knife-windows 0.6.0 → 0.8.0.rc.0

checksums.yaml

@@ -1,15 +1,15 @@
 ---
 !binary "U0hBMQ==":
   metadata.gz: !binary |-
-    N2UyYTQ5NDQwMTQ2Yzc2MTVkZDI3OGFiMTVjMjEyMmIxMmUxMWVkMw==
+    ODE4MTk3MDE3NGMxZTEyZWNkYjk5ODg1Y2Q2ZDg2YTNkNTQ5M2M1MA==
   data.tar.gz: !binary |-
-    Nzk5OTk2NmYwYzBiNjQ3NGZiZmYyMjAxOGNjYmE1OWVhYzg4M2NiMw==
+    ZjFlZGMzMWZmZDNiZWVkOWQ5MTEzYTM1OTVmMjg0ZmRlZDlhZDgyZg==
 SHA512:
   metadata.gz: !binary |-
-    MzdlNDUwY2QyMGIwYzAzZmRlYjY0YmM4YjkxMmZjOGZkYjM0Yzg2YmQ5MWNh
-    NDkwOGFlODhiZDRlZDc1NjZjMjY3YTA4YTRiNjJkMDQ5YmFmY2I1MDVmZTNi
-    YTUyZGQ3M2Q4Njk4OWM0NGVhMDNhMTdlOTlmMjJjZjI4OGM0Y2M=
+    ODRlYmEzMmQ2Y2QxZGU5M2I2MTdiNjAwMjg5NmNiZDdlOTY1MjBkNDExYjY0
+    OGRjODhhMmMzNDg1NTRhYjI3YTRmNDkzNTBmMTVlNWZiNTk2MDRkNTNiZjdh
+    Mjg0YTNhZDYwOGUwM2JlMTFjNTYzZDg4NmQ2OGIxNzkzMTgwZjI=
   data.tar.gz: !binary |-
-    MDgzZWFlNzQ3OWI3MjNkOWEyZmNlNmYyYTM4NTA0ZjYzOTJmZjc4MTQwMGVi
-    ZWZkYTY2YmE5MmNhNThiYmY5MTZmMWM3NmM5Y2M2NmY3NGFlOTJhM2ExYjU1
-    NTBhZTUxYjVmNzEyYmY1OTRmYjA3MWIyNDhkYmNhNTg2ODYzMjY=
+    ZDIyNmIxNjk0ZTc0NTg0NmQ2ZGM3ZTY2MGFlY2UzM2VhNWM2NjZhNWM1MzNm
+    MjI3MDE4YWQ5ODYwN2QzYzExNTEzZmJiNmJjNzdhZTc0ZmI1ZTFmOTQ0NDQy
+    NGNjNTVlMjMwOWU4Mzk3NjI3MTIxMjM2MmQ3YjNmYzA3MjNiOTA=

data/.rspec

@@ -1,3 +1,3 @@
---color
--fs
-
+--color
+-fdocumentation
+

data/CHANGELOG.md

@@ -1,10 +1,14 @@
 # knife-windows Change Log
 
 ## Unreleased changes
+None.
 
-None
+## Latest release: 0.8.0
+* Update winrm-s dependency along with em-winrm and winrm dependencies
+* Return failure codes from knife winrm even when `returns` is not set
+* Support Windows negotiate authentication protocol when running knife on Windows
 
-## Last Release: 0.6.0 (05/08/2014)
+## Release: 0.6.0 (05/08/2014)
 
 * [KNIFE-386](https://tickets.opscode.com/browse/KNIFE-386) Wait for a valid command response before bootstrapping over WinRM
 * [KNIFE-394](https://tickets.opscode.com/browse/KNIFE-394) Update em-winrm dependency

data/DOC_CHANGES.md

@@ -6,37 +6,32 @@ Example Doc Change:
 Description of the required change.
 -->
 
-# knife-windows 0.6.0 doc changes:
-
-### `--auth-timeout` option for bootstrap
-The `knife windows bootstrap` command has a new `--auth-timeout` option that
-takes a number of minutes as an argument. After the command has detected that
-the node to be bootstrapped has opened a port for the desired transport (e.g.
-WinRM), the command then tries to successfully execute a remote test command
-on the system to verify authentication and will retry for the number of minutes specified in the
-`--auth-timeout` option if an authentication error is received. This is
-particularly useful for nodes hosted by cloud providers that may open up ports before user
-identities that can be authenticated are configured on the system, or if the
-authentication subsystem's readiness lags that of transport readiness.
-
-If the `--auth-timeout` option is not specified, the default retry period is
-25 minutes.
-
-This value is currently only honored when bootstrapping using the WinRM
-transport and is ignored when bootstrapping via ssh.
-
-### New configuration option for `knife winrm`: `:suppress_auth_failure`
-The option `:suppress_auth_failure` may be configured in `knife.rb` to alter
-the behavior of the `knife winrm` subcommand's behavior when authentication
-fails:
-
-* When this option is not specified (the default case) or is configured as `false`, the `knife winrm`
-subcommand will return a process exit code of `100` if the command is able to
-connect to the WinRM transport on the remote system but fails to authenticate.
-* When this option is set to `true`, the exit status in the authentication
-failure case is `0`. 
-
-The default behavior is retained for compatibility reasons. The ability to
-override it via the `:suppress_auth_failure` option is useful for automation that uses the `knife winrm` subcommand
-and needs to implement customized retry behavior when authentication fails.
+# knife-windows 0.8.0 doc changes
+
+### Negotiate / NTLM authentication support
+If `knife` is executed from a Windows system, it is no longer necessary to make
+additional configuration of the WinRM listener on the remote node to enable
+successful authentication from the workstation. It is sufficient to have a WinRM
+listener on the remote node configured according to the operating system's `winrm
+quickconfig` command default configuration because `knife-windows` now
+supports the Windows negotiate protocol including NTLM authentication, which
+matches the authentication requirements for the default WinRM listener configuration.
+
+If `knife` is executed on a non-Windows system, certificate authentication or Kerberos
+should be used instead via the `kerberos_service` and related options of the subcommands. 
+
+**NOTE**: In order to use NTLM / Negotiate to authenticate as the user
+  specified by the `--winrm-user` (`-x`) option, you must include the user's
+  Windows domain when specifying the user name using the format `domain\user`
+  where the backslash ('`\`') character separates the user from the domain. If
+  an account local to the node is being used to access, `.` may be used as the domain:
+
+    knife bootstrap windows winrm web1.cloudapp.net -r 'server::web' -x 'proddomain\webuser' -P 'super_secret_password'
+    knife bootstrap windows winrm db1.cloudapp.net -r 'server::db' -x '.\localadmin' -P 'super_secret_password'
+
+For development and testing purposes, unencrypted traffic with Basic authentication can make it easier to test connectivity:
+
+    winrm set winrm/config/service @{AllowUnencrypted="true"}
+    winrm set winrm/config/service/auth @{Basic="true"}
+
 

