CHANGELOG.md

12.5.0

12.4.0

• Phil Dibowitz: Fix multipackage and architectures

• Igor Shpakov: Always run exception handlers Prioritise manual ssh attribute over automatic ones for knife

• Noah Kantrowitz: Cache service_resource_providers for the duration of the run. #2953

• Slava Kardakov: Fix installation of yum packages with version constraints #3155

• Dave Eddy: fix smartos_package for new "pkgin" output, fixes #3112 #3165

• Yukihiko SAWANOBORI: Show Chef version on chef shell prompt

• Jacob Minshall: Ensure suid bit is preserved if group or owner changes

• Tim Smith: Convert wiki links to point to docs.chef.io

• SAWANOBORI Yukihiko: Add Chef::Log::Syslog class for integrating sending logs to syslog

• Pavel Yudin: Ensure LWRP and HWRP @action variable is consistent #3156

• Dan Bjorge: Fix bad Windows securable_resource functional spec assumptions for default file owners/groups #3266

• Yukihiko SAWANOBORI: Pass name by knife cil attribute pr#3195

• Torben Knerr: Allow knife sub-command loader to match platform specific gems. pr#3281

• Steve Lowe: Fix copying ntfs dacl and sacl when they are nil. pr#3066

• pr#3339: Powershell command wrappers to make argument passing to knife/chef-client etc. easier.

• pr#3720: Extract chef's configuration to a separate gem. Code stays in the Chef git repo.

• pr#3321: Add an integration test of chef-client with empty ENV.

• pr#3278: Switch over Windows builds to universal builds.

• pr#2877: Convert bootstrap template to use sh.

• Issue #3316: Fix idempotency issues with the windows_package resource

• pr#3295: Stop mutating new_resource.checksum in file providers. Fixes some ChecksumMismatch exceptions like issue#3168

• pr#3320: Sanitize non-UTF8 characters in the node data before doing node.save(). Works around many UTF8 exception issues reported on node.save().

• Implemented X-Ops-Server-API-Version with a API version of 0, as well as error handling when the Chef server does not support the API version that the client supports.

• pr#3327: Fix unreliable AIX service group parsing mechanism.

• pr#3333: Fix SSL errors when connecting to private Supermarkets

• pr#3340: Allow Event dispatch subscribers to be inspected.

• Issue #3055: Fix regex parsing for recipe failures on Windows

• pr#3345: Windows Event log logger

• pr#3336: Remote file understands UNC paths

• pr#3269: Deprecate automatic recipe DSL for classes in Chef::Resource

• pr#3360: Add check_resource_semantics! lifecycle method to provider

• pr#3344: Rewrite Windows user resouce code to use ffi instead of win32-api

• pr#3318: Modify Windows package provider to allow for url source

• pr#3381: warn on cookbook self-deps

• pr#2312: fix node[:recipes] duplication, add node[:cookbooks] and node[:expanded_run_list]

• pr#3325: enforce passing a node name with validatorless bootstrapping

• pr#3398: Allow spaces in files for the remote_file resource

• Issue #3010 Fixed knife user for use with current and future versions of Chef Server 12, with continued backwards compatible support for use with Open Source Server 11.

• pr#3438 Server API V1 support. Vast improvements to and testing expansion for Chef::User, Chef::ApiClient, and related knife commands. Deprecated Open Source Server 11 user support to the Chef::OscUser and knife osc_user namespace, but with backwards compatible support via knife user.

• Issue #2247: powershell_script returns 0 for scripts with syntax errors

• pr#3080: Issue 2247: powershell_script exit status should be nonzero for syntax errors

• pr#3441: Add powershell_out mixin to core chef

• pr#3448: Fix dsc_resource to work with wmf5 april preview

• pr#3392: Comment up Chef::Client and privatize/deprecate unused things

• pr#3419: Fix cli issue with chef_repo_path when ENV variable is unset

• pr#3358: Separate audit and converge failures

• pr#3431: Fix backups on windows for the file resource

• pr#3397: Validate owner exists in directory resources

• pr#3418: Add shell_out mixin to Chef::Resource class for use in not_if/only_if conditionals, etc.

• pr#3406: Add wide-char 'Environment' to broadcast_env_change mixin for setting windows environment variables

• pr#3442: Add resource_name to top-level Resource class to make defining resources easier.

