RubyGems - rubygems-update - Versions diffs - 2.0.17 → 2.1.0.rc.1 - Mend

rubygems-update 2.0.17 → 2.1.0.rc.1

Potentially problematic release.

This version of rubygems-update might be problematic. Click here for more details.

Files changed (154) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +0 -0
data.tar.gz.sig +2 -0
data/.autotest +1 -1
data/History.txt +82 -153
data/Manifest.txt +35 -9
data/Rakefile +35 -36
data/lib/rubygems.rb +106 -18
data/lib/rubygems/available_set.rb +68 -0
data/lib/rubygems/basic_specification.rb +139 -0
data/lib/rubygems/command_manager.rb +37 -40
data/lib/rubygems/commands/cert_command.rb +78 -29
data/lib/rubygems/commands/cleanup_command.rb +2 -2
data/lib/rubygems/commands/contents_command.rb +101 -58
data/lib/rubygems/commands/dependency_command.rb +94 -53
data/lib/rubygems/commands/environment_command.rb +70 -53
data/lib/rubygems/commands/fetch_command.rb +1 -2
data/lib/rubygems/commands/help_command.rb +85 -55
data/lib/rubygems/commands/install_command.rb +84 -42
data/lib/rubygems/commands/outdated_command.rb +2 -12
data/lib/rubygems/commands/owner_command.rb +6 -0
data/lib/rubygems/commands/pristine_command.rb +26 -16
data/lib/rubygems/commands/sources_command.rb +85 -70
data/lib/rubygems/commands/uninstall_command.rb +32 -2
data/lib/rubygems/commands/update_command.rb +111 -75
data/lib/rubygems/config_file.rb +15 -3
data/lib/rubygems/core_ext/kernel_require.rb +9 -31
data/lib/rubygems/defaults.rb +8 -0
data/lib/rubygems/dependency.rb +4 -2
data/lib/rubygems/dependency_installer.rb +180 -170
data/lib/rubygems/dependency_resolver.rb +191 -526
data/lib/rubygems/dependency_resolver/activation_request.rb +109 -0
data/lib/rubygems/dependency_resolver/api_set.rb +65 -0
data/lib/rubygems/dependency_resolver/api_specification.rb +36 -0
data/lib/rubygems/dependency_resolver/composed_set.rb +18 -0
data/lib/rubygems/dependency_resolver/current_set.rb +16 -0
data/lib/rubygems/dependency_resolver/dependency_conflict.rb +85 -0
data/lib/rubygems/dependency_resolver/dependency_request.rb +51 -0
data/lib/rubygems/dependency_resolver/index_set.rb +59 -0
data/lib/rubygems/dependency_resolver/index_specification.rb +53 -0
data/lib/rubygems/dependency_resolver/installed_specification.rb +38 -0
data/lib/rubygems/dependency_resolver/installer_set.rb +130 -0
data/lib/rubygems/exceptions.rb +88 -1
data/lib/rubygems/ext/builder.rb +1 -1
data/lib/rubygems/gem_runner.rb +17 -9
data/lib/rubygems/gemcutter_utilities.rb +72 -42
data/lib/rubygems/install_default_message.rb +12 -0
data/lib/rubygems/install_update_options.rb +3 -0
data/lib/rubygems/installer.rb +55 -30
data/lib/rubygems/name_tuple.rb +18 -7
data/lib/rubygems/package.rb +50 -25
data/lib/rubygems/package/tar_test_case.rb +9 -9
data/lib/rubygems/package/tar_writer.rb +35 -12
data/lib/rubygems/package_task.rb +2 -5
data/lib/rubygems/path_support.rb +10 -0
data/lib/rubygems/platform.rb +9 -3
data/lib/rubygems/psych_additions.rb +1 -1
data/lib/rubygems/remote_fetcher.rb +9 -276
data/lib/rubygems/request.rb +267 -0
data/lib/rubygems/request_set.rb +123 -125
data/lib/rubygems/request_set/gem_dependency_api.rb +39 -0
data/lib/rubygems/security.rb +32 -23
data/lib/rubygems/security/policy.rb +35 -9
data/lib/rubygems/security/signer.rb +2 -2
data/lib/rubygems/server.rb +8 -16
data/lib/rubygems/source.rb +25 -14
data/lib/rubygems/source/installed.rb +28 -0
data/lib/rubygems/source/local.rb +122 -0
data/lib/rubygems/source/specific_file.rb +28 -0
data/lib/rubygems/source_local.rb +2 -89
data/lib/rubygems/source_specific_file.rb +2 -26
data/lib/rubygems/spec_fetcher.rb +11 -11
data/lib/rubygems/specification.rb +186 -198
data/lib/rubygems/ssl_certs/AddTrustExternalCARoot.pem +88 -30
data/lib/rubygems/ssl_certs/Entrust_net-Secure-Server-Certification-Authority.pem +90 -0
data/lib/rubygems/ssl_certs/{GeoTrustGlobalCA.pem → GeoTrust_Global_CA.pem} +20 -20
data/lib/rubygems/ssl_certs/VerisignClass3PublicPrimaryCertificationAuthority-G2.pem +57 -0
data/lib/rubygems/stub_specification.rb +119 -0
