RubyGems - activesupport - Versions diffs - 4.2.11.1 → 6.1.7.3 - Mend

activesupport 4.2.11.1 → 6.1.7.3

Potentially problematic release.

This version of activesupport might be problematic. Click here for more details.

Files changed (272) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +464 -391
data/MIT-LICENSE +2 -2
data/README.rdoc +7 -7
data/lib/active_support/actionable_error.rb +48 -0
data/lib/active_support/all.rb +5 -3
data/lib/active_support/array_inquirer.rb +50 -0
data/lib/active_support/backtrace_cleaner.rb +34 -6
data/lib/active_support/benchmarkable.rb +6 -4
data/lib/active_support/builder.rb +3 -1
data/lib/active_support/cache/file_store.rb +61 -55
data/lib/active_support/cache/mem_cache_store.rb +115 -100
data/lib/active_support/cache/memory_store.rb +81 -58
data/lib/active_support/cache/null_store.rb +11 -7
data/lib/active_support/cache/redis_cache_store.rb +493 -0
data/lib/active_support/cache/strategy/local_cache.rb +90 -42
data/lib/active_support/cache/strategy/local_cache_middleware.rb +10 -9
data/lib/active_support/cache.rb +386 -225
data/lib/active_support/callbacks.rb +661 -594
data/lib/active_support/concern.rb +80 -7
data/lib/active_support/concurrency/load_interlock_aware_monitor.rb +35 -0
data/lib/active_support/concurrency/share_lock.rb +226 -0
data/lib/active_support/configurable.rb +16 -17
data/lib/active_support/configuration_file.rb +51 -0
data/lib/active_support/core_ext/array/access.rb +41 -1
data/lib/active_support/core_ext/array/conversions.rb +24 -20
data/lib/active_support/core_ext/array/extract.rb +21 -0
data/lib/active_support/core_ext/array/extract_options.rb +2 -0
data/lib/active_support/core_ext/array/grouping.rb +11 -18
data/lib/active_support/core_ext/array/inquiry.rb +19 -0
data/lib/active_support/core_ext/array/wrap.rb +7 -4
data/lib/active_support/core_ext/array.rb +9 -6
data/lib/active_support/core_ext/benchmark.rb +5 -3
data/lib/active_support/core_ext/big_decimal/conversions.rb +10 -12
data/lib/active_support/core_ext/big_decimal.rb +3 -1
data/lib/active_support/core_ext/class/attribute.rb +52 -48
data/lib/active_support/core_ext/class/attribute_accessors.rb +3 -1
data/lib/active_support/core_ext/class/subclasses.rb +18 -25
data/lib/active_support/core_ext/class.rb +4 -3
data/lib/active_support/core_ext/date/acts_like.rb +3 -1
data/lib/active_support/core_ext/date/blank.rb +14 -0
data/lib/active_support/core_ext/date/calculations.rb +17 -14
data/lib/active_support/core_ext/date/conversions.rb +27 -24
data/lib/active_support/core_ext/date/zones.rb +4 -2
data/lib/active_support/core_ext/date.rb +6 -4
data/lib/active_support/core_ext/date_and_time/calculations.rb +167 -65
data/lib/active_support/core_ext/date_and_time/compatibility.rb +19 -3
data/lib/active_support/core_ext/date_and_time/zones.rb +12 -13
data/lib/active_support/core_ext/date_time/acts_like.rb +4 -2
data/lib/active_support/core_ext/date_time/blank.rb +14 -0
data/lib/active_support/core_ext/date_time/calculations.rb +37 -19
data/lib/active_support/core_ext/date_time/compatibility.rb +8 -6
data/lib/active_support/core_ext/date_time/conversions.rb +16 -13
data/lib/active_support/core_ext/date_time.rb +7 -5
data/lib/active_support/core_ext/digest/uuid.rb +8 -5
data/lib/active_support/core_ext/digest.rb +3 -0
data/lib/active_support/core_ext/enumerable.rb +186 -22
data/lib/active_support/core_ext/file/atomic.rb +38 -31
data/lib/active_support/core_ext/file.rb +3 -1
data/lib/active_support/core_ext/hash/conversions.rb +62 -41
data/lib/active_support/core_ext/hash/deep_merge.rb +9 -13
data/lib/active_support/core_ext/hash/deep_transform_values.rb +46 -0
data/lib/active_support/core_ext/hash/except.rb +13 -10
data/lib/active_support/core_ext/hash/indifferent_access.rb +4 -3
data/lib/active_support/core_ext/hash/keys.rb +20 -43
data/lib/active_support/core_ext/hash/reverse_merge.rb +5 -2
data/lib/active_support/core_ext/hash/slice.rb +8 -29
data/lib/active_support/core_ext/hash.rb +10 -9
data/lib/active_support/core_ext/integer/inflections.rb +3 -1
data/lib/active_support/core_ext/integer/multiple.rb +3 -1
data/lib/active_support/core_ext/integer/time.rb +11 -18
data/lib/active_support/core_ext/integer.rb +5 -3
data/lib/active_support/core_ext/kernel/concern.rb +5 -1
data/lib/active_support/core_ext/kernel/reporting.rb +4 -84
data/lib/active_support/core_ext/kernel/singleton_class.rb +2 -0
data/lib/active_support/core_ext/kernel.rb +5 -5
data/lib/active_support/core_ext/load_error.rb +3 -22
data/lib/active_support/core_ext/marshal.rb +10 -8
data/lib/active_support/core_ext/module/aliasing.rb +6 -44
data/lib/active_support/core_ext/module/anonymous.rb +12 -1
data/lib/active_support/core_ext/module/attr_internal.rb +8 -9
data/lib/active_support/core_ext/module/attribute_accessors.rb +63 -69
data/lib/active_support/core_ext/module/attribute_accessors_per_thread.rb +148 -0
data/lib/active_support/core_ext/module/concerning.rb +19 -14
data/lib/active_support/core_ext/module/delegation.rb +164 -51
data/lib/active_support/core_ext/module/deprecation.rb +4 -2
data/lib/active_support/core_ext/module/introspection.rb +23 -22
