microwave 11.400.3 → 11.400.4
Sign up to get free protection for your applications and to get access to all the features.
- data/distro/README +2 -0
- data/distro/arch/etc/conf.d/chef-client.conf +5 -0
- data/distro/arch/etc/conf.d/chef-expander.conf +8 -0
- data/distro/arch/etc/conf.d/chef-server-webui.conf +10 -0
- data/distro/arch/etc/conf.d/chef-server.conf +10 -0
- data/distro/arch/etc/conf.d/chef-solr.conf +8 -0
- data/distro/arch/etc/rc.d/chef-client +90 -0
- data/distro/arch/etc/rc.d/chef-expander +78 -0
- data/distro/arch/etc/rc.d/chef-server +78 -0
- data/distro/arch/etc/rc.d/chef-server-webui +78 -0
- data/distro/arch/etc/rc.d/chef-solr +78 -0
- data/distro/common/html/chef-client.8.html +145 -0
- data/distro/common/html/chef-expander.8.html +164 -0
- data/distro/common/html/chef-expanderctl.8.html +146 -0
- data/distro/common/html/chef-server-webui.8.html +185 -0
- data/distro/common/html/chef-server.8.html +182 -0
- data/distro/common/html/chef-shell.1.html +286 -0
- data/distro/common/html/chef-solo.8.html +191 -0
- data/distro/common/html/chef-solr.8.html +165 -0
- data/distro/common/html/knife-bootstrap.1.html +241 -0
- data/distro/common/html/knife-client.1.html +219 -0
- data/distro/common/html/knife-configure.1.html +170 -0
- data/distro/common/html/knife-cookbook-site.1.html +241 -0
- data/distro/common/html/knife-cookbook.1.html +384 -0
- data/distro/common/html/knife-data-bag.1.html +238 -0
- data/distro/common/html/knife-environment.1.html +267 -0
- data/distro/common/html/knife-exec.1.html +134 -0
- data/distro/common/html/knife-index.1.html +125 -0
- data/distro/common/html/knife-node.1.html +250 -0
- data/distro/common/html/knife-role.1.html +200 -0
- data/distro/common/html/knife-search.1.html +288 -0
- data/distro/common/html/knife-ssh.1.html +156 -0
- data/distro/common/html/knife-status.1.html +128 -0
- data/distro/common/html/knife-tag.1.html +137 -0
- data/distro/common/html/knife.1.html +315 -0
- data/distro/common/man/man1/chef-shell.1 +220 -0
- data/distro/common/man/man1/knife-bootstrap.1 +201 -0
- data/distro/common/man/man1/knife-client.1 +99 -0
- data/distro/common/man/man1/knife-configure.1 +88 -0
- data/distro/common/man/man1/knife-cookbook-site.1 +145 -0
- data/distro/common/man/man1/knife-cookbook.1 +345 -0
- data/distro/common/man/man1/knife-data-bag.1 +136 -0
- data/distro/common/man/man1/knife-environment.1 +178 -0
- data/distro/common/man/man1/knife-exec.1 +43 -0
- data/distro/common/man/man1/knife-index.1 +29 -0
- data/distro/common/man/man1/knife-node.1 +134 -0
- data/distro/common/man/man1/knife-role.1 +88 -0
- data/distro/common/man/man1/knife-search.1 +280 -0
- data/distro/common/man/man1/knife-ssh.1 +79 -0
- data/distro/common/man/man1/knife-status.1 +29 -0
- data/distro/common/man/man1/knife-tag.1 +43 -0
- data/distro/common/man/man1/knife.1 +285 -0
- data/distro/common/man/man8/chef-client.8 +104 -0
- data/distro/common/man/man8/chef-expander.8 +97 -0
- data/distro/common/man/man8/chef-expanderctl.8 +62 -0
- data/distro/common/man/man8/chef-server-webui.8 +155 -0
- data/distro/common/man/man8/chef-server.8 +147 -0
- data/distro/common/man/man8/chef-solo.8 +158 -0
- data/distro/common/man/man8/chef-solr.8 +122 -0
- data/distro/common/markdown/README +3 -0
- data/distro/common/markdown/man1/chef-shell.mkd +195 -0
- data/distro/common/markdown/man1/knife-bootstrap.mkd +141 -0
- data/distro/common/markdown/man1/knife-client.mkd +103 -0
- data/distro/common/markdown/man1/knife-configure.mkd +70 -0
- data/distro/common/markdown/man1/knife-cookbook-site.mkd +123 -0
- data/distro/common/markdown/man1/knife-cookbook.mkd +263 -0
- data/distro/common/markdown/man1/knife-data-bag.mkd +121 -0
- data/distro/common/markdown/man1/knife-environment.mkd +151 -0
- data/distro/common/markdown/man1/knife-exec.mkd +42 -0
- data/distro/common/markdown/man1/knife-index.mkd +30 -0
- data/distro/common/markdown/man1/knife-node.mkd +130 -0
- data/distro/common/markdown/man1/knife-role.mkd +85 -0
- data/distro/common/markdown/man1/knife-search.mkd +180 -0
- data/distro/common/markdown/man1/knife-ssh.mkd +69 -0
- data/distro/common/markdown/man1/knife-status.mkd +36 -0
- data/distro/common/markdown/man1/knife-tag.mkd +39 -0
- data/distro/common/markdown/man1/knife.mkd +213 -0
- data/distro/common/markdown/man8/chef-client.mkd +74 -0
- data/distro/common/markdown/man8/chef-expander.mkd +82 -0
- data/distro/common/markdown/man8/chef-expanderctl.mkd +58 -0
- data/distro/common/markdown/man8/chef-server-webui.mkd +121 -0
- data/distro/common/markdown/man8/chef-server.mkd +121 -0
- data/distro/common/markdown/man8/chef-solo.mkd +107 -0
- data/distro/common/markdown/man8/chef-solr.mkd +89 -0
- data/distro/debian/etc/default/chef-client +4 -0
- data/distro/debian/etc/default/chef-expander +8 -0
- data/distro/debian/etc/default/chef-server +9 -0
- data/distro/debian/etc/default/chef-server-webui +9 -0
- data/distro/debian/etc/default/chef-solr +8 -0
- data/distro/debian/etc/init.d/chef-client +210 -0
- data/distro/debian/etc/init.d/chef-expander +176 -0
- data/distro/debian/etc/init.d/chef-server +122 -0
- data/distro/debian/etc/init.d/chef-server-webui +123 -0
- data/distro/debian/etc/init.d/chef-solr +176 -0
- data/distro/debian/etc/init/chef-client.conf +17 -0
- data/distro/debian/etc/init/chef-expander.conf +17 -0
- data/distro/debian/etc/init/chef-server-webui.conf +17 -0
- data/distro/debian/etc/init/chef-server.conf +17 -0
- data/distro/debian/etc/init/chef-solr.conf +17 -0
- data/distro/redhat/etc/init.d/chef-client +121 -0
- data/distro/redhat/etc/init.d/chef-expander +104 -0
- data/distro/redhat/etc/init.d/chef-server +112 -0
- data/distro/redhat/etc/init.d/chef-server-webui +112 -0
- data/distro/redhat/etc/init.d/chef-solr +104 -0
- data/distro/redhat/etc/logrotate.d/chef-client +8 -0
- data/distro/redhat/etc/logrotate.d/chef-expander +8 -0
- data/distro/redhat/etc/logrotate.d/chef-server +8 -0
- data/distro/redhat/etc/logrotate.d/chef-server-webui +8 -0
- data/distro/redhat/etc/logrotate.d/chef-solr +8 -0
- data/distro/redhat/etc/sysconfig/chef-client +15 -0
- data/distro/redhat/etc/sysconfig/chef-expander +7 -0
- data/distro/redhat/etc/sysconfig/chef-server +14 -0
