rubygems-update 3.2.26 → 3.2.30

Sign up to get free protection for your applications and to get access to all the features.
Files changed (159) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +60 -0
  3. data/Manifest.txt +12 -3
  4. data/bundler/CHANGELOG.md +50 -1
  5. data/bundler/README.md +1 -1
  6. data/bundler/lib/bundler/build_metadata.rb +2 -2
  7. data/bundler/lib/bundler/cli/check.rb +1 -1
  8. data/bundler/lib/bundler/cli/gem.rb +19 -2
  9. data/bundler/lib/bundler/cli/info.rb +11 -4
  10. data/bundler/lib/bundler/cli/issue.rb +4 -3
  11. data/bundler/lib/bundler/cli/remove.rb +1 -2
  12. data/bundler/lib/bundler/cli.rb +1 -0
  13. data/bundler/lib/bundler/compact_index_client.rb +2 -2
  14. data/bundler/lib/bundler/definition.rb +16 -6
  15. data/bundler/lib/bundler/digest.rb +71 -0
  16. data/bundler/lib/bundler/errors.rb +18 -2
  17. data/bundler/lib/bundler/fetcher.rb +2 -1
  18. data/bundler/lib/bundler/friendly_errors.rb +5 -30
  19. data/bundler/lib/bundler/gem_helper.rb +6 -17
  20. data/bundler/lib/bundler/installer.rb +0 -1
  21. data/bundler/lib/bundler/plugin/installer.rb +2 -0
  22. data/bundler/lib/bundler/plugin.rb +23 -6
  23. data/bundler/lib/bundler/rubygems_ext.rb +4 -0
  24. data/bundler/lib/bundler/rubygems_gem_installer.rb +20 -4
  25. data/bundler/lib/bundler/rubygems_integration.rb +28 -9
  26. data/bundler/lib/bundler/runtime.rb +1 -1
  27. data/bundler/lib/bundler/settings.rb +9 -1
  28. data/bundler/lib/bundler/source/git.rb +22 -4
  29. data/bundler/lib/bundler/source/rubygems.rb +43 -72
  30. data/bundler/lib/bundler/source.rb +2 -0
  31. data/bundler/lib/bundler/source_list.rb +4 -0
  32. data/bundler/lib/bundler/spec_set.rb +1 -1
  33. data/bundler/lib/bundler/templates/newgem/github/workflows/main.yml.tt +2 -1
  34. data/bundler/lib/bundler/templates/newgem/newgem.gemspec.tt +1 -1
  35. data/bundler/lib/bundler/vendor/connection_pool/LICENSE +20 -0
  36. data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/timed_stack.rb +19 -21
  37. data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/version.rb +1 -1
  38. data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/wrapper.rb +57 -0
  39. data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool.rb +39 -74
  40. data/bundler/lib/bundler/vendor/fileutils/LICENSE.txt +22 -0
  41. data/bundler/lib/bundler/vendor/molinillo/LICENSE +9 -0
  42. data/bundler/lib/bundler/vendor/net-http-persistent/README.rdoc +82 -0
  43. data/bundler/lib/bundler/vendor/thor/LICENSE.md +20 -0
  44. data/bundler/lib/bundler/vendor/uri/LICENSE.txt +22 -0
  45. data/bundler/lib/bundler/version.rb +1 -1
  46. data/bundler/lib/bundler/worker.rb +2 -2
  47. data/bundler/lib/bundler.rb +13 -18
  48. data/lib/rubygems/command_manager.rb +3 -3
  49. data/lib/rubygems/commands/build_command.rb +3 -3
  50. data/lib/rubygems/commands/cert_command.rb +15 -8