data/lib/rubygems/test_case.rb +117 -49
data/lib/rubygems/uninstaller.rb +14 -9
data/lib/rubygems/uri_formatter.rb +39 -0
data/lib/rubygems/util/list.rb +44 -0
data/lib/rubygems/version.rb +15 -5
data/lib/rubygems/version_option.rb +8 -2
data/test/rubygems/ca_cert.pem +23 -0
data/test/rubygems/client.pem +49 -0
data/test/rubygems/encrypted_private_key.pem +30 -0
data/test/rubygems/invalid_client.pem +49 -0
data/test/rubygems/specifications/bar-0.0.2.gemspec +9 -0
data/test/rubygems/specifications/foo-0.0.1.gemspec +0 -0
data/test/rubygems/test_gem.rb +76 -454
data/test/rubygems/test_gem_command_manager.rb +23 -21
data/test/rubygems/test_gem_commands_cert_command.rb +154 -14
data/test/rubygems/test_gem_commands_cleanup_command.rb +15 -0
data/test/rubygems/test_gem_commands_contents_command.rb +32 -4
data/test/rubygems/test_gem_commands_environment_command.rb +9 -1
data/test/rubygems/test_gem_commands_fetch_command.rb +2 -28
data/test/rubygems/test_gem_commands_help_command.rb +6 -3
data/test/rubygems/test_gem_commands_install_command.rb +2 -65
data/test/rubygems/test_gem_commands_owner_command.rb +49 -0
data/test/rubygems/test_gem_commands_pristine_command.rb +30 -0
data/test/rubygems/test_gem_commands_sources_command.rb +1 -1
data/test/rubygems/test_gem_commands_uninstall_command.rb +33 -0
data/test/rubygems/test_gem_commands_update_command.rb +2 -1
data/test/rubygems/test_gem_config_file.rb +12 -0
data/test/rubygems/test_gem_dependency_installer.rb +58 -65
data/test/rubygems/test_gem_dependency_resolver.rb +6 -3
data/test/rubygems/test_gem_dependency_resolver_dependency_conflict.rb +36 -0
data/test/rubygems/test_gem_ext_builder.rb +2 -4
data/test/rubygems/test_gem_ext_ext_conf_builder.rb +7 -2
data/test/rubygems/test_gem_gem_runner.rb +17 -13
data/test/rubygems/test_gem_gemcutter_utilities.rb +6 -19
data/test/rubygems/test_gem_impossible_dependencies_error.rb +41 -0
data/test/rubygems/test_gem_install_update_options.rb +4 -1
data/test/rubygems/test_gem_installer.rb +31 -2
data/test/rubygems/test_gem_name_tuple.rb +22 -0
data/test/rubygems/test_gem_package.rb +122 -11
data/test/rubygems/test_gem_package_old.rb +8 -0
data/test/rubygems/test_gem_package_tar_reader.rb +9 -8
data/test/rubygems/test_gem_package_tar_reader_entry.rb +1 -1
data/test/rubygems/test_gem_package_tar_writer.rb +78 -56
data/test/rubygems/test_gem_package_task.rb +2 -23
data/test/rubygems/test_gem_path_support.rb +17 -0
data/test/rubygems/test_gem_platform.rb +18 -0
data/test/rubygems/test_gem_remote_fetcher.rb +106 -385
data/test/rubygems/test_gem_request.rb +239 -0
data/test/rubygems/test_gem_requirement.rb +9 -11
data/test/rubygems/test_gem_security.rb +58 -2
data/test/rubygems/test_gem_security_policy.rb +42 -1
data/test/rubygems/test_gem_security_signer.rb +13 -1
data/test/rubygems/test_gem_security_trust_dir.rb +5 -1
data/test/rubygems/test_gem_server.rb +1 -105
data/test/rubygems/test_gem_source.rb +4 -14
data/test/rubygems/test_gem_source_local.rb +4 -4
data/test/rubygems/test_gem_source_specific_file.rb +1 -1
data/test/rubygems/test_gem_spec_fetcher.rb +0 -12
data/test/rubygems/test_gem_specification.rb +452 -28
data/test/rubygems/test_gem_stub_specification.rb +30 -0
data/test/rubygems/test_gem_uninstaller.rb +14 -0
data/test/rubygems/test_gem_uri_formatter.rb +20 -0
data/test/rubygems/test_gem_version.rb +23 -13
data/test/rubygems/test_gem_version_option.rb +63 -1
data/test/rubygems/test_require.rb +0 -12
data/util/create_encrypted_key.rb +16 -0
metadata +161 -23
metadata.gz.sig +0 -0
data/CVE-2013-4287.txt +0 -36
data/CVE-2013-4363.txt +0 -45
data/lib/rubygems/ssl_certs/AddTrustExternalCARoot-2048.pem +0 -25
data/lib/rubygems/ssl_certs/Class3PublicPrimaryCertificationAuthority.pem +0 -14
data/lib/rubygems/ssl_certs/DigiCertHighAssuranceEVRootCA.pem +0 -23
data/lib/rubygems/ssl_certs/EntrustnetSecureServerCertificationAuthority.pem +0 -28
data/test/rubygems/test_bundled_ca.rb +0 -59
data/util/update_bundled_ca_certificates.rb +0 -103

