RubyGems - rubygems-update - Versions diffs - 2.4.8 → 2.5.0 - Mend

rubygems-update 2.4.8 → 2.5.0

Potentially problematic release.

This version of rubygems-update might be problematic. Click here for more details.

Files changed (125) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +0 -0
data.tar.gz.sig +0 -0
data/CODE_OF_CONDUCT.md +40 -0
data/CVE-2015-3900.txt +40 -0
data/History.txt +173 -2
data/Manifest.txt +14 -1
data/Rakefile +36 -1
data/lib/rubygems.rb +32 -14
data/lib/rubygems/basic_specification.rb +31 -9
data/lib/rubygems/commands/dependency_command.rb +25 -15
data/lib/rubygems/commands/environment_command.rb +2 -0
data/lib/rubygems/commands/help_command.rb +0 -10
data/lib/rubygems/commands/install_command.rb +1 -1
data/lib/rubygems/commands/list_command.rb +1 -1
data/lib/rubygems/commands/pristine_command.rb +11 -1
data/lib/rubygems/commands/query_command.rb +1 -1
data/lib/rubygems/commands/sources_command.rb +1 -1
data/lib/rubygems/commands/update_command.rb +2 -2
data/lib/rubygems/config_file.rb +4 -4
data/lib/rubygems/core_ext/kernel_require.rb +2 -2
data/lib/rubygems/dependency.rb +9 -6
data/lib/rubygems/dependency_list.rb +3 -0
data/lib/rubygems/ext/builder.rb +2 -0
data/lib/rubygems/ext/ext_conf_builder.rb +6 -1
data/lib/rubygems/indexer.rb +26 -91
data/lib/rubygems/installer.rb +58 -26
data/lib/rubygems/installer_test_case.rb +2 -2
data/lib/rubygems/package.rb +18 -6
data/lib/rubygems/package/old.rb +2 -2
data/lib/rubygems/package/tar_reader/entry.rb +7 -1
data/lib/rubygems/package/tar_test_case.rb +12 -3
data/lib/rubygems/package/tar_writer.rb +19 -1
data/lib/rubygems/platform.rb +3 -2
data/lib/rubygems/rdoc.rb +1 -2
data/lib/rubygems/remote_fetcher.rb +25 -6
data/lib/rubygems/request/connection_pools.rb +8 -4
data/lib/rubygems/request_set.rb +3 -4
data/lib/rubygems/request_set/gem_dependency_api.rb +2 -2
data/lib/rubygems/request_set/lockfile.rb +1 -1
data/lib/rubygems/request_set/lockfile/parser.rb +54 -43
data/lib/rubygems/request_set/lockfile/tokenizer.rb +16 -13
data/lib/rubygems/resolver.rb +47 -242
data/lib/rubygems/resolver/activation_request.rb +2 -1
data/lib/rubygems/resolver/conflict.rb +0 -1
data/lib/rubygems/resolver/dependency_request.rb +4 -1
data/lib/rubygems/resolver/git_specification.rb +1 -2
data/lib/rubygems/resolver/molinillo.rb +1 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo.rb +5 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph.rb +266 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/errors.rb +69 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/gem_metadata.rb +3 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/modules/specification_provider.rb +99 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/modules/ui.rb +63 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/resolution.rb +430 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/resolver.rb +43 -0
data/lib/rubygems/resolver/molinillo/lib/molinillo/state.rb +51 -0
data/lib/rubygems/resolver/specification.rb +1 -1
data/lib/rubygems/specification.rb +256 -86
data/lib/rubygems/stub_specification.rb +37 -29
data/lib/rubygems/test_case.rb +65 -28
data/lib/rubygems/test_utilities.rb +18 -18
data/lib/rubygems/text.rb +0 -2