  51. data/lib/rubygems/commands/check_command.rb +4 -4
  52. data/lib/rubygems/commands/cleanup_command.rb +3 -3
  53. data/lib/rubygems/commands/contents_command.rb +2 -2
  54. data/lib/rubygems/commands/dependency_command.rb +3 -3
  55. data/lib/rubygems/commands/environment_command.rb +1 -1
  56. data/lib/rubygems/commands/fetch_command.rb +3 -3
  57. data/lib/rubygems/commands/generate_index_command.rb +2 -2
  58. data/lib/rubygems/commands/help_command.rb +1 -1
  59. data/lib/rubygems/commands/info_command.rb +2 -2
  60. data/lib/rubygems/commands/install_command.rb +12 -11
  61. data/lib/rubygems/commands/list_command.rb +2 -2
  62. data/lib/rubygems/commands/lock_command.rb +1 -1
  63. data/lib/rubygems/commands/mirror_command.rb +1 -1
  64. data/lib/rubygems/commands/open_command.rb +2 -2
  65. data/lib/rubygems/commands/outdated_command.rb +4 -4
  66. data/lib/rubygems/commands/owner_command.rb +4 -4
  67. data/lib/rubygems/commands/pristine_command.rb +5 -5
  68. data/lib/rubygems/commands/push_command.rb +4 -4
  69. data/lib/rubygems/commands/query_command.rb +3 -3
  70. data/lib/rubygems/commands/rdoc_command.rb +3 -3
  71. data/lib/rubygems/commands/search_command.rb +2 -2
  72. data/lib/rubygems/commands/server_command.rb +3 -3
  73. data/lib/rubygems/commands/setup_command.rb +6 -6
  74. data/lib/rubygems/commands/signin_command.rb +2 -2
  75. data/lib/rubygems/commands/signout_command.rb +1 -1
  76. data/lib/rubygems/commands/sources_command.rb +4 -4
  77. data/lib/rubygems/commands/specification_command.rb +4 -4
  78. data/lib/rubygems/commands/stale_command.rb +1 -1
  79. data/lib/rubygems/commands/uninstall_command.rb +3 -3
  80. data/lib/rubygems/commands/unpack_command.rb +5 -5
  81. data/lib/rubygems/commands/update_command.rb +9 -9
  82. data/lib/rubygems/commands/which_command.rb +1 -1
  83. data/lib/rubygems/commands/yank_command.rb +4 -4
  84. data/lib/rubygems/config_file.rb +1 -1
  85. data/lib/rubygems/core_ext/tcpsocket_init.rb +2 -2
  86. data/lib/rubygems/defaults.rb +1 -1
  87. data/lib/rubygems/dependency_installer.rb +8 -8
  88. data/lib/rubygems/dependency_list.rb +1 -1
  89. data/lib/rubygems/doctor.rb +2 -2
  90. data/lib/rubygems/errors.rb +1 -2
  91. data/lib/rubygems/exceptions.rb +1 -1
  92. data/lib/rubygems/gem_runner.rb +3 -3
  93. data/lib/rubygems/gemcutter_utilities.rb +2 -2
  94. data/lib/rubygems/indexer.rb +2 -2
  95. data/lib/rubygems/install_default_message.rb +2 -2
  96. data/lib/rubygems/install_message.rb +2 -2
  97. data/lib/rubygems/install_update_options.rb +2 -2
  98. data/lib/rubygems/installer.rb +8 -8
  99. data/lib/rubygems/local_remote_options.rb +1 -1
  100. data/lib/rubygems/mock_gem_ui.rb +1 -1
  101. data/lib/rubygems/package/tar_reader.rb +1 -1
  102. data/lib/rubygems/package.rb +36 -46
  103. data/lib/rubygems/package_task.rb +2 -2
  104. data/lib/rubygems/platform.rb +2 -1
