rubygems-update 3.3.18 → 3.6.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +2182 -1067
- data/CODE_OF_CONDUCT.md +79 -28
- data/Manifest.txt +184 -290
- data/README.md +35 -19
- data/bundler/CHANGELOG.md +1003 -3
- data/bundler/README.md +3 -7
- data/bundler/bundler.gemspec +11 -11
- data/bundler/exe/bundle +5 -25
- data/bundler/lib/bundler/build_metadata.rb +3 -3
- data/bundler/lib/bundler/capistrano.rb +1 -1
- data/bundler/lib/bundler/checksum.rb +254 -0
- data/bundler/lib/bundler/ci_detector.rb +75 -0
- data/bundler/lib/bundler/cli/add.rb +7 -5
- data/bundler/lib/bundler/cli/binstubs.rb +10 -6
- data/bundler/lib/bundler/cli/cache.rb +1 -1
- data/bundler/lib/bundler/cli/check.rb +4 -4
- data/bundler/lib/bundler/cli/common.rb +11 -1
- data/bundler/lib/bundler/cli/config.rb +8 -7
- data/bundler/lib/bundler/cli/console.rb +2 -5
- data/bundler/lib/bundler/cli/doctor.rb +10 -12
- data/bundler/lib/bundler/cli/exec.rb +2 -1
- data/bundler/lib/bundler/cli/fund.rb +1 -1
- data/bundler/lib/bundler/cli/gem.rb +77 -53
- data/bundler/lib/bundler/cli/info.rb +4 -15
- data/bundler/lib/bundler/cli/init.rb +6 -2
- data/bundler/lib/bundler/cli/inject.rb +1 -1
- data/bundler/lib/bundler/cli/install.rb +27 -15
- data/bundler/lib/bundler/cli/issue.rb +1 -1
- data/bundler/lib/bundler/cli/lock.rb +54 -28
- data/bundler/lib/bundler/cli/open.rb +9 -9
- data/bundler/lib/bundler/cli/outdated.rb +34 -29
- data/bundler/lib/bundler/cli/platform.rb +7 -5
- data/bundler/lib/bundler/cli/plugin.rb +9 -15
- data/bundler/lib/bundler/cli/pristine.rb +38 -30
- data/bundler/lib/bundler/cli/show.rb +4 -4
- data/bundler/lib/bundler/cli/update.rb +6 -5
- data/bundler/lib/bundler/cli/viz.rb +1 -1
- data/bundler/lib/bundler/cli.rb +258 -307
- data/bundler/lib/bundler/compact_index_client/cache.rb +55 -60
- data/bundler/lib/bundler/compact_index_client/cache_file.rb +148 -0
- data/bundler/lib/bundler/compact_index_client/gem_parser.rb +7 -3
- data/bundler/lib/bundler/compact_index_client/parser.rb +84 -0
- data/bundler/lib/bundler/compact_index_client/updater.rb +71 -83
- data/bundler/lib/bundler/compact_index_client.rb +58 -80
- data/bundler/lib/bundler/constants.rb +9 -2
- data/bundler/lib/bundler/current_ruby.rb +11 -16
- data/bundler/lib/bundler/definition.rb +547 -228
- data/bundler/lib/bundler/dependency.rb +30 -87
- data/bundler/lib/bundler/digest.rb +3 -3
- data/bundler/lib/bundler/dsl.rb +115 -65
- data/bundler/lib/bundler/endpoint_specification.rb +27 -14
- data/bundler/lib/bundler/env.rb +5 -7
- data/bundler/lib/bundler/environment_preserver.rb +8 -25
- data/bundler/lib/bundler/errors.rb +85 -11
- data/bundler/lib/bundler/feature_flag.rb +1 -2
- data/bundler/lib/bundler/fetcher/base.rb +5 -3
- data/bundler/lib/bundler/fetcher/compact_index.rb +28 -43
- data/bundler/lib/bundler/fetcher/dependency.rb +3 -7
- data/bundler/lib/bundler/fetcher/downloader.rb +17 -16
- data/bundler/lib/bundler/fetcher/gem_remote_fetcher.rb +16 -0
- data/bundler/lib/bundler/fetcher/index.rb +2 -3
- data/bundler/lib/bundler/fetcher.rb +91 -74
- data/bundler/lib/bundler/force_platform.rb +16 -0
- data/bundler/lib/bundler/friendly_errors.rb +6 -9
- data/bundler/lib/bundler/gem_helper.rb +5 -6
- data/bundler/lib/bundler/gem_helpers.rb +45 -7
- data/bundler/lib/bundler/gem_version_promoter.rb +68 -109
- data/bundler/lib/bundler/graph.rb +9 -9
- data/bundler/lib/bundler/index.rb +69 -73
- data/bundler/lib/bundler/injector.rb +12 -13
- data/bundler/lib/bundler/inline.rb +40 -17
- data/bundler/lib/bundler/installer/gem_installer.rb +13 -12
- data/bundler/lib/bundler/installer/parallel_installer.rb +19 -66
- data/bundler/lib/bundler/installer/standalone.rb +29 -15
- data/bundler/lib/bundler/installer.rb +27 -77
- data/bundler/lib/bundler/lazy_specification.rb +134 -71
- data/bundler/lib/bundler/lockfile_generator.rb +13 -4
- data/bundler/lib/bundler/lockfile_parser.rb +134 -61
- data/bundler/lib/bundler/man/bundle-add.1 +46 -48
- data/bundler/lib/bundler/man/bundle-add.1.ronn +54 -22
- data/bundler/lib/bundler/man/bundle-binstubs.1 +10 -19
- data/bundler/lib/bundler/man/bundle-binstubs.1.ronn +6 -3
- data/bundler/lib/bundler/man/bundle-cache.1 +38 -25
- data/bundler/lib/bundler/man/bundle-cache.1.ronn +40 -4
- data/bundler/lib/bundler/man/bundle-check.1 +7 -14
- data/bundler/lib/bundler/man/bundle-check.1.ronn +7 -2
- data/bundler/lib/bundler/man/bundle-clean.1 +4 -11
- data/bundler/lib/bundler/man/bundle-clean.1.ronn +1 -1
- data/bundler/lib/bundler/man/bundle-config.1 +41 -220
- data/bundler/lib/bundler/man/bundle-config.1.ronn +27 -22
- data/bundler/lib/bundler/man/bundle-console.1 +33 -0
- data/bundler/lib/bundler/man/bundle-console.1.ronn +39 -0
- data/bundler/lib/bundler/man/bundle-doctor.1 +5 -19
- data/bundler/lib/bundler/man/bundle-doctor.1.ronn +1 -1
- data/bundler/lib/bundler/man/bundle-env.1 +9 -0
- data/bundler/lib/bundler/man/bundle-env.1.ronn +10 -0
- data/bundler/lib/bundler/man/bundle-exec.1 +20 -78
- data/bundler/lib/bundler/man/bundle-exec.1.ronn +12 -10
- data/bundler/lib/bundler/man/bundle-fund.1 +22 -0
- data/bundler/lib/bundler/man/bundle-fund.1.ronn +25 -0
- data/bundler/lib/bundler/man/bundle-gem.1 +53 -81
- data/bundler/lib/bundler/man/bundle-gem.1.ronn +41 -9
- data/bundler/lib/bundler/man/bundle-help.1 +9 -0
- data/bundler/lib/bundler/man/bundle-help.1.ronn +12 -0
- data/bundler/lib/bundler/man/bundle-info.1 +8 -11
- data/bundler/lib/bundler/man/bundle-info.1.ronn +9 -5
- data/bundler/lib/bundler/man/bundle-init.1 +7 -12
- data/bundler/lib/bundler/man/bundle-init.1.ronn +4 -1
- data/bundler/lib/bundler/man/bundle-inject.1 +17 -19
- data/bundler/lib/bundler/man/bundle-inject.1.ronn +12 -2
- data/bundler/lib/bundler/man/bundle-install.1 +42 -162
- data/bundler/lib/bundler/man/bundle-install.1.ronn +31 -49
- data/bundler/lib/bundler/man/bundle-issue.1 +45 -0
- data/bundler/lib/bundler/man/bundle-issue.1.ronn +37 -0
- data/bundler/lib/bundler/man/bundle-licenses.1 +9 -0
- data/bundler/lib/bundler/man/bundle-licenses.1.ronn +10 -0
- data/bundler/lib/bundler/man/bundle-list.1 +4 -19
- data/bundler/lib/bundler/man/bundle-list.1.ronn +4 -1
- data/bundler/lib/bundler/man/bundle-lock.1 +25 -34
- data/bundler/lib/bundler/man/bundle-lock.1.ronn +25 -4
- data/bundler/lib/bundler/man/bundle-open.1 +18 -18
- data/bundler/lib/bundler/man/bundle-open.1.ronn +10 -1
- data/bundler/lib/bundler/man/bundle-outdated.1 +22 -67
- data/bundler/lib/bundler/man/bundle-outdated.1.ronn +20 -12
- data/bundler/lib/bundler/man/bundle-platform.1 +16 -28
- data/bundler/lib/bundler/man/bundle-platform.1.ronn +14 -7
- data/bundler/lib/bundler/man/bundle-plugin.1 +58 -0
- data/bundler/lib/bundler/man/bundle-plugin.1.ronn +63 -0
- data/bundler/lib/bundler/man/bundle-pristine.1 +5 -16
- data/bundler/lib/bundler/man/bundle-pristine.1.ronn +1 -1
- data/bundler/lib/bundler/man/bundle-remove.1 +4 -14
- data/bundler/lib/bundler/man/bundle-remove.1.ronn +1 -1
- data/bundler/lib/bundler/man/bundle-show.1 +7 -11
- data/bundler/lib/bundler/man/bundle-show.1.ronn +4 -0
- data/bundler/lib/bundler/man/bundle-update.1 +30 -143
- data/bundler/lib/bundler/man/bundle-update.1.ronn +14 -6
- data/bundler/lib/bundler/man/bundle-version.1 +22 -0
- data/bundler/lib/bundler/man/bundle-version.1.ronn +24 -0
- data/bundler/lib/bundler/man/bundle-viz.1 +9 -18
- data/bundler/lib/bundler/man/bundle-viz.1.ronn +9 -3
- data/bundler/lib/bundler/man/bundle.1 +17 -51
- data/bundler/lib/bundler/man/bundle.1.ronn +12 -7
- data/bundler/lib/bundler/man/gemfile.5 +77 -341
- data/bundler/lib/bundler/man/gemfile.5.ronn +73 -54
- data/bundler/lib/bundler/man/index.txt +8 -0
- data/bundler/lib/bundler/match_metadata.rb +17 -0
- data/bundler/lib/bundler/match_platform.rb +1 -1
- data/bundler/lib/bundler/match_remote_metadata.rb +29 -0
- data/bundler/lib/bundler/materialization.rb +59 -0
- data/bundler/lib/bundler/mirror.rb +8 -10
- data/bundler/lib/bundler/plugin/api/source.rb +7 -5
- data/bundler/lib/bundler/plugin/events.rb +24 -0
- data/bundler/lib/bundler/plugin/index.rb +13 -5
- data/bundler/lib/bundler/plugin/installer/path.rb +18 -0
- data/bundler/lib/bundler/plugin/installer/rubygems.rb +0 -4
- data/bundler/lib/bundler/plugin/installer.rb +42 -19
- data/bundler/lib/bundler/plugin/source_list.rb +4 -4
- data/bundler/lib/bundler/plugin.rb +35 -7
- data/bundler/lib/bundler/process_lock.rb +10 -14
- data/bundler/lib/bundler/remote_specification.rb +17 -13
- data/bundler/lib/bundler/resolver/base.rb +117 -0
- data/bundler/lib/bundler/resolver/candidate.rb +82 -0
- data/bundler/lib/bundler/resolver/incompatibility.rb +15 -0
- data/bundler/lib/bundler/resolver/package.rb +90 -0
- data/bundler/lib/bundler/resolver/root.rb +25 -0
- data/bundler/lib/bundler/resolver/spec_group.rb +54 -67
- data/bundler/lib/bundler/resolver.rb +432 -329
- data/bundler/lib/bundler/retry.rb +2 -2
- data/bundler/lib/bundler/ruby_dsl.rb +42 -7
- data/bundler/lib/bundler/ruby_version.rb +23 -10
- data/bundler/lib/bundler/rubygems_ext.rb +286 -81
- data/bundler/lib/bundler/rubygems_gem_installer.rb +77 -68
- data/bundler/lib/bundler/rubygems_integration.rb +57 -155
- data/bundler/lib/bundler/runtime.rb +28 -17
- data/bundler/lib/bundler/safe_marshal.rb +31 -0
- data/bundler/lib/bundler/self_manager.rb +50 -12
- data/bundler/lib/bundler/settings.rb +144 -58
- data/bundler/lib/bundler/setup.rb +13 -1
- data/bundler/lib/bundler/shared_helpers.rb +87 -36
- data/bundler/lib/bundler/source/git/git_proxy.rb +278 -80