data/lib/active_support/core_ext/module/redefine_method.rb +40 -0
data/lib/active_support/core_ext/module/remove_method.rb +8 -3
data/lib/active_support/core_ext/module.rb +13 -11
data/lib/active_support/core_ext/name_error.rb +51 -4
data/lib/active_support/core_ext/numeric/bytes.rb +22 -0
data/lib/active_support/core_ext/numeric/conversions.rb +133 -136
data/lib/active_support/core_ext/numeric/time.rb +35 -23
data/lib/active_support/core_ext/numeric.rb +5 -3
data/lib/active_support/core_ext/object/acts_like.rb +12 -1
data/lib/active_support/core_ext/object/blank.rb +27 -3
data/lib/active_support/core_ext/object/conversions.rb +6 -4
data/lib/active_support/core_ext/object/deep_dup.rb +13 -4
data/lib/active_support/core_ext/object/duplicable.rb +13 -93
data/lib/active_support/core_ext/object/inclusion.rb +5 -3
data/lib/active_support/core_ext/object/instance_variables.rb +3 -1
data/lib/active_support/core_ext/object/json.rb +63 -21
data/lib/active_support/core_ext/object/to_param.rb +3 -1
data/lib/active_support/core_ext/object/to_query.rb +10 -5
data/lib/active_support/core_ext/object/try.rb +81 -23
data/lib/active_support/core_ext/object/with_options.rb +16 -3
data/lib/active_support/core_ext/object.rb +14 -13
data/lib/active_support/core_ext/range/compare_range.rb +82 -0
data/lib/active_support/core_ext/range/conversions.rb +37 -15
data/lib/active_support/core_ext/range/each.rb +18 -17
data/lib/active_support/core_ext/range/include_time_with_zone.rb +28 -0
data/lib/active_support/core_ext/range/overlaps.rb +2 -0
data/lib/active_support/core_ext/range.rb +7 -4
data/lib/active_support/core_ext/regexp.rb +10 -1
data/lib/active_support/core_ext/securerandom.rb +45 -0
data/lib/active_support/core_ext/string/access.rb +9 -18
data/lib/active_support/core_ext/string/behavior.rb +3 -1
data/lib/active_support/core_ext/string/conversions.rb +8 -4
data/lib/active_support/core_ext/string/exclude.rb +2 -0
data/lib/active_support/core_ext/string/filters.rb +48 -6
data/lib/active_support/core_ext/string/indent.rb +6 -4
data/lib/active_support/core_ext/string/inflections.rb +102 -26
data/lib/active_support/core_ext/string/inquiry.rb +4 -1
data/lib/active_support/core_ext/string/multibyte.rb +18 -9
data/lib/active_support/core_ext/string/output_safety.rb +125 -40
data/lib/active_support/core_ext/string/starts_ends_with.rb +4 -2
data/lib/active_support/core_ext/string/strip.rb +6 -5
data/lib/active_support/core_ext/string/zones.rb +4 -2
data/lib/active_support/core_ext/string.rb +15 -13
data/lib/active_support/core_ext/symbol/starts_ends_with.rb +14 -0
data/lib/active_support/core_ext/symbol.rb +3 -0
data/lib/active_support/core_ext/time/acts_like.rb +3 -1
data/lib/active_support/core_ext/time/calculations.rb +137 -53
data/lib/active_support/core_ext/time/compatibility.rb +4 -2
data/lib/active_support/core_ext/time/conversions.rb +22 -13
data/lib/active_support/core_ext/time/zones.rb +41 -7
data/lib/active_support/core_ext/time.rb +7 -6
data/lib/active_support/core_ext/uri.rb +11 -8
data/lib/active_support/core_ext.rb +3 -1
data/lib/active_support/current_attributes/test_helper.rb +13 -0
data/lib/active_support/current_attributes.rb +210 -0
data/lib/active_support/dependencies/autoload.rb +2 -0
data/lib/active_support/dependencies/interlock.rb +57 -0
data/lib/active_support/dependencies/zeitwerk_integration.rb +120 -0
data/lib/active_support/dependencies.rb +241 -175
data/lib/active_support/deprecation/behaviors.rb +58 -12
data/lib/active_support/deprecation/constant_accessor.rb +52 -0
data/lib/active_support/deprecation/disallowed.rb +56 -0
data/lib/active_support/deprecation/instance_delegator.rb +16 -2
data/lib/active_support/deprecation/method_wrappers.rb +62 -21
data/lib/active_support/deprecation/proxy_wrappers.rb +81 -30
data/lib/active_support/deprecation/reporting.rb +81 -18
data/lib/active_support/deprecation.rb +17 -9
data/lib/active_support/descendants_tracker.rb +61 -9
data/lib/active_support/digest.rb +22 -0
data/lib/active_support/duration/iso8601_parser.rb +123 -0
data/lib/active_support/duration/iso8601_serializer.rb +59 -0
data/lib/active_support/duration.rb +364 -39
data/lib/active_support/encrypted_configuration.rb +45 -0
data/lib/active_support/encrypted_file.rb +117 -0
data/lib/active_support/environment_inquirer.rb +20 -0
data/lib/active_support/evented_file_update_checker.rb +170 -0
data/lib/active_support/execution_wrapper.rb +132 -0
data/lib/active_support/executor.rb +8 -0
data/lib/active_support/file_update_checker.rb +62 -37
data/lib/active_support/fork_tracker.rb +64 -0
data/lib/active_support/gem_version.rb +7 -5
data/lib/active_support/gzip.rb +7 -5
data/lib/active_support/hash_with_indifferent_access.rb +171 -48
data/lib/active_support/i18n.rb +9 -6
data/lib/active_support/i18n_railtie.rb +47 -16
data/lib/active_support/inflections.rb +13 -11
data/lib/active_support/inflector/inflections.rb +58 -14
data/lib/active_support/inflector/methods.rb +186 -169
data/lib/active_support/inflector/transliterate.rb +83 -33
data/lib/active_support/inflector.rb +7 -5
data/lib/active_support/json/decoding.rb +32 -30
data/lib/active_support/json/encoding.rb +22 -61