data/Gemfile

@@ -4,7 +4,7 @@ source "https://rubygems.org"
 gemspec
 
 group :test do
-  gem "rspec"
+  gem "rspec", '~> 3.0'
   gem "ruby-wmi"
   gem "chef"
   gem 'rake'

data/README.md

@@ -0,0 +1,161 @@
+Knife Windows Plugin
+====================
+
+This plugin adds additional functionality to the Chef Knife CLI tool for
+configuring/interacting with nodes running Microsoft Windows. The subcommands
+should function on any system running Ruby 1.9.1+ but nodes being configured
+via these subcommands require Windows Remote Management (WinRM) 1.0+.WinRM
+allows you to call native objects in Windows. This includes, but is not
+limited to, running batch scripts, powershell scripts and fetching WMI
+variables. For more information on WinRM, please visit
+[Microsoft's WinRM site](http://msdn.microsoft.com/en-us/library/aa384426(v=VS.85).aspx).
+You will want to familiarize yourself with (certain key aspects) of WinRM
+because you will be writing scripts / running commands with this tool to get
+you from specific point A to specific point B.
+
+WinRM is built into Windows 7 and Windows Server 2008+. It can also be easily installed on older version of Windows, including:
+
+* Windows Server 2003
+* Windows Vista
+
+More information can be found on [Microsoft Support article 968930](http://support.microsoft.com/?kbid=968930).
+
+## Subcommands
+
+This plugin provides the following Knife subcommands. Specific command options can be found by invoking the subcommand with a `--help` flag
+
+### knife winrm
+
+The `winrm` subcommand allows you to invoke commands in parallel on a subset of the nodes in your infrastructure. The `winrm` subcommand uses the same syntax as the [search subcommand](http://wiki.opscode.com/display/chef/Search); you could could find the uptime of all your web servers using the command:
+
+    knife winrm "role:web" "net stats srv" -x Administrator -P 'super_secret_password'
+
+Or force a chef run:
+
+    knife winrm 'ec2-50-xx-xx-124.compute-1.amazonaws.com' 'chef-client -c c:/chef/client.rb' -m -x Administrator -P 'super_secret_password'
+    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:49 +0000] INFO: Starting Chef Run (Version 0.9.12)
+    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:50 +0000] WARN: Node ip-0A502FFB has an empty run list.
+    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:53 +0000] INFO: Chef Run complete in 4.383966 seconds
+    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:53 +0000] INFO: cleaning the checksum cache
+    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:53 +0000] INFO: Running report handlers
+    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:53 +0000] INFO: Report handlers complete
+
+This subcommand operates in a manner similar to [knife ssh](http://wiki.opscode.com/display/chef/Knife#Knife-SSHSubcommand)...just leveraging the WinRM protocol for communication. It also include's `knife ssh`'s "[interactive session mode](http://wiki.opscode.com/display/chef/Knife#Knife-InteractiveMode)"
+
+### knife bootstrap windows winrm
+
+Performs a Chef Bootstrap (via the WinRM protocol) on the target node. The goal of the bootstrap is to get Chef installed on the target system so it can run Chef Client with a Chef Server. The main assumption is a baseline OS installation exists. It is primarily intended for Chef Client systems that talk to a Chef server.
+
+This subcommand operates in a manner similar to [knife bootstrap](http://wiki.opscode.com/display/chef/Knife+Bootstrap)...just leveraging the WinRM protocol for communication. An initial run_list for the node can also be passed to the subcommand. Example usage:
+
+    knife bootstrap windows winrm ec2-50-xx-xx-124.compute-1.amazonaws.com -r 'role[webserver],role[production]' -x Administrator -P 'super_secret_password'
+
+### knife bootstrap windows ssh
+
+Performs a Chef Bootstrap (via the SSH protocol) on the target node. The goal of the bootstrap is to get Chef installed on the target system so it can run Chef Client with a Chef Server. The main assumption is a baseline OS installation exists. It is primarily intended for Chef Client systems that talk to a Chef server.
+
+This subcommand assumes the SSH session will use the Windows native cmd.exe command shell vs a bash shell through an emulated cygwin layer. Most popular Windows based SSHd daemons like [freeSSHd](http://www.freesshd.com/) and [WinSSHD](http://www.bitvise.com/winsshd) behave this way.
+
+An initial run_list for the node can also be passed to the subcommand. Example usage:
+
+    knife bootstrap windows ssh ec2-50-xx-xx-124.compute-1.amazonaws.com -r 'role[webserver],role[production]' -x Administrator -i ~/.ssh/id_rsa
+
+## BOOTSTRAP TEMPLATES:
+
+This gem provides the bootstrap template `windows-chef-client-msi`.
+
+### windows-chef-client-msi
+
+This bootstrap template does the following:
+
+* Installs the latest version of Chef (and all dependencies) using the `chef-client` msi.
+* Writes the validation.pem per the local knife configuration.
+* Writes a default config file for Chef (`C:\chef\client.rb`) using values from the `knife.rb`.
+* Creates a JSON attributes file containing the specified run list and run Chef.
+
+This is the default bootstrap template used by both the `windows bootstrap` subcommands.
+
+## REQUIREMENTS/SETUP:
+
+### Ruby
+
+Ruby 1.9.1+ is needed.
+
+### Chef Version
+
+Knife plugins require >= Chef 0.10. More details about Knife plugins can be [found on the Chef wiki](http://wiki.opscode.com/display/chef/Knife+Plugins).
+
+## Nodes
+
+**NOTE**: Before any WinRM related knife subcommands will function correctly a node's WinRM installation must be configured correctly. The below settings should be added to your base server image (AMI) or passed in using some sort of user-data mechanism provided by your cloud provider.
+
+A server running WinRM must also be configured properly to allow outside connections and the entire network path from the knife workstation to the server. The easiest way to accomplish this is to use [WinRM's quick configuration option](http://msdn.microsoft.com/en-us/library/aa384372(v=vs.85).aspx#quick_default_configuration):
+
+    winrm quickconfig -q
+
+The Chef and Ohai gem installations (that occur during bootstrap) take more
+memory than the default 150MB WinRM allocates per shell -- this can slow down
+bootstrap. Optionally increase the memory limit to 300MB with the following command:
+
+    winrm set winrm/config/winrs @{MaxMemoryPerShellMB="300"}
+
+Bootstrap commands can take longer than the WinRM default 60 seconds to
+complete, optionally increase to 30 minutes if bootstrap terminates a command prematurely:
+
+    winrm set winrm/config @{MaxTimeoutms="1800000"}
+
+WinRM supports both the HTTP and HTTPS transports and the following
+authentication schemes: Kerberos, Digest, Certificate and Basic.  The details
+of these authentication transports are outside of the scope of this README but
+details can be found on the
+[WinRM configuration guide](http://msdn.microsoft.com/en-us/library/aa384372(v=vs.85).aspx).
+Currently, this plugin support Kerberos and Basic authentication schemes on
+all platform versions. The negotiate protocol which allows NTLM is fully
+supported when `knife windows bootstrap` is executed on a Windows system; if
+it is executed on a non-Windows system, certificate authentication or Kerberos
+should be used instead via the `:kerberos_service` and related options of the subcommands. 
+
+**NOTE**: In order to use NTLM / Negotiate to authenticate as the user
+  specified by the `--winrm-user` (`-x`) option, you must include the user's
+  Windows domain when specifying the user name using the format `domain\user`
+  where the backslash ('`\`') character separates the user from the domain. If
+  an account local to the node is being used to access, `.` may be used as the domain:
+
+    knife bootstrap windows winrm web1.cloudapp.net -r 'server::web' -x 'proddomain\webuser' -P 'super_secret_password'
+    knife bootstrap windows winrm db1.cloudapp.net -r 'server::db' -x '.\localadmin' -P 'super_secret_password'
+
+For development and testing purposes, unencrypted traffic with Basic authentication can make it easier to test connectivity:
+
+    winrm set winrm/config/service @{AllowUnencrypted="true"}
+    winrm set winrm/config/service/auth @{Basic="true"}
+
+## Troubleshooting
+
+* When I run the winrm command I get: "Error: Invalid use of command line. Type "winrm -?" for help."
+  You're running the winrm command from PowerShell and you need to put the key/value pair in single quotes. For example:
+
+    winrm set winrm/config/winrs '@{MaxMemoryPerShellMB="512"}'
+
+## CONTRIBUTING:
+
+Please file bugs against the KNIFE_WINDOWS project at https://github.com/opscode/knife-windows/issues.
+
+More information on the contribution process for Opscode projects can be found in the [Chef Contributions document](http://docs.opscode.com/community_contributions.html).
+
+# LICENSE:
+
+Author:: Seth Chisamore (<schisamo@opscode.com>)
+Copyright:: Copyright (c) 2014 Opscode, Inc.
+License:: Apache License, Version 2.0
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.

