RubyGems - rubygems-update - Versions diffs - 3.3.18 → 3.6.2 - Mend

rubygems-update 3.3.18 → 3.6.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (832) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +2182 -1067
data/CODE_OF_CONDUCT.md +79 -28
data/Manifest.txt +184 -290
data/README.md +35 -19
data/bundler/CHANGELOG.md +1003 -3
data/bundler/README.md +3 -7
data/bundler/bundler.gemspec +11 -11
data/bundler/exe/bundle +5 -25
data/bundler/lib/bundler/build_metadata.rb +3 -3
data/bundler/lib/bundler/capistrano.rb +1 -1
data/bundler/lib/bundler/checksum.rb +254 -0
data/bundler/lib/bundler/ci_detector.rb +75 -0
data/bundler/lib/bundler/cli/add.rb +7 -5
data/bundler/lib/bundler/cli/binstubs.rb +10 -6
data/bundler/lib/bundler/cli/cache.rb +1 -1
data/bundler/lib/bundler/cli/check.rb +4 -4
data/bundler/lib/bundler/cli/common.rb +11 -1
data/bundler/lib/bundler/cli/config.rb +8 -7
data/bundler/lib/bundler/cli/console.rb +2 -5
data/bundler/lib/bundler/cli/doctor.rb +10 -12
data/bundler/lib/bundler/cli/exec.rb +2 -1
data/bundler/lib/bundler/cli/fund.rb +1 -1
data/bundler/lib/bundler/cli/gem.rb +77 -53
data/bundler/lib/bundler/cli/info.rb +4 -15
data/bundler/lib/bundler/cli/init.rb +6 -2
data/bundler/lib/bundler/cli/inject.rb +1 -1
data/bundler/lib/bundler/cli/install.rb +27 -15
data/bundler/lib/bundler/cli/issue.rb +1 -1
data/bundler/lib/bundler/cli/lock.rb +54 -28
data/bundler/lib/bundler/cli/open.rb +9 -9
data/bundler/lib/bundler/cli/outdated.rb +34 -29
data/bundler/lib/bundler/cli/platform.rb +7 -5
data/bundler/lib/bundler/cli/plugin.rb +9 -15
data/bundler/lib/bundler/cli/pristine.rb +38 -30
data/bundler/lib/bundler/cli/show.rb +4 -4
data/bundler/lib/bundler/cli/update.rb +6 -5
data/bundler/lib/bundler/cli/viz.rb +1 -1
data/bundler/lib/bundler/cli.rb +258 -307
data/bundler/lib/bundler/compact_index_client/cache.rb +55 -60
data/bundler/lib/bundler/compact_index_client/cache_file.rb +148 -0
data/bundler/lib/bundler/compact_index_client/gem_parser.rb +7 -3
data/bundler/lib/bundler/compact_index_client/parser.rb +84 -0
data/bundler/lib/bundler/compact_index_client/updater.rb +71 -83
data/bundler/lib/bundler/compact_index_client.rb +58 -80
data/bundler/lib/bundler/constants.rb +9 -2
data/bundler/lib/bundler/current_ruby.rb +11 -16
data/bundler/lib/bundler/definition.rb +547 -228
data/bundler/lib/bundler/dependency.rb +30 -87
data/bundler/lib/bundler/digest.rb +3 -3
data/bundler/lib/bundler/dsl.rb +115 -65
data/bundler/lib/bundler/endpoint_specification.rb +27 -14
data/bundler/lib/bundler/env.rb +5 -7
data/bundler/lib/bundler/environment_preserver.rb +8 -25
data/bundler/lib/bundler/errors.rb +85 -11
data/bundler/lib/bundler/feature_flag.rb +1 -2
data/bundler/lib/bundler/fetcher/base.rb +5 -3
data/bundler/lib/bundler/fetcher/compact_index.rb +28 -43
data/bundler/lib/bundler/fetcher/dependency.rb +3 -7
data/bundler/lib/bundler/fetcher/downloader.rb +17 -16
data/bundler/lib/bundler/fetcher/gem_remote_fetcher.rb +16 -0
data/bundler/lib/bundler/fetcher/index.rb +2 -3
data/bundler/lib/bundler/fetcher.rb +91 -74
data/bundler/lib/bundler/force_platform.rb +16 -0
data/bundler/lib/bundler/friendly_errors.rb +6 -9
data/bundler/lib/bundler/gem_helper.rb +5 -6
data/bundler/lib/bundler/gem_helpers.rb +45 -7
data/bundler/lib/bundler/gem_version_promoter.rb +68 -109
data/bundler/lib/bundler/graph.rb +9 -9
data/bundler/lib/bundler/index.rb +69 -73
data/bundler/lib/bundler/injector.rb +12 -13
data/bundler/lib/bundler/inline.rb +40 -17
data/bundler/lib/bundler/installer/gem_installer.rb +13 -12
data/bundler/lib/bundler/installer/parallel_installer.rb +19 -66
data/bundler/lib/bundler/installer/standalone.rb +29 -15
data/bundler/lib/bundler/installer.rb +27 -77
data/bundler/lib/bundler/lazy_specification.rb +134 -71
data/bundler/lib/bundler/lockfile_generator.rb +13 -4
data/bundler/lib/bundler/lockfile_parser.rb +134 -61
data/bundler/lib/bundler/man/bundle-add.1 +46 -48
data/bundler/lib/bundler/man/bundle-add.1.ronn +54 -22
data/bundler/lib/bundler/man/bundle-binstubs.1 +10 -19
data/bundler/lib/bundler/man/bundle-binstubs.1.ronn +6 -3
data/bundler/lib/bundler/man/bundle-cache.1 +38 -25
data/bundler/lib/bundler/man/bundle-cache.1.ronn +40 -4
data/bundler/lib/bundler/man/bundle-check.1 +7 -14
data/bundler/lib/bundler/man/bundle-check.1.ronn +7 -2
data/bundler/lib/bundler/man/bundle-clean.1 +4 -11
data/bundler/lib/bundler/man/bundle-clean.1.ronn +1 -1
data/bundler/lib/bundler/man/bundle-config.1 +41 -220
data/bundler/lib/bundler/man/bundle-config.1.ronn +27 -22
data/bundler/lib/bundler/man/bundle-console.1 +33 -0
data/bundler/lib/bundler/man/bundle-console.1.ronn +39 -0
data/bundler/lib/bundler/man/bundle-doctor.1 +5 -19
data/bundler/lib/bundler/man/bundle-doctor.1.ronn +1 -1
data/bundler/lib/bundler/man/bundle-env.1 +9 -0
data/bundler/lib/bundler/man/bundle-env.1.ronn +10 -0
data/bundler/lib/bundler/man/bundle-exec.1 +20 -78
data/bundler/lib/bundler/man/bundle-exec.1.ronn +12 -10
data/bundler/lib/bundler/man/bundle-fund.1 +22 -0
data/bundler/lib/bundler/man/bundle-fund.1.ronn +25 -0
data/bundler/lib/bundler/man/bundle-gem.1 +53 -81
data/bundler/lib/bundler/man/bundle-gem.1.ronn +41 -9
data/bundler/lib/bundler/man/bundle-help.1 +9 -0
data/bundler/lib/bundler/man/bundle-help.1.ronn +12 -0
data/bundler/lib/bundler/man/bundle-info.1 +8 -11
data/bundler/lib/bundler/man/bundle-info.1.ronn +9 -5
data/bundler/lib/bundler/man/bundle-init.1 +7 -12
data/bundler/lib/bundler/man/bundle-init.1.ronn +4 -1
data/bundler/lib/bundler/man/bundle-inject.1 +17 -19
data/bundler/lib/bundler/man/bundle-inject.1.ronn +12 -2
data/bundler/lib/bundler/man/bundle-install.1 +42 -162
data/bundler/lib/bundler/man/bundle-install.1.ronn +31 -49
data/bundler/lib/bundler/man/bundle-issue.1 +45 -0
data/bundler/lib/bundler/man/bundle-issue.1.ronn +37 -0
data/bundler/lib/bundler/man/bundle-licenses.1 +9 -0
data/bundler/lib/bundler/man/bundle-licenses.1.ronn +10 -0
data/bundler/lib/bundler/man/bundle-list.1 +4 -19
data/bundler/lib/bundler/man/bundle-list.1.ronn +4 -1
data/bundler/lib/bundler/man/bundle-lock.1 +25 -34
data/bundler/lib/bundler/man/bundle-lock.1.ronn +25 -4
data/bundler/lib/bundler/man/bundle-open.1 +18 -18
data/bundler/lib/bundler/man/bundle-open.1.ronn +10 -1
data/bundler/lib/bundler/man/bundle-outdated.1 +22 -67
data/bundler/lib/bundler/man/bundle-outdated.1.ronn +20 -12
data/bundler/lib/bundler/man/bundle-platform.1 +16 -28
data/bundler/lib/bundler/man/bundle-platform.1.ronn +14 -7
data/bundler/lib/bundler/man/bundle-plugin.1 +58 -0
data/bundler/lib/bundler/man/bundle-plugin.1.ronn +63 -0
data/bundler/lib/bundler/man/bundle-pristine.1 +5 -16
data/bundler/lib/bundler/man/bundle-pristine.1.ronn +1 -1
data/bundler/lib/bundler/man/bundle-remove.1 +4 -14
data/bundler/lib/bundler/man/bundle-remove.1.ronn +1 -1
data/bundler/lib/bundler/man/bundle-show.1 +7 -11
data/bundler/lib/bundler/man/bundle-show.1.ronn +4 -0
data/bundler/lib/bundler/man/bundle-update.1 +30 -143
data/bundler/lib/bundler/man/bundle-update.1.ronn +14 -6
data/bundler/lib/bundler/man/bundle-version.1 +22 -0
data/bundler/lib/bundler/man/bundle-version.1.ronn +24 -0
data/bundler/lib/bundler/man/bundle-viz.1 +9 -18
data/bundler/lib/bundler/man/bundle-viz.1.ronn +9 -3
data/bundler/lib/bundler/man/bundle.1 +17 -51
data/bundler/lib/bundler/man/bundle.1.ronn +12 -7
data/bundler/lib/bundler/man/gemfile.5 +77 -341
data/bundler/lib/bundler/man/gemfile.5.ronn +73 -54
data/bundler/lib/bundler/man/index.txt +8 -0
data/bundler/lib/bundler/match_metadata.rb +17 -0
data/bundler/lib/bundler/match_platform.rb +1 -1
data/bundler/lib/bundler/match_remote_metadata.rb +29 -0
data/bundler/lib/bundler/materialization.rb +59 -0
data/bundler/lib/bundler/mirror.rb +8 -10
data/bundler/lib/bundler/plugin/api/source.rb +7 -5
data/bundler/lib/bundler/plugin/events.rb +24 -0
data/bundler/lib/bundler/plugin/index.rb +13 -5
data/bundler/lib/bundler/plugin/installer/path.rb +18 -0
data/bundler/lib/bundler/plugin/installer/rubygems.rb +0 -4
data/bundler/lib/bundler/plugin/installer.rb +42 -19
data/bundler/lib/bundler/plugin/source_list.rb +4 -4
data/bundler/lib/bundler/plugin.rb +35 -7
data/bundler/lib/bundler/process_lock.rb +10 -14
data/bundler/lib/bundler/remote_specification.rb +17 -13
data/bundler/lib/bundler/resolver/base.rb +117 -0
data/bundler/lib/bundler/resolver/candidate.rb +82 -0
data/bundler/lib/bundler/resolver/incompatibility.rb +15 -0
data/bundler/lib/bundler/resolver/package.rb +90 -0
data/bundler/lib/bundler/resolver/root.rb +25 -0
data/bundler/lib/bundler/resolver/spec_group.rb +54 -67
data/bundler/lib/bundler/resolver.rb +432 -329
data/bundler/lib/bundler/retry.rb +2 -2
data/bundler/lib/bundler/ruby_dsl.rb +42 -7
data/bundler/lib/bundler/ruby_version.rb +23 -10
data/bundler/lib/bundler/rubygems_ext.rb +286 -81
data/bundler/lib/bundler/rubygems_gem_installer.rb +77 -68
data/bundler/lib/bundler/rubygems_integration.rb +57 -155
data/bundler/lib/bundler/runtime.rb +28 -17
data/bundler/lib/bundler/safe_marshal.rb +31 -0
data/bundler/lib/bundler/self_manager.rb +50 -12
data/bundler/lib/bundler/settings.rb +144 -58
data/bundler/lib/bundler/setup.rb +13 -1
data/bundler/lib/bundler/shared_helpers.rb +87 -36
data/bundler/lib/bundler/source/git/git_proxy.rb +278 -80
data/bundler/lib/bundler/source/git.rb +161 -68
data/bundler/lib/bundler/source/metadata.rb +16 -16
data/bundler/lib/bundler/source/path/installer.rb +1 -22
data/bundler/lib/bundler/source/path.rb +16 -26
data/bundler/lib/bundler/source/rubygems/remote.rb +1 -1
data/bundler/lib/bundler/source/rubygems.rb +94 -154
data/bundler/lib/bundler/source.rb +3 -1
data/bundler/lib/bundler/source_list.rb +34 -4
data/bundler/lib/bundler/spec_set.rb +195 -65
data/bundler/lib/bundler/stub_specification.rb +34 -4
data/bundler/lib/bundler/templates/Executable +1 -1
data/bundler/lib/bundler/templates/Executable.bundler +6 -11
data/bundler/lib/bundler/templates/Executable.standalone +2 -0
data/bundler/lib/bundler/templates/newgem/CODE_OF_CONDUCT.md.tt +77 -29
data/bundler/lib/bundler/templates/newgem/Cargo.toml.tt +7 -0
data/bundler/lib/bundler/templates/newgem/README.md.tt +11 -5
data/bundler/lib/bundler/templates/newgem/Rakefile.tt +19 -8
data/bundler/lib/bundler/templates/newgem/bin/console.tt +0 -4
data/bundler/lib/bundler/templates/newgem/circleci/config.yml.tt +12 -0
data/bundler/lib/bundler/templates/newgem/ext/newgem/Cargo.toml.tt +15 -0
