knife 17.0.244 → 17.2.11
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/Gemfile +2 -5
- data/Rakefile +1 -6
- data/knife.gemspec +5 -5
- data/lib/chef/knife/ssl_fetch.rb +1 -1
- data/lib/chef/knife/version.rb +1 -1
- data/spec/data/apt/chef-integration-test-1.0/debian/changelog +5 -0
- data/spec/data/apt/chef-integration-test-1.0/debian/compat +1 -0
- data/spec/data/apt/chef-integration-test-1.0/debian/control +13 -0
- data/spec/data/apt/chef-integration-test-1.0/debian/copyright +34 -0
- data/spec/data/apt/chef-integration-test-1.0/debian/files +1 -0
- data/spec/data/apt/chef-integration-test-1.0/debian/rules +13 -0
- data/spec/data/apt/chef-integration-test-1.0/debian/source/format +1 -0
- data/spec/data/apt/chef-integration-test-1.1/debian/changelog +11 -0
- data/spec/data/apt/chef-integration-test-1.1/debian/compat +1 -0
- data/spec/data/apt/chef-integration-test-1.1/debian/control +13 -0
- data/spec/data/apt/chef-integration-test-1.1/debian/copyright +34 -0
- data/spec/data/apt/chef-integration-test-1.1/debian/files +1 -0
- data/spec/data/apt/chef-integration-test-1.1/debian/rules +13 -0
- data/spec/data/apt/chef-integration-test-1.1/debian/source/format +1 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/changelog +5 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2/DEBIAN/conffiles +1 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2/DEBIAN/control +10 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2/DEBIAN/md5sums +1 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2.debhelper.log +45 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/chef-integration-test2.substvars +1 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/compat +1 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/conffiles +1 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/control +13 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/copyright +34 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/files +1 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/rules +13 -0
- data/spec/data/apt/chef-integration-test2-1.0/debian/source/format +1 -0
- data/spec/data/apt/chef-integration-test2_1.0-1.debian.tar.gz +0 -0
- data/spec/data/apt/chef-integration-test2_1.0-1.dsc +18 -0
- data/spec/data/apt/chef-integration-test2_1.0-1_amd64.build +91 -0
- data/spec/data/apt/chef-integration-test2_1.0-1_amd64.changes +31 -0
- data/spec/data/apt/chef-integration-test2_1.0-1_amd64.deb +0 -0
- data/spec/data/apt/chef-integration-test2_1.0.orig.tar.gz +0 -0
- data/spec/data/apt/chef-integration-test_1.0-1_amd64.changes +22 -0
- data/spec/data/apt/chef-integration-test_1.0-1_amd64.deb +0 -0
- data/spec/data/apt/chef-integration-test_1.0.orig.tar.gz +0 -0
- data/spec/data/apt/chef-integration-test_1.1-1_amd64.changes +22 -0
- data/spec/data/apt/chef-integration-test_1.1-1_amd64.deb +0 -0
- data/spec/data/apt/chef-integration-test_1.1.orig.tar.gz +0 -0
- data/spec/data/apt/var/www/apt/conf/distributions +7 -0
- data/spec/data/apt/var/www/apt/conf/incoming +4 -0
- data/spec/data/apt/var/www/apt/conf/pulls +3 -0
- data/spec/data/apt/var/www/apt/db/checksums.db +0 -0
- data/spec/data/apt/var/www/apt/db/contents.cache.db +0 -0
- data/spec/data/apt/var/www/apt/db/packages.db +0 -0
- data/spec/data/apt/var/www/apt/db/references.db +0 -0
- data/spec/data/apt/var/www/apt/db/release.caches.db +0 -0
- data/spec/data/apt/var/www/apt/db/version +4 -0
- data/spec/data/apt/var/www/apt/dists/sid/Release +19 -0
- data/spec/data/apt/var/www/apt/dists/sid/main/binary-amd64/Packages +16 -0
- data/spec/data/apt/var/www/apt/dists/sid/main/binary-amd64/Packages.gz +0 -0
- data/spec/data/apt/var/www/apt/dists/sid/main/binary-amd64/Release +5 -0
- data/spec/data/apt/var/www/apt/dists/sid/main/binary-i386/Packages +0 -0
- data/spec/data/apt/var/www/apt/pool/main/c/chef-integration-test/chef-integration-test_1.0-1_amd64.deb +0 -0
- data/spec/data/apt/var/www/apt/pool/main/c/chef-integration-test/chef-integration-test_1.1-1_amd64.deb +0 -0
- data/spec/data/bad-config.rb +1 -0
- data/spec/data/bootstrap/encrypted_data_bag_secret +1 -0
- data/spec/data/bootstrap/no_proxy.erb +2 -0
- data/spec/data/bootstrap/secret.erb +9 -0
- data/spec/data/bootstrap/test-hints.erb +12 -0
- data/spec/data/bootstrap/test.erb +1 -0
- data/spec/data/cb_version_cookbooks/cookbook2/files/test.txt +0 -0
- data/spec/data/cb_version_cookbooks/cookbook2/templates/test.erb +0 -0
- data/spec/data/cb_version_cookbooks/tatft/README.rdoc +3 -0
- data/spec/data/cb_version_cookbooks/tatft/attributes/default.rb +1 -0
- data/spec/data/cb_version_cookbooks/tatft/definitions/runit_service.rb +1 -0
- data/spec/data/cb_version_cookbooks/tatft/files/default/giant_blob.tgz +1 -0
- data/spec/data/cb_version_cookbooks/tatft/libraries/ownage.rb +1 -0
- data/spec/data/cb_version_cookbooks/tatft/providers/lwp.rb +1 -0
- data/spec/data/cb_version_cookbooks/tatft/recipes/default.rb +1 -0
- data/spec/data/cb_version_cookbooks/tatft/resources/lwr.rb +1 -0
- data/spec/data/cb_version_cookbooks/tatft/templates/default/configuration.erb +0 -0
- data/spec/data/checksum/random.txt +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-600hhz-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-6m8zdk-0 +0 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ahd2gq-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-api8ux-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-b0r1m1-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-bfygsi-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-el14l6-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ivrl3y-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-kkbs85-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ory1ux-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-pgsq76-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ra8uim-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-t7k1g-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-t8g0sv-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-ufy6g3-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-x2d6j9-0 +1 -0
- data/spec/data/checksum_cache/chef-file--tmp-chef-rendered-template20100929-10863-xi0l6h-0 +1 -0
- data/spec/data/client.d_00/00-foo.rb +2 -0
- data/spec/data/client.d_00/01-bar.rb +1 -0
- data/spec/data/client.d_00/02-strings.rb +2 -0
- data/spec/data/client.d_00/bar +1 -0
- data/spec/data/client.d_01/foo/bar.rb +1 -0
- data/spec/data/client.d_02/foo.rb/foo.txt +1 -0
- data/spec/data/config.rb +6 -0
- data/spec/data/cookbooks/angrybash/metadata.rb +2 -0
- data/spec/data/cookbooks/angrybash/recipes/default.rb +8 -0
- data/spec/data/cookbooks/apache2/files/default/apache2_module_conf_generate.pl +2 -0
- data/spec/data/cookbooks/apache2/metadata.json +33 -0
- data/spec/data/cookbooks/apache2/metadata.rb +2 -0
- data/spec/data/cookbooks/apache2/recipes/default.rb +3 -0
- data/spec/data/cookbooks/borken/metadata.rb +2 -0
- data/spec/data/cookbooks/borken/recipes/default.rb +2 -0
- data/spec/data/cookbooks/borken/templates/default/borken.erb +2 -0
- data/spec/data/cookbooks/chefignore +8 -0
- data/spec/data/cookbooks/ignorken/files/default/not_me.rb +2 -0
- data/spec/data/cookbooks/ignorken/metadata.rb +2 -0
- data/spec/data/cookbooks/ignorken/recipes/default.rb +1 -0
- data/spec/data/cookbooks/ignorken/recipes/ignoreme.rb +2 -0
- data/spec/data/cookbooks/ignorken/templates/ubuntu-12.10/not_me.rb +2 -0
- data/spec/data/cookbooks/irssi/files/default/irssi.response +2 -0
- data/spec/data/cookbooks/java/files/default/java.response +2 -0
- data/spec/data/cookbooks/java/metadata.json +33 -0
- data/spec/data/cookbooks/java/metadata.rb +2 -0
- data/spec/data/cookbooks/name-mismatch-versionnumber/README.md +4 -0