• pr#3447: Add allowed_actions and default_action to top-level Resource class.

• pr#3475: Fix shell_out timeouts in all package providers to respect timeout property on the resource.

• pr#3477: Update zypper_package to look like the rest of our package classes.

• pr#3483: Allow include_recipe from LWRP providers.

• pr#3495: Make resource name automatically determined from class name, and provide DSL for it.

• pr#3497: Issue 3485: Corruption of node's run_context when non-default guard_interpreter is evaluated

• pr#3299: Remove experimental warning on audit mode

12.3.0

• pr#3160: Use Chef Zero in socketless mode for local mode, add --no-listen flag to disable port binding

• Nolan Davidson: Removed after_created and added test to recipe_spec

• Tim Sogard: Reset $HOME to user running chef-client when running via sudo

• Torben Knerr: Allow for the chef gem installation to succeed without elevated privileges #3126

• Mike Dodge MacOSX services: Load LaunchAgents as console user, adding plist and session_type options.

• Eric Herot Ensure knife ssh doesn't use a non-existant field for hostname #3131

• Tom Hughes Ensure searches progress in the face of incomplete responses #3135

• pr#3162: Add --minimal-ohai flag to client/solo/apply; restricts ohai to only the bare minimum of plugins.

• Ensure link's path attribute works with delayed #3130

• gem_package, chef_gem should not shell out to using https://rubygems.org #2867

• Add dynamic resource resolution similar to dynamic provider resolution

• Add Chef class fascade to internal structures

• Fix nil pointer for windows event logger #3200

• Use partial search for knife status

• Ensure chef/knife properly honours proxy config

12.2.1

• Issue 3153: Fix bug where unset HOME would cause chef to crash

12.2.0

• Update policyfile API usage to match forthcoming Chef Server release
• knife ssh now has an --exit-on-error option that allows users to fail-fast rather than moving on to the next machine.
• migrate macosx, windows, openbsd, and netbsd resources to dynamic resolution
• migrate cron and mdadm resources to dynamic resolution
• Issue 3096 Fix OpenBSD package provider installation issues
• New dsc_resource resource to invoke Powershell DSC resources

12.1.2

• Issue 3022: Homebrew Cask install fails FIXME (remove on 12.2.0 release): 3022 was only merged to 12-stable and #3077 or its descendant should fix this
• Issue 3059: Chef 12.1.1 yum_package silently fails
• Issue 3078: Compat break in audit-mode changes

12.1.1

• Phil Dibowitz: Issue 3008 Allow people to pass in source to package
• Issue 3011 package provider base should include Chef::Mixin::Command as there are still providers that use it.
• Ranjib Dey: Issue 3019 Fix data fetching when explicit attributes are passed

12.1.0

• Andre Elizondo Typo fixes
• Vasiliy Tolstov: cleanup cookbook path from stale files (when using chef-solo with a tarball url)
• Nathan Cerny: Fix rubygems provider to use https instead of http.
• Anshul Sharma removed securerandom patch
• Scott Bonds add package support for OpenBSD
• Lucy Wyman Added support for handling empty version strings to rubygems provider.
• Yulian Kuncheff Correctly set the pre-release identifier during knife bootstrap.
• Anshul Sharma knife node run_list remove now accepts run_list options in the same form as add
• Veres Lajos Typo fixes
• Tim Smith Typo fixes
• Pull 2505 Make Chef handle URIs in a case-insensitive manner
• Phil Dibowitz: Drop SSL warnings now that we have a safe default
• Pull 2684 Remove ole_initialize/uninitialize which cause problems with Ruby >= 2
• BinaryBabel Make knife cookbook site share prefer gnutar when packaging
• Dave Eddy Support arrays for not_if and only_if
• Scott Bonds Add service provider for OpenBSD
• Alex Slynko Change env provider to preserve ordering
• Rob Redpath Add --lockfile opt for chef-client and chef-solo
• Josh Murphy Check cookbooks exist in path(s) before attempting to upload them with --all
• Vasiliy Tolstov add ability to fetch recipes like in chef-solo when using local-mode
• Jan FIX data_bag_item.rb:161: warning: circular argument reference - data_bag
• David Radcliffe add banner for knife serve command
• Yukihiko Sawanobori use Chef::JSONCompat.parse for file_contents
• [Xabier de Zuazo] (https://github.com/zuazo) Remove some simple Ruby 1.8 and 1.9 code
• [Xabier de Zuazo] (https://github.com/zuazo) Remove all RSpec test filters related to Ruby 1.8 and 1.9
• [Xabier de Zuazo] (https://github.com/zuazo) Fix knife cookbook upload messages
• [David Crowder] (https://github.com/david-crowder) refactor to use shell_out in rpm provider
• Phil Dibowitz: Multi-package support
• Naotoshi Seo: Support HTTP/FTP source on rpm_package add json_attribs option for chef-apply command allow_downgrade in rpm_package
• AJ Christensen: Isolate/fix the no-fork fault. Issue 2709
• Cory Stephenson: Remove comments of a service being enabled/disabled in FreeBSD. Fixes #1791
• Will Albenzi: CHEF-4591: Knife commands to manipulate env_run_list on nodes
• Jon Cowie: CHEF-2911: Fix yum_package provider to respect version requirements in package name and version attribute
• Anshul Sharma:
  • Node::Attribute to_s should print merged attributes Issue 1526
  • Access keys attribute in knife show list incorrect information Issue 1974
  • Guard interpreter loading incorrect resource Issue 2683