- data/distro/redhat/etc/sysconfig/chef-server-webui +14 -0
- data/distro/redhat/etc/sysconfig/chef-solr +8 -0
- data/distro/windows/service_manager.rb +164 -0
- data/lib/chef/api_client.rb +205 -0
- data/lib/chef/api_client/registration.rb +126 -0
- data/lib/chef/application.rb +225 -0
- data/lib/chef/application/agent.rb +18 -0
- data/lib/chef/application/apply.rb +160 -0
- data/lib/chef/application/client.rb +340 -0
- data/lib/chef/application/knife.rb +183 -0
- data/lib/chef/application/solo.rb +263 -0
- data/lib/chef/application/windows_service.rb +230 -0
- data/lib/chef/applications.rb +5 -0
- data/lib/chef/checksum/storage.rb +18 -0
- data/lib/chef/checksum/storage/filesystem.rb +56 -0
- data/lib/chef/chef_fs.rb +11 -0
- data/lib/chef/chef_fs/command_line.rb +232 -0
- data/lib/chef/chef_fs/file_pattern.rb +312 -0
- data/lib/chef/chef_fs/file_system.rb +358 -0
- data/lib/chef/chef_fs/file_system/base_fs_dir.rb +47 -0
- data/lib/chef/chef_fs/file_system/base_fs_object.rb +121 -0
- data/lib/chef/chef_fs/file_system/chef_repository_file_system_entry.rb +109 -0
- data/lib/chef/chef_fs/file_system/chef_repository_file_system_root_dir.rb +31 -0
- data/lib/chef/chef_fs/file_system/chef_server_root_dir.rb +84 -0
- data/lib/chef/chef_fs/file_system/cookbook_dir.rb +188 -0
- data/lib/chef/chef_fs/file_system/cookbook_file.rb +78 -0
- data/lib/chef/chef_fs/file_system/cookbook_subdir.rb +54 -0
- data/lib/chef/chef_fs/file_system/cookbooks_dir.rb +68 -0
- data/lib/chef/chef_fs/file_system/data_bag_dir.rb +78 -0
- data/lib/chef/chef_fs/file_system/data_bag_item.rb +59 -0
- data/lib/chef/chef_fs/file_system/data_bags_dir.rb +66 -0
- data/lib/chef/chef_fs/file_system/file_system_entry.rb +90 -0
- data/lib/chef/chef_fs/file_system/file_system_error.rb +31 -0
- data/lib/chef/chef_fs/file_system/file_system_root_dir.rb +31 -0
- data/lib/chef/chef_fs/file_system/must_delete_recursively_error.rb +31 -0
- data/lib/chef/chef_fs/file_system/nodes_dir.rb +47 -0
- data/lib/chef/chef_fs/file_system/nonexistent_fs_object.rb +40 -0
- data/lib/chef/chef_fs/file_system/not_found_error.rb +31 -0
- data/lib/chef/chef_fs/file_system/rest_list_dir.rb +84 -0
- data/lib/chef/chef_fs/file_system/rest_list_entry.rb +123 -0
- data/lib/chef/chef_fs/knife.rb +77 -0
- data/lib/chef/chef_fs/path_utils.rb +64 -0
- data/lib/chef/client.rb +556 -0
- data/lib/chef/config.rb +354 -0
- data/lib/chef/cookbook/chefignore.rb +66 -0
- data/lib/chef/cookbook/cookbook_collection.rb +45 -0
- data/lib/chef/cookbook/cookbook_version_loader.rb +171 -0
- data/lib/chef/cookbook/file_system_file_vendor.rb +56 -0
- data/lib/chef/cookbook/file_vendor.rb +48 -0
- data/lib/chef/cookbook/metadata.rb +627 -0
- data/lib/chef/cookbook/remote_file_vendor.rb +84 -0
- data/lib/chef/cookbook/synchronizer.rb +216 -0
- data/lib/chef/cookbook/syntax_check.rb +183 -0
- data/lib/chef/cookbook_loader.rb +134 -0
- data/lib/chef/cookbook_site_streaming_uploader.rb +244 -0
- data/lib/chef/cookbook_uploader.rb +164 -0
- data/lib/chef/cookbook_version.rb +782 -0
- data/lib/chef/daemon.rb +172 -0
- data/lib/chef/data_bag.rb +145 -0
- data/lib/chef/data_bag_item.rb +214 -0
- data/lib/chef/digester.rb +73 -0
- data/lib/chef/dsl.rb +6 -0
- data/lib/chef/dsl/data_query.rb +71 -0
- data/lib/chef/dsl/include_attribute.rb +63 -0
- data/lib/chef/dsl/include_recipe.rb +45 -0
- data/lib/chef/dsl/platform_introspection.rb +218 -0
- data/lib/chef/dsl/recipe.rb +87 -0
- data/lib/chef/dsl/registry_helper.rb +59 -0
- data/lib/chef/encrypted_data_bag_item.rb +323 -0
- data/lib/chef/environment.rb +287 -0
- data/lib/chef/event_dispatch/base.rb +311 -0
- data/lib/chef/event_dispatch/dispatcher.rb +42 -0
- data/lib/chef/exceptions.rb +275 -0
- data/lib/chef/file_access_control.rb +75 -0
- data/lib/chef/file_access_control/unix.rb +216 -0
- data/lib/chef/file_access_control/windows.rb +310 -0
- data/lib/chef/file_cache.rb +220 -0
- data/lib/chef/formatters/base.rb +250 -0
- data/lib/chef/formatters/doc.rb +236 -0
- data/lib/chef/formatters/error_descriptor.rb +66 -0
- data/lib/chef/formatters/error_inspectors.rb +19 -0
- data/lib/chef/formatters/error_inspectors/api_error_formatting.rb +111 -0
- data/lib/chef/formatters/error_inspectors/compile_error_inspector.rb +106 -0
- data/lib/chef/formatters/error_inspectors/cookbook_resolve_error_inspector.rb +146 -0
- data/lib/chef/formatters/error_inspectors/cookbook_sync_error_inspector.rb +80 -0
- data/lib/chef/formatters/error_inspectors/node_load_error_inspector.rb +125 -0
- data/lib/chef/formatters/error_inspectors/registration_error_inspector.rb +137 -0
- data/lib/chef/formatters/error_inspectors/resource_failure_inspector.rb +117 -0
- data/lib/chef/formatters/error_inspectors/run_list_expansion_error_inspector.rb +118 -0
- data/lib/chef/formatters/error_mapper.rb +85 -0
- data/lib/chef/formatters/minimal.rb +235 -0
- data/lib/chef/handler.rb +235 -0
- data/lib/chef/handler/error_report.rb +33 -0
- data/lib/chef/handler/json_file.rb +65 -0
- data/lib/chef/json_compat.rb +147 -0
- data/lib/chef/knife.rb +589 -0
- data/lib/chef/knife/bootstrap.rb +233 -0
- data/lib/chef/knife/bootstrap/archlinux-gems.erb +62 -0
- data/lib/chef/knife/bootstrap/centos5-gems.erb +62 -0
- data/lib/chef/knife/bootstrap/chef-full.erb +60 -0
- data/lib/chef/knife/bootstrap/fedora13-gems.erb +44 -0
- data/lib/chef/knife/bootstrap/ubuntu10.04-apt.erb +53 -0
- data/lib/chef/knife/bootstrap/ubuntu10.04-gems.erb +48 -0
- data/lib/chef/knife/bootstrap/ubuntu12.04-gems.erb +46 -0
- data/lib/chef/knife/client_bulk_delete.rb +65 -0
- data/lib/chef/knife/client_create.rb +80 -0
- data/lib/chef/knife/client_delete.rb +46 -0
- data/lib/chef/knife/client_edit.rb +45 -0
- data/lib/chef/knife/client_list.rb +42 -0
- data/lib/chef/knife/client_reregister.rb +59 -0
- data/lib/chef/knife/client_show.rb +52 -0
- data/lib/chef/knife/configure.rb +170 -0
- data/lib/chef/knife/configure_client.rb +50 -0
- data/lib/chef/knife/cookbook_bulk_delete.rb +72 -0
- data/lib/chef/knife/cookbook_create.rb +447 -0
- data/lib/chef/knife/cookbook_delete.rb +151 -0
- data/lib/chef/knife/cookbook_download.rb +137 -0
- data/lib/chef/knife/cookbook_list.rb +47 -0
- data/lib/chef/knife/cookbook_metadata.rb +108 -0
- data/lib/chef/knife/cookbook_metadata_from_file.rb +44 -0