- data/bundler/lib/bundler/source/git.rb +161 -68
- data/bundler/lib/bundler/source/metadata.rb +16 -16
- data/bundler/lib/bundler/source/path/installer.rb +1 -22
- data/bundler/lib/bundler/source/path.rb +16 -26
- data/bundler/lib/bundler/source/rubygems/remote.rb +1 -1
- data/bundler/lib/bundler/source/rubygems.rb +94 -154
- data/bundler/lib/bundler/source.rb +3 -1
- data/bundler/lib/bundler/source_list.rb +34 -4
- data/bundler/lib/bundler/spec_set.rb +195 -65
- data/bundler/lib/bundler/stub_specification.rb +34 -4
- data/bundler/lib/bundler/templates/Executable +1 -1
- data/bundler/lib/bundler/templates/Executable.bundler +6 -11
- data/bundler/lib/bundler/templates/Executable.standalone +2 -0
- data/bundler/lib/bundler/templates/newgem/CODE_OF_CONDUCT.md.tt +77 -29
- data/bundler/lib/bundler/templates/newgem/Cargo.toml.tt +7 -0
- data/bundler/lib/bundler/templates/newgem/README.md.tt +11 -5
- data/bundler/lib/bundler/templates/newgem/Rakefile.tt +19 -8
- data/bundler/lib/bundler/templates/newgem/bin/console.tt +0 -4
- data/bundler/lib/bundler/templates/newgem/circleci/config.yml.tt +12 -0
- data/bundler/lib/bundler/templates/newgem/ext/newgem/Cargo.toml.tt +15 -0
- data/bundler/lib/bundler/templates/newgem/ext/newgem/extconf-c.rb.tt +10 -0
- data/bundler/lib/bundler/templates/newgem/ext/newgem/extconf-rust.rb.tt +6 -0
- data/bundler/lib/bundler/templates/newgem/ext/newgem/newgem.c.tt +1 -1
- data/bundler/lib/bundler/templates/newgem/ext/newgem/src/lib.rs.tt +12 -0
- data/bundler/lib/bundler/templates/newgem/github/workflows/main.yml.tt +18 -8
- data/bundler/lib/bundler/templates/newgem/gitignore.tt +3 -0
- data/bundler/lib/bundler/templates/newgem/gitlab-ci.yml.tt +13 -4
- data/bundler/lib/bundler/templates/newgem/newgem.gemspec.tt +12 -4
- data/bundler/lib/bundler/templates/newgem/rubocop.yml.tt +0 -5
- data/bundler/lib/bundler/templates/newgem/standard.yml.tt +1 -1
- data/bundler/lib/bundler/ui/rg_proxy.rb +1 -1
- data/bundler/lib/bundler/ui/shell.rb +60 -15
- data/bundler/lib/bundler/ui/silent.rb +33 -6
- data/bundler/lib/bundler/uri_credentials_filter.rb +3 -3
- data/bundler/lib/bundler/uri_normalizer.rb +23 -0
- data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/timed_stack.rb +3 -3
- data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/version.rb +1 -1
- data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/wrapper.rb +0 -1
- data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool.rb +56 -7
- data/bundler/lib/bundler/vendor/fileutils/lib/fileutils.rb +1350 -418
- data/bundler/lib/bundler/vendor/net-http-persistent/.document +1 -0
- data/bundler/lib/bundler/vendor/net-http-persistent/README.rdoc +1 -1
- data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/connection.rb +4 -3
- data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/pool.rb +23 -11
- data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/timed_stack_multi.rb +1 -1
- data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent.rb +102 -64
- data/bundler/lib/bundler/vendor/pub_grub/.document +1 -0
- data/bundler/lib/bundler/vendor/pub_grub/LICENSE.txt +21 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/assignment.rb +20 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/basic_package_source.rb +189 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/failure_writer.rb +182 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/incompatibility.rb +150 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/package.rb +43 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/partial_solution.rb +121 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/rubygems.rb +45 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/solve_failure.rb +19 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/static_package_source.rb +61 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/term.rb +105 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version.rb +3 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version_constraint.rb +129 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version_range.rb +411 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version_solver.rb +248 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub/version_union.rb +178 -0
- data/bundler/lib/bundler/vendor/pub_grub/lib/pub_grub.rb +31 -0
- data/bundler/lib/bundler/vendor/securerandom/.document +1 -0
- data/bundler/lib/bundler/vendor/securerandom/COPYING +56 -0
- data/bundler/lib/bundler/vendor/securerandom/lib/securerandom.rb +102 -0
- data/bundler/lib/bundler/vendor/thor/.document +1 -0
- data/bundler/lib/bundler/vendor/thor/lib/thor/actions/create_file.rb +3 -2
- data/bundler/lib/bundler/vendor/thor/lib/thor/actions/directory.rb +1 -1
- data/bundler/lib/bundler/vendor/thor/lib/thor/actions/empty_directory.rb +1 -1
- data/bundler/lib/bundler/vendor/thor/lib/thor/actions/file_manipulation.rb +11 -15
- data/bundler/lib/bundler/vendor/thor/lib/thor/actions/inject_into_file.rb +15 -4
- data/bundler/lib/bundler/vendor/thor/lib/thor/actions.rb +15 -15
- data/bundler/lib/bundler/vendor/thor/lib/thor/base.rb +140 -14
- data/bundler/lib/bundler/vendor/thor/lib/thor/command.rb +13 -4
- data/bundler/lib/bundler/vendor/thor/lib/thor/core_ext/hash_with_indifferent_access.rb +4 -0
- data/bundler/lib/bundler/vendor/thor/lib/thor/error.rb +16 -25
- data/bundler/lib/bundler/vendor/thor/lib/thor/group.rb +12 -1
- data/bundler/lib/bundler/vendor/thor/lib/thor/invocation.rb +1 -1
- data/bundler/lib/bundler/vendor/thor/lib/thor/nested_context.rb +2 -2
- data/bundler/lib/bundler/vendor/thor/lib/thor/parser/argument.rb +17 -1
- data/bundler/lib/bundler/vendor/thor/lib/thor/parser/arguments.rb +33 -17
- data/bundler/lib/bundler/vendor/thor/lib/thor/parser/option.rb +28 -9
- data/bundler/lib/bundler/vendor/thor/lib/thor/parser/options.rb +46 -7
- data/bundler/lib/bundler/vendor/thor/lib/thor/rake_compat.rb +2 -2
- data/bundler/lib/bundler/vendor/thor/lib/thor/runner.rb +40 -30
- data/bundler/lib/bundler/vendor/thor/lib/thor/shell/basic.rb +35 -159
- data/bundler/lib/bundler/vendor/thor/lib/thor/shell/color.rb +1 -46
- data/bundler/lib/bundler/vendor/thor/lib/thor/shell/column_printer.rb +29 -0
- data/bundler/lib/bundler/vendor/thor/lib/thor/shell/html.rb +1 -46
- data/bundler/lib/bundler/vendor/thor/lib/thor/shell/table_printer.rb +118 -0
- data/bundler/lib/bundler/vendor/thor/lib/thor/shell/terminal.rb +42 -0
- data/bundler/lib/bundler/vendor/thor/lib/thor/shell/wrapped_printer.rb +38 -0
- data/bundler/lib/bundler/vendor/thor/lib/thor/shell.rb +1 -1
- data/bundler/lib/bundler/vendor/thor/lib/thor/util.rb +8 -7
- data/bundler/lib/bundler/vendor/thor/lib/thor/version.rb +1 -1
- data/bundler/lib/bundler/vendor/thor/lib/thor.rb +166 -8
- data/bundler/lib/bundler/vendor/tsort/.document +1 -0
- data/bundler/lib/bundler/vendor/tsort/lib/tsort.rb +3 -0
- data/bundler/lib/bundler/vendor/uri/.document +1 -0
- data/bundler/lib/bundler/vendor/uri/COPYING +56 -0
- data/bundler/lib/bundler/vendor/uri/lib/uri/common.rb +343 -148
- data/bundler/lib/bundler/vendor/uri/lib/uri/file.rb +10 -4
- data/bundler/lib/bundler/vendor/uri/lib/uri/ftp.rb +3 -2
- data/bundler/lib/bundler/vendor/uri/lib/uri/generic.rb +44 -33
- data/bundler/lib/bundler/vendor/uri/lib/uri/http.rb +40 -2
- data/bundler/lib/bundler/vendor/uri/lib/uri/https.rb +2 -1
- data/bundler/lib/bundler/vendor/uri/lib/uri/ldap.rb +1 -1
- data/bundler/lib/bundler/vendor/uri/lib/uri/ldaps.rb +2 -1
- data/bundler/lib/bundler/vendor/uri/lib/uri/mailto.rb +2 -2
- data/bundler/lib/bundler/vendor/uri/lib/uri/rfc2396_parser.rb +25 -12
- data/bundler/lib/bundler/vendor/uri/lib/uri/rfc3986_parser.rb +130 -38
- data/bundler/lib/bundler/vendor/uri/lib/uri/version.rb +1 -1
- data/bundler/lib/bundler/vendor/uri/lib/uri/ws.rb +1 -2
- data/bundler/lib/bundler/vendor/uri/lib/uri/wss.rb +2 -1
- data/bundler/lib/bundler/vendor/uri/lib/uri.rb +12 -11
- data/bundler/lib/bundler/vendored_net_http.rb +23 -0
- data/bundler/lib/bundler/vendored_persistent.rb +0 -36
- data/bundler/lib/bundler/{vendored_tmpdir.rb → vendored_pub_grub.rb} +1 -1
- data/bundler/lib/bundler/vendored_securerandom.rb +12 -0
- data/bundler/lib/bundler/vendored_timeout.rb +12 -0
- data/bundler/lib/bundler/vendored_uri.rb +18 -1
- data/bundler/lib/bundler/version.rb +5 -1
- data/bundler/lib/bundler/vlad.rb +1 -1
- data/bundler/lib/bundler/worker.rb +5 -7
- data/bundler/lib/bundler/yaml_serializer.rb +22 -13
- data/bundler/lib/bundler.rb +155 -148
- data/{bundler → doc/bundler}/UPGRADING.md +11 -4
- data/{CONTRIBUTING.md → doc/rubygems/CONTRIBUTING.md} +40 -17
- data/doc/rubygems/POLICIES.md +204 -0
- data/{test/rubygems/fake_certlib/openssl.rb → exe/gem} +5 -1
- data/{bin → exe}/update_rubygems +12 -10
- data/lib/rubygems/available_set.rb +8 -7
- data/lib/rubygems/basic_specification.rb +90 -52
- data/lib/rubygems/bundler_version_finder.rb +6 -6
- data/lib/rubygems/ci_detector.rb +75 -0
- data/lib/rubygems/command.rb +68 -64
- data/lib/rubygems/command_manager.rb +39 -24
- data/lib/rubygems/commands/build_command.rb +14 -19
- data/lib/rubygems/commands/cert_command.rb +39 -39
- data/lib/rubygems/commands/check_command.rb +30 -25
- data/lib/rubygems/commands/cleanup_command.rb +32 -43
- data/lib/rubygems/commands/contents_command.rb +33 -25
- data/lib/rubygems/commands/dependency_command.rb +22 -23
- data/lib/rubygems/commands/environment_command.rb +8 -9
- data/lib/rubygems/commands/exec_command.rb +247 -0
- data/lib/rubygems/commands/fetch_command.rb +25 -10
