RubyGems - chef - Versions diffs - 15.11.3-universal-mingw32 → 16.1.16-universal-mingw32 - Mend

chef 15.11.3-universal-mingw32 → 16.1.16-universal-mingw32

Files changed (513) hide show

checksums.yaml +4 -4
data/Gemfile +3 -7
data/README.md +1 -1
data/Rakefile +44 -16
data/chef.gemspec +6 -4
data/distro/powershell/chef/chef.psm1 +3 -3
data/distro/templates/powershell/chef/chef.psm1.erb +3 -3
data/lib/chef/action_collection.rb +16 -5
data/lib/chef/application.rb +33 -54
data/lib/chef/application/apply.rb +18 -1
data/lib/chef/application/base.rb +8 -3
data/lib/chef/application/knife.rb +1 -1
data/lib/chef/chef_class.rb +4 -4
data/lib/chef/chef_fs/file_system/chef_server/acls_dir.rb +1 -1
data/lib/chef/chef_fs/file_system/chef_server/cookbook_file.rb +1 -1
data/lib/chef/chef_fs/file_system/chef_server/rest_list_entry.rb +6 -2
data/lib/chef/chef_fs/file_system/repository/chef_repository_file_system_root_dir.rb +3 -3
data/lib/chef/chef_fs/file_system/repository/directory.rb +1 -1
data/lib/chef/chef_fs/parallelizer/parallel_enumerable.rb +1 -1
data/lib/chef/chef_fs/path_utils.rb +3 -3
data/lib/chef/client.rb +16 -14
data/lib/chef/config.rb +1 -1
data/lib/chef/cookbook/file_system_file_vendor.rb +1 -1
data/lib/chef/cookbook/gem_installer.rb +1 -1
data/lib/chef/cookbook/metadata.rb +45 -22
data/lib/chef/cookbook_loader.rb +1 -1
data/lib/chef/cookbook_manifest.rb +1 -1
data/lib/chef/cookbook_site_streaming_uploader.rb +1 -1
data/lib/chef/cookbook_version.rb +38 -3
data/lib/chef/data_collector.rb +1 -1
data/lib/chef/data_collector/error_handlers.rb +1 -1
data/lib/chef/data_collector/run_end_message.rb +7 -1
data/lib/chef/decorator/lazy_array.rb +2 -2
data/lib/chef/deprecated.rb +4 -0
data/lib/chef/digester.rb +4 -4
data/lib/chef/dist.rb +8 -0
data/lib/chef/dsl/chef_vault.rb +84 -0
data/lib/chef/dsl/declare_resource.rb +7 -5
data/lib/chef/dsl/platform_introspection.rb +3 -2
data/lib/chef/dsl/recipe.rb +7 -12
data/lib/chef/dsl/universal.rb +3 -7
data/lib/chef/encrypted_data_bag_item/decryptor.rb +1 -1
data/lib/chef/encrypted_data_bag_item/encryptor.rb +1 -1
data/lib/chef/event_dispatch/base.rb +3 -0
data/lib/chef/formatters/base.rb +1 -1
data/lib/chef/formatters/doc.rb +1 -1
data/lib/chef/formatters/indentable_output_stream.rb +7 -16
data/lib/chef/http.rb +1 -1
data/lib/chef/http/decompressor.rb +1 -1
data/lib/chef/http/http_request.rb +3 -2
data/lib/chef/json_compat.rb +1 -1
data/lib/chef/key.rb +1 -1
data/lib/chef/knife.rb +2 -4
data/lib/chef/knife/acl_add.rb +57 -0
data/lib/chef/knife/acl_base.rb +183 -0
data/lib/chef/knife/acl_bulk_add.rb +78 -0
data/lib/chef/knife/acl_bulk_remove.rb +83 -0
data/lib/chef/knife/acl_remove.rb +62 -0
data/lib/chef/knife/acl_show.rb +56 -0
data/lib/chef/knife/bootstrap.rb +84 -90
data/lib/chef/knife/bootstrap/chef_vault_handler.rb +2 -2
data/lib/chef/knife/bootstrap/client_builder.rb +2 -2
data/lib/chef/knife/bootstrap/templates/chef-full.erb +11 -11
data/lib/chef/knife/bootstrap/templates/windows-chef-client-msi.erb +12 -12
data/lib/chef/knife/core/bootstrap_context.rb +63 -60
data/lib/chef/knife/core/generic_presenter.rb +4 -3
data/lib/chef/knife/core/hashed_command_loader.rb +1 -1
data/lib/chef/knife/core/node_presenter.rb +2 -2
data/lib/chef/knife/core/status_presenter.rb +5 -5
data/lib/chef/knife/core/subcommand_loader.rb +1 -1
data/lib/chef/knife/core/ui.rb +17 -1
data/lib/chef/knife/core/windows_bootstrap_context.rb +44 -42
data/lib/chef/knife/data_bag_secret_options.rb +18 -45
data/lib/chef/knife/group_add.rb +55 -0
data/lib/chef/knife/{cookbook_site_download.rb → group_create.rb} +21 -12
data/lib/chef/knife/group_destroy.rb +53 -0
data/lib/chef/knife/{cookbook_site_list.rb → group_list.rb} +14 -11
data/lib/chef/knife/group_remove.rb +56 -0
data/lib/chef/knife/{cookbook_site_install.rb → group_show.rb} +21 -12
data/lib/chef/knife/key_create_base.rb +1 -1
data/lib/chef/knife/key_edit_base.rb +1 -1
data/lib/chef/knife/ssh.rb +12 -31
data/lib/chef/knife/status.rb +3 -3
data/lib/chef/knife/supermarket_download.rb +1 -2
data/lib/chef/knife/supermarket_install.rb +2 -3
data/lib/chef/knife/supermarket_list.rb +1 -2
data/lib/chef/knife/supermarket_search.rb +1 -2
data/lib/chef/knife/supermarket_share.rb +1 -2
data/lib/chef/knife/supermarket_show.rb +1 -2
data/lib/chef/knife/supermarket_unshare.rb +1 -2
data/lib/chef/knife/{cookbook_site_show.rb → user_dissociate.rb} +15 -13
data/lib/chef/knife/{cookbook_site_search.rb → user_invite_add.rb} +16 -13
data/lib/chef/knife/user_invite_list.rb +34 -0
data/lib/chef/knife/user_invite_rescind.rb +63 -0
data/lib/chef/knife/yaml_convert.rb +91 -0
data/lib/chef/mixin/api_version_request_handling.rb +1 -1
data/lib/chef/mixin/checksum.rb +0 -1
data/lib/chef/mixin/openssl_helper.rb +4 -4
data/lib/chef/mixin/powershell_exec.rb +10 -1
data/lib/chef/mixin/powershell_out.rb +1 -1
