rubygems-update 3.4.20 → 3.4.21
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +22 -0
- data/Manifest.txt +1 -0
- data/bundler/CHANGELOG.md +34 -3
- data/bundler/lib/bundler/build_metadata.rb +3 -3
- data/bundler/lib/bundler/cli/check.rb +1 -1
- data/bundler/lib/bundler/cli/gem.rb +1 -3
- data/bundler/lib/bundler/cli/install.rb +2 -2
- data/bundler/lib/bundler/cli/lock.rb +26 -23
- data/bundler/lib/bundler/cli/open.rb +5 -7
- data/bundler/lib/bundler/definition.rb +42 -25
- data/bundler/lib/bundler/env.rb +2 -2
- data/bundler/lib/bundler/gem_version_promoter.rb +2 -2
- data/bundler/lib/bundler/injector.rb +1 -1
- data/bundler/lib/bundler/installer/parallel_installer.rb +0 -26
- data/bundler/lib/bundler/installer/standalone.rb +13 -6
- data/bundler/lib/bundler/lockfile_parser.rb +29 -24
- data/bundler/lib/bundler/man/bundle-add.1 +1 -1
- data/bundler/lib/bundler/man/bundle-binstubs.1 +1 -1
- data/bundler/lib/bundler/man/bundle-cache.1 +1 -1
- data/bundler/lib/bundler/man/bundle-check.1 +1 -1
- data/bundler/lib/bundler/man/bundle-clean.1 +1 -1
- data/bundler/lib/bundler/man/bundle-config.1 +1 -1
- data/bundler/lib/bundler/man/bundle-console.1 +1 -1
- data/bundler/lib/bundler/man/bundle-doctor.1 +1 -1
- data/bundler/lib/bundler/man/bundle-exec.1 +2 -2
- data/bundler/lib/bundler/man/bundle-exec.1.ronn +2 -3
- data/bundler/lib/bundler/man/bundle-gem.1 +1 -1
- data/bundler/lib/bundler/man/bundle-help.1 +1 -1
- data/bundler/lib/bundler/man/bundle-info.1 +1 -1
- data/bundler/lib/bundler/man/bundle-init.1 +1 -1
- data/bundler/lib/bundler/man/bundle-inject.1 +1 -1
- data/bundler/lib/bundler/man/bundle-install.1 +1 -1
- data/bundler/lib/bundler/man/bundle-list.1 +1 -1
- data/bundler/lib/bundler/man/bundle-lock.1 +1 -1
- data/bundler/lib/bundler/man/bundle-open.1 +1 -1
- data/bundler/lib/bundler/man/bundle-outdated.1 +1 -1
- data/bundler/lib/bundler/man/bundle-platform.1 +1 -1
- data/bundler/lib/bundler/man/bundle-plugin.1 +17 -17
- data/bundler/lib/bundler/man/bundle-plugin.1.ronn +5 -5
- data/bundler/lib/bundler/man/bundle-pristine.1 +1 -1
- data/bundler/lib/bundler/man/bundle-remove.1 +1 -1
- data/bundler/lib/bundler/man/bundle-show.1 +1 -1
- data/bundler/lib/bundler/man/bundle-update.1 +1 -1
- data/bundler/lib/bundler/man/bundle-version.1 +1 -1
- data/bundler/lib/bundler/man/bundle-viz.1 +1 -1
- data/bundler/lib/bundler/man/bundle.1 +1 -1
- data/bundler/lib/bundler/man/gemfile.5 +1 -1
- data/bundler/lib/bundler/resolver/package.rb +5 -0
- data/bundler/lib/bundler/resolver.rb +27 -7
- data/bundler/lib/bundler/ruby_version.rb +8 -1
- data/bundler/lib/bundler/settings.rb +53 -16
- data/bundler/lib/bundler/shared_helpers.rb +16 -1
- data/bundler/lib/bundler/source/git/git_proxy.rb +13 -4
- data/bundler/lib/bundler/spec_set.rb +2 -2
- data/bundler/lib/bundler/stub_specification.rb +4 -2
- data/bundler/lib/bundler/templates/newgem/Rakefile.tt +6 -2
- data/bundler/lib/bundler/version.rb +1 -1
- data/bundler/lib/bundler/yaml_serializer.rb +6 -7
- data/lib/rubygems/basic_specification.rb +1 -1
- data/lib/rubygems/command.rb +2 -2
- data/lib/rubygems/command_manager.rb +1 -1
- data/lib/rubygems/commands/cert_command.rb +2 -2
- data/lib/rubygems/commands/check_command.rb +5 -1
- data/lib/rubygems/commands/cleanup_command.rb +1 -1
- data/lib/rubygems/commands/contents_command.rb +1 -1
- data/lib/rubygems/commands/help_command.rb +2 -2
- data/lib/rubygems/commands/open_command.rb +1 -3
- data/lib/rubygems/commands/owner_command.rb +1 -1
- data/lib/rubygems/commands/setup_command.rb +8 -8
- data/lib/rubygems/commands/specification_command.rb +5 -1
- data/lib/rubygems/commands/stale_command.rb +1 -1
- data/lib/rubygems/commands/update_command.rb +3 -3
- data/lib/rubygems/commands/yank_command.rb +1 -1
- data/lib/rubygems/config_file.rb +60 -13
- data/lib/rubygems/core_ext/kernel_gem.rb +1 -1
- data/lib/rubygems/core_ext/kernel_require.rb +1 -1
- data/lib/rubygems/defaults.rb +6 -2
- data/lib/rubygems/deprecate.rb +2 -1
- data/lib/rubygems/doctor.rb +1 -1
- data/lib/rubygems/errors.rb +1 -1
- data/lib/rubygems/exceptions.rb +1 -1
- data/lib/rubygems/ext/builder.rb +5 -4
- data/lib/rubygems/ext/cargo_builder.rb +2 -2