- data/lib/rubygems/commands/generate_index_command.rb +40 -74
- data/lib/rubygems/commands/help_command.rb +15 -14
- data/lib/rubygems/commands/info_command.rb +5 -5
- data/lib/rubygems/commands/install_command.rb +31 -38
- data/lib/rubygems/commands/list_command.rb +6 -5
- data/lib/rubygems/commands/lock_command.rb +6 -5
- data/lib/rubygems/commands/mirror_command.rb +4 -3
- data/lib/rubygems/commands/open_command.rb +11 -12
- data/lib/rubygems/commands/outdated_command.rb +6 -5
- data/lib/rubygems/commands/owner_command.rb +23 -22
- data/lib/rubygems/commands/pristine_command.rb +83 -62
- data/lib/rubygems/commands/push_command.rb +38 -13
- data/lib/rubygems/commands/query_command.rb +11 -11
- data/lib/rubygems/commands/rdoc_command.rb +23 -28
- data/lib/rubygems/commands/rebuild_command.rb +262 -0
- data/lib/rubygems/commands/search_command.rb +6 -5
- data/lib/rubygems/commands/server_command.rb +4 -3
- data/lib/rubygems/commands/setup_command.rb +137 -154
- data/lib/rubygems/commands/signin_command.rb +10 -9
- data/lib/rubygems/commands/signout_command.rb +8 -7
- data/lib/rubygems/commands/sources_command.rb +34 -33
- data/lib/rubygems/commands/specification_command.rb +25 -20
- data/lib/rubygems/commands/stale_command.rb +5 -4
- data/lib/rubygems/commands/uninstall_command.rb +66 -59
- data/lib/rubygems/commands/unpack_command.rb +23 -30
- data/lib/rubygems/commands/update_command.rb +62 -94
- data/lib/rubygems/commands/which_command.rb +9 -8
- data/lib/rubygems/commands/yank_command.rb +14 -13
- data/lib/rubygems/compatibility.rb +5 -6
- data/lib/rubygems/config_file.rb +160 -50
- data/lib/rubygems/core_ext/kernel_gem.rb +3 -10
- data/lib/rubygems/core_ext/kernel_require.rb +88 -114
- data/lib/rubygems/core_ext/kernel_warn.rb +30 -39
- data/lib/rubygems/core_ext/tcpsocket_init.rb +4 -2
- data/lib/rubygems/defaults.rb +53 -22
- data/lib/rubygems/dependency.rb +34 -36
- data/lib/rubygems/dependency_installer.rb +52 -56
- data/lib/rubygems/dependency_list.rb +8 -7
- data/lib/rubygems/deprecate.rb +80 -75
- data/lib/rubygems/doctor.rb +23 -22
- data/lib/rubygems/errors.rb +6 -8
- data/lib/rubygems/exceptions.rb +20 -18
- data/lib/rubygems/ext/build_error.rb +2 -1
- data/lib/rubygems/ext/builder.rb +56 -32
- data/lib/rubygems/ext/cargo_builder/link_flag_converter.rb +9 -5
- data/lib/rubygems/ext/cargo_builder.rb +158 -131
- data/lib/rubygems/ext/cmake_builder.rb +9 -4
- data/lib/rubygems/ext/configure_builder.rb +9 -3
- data/lib/rubygems/ext/ext_conf_builder.rb +19 -15
- data/lib/rubygems/ext/rake_builder.rb +14 -7
- data/lib/rubygems/ext.rb +8 -7
- data/lib/rubygems/gem_runner.rb +23 -9
- data/lib/rubygems/gemcutter_utilities/webauthn_listener/response.rb +163 -0
- data/lib/rubygems/gemcutter_utilities/webauthn_listener.rb +105 -0
- data/lib/rubygems/gemcutter_utilities/webauthn_poller.rb +80 -0
- data/lib/rubygems/gemcutter_utilities.rb +141 -63
- data/lib/rubygems/gemspec_helpers.rb +19 -0
- data/lib/rubygems/install_default_message.rb +3 -2
- data/lib/rubygems/install_message.rb +3 -2
- data/lib/rubygems/install_update_options.rb +72 -67
- data/lib/rubygems/installer.rb +148 -130
- data/lib/rubygems/installer_uninstaller_utils.rb +2 -4
- data/lib/rubygems/local_remote_options.rb +24 -28
- data/lib/rubygems/name_tuple.rb +10 -11
- data/lib/rubygems/package/digest_io.rb +2 -1
- data/lib/rubygems/package/file_source.rb +3 -2
- data/lib/rubygems/package/io_source.rb +1 -0
- data/lib/rubygems/package/old.rb +11 -10
- data/lib/rubygems/package/source.rb +1 -0
- data/lib/rubygems/package/tar_header.rb +125 -91
- data/lib/rubygems/package/tar_reader/entry.rb +106 -29
- data/lib/rubygems/package/tar_reader.rb +16 -39
- data/lib/rubygems/package/tar_writer.rb +29 -26
- data/lib/rubygems/package.rb +122 -84
- data/lib/rubygems/package_task.rb +7 -6
- data/lib/rubygems/path_support.rb +11 -11
- data/lib/rubygems/platform.rb +119 -70
- data/lib/rubygems/psych_tree.rb +6 -1
- data/lib/rubygems/query_utils.rb +46 -48
- data/lib/rubygems/rdoc.rb +13 -3
- data/lib/rubygems/remote_fetcher.rb +47 -39
- data/lib/rubygems/request/connection_pools.rb +6 -6
- data/lib/rubygems/request/http_pool.rb +2 -1
- data/lib/rubygems/request/https_pool.rb +1 -0
- data/lib/rubygems/request.rb +48 -44
- data/lib/rubygems/request_set/gem_dependency_api.rb +141 -144
- data/lib/rubygems/request_set/lockfile/parser.rb +31 -30
- data/lib/rubygems/request_set/lockfile/tokenizer.rb +24 -14
- data/lib/rubygems/request_set/lockfile.rb +11 -15
- data/lib/rubygems/request_set.rb +25 -23
- data/lib/rubygems/requirement.rb +30 -27
- data/lib/rubygems/resolver/activation_request.rb +7 -10
- data/lib/rubygems/resolver/api_set/gem_parser.rb +7 -3
- data/lib/rubygems/resolver/api_set.rb +20 -13
- data/lib/rubygems/resolver/api_specification.rb +8 -7
- data/lib/rubygems/resolver/best_set.rb +5 -32
- data/lib/rubygems/resolver/composed_set.rb +4 -3
- data/lib/rubygems/resolver/conflict.rb +14 -21
- data/lib/rubygems/resolver/current_set.rb +1 -0
- data/lib/rubygems/resolver/dependency_request.rb +3 -2
- data/lib/rubygems/resolver/git_set.rb +2 -2
- data/lib/rubygems/resolver/git_specification.rb +7 -6
- data/lib/rubygems/resolver/index_set.rb +10 -9
- data/lib/rubygems/resolver/index_specification.rb +8 -6
- data/lib/rubygems/resolver/installed_specification.rb +6 -5
- data/lib/rubygems/resolver/installer_set.rb +19 -22
- data/lib/rubygems/resolver/local_specification.rb +4 -3
- data/lib/rubygems/resolver/lock_set.rb +6 -5
- data/lib/rubygems/resolver/lock_specification.rb +5 -4
- data/lib/rubygems/resolver/requirement_list.rb +1 -0
- data/lib/rubygems/resolver/set.rb +1 -0
- data/lib/rubygems/resolver/source_set.rb +2 -0
- data/lib/rubygems/resolver/spec_specification.rb +8 -0
- data/lib/rubygems/resolver/specification.rb +2 -1
- data/lib/rubygems/resolver/stats.rb +2 -1
- data/lib/rubygems/resolver/vendor_set.rb +2 -1
- data/lib/rubygems/resolver/vendor_specification.rb +4 -3
- data/lib/rubygems/resolver.rb +51 -57
- data/lib/rubygems/s3_uri_signer.rb +18 -16
- data/lib/rubygems/safe_marshal/elements.rb +146 -0
- data/lib/rubygems/safe_marshal/reader.rb +325 -0
- data/lib/rubygems/safe_marshal/visitors/stream_printer.rb +31 -0
- data/lib/rubygems/safe_marshal/visitors/to_ruby.rb +428 -0
- data/lib/rubygems/safe_marshal/visitors/visitor.rb +74 -0
- data/lib/rubygems/safe_marshal.rb +74 -0
- data/lib/rubygems/safe_yaml.rb +14 -26
- data/lib/rubygems/security/policies.rb +48 -49
- data/lib/rubygems/security/policy.rb +25 -28
- data/lib/rubygems/security/signer.rb +16 -7
- data/lib/rubygems/security/trust_dir.rb +12 -13
- data/lib/rubygems/security.rb +40 -66
- data/lib/rubygems/security_option.rb +7 -6
- data/lib/rubygems/shellwords.rb +3 -0
- data/lib/rubygems/source/git.rb +34 -31
- data/lib/rubygems/source/installed.rb +4 -3
- data/lib/rubygems/source/local.rb +49 -49
- data/lib/rubygems/source/lock.rb +2 -3
- data/lib/rubygems/source/specific_file.rb +6 -4
- data/lib/rubygems/source/vendor.rb +1 -2
- data/lib/rubygems/source.rb +37 -31
- data/lib/rubygems/source_list.rb +8 -8
- data/lib/rubygems/spec_fetcher.rb +95 -66
- data/lib/rubygems/specification.rb +342 -404
- data/lib/rubygems/specification_policy.rb +147 -75
- data/lib/rubygems/specification_record.rb +212 -0
- data/lib/rubygems/stub_specification.rb +56 -30
- data/lib/rubygems/target_rbconfig.rb +50 -0
- data/lib/rubygems/text.rb +3 -4
- data/lib/rubygems/uninstaller.rb +67 -48
- data/lib/rubygems/update_suggestion.rb +56 -0
- data/lib/rubygems/uri.rb +10 -10
- data/lib/rubygems/uri_formatter.rb +2 -2
- data/lib/rubygems/user_interaction.rb +50 -40
- data/lib/rubygems/util/licenses.rb +310 -39
- data/lib/rubygems/util/list.rb +4 -1
- data/lib/rubygems/util.rb +19 -20
- data/lib/rubygems/validator.rb +15 -14
- data/lib/rubygems/vendor/molinillo/.document +1 -0
- data/lib/rubygems/vendor/molinillo/lib/molinillo/delegates/resolution_state.rb +57 -0
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/delegates/specification_provider.rb +11 -11
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/action.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/add_edge_no_circular.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/add_vertex.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/delete_edge.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/detach_vertex_named.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/log.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/set_payload.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/tag.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph/vertex.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/dependency_graph.rb +3 -3
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/errors.rb +1 -1
- data/lib/rubygems/vendor/molinillo/lib/molinillo/gem_metadata.rb +6 -0
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/modules/specification_provider.rb +2 -2
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/modules/ui.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/resolution.rb +4 -4
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/resolver.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo/state.rb +1 -1
- data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/lib/molinillo.rb +2 -2
- data/lib/rubygems/vendor/net-http/.document +1 -0
- data/lib/rubygems/vendor/net-http/COPYING +56 -0
- data/lib/rubygems/vendor/net-http/lib/net/http/exceptions.rb +34 -0
