nokogiri 1.13.1 → 1.13.2

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.


This version of nokogiri might be problematic. Click here for more details.

checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 8227d6f153d867be16d6a1543db8775d75a4f50154977a7e197b3856733ebd91
4
- data.tar.gz: f6f6894dd09880f0638c898287e6063efcea143ceec9373de827b28bd8db1ee4
3
+ metadata.gz: 70ba1f7df1f7cfb3938c7baea05aeee3e433175e879715fbe1741f76f8ce08d5
4
+ data.tar.gz: e880eb829f99a7523c03f79f76ba811e4b0b7ad92702058606785255c1c3c047
5
5
  SHA512:
6
- metadata.gz: b64dedb115b211aed65dd3d710e52f61c325564fe64d790075d72c1e0269842c323d86bcd13ace576c13104067488a7fe3c1f200e9bf6828081956d24fa34793
7
- data.tar.gz: 6b86c4de764df2b7b8798e44986da0fd9cbf4b0fc0e26589869f75af0330b2df1039fc47cc6a5ba432cde02329e48c703ba30c497d45afd68b1f6bcd0c80bce0
6
+ metadata.gz: 337d0e021fd058340333e001464e1aedc51f9ca67935058d25e00f807c7aefc0e53eb05c141cb58f4a311f6e7ef7743b4ea4fda0cbb18162db8454f06594be5b
7
+ data.tar.gz: c68d0f6a067e20d1c3df94565b010fdadabb56dc58b6f54dede92884b9310bd799053af4c5da43dd216a5f5ebf159d873cd4f8fd6241923cc4053ff21ff99401
data/Gemfile CHANGED
@@ -3,6 +3,3 @@
3
3
  source "https://rubygems.org"
4
4
 
5
5
  gemspec
6
-
7
- # gem "rcodetools"
8
- # gem "rdoc", path: "../rdoc"
data/dependencies.yml CHANGED
@@ -1,62 +1,12 @@
1
1
  libxml2:
2
- version: "2.9.12"
3
- sha256: "c8d6681e38c56f172892c85ddc0852e1fd4b53b4209e7f4ebf17f7e2eae71d92"
4
- # manually verified checksum:
5
- #
6
- # $ gpg --verify libxml2-2.9.12.tar.gz.asc ports/archives/libxml2-2.9.12.tar.gz
7
- # gpg: Signature made Thu 13 May 2021 02:59:16 PM EDT
8
- # gpg: using RSA key DB46681BB91ADCEA170FA2D415588B26596BEA5D
9
- # gpg: Good signature from "Daniel Veillard (Red Hat work email) <veillard@redhat.com>" [unknown]
10
- # gpg: aka "Daniel Veillard <Daniel.Veillard@w3.org>" [unknown]
11
- # gpg: WARNING: This key is not certified with a trusted signature!
12
- # gpg: There is no indication that the signature belongs to the owner.
13
- # Primary key fingerprint: C744 15BA 7C9C 7F78 F02E 1DC3 4606 B8A5 DE95 BC1F
14
- # Subkey fingerprint: DB46 681B B91A DCEA 170F A2D4 1558 8B26 596B EA5D
15
- #
16
- # using this pgp signature:
17
- #
18
- # -----BEGIN PGP SIGNATURE-----
19
- #
20
- # iQEzBAABCAAdFiEE20ZoG7ka3OoXD6LUFViLJllr6l0FAmCddwQACgkQFViLJllr
21
- # 6l11LQgAioRTdfmcC+uK/7+6HPtF/3c5zkX6j8VGYuvFBwZ0jayqMRBAl++fcpjE
22
- # JUU/JKebSZ/KCYjzyeOWK/i3Gq77iqm3UbZFB85rqu4a5P3gmj/4STWVyAx0KU3z
23
- # G3jKqDhJOt7c0acXb5lh2DngfDa1dn/VGcQcIXsqplNxNr4ET7MnSJjZ3nlxYfW2
24
- # E5vWBdPCMUeXDBl6MjYvw9XnGGBLUAaEJWoFToG6jKmVf4GAd9nza20jj5dtbcJq
25
- # QEOaSDKDr+f9h2NS8haOhJ9vOpy52PdeGzaFlbRkXarGXuAr8kITgATVs8FAqcgv
26
- # MoVhmrO5r2hJf0dCM9fZoYqzpMfmNA==
27
- # =KfJ9
28
- # -----END PGP SIGNATURE-----
29
- #
2
+ version: "2.9.13"
3
+ sha256: "276130602d12fe484ecc03447ee5e759d0465558fbc9d6bd144e3745306ebf0e"
4
+ # sha-256 hash provided in https://download.gnome.org/sources/libxml2/2.9/libxml2-2.9.13.sha256sum
30
5
 