data/RELEASE_NOTES.md

@@ -6,35 +6,49 @@ Example Note:
 ## Example Heading
 Details about the thing that changed that needs to get included in the Release Notes in markdown.
 -->
-# knife-windows 0.6.0 release notes:
-This release of knife-windows addresses issues with reliability of winrm
-readiness detection during Windows bootstrap, exit codes in command execution
-scenarios, and gem dependencies.
+# knife-windows 0.8.0 release notes:
+This release of knife-windows enables the Windows negotiate protocol to be
+used with the `winrm` and `bootstrap windows winrm` subcommands and also
+contains bug fixes and dependency updates.
+
+A thank you goes to contributor **Josh Mahowald** for contributing a fix for
+[KNIFE-450](https://tickets.opscode.com/browse/KNIFE-450).
 
-Special thanks to **Okezie Eze** for the helpful bug report in KNIFE-386.
 Issues with `knife-windows` should be reported in the ticketing system at
-https://tickets.opscode.com/browse/KNIFE. Learn more about how you can
-contribute features and bug fixes to `knife-windows` at https://wiki.opscode.com/display/chef/How+to+Contribute.
+https://github.com/opscode/knife-windows/issues. Learn more about how you can
+contribute features and bug fixes to `knife-windows` in the [Chef Contributions document](http://docs.opscode.com/community_contributions.html).
+
+## Features added in knife-windows 0.8.0
 
-## Features added in knife-windows 0.6.0
+### NTLM / Negotiate authentication for `winrm` and `bootstrap`
+If `knife` is being used on a Windows workstation, it is no longer necessary
+to use Kerberos or to use certificate authentication to authenticate securely
+with a remote node in bootstrap or command execution scenarios. The `knife winrm` and `knife
+windows bootstrap` commands now support the use of NTLM to authenticate to remote
+nodes with the default WinRM listener configuration set by the operating
+system's `winrm quickconfig` command.
 
-### `--auth-timeout` option for bootstrap
-The `knife windows bootstrap` command has an `--auth-timeout` option that
-takes as an argument a number of minutes that specifies the time period during
-which to retry authentication attempts to WinRM when boostrapping a remote
-node via WinRM. By default, the value is 25 minutes. This retry behavior during bootstrap addresses issues that arise on
-some cloud providers where the authentication system is not ready until
-some time after WinRM is ready.
+When specifying the user name on the command-line or configuration, the format `domain\username` must be used for
+the negotiate protocol to be invoked. If the account is local to the node,
+'`.`' may be used for the domain. See the README.md for further detail.
 
 ## knife-windows on RubyGems and Github
 https://rubygems.org/gems/knife-windows
 https://github.com/opscode/knife-windows
 
-## Issues fixed in knife-windows 0.6.0
+## Issues fixed in knife-windows 0.8.0
 * [KNIFE-386](https://tickets.opscode.com/browse/KNIFE-386) Wait for a valid command response before bootstrapping over WinRM
 * [KNIFE-394](https://tickets.opscode.com/browse/KNIFE-394) Update em-winrm dependency
 * [KNIFE-450](https://tickets.opscode.com/browse/KNIFE-450) Set knife winrm command exit status on exception and command failure
 
-## knife-windows breaking changes:
+## knife-windows breaking changes
+
+### Error status being returned from `winrm` and `bootstrap windows winrm` remote commands
 
-None.
+Previously, `knife winrm` would always return an exit status of 0 if it was able to
+execute a command on the remote node, regardless whether the command that it
+invoked on the remote node returned a status of 0. It now returns a non-zero
+exit code if the command's exit code was non-zero. This may cause failures in
+scripts that use the `knife winrm` or `knife bootstrap windows winrm` commands
+and check to see if the exit status of the command is successful (0). Such
+scripts should be altered to ignore the exit status if the failure is truly non-fatal.