data/lib/active_support/json.rb +4 -2
data/lib/active_support/key_generator.rb +11 -43
data/lib/active_support/lazy_load_hooks.rb +53 -20
data/lib/active_support/locale/en.rb +33 -0
data/lib/active_support/locale/en.yml +9 -3
data/lib/active_support/log_subscriber/test_helper.rb +14 -12
data/lib/active_support/log_subscriber.rb +52 -19
data/lib/active_support/logger.rb +10 -24
data/lib/active_support/logger_silence.rb +14 -20
data/lib/active_support/logger_thread_safe_level.rb +56 -10
data/lib/active_support/message_encryptor.rb +167 -57
data/lib/active_support/message_verifier.rb +151 -18
data/lib/active_support/messages/metadata.rb +80 -0
data/lib/active_support/messages/rotation_configuration.rb +23 -0
data/lib/active_support/messages/rotator.rb +57 -0
data/lib/active_support/multibyte/chars.rb +35 -80
data/lib/active_support/multibyte/unicode.rb +22 -330
data/lib/active_support/multibyte.rb +4 -2
data/lib/active_support/notifications/fanout.rb +125 -23
data/lib/active_support/notifications/instrumenter.rb +98 -16
data/lib/active_support/notifications.rb +82 -14
data/lib/active_support/number_helper/number_converter.rb +17 -16
data/lib/active_support/number_helper/number_to_currency_converter.rb +9 -14
data/lib/active_support/number_helper/number_to_delimited_converter.rb +11 -4
data/lib/active_support/number_helper/number_to_human_converter.rb +14 -11
data/lib/active_support/number_helper/number_to_human_size_converter.rb +12 -10
data/lib/active_support/number_helper/number_to_percentage_converter.rb +5 -1
data/lib/active_support/number_helper/number_to_phone_converter.rb +15 -5
data/lib/active_support/number_helper/number_to_rounded_converter.rb +29 -57
data/lib/active_support/number_helper/rounding_helper.rb +50 -0
data/lib/active_support/number_helper.rb +123 -71
data/lib/active_support/option_merger.rb +25 -4
data/lib/active_support/ordered_hash.rb +7 -5
data/lib/active_support/ordered_options.rb +35 -7
data/lib/active_support/parameter_filter.rb +133 -0
data/lib/active_support/per_thread_registry.rb +10 -4
data/lib/active_support/proxy_object.rb +2 -0
data/lib/active_support/rails.rb +10 -11
data/lib/active_support/railtie.rb +66 -10
data/lib/active_support/reloader.rb +130 -0
data/lib/active_support/rescuable.rb +112 -57
data/lib/active_support/secure_compare_rotator.rb +51 -0
data/lib/active_support/security_utils.rb +26 -15
data/lib/active_support/string_inquirer.rb +13 -4
data/lib/active_support/subscriber.rb +80 -31
data/lib/active_support/tagged_logging.rb +54 -17
data/lib/active_support/test_case.rb +107 -44
data/lib/active_support/testing/assertions.rb +158 -20
data/lib/active_support/testing/autorun.rb +4 -2
data/lib/active_support/testing/constant_lookup.rb +2 -1
data/lib/active_support/testing/declarative.rb +3 -1
data/lib/active_support/testing/deprecation.rb +13 -10
data/lib/active_support/testing/file_fixtures.rb +38 -0
data/lib/active_support/testing/isolation.rb +35 -26
data/lib/active_support/testing/method_call_assertions.rb +70 -0
data/lib/active_support/testing/parallelization/server.rb +78 -0
data/lib/active_support/testing/parallelization/worker.rb +100 -0
data/lib/active_support/testing/parallelization.rb +51 -0
data/lib/active_support/testing/setup_and_teardown.rb +13 -8
data/lib/active_support/testing/stream.rb +43 -0
data/lib/active_support/testing/tagged_logging.rb +3 -1
data/lib/active_support/testing/time_helpers.rb +121 -20
data/lib/active_support/time.rb +14 -12
data/lib/active_support/time_with_zone.rb +215 -51
data/lib/active_support/values/time_zone.rb +223 -71
data/lib/active_support/version.rb +3 -1
data/lib/active_support/xml_mini/jdom.rb +116 -115
data/lib/active_support/xml_mini/libxml.rb +16 -13
data/lib/active_support/xml_mini/libxmlsax.rb +15 -14
data/lib/active_support/xml_mini/nokogiri.rb +14 -12
data/lib/active_support/xml_mini/nokogirisax.rb +14 -13
data/lib/active_support/xml_mini/rexml.rb +18 -9
data/lib/active_support/xml_mini.rb +38 -46
data/lib/active_support.rb +25 -11
metadata +100 -43
data/lib/active_support/concurrency/latch.rb +0 -27
data/lib/active_support/core_ext/array/prepend_and_append.rb +0 -7
data/lib/active_support/core_ext/big_decimal/yaml_conversions.rb +0 -16
data/lib/active_support/core_ext/class/delegating_attributes.rb +0 -45
data/lib/active_support/core_ext/date_time/zones.rb +0 -6
data/lib/active_support/core_ext/hash/compact.rb +0 -24
data/lib/active_support/core_ext/hash/transform_values.rb +0 -23
data/lib/active_support/core_ext/kernel/agnostics.rb +0 -11
data/lib/active_support/core_ext/kernel/debugger.rb +0 -10
data/lib/active_support/core_ext/module/method_transplanting.rb +0 -13
data/lib/active_support/core_ext/module/qualified_const.rb +0 -52
data/lib/active_support/core_ext/module/reachable.rb +0 -8
data/lib/active_support/core_ext/object/itself.rb +0 -15
data/lib/active_support/core_ext/range/include_range.rb +0 -23
data/lib/active_support/core_ext/struct.rb +0 -6
data/lib/active_support/core_ext/thread.rb +0 -86
data/lib/active_support/core_ext/time/marshal.rb +0 -30
data/lib/active_support/values/unicode_tables.dat +0 -0