  105. data/lib/rubygems/query_utils.rb +4 -4
  106. data/lib/rubygems/rdoc.rb +1 -1
  107. data/lib/rubygems/remote_fetcher.rb +16 -22
  108. data/lib/rubygems/request/connection_pools.rb +1 -1
  109. data/lib/rubygems/request/http_pool.rb +1 -1
  110. data/lib/rubygems/request.rb +7 -5
  111. data/lib/rubygems/request_set/lockfile/tokenizer.rb +1 -1
  112. data/lib/rubygems/request_set/lockfile.rb +1 -1
  113. data/lib/rubygems/request_set.rb +5 -5
  114. data/lib/rubygems/requirement.rb +1 -1
  115. data/lib/rubygems/resolver/git_specification.rb +1 -1
  116. data/lib/rubygems/resolver/installer_set.rb +3 -3
  117. data/lib/rubygems/resolver/molinillo/LICENSE +9 -0
  118. data/lib/rubygems/resolver/molinillo.rb +1 -1
  119. data/lib/rubygems/resolver/set.rb +0 -1
  120. data/lib/rubygems/resolver/specification.rb +1 -1
  121. data/lib/rubygems/resolver.rb +31 -31
  122. data/lib/rubygems/s3_uri_signer.rb +4 -5
  123. data/lib/rubygems/security/policy.rb +6 -4
  124. data/lib/rubygems/security/signer.rb +4 -5
  125. data/lib/rubygems/security.rb +54 -20
  126. data/lib/rubygems/security_option.rb +2 -2
  127. data/lib/rubygems/server.rb +2 -2
  128. data/lib/rubygems/source/git.rb +2 -2
  129. data/lib/rubygems/source.rb +7 -7
  130. data/lib/rubygems/spec_fetcher.rb +5 -5
  131. data/lib/rubygems/specification.rb +12 -12
  132. data/lib/rubygems/specification_policy.rb +2 -2
  133. data/lib/rubygems/uninstaller.rb +6 -6
  134. data/lib/rubygems/uri.rb +111 -0
  135. data/lib/rubygems/user_interaction.rb +3 -3
  136. data/lib/rubygems/util/licenses.rb +1 -1
  137. data/lib/rubygems/util.rb +1 -1
  138. data/lib/rubygems/validator.rb +2 -2
  139. data/lib/rubygems/version_option.rb +1 -1
  140. data/lib/rubygems.rb +16 -16
  141. data/rubygems-update.gemspec +1 -1
  142. data/test/rubygems/helper.rb +4 -12
  143. data/test/rubygems/private_ec_key.pem +9 -0
  144. data/test/rubygems/test_gem.rb +59 -71
  145. data/test/rubygems/test_gem_commands_cert_command.rb +63 -4
  146. data/test/rubygems/test_gem_commands_install_command.rb +25 -0
  147. data/test/rubygems/test_gem_package.rb +27 -26
  148. data/test/rubygems/test_gem_platform.rb +1 -0
  149. data/test/rubygems/test_gem_remote_fetcher.rb +30 -0
  150. data/test/rubygems/test_gem_request.rb +35 -9
  151. data/test/rubygems/test_gem_resolver_installer_set.rb +18 -0
  152. data/test/rubygems/test_gem_security.rb +32 -4
  153. data/test/rubygems/test_gem_source_fetch_problem.rb +10 -0
  154. data/test/rubygems/test_gem_specification.rb +228 -232
  155. data/test/rubygems/test_gem_uri.rb +39 -0
  156. metadata +18 -9
  157. data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/monotonic_time.rb +0 -66
  158. data/lib/rubygems/uri_parser.rb +0 -34
  159. data/lib/rubygems/uri_parsing.rb +0 -23
@@ -185,7 +185,7 @@ class TestGemRequest < Gem::TestCase
185
185
  end
186
186
 
