Validate and analyze cfengine policy code
cf-promises [OPTION]... [FILE]
cf-promises is a tool for checking CFEngine policy code. It operates by first parsing policy code checing for syntax errors. Second, it validates the integrity of policy consisting of multiple files. Third, it checks for semantic errors, e.g. specific attribute set rules. Finally, cf-promises attempts to expose errors by partially evaluating the policy, resolving as many variable and classes promise statements as possible. At no point does cf-promises make any changes to the system.
Evaluate functions during syntax checking (may catch more run-time errors). Possible values: 'yes', 'no'. Default is 'yes'
Show discovered classes, including those defined in common bundles in policy
Show discovered variables, including those defined without dependency to user-defined classes in policy
Print the help message
Use the specified bundlesequence for verification
Enable debugging output
Output verbose information about the behaviour of the agent
All talk and no action mode - make no changes, only inform of promises not kept
Output the version of the software
Specify an alternative input file than the default
Define a list of comma separated classes to be defined at the start of execution
Define a list of comma separated classes to be undefined at the start of execution
Print basic information about changes made to the system, i.e. promises repaired
Activate internal diagnostics (developers only)
Generate reports about configuration and insert into CFDB
Output the parsed policy. Possible values: 'none', 'cf', 'json'. Default is 'none'. (experimental)
Output a document describing the available syntax elements of CFEngine. Possible values: 'none', 'json'. Default is 'none'.
Ensure full policy integrity checks
Pass comma-separated <warnings>|all to enable non-default warnings, or error=<warnings>|all
Use legacy output format
Enable colorized output. Possible values: 'always', 'auto', 'never'. If option is used, the default value is 'auto'
Tag a directory with promises.cf with cf_promises_validated and cf_promises_release_id
CFEngine provides automated configuration management of large-scale computer systems. A system administrator describes the desired state of a system using CFEngine policy code. The program cf-agent reads policy code and attempts to bring the current system state to the desired state described. Policy code is downloaded by cf-agent from a cf-serverd daemon. The daemon cf-execd is responsible for running cf-agent periodically.
Documentation for CFEngine is available at http://cfengine.com/documentation/.
CFEngine is built on principles from promise theory, proposed by Mark Burgess in 2004. Promise theory is a model of voluntary cooperation between individual, autonomous actors or agents who publish their intentions to one another in the form of promises. A promise is a declaration of intent whose purpose is to increase the recipient's certainty about a claim of past, present or future behaviour. For a promise to increase certainty, the recipient needs to trust the promiser, but trust can also be built on the verification that previous promises have been kept, thus trust plays a symbiotic relationship with promises.
For an introduction to promise theory, please see http://arxiv.org/abs/0810.3294/
cf-promises is part of CFEngine.
Binary packages may be downloaded from http://cfengine.com/downloads/.
The source code is available at http://github.com/cfengine/
Please see the public bug-tracker at http://bug.cfengine.com/.
GitHub pull-requests may be submitted to http://github.com/cfengine/core/.
Mark Burgess and CFEngine AS