31
6
  libxslt:
32
- version: "1.1.34"
33
- sha256: "98b1bd46d6792925ad2dfe9a87452ea2adebf69dcb9919ffd55bf926a7f93f7f"
34
- # manually verified checksum:
35
- #
36
- # $ gpg --verify ~/Downloads/libxslt-1.1.34.tar.gz.asc ports/archives/libxslt-1.1.34.tar.gz
37
- # gpg: Signature made Wed 30 Oct 2019 04:02:48 PM EDT
38
- # gpg: using RSA key DB46681BB91ADCEA170FA2D415588B26596BEA5D
39
- # gpg: Good signature from "Daniel Veillard (Red Hat work email) <veillard@redhat.com>" [unknown]
40
- # gpg: aka "Daniel Veillard <Daniel.Veillard@w3.org>" [unknown]
41
- # gpg: WARNING: This key is not certified with a trusted signature!
42
- # gpg: There is no indication that the signature belongs to the owner.
43
- # Primary key fingerprint: C744 15BA 7C9C 7F78 F02E 1DC3 4606 B8A5 DE95 BC1F
44
- # Subkey fingerprint: DB46 681B B91A DCEA 170F A2D4 1558 8B26 596B EA5D
45
- #
46
- # using this pgp signature:
47
- #
48
- # -----BEGIN PGP SIGNATURE-----
49
- #
50
- # iQEzBAABCAAdFiEE20ZoG7ka3OoXD6LUFViLJllr6l0FAl257GgACgkQFViLJllr
51
- # 6l2vVggAjJEHmASiS56SxhPOsGqbfBihM66gQFoIymQfMu2430N1GSTkLsfbkJO8
52
- # 8yBX11NjzK/m9uxwshMW3rVCU7EpL3PUimN3reXdPiQj9hAOAWF1V3BZNevbQC2E
53
- # FCIraioukaidf8sjUG4/sGpK/gOcP/3hYoN0HUoBigCNJjDqhijxM3M3GJJtCASp
54
- # jL4CQbs2OmxW8ixOZbuWEESvFFHUgYRsdZjRVN+GRfSOvJjxypurmYwQ3RjO7JxL
55
- # 2FY8qKQ+xpeID8NV8F5OUEvWBjk1QS133VTqBZNlONdnEtV/og6jNu5k0O/Kvhup
56
- # caR+8TMErOcLr9OgDklO6DoYyAsf9Q==
57
- # =g4i4
58
- # -----END PGP SIGNATURE-----
59
- #
7
+ version: "1.1.35"
8
+ sha256: "8247f33e9a872c6ac859aa45018bc4c4d00b97e2feac9eebc10c93ce1f34dd79"
9
+ # sha-256 hash provided in https://download.gnome.org/sources/libxslt/1.1/libxslt-1.1.35.sha256sum
60
10
 
61
11
  zlib:
62
12
  version: "1.2.11"
@@ -15,7 +15,7 @@ PACKAGE_ROOT_DIR = File.expand_path(File.join(File.dirname(__FILE__), "..", ".."
15
15
  REQUIRED_LIBXML_VERSION = "2.6.21"
16
16
  RECOMMENDED_LIBXML_VERSION = "2.9.3"
17
17
 
18
- REQUIRED_MINI_PORTILE_VERSION = "~> 2.7.0" # keep this version in sync with the one in the gemspec
18
+ REQUIRED_MINI_PORTILE_VERSION = "~> 2.8.0" # keep this version in sync with the one in the gemspec
19
19
  REQUIRED_PKG_CONFIG_VERSION = "~> 1.1"
20
20
 