- data/lib/chef/knife/cookbook_show.rb +102 -0
- data/lib/chef/knife/cookbook_site_download.rb +109 -0
- data/lib/chef/knife/cookbook_site_install.rb +164 -0
- data/lib/chef/knife/cookbook_site_list.rb +62 -0
- data/lib/chef/knife/cookbook_site_search.rb +51 -0
- data/lib/chef/knife/cookbook_site_share.rb +114 -0
- data/lib/chef/knife/cookbook_site_show.rb +60 -0
- data/lib/chef/knife/cookbook_site_unshare.rb +56 -0
- data/lib/chef/knife/cookbook_site_vendor.rb +46 -0
- data/lib/chef/knife/cookbook_test.rb +94 -0
- data/lib/chef/knife/cookbook_upload.rb +295 -0
- data/lib/chef/knife/core/bootstrap_context.rb +106 -0
- data/lib/chef/knife/core/cookbook_scm_repo.rb +160 -0
- data/lib/chef/knife/core/generic_presenter.rb +204 -0
- data/lib/chef/knife/core/node_editor.rb +130 -0
- data/lib/chef/knife/core/node_presenter.rb +137 -0
- data/lib/chef/knife/core/object_loader.rb +112 -0
- data/lib/chef/knife/core/subcommand_loader.rb +112 -0
- data/lib/chef/knife/core/text_formatter.rb +86 -0
- data/lib/chef/knife/core/ui.rb +219 -0
- data/lib/chef/knife/data_bag_create.rb +93 -0
- data/lib/chef/knife/data_bag_delete.rb +51 -0
- data/lib/chef/knife/data_bag_edit.rb +94 -0
- data/lib/chef/knife/data_bag_from_file.rb +136 -0
- data/lib/chef/knife/data_bag_list.rb +46 -0
- data/lib/chef/knife/data_bag_show.rb +81 -0
- data/lib/chef/knife/delete.rb +39 -0
- data/lib/chef/knife/diff.rb +46 -0
- data/lib/chef/knife/download.rb +50 -0
- data/lib/chef/knife/environment_create.rb +53 -0
- data/lib/chef/knife/environment_delete.rb +45 -0
- data/lib/chef/knife/environment_edit.rb +45 -0
- data/lib/chef/knife/environment_from_file.rb +83 -0
- data/lib/chef/knife/environment_list.rb +42 -0
- data/lib/chef/knife/environment_show.rb +53 -0
- data/lib/chef/knife/exec.rb +86 -0
- data/lib/chef/knife/help.rb +103 -0
- data/lib/chef/knife/help_topics.rb +4 -0
- data/lib/chef/knife/index_rebuild.rb +134 -0
- data/lib/chef/knife/list.rb +109 -0
- data/lib/chef/knife/node_bulk_delete.rb +80 -0
- data/lib/chef/knife/node_create.rb +50 -0
- data/lib/chef/knife/node_delete.rb +47 -0
- data/lib/chef/knife/node_edit.rb +72 -0
- data/lib/chef/knife/node_from_file.rb +50 -0
- data/lib/chef/knife/node_list.rb +46 -0
- data/lib/chef/knife/node_run_list_add.rb +75 -0
- data/lib/chef/knife/node_run_list_remove.rb +48 -0
- data/lib/chef/knife/node_show.rb +73 -0
- data/lib/chef/knife/raw.rb +108 -0
- data/lib/chef/knife/recipe_list.rb +32 -0
- data/lib/chef/knife/role_bulk_delete.rb +70 -0
- data/lib/chef/knife/role_create.rb +55 -0
- data/lib/chef/knife/role_delete.rb +47 -0
- data/lib/chef/knife/role_edit.rb +48 -0
- data/lib/chef/knife/role_from_file.rb +56 -0
- data/lib/chef/knife/role_list.rb +43 -0
- data/lib/chef/knife/role_show.rb +54 -0
- data/lib/chef/knife/search.rb +159 -0
- data/lib/chef/knife/show.rb +32 -0
- data/lib/chef/knife/ssh.rb +463 -0
- data/lib/chef/knife/status.rb +119 -0
- data/lib/chef/knife/tag_create.rb +52 -0
- data/lib/chef/knife/tag_delete.rb +60 -0
- data/lib/chef/knife/tag_list.rb +47 -0
- data/lib/chef/knife/upload.rb +50 -0
- data/lib/chef/knife/user_create.rb +93 -0
- data/lib/chef/knife/user_delete.rb +46 -0
- data/lib/chef/knife/user_edit.rb +53 -0
- data/lib/chef/knife/user_list.rb +42 -0
- data/lib/chef/knife/user_reregister.rb +59 -0
- data/lib/chef/knife/user_show.rb +52 -0
- data/lib/chef/log.rb +39 -0
- data/lib/chef/mash.rb +225 -0
- data/lib/chef/mixin/checksum.rb +32 -0
- data/lib/chef/mixin/command.rb +164 -0
- data/lib/chef/mixin/command/unix.rb +220 -0
- data/lib/chef/mixin/command/windows.rb +76 -0
- data/lib/chef/mixin/convert_to_class_name.rb +65 -0
- data/lib/chef/mixin/create_path.rb +57 -0
- data/lib/chef/mixin/deep_merge.rb +168 -0
- data/lib/chef/mixin/deprecation.rb +100 -0
- data/lib/chef/mixin/enforce_ownership_and_permissions.rb +39 -0
- data/lib/chef/mixin/file_class.rb +46 -0
- data/lib/chef/mixin/from_file.rb +50 -0
- data/lib/chef/mixin/get_source_from_package.rb +42 -0
- data/lib/chef/mixin/language.rb +48 -0
- data/lib/chef/mixin/language_include_attribute.rb +35 -0
- data/lib/chef/mixin/language_include_recipe.rb +32 -0
- data/lib/chef/mixin/params_validate.rb +225 -0
- data/lib/chef/mixin/path_sanity.rb +67 -0
- data/lib/chef/mixin/recipe_definition_dsl_core.rb +35 -0
- data/lib/chef/mixin/securable.rb +205 -0
- data/lib/chef/mixin/shell_out.rb +69 -0
- data/lib/chef/mixin/template.rb +140 -0
- data/lib/chef/mixin/why_run.rb +332 -0
- data/lib/chef/mixin/xml_escape.rb +140 -0
- data/lib/chef/mixins.rb +14 -0
- data/lib/chef/monkey_patches/dir.rb +36 -0
- data/lib/chef/monkey_patches/fileutils.rb +65 -0
- data/lib/chef/monkey_patches/net_http.rb +22 -0
- data/lib/chef/monkey_patches/numeric.rb +15 -0
- data/lib/chef/monkey_patches/object.rb +9 -0
- data/lib/chef/monkey_patches/regexp.rb +34 -0
- data/lib/chef/monkey_patches/string.rb +49 -0
- data/lib/chef/monkey_patches/tempfile.rb +64 -0
- data/lib/chef/nil_argument.rb +3 -0
- data/lib/chef/node.rb +509 -0
- data/lib/chef/node/attribute.rb +398 -0
- data/lib/chef/node/attribute_collections.rb +206 -0
- data/lib/chef/node/immutable_collections.rb +186 -0
- data/lib/chef/platform.rb +519 -0
- data/lib/chef/provider.rb +176 -0
- data/lib/chef/provider/breakpoint.rb +36 -0
- data/lib/chef/provider/cookbook_file.rb +113 -0
- data/lib/chef/provider/cron.rb +214 -0
- data/lib/chef/provider/cron/solaris.rb +56 -0
- data/lib/chef/provider/deploy.rb +475 -0
- data/lib/chef/provider/deploy/revision.rb +80 -0
- data/lib/chef/provider/deploy/timestamped.rb +32 -0
- data/lib/chef/provider/directory.rb +131 -0
- data/lib/chef/provider/env.rb +152 -0
- data/lib/chef/provider/env/windows.rb +75 -0
- data/lib/chef/provider/erl_call.rb +106 -0
- data/lib/chef/provider/execute.rb +68 -0
- data/lib/chef/provider/file.rb +328 -0
- data/lib/chef/provider/git.rb +260 -0
- data/lib/chef/provider/group.rb +158 -0
- data/lib/chef/provider/group/aix.rb +70 -0
- data/lib/chef/provider/group/dscl.rb +129 -0
- data/lib/chef/provider/group/gpasswd.rb +65 -0
- data/lib/chef/provider/group/groupadd.rb +96 -0
- data/lib/chef/provider/group/groupmod.rb +120 -0
- data/lib/chef/provider/group/pw.rb +93 -0
- data/lib/chef/provider/group/suse.rb +60 -0