data/knife-windows.gemspec

@@ -6,16 +6,16 @@ Gem::Specification.new do |s|
   s.name        = "knife-windows"
   s.version     = Knife::Windows::VERSION
   s.platform    = Gem::Platform::RUBY
-  s.has_rdoc = true
-  s.extra_rdoc_files = ["README.rdoc", "LICENSE" ]
   s.authors     = ["Seth Chisamore"]
   s.email       = ["schisamo@opscode.com"]
+  s.license     = "Apache-2.0"
   s.homepage    = "https://github.com/opscode/knife-windows"
   s.summary     = %q{Plugin that adds functionality to Chef's Knife CLI for configuring/interacting with nodes running Microsoft Windows}
   s.description = s.summary
 
   s.required_ruby_version	= ">= 1.9.1"
-  s.add_dependency "em-winrm", "~> 0.5", ">= 0.5.4"
+  s.add_dependency "winrm-s", "0.2.0.rc.0"
+  s.add_dependency "em-winrm", "0.6.0.rc.0"
 
   s.files         = `git ls-files`.split("\n")
   s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")

data/lib/chef/knife/bootstrap_windows_winrm.rb

@@ -41,6 +41,7 @@ class Chef
         bootstrap
       end
 
+
       def run_command(command = '')
         winrm = Chef::Knife::Winrm.new
         winrm.name_args = [ server_name, command ]
@@ -54,7 +55,11 @@ class Chef
         winrm.config[:manual] = true
         winrm.config[:winrm_port] = locate_config_value(:winrm_port)
         winrm.config[:suppress_auth_failure] = true
-        winrm.config[:returns] = nil
+       
+        #If you turn off the return flag, then winrm.run won't atually check and 
+        #return the error
+        #codes.  Otherwise, it ignores the return value of the server call.  
+        winrm.config[:returns] = "0"
         winrm.run
       end
 

data/lib/chef/knife/winrm.rb

@@ -44,9 +44,7 @@ class Chef
       option :returns,
        :long => "--returns CODES",
        :description => "A comma delimited list of return codes which indicate success",
-       :default => nil,
-       :proc => Proc.new { |codes|
-         Chef::Config[:knife][:returns] = codes.split(',').collect {|item| item.to_i} }
+       :default => "0"
 
       option :manual,
         :short => "-m",
@@ -55,6 +53,7 @@ class Chef
         :description => "QUERY is a space separated list of servers",
         :default => false
 
+
       def session
         session_opts = {}
         session_opts[:logger] = Chef::Log.logger if Chef::Log.level == :debug
@@ -75,6 +74,12 @@ class Chef
 
       end
 
+      def success_return_codes 
+        #Redundant if the CLI options parsing occurs
+        return [0] unless config[:returns] 
+        return config[:returns].split(',').collect {|item| item.to_i} 
+      end
+
       # TODO: Copied from Knife::Core:GenericPresenter. Should be extracted
       def extract_nested_value(data, nested_value_spec)
         nested_value_spec.split(".").each do |attr|
@@ -96,6 +101,7 @@ class Chef
       end
 
       def configure_session
+
         list = case config[:manual]
                when true
                  @name_args[0].split(" ")
@@ -147,7 +153,14 @@ class Chef
             session_opts[:basic_auth_only] = false
           else
             session_opts[:transport] = (Chef::Config[:knife][:winrm_transport] || config[:winrm_transport]).to_sym
-            session_opts[:disable_sspi] = true
+            if Chef::Platform.windows? and session_opts[:transport] == :plaintext
+              # windows - force only encrypted communication
+              require 'winrm-s'
+              session_opts[:transport] = :sspinegotiate
+              session_opts[:disable_sspi] = false
+            else
+              session_opts[:disable_sspi] = true
+            end
             if session_opts[:user] and
                 (not session_opts[:password])
               session_opts[:password] = Chef::Config[:knife][:winrm_password] = config[:winrm_password] = get_password
@@ -240,7 +253,7 @@ class Chef
       def check_for_errors!(exit_codes)
 
         exit_codes.each do |host, value|
-          unless Chef::Config[:knife][:returns].include? value.to_i
+          unless success_return_codes.include? value.to_i
             @exit_code = 1
             ui.error "Failed to execute command on #{host} return code #{value}"
           end
@@ -249,6 +262,7 @@ class Chef
       end
 
       def run
+
         STDOUT.sync = STDERR.sync = true
 
         begin

data/lib/knife-windows/version.rb

@@ -1,6 +1,6 @@
 module Knife
   module Windows
-    VERSION = "0.6.0"
+    VERSION = "0.8.0.rc.0"
     MAJOR, MINOR, TINY = VERSION.split('.')
   end
 end

data/spec/functional/bootstrap_download_spec.rb

@@ -69,23 +69,23 @@ describe 'Knife::Windows::Core msi download functionality for knife Windows winr
       # Stub the bootstrap context and prevent config related sections
       # from being populated, i.e. chef installation and first chef
       # run sections
-      @mock_bootstrap_context.stub(:validation_key).and_return("echo.validation_key")
-      @mock_bootstrap_context.stub(:encrypted_data_bag_secret).and_return("echo.encrypted_data_bag_secret")
-      @mock_bootstrap_context.stub(:config_content).and_return("echo.config_content")
-      @mock_bootstrap_context.stub(:start_chef).and_return("echo.echo start_chef_command")
-      @mock_bootstrap_context.stub(:run_list).and_return("echo.run_list")
-      @mock_bootstrap_context.stub(:install_chef).and_return("echo.echo install_chef_command")
+      allow(@mock_bootstrap_context).to receive(:validation_key).and_return("echo.validation_key")
+      allow(@mock_bootstrap_context).to receive(:encrypted_data_bag_secret).and_return("echo.encrypted_data_bag_secret")
+      allow(@mock_bootstrap_context).to receive(:config_content).and_return("echo.config_content")
+      allow(@mock_bootstrap_context).to receive(:start_chef).and_return("echo.echo start_chef_command")
+      allow(@mock_bootstrap_context).to receive(:run_list).and_return("echo.run_list")
+      allow(@mock_bootstrap_context).to receive(:install_chef).and_return("echo.echo install_chef_command")
 
       # Change the directories where bootstrap files will be created
-      @mock_bootstrap_context.stub(:bootstrap_directory).and_return(@temp_directory.gsub(::File::SEPARATOR, ::File::ALT_SEPARATOR))
-      @mock_bootstrap_context.stub(:local_download_path).and_return(@local_file_download_destination.gsub(::File::SEPARATOR, ::File::ALT_SEPARATOR))
+      allow(@mock_bootstrap_context).to receive(:bootstrap_directory).and_return(@temp_directory.gsub(::File::SEPARATOR, ::File::ALT_SEPARATOR))
+      allow(@mock_bootstrap_context).to receive(:local_download_path).and_return(@local_file_download_destination.gsub(::File::SEPARATOR, ::File::ALT_SEPARATOR))
 
       # Prevent password prompt during bootstrap process
       @mock_winrm = Chef::Knife::Winrm.new
-      @mock_winrm.stub(:get_password).and_return(nil)
-      Chef::Knife::Winrm.stub(:new).and_return(@mock_winrm)
+      allow(@mock_winrm).to receive(:get_password).and_return(nil)
+      allow(Chef::Knife::Winrm).to receive(:new).and_return(@mock_winrm)
 