data/lib/active_support/log_subscriber/test_helper.rb CHANGED Viewed

@@ -1,6 +1,8 @@
-require 'active_support/log_subscriber'
-require 'active_support/logger'
-require 'active_support/notifications'
+# frozen_string_literal: true
+require "active_support/log_subscriber"
+require "active_support/logger"
+require "active_support/notifications"
 module ActiveSupport
   class LogSubscriber
@@ -10,7 +12,7 @@ module ActiveSupport
     #   class SyncLogSubscriberTest < ActiveSupport::TestCase
     #     include ActiveSupport::LogSubscriber::TestHelper
     #
-    #     def setup
+    #     setup do
     #       ActiveRecord::LogSubscriber.attach_to(:active_record)
     #     end
     #
@@ -33,7 +35,7 @@ module ActiveSupport
     # you can collect them doing @logger.logged(level), where level is the level
     # used in logging, like info, debug, warn and so on.
     module TestHelper
-      def setup
+      def setup # :nodoc:
         @logger   = MockLogger.new
         @notifier = ActiveSupport::Notifications::Fanout.new
@@ -44,7 +46,7 @@ module ActiveSupport
         ActiveSupport::Notifications.notifier = @notifier
       end
-      def teardown
+      def teardown # :nodoc:
         set_logger(nil)
         ActiveSupport::Notifications.notifier = @old_notifier
       end
@@ -58,15 +60,15 @@ module ActiveSupport
         def initialize(level = DEBUG)
           @flush_count = 0
           @level = level
-          @logged = Hash.new { |h,k| h[k] = [] }
+          @logged = Hash.new { |h, k| h[k] = [] }
         end
         def method_missing(level, message = nil)
-           if block_given?
-             @logged[level] << yield
-           else
-             @logged[level] << message
-           end
+          if block_given?
+            @logged[level] << yield
+          else
+            @logged[level] << message
+          end
         end
         def logged(level)