data/lib/rubygems/uninstaller.rb +1 -1
data/lib/rubygems/util.rb +4 -4
data/lib/rubygems/util/licenses.rb +309 -0
data/lib/rubygems/util/list.rb +9 -21
data/lib/rubygems/version.rb +24 -14
data/test/rubygems/simple_gem.rb +1 -1
data/test/rubygems/test_config.rb +10 -1
data/test/rubygems/test_gem.rb +58 -11
data/test/rubygems/test_gem_available_set.rb +2 -1
data/test/rubygems/test_gem_commands_cleanup_command.rb +6 -5
data/test/rubygems/test_gem_commands_dependency_command.rb +9 -1
data/test/rubygems/test_gem_commands_install_command.rb +17 -28
data/test/rubygems/test_gem_commands_mirror.rb +0 -13
data/test/rubygems/test_gem_commands_outdated_command.rb +2 -3
data/test/rubygems/test_gem_commands_pristine_command.rb +33 -5
data/test/rubygems/test_gem_commands_query_command.rb +123 -158
data/test/rubygems/test_gem_commands_server_command.rb +2 -2
data/test/rubygems/test_gem_commands_specification_command.rb +4 -4
data/test/rubygems/test_gem_commands_stale_command.rb +2 -0
data/test/rubygems/test_gem_commands_uninstall_command.rb +5 -4
data/test/rubygems/test_gem_commands_unpack_command.rb +4 -6
data/test/rubygems/test_gem_commands_update_command.rb +22 -52
data/test/rubygems/test_gem_commands_which_command.rb +1 -0
data/test/rubygems/test_gem_config_file.rb +1 -1
data/test/rubygems/test_gem_dependency.rb +7 -3
data/test/rubygems/test_gem_dependency_installer.rb +5 -5
data/test/rubygems/test_gem_doctor.rb +1 -1
data/test/rubygems/test_gem_ext_builder.rb +2 -0
data/test/rubygems/test_gem_ext_configure_builder.rb +8 -4
data/test/rubygems/test_gem_ext_ext_conf_builder.rb +25 -21
data/test/rubygems/test_gem_indexer.rb +4 -4
data/test/rubygems/test_gem_install_update_options.rb +2 -2
data/test/rubygems/test_gem_installer.rb +32 -26
data/test/rubygems/test_gem_package.rb +46 -1
data/test/rubygems/test_gem_package_tar_reader_entry.rb +8 -1
data/test/rubygems/test_gem_package_tar_writer.rb +10 -1
data/test/rubygems/test_gem_package_task.rb +5 -2
data/test/rubygems/test_gem_platform.rb +11 -0
data/test/rubygems/test_gem_remote_fetcher.rb +64 -3
data/test/rubygems/test_gem_request.rb +1 -1
data/test/rubygems/test_gem_request_connection_pools.rb +10 -1
data/test/rubygems/test_gem_request_set.rb +5 -8
data/test/rubygems/test_gem_request_set_lockfile.rb +2 -4
data/test/rubygems/test_gem_request_set_lockfile_tokenizer.rb +1 -1
data/test/rubygems/test_gem_resolver.rb +12 -31
data/test/rubygems/test_gem_resolver_git_specification.rb +1 -0
data/test/rubygems/test_gem_resolver_installer_set.rb +7 -11
data/test/rubygems/test_gem_resolver_lock_specification.rb +3 -2
data/test/rubygems/test_gem_security_trust_dir.rb +2 -0
data/test/rubygems/test_gem_server.rb +4 -0
data/test/rubygems/test_gem_specification.rb +344 -61
data/test/rubygems/test_gem_stream_ui.rb +6 -6
data/test/rubygems/test_gem_stub_specification.rb +21 -6
data/test/rubygems/test_gem_text.rb +2 -0
data/test/rubygems/test_gem_uninstaller.rb +2 -1
data/test/rubygems/test_gem_util.rb +8 -0
data/test/rubygems/test_require.rb +156 -125
data/util/generate_spdx_license_list.rb +21 -0
data/util/update_bundled_ca_certificates.rb +2 -1
metadata +42 -6
metadata.gz.sig +0 -0
data/lib/rubygems/util/stringio.rb +0 -34