data/lib/chef/mixin/properties.rb +16 -2
data/lib/chef/mixin/shell_out.rb +1 -5
data/lib/chef/monkey_patches/net_http.rb +0 -4
data/lib/chef/node.rb +18 -6
data/lib/chef/node/attribute.rb +2 -2
data/lib/chef/node/immutable_collections.rb +1 -1
data/lib/chef/node/mixin/immutablize_array.rb +4 -0
data/lib/chef/node/mixin/immutablize_hash.rb +3 -0
data/lib/chef/node_map.rb +5 -31
data/lib/chef/platform/priority_map.rb +4 -4
data/lib/chef/platform/query_helpers.rb +6 -34
data/lib/chef/policy_builder/policyfile.rb +1 -1
data/lib/chef/powershell.rb +14 -0
data/lib/chef/property.rb +24 -6
data/lib/chef/provider.rb +40 -6
data/lib/chef/provider/cron.rb +2 -2
data/lib/chef/provider/directory.rb +3 -3
data/lib/chef/provider/dsc_resource.rb +1 -1
data/lib/chef/provider/dsc_script.rb +1 -1
data/lib/chef/provider/execute.rb +3 -9
data/lib/chef/provider/file.rb +6 -6
data/lib/chef/provider/git.rb +84 -27
data/lib/chef/provider/group.rb +4 -4
data/lib/chef/provider/http_request.rb +6 -6
data/lib/chef/provider/ifconfig.rb +4 -4
data/lib/chef/provider/launchd.rb +45 -64
data/lib/chef/provider/link.rb +2 -2
data/lib/chef/provider/mount.rb +5 -5
data/lib/chef/provider/osx_profile.rb +7 -3
data/lib/chef/provider/package.rb +2 -2
data/lib/chef/provider/package/cab.rb +5 -6
data/lib/chef/provider/package/chocolatey.rb +1 -3
data/lib/chef/provider/package/dnf.rb +66 -10
data/lib/chef/provider/package/dnf/dnf_helper.py +85 -26
data/lib/chef/provider/package/dnf/python_helper.rb +79 -36
data/lib/chef/provider/package/dnf/version.rb +5 -1
data/lib/chef/provider/package/dpkg.rb +1 -1
data/lib/chef/provider/package/freebsd/base.rb +2 -1
data/lib/chef/provider/package/homebrew.rb +107 -43
data/lib/chef/provider/package/macports.rb +0 -2
data/lib/chef/provider/package/msu.rb +4 -1
data/lib/chef/provider/package/pacman.rb +25 -34
data/lib/chef/provider/package/portage.rb +1 -0
data/lib/chef/provider/package/powershell.rb +1 -1
data/lib/chef/provider/package/rubygems.rb +30 -3
data/lib/chef/provider/package/windows.rb +29 -53
data/lib/chef/provider/package/windows/msi.rb +2 -2
data/lib/chef/provider/package/yum.rb +1 -9
data/lib/chef/provider/package/yum/yum_cache.rb +1 -1
data/lib/chef/provider/package/zypper.rb +0 -1
data/lib/chef/provider/powershell_script.rb +5 -11
data/lib/chef/provider/registry_key.rb +4 -4
data/lib/chef/provider/remote_directory.rb +5 -5
data/lib/chef/provider/remote_file/ftp.rb +3 -2
data/lib/chef/provider/remote_file/local_file.rb +2 -1
data/lib/chef/provider/remote_file/sftp.rb +3 -2
data/lib/chef/provider/route.rb +5 -3
data/lib/chef/provider/ruby_block.rb +1 -1
data/lib/chef/provider/script.rb +2 -2
data/lib/chef/provider/service.rb +8 -8
data/lib/chef/provider/service/aixinit.rb +1 -1
data/lib/chef/provider/service/arch.rb +1 -1
data/lib/chef/provider/service/debian.rb +30 -28
data/lib/chef/provider/service/macosx.rb +16 -10
data/lib/chef/provider/service/systemd.rb +12 -12
data/lib/chef/provider/service/upstart.rb +1 -1
data/lib/chef/provider/service/windows.rb +5 -11
data/lib/chef/provider/subversion.rb +25 -5
data/lib/chef/provider/systemd_unit.rb +26 -25
data/lib/chef/provider/user.rb +6 -6
data/lib/chef/provider/user/aix.rb +1 -1
data/lib/chef/provider/user/dscl.rb +6 -6
data/lib/chef/provider/user/mac.rb +20 -15
data/lib/chef/provider/whyrun_safe_ruby_block.rb +1 -1
data/lib/chef/provider/windows_env.rb +3 -3
data/lib/chef/provider/windows_script.rb +2 -2
data/lib/chef/provider/windows_task.rb +10 -10
data/lib/chef/providers.rb +0 -6
data/lib/chef/recipe.rb +36 -0
data/lib/chef/resource.rb +44 -57
data/lib/chef/resource/action_class.rb +24 -22
data/lib/chef/resource/alternatives.rb +210 -0
data/lib/chef/resource/apt_package.rb +33 -3
data/lib/chef/resource/apt_preference.rb +103 -7
data/lib/chef/resource/apt_repository.rb +357 -18
data/lib/chef/resource/apt_update.rb +58 -5
data/lib/chef/resource/archive_file.rb +6 -5
data/lib/chef/resource/bash.rb +3 -1
data/lib/chef/resource/batch.rb +1 -1
data/lib/chef/resource/bff_package.rb +10 -2
data/lib/chef/resource/breakpoint.rb +1 -2
data/lib/chef/resource/build_essential.rb +49 -51
data/lib/chef/resource/cab_package.rb +9 -2
data/lib/chef/resource/chef_client_cron.rb +228 -0
data/lib/chef/resource/chef_client_scheduled_task.rb +201 -0
data/lib/chef/resource/chef_client_systemd_timer.rb +180 -0
data/lib/chef/resource/chef_gem.rb +15 -18
data/lib/chef/resource/chef_handler.rb +5 -4
data/lib/chef/resource/chef_sleep.rb +7 -5
data/lib/chef/resource/chef_vault_secret.rb +135 -0
data/lib/chef/resource/chocolatey_config.rb +8 -4
data/lib/chef/resource/chocolatey_feature.rb +7 -4
data/lib/chef/resource/chocolatey_package.rb +7 -4
data/lib/chef/resource/chocolatey_source.rb +7 -4
data/lib/chef/resource/cookbook_file.rb +4 -3
data/lib/chef/resource/cron.rb +34 -80
