diff options
| author | Tyler Ball <tyler-ball@users.noreply.github.com> | 2017-02-23 14:17:31 -0600 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2017-02-23 14:17:31 -0600 |
| commit | 7a04ba2c9eeb26b8e24a1c24eb8668ec4bcdf849 (patch) | |
| tree | 9aa80be8b0deef4839d3e122080891ca0769a2bd | |
| parent | b2ab74b7470d1cdd9813a8b29375e2acd583b5d8 (diff) | |
| parent | 9a066eece59dfd146d8b72c970a7189b65004a5f (diff) | |
| download | chef-7a04ba2c9eeb26b8e24a1c24eb8668ec4bcdf849.tar.gz | |
Merge pull request #5840 from chef/er-478/fips_bootstrap
Require chef/version when trying to read it
| -rw-r--r-- | lib/chef/knife/core/bootstrap_context.rb | 15 | ||||
| -rw-r--r-- | spec/unit/knife/core/bootstrap_context_spec.rb | 17 |
2 files changed, 25 insertions, 7 deletions
diff --git a/lib/chef/knife/core/bootstrap_context.rb b/lib/chef/knife/core/bootstrap_context.rb index ceb067d48d..c395ebcfa0 100644 --- a/lib/chef/knife/core/bootstrap_context.rb +++ b/lib/chef/knife/core/bootstrap_context.rb @@ -161,13 +161,14 @@ validation_client_name "#{@chef_config[:validation_client_name]}" end if Chef::Config[:fips] - client_rb << <<-CONFIG -fips true -chef_version = ::Chef::VERSION.split(".") -unless chef_version[0].to_i > 12 || (chef_version[0].to_i == 12 && chef_version[1].to_i >= 8) - raise "FIPS Mode requested but not supported by this client" -end -CONFIG + client_rb << <<-CONFIG.gsub(/^ {14}/, "") + fips true + require "chef/version" + chef_version = ::Chef::VERSION.split(".") + unless chef_version[0].to_i > 12 || (chef_version[0].to_i == 12 && chef_version[1].to_i >= 8) + raise "FIPS Mode requested but not supported by this client" + end + CONFIG end client_rb diff --git a/spec/unit/knife/core/bootstrap_context_spec.rb b/spec/unit/knife/core/bootstrap_context_spec.rb index 515381cf6e..3a32155063 100644 --- a/spec/unit/knife/core/bootstrap_context_spec.rb +++ b/spec/unit/knife/core/bootstrap_context_spec.rb @@ -213,6 +213,23 @@ EXPECTED end end + describe "fips mode" do + before do + Chef::Config[:fips] = true + end + + it "adds the chef version check" do + expect(bootstrap_context.config_content).to include <<-CONFIG.gsub(/^ {8}/, "") + fips true + require "chef/version" + chef_version = ::Chef::VERSION.split(".") + unless chef_version[0].to_i > 12 || (chef_version[0].to_i == 12 && chef_version[1].to_i >= 8) + raise "FIPS Mode requested but not supported by this client" + end + CONFIG + end + end + describe "verify_api_cert" do it "isn't set in the config_content by default" do expect(bootstrap_context.config_content).not_to include("verify_api_cert") |