-      Chef::Knife::Core::WindowsBootstrapContext.stub(:new).and_return(@mock_bootstrap_context)
+      allow(Chef::Knife::Core::WindowsBootstrapContext).to receive(:new).and_return(@mock_bootstrap_context)
     end
 
     it "downloads the chef-client MSI during winrm bootstrap" do
@@ -93,18 +93,18 @@ describe 'Knife::Windows::Core msi download functionality for knife Windows winr
       clean_test_case
 
       winrm_bootstrapper = Chef::Knife::BootstrapWindowsWinrm.new([ "127.0.0.1" ])
-      winrm_bootstrapper.stub(:wait_for_remote_response)
+      allow(winrm_bootstrapper).to receive(:wait_for_remote_response)
       winrm_bootstrapper.config[:template_file] = @template_file_path      
 
       # Execute the commands locally that would normally be executed via WinRM
-      winrm_bootstrapper.stub(:run_command) do |command|
+      allow(winrm_bootstrapper).to receive(:run_command) do |command|
         system(command)
       end
 
       winrm_bootstrapper.run
 
       # Download should succeed
-      download_succeeded?.should == true
+      expect(download_succeeded?).to be true
     end
   end
 

data/spec/spec_helper.rb

@@ -55,8 +55,6 @@ end
 
 
 RSpec.configure do |config|
-  config.treat_symbols_as_metadata_keys_with_true_values = true
-  
   config.filter_run_excluding :windows_only => true unless windows?
   config.filter_run_excluding :windows_2012_only => true unless windows2012?
 end

data/spec/unit/knife/bootstrap_template_spec.rb

@@ -56,9 +56,9 @@ describe Chef::Knife::BootstrapWindowsWinrm do
     @knife.merge_configs
     @knife.config[:template_file] = TEMPLATE_FILE
     @stdout = StringIO.new
-    @knife.ui.stub(:stdout).and_return(@stdout)
+    allow(@knife.ui).to receive(:stdout).and_return(@stdout)
     @stderr = StringIO.new
-    @knife.ui.stub(:stderr).and_return(@stderr)
+    allow(@knife.ui).to receive(:stderr).and_return(@stderr)
   end
 
   describe "specifying no_proxy with various entries" do
@@ -77,14 +77,14 @@ describe Chef::Knife::BootstrapWindowsWinrm do
       let(:setting) { "api.opscode.com" }
 
       it "renders the client.rb with a single FQDN no_proxy entry" do
-        rendered_template.should match(%r{.*no_proxy\s*\"api.opscode.com\".*})
+        expect(rendered_template).to match(%r{.*no_proxy\s*\"api.opscode.com\".*})
       end
     end
     context "via --bootstrap-no-proxy multiple" do
       let(:setting) { "api.opscode.com,172.16.10.*" }
 
       it "renders the client.rb with comma-separated FQDN and wildcard IP address no_proxy entries" do
-        rendered_template.should match(%r{.*no_proxy\s*"api.opscode.com,172.16.10.\*".*})
+        expect(rendered_template).to match(%r{.*no_proxy\s*"api.opscode.com,172.16.10.\*".*})
       end
     end
   end

data/spec/unit/knife/bootstrap_windows_winrm_spec.rb

@@ -26,59 +26,80 @@ describe Chef::Knife::BootstrapWindowsWinrm do
 
   before do
     #    Kernel.stub(:sleep).and_return 10
-    bootstrap.stub(:sleep).and_return 10
+    allow(bootstrap).to receive(:sleep).and_return(10)
   end
 
   after do
     #    Kernel.unstub(:sleep)
-    bootstrap.stub(:sleep).and_return 10
+    allow(bootstrap).to receive(:sleep).and_return(10)
   end
 
-  let (:bootstrap) { Chef::Knife::BootstrapWindowsWinrm.new }
+  let (:bootstrap) { Chef::Knife::BootstrapWindowsWinrm.new(['winrm', '-d', 'windows-chef-client-msi',  '-x', 'Administrator', 'localhost']) }
+
   let(:initial_fail_count) { 4 }  
   it 'should retry if a 401 is received from WinRM' do
     call_result_sequence = Array.new(initial_fail_count) {lambda {raise WinRM::WinRMHTTPTransportError, '401'}}
     call_result_sequence.push(0)
-    bootstrap.stub(:run_command).and_return(*call_result_sequence)
+    allow(bootstrap).to receive(:run_command).and_return(*call_result_sequence)
 
-    bootstrap.should_receive(:run_command).exactly(call_result_sequence.length).times
+    expect(bootstrap).to receive(:run_command).exactly(call_result_sequence.length).times
     bootstrap.send(:wait_for_remote_response, 2)
   end
 
   it 'should retry if something other than a 401 is received from WinRM' do
     call_result_sequence = Array.new(initial_fail_count) {lambda {raise WinRM::WinRMHTTPTransportError, '500'}}
     call_result_sequence.push(0)
-    bootstrap.stub(:run_command).and_return(*call_result_sequence)
+    allow(bootstrap).to receive(:run_command).and_return(*call_result_sequence)
 
-    bootstrap.should_receive(:run_command).exactly(call_result_sequence.length).times
+    expect(bootstrap).to receive(:run_command).exactly(call_result_sequence.length).times
     bootstrap.send(:wait_for_remote_response, 2)
   end
 
   it 'should have a wait timeout of 25 minutes by default' do
-    bootstrap.stub(:run_command).and_raise WinRM::WinRMHTTPTransportError
-    bootstrap.stub(:create_bootstrap_bat_command).and_raise SystemExit
-    bootstrap.should_receive(:wait_for_remote_response).with(25)
-    bootstrap.stub(:validate_name_args!).and_return(nil)
+    allow(bootstrap).to receive(:run_command).and_raise(WinRM::WinRMHTTPTransportError)
+    allow(bootstrap).to receive(:create_bootstrap_bat_command).and_raise(SystemExit)
+    expect(bootstrap).to receive(:wait_for_remote_response).with(25)
+    allow(bootstrap).to receive(:validate_name_args!).and_return(nil)
     bootstrap.config[:auth_timeout] = bootstrap.options[:auth_timeout][:default]
-    expect { bootstrap.bootstrap }.to raise_error SystemExit
+    expect { bootstrap.bootstrap }.to raise_error(SystemExit)
   end
 
   it 'should keep retrying at 10s intervals if the timeout in minutes has not elapsed' do
     call_result_sequence = Array.new(initial_fail_count) {lambda {raise WinRM::WinRMHTTPTransportError, '500'}}
     call_result_sequence.push(0)
-    bootstrap.stub(:run_command).and_return(*call_result_sequence)
+    allow(bootstrap).to receive(:run_command).and_return(*call_result_sequence)
 
-    bootstrap.should_receive(:run_command).exactly(call_result_sequence.length).times
+    expect(bootstrap).to receive(:run_command).exactly(call_result_sequence.length).times
     bootstrap.send(:wait_for_remote_response, 2)
   end
 