data/lib/chef/resource/cron_access.rb +10 -6
data/lib/chef/resource/cron_d.rb +44 -95
data/lib/chef/resource/csh.rb +3 -1
data/lib/chef/resource/directory.rb +3 -3
data/lib/chef/resource/dmg_package.rb +22 -19
data/lib/chef/resource/dnf_package.rb +3 -4
data/lib/chef/resource/dpkg_package.rb +3 -2
data/lib/chef/resource/dsc_resource.rb +6 -4
data/lib/chef/resource/dsc_script.rb +3 -2
data/lib/chef/resource/execute.rb +15 -14
data/lib/chef/resource/file.rb +14 -9
data/lib/chef/resource/freebsd_package.rb +3 -2
data/lib/chef/resource/gem_package.rb +19 -11
data/lib/chef/resource/group.rb +5 -2
data/lib/chef/resource/helpers/cron_validations.rb +98 -0
data/lib/chef/resource/homebrew_cask.rb +3 -2
data/lib/chef/resource/homebrew_package.rb +5 -3
data/lib/chef/resource/homebrew_tap.rb +3 -2
data/lib/chef/resource/hostname.rb +26 -20
data/lib/chef/resource/http_request.rb +1 -2
data/lib/chef/resource/ifconfig.rb +8 -8
data/lib/chef/resource/ips_package.rb +11 -3
data/lib/chef/resource/kernel_module.rb +30 -30
data/lib/chef/resource/ksh.rb +3 -1
data/lib/chef/resource/launchd.rb +3 -3
data/lib/chef/resource/link.rb +5 -27
data/lib/chef/resource/locale.rb +60 -26
data/lib/chef/resource/log.rb +13 -2
data/lib/chef/resource/lwrp_base.rb +1 -1
data/lib/chef/resource/macos_userdefaults.rb +18 -10
data/lib/chef/resource/macosx_service.rb +3 -2
data/lib/chef/resource/macports_package.rb +10 -2
data/lib/chef/resource/mdadm.rb +63 -3
data/lib/chef/resource/mount.rb +4 -1
data/lib/chef/resource/msu_package.rb +19 -2
data/lib/chef/resource/notify_group.rb +8 -3
data/lib/chef/resource/ohai.rb +20 -4
data/lib/chef/resource/ohai_hint.rb +4 -13
data/lib/chef/resource/openbsd_package.rb +10 -2
data/lib/chef/resource/openssl_dhparam.rb +11 -2
data/lib/chef/resource/openssl_ec_private_key.rb +24 -2
data/lib/chef/resource/openssl_ec_public_key.rb +22 -2
data/lib/chef/resource/openssl_rsa_private_key.rb +21 -2
data/lib/chef/resource/openssl_rsa_public_key.rb +23 -2
data/lib/chef/resource/openssl_x509_certificate.rb +38 -2
data/lib/chef/resource/openssl_x509_crl.rb +13 -2
data/lib/chef/resource/openssl_x509_request.rb +38 -2
data/lib/chef/resource/osx_profile.rb +4 -3
data/lib/chef/resource/package.rb +3 -2
data/lib/chef/resource/pacman_package.rb +3 -2
data/lib/chef/resource/paludis_package.rb +13 -4
data/lib/chef/resource/perl.rb +3 -1
data/lib/chef/resource/plist.rb +207 -0
data/lib/chef/resource/portage_package.rb +14 -4
data/lib/chef/resource/powershell_package.rb +2 -4
data/lib/chef/resource/powershell_package_source.rb +4 -2
data/lib/chef/resource/powershell_script.rb +8 -18
data/lib/chef/resource/python.rb +3 -1
data/lib/chef/resource/reboot.rb +1 -2
data/lib/chef/resource/registry_key.rb +2 -3
data/lib/chef/resource/remote_directory.rb +3 -1
data/lib/chef/resource/remote_file.rb +3 -2
data/lib/chef/resource/rhsm_errata.rb +1 -4
data/lib/chef/resource/rhsm_errata_level.rb +1 -2
data/lib/chef/resource/rhsm_register.rb +3 -3
data/lib/chef/resource/rhsm_repo.rb +4 -3
data/lib/chef/resource/rhsm_subscription.rb +5 -4
data/lib/chef/resource/route.rb +6 -2
data/lib/chef/resource/rpm_package.rb +13 -3
data/lib/chef/resource/ruby.rb +3 -1
data/lib/chef/resource/ruby_block.rb +2 -5
data/lib/chef/resource/scm/_scm.rb +49 -0
data/lib/chef/resource/{scm.rb → scm/git.rb} +16 -30
data/lib/chef/resource/{subversion.rb → scm/subversion.rb} +10 -7
data/lib/chef/resource/script.rb +7 -4
data/lib/chef/resource/service.rb +7 -8
data/lib/chef/resource/smartos_package.rb +10 -2
data/lib/chef/resource/snap_package.rb +4 -2
data/lib/chef/resource/solaris_package.rb +10 -2
data/lib/chef/resource/ssh_known_hosts_entry.rb +6 -3
data/lib/chef/resource/sudo.rb +11 -11
data/lib/chef/resource/support/cron.d.erb +1 -1
data/lib/chef/resource/support/cron_access.erb +1 -1
data/lib/chef/resource/support/sudoer.erb +1 -2
data/lib/chef/resource/support/ulimit.erb +41 -0
data/lib/chef/resource/swap_file.rb +7 -5
data/lib/chef/resource/sysctl.rb +63 -4
data/lib/chef/resource/systemd_unit.rb +6 -4
data/lib/chef/resource/template.rb +0 -1
data/lib/chef/resource/timezone.rb +8 -19
data/lib/chef/resource/user.rb +3 -5
data/lib/chef/resource/user/aix_user.rb +0 -2
data/lib/chef/resource/user/dscl_user.rb +1 -1
data/lib/chef/resource/user/linux_user.rb +0 -2
data/lib/chef/resource/user/mac_user.rb +1 -1
data/lib/chef/resource/user/pw_user.rb +0 -2
data/lib/chef/resource/user/solaris_user.rb +0 -2
data/lib/chef/resource/user/windows_user.rb +0 -2
data/lib/chef/resource/user_ulimit.rb +116 -0
data/lib/chef/resource/whyrun_safe_ruby_block.rb +1 -0
data/lib/chef/resource/windows_ad_join.rb +20 -7
data/lib/chef/resource/windows_auto_run.rb +2 -3
data/lib/chef/resource/windows_certificate.rb +3 -3
data/lib/chef/resource/windows_dfs_folder.rb +1 -2
data/lib/chef/resource/windows_dfs_namespace.rb +1 -2