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: dbde61dab685c676ad6b3dbe594ca9b6a2fe3651
-  data.tar.gz: e51f4f77c0dc1e2146f4729fdbef2f3269bc1791
+  metadata.gz: a9e359df25a77bb8a4f3dd815bb9e0eb8818b51b
+  data.tar.gz: 28c30aed29afd6a35066c34cbcd5e14e7a8caea3
 SHA512:
-  metadata.gz: 7f24bbd6a889494e182f6cbbe5e333cb324b4fa6cc238e33bcb4bf7b4a7ab1237669fb0451d70b2e40918d2dc4d6fee1543bde13596cdcd7f8a6027b2f4fa3ae
-  data.tar.gz: f3408ab7122d1dff8c99224606aaf3be0f2863a18d0ce1157c608d29f1b7fc77a41bdce9af238aeac9e194e96f4d4fd77faa4ce854b2aeafd1770a1572412c64
+  metadata.gz: 25d3b5b2271e8f99690a3dd3fe3162de304c57fd735974f82f471bafab1a8e8981679223c862b7a18e79f8fd66f94584a7aff00f72020ba8799422a67c975766
+  data.tar.gz: a17143f3404896f47f4edab1684eb5ff03e51c1419e24a1b6354122fa679f1928f169e4dafb9a40adac057ebb83b6eab12f0fc209614ae1d49f3ee42acd72f50

checksums.yaml.gz.sig ADDED

Binary file

data.tar.gz.sig ADDED

	@@ -0,0 +1,2 @@
1	+ _�2ߏ2�D3�ء��{��;�h+��C,Mm��N�d�\|Ps��^�C�˜F�E�O�� 2��M�TNs%�_co ��2��{s��S�m�;)w��c/�D-�&/�@&ca�`$�P�VO�E�߃-��G��@{\�FY~�Z_"���4T�[/�A
2	+ {��vCu)�k{wFۏ��o-�& �G)�o��w��?>4i��&'��9�=�Ј��Ȋ�o�`e��CZ�pX�u��ϖ�)

data/.autotest CHANGED

@@ -6,7 +6,7 @@ require 'autotest/restart'
 require 'autotest/isolate'
 Autotest.add_hook :initialize do |at|
-  at.testlib = ''
+  at.testlib = 'minitest/autorun'
   at.add_exception %r%/\.git/%
   at.add_exception %r%/\.svn/%