- data/lib/chef/provider/group/usermod.rb +68 -0
- data/lib/chef/provider/group/windows.rb +79 -0
- data/lib/chef/provider/http_request.rb +119 -0
- data/lib/chef/provider/ifconfig.rb +214 -0
- data/lib/chef/provider/link.rb +132 -0
- data/lib/chef/provider/log.rb +54 -0
- data/lib/chef/provider/lwrp_base.rb +150 -0
- data/lib/chef/provider/mdadm.rb +92 -0
- data/lib/chef/provider/mount.rb +128 -0
- data/lib/chef/provider/mount/mount.rb +252 -0
- data/lib/chef/provider/mount/windows.rb +81 -0
- data/lib/chef/provider/ohai.rb +47 -0
- data/lib/chef/provider/package.rb +229 -0
- data/lib/chef/provider/package/apt.rb +147 -0
- data/lib/chef/provider/package/dpkg.rb +128 -0
- data/lib/chef/provider/package/easy_install.rb +136 -0
- data/lib/chef/provider/package/freebsd.rb +149 -0
- data/lib/chef/provider/package/ips.rb +101 -0
- data/lib/chef/provider/package/macports.rb +105 -0
- data/lib/chef/provider/package/pacman.rb +111 -0
- data/lib/chef/provider/package/portage.rb +138 -0
- data/lib/chef/provider/package/rpm.rb +121 -0
- data/lib/chef/provider/package/rubygems.rb +548 -0
- data/lib/chef/provider/package/smartos.rb +84 -0
- data/lib/chef/provider/package/solaris.rb +139 -0
- data/lib/chef/provider/package/yum-dump.py +307 -0
- data/lib/chef/provider/package/yum.rb +1255 -0
- data/lib/chef/provider/package/zypper.rb +144 -0
- data/lib/chef/provider/registry_key.rb +156 -0
- data/lib/chef/provider/remote_directory.rb +180 -0
- data/lib/chef/provider/remote_file.rb +141 -0
- data/lib/chef/provider/resource_update.rb +55 -0
- data/lib/chef/provider/route.rb +223 -0
- data/lib/chef/provider/ruby_block.rb +42 -0
- data/lib/chef/provider/script.rb +57 -0
- data/lib/chef/provider/service.rb +173 -0
- data/lib/chef/provider/service/arch.rb +113 -0
- data/lib/chef/provider/service/debian.rb +152 -0
- data/lib/chef/provider/service/freebsd.rb +175 -0
- data/lib/chef/provider/service/gentoo.rb +67 -0
- data/lib/chef/provider/service/init.rb +89 -0
- data/lib/chef/provider/service/insserv.rb +52 -0
- data/lib/chef/provider/service/invokercd.rb +35 -0
- data/lib/chef/provider/service/macosx.rb +144 -0
- data/lib/chef/provider/service/redhat.rb +77 -0
- data/lib/chef/provider/service/simple.rb +172 -0
- data/lib/chef/provider/service/solaris.rb +86 -0
- data/lib/chef/provider/service/systemd.rb +115 -0
- data/lib/chef/provider/service/upstart.rb +232 -0
- data/lib/chef/provider/service/windows.rb +163 -0
- data/lib/chef/provider/subversion.rb +214 -0
- data/lib/chef/provider/template.rb +120 -0
- data/lib/chef/provider/template_finder.rb +61 -0
- data/lib/chef/provider/user.rb +206 -0
- data/lib/chef/provider/user/dscl.rb +288 -0
- data/lib/chef/provider/user/pw.rb +113 -0
- data/lib/chef/provider/user/useradd.rb +144 -0
- data/lib/chef/provider/user/windows.rb +124 -0
- data/lib/chef/providers.rb +103 -0
- data/lib/chef/recipe.rb +135 -0
- data/lib/chef/reserved_names.rb +9 -0
- data/lib/chef/resource.rb +794 -0
- data/lib/chef/resource/apt_package.rb +43 -0
- data/lib/chef/resource/bash.rb +33 -0
- data/lib/chef/resource/breakpoint.rb +35 -0
- data/lib/chef/resource/chef_gem.rb +53 -0
- data/lib/chef/resource/conditional.rb +101 -0
- data/lib/chef/resource/cookbook_file.rb +52 -0
- data/lib/chef/resource/cron.rb +202 -0
- data/lib/chef/resource/csh.rb +33 -0
- data/lib/chef/resource/deploy.rb +403 -0
- data/lib/chef/resource/deploy_revision.rb +40 -0
- data/lib/chef/resource/directory.rb +65 -0
- data/lib/chef/resource/dpkg_package.rb +34 -0
- data/lib/chef/resource/easy_install_package.rb +57 -0
- data/lib/chef/resource/env.rb +63 -0
- data/lib/chef/resource/erl_call.rb +86 -0
- data/lib/chef/resource/execute.rb +132 -0
- data/lib/chef/resource/file.rb +96 -0
- data/lib/chef/resource/freebsd_package.rb +35 -0
- data/lib/chef/resource/gem_package.rb +53 -0
- data/lib/chef/resource/git.rb +46 -0
- data/lib/chef/resource/group.rb +83 -0
- data/lib/chef/resource/http_request.rb +65 -0
- data/lib/chef/resource/ifconfig.rb +149 -0
- data/lib/chef/resource/ips_package.rb +42 -0
- data/lib/chef/resource/link.rb +92 -0
- data/lib/chef/resource/log.rb +74 -0
- data/lib/chef/resource/lwrp_base.rb +127 -0
- data/lib/chef/resource/macports_package.rb +29 -0
- data/lib/chef/resource/mdadm.rb +105 -0
- data/lib/chef/resource/mount.rb +139 -0
- data/lib/chef/resource/ohai.rb +54 -0
- data/lib/chef/resource/package.rb +84 -0
- data/lib/chef/resource/pacman_package.rb +33 -0
- data/lib/chef/resource/perl.rb +33 -0
- data/lib/chef/resource/portage_package.rb +33 -0
- data/lib/chef/resource/python.rb +33 -0
- data/lib/chef/resource/registry_key.rb +86 -0
- data/lib/chef/resource/remote_directory.rb +126 -0
- data/lib/chef/resource/remote_file.rb +81 -0
- data/lib/chef/resource/route.rb +140 -0
- data/lib/chef/resource/rpm_package.rb +34 -0
- data/lib/chef/resource/ruby.rb +33 -0
- data/lib/chef/resource/ruby_block.rb +51 -0
- data/lib/chef/resource/scm.rb +151 -0
- data/lib/chef/resource/script.rb +63 -0
- data/lib/chef/resource/service.rb +178 -0
- data/lib/chef/resource/smartos_package.rb +36 -0
- data/lib/chef/resource/solaris_package.rb +36 -0
- data/lib/chef/resource/subversion.rb +37 -0
- data/lib/chef/resource/template.rb +76 -0
- data/lib/chef/resource/timestamped_deploy.rb +31 -0
- data/lib/chef/resource/user.rb +134 -0
- data/lib/chef/resource/yum_package.rb +63 -0
- data/lib/chef/resource_collection.rb +221 -0
- data/lib/chef/resource_collection/stepable_iterator.rb +124 -0
- data/lib/chef/resource_definition.rb +67 -0
- data/lib/chef/resource_definition_list.rb +38 -0
- data/lib/chef/resource_platform_map.rb +151 -0
- data/lib/chef/resource_reporter.rb +281 -0
- data/lib/chef/resources.rb +69 -0
- data/lib/chef/rest.rb +438 -0
- data/lib/chef/rest/auth_credentials.rb +57 -0
- data/lib/chef/rest/cookie_jar.rb +31 -0
- data/lib/chef/rest/rest_request.rb +229 -0
- data/lib/chef/role.rb +253 -0
- data/lib/chef/run_context.rb +214 -0
- data/lib/chef/run_context/cookbook_compiler.rb +280 -0
- data/lib/chef/run_list.rb +163 -0
- data/lib/chef/run_list/run_list_expansion.rb +191 -0
- data/lib/chef/run_list/run_list_item.rb +99 -0
- data/lib/chef/run_list/versioned_recipe_list.rb +68 -0
- data/lib/chef/run_lock.rb +90 -0
- data/lib/chef/run_status.rb +124 -0