- data/spec/data/cookbooks/name-mismatch-versionnumber/metadata.rb +8 -0
- data/spec/data/cookbooks/name-mismatch-versionnumber/recipes/default.rb +8 -0
- data/spec/data/cookbooks/openldap/.root_dotfile +0 -0
- data/spec/data/cookbooks/openldap/attributes/default.rb +16 -0
- data/spec/data/cookbooks/openldap/attributes/smokey.rb +1 -0
- data/spec/data/cookbooks/openldap/definitions/client.rb +5 -0
- data/spec/data/cookbooks/openldap/definitions/server.rb +5 -0
- data/spec/data/cookbooks/openldap/files/default/.dotfile +1 -0
- data/spec/data/cookbooks/openldap/files/default/.ssh/id_rsa +1 -0
- data/spec/data/cookbooks/openldap/files/default/remotedir/.a_dotdir/.a_dotfile_in_a_dotdir +1 -0
- data/spec/data/cookbooks/openldap/files/default/remotedir/not_a_template.erb +2 -0
- data/spec/data/cookbooks/openldap/files/default/remotedir/remote_dir_file1.txt +3 -0
- data/spec/data/cookbooks/openldap/files/default/remotedir/remote_dir_file2.txt +3 -0
- data/spec/data/cookbooks/openldap/files/default/remotedir/remotesubdir/.a_dotfile +1 -0
- data/spec/data/cookbooks/openldap/files/default/remotedir/remotesubdir/remote_subdir_file1.txt +3 -0
- data/spec/data/cookbooks/openldap/files/default/remotedir/remotesubdir/remote_subdir_file2.txt +3 -0
- data/spec/data/cookbooks/openldap/files/default/remotedir/subdir_with_no_file_just_a_subsubdir/the_subsubdir/some_file.txt +3 -0
- data/spec/data/cookbooks/openldap/libraries/openldap/version.rb +3 -0
- data/spec/data/cookbooks/openldap/libraries/openldap.rb +4 -0
- data/spec/data/cookbooks/openldap/metadata.rb +8 -0
- data/spec/data/cookbooks/openldap/recipes/default.rb +4 -0
- data/spec/data/cookbooks/openldap/recipes/gigantor.rb +3 -0
- data/spec/data/cookbooks/openldap/recipes/one.rb +15 -0
- data/spec/data/cookbooks/openldap/recipes/return.rb +2 -0
- data/spec/data/cookbooks/openldap/spec/spec_helper.rb +0 -0
- data/spec/data/cookbooks/openldap/templates/default/all_windows_line_endings.erb +4 -0
- data/spec/data/cookbooks/openldap/templates/default/helper_test.erb +1 -0
- data/spec/data/cookbooks/openldap/templates/default/helpers.erb +14 -0
- data/spec/data/cookbooks/openldap/templates/default/helpers_via_partial_test.erb +1 -0
- data/spec/data/cookbooks/openldap/templates/default/nested_openldap_partials.erb +1 -0
- data/spec/data/cookbooks/openldap/templates/default/nested_partial.erb +1 -0
- data/spec/data/cookbooks/openldap/templates/default/no_windows_line_endings.erb +4 -0
- data/spec/data/cookbooks/openldap/templates/default/openldap_nested_variable_stuff.erb +1 -0
- data/spec/data/cookbooks/openldap/templates/default/openldap_stuff.conf.erb +1 -0
- data/spec/data/cookbooks/openldap/templates/default/openldap_variable_stuff.conf.erb +1 -0
- data/spec/data/cookbooks/openldap/templates/default/some_windows_line_endings.erb +4 -0
- data/spec/data/cookbooks/openldap/templates/default/test.erb +1 -0
- data/spec/data/cookbooks/preseed/files/default/preseed-file.seed +1 -0
- data/spec/data/cookbooks/preseed/files/default/preseed-template.seed +4 -0
- data/spec/data/cookbooks/preseed/metadata.rb +2 -0
- data/spec/data/cookbooks/preseed/templates/default/preseed-template-variables.seed +1 -0
- data/spec/data/cookbooks/preseed/templates/default/preseed-template.seed +1 -0
- data/spec/data/cookbooks/starter/chefignore +8 -0
- data/spec/data/cookbooks/starter/files/sample.txt +1 -0
- data/spec/data/cookbooks/starter/metadata.rb +2 -0
- data/spec/data/cookbooks/starter/recipes/default.rb +4 -0
- data/spec/data/cookbooks/supports-platform-constraints/metadata.rb +5 -0
- data/spec/data/cookbooks/wget/files/default/wget.response +2 -0
- data/spec/data/definitions/test.rb +5 -0
- data/spec/data/dsc_lcm.pfx +0 -0
- data/spec/data/environment-config.rb +5 -0
- data/spec/data/file-providers-method-snapshot-chef-11-4.json +127 -0
- data/spec/data/fileedit/blank +0 -0
- data/spec/data/fileedit/hosts +4 -0
- data/spec/data/gems/chef-integration-test-0.1.0.gem +0 -0
- data/spec/data/git_bundles/example-repo.gitbundle +0 -0
- data/spec/data/git_bundles/sinatra-test-app-with-callback-files.gitbundle +0 -0
- data/spec/data/git_bundles/sinatra-test-app-with-symlinks.gitbundle +0 -0
- data/spec/data/git_bundles/sinatra-test-app.gitbundle +0 -0
- data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/README.md +4 -0
- data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/metadata.rb +13 -0
- data/spec/data/incomplete-metadata-chef-repo/incomplete-metadata/recipes/default.rb +8 -0
- data/spec/data/invalid-metadata-chef-repo/invalid-metadata/README.md +4 -0
- data/spec/data/invalid-metadata-chef-repo/invalid-metadata/metadata.rb +9 -0
- data/spec/data/invalid-metadata-chef-repo/invalid-metadata/recipes/default.rb +8 -0
- data/spec/data/kitchen/chefignore +6 -0
- data/spec/data/kitchen/openldap/attributes/default.rb +3 -0
- data/spec/data/kitchen/openldap/attributes/robinson.rb +3 -0
- data/spec/data/kitchen/openldap/definitions/client.rb +3 -0
- data/spec/data/kitchen/openldap/definitions/drewbarrymore.rb +3 -0
- data/spec/data/kitchen/openldap/recipes/gigantor.rb +3 -0
- data/spec/data/kitchen/openldap/recipes/ignoreme.rb +3 -0
- data/spec/data/kitchen/openldap/recipes/woot.rb +3 -0
- data/spec/data/knife-home/.chef/plugins/knife/example_home_subcommand.rb +0 -0
- data/spec/data/knife-site-subcommands/plugins/knife/example_subcommand.rb +0 -0
- data/spec/data/knife_subcommand/test_explicit_category.rb +7 -0
- data/spec/data/knife_subcommand/test_name_mapping.rb +4 -0
- data/spec/data/knife_subcommand/test_yourself.rb +21 -0
- data/spec/data/lwrp/providers/buck_passer.rb +28 -0
- data/spec/data/lwrp/providers/buck_passer_2.rb +26 -0
- data/spec/data/lwrp/providers/embedded_resource_accesses_providers_scope.rb +28 -0
- data/spec/data/lwrp/providers/inline_compiler.rb +24 -0
- data/spec/data/lwrp/providers/monkey_name_printer.rb +5 -0
- data/spec/data/lwrp/providers/paint_drying_watcher.rb +7 -0
- data/spec/data/lwrp/providers/thumb_twiddler.rb +7 -0
- data/spec/data/lwrp/resources/bar.rb +4 -0
- data/spec/data/lwrp/resources/buck_passer.rb +6 -0
- data/spec/data/lwrp/resources/buck_passer_2.rb +4 -0
- data/spec/data/lwrp/resources/embedded_resource_accesses_providers_scope.rb +4 -0
- data/spec/data/lwrp/resources/foo.rb +6 -0
- data/spec/data/lwrp/resources/inline_compiler.rb +4 -0
- data/spec/data/lwrp/resources/monkey_name_printer.rb +6 -0
- data/spec/data/lwrp/resources/paint_drying_watcher.rb +4 -0
- data/spec/data/lwrp/resources/thumb_twiddler.rb +4 -0
- data/spec/data/lwrp/resources_with_default_attributes/nodeattr.rb +3 -0
- data/spec/data/lwrp_const_scoping/resources/conflict.rb +1 -0
- data/spec/data/lwrp_override/providers/buck_passer.rb +5 -0
- data/spec/data/lwrp_override/resources/foo.rb +11 -0
- data/spec/data/mac_users/10.9.plist.xml +560 -0
- data/spec/data/mac_users/10.9.shadow.xml +21 -0
- data/spec/data/metadata/quick_start/metadata.rb +14 -0
- data/spec/data/mixin/invalid_data.rb +3 -0
- data/spec/data/mixin/real_data.rb +2 -0
- data/spec/data/nested.json +2 -0
- data/spec/data/nodes/default.rb +15 -0
- data/spec/data/nodes/test.example.com.rb +17 -0
- data/spec/data/nodes/test.rb +15 -0
- data/spec/data/null_config.rb +1 -0
- data/spec/data/object_loader/environments/test.json +7 -0
- data/spec/data/object_loader/environments/test.rb +2 -0
- data/spec/data/object_loader/environments/test_json_class.json +8 -0
- data/spec/data/object_loader/nodes/test.json +7 -0
- data/spec/data/object_loader/nodes/test.rb +2 -0
- data/spec/data/object_loader/nodes/test_json_class.json +8 -0
- data/spec/data/object_loader/roles/test.json +7 -0
- data/spec/data/object_loader/roles/test.rb +2 -0