data/History.txt CHANGED

@@ -1,117 +1,90 @@
 # coding: UTF-8
-=== 2.0.17 / 2015-06-08
+=== 2.1.0.rc.1
+Major enhancements:
+* RubyGems uses a new dependency resolver for gem installation which works
+  similar to the bundler resolver.  The new resolver can resolve conflicts the
+  previous resolver could not and offers improved diagnostics when conflicts
+  are discovered.
+Minor enhancements:
+* RubyGems now has improved platform matching for the ARM architecture.  Gems
+  built with a CPU of "arm" will match any specific ARM CPU.  See `gem help
+  platform` for further details.  Fixes #532 by Kim Burgestrand.
+* The --version option now accepts compound requirements the same as in a gem
+  dependency.  The following invocation will install rails between 4.0.0.beta
+  and 4.2:
+    gem install rails -v '>= 4.0.0.beta, < 4.2'
+  Fixes #531 by Gary S. Weaver
+* `gem clean` now allows `-n` as an alias for `--dryrun`.  Pull Request #517
+  by Gastón Ramos
+* Added `gem update --system` to `gem help`.  Pull Request #514 by Vince
+  Wadhwani
+* Added PATH to `gem env` output.  Pull Request #490 by Michal Papis
+* Added --host option to `gem owner` to match other commands using the
+  gemcutter API.  Pull Request #462 and issue #461 by Hugo Lopes Tavares
+* Added --abort-on-dependent to `gem uninstall`.  This will abort instead of
+  asking to uninstall a gem that is depended upon by another gem.  Pull
+  request #549 by Philip Arndt.
+* RubyGems no longer alters Gem::Specification.dirs when installing.  Based on
+  Pull Request #452 by Vít Ondruch
+* RubyGems uses ENV['MAKE'] or ENV['make'] over rbconfig.rb's make if present.
+  Pull Request #443 by Erik Hollensbe
+* RubyGems can now save remote source cache files in an alternate directory
+  controlled by `ENV["GEM_SPEC_CACHE"]`.  Pull Request #489 by Michal Papis
+* Generated private keys are now encrypted.  Pull Request #453 by pietro
+* Separated Gem::Request from Gem::RemoteFetcher.  Pull Request #283 by Steve
+  Klabnik.
+* RubyGems indicates when a .gem's content is corrupt while verifying.  Bug
+  #519 by William T Nelson.
+* Refactored common installer setup.  Pull request #520 by Gastón Ramos
+* Moved activation tests to Gem::Specification.  Pull request #521 by Gastón
+  Ramos
+* When a --version option with a prerelease version is given RubyGems
+  automatically enables prerelease versions but only the last version is
+  used.  If the first version is a prerelease version this is no longer sticky
+  unless an explicit --[no-]prerelease was also given.  Fixes part of #531.
+* RubyGems now supports an SSL client certificate.  Pull request #550 by
+  Robert Kenny.
+* RubyGems now suggests how to fix permission errors.  Pull request #553 by
+  Odin Dutton.
+* Added support for installing a gem as default gems for alternate ruby
+  implementations.  Pull request #566 by Charles Nutter.
+* Improved performance of Gem::Specification#load by caching the loaded
+  gemspec.  Pull request #569 by Charlie Somerville.
+* RubyGems now warns when an unsigned gem is verified if -P was given during
+  installation even if the security policy allows unsigned gems and warns when
+  an untrusted certificate is seen even if the security policy allows
+  untrusted certificates.  Issue #474 by Grant Olson
+* RubyGems can now rewrite executables with or without a shebang of
+  /usr/bin/env via <code>gem pristine --all --only-executables
+  --env-[no-]shebang</code>.  Issue #579 by Paul Annesley.
+* RubyGems can now run its tests without OpenSSL.  Ruby Bug #8557 by nobu.
+* Improved performance by caching Gem::Version objects and avoiding
+  method_missing in Gem::Specification.  Pull request #447 by Jon Leighton.
+* Files in a .gem now preserve their modification times.  Pull request #582 by
+  Jesse Bowes
+* Improved speed of looking up dependencies in SpecFetcher through
+  Array#bsearch (when present).  Pull request #595 by Andras Suller
+* Added `--all` option to `gem uninstall` which removes all gems in GEM_HOME.
+  Pull request #584 by Shannon Skipper.
+* Added Gem.find_latest_files which is equivalent to Gem.find_files but only
+  returns matching files from the latest version of each gem.  Issue #186 by
+  Ryan Davis.
+* Improved performance of `gem outdated` by reducing duplicate work (it is
+  still slow, but I see a near 50% improvement for 250 gems on a fast
+  connection).  See also Gem::Specification::outdated_and_latest_version
 Bug fixes:
-* Tightened API endpoint checks for CVE-2015-3900
-=== 2.0.16 / 2015-05-14
-Bug fixes:
-* Backport: Limit API endpoint to original security domain for CVE-2015-3900.
-  Fix by claudijd
-=== 2.0.15 / 2014-12-21
-Bug fixes:
-* Backport: Add alternate Root CA for upcoming certificate change.
-  Fixes #1050 by Protosac
-=== 2.0.14 / 2013-11-12
-Bug fixes:
-* Restore concurrent requires following the fix for ruby bug #8374.  Pull
-  request #637 and issue #640 by Charles Nutter.
-* Gem::Specification::remove_spec no longer checks for existence of the spec
-  to be removed.  Issue #698 by Tiago Macedo.
-* Restored wildcard handling when installing gems.  Issue #697 by Chuck Remes.