data/lib/rubygems/uninstaller.rb CHANGED

@@ -271,7 +271,7 @@ class Gem::Uninstaller
     say "Successfully uninstalled #{spec.full_name}"
-    Gem::Specification.remove_spec spec
+    Gem::Specification.reset
   end
   ##

data/lib/rubygems/util.rb CHANGED

@@ -10,8 +10,8 @@ module Gem::Util
   def self.gunzip(data)
     require 'zlib'
-    require 'rubygems/util/stringio'
-    data = Gem::StringSource.new data
+    require 'stringio'
+    data = StringIO.new(data, 'r')
     unzipped = Zlib::GzipReader.new(data).read
     unzipped.force_encoding Encoding::BINARY if Object.const_defined? :Encoding
@@ -23,8 +23,8 @@ module Gem::Util
   def self.gzip(data)
     require 'zlib'
-    require 'rubygems/util/stringio'
-    zipped = Gem::StringSink.new
+    require 'stringio'
+    zipped = StringIO.new('','w')
     zipped.set_encoding Encoding::BINARY if Object.const_defined? :Encoding
     Zlib::GzipWriter.wrap zipped do |io| io.write data end

data/lib/rubygems/util/licenses.rb ADDED

@@ -0,0 +1,309 @@
+class Gem::Licenses
+  NONSTANDARD = 'Nonstandard'.freeze
+  # Software Package Data Exchange (SPDX) standard open-source software
+  # license identifiers
+  IDENTIFIERS = %w(
+    AAL
+      ADSL
+      AFL-1.1
+      AFL-1.2
+      AFL-2.0
+      AFL-2.1
+      AFL-3.0
+      AGPL-1.0
+      AGPL-3.0
+      AMDPLPA
+      AML
+      AMPAS
+      ANTLR-PD
+      APAFML
+      APL-1.0
+      APSL-1.0
+      APSL-1.1
+      APSL-1.2
+      APSL-2.0
+      Abstyles
+      Adobe-2006
+      Adobe-Glyph
+      Afmparse
+      Aladdin
+      Apache-1.0
+      Apache-1.1
+      Apache-2.0
+      Artistic-1.0
+      Artistic-1.0-Perl
+      Artistic-1.0-cl8
+      Artistic-2.0
+      BSD-2-Clause
+      BSD-2-Clause-FreeBSD
+      BSD-2-Clause-NetBSD
+      BSD-3-Clause
+      BSD-3-Clause-Attribution
+      BSD-3-Clause-Clear
+      BSD-3-Clause-LBNL
+      BSD-4-Clause
+      BSD-4-Clause-UC
+      BSD-Protection
+      BSL-1.0
+      Bahyph
+      Barr
+      Beerware
+      BitTorrent-1.0
+      BitTorrent-1.1
+      Borceux
+      CATOSL-1.1
+      CC-BY-1.0
+      CC-BY-2.0
+      CC-BY-2.5
+      CC-BY-3.0
+      CC-BY-4.0
+      CC-BY-NC-1.0
+      CC-BY-NC-2.0
+      CC-BY-NC-2.5
+      CC-BY-NC-3.0
+      CC-BY-NC-4.0
+      CC-BY-NC-ND-1.0
+      CC-BY-NC-ND-2.0
+      CC-BY-NC-ND-2.5
+      CC-BY-NC-ND-3.0
+      CC-BY-NC-ND-4.0
+      CC-BY-NC-SA-1.0
+      CC-BY-NC-SA-2.0
+      CC-BY-NC-SA-2.5
+      CC-BY-NC-SA-3.0
+      CC-BY-NC-SA-4.0
+      CC-BY-ND-1.0
+      CC-BY-ND-2.0
+      CC-BY-ND-2.5
+      CC-BY-ND-3.0
+      CC-BY-ND-4.0
+      CC-BY-SA-1.0
+      CC-BY-SA-2.0
+      CC-BY-SA-2.5
+      CC-BY-SA-3.0
+      CC-BY-SA-4.0
+      CC0-1.0
+      CDDL-1.0
+      CDDL-1.1
+      CECILL-1.0
+      CECILL-1.1
+      CECILL-2.0
+      CECILL-B
+      CECILL-C
+      CNRI-Jython
+      CNRI-Python
+      CNRI-Python-GPL-Compatible
+      CPAL-1.0
+      CPL-1.0
+      CPOL-1.02
+      CUA-OPL-1.0
+      Caldera
+      ClArtistic
+      Condor-1.1
+      Crossword
+      Cube
+      D-FSL-1.0
+      DOC