Chef Contributions

• ruby 1.9.3 support is dropped
• Update Chef to use RSpec 3.2
• Cleaned up script and execute provider + specs
• Added deprecation warnings around the use of command attribute in script resources
• Audit mode feature added - see the RELEASE_NOTES for details
• shell_out now sets LANGUAGE and LANG to the Chef::Config[:internal_locale] in addition to LC_ALL forcing
• chef_gem supports a compile_time flag and will warn if it is not set (behavior will change in the future)
• suppress CHEF-3694 warnings on the most trivial resource cloning
• fixed bugs in the deep_merge_cache logic introduced in 12.0.0 around node['foo'] vs node[:foo] vs. node.foo
• add include_recipe "::recipe" sugar to reference a recipe in the current cookbook
• Add --proxy-auth option to knife raw
• added Chef::Org model class for Chef Organizations in Chef 12 Server
• powershell_script should now correctly get the exit code for scripts that it runs. See Issue 2348
• Useradd functional tests fail randomly
• Add comments to trusted_certs_content
• fixes a bug where providers would not get defined if a top-level ruby constant with the same name was already defined (ark cookbook, chrome cookbook)
• Fix a bug in reboot, ips_package, paludis_package, windows_package resources where action :nothing was not permitted
• Use Chef::ApiClient#from_hash in knife client create to avoid json_class requirement. Issue 2542
• Add support for policyfile native API (preview). These APIs are unstable, and you may be forced to delete data uploaded to them in a future release, so only use them for demonstration purposes.
• Deprecation warning for 'knife cookbook test'
• dsc_script should now correctly honor timeout. See Issue 2831
• Added an imports attribute to dsc_script. This attribute allows you to specify DSC resources that need to be imported for your script.
• Fixed error where guard resources (using :guard_interpreter) were not ran in why_run mode Issue 2694
• Add verify method to File resource per RFC027
• Move supermarket.getchef.com to supermarket.chef.io
• Check with AccessCheck for permission to write to directory on Windows
• Add declare_resource/build_resource comments, fix faulty ||=
• Knife bootstrap creates a client and ships it to the node to implement validatorless bootstraps
• Knife bootstrap can use the client it creates to setup chef-vault items for the node
• windows service now has a configurable timeout

12.0.3

• Phil Dibowitz: Issue 2594 Restore missing require in digester.

12.0.2

• Issue 2578 Check that installed is not empty for keg_only formula in Homebrew provider
• Issue 2609 Resolve the circular dependency between ProviderResolver and Resource.
• Issue 2596 Fix nodes not writing to disk
• Issue 2580 Make sure the relative paths are preserved when using link resource.
• Pull 2630 Improve knife's SSL error messaging
• Issue 2606 chef 12 ignores default_release for apt_package
• Issue 2602 Fix subscribes resource notifications.
• Issue 2578 Check that installed is not empty for keg_only formula in Homebrew provider.
• gh2k: Issue 2625 Fix missing shell_out! for windows_package resource
• BackSlasher: Issue 2634 Fix option ':command' is not a valid option error in subversion provider.
• Seth Vargo: Issue 2345 Allow knife to install cookbooks with metadata.json.