- data/lib/rubygems/vendor/net-http/lib/net/http/generic_request.rb +414 -0
- data/lib/rubygems/vendor/net-http/lib/net/http/header.rb +981 -0
- data/lib/rubygems/vendor/net-http/lib/net/http/proxy_delta.rb +17 -0
- data/lib/rubygems/vendor/net-http/lib/net/http/request.rb +88 -0
- data/lib/rubygems/vendor/net-http/lib/net/http/requests.rb +430 -0
- data/lib/rubygems/vendor/net-http/lib/net/http/response.rb +738 -0
- data/lib/rubygems/vendor/net-http/lib/net/http/responses.rb +1174 -0
- data/lib/rubygems/vendor/net-http/lib/net/http/status.rb +84 -0
- data/lib/rubygems/vendor/net-http/lib/net/http.rb +2580 -0
- data/lib/rubygems/vendor/net-http/lib/net/https.rb +23 -0
- data/lib/rubygems/vendor/net-protocol/.document +1 -0
- data/lib/rubygems/vendor/net-protocol/lib/net/protocol.rb +544 -0
- data/lib/rubygems/vendor/optparse/.document +1 -0
- data/lib/rubygems/vendor/optparse/COPYING +56 -0
- data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/ac.rb +16 -0
- data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/kwargs.rb +8 -3
- data/lib/rubygems/vendor/optparse/lib/optparse/uri.rb +7 -0
- data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/version.rb +9 -0
- data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse.rb +206 -83
- data/lib/rubygems/vendor/resolv/.document +1 -0
- data/lib/rubygems/vendor/resolv/COPYING +56 -0
- data/lib/rubygems/vendor/resolv/lib/resolv.rb +3455 -0
- data/lib/rubygems/vendor/securerandom/.document +1 -0
- data/lib/rubygems/vendor/securerandom/COPYING +56 -0
- data/lib/rubygems/vendor/securerandom/lib/securerandom.rb +102 -0
- data/lib/rubygems/vendor/timeout/.document +1 -0
- data/lib/rubygems/vendor/timeout/COPYING +56 -0
- data/lib/rubygems/vendor/timeout/lib/timeout.rb +198 -0
- data/lib/rubygems/vendor/tsort/.document +1 -0
- data/lib/rubygems/vendor/tsort/lib/tsort.rb +455 -0
- data/lib/rubygems/vendor/uri/.document +1 -0
- data/lib/rubygems/vendor/uri/COPYING +56 -0
- data/lib/rubygems/vendor/uri/lib/uri/common.rb +876 -0
- data/lib/rubygems/vendor/uri/lib/uri/file.rb +100 -0
- data/lib/rubygems/vendor/uri/lib/uri/ftp.rb +267 -0
- data/lib/rubygems/vendor/uri/lib/uri/generic.rb +1578 -0
- data/lib/rubygems/vendor/uri/lib/uri/http.rb +125 -0
- data/lib/rubygems/vendor/uri/lib/uri/https.rb +23 -0
- data/lib/rubygems/vendor/uri/lib/uri/ldap.rb +261 -0
- data/lib/rubygems/vendor/uri/lib/uri/ldaps.rb +22 -0
- data/lib/rubygems/vendor/uri/lib/uri/mailto.rb +293 -0
- data/lib/rubygems/vendor/uri/lib/uri/rfc2396_parser.rb +546 -0
- data/lib/rubygems/vendor/uri/lib/uri/rfc3986_parser.rb +206 -0
- data/lib/rubygems/vendor/uri/lib/uri/version.rb +6 -0
- data/lib/rubygems/vendor/uri/lib/uri/ws.rb +83 -0
- data/lib/rubygems/vendor/uri/lib/uri/wss.rb +23 -0
- data/lib/rubygems/vendor/uri/lib/uri.rb +104 -0
- data/{bundler/lib/bundler → lib/rubygems}/vendored_molinillo.rb +0 -1
- data/lib/rubygems/vendored_net_http.rb +5 -0
- data/lib/rubygems/vendored_optparse.rb +3 -0
- data/lib/rubygems/vendored_securerandom.rb +3 -0
- data/lib/rubygems/vendored_timeout.rb +5 -0
- data/lib/rubygems/vendored_tsort.rb +3 -0
- data/lib/rubygems/version.rb +57 -45
- data/lib/rubygems/version_option.rb +6 -8
- data/lib/rubygems/yaml_serializer.rb +98 -0
- data/lib/rubygems.rb +191 -133
- data/rubygems-update.gemspec +16 -9
- data/setup.rb +12 -9
- metadata +233 -307
- data/POLICIES.md +0 -100
- data/bin/gem +0 -13
- data/bundler/lib/bundler/dep_proxy.rb +0 -55
- data/bundler/lib/bundler/templates/gems.rb +0 -5
- data/bundler/lib/bundler/templates/newgem/ext/newgem/extconf.rb.tt +0 -5
- data/bundler/lib/bundler/templates/newgem/travis.yml.tt +0 -6
- data/bundler/lib/bundler/vendor/molinillo/lib/molinillo/delegates/resolution_state.rb +0 -57
- data/bundler/lib/bundler/vendor/molinillo/lib/molinillo/gem_metadata.rb +0 -6
- data/bundler/lib/bundler/vendor/tmpdir/lib/tmpdir.rb +0 -154
- data/bundler/lib/bundler/version_ranges.rb +0 -122
- data/lib/rubygems/indexer.rb +0 -427
- data/lib/rubygems/mock_gem_ui.rb +0 -85
- data/lib/rubygems/optparse/lib/optparse/uri.rb +0 -7
- data/lib/rubygems/optparse.rb +0 -3
- data/lib/rubygems/resolver/molinillo/LICENSE +0 -9
- data/lib/rubygems/resolver/molinillo/lib/molinillo/delegates/resolution_state.rb +0 -57
- data/lib/rubygems/resolver/molinillo/lib/molinillo/delegates/specification_provider.rb +0 -88
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/action.rb +0 -36
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/add_edge_no_circular.rb +0 -66
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/add_vertex.rb +0 -62
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/delete_edge.rb +0 -63
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/detach_vertex_named.rb +0 -61
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/log.rb +0 -126
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/set_payload.rb +0 -46
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/tag.rb +0 -36
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph/vertex.rb +0 -164
- data/lib/rubygems/resolver/molinillo/lib/molinillo/dependency_graph.rb +0 -255
- data/lib/rubygems/resolver/molinillo/lib/molinillo/errors.rb +0 -143
- data/lib/rubygems/resolver/molinillo/lib/molinillo/gem_metadata.rb +0 -6
- data/lib/rubygems/resolver/molinillo/lib/molinillo/modules/specification_provider.rb +0 -112
- data/lib/rubygems/resolver/molinillo/lib/molinillo/modules/ui.rb +0 -67
- data/lib/rubygems/resolver/molinillo/lib/molinillo/resolution.rb +0 -839
- data/lib/rubygems/resolver/molinillo/lib/molinillo/resolver.rb +0 -46
- data/lib/rubygems/resolver/molinillo/lib/molinillo/state.rb +0 -58
- data/lib/rubygems/resolver/molinillo/lib/molinillo.rb +0 -11
- data/lib/rubygems/resolver/molinillo.rb +0 -2
- data/lib/rubygems/tsort/LICENSE.txt +0 -22
- data/lib/rubygems/tsort/lib/tsort.rb +0 -454
- data/lib/rubygems/tsort.rb +0 -3
- data/test/rubygems/alternate_cert.pem +0 -19
- data/test/rubygems/alternate_cert_32.pem +0 -19
- data/test/rubygems/alternate_key.pem +0 -27
- data/test/rubygems/bad_rake.rb +0 -2
- data/test/rubygems/ca_cert.pem +0 -77
- data/test/rubygems/child_cert.pem +0 -20
- data/test/rubygems/child_cert_32.pem +0 -20
- data/test/rubygems/child_key.pem +0 -27
- data/test/rubygems/client.pem +0 -107
- data/test/rubygems/data/excon-0.7.7.gemspec.rz +0 -0
- data/test/rubygems/data/gem-private_key.pem +0 -27
- data/test/rubygems/data/gem-public_cert.pem +0 -20
- data/test/rubygems/data/null-required-ruby-version.gemspec.rz +0 -0
- data/test/rubygems/data/null-required-rubygems-version.gemspec.rz +0 -0
- data/test/rubygems/data/pry-0.4.7.gemspec.rz +0 -0
- data/test/rubygems/encrypted_private_key.pem +0 -30
- data/test/rubygems/expired_cert.pem +0 -19
- data/test/rubygems/foo/discover.rb +0 -1
- data/test/rubygems/future_cert.pem +0 -19
- data/test/rubygems/future_cert_32.pem +0 -19
- data/test/rubygems/good_rake.rb +0 -2
- data/test/rubygems/grandchild_cert.pem +0 -20
- data/test/rubygems/grandchild_cert_32.pem +0 -20
- data/test/rubygems/grandchild_key.pem +0 -27
- data/test/rubygems/helper.rb +0 -1622
- data/test/rubygems/installer_test_case.rb +0 -247
- data/test/rubygems/invalid_client.pem +0 -49
- data/test/rubygems/invalid_issuer_cert.pem +0 -20
- data/test/rubygems/invalid_issuer_cert_32.pem +0 -20
- data/test/rubygems/invalid_key.pem +0 -27
- data/test/rubygems/invalid_signer_cert.pem +0 -19
- data/test/rubygems/invalid_signer_cert_32.pem +0 -19
- data/test/rubygems/invalidchild_cert.pem +0 -20
- data/test/rubygems/invalidchild_cert_32.pem +0 -20
- data/test/rubygems/invalidchild_key.pem +0 -27
- data/test/rubygems/package/tar_test_case.rb +0 -139
- data/test/rubygems/packages/ascii_binder-0.1.10.1.gem +0 -0
- data/test/rubygems/packages/ill-formatted-platform-1.0.0.10.gem +0 -0
- data/test/rubygems/plugin/exception/rubygems_plugin.rb +0 -3
- data/test/rubygems/plugin/load/rubygems_plugin.rb +0 -4
- data/test/rubygems/plugin/standarderror/rubygems_plugin.rb +0 -3
- data/test/rubygems/private3072_key.pem +0 -40
- data/test/rubygems/private_ec_key.pem +0 -9
- data/test/rubygems/private_key.pem +0 -27
- data/test/rubygems/public3072_cert.pem +0 -25
- data/test/rubygems/public_cert.pem +0 -20
- data/test/rubygems/public_cert_32.pem +0 -19
- data/test/rubygems/public_key.pem +0 -9
- data/test/rubygems/rubygems/commands/crash_command.rb +0 -4
- data/test/rubygems/rubygems_plugin.rb +0 -23
- data/test/rubygems/sff/discover.rb +0 -1
- data/test/rubygems/simple_gem.rb +0 -67
- data/test/rubygems/specifications/bar-0.0.2.gemspec +0 -7
- data/test/rubygems/specifications/foo-0.0.1-x86-mswin32.gemspec +0 -0
- data/test/rubygems/specifications/rubyforge-0.0.1.gemspec +0 -12
- data/test/rubygems/ssl_cert.pem +0 -80
- data/test/rubygems/ssl_key.pem +0 -27
- data/test/rubygems/test_bundled_ca.rb +0 -60
- data/test/rubygems/test_config.rb +0 -27
- data/test/rubygems/test_deprecate.rb +0 -157
- data/test/rubygems/test_exit.rb +0 -11
- data/test/rubygems/test_gem.rb +0 -2112
- data/test/rubygems/test_gem_available_set.rb +0 -129
- data/test/rubygems/test_gem_bundler_version_finder.rb +0 -125
- data/test/rubygems/test_gem_command.rb +0 -400
- data/test/rubygems/test_gem_command_manager.rb +0 -334
- data/test/rubygems/test_gem_commands_build_command.rb +0 -727
- data/test/rubygems/test_gem_commands_cert_command.rb +0 -867
- data/test/rubygems/test_gem_commands_check_command.rb +0 -67
- data/test/rubygems/test_gem_commands_cleanup_command.rb +0 -291
- data/test/rubygems/test_gem_commands_contents_command.rb +0 -270