data/lib/chef/resource/windows_dfs_server.rb +2 -3
data/lib/chef/resource/windows_dns_record.rb +0 -1
data/lib/chef/resource/windows_dns_zone.rb +0 -1
data/lib/chef/resource/windows_env.rb +12 -4
data/lib/chef/resource/windows_feature.rb +59 -4
data/lib/chef/resource/windows_feature_dism.rb +24 -24
data/lib/chef/resource/windows_feature_powershell.rb +44 -78
data/lib/chef/resource/windows_firewall_rule.rb +121 -8
data/lib/chef/resource/windows_font.rb +10 -2
data/lib/chef/resource/windows_package.rb +76 -7
data/lib/chef/resource/windows_pagefile.rb +31 -4
data/lib/chef/resource/windows_path.rb +18 -2
data/lib/chef/resource/windows_printer.rb +26 -7
data/lib/chef/resource/windows_printer_port.rb +29 -2
data/lib/chef/resource/windows_script.rb +3 -4
data/lib/chef/resource/windows_security_policy.rb +119 -0
data/lib/chef/resource/windows_service.rb +46 -32
data/lib/chef/resource/windows_share.rb +22 -6
data/lib/chef/resource/windows_shortcut.rb +13 -3
data/lib/chef/resource/windows_task.rb +129 -16
data/lib/chef/resource/windows_uac.rb +20 -2
data/lib/chef/resource/windows_user_privilege.rb +199 -0
data/lib/chef/resource/windows_workgroup.rb +19 -4
data/lib/chef/resource/yum_package.rb +91 -7
data/lib/chef/resource/yum_repository.rb +30 -12
data/lib/chef/resource/zypper_package.rb +32 -5
data/lib/chef/resource/zypper_repository.rb +19 -6
data/lib/chef/resource_builder.rb +8 -0
data/lib/chef/resource_inspector.rb +3 -2
data/lib/chef/resource_resolver.rb +7 -14
data/lib/chef/resources.rb +11 -3
data/lib/chef/run_context/cookbook_compiler.rb +29 -5
data/lib/chef/scan_access_control.rb +1 -1
data/lib/chef/shell.rb +22 -0
data/lib/chef/shell/ext.rb +1 -1
data/lib/chef/version.rb +1 -1
data/lib/chef/win32/api.rb +2 -2
data/lib/chef/win32/api/error.rb +3 -1
data/lib/chef/win32/api/file.rb +1 -1
data/lib/chef/win32/api/net.rb +1 -0
data/lib/chef/win32/api/security.rb +6 -0
data/lib/chef/win32/file.rb +1 -9
data/lib/chef/win32/mutex.rb +1 -1
data/lib/chef/win32/net.rb +1 -0
data/lib/chef/win32/security.rb +40 -2
data/lib/chef/win32/security/sid.rb +4 -4
data/spec/functional/assets/inittest +8 -7
data/spec/functional/knife/ssh_spec.rb +23 -19
data/spec/functional/resource/cron_spec.rb +10 -29
data/spec/functional/resource/dnf_package_spec.rb +441 -156
data/spec/functional/resource/git_spec.rb +184 -134
data/spec/functional/resource/insserv_spec.rb +1 -1
data/spec/functional/resource/launchd_spec.rb +232 -0
data/spec/functional/resource/link_spec.rb +3 -3
data/spec/functional/resource/locale_spec.rb +13 -2
data/spec/functional/resource/msu_package_spec.rb +5 -2
data/spec/functional/resource/powershell_script_spec.rb +7 -68
data/spec/functional/resource/remote_file_spec.rb +1 -1
data/spec/functional/resource/windows_security_policy_spec.rb +90 -0
data/spec/functional/resource/windows_task_spec.rb +4 -4
data/spec/functional/resource/windows_user_privilege_spec.rb +193 -0
data/spec/functional/run_lock_spec.rb +1 -1
data/spec/functional/shell_spec.rb +1 -1
data/spec/functional/util/powershell/cmdlet_spec.rb +1 -1
data/spec/functional/version_spec.rb +1 -1
data/spec/functional/win32/registry_spec.rb +0 -6
data/spec/functional/win32/security_spec.rb +22 -0
data/spec/integration/client/client_spec.rb +123 -2
data/spec/integration/knife/cookbook_show_spec.rb +28 -26
data/spec/integration/knife/data_bag_show_spec.rb +1 -1
data/spec/integration/knife/raw_spec.rb +34 -6
data/spec/integration/knife/redirection_spec.rb +2 -2
data/spec/integration/knife/show_spec.rb +32 -3
data/spec/integration/recipes/lwrp_inline_resources_spec.rb +3 -3
data/spec/integration/recipes/noop_resource_spec.rb +1 -1
data/spec/integration/recipes/notifies_spec.rb +49 -20
data/spec/integration/recipes/notifying_block_spec.rb +8 -5
data/spec/integration/recipes/provider_choice.rb +2 -0
data/spec/integration/recipes/recipe_dsl_spec.rb +45 -143
data/spec/integration/recipes/resource_action_spec.rb +16 -11
data/spec/integration/recipes/resource_converge_if_changed_spec.rb +1 -1
data/spec/integration/recipes/resource_load_spec.rb +133 -12
data/spec/integration/recipes/use_partial_spec.rb +112 -0
data/spec/integration/solo/solo_spec.rb +3 -3
data/spec/spec_helper.rb +18 -3
data/spec/support/chef_helpers.rb +2 -2
data/spec/support/lib/chef/resource/zen_follower.rb +2 -0
data/spec/support/platform_helpers.rb +2 -20
data/spec/support/recipe_dsl_helper.rb +83 -0
data/spec/support/shared/functional/http.rb +2 -2
data/spec/support/shared/functional/windows_script.rb +3 -16
data/spec/support/shared/integration/knife_support.rb +9 -6
data/spec/support/shared/unit/mock_shellout.rb +1 -1
data/spec/support/shared/unit/provider/useradd_based_user_provider.rb +4 -4
data/spec/unit/application/apply_spec.rb +3 -0
data/spec/unit/application/client_spec.rb +5 -1
data/spec/unit/application_spec.rb +1 -2