- data/lib/chef/runner.rb +118 -0
- data/lib/chef/sandbox.rb +20 -0
- data/lib/chef/scan_access_control.rb +133 -0
- data/lib/chef/search/query.rb +65 -0
- data/lib/chef/shef/ext.rb +19 -0
- data/lib/chef/shell.rb +329 -0
- data/lib/chef/shell/ext.rb +593 -0
- data/lib/chef/shell/model_wrapper.rb +120 -0
- data/lib/chef/shell/shell_rest.rb +28 -0
- data/lib/chef/shell/shell_session.rb +298 -0
- data/lib/chef/shell_out.rb +13 -0
- data/lib/chef/streaming_cookbook_uploader.rb +201 -0
- data/lib/chef/tasks/chef_repo.rake +334 -0
- data/lib/chef/user.rb +182 -0
- data/lib/chef/util/file_edit.rb +132 -0
- data/lib/chef/util/windows.rb +56 -0
- data/lib/chef/util/windows/net_group.rb +101 -0
- data/lib/chef/util/windows/net_use.rb +121 -0
- data/lib/chef/util/windows/net_user.rb +198 -0
- data/lib/chef/util/windows/volume.rb +59 -0
- data/lib/chef/version.rb +23 -0
- data/lib/chef/version_class.rb +70 -0
- data/lib/chef/version_constraint.rb +116 -0
- data/lib/chef/win32/api.rb +364 -0
- data/lib/chef/win32/api/error.rb +921 -0
- data/lib/chef/win32/api/file.rb +535 -0
- data/lib/chef/win32/api/memory.rb +105 -0
- data/lib/chef/win32/api/process.rb +41 -0
- data/lib/chef/win32/api/psapi.rb +51 -0
- data/lib/chef/win32/api/security.rb +385 -0
- data/lib/chef/win32/api/system.rb +192 -0
- data/lib/chef/win32/api/unicode.rb +178 -0
- data/lib/chef/win32/error.rb +73 -0
- data/lib/chef/win32/file.rb +167 -0
- data/lib/chef/win32/file/info.rb +100 -0
- data/lib/chef/win32/handle.rb +55 -0
- data/lib/chef/win32/memory.rb +101 -0
- data/lib/chef/win32/process.rb +84 -0
- data/lib/chef/win32/registry.rb +382 -0
- data/lib/chef/win32/security.rb +508 -0
- data/lib/chef/win32/security/ace.rb +125 -0
- data/lib/chef/win32/security/acl.rb +101 -0
- data/lib/chef/win32/security/securable_object.rb +109 -0
- data/lib/chef/win32/security/security_descriptor.rb +93 -0
- data/lib/chef/win32/security/sid.rb +199 -0
- data/lib/chef/win32/security/token.rb +64 -0
- data/lib/chef/win32/unicode.rb +43 -0
- data/lib/chef/win32/version.rb +119 -0
- metadata +553 -3
@@ -0,0 +1,508 @@
|
|
1
|
+
#
|
2
|
+
# Author:: John Keiser (<jkeiser@opscode.com>)
|
3
|
+
# Copyright:: Copyright 2011 Opscode, Inc.
|
4
|
+
# License:: Apache License, Version 2.0
|
5
|
+
#
|
6
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
7
|
+
# you may not use this file except in compliance with the License.
|
8
|
+
# You may obtain a copy of the License at
|
9
|
+
#
|
10
|
+
# http://www.apache.org/licenses/LICENSE-2.0
|
11
|
+
#
|
12
|
+
# Unless required by applicable law or agreed to in writing, software
|
13
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
14
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
15
|
+
# See the License for the specific language governing permissions and
|
16
|
+
# limitations under the License.
|
17
|
+
#
|
18
|
+
|
19
|
+
require 'chef/win32/api/security'
|
20
|
+
require 'chef/win32/error'
|
21
|
+
require 'chef/win32/memory'
|
22
|
+
require 'chef/win32/process'
|
23
|
+
require 'chef/win32/unicode'
|
24
|
+
require 'chef/win32/security/token'
|
25
|
+
|
26
|
+
class Chef
|
27
|
+
module ReservedNames::Win32
|
28
|
+
class Security
|
29
|
+
include Chef::ReservedNames::Win32::API::Error
|
30
|
+
extend Chef::ReservedNames::Win32::API::Error
|
31
|
+
include Chef::ReservedNames::Win32::API::Security
|
32
|
+
extend Chef::ReservedNames::Win32::API::Security
|
33
|
+
extend Chef::ReservedNames::Win32::API::Macros
|
34
|
+
|
35
|
+
def self.add_ace(acl, ace, insert_position = MAXDWORD, revision = ACL_REVISION)
|
36
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
37
|
+
ace = ace.pointer if ace.respond_to?(:pointer)
|
38
|
+
ace_size = ACE_HEADER.new(ace)[:AceSize]
|
39
|
+
unless AddAce(acl, revision, insert_position, ace, ace_size)
|
40
|
+
Chef::ReservedNames::Win32::Error.raise!
|
41
|
+
end
|
42
|
+
end
|
43
|
+
|
44
|
+
def self.add_access_allowed_ace(acl, sid, access_mask, revision = ACL_REVISION)
|
45
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
46
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
47
|
+
unless AddAccessAllowedAce(acl, revision, access_mask, sid)
|
48
|
+
Chef::ReservedNames::Win32::Error.raise!
|
49
|
+
end
|
50
|
+
end
|
51
|
+
|
52
|
+
def self.add_access_allowed_ace_ex(acl, sid, access_mask, flags = 0, revision = ACL_REVISION)
|
53
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
54
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
55
|
+
unless AddAccessAllowedAceEx(acl, revision, flags, access_mask, sid)
|
56
|
+
Chef::ReservedNames::Win32::Error.raise!
|
57
|
+
end
|
58
|
+
end
|
59
|
+
|
60
|
+
def self.add_access_denied_ace(acl, sid, access_mask, revision = ACL_REVISION)
|
61
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
62
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
63
|
+
unless AddAccessDeniedAce(acl, revision, access_mask, sid)
|
64
|
+
Chef::ReservedNames::Win32::Error.raise!
|
65
|
+
end
|
66
|
+
end
|
67
|
+
|
68
|
+
def self.add_access_denied_ace_ex(acl, sid, access_mask, flags = 0, revision = ACL_REVISION)
|
69
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
70
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
71
|
+
unless AddAccessDeniedAceEx(acl, revision, flags, access_mask, sid)
|
72
|
+
Chef::ReservedNames::Win32::Error.raise!
|
73
|
+
end
|
74
|
+
end
|
75
|
+
|
76
|
+
def self.adjust_token_privileges(token, privileges)
|
77
|
+
token = token.handle if token.respond_to?(:handle)
|
78
|
+
old_privileges_size = FFI::Buffer.new(:long).write_long(privileges.size_with_privileges)
|
79
|
+
old_privileges = TOKEN_PRIVILEGES.new(FFI::Buffer.new(old_privileges_size.read_long))
|
80
|
+
unless AdjustTokenPrivileges(token.handle, false, privileges, privileges.size_with_privileges, old_privileges, old_privileges_size)
|
81
|
+
Chef::ReservedNames::Win32::Error.raise!
|
82
|
+
end
|
83
|
+
|
84
|
+
old_privileges
|
85
|
+
end
|
86
|
+
|
87
|
+
def self.convert_sid_to_string_sid(sid)
|
88
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
89
|
+
result = FFI::MemoryPointer.new :pointer
|
90
|
+
# TODO: use the W version
|
91
|
+
unless ConvertSidToStringSidA(sid, result)
|
92
|
+
Chef::ReservedNames::Win32::Error.raise!