- data/test/rubygems/test_gem_commands_dependency_command.rb +0 -227
- data/test/rubygems/test_gem_commands_environment_command.rb +0 -167
- data/test/rubygems/test_gem_commands_fetch_command.rb +0 -257
- data/test/rubygems/test_gem_commands_generate_index_command.rb +0 -80
- data/test/rubygems/test_gem_commands_help_command.rb +0 -93
- data/test/rubygems/test_gem_commands_info_command.rb +0 -43
- data/test/rubygems/test_gem_commands_install_command.rb +0 -1553
- data/test/rubygems/test_gem_commands_list_command.rb +0 -32
- data/test/rubygems/test_gem_commands_lock_command.rb +0 -66
- data/test/rubygems/test_gem_commands_mirror.rb +0 -19
- data/test/rubygems/test_gem_commands_open_command.rb +0 -97
- data/test/rubygems/test_gem_commands_outdated_command.rb +0 -49
- data/test/rubygems/test_gem_commands_owner_command.rb +0 -326
- data/test/rubygems/test_gem_commands_pristine_command.rb +0 -659
- data/test/rubygems/test_gem_commands_push_command.rb +0 -477
- data/test/rubygems/test_gem_commands_query_command.rb +0 -857
- data/test/rubygems/test_gem_commands_search_command.rb +0 -15
- data/test/rubygems/test_gem_commands_server_command.rb +0 -19
- data/test/rubygems/test_gem_commands_setup_command.rb +0 -447
- data/test/rubygems/test_gem_commands_signin_command.rb +0 -219
- data/test/rubygems/test_gem_commands_signout_command.rb +0 -30
- data/test/rubygems/test_gem_commands_sources_command.rb +0 -534
- data/test/rubygems/test_gem_commands_specification_command.rb +0 -276
- data/test/rubygems/test_gem_commands_stale_command.rb +0 -42
- data/test/rubygems/test_gem_commands_uninstall_command.rb +0 -504
- data/test/rubygems/test_gem_commands_unpack_command.rb +0 -223
- data/test/rubygems/test_gem_commands_update_command.rb +0 -835
- data/test/rubygems/test_gem_commands_which_command.rb +0 -84
- data/test/rubygems/test_gem_commands_yank_command.rb +0 -180
- data/test/rubygems/test_gem_config_file.rb +0 -504
- data/test/rubygems/test_gem_dependency.rb +0 -395
- data/test/rubygems/test_gem_dependency_installer.rb +0 -1155
- data/test/rubygems/test_gem_dependency_list.rb +0 -264
- data/test/rubygems/test_gem_dependency_resolution_error.rb +0 -26
- data/test/rubygems/test_gem_doctor.rb +0 -194
- data/test/rubygems/test_gem_ext_builder.rb +0 -338
- data/test/rubygems/test_gem_ext_cargo_builder/custom_name/.gitignore +0 -1
- data/test/rubygems/test_gem_ext_cargo_builder/custom_name/Cargo.lock +0 -243
- data/test/rubygems/test_gem_ext_cargo_builder/custom_name/Cargo.toml +0 -10
- data/test/rubygems/test_gem_ext_cargo_builder/custom_name/build.rb +0 -21
- data/test/rubygems/test_gem_ext_cargo_builder/custom_name/custom_name.gemspec +0 -10
- data/test/rubygems/test_gem_ext_cargo_builder/custom_name/src/lib.rs +0 -27
- data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/.gitignore +0 -1
- data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.lock +0 -243
- data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.toml +0 -10
- data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/build.rb +0 -21
- data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/rust_ruby_example.gemspec +0 -8
- data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/src/lib.rs +0 -39
- data/test/rubygems/test_gem_ext_cargo_builder.rb +0 -178
- data/test/rubygems/test_gem_ext_cargo_builder_link_flag_converter.rb +0 -33
- data/test/rubygems/test_gem_ext_cargo_builder_unit.rb +0 -75
- data/test/rubygems/test_gem_ext_cmake_builder.rb +0 -83
- data/test/rubygems/test_gem_ext_configure_builder.rb +0 -79
- data/test/rubygems/test_gem_ext_ext_conf_builder.rb +0 -230
- data/test/rubygems/test_gem_ext_rake_builder.rb +0 -112
- data/test/rubygems/test_gem_gem_runner.rb +0 -113
- data/test/rubygems/test_gem_gemcutter_utilities.rb +0 -272
- data/test/rubygems/test_gem_impossible_dependencies_error.rb +0 -59
- data/test/rubygems/test_gem_indexer.rb +0 -361
- data/test/rubygems/test_gem_install_update_options.rb +0 -207
- data/test/rubygems/test_gem_installer.rb +0 -2394
- data/test/rubygems/test_gem_local_remote_options.rb +0 -132
- data/test/rubygems/test_gem_name_tuple.rb +0 -42
- data/test/rubygems/test_gem_package.rb +0 -1178
- data/test/rubygems/test_gem_package_old.rb +0 -90
- data/test/rubygems/test_gem_package_tar_header.rb +0 -225
- data/test/rubygems/test_gem_package_tar_reader.rb +0 -87
- data/test/rubygems/test_gem_package_tar_reader_entry.rb +0 -152
- data/test/rubygems/test_gem_package_tar_writer.rb +0 -330
- data/test/rubygems/test_gem_package_task.rb +0 -117
- data/test/rubygems/test_gem_path_support.rb +0 -138
- data/test/rubygems/test_gem_platform.rb +0 -391
- data/test/rubygems/test_gem_rdoc.rb +0 -136
- data/test/rubygems/test_gem_remote_fetcher.rb +0 -1226
- data/test/rubygems/test_gem_request.rb +0 -541
- data/test/rubygems/test_gem_request_connection_pools.rb +0 -150
- data/test/rubygems/test_gem_request_set.rb +0 -671
- data/test/rubygems/test_gem_request_set_gem_dependency_api.rb +0 -847
- data/test/rubygems/test_gem_request_set_lockfile.rb +0 -468
- data/test/rubygems/test_gem_request_set_lockfile_parser.rb +0 -543
- data/test/rubygems/test_gem_request_set_lockfile_tokenizer.rb +0 -306
- data/test/rubygems/test_gem_requirement.rb +0 -498
- data/test/rubygems/test_gem_resolver.rb +0 -791
- data/test/rubygems/test_gem_resolver_activation_request.rb +0 -42
- data/test/rubygems/test_gem_resolver_api_set.rb +0 -209
- data/test/rubygems/test_gem_resolver_api_specification.rb +0 -166
- data/test/rubygems/test_gem_resolver_best_set.rb +0 -158
- data/test/rubygems/test_gem_resolver_composed_set.rb +0 -43
- data/test/rubygems/test_gem_resolver_conflict.rb +0 -81
- data/test/rubygems/test_gem_resolver_dependency_request.rb +0 -82
- data/test/rubygems/test_gem_resolver_git_set.rb +0 -187
- data/test/rubygems/test_gem_resolver_git_specification.rb +0 -113
- data/test/rubygems/test_gem_resolver_index_set.rb +0 -87
- data/test/rubygems/test_gem_resolver_index_specification.rb +0 -92
- data/test/rubygems/test_gem_resolver_installed_specification.rb +0 -46
- data/test/rubygems/test_gem_resolver_installer_set.rb +0 -275
- data/test/rubygems/test_gem_resolver_local_specification.rb +0 -43
- data/test/rubygems/test_gem_resolver_lock_set.rb +0 -61
- data/test/rubygems/test_gem_resolver_lock_specification.rb +0 -97
- data/test/rubygems/test_gem_resolver_requirement_list.rb +0 -18
- data/test/rubygems/test_gem_resolver_specification.rb +0 -62
- data/test/rubygems/test_gem_resolver_vendor_set.rb +0 -81
- data/test/rubygems/test_gem_resolver_vendor_specification.rb +0 -81
- data/test/rubygems/test_gem_security.rb +0 -340
- data/test/rubygems/test_gem_security_policy.rb +0 -535
- data/test/rubygems/test_gem_security_signer.rb +0 -217
- data/test/rubygems/test_gem_security_trust_dir.rb +0 -98
- data/test/rubygems/test_gem_silent_ui.rb +0 -116
- data/test/rubygems/test_gem_source.rb +0 -253
- data/test/rubygems/test_gem_source_fetch_problem.rb +0 -36
- data/test/rubygems/test_gem_source_git.rb +0 -303
- data/test/rubygems/test_gem_source_installed.rb +0 -34
- data/test/rubygems/test_gem_source_list.rb +0 -118
- data/test/rubygems/test_gem_source_local.rb +0 -106
- data/test/rubygems/test_gem_source_lock.rb +0 -112
- data/test/rubygems/test_gem_source_specific_file.rb +0 -75
- data/test/rubygems/test_gem_source_subpath_problem.rb +0 -49
- data/test/rubygems/test_gem_source_vendor.rb +0 -29
- data/test/rubygems/test_gem_spec_fetcher.rb +0 -337
- data/test/rubygems/test_gem_specification.rb +0 -3756
- data/test/rubygems/test_gem_stream_ui.rb +0 -224
- data/test/rubygems/test_gem_stub_specification.rb +0 -277
- data/test/rubygems/test_gem_text.rb +0 -102
- data/test/rubygems/test_gem_uninstaller.rb +0 -674
- data/test/rubygems/test_gem_unsatisfiable_dependency_error.rb +0 -30
- data/test/rubygems/test_gem_uri.rb +0 -39
- data/test/rubygems/test_gem_uri_formatter.rb +0 -26
- data/test/rubygems/test_gem_util.rb +0 -90
- data/test/rubygems/test_gem_validator.rb +0 -42
- data/test/rubygems/test_gem_version.rb +0 -295
- data/test/rubygems/test_gem_version_option.rb +0 -164
- data/test/rubygems/test_kernel.rb +0 -129
- data/test/rubygems/test_project_sanity.rb +0 -20
- data/test/rubygems/test_remote_fetch_error.rb +0 -19
- data/test/rubygems/test_require.rb +0 -719
- data/test/rubygems/test_rubygems.rb +0 -74
- data/test/rubygems/utilities.rb +0 -371
- data/test/rubygems/wrong_key_cert.pem +0 -19
- data/test/rubygems/wrong_key_cert_32.pem +0 -19
- data/test/test_changelog_generator.rb +0 -17
- /data/{lib/rubygems/optparse → bundler/lib/bundler/vendor/connection_pool}/.document +0 -0
- /data/{lib/rubygems/tsort → bundler/lib/bundler/vendor/fileutils}/.document +0 -0
- /data/{lib/rubygems/optparse → bundler/lib/bundler/vendor/fileutils}/COPYING +0 -0
- /data/{MAINTAINERS.txt → doc/MAINTAINERS.txt} +0 -0
- /data/{UPGRADING.md → doc/rubygems/UPGRADING.md} +0 -0
- /data/{bundler/lib/bundler → lib/rubygems}/vendor/molinillo/LICENSE +0 -0
- /data/{bundler/lib/bundler/vendor/fileutils → lib/rubygems/vendor/net-protocol}/LICENSE.txt +0 -0
- /data/lib/rubygems/{optparse → vendor/optparse}/lib/optionparser.rb +0 -0
- /data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/date.rb +0 -0
- /data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/shellwords.rb +0 -0
- /data/lib/rubygems/{optparse → vendor/optparse}/lib/optparse/time.rb +0 -0
- /data/{bundler/lib/bundler/vendor/uri → lib/rubygems/vendor/tsort}/LICENSE.txt +0 -0