+      DSDP
+      Dotseqn
+      ECL-1.0
+      ECL-2.0
+      EFL-1.0
+      EFL-2.0
+      EPL-1.0
+      EUDatagrid
+      EUPL-1.0
+      EUPL-1.1
+      Entessa
+      ErlPL-1.1
+      Eurosym
+      FSFUL
+      FSFULLR
+      FTL
+      Fair
+      Frameworx-1.0
+      FreeImage
+      GFDL-1.1
+      GFDL-1.2
+      GFDL-1.3
+      GL2PS
+      GPL-1.0
+      GPL-2.0
+      GPL-3.0
+      Giftware
+      Glide
+      Glulxe
+      HPND
+      HaskellReport
+      IBM-pibs
+      ICU
+      IJG
+      IPA
+      IPL-1.0
+      ISC
+      ImageMagick
+      Imlib2
+      Intel
+      Intel-ACPI
+      JSON
+      JasPer-2.0
+      LGPL-2.0
+      LGPL-2.1
+      LGPL-3.0
+      LGPLLR
+      LPL-1.0
+      LPL-1.02
+      LPPL-1.0
+      LPPL-1.1
+      LPPL-1.2
+      LPPL-1.3a
+      LPPL-1.3c
+      Latex2e
+      Leptonica
+      Libpng
+      MIT
+      MIT-CMU
+      MIT-advertising
+      MIT-enna
+      MIT-feh
+      MITNFA
+      MPL-1.0
+      MPL-1.1
+      MPL-2.0
+      MPL-2.0-no-copyleft-exception
+      MS-PL
+      MS-RL
+      MTLL
+      MakeIndex
+      MirOS
+      Motosoto
+      Multics
+      Mup
+      NASA-1.3
+      NBPL-1.0
+      NCSA
+      NGPL
+      NLPL
+      NOSL
+      NPL-1.0
+      NPL-1.1
+      NPOSL-3.0
+      NRL
+      NTP
+      Naumen
+      NetCDF
+      Newsletr
+      Nokia
+      Noweb
+      Nunit
+      OCLC-2.0
+      ODbL-1.0
+      OFL-1.0
+      OFL-1.1
+      OGTSL
+      OLDAP-1.1
+      OLDAP-1.2
+      OLDAP-1.3
+      OLDAP-1.4
+      OLDAP-2.0
+      OLDAP-2.0.1
+      OLDAP-2.1
+      OLDAP-2.2
+      OLDAP-2.2.1
+      OLDAP-2.2.2
+      OLDAP-2.3
+      OLDAP-2.4
+      OLDAP-2.5
+      OLDAP-2.6
+      OLDAP-2.7
+      OLDAP-2.8
+      OML
+      OPL-1.0
+      OSL-1.0
+      OSL-1.1
+      OSL-2.0
+      OSL-2.1
+      OSL-3.0
+      OpenSSL
+      PDDL-1.0
+      PHP-3.0
+      PHP-3.01
+      Plexus
+      PostgreSQL
+      Python-2.0
+      QPL-1.0
+      Qhull
+      RHeCos-1.1
+      RPL-1.1
+      RPL-1.5
+      RPSL-1.0
+      RSA-MD
+      RSCPL
+      Rdisc
+      Ruby
+      SAX-PD
+      SCEA
+      SGI-B-1.0
+      SGI-B-1.1
+      SGI-B-2.0
+      SISSL
+      SISSL-1.2
+      SMLNJ
+      SNIA
+      SPL-1.0
+      SWL
+      Saxpath
+      SimPL-2.0
+      Sleepycat
+      Spencer-86
+      Spencer-94
+      Spencer-99
+      SugarCRM-1.1.3
+      TCL
+      TMate
+      TORQUE-1.1
+      TOSL
+      UPL-1.0
+      Unicode-TOU
+      Unlicense
+      VOSTROM
+      VSL-1.0
+      Vim
+      W3C
+      W3C-19980720
+      WTFPL
+      Watcom-1.0
+      Wsuipa
+      X11
+      XFree86-1.1
+      XSkat
+      Xerox
+      Xnet
+      YPL-1.0
+      YPL-1.1
+      ZPL-1.1
+      ZPL-2.0
+      ZPL-2.1
+      Zed
+      Zend-2.0
+      Zimbra-1.3
+      Zimbra-1.4
+      Zlib
+      bzip2-1.0.5
+      bzip2-1.0.6
+      diffmark
+      dvipdfm
+      eGenix
+      gSOAP-1.3b
+      gnuplot
+      iMatix
+      libtiff
+      mpich2
+      psfrag
+      psutils
+      xinetd
+      xpp
+      zlib-acknowledgement
+  ).freeze
+end

