ describe "#bootstrap_context" do
1882
+ context "under Windows" do
1883
+ let(:windows_test) { true }
1884
+ it "creates a WindowsBootstrapContext" do
1885
+ require "chef/knife/core/windows_bootstrap_context"
1886
+ expect(knife.bootstrap_context.class).to eq Chef::Knife::Core::WindowsBootstrapContext
1887
+ end
1888
+ end
1889
+
1890
+ context "under linux" do
1891
+ let(:linux_test) { true }
1892
+ it "creates a BootstrapContext" do
1893
+ require "chef/knife/core/bootstrap_context"
1894
+ expect(knife.bootstrap_context.class).to eq Chef::Knife::Core::BootstrapContext
1895
+ end
1896
+ end
1897
+ end
1898
+
1899
+ describe "#config_value" do
1900
+ before do
1901
+ knife.config[:test_key_a] = "a from cli"
1902
+ knife.config[:test_key_b] = "b from cli"
1903
+ Chef::Config[:knife][:test_key_a] = "a from Chef::Config"
1904
+ Chef::Config[:knife][:test_key_c] = "c from Chef::Config"
1905
+ Chef::Config[:knife][:alt_test_key_c] = "alt c from Chef::Config"
1906
+ end
1907
+
1908
+ it "returns CLI value when key is only provided by the CLI" do
1909
+ expect(knife.config_value(:test_key_b)).to eq "b from cli"
1910
+ end
1911
+
1912
+ it "returns CLI value when key is provided by CLI and Chef::Config" do
1913
+ expect(knife.config_value(:test_key_a)).to eq "a from cli"
1914
+ end
1915
+
1916
+ it "returns Chef::Config value whent he key is only provided by Chef::Config" do
1917
+ expect(knife.config_value(:test_key_c)).to eq "c from Chef::Config"
1918
+ end
1919
+
1920
+ it "returns the Chef::Config value from the alternative key when the CLI key is not set" do
1921
+ expect(knife.config_value(:test_key_c, :alt_test_key_c)).to eq "alt c from Chef::Config"
1922
+ end
1923
+
1924
+ it "returns the default value when the key is not provided by CLI or Chef::Config" do
1925
+ expect(knife.config_value(:missing_key, :missing_key, "found")).to eq "found"
1926
+ end
1927
+ end
1928
+
1929
+ describe "#upload_bootstrap" do
1930
+ before do
1931
+ allow(connection).to receive(:temp_dir).and_return(temp_dir)
1932
+ allow(connection).to receive(:normalize_path) { |a| a }
1933
+ end
1934
+
1935
+ let(:content) { "bootstrap script content" }
1936
+ context "under Windows" do
1937
+ let(:windows_test) { true }
1938
+ let(:temp_dir) { "C:/Temp/bootstrap" }
1939
+ it "creates a bat file in the temp dir provided by connection, using given content" do
1940
+ expect(connection).to receive(:upload_file_content!).with(content, "C:/Temp/bootstrap/bootstrap.bat")
1941
+ expect(knife.upload_bootstrap(content)).to eq "C:/Temp/bootstrap/bootstrap.bat"
1942
+ end
1943
+ end
1944
+
1945
+ context "under Linux" do
1946
+ let(:linux_test) { true }
1947
+ let(:temp_dir) { "/tmp/bootstrap" }
1948
+ it "creates a 'sh file in the temp dir provided by connection, using given content" do
1949
+ expect(connection).to receive(:upload_file_content!).with(content, "/tmp/bootstrap/bootstrap.sh")
1950
+ expect(knife.upload_bootstrap(content)).to eq "/tmp/bootstrap/bootstrap.sh"
1951
+ end
1952
+ end
1953
+ end
1954
+
1955
+ describe "#bootstrap_command" do
1956
+ context "under Windows" do