-* Added DigiCert High Assurance EV Root CA certificate for the cloudfront.net
-  certificate change.
-* The Gem::RemoteFetcher tests now choose the test server port more reliably.
-  Pull Request #706 by akr.
-=== 2.0.13 / 2013-10-24
-Bug fixes:
-* Use class check instead of :version method check when creating Gem::Version
-  objects.  Fixes #674 by jkanywhere.
-* Allow installation of gems when the home directory does not exist.  Issue
-  #689 by Laurence Rowe
-* Fix updating gems which have multiple platforms.  Issue #693 by Ookami
-  Kenrou.
-* The gem server now uses user-provided directories.  Issue #696 by Marcelo
-  Alvim.
-=== 2.0.12 / 2013-10-14
-Bug fixes:
-* Proxy usernames and passwords are now escaped properly.  Ruby Bug #8979 and
-  patch by Masahiro Tomita, Issue #668 by Kouhei Sutou.
-=== 2.0.11 / 2013-10-08
-Bug fixes:
-* Added certificates to follow the s3.amazonaws.com certificate change.  Fixes
-  #665 by emeyekayee.  Fixes #671 by jonforums.
-* Remove redundant built-in certificates not needed for https://rubygems.org
-  Fixes #654 by Vít Ondruch.
-* Added test for missing certificates for https://s3.amazonaws.com or
-  https://rubygems.org.  Pull request #673 by Hannes Georg.
-* RubyGems now allows a Pathname for Kernel#require like the built-in
-  Kernel#require.  Pull request #663 by Aaron Patterson.
-* Required rbconfig in Gem::ConfigFile for Ruby 1.9.1 compatibility.  (Ruby
-  1.9.1 is no longer receiving security fixes, so please update to a newer
-  version.)  Issue #676 by Michal Papis.  Issue wayneeseguin/rvm#2262 by
-  Thomas Sänger.
-=== 2.0.10 / 2013-09-24
-Security fixes:
-* RubyGems 2.1.4 and earlier are vulnerable to excessive CPU usage due to a
-  backtracking in Gem::Version validation.  See CVE-2013-4363 for full details
-  including vulnerable APIs.  Fixed versions include 2.1.5, 2.0.10, 1.8.27 and
-  1.8.23.2 (for Ruby 1.9.3).
-=== 2.0.9 / 2013-09-13
-Bug fixes:
-* Gem fetch now fetches the newest (not oldest) gem when --version is given.
-  Issue #643 by Brian Shirai.
-* Fixed credential creation for `gem push` when `--host` is not given.  Pull
-  request #622 by Arthur Nogueira Neves
-=== 2.0.8 / 2013-09-09
-Security fixes:
-* RubyGems 2.0.7 and earlier are vulnerable to excessive CPU usage due to a
-  backtracking in Gem::Version validation.  See CVE-2013-4287 for full details
-  including vulnerable APIs.  Fixed versions include 2.0.8, 1.8.26 and
-  1.8.23.1 (for Ruby 1.9.3).  Issue #626 by Damir Sharipov.
-Bug fixes:
-* Fixed Gem.clear_paths when Security is defined at top-level.  Pull request
-  #625 by elarkin
-=== 2.0.7 / 2013-08-15
-* Extensions may now be built in parallel (therefore gems may be installed in
-  parallel).  Bug #607 by Hemant Kumar.
-* Changed broken link to RubyGems Bookshelf to point to RubyGems guides.  Ruby
-  pull request #369 by 謝致邦.
-* Fixed various test failures due to platform differences or poor tests.
-  Patches by Yui Naruse and Koichi Sasada.
-* Fixed documentation for Kernel#require.
+* rubygems_plugin.rb files are now only loaded from the latest installed gem.
+* Altered use of cryptography in the test suite to work on JRuby, but some
+  tests still fail on JRuby.  Bug #606 by Hemant Kumar.
 === 2.0.6 / 2013-07-24
@@ -129,8 +102,6 @@ Bug fixes:
 === 2.0.5 / 2013-07-11
-Bug fixes:
 * Fixed building of extensions that run ruby in their makefiles.  Bug #589 by
   Zachary Salzbank.
@@ -566,48 +537,6 @@ $SAFE=1.  There is no functional difference compared to Ruby 2.0.0.preview2
   * URI scheme matching is no longer case-sensitive.  Fixes #322
   * ext/builder now checks $MAKE as well as $make (okkez)
-=== 1.8.29 / 2013-11-23
-Bug fixes:
-* Fixed installation when the LANG environment variable is empty.
-* Added DigiCert High Assurance EV Root CA to the default SSL certificates for
-  cloudfront.
-=== 1.8.28 / 2013-10-08
-Bug fixes:
-* Added the Verisign Class 3 Public Primary Certification Authority G5
-  certificate and its intermediary to follow the s3.amazonaws.com certificate
-  change.  Fixes #665 by emeyekayee.  Fixes #671 by jonforums.
-* Remove redundant built-in certificates not needed for https://rubygems.org
-  Fixes #654 by Vít Ondruch.
-* Added test for missing certificates for https://s3.amazonaws.com or
-  https://rubygems.org.  Pull request #673 by Hannes Georg.
-=== 1.8.27 / 2013-09-24
-Security fixes:
-* RubyGems 2.1.4 and earlier are vulnerable to excessive CPU usage due to a
-  backtracking in Gem::Version validation.  See CVE-2013-4363 for full details
-  including vulnerable APIs.  Fixed versions include 2.1.5, 2.0.10, 1.8.27 and
-  1.8.23.2 (for Ruby 1.9.3).
-=== 1.8.26 / 2013-09-09
-Security fixes:
-* RubyGems 2.0.7 and earlier are vulnerable to excessive CPU usage due to a
-  backtracking in Gem::Version validation.  See CVE-2013-4287 for full details
-  including vulnerable APIs.  Fixed versions include 2.0.8, 1.8.26 and
-  1.8.23.1 (for Ruby 1.9.3).  Issue #626 by Damir Sharipov.
-Bug fixes:
-* Fixed editing of a Makefile with 8-bit characters.  Fixes #181
 === 1.8.25 / 2013-01-24
 * Bug fixes:

data/Manifest.txt CHANGED

@@ -1,7 +1,5 @@
 .autotest
 .document
-CVE-2013-4287.txt
-CVE-2013-4363.txt
 History.txt
 LICENSE.txt
 MIT.txt
@@ -15,6 +13,7 @@ hide_lib_for_update/note.txt
 lib/gauntlet_rubygems.rb
 lib/rubygems.rb
 lib/rubygems/available_set.rb
+lib/rubygems/basic_specification.rb
 lib/rubygems/command.rb
 lib/rubygems/command_manager.rb
 lib/rubygems/commands/build_command.rb
@@ -57,6 +56,17 @@ lib/rubygems/dependency.rb
 lib/rubygems/dependency_installer.rb
 lib/rubygems/dependency_list.rb
 lib/rubygems/dependency_resolver.rb
+lib/rubygems/dependency_resolver/activation_request.rb
+lib/rubygems/dependency_resolver/api_set.rb
+lib/rubygems/dependency_resolver/api_specification.rb
+lib/rubygems/dependency_resolver/composed_set.rb
+lib/rubygems/dependency_resolver/current_set.rb
+lib/rubygems/dependency_resolver/dependency_conflict.rb
+lib/rubygems/dependency_resolver/dependency_request.rb
+lib/rubygems/dependency_resolver/index_set.rb
+lib/rubygems/dependency_resolver/index_specification.rb
+lib/rubygems/dependency_resolver/installed_specification.rb
+lib/rubygems/dependency_resolver/installer_set.rb
 lib/rubygems/deprecate.rb
 lib/rubygems/doctor.rb
 lib/rubygems/errors.rb
@@ -70,6 +80,7 @@ lib/rubygems/ext/rake_builder.rb
 lib/rubygems/gem_runner.rb
 lib/rubygems/gemcutter_utilities.rb
 lib/rubygems/indexer.rb
+lib/rubygems/install_default_message.rb
 lib/rubygems/install_message.rb
 lib/rubygems/install_update_options.rb
 lib/rubygems/installer.rb
@@ -92,7 +103,9 @@ lib/rubygems/psych_additions.rb
 lib/rubygems/psych_tree.rb
 lib/rubygems/rdoc.rb
 lib/rubygems/remote_fetcher.rb
+lib/rubygems/request.rb
 lib/rubygems/request_set.rb
+lib/rubygems/request_set/gem_dependency_api.rb
 lib/rubygems/requirement.rb
 lib/rubygems/security.rb
 lib/rubygems/security/policies.rb
@@ -101,24 +114,28 @@ lib/rubygems/security/signer.rb
 lib/rubygems/security/trust_dir.rb
 lib/rubygems/server.rb
 lib/rubygems/source.rb
+lib/rubygems/source/installed.rb
+lib/rubygems/source/local.rb
+lib/rubygems/source/specific_file.rb
 lib/rubygems/source_list.rb
 lib/rubygems/source_local.rb
 lib/rubygems/source_specific_file.rb
 lib/rubygems/spec_fetcher.rb
 lib/rubygems/specification.rb
 lib/rubygems/ssl_certs/.document
-lib/rubygems/ssl_certs/AddTrustExternalCARoot-2048.pem
 lib/rubygems/ssl_certs/AddTrustExternalCARoot.pem
-lib/rubygems/ssl_certs/Class3PublicPrimaryCertificationAuthority.pem
-lib/rubygems/ssl_certs/DigiCertHighAssuranceEVRootCA.pem
-lib/rubygems/ssl_certs/EntrustnetSecureServerCertificationAuthority.pem
-lib/rubygems/ssl_certs/GeoTrustGlobalCA.pem
+lib/rubygems/ssl_certs/Entrust_net-Secure-Server-Certification-Authority.pem
+lib/rubygems/ssl_certs/GeoTrust_Global_CA.pem
+lib/rubygems/ssl_certs/VerisignClass3PublicPrimaryCertificationAuthority-G2.pem
+lib/rubygems/stub_specification.rb
 lib/rubygems/syck_hack.rb
 lib/rubygems/test_case.rb
 lib/rubygems/test_utilities.rb
 lib/rubygems/text.rb
 lib/rubygems/uninstaller.rb
+lib/rubygems/uri_formatter.rb
 lib/rubygems/user_interaction.rb