+  it "should exit bootstrap with non-zero status if the bootstrap fails" do
+    command_status = 1
+
+    #Stub out calls to create the session and just get the exit codes back
+    winrm_mock = Chef::Knife::Winrm.new
+    allow(Chef::Knife::Winrm).to receive(:new).and_return(winrm_mock)
+    allow(winrm_mock).to receive(:configure_session)
+    allow(winrm_mock).to receive(:winrm_command)
+    session_mock = EventMachine::WinRM::Session.new
+    allow(EventMachine::WinRM::Session).to receive(:new).and_return(session_mock)
+    allow(session_mock).to receive(:exit_codes).and_return({"thishost" => command_status})
+   
+    #Skip over templating stuff and checking with the remote end
+    allow(bootstrap).to receive(:create_bootstrap_bat_command)
+    allow(bootstrap).to receive(:wait_for_remote_response)
+    
+    expect { bootstrap.run_with_pretty_exceptions }.to raise_error(SystemExit) { |e| expect(e.status).to eq(command_status) }
+  end
+
+
   it 'should stop retrying if more than 25 minutes has elapsed' do
     times = [ Time.new(2014, 4, 1, 22, 25), Time.new(2014, 4, 1, 22, 51), Time.new(2014, 4, 1, 22, 52) ]
-    Time.stub(:now).and_return(*times)    
+    allow(Time).to receive(:now).and_return(*times)
     run_command_result = lambda {raise WinRM::WinRMHTTPTransportError, '401'}
-    bootstrap.stub(:validate_name_args!).and_return(nil)
-    bootstrap.stub(:run_command).and_return(run_command_result)
-    bootstrap.should_receive(:run_command).exactly(1).times
+    allow(bootstrap).to receive(:validate_name_args!).and_return(nil)
+    allow(bootstrap).to receive(:run_command).and_return(run_command_result)
+    expect(bootstrap).to receive(:run_command).exactly(1).times
     bootstrap.config[:auth_timeout] = bootstrap.options[:auth_timeout][:default]    
     expect { bootstrap.bootstrap }.to raise_error RuntimeError
   end

data/spec/unit/knife/winrm_spec.rb

@@ -51,15 +51,15 @@ describe Chef::Knife::Winrm do
     context "when there are some hosts found but they do not have an attribute to connect with" do
       before do
         @knife.config[:manual] = false
-        @query.stub(:search).and_return([[@node_foo, @node_bar]])
+        allow(@query).to receive(:search).and_return([[@node_foo, @node_bar]])
         @node_foo.automatic_attrs[:fqdn] = nil
         @node_bar.automatic_attrs[:fqdn] = nil
-        Chef::Search::Query.stub(:new).and_return(@query)
+        allow(Chef::Search::Query).to receive(:new).and_return(@query)
       end
     
       it "should raise a specific error (KNIFE-222)" do
-        @knife.ui.should_receive(:fatal).with(/does not have the required attribute/)
-        @knife.should_receive(:exit).with(10)
+        expect(@knife.ui).to receive(:fatal).with(/does not have the required attribute/)
+        expect(@knife).to receive(:exit).with(10)
         @knife.configure_session
       end
     end
@@ -67,13 +67,13 @@ describe Chef::Knife::Winrm do
     context "when there are nested attributes" do
       before do
         @knife.config[:manual] = false
-        @query.stub(:search).and_return([[@node_foo, @node_bar]])
-        Chef::Search::Query.stub(:new).and_return(@query)
+        allow(@query).to receive(:search).and_return([[@node_foo, @node_bar]])
+        allow(Chef::Search::Query).to receive(:new).and_return(@query)
       end
     
       it "should use nested attributes (KNIFE-276)" do
         @knife.config[:attribute] = "ec2.public_hostname"
-        @knife.stub(:session_from_list)
+        allow(@knife).to receive(:session_from_list)
         @knife.configure_session
 
       end
@@ -92,60 +92,90 @@ describe Chef::Knife::Winrm do
         end
 
         it "should return with 0 if the command succeeds" do
-          @winrm.stub(:winrm_command).and_return(0)
+          allow(@winrm).to receive(:winrm_command).and_return(0)
           exit_code = @winrm.run
-          exit_code.should == 0
-        end
-
-        it "should exit the process with 0 if the command fails and returns config is not set" do
-          @winrm.stub(:winrm_command).and_return(1)
-          exit_code = @winrm.run
-          exit_code.should == 0
+          expect(exit_code).to be_zero
         end
 
         it "should exit the process with non-zero status if the command fails and returns config is set to 0" do
           command_status = 1
-          @winrm.config[:returns] = [0,53]
+          @winrm.config[:returns] = "0,53"
           Chef::Config[:knife][:returns] = [0,53]
-          @winrm.stub(:winrm_command).and_return(command_status)
-          EventMachine::WinRM::Session.any_instance.stub(:exit_codes).and_return({"thishost" => command_status})
-          expect { @winrm.run_with_pretty_exceptions }.to raise_error(SystemExit) { |e| e.status.should == command_status }
+          allow(@winrm).to receive(:winrm_command).and_return(command_status)
+          session_mock = EventMachine::WinRM::Session.new
+          allow(EventMachine::WinRM::Session).to receive(:new).and_return(session_mock)
+          allow(session_mock).to receive(:exit_codes).and_return({"thishost" => command_status})
+          expect { @winrm.run_with_pretty_exceptions }.to raise_error(SystemExit) { |e| expect(e.status).to eq(command_status) }
         end
 
         it "should exit the process with a zero status if the command returns an expected non-zero status" do
           command_status = 53
           Chef::Config[:knife][:returns] = [0,53]
-          @winrm.stub(:winrm_command).and_return(command_status)
-          EventMachine::WinRM::Session.any_instance.stub(:exit_codes).and_return({"thishost" => command_status})
+          allow(@winrm).to receive(:winrm_command).and_return(command_status)
+          session_mock = EventMachine::WinRM::Session.new
+          allow(EventMachine::WinRM::Session).to receive(:new).and_return(session_mock)
+          allow(session_mock).to receive(:exit_codes).and_return({"thishost" => command_status})
           exit_code = @winrm.run
-          exit_code.should == 0
+          expect(exit_code).to be_zero
         end
 
         it "should exit the process with a zero status if the command returns an expected non-zero status" do
           command_status = 53
           Chef::Config[:knife][:returns] = [0,53]
-          @winrm.stub(:winrm_command).and_return(command_status)
-          EventMachine::WinRM::Session.any_instance.stub(:exit_codes).and_return({"thishost" => command_status})
+          allow(@winrm).to receive(:winrm_command).and_return(command_status)
+          session_mock = EventMachine::WinRM::Session.new
+          allow(EventMachine::WinRM::Session).to receive(:new).and_return(session_mock)
+          allow(session_mock).to receive(:exit_codes).and_return({"thishost" => command_status})
           exit_code = @winrm.run
-          exit_code.should == 0
+          expect(exit_code).to be_zero
         end
 