data/spec/unit/client_spec.rb +7 -5
data/spec/unit/cookbook/gem_installer_spec.rb +2 -2
data/spec/unit/cookbook/metadata_spec.rb +38 -19
data/spec/unit/data_collector_spec.rb +39 -18
data/spec/unit/file_access_control_spec.rb +1 -1
data/spec/unit/json_compat_spec.rb +1 -1
data/spec/unit/knife/bootstrap/chef_vault_handler_spec.rb +15 -15
data/spec/unit/knife/bootstrap/client_builder_spec.rb +9 -9
data/spec/unit/knife/bootstrap_spec.rb +20 -38
data/spec/unit/knife/cookbook_show_spec.rb +1 -0
data/spec/unit/knife/core/bootstrap_context_spec.rb +23 -43
data/spec/unit/knife/core/ui_spec.rb +16 -0
data/spec/unit/knife/core/windows_bootstrap_context_spec.rb +9 -63
data/spec/unit/knife/data_bag_secret_options_spec.rb +22 -14
data/spec/unit/knife/ssh_spec.rb +8 -111
data/spec/unit/knife/status_spec.rb +1 -1
data/spec/unit/knife_spec.rb +18 -0
data/spec/unit/mixin/openssl_helper_spec.rb +4 -4
data/spec/unit/mixin/powershell_exec_spec.rb +10 -0
data/spec/unit/mixin/shell_out_spec.rb +25 -31
data/spec/unit/node/attribute_spec.rb +3 -3
data/spec/unit/node_spec.rb +24 -0
data/spec/unit/platform/query_helpers_spec.rb +0 -143
data/spec/unit/property/state_spec.rb +12 -7
data/spec/unit/property/validation_spec.rb +25 -1
data/spec/unit/property_spec.rb +12 -9
data/spec/unit/provider/apt_preference_spec.rb +14 -10
data/spec/unit/provider/apt_repository_spec.rb +34 -36
data/spec/unit/provider/apt_update_spec.rb +12 -11
data/spec/unit/provider/cookbook_file_spec.rb +4 -4
data/spec/unit/provider/cron_spec.rb +2 -2
data/spec/unit/provider/directory_spec.rb +4 -15
data/spec/unit/provider/file_spec.rb +4 -4
data/spec/unit/provider/git_spec.rb +41 -1
data/spec/unit/provider/group/groupadd_spec.rb +1 -1
data/spec/unit/provider/launchd_spec.rb +8 -50
data/spec/unit/provider/link_spec.rb +0 -1
data/spec/unit/provider/log_spec.rb +3 -3
data/spec/unit/provider/mdadm_spec.rb +3 -3
data/spec/unit/provider/package/dnf/python_helper_spec.rb +1 -1
data/spec/unit/provider/package/homebrew_spec.rb +280 -174
data/spec/unit/provider/package/pacman_spec.rb +65 -147
data/spec/unit/provider/package/portage_spec.rb +2 -2
data/spec/unit/provider/package/powershell_spec.rb +3 -2
data/spec/unit/provider/package/rubygems_spec.rb +211 -26
data/spec/unit/provider/package/windows/exe_spec.rb +1 -1
data/spec/unit/provider/powershell_script_spec.rb +21 -61
data/spec/unit/provider/remote_file_spec.rb +3 -4
data/spec/unit/provider/service/debian_service_spec.rb +34 -13
data/spec/unit/provider/service/macosx_spec.rb +210 -214
data/spec/unit/provider/service/systemd_service_spec.rb +23 -23
data/spec/unit/provider/subversion_spec.rb +4 -2
data/spec/unit/provider/template_spec.rb +3 -4
data/spec/unit/provider/zypper_repository_spec.rb +17 -17
data/spec/unit/provider_resolver_spec.rb +4 -4
data/spec/unit/recipe_spec.rb +68 -0
data/spec/unit/resource/alternatives_spec.rb +120 -0
data/spec/unit/resource/apt_preference_spec.rb +0 -18
data/spec/unit/resource/apt_repository_spec.rb +0 -18
data/spec/unit/resource/apt_update_spec.rb +0 -18
data/spec/unit/resource/chef_client_cron_spec.rb +119 -0
data/spec/unit/resource/chef_client_scheduled_task_spec.rb +102 -0
data/spec/unit/resource/chef_client_systemd_timer_spec.rb +70 -0
data/spec/unit/resource/chef_vault_secret_spec.rb +40 -0
data/spec/unit/resource/chocolatey_source_spec.rb +2 -1
data/spec/unit/resource/cron_d_spec.rb +6 -48
data/spec/unit/resource/cron_spec.rb +4 -10
data/spec/unit/resource/gem_package_spec.rb +3 -3
data/spec/unit/resource/helpers/cron_validations_spec.rb +77 -0
data/spec/unit/resource/link_spec.rb +0 -4
data/spec/unit/resource/locale_spec.rb +0 -34
data/spec/unit/resource/msu_package_spec.rb +4 -0
data/spec/unit/resource/ohai_spec.rb +56 -2
data/spec/unit/resource/plist_spec.rb +130 -0
data/spec/unit/resource/powershell_script_spec.rb +0 -5
data/spec/unit/resource/{git_spec.rb → scm/git_spec.rb} +50 -2
data/spec/unit/resource/{scm_spec.rb → scm/scm.rb} +1 -52
data/spec/unit/resource/{subversion_spec.rb → scm/subversion_spec.rb} +2 -3
data/spec/unit/resource/service_spec.rb +4 -0
data/spec/unit/resource/user_spec.rb +2 -2
data/spec/unit/resource/user_ulimit_spec.rb +53 -0
data/spec/unit/resource/windows_feature_dism_spec.rb +2 -17
data/spec/unit/resource/windows_feature_powershell_spec.rb +2 -17
data/spec/unit/resource/windows_firewall_rule_spec.rb +88 -41
data/spec/unit/resource/windows_package_spec.rb +14 -0
data/spec/unit/resource/windows_service_spec.rb +9 -0
data/spec/unit/resource_reporter_spec.rb +2 -6
data/spec/unit/resource_spec.rb +10 -3
data/spec/unit/run_lock_spec.rb +1 -1
data/spec/unit/scan_access_control_spec.rb +1 -1
data/spec/unit/search/query_spec.rb +1 -1
data/spec/unit/win32/registry_spec.rb +1 -1
data/tasks/rspec.rb +6 -14
metadata +92 -37
data/lib/chef/dsl/core.rb +0 -52