data/lib/active_support/log_subscriber.rb CHANGED Viewed

@@ -1,10 +1,12 @@
-require 'active_support/core_ext/module/attribute_accessors'
-require 'active_support/core_ext/class/attribute'
-require 'active_support/subscriber'
+# frozen_string_literal: true
+require "active_support/core_ext/module/attribute_accessors"
+require "active_support/core_ext/class/attribute"
+require "active_support/subscriber"
 module ActiveSupport
-  # ActiveSupport::LogSubscriber is an object set to consume
-  # ActiveSupport::Notifications with the sole purpose of logging them.
+  # <tt>ActiveSupport::LogSubscriber</tt> is an object set to consume
+  # <tt>ActiveSupport::Notifications</tt> with the sole purpose of logging them.
   # The log subscriber dispatches notifications to a registered object based
   # on its given namespace.
   #
@@ -14,7 +16,7 @@ module ActiveSupport
   #   module ActiveRecord
   #     class LogSubscriber < ActiveSupport::LogSubscriber
   #       def sql(event)
-  #         "#{event.payload[:name]} (#{event.duration}) #{event.payload[:sql]}"
+  #         info "#{event.payload[:name]} (#{event.duration}) #{event.payload[:sql]}"
   #       end
   #     end
   #   end
@@ -27,13 +29,39 @@ module ActiveSupport
   # subscriber, the line above should be called after your
   # <tt>ActiveRecord::LogSubscriber</tt> definition.
   #
-  # After configured, whenever a "sql.active_record" notification is published,
-  # it will properly dispatch the event (ActiveSupport::Notifications::Event) to
-  # the sql method.
+  # A logger also needs to be set with <tt>ActiveRecord::LogSubscriber.logger=</tt>.
+  # This is assigned automatically in a Rails environment.
+  #
+  # After configured, whenever a <tt>"sql.active_record"</tt> notification is published,
+  # it will properly dispatch the event
+  # (<tt>ActiveSupport::Notifications::Event</tt>) to the sql method.
+  #
+  # Being an <tt>ActiveSupport::Notifications</tt> consumer,
+  # <tt>ActiveSupport::LogSubscriber</tt> exposes a simple interface to check if
+  # instrumented code raises an exception. It is common to log a different
+  # message in case of an error, and this can be achieved by extending
+  # the previous example:
+  #
+  #   module ActiveRecord
+  #     class LogSubscriber < ActiveSupport::LogSubscriber
+  #       def sql(event)
+  #         exception = event.payload[:exception]
+  #
+  #         if exception
+  #           exception_object = event.payload[:exception_object]
+  #
+  #           error "[ERROR] #{event.payload[:name]}: #{exception.join(', ')} " \
+  #                 "(#{exception_object.backtrace.first})"
+  #         else
+  #           # standard logger code
+  #         end
+  #       end
+  #     end
+  #   end
   #
   # Log subscriber also has some helpers to deal with logging and automatically
-  # flushes all logs when the request finishes (via action_dispatch.callback
-  # notification) in a Rails environment.
+  # flushes all logs when the request finishes
+  # (via <tt>action_dispatch.callback</tt> notification) in a Rails environment.
   class LogSubscriber < Subscriber
     # Embed in a String to clear all previous ANSI sequences.
     CLEAR   = "\e[0m"
@@ -49,8 +77,7 @@ module ActiveSupport
     CYAN    = "\e[36m"
     WHITE   = "\e[37m"
-    mattr_accessor :colorize_logging
-    self.colorize_logging = true
+    mattr_accessor :colorize_logging, default: true
     class << self
       def logger
@@ -69,6 +96,11 @@ module ActiveSupport
       def flush_all!
         logger.flush if logger.respond_to?(:flush)
       end
+      private
+        def fetch_public_methods(subscriber, inherit_all)
+          subscriber.public_methods(inherit_all) - LogSubscriber.public_instance_methods(true)
+        end
     end
     def logger
@@ -81,12 +113,13 @@ module ActiveSupport
     def finish(name, id, payload)
       super if logger
-    rescue Exception => e
-      logger.error "Could not log #{name.inspect} event. #{e.class}: #{e.message} #{e.backtrace}"
+    rescue => e
+      if logger
+        logger.error "Could not log #{name.inspect} event. #{e.class}: #{e.message} #{e.backtrace}"
+      end
     end
-  protected
+  private
     %w(info debug warn error fatal unknown).each do |level|
       class_eval <<-METHOD, __FILE__, __LINE__ + 1
         def #{level}(progname = nil, &block)
@@ -95,11 +128,11 @@ module ActiveSupport
       METHOD
     end
-    # Set color by using a string or one of the defined constants. If a third
+    # Set color by using a symbol or one of the defined constants. If a third
     # option is set to +true+, it also adds bold to the string. This is based
     # on the Highline implementation and will automatically append CLEAR to the
     # end of the returned String.
-    def color(text, color, bold=false)
+    def color(text, color, bold = false) # :doc:
       return text unless colorize_logging
       color = self.class.const_get(color.upcase) if color.is_a?(Symbol)
       bold  = bold ? BOLD : ""

data/lib/active_support/logger.rb CHANGED Viewed

@@ -1,11 +1,11 @@
-require 'active_support/core_ext/module/attribute_accessors'
-require 'active_support/logger_silence'
-require 'active_support/logger_thread_safe_level'
-require 'logger'
+# frozen_string_literal: true
+require "active_support/logger_silence"
+require "active_support/logger_thread_safe_level"
+require "logger"
 module ActiveSupport
   class Logger < ::Logger
-    include ActiveSupport::LoggerThreadSafeLevel
     include LoggerSilence
     # Returns true if the logger destination matches one of the sources
@@ -14,7 +14,7 @@ module ActiveSupport
     #   ActiveSupport::Logger.logger_outputs_to?(logger, STDOUT)
     #   # => true
     def self.logger_outputs_to?(logger, *sources)
-      logdev = logger.instance_variable_get("@logdev")
+      logdev = logger.instance_variable_get(:@logdev)
       logger_source = logdev.dev if logdev.respond_to?(:dev)
       sources.any? { |source| source == logger_source }
     end
@@ -58,16 +58,16 @@ module ActiveSupport
         end
         define_method(:silence) do |level = Logger::ERROR, &block|
-          if logger.respond_to?(:silence) && logger.method(:silence).owner != ::Kernel
+          if logger.respond_to?(:silence)
             logger.silence(level) do
-              if respond_to?(:silence) && method(:silence).owner != ::Kernel
+              if defined?(super)
                 super(level, &block)
               else
                 block.call(self)
               end
             end
           else
-            if respond_to?(:silence) && method(:silence).owner != ::Kernel
+            if defined?(super)
               super(level, &block)
             else
               block.call(self)
@@ -77,23 +77,9 @@ module ActiveSupport
       end
     end
-    def initialize(*args)
+    def initialize(*args, **kwargs)
       super
       @formatter = SimpleFormatter.new
-      after_initialize if respond_to? :after_initialize
-    end
-    def add(severity, message = nil, progname = nil, &block)
-      return true if @logdev.nil? || (severity || UNKNOWN) < level
-      super
-    end
-    Logger::Severity.constants.each do |severity|
-      class_eval(<<-EOT, __FILE__, __LINE__ + 1)
-        def #{severity.downcase}?                # def debug?
-          Logger::#{severity} >= level           #   DEBUG >= level
-        end                                      # end
-      EOT
     end
     # Simple formatter which only displays the message.