         it "should exit the process with 100 if command execution raises an exception other than 401" do
-          @winrm.stub(:winrm_command).and_raise(WinRM::WinRMHTTPTransportError, '500')
-          expect { @winrm.run_with_pretty_exceptions }.to raise_error(SystemExit) { |e| e.status.should == 100 }
+          allow(@winrm).to receive(:winrm_command).and_raise(WinRM::WinRMHTTPTransportError, '500')
+          expect { @winrm.run_with_pretty_exceptions }.to raise_error(SystemExit) { |e| expect(e.status).to eq(100) }
         end
 
         it "should exit the process with 100 if command execution raises a 401" do
-          @winrm.stub(:winrm_command).and_raise(WinRM::WinRMHTTPTransportError, '401')
-          expect { @winrm.run_with_pretty_exceptions }.to raise_error(SystemExit) { |e| e.status.should == 100 }
+          allow(@winrm).to receive(:winrm_command).and_raise(WinRM::WinRMHTTPTransportError, '401')
+          expect { @winrm.run_with_pretty_exceptions }.to raise_error(SystemExit) { |e| expect(e.status).to eq(100) }
         end
 
         it "should exit the process with 0 if command execution raises a 401 and suppress_auth_failure is set to true" do
           @winrm.config[:suppress_auth_failure] = true
-          @winrm.stub(:winrm_command).and_raise(WinRM::WinRMHTTPTransportError, '401')
+          allow(@winrm).to receive(:winrm_command).and_raise(WinRM::WinRMHTTPTransportError, '401')
           exit_code = @winrm.run_with_pretty_exceptions
-          exit_code.should == 401
+          expect(exit_code).to eq(401)
+        end
+
+        context "validate sspinegotiate transport option" do
+          before do
+            Chef::Config[:knife] = {:winrm_transport => :plaintext}
+            allow(@winrm).to receive(:winrm_command).and_return(0)
+          end
+
+          it "should have winrm opts transport set to sspinegotiate for windows" do
+            allow(Chef::Platform).to receive(:windows?).and_return(true)
+            allow(@winrm).to receive(:require).with('winrm-s').and_return(true)
+
+            expect(@winrm.session).to receive(:use).with("localhost", {:user=>"testuser", :password=>"testpassword", :port=>nil, :operation_timeout=>1800, :basic_auth_only=>true, :transport=>:sspinegotiate, :disable_sspi=>false})
+            exit_code = @winrm.run
+          end
+
+          it "should have winrm monkey patched for windows" do
+            allow(Chef::Platform).to receive(:windows?).and_return(true)
+            expect(@winrm).to receive(:require).with('winrm-s')
+
+            exit_code = @winrm.run
+          end
+
+          it "should not have winrm opts transport set to sspinegotiate for unix" do
+            allow(Chef::Platform).to receive(:windows?).and_return(false)
+
+            expect(@winrm.session).to receive(:use).with("localhost", {:user=>"testuser", :password=>"testpassword", :port=>nil, :operation_timeout=>1800, :basic_auth_only=>true, :transport=>:plaintext, :disable_sspi=>true})
+            exit_code = @winrm.run
+          end
         end
+
       end
     end
   end

metadata

@@ -1,44 +1,50 @@
 --- !ruby/object:Gem::Specification
 name: knife-windows
 version: !ruby/object:Gem::Version
-  version: 0.6.0
+  version: 0.8.0.rc.0
 platform: ruby
 authors:
 - Seth Chisamore
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-05-12 00:00:00.000000000 Z
+date: 2014-09-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: em-winrm
+  name: winrm-s
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
-      - !ruby/object:Gem::Version
-        version: '0.5'
-    - - ! '>='
+    - - '='
       - !ruby/object:Gem::Version
-        version: 0.5.4
+        version: 0.2.0.rc.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - '='
       - !ruby/object:Gem::Version
-        version: '0.5'
-    - - ! '>='
+        version: 0.2.0.rc.0
+- !ruby/object:Gem::Dependency
+  name: em-winrm
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
       - !ruby/object:Gem::Version
-        version: 0.5.4
+        version: 0.6.0.rc.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.6.0.rc.0
 description: Plugin that adds functionality to Chef's Knife CLI for configuring/interacting
   with nodes running Microsoft Windows
 email:
 - schisamo@opscode.com
 executables: []
 extensions: []
-extra_rdoc_files:
-- README.rdoc
-- LICENSE
+extra_rdoc_files: []
 files:
 - .gitignore
 - .rspec
@@ -47,7 +53,7 @@ files:
 - DOC_CHANGES.md
 - Gemfile
 - LICENSE
-- README.rdoc
+- README.md
 - RELEASE_NOTES.md
 - Rakefile
 - features/knife_help.feature
@@ -68,7 +74,8 @@ files:
 - spec/unit/knife/bootstrap_windows_winrm_spec.rb
 - spec/unit/knife/winrm_spec.rb
 homepage: https://github.com/opscode/knife-windows
-licenses: []
+licenses:
+- Apache-2.0
 metadata: {}
 post_install_message: 
 rdoc_options: []
@@ -81,9 +88,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: 1.9.1
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ! '>='
+  - - ! '>'
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
 rubyforge_project: 
 rubygems_version: 2.1.11
@@ -99,4 +106,4 @@ test_files:
 - spec/unit/knife/bootstrap_template_spec.rb
 - spec/unit/knife/bootstrap_windows_winrm_spec.rb
 - spec/unit/knife/winrm_spec.rb
-has_rdoc: true
+has_rdoc: 