1957
+ let(:windows_test) { true }
1958
+ it "prefixes the command to run under cmd.exe" do
1959
+ expect(knife.bootstrap_command("autoexec.bat")).to eq "cmd.exe /C autoexec.bat"
1960
+ end
1961
+
1962
+ end
1963
+ context "under Linux" do
1964
+ let(:linux_test) { true }
1965
+ it "prefixes the command to run under sh" do
1966
+ expect(knife.bootstrap_command("bootstrap")).to eq "sh bootstrap"
1967
+ end
1968
+ end
1969
+ end
1970
+
1971
+ describe "#default_bootstrap_template" do
1972
+ context "under Windows" do
1973
+ let(:windows_test) { true }
1974
+ it "is windows-chef-client-msi" do
1975
+ expect(knife.default_bootstrap_template).to eq "windows-chef-client-msi"
1976
+ end
1977
+
1978
+ end
1979
+ context "under Linux" do
1980
+ let(:linux_test) { true }
1981
+ it "is chef-full" do
1982
+ expect(knife.default_bootstrap_template).to eq "chef-full"
1983
+ end
1984
+ end
1985
+ end
1986
+
1987
+ describe "#do_connect" do
1988
+ let(:host_descriptor) { "example.com" }
1989
+ let(:connection) { double("TrainConnector") }
1990
+ let(:connector_mock) { double("TargetResolver", targets: [ connection ]) }
1991
+ before do
1992
+ allow(knife).to receive(:host_descriptor).and_return host_descriptor
1993
+ end
1994
+
1995
+ it "creates a TrainConnector and connects it" do
1996
+ expect(Chef::Knife::Bootstrap::TrainConnector).to receive(:new).and_return connection
1997
+ expect(connection).to receive(:connect!)
1998
+ knife.do_connect({})
1999
+ end
2000
+ end
2001
+
2002
+ describe "validate_winrm_transport_opts!" do
2003
+ before do
2004
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
2005
+ end
2006
+
2007
+ context "when using ssh" do
2008
+ let(:connection_protocol) { "ssh" }
2009
+ it "returns true" do
2010
+ expect(knife.validate_winrm_transport_opts!).to eq true
2011
+ end
2012
+ end
2013
+ context "when using winrm" do
2014
+ let(:connection_protocol) { "winrm" }
2015
+ context "with plaintext auth" do
2016
+ before do
2017
+ knife.config[:winrm_auth_method] = "plaintext"
2018
+ end
2019
+ context "with ssl" do
2020
+ before do
2021
+ knife.config[:winrm_ssl] = true
2022
+ end
2023
+ it "will not error because we won't send anything in plaintext regardless" do
2024
+ expect(knife.validate_winrm_transport_opts!).to eq true
2025
+ end
2026
+ end
2027
+ context "without ssl" do
2028
+ before do
2029
+ knife.config[:winrm_ssl] = false
2030
+ end
2031
+ context "and no validation key exists" do
2032
+ before do
2033
+ Chef::Config[:validation_key] = "validation_key.pem"
2034
+ allow(File).to receive(:exist?).with(/.*validation_key.pem/).and_return false
2035
+ end
2036
+
2037
+ it "will error because we will generate and send a client key over the wire in plaintext" do
2038
+ expect { knife.validate_winrm_transport_opts! }.to raise_error(SystemExit)
2039
+ end
2040
+
2041
+ end
2042
+ context "and a validation key exists" do
2043
+ before do
2044
+ Chef::Config[:validation_key] = "validation_key.pem"
2045
+ allow(File).to receive(:exist?).with(/.*validation_key.pem/).and_return true
2046
+ end
2047
+ # TODO - don't we still send validation key?