data/lib/active_support/logger_silence.rb CHANGED Viewed

@@ -1,27 +1,21 @@
-require 'active_support/concern'
-require 'thread_safe'
+# frozen_string_literal: true
-module LoggerSilence
-  extend ActiveSupport::Concern
+require "active_support/concern"
+require "active_support/core_ext/module/attribute_accessors"
+require "active_support/logger_thread_safe_level"
-  included do
-    cattr_accessor :silencer
-    self.silencer = true
-  end
+module ActiveSupport
+  module LoggerSilence
+    extend ActiveSupport::Concern
-  # Silences the logger for the duration of the block.
-  def silence(temporary_level = Logger::ERROR)
-    if silencer
-      begin
-        old_local_level            = local_level
-        self.local_level           = temporary_level
+    included do
+      cattr_accessor :silencer, default: true
+      include ActiveSupport::LoggerThreadSafeLevel
+    end
-        yield self
-      ensure
-        self.local_level = old_local_level
-      end
-    else
-      yield self
+    # Silences the logger for the duration of the block.
+    def silence(severity = Logger::ERROR)
+      silencer ? log_at(severity) { yield self } : yield(self)
     end
   end
 end

data/lib/active_support/logger_thread_safe_level.rb CHANGED Viewed

@@ -1,32 +1,78 @@
-require 'active_support/concern'
-require 'thread_safe'
+# frozen_string_literal: true
+require "active_support/concern"
+require "active_support/core_ext/module/attribute_accessors"
+require "concurrent"
+require "fiber"
 module ActiveSupport
-  module LoggerThreadSafeLevel
+  module LoggerThreadSafeLevel # :nodoc:
     extend ActiveSupport::Concern
-    def after_initialize
-      @local_levels = ThreadSafe::Cache.new
+    included do
+      cattr_accessor :local_levels, default: Concurrent::Map.new(initial_capacity: 2), instance_accessor: false
+    end
+    Logger::Severity.constants.each do |severity|
+      class_eval(<<-EOT, __FILE__, __LINE__ + 1)
+        def #{severity.downcase}?                # def debug?
+          Logger::#{severity} >= level           #   DEBUG >= level
+        end                                      # end
+      EOT
     end
     def local_log_id
-      Thread.current.__id__
+      Fiber.current.__id__
     end
     def local_level
-      @local_levels[local_log_id]
+      self.class.local_levels[local_log_id]
     end
     def local_level=(level)
-      if level
-        @local_levels[local_log_id] = level
+      case level
+      when Integer
+        self.class.local_levels[local_log_id] = level
+      when Symbol
+        self.class.local_levels[local_log_id] = Logger::Severity.const_get(level.to_s.upcase)
+      when nil
+        self.class.local_levels.delete(local_log_id)
       else
-        @local_levels.delete(local_log_id)
+        raise ArgumentError, "Invalid log level: #{level.inspect}"
       end
     end
     def level
       local_level || super
     end
+    # Change the thread-local level for the duration of the given block.
+    def log_at(level)
+      old_local_level, self.local_level = local_level, level
+      yield
+    ensure
+      self.local_level = old_local_level
+    end
+    # Redefined to check severity against #level, and thus the thread-local level, rather than +@level+.
+    # FIXME: Remove when the minimum Ruby version supports overriding Logger#level.
+    def add(severity, message = nil, progname = nil, &block) #:nodoc:
+      severity ||= UNKNOWN
+      progname ||= @progname
+      return true if @logdev.nil? || severity < level
+      if message.nil?
+        if block_given?
+          message  = yield
+        else
+          message  = progname
+          progname = @progname
+        end
+      end
+      @logdev.write \
+        format_message(format_severity(severity), Time.now, progname, message)
+    end
   end
 end