data/README.rdoc

@@ -1,134 +0,0 @@
-= Knife Windows Plugin
-
-= DESCRIPTION:
-
-This plugin adds additional functionality to the Chef Knife CLI tool for configuring/interacting with nodes running Microsoft Windows.  The subcommands should function on any system running Ruby 1.9.1+ but nodes being configured via these subcommands require Windows Remote Management (WinRM) 1.0+.  WinRM allows you to call native objects in Windows.  This includes, but is not limited to, running batch scripts, powershell scripts and fetching WMI variables.  For more information on WinRM, please visit {Microsoft's WinRM site}[http://msdn.microsoft.com/en-us/library/aa384426(v=VS.85).aspx]. You will want to familiarize yourself with (certain key aspects) of WinRM because you will be {writing scripts/running commands} with this tool to get you from (specific point A) to (specific point B).
-
-WinRM is built into Windows 7 and Windows Server 2008+.  It can also be easily installed in older version of Windows, including:
-
-* Windows XP
-* Windows Server 2003
-* Windows Vista
-
-More information can be found on {Microsoft Support article 968930}[http://support.microsoft.com/?kbid=968930].
-
-This subcommands in this plugin have been tested and verified to work on Windows Server 2008 R2.
-
-= SUBCOMMANDS:
-
-This plugin provides the following Knife subcommands.  Specific command options can be found by invoking the subcommand with a --+help+ flag
-
-== knife winrm
-
-The +winrm+ subcommand allows you to invoke commands in parallel on a subset of the nodes in your infrastructure. The +winrm+ subcommand uses the same syntax as the {search subcommand}[http://wiki.opscode.com/display/chef/Search]; you could could find the uptime of all your web servers using the command:
-
-    % knife winrm "role:web" "net stats srv" -x Administrator -P 'super_secret_password'
-
-Or force a chef run:
-
-    % knife winrm 'ec2-50-xx-xx-124.compute-1.amazonaws.com' 'chef-client -c c:/chef/client.rb' -m -x Administrator -P 'super_secret_password'
-    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:49 +0000] INFO: Starting Chef Run (Version 0.9.12)
-    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:50 +0000] WARN: Node ip-0A502FFB has an empty run list.
-    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:53 +0000] INFO: Chef Run complete in 4.383966 seconds
-    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:53 +0000] INFO: cleaning the checksum cache
-    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:53 +0000] INFO: Running report handlers
-    ec2-50-xx-xx-124.compute-1.amazonaws.com [Fri, 04 Mar 2011 22:00:53 +0000] INFO: Report handlers complete
-
-This subcommand operates in a very similar manner as {knife ssh}[http://wiki.opscode.com/display/chef/Knife#Knife-SSHSubcommand]...just leveraging the WinRM protocol for communication.  It also include's +knife+ +ssh+'s "{interactive session mode}[http://wiki.opscode.com/display/chef/Knife#Knife-InteractiveMode]"
-
-== knife bootstrap windows winrm
-
-Performs a Chef Bootstrap (via the WinRM protocol) on the target node. The goal of the bootstrap is to get Chef installed on the target system so it can run Chef Client with a Chef Server. The main assumption is a baseline OS installation exists. It is primarily intended for Chef Client systems that talk to a Chef server.
-
-This subcommand operates in a very similar manner as {knife bootstrap}[http://wiki.opscode.com/display/chef/Knife+Bootstrap]...just leveraging the WinRM protocol for communication.  An initial run_list for the node can also be passed to the subcommand. Example usage:
-
-    knife bootstrap windows winrm ec2-50-xx-xx-124.compute-1.amazonaws.com -r 'role[webserver],role[production]' -x Administrator -P 'super_secret_password'
-
-== knife bootstrap windows ssh
-
-Performs a Chef Bootstrap (via the SSH protocol) on the target node. The goal of the bootstrap is to get Chef installed on the target system so it can run Chef Client with a Chef Server. The main assumption is a baseline OS installation exists. It is primarily intended for Chef Client systems that talk to a Chef server.
-
-This subcommand assumes the SSH session will use Windows native cmd.exe command shell vs a bash shell through an emulated cygwin layer.  Most popular Windows based SSHd daemons like {freeSSHd}[http://www.freesshd.com/] and {WinSSHD}[http://www.bitvise.com/winsshd] behave this way.
-
-An initial run_list for the node can also be passed to the subcommand. Example usage:
-
-    knife bootstrap windows ssh ec2-50-xx-xx-124.compute-1.amazonaws.com -r 'role[webserver],role[production]' -x Administrator -i ~/.ssh/id_rsa
-
-= BOOTSTRAP TEMPLATES:
-
-This gem provides the following bootstrap templates:
-
-== windows-chef-client-msi
-
-This bootstrap template does the following:
-
-* Installs the latest version of Chef (and all dependencies) using the `chef-client` msi.
-* Writes the validation.pem per the local knife configuration.
-* Writes a default config file for Chef (C:\chef\client.rb) using values from the +knife.rb+.
-* Creates a JSON attributes file containing the specified run list and run Chef.
-
-This is the default bootstrap template used by both the +windows+ +bootstrap+ subcommands.
-
-= REQUIREMENTS/SETUP:
-
-== Ruby
-
-Ruby 1.9.1+ is needed.
-
-== Chef Version
-
-Knife plugins require >= Chef 0.10.  More details about Knife plugins can be {found on the Chef wiki}[http://wiki.opscode.com/display/chef/Knife+Plugins].
-
-== Nodes
-
-*NOTE*: Before any WinRM related knife subcommands will function correctly a node's WinRM installation must be configured correctly.  The below settings should be added to your base server image (AMI) or passed in using some sort of user-data mechanism provided by your cloud provider.
-
-A server running WinRM must also be configured properly to allow outside connections and the entire network path from the knife workstation to the server.  The easiest way to accomplish this is to use {WinRM's quick configuration option}[http://msdn.microsoft.com/en-us/library/aa384372(v=vs.85).aspx#quick_default_configuration]:
-
-    C:\Users\Administrator> winrm quickconfig -q
-
-The Chef and Ohai gem installations (that occur during bootstrap) take more memory than the default 150MB WinRM allocates per shell.  Bump it up to 300MB with the following setting:
-
-    C:\Users\Administrator> winrm set winrm/config/winrs @{MaxMemoryPerShellMB="300"}
-
-Bootstrap commands can take longer than the WinRM default 60 seconds to complete, bump to 30 minutes:
-
-    C:\Users\Administrator> winrm set winrm/config @{MaxTimeoutms="1800000"}
-
-WinRM supports both the HTTP and HTTPS transports and the following authentication schemes: Kerberos, Digest, Certificate and Basic.  The details of these authentication transports are outside of the scope of this README but details can be found on the {WinRM configuration guide}[http://msdn.microsoft.com/en-us/library/aa384372(v=vs.85).aspx].  Currently, this plugin support Kerberos and Basic authentication schemes.
-
-For development and testing purposes, unencrypted traffic with Basic authentication can make things easier:
-
-    C:\Users\Administrator> winrm set winrm/config/service @{AllowUnencrypted="true"}
-    C:\Users\Administrator> winrm set winrm/config/service/auth @{Basic="true"}
-
-=== Troubleshooting
-
-#### When I run the winrm command I get: "Error: Invalid use of command line. Type "winrm -?" for help."
-- You're running the winrm command from powershell and you need to put the key/value pair in single quotes. For example:
-```
-   winrm set winrm/config/winrs '@{MaxMemoryPerShellMB="512"}'
-```
-
-= CONTRIBUTING:
-
-Please file bugs against the KNIFE_WINDOWS project at http://tickets.opscode.com/browse/knife
-
-More information on the contribution process for Opscode projects can be found at: http://wiki.opscode.com/display/chef/How+to+Contribute
-= LICENSE:
-
-Author:: Seth Chisamore (<schisamo@opscode.com>)
-Copyright:: Copyright (c) 2011 Opscode, Inc.
-License:: Apache License, Version 2.0
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.