RubyGems - rubygems-update - Versions diffs - 2.4.8 → 2.5.0 - Mend

rubygems-update 2.4.8 → 2.5.0

Potentially problematic release.

This version of rubygems-update might be problematic. Click here for more details.

Files changed (125) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +0 -0
data.tar.gz.sig +0 -0
data/CODE_OF_CONDUCT.md +40 -0
data/CVE-2015-3900.txt +40 -0
data/History.txt +173 -2
data/Manifest.txt +14 -1
data/Rakefile +36 -1
data/lib/rubygems.rb +32 -14
data/lib/rubygems/basic_specification.rb +31 -9
data/lib/rubygems/commands/dependency_command.rb +25 -15
data/lib/rubygems/commands/environment_command.rb +2 -0
data/lib/rubygems/commands/help_command.rb +0 -10
data/lib/rubygems/commands/install_command.rb +1 -1
data/lib/rubygems/commands/list_command.rb +1 -1
data/lib/rubygems/commands/pristine_command.rb +11 -1
data/lib/rubygems/commands/query_command.rb +1 -1
data/lib/rubygems/commands/sources_command.rb +1 -1
data/lib/rubygems/commands/update_command.rb +2 -2
data/lib/rubygems/config_file.rb +4 -4
data/lib/rubygems/core_ext/kernel_require.rb +2 -2
data/lib/rubygems/dependency.rb +9 -6
data/lib/rubygems/dependency_list.rb +3 -0
data/lib/rubygems/ext/builder.rb +2 -0
data/lib/rubygems/ext/ext_conf_builder.rb +6 -1
data/lib/rubygems/indexer.rb +26 -91
data/lib/rubygems/installer.rb +58 -26
data/lib/rubygems/installer_test_case.rb +2 -2
data/lib/rubygems/package.rb +18 -6
data/lib/rubygems/package/old.rb +2 -2
data/lib/rubygems/package/tar_reader/entry.rb +7 -1
data/lib/rubygems/package/tar_test_case.rb +12 -3
data/lib/rubygems/package/tar_writer.rb +19 -1
data/lib/rubygems/platform.rb +3 -2
data/lib/rubygems/rdoc.rb +1 -2
data/lib/rubygems/remote_fetcher.rb +25 -6
data/lib/rubygems/request/connection_pools.rb +8 -4
data/lib/rubygems/request_set.rb +3 -4
data/lib/rubygems/request_set/gem_dependency_api.rb +2 -2
data/lib/rubygems/request_set/lockfile.rb +1 -1
data/lib/rubygems/request_set/lockfile/parser.rb +54 -43
data/lib/rubygems/request_set/lockfile/tokenizer.rb +16 -13
data/lib/rubygems/resolver.rb +47 -242
data/lib/rubygems/resolver/activation_request.rb +2 -1
data/lib/rubygems/resolver/conflict.rb +0 -1
data/lib/rubygems/resolver/dependency_request.rb +4 -1
data/lib/rubygems/resolver/git_specification.rb +1 -2
data/lib/rubygems/resolver/molinillo.rb +1 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo.rb +5 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph.rb +266 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/errors.rb +69 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/gem_metadata.rb +3 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/modules/specification_provider.rb +99 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/modules/ui.rb +63 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/resolution.rb +430 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/resolver.rb +43 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/state.rb +51 -0
data/lib/rubygems/resolver/specification.rb +1 -1
data/lib/rubygems/specification.rb +256 -86
data/lib/rubygems/stub_specification.rb +37 -29
data/lib/rubygems/test_case.rb +65 -28
data/lib/rubygems/test_utilities.rb +18 -18
data/lib/rubygems/text.rb +0 -2