data/lib/active_support/message_encryptor.rb CHANGED Viewed

@@ -1,6 +1,10 @@
-require 'openssl'
-require 'base64'
-require 'active_support/core_ext/array/extract_options'
+# frozen_string_literal: true
+require "openssl"
+require "base64"
+require "active_support/core_ext/module/attribute_accessors"
+require "active_support/message_verifier"
+require "active_support/messages/metadata"
 module ActiveSupport
   # MessageEncryptor is a simple way to encrypt values which get stored
@@ -12,13 +16,82 @@ module ActiveSupport
   # This can be used in situations similar to the <tt>MessageVerifier</tt>, but
   # where you don't want users to be able to determine the value of the payload.
   #
-  #   salt  = SecureRandom.random_bytes(64)
-  #   key   = ActiveSupport::KeyGenerator.new('password').generate_key(salt) # => "\x89\xE0\x156\xAC..."
-  #   crypt = ActiveSupport::MessageEncryptor.new(key)                       # => #<ActiveSupport::MessageEncryptor ...>
-  #   encrypted_data = crypt.encrypt_and_sign('my secret data')              # => "NlFBTTMwOUV5UlA1QlNEN2xkY2d6eThYWWh..."
-  #   crypt.decrypt_and_verify(encrypted_data)                               # => "my secret data"
+  #   len   = ActiveSupport::MessageEncryptor.key_len
+  #   salt  = SecureRandom.random_bytes(len)
+  #   key   = ActiveSupport::KeyGenerator.new('password').generate_key(salt, len) # => "\x89\xE0\x156\xAC..."
+  #   crypt = ActiveSupport::MessageEncryptor.new(key)                            # => #<ActiveSupport::MessageEncryptor ...>
+  #   encrypted_data = crypt.encrypt_and_sign('my secret data')                   # => "NlFBTTMwOUV5UlA1QlNEN2xkY2d6eThYWWh..."
+  #   crypt.decrypt_and_verify(encrypted_data)                                    # => "my secret data"
+  #
+  # === Confining messages to a specific purpose
+  #
+  # By default any message can be used throughout your app. But they can also be
+  # confined to a specific +:purpose+.
+  #
+  #   token = crypt.encrypt_and_sign("this is the chair", purpose: :login)
+  #
+  # Then that same purpose must be passed when verifying to get the data back out:
+  #
+  #   crypt.decrypt_and_verify(token, purpose: :login)    # => "this is the chair"
+  #   crypt.decrypt_and_verify(token, purpose: :shipping) # => nil
+  #   crypt.decrypt_and_verify(token)                     # => nil
+  #
+  # Likewise, if a message has no purpose it won't be returned when verifying with
+  # a specific purpose.
+  #
+  #   token = crypt.encrypt_and_sign("the conversation is lively")
+  #   crypt.decrypt_and_verify(token, purpose: :scare_tactics) # => nil
+  #   crypt.decrypt_and_verify(token)                          # => "the conversation is lively"
+  #
+  # === Making messages expire
+  #
+  # By default messages last forever and verifying one year from now will still
+  # return the original value. But messages can be set to expire at a given
+  # time with +:expires_in+ or +:expires_at+.
+  #
+  #   crypt.encrypt_and_sign(parcel, expires_in: 1.month)
+  #   crypt.encrypt_and_sign(doowad, expires_at: Time.now.end_of_year)
+  #
+  # Then the messages can be verified and returned up to the expire time.
+  # Thereafter, verifying returns +nil+.
+  #
+  # === Rotating keys
+  #
+  # MessageEncryptor also supports rotating out old configurations by falling
+  # back to a stack of encryptors. Call +rotate+ to build and add an encryptor
+  # so +decrypt_and_verify+ will also try the fallback.
+  #
+  # By default any rotated encryptors use the values of the primary
+  # encryptor unless specified otherwise.
+  #
+  # You'd give your encryptor the new defaults:
+  #
+  #   crypt = ActiveSupport::MessageEncryptor.new(@secret, cipher: "aes-256-gcm")
+  #
+  # Then gradually rotate the old values out by adding them as fallbacks. Any message
+  # generated with the old values will then work until the rotation is removed.
+  #
+  #   crypt.rotate old_secret            # Fallback to an old secret instead of @secret.
+  #   crypt.rotate cipher: "aes-256-cbc" # Fallback to an old cipher instead of aes-256-gcm.
+  #
+  # Though if both the secret and the cipher was changed at the same time,
+  # the above should be combined into:
+  #
+  #   crypt.rotate old_secret, cipher: "aes-256-cbc"
   class MessageEncryptor
-    DEFAULT_CIPHER = "aes-256-cbc"
+    prepend Messages::Rotator::Encryptor
+    cattr_accessor :use_authenticated_message_encryption, instance_accessor: false, default: false
+    class << self
+      def default_cipher #:nodoc:
+        if use_authenticated_message_encryption
+          "aes-256-gcm"
+        else
+          "aes-256-cbc"
+        end
+      end
+    end
     module NullSerializer #:nodoc:
       def self.load(value)
@@ -30,85 +103,122 @@ module ActiveSupport
       end
     end
+    module NullVerifier #:nodoc:
+      def self.verify(value)
+        value
+      end
+      def self.generate(value)
+        value
+      end
+    end
     class InvalidMessage < StandardError; end
     OpenSSLCipherError = OpenSSL::Cipher::CipherError
     # Initialize a new MessageEncryptor. +secret+ must be at least as long as
-    # the cipher key size. For the default 'aes-256-cbc' cipher, this is 256
+    # the cipher key size. For the default 'aes-256-gcm' cipher, this is 256
     # bits. If you are using a user-entered secret, you can generate a suitable
-    # key with <tt>OpenSSL::Digest::SHA256.new(user_secret).digest</tt> or
-    # similar.
+    # key by using <tt>ActiveSupport::KeyGenerator</tt> or a similar key
+    # derivation function.
+    #
+    # First additional parameter is used as the signature key for +MessageVerifier+.