12.0.1

• Issue 2552 Create constant for LWRP before calling provides
• Issue 2545 path attribute of execute resource is restored to provide backwards compatibility with Chef 11.
• Issue 2565 Fix Chef::Knife::Core::BootstrapContext constructor for knife-windows compat.
• Issue 2566 Make sure Client doesn't raise error when interval is set on Windows.
• Issue 2560 Fix uninitialized constant Windows::Constants in windows_eventlog.
• Issue 2563 Make sure the Chef Client rpm packages are signed with GPG keys correctly.

12.0.0

• Jesse Hu: retry on HTTP 50X Error when calling Chef REST API
• Nolan Davidson: The chef-apply command now prints usage information when called without arguments
• Kazuki Saito: CHEF-4933: idempotency fixes for ifconfig provider
• Kirill Shirinkin: The knife bootstrap command expands the path of the secret-file
• Malte Swart: [CHEF-4101] DeepMerge - support overwriting hash values with nil
• James Belchamber: Mount provider remount action now honours options
• Mark Gibbons: Fix noauto support in Solaris Mount Provider
• Jordan Evans: support version constraints in value_for_platform
• Yukihiko Sawanobori: Add environment resource attribute to scm resources
• Grzesiek Kolodziejczyk: Use thread-safe OpenSSL::Digest instead of Digest
• Grzesiek Kolodziejczyk: Chef::Digester converted to thread-safe Singleton mixin.
• Vasiliy Tolstov: Reload systemd service only if it's running, otherwise start.
• Chris Jerdonek: knife diagnostic messages sent to stdout instead of stderr
• Xabier de Zuazo: Remove the unused StreamingCookbookUploader class (CHEF-4586)
• Jacob Vosmaer: Fix creation of non-empty FreeBSD groups (#1698)
• Nathan Huff: Check local repository for ips package installs (#1703)
• Sean Clemmer: Fix "cron" resource handling of special strings (e.g. @reboot, @yearly) (#1708)
• Phil Dibowitz: 'group' provider on OSX properly uses 'dscl' to determine existing groups
• Hugo Lopes Tavares: Catch StandardError in Chef::ResourceReporter#post_reporting_data (Issue 1550).
• Daniel O'Connor: Fix regex causing DuplicateRole error (Issue 1739).
• Xeron: Ability to specify an array for data_bag_path. (CHEF-3399, CHEF-4753)
• Jordan: Use Systemd for recent Fedora and RHEL 7.
• Xabier de Zuazo: Encrypted data bags should use different HMAC key and include the IV in the HMAC (CHEF-5356).
• Pierre Ynard: Don't modify variable passed to env resource when updating.
• Chris Aumann: Add "force" attribute to resource/user, pass "-f" to userdel. (Issue 1601)
• Brian Cobb: Chef::VersionConstraint#to_s should accurately reflect constraint's behavior.
• Kevin Graham: Do not override ShellOut:live_stream if already set.
• Mike Heijmans: Change knife option --force to --delete-validators. (Issue 1652)
• Pavel Yudin: Add Parallels Cloud Server (PCS) platform support.
• tbe: Minor fixes for the Paludis package provider:
  • only search for non-masked packages,
  • increase command timeout length for package installation.
• sawanoboly: Use shared_path for deploy resource.
• Victor Hahn: Add template syntax check to files in the templates/ dir only.
• Jordan: Allow git provider to checkout existing branch names.
• Eric Herot: Add whitespace boundaries to some mount point references in mount provider.
• Dave Eddy: Improve the regex for /etc/rc.conf for the FreeBSD service provider