21
21
  # Keep track of what versions of what libraries we build against
@@ -211,6 +211,18 @@ def local_have_library(lib, func = nil, headers = nil)
211
211
  have_library(lib, func, headers) || have_library("lib#{lib}", func, headers)
212
212
  end
213
213
 
214
+ def gnome_source
215
+ # As of 2022-02-20, some mirrors have expired SSL certificates. I'm able to retrieve from my home,
216
+ # but whatever host is resolved on the github actions workers see an expired cert.
217
+ #
218
+ # See https://github.com/sparklemotion/nokogiri/runs/5266206403?check_suite_focus=true
219
+ if ENV["NOKOGIRI_USE_CANONICAL_GNOME_SOURCE"]
220
+ "https://download.gnome.org"
221
+ else
222
+ "https://mirror.csclub.uwaterloo.ca/gnome" # old reliable
223
+ end
224
+ end
225
+
214
226
  LOCAL_PACKAGE_RESPONSE = Object.new
215
227
  def LOCAL_PACKAGE_RESPONSE.%(package)
216
228
  package ? "yes: #{package}" : "no"
@@ -512,6 +524,7 @@ def process_recipe(name, version, static_p, cross_p, cacheable_p = true)
512
524
 
513
525
  EOM
514
526
 
527
+ pp(recipe.files)
515
528
  chdir_for_build { recipe.cook }
516
529
  FileUtils.touch(checkpoint)
517
530
  end
@@ -770,8 +783,9 @@ else
770
783
  if source_dir
771
784
  recipe.source_directory = source_dir
772
785
  else
786
+ minor_version = Gem::Version.new(recipe.version).segments.take(2).join(".")
773
787
  recipe.files = [{
774
- url: "http://xmlsoft.org/sources/#{recipe.name}-#{recipe.version}.tar.gz",
788
+ url: "#{gnome_source}/sources/libxml2/#{minor_version}/#{recipe.name}-#{recipe.version}.tar.xz",
775
789
  sha256: dependencies["libxml2"]["sha256"],
776
790
  }]
777
791
  recipe.patch_files = Dir[File.join(PACKAGE_ROOT_DIR, "patches", "libxml2", "*.patch")].sort
@@ -818,8 +832,9 @@ else
818
832
  if source_dir
819
833
  recipe.source_directory = source_dir
820
834
  else
835
+ minor_version = Gem::Version.new(recipe.version).segments.take(2).join(".")
821
836
  recipe.files = [{
822
- url: "http://xmlsoft.org/sources/#{recipe.name}-#{recipe.version}.tar.gz",
837
+ url: "#{gnome_source}/sources/libxslt/#{minor_version}/#{recipe.name}-#{recipe.version}.tar.xz",
823
838
  sha256: dependencies["libxslt"]["sha256"],
824
839
  }]
825
840
  recipe.patch_files = Dir[File.join(PACKAGE_ROOT_DIR, "patches", "libxslt", "*.patch")].sort
@@ -2,5 +2,5 @@
2
2
 
3
3
  module Nokogiri
4
4
  # The version of Nokogiri you are using
5
- VERSION = "1.13.1"
5
+ VERSION = "1.13.2"
6
6
  end
@@ -31,18 +31,18 @@ diff --git a/xmlstring.c b/xmlstring.c
31
31
  index e8a1e45d..df247dff 100644
32
32
  --- a/xmlstring.c
33
33
  +++ b/xmlstring.c
34
- @@ -423,14 +423,9 @@ xmlStrsub(const xmlChar *str, int start, int len) {
34
+ @@ -423,12 +423,7 @@ xmlStrsub(const xmlChar *str, int start, int len) {
35
35
 
36
36
  int
37
37
  xmlStrlen(const xmlChar *str) {
38
- - int len = 0;
38
+ - size_t len = 0;
39
39
  -
40
40
  if (str == NULL) return(0);
41
41
  - while (*str != 0) { /* non input consuming */
42
42
  - str++;
43
43
  - len++;
44
44
  - }
45
- - return(len);
45
+ - return(len > INT_MAX ? 0 : len);
46
46
  +
47
47
  + return strlen((const char*)str);
48
48
  }