+    # This allows you to specify keys to encrypt and sign data.
+    #
+    #    ActiveSupport::MessageEncryptor.new('secret', 'signature_secret')
     #
     # Options:
     # * <tt>:cipher</tt>     - Cipher to use. Can be any cipher returned by
-    #   <tt>OpenSSL::Cipher.ciphers</tt>. Default is 'aes-256-cbc'.
-    # * <tt>:digest</tt> - String of digest to use for signing. Default is +SHA1+.
+    #   <tt>OpenSSL::Cipher.ciphers</tt>. Default is 'aes-256-gcm'.
+    # * <tt>:digest</tt> - String of digest to use for signing. Default is
+    #   +SHA1+. Ignored when using an AEAD cipher like 'aes-256-gcm'.
     # * <tt>:serializer</tt> - Object serializer to use. Default is +Marshal+.
-    def initialize(secret, *signature_key_or_options)
-      options = signature_key_or_options.extract_options!
-      sign_secret = signature_key_or_options.first
+    def initialize(secret, sign_secret = nil, cipher: nil, digest: nil, serializer: nil)
       @secret = secret
       @sign_secret = sign_secret
-      @cipher = options[:cipher] || 'aes-256-cbc'
-      @verifier = MessageVerifier.new(@sign_secret || @secret, digest: options[:digest] || 'SHA1', serializer: NullSerializer)
-      @serializer = options[:serializer] || Marshal
+      @cipher = cipher || self.class.default_cipher
+      @digest = digest || "SHA1" unless aead_mode?
+      @verifier = resolve_verifier
+      @serializer = serializer || Marshal
     end
     # Encrypt and sign a message. We need to sign the message in order to avoid
-    # padding attacks. Reference: http://www.limited-entropy.com/padding-oracle-attacks.
-    def encrypt_and_sign(value)
-      verifier.generate(_encrypt(value))
+    # padding attacks. Reference: https://www.limited-entropy.com/padding-oracle-attacks/.
+    def encrypt_and_sign(value, expires_at: nil, expires_in: nil, purpose: nil)
+      verifier.generate(_encrypt(value, expires_at: expires_at, expires_in: expires_in, purpose: purpose))
     end
     # Decrypt and verify a message. We need to verify the message in order to
-    # avoid padding attacks. Reference: http://www.limited-entropy.com/padding-oracle-attacks.
-    def decrypt_and_verify(value)
-      _decrypt(verifier.verify(value))
+    # avoid padding attacks. Reference: https://www.limited-entropy.com/padding-oracle-attacks/.
+    def decrypt_and_verify(data, purpose: nil, **)
+      _decrypt(verifier.verify(data), purpose)
     end
     # Given a cipher, returns the key length of the cipher to help generate the key of desired size
-    def self.key_len(cipher = DEFAULT_CIPHER)
+    def self.key_len(cipher = default_cipher)
       OpenSSL::Cipher.new(cipher).key_len
     end
     private
+      def _encrypt(value, **metadata_options)
+        cipher = new_cipher
+        cipher.encrypt
+        cipher.key = @secret
-    def _encrypt(value)
-      cipher = new_cipher
-      cipher.encrypt
-      cipher.key = @secret
+        # Rely on OpenSSL for the initialization vector
+        iv = cipher.random_iv
+        cipher.auth_data = "" if aead_mode?
-      # Rely on OpenSSL for the initialization vector
-      iv = cipher.random_iv
+        encrypted_data = cipher.update(Messages::Metadata.wrap(@serializer.dump(value), **metadata_options))
+        encrypted_data << cipher.final
-      encrypted_data = cipher.update(@serializer.dump(value))
-      encrypted_data << cipher.final
-      "#{::Base64.strict_encode64 encrypted_data}--#{::Base64.strict_encode64 iv}"
-    end
+        blob = "#{::Base64.strict_encode64 encrypted_data}--#{::Base64.strict_encode64 iv}"
+        blob = "#{blob}--#{::Base64.strict_encode64 cipher.auth_tag}" if aead_mode?
+        blob
+      end
-    def _decrypt(encrypted_message)
-      cipher = new_cipher
-      encrypted_data, iv = encrypted_message.split("--").map {|v| ::Base64.strict_decode64(v)}
+      def _decrypt(encrypted_message, purpose)
+        cipher = new_cipher
+        encrypted_data, iv, auth_tag = encrypted_message.split("--").map { |v| ::Base64.strict_decode64(v) }
+        # Currently the OpenSSL bindings do not raise an error if auth_tag is
+        # truncated, which would allow an attacker to easily forge it. See
+        # https://github.com/ruby/openssl/issues/63
+        raise InvalidMessage if aead_mode? && (auth_tag.nil? || auth_tag.bytes.length != 16)
+        cipher.decrypt
+        cipher.key = @secret
+        cipher.iv  = iv
+        if aead_mode?
+          cipher.auth_tag = auth_tag
+          cipher.auth_data = ""
+        end
+        decrypted_data = cipher.update(encrypted_data)
+        decrypted_data << cipher.final
+        message = Messages::Metadata.verify(decrypted_data, purpose)
+        @serializer.load(message) if message
+      rescue OpenSSLCipherError, TypeError, ArgumentError
+        raise InvalidMessage
+      end
-      cipher.decrypt
-      cipher.key = @secret
-      cipher.iv  = iv
+      def new_cipher
+        OpenSSL::Cipher.new(@cipher)
+      end
-      decrypted_data = cipher.update(encrypted_data)
-      decrypted_data << cipher.final
+      attr_reader :verifier
-      @serializer.load(decrypted_data)
-    rescue OpenSSLCipherError, TypeError, ArgumentError
-      raise InvalidMessage
-    end
-    def new_cipher
-      OpenSSL::Cipher.new(@cipher)
-    end
+      def aead_mode?
+        @aead_mode ||= new_cipher.authenticated?
+      end
-    def verifier
-      @verifier
-    end
+      def resolve_verifier
+        if aead_mode?
+          NullVerifier
+        else
+          MessageVerifier.new(@sign_secret || @secret, digest: @digest, serializer: NullSerializer)
+        end
+      end
   end
 end