- data/spec/data/object_loader/roles/test_json_class.json +8 -0
- data/spec/data/old_home_dir/my-dot-emacs +0 -0
- data/spec/data/old_home_dir/my-dot-vim +0 -0
- data/spec/data/partial_one.erb +1 -0
- data/spec/data/prefer_metadata_json/metadata.json +51 -0
- data/spec/data/prefer_metadata_json/metadata.rb +6 -0
- data/spec/data/prefer_metadata_json/recipes/default.rb +0 -0
- data/spec/data/recipes/test.rb +7 -0
- data/spec/data/recipes.tgz +0 -0
- data/spec/data/remote_directory_data/remote_dir_file.txt +1 -0
- data/spec/data/remote_directory_data/remote_subdirectory/remote_subdir_file.txt +1 -0
- data/spec/data/remote_file/nyan_cat.png +0 -0
- data/spec/data/remote_file/nyan_cat.png.gz +0 -0
- data/spec/data/root_alias_cookbooks/dup_attr/attributes/default.rb +1 -0
- data/spec/data/root_alias_cookbooks/dup_attr/attributes.rb +1 -0
- data/spec/data/root_alias_cookbooks/dup_attr/metadata.rb +2 -0
- data/spec/data/root_alias_cookbooks/dup_attr/recipe.rb +3 -0
- data/spec/data/root_alias_cookbooks/dup_recipe/attributes.rb +1 -0
- data/spec/data/root_alias_cookbooks/dup_recipe/metadata.rb +2 -0
- data/spec/data/root_alias_cookbooks/dup_recipe/recipe.rb +3 -0
- data/spec/data/root_alias_cookbooks/dup_recipe/recipes/default.rb +3 -0
- data/spec/data/root_alias_cookbooks/simple/attributes.rb +1 -0
- data/spec/data/root_alias_cookbooks/simple/metadata.rb +2 -0
- data/spec/data/root_alias_cookbooks/simple/recipe.rb +3 -0
- data/spec/data/rubygems.org/latest_specs.4.8.gz +0 -0
- data/spec/data/rubygems.org/nonexistent_gem +0 -0
- data/spec/data/rubygems.org/nonexistent_gem-info +1 -0
- data/spec/data/rubygems.org/sexp_processor +0 -0
- data/spec/data/rubygems.org/sexp_processor-4.15.1.gemspec.rz +0 -0
- data/spec/data/rubygems.org/sexp_processor-info +49 -0
- data/spec/data/run_context/cookbooks/circular-dep1/attributes/default.rb +2 -0
- data/spec/data/run_context/cookbooks/circular-dep1/definitions/circular_dep1_res.rb +1 -0
- data/spec/data/run_context/cookbooks/circular-dep1/libraries/lib.rb +2 -0
- data/spec/data/run_context/cookbooks/circular-dep1/metadata.rb +2 -0
- data/spec/data/run_context/cookbooks/circular-dep1/providers/provider.rb +1 -0
- data/spec/data/run_context/cookbooks/circular-dep1/recipes/default.rb +0 -0
- data/spec/data/run_context/cookbooks/circular-dep1/resources/resource.rb +2 -0
- data/spec/data/run_context/cookbooks/circular-dep2/attributes/default.rb +2 -0
- data/spec/data/run_context/cookbooks/circular-dep2/definitions/circular_dep2_res.rb +1 -0
- data/spec/data/run_context/cookbooks/circular-dep2/libraries/lib.rb +2 -0
- data/spec/data/run_context/cookbooks/circular-dep2/metadata.rb +2 -0
- data/spec/data/run_context/cookbooks/circular-dep2/providers/provider.rb +1 -0
- data/spec/data/run_context/cookbooks/circular-dep2/recipes/default.rb +0 -0
- data/spec/data/run_context/cookbooks/circular-dep2/resources/resource.rb +2 -0
- data/spec/data/run_context/cookbooks/dependency1/attributes/aa_first.rb +2 -0
- data/spec/data/run_context/cookbooks/dependency1/attributes/default.rb +2 -0
- data/spec/data/run_context/cookbooks/dependency1/attributes/unparsed_file +1 -0
- data/spec/data/run_context/cookbooks/dependency1/attributes/zz_last.rb +2 -0
- data/spec/data/run_context/cookbooks/dependency1/definitions/dependency1_res.rb +1 -0
- data/spec/data/run_context/cookbooks/dependency1/definitions/unparsed_file +1 -0
- data/spec/data/run_context/cookbooks/dependency1/libraries/lib.rb +2 -0
- data/spec/data/run_context/cookbooks/dependency1/libraries/unparsed_file +1 -0
- data/spec/data/run_context/cookbooks/dependency1/providers/provider.rb +1 -0
- data/spec/data/run_context/cookbooks/dependency1/providers/unparsed_file +1 -0
- data/spec/data/run_context/cookbooks/dependency1/recipes/default.rb +0 -0
- data/spec/data/run_context/cookbooks/dependency1/recipes/unparsed_file +1 -0
- data/spec/data/run_context/cookbooks/dependency1/resources/resource.rb +2 -0
- data/spec/data/run_context/cookbooks/dependency1/resources/unparsed_file +1 -0
- data/spec/data/run_context/cookbooks/dependency2/attributes/default.rb +2 -0
- data/spec/data/run_context/cookbooks/dependency2/definitions/dependency2_res.rb +1 -0
- data/spec/data/run_context/cookbooks/dependency2/libraries/lib.rb +2 -0
- data/spec/data/run_context/cookbooks/dependency2/providers/provider.rb +1 -0
- data/spec/data/run_context/cookbooks/dependency2/recipes/default.rb +0 -0
- data/spec/data/run_context/cookbooks/dependency2/resources/resource.rb +2 -0
- data/spec/data/run_context/cookbooks/include/recipes/default.rb +24 -0
- data/spec/data/run_context/cookbooks/include/recipes/includee.rb +3 -0
- data/spec/data/run_context/cookbooks/no-default-attr/attributes/server.rb +2 -0
- data/spec/data/run_context/cookbooks/no-default-attr/definitions/no_default-attr_res.rb +1 -0
- data/spec/data/run_context/cookbooks/no-default-attr/providers/provider.rb +1 -0
- data/spec/data/run_context/cookbooks/no-default-attr/recipes/default.rb +0 -0
- data/spec/data/run_context/cookbooks/no-default-attr/resources/resource.rb +2 -0
- data/spec/data/run_context/cookbooks/test/attributes/default.rb +0 -0
- data/spec/data/run_context/cookbooks/test/attributes/george.rb +1 -0
- data/spec/data/run_context/cookbooks/test/definitions/new_animals.rb +9 -0
- data/spec/data/run_context/cookbooks/test/definitions/new_cat.rb +5 -0
- data/spec/data/run_context/cookbooks/test/definitions/test_res.rb +1 -0
- data/spec/data/run_context/cookbooks/test/providers/provider.rb +1 -0
- data/spec/data/run_context/cookbooks/test/recipes/default.rb +5 -0
- data/spec/data/run_context/cookbooks/test/recipes/one.rb +7 -0
- data/spec/data/run_context/cookbooks/test/recipes/two.rb +7 -0
- data/spec/data/run_context/cookbooks/test/resources/resource.rb +3 -0
- data/spec/data/run_context/cookbooks/test-with-circular-deps/attributes/default.rb +2 -0
- data/spec/data/run_context/cookbooks/test-with-circular-deps/definitions/test_with-circular-deps_res.rb +1 -0
- data/spec/data/run_context/cookbooks/test-with-circular-deps/libraries/lib.rb +2 -0
- data/spec/data/run_context/cookbooks/test-with-circular-deps/metadata.rb +2 -0
- data/spec/data/run_context/cookbooks/test-with-circular-deps/providers/provider.rb +1 -0
- data/spec/data/run_context/cookbooks/test-with-circular-deps/recipes/default.rb +0 -0
- data/spec/data/run_context/cookbooks/test-with-circular-deps/resources/resource.rb +3 -0
- data/spec/data/run_context/cookbooks/test-with-deps/attributes/default.rb +2 -0
- data/spec/data/run_context/cookbooks/test-with-deps/definitions/test_with-deps_res.rb +1 -0
- data/spec/data/run_context/cookbooks/test-with-deps/libraries/lib.rb +1 -0
- data/spec/data/run_context/cookbooks/test-with-deps/metadata.rb +3 -0
- data/spec/data/run_context/cookbooks/test-with-deps/providers/provider.rb +1 -0
- data/spec/data/run_context/cookbooks/test-with-deps/recipes/default.rb +0 -0
- data/spec/data/run_context/cookbooks/test-with-deps/recipes/server.rb +0 -0
- data/spec/data/run_context/cookbooks/test-with-deps/resources/resource.rb +2 -0
- data/spec/data/run_context/nodes/run_context.rb +5 -0
- data/spec/data/sample_msu1.xml +10 -0
- data/spec/data/sample_msu2.xml +14 -0
- data/spec/data/sample_msu3.xml +16 -0
- data/spec/data/search_queries_to_transform.txt +98 -0
- data/spec/data/shef-config.rb +11 -0
- data/spec/data/snap_package/async_result_success.json +6 -0
- data/spec/data/snap_package/change_id_result.json +175 -0
- data/spec/data/snap_package/find_result_failure.json +10 -0
- data/spec/data/snap_package/find_result_success.json +70 -0
- data/spec/data/snap_package/get_by_name_result_failure.json +10 -0
- data/spec/data/snap_package/get_by_name_result_success.json +38 -0