+lib/rubygems/util/list.rb
 lib/rubygems/validator.rb
 lib/rubygems/version.rb
 lib/rubygems/version_option.rb
@@ -133,9 +150,11 @@ test/rubygems/ca_cert.pem
 test/rubygems/child_cert.pem
 test/rubygems/child_cert_32.pem
 test/rubygems/child_key.pem
+test/rubygems/client.pem
 test/rubygems/data/gem-private_key.pem
 test/rubygems/data/gem-public_cert.pem
 test/rubygems/data/null-type.gemspec.rz
+test/rubygems/encrypted_private_key.pem
 test/rubygems/expired_cert.pem
 test/rubygems/fake_certlib/openssl.rb
 test/rubygems/fix_openssl_warnings.rb
@@ -146,6 +165,7 @@ test/rubygems/good_rake.rb
 test/rubygems/grandchild_cert.pem
 test/rubygems/grandchild_cert_32.pem
 test/rubygems/grandchild_key.pem
+test/rubygems/invalid_client.pem
 test/rubygems/invalid_issuer_cert.pem
 test/rubygems/invalid_issuer_cert_32.pem
 test/rubygems/invalid_key.pem
@@ -165,9 +185,10 @@ test/rubygems/rubygems/commands/crash_command.rb
 test/rubygems/rubygems_plugin.rb
 test/rubygems/sff/discover.rb
 test/rubygems/simple_gem.rb
+test/rubygems/specifications/bar-0.0.2.gemspec
+test/rubygems/specifications/foo-0.0.1.gemspec
 test/rubygems/ssl_cert.pem
 test/rubygems/ssl_key.pem
-test/rubygems/test_bundled_ca.rb
 test/rubygems/test_config.rb
 test/rubygems/test_deprecate.rb
 test/rubygems/test_gem.rb
@@ -209,6 +230,7 @@ test/rubygems/test_gem_dependency.rb
 test/rubygems/test_gem_dependency_installer.rb
 test/rubygems/test_gem_dependency_list.rb
 test/rubygems/test_gem_dependency_resolver.rb
+test/rubygems/test_gem_dependency_resolver_dependency_conflict.rb
 test/rubygems/test_gem_doctor.rb
 test/rubygems/test_gem_ext_builder.rb
 test/rubygems/test_gem_ext_cmake_builder.rb
@@ -217,6 +239,7 @@ test/rubygems/test_gem_ext_ext_conf_builder.rb
 test/rubygems/test_gem_ext_rake_builder.rb
 test/rubygems/test_gem_gem_runner.rb
 test/rubygems/test_gem_gemcutter_utilities.rb
+test/rubygems/test_gem_impossible_dependencies_error.rb
 test/rubygems/test_gem_indexer.rb
 test/rubygems/test_gem_install_update_options.rb
 test/rubygems/test_gem_installer.rb
@@ -233,6 +256,7 @@ test/rubygems/test_gem_path_support.rb
 test/rubygems/test_gem_platform.rb
 test/rubygems/test_gem_rdoc.rb
 test/rubygems/test_gem_remote_fetcher.rb
+test/rubygems/test_gem_request.rb
 test/rubygems/test_gem_request_set.rb
 test/rubygems/test_gem_requirement.rb
 test/rubygems/test_gem_security.rb
@@ -248,8 +272,10 @@ test/rubygems/test_gem_source_specific_file.rb
 test/rubygems/test_gem_spec_fetcher.rb
 test/rubygems/test_gem_specification.rb
 test/rubygems/test_gem_stream_ui.rb
+test/rubygems/test_gem_stub_specification.rb
 test/rubygems/test_gem_text.rb
 test/rubygems/test_gem_uninstaller.rb
+test/rubygems/test_gem_uri_formatter.rb
 test/rubygems/test_gem_validator.rb
 test/rubygems/test_gem_version.rb
 test/rubygems/test_gem_version_option.rb
@@ -259,4 +285,4 @@ test/rubygems/wrong_key_cert.pem
 test/rubygems/wrong_key_cert_32.pem
 util/CL2notes
 util/create_certs.rb
-util/update_bundled_ca_certificates.rb
+util/create_encrypted_key.rb