2048
+ it "will not error because we don not send client key over the wire" do
2049
+ expect(knife.validate_winrm_transport_opts!).to eq true
2050
+ end
2051
+ end
2052
+ end
2053
+ end
2054
+
2055
+ context "with other auth" do
2056
+ before do
2057
+ knife.config[:winrm_auth_method] = "kerberos"
2058
+ end
2059
+
2060
+ context "and no validation key exists" do
2061
+ before do
2062
+
2063
+ Chef::Config[:validation_key] = "validation_key.pem"
2064
+ allow(File).to receive(:exist?).with(/.*validation_key.pem/).and_return false
2065
+ end
2066
+
2067
+ it "will not error because we're not using plaintext auth" do
2068
+ expect(knife.validate_winrm_transport_opts!).to eq true
2069
+ end
2070
+ end
2071
+ context "and a validation key exists" do
2072
+ before do
2073
+ Chef::Config[:validation_key] = "validation_key.pem"
2074
+ allow(File).to receive(:exist?).with(/.*validation_key.pem/).and_return true
2075
+ end
2076
+
2077
+ it "will not error because a client key won't be sent over the wire in plaintext when a validation key is present" do
2078
+ expect(knife.validate_winrm_transport_opts!).to eq true
2079
+ end
2080
+ end
2081
+
2082
+ end
2083
+
2084
+ end
2085
+
2086
+ end
2087
+
2088
+ describe "#winrm_warn_no_ssl_verification" do
2089
+ before do
2090
+ allow(knife).to receive(:connection_protocol).and_return connection_protocol
2091
+ end
2092
+
2093
+ context "when using ssh" do
2094
+ let(:connection_protocol) { "ssh" }
2095
+ it "does not issue a warning" do
2096
+ expect(knife.ui).to_not receive(:warn)
2097
+ knife.winrm_warn_no_ssl_verification
2098
+ end
2099
+ end
2100
+ context "when using winrm" do
2101
+ let(:connection_protocol) { "winrm" }
2102
+ context "winrm_no_verify_cert is set" do
2103
+ before do
2104
+ knife.config[:winrm_no_verify_cert] = true
2105
+ end
2106
+
2107
+ context "and ca_trust_file is present" do
2108
+ before do
2109
+ knife.config[:ca_trust_file] = "file"
2110
+ end
2111
+
2112
+ it "does not issue a warning" do
2113
+ expect(knife.ui).to_not receive(:warn)
2114
+ knife.winrm_warn_no_ssl_verification
2115
+ end
2116
+ end
2117
+
2118
+ context "and winrm_ssl_peer_fingerprint is present" do
2119
+ before do
2120
+ knife.config[:winrm_ssl_peer_fingerprint] = "ABCD"
2121
+ end
2122
+ it "does not issue a warning" do
2123
+ expect(knife.ui).to_not receive(:warn)
2124
+ knife.winrm_warn_no_ssl_verification
2125
+ end
2126
+ end
2127
+ context "and neither ca_trust_file nor winrm_ssl_peer_fingerprint is present" do
2128
+ it "issues a warning" do
2129
+ expect(knife.ui).to receive(:warn)
2130
+ knife.winrm_warn_no_ssl_verification
2131
+ end
2132
+ end
2133
+ end
2134
+ end
2135
+ end
2136
+
2137
+ describe "#warn_on_short_session_timeout" do
2138
+ let(:session_timeout) { 60 }
2139
+
2140
+ before do
2141
+ allow(knife).to receive(:session_timeout).and_return(session_timeout)
2142
+ end
2143
+
2144
+ context "timeout is not set at all" do
2145
+ let(:session_timeout) { nil }
2146
+ it "does not issue a warning" do
2147
+ expect(knife.ui).to_not receive(:warn)
2148
+ knife.warn_on_short_session_timeout
2149
+ end
2150
+ end
2151
+
2152
+ context "timeout is more than 15" do
2153
+ let(:session_timeout) { 16 }
2154
+ it "does not issue a warning" do
2155
+ expect(knife.ui).to_not receive(:warn)
2156
+ knife.warn_on_short_session_timeout
2157
+ end
2158
+ end
2159
+ context "timeout is 15 or less" do
2160
+ let(:session_timeout) { 15 }
2161
+ it "issues a warning" do
2162
+ expect(knife.ui).to receive(:warn)
2163
+ knife.warn_on_short_session_timeout
2164
+ end
2165
+ end
2166
+ end
2167
+ end