data/lib/rubygems/security.rb
CHANGED
|
@@ -1,12 +1,13 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
|
+
|
|
2
3
|
#--
|
|
3
4
|
# Copyright 2006 by Chad Fowler, Rich Kilmer, Jim Weirich and others.
|
|
4
5
|
# All rights reserved.
|
|
5
6
|
# See LICENSE.txt for permissions.
|
|
6
7
|
#++
|
|
7
8
|
|
|
8
|
-
require_relative
|
|
9
|
-
require_relative
|
|
9
|
+
require_relative "exceptions"
|
|
10
|
+
require_relative "openssl"
|
|
10
11
|
|
|
11
12
|
##
|
|
12
13
|
# = Signing gems
|
|
@@ -322,10 +323,9 @@ require_relative 'openssl'
|
|
|
322
323
|
# == Original author
|
|
323
324
|
#
|
|
324
325
|
# Paul Duncan <pabs@pablotron.org>
|
|
325
|
-
#
|
|
326
|
+
# https://pablotron.org/
|
|
326
327
|
|
|
327
328
|
module Gem::Security
|
|
328
|
-
|
|
329
329
|
##
|
|
330
330
|
# Gem::Security default exception type
|
|
331
331
|
|
|
@@ -334,7 +334,7 @@ module Gem::Security
|
|
|
334
334
|
##
|
|
335
335
|
# Used internally to select the signing digest from all computed digests
|
|
336
336
|
|
|
337
|
-
DIGEST_NAME =
|
|
337
|
+
DIGEST_NAME = "SHA256" # :nodoc:
|
|
338
338
|
|
|
339
339
|
##
|
|
340
340
|
# Length of keys created by RSA and DSA keys
|
|
@@ -344,23 +344,23 @@ module Gem::Security
|
|
|
344
344
|
##
|
|
345
345
|
# Default algorithm to use when building a key pair
|
|
346
346
|
|
|
347
|
-
DEFAULT_KEY_ALGORITHM =
|
|
347
|
+
DEFAULT_KEY_ALGORITHM = "RSA"
|
|
348
348
|
|
|
349
349
|
##
|
|
350
350
|
# Named curve used for Elliptic Curve
|
|
351
351
|
|
|
352
|
-
EC_NAME =
|
|
352
|
+
EC_NAME = "secp384r1"
|
|
353
353
|
|
|
354
354
|
##
|
|
355
355
|
# Cipher used to encrypt the key pair used to sign gems.
|
|
356
356
|
# Must be in the list returned by OpenSSL::Cipher.ciphers
|
|
357
357
|
|
|
358
|
-
KEY_CIPHER = OpenSSL::Cipher.new(
|
|
358
|
+
KEY_CIPHER = OpenSSL::Cipher.new("AES-256-CBC") if defined?(OpenSSL::Cipher)
|
|
359
359
|
|
|
360
360
|
##
|
|
361
361
|
# One day in seconds
|
|
362
362
|
|
|
363
|
-
ONE_DAY =
|
|
363
|
+
ONE_DAY = 86_400
|
|
364
364
|
|
|
365
365
|
##
|
|
366
366
|
# One year in seconds
|
|
@@ -376,10 +376,10 @@ module Gem::Security
|
|
|
376
376
|
# * The certificate contains a subject key identifier
|
|
377
377
|
|
|
378
378
|
EXTENSIONS = {
|
|
379
|
-
|
|
380
|
-
|
|
381
|
-
|
|
382
|
-
|
|
379
|
+
"basicConstraints" => "CA:FALSE",
|
|
380
|
+
"keyUsage" =>
|
|
381
|
+
"keyEncipherment,dataEncipherment,digitalSignature",
|
|
382
|
+
"subjectKeyIdentifier" => "hash",
|
|
383
383
|
}.freeze
|
|
384
384
|
|
|
385
385
|
def self.alt_name_or_x509_entry(certificate, x509_entry)
|
|
@@ -398,8 +398,7 @@ module Gem::Security
|
|
|
398
398
|
#
|
|
399
399
|
# The +extensions+ restrict the key to the indicated uses.
|
|
400
400
|
|
|
401
|
-
def self.create_cert(subject, key, age = ONE_YEAR, extensions = EXTENSIONS,
|
|
402
|
-
serial = 1)
|
|
401
|
+
def self.create_cert(subject, key, age = ONE_YEAR, extensions = EXTENSIONS, serial = 1)
|
|
403
402
|
cert = OpenSSL::X509::Certificate.new
|
|
404
403
|
|
|
405
404
|
cert.public_key = get_public_key(key)
|
|
@@ -433,13 +432,6 @@ module Gem::Security
|
|
|
433
432
|
ec_key
|
|
434
433
|
end
|
|
435
434
|
|
|
436
|
-
##
|
|
437
|
-
# In Ruby 2.3 EC doesn't implement the private_key? but not the private? method
|
|
438
|
-
|
|
439
|
-
if defined?(OpenSSL::PKey::EC) && Gem::Version.new(String.new(RUBY_VERSION)) < Gem::Version.new("2.4.0")
|
|
440
|
-
OpenSSL::PKey::EC.send(:alias_method, :private?, :private_key?)
|
|
441
|
-
end
|
|
442
|
-
|
|
443
435
|
##
|
|
444
436
|
# Creates a self-signed certificate with an issuer and subject from +email+,
|
|
445
437
|
# a subject alternative name of +email+ and the given +extensions+ for the
|
|
@@ -457,8 +449,7 @@ module Gem::Security
|
|
|
457
449
|
# Creates a self-signed certificate with an issuer and subject of +subject+
|
|
458
450
|
# and the given +extensions+ for the +key+.
|
|
459
451
|
|
|
460
|
-
def self.create_cert_self_signed(subject, key, age = ONE_YEAR,
|
|
461
|
-
extensions = EXTENSIONS, serial = 1)
|
|
452
|
+
def self.create_cert_self_signed(subject, key, age = ONE_YEAR, extensions = EXTENSIONS, serial = 1)
|
|
462
453
|
certificate = create_cert subject, key, age, extensions
|
|
463
454
|
|
|
464
455
|
sign certificate, key, certificate, age, extensions, serial
|
|
@@ -468,16 +459,8 @@ module Gem::Security
|
|
|
468
459
|
# Creates a new digest instance using the specified +algorithm+. The default
|
|
469
460
|
# is SHA256.
|
|
470
461
|
|
|
471
|
-
|
|
472
|
-
|
|
473
|
-
OpenSSL::Digest.new(algorithm)
|
|
474
|
-
end
|
|
475
|
-
else
|
|
476
|
-
require 'digest'
|
|
477
|
-
|
|
478
|
-
def self.create_digest(algorithm = DIGEST_NAME)
|
|
479
|
-
Digest.const_get(algorithm).new
|
|
480
|
-
end
|
|
462
|
+
def self.create_digest(algorithm = DIGEST_NAME)
|
|
463
|
+
OpenSSL::Digest.new(algorithm)
|
|
481
464
|
end
|
|
482
465
|
|
|
483
466
|
##
|
|
@@ -487,18 +470,12 @@ module Gem::Security
|
|
|
487
470
|
def self.create_key(algorithm)
|
|
488
471
|
if defined?(OpenSSL::PKey)
|
|
489
472
|
case algorithm.downcase
|
|
490
|
-
when
|
|
473
|
+
when "dsa"
|
|
491
474
|
OpenSSL::PKey::DSA.new(RSA_DSA_KEY_LENGTH)
|
|
492
|
-
when
|
|
475
|
+
when "rsa"
|
|
493
476
|
OpenSSL::PKey::RSA.new(RSA_DSA_KEY_LENGTH)
|
|
494
|
-
when
|
|
495
|
-
|
|
496
|
-
OpenSSL::PKey::EC.generate(EC_NAME)
|
|
497
|
-
else
|
|
498
|
-
domain_key = OpenSSL::PKey::EC.new(EC_NAME)
|
|
499
|
-
domain_key.generate_key
|
|
500
|
-
domain_key
|
|
501
|
-
end
|
|
477
|
+
when "ec"
|
|
478
|
+
OpenSSL::PKey::EC.generate(EC_NAME)
|
|
502
479
|
else
|
|
503
480
|
raise Gem::Security::Exception,
|
|
504
481
|
"#{algorithm} algorithm not found. RSA, DSA, and EC algorithms are supported."
|
|
@@ -510,11 +487,11 @@ module Gem::Security
|
|
|
510
487
|
# Turns +email_address+ into an OpenSSL::X509::Name
|
|
511
488
|
|
|
512
489
|
def self.email_to_name(email_address)
|
|
513
|
-
email_address = email_address.gsub(/[^\w@.-]+/i,
|
|
490
|
+
email_address = email_address.gsub(/[^\w@.-]+/i, "_")
|
|
514
491
|
|
|
515
|
-
cn, dcs = email_address.split
|
|
492
|
+
cn, dcs = email_address.split "@"
|
|
516
493
|
|
|
517
|
-
dcs = dcs.split
|
|
494
|
+
dcs = dcs.split "."