data/lib/rubygems/uninstaller.rb +1 -1
data/lib/rubygems/util.rb +4 -4
data/lib/rubygems/util/licenses.rb +309 -0
data/lib/rubygems/util/list.rb +9 -21
data/lib/rubygems/version.rb +24 -14
data/test/rubygems/simple_gem.rb +1 -1
data/test/rubygems/test_config.rb +10 -1
data/test/rubygems/test_gem.rb +58 -11
data/test/rubygems/test_gem_available_set.rb +2 -1
data/test/rubygems/test_gem_commands_cleanup_command.rb +6 -5
data/test/rubygems/test_gem_commands_dependency_command.rb +9 -1
data/test/rubygems/test_gem_commands_install_command.rb +17 -28
data/test/rubygems/test_gem_commands_mirror.rb +0 -13
data/test/rubygems/test_gem_commands_outdated_command.rb +2 -3
data/test/rubygems/test_gem_commands_pristine_command.rb +33 -5
data/test/rubygems/test_gem_commands_query_command.rb +123 -158
data/test/rubygems/test_gem_commands_server_command.rb +2 -2
data/test/rubygems/test_gem_commands_specification_command.rb +4 -4
data/test/rubygems/test_gem_commands_stale_command.rb +2 -0
data/test/rubygems/test_gem_commands_uninstall_command.rb +5 -4
data/test/rubygems/test_gem_commands_unpack_command.rb +4 -6
data/test/rubygems/test_gem_commands_update_command.rb +22 -52
data/test/rubygems/test_gem_commands_which_command.rb +1 -0
data/test/rubygems/test_gem_config_file.rb +1 -1
data/test/rubygems/test_gem_dependency.rb +7 -3
data/test/rubygems/test_gem_dependency_installer.rb +5 -5
data/test/rubygems/test_gem_doctor.rb +1 -1
data/test/rubygems/test_gem_ext_builder.rb +2 -0
data/test/rubygems/test_gem_ext_configure_builder.rb +8 -4
data/test/rubygems/test_gem_ext_ext_conf_builder.rb +25 -21
data/test/rubygems/test_gem_indexer.rb +4 -4
data/test/rubygems/test_gem_install_update_options.rb +2 -2
data/test/rubygems/test_gem_installer.rb +32 -26
data/test/rubygems/test_gem_package.rb +46 -1
data/test/rubygems/test_gem_package_tar_reader_entry.rb +8 -1
data/test/rubygems/test_gem_package_tar_writer.rb +10 -1
data/test/rubygems/test_gem_package_task.rb +5 -2
data/test/rubygems/test_gem_platform.rb +11 -0
data/test/rubygems/test_gem_remote_fetcher.rb +64 -3
data/test/rubygems/test_gem_request.rb +1 -1
data/test/rubygems/test_gem_request_connection_pools.rb +10 -1
data/test/rubygems/test_gem_request_set.rb +5 -8
data/test/rubygems/test_gem_request_set_lockfile.rb +2 -4
data/test/rubygems/test_gem_request_set_lockfile_tokenizer.rb +1 -1
data/test/rubygems/test_gem_resolver.rb +12 -31
data/test/rubygems/test_gem_resolver_git_specification.rb +1 -0
data/test/rubygems/test_gem_resolver_installer_set.rb +7 -11
data/test/rubygems/test_gem_resolver_lock_specification.rb +3 -2
data/test/rubygems/test_gem_security_trust_dir.rb +2 -0
data/test/rubygems/test_gem_server.rb +4 -0
data/test/rubygems/test_gem_specification.rb +344 -61
data/test/rubygems/test_gem_stream_ui.rb +6 -6
data/test/rubygems/test_gem_stub_specification.rb +21 -6
data/test/rubygems/test_gem_text.rb +2 -0
data/test/rubygems/test_gem_uninstaller.rb +2 -1
data/test/rubygems/test_gem_util.rb +8 -0
data/test/rubygems/test_require.rb +156 -125
data/util/generate_spdx_license_list.rb +21 -0
data/util/update_bundled_ca_certificates.rb +2 -1
metadata +42 -6
metadata.gz.sig +0 -0
data/lib/rubygems/util/stringio.rb +0 -34