data/lib/chef/knife/cookbook_site_share.rb +0 -41
data/lib/chef/knife/cookbook_site_unshare.rb +0 -41
data/lib/chef/provider/apt_preference.rb +0 -93
data/lib/chef/provider/apt_repository.rb +0 -358
data/lib/chef/provider/apt_update.rb +0 -79
data/lib/chef/provider/log.rb +0 -43
data/lib/chef/provider/mdadm.rb +0 -85
data/lib/chef/provider/ohai.rb +0 -45
data/lib/chef/resource/git.rb +0 -37
data/spec/unit/provider/ohai_spec.rb +0 -84

data/lib/chef/resource/apt_repository.rb CHANGED

@@ -17,18 +17,23 @@
 #
 require_relative "../resource"
+require_relative "../http/simple"
+require "tmpdir" unless defined?(Dir.mktmpdir)
+require "addressable" unless defined?(Addressable)
 class Chef
   class Resource
     class AptRepository < Chef::Resource
-      resource_name :apt_repository
+      unified_mode true
       provides(:apt_repository) { true }
-      description "Use the apt_repository resource to specify additional APT repositories. Adding a new repository will update the APT package cache immediately."
+      description "Use the **apt_repository** resource to specify additional APT repositories. Adding a new repository will update the APT package cache immediately."
       introduced "12.9"
       examples <<~DOC
-        Add repository with basic settings
+        **Add repository with basic settings**:
          ```ruby
         apt_repository 'nginx' do
           uri        'http://nginx.org/packages/ubuntu/'
@@ -36,29 +41,32 @@ class Chef
         end
         ```
-        Enable Ubuntu multiverse repositories
+        **Enable Ubuntu multiverse repositories**:
         ```ruby
         apt_repository 'security-ubuntu-multiverse' do
           uri          'http://security.ubuntu.com/ubuntu'
-          distribution 'trusty-security'
+          distribution 'xenial-security'
           components   ['multiverse']
           deb_src      true
         end
         ```
-        Add the Nginx PPA, autodetect the key and repository url
+        **Add the Nginx PPA, autodetect the key and repository url**:
         ```ruby
         apt_repository 'nginx-php' do
           uri          'ppa:nginx/stable'
         end
         ```
-        Add the JuJu PPA, grab the key from the keyserver, and add source repo
+        **Add the JuJu PPA, grab the key from the keyserver, and add source repo**:
         ```ruby
         apt_repository 'juju' do
           uri 'http://ppa.launchpad.net/juju/stable/ubuntu'
           components ['main']
-          distribution 'trusty'
+          distribution 'xenial'
           key 'C8068B11'
           keyserver 'keyserver.ubuntu.com'
           action :add
@@ -66,7 +74,8 @@ class Chef
         end
         ```
-        Add repository that requires multiple keys to authenticate packages
+        **Add repository that requires multiple keys to authenticate packages**:
         ```ruby
         apt_repository 'rundeck' do
           uri 'https://dl.bintray.com/rundeck/rundeck-deb'
@@ -77,18 +86,20 @@ class Chef
         end
         ```
-        Add the Cloudera Repo of CDH4 packages for Ubuntu 12.04 on AMD64
+        **Add the Cloudera Repo of CDH4 packages for Ubuntu 16.04 on AMD64**:
         ```ruby
         apt_repository 'cloudera' do
-          uri          'http://archive.cloudera.com/cdh4/ubuntu/precise/amd64/cdh'
+          uri          'http://archive.cloudera.com/cdh4/ubuntu/xenial/amd64/cdh'
           arch         'amd64'
-          distribution 'precise-cdh4'
+          distribution 'xenial-cdh4'
           components   ['contrib']
           key          'http://archive.cloudera.com/debian/archive.key'
         end
         ```
-        Remove a repository from the list
+        **Remove a repository from the list**:
         ```ruby
         apt_repository 'zenoss' do
           action :remove
@@ -111,15 +122,15 @@ class Chef
         description: "The base of the Debian distribution."
       property :distribution, [ String, nil, FalseClass ],
-        description: "Usually a distribution's codename, such as trusty, xenial or bionic. Default value: the codename of the node's distro.",
-        default: lazy { node["lsb"]["codename"] }, default_description: "The LSB codename of the host such as 'bionic'."
+        description: "Usually a distribution's codename, such as `xenial`, `bionic`, or `focal`.",
+        default: lazy { node["lsb"]["codename"] }, default_description: "The LSB codename of the node such as 'focal'."
       property :components, Array,
         description: "Package groupings, such as 'main' and 'stable'.",
-        default: lazy { [] }
+        default: lazy { [] }, default_description: "`main` if using a PPA repository."
       property :arch, [String, nil, FalseClass],
-        description: "Constrain packages to a particular CPU architecture such as 'i386' or 'amd64'."