- data/spec/data/snap_package/get_conf_success.json +10 -0
- data/spec/data/snap_package/result_failure.json +9 -0
- data/spec/data/ssl/5e707473.0 +18 -0
- data/spec/data/ssl/binary/chef-rspec-der.cert +0 -0
- data/spec/data/ssl/binary/chef-rspec-der.key +0 -0
- data/spec/data/ssl/chef-rspec.cert +27 -0
- data/spec/data/ssl/chef-rspec.key +27 -0
- data/spec/data/ssl/key.pem +15 -0
- data/spec/data/ssl/private_key.pem +27 -0
- data/spec/data/ssl/private_key_with_whitespace.pem +32 -0
- data/spec/data/standalone_cookbook/Gemfile +1 -0
- data/spec/data/standalone_cookbook/chefignore +9 -0
- data/spec/data/standalone_cookbook/recipes/default.rb +3 -0
- data/spec/data/standalone_cookbook/vendor/bundle/ruby/2.0.0/gems/multi_json-1.9.0/lib/multi_json.rb +1 -0
- data/spec/data/templates/chef-seattle20160930-4388-1crv7ef.txt +1 -0
- data/spec/data/templates/chef-seattle20160930-4388-jjfoae.txt +1 -0
- data/spec/data/templates/chef-seattle20160930-4388-umeq2c.txt +1 -0
- data/spec/data/templates/failed.erb +5 -0
- data/spec/data/templates/seattle.txt +1 -0
- data/spec/data/trusted_certs/example.crt +22 -0
- data/spec/data/trusted_certs/example_no_cn.crt +36 -0
- data/spec/data/trusted_certs/intermediate.pem +27 -0
- data/spec/data/trusted_certs/opscode.pem +57 -0
- data/spec/data/trusted_certs/root.pem +22 -0
- data/spec/data/windows_certificates/base64_test.cer +20 -0
- data/spec/data/windows_certificates/othertest.cer +20 -0
- data/spec/data/windows_certificates/test.cer +20 -0
- data/spec/data/windows_certificates/test.p7b +0 -0
- data/spec/data/windows_certificates/test.pem +20 -0
- data/spec/data/windows_certificates/test.pfx +0 -0
- data/spec/functional/configure_spec.rb +33 -0
- data/spec/functional/cookbook_delete_spec.rb +156 -0
- data/spec/functional/exec_spec.rb +55 -0
- data/spec/functional/rehash_spec.rb +39 -0
- data/spec/functional/smoke_test.rb +42 -0
- data/spec/functional/ssh_spec.rb +352 -0
- data/spec/functional/version_spec.rb +26 -0
- data/spec/integration/chef_fs_data_store_spec.rb +557 -0
- data/spec/integration/chef_repo_path_spec.rb +962 -0
- data/spec/integration/chef_repository_file_system_spec.rb +200 -0
- data/spec/integration/chefignore_spec.rb +301 -0
- data/spec/integration/client_bulk_delete_spec.rb +131 -0
- data/spec/integration/client_create_spec.rb +70 -0
- data/spec/integration/client_delete_spec.rb +64 -0
- data/spec/integration/client_key_create_spec.rb +66 -0
- data/spec/integration/client_key_delete_spec.rb +43 -0
- data/spec/integration/client_key_list_spec.rb +61 -0
- data/spec/integration/client_key_show_spec.rb +45 -0
- data/spec/integration/client_list_spec.rb +49 -0
- data/spec/integration/client_show_spec.rb +37 -0
- data/spec/integration/common_options_spec.rb +174 -0
- data/spec/integration/config_list_spec.rb +220 -0
- data/spec/integration/config_show_spec.rb +192 -0
- data/spec/integration/config_use_spec.rb +198 -0
- data/spec/integration/cookbook_api_ipv6_spec.rb +113 -0
- data/spec/integration/cookbook_bulk_delete_spec.rb +65 -0
- data/spec/integration/cookbook_download_spec.rb +72 -0
- data/spec/integration/cookbook_list_spec.rb +55 -0
- data/spec/integration/cookbook_show_spec.rb +149 -0
- data/spec/integration/cookbook_upload_spec.rb +128 -0
- data/spec/integration/data_bag_create_spec.rb +125 -0
- data/spec/integration/data_bag_delete_spec.rb +59 -0
- data/spec/integration/data_bag_edit_spec.rb +105 -0
- data/spec/integration/data_bag_from_file_spec.rb +116 -0
- data/spec/integration/data_bag_list_spec.rb +44 -0
- data/spec/integration/data_bag_show_spec.rb +95 -0
- data/spec/integration/delete_spec.rb +1018 -0
- data/spec/integration/deps_spec.rb +703 -0
- data/spec/integration/diff_spec.rb +605 -0
- data/spec/integration/download_spec.rb +1336 -0
- data/spec/integration/environment_compare_spec.rb +75 -0
- data/spec/integration/environment_create_spec.rb +41 -0
- data/spec/integration/environment_delete_spec.rb +37 -0
- data/spec/integration/environment_from_file_spec.rb +116 -0
- data/spec/integration/environment_list_spec.rb +42 -0
- data/spec/integration/environment_show_spec.rb +77 -0
- data/spec/integration/list_spec.rb +1060 -0
- data/spec/integration/node_bulk_delete_spec.rb +52 -0
- data/spec/integration/node_create_spec.rb +47 -0
- data/spec/integration/node_delete_spec.rb +48 -0
- data/spec/integration/node_environment_set_spec.rb +46 -0
- data/spec/integration/node_from_file_spec.rb +59 -0
- data/spec/integration/node_list_spec.rb +45 -0
- data/spec/integration/node_run_list_add_spec.rb +54 -0
- data/spec/integration/node_run_list_remove_spec.rb +36 -0
- data/spec/integration/node_run_list_set_spec.rb +41 -0
- data/spec/integration/node_show_spec.rb +36 -0
- data/spec/integration/raw_spec.rb +297 -0
- data/spec/integration/redirection_spec.rb +64 -0
- data/spec/integration/role_bulk_delete_spec.rb +52 -0
- data/spec/integration/role_create_spec.rb +41 -0
- data/spec/integration/role_delete_spec.rb +48 -0
- data/spec/integration/role_from_file_spec.rb +96 -0
- data/spec/integration/role_list_spec.rb +45 -0
- data/spec/integration/role_show_spec.rb +51 -0
- data/spec/integration/search_node_spec.rb +40 -0
- data/spec/integration/serve_spec.rb +92 -0
- data/spec/integration/show_spec.rb +197 -0
- data/spec/integration/upload_spec.rb +1617 -0
- data/spec/knife_spec_helper.rb +241 -0
- data/spec/support/chef_helpers.rb +79 -0
- data/spec/support/key_helpers.rb +102 -0
- data/spec/support/platform_helpers.rb +251 -0
- data/spec/support/platforms/prof/gc.rb +51 -0
- data/spec/support/platforms/prof/win32.rb +45 -0
- data/spec/support/platforms/win32/spec_service.rb +57 -0
- data/spec/support/recipe_dsl_helper.rb +83 -0
- data/spec/support/shared/context/config.rb +18 -0
- data/spec/support/shared/functional/knife.rb +37 -0
- data/spec/support/shared/integration/integration_helper.rb +122 -0
- data/spec/support/shared/integration/knife_support.rb +192 -0
- data/spec/support/shared/matchers/exit_with_code.rb +32 -0
- data/spec/support/shared/matchers/match_environment_variable.rb +17 -0
- data/spec/support/shared/unit/knife_shared.rb +39 -0
- data/spec/support/shared/unit/mock_shellout.rb +49 -0
- data/spec/tiny_server.rb +190 -0
- data/spec/unit/application/knife_spec.rb +241 -0
- data/spec/unit/knife/bootstrap/chef_vault_handler_spec.rb +152 -0
- data/spec/unit/knife/bootstrap/client_builder_spec.rb +207 -0
- data/spec/unit/knife/bootstrap/train_connector_spec.rb +244 -0
- data/spec/unit/knife/bootstrap_spec.rb +2220 -0
- data/spec/unit/knife/client_bulk_delete_spec.rb +166 -0
- data/spec/unit/knife/client_create_spec.rb +169 -0
- data/spec/unit/knife/client_delete_spec.rb +99 -0
- data/spec/unit/knife/client_edit_spec.rb +53 -0
- data/spec/unit/knife/client_list_spec.rb +34 -0
- data/spec/unit/knife/client_reregister_spec.rb +62 -0
- data/spec/unit/knife/client_show_spec.rb +52 -0
- data/spec/unit/knife/configure_client_spec.rb +81 -0
- data/spec/unit/knife/configure_spec.rb +190 -0
- data/spec/unit/knife/cookbook_bulk_delete_spec.rb +87 -0
- data/spec/unit/knife/cookbook_delete_spec.rb +239 -0
- data/spec/unit/knife/cookbook_download_spec.rb +255 -0
- data/spec/unit/knife/cookbook_list_spec.rb +88 -0
- data/spec/unit/knife/cookbook_metadata_from_file_spec.rb +72 -0
- data/spec/unit/knife/cookbook_metadata_spec.rb +182 -0
- data/spec/unit/knife/cookbook_show_spec.rb +253 -0
- data/spec/unit/knife/cookbook_upload_spec.rb +364 -0
- data/spec/unit/knife/core/bootstrap_context_spec.rb +287 -0
- data/spec/unit/knife/core/cookbook_scm_repo_spec.rb +187 -0
- data/spec/unit/knife/core/cookbook_site_streaming_uploader_spec.rb +198 -0