data/util/generate_spdx_license_list.rb ADDED

@@ -0,0 +1,21 @@
+require 'json'
+require 'net/http'
+json = Net::HTTP.get('spdx.org', '/licenses/licenses.json')
+licenses = JSON.parse(json)['licenses'].map do |licenseObject|
+  licenseObject['licenseId']
+end
+open 'lib/rubygems/util/licenses.rb', 'w' do |io|
+  io.write <<-HERE
+class Gem::Licenses
+  NONSTANDARD = 'Nonstandard'.freeze
+  # Software Package Data Exchange (SPDX) standard open-source software
+  # license identifiers
+  IDENTIFIERS = %w(
+    #{licenses.sort.join "\n      "}
+  ).freeze
+end
+  HERE
+end

data/util/update_bundled_ca_certificates.rb CHANGED

@@ -10,7 +10,8 @@ URIS = [
 ]
 def connect_to uri, store
-  http = Net::HTTP.new uri.hostname, uri.port
+  # None of the URIs are IPv6, so URI::Generic#hostname(ruby 1.9.3+) isn't needed
+  http = Net::HTTP.new uri.host, uri.port
   http.use_ssl = uri.scheme.downcase == 'https'
   http.ssl_version = :TLSv1_2

metadata CHANGED

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rubygems-update
 version: !ruby/object:Gem::Version
-  version: 2.4.8
+  version: 2.5.0
 platform: ruby
 authors:
 - Jim Weirich
@@ -9,8 +9,29 @@ authors:
 - Eric Hodel
 autorequire:
 bindir: bin
-cert_chain: []
-date: 2015-06-08 00:00:00.000000000 Z
+cert_chain:
+- |
+  -----BEGIN CERTIFICATE-----
+  MIIDNjCCAh6gAwIBAgIBAzANBgkqhkiG9w0BAQUFADBBMRAwDgYDVQQDDAdkcmJy
+  YWluMRgwFgYKCZImiZPyLGQBGRYIc2VnbWVudDcxEzARBgoJkiaJk/IsZAEZFgNu
+  ZXQwHhcNMTUwODA1MjE1NzQ5WhcNMTYwODA0MjE1NzQ5WjBBMRAwDgYDVQQDDAdk
+  cmJyYWluMRgwFgYKCZImiZPyLGQBGRYIc2VnbWVudDcxEzARBgoJkiaJk/IsZAEZ
+  FgNuZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbbgLrGLGIDE76
+  LV/cvxdEzCuYuS3oG9PrSZnuDweySUfdp/so0cDq+j8bqy6OzZSw07gdjwFMSd6J
+  U5ddZCVywn5nnAQ+Ui7jMW54CYt5/H6f2US6U0hQOjJR6cpfiymgxGdfyTiVcvTm
+  Gj/okWrQl0NjYOYBpDi+9PPmaH2RmLJu0dB/NylsDnW5j6yN1BEI8MfJRR+HRKZY
+  mUtgzBwF1V4KIZQ8EuL6I/nHVu07i6IkrpAgxpXUfdJQJi0oZAqXurAV3yTxkFwd
+  g62YrrW26mDe+pZBzR6bpLE+PmXCzz7UxUq3AE0gPHbiMXie3EFE0oxnsU3lIduh
+  sCANiQ8BAgMBAAGjOTA3MAkGA1UdEwQCMAAwCwYDVR0PBAQDAgSwMB0GA1UdDgQW
+  BBS5k4Z75VSpdM0AclG2UvzFA/VW5DANBgkqhkiG9w0BAQUFAAOCAQEAXmQgUF6x
+  M/aBwZ0uaXzquQHbgAzH3bXlGIa3DrxCiSRAZ1xwYX4gRMV9iQ2kVDwafz5sg9/p
+  N/cMBNOjYRTX2XGv49PpaIiO/JRL/SLDdws/4tkIJOynFqpwcLNB66XeciXxh6nH
+  MS+S1O749pcMIFIBpMXvRS5mG7MPY3NhnmzcIQNYvXAcSXv675Cg4h1c6pxiqeAS
+  u3L+nuwJKNyOIWL3B5ek/yypK55RFUSwReqZTZQkVhNF4xlqPYGDsAxIE/xqadfP
+  +paXWY9JmO3d13yH2/nhDPAo/y7KwmEETFvtUoBmX4o44n/ELqSgb9NrL+613z9j
+  n8mbTOXmLGlTBA==
+  -----END CERTIFICATE-----
+date: 2015-11-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: minitest
@@ -18,14 +39,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '5.7'