data/bundler/lib/bundler/templates/newgem/ext/newgem/extconf-c.rb.tt +10 -0
data/bundler/lib/bundler/templates/newgem/ext/newgem/extconf-rust.rb.tt +6 -0
data/bundler/lib/bundler/templates/newgem/ext/newgem/newgem.c.tt +1 -1
data/bundler/lib/bundler/templates/newgem/ext/newgem/src/lib.rs.tt +12 -0
data/bundler/lib/bundler/templates/newgem/github/workflows/main.yml.tt +18 -8
data/bundler/lib/bundler/templates/newgem/gitignore.tt +3 -0
data/bundler/lib/bundler/templates/newgem/gitlab-ci.yml.tt +13 -4
data/bundler/lib/bundler/templates/newgem/newgem.gemspec.tt +12 -4
data/bundler/lib/bundler/templates/newgem/rubocop.yml.tt +0 -5
data/bundler/lib/bundler/templates/newgem/standard.yml.tt +1 -1
data/bundler/lib/bundler/ui/rg_proxy.rb +1 -1
data/bundler/lib/bundler/ui/shell.rb +60 -15
data/bundler/lib/bundler/ui/silent.rb +33 -6
data/bundler/lib/bundler/uri_credentials_filter.rb +3 -3
data/bundler/lib/bundler/uri_normalizer.rb +23 -0
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/timed_stack.rb +3 -3
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/version.rb +1 -1
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/wrapper.rb +0 -1
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool.rb +56 -7
data/bundler/lib/bundler/vendor/fileutils/lib/fileutils.rb +1350 -418
data/bundler/lib/bundler/vendor/net-http-persistent/.document +1 -0
data/bundler/lib/bundler/vendor/net-http-persistent/README.rdoc +1 -1
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/connection.rb +4 -3
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/pool.rb +23 -11
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/timed_stack_multi.rb +1 -1
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent.rb +102 -64
data/bundler/lib/bundler/vendor/pub_grub/.document +1 -0
data/bundler/lib/bundler/vendor/pub_grub/LICENSE.txt +21 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/assignment.rb +20 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/basic_package_source.rb +189 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/failure_writer.rb +182 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/incompatibility.rb +150 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/package.rb +43 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/partial_solution.rb +121 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/rubygems.rb +45 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/solve_failure.rb +19 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/static_package_source.rb +61 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/term.rb +105 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version.rb +3 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version_constraint.rb +129 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version_range.rb +411 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version_solver.rb +248 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version_union.rb +178 -0
data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub.rb +31 -0
data/bundler/lib/bundler/vendor/securerandom/.document +1 -0
data/bundler/lib/bundler/vendor/securerandom/COPYING +56 -0
data/bundler/lib/bundler/vendor/securerandom/lib/securerandom.rb +102 -0
data/bundler/lib/bundler/vendor/thor/.document +1 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/create_file.rb +3 -2
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/directory.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/empty_directory.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/file_manipulation.rb +11 -15
data/bundler/lib/bundler/vendor/thor/lib/thor/actions/inject_into_file.rb +15 -4
data/bundler/lib/bundler/vendor/thor/lib/thor/actions.rb +15 -15
data/bundler/lib/bundler/vendor/thor/lib/thor/base.rb +140 -14
data/bundler/lib/bundler/vendor/thor/lib/thor/command.rb +13 -4
data/bundler/lib/bundler/vendor/thor/lib/thor/core_ext/hash_with_indifferent_access.rb +4 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/error.rb +16 -25
data/bundler/lib/bundler/vendor/thor/lib/thor/group.rb +12 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/invocation.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/nested_context.rb +2 -2
data/bundler/lib/bundler/vendor/thor/lib/thor/parser/argument.rb +17 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/parser/arguments.rb +33 -17
data/bundler/lib/bundler/vendor/thor/lib/thor/parser/option.rb +28 -9
data/bundler/lib/bundler/vendor/thor/lib/thor/parser/options.rb +46 -7
data/bundler/lib/bundler/vendor/thor/lib/thor/rake_compat.rb +2 -2
data/bundler/lib/bundler/vendor/thor/lib/thor/runner.rb +40 -30
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/basic.rb +35 -159
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/color.rb +1 -46
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/column_printer.rb +29 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/html.rb +1 -46
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/table_printer.rb +118 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/terminal.rb +42 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/shell/wrapped_printer.rb +38 -0
data/bundler/lib/bundler/vendor/thor/lib/thor/shell.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor/util.rb +8 -7
data/bundler/lib/bundler/vendor/thor/lib/thor/version.rb +1 -1
data/bundler/lib/bundler/vendor/thor/lib/thor.rb +166 -8
data/bundler/lib/bundler/vendor/tsort/.document +1 -0
data/bundler/lib/bundler/vendor/tsort/lib/tsort.rb +3 -0
data/bundler/lib/bundler/vendor/uri/.document +1 -0
data/bundler/lib/bundler/vendor/uri/COPYING +56 -0
data/bundler/lib/bundler/vendor/uri/lib/uri/common.rb +343 -148
data/bundler/lib/bundler/vendor/uri/lib/uri/file.rb +10 -4
data/bundler/lib/bundler/vendor/uri/lib/uri/ftp.rb +3 -2
data/bundler/lib/bundler/vendor/uri/lib/uri/generic.rb +44 -33
data/bundler/lib/bundler/vendor/uri/lib/uri/http.rb +40 -2
data/bundler/lib/bundler/vendor/uri/lib/uri/https.rb +2 -1
data/bundler/lib/bundler/vendor/uri/lib/uri/ldap.rb +1 -1
data/bundler/lib/bundler/vendor/uri/lib/uri/ldaps.rb +2 -1
data/bundler/lib/bundler/vendor/uri/lib/uri/mailto.rb +2 -2
data/bundler/lib/bundler/vendor/uri/lib/uri/rfc2396_parser.rb +25 -12
data/bundler/lib/bundler/vendor/uri/lib/uri/rfc3986_parser.rb +130 -38
data/bundler/lib/bundler/vendor/uri/lib/uri/version.rb +1 -1
data/bundler/lib/bundler/vendor/uri/lib/uri/ws.rb +1 -2
data/bundler/lib/bundler/vendor/uri/lib/uri/wss.rb +2 -1
data/bundler/lib/bundler/vendor/uri/lib/uri.rb +12 -11
data/bundler/lib/bundler/vendored_net_http.rb +23 -0
data/bundler/lib/bundler/vendored_persistent.rb +0 -36
data/bundler/lib/bundler/{vendored_tmpdir.rb → vendored_pub_grub.rb} +1 -1
data/bundler/lib/bundler/vendored_securerandom.rb +12 -0
data/bundler/lib/bundler/vendored_timeout.rb +12 -0
data/bundler/lib/bundler/vendored_uri.rb +18 -1
data/bundler/lib/bundler/version.rb +5 -1
data/bundler/lib/bundler/vlad.rb +1 -1
data/bundler/lib/bundler/worker.rb +5 -7
data/bundler/lib/bundler/yaml_serializer.rb +22 -13
data/bundler/lib/bundler.rb +155 -148
data/{bundler → doc/bundler}/UPGRADING.md +11 -4
data/{CONTRIBUTING.md → doc/rubygems/CONTRIBUTING.md} +40 -17
data/doc/rubygems/POLICIES.md +204 -0
data/{test/rubygems/fake_certlib/openssl.rb → exe/gem} +5 -1
data/{bin → exe}/update_rubygems +12 -10
data/lib/rubygems/available_set.rb +8 -7
data/lib/rubygems/basic_specification.rb +90 -52
data/lib/rubygems/bundler_version_finder.rb +6 -6
data/lib/rubygems/ci_detector.rb +75 -0
data/lib/rubygems/command.rb +68 -64
data/lib/rubygems/command_manager.rb +39 -24
data/lib/rubygems/commands/build_command.rb +14 -19
data/lib/rubygems/commands/cert_command.rb +39 -39
data/lib/rubygems/commands/check_command.rb +30 -25
data/lib/rubygems/commands/cleanup_command.rb +32 -43
data/lib/rubygems/commands/contents_command.rb +33 -25
data/lib/rubygems/commands/dependency_command.rb +22 -23
data/lib/rubygems/commands/environment_command.rb +8 -9
data/lib/rubygems/commands/exec_command.rb +247 -0
data/lib/rubygems/commands/fetch_command.rb +25 -10
data/lib/rubygems/commands/generate_index_command.rb +40 -74
data/lib/rubygems/commands/help_command.rb +15 -14
data/lib/rubygems/commands/info_command.rb +5 -5
data/lib/rubygems/commands/install_command.rb +31 -38
data/lib/rubygems/commands/list_command.rb +6 -5
data/lib/rubygems/commands/lock_command.rb +6 -5
data/lib/rubygems/commands/mirror_command.rb +4 -3
data/lib/rubygems/commands/open_command.rb +11 -12
data/lib/rubygems/commands/outdated_command.rb +6 -5
data/lib/rubygems/commands/owner_command.rb +23 -22
data/lib/rubygems/commands/pristine_command.rb +83 -62
data/lib/rubygems/commands/push_command.rb +38 -13
data/lib/rubygems/commands/query_command.rb +11 -11
data/lib/rubygems/commands/rdoc_command.rb +23 -28
data/lib/rubygems/commands/rebuild_command.rb +262 -0
data/lib/rubygems/commands/search_command.rb +6 -5
data/lib/rubygems/commands/server_command.rb +4 -3
data/lib/rubygems/commands/setup_command.rb +137 -154
data/lib/rubygems/commands/signin_command.rb +10 -9
data/lib/rubygems/commands/signout_command.rb +8 -7
data/lib/rubygems/commands/sources_command.rb +34 -33
data/lib/rubygems/commands/specification_command.rb +25 -20
data/lib/rubygems/commands/stale_command.rb +5 -4
data/lib/rubygems/commands/uninstall_command.rb +66 -59
data/lib/rubygems/commands/unpack_command.rb +23 -30
data/lib/rubygems/commands/update_command.rb +62 -94
data/lib/rubygems/commands/which_command.rb +9 -8
data/lib/rubygems/commands/yank_command.rb +14 -13
data/lib/rubygems/compatibility.rb +5 -6
data/lib/rubygems/config_file.rb +160 -50
data/lib/rubygems/core_ext/kernel_gem.rb +3 -10
data/lib/rubygems/core_ext/kernel_require.rb +88 -114
data/lib/rubygems/core_ext/kernel_warn.rb +30 -39
data/lib/rubygems/core_ext/tcpsocket_init.rb +4 -2
data/lib/rubygems/defaults.rb +53 -22
data/lib/rubygems/dependency.rb +34 -36
data/lib/rubygems/dependency_installer.rb +52 -56
data/lib/rubygems/dependency_list.rb +8 -7
data/lib/rubygems/deprecate.rb +80 -75
data/lib/rubygems/doctor.rb +23 -22
data/lib/rubygems/errors.rb +6 -8
data/lib/rubygems/exceptions.rb +20 -18
data/lib/rubygems/ext/build_error.rb +2 -1
data/lib/rubygems/ext/builder.rb +56 -32
data/lib/rubygems/ext/cargo_builder/link_flag_converter.rb +9 -5
data/lib/rubygems/ext/cargo_builder.rb +158 -131