- data/spec/unit/knife/core/gem_glob_loader_spec.rb +242 -0
- data/spec/unit/knife/core/hashed_command_loader_spec.rb +112 -0
- data/spec/unit/knife/core/node_editor_spec.rb +211 -0
- data/spec/unit/knife/core/object_loader_spec.rb +81 -0
- data/spec/unit/knife/core/status_presenter_spec.rb +54 -0
- data/spec/unit/knife/core/subcommand_loader_spec.rb +64 -0
- data/spec/unit/knife/core/ui_spec.rb +656 -0
- data/spec/unit/knife/core/windows_bootstrap_context_spec.rb +238 -0
- data/spec/unit/knife/data_bag_create_spec.rb +175 -0
- data/spec/unit/knife/data_bag_edit_spec.rb +126 -0
- data/spec/unit/knife/data_bag_from_file_spec.rb +174 -0
- data/spec/unit/knife/data_bag_secret_options_spec.rb +173 -0
- data/spec/unit/knife/data_bag_show_spec.rb +139 -0
- data/spec/unit/knife/environment_compare_spec.rb +112 -0
- data/spec/unit/knife/environment_create_spec.rb +91 -0
- data/spec/unit/knife/environment_delete_spec.rb +71 -0
- data/spec/unit/knife/environment_edit_spec.rb +79 -0
- data/spec/unit/knife/environment_from_file_spec.rb +90 -0
- data/spec/unit/knife/environment_list_spec.rb +54 -0
- data/spec/unit/knife/environment_show_spec.rb +52 -0
- data/spec/unit/knife/key_create_spec.rb +223 -0
- data/spec/unit/knife/key_delete_spec.rb +133 -0
- data/spec/unit/knife/key_edit_spec.rb +264 -0
- data/spec/unit/knife/key_helper.rb +74 -0
- data/spec/unit/knife/key_list_spec.rb +216 -0
- data/spec/unit/knife/key_show_spec.rb +126 -0
- data/spec/unit/knife/node_bulk_delete_spec.rb +94 -0
- data/spec/unit/knife/node_delete_spec.rb +77 -0
- data/spec/unit/knife/node_edit_spec.rb +116 -0
- data/spec/unit/knife/node_environment_set_spec.rb +61 -0
- data/spec/unit/knife/node_from_file_spec.rb +59 -0
- data/spec/unit/knife/node_list_spec.rb +62 -0
- data/spec/unit/knife/node_policy_set_spec.rb +122 -0
- data/spec/unit/knife/node_run_list_add_spec.rb +145 -0
- data/spec/unit/knife/node_run_list_remove_spec.rb +106 -0
- data/spec/unit/knife/node_run_list_set_spec.rb +115 -0
- data/spec/unit/knife/node_show_spec.rb +65 -0
- data/spec/unit/knife/org_create_spec.rb +76 -0
- data/spec/unit/knife/org_delete_spec.rb +41 -0
- data/spec/unit/knife/org_edit_spec.rb +49 -0
- data/spec/unit/knife/org_list_spec.rb +58 -0
- data/spec/unit/knife/org_show_spec.rb +45 -0
- data/spec/unit/knife/org_user_add_spec.rb +39 -0
- data/spec/unit/knife/raw_spec.rb +43 -0
- data/spec/unit/knife/role_bulk_delete_spec.rb +80 -0
- data/spec/unit/knife/role_create_spec.rb +80 -0
- data/spec/unit/knife/role_delete_spec.rb +67 -0
- data/spec/unit/knife/role_edit_spec.rb +77 -0
- data/spec/unit/knife/role_env_run_list_add_spec.rb +217 -0
- data/spec/unit/knife/role_env_run_list_clear_spec.rb +94 -0
- data/spec/unit/knife/role_env_run_list_remove_spec.rb +102 -0
- data/spec/unit/knife/role_env_run_list_replace_spec.rb +105 -0
- data/spec/unit/knife/role_env_run_list_set_spec.rb +99 -0
- data/spec/unit/knife/role_from_file_spec.rb +69 -0
- data/spec/unit/knife/role_list_spec.rb +54 -0
- data/spec/unit/knife/role_run_list_add_spec.rb +179 -0
- data/spec/unit/knife/role_run_list_clear_spec.rb +84 -0
- data/spec/unit/knife/role_run_list_remove_spec.rb +92 -0
- data/spec/unit/knife/role_run_list_replace_spec.rb +98 -0
- data/spec/unit/knife/role_run_list_set_spec.rb +89 -0
- data/spec/unit/knife/role_show_spec.rb +59 -0
- data/spec/unit/knife/ssh_spec.rb +403 -0
- data/spec/unit/knife/ssl_check_spec.rb +256 -0
- data/spec/unit/knife/ssl_fetch_spec.rb +222 -0
- data/spec/unit/knife/status_spec.rb +112 -0
- data/spec/unit/knife/supermarket_download_spec.rb +152 -0
- data/spec/unit/knife/supermarket_install_spec.rb +203 -0
- data/spec/unit/knife/supermarket_list_spec.rb +70 -0
- data/spec/unit/knife/supermarket_search_spec.rb +85 -0
- data/spec/unit/knife/supermarket_share_spec.rb +208 -0
- data/spec/unit/knife/supermarket_unshare_spec.rb +78 -0
- data/spec/unit/knife/tag_create_spec.rb +23 -0
- data/spec/unit/knife/tag_delete_spec.rb +25 -0
- data/spec/unit/knife/tag_list_spec.rb +23 -0
- data/spec/unit/knife/user_create_spec.rb +256 -0
- data/spec/unit/knife/user_delete_spec.rb +171 -0
- data/spec/unit/knife/user_edit_spec.rb +54 -0
- data/spec/unit/knife/user_list_spec.rb +73 -0
- data/spec/unit/knife/user_password_spec.rb +64 -0
- data/spec/unit/knife/user_reregister_spec.rb +56 -0
- data/spec/unit/knife/user_show_spec.rb +91 -0
- data/spec/unit/knife_spec.rb +634 -0
- metadata +580 -22
@@ -0,0 +1,403 @@
|
|
1
|
+
#
|
2
|
+
# Author:: Bryan McLellan <btm@chef.io>
|
3
|
+
# Copyright:: Copyright (c) Chef Software Inc.
|
4
|
+
# License:: Apache License, Version 2.0
|
5
|
+
#
|
6
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
7
|
+
# you may not use this file except in compliance with the License.
|
8
|
+
# You may obtain a copy of the License at
|
9
|
+
#
|
10
|
+
# http://www.apache.org/licenses/LICENSE-2.0
|
11
|
+
#
|
12
|
+
# Unless required by applicable law or agreed to in writing, software
|
13
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
14
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
15
|
+
# See the License for the specific language governing permissions and
|
16
|
+
# limitations under the License.
|
17
|
+
#
|
18
|
+
|
19
|
+
require "knife_spec_helper"
|
20
|
+
require "net/ssh"
|
21
|
+
require "net/ssh/multi"
|
22
|
+
|
23
|
+
describe Chef::Knife::Ssh do
|
24
|
+
let(:query_result) { double("chef search results") }
|
25
|
+
|
26
|
+
before do
|
27
|
+
Chef::Config[:client_key] = CHEF_SPEC_DATA + "/ssl/private_key.pem"
|
28
|
+
@knife = Chef::Knife::Ssh.new
|
29
|
+
@knife.merge_configs
|
30
|
+
@node_foo = {}
|
31
|
+
@node_foo["fqdn"] = "foo.example.org"
|
32
|
+
@node_foo["ipaddress"] = "10.0.0.1"
|
33
|
+
@node_foo["cloud"] = {}
|
34
|
+
|
35
|
+
@node_bar = {}
|
36
|
+
@node_bar["fqdn"] = "bar.example.org"
|
37
|
+
@node_bar["ipaddress"] = "10.0.0.2"
|
38
|
+
@node_bar["cloud"] = {}
|
39
|
+
|
40
|
+
end
|
41
|
+
|
42
|
+
describe "#configure_session" do
|
43
|
+
context "manual is set to false (default)" do
|
44
|
+
before do
|
45
|
+
@knife.config[:manual] = false
|
46
|
+
allow(query_result).to receive(:search).with(any_args).and_yield(@node_foo).and_yield(@node_bar)
|
47
|
+
allow(Chef::Search::Query).to receive(:new).and_return(query_result)
|
48
|
+
end
|
49
|
+
|
50
|
+
def self.should_return_specified_attributes
|
51
|
+
it "returns an array of the attributes specified on the command line OR config file, if only one is set" do
|
52
|
+
@node_bar["target"] = "10.0.0.2"
|
53
|
+
@node_foo["target"] = "10.0.0.1"
|
54
|
+
@node_bar["prefix"] = "bar"
|
55
|
+
@node_foo["prefix"] = "foo"
|
56
|
+
@knife.config[:ssh_attribute] = "ipaddress"
|
57
|
+
@knife.config[:prefix_attribute] = "name"
|
58
|
+
Chef::Config[:knife][:ssh_attribute] = "ipaddress" # this value will be in the config file
|
59
|
+
Chef::Config[:knife][:prefix_attribute] = "name" # this value will be in the config file
|
60
|
+
expect(@knife).to receive(:session_from_list).with([["10.0.0.1", nil, "foo"], ["10.0.0.2", nil, "bar"]])
|
61
|
+
@knife.configure_session
|
62
|
+
end
|
63
|
+
|
64
|
+
it "returns an array of the attributes specified on the command line even when a config value is set" do
|
65
|
+
@node_bar["target"] = "10.0.0.2"
|
66
|
+
@node_foo["target"] = "10.0.0.1"
|
67
|
+
@node_bar["prefix"] = "bar"
|
68
|
+
@node_foo["prefix"] = "foo"
|
69
|
+
Chef::Config[:knife][:ssh_attribute] = "config_file" # this value will be in the config file
|
70
|
+
Chef::Config[:knife][:prefix_attribute] = "config_file" # this value will be in the config file
|
71
|
+
@knife.config[:ssh_attribute] = "ipaddress" # this is the value of the command line via #configure_attribute
|
72
|
+