• Stanislav Bogatyrev: Fetch recipe_url before loading json_attribs in chef-solo (CHEF-5075)
• Mal Graty: Workaround for a breaking change in git's shallow-clone behavior. (Issue 1563)
• Dave Eddy: Fix version detection in FreeBSD pkgng provider. (PR 1980)
• Dan Rathbone: Fixed gem_package resource to be able to upgrade gems when version is not set.
• Jean Mertz: Made Chef Client load library folder recursively.
• Eric Saxby: Made Chef Client read the non-root crontab entries as the user specified in the resource.
• sawanoboly: Added --dry-run option to knife cookbook site share which displays the files that are to be uploaded to Supermarket.
• Sander van Harmelen: Fixed Chef::HTTP to be able to follow relative redirects.
• Cory Stephenson: Fixed FreeBSD port package provider to interpret FreeBSD version 10 correctly.
• Brett Chalupa: Added source_url and issues_url options to metadata to be used by Supermarket.
• Anshul Sharma: Fixed Chef Client to use the :client_name instead of :node_name during initial client registration.
• tbe: Fixed Paludis package provider to be able to interpret the package category.
• David Workman: Added a more clear error message to chef-apply when no recipe is given.
• Joe Nuspl: Added support for sensitive property to the execute resource.
• Nolan Davidson: Added an error message to prevent unintentional running of exec() in recipes.
• wacky612: Fixed a bug in pacman package provider that was preventing the installation of bind package.
• Ionuț Arțăriși: Changed the default service provider to systemd on SLES versions 12 and higher.
• Ionuț Arțăriși: Changed the default group provider to gpasswd on SLES versions 12 and higher.
• Noah Kantrowitz: Implemented RFC017 - File Specificity Overhaul.
• James Bence: Improved the reliability of Git provider by making it to be more specific when selecting tags.
• Jean Mertz: Changed knife upload not to validate the ruby files under files & templates directories.
• Alex Pop: Made knife cookbook create to display the directory of the cookbook that is being created.
• Alex Pop: Fixed the information debug output for the configuration file being used when running knife.
• Martin Smith: Changed knife cookbook site share to make category an optional parameter when uploading cookbooks. It is still required when the cookbook is being uploaded for the first time but on the consequent uploads existing category of the cookbook will be used.
• Nicolas DUPEUX: Added JSON output to knife status command. --medium and --long output formatting parameters are now supported in knife status.
• Trevor North: Removed dead code from knife ssh.
• Nicolas Szalay: Fixed a bug preventing mounting of cgroup type devices in the mount provider.
• Anshul Sharma: Fixed inconsistent globbing in knife from file command.
• Nicolas Szalay: Made user prompts in knife more beautiful by adding a space after Y/N prompts.
• Ivan Larionov: Made empty run_list to produce an empty array when using node.to_hash.
• Siddheshwar More: Fixed a bug in knife bootstrap that caused config options to override command line options.
• Thiago Oliveira: Fixed a bug in Mac OSX group provider and made it idempotent.
• liseki: Fixed a bug in why-run mode for freebsd service resources without configured init scripts.
• liseki: Fixed a bug in freebsd service providers to load the status correctly.