data/lib/rubygems/ext/cmake_builder.rb +9 -4
data/lib/rubygems/ext/configure_builder.rb +9 -3
data/lib/rubygems/ext/ext_conf_builder.rb +19 -15
data/lib/rubygems/ext/rake_builder.rb +14 -7
data/lib/rubygems/ext.rb +8 -7
data/lib/rubygems/gem_runner.rb +23 -9
data/lib/rubygems/gemcutter_utilities/webauthn_listener/response.rb +163 -0
data/lib/rubygems/gemcutter_utilities/webauthn_listener.rb +105 -0
data/lib/rubygems/gemcutter_utilities/webauthn_poller.rb +80 -0
data/lib/rubygems/gemcutter_utilities.rb +141 -63
data/lib/rubygems/gemspec_helpers.rb +19 -0
data/lib/rubygems/install_default_message.rb +3 -2
data/lib/rubygems/install_message.rb +3 -2
data/lib/rubygems/install_update_options.rb +72 -67
data/lib/rubygems/installer.rb +148 -130
data/lib/rubygems/installer_uninstaller_utils.rb +2 -4
data/lib/rubygems/local_remote_options.rb +24 -28
data/lib/rubygems/name_tuple.rb +10 -11
data/lib/rubygems/package/digest_io.rb +2 -1
data/lib/rubygems/package/file_source.rb +3 -2
data/lib/rubygems/package/io_source.rb +1 -0
data/lib/rubygems/package/old.rb +11 -10
data/lib/rubygems/package/source.rb +1 -0
data/lib/rubygems/package/tar_header.rb +125 -91
data/lib/rubygems/package/tar_reader/entry.rb +106 -29
data/lib/rubygems/package/tar_reader.rb +16 -39
data/lib/rubygems/package/tar_writer.rb +29 -26
data/lib/rubygems/package.rb +122 -84
data/lib/rubygems/package_task.rb +7 -6
data/lib/rubygems/path_support.rb +11 -11
data/lib/rubygems/platform.rb +119 -70
data/lib/rubygems/psych_tree.rb +6 -1
data/lib/rubygems/query_utils.rb +46 -48
data/lib/rubygems/rdoc.rb +13 -3
data/lib/rubygems/remote_fetcher.rb +47 -39
data/lib/rubygems/request/connection_pools.rb +6 -6
data/lib/rubygems/request/http_pool.rb +2 -1
data/lib/rubygems/request/https_pool.rb +1 -0
data/lib/rubygems/request.rb +48 -44
data/lib/rubygems/request_set/gem_dependency_api.rb +141 -144
data/lib/rubygems/request_set/lockfile/parser.rb +31 -30
data/lib/rubygems/request_set/lockfile/tokenizer.rb +24 -14
data/lib/rubygems/request_set/lockfile.rb +11 -15
data/lib/rubygems/request_set.rb +25 -23
data/lib/rubygems/requirement.rb +30 -27
data/lib/rubygems/resolver/activation_request.rb +7 -10
data/lib/rubygems/resolver/api_set/gem_parser.rb +7 -3
data/lib/rubygems/resolver/api_set.rb +20 -13
data/lib/rubygems/resolver/api_specification.rb +8 -7
data/lib/rubygems/resolver/best_set.rb +5 -32
data/lib/rubygems/resolver/composed_set.rb +4 -3
data/lib/rubygems/resolver/conflict.rb +14 -21
data/lib/rubygems/resolver/current_set.rb +1 -0
data/lib/rubygems/resolver/dependency_request.rb +3 -2
data/lib/rubygems/resolver/git_set.rb +2 -2
data/lib/rubygems/resolver/git_specification.rb +7 -6
data/lib/rubygems/resolver/index_set.rb +10 -9
data/lib/rubygems/resolver/index_specification.rb +8 -6
data/lib/rubygems/resolver/installed_specification.rb +6 -5
data/lib/rubygems/resolver/installer_set.rb +19 -22
data/lib/rubygems/resolver/local_specification.rb +4 -3
data/lib/rubygems/resolver/lock_set.rb +6 -5
data/lib/rubygems/resolver/lock_specification.rb +5 -4
data/lib/rubygems/resolver/requirement_list.rb +1 -0
data/lib/rubygems/resolver/set.rb +1 -0
data/lib/rubygems/resolver/source_set.rb +2 -0
data/lib/rubygems/resolver/spec_specification.rb +8 -0
data/lib/rubygems/resolver/specification.rb +2 -1
data/lib/rubygems/resolver/stats.rb +2 -1
data/lib/rubygems/resolver/vendor_set.rb +2 -1
data/lib/rubygems/resolver/vendor_specification.rb +4 -3
data/lib/rubygems/resolver.rb +51 -57
data/lib/rubygems/s3_uri_signer.rb +18 -16
data/lib/rubygems/safe_marshal/elements.rb +146 -0
data/lib/rubygems/safe_marshal/reader.rb +325 -0
data/lib/rubygems/safe_marshal/visitors/stream_printer.rb +31 -0
data/lib/rubygems/safe_marshal/visitors/to_ruby.rb +428 -0
data/lib/rubygems/safe_marshal/visitors/visitor.rb +74 -0
data/lib/rubygems/safe_marshal.rb +74 -0
data/lib/rubygems/safe_yaml.rb +14 -26
data/lib/rubygems/security/policies.rb +48 -49
data/lib/rubygems/security/policy.rb +25 -28
data/lib/rubygems/security/signer.rb +16 -7
data/lib/rubygems/security/trust_dir.rb +12 -13
data/lib/rubygems/security.rb +40 -66
data/lib/rubygems/security_option.rb +7 -6
data/lib/rubygems/shellwords.rb +3 -0
data/lib/rubygems/source/git.rb +34 -31
data/lib/rubygems/source/installed.rb +4 -3
data/lib/rubygems/source/local.rb +49 -49
data/lib/rubygems/source/lock.rb +2 -3
data/lib/rubygems/source/specific_file.rb +6 -4
data/lib/rubygems/source/vendor.rb +1 -2
data/lib/rubygems/source.rb +37 -31
data/lib/rubygems/source_list.rb +8 -8
data/lib/rubygems/spec_fetcher.rb +95 -66
data/lib/rubygems/specification.rb +342 -404
data/lib/rubygems/specification_policy.rb +147 -75
data/lib/rubygems/specification_record.rb +212 -0
data/lib/rubygems/stub_specification.rb +56 -30
data/lib/rubygems/target_rbconfig.rb +50 -0
data/lib/rubygems/text.rb +3 -4
data/lib/rubygems/uninstaller.rb +67 -48
data/lib/rubygems/update_suggestion.rb +56 -0
data/lib/rubygems/uri.rb +10 -10
data/lib/rubygems/uri_formatter.rb +2 -2
data/lib/rubygems/user_interaction.rb +50 -40
data/lib/rubygems/util/licenses.rb +310 -39
data/lib/rubygems/util/list.rb +4 -1
data/lib/rubygems/util.rb +19 -20
data/lib/rubygems/validator.rb +15 -14
data/lib/rubygems/vendor/molinillo/.document +1 -0
data/lib/rubygems/vendor/molinillo/lib/molinillo/delegates/resolution_state.rb +57 -0
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/delegates/specification_provider.rb +11 -11
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/action.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/add_edge_no_circular.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/add_vertex.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/delete_edge.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/detach_vertex_named.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/log.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/set_payload.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/tag.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/vertex.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph.rb +3 -3
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/errors.rb +1 -1
data/lib/rubygems/vendor/molinillo/lib/molinillo/gem_metadata.rb +6 -0
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/modules/specification_provider.rb +2 -2
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/modules/ui.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/resolution.rb +4 -4
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/resolver.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/state.rb +1 -1
data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo.rb +2 -2
data/lib/rubygems/vendor/net-http/.document +1 -0
data/lib/rubygems/vendor/net-http/COPYING +56 -0
data/lib/rubygems/vendor/net-http/lib/net/http/exceptions.rb +34 -0
data/lib/rubygems/vendor/net-http/lib/net/http/generic_request.rb +414 -0
data/lib/rubygems/vendor/net-http/lib/net/http/header.rb +981 -0
data/lib/rubygems/vendor/net-http/lib/net/http/proxy_delta.rb +17 -0
data/lib/rubygems/vendor/net-http/lib/net/http/request.rb +88 -0
data/lib/rubygems/vendor/net-http/lib/net/http/requests.rb +430 -0
data/lib/rubygems/vendor/net-http/lib/net/http/response.rb +738 -0
data/lib/rubygems/vendor/net-http/lib/net/http/responses.rb +1174 -0
data/lib/rubygems/vendor/net-http/lib/net/http/status.rb +84 -0
data/lib/rubygems/vendor/net-http/lib/net/http.rb +2580 -0
data/lib/rubygems/vendor/net-http/lib/net/https.rb +23 -0
data/lib/rubygems/vendor/net-protocol/.document +1 -0
data/lib/rubygems/vendor/net-protocol/lib/net/protocol.rb +544 -0
data/lib/rubygems/vendor/optparse/.document +1 -0
data/lib/rubygems/vendor/optparse/COPYING +56 -0
data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/ac.rb +16 -0
data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/kwargs.rb +8 -3
data/lib/rubygems/vendor/optparse/lib/optparse/uri.rb +7 -0
data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/version.rb +9 -0
data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse.rb +206 -83
data/lib/rubygems/vendor/resolv/.document +1 -0
data/lib/rubygems/vendor/resolv/COPYING +56 -0
data/lib/rubygems/vendor/resolv/lib/resolv.rb +3455 -0
data/lib/rubygems/vendor/securerandom/.document +1 -0
data/lib/rubygems/vendor/securerandom/COPYING +56 -0
data/lib/rubygems/vendor/securerandom/lib/securerandom.rb +102 -0
data/lib/rubygems/vendor/timeout/.document +1 -0
data/lib/rubygems/vendor/timeout/COPYING +56 -0
data/lib/rubygems/vendor/timeout/lib/timeout.rb +198 -0
data/lib/rubygems/vendor/tsort/.document +1 -0
data/lib/rubygems/vendor/tsort/lib/tsort.rb +455 -0
data/lib/rubygems/vendor/uri/.document +1 -0
data/lib/rubygems/vendor/uri/COPYING +56 -0
data/lib/rubygems/vendor/uri/lib/uri/common.rb +876 -0
data/lib/rubygems/vendor/uri/lib/uri/file.rb +100 -0
data/lib/rubygems/vendor/uri/lib/uri/ftp.rb +267 -0
data/lib/rubygems/vendor/uri/lib/uri/generic.rb +1578 -0
data/lib/rubygems/vendor/uri/lib/uri/http.rb +125 -0
data/lib/rubygems/vendor/uri/lib/uri/https.rb +23 -0
data/lib/rubygems/vendor/uri/lib/uri/ldap.rb +261 -0
data/lib/rubygems/vendor/uri/lib/uri/ldaps.rb +22 -0
data/lib/rubygems/vendor/uri/lib/uri/mailto.rb +293 -0
data/lib/rubygems/vendor/uri/lib/uri/rfc2396_parser.rb +546 -0
data/lib/rubygems/vendor/uri/lib/uri/rfc3986_parser.rb +206 -0
data/lib/rubygems/vendor/uri/lib/uri/version.rb +6 -0
data/lib/rubygems/vendor/uri/lib/uri/ws.rb +83 -0
data/lib/rubygems/vendor/uri/lib/uri/wss.rb +23 -0
data/lib/rubygems/vendor/uri/lib/uri.rb +104 -0
data/{bundler/lib/bundler → lib/rubygems}/vendored_molinillo.rb +0 -1
data/lib/rubygems/vendored_net_http.rb +5 -0
data/lib/rubygems/vendored_optparse.rb +3 -0
data/lib/rubygems/vendored_securerandom.rb +3 -0
data/lib/rubygems/vendored_timeout.rb +5 -0
data/lib/rubygems/vendored_tsort.rb +3 -0
data/lib/rubygems/version.rb +57 -45
data/lib/rubygems/version_option.rb +6 -8
data/lib/rubygems/yaml_serializer.rb +98 -0
data/lib/rubygems.rb +191 -133
data/rubygems-update.gemspec +16 -9
data/setup.rb +12 -9
metadata +233 -307
data/POLICIES.md +0 -100
data/bin/gem +0 -13
data/bundler/lib/bundler/dep_proxy.rb +0 -55
data/bundler/lib/bundler/templates/gems.rb +0 -5
data/bundler/lib/bundler/templates/newgem/ext/newgem/extconf.rb.tt +0 -5
data/bundler/lib/bundler/templates/newgem/travis.yml.tt +0 -6