|
93
|
+
end
|
94
|
+
|
95
|
+
result_string = result.read_pointer.read_string
|
96
|
+
|
97
|
+
Chef::ReservedNames::Win32::Memory.local_free(result.read_pointer)
|
98
|
+
|
99
|
+
result_string
|
100
|
+
end
|
101
|
+
|
102
|
+
def self.convert_string_sid_to_sid(string_sid)
|
103
|
+
result = FFI::MemoryPointer.new :pointer
|
104
|
+
unless ConvertStringSidToSidW(string_sid.to_wstring, result)
|
105
|
+
Chef::ReservedNames::Win32::Error.raise!
|
106
|
+
end
|
107
|
+
|
108
|
+
result_pointer = result.read_pointer
|
109
|
+
sid = SID.new(result_pointer)
|
110
|
+
|
111
|
+
# The result pointer must be freed with local_free
|
112
|
+
ObjectSpace.define_finalizer(sid, Memory.local_free_finalizer(result_pointer))
|
113
|
+
|
114
|
+
sid
|
115
|
+
end
|
116
|
+
|
117
|
+
def self.delete_ace(acl, index)
|
118
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
119
|
+
unless DeleteAce(acl, index)
|
120
|
+
Chef::ReservedNames::Win32::Error.raise!
|
121
|
+
end
|
122
|
+
end
|
123
|
+
|
124
|
+
def self.equal_sid(sid1, sid2)
|
125
|
+
sid1 = sid1.pointer if sid1.respond_to?(:pointer)
|
126
|
+
sid2 = sid2.pointer if sid2.respond_to?(:pointer)
|
127
|
+
EqualSid(sid1, sid2)
|
128
|
+
end
|
129
|
+
|
130
|
+
def self.free_sid(sid)
|
131
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
132
|
+
unless FreeSid(sid).null?
|
133
|
+
Chef::ReservedNames::Win32::Error.raise!
|
134
|
+
end
|
135
|
+
end
|
136
|
+
|
137
|
+
def self.get_ace(acl, index)
|
138
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
139
|
+
ace = FFI::Buffer.new :pointer
|
140
|
+
unless GetAce(acl, index, ace)
|
141
|
+
Chef::ReservedNames::Win32::Error.raise!
|
142
|
+
end
|
143
|
+
ACE.new(ace.read_pointer, acl)
|
144
|
+
end
|
145
|
+
|
146
|
+
def self.get_length_sid(sid)
|
147
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
148
|
+
GetLengthSid(sid)
|
149
|
+
end
|
150
|
+
|
151
|
+
def self.get_named_security_info(path, type = :SE_FILE_OBJECT, info = OWNER_SECURITY_INFORMATION | GROUP_SECURITY_INFORMATION | DACL_SECURITY_INFORMATION)
|
152
|
+
security_descriptor = FFI::MemoryPointer.new :pointer
|
153
|
+
hr = GetNamedSecurityInfoW(path.to_wstring, type, info, nil, nil, nil, nil, security_descriptor)
|
154
|
+
if hr != ERROR_SUCCESS
|
155
|
+
Chef::ReservedNames::Win32::Error.raise!("get_named_security_info(#{path}, #{type}, #{info})")
|
156
|
+
end
|
157
|
+
|
158
|
+
result_pointer = security_descriptor.read_pointer
|
159
|
+
result = SecurityDescriptor.new(result_pointer)
|
160
|
+
|
161
|
+
# This memory has to be freed with LocalFree.
|
162
|
+
ObjectSpace.define_finalizer(result, Memory.local_free_finalizer(result_pointer))
|
163
|
+
|
164
|
+
result
|
165
|
+
end
|
166
|
+
|
167
|
+
def self.get_security_descriptor_control(security_descriptor)
|
168
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
169
|
+
result = FFI::Buffer.new :ushort
|
170
|
+
version = FFI::Buffer.new :uint32
|
171
|
+
unless GetSecurityDescriptorControl(security_descriptor, result, version)
|
172
|
+
Chef::ReservedNames::Win32::Error.raise!
|
173
|
+
end
|
174
|
+
[ result.read_ushort, version.read_uint32 ]
|
175
|
+
end
|
176
|
+
|
177
|
+
def self.get_security_descriptor_dacl(security_descriptor)
|
178
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
179
|
+
present = FFI::Buffer.new :bool
|
180
|
+
defaulted = FFI::Buffer.new :bool
|
181
|
+
acl = FFI::Buffer.new :pointer
|
182
|
+
unless GetSecurityDescriptorDacl(security_descriptor, present, acl, defaulted)
|
183
|
+
Chef::ReservedNames::Win32::Error.raise!
|
184
|
+
end
|
185
|
+
acl = acl.read_pointer
|
186
|
+
[ present.read_char != 0, acl.null? ? nil : ACL.new(acl, security_descriptor), defaulted.read_char != 0 ]
|
187
|
+
end
|
188
|
+
|
189
|
+
def self.get_security_descriptor_group(security_descriptor)
|
190
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
191
|
+
result = FFI::Buffer.new :pointer
|
192
|
+
defaulted = FFI::Buffer.new :long
|
193
|
+
unless GetSecurityDescriptorGroup(security_descriptor, result, defaulted)
|
194
|
+
Chef::ReservedNames::Win32::Error.raise!
|
195
|
+
end
|
196
|
+
|
197
|
+
sid = SID.new(result.read_pointer, security_descriptor)
|
198
|
+
defaulted = defaulted.read_char != 0
|
199
|
+
[ sid, defaulted ]
|
200
|
+
end
|
201
|
+
|
202
|
+
def self.get_security_descriptor_owner(security_descriptor)
|
203
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
204
|
+
result = FFI::Buffer.new :pointer
|
205
|
+
defaulted = FFI::Buffer.new :long
|
206
|
+
unless GetSecurityDescriptorOwner(security_descriptor, result, defaulted)
|
207
|
+
Chef::ReservedNames::Win32::Error.raise!
|
208
|
+
end
|
209
|
+
|
210
|
+
sid = SID.new(result.read_pointer, security_descriptor)
|
211
|
+
defaulted = defaulted.read_char != 0
|
212
|
+
[ sid, defaulted ]
|
213
|
+
end
|
214
|
+
|
215
|
+
def self.get_security_descriptor_sacl(security_descriptor)
|
216
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
217
|
+
present = FFI::Buffer.new :bool
|
218
|
+
defaulted = FFI::Buffer.new :bool
|
219
|
+
acl = FFI::Buffer.new :pointer
|
220
|
+
unless GetSecurityDescriptorSacl(security_descriptor, present, acl, defaulted)
|
221
|
+
Chef::ReservedNames::Win32::Error.raise!
|
222
|
+
end
|
223
|
+
acl = acl.read_pointer
|
224
|
+
[ present.read_char != 0, acl.null? ? nil : ACL.new(acl, security_descriptor), defaulted.read_char != 0 ]
|
225
|
+
end
|
226
|
+
|
227
|
+
def self.initialize_acl(acl_size)
|
228
|
+
acl = FFI::MemoryPointer.new acl_size
|
229
|
+
unless InitializeAcl(acl, acl_size, ACL_REVISION)
|
230
|
+
Chef::ReservedNames::Win32::Error.raise!
|
231
|
+
end
|
232
|
+
ACL.new(acl)
|
233
|
+
end
|
234
|
+
|
235
|
+
def self.initialize_security_descriptor(revision = SECURITY_DESCRIPTOR_REVISION)
|
236
|
+
security_descriptor = FFI::MemoryPointer.new SECURITY_DESCRIPTOR_MIN_LENGTH
|
237
|
+
unless InitializeSecurityDescriptor(security_descriptor, revision)
|
238
|
+
Chef::ReservedNames::Win32::Error.raise!