|
|
518
495
|
|
|
519
496
|
OpenSSL::X509::Name.new([
|
|
520
497
|
["CN", cn],
|
|
@@ -528,11 +505,10 @@ module Gem::Security
|
|
|
528
505
|
#--
|
|
529
506
|
# TODO increment serial
|
|
530
507
|
|
|
531
|
-
def self.re_sign(expired_certificate, private_key, age = ONE_YEAR,
|
|
532
|
-
extensions = EXTENSIONS)
|
|
508
|
+
def self.re_sign(expired_certificate, private_key, age = ONE_YEAR, extensions = EXTENSIONS)
|
|
533
509
|
raise Gem::Security::Exception,
|
|
534
510
|
"incorrect signing key for re-signing " +
|
|
535
|
-
|
|
511
|
+
expired_certificate.subject.to_s unless
|
|
536
512
|
expired_certificate.check_private_key(private_key)
|
|
537
513
|
|
|
538
514
|
unless expired_certificate.subject.to_s ==
|
|
@@ -541,7 +517,7 @@ module Gem::Security
|
|
|
541
517
|
issuer = alt_name_or_x509_entry expired_certificate, :issuer
|
|
542
518
|
|
|
543
519
|
raise Gem::Security::Exception,
|
|
544
|
-
"#{subject} is not self-signed, contact #{issuer} "
|
|
520
|
+
"#{subject} is not self-signed, contact #{issuer} " \
|
|
545
521
|
"to obtain a valid certificate"
|
|
546
522
|
end
|
|
547
523
|
|
|
@@ -565,23 +541,22 @@ module Gem::Security
|
|
|
565
541
|
#
|
|
566
542
|
# Returns the newly signed certificate.
|
|
567
543
|
|
|
568
|
-
def self.sign(certificate, signing_key, signing_cert,
|
|
569
|
-
age = ONE_YEAR, extensions = EXTENSIONS, serial = 1)
|
|
544
|
+
def self.sign(certificate, signing_key, signing_cert, age = ONE_YEAR, extensions = EXTENSIONS, serial = 1)
|
|
570
545
|
signee_subject = certificate.subject
|
|
571
546
|
signee_key = certificate.public_key
|
|
572
547
|
|
|
573
548
|
alt_name = certificate.extensions.find do |extension|
|
|
574
|
-
extension.oid ==
|
|
549
|
+
extension.oid == "subjectAltName"
|
|
575
550
|
end
|
|
576
551
|
|
|
577
|
-
extensions = extensions.merge
|
|
552
|
+
extensions = extensions.merge "subjectAltName" => alt_name.value if
|
|
578
553
|
alt_name
|
|
579
554
|
|
|
580
555
|
issuer_alt_name = signing_cert.extensions.find do |extension|
|
|
581
|
-
extension.oid ==
|
|
556
|
+
extension.oid == "subjectAltName"
|
|
582
557
|
end
|
|
583
558
|
|
|
584
|
-
extensions = extensions.merge
|
|
559
|
+
extensions = extensions.merge "issuerAltName" => issuer_alt_name.value if
|
|
585
560
|
issuer_alt_name
|
|
586
561
|
|
|
587
562
|
signed = create_cert signee_subject, signee_key, age, extensions, serial
|
|
@@ -597,7 +572,7 @@ module Gem::Security
|
|
|
597
572
|
def self.trust_dir
|
|
598
573
|
return @trust_dir if @trust_dir
|
|
599
574
|
|
|
600
|
-
dir = File.join Gem.user_home,
|
|
575
|
+
dir = File.join Gem.user_home, ".gem", "trust"
|
|
601
576
|
|
|
602
577
|
@trust_dir ||= Gem::Security::TrustDir.new dir
|
|
603
578
|
end
|
|
@@ -614,11 +589,11 @@ module Gem::Security
|
|
|
614
589
|
# +permissions+. If passed +cipher+ and +passphrase+ those arguments will be
|
|
615
590
|
# passed to +to_pem+.
|
|
616
591
|
|
|
617
|
-
def self.write(pemmable, path, permissions =
|
|
592
|
+
def self.write(pemmable, path, permissions = 0o600, passphrase = nil, cipher = KEY_CIPHER)
|
|
618
593
|
path = File.expand_path path
|
|
619
594
|
|
|
620
|
-
File.open path,
|
|
621
|
-
if passphrase
|
|
595
|
+
File.open path, "wb", permissions do |io|
|
|
596
|
+
if passphrase && cipher
|
|
622
597
|
io.write pemmable.to_pem cipher, passphrase
|
|
623
598
|
else
|
|
624
599
|
io.write pemmable.to_pem
|
|
@@ -629,13 +604,12 @@ module Gem::Security
|
|
|
629
604
|
end
|
|
630
605
|
|
|
631
606
|
reset
|
|
632
|
-
|
|
633
607
|
end
|
|
634
608
|
|
|
635
609
|
if Gem::HAVE_OPENSSL
|
|
636
|
-
require_relative
|
|
637
|
-
require_relative
|
|
638
|
-
require_relative
|
|
610
|
+
require_relative "security/policy"
|
|
611
|
+
require_relative "security/policies"
|
|
612
|
+
require_relative "security/trust_dir"
|
|
639
613
|
end
|
|
640
614
|
|
|
641
|
-
require_relative
|
|
615
|
+
require_relative "security/signer"
|
|
@@ -1,11 +1,12 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
|
+
|
|
2
3
|
#--
|
|
3
4
|
# Copyright 2006 by Chad Fowler, Rich Kilmer, Jim Weirich and others.
|
|
4
5
|
# All rights reserved.
|
|
5
6
|
# See LICENSE.txt for permissions.
|
|
6
7
|
#++
|
|
7
8
|
|
|
8
|
-
require_relative
|
|
9
|
+
require_relative "../rubygems"
|
|
9
10
|
|
|
10
11
|
# forward-declare
|
|
11
12
|
|
|
@@ -20,22 +21,22 @@ end
|
|
|
20
21
|
module Gem::SecurityOption
|
|
21
22
|
def add_security_option
|
|
22
23
|
Gem::OptionParser.accept Gem::Security::Policy do |value|
|
|
23
|
-
require_relative
|
|
24
|
+
require_relative "security"
|
|
24
25
|
|
|
25
|
-
raise Gem::OptionParser::InvalidArgument,
|
|
26
|
+
raise Gem::OptionParser::InvalidArgument, "OpenSSL not installed" unless
|
|
26
27
|
defined?(Gem::Security::HighSecurity)
|
|
27
28
|
|
|
28
29
|
policy = Gem::Security::Policies[value]
|
|
29
30
|
unless policy
|
|
30
31
|
valid = Gem::Security::Policies.keys.sort
|
|
31
|
-
raise Gem::OptionParser::InvalidArgument, "#{value} (#{valid.join
|
|
32
|
+
raise Gem::OptionParser::InvalidArgument, "#{value} (#{valid.join ", "} are valid)"
|
|
32
33
|
end
|
|
33
34
|
policy
|
|
34
35
|
end
|
|
35
36
|
|
|
36
|
-
add_option(:"Install/Update",
|
|
37
|
+
add_option(:"Install/Update", "-P", "--trust-policy POLICY",
|
|
37
38
|
Gem::Security::Policy,
|
|
38
|
-
|
|
39
|
+
"Specify gem trust policy") do |value, options|
|
|
39
40
|
options[:security_policy] = value
|
|
40
41
|
end
|
|
41
42
|
end
|
data/lib/rubygems/source/git.rb
CHANGED
|
@@ -53,12 +53,11 @@ class Gem::Source::Git < Gem::Source
|
|
|
53
53
|
@uri = Gem::Uri.parse(repository)
|
|
54
54
|
@name = name
|
|
55
55
|
@repository = repository
|
|
56
|
-
@reference = reference
|
|
56
|
+
@reference = reference || "HEAD"
|
|
57
57
|
@need_submodules = submodules
|
|
58
58
|
|
|
59
59
|
@remote = true
|
|
60
60
|
@root_dir = Gem.dir
|
|
61
|
-
@git = ENV['git'] || 'git'
|
|
62
61
|
end
|
|
63
62
|
|
|
64
63
|
def <=>(other)
|
|
@@ -70,19 +69,21 @@ class Gem::Source::Git < Gem::Source
|
|
|
70
69
|
-1
|
|
71
70
|
when Gem::Source then
|
|
72
71
|
1
|
|
73
|
-
else
|
|
74
|
-
nil
|
|
75
72
|
end
|
|
76
73
|
end
|
|
77
74
|
|
|
78
75
|
def ==(other) # :nodoc:
|
|
79
|
-
super
|
|
80
|
-
@name == other.name
|
|
81
|
-
@repository == other.repository
|
|
82
|
-
@reference == other.reference
|
|
76
|
+
super &&
|
|
77
|
+
@name == other.name &&
|
|
78
|
+
@repository == other.repository &&
|
|
79
|
+
@reference == other.reference &&
|
|
83
80
|
@need_submodules == other.need_submodules
|
|
84
81
|
end
|
|
85
82
|
|
|
83
|
+
def git_command
|
|
84
|
+
ENV.fetch("git", "git")
|
|
85
|
+
end
|
|
86
|
+
|
|
86
87
|
##
|
|
87
88
|
# Checks out the files for the repository into the install_dir.
|
|
88
89
|
|
|
@@ -92,18 +93,18 @@ class Gem::Source::Git < Gem::Source
|
|
|
92
93
|
return false unless File.exist? repo_cache_dir
|
|
93
94
|
|
|
94
95
|
unless File.exist? install_dir
|
|
95
|
-
system
|
|
96
|
+
system git_command, "clone", "--quiet", "--no-checkout",
|
|
96
97
|
repo_cache_dir, install_dir
|
|
97
98
|
end
|
|
98
99
|
|
|
99
100
|
Dir.chdir install_dir do
|
|
100
|
-
system
|
|
101
|
+
system git_command, "fetch", "--quiet", "--force", "--tags", install_dir
|
|
101
102
|
|
|
102
|
-
success = system
|
|
103
|
+
success = system git_command, "reset", "--quiet", "--hard", rev_parse
|
|
103
104
|
|
|
104
105
|
if @need_submodules
|
|
105
106
|
require "open3"
|
|
106
|
-
_, status = Open3.capture2e(
|
|
107
|
+
_, status = Open3.capture2e(git_command, "submodule", "update", "--quiet", "--init", "--recursive")
|
|
107
108
|
|
|
108
109
|
success &&= status.success?
|
|
109
110
|
end
|
|
@@ -120,11 +121,11 @@ class Gem::Source::Git < Gem::Source
|
|
|
120
121
|
|
|
121
122
|
if File.exist? repo_cache_dir
|
|
122
123
|
Dir.chdir repo_cache_dir do
|
|
123
|
-
system
|
|
124
|
-
@repository,
|
|
124
|
+
system git_command, "fetch", "--quiet", "--force", "--tags",
|
|
125
|
+
@repository, "refs/heads/*:refs/heads/*"
|
|
125
126
|
end
|
|
126
127
|
else
|
|
127
|
-
system
|
|
128
|
+
system git_command, "clone", "--quiet", "--bare", "--no-hardlinks",
|
|
128
129
|
@repository, repo_cache_dir
|
|
129
130
|
end
|
|
130
131
|
end
|
|
@@ -133,7 +134,7 @@ class Gem::Source::Git < Gem::Source
|
|
|
133
134
|
# Directory where git gems get unpacked and so-forth.
|
|
134
135
|
|
|
135
136
|
def base_dir # :nodoc:
|
|
136
|
-
File.join @root_dir,
|
|
137
|
+
File.join @root_dir, "bundler"
|
|
137
138
|
end
|
|
138
139
|
|
|
139
140
|
##
|
|
@@ -155,16 +156,18 @@ class Gem::Source::Git < Gem::Source
|
|
|
155
156
|
def install_dir # :nodoc:
|
|
156
157
|
return unless File.exist? repo_cache_dir
|
|
157
158
|
|
|
158
|
-
File.join base_dir,
|
|
159
|
+
File.join base_dir, "gems", "#{@name}-#{dir_shortref}"
|
|
159
160
|
end
|
|
160
161
|
|
|
161
162
|
def pretty_print(q) # :nodoc:
|
|
162
|
-
q.
|
|
163
|
-
q.