Chef Contributions

• ruby 1.9.3 support is dropped
• Added RFC-023 Chef 12 Attribute Changes (https://github.com/opscode/chef-rfc/blob/master/rfc023-chef-12-attributes-changes.md)
• Added os/platform_family options to provides syntax on the Chef::Resource DSL
• Added provides methods to the Chef::Provider DSL
• Added supported?(resource, action) class method to all Providers for late-evaluation if a provider can handle a resource
• Added ProviderResolver feature to handle late resolution of providers based on what kinds of support is in the base operating system.
• Partial Deprecation of Chef::Platform provider mapping. The static mapping will be removed as Chef-12 progresses and the hooks will be completely dropped in Chef-13.
• Default guard_interpreter for powershell_script resource set to :powershell_script, for batch to :batch
• Recipe definition now returns the retval of the definition
• Add support for Windows 10 to version helper.
• dsc_script resource should honor configuration parameters when configuration_data_script is not set (Issue #2209)
• Ruby has been updated to 2.1.3 along with rubygems update to 2.4.2
• Removed shelling out to erubis/ruby for syntax checks (>= 1.9 has been able to do this in the ruby vm itself for awhile now and we've dropped 1.8.7 which could not do this and had to shell_out)
• Report the request and response when a non-200 error code happens
• [FEATURE] Upgrade knife upload and knife download to download everything in an organization, now including the organization definition itself (knife download /org.json) and the invitations and member list (knife download /invitations.json and knife download /members.json). Should be compatible with knife-ec-backup.
• Make default Windows paths more backslashy
• knife now prefers to load config.rb in preference to knife.rb; knife.rb will be used if config.rb is not found.
• Fixed Config[:cache_path] to use path_join()
• Updated chef-zero to 3.0, so that client tests can be run against Enterprise Chef as well as Open Source.
• knife cookbook site download/list/search/share/show/unshare now uses supermerket.getchef.com urls
• added Chef::ResourceCollection#insert_at API to the ResourceCollection
• http_proxy and related config vars no longer clobber already set ENV vars
• all http_proxy configs now set lowercase + uppercase versions of ENV vars
• https_proxy/ftp_proxy support setting http:// URLs (and whatever mix and match makes sense)
• End-to-end tests for Ubuntu 12.04
• Only run end-to-end tests when secure environment variables are present.
• Remove recipe DSL from base provisioner (Issue 1446).
• Enable client-side key generation by default. (Issue 1711)
• CookbookSiteStreamingUploader now uses ssl_verify_mode config option (Issue 1518).
• chef/json_compat now throws its own exceptions not JSON gem exceptions
• Modify action for env raises Chef::Exceptions::Env exception on Windows (Chef Issues 1754)
• Fix a bug in the experimental Policyfile mode that caused errors when using templates.
• Disable JSON encoding of request body when non-JSON content type is specified.
• Clean up FileVendor and CookbookUploader internal APIs
• log resource now marks itself as supporting why-run
• http_request no longer appends "?message=" query string to GET and HEAD requests
• added shell_out commands directly to the recipe DSL
• cookbook synchronizer deletes old files from cookbooks
• do not clear file cache when override run list is set (CHEF-3684)
• ruby 1.8.7/1.9.1/1.9.2 support is dropped
• set no_lazy_load to true (CHEF-4961)
• set file_stating_uses_destdir config option default to true (CHEF-5040)
• remove dependency on rest-client gem
• Add method shell_out_with_systems_locale to ShellOut.
• chef-repo rake tasks are deprecated; print relevant information for each one.
• Fix RPM package version detection (Issue 1554)
• Don't override :default provider map if :default passed as platform (OC-11667).
• Fix SuSE package removal failure (Issue 1732).
• Enable Travis to run Test Kitchen with Kitchen EC2.
• Fix a bug in reporting not to post negative duration values.
• Add password setting support for Mac 10.7, 10.8 and 10.9 to the dscl user provider.
• ChefSpec can find freebsd_package resource correctly when a package resource is declared on Freebsd.
• Autodetect/decrypt encrypted data bag items with data_bag_item dsl method. (Issue 1837, Issue 1849)
• windows_user: look up username instead of resource name (Issue #1705)
• Remove the unused bootstrap templates that install chef from rubygems
• Remove the Chef 10 functionality from bootstrap.
• Deprecate --distro / --template_file options in favor of --boostrap-template
• Add :node_ssl_verify_mode & :node_verify_api_cert options to bootstrap to be able to configure these settings on the bootstrapped node.
• Add partial_search dsl method to Chef::Search::Query, add result filtering to search.
• Transfer trusted certificates under :trusted_certs_dir during bootstrap.
• Set :ssl_verify_mode to :verify_peer by default.
• Add homebrew provider for package resource, use it by default on OS X (Issue #1709)
• Add escape_glob method to PathHelper, update glob operations.
• Verify x509 properties of certificates in the :trusted_certs_dir during knife ssl check.
• Disable unforked interval chef-client runs.
• Removed dependencies on the 'json' gem, replaced with ffi-yajl. Use Chef::JSONCompat library for parsing and printing.
• Restore the deprecation logic of #valid_actions in LWRPs until Chef 13.
• Now that we don't allow unforked chef-client interval runs, remove the reloading of previously defined LWRPs.
• Use shell_out to determine Chef::Config[:internal_locale], fix CentOS locale detection bug.
• only_if and not_if attributes of execute resource now inherits the parent resource's attributes when set to a String.
• Retain the original value of retries for resources and display the original value when the run fails.
• Added service provider for AIX.
• The Windows env provider will delete elements even if they are only in ENV (and not in the registry)
• Allow events to be logged to Windows Event Log
• Fixed bug in env resource where a value containing the delimiter could never correctly match the existing values
• More intelligent service check for systemd on Ubuntu 14.10.