|
239
|
+
end
|
240
|
+
SecurityDescriptor.new(security_descriptor)
|
241
|
+
end
|
242
|
+
|
243
|
+
def self.is_valid_acl(acl)
|
244
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
245
|
+
IsValidAcl(acl) != 0
|
246
|
+
end
|
247
|
+
|
248
|
+
def self.is_valid_security_descriptor(security_descriptor)
|
249
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
250
|
+
IsValidSecurityDescriptor(security_descriptor) != 0
|
251
|
+
end
|
252
|
+
|
253
|
+
def self.is_valid_sid(sid)
|
254
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
255
|
+
IsValidSid(sid) != 0
|
256
|
+
end
|
257
|
+
|
258
|
+
def self.lookup_account_name(name, system_name = nil)
|
259
|
+
# Figure out how big the buffers need to be
|
260
|
+
sid_size = FFI::Buffer.new(:long).write_long(0)
|
261
|
+
referenced_domain_name_size = FFI::Buffer.new(:long).write_long(0)
|
262
|
+
system_name = system_name.to_wstring if system_name
|
263
|
+
if LookupAccountNameW(system_name, name.to_wstring, nil, sid_size, nil, referenced_domain_name_size, nil)
|
264
|
+
raise "Expected ERROR_INSUFFICIENT_BUFFER from LookupAccountName, and got no error!"
|
265
|
+
elsif Chef::ReservedNames::Win32::Error.get_last_error != ERROR_INSUFFICIENT_BUFFER
|
266
|
+
Chef::ReservedNames::Win32::Error.raise!
|
267
|
+
end
|
268
|
+
|
269
|
+
sid = FFI::MemoryPointer.new :char, sid_size.read_long
|
270
|
+
referenced_domain_name = FFI::MemoryPointer.new :char, (referenced_domain_name_size.read_long*2)
|
271
|
+
use = FFI::Buffer.new(:long).write_long(0)
|
272
|
+
unless LookupAccountNameW(system_name, name.to_wstring, sid, sid_size, referenced_domain_name, referenced_domain_name_size, use)
|
273
|
+
Chef::ReservedNames::Win32::Error.raise!
|
274
|
+
end
|
275
|
+
|
276
|
+
[ referenced_domain_name.read_wstring(referenced_domain_name_size.read_long), SID.new(sid), use.read_long ]
|
277
|
+
end
|
278
|
+
|
279
|
+
def self.lookup_account_sid(sid, system_name = nil)
|
280
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
281
|
+
# Figure out how big the buffer needs to be
|
282
|
+
name_size = FFI::Buffer.new(:long).write_long(0)
|
283
|
+
referenced_domain_name_size = FFI::Buffer.new(:long).write_long(0)
|
284
|
+
system_name = system_name.to_wstring if system_name
|
285
|
+
if LookupAccountSidW(system_name, sid, nil, name_size, nil, referenced_domain_name_size, nil)
|
286
|
+
raise "Expected ERROR_INSUFFICIENT_BUFFER from LookupAccountSid, and got no error!"
|
287
|
+
elsif Chef::ReservedNames::Win32::Error::get_last_error != ERROR_INSUFFICIENT_BUFFER
|
288
|
+
Chef::ReservedNames::Win32::Error.raise!
|
289
|
+
end
|
290
|
+
|
291
|
+
name = FFI::MemoryPointer.new :char, (name_size.read_long*2)
|
292
|
+
referenced_domain_name = FFI::MemoryPointer.new :char, (referenced_domain_name_size.read_long*2)
|
293
|
+
use = FFI::Buffer.new(:long).write_long(0)
|
294
|
+
unless LookupAccountSidW(system_name, sid, name, name_size, referenced_domain_name, referenced_domain_name_size, use)
|
295
|
+
Chef::ReservedNames::Win32::Error.raise!
|
296
|
+
end
|
297
|
+
|
298
|
+
[ referenced_domain_name.read_wstring(referenced_domain_name_size.read_long), name.read_wstring(name_size.read_long), use.read_long ]
|
299
|
+
end
|
300
|
+
|
301
|
+
def self.lookup_privilege_name(system_name, luid)
|
302
|
+
system_name = system_name.to_wstring if system_name
|
303
|
+
name_size = FFI::Buffer.new(:long).write_long(0)
|
304
|
+
if LookupPrivilegeNameW(system_name, luid, nil, name_size)
|
305
|
+
raise "Expected ERROR_INSUFFICIENT_BUFFER from LookupPrivilegeName, and got no error!"
|
306
|
+
elsif Chef::ReservedNames::Win32::Error.get_last_error != ERROR_INSUFFICIENT_BUFFER
|
307
|
+
Chef::ReservedNames::Win32::Error.raise!
|
308
|
+
end
|
309
|
+
|
310
|
+
name = FFI::MemoryPointer.new :char, (name_size.read_long*2)
|
311
|
+
unless LookupPrivilegeNameW(system_name, luid, name, name_size)
|
312
|
+
Chef::ReservedNames::Win32::Error.raise!
|
313
|
+
end
|
314
|
+
|
315
|
+
name.read_wstring(name_size.read_long)
|
316
|
+
end
|
317
|
+
|
318
|
+
def self.lookup_privilege_display_name(system_name, name)
|
319
|
+
system_name = system_name.to_wstring if system_name
|
320
|
+
display_name_size = FFI::Buffer.new(:long).write_long(0)
|
321
|
+
language_id = FFI::Buffer.new(:long)
|
322
|
+
if LookupPrivilegeDisplayNameW(system_name, name.to_wstring, nil, display_name_size, language_id)
|
323
|
+
raise "Expected ERROR_INSUFFICIENT_BUFFER from LookupPrivilegeDisplayName, and got no error!"
|
324
|
+
elsif Chef::ReservedNames::Win32::Error.get_last_error != ERROR_INSUFFICIENT_BUFFER
|
325
|
+
Chef::ReservedNames::Win32::Error.raise!
|
326
|
+
end
|
327
|
+
|
328
|
+
display_name = FFI::MemoryPointer.new :char, (display_name_size.read_long*2)
|
329
|
+
unless LookupPrivilegeDisplayNameW(system_name, name.to_wstring, display_name, display_name_size, language_id)
|
330
|
+
Chef::ReservedNames::Win32::Error.raise!
|
331
|
+
end
|
332
|
+
|
333
|
+
[ display_name.read_wstring(display_name_size.read_long), language_id.read_long ]
|
334
|
+
end
|
335
|
+
|
336
|
+
def self.lookup_privilege_value(system_name, name)
|
337
|
+
luid = FFI::Buffer.new(:uint64).write_uint64(0)
|
338
|
+
system_name = system_name.to_wstring if system_name
|
339
|
+
unless LookupPrivilegeValueW(system_name, name.to_wstring, luid)
|
340
|
+
Win32::Error.raise!
|
341
|
+
end
|
342
|
+
luid.read_uint64
|
343
|
+
end
|
344
|
+
|
345
|
+
def self.make_absolute_sd(security_descriptor)
|
346
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
347
|
+
|
348
|
+
# Figure out buffer sizes
|
349
|
+
absolute_sd_size = FFI::Buffer.new(:long).write_long(0)
|
350
|
+
dacl_size = FFI::Buffer.new(:long).write_long(0)
|
351
|
+
sacl_size = FFI::Buffer.new(:long).write_long(0)
|
352
|
+
owner_size = FFI::Buffer.new(:long).write_long(0)
|
353
|
+
group_size = FFI::Buffer.new(:long).write_long(0)
|
354
|
+
if MakeAbsoluteSD(security_descriptor, nil, absolute_sd_size, nil, dacl_size, nil, sacl_size, nil, owner_size, nil, group_size)
|
355
|
+
raise "Expected ERROR_INSUFFICIENT_BUFFER from MakeAbsoluteSD, and got no error!"
|
356
|
+
elsif Chef::ReservedNames::Win32::Error.get_last_error != ERROR_INSUFFICIENT_BUFFER
|
357
|
+
Chef::ReservedNames::Win32::Error.raise!
|
358
|
+
end
|
359
|
+
|
360
|
+
absolute_sd = FFI::MemoryPointer.new absolute_sd_size.read_long
|
361
|
+
owner = FFI::MemoryPointer.new owner_size.read_long
|
362
|
+
group = FFI::MemoryPointer.new group_size.read_long
|
363
|
+
dacl = FFI::MemoryPointer.new dacl_size.read_long
|
364
|
+
sacl = FFI::MemoryPointer.new sacl_size.read_long
|
365
|
+
unless MakeAbsoluteSD(security_descriptor, absolute_sd, absolute_sd_size, dacl, dacl_size, sacl, sacl_size, owner, owner_size, group, group_size)
|
366
|
+
Chef::ReservedNames::Win32::Error.raise!