|
|
164
|
-
|
|
163
|
+
q.object_group(self) do
|
|
164
|
+
q.group 2, "[Git: ", "]" do
|
|
165
|
+
q.breakable
|
|
166
|
+
q.text @repository
|
|
165
167
|
|
|
166
|
-
|
|
167
|
-
|
|
168
|
+
q.breakable
|
|
169
|
+
q.text @reference
|
|
170
|
+
end
|
|
168
171
|
end
|
|
169
172
|
end
|
|
170
173
|
|
|
@@ -172,7 +175,7 @@ class Gem::Source::Git < Gem::Source
|
|
|
172
175
|
# The directory where the git gem's repository will be cached.
|
|
173
176
|
|
|
174
177
|
def repo_cache_dir # :nodoc:
|
|
175
|
-
File.join @root_dir,
|
|
178
|
+
File.join @root_dir, "cache", "bundler", "git", "#{@name}-#{uri_hash}"
|
|
176
179
|
end
|
|
177
180
|
|
|
178
181
|
##
|
|
@@ -182,7 +185,7 @@ class Gem::Source::Git < Gem::Source
|
|
|
182
185
|
hash = nil
|
|
183
186
|
|
|
184
187
|
Dir.chdir repo_cache_dir do
|
|
185
|
-
hash = Gem::Util.popen(
|
|
188
|
+
hash = Gem::Util.popen(git_command, "rev-parse", @reference).strip
|
|
186
189
|
end
|
|
187
190
|
|
|
188
191
|
raise Gem::Exception,
|
|
@@ -201,7 +204,7 @@ class Gem::Source::Git < Gem::Source
|
|
|
201
204
|
return [] unless install_dir
|
|
202
205
|
|
|
203
206
|
Dir.chdir install_dir do
|
|
204
|
-
Dir[
|
|
207
|
+
Dir["{,*,*/*}.gemspec"].filter_map do |spec_file|
|
|
205
208
|
directory = File.dirname spec_file
|
|
206
209
|
file = File.basename spec_file
|
|
207
210
|
|
|
@@ -211,26 +214,26 @@ class Gem::Source::Git < Gem::Source
|
|
|
211
214
|
spec.base_dir = base_dir
|
|
212
215
|
|
|
213
216
|
spec.extension_dir =
|
|
214
|
-
File.join base_dir,
|
|
217
|
+
File.join base_dir, "extensions", Gem::Platform.local.to_s,
|
|
215
218
|
Gem.extension_api_version, "#{name}-#{dir_shortref}"
|
|
216
219
|
|
|
217
220
|
spec.full_gem_path = File.dirname spec.loaded_from if spec
|
|
218
221
|
end
|
|
219
222
|
spec
|
|
220
223
|
end
|
|
221
|
-
end
|
|
224
|
+
end
|
|
222
225
|
end
|
|
223
226
|
end
|
|
224
227
|
|
|
225
228
|
##
|
|
226
|
-
# A hash for the git gem based on the git repository URI.
|
|
229
|
+
# A hash for the git gem based on the git repository Gem::URI.
|
|
227
230
|
|
|
228
231
|
def uri_hash # :nodoc:
|
|
229
|
-
require_relative
|
|
232
|
+
require_relative "../openssl"
|
|
230
233
|
|
|
231
234
|
normalized =
|
|
232
|
-
if @repository
|
|
233
|
-
uri = URI(@repository).normalize.to_s.sub %r{/$},
|
|
235
|
+
if @repository.match?(%r{^\w+://(\w+@)?})
|
|
236
|
+
uri = Gem::URI(@repository).normalize.to_s.sub %r{/$},""
|
|
234
237
|
uri.sub(/\A(\w+)/) { $1.downcase }
|
|
235
238
|
else
|
|
236
239
|
@repository
|
|
@@ -1,4 +1,5 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
|
+
|
|
2
3
|
##
|
|
3
4
|
# Represents an installed gem. This is used for dependency resolution.
|
|
4
5
|
|
|
@@ -20,8 +21,6 @@ class Gem::Source::Installed < Gem::Source
|
|
|
20
21
|
0
|
|
21
22
|
when Gem::Source then
|
|
22
23
|
1
|
|
23
|
-
else
|
|
24
|
-
nil
|
|
25
24
|
end
|
|
26
25
|
end
|
|
27
26
|
|
|
@@ -33,6 +32,8 @@ class Gem::Source::Installed < Gem::Source
|
|
|
33
32
|
end
|
|
34
33
|
|
|
35
34
|
def pretty_print(q) # :nodoc:
|
|
36
|
-
q.
|
|
35
|
+
q.object_group(self) do
|
|
36
|
+
q.text "[Installed]"
|
|
37
|
+
end
|
|
37
38
|
end
|
|
38
39
|
end
|
|
@@ -1,4 +1,5 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
|
+
|
|
2
3
|
##
|
|
3
4
|
# The local source finds gems in the current directory for fulfilling
|
|
4
5
|
# dependencies.
|
|
@@ -23,14 +24,12 @@ class Gem::Source::Local < Gem::Source
|
|
|
23
24
|
0
|
|
24
25
|
when Gem::Source then
|
|
25
26
|
1
|
|
26
|
-
else
|
|
27
|
-
nil
|
|
28
27
|
end
|
|
29
28
|
end
|
|
30
29
|
|
|
31
30
|
def inspect # :nodoc:
|
|
32
|
-
keys = @specs ? @specs.keys.sort :
|
|
33
|
-
"#<%s specs: %p>"
|
|
31
|
+
keys = @specs ? @specs.keys.sort : "NOT LOADED"
|
|
32
|
+
format("#<%s specs: %p>", self.class, keys)
|
|
34
33
|
end
|
|
35
34
|
|
|
36
35
|
def load_specs(type) # :nodoc:
|
|
@@ -40,36 +39,35 @@ class Gem::Source::Local < Gem::Source
|
|
|
40
39
|
@specs = {}
|
|
41
40
|
|
|
42
41
|
Dir["*.gem"].each do |file|
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
|
|
47
|
-
|
|
48
|
-
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
names << pkg.spec.name_tuple
|
|
55
|
-
end
|
|
56
|
-
when :prerelease
|
|
57
|
-
if pkg.spec.version.prerelease?
|
|
58
|
-
names << pkg.spec.name_tuple
|
|
59
|
-
end
|
|
60
|
-
when :latest
|
|
61
|
-
tup = pkg.spec.name_tuple
|
|
62
|
-
|
|
63
|
-
cur = names.find {|x| x.name == tup.name }
|
|
64
|
-
if !cur
|
|
65
|
-
names << tup
|
|
66
|
-
elsif cur.version < tup.version
|
|
67
|
-
names.delete cur
|
|
68
|
-
names << tup
|
|
69
|
-
end
|
|
70
|
-
else
|
|
42
|
+
pkg = Gem::Package.new(file)
|
|
43
|
+
spec = pkg.spec
|
|
44
|
+
rescue SystemCallError, Gem::Package::FormatError
|
|
45
|
+
# ignore
|
|
46
|
+
else
|
|
47
|
+
tup = spec.name_tuple
|
|
48
|
+
@specs[tup] = [File.expand_path(file), pkg]
|
|
49
|
+
|
|
50
|
+
case type
|
|
51
|
+
when :released
|
|
52
|
+
unless pkg.spec.version.prerelease?
|
|
71
53
|
names << pkg.spec.name_tuple
|
|
72
54
|
end
|
|
55
|
+
when :prerelease
|
|
56
|
+
if pkg.spec.version.prerelease?
|
|
57
|
+
names << pkg.spec.name_tuple
|
|
58
|
+
end
|
|
59
|
+
when :latest
|
|
60
|
+
tup = pkg.spec.name_tuple
|
|
61
|
+
|
|
62
|
+
cur = names.find {|x| x.name == tup.name }
|
|
63
|
+
if !cur
|
|
64
|
+
names << tup
|
|
65
|
+
elsif cur.version < tup.version
|
|
66
|
+
names.delete cur
|
|
67
|
+
names << tup
|
|
68
|
+
end
|
|
69
|
+
else
|
|
70
|
+
names << pkg.spec.name_tuple
|
|
73
71
|
end
|
|
74
72
|
end
|
|
75
73
|
|
|
@@ -77,27 +75,25 @@ class Gem::Source::Local < Gem::Source
|
|
|
77
75
|
end
|
|
78
76
|
end
|
|
79
77
|
|
|
80
|
-
def find_gem(gem_name, version = Gem::Requirement.default, # :nodoc:
|
|
81
|
-
prerelease = false)
|
|
78
|
+
def find_gem(gem_name, version = Gem::Requirement.default, prerelease = false) # :nodoc:
|
|
82
79
|
load_specs :complete
|
|
83
80
|
|
|
84
81
|
found = []
|
|
85
82
|
|
|
86
83
|
@specs.each do |n, data|
|
|
87
|
-
|
|
88
|
-
|
|
89
|
-
|
|
90
|
-
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
end
|
|
84
|
+
next unless n.name == gem_name
|
|
85
|
+
s = data[1].spec
|
|
86
|
+
|
|
87
|
+
if version.satisfied_by?(s.version)
|
|
88
|
+
if prerelease
|
|
89
|
+
found << s
|
|
90
|
+
elsif !s.version.prerelease? || version.prerelease?
|
|
91
|
+
found << s
|
|
96
92
|
end
|
|
97
93
|
end
|
|
98
94
|
end
|
|
99
95
|
|
|
100
|
-
found.max_by
|
|
96
|
+
found.max_by(&:version)
|
|
101
97
|
end
|
|
102
98
|
|
|
103
99
|
def fetch_spec(name) # :nodoc:
|
|
@@ -113,7 +109,7 @@ class Gem::Source::Local < Gem::Source
|
|
|
113
109
|
def download(spec, cache_dir = nil) # :nodoc:
|
|
114
110
|
load_specs :complete
|
|
115
111
|
|
|
116
|
-
@specs.each do |
|
|
112
|
+
@specs.each do |_name, data|
|
|
117
113
|
return data[0] if data[1].spec == spec
|
|
118
114
|
end
|
|
119
115
|
|
|
@@ -121,10 +117,14 @@ class Gem::Source::Local < Gem::Source
|
|
|
121
117
|
end
|
|
122
118
|
|
|
123
119
|
def pretty_print(q) # :nodoc:
|
|
124
|
-
q.
|
|
125
|
-
q.
|
|
126
|
-
|
|
127
|
-
|
|
120
|
+
q.object_group(self) do
|
|
121
|
+
q.group 2, "[Local gems:", "]" do
|
|
122
|
+
q.breakable
|
|
123
|
+
if @specs
|
|
124
|
+
q.seplist @specs.keys do |v|
|
|
125
|
+
q.text v.full_name
|
|
126
|
+
end
|
|
127
|
+
end
|
|
128
128
|
end
|
|
129
129
|
end
|
|
130
130
|
end
|
data/lib/rubygems/source/lock.rb
CHANGED
|
@@ -1,4 +1,5 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
|
+
|
|
2
3
|
##
|
|
3
4
|
# A Lock source wraps an installed gem's source and sorts before other sources
|
|
4
5
|
# during dependency resolution. This allows RubyGems to prefer gems from
|
|
@@ -24,13 +25,11 @@ class Gem::Source::Lock < Gem::Source
|
|
|
24
25
|
@wrapped <=> other.wrapped
|
|
25
26
|
when Gem::Source then
|
|
26
27
|
1
|
|
27
|
-
else
|
|
28
|
-
nil
|
|
29
28
|
end
|
|
30
29
|
end
|
|
31
30
|
|
|
32
31
|
def ==(other) # :nodoc:
|
|
33
|
-
|
|
32
|
+
(self <=> other) == 0
|
|
34
33
|
end
|
|
35
34
|
|
|
36
35
|
def hash # :nodoc:
|