data/bundler/lib/bundler/vendor/molinillo/lib/molinillo/delegates/resolution_state.rb +0 -57
data/bundler/lib/bundler/vendor/molinillo/lib/molinillo/gem_metadata.rb +0 -6
data/bundler/lib/bundler/vendor/tmpdir/lib/tmpdir.rb +0 -154
data/bundler/lib/bundler/version_ranges.rb +0 -122
data/lib/rubygems/indexer.rb +0 -427
data/lib/rubygems/mock_gem_ui.rb +0 -85
data/lib/rubygems/optparse/lib/optparse/uri.rb +0 -7
data/lib/rubygems/optparse.rb +0 -3
data/lib/rubygems/resolver/molinillo/LICENSE +0 -9
data/lib/rubygems/resolver/molinillo/lib/molinillo/delegates/resolution_state.rb +0 -57
data/lib/rubygems/resolver/molinillo/lib/molinillo/delegates/specification_provider.rb +0 -88
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/action.rb +0 -36
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/add_edge_no_circular.rb +0 -66
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/add_vertex.rb +0 -62
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/delete_edge.rb +0 -63
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/detach_vertex_named.rb +0 -61
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/log.rb +0 -126
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/set_payload.rb +0 -46
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/tag.rb +0 -36
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/vertex.rb +0 -164
data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph.rb +0 -255
data/lib/rubygems/resolver/molinillo/lib/molinillo/errors.rb +0 -143
data/lib/rubygems/resolver/molinillo/lib/molinillo/gem_metadata.rb +0 -6
data/lib/rubygems/resolver/molinillo/lib/molinillo/modules/specification_provider.rb +0 -112
data/lib/rubygems/resolver/molinillo/lib/molinillo/modules/ui.rb +0 -67
data/lib/rubygems/resolver/molinillo/lib/molinillo/resolution.rb +0 -839
data/lib/rubygems/resolver/molinillo/lib/molinillo/resolver.rb +0 -46
data/lib/rubygems/resolver/molinillo/lib/molinillo/state.rb +0 -58
data/lib/rubygems/resolver/molinillo/lib/molinillo.rb +0 -11
data/lib/rubygems/resolver/molinillo.rb +0 -2
data/lib/rubygems/tsort/LICENSE.txt +0 -22
data/lib/rubygems/tsort/lib/tsort.rb +0 -454
data/lib/rubygems/tsort.rb +0 -3
data/test/rubygems/alternate_cert.pem +0 -19
data/test/rubygems/alternate_cert_32.pem +0 -19
data/test/rubygems/alternate_key.pem +0 -27
data/test/rubygems/bad_rake.rb +0 -2
data/test/rubygems/ca_cert.pem +0 -77
data/test/rubygems/child_cert.pem +0 -20
data/test/rubygems/child_cert_32.pem +0 -20
data/test/rubygems/child_key.pem +0 -27
data/test/rubygems/client.pem +0 -107
data/test/rubygems/data/excon-0.7.7.gemspec.rz +0 -0
data/test/rubygems/data/gem-private_key.pem +0 -27
data/test/rubygems/data/gem-public_cert.pem +0 -20
data/test/rubygems/data/null-required-ruby-version.gemspec.rz +0 -0
data/test/rubygems/data/null-required-rubygems-version.gemspec.rz +0 -0
data/test/rubygems/data/pry-0.4.7.gemspec.rz +0 -0
data/test/rubygems/encrypted_private_key.pem +0 -30
data/test/rubygems/expired_cert.pem +0 -19
data/test/rubygems/foo/discover.rb +0 -1
data/test/rubygems/future_cert.pem +0 -19
data/test/rubygems/future_cert_32.pem +0 -19
data/test/rubygems/good_rake.rb +0 -2
data/test/rubygems/grandchild_cert.pem +0 -20
data/test/rubygems/grandchild_cert_32.pem +0 -20
data/test/rubygems/grandchild_key.pem +0 -27
data/test/rubygems/helper.rb +0 -1622
data/test/rubygems/installer_test_case.rb +0 -247
data/test/rubygems/invalid_client.pem +0 -49
data/test/rubygems/invalid_issuer_cert.pem +0 -20
data/test/rubygems/invalid_issuer_cert_32.pem +0 -20
data/test/rubygems/invalid_key.pem +0 -27
data/test/rubygems/invalid_signer_cert.pem +0 -19
data/test/rubygems/invalid_signer_cert_32.pem +0 -19
data/test/rubygems/invalidchild_cert.pem +0 -20
data/test/rubygems/invalidchild_cert_32.pem +0 -20
data/test/rubygems/invalidchild_key.pem +0 -27
data/test/rubygems/package/tar_test_case.rb +0 -139
data/test/rubygems/packages/ascii_binder-0.1.10.1.gem +0 -0
data/test/rubygems/packages/ill-formatted-platform-1.0.0.10.gem +0 -0
data/test/rubygems/plugin/exception/rubygems_plugin.rb +0 -3
data/test/rubygems/plugin/load/rubygems_plugin.rb +0 -4
data/test/rubygems/plugin/standarderror/rubygems_plugin.rb +0 -3
data/test/rubygems/private3072_key.pem +0 -40
data/test/rubygems/private_ec_key.pem +0 -9
data/test/rubygems/private_key.pem +0 -27
data/test/rubygems/public3072_cert.pem +0 -25
data/test/rubygems/public_cert.pem +0 -20
data/test/rubygems/public_cert_32.pem +0 -19
data/test/rubygems/public_key.pem +0 -9
data/test/rubygems/rubygems/commands/crash_command.rb +0 -4
data/test/rubygems/rubygems_plugin.rb +0 -23
data/test/rubygems/sff/discover.rb +0 -1
data/test/rubygems/simple_gem.rb +0 -67
data/test/rubygems/specifications/bar-0.0.2.gemspec +0 -7
data/test/rubygems/specifications/foo-0.0.1-x86-mswin32.gemspec +0 -0
data/test/rubygems/specifications/rubyforge-0.0.1.gemspec +0 -12
data/test/rubygems/ssl_cert.pem +0 -80
data/test/rubygems/ssl_key.pem +0 -27
data/test/rubygems/test_bundled_ca.rb +0 -60
data/test/rubygems/test_config.rb +0 -27
data/test/rubygems/test_deprecate.rb +0 -157
data/test/rubygems/test_exit.rb +0 -11
data/test/rubygems/test_gem.rb +0 -2112
data/test/rubygems/test_gem_available_set.rb +0 -129
data/test/rubygems/test_gem_bundler_version_finder.rb +0 -125
data/test/rubygems/test_gem_command.rb +0 -400
data/test/rubygems/test_gem_command_manager.rb +0 -334
data/test/rubygems/test_gem_commands_build_command.rb +0 -727
data/test/rubygems/test_gem_commands_cert_command.rb +0 -867
data/test/rubygems/test_gem_commands_check_command.rb +0 -67
data/test/rubygems/test_gem_commands_cleanup_command.rb +0 -291
data/test/rubygems/test_gem_commands_contents_command.rb +0 -270
data/test/rubygems/test_gem_commands_dependency_command.rb +0 -227
data/test/rubygems/test_gem_commands_environment_command.rb +0 -167
data/test/rubygems/test_gem_commands_fetch_command.rb +0 -257
data/test/rubygems/test_gem_commands_generate_index_command.rb +0 -80
data/test/rubygems/test_gem_commands_help_command.rb +0 -93
data/test/rubygems/test_gem_commands_info_command.rb +0 -43
data/test/rubygems/test_gem_commands_install_command.rb +0 -1553
data/test/rubygems/test_gem_commands_list_command.rb +0 -32
data/test/rubygems/test_gem_commands_lock_command.rb +0 -66
data/test/rubygems/test_gem_commands_mirror.rb +0 -19
data/test/rubygems/test_gem_commands_open_command.rb +0 -97
data/test/rubygems/test_gem_commands_outdated_command.rb +0 -49
data/test/rubygems/test_gem_commands_owner_command.rb +0 -326
data/test/rubygems/test_gem_commands_pristine_command.rb +0 -659
data/test/rubygems/test_gem_commands_push_command.rb +0 -477
data/test/rubygems/test_gem_commands_query_command.rb +0 -857
data/test/rubygems/test_gem_commands_search_command.rb +0 -15
data/test/rubygems/test_gem_commands_server_command.rb +0 -19
data/test/rubygems/test_gem_commands_setup_command.rb +0 -447
data/test/rubygems/test_gem_commands_signin_command.rb +0 -219
data/test/rubygems/test_gem_commands_signout_command.rb +0 -30
data/test/rubygems/test_gem_commands_sources_command.rb +0 -534
data/test/rubygems/test_gem_commands_specification_command.rb +0 -276
data/test/rubygems/test_gem_commands_stale_command.rb +0 -42
data/test/rubygems/test_gem_commands_uninstall_command.rb +0 -504
data/test/rubygems/test_gem_commands_unpack_command.rb +0 -223
data/test/rubygems/test_gem_commands_update_command.rb +0 -835
data/test/rubygems/test_gem_commands_which_command.rb +0 -84
data/test/rubygems/test_gem_commands_yank_command.rb +0 -180
data/test/rubygems/test_gem_config_file.rb +0 -504
data/test/rubygems/test_gem_dependency.rb +0 -395
data/test/rubygems/test_gem_dependency_installer.rb +0 -1155
data/test/rubygems/test_gem_dependency_list.rb +0 -264
data/test/rubygems/test_gem_dependency_resolution_error.rb +0 -26
data/test/rubygems/test_gem_doctor.rb +0 -194
data/test/rubygems/test_gem_ext_builder.rb +0 -338
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/.gitignore +0 -1
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/Cargo.lock +0 -243
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/Cargo.toml +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/build.rb +0 -21
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/custom_name.gemspec +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/src/lib.rs +0 -27
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/.gitignore +0 -1
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.lock +0 -243
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.toml +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/build.rb +0 -21
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/rust_ruby_example.gemspec +0 -8
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/src/lib.rs +0 -39
data/test/rubygems/test_gem_ext_cargo_builder.rb +0 -178
data/test/rubygems/test_gem_ext_cargo_builder_link_flag_converter.rb +0 -33
data/test/rubygems/test_gem_ext_cargo_builder_unit.rb +0 -75
data/test/rubygems/test_gem_ext_cmake_builder.rb +0 -83
data/test/rubygems/test_gem_ext_configure_builder.rb +0 -79
data/test/rubygems/test_gem_ext_ext_conf_builder.rb +0 -230
data/test/rubygems/test_gem_ext_rake_builder.rb +0 -112
data/test/rubygems/test_gem_gem_runner.rb +0 -113
data/test/rubygems/test_gem_gemcutter_utilities.rb +0 -272
data/test/rubygems/test_gem_impossible_dependencies_error.rb +0 -59
data/test/rubygems/test_gem_indexer.rb +0 -361
data/test/rubygems/test_gem_install_update_options.rb +0 -207
data/test/rubygems/test_gem_installer.rb +0 -2394
data/test/rubygems/test_gem_local_remote_options.rb +0 -132
data/test/rubygems/test_gem_name_tuple.rb +0 -42
data/test/rubygems/test_gem_package.rb +0 -1178
data/test/rubygems/test_gem_package_old.rb +0 -90
data/test/rubygems/test_gem_package_tar_header.rb +0 -225
data/test/rubygems/test_gem_package_tar_reader.rb +0 -87
data/test/rubygems/test_gem_package_tar_reader_entry.rb +0 -152
data/test/rubygems/test_gem_package_tar_writer.rb +0 -330
data/test/rubygems/test_gem_package_task.rb +0 -117
data/test/rubygems/test_gem_path_support.rb +0 -138
data/test/rubygems/test_gem_platform.rb +0 -391
data/test/rubygems/test_gem_rdoc.rb +0 -136
data/test/rubygems/test_gem_remote_fetcher.rb +0 -1226
data/test/rubygems/test_gem_request.rb +0 -541
data/test/rubygems/test_gem_request_connection_pools.rb +0 -150
data/test/rubygems/test_gem_request_set.rb +0 -671