187
187
  def test_fetch
188
- uri = URI.parse "#{@gem_repo}/specs.#{Gem.marshal_version}"
188
+ uri = Gem::Uri.new(URI.parse "#{@gem_repo}/specs.#{Gem.marshal_version}")
189
189
  response = util_stub_net_http(:body => :junk, :code => 200) do
190
190
  @request = make_request(uri, Net::HTTP::Get, nil, nil)
191
191
 
@@ -197,31 +197,57 @@ class TestGemRequest < Gem::TestCase
197
197
  end
198
198
 
199
199
  def test_fetch_basic_auth
200
- uri = URI.parse "https://user:pass@example.rubygems/specs.#{Gem.marshal_version}"
200
+ Gem.configuration.verbose = :really
201
+ uri = Gem::Uri.new(URI.parse "https://user:pass@example.rubygems/specs.#{Gem.marshal_version}")
201
202
  conn = util_stub_net_http(:body => :junk, :code => 200) do |c|
202
- @request = make_request(uri, Net::HTTP::Get, nil, nil)
203
- @request.fetch
203
+ use_ui @ui do
204
+ @request = make_request(uri, Net::HTTP::Get, nil, nil)
205
+ @request.fetch
206
+ end
204
207
  c
205
208
  end
206
209
 
207
210
  auth_header = conn.payload['Authorization']
208
211
  assert_equal "Basic #{Base64.encode64('user:pass')}".strip, auth_header
212
+ assert_includes @ui.output, "GET https://user:REDACTED@example.rubygems/specs.#{Gem.marshal_version}"
209
213
  end
210
214
 
211
215
  def test_fetch_basic_auth_encoded
212
- uri = URI.parse "https://user:%7BDEScede%7Dpass@example.rubygems/specs.#{Gem.marshal_version}"
216
+ Gem.configuration.verbose = :really
217
+ uri = Gem::Uri.new(URI.parse "https://user:%7BDEScede%7Dpass@example.rubygems/specs.#{Gem.marshal_version}")
218
+
213
219
  conn = util_stub_net_http(:body => :junk, :code => 200) do |c|
214
- @request = make_request(uri, Net::HTTP::Get, nil, nil)
215
- @request.fetch
220
+ use_ui @ui do
221
+ @request = make_request(uri, Net::HTTP::Get, nil, nil)
222
+ @request.fetch
223
+ end
216
224
  c
217
225
  end
218
226
 
219
227
  auth_header = conn.payload['Authorization']
220
228
  assert_equal "Basic #{Base64.encode64('user:{DEScede}pass')}".strip, auth_header
229
+ assert_includes @ui.output, "GET https://user:REDACTED@example.rubygems/specs.#{Gem.marshal_version}"
230
+ end
231
+
232
+ def test_fetch_basic_oauth_encoded
233
+ Gem.configuration.verbose = :really
234
+ uri = Gem::Uri.new(URI.parse "https://%7BDEScede%7Dpass:x-oauth-basic@example.rubygems/specs.#{Gem.marshal_version}")
235
+
236
+ conn = util_stub_net_http(:body => :junk, :code => 200) do |c|
237
+ use_ui @ui do
238
+ @request = make_request(uri, Net::HTTP::Get, nil, nil)
239
+ @request.fetch
240
+ end
241
+ c
242
+ end
243
+
244
+ auth_header = conn.payload['Authorization']
245
+ assert_equal "Basic #{Base64.encode64('{DEScede}pass:x-oauth-basic')}".strip, auth_header
246
+ assert_includes @ui.output, "GET https://REDACTED:x-oauth-basic@example.rubygems/specs.#{Gem.marshal_version}"
221
247
  end
222
248
 
223
249
  def test_fetch_head
224
- uri = URI.parse "#{@gem_repo}/specs.#{Gem.marshal_version}"
250
+ uri = Gem::Uri.new(URI.parse "#{@gem_repo}/specs.#{Gem.marshal_version}")
225
251
  response = util_stub_net_http(:body => '', :code => 200) do |conn|
226
252
  @request = make_request(uri, Net::HTTP::Get, nil, nil)
227
253
  @request.fetch
@@ -232,7 +258,7 @@ class TestGemRequest < Gem::TestCase
232
258
  end
233
259
 
234
260
  def test_fetch_unmodified
235
- uri = URI.parse "#{@gem_repo}/specs.#{Gem.marshal_version}"
261
+ uri = Gem::Uri.new(URI.parse "#{@gem_repo}/specs.#{Gem.marshal_version}")
236
262
  t = Time.utc(2013, 1, 2, 3, 4, 5)
237
263
  conn, response = util_stub_net_http(:body => '', :code => 304) do |c|
238
264
  @request = make_request(uri, Net::HTTP::Get, t, nil)
@@ -64,6 +64,24 @@ class TestGemResolverInstallerSet < Gem::TestCase
64
64
  assert_equal %w[a-1], set.always_install.map {|s| s.full_name }
65
65
  end
66
66
 