|
367
|
+
end
|
368
|
+
|
369
|
+
[ SecurityDescriptor.new(absolute_sd), SID.new(owner), SID.new(group), ACL.new(dacl), ACL.new(sacl) ]
|
370
|
+
end
|
371
|
+
|
372
|
+
def self.open_process_token(process, desired_access)
|
373
|
+
process = process.handle if process.respond_to?(:handle)
|
374
|
+
process = process.handle if process.respond_to?(:handle)
|
375
|
+
token = FFI::Buffer.new(:ulong)
|
376
|
+
unless OpenProcessToken(process, desired_access, token)
|
377
|
+
Chef::ReservedNames::Win32::Error.raise!
|
378
|
+
end
|
379
|
+
Token.new(Handle.new(token.read_ulong))
|
380
|
+
end
|
381
|
+
|
382
|
+
def self.query_security_access_mask(security_information)
|
383
|
+
result = FFI::Buffer.new(:long)
|
384
|
+
QuerySecurityAccessMask(security_information, result)
|
385
|
+
result.read_long
|
386
|
+
end
|
387
|
+
|
388
|
+
def self.set_file_security(path, security_information, security_descriptor)
|
389
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
390
|
+
unless SetFileSecurityW(path.to_wstring, security_information, security_descriptor)
|
391
|
+
Chef::ReservedNames::Win32::Error.raise!
|
392
|
+
end
|
393
|
+
end
|
394
|
+
|
395
|
+
def self.set_named_security_info(path, type, args)
|
396
|
+
owner = args[:owner]
|
397
|
+
group = args[:group]
|
398
|
+
dacl = args[:dacl]
|
399
|
+
sacl = args[:sacl]
|
400
|
+
owner = owner.pointer if owner && owner.respond_to?(:pointer)
|
401
|
+
group = group.pointer if group && group.respond_to?(:pointer)
|
402
|
+
dacl = dacl.pointer if dacl && dacl.respond_to?(:pointer)
|
403
|
+
sacl = sacl.pointer if sacl && sacl.respond_to?(:pointer)
|
404
|
+
|
405
|
+
# Determine the security_information flags
|
406
|
+
security_information = 0
|
407
|
+
security_information |= OWNER_SECURITY_INFORMATION if args.has_key?(:owner)
|
408
|
+
security_information |= GROUP_SECURITY_INFORMATION if args.has_key?(:group)
|
409
|
+
security_information |= DACL_SECURITY_INFORMATION if args.has_key?(:dacl)
|
410
|
+
security_information |= SACL_SECURITY_INFORMATION if args.has_key?(:sacl)
|
411
|
+
if args.has_key?(:dacl_inherits)
|
412
|
+
security_information |= (args[:dacl_inherits] ? UNPROTECTED_DACL_SECURITY_INFORMATION : PROTECTED_DACL_SECURITY_INFORMATION)
|
413
|
+
end
|
414
|
+
if args.has_key?(:sacl_inherits)
|
415
|
+
security_information |= (args[:sacl_inherits] ? UNPROTECTED_SACL_SECURITY_INFORMATION : PROTECTED_SACL_SECURITY_INFORMATION)
|
416
|
+
end
|
417
|
+
|
418
|
+
hr = SetNamedSecurityInfoW(path.to_wstring, type, security_information, owner, group, dacl, sacl)
|
419
|
+
if hr != ERROR_SUCCESS
|
420
|
+
Chef::ReservedNames::Win32::Error.raise!
|
421
|
+
end
|
422
|
+
end
|
423
|
+
|
424
|
+
def self.set_security_access_mask(security_information)
|
425
|
+
result = FFI::Buffer.new(:long)
|
426
|
+
SetSecurityAccessMask(security_information, result)
|
427
|
+
result.read_long
|
428
|
+
end
|
429
|
+
|
430
|
+
def set_security_descriptor_dacl(security_descriptor, acl, defaulted = false, present = nil)
|
431
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
432
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
433
|
+
present = !security_descriptor.null? if present == nil
|
434
|
+
|
435
|
+
unless SetSecurityDescriptorDacl(security_descriptor, present, acl, defaulted)
|
436
|
+
Chef::ReservedNames::Win32::Error.raise!
|
437
|
+
end
|
438
|
+
end
|
439
|
+
|
440
|
+
def self.set_security_descriptor_group(security_descriptor, sid, defaulted = false)
|
441
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
442
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
443
|
+
|
444
|
+
unless SetSecurityDescriptorGroup(security_descriptor, sid, defaulted)
|
445
|
+
Chef::ReservedNames::Win32::Error.raise!
|
446
|
+
end
|
447
|
+
end
|
448
|
+
|
449
|
+
def self.set_security_descriptor_owner(security_descriptor, sid, defaulted = false)
|
450
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
451
|
+
sid = sid.pointer if sid.respond_to?(:pointer)
|
452
|
+
|
453
|
+
unless SetSecurityDescriptorOwner(security_descriptor, sid, defaulted)
|
454
|
+
Chef::ReservedNames::Win32::Error.raise!
|
455
|
+
end
|
456
|
+
end
|
457
|
+
|
458
|
+
def self.set_security_descriptor_sacl(security_descriptor, acl, defaulted = false, present = nil)
|
459
|
+
security_descriptor = security_descriptor.pointer if security_descriptor.respond_to?(:pointer)
|
460
|
+
acl = acl.pointer if acl.respond_to?(:pointer)
|
461
|
+
present = !security_descriptor.null? if present == nil
|
462
|
+
|
463
|
+
unless SetSecurityDescriptorSacl(security_descriptor, present, acl, defaulted)
|
464
|
+
Chef::ReservedNames::Win32::Error.raise!
|
465
|
+
end
|
466
|
+
end
|
467
|
+
|
468
|
+
def self.with_privileges(*privilege_names)
|
469
|
+
# Set privileges
|
470
|
+
token = open_process_token(Chef::ReservedNames::Win32::Process.get_current_process, TOKEN_READ | TOKEN_ADJUST_PRIVILEGES)
|
471
|
+
old_privileges = token.enable_privileges(*privilege_names)
|
472
|
+
|
473
|
+
# Let the caller do their privileged stuff
|
474
|
+
begin
|
475
|
+
yield
|
476
|
+
ensure
|
477
|
+
# Set privileges back to what they were before
|
478
|
+
token.adjust_privileges(old_privileges)
|
479
|
+
end
|
480
|
+
end
|
481
|
+
|
482
|
+
# Checks if the caller has the admin privileges in their
|
483
|
+
# security token
|
484
|
+
def self.has_admin_privileges?
|
485
|
+
if Chef::Platform.windows_server_2003?
|
486
|
+
# Admin privileges do not exist on Windows Server 2003
|
487
|
+
|
488
|
+
true
|
489
|
+
else
|
490
|
+
process_token = open_process_token(Chef::ReservedNames::Win32::Process.get_current_process, TOKEN_READ)
|
491
|
+
elevation_result = FFI::Buffer.new(:ulong)
|
492
|
+
elevation_result_size = FFI::MemoryPointer.new(:uint32)
|
493
|
+
success = GetTokenInformation(process_token.handle.handle, :TokenElevation, elevation_result, 4, elevation_result_size)
|
494
|
+
|
495
|
+
# Assume process is not elevated if the call fails.
|
496
|
+
# Process is elevated if the result is different than 0.
|
497
|
+
success && (elevation_result.read_ulong != 0)
|
498
|
+
end
|
499
|
+
end
|
500
|
+
end
|
501
|
+
end
|
502
|
+
end
|
503
|
+
|
504
|
+
require 'chef/win32/security/ace'
|
505
|
+
require 'chef/win32/security/acl'
|
506
|
+
require 'chef/win32/security/securable_object'
|
507
|
+
require 'chef/win32/security/security_descriptor'
|
508
|
+
require 'chef/win32/security/sid'
|