data/test/rubygems/test_gem_request_set_gem_dependency_api.rb +0 -847
data/test/rubygems/test_gem_request_set_lockfile.rb +0 -468
data/test/rubygems/test_gem_request_set_lockfile_parser.rb +0 -543
data/test/rubygems/test_gem_request_set_lockfile_tokenizer.rb +0 -306
data/test/rubygems/test_gem_requirement.rb +0 -498
data/test/rubygems/test_gem_resolver.rb +0 -791
data/test/rubygems/test_gem_resolver_activation_request.rb +0 -42
data/test/rubygems/test_gem_resolver_api_set.rb +0 -209
data/test/rubygems/test_gem_resolver_api_specification.rb +0 -166
data/test/rubygems/test_gem_resolver_best_set.rb +0 -158
data/test/rubygems/test_gem_resolver_composed_set.rb +0 -43
data/test/rubygems/test_gem_resolver_conflict.rb +0 -81
data/test/rubygems/test_gem_resolver_dependency_request.rb +0 -82
data/test/rubygems/test_gem_resolver_git_set.rb +0 -187
data/test/rubygems/test_gem_resolver_git_specification.rb +0 -113
data/test/rubygems/test_gem_resolver_index_set.rb +0 -87
data/test/rubygems/test_gem_resolver_index_specification.rb +0 -92
data/test/rubygems/test_gem_resolver_installed_specification.rb +0 -46
data/test/rubygems/test_gem_resolver_installer_set.rb +0 -275
data/test/rubygems/test_gem_resolver_local_specification.rb +0 -43
data/test/rubygems/test_gem_resolver_lock_set.rb +0 -61
data/test/rubygems/test_gem_resolver_lock_specification.rb +0 -97
data/test/rubygems/test_gem_resolver_requirement_list.rb +0 -18
data/test/rubygems/test_gem_resolver_specification.rb +0 -62
data/test/rubygems/test_gem_resolver_vendor_set.rb +0 -81
data/test/rubygems/test_gem_resolver_vendor_specification.rb +0 -81
data/test/rubygems/test_gem_security.rb +0 -340
data/test/rubygems/test_gem_security_policy.rb +0 -535
data/test/rubygems/test_gem_security_signer.rb +0 -217
data/test/rubygems/test_gem_security_trust_dir.rb +0 -98
data/test/rubygems/test_gem_silent_ui.rb +0 -116
data/test/rubygems/test_gem_source.rb +0 -253
data/test/rubygems/test_gem_source_fetch_problem.rb +0 -36
data/test/rubygems/test_gem_source_git.rb +0 -303
data/test/rubygems/test_gem_source_installed.rb +0 -34
data/test/rubygems/test_gem_source_list.rb +0 -118
data/test/rubygems/test_gem_source_local.rb +0 -106
data/test/rubygems/test_gem_source_lock.rb +0 -112
data/test/rubygems/test_gem_source_specific_file.rb +0 -75
data/test/rubygems/test_gem_source_subpath_problem.rb +0 -49
data/test/rubygems/test_gem_source_vendor.rb +0 -29
data/test/rubygems/test_gem_spec_fetcher.rb +0 -337
data/test/rubygems/test_gem_specification.rb +0 -3756
data/test/rubygems/test_gem_stream_ui.rb +0 -224
data/test/rubygems/test_gem_stub_specification.rb +0 -277
data/test/rubygems/test_gem_text.rb +0 -102
data/test/rubygems/test_gem_uninstaller.rb +0 -674
data/test/rubygems/test_gem_unsatisfiable_dependency_error.rb +0 -30
data/test/rubygems/test_gem_uri.rb +0 -39
data/test/rubygems/test_gem_uri_formatter.rb +0 -26
data/test/rubygems/test_gem_util.rb +0 -90
data/test/rubygems/test_gem_validator.rb +0 -42
data/test/rubygems/test_gem_version.rb +0 -295
data/test/rubygems/test_gem_version_option.rb +0 -164
data/test/rubygems/test_kernel.rb +0 -129
data/test/rubygems/test_project_sanity.rb +0 -20
data/test/rubygems/test_remote_fetch_error.rb +0 -19
data/test/rubygems/test_require.rb +0 -719
data/test/rubygems/test_rubygems.rb +0 -74
data/test/rubygems/utilities.rb +0 -371
data/test/rubygems/wrong_key_cert.pem +0 -19
data/test/rubygems/wrong_key_cert_32.pem +0 -19
data/test/test_changelog_generator.rb +0 -17
/data/{lib/rubygems/optparse → bundler/lib/bundler/vendor/connection_pool}/.document +0 -0
/data/{lib/rubygems/tsort → bundler/lib/bundler/vendor/fileutils}/.document +0 -0
/data/{lib/rubygems/optparse → bundler/lib/bundler/vendor/fileutils}/COPYING +0 -0
/data/{MAINTAINERS.txt → doc/MAINTAINERS.txt} +0 -0
/data/{UPGRADING.md → doc/rubygems/UPGRADING.md} +0 -0
/data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/LICENSE +0 -0
/data/{bundler/lib/bundler/vendor/fileutils → lib/rubygems/vendor/net-protocol}/LICENSE.txt +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optionparser.rb +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/date.rb +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/shellwords.rb +0 -0
/data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/time.rb +0 -0
/data/{bundler/lib/bundler/vendor/uri → lib/rubygems/vendor/tsort}/LICENSE.txt +0 -0

data/bundler/lib/bundler/definition.rb CHANGED Viewed

@@ -13,13 +13,14 @@ module Bundler
     attr_reader(
       :dependencies,
+      :locked_checksums,
       :locked_deps,
       :locked_gems,
       :platforms,
-      :requires,
       :ruby_version,
       :lockfile,
-      :gemfiles
+      :gemfiles,
+      :sources
     )
     # Given a gemfile and lockfile creates a Bundler definition
@@ -69,28 +70,35 @@ module Bundler
       @sources         = sources
       @unlock          = unlock
       @optional_groups = optional_groups
-      @remote          = false
+      @prefer_local    = false
       @specs           = nil
       @ruby_version    = ruby_version
       @gemfiles        = gemfiles
       @lockfile               = lockfile
       @lockfile_contents      = String.new
       @locked_bundler_version = nil
-      @locked_ruby_version    = nil
-      @new_platform = nil
+      @resolved_bundler_version = nil
+      @locked_ruby_version = nil
+      @new_platforms = []
+      @removed_platform = nil
-      if lockfile && File.exist?(lockfile)
+      if lockfile_exists?
         @lockfile_contents = Bundler.read_file(lockfile)
         @locked_gems = LockfileParser.new(@lockfile_contents)
         @locked_platforms = @locked_gems.platforms
+        @most_specific_locked_platform = @locked_gems.most_specific_locked_platform
         @platforms = @locked_platforms.dup
         @locked_bundler_version = @locked_gems.bundler_version
         @locked_ruby_version = @locked_gems.ruby_version
+        @originally_locked_deps = @locked_gems.dependencies
         @originally_locked_specs = SpecSet.new(@locked_gems.specs)
+        @locked_checksums = @locked_gems.checksums
         if unlock != true
-          @locked_deps    = @locked_gems.dependencies
+          @locked_deps    = @originally_locked_deps
           @locked_specs   = @originally_locked_specs
           @locked_sources = @locked_gems.sources
         else
@@ -101,12 +109,16 @@ module Bundler
         end
       else
         @unlock         = {}
-        @platforms      = []
         @locked_gems    = nil
+        @locked_platforms = []
+        @most_specific_locked_platform = nil
+        @platforms      = []
         @locked_deps    = {}
         @locked_specs   = SpecSet.new([])
+        @originally_locked_deps = {}
+        @originally_locked_specs = @locked_specs
         @locked_sources = []
-        @locked_platforms = []
+        @locked_checksums = Bundler.feature_flag.lockfile_checksums?
       end
       locked_gem_sources = @locked_sources.select {|s| s.is_a?(Source::Rubygems) }
@@ -122,65 +134,94 @@ module Bundler
         @sources.merged_gem_lockfile_sections!(locked_gem_sources.first)
       end
-      @unlock[:sources] ||= []
+      @sources_to_unlock = @unlock.delete(:sources) || []
       @unlock[:ruby] ||= if @ruby_version && locked_ruby_version_object
         @ruby_version.diff(locked_ruby_version_object)
       end
       @unlocking ||= @unlock[:ruby] ||= (!@locked_ruby_version ^ !@ruby_version)
-      add_current_platform unless current_ruby_platform_locked? || Bundler.frozen_bundle?
+      @current_platform_missing = add_current_platform unless Bundler.frozen_bundle?
       converge_path_sources_to_gemspec_sources
       @path_changes = converge_paths
       @source_changes = converge_sources
+      @explicit_unlocks = @unlock.delete(:gems) || []
       if @unlock[:conservative]
-        @unlock[:gems] ||= @dependencies.map(&:name)
+        @gems_to_unlock = @explicit_unlocks.any? ? @explicit_unlocks : @dependencies.map(&:name)
       else
-        eager_unlock = expand_dependencies(@unlock[:gems] || [], true)
-        @unlock[:gems] = @locked_specs.for(eager_unlock, false, false).map(&:name)
+        eager_unlock = @explicit_unlocks.map {|name| Dependency.new(name, ">= 0") }
+        @gems_to_unlock = @locked_specs.for(eager_unlock, platforms).map(&:name).uniq
       end
       @dependency_changes = converge_dependencies
       @local_changes = converge_locals
-      @locked_specs_incomplete_for_platform = !@locked_specs.for(requested_dependencies & expand_dependencies(locked_dependencies), true, true)
-      @requires = compute_requires
+      check_lockfile
     end
     def gem_version_promoter
-      @gem_version_promoter ||= begin
-        locked_specs =
-          if unlocking? && @locked_specs.empty? && !@lockfile_contents.empty?
-            # Definition uses an empty set of locked_specs to indicate all gems
-            # are unlocked, but GemVersionPromoter needs the locked_specs
-            # for conservative comparison.
-            Bundler::SpecSet.new(@locked_gems.specs)
-          else
-            @locked_specs
-          end
-        GemVersionPromoter.new(locked_specs, @unlock[:gems])
-      end
+      @gem_version_promoter ||= GemVersionPromoter.new
     end
-    def resolve_only_locally!
-      @remote = false
+    def check!
+      # If dependencies have changed, we need to resolve remotely. Otherwise,
+      # since we'll be resolving with a single local source, we may end up
+      # locking gems under the wrong source in the lockfile, and missing lockfile
+      # checksums
+      resolve_remotely! if @dependency_changes
+      # Now do a local only resolve, to verify if any gems are missing locally
       sources.local_only!
       resolve
     end
+    #
+    # Setup sources according to the given options and the state of the
+    # definition.
+    #
+    # @return [Boolean] Whether fetching remote information will be necessary or not
+    #
+    def setup_domain!(options = {})
+      prefer_local! if options[:"prefer-local"]
+      if options[:add_checksums] || (!options[:local] && install_needed?)
+        remotely!
+        true
+      else
+        Bundler.settings.set_command_option(:jobs, 1) unless install_needed? # to avoid the overhead of Bundler::Worker
+        with_cache!
+        false
+      end
+    end
     def resolve_with_cache!
-      sources.cached!