@knife.config[:prefix_attribute] = "name" # this is the value of the command line via #configure_attribute
|
73
|
+
expect(@knife).to receive(:session_from_list).with([["10.0.0.1", nil, "foo"], ["10.0.0.2", nil, "bar"]])
|
74
|
+
@knife.configure_session
|
75
|
+
end
|
76
|
+
end
|
77
|
+
|
78
|
+
it "searches for and returns an array of fqdns" do
|
79
|
+
expect(@knife).to receive(:session_from_list).with([
|
80
|
+
["foo.example.org", nil, nil],
|
81
|
+
["bar.example.org", nil, nil],
|
82
|
+
])
|
83
|
+
@knife.configure_session
|
84
|
+
end
|
85
|
+
|
86
|
+
should_return_specified_attributes
|
87
|
+
|
88
|
+
context "when cloud hostnames are available" do
|
89
|
+
before do
|
90
|
+
@node_foo["cloud"]["public_hostname"] = "ec2-10-0-0-1.compute-1.amazonaws.com"
|
91
|
+
@node_bar["cloud"]["public_hostname"] = "ec2-10-0-0-2.compute-1.amazonaws.com"
|
92
|
+
end
|
93
|
+
it "returns an array of cloud public hostnames" do
|
94
|
+
expect(@knife).to receive(:session_from_list).with([
|
95
|
+
["ec2-10-0-0-1.compute-1.amazonaws.com", nil, nil],
|
96
|
+
["ec2-10-0-0-2.compute-1.amazonaws.com", nil, nil],
|
97
|
+
])
|
98
|
+
@knife.configure_session
|
99
|
+
end
|
100
|
+
|
101
|
+
should_return_specified_attributes
|
102
|
+
end
|
103
|
+
|
104
|
+
context "when cloud hostnames are available but empty" do
|
105
|
+
before do
|
106
|
+
@node_foo["cloud"]["public_hostname"] = ""
|
107
|
+
@node_bar["cloud"]["public_hostname"] = ""
|
108
|
+
end
|
109
|
+
|
110
|
+
it "returns an array of fqdns" do
|
111
|
+
expect(@knife).to receive(:session_from_list).with([
|
112
|
+
["foo.example.org", nil, nil],
|
113
|
+
["bar.example.org", nil, nil],
|
114
|
+
])
|
115
|
+
@knife.configure_session
|
116
|
+
end
|
117
|
+
|
118
|
+
should_return_specified_attributes
|
119
|
+
end
|
120
|
+
|
121
|
+
it "should raise an error if no host are found" do
|
122
|
+
allow(query_result).to receive(:search).with(any_args)
|
123
|
+
expect(@knife.ui).to receive(:fatal)
|
124
|
+
expect(@knife).to receive(:exit).with(10)
|
125
|
+
@knife.configure_session
|
126
|
+
end
|
127
|
+
|
128
|
+
context "when there are some hosts found but they do not have an attribute to connect with" do
|
129
|
+
before do
|
130
|
+
@node_foo["fqdn"] = nil
|
131
|
+
@node_bar["fqdn"] = nil
|
132
|
+
end
|
133
|
+
|
134
|
+
it "should raise a specific error (CHEF-3402)" do
|
135
|
+
expect(@knife.ui).to receive(:fatal).with(/^2 nodes found/)
|
136
|
+
expect(@knife).to receive(:exit).with(10)
|
137
|
+
@knife.configure_session
|
138
|
+
end
|
139
|
+
end
|
140
|
+
|
141
|
+
context "when there are some hosts found but IPs duplicated if duplicated_fqdns option sets :fatal" do
|
142
|
+
before do
|
143
|
+
@knife.config[:duplicated_fqdns] = :fatal
|
144
|
+
@node_foo["fqdn"] = "foo.example.org"
|
145
|
+
@node_bar["fqdn"] = "foo.example.org"
|
146
|
+
end
|
147
|
+
|
148
|
+
it "should raise a specific error" do
|
149
|
+
expect(@knife.ui).to receive(:fatal).with(/^SSH node is duplicated: foo\.example\.org/)
|
150
|
+
expect(@knife).to receive(:exit).with(10)
|
151
|
+
expect(@knife).to receive(:session_from_list).with([
|
152
|
+
["foo.example.org", nil, nil],
|
153
|
+
["foo.example.org", nil, nil],
|
154
|
+
])
|
155
|
+
@knife.configure_session
|
156
|
+
end
|
157
|
+
end
|
158
|
+
end
|
159
|
+
|
160
|
+
context "manual is set to true" do
|
161
|
+
before do
|
162
|
+
@knife.config[:manual] = true
|
163
|
+
end
|
164
|
+
|
165
|
+
it "returns an array of provided values" do
|
166
|
+
@knife.instance_variable_set(:@name_args, ["foo.example.org bar.example.org"])
|
167
|
+
expect(@knife).to receive(:session_from_list).with(["foo.example.org", "bar.example.org"])
|
168
|
+
@knife.configure_session
|
169
|
+
end
|
170
|
+
end
|
171
|
+
end
|
172
|
+
|
173
|
+
describe "#get_prefix_attribute" do
|
174
|
+
# Order of precedence for prefix
|
175
|
+
# 1) config value (cli or knife config)
|
176
|
+
# 2) nil
|
177
|
+
before do
|
178
|
+
Chef::Config[:knife][:prefix_attribute] = nil
|
179
|
+
@knife.config[:prefix_attribute] = nil
|
180
|
+
@node_foo["cloud"]["public_hostname"] = "ec2-10-0-0-1.compute-1.amazonaws.com"
|
181
|
+
@node_bar["cloud"]["public_hostname"] = ""
|
182
|
+
end
|
183
|
+
|
184
|
+
it "should return nil by default" do
|
185
|
+
expect(@knife.get_prefix_attribute({})).to eq(nil)
|
186
|
+
end
|
187
|
+
|
188
|
+
it "should favor config over nil" do
|
189
|
+
@node_foo["prefix"] = "config"
|
190
|
+
expect( @knife.get_prefix_attribute(@node_foo)).to eq("config")
|
191
|
+
end
|
192
|
+
end
|
193
|
+
|
194
|
+
describe "#get_ssh_attribute" do
|
195
|
+
# Order of precedence for ssh target
|
196
|
+
# 1) config value (cli or knife config)
|
197
|
+
# 2) cloud attribute
|
198
|
+
# 3) fqdn
|
199
|
+
before do
|
200
|
+
Chef::Config[:knife][:ssh_attribute] = nil
|
201
|
+
@knife.config[:ssh_attribute] = nil
|
202
|
+
@node_foo["cloud"]["public_hostname"] = "ec2-10-0-0-1.compute-1.amazonaws.com"
|
203
|
+
@node_bar["cloud"]["public_hostname"] = ""
|
204
|
+
end
|
205
|
+
|
206
|
+
it "should return fqdn by default" do
|
207
|
+
expect(@knife.get_ssh_attribute({ "fqdn" => "fqdn" })).to eq("fqdn")
|
208
|
+
end
|
209
|
+
|
210
|
+
it "should return cloud.public_hostname attribute if available" do
|
211
|
+
expect(@knife.get_ssh_attribute(@node_foo)).to eq("ec2-10-0-0-1.compute-1.amazonaws.com")
|
212
|
+
end
|
213
|
+
|
214
|
+
it "should favor config over cloud and default" do
|
215
|
+
@node_foo["target"] = "config"
|
216
|
+
expect( @knife.get_ssh_attribute(@node_foo)).to eq("config")
|
217
|
+
end
|
218
|
+
|
219
|
+
it "should return fqdn if cloud.hostname is empty" do
|
220
|
+
expect( @knife.get_ssh_attribute(@node_bar)).to eq("bar.example.org")
|
221
|
+
end
|
222
|
+
end
|
223
|
+
|
224
|
+
describe "#session_from_list" do
|
225
|
+
before :each do
|
226
|
+
@knife.instance_variable_set(:@longest, 0)
|
227
|
+
ssh_config = { timeout: 50, user: "locutus", port: 23, keepalive: true, keepalive_interval: 60 }
|
228
|
+
allow(Net::SSH).to receive(:configuration_for).with("the.b.org", true).and_return(ssh_config)
|
229
|
+
end
|
230
|
+
|
231
|
+
it "uses the port from an ssh config file" do
|
232
|
+
@knife.session_from_list([["the.b.org", nil, nil]])
|
233
|
+
expect(@knife.session.servers[0].port).to eq(23)
|
234
|
+
end
|
235
|
+
|
236
|
+
it "uses the port from a cloud attr" do
|
237
|
+
@knife.session_from_list([["the.b.org", 123, nil]])
|
238
|
+
expect(@knife.session.servers[0].port).to eq(123)
|
239
|
+
end
|
240
|
+
|
241
|
+
it "uses the prefix from list" do
|
242
|
+
@knife.session_from_list([["the.b.org", nil, "b-team"]])
|
243
|
+
expect(@knife.session.servers[0][:prefix]).to eq("b-team")
|
244
|
+
end
|
245
|
+
|
246
|
+
it "defaults to a prefix of host" do
|
247
|
+
@knife.session_from_list([["the.b.org", nil, nil]])
|
248
|
+
expect(@knife.session.servers[0][:prefix]).to eq("the.b.org")
|
249
|
+
end
|
250
|
+
|
251
|
+
it "defaults to a timeout of 120 seconds" do
|
252
|
+
@knife.session_from_list([["the.b.org", nil, nil]])
|
253
|
+
expect(@knife.session.servers[0].options[:timeout]).to eq(120)
|
254
|
+
end
|
255
|
+
|
256
|
+
it "uses the timeout from the CLI" do
|
257
|
+
@knife.config = {}
|
258
|
+
Chef::Config[:knife][:ssh_timeout] = nil
|
259
|
+
@knife.config[:ssh_timeout] = 5
|
260
|
+
@knife.session_from_list([["the.b.org", nil, nil]])
|
261
|
+
@knife.merge_configs
|
262
|
+
expect(@knife.session.servers[0].options[:timeout]).to eq(5)
|
263
|
+
end
|
264
|
+
|
265
|
+
it "uses the timeout from knife config" do
|
266
|
+
@knife.config = {}
|
267
|
+
Chef::Config[:knife][:ssh_timeout] = 6
|
268
|
+
@knife.merge_configs
|
269
|
+
@knife.session_from_list([["the.b.org", nil, nil]])
|