67
+ def test_add_always_install_prerelease_github_problem
68
+ spec_fetcher do |fetcher|
69
+ fetcher.gem 'a', 1
70
+ end
71
+
72
+ # Github has an issue in which it will generate a misleading prerelease output in its RubyGems server API and
73
+ # returns a 0 version for the gem while it doesn't exist.
74
+ @fetcher.data["#{@gem_repo}prerelease_specs.#{Gem.marshal_version}.gz"] = util_gzip(Marshal.dump([
75
+ Gem::NameTuple.new('a', Gem::Version.new(0), 'ruby'),
76
+ ]))
77
+
78
+ set = Gem::Resolver::InstallerSet.new :both
79
+
80
+ set.add_always_install dep('a')
81
+
82
+ assert_equal %w[a-1], set.always_install.map {|s| s.full_name }
83
+ end
84
+
67
85
  def test_add_always_install_prerelease_only
68
86
  spec_fetcher do |fetcher|
69
87
  fetcher.gem 'a', '3.a'
@@ -12,6 +12,7 @@ end
12
12
 
13
13
  class TestGemSecurity < Gem::TestCase
14
14
  CHILD_KEY = load_key 'child'
15
+ EC_KEY = load_key 'private_ec', 'Foo bar'
15
16
 
16
17
  ALTERNATE_CERT = load_cert 'child'
17
18
  CHILD_CERT = load_cert 'child'
@@ -103,11 +104,38 @@ class TestGemSecurity < Gem::TestCase
103
104
  end
104
105
 
105
106
  def test_class_create_key
106
- key = @SEC.create_key 1024
107
+ key = @SEC.create_key 'rsa'
107
108
 
108
109
  assert_kind_of OpenSSL::PKey::RSA, key
109
110
  end
110
111
 
112
+ def test_class_create_key_downcases
113
+ key = @SEC.create_key 'DSA'
114
+
115
+ assert_kind_of OpenSSL::PKey::DSA, key
116
+ end
117
+
118
+ def test_class_create_key_raises_unknown_algorithm
119
+ e = assert_raise Gem::Security::Exception do
120
+ @SEC.create_key 'NOT_RSA'
121
+ end
122
+
123
+ assert_equal "NOT_RSA algorithm not found. RSA, DSA, and EC algorithms are supported.",
124
+ e.message
125
+ end
126
+
127
+ def test_class_get_public_key_rsa
128
+ pkey_pem = PRIVATE_KEY.public_key.to_pem
129
+
130
+ assert_equal pkey_pem, @SEC.get_public_key(PRIVATE_KEY).to_pem
131
+ end
132
+
133
+ def test_class_get_public_key_ec
134
+ pkey = @SEC.get_public_key(EC_KEY)
135
+
136
+ assert_respond_to pkey, :to_pem
137
+ end
138
+
111
139
  def test_class_email_to_name
112
140
  assert_equal '/CN=nobody/DC=example',
113
141
  @SEC.email_to_name('nobody@example').to_s
@@ -259,7 +287,7 @@ class TestGemSecurity < Gem::TestCase
259
287
  end
260
288
 
261
289
  def test_class_write
262
- key = @SEC.create_key 1024
290
+ key = @SEC.create_key 'rsa'
263
291
 
264
292
  path = File.join @tempdir, 'test-private_key.pem'
265
293
 
@@ -273,7 +301,7 @@ class TestGemSecurity < Gem::TestCase
273
301
  end
274
302
 
275
303
  def test_class_write_encrypted
276
- key = @SEC.create_key 1024
304
+ key = @SEC.create_key 'rsa'
277
305
 
278
306
  path = File.join @tempdir, 'test-private_encrypted_key.pem'
279
307
 
@@ -289,7 +317,7 @@ class TestGemSecurity < Gem::TestCase
289
317
  end
290
318
 
291
319
  def test_class_write_encrypted_cipher
292
- key = @SEC.create_key 1024
320
+ key = @SEC.create_key 'rsa'
293
321
 
294
322
  path = File.join @tempdir, 'test-private_encrypted__with_non_default_cipher_key.pem'
295
323
 
@@ -23,4 +23,14 @@ class TestGemSourceFetchProblem < Gem::TestCase
23
23
 
24
24
  refute_match sf.wordy, 'secret'
25
25
  end
26
+
27
+ def test_source_password_no_redacted
28
+ source = Gem::Source.new 'https://username:secret@gemsource.com'
29
+ error = RuntimeError.new 'test'
30
+
31
+ sf = Gem::SourceFetchProblem.new source, error
32
+ sf.wordy
33
+
34
+ assert_match 'secret', source.uri.to_s
35
+ end
26
36
  end