11.16.4

• Windows omnibus installer security updates for redistributed bash.exe / sh.exe vulnerabilities ("Shellshock") CVE-2014-6271, CVE-2014-6271, CVE-2014-6278, CVE-2014-7186, CVE-2014-7187.
• Fix bug on Windows where using the env resource on path could render the path unusable.
• Chef Client now retries when it gets 50X from Chef Server.
• Chef Client 11.16.4 can use the policyfiles generated with Chef DK 0.3.0.

11.16.2

• Phil Dibowitz: Fix a regression in whyrun_safe_ruby_block.

11.16.0

• Fix a bug in user dscl provider to enable managing password and other properties at the same time.
• Add dsc_script resource to Chef for PowerShell DSC support on Windows

11.14.6:

• Modify action for env raises Chef::Exceptions::Env exception on Windows (Chef Issues 1754)
• Fix RPM package version detection (Issue 1554)
• Fix a bug in reporting not to post negative duration values.
• Add password setting support for Mac 10.7, 10.8 and 10.9 to the dscl user provider.
• ChefSpec can find freebsd_package resource correctly when a package resource is declared on Freebsd.
• http_proxy and related config vars no longer clobber already set ENV vars
• all http_proxy configs now set lowercase + uppercase versions of ENV vars
• https_proxy/ftp_proxy support setting http:// URLs (and whatever mix and match makes sense)

11.14.2

• Jess Mink: Symlinks to directories should be swingable on windows (CHEF-3960)

• Phil Dibowitz: SIGTERM will once-more kill a non-daemonized chef-client (CHEF-5172)

• Pierre Ynard: chef-service-manager should run as a non-interactive service (CHEF-5150)

• Tensibai Zhaoying: Fix file:// URI support in remote_file on windows (CHEF-4472)

• John Dyer: Catch HTTPServerException for 404 in remote_file retry (CHEF-5116)

• Pavel Yudin: Providers are now set correctly on CloudLinux. (CHEF-5182)

• Joe Richards: Made -E option to work with single lettered environments. (CHEF-3075)

• Jimmy McCrory: Added a 'knife node environment set' command. (CHEF-1910)

• Hongbin Lu: Made bootstrap report authentication exceptions. (CHEF-5161)

• Richard Manyanza: Made freebsd_package resource use the brand new "pkgng" package manager when available.(CHEF-4637)

• Nikhil Benesch: Implemented a threaded download queue for synchronizing cookbooks. (CHEF-4423)

• Chulki Lee: Raise an error when source is accidentally passed to apt_package (CHEF-5113)

• Cam Cope: Add an open_timeout when opening an http connection (CHEF-5152)

• Sander van Harmelen: Allow environment variables set on Windows to be used immediately (CHEF-5174)

• Luke Amdor: Add an option to configure the chef-zero port (CHEF-5228)

• Ricardo Signes: Added support for the usermod provider on OmniOS

• Anand Suresh: Only modify password when one has been specified. (CHEF-5327)

• Stephan Renatus: Add exception when JSON parsing fails. (CHEF-5309)

• Xabier de Zuazo: OK to exclude space in dependencies in metadata.rb. (CHEF-4298)

• Łukasz Jagiełło: Allow cookbook names with leading underscores. (CHEF-4562)

• Michael Bernstein: Add Code Climate badge to README.

• Phil Sturgeon: Documentation that -E is not respected by knife ssh [search]. (CHEF-4778)

• Stephan Renatus: Fix resource_spec.rb.

• Sander van Harmelen: Ensure URI compliant urls. (CHEF-5261)

• Robby Dyer: Correctly detect when rpm_package does not exist in upgrade action. (CHEF-5273)

• Sergey Sergeev: Hide sensitive data output on chef-client error (CHEF-5098)

• Mark Vanderwiel: Add config option :yum-lock-timeout for yum-dump.py

• Peter Fern: Convert APT package resource to use provides :package, add timeout parameter.

• Xabier de Zuazo: Fix Chef::User#list API error when inflate=true. (CHEF-5328)

• Raphaël Valyi: Use git resource status checking to reduce shell_out system calls.

• Eric Krupnik: Added .project to git ignore list.