270
|
+
expect(@knife.session.servers[0].options[:timeout]).to eq(6)
|
271
|
+
end
|
272
|
+
|
273
|
+
it "uses the user from an ssh config file" do
|
274
|
+
@knife.session_from_list([["the.b.org", 123, nil]])
|
275
|
+
expect(@knife.session.servers[0].user).to eq("locutus")
|
276
|
+
end
|
277
|
+
|
278
|
+
it "uses keepalive settings from an ssh config file" do
|
279
|
+
@knife.session_from_list([["the.b.org", 123, nil]])
|
280
|
+
expect(@knife.session.servers[0].options[:keepalive]).to be true
|
281
|
+
expect(@knife.session.servers[0].options[:keepalive_interval]).to eq 60
|
282
|
+
end
|
283
|
+
end
|
284
|
+
|
285
|
+
describe "#ssh_command" do
|
286
|
+
let(:execution_channel) { double(:execution_channel, on_data: nil, on_extended_data: nil) }
|
287
|
+
let(:session_channel) { double(:session_channel, request_pty: nil) }
|
288
|
+
|
289
|
+
let(:execution_channel2) { double(:execution_channel, on_data: nil, on_extended_data: nil) }
|
290
|
+
let(:session_channel2) { double(:session_channel, request_pty: nil) }
|
291
|
+
|
292
|
+
let(:session) { double(:session, loop: nil) }
|
293
|
+
|
294
|
+
let(:command) { "false" }
|
295
|
+
|
296
|
+
before do
|
297
|
+
expect(execution_channel)
|
298
|
+
.to receive(:on_request)
|
299
|
+
.and_yield(nil, double(:data_stream, read_long: exit_status))
|
300
|
+
|
301
|
+
expect(session_channel)
|
302
|
+
.to receive(:exec)
|
303
|
+
.with(command)
|
304
|
+
.and_yield(execution_channel, true)
|
305
|
+
|
306
|
+
expect(execution_channel2)
|
307
|
+
.to receive(:on_request)
|
308
|
+
.and_yield(nil, double(:data_stream, read_long: exit_status2))
|
309
|
+
|
310
|
+
expect(session_channel2)
|
311
|
+
.to receive(:exec)
|
312
|
+
.with(command)
|
313
|
+
.and_yield(execution_channel2, true)
|
314
|
+
|
315
|
+
expect(session)
|
316
|
+
.to receive(:open_channel)
|
317
|
+
.and_yield(session_channel)
|
318
|
+
.and_yield(session_channel2)
|
319
|
+
end
|
320
|
+
|
321
|
+
context "both connections return 0" do
|
322
|
+
let(:exit_status) { 0 }
|
323
|
+
let(:exit_status2) { 0 }
|
324
|
+
|
325
|
+
it "returns a 0 exit code" do
|
326
|
+
expect(@knife.ssh_command(command, session)).to eq(0)
|
327
|
+
end
|
328
|
+
end
|
329
|
+
|
330
|
+
context "the first connection returns 1 and the second returns 0" do
|
331
|
+
let(:exit_status) { 1 }
|
332
|
+
let(:exit_status2) { 0 }
|
333
|
+
|
334
|
+
it "returns a non-zero exit code" do
|
335
|
+
expect(@knife.ssh_command(command, session)).to eq(1)
|
336
|
+
end
|
337
|
+
end
|
338
|
+
|
339
|
+
context "the first connection returns 1 and the second returns 2" do
|
340
|
+
let(:exit_status) { 1 }
|
341
|
+
let(:exit_status2) { 2 }
|
342
|
+
|
343
|
+
it "returns a non-zero exit code" do
|
344
|
+
expect(@knife.ssh_command(command, session)).to eq(2)
|
345
|
+
end
|
346
|
+
end
|
347
|
+
end
|
348
|
+
|
349
|
+
describe "#tmux" do
|
350
|
+
before do
|
351
|
+
ssh_config = { timeout: 50, user: "locutus", port: 23, keepalive: true, keepalive_interval: 60 }
|
352
|
+
allow(Net::SSH).to receive(:configuration_for).with("foo.example.org", true).and_return(ssh_config)
|
353
|
+
@query = Chef::Search::Query.new
|
354
|
+
expect(@query).to receive(:search).and_yield(@node_foo)
|
355
|
+
allow(Chef::Search::Query).to receive(:new).and_return(@query)
|
356
|
+
allow(@knife).to receive(:exec).and_return(0)
|
357
|
+
end
|
358
|
+
|
359
|
+
it "filters out invalid characters from tmux session name" do
|
360
|
+
@knife.name_args = ["name:foo.example.org", "tmux"]
|
361
|
+
expect(@knife).to receive(:shell_out!).with("tmux new-session -d -s 'knife ssh name=foo-example-org' -n 'foo.example.org' 'ssh locutus@foo.example.org' ")
|
362
|
+
@knife.run
|
363
|
+
end
|
364
|
+
end
|
365
|
+
|
366
|
+
describe "#run" do
|
367
|
+
|
368
|
+
it "should print usage and exit when a SEARCH QUERY is not provided" do
|
369
|
+
@knife.name_args = []
|
370
|
+
expect(@knife).to receive(:show_usage)
|
371
|
+
expect(@knife.ui).to receive(:fatal).with(/You must specify the SEARCH QUERY./)
|
372
|
+
expect { @knife.run }.to raise_error(SystemExit)
|
373
|
+
end
|
374
|
+
|
375
|
+
context "exit" do
|
376
|
+
before do
|
377
|
+
@query = Chef::Search::Query.new
|
378
|
+
expect(@query).to receive(:search).and_yield(@node_foo)
|
379
|
+
allow(Chef::Search::Query).to receive(:new).and_return(@query)
|
380
|
+
allow(@knife).to receive(:ssh_command).and_return(exit_code)
|
381
|
+
@knife.name_args = ["*:*", "false"]
|
382
|
+
end
|
383
|
+
|
384
|
+
context "with an error" do
|
385
|
+
let(:exit_code) { 1 }
|
386
|
+
|
387
|
+
it "should exit with a non-zero exit code" do
|
388
|
+
expect(@knife).to receive(:exit).with(exit_code)
|
389
|
+
@knife.run
|
390
|
+
end
|
391
|
+
end
|
392
|
+
|
393
|
+
context "with no error" do
|
394
|
+
let(:exit_code) { 0 }
|
395
|
+
|
396
|
+
it "should not exit" do
|
397
|
+
expect(@knife).not_to receive(:exit)
|
398
|
+
@knife.run
|
399
|
+
end
|
400
|
+
end
|
401
|
+
end
|
402
|
+
end
|
403
|
+
end
|
@@ -0,0 +1,256 @@
|
|
1
|
+
#
|
2
|
+
# Author:: Daniel DeLeo (<dan@chef.io>)
|
3
|
+
# Copyright:: Copyright (c) Chef Software Inc.
|
4
|
+
# License:: Apache License, Version 2.0
|
5
|
+
#
|
6
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
7
|
+
# you may not use this file except in compliance with the License.
|
8
|
+
# You may obtain a copy of the License at
|
9
|
+
#
|
10
|
+
# http://www.apache.org/licenses/LICENSE-2.0
|
11
|
+
#
|
12
|
+
# Unless required by applicable law or agreed to in writing, software
|
13
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
14
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
15
|
+
# See the License for the specific language governing permissions and
|
16
|
+
# limitations under the License.
|
17
|
+
#
|
18
|
+
|
19
|
+
require "knife_spec_helper"
|
20
|
+
require "stringio"
|
21
|
+
|
22
|
+
describe Chef::Knife::SslCheck do
|
23
|
+
|
24
|
+
let(:name_args) { [] }
|
25
|
+
let(:stdout_io) { StringIO.new }
|
26
|
+
let(:stderr_io) { StringIO.new }
|
27
|
+
|
28
|
+
def stderr
|
29
|
+
stderr_io.string
|
30
|
+
end
|
31
|
+
|
32
|
+
def stdout
|
33
|
+
stdout_io.string
|
34
|
+
end
|
35
|
+
|
36
|
+
subject(:ssl_check) do
|
37
|
+
s = Chef::Knife::SslCheck.new
|
38
|
+
allow(s.ui).to receive(:stdout).and_return(stdout_io)
|
39
|
+
allow(s.ui).to receive(:stderr).and_return(stderr_io)
|
40
|
+
s.name_args = name_args
|
41
|
+
s
|
42
|
+
end
|
43
|
+
|
44
|
+
before do
|
45
|
+
Chef::Config.chef_server_url = "https://example.com:8443/chef-server"
|
46
|
+
end
|
47
|
+
|
48
|
+
context "when no arguments are given" do
|
49
|
+
it "uses the chef_server_url as the host to check" do
|
50
|
+
expect(ssl_check.host).to eq("example.com")
|
51
|
+
expect(ssl_check.port).to eq(8443)
|
52
|
+
end
|
53
|
+
end
|
54
|
+
|
55
|
+
context "when a specific URI is given" do
|
56
|
+
let(:name_args) { %w{https://example.test:10443/foo} }
|
57
|
+
|
58
|
+
it "checks the SSL configuration against the given host" do
|
59
|
+
expect(ssl_check.host).to eq("example.test")
|
60
|
+
expect(ssl_check.port).to eq(10443)
|
61
|
+
end
|
62
|
+
end
|
63
|
+
|
64
|
+
context "when an invalid URI is given" do
|
65
|
+
|
66
|
+
let(:name_args) { %w{foo.test} }
|
67
|
+
|
68
|
+
it "prints an error and exits" do
|
69
|
+
expect { ssl_check.run }.to raise_error(SystemExit)
|
70
|
+
expected_stdout = <<~E
|
71
|
+
USAGE: knife ssl check [URL] (options)
|
72
|
+
E
|
73
|
+
expected_stderr = <<~E
|
74
|
+
ERROR: Given URI: `foo.test' is invalid
|
75
|
+
E
|
76
|
+
expect(stdout_io.string).to eq(expected_stdout)
|
77
|
+
expect(stderr_io.string).to eq(expected_stderr)
|
78
|
+
end
|
79
|
+
|
80
|
+
context "and its malformed enough to make URI.parse barf" do