+        description: "Constrain packages to a particular CPU architecture such as `i386` or `amd64`."
       property :trusted, [TrueClass, FalseClass],
         description: "Determines whether you should treat all packages from this repository as authenticated regardless of signature.",
@@ -138,7 +149,7 @@ class Chef
         default: lazy { [] }, coerce: proc { |x| x ? Array(x) : x }
       property :key_proxy, [String, nil, FalseClass],
-        description: "If set, a specified proxy is passed to GPG via http-proxy=."
+        description: "If set, a specified proxy is passed to GPG via `http-proxy=`."
       property :cookbook, [String, nil, FalseClass],
         description: "If key should be a cookbook_file, specify a cookbook where the key is located for files/default. Default value is nil, so it will use the cookbook where the resource is used.",
@@ -150,6 +161,334 @@ class Chef
       default_action :add
       allowed_actions :add, :remove
+      action_class do
+        LIST_APT_KEY_FINGERPRINTS = %w{apt-key adv --list-public-keys --with-fingerprint --with-colons}.freeze
+        # is the provided ID a key ID from a keyserver. Looks at length and HEX only values
+        # @param [String] id the key value passed by the user that *may* be an ID
+        def is_key_id?(id)
+          id = id[2..-1] if id.start_with?("0x")
+          id =~ /^\h+$/ && [8, 16, 40].include?(id.length)
+        end
+        # run the specified command and extract the fingerprints from the output
+        # accepts a command so it can be used to extract both the current key's fingerprints
+        # and the fingerprint of the new key
+        # @param [Array<String>] cmd the command to run
+        #
+        # @return [Array] an array of fingerprints
+        def extract_fingerprints_from_cmd(*cmd)
+          so = shell_out(*cmd)
+          so.stdout.split(/\n/).map do |t|
+            if z = t.match(/^fpr:+([0-9A-F]+):/)
+              z[1].split.join
+            end
+          end.compact
+        end
+        # validate the key against the apt keystore to see if that version is expired
+        # @param [String] key
+        #
+        # @return [Boolean] is the key valid or not
+        def key_is_valid?(key)
+          valid = true
+          so = shell_out("apt-key", "list")
+          so.stdout.split(/\n/).map do |t|
+            if t =~ %r{^\/#{key}.*\[expired: .*\]$}
+              logger.debug "Found expired key: #{t}"
+              valid = false
+              break
+            end
+          end
+          logger.debug "key #{key} #{valid ? "is valid" : "is not valid"}"
+          valid
+        end
+        # return the specified cookbook name or the cookbook containing the
+        # resource.
+        #
+        # @return [String] name of the cookbook
+        def cookbook_name
+          new_resource.cookbook || new_resource.cookbook_name
+        end
+        # determine if a cookbook file is available in the run
+        # @param [String] fn the path to the cookbook file
+        #
+        # @return [Boolean] cookbook file exists or doesn't
+        def has_cookbook_file?(fn)
+          run_context.has_cookbook_file_in_cookbook?(cookbook_name, fn)
+        end
+        # determine if there are any new keys by comparing the fingerprints of installed
+        # keys to those of the passed file
+        # @param [String] file the keyfile of the new repository
+        #
+        # @return [Boolean] true: no new keys in the file. false: there are new keys
+        def no_new_keys?(file)
+          # Now we are using the option --with-colons that works across old os versions
+          # as well as the latest (16.10). This for both `apt-key` and `gpg` commands
+          installed_keys = extract_fingerprints_from_cmd(*LIST_APT_KEY_FINGERPRINTS)
+          proposed_keys = extract_fingerprints_from_cmd("gpg", "--with-fingerprint", "--with-colons", file)
+          (installed_keys & proposed_keys).sort == proposed_keys.sort
+        end
+        # Given the provided key URI determine what kind of chef resource we need
+        # to fetch the key
+        # @param [String] uri the uri of the gpg key (local path or http URL)
+        #
+        # @raise [Chef::Exceptions::FileNotFound] Key isn't remote or found in the current run
+        #
+        # @return [Symbol] :remote_file or :cookbook_file
+        def key_type(uri)
+          if uri.start_with?("http")
+            :remote_file
+          elsif has_cookbook_file?(uri)
+            :cookbook_file
+          else
+            raise Chef::Exceptions::FileNotFound, "Cannot locate key file: #{uri}"
+          end
+        end
+        # Fetch the key using either cookbook_file or remote_file, validate it,
+        # and install it with apt-key add
+        # @param [String] key the key to install
+        #
+        # @raise [RuntimeError] Invalid key which can't verify the apt repository
+        #
+        # @return [void]
+        def install_key_from_uri(key)
+          key_name = key.gsub(/[^0-9A-Za-z\-]/, "_")
+          cached_keyfile = ::File.join(Chef::Config[:file_cache_path], key_name)
+          tmp_dir = Dir.mktmpdir(".gpg")
+          at_exit { FileUtils.remove_entry(tmp_dir) }
+          declare_resource(key_type(key), cached_keyfile) do
+            source key
+            mode "0644"
+            sensitive new_resource.sensitive
+            action :create
+            verify "gpg --homedir #{tmp_dir} %{path}"
+          end
+          execute "apt-key add #{cached_keyfile}" do
+            command [ "apt-key", "add", cached_keyfile ]
+            default_env true
+            sensitive new_resource.sensitive
+            action :run
+            not_if { no_new_keys?(cached_keyfile) }
+            notifies :run, "execute[apt-cache gencaches]", :immediately
+          end
+        end
+        # build the apt-key command to install the keyserver
+        # @param [String] key the key to install
+        # @param [String] keyserver the key server to use
+        #
+        # @return [String] the full apt-key command to run
+        def keyserver_install_cmd(key, keyserver)
+          cmd = "apt-key adv --no-tty --recv"
+          cmd << " --keyserver-options http-proxy=#{new_resource.key_proxy}" if new_resource.key_proxy
+          cmd << " --keyserver "
+          cmd << if keyserver.start_with?("hkp://")
+                   keyserver
+                 else
+                   "hkp://#{keyserver}:80"
+                 end
+          cmd << " #{key}"
+          cmd
+        end
+        # @param [String] key
+        # @param [String] keyserver