data/lib/rubygems/util/list.rb CHANGED

@@ -1,7 +1,13 @@
 module Gem
-  List = Struct.new(:value, :tail)
   class List
+    include Enumerable
+    attr_accessor :value, :tail
+    def initialize(value = nil, tail = nil)
+      @value = value
+      @tail = tail
+    end
     def each
       n = self
       while n
@@ -11,25 +17,7 @@ module Gem
     end
     def to_a
-      ary = []
-      n = self
-      while n
-        ary.unshift n.value
-        n = n.tail
-      end
-      ary
-    end
-    def find
-      n = self
-      while n
-        v = n.value
-        return v if yield(v)
-        n = n.tail
-      end
-      nil
+      super.reverse
     end
     def prepend(value)

data/lib/rubygems/version.rb CHANGED

@@ -217,12 +217,14 @@ class Gem::Version
   # Pre-release (alpha) parts, e.g, 5.3.1.b.2 => 5.4, are ignored.
   def bump
-    segments = self.segments.dup
-    segments.pop while segments.any? { |s| String === s }
-    segments.pop if segments.size > 1
-    segments[-1] = segments[-1].succ
-    self.class.new segments.join(".")
+    @bump ||= begin
+                segments = self.segments.dup
+                segments.pop while segments.any? { |s| String === s }
+                segments.pop if segments.size > 1
+                segments[-1] = segments[-1].succ
+                self.class.new segments.join(".")
+              end
   end
   ##
@@ -230,11 +232,11 @@ class Gem::Version
   # same precision. Version "1.0" is not the same as version "1".
   def eql? other
-    self.class === other and @version == other.version
+    self.class === other and @version == other._version
   end
   def hash # :nodoc:
-    @hash ||= segments.hash
+    @version.hash
   end
   def init_with coder # :nodoc:
@@ -291,11 +293,13 @@ class Gem::Version
   # Non-prerelease versions return themselves.
   def release
-    return self unless prerelease?
-    segments = self.segments.dup
-    segments.pop while segments.any? { |s| String === s }
-    self.class.new segments.join('.')
+    @release ||= if prerelease?
+                   segments = self.segments.dup
+                   segments.pop while segments.any? { |s| String === s }
+                   self.class.new segments.join('.')
+                 else
+                   self
+                 end
   end
   def segments # :nodoc:
@@ -329,7 +333,7 @@ class Gem::Version
   def <=> other
     return unless Gem::Version === other
-    return 0 if @version == other.version
+    return 0 if @version == other._version
     lhsegments = segments
     rhsegments = other.segments
@@ -353,4 +357,10 @@ class Gem::Version
     return 0
   end
+  protected
+  def _version
+    @version
+  end
 end