data/Rakefile CHANGED

@@ -23,9 +23,9 @@ Hoe::RUBY_FLAGS << " --disable-gems" if RUBY_VERSION > "1.9"
 Hoe.plugin :minitest
 Hoe.plugin :git
 Hoe.plugin :travis
-# Hoe.plugin :isolate
 hoe = Hoe.spec 'rubygems-update' do
+  self.rubyforge_name = 'rubygems'
   self.author         = ['Jim Weirich', 'Chad Fowler', 'Eric Hodel']
   self.email          = %w[rubygems-developers@rubyforge.org]
   self.readme_file    = 'README.rdoc'
@@ -50,48 +50,41 @@ hoe = Hoe.spec 'rubygems-update' do
                    'pkgs/sources/sources*.gem',
                    'scripts/*.hieraki')
-  extra_dev_deps << ['builder', '~> 2.1']
-  extra_dev_deps << ['hoe-seattlerb', '~> 1.2']
-  extra_dev_deps << ['rdoc', '~> 3.0']
-  extra_dev_deps << ['ZenTest', '~> 4.5']
-  extra_dev_deps << ['rake', '~> 0.9.3']
+  dependency 'builder',       '~> 2.1',   :dev
+  dependency 'hoe-seattlerb', '~> 1.2',   :dev
+  dependency 'rdoc',          '~> 3.0',   :dev
+  dependency 'ZenTest',       '~> 4.5',   :dev
+  dependency 'rake',          '~> 0.9.3', :dev
+  dependency 'minitest',      '~> 4.0',   :dev
-  self.extra_rdoc_files = Dir["*.rdoc"] + %w[
-    CVE-2013-4287.txt
-    CVE-2013-4363.txt
-  ]
+  self.extra_rdoc_files = Dir["*.rdoc"]
   spec_extras['rdoc_options'] = proc do |rdoc_options|
-    rdoc_options << "--title=RubyGems Update Documentation"
+    rdoc_options << "--title=RubyGems #{self.version} Documentation"
   end
   self.rsync_args += " --no-p -O"
-  spec_extras['require_paths'] = %w[hide_lib_for_update]
+  # FIX: this exists because update --system installs the gem and
+  # doesn't uninstall it. It should uninstall or better, not install
+  # in the first place.
+  spec_extras['require_paths'] = %w[hide_lib_for_update] unless
+    ENV['RAKE_SUCKS']
 end
 hoe.test_prelude = 'gem "minitest", "~> 4.0"'
-Rake::Task['docs'].clear
-Rake::Task['clobber_docs'].clear
-begin
-  require 'rdoc/task'
-  RDoc::Task.new :rdoc => 'docs', :clobber_rdoc => 'clobber_docs' do |doc|
-    doc.main   = hoe.readme_file
-    doc.title  = "RubyGems #{hoe.version} API Documentation"
-    rdoc_files = Rake::FileList.new %w[lib History.txt LICENSE.txt MIT.txt]
-    rdoc_files.add hoe.extra_rdoc_files
-    doc.rdoc_files = rdoc_files
-    doc.rdoc_dir = 'doc'
-  end
-rescue LoadError, RuntimeError # rake 10.1 on rdoc from ruby 1.9.2 and earlier
-  task 'docs' do
-    abort 'You must install rdoc to build documentation, try `rake newb` again'
+task :docs => :rake_sucks
+task :rake_sucks do
+  # This exists ENTIRELY because the rake design convention of
+  # RDocTask.new is broken. Because most of the work is being done
+  # inside initialize(?!?) BEFORE tasks are even running, too much
+  # stuff is set in stone, and we can't deal with the require_paths
+  # issue above.
+  unless ENV['RAKE_SUCKS'] then
+    ENV['RAKE_SUCKS'] = "1"
+    rm_rf "doc"
+    sh "rake docs"
   end
 end
@@ -107,7 +100,7 @@ task :test => :clean_env
 task :prerelease => [:clobber, :check_manifest, :test]
-task :postrelease => [:upload]
+task :postrelease => [:publish_docs, :upload]
 pkg_dir_path = "pkg/rubygems-update-#{hoe.version}"
 task :package do
@@ -118,6 +111,14 @@ task :package do
   end
 end
+desc "Upload release to rubyforge"
+task :upload_to_rubyforge do
+  v = hoe.version
+  sh "rubyforge add_release rubygems rubygems #{v} pkg/rubygems-update-#{v}.gem"
+  sh "rubyforge add_file rubygems rubygems #{v} pkg/rubygems-#{v}.zip"
+  sh "rubyforge add_file rubygems rubygems #{v} pkg/rubygems-#{v}.tgz"
+end
 desc "Upload release to gemcutter S3"
 task :upload_to_gemcutter do
   v = hoe.version
@@ -125,9 +126,7 @@ task :upload_to_gemcutter do
 end
 desc "Upload release to rubyforge and gemcutter"
-task :upload => [:upload_to_gemcutter]
-Rake::Task['publish_docs'].clear
+task :upload => [:upload_to_rubyforge, :upload_to_gemcutter]
 # Misc Tasks ---------------------------------------------------------