• Ryan Cragun: Support override_runlist CLI option in shef/chef-shell. (CHEF-5314)

• Cam Cope: Fix updating user passwords on Solaris. (CHEF-5247)

• Ben Somers: Enable storage of roles in subdirectories for chef-solo. (CHEF-4193)

• Robert Tarrall: Fix Upstart provider with parameters. (CHEF-5265)

• Klaas Jan Wierenga: Don't pass on default HTTP port(80) in Host header. (CHEF-5355)

• MarkGibbons: Allow for undefined solaris services in the service resource. (CHEF-5347)

• Allan Espinosa: Properly knife bootstrap on ArchLinux. (CHEF-5366)

• Matt Hoyle: Made windows service resource to handle transitory states. (CHEF-5319, CHEF-4791)

• Brett cave: Add Dir.pwd as fallback for default user_home if home directory is not set. (CHEF-5365)

• Caleb Tennis: Add support for automatically using the Systemd service provider when available. (CHEF-3637)

• Matt Hoyle: Add timeout for Chef::Provider::Service::Windows. (CHEF-1165)

• Jesse Hu: knife[:attribute] in knife.rb should not override --attribute (CHEF-5158)

• Vasiliy Tolstov: Added the initial exherbo linux support for Chef providers.

• Fix knife cookbook site share on windows (CHEF-4994)

• YAJL Allows Invalid JSON File Sending To The Server (CHEF-4899)

• YAJL Silently Ingesting Invalid JSON and "Normalizing" Incorrectly (CHEF-4565)

• Update rpm provider checking regex to allow for special characters (CHEF-4893)

• Allow for spaces in selinux controlled directories (CHEF-5095)

• Windows batch resource run action fails: " TypeError: can't convert nil into String" (CHEF-5287)

• Log resource always triggers notifications (CHEF-4028)

• Prevent tracing? from throwing an exception when first starting chef-shell.

• Use Upstart provider on Ubuntu 13.10+. (CHEF-5276)

• Cleaned up mount provider superclass

• Added "knife serve" to bring up local mode as a server

• Print nested LWRPs with indentation in doc formatter output

• Make local mode stable enough to run chef-pedant

• Wrap code in block context when syntax checking so return is valid (CHEF-5199)

• Quote git resource rev_pattern to prevent glob matching files (CHEF-4940)

• User resource now only prints the name during why-run runs. (CHEF-5180)

• Set --run-lock-timeout to wait/bail if another client has the runlock (CHEF-5074)

• remote_file's source attribute does not support DelayedEvaluators (CHEF-5162)

• option attribute of mount resource now supports lazy evaluation. (CHEF-5163)

• force_unlink now only unlinks if the file already exists. (CHEF-5015)

• chef_gem resource now uses omnibus gem binary. (CHEF-5092)

• chef-full template gets knife options to override install script url, add wget/curl cli options, and custom install commands (CHEF-4697)

• knife now bootstraps node with the latest current version of chef-client. (CHEF-4911)

• Add config options for attribute whitelisting in node.save. (CHEF-3811)

• Use user's .chef as a fallback cache path if /var/chef is not accessible. (CHEF-5259)

• Fixed Ruby 2.0 Windows compatibility issues around ruby-wmi gem by replacing it with wmi-lite gem.

• Set proxy environment variables if preset in config. (CHEF-4712)

• Automatically enable verify_api_cert when running chef-client in local-mode. (Chef Issues 1464)

• Add helper to warn for broken [windows] paths. (CHEF-5322)

• Send md5 checksummed data for registry key if data type is binary, dword, or qword. (Chef-5323)

• Add warning if host resembles winrm command and knife-windows is not present.

• Use FFI binders to attach :SendMessageTimeout to avoid DL deprecation warning. (ChefDK Issues 69)

• Use 'guest' user on AIX for RSpec tests. (OC-9954)

• Added DelayedEvaluator support in LWRP using the lazy {} key

• Fixed a bug where nested resources that inherited from Resource::LWRPBase would not share the same actions/default_action as their parent

• Raise error if a guard_interpreter is specified and a block is passed to a guard (conditional)

• Allow specifying a guard_interpreter after a conditional on a resource (Fixes #1943)

• Windows package type should be a symbol (Fixes #1997)