+        #
+        # @raise [RuntimeError] Invalid key which can't verify the apt repository
+        #
+        # @return [void]
+        def install_key_from_keyserver(key, keyserver = new_resource.keyserver)
+          execute "install-key #{key}" do
+            command keyserver_install_cmd(key, keyserver)
+            default_env true
+            sensitive new_resource.sensitive
+            not_if do
+              present = extract_fingerprints_from_cmd(*LIST_APT_KEY_FINGERPRINTS).any? do |fp|
+                fp.end_with? key.upcase
+              end
+              present && key_is_valid?(key.upcase)
+            end
+            notifies :run, "execute[apt-cache gencaches]", :immediately
+          end
+          raise "The key #{key} is invalid and cannot be used to verify an apt repository." unless key_is_valid?(key.upcase)
+        end
+        # @param [String] owner
+        # @param [String] repo
+        #
+        # @raise [RuntimeError] Could not access the Launchpad PPA API
+        #
+        # @return [void]
+        def install_ppa_key(owner, repo)
+          url = "https://launchpad.net/api/1.0/~#{owner}/+archive/#{repo}"
+          key_id = Chef::HTTP::Simple.new(url).get("signing_key_fingerprint").delete('"')
+          install_key_from_keyserver(key_id, "keyserver.ubuntu.com")
+        rescue Net::HTTPClientException => e
+          raise "Could not access Launchpad ppa API: #{e.message}"
+        end
+        # determine if the repository URL is a PPA
+        # @param [String] url the url of the repository
+        #
+        # @return [Boolean] is the repo URL a PPA
+        def is_ppa_url?(url)
+          url.start_with?("ppa:")
+        end
+        # determine the repository's components:
+        #  - "components" property if defined
+        #  - "main" if "components" not defined and the repo is a PPA URL
+        #  - otherwise nothing
+        #
+        # @return [String] the repository component
+        def repo_components
+          if is_ppa_url?(new_resource.uri) && new_resource.components.empty?
+            "main"
+          else
+            new_resource.components
+          end
+        end
+        # given a PPA return a PPA URL in http://ppa.launchpad.net format
+        # @param [String] ppa the ppa URL
+        #
+        # @return [String] full PPA URL
+        def make_ppa_url(ppa)
+          owner, repo = ppa[4..-1].split("/")
+          repo ||= "ppa"
+          install_ppa_key(owner, repo)
+          "http://ppa.launchpad.net/#{owner}/#{repo}/ubuntu"
+        end
+        # build complete repo text that will be written to the config
+        # @param [String] uri
+        # @param [Array] components
+        # @param [Boolean] trusted
+        # @param [String] arch
+        # @param [Boolean] add_src
+        #
+        # @return [String] complete repo config text
+        def build_repo(uri, distribution, components, trusted, arch, add_src = false)
+          uri = make_ppa_url(uri) if is_ppa_url?(uri)
+          uri = Addressable::URI.parse(uri)
+          components = Array(components).join(" ")
+          options = []
+          options << "arch=#{arch}" if arch
+          options << "trusted=yes" if trusted
+          optstr = unless options.empty?
+                     "[" + options.join(" ") + "]"
+                   end
+          info = [ optstr, uri.normalize.to_s, distribution, components ].compact.join(" ")
+          repo =  "deb      #{info}\n"
+          repo << "deb-src  #{info}\n" if add_src
+          repo
+        end
+        # clean up a potentially legacy file from before we fixed the usage of
+        # new_resource.name vs. new_resource.repo_name. We might have the
+        # name.list file hanging around and need to clean it up.
+        #
+        # @return [void]
+        def cleanup_legacy_file!
+          legacy_path = "/etc/apt/sources.list.d/#{new_resource.name}.list"
+          if new_resource.name != new_resource.repo_name && ::File.exist?(legacy_path)
+            converge_by "Cleaning up legacy #{legacy_path} repo file" do
+              file legacy_path do
+                action :delete
+                # Not triggering an update since it isn't super likely to be needed.
+              end
+            end
+          end
+        end
+      end
+      action :add do
+        return unless debian?
+        execute "apt-cache gencaches" do
+          command %w{apt-cache gencaches}
+          default_env true
+          ignore_failure true
+          action :nothing
+        end
+        apt_update new_resource.name do
+          ignore_failure true
+          action :nothing
+        end
+        if new_resource.key.nil?
+          logger.debug "No 'key' property specified skipping key import"
+        else
+          new_resource.key.each do |k|
+            if is_key_id?(k) && !has_cookbook_file?(k)
+              install_key_from_keyserver(k)
+            else
+              install_key_from_uri(k)
+            end
+          end
+        end
+        cleanup_legacy_file!
+        repo = build_repo(
+          new_resource.uri,
+          new_resource.distribution,
+          repo_components,
+          new_resource.trusted,
+          new_resource.arch,
+          new_resource.deb_src
+        )
+        file "/etc/apt/sources.list.d/#{new_resource.repo_name}.list" do
+          owner "root"
+          group "root"
+          mode "0644"
+          content repo
+          sensitive new_resource.sensitive
+          action :create
+          notifies :run, "execute[apt-cache gencaches]", :immediately
+          notifies :update, "apt_update[#{new_resource.name}]", :immediately if new_resource.cache_rebuild
+        end
+      end
+      action :remove do
+        return unless debian?
+        cleanup_legacy_file!
+        if ::File.exist?("/etc/apt/sources.list.d/#{new_resource.repo_name}.list")
+          converge_by "Removing #{new_resource.repo_name} repository from /etc/apt/sources.list.d/" do
+            apt_update new_resource.name do
+              ignore_failure true
+              action :nothing
+            end
+            file "/etc/apt/sources.list.d/#{new_resource.repo_name}.list" do
+              sensitive new_resource.sensitive
+              action :delete
+              notifies :update, "apt_update[#{new_resource.name}]", :immediately if new_resource.cache_rebuild
+            end
+          end
+        else
+          logger.trace("/etc/apt/sources.list.d/#{new_resource.repo_name}.list does not exist. Nothing to do")
+        end
+      end
     end
   end
 end