|
81
|
+
|
82
|
+
let(:name_args) { %w{ftp://lkj\\blah:example.com/blah} }
|
83
|
+
|
84
|
+
it "prints an error and exits" do
|
85
|
+
expect { ssl_check.run }.to raise_error(SystemExit)
|
86
|
+
expected_stdout = <<~E
|
87
|
+
USAGE: knife ssl check [URL] (options)
|
88
|
+
E
|
89
|
+
expected_stderr = <<~E
|
90
|
+
ERROR: Given URI: `#{name_args[0]}' is invalid
|
91
|
+
E
|
92
|
+
expect(stdout_io.string).to eq(expected_stdout)
|
93
|
+
expect(stderr_io.string).to eq(expected_stderr)
|
94
|
+
end
|
95
|
+
end
|
96
|
+
end
|
97
|
+
|
98
|
+
describe "verifying trusted certificate X509 properties" do
|
99
|
+
let(:name_args) { %w{https://foo.example.com:8443} }
|
100
|
+
|
101
|
+
let(:trusted_certs_dir) { File.join(CHEF_SPEC_DATA, "trusted_certs") }
|
102
|
+
let(:trusted_cert_file) { File.join(trusted_certs_dir, "example.crt") }
|
103
|
+
|
104
|
+
let(:store) { OpenSSL::X509::Store.new }
|
105
|
+
let(:certificate) { OpenSSL::X509::Certificate.new(IO.read(trusted_cert_file)) }
|
106
|
+
|
107
|
+
before do
|
108
|
+
Chef::Config[:trusted_certs_dir] = trusted_certs_dir
|
109
|
+
allow(ssl_check).to receive(:trusted_certificates).and_return([trusted_cert_file])
|
110
|
+
allow(store).to receive(:add_cert).with(certificate)
|
111
|
+
allow(OpenSSL::X509::Store).to receive(:new).and_return(store)
|
112
|
+
allow(OpenSSL::X509::Certificate).to receive(:new).with(IO.read(trusted_cert_file)).and_return(certificate)
|
113
|
+
allow(ssl_check).to receive(:verify_cert).and_return(true)
|
114
|
+
allow(ssl_check).to receive(:verify_cert_host).and_return(true)
|
115
|
+
end
|
116
|
+
|
117
|
+
context "when the trusted certificates directory is not glob escaped", :windows_only do
|
118
|
+
let(:trusted_certs_dir) { File.join(CHEF_SPEC_DATA.tr("/", "\\"), "trusted_certs") }
|
119
|
+
|
120
|
+
before do
|
121
|
+
allow(ssl_check).to receive(:trusted_certificates).and_call_original
|
122
|
+
allow(store).to receive(:verify).with(certificate).and_return(true)
|
123
|
+
end
|
124
|
+
|
125
|
+
it "escpaes the trusted certificates directory" do
|
126
|
+
expect(Dir).to receive(:glob)
|
127
|
+
.with("#{ChefConfig::PathHelper.escape_glob_dir(trusted_certs_dir)}/*.{crt,pem}")
|
128
|
+
.and_return([trusted_cert_file])
|
129
|
+
ssl_check.run
|
130
|
+
end
|
131
|
+
end
|
132
|
+
|
133
|
+
context "when the trusted certificates have valid X509 properties" do
|
134
|
+
before do
|
135
|
+
allow(store).to receive(:verify).with(certificate).and_return(true)
|
136
|
+
end
|
137
|
+
|
138
|
+
it "does not generate any X509 warnings" do
|
139
|
+
expect(ssl_check.ui).not_to receive(:warn).with(/There are invalid certificates in your trusted_certs_dir/)
|
140
|
+
ssl_check.run
|
141
|
+
end
|
142
|
+
end
|
143
|
+
|
144
|
+
context "when the trusted certificates have invalid X509 properties" do
|
145
|
+
before do
|
146
|
+
allow(store).to receive(:verify).with(certificate).and_return(false)
|
147
|
+
allow(store).to receive(:error_string).and_return("unable to get local issuer certificate")
|
148
|
+
end
|
149
|
+
|
150
|
+
it "generates a warning message with invalid certificate file names" do
|
151
|
+
expect(ssl_check.ui).to receive(:warn).with(/#{trusted_cert_file}: unable to get local issuer certificate/)
|
152
|
+
ssl_check.run
|
153
|
+
end
|
154
|
+
end
|
155
|
+
end
|
156
|
+
|
157
|
+
describe "verifying the remote certificate" do
|
158
|
+
let(:name_args) { %w{https://foo.example.com:8443} }
|
159
|
+
|
160
|
+
let(:tcp_socket) { double(TCPSocket) }
|
161
|
+
let(:ssl_socket) { double(OpenSSL::SSL::SSLSocket) }
|
162
|
+
|
163
|
+
before do
|
164
|
+
expect(ssl_check).to receive(:proxified_socket).with("foo.example.com", 8443).and_return(tcp_socket)
|
165
|
+
expect(OpenSSL::SSL::SSLSocket).to receive(:new).with(tcp_socket, ssl_check.verify_peer_ssl_context).and_return(ssl_socket)
|
166
|
+
end
|
167
|
+
|
168
|
+
def run
|
169
|
+
ssl_check.run
|
170
|
+
rescue Exception
|
171
|
+
# puts "OUT: #{stdout_io.string}"
|
172
|
+
# puts "ERR: #{stderr_io.string}"
|
173
|
+
raise
|
174
|
+
end
|
175
|
+
|
176
|
+
context "when the remote host's certificate is valid" do
|
177
|
+
|
178
|
+
before do
|
179
|
+
expect(ssl_check).to receive(:verify_X509).and_return(true) # X509 valid certs (no warn)
|
180
|
+
expect(ssl_socket).to receive(:connect) # no error
|
181
|
+
expect(ssl_socket).to receive(:post_connection_check).with("foo.example.com") # no error
|
182
|
+
expect(ssl_socket).to receive(:hostname=).with("foo.example.com") # no error
|
183
|
+
end
|
184
|
+
|
185
|
+
it "prints a success message" do
|
186
|
+
ssl_check.run
|
187
|
+
expect(stdout_io.string).to include("Successfully verified certificates from `foo.example.com'")
|
188
|
+
end
|
189
|
+
end
|
190
|
+
|
191
|
+
describe "and the certificate is not valid" do
|
192
|
+
|
193
|
+
let(:tcp_socket_for_debug) { double(TCPSocket) }
|
194
|
+
let(:ssl_socket_for_debug) { double(OpenSSL::SSL::SSLSocket) }
|
195
|
+
|
196
|
+
let(:self_signed_crt_path) { File.join(CHEF_SPEC_DATA, "trusted_certs", "example.crt") }
|
197
|
+
let(:self_signed_crt) { OpenSSL::X509::Certificate.new(File.read(self_signed_crt_path)) }
|
198
|
+
|
199
|
+
before do
|
200
|
+
@old_signal = trap(:INT, "DEFAULT")
|
201
|
+
|
202
|
+
expect(ssl_check).to receive(:proxified_socket)
|
203
|
+
.with("foo.example.com", 8443)
|
204
|
+
.and_return(tcp_socket_for_debug)
|
205
|
+
expect(OpenSSL::SSL::SSLSocket).to receive(:new)
|
206
|
+
.with(tcp_socket_for_debug, ssl_check.noverify_peer_ssl_context)
|
207
|
+
.and_return(ssl_socket_for_debug)
|
208
|
+
end
|
209
|
+
|
210
|
+
after do
|
211
|
+
trap(:INT, @old_signal)
|
212
|
+
end
|
213
|
+
|
214
|
+
context "when the certificate's CN does not match the hostname" do
|
215
|
+
before do
|
216
|
+
expect(ssl_check).to receive(:verify_X509).and_return(true) # X509 valid certs
|
217
|
+
expect(ssl_socket).to receive(:connect) # no error
|
218
|
+
expect(ssl_socket).to receive(:post_connection_check)
|
219
|
+
.with("foo.example.com")
|
220
|
+
.and_raise(OpenSSL::SSL::SSLError)
|
221
|
+
expect(ssl_socket).to receive(:hostname=).with("foo.example.com") # no error
|
222
|
+
expect(ssl_socket_for_debug).to receive(:connect)
|
223
|
+
expect(ssl_socket_for_debug).to receive(:peer_cert).and_return(self_signed_crt)
|
224
|
+
end
|
225
|
+
|
226
|
+
it "shows the CN used by the certificate and prints an error" do
|
227
|
+
expect { run }.to raise_error(SystemExit)
|
228
|
+
expect(stderr).to include("The SSL cert is signed by a trusted authority but is not valid for the given hostname")
|
229
|
+
expect(stderr).to include("You are attempting to connect to: 'foo.example.com'")
|
230
|
+
expect(stderr).to include("The server's certificate belongs to 'example.local'")
|
231
|
+
end
|
232
|
+
|
233
|
+
end
|
234
|
+
|
235
|
+
context "when the cert is not signed by any trusted authority" do
|
236
|
+
before do
|
237
|
+
expect(ssl_check).to receive(:verify_X509).and_return(true) # X509 valid certs
|
238
|
+
expect(ssl_socket).to receive(:connect)
|
239
|
+
.and_raise(OpenSSL::SSL::SSLError)
|
240
|
+
expect(ssl_socket).to receive(:hostname=)
|
241
|
+
.with("foo.example.com") # no error
|
242
|
+
expect(ssl_socket_for_debug).to receive(:connect)
|
243
|
+
expect(ssl_socket_for_debug).to receive(:peer_cert).and_return(self_signed_crt)
|
244
|
+
end
|
245
|
+
|
246
|
+
it "shows the CN used by the certificate and prints an error" do
|
247
|
+
expect { run }.to raise_error(SystemExit)
|
248
|
+
expect(stderr).to include("The SSL certificate of foo.example.com could not be verified")
|
249
|
+
end
|
250
|
+
|
251
|
+
end
|
252
|
+
end
|
253
|
+
|
254
|
+
end
|
255
|
+
|
256
|
+
end
|