+        version: '5.8'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '5.7'
+        version: '5.8'
 - !ruby/object:Gem::Dependency
   name: rdoc
   requirement: !ruby/object:Gem::Requirement
@@ -141,9 +162,11 @@ executables:
 - update_rubygems
 extensions: []
 extra_rdoc_files:
+- CODE_OF_CONDUCT.md
 - CONTRIBUTING.rdoc
 - CVE-2013-4287.txt
 - CVE-2013-4363.txt
+- CVE-2015-3900.txt
 - History.txt
 - LICENSE.txt
 - MIT.txt
@@ -155,9 +178,11 @@ files:
 - ".autotest"
 - ".document"
 - ".gemtest"
+- CODE_OF_CONDUCT.md
 - CONTRIBUTING.rdoc
 - CVE-2013-4287.txt
 - CVE-2013-4363.txt
+- CVE-2015-3900.txt
 - History.txt
 - LICENSE.txt
 - MIT.txt
@@ -283,6 +308,16 @@ files:
 - lib/rubygems/resolver/local_specification.rb
 - lib/rubygems/resolver/lock_set.rb
 - lib/rubygems/resolver/lock_specification.rb
+- lib/rubygems/resolver/molinillo.rb
+- lib/rubygems/resolver/molinillo/lib/molinillo.rb
+- lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph.rb
+- lib/rubygems/resolver/molinillo/lib/molinillo/errors.rb
+- lib/rubygems/resolver/molinillo/lib/molinillo/gem_metadata.rb
+- lib/rubygems/resolver/molinillo/lib/molinillo/modules/specification_provider.rb
+- lib/rubygems/resolver/molinillo/lib/molinillo/modules/ui.rb
+- lib/rubygems/resolver/molinillo/lib/molinillo/resolution.rb
+- lib/rubygems/resolver/molinillo/lib/molinillo/resolver.rb
+- lib/rubygems/resolver/molinillo/lib/molinillo/state.rb
 - lib/rubygems/resolver/requirement_list.rb
 - lib/rubygems/resolver/set.rb
 - lib/rubygems/resolver/spec_specification.rb
@@ -324,8 +359,8 @@ files:
 - lib/rubygems/uri_formatter.rb
 - lib/rubygems/user_interaction.rb
 - lib/rubygems/util.rb
+- lib/rubygems/util/licenses.rb
 - lib/rubygems/util/list.rb
-- lib/rubygems/util/stringio.rb
 - lib/rubygems/validator.rb
 - lib/rubygems/version.rb
 - lib/rubygems/version_option.rb
@@ -510,6 +545,7 @@ files:
 - util/CL2notes
 - util/create_certs.rb
 - util/create_encrypted_key.rb
+- util/generate_spdx_license_list.rb
 - util/update_bundled_ca_certificates.rb
 homepage: http://rubygems.org
 licenses:

metadata.gz.sig ADDED

Binary file

data/lib/rubygems/util/stringio.rb DELETED

@@ -1,34 +0,0 @@
-class Gem::StringSink
-  def initialize
-    @string = ""
-  end
-  attr_reader :string
-  def write(s)
-    @string += s
-    s.size
-  end
-  def set_encoding(enc)
-    @string.force_encoding enc
-  end
-end
-class Gem::StringSource
-  def initialize(str)
-    @string = str.dup
-  end
-  def read(count=nil)
-    if count
-      @string.slice!(0,count)
-    else
-      s = @string
-      @string = ""
-      s
-    end
-  end
-  alias_method :readpartial, :read
-end