+      with_cache!
       resolve
     end
+    def with_cache!
+      sources.local!
+      sources.cached!
+    end
     def resolve_remotely!
-      @remote = true
-      sources.remote!
+      remotely!
       resolve
     end
+    def remotely!
+      sources.cached!
+      sources.remote!
+    end
+    def prefer_local!
+      @prefer_local = true
+    end
     # For given dependency list returns a SpecSet with Gemspec of all the required
     # dependencies.
     #  1. The method first resolves the dependencies specified in Gemfile
@@ -200,7 +241,7 @@ module Bundler
     end
     def missing_specs
-      resolve.materialize(requested_dependencies).missing_specs
+      resolve.missing_specs_for(requested_dependencies)
     end
     def missing_specs?
@@ -210,8 +251,10 @@ module Bundler
       true
     rescue BundlerError => e
       @resolve = nil
+      @resolver = nil
+      @resolution_packages = nil
+      @source_requirements = nil
       @specs = nil
-      @gem_version_promoter = nil
       Bundler.ui.debug "The definition is missing dependencies, failed to resolve & materialize locally (#{e})"
       true
@@ -226,8 +269,17 @@ module Bundler
     end
     def current_dependencies
+      filter_relevant(dependencies)
+    end
+    def current_locked_dependencies
+      filter_relevant(locked_dependencies)
+    end
+    def filter_relevant(dependencies)
+      platforms_array = [generic_local_platform].freeze
       dependencies.select do |d|
-        d.should_include? && !d.gem_platforms(@platforms).empty?
+        d.should_include? && !d.gem_platforms(platforms_array).empty?
       end
     end
@@ -251,10 +303,11 @@ module Bundler
     def dependencies_for(groups)
       groups.map!(&:to_sym)
-      deps = current_dependencies.reject do |d|
-        (d.groups & groups).empty?
+      deps = current_dependencies # always returns a new array
+      deps.select! do |d|
+        d.groups.intersect?(groups)
       end
-      expand_dependencies(deps)
+      deps
     end
     # Resolve all the dependencies specified in Gemfile. It ensures that
@@ -266,63 +319,57 @@ module Bundler
       @resolve ||= if Bundler.frozen_bundle?
         Bundler.ui.debug "Frozen, using resolution from the lockfile"
         @locked_specs
-      elsif !unlocking? && nothing_changed?
+      elsif no_resolve_needed?
         if deleted_deps.any?
-          Bundler.ui.debug("Some dependencies were deleted, using a subset of the resolution from the lockfile")
+          Bundler.ui.debug "Some dependencies were deleted, using a subset of the resolution from the lockfile"
           SpecSet.new(filter_specs(@locked_specs, @dependencies - deleted_deps))
         else
-          Bundler.ui.debug("Found no changes, using resolution from the lockfile")
-          if @locked_gems.may_include_redundant_platform_specific_gems?
+          Bundler.ui.debug "Found no changes, using resolution from the lockfile"
+          if @removed_platform || @locked_gems.may_include_redundant_platform_specific_gems?
             SpecSet.new(filter_specs(@locked_specs, @dependencies))
           else
             @locked_specs
           end
         end
       else
-        last_resolve = converge_locked_specs
-        # Run a resolve against the locally available gems
-        Bundler.ui.debug("Found changes from the lockfile, re-resolving dependencies because #{change_reason}")
-        expanded_dependencies = expand_dependencies(dependencies + metadata_dependencies, true)
-        Resolver.resolve(expanded_dependencies, source_requirements, last_resolve, gem_version_promoter, additional_base_requirements_for_resolve, platforms)
+        if lockfile_exists?
+          Bundler.ui.debug "Found changes from the lockfile, re-resolving dependencies because #{change_reason}"
+        else
+          Bundler.ui.debug "Resolving dependencies because there's no lockfile"
+        end
+        start_resolution
       end
     end
     def spec_git_paths
-      sources.git_sources.map {|s| File.realpath(s.path) if File.exist?(s.path) }.compact
+      sources.git_sources.filter_map {|s| File.realpath(s.path) if File.exist?(s.path) }
     end
     def groups
-      dependencies.map(&:groups).flatten.uniq
+      dependencies.flat_map(&:groups).uniq
     end
-    def lock(file, preserve_unknown_sections = false)
-      return if Definition.no_lock
-      contents = to_lock
+    def lock(file_or_preserve_unknown_sections = false, preserve_unknown_sections_or_unused = false)
+      if [true, false, nil].include?(file_or_preserve_unknown_sections)
+        target_lockfile = lockfile
+        preserve_unknown_sections = file_or_preserve_unknown_sections
+      else
+        target_lockfile = file_or_preserve_unknown_sections
+        preserve_unknown_sections = preserve_unknown_sections_or_unused
-      # Convert to \r\n if the existing lock has them
-      # i.e., Windows with `git config core.autocrlf=true`
-      contents.gsub!(/\n/, "\r\n") if @lockfile_contents.match("\r\n")
+        suggestion = if target_lockfile == lockfile
+          "To fix this warning, remove it from the `Definition#lock` call."
+        else
+          "Instead, instantiate a new definition passing `#{target_lockfile}`, and call `lock` without a file argument on that definition"
+        end
-      if @locked_bundler_version
-        locked_major = @locked_bundler_version.segments.first
-        current_major = Gem::Version.create(Bundler::VERSION).segments.first
+        msg = "`Definition#lock` was passed a target file argument. #{suggestion}"
-        updating_major = locked_major < current_major
+        Bundler::SharedHelpers.major_deprecation 2, msg
       end
-      preserve_unknown_sections ||= !updating_major && (Bundler.frozen_bundle? || !(unlocking? || @unlocking_bundler))
-      return if file && File.exist?(file) && lockfiles_equal?(@lockfile_contents, contents, preserve_unknown_sections)
-      if Bundler.frozen_bundle?
-        Bundler.ui.error "Cannot write a changed lockfile while frozen."
-        return
-      end
-      SharedHelpers.filesystem_access(file) do |p|
-        File.open(p, "wb") {|f| f.puts(contents) }
-      end
+      write_lock(target_lockfile, preserve_unknown_sections)
     end
     def locked_ruby_version
@@ -346,26 +393,19 @@ module Bundler
       end
     end
+    def bundler_version_to_lock
+      @resolved_bundler_version || Bundler.gem_version
+    end
     def to_lock
       require_relative "lockfile_generator"
       LockfileGenerator.generate(self)
     end
     def ensure_equivalent_gemfile_and_lockfile(explicit_flag = false)
-      msg = String.new
-      msg << "You are trying to install in deployment mode after changing\n" \
-             "your Gemfile. Run `bundle install` elsewhere and add the\n" \
-             "updated #{Bundler.default_lockfile.relative_path_from(SharedHelpers.pwd)} to version control."
+      return unless Bundler.frozen_bundle?
-      unless explicit_flag
-        suggested_command = if Bundler.settings.locations("frozen").keys.&([:global, :local]).any?
-          "bundle config unset frozen"
-        elsif Bundler.settings.locations("deployment").keys.&([:global, :local]).any?
-          "bundle config unset deployment"
-        end
-        msg << "\n\nIf this is a development machine, remove the #{Bundler.default_gemfile} " \
-               "freeze \nby running `#{suggested_command}`."
-      end
+      raise ProductionError, "Frozen mode is set, but there's no lockfile" unless lockfile_exists?
       added =   []
       deleted = []
@@ -380,32 +420,36 @@ module Bundler
       deleted.concat deleted_deps.map {|d| "* #{pretty_dep(d)}" } if deleted_deps.any?
       both_sources = Hash.new {|h, k| h[k] = [] }
-      @dependencies.each {|d| both_sources[d.name][0] = d }
-      locked_dependencies.each do |d|
-        next if !Bundler.feature_flag.bundler_3_mode? && @locked_specs[d.name].empty?
-        both_sources[d.name][1] = d
-      end
+      current_dependencies.each {|d| both_sources[d.name][0] = d }
+      current_locked_dependencies.each {|d| both_sources[d.name][1] = d }
       both_sources.each do |name, (dep, lock_dep)|
         next if dep.nil? || lock_dep.nil?
-        gemfile_source = dep.source || sources.default_source
-        lock_source = lock_dep.source || sources.default_source
+        gemfile_source = dep.source || default_source
+        lock_source = lock_dep.source || default_source
         next if lock_source.include?(gemfile_source)
-        gemfile_source_name = dep.source ? gemfile_source.identifier : "no specified source"
-        lockfile_source_name = lock_dep.source ? lock_source.identifier : "no specified source"
+        gemfile_source_name = dep.source ? gemfile_source.to_gemfile : "no specified source"
+        lockfile_source_name = lock_dep.source ? lock_source.to_gemfile : "no specified source"
         changed << "* #{name} from `#{lockfile_source_name}` to `#{gemfile_source_name}`"
       end
-      reason = change_reason
-      msg << "\n\n#{reason.split(", ").map(&:capitalize).join("\n")}" unless reason.strip.empty?
+      reason = nothing_changed? ? "some dependencies were deleted from your gemfile" : change_reason
+      msg = String.new
+      msg << "#{reason.capitalize.strip}, but the lockfile can't be updated because frozen mode is set"
       msg << "\n\nYou have added to the Gemfile:\n" << added.join("\n") if added.any?
       msg << "\n\nYou have deleted from the Gemfile:\n" << deleted.join("\n") if deleted.any?
       msg << "\n\nYou have changed in the Gemfile:\n" << changed.join("\n") if changed.any?
-      msg << "\n"
+      msg << "\n\nRun `bundle install` elsewhere and add the updated #{SharedHelpers.relative_gemfile_path} to version control.\n"
+      unless explicit_flag
+        suggested_command = unless Bundler.settings.locations("frozen").keys.include?(:env)
+          "bundle config set frozen false"
+        end
+        msg << "If this is a development machine, remove the #{SharedHelpers.relative_lockfile_path} " \
+               "freeze by running `#{suggested_command}`." if suggested_command
+      end
       raise ProductionError, msg if added.any? || deleted.any? || changed.any? || !nothing_changed?
     end
@@ -444,113 +488,321 @@ module Bundler
       return if current_platform_locked?
       raise ProductionError, "Your bundle only supports platforms #{@platforms.map(&:to_s)} " \
-        "but your local platform is #{Bundler.local_platform}. " \
-        "Add the current platform to the lockfile with\n`bundle lock --add-platform #{Bundler.local_platform}` and try again."
+        "but your local platform is #{local_platform}. " \
+        "Add the current platform to the lockfile with\n`bundle lock --add-platform #{local_platform}` and try again."
+    end
+    def normalize_platforms
+      @platforms = resolve.normalize_platforms!(current_dependencies, platforms)
+      @resolve = SpecSet.new(resolve.for(current_dependencies, @platforms))
     end
     def add_platform(platform)
-      @new_platform ||= !@platforms.include?(platform)
-      @platforms |= [platform]
+      return if @platforms.include?(platform)
+      @new_platforms << platform
+      @platforms << platform
     end
     def remove_platform(platform)
-      return if @platforms.delete(Gem::Platform.new(platform))
+      removed_platform = @platforms.delete(Gem::Platform.new(platform))
+      @removed_platform ||= removed_platform
+      return if removed_platform
       raise InvalidOption, "Unable to remove the platform `#{platform}` since the only platforms are #{@platforms.join ", "}"
     end
-    def most_specific_locked_platform
-      @platforms.min_by do |bundle_platform|
-        platform_specificity_match(bundle_platform, local_platform)
-      end
+    def nothing_changed?
+      !something_changed?
     end
-    attr_reader :sources
-    private :sources
-    def nothing_changed?
-      !@source_changes && !@dependency_changes && !@new_platform && !@path_changes && !@local_changes && !@locked_specs_incomplete_for_platform
+    def no_resolve_needed?
+      !resolve_needed?
     end
     def unlocking?
       @unlocking
     end
+    attr_writer :source_requirements
+    def add_checksums
+      @locked_checksums = true
+      setup_domain!(add_checksums: true)
+      specs # force materialization to real specifications, so that checksums are fetched
+    end
     private
-    def filter_specs(specs, deps)
-      SpecSet.new(specs).for(expand_dependencies(deps, true), false, false)
+    def install_needed?
+      resolve_needed? || missing_specs?
+    end
+    def something_changed?
+      return true unless lockfile_exists?
+      @source_changes ||
+        @dependency_changes ||
+        @current_platform_missing ||
+        @new_platforms.any? ||
+        @path_changes ||
+        @local_changes ||
+        @missing_lockfile_dep ||
+        @unlocking_bundler ||
+        @locked_spec_with_missing_deps ||
+        @locked_spec_with_invalid_deps
+    end
+    def resolve_needed?
+      unlocking? || something_changed?
+    end
+    def should_add_extra_platforms?
+      !lockfile_exists? && generic_local_platform_is_ruby? && !Bundler.settings[:force_ruby_platform]
+    end
+    def lockfile_exists?
+      lockfile && File.exist?(lockfile)
+    end
+    def write_lock(file, preserve_unknown_sections)
+      return if Definition.no_lock || file.nil?
+      contents = to_lock
+      # Convert to \r\n if the existing lock has them
+      # i.e., Windows with `git config core.autocrlf=true`
+      contents.gsub!(/\n/, "\r\n") if @lockfile_contents.match?("\r\n")
+      if @locked_bundler_version
+        locked_major = @locked_bundler_version.segments.first
+        current_major = bundler_version_to_lock.segments.first
+        updating_major = locked_major < current_major
+      end
+      preserve_unknown_sections ||= !updating_major && (Bundler.frozen_bundle? || !(unlocking? || @unlocking_bundler))
+      if File.exist?(file) && lockfiles_equal?(@lockfile_contents, contents, preserve_unknown_sections)
+        return if Bundler.frozen_bundle?
+        SharedHelpers.filesystem_access(file) { FileUtils.touch(file) }
+        return
+      end
+      if Bundler.frozen_bundle?
+        Bundler.ui.error "Cannot write a changed lockfile while frozen."
+        return
+      end
+      SharedHelpers.filesystem_access(file) do |p|
+        File.open(p, "wb") {|f| f.puts(contents) }
+      end
+    end
+    def resolver
+      @resolver ||= Resolver.new(resolution_packages, gem_version_promoter, @most_specific_locked_platform)
+    end
+    def expanded_dependencies
+      dependencies_with_bundler + metadata_dependencies
+    end
+    def dependencies_with_bundler
+      return dependencies unless @unlocking_bundler
+      return dependencies if dependencies.any? {|d| d.name == "bundler" }
+      [Dependency.new("bundler", @unlocking_bundler)] + dependencies
+    end
+    def resolution_packages
+      @resolution_packages ||= begin
+        last_resolve = converge_locked_specs
+        remove_invalid_platforms!
+        packages = Resolver::Base.new(source_requirements, expanded_dependencies, last_resolve, @platforms, locked_specs: @originally_locked_specs, unlock: @gems_to_unlock, prerelease: gem_version_promoter.pre?, prefer_local: @prefer_local)
+        packages = additional_base_requirements_to_prevent_downgrades(packages, last_resolve)
+        packages = additional_base_requirements_to_force_updates(packages)
+        packages
+      end
+    end
+    def filter_specs(specs, deps, skips: [])
+      SpecSet.new(specs).for(deps, platforms, skips: skips)
     end
     def materialize(dependencies)
-      specs = resolve.materialize(dependencies)
-      missing_specs = specs.missing_specs
+      # Tracks potential endless loops trying to re-resolve.
+      # TODO: Remove as dead code if not reports are received in a while
+      incorrect_spec = nil
+      specs = begin
+        resolve.materialize(dependencies)
+      rescue IncorrectLockfileDependencies => e
+        spec = e.spec
+        raise "Infinite loop while fixing lockfile dependencies" if incorrect_spec == spec
+        incorrect_spec = spec
+        reresolve_without([spec])
+        retry
+      end
+      missing_specs = resolve.missing_specs
       if missing_specs.any?
         missing_specs.each do |s|
           locked_gem = @locked_specs[s.name].last
-          next if locked_gem.nil? || locked_gem.version != s.version || !@remote
-          raise GemNotFound, "Your bundle is locked to #{locked_gem} from #{locked_gem.source}, but that version can " \
-                             "no longer be found in that source. That means the author of #{locked_gem} has removed it. " \
-                             "You'll need to update your bundle to a version other than #{locked_gem} that hasn't been " \
-                             "removed in order to install."
+          next if locked_gem.nil? || locked_gem.version != s.version || sources.local_mode?
+          message = if sources.implicit_global_source?
+            "Because your Gemfile specifies no global remote source, your bundle is locked to " \
+            "#{locked_gem} from #{locked_gem.source}. However, #{locked_gem} is not installed. You'll " \
+            "need to either add a global remote source to your Gemfile or make sure #{locked_gem} is " \
+            "available locally before rerunning Bundler."
+          else
+            "Your bundle is locked to #{locked_gem} from #{locked_gem.source}, but that version can " \
+            "no longer be found in that source. That means the author of #{locked_gem} has removed it. " \
+            "You'll need to update your bundle to a version other than #{locked_gem} that hasn't been " \
+            "removed in order to install."
+          end
+          raise GemNotFound, message
         end
-        raise GemNotFound, "Could not find #{missing_specs.map(&:full_name).join(", ")} in any of the sources"
+        missing_specs_list = missing_specs.group_by(&:source).map do |source, missing_specs_for_source|
+          "#{missing_specs_for_source.map(&:full_name).join(", ")} in #{source}"
+        end
+        raise GemNotFound, "Could not find #{missing_specs_list.join(" nor ")}"
       end
-      unless specs["bundler"].any?
-        bundler = sources.metadata_source.specs.search(Gem::Dependency.new("bundler", VERSION)).last
-        specs["bundler"] = bundler
+      partially_missing_specs = resolve.partially_missing_specs
+      if partially_missing_specs.any? && !sources.local_mode?
+        Bundler.ui.warn "Some locked specs have possibly been yanked (#{partially_missing_specs.map(&:full_name).join(", ")}). Ignoring them..."
+        resolve.delete(partially_missing_specs)
+      end
+      incomplete_specs = resolve.incomplete_specs
+      loop do
+        break if incomplete_specs.empty?
+        Bundler.ui.debug("The lockfile does not have all gems needed for the current platform though, Bundler will still re-resolve dependencies")
+        sources.remote!
+        reresolve_without(incomplete_specs)
+        specs = resolve.materialize(dependencies)
+        still_incomplete_specs = resolve.incomplete_specs
+        if still_incomplete_specs == incomplete_specs
+          package = resolution_packages.get_package(incomplete_specs.first.name)
+          resolver.raise_not_found! package
+        end
+        incomplete_specs = still_incomplete_specs
       end
+      insecurely_materialized_specs = resolve.insecurely_materialized_specs
+      if insecurely_materialized_specs.any?
+        Bundler.ui.warn "The following platform specific gems are getting installed, yet the lockfile includes only their generic ruby version:\n" \
+                        " * #{insecurely_materialized_specs.map(&:full_name).join("\n * ")}\n" \
+                        "Please run `bundle lock --normalize-platforms` and commit the resulting lockfile.\n" \
+                        "Alternatively, you may run `bundle lock --add-platform <list-of-platforms-that-you-want-to-support>`"
+      end
+      bundler = sources.metadata_source.specs.search(["bundler", Bundler.gem_version]).last
+      specs["bundler"] = bundler
       specs
     end
-    def precompute_source_requirements_for_indirect_dependencies?
-      @remote && sources.non_global_rubygems_sources.all?(&:dependency_api_available?) && !sources.aggregate_global_source?
+    def reresolve_without(incomplete_specs)
+      resolution_packages.delete(incomplete_specs)
+      @resolve = start_resolution
     end
-    def current_ruby_platform_locked?
-      return false unless generic_local_platform == Gem::Platform::RUBY
-      return false if Bundler.settings[:force_ruby_platform] && !@platforms.include?(Gem::Platform::RUBY)
+    def start_resolution
+      local_platform_needed_for_resolvability = @most_specific_non_local_locked_ruby_platform && !@platforms.include?(local_platform)
+      @platforms << local_platform if local_platform_needed_for_resolvability
+      add_platform(Gem::Platform::RUBY) if RUBY_ENGINE == "truffleruby"
+      result = SpecSet.new(resolver.start)
+      @resolved_bundler_version = result.find {|spec| spec.name == "bundler" }&.version
-      current_platform_locked?
+      if @most_specific_non_local_locked_ruby_platform
+        if spec_set_incomplete_for_platform?(result, @most_specific_non_local_locked_ruby_platform)
+          @platforms.delete(@most_specific_non_local_locked_ruby_platform)
+        elsif local_platform_needed_for_resolvability
+          @platforms.delete(local_platform)
+        end
+      end
+      @platforms = result.add_extra_platforms!(platforms) if should_add_extra_platforms?
+      SpecSet.new(result.for(dependencies, @platforms))
+    end
+    def precompute_source_requirements_for_indirect_dependencies?
+      sources.non_global_rubygems_sources.all?(&:dependency_api_available?) && !sources.aggregate_global_source?
     end
     def current_platform_locked?
       @platforms.any? do |bundle_platform|
-        MatchPlatform.platforms_match?(bundle_platform, Bundler.local_platform)
+        MatchPlatform.platforms_match?(bundle_platform, local_platform)
       end
     end
     def add_current_platform
-      add_platform(local_platform)
+      return if @platforms.include?(local_platform)
+      @most_specific_non_local_locked_ruby_platform = find_most_specific_locked_ruby_platform
+      return if @most_specific_non_local_locked_ruby_platform
+      @platforms << local_platform
+      true
+    end
+    def find_most_specific_locked_ruby_platform
+      return unless generic_local_platform_is_ruby? && current_platform_locked?
+      @most_specific_locked_platform
     end
     def change_reason
       if unlocking?
-        unlock_reason = @unlock.reject {|_k, v| Array(v).empty? }.map do |k, v|
-          if v == true
-            k.to_s
-          else
-            v = Array(v)
-            "#{k}: (#{v.join(", ")})"
-          end
-        end.join(", ")
+        unlock_targets = if @gems_to_unlock.any?
+          ["gems", @gems_to_unlock]
+        elsif @sources_to_unlock.any?
+          ["sources", @sources_to_unlock]
+        end
+        unlock_reason = if unlock_targets
+          "#{unlock_targets.first}: (#{unlock_targets.last.join(", ")})"
+        else
+          @unlock[:ruby] ? "ruby" : ""
+        end
         return "bundler is unlocking #{unlock_reason}"
       end
       [
         [@source_changes, "the list of sources changed"],
         [@dependency_changes, "the dependencies in your gemfile changed"],
-        [@new_platform, "you added a new platform to your gemfile"],
+        [@current_platform_missing, "your lockfile does not include the current platform"],
+        [@new_platforms.any?, "you added a new platform to your gemfile"],
         [@path_changes, "the gemspecs for path gems changed"],
         [@local_changes, "the gemspecs for git local gems changed"],
-        [@locked_specs_incomplete_for_platform, "the lockfile does not have all gems needed for the current platform"],
+        [@missing_lockfile_dep, "your lock file is missing \"#{@missing_lockfile_dep}\""],
+        [@unlocking_bundler, "an update to the version of Bundler itself was requested"],
+        [@locked_spec_with_missing_deps, "your lock file includes \"#{@locked_spec_with_missing_deps}\" but not some of its dependencies"],
+        [@locked_spec_with_invalid_deps, "your lockfile does not satisfy dependencies of \"#{@locked_spec_with_invalid_deps}\""],
       ].select(&:first).map(&:last).join(", ")
     end
-    def pretty_dep(dep, source = false)
-      SharedHelpers.pretty_dependency(dep, source)
+    def pretty_dep(dep)
+      SharedHelpers.pretty_dependency(dep)
     end
     # Check if the specs of the given source changed
@@ -572,8 +824,7 @@ module Bundler
       locked_index = Index.new
       locked_index.use(@locked_specs.select {|s| source.can_lock?(s) })
-      # order here matters, since Index#== is checking source.specs.include?(locked_index)
-      locked_index != source.specs
+      !locked_index.subset?(source.specs)
     rescue PathError, GitError => e
       Bundler.ui.debug "Assuming that #{source} has not changed since fetching its specs errored (#{e})"
       false
@@ -587,9 +838,9 @@ module Bundler
       Bundler.settings.local_overrides.map do |k, v|
         spec   = @dependencies.find {|s| s.name == k }
-        source = spec && spec.source
-        if source && source.respond_to?(:local_override!)
-          source.unlock! if @unlock[:gems].include?(spec.name)
+        source = spec&.source
+        if source&.respond_to?(:local_override!)
+          source.unlock! if @gems_to_unlock.include?(spec.name)
           locals << [source, source.local_override!(v)]
         end
       end
@@ -597,7 +848,40 @@ module Bundler
       sources_with_changes = locals.select do |source, changed|
         changed || specs_changed?(source)
       end.map(&:first)
-      !sources_with_changes.each {|source| @unlock[:sources] << source.name }.empty?
+      !sources_with_changes.each {|source| @sources_to_unlock << source.name }.empty?
+    end
+    def check_lockfile
+      @missing_lockfile_dep = nil
+      @locked_spec_with_invalid_deps = nil
+      @locked_spec_with_missing_deps = nil
+      missing = []
+      invalid = []
+      @locked_specs.each do |s|
+        validation = @locked_specs.validate_deps(s)
+        missing << s if validation == :missing
+        invalid << s if validation == :invalid
+      end
+      if missing.any?
+        @locked_specs.delete(missing)
+        @locked_spec_with_missing_deps = missing.first.name
+      elsif !@dependency_changes
+        @missing_lockfile_dep = current_dependencies.find do |d|
+          @locked_specs[d.name].empty? && d.name != "bundler"
+        end&.name
+      end
+      if invalid.any?
+        @locked_specs.delete(invalid)
+        @locked_spec_with_invalid_deps = invalid.first.name
+      end
     end
     def converge_paths
@@ -631,12 +915,17 @@ module Bundler
       changes = sources.replace_sources!(@locked_sources)
       sources.all_sources.each do |source|
+        # has to be done separately, because we want to keep the locked checksum
+        # store for a source, even when doing a full update
+        if @locked_checksums && @locked_gems && locked_source = @locked_gems.sources.find {|s| s == source && !s.equal?(source) }
+          source.checksum_store.merge!(locked_source.checksum_store)
+        end
         # If the source is unlockable and the current command allows an unlock of
         # the source (for example, you are doing a `bundle update <foo>` of a git-pinned
         # gem), unlock it. For git sources, this means to unlock the revision, which
         # will cause the `ref` used to be the most recent for the branch (or master) if
         # an explicit `ref` is not used.
-        if source.respond_to?(:unlock!) && @unlock[:sources].include?(source.name)
+        if source.respond_to?(:unlock!) && @sources_to_unlock.include?(source.name)
           source.unlock!
           changes = true
         end
@@ -653,7 +942,7 @@ module Bundler
           dep.source = sources.get(dep.source)
         end
-        unless locked_dep = @locked_deps[dep.name]
+        unless locked_dep = @originally_locked_deps[dep.name]
           changes = true
           next
         end
@@ -678,7 +967,9 @@ module Bundler
     # commonly happen if the Gemfile has changed since the lockfile was last
     # generated
     def converge_locked_specs
-      resolve = converge_specs(@locked_specs)
+      converged = converge_specs(@locked_specs)
+      resolve = SpecSet.new(converged)
       diff = nil
@@ -697,106 +988,105 @@ module Bundler
     def converge_specs(specs)
       converged = []
-      deps = @dependencies.select do |dep|
-        specs[dep].any? {|s| s.satisfies?(dep) && (!dep.source || s.source.include?(dep.source)) }
-      end
+      deps = []
       specs.each do |s|
-        # Replace the locked dependency's source with the equivalent source from the Gemfile
+        name = s.name
         dep = @dependencies.find {|d| s.satisfies?(d) }
+        lockfile_source = s.source
+        if dep
+          gemfile_source = dep.source || default_source
-        s.source = (dep && dep.source) || sources.get(s.source) || sources.default_source
+          deps << dep if !dep.source || lockfile_source.include?(dep.source) || new_deps.include?(dep)
-        next if @unlock[:sources].include?(s.source.name)
+          # Replace the locked dependency's source with the equivalent source from the Gemfile
+          s.source = gemfile_source
+        else
+          # Replace the locked dependency's source with the default source, if the locked source is no longer in the Gemfile
+          s.source = default_source unless sources.get(lockfile_source)
+        end
-        # If the spec is from a path source and it doesn't exist anymore
-        # then we unlock it.
+        source = s.source
+        next if @sources_to_unlock.include?(source.name)
         # Path sources have special logic
-        if s.source.instance_of?(Source::Path) || s.source.instance_of?(Source::Gemspec)
-          new_specs = begin
-            s.source.specs
-          rescue PathError, GitError
-            # if we won't need the source (according to the lockfile),
-            # don't error if the path/git source isn't available
-            next if specs.
-                    for(requested_dependencies, false, true).
-                    none? {|locked_spec| locked_spec.source == s.source }
-            raise
+        if source.instance_of?(Source::Path) || source.instance_of?(Source::Gemspec) || (source.instance_of?(Source::Git) && !@gems_to_unlock.include?(name) && deps.include?(dep))
+          new_spec = source.specs[s].first
+          if new_spec
+            s.runtime_dependencies.replace(new_spec.runtime_dependencies)
+          else
+            # If the spec is no longer in the path source, unlock it. This
+            # commonly happens if the version changed in the gemspec
+            @gems_to_unlock << name
           end
-          new_spec = new_specs[s].first
-          # If the spec is no longer in the path source, unlock it. This
-          # commonly happens if the version changed in the gemspec
-          next unless new_spec
-          s.dependencies.replace(new_spec.dependencies)
         end
-        if dep.nil? && requested_dependencies.find {|d| s.name == d.name }
-          @unlock[:gems] << s.name
-        else
-          converged << s
+        if dep.nil? && requested_dep = requested_dependencies.find {|d| name == d.name }
+          @gems_to_unlock << name
+          deps << requested_dep
         end
+        converged << s
       end
-      SpecSet.new(filter_specs(converged, deps).reject {|s| @unlock[:gems].include?(s.name) })
+      filter_specs(converged, deps, skips: @gems_to_unlock)
     end
     def metadata_dependencies
       @metadata_dependencies ||= [
-        Dependency.new("Ruby\0", RubyVersion.system.gem_version),
+        Dependency.new("Ruby\0", Bundler::RubyVersion.system.gem_version),
         Dependency.new("RubyGems\0", Gem::VERSION),
       ]
     end
-    def expand_dependencies(dependencies, remote = false)
-      deps = []
-      dependencies.each do |dep|
-        dep = Dependency.new(dep, ">= 0") unless dep.respond_to?(:name)
-        next unless remote || dep.current_platform?
-        target_platforms = dep.gem_platforms(remote ? @platforms : [generic_local_platform])
-        deps += expand_dependency_with_platforms(dep, target_platforms)
-      end
-      deps
-    end
-    def expand_dependency_with_platforms(dep, platforms)
-      platforms.map do |p|
-        DepProxy.get_proxy(dep, p)
-      end
+    def source_requirements
+      @source_requirements ||= find_source_requirements
     end
-    def source_requirements
+    def find_source_requirements
       # Record the specs available in each gem's source, so that those
       # specs will be available later when the resolver knows where to
       # look for that gemspec (or its dependencies)
       source_requirements = if precompute_source_requirements_for_indirect_dependencies?
-        { :default => sources.default_source }.merge(source_map.all_requirements)
+        all_requirements = source_map.all_requirements
+        { default: default_source }.merge(all_requirements)
       else
-        { :default => Source::RubygemsAggregate.new(sources, source_map) }.merge(source_map.direct_requirements)
+        { default: Source::RubygemsAggregate.new(sources, source_map) }.merge(source_map.direct_requirements)
       end
-      source_requirements.merge!(source_map.locked_requirements) unless @remote
+      source_requirements.merge!(source_map.locked_requirements) if nothing_changed?
       metadata_dependencies.each do |dep|
         source_requirements[dep.name] = sources.metadata_source
       end
-      source_requirements[:default_bundler] = source_requirements["bundler"] || sources.default_source
-      source_requirements["bundler"] = sources.metadata_source # needs to come last to override
+      default_bundler_source = source_requirements["bundler"] || default_source
+      if @unlocking_bundler
+        default_bundler_source.add_dependency_names("bundler")
+      else
+        source_requirements[:default_bundler] = default_bundler_source
+        source_requirements["bundler"] = sources.metadata_source # needs to come last to override
+      end
       source_requirements
     end
+    def default_source
+      sources.default_source
+    end
     def requested_groups
-      groups - Bundler.settings[:without] - @optional_groups + Bundler.settings[:with]
+      values = groups - Bundler.settings[:without] - @optional_groups + Bundler.settings[:with]
+      values &= Bundler.settings[:only] unless Bundler.settings[:only].empty?
+      values
     end
     def lockfiles_equal?(current, proposed, preserve_unknown_sections)
       if preserve_unknown_sections
         sections_to_ignore = LockfileParser.sections_to_ignore(@locked_bundler_version)
         sections_to_ignore += LockfileParser.unknown_sections_in_lockfile(current)
-        sections_to_ignore += LockfileParser::ENVIRONMENT_VERSION_SECTIONS
+        sections_to_ignore << LockfileParser::RUBY
+        sections_to_ignore << LockfileParser::BUNDLED unless @unlocking_bundler
         pattern = /#{Regexp.union(sections_to_ignore)}\n(\s{2,}.*\n)+/
         whitespace_cleanup = /\n{2,}/
         current = current.gsub(pattern, "\n").gsub(whitespace_cleanup, "\n\n").strip
@@ -805,24 +1095,53 @@ module Bundler
       current == proposed
     end
-    def compute_requires
-      dependencies.reduce({}) do |requires, dep|
-        next requires unless dep.should_include?
-        requires[dep.name] = Array(dep.autorequire || dep.name).map do |file|
-          # Allow `require: true` as an alias for `require: <name>`
-          file == true ? dep.name : file
-        end
-        requires
+    def additional_base_requirements_to_prevent_downgrades(resolution_packages, last_resolve)
+      return resolution_packages unless @locked_gems && !sources.expired_sources?(@locked_gems.sources)
+      converge_specs(@originally_locked_specs - last_resolve).each do |locked_spec|
+        next if locked_spec.source.is_a?(Source::Path)
+        resolution_packages.base_requirements[locked_spec.name] = Gem::Requirement.new(">= #{locked_spec.version}")
+      end
+      resolution_packages
+    end
+    def additional_base_requirements_to_force_updates(resolution_packages)
+      return resolution_packages if @explicit_unlocks.empty?
+      full_update = dup_for_full_unlock.resolve
+      @explicit_unlocks.each do |name|
+        version = full_update[name].first&.version
+        resolution_packages.base_requirements[name] = Gem::Requirement.new("= #{version}") if version
       end
+      resolution_packages
     end
-    def additional_base_requirements_for_resolve
-      return [] unless @locked_gems && unlocking? && !sources.expired_sources?(@locked_gems.sources)
-      converge_specs(@originally_locked_specs).map do |locked_spec|
-        name = locked_spec.name
-        dep = Dependency.new(name, ">= #{locked_spec.version}")
-        DepProxy.get_proxy(dep, locked_spec.platform)
+    def dup_for_full_unlock
+      unlocked_definition = self.class.new(@lockfile, @dependencies, @sources, true, @ruby_version, @optional_groups, @gemfiles)
+      unlocked_definition.source_requirements = source_requirements
+      unlocked_definition.gem_version_promoter.tap do |gvp|
+        gvp.level = gem_version_promoter.level
+        gvp.strict = gem_version_promoter.strict
+        gvp.pre = gem_version_promoter.pre
       end
+      unlocked_definition
+    end
+    def remove_invalid_platforms!
+      return if Bundler.frozen_bundle?
+      platforms.reverse_each do |platform|
+        next if local_platform == platform ||
+                @new_platforms.include?(platform) ||
+                @path_changes ||
+                @dependency_changes ||
+                @locked_spec_with_invalid_deps ||
+                !spec_set_incomplete_for_platform?(@originally_locked_specs, platform)
+        remove_platform(platform)
+      end
+    end
+    def spec_set_incomplete_for_platform?(spec_set, platform)
+      spec_set.incomplete_for_platform?(current_dependencies, platform)
     end
     def source_map