- data/lib/rubygems/gem_runner.rb +5 -1
- data/lib/rubygems/gemcutter_utilities.rb +2 -2
- data/lib/rubygems/indexer.rb +1 -1
- data/lib/rubygems/install_update_options.rb +1 -1
- data/lib/rubygems/installer.rb +8 -8
- data/lib/rubygems/package/old.rb +1 -1
- data/lib/rubygems/package/tar_writer.rb +1 -1
- data/lib/rubygems/package.rb +8 -8
- data/lib/rubygems/platform.rb +6 -2
- data/lib/rubygems/query_utils.rb +4 -4
- data/lib/rubygems/remote_fetcher.rb +10 -2
- data/lib/rubygems/request_set.rb +2 -1
- data/lib/rubygems/requirement.rb +1 -1
- data/lib/rubygems/resolver/api_set.rb +2 -1
- data/lib/rubygems/resolver/api_specification.rb +1 -1
- data/lib/rubygems/security/signer.rb +10 -2
- data/lib/rubygems/security/trust_dir.rb +4 -4
- data/lib/rubygems/security.rb +1 -1
- data/lib/rubygems/security_option.rb +1 -1
- data/lib/rubygems/source.rb +5 -1
- data/lib/rubygems/specification.rb +9 -10
- data/lib/rubygems/specification_policy.rb +5 -5
- data/lib/rubygems/uninstaller.rb +1 -1
- data/lib/rubygems/update_suggestion.rb +1 -1
- data/lib/rubygems/util.rb +5 -1
- data/lib/rubygems/version.rb +3 -2
- data/lib/rubygems/yaml_serializer.rb +88 -0
- data/lib/rubygems.rb +4 -4
- data/rubygems-update.gemspec +1 -1
- data/setup.rb +2 -0
- data/test/rubygems/bundler_test_gem.rb +6 -3
- data/test/rubygems/helper.rb +23 -15
- data/test/rubygems/package/tar_test_case.rb +2 -2
- data/test/rubygems/test_gem.rb +51 -26
- data/test/rubygems/test_gem_command.rb +3 -1
- data/test/rubygems/test_gem_commands_cert_command.rb +22 -22
- data/test/rubygems/test_gem_commands_cleanup_command.rb +2 -2
- data/test/rubygems/test_gem_commands_environment_command.rb +2 -1
- data/test/rubygems/test_gem_commands_exec_command.rb +5 -1
- data/test/rubygems/test_gem_commands_install_command.rb +3 -3
- data/test/rubygems/test_gem_commands_open_command.rb +5 -2
- data/test/rubygems/test_gem_commands_pristine_command.rb +2 -2
- data/test/rubygems/test_gem_commands_push_command.rb +7 -6
- data/test/rubygems/test_gem_commands_signin_command.rb +8 -8
- data/test/rubygems/test_gem_commands_uninstall_command.rb +1 -1
- data/test/rubygems/test_gem_commands_unpack_command.rb +2 -2
- data/test/rubygems/test_gem_config_file.rb +46 -12
- data/test/rubygems/test_gem_ext_cargo_builder.rb +2 -2
- data/test/rubygems/test_gem_gemcutter_utilities.rb +8 -5
- data/test/rubygems/test_gem_install_update_options.rb +3 -3
- data/test/rubygems/test_gem_installer.rb +15 -15
- data/test/rubygems/test_gem_package.rb +35 -34
- data/test/rubygems/test_gem_package_old.rb +1 -1
- data/test/rubygems/test_gem_package_tar_header.rb +3 -3
- data/test/rubygems/test_gem_package_tar_reader.rb +4 -4
- data/test/rubygems/test_gem_package_tar_writer.rb +28 -28
- data/test/rubygems/test_gem_rdoc.rb +2 -2
- data/test/rubygems/test_gem_remote_fetcher.rb +13 -9
- data/test/rubygems/test_gem_request.rb +5 -5
- data/test/rubygems/test_gem_request_connection_pools.rb +2 -1
- data/test/rubygems/test_gem_request_set_gem_dependency_api.rb +14 -7
- data/test/rubygems/test_gem_security.rb +2 -2
- data/test/rubygems/test_gem_security_signer.rb +2 -2
- data/test/rubygems/test_gem_security_trust_dir.rb +6 -6
- data/test/rubygems/test_gem_spec_fetcher.rb +2 -2
- data/test/rubygems/test_gem_specification.rb +29 -29
- data/test/rubygems/test_gem_update_suggestion.rb +12 -6
- data/test/rubygems/test_gem_util.rb +2 -2
- data/test/rubygems/test_gem_version.rb +4 -2
- data/test/rubygems/utilities.rb +2 -1
- metadata +4 -3
data/lib/rubygems/config_file.rb
CHANGED
|
@@ -241,9 +241,9 @@ class Gem::ConfigFile
|
|
|
241
241
|
return if Gem.win_platform? # windows doesn't write 0600 as 0600
|
|
242
242
|
return unless File.exist? credentials_path
|
|
243
243
|
|
|
244
|
-
existing_permissions = File.stat(credentials_path).mode &
|
|
244
|
+
existing_permissions = File.stat(credentials_path).mode & 0o777
|
|
245
245
|
|
|
246
|
-
return if existing_permissions ==
|
|
246
|
+
return if existing_permissions == 0o600
|
|
247
247
|
|
|
248
248
|
alert_error <<-ERROR
|
|
249
249
|
Your gem push credentials file located at:
|
|
@@ -324,11 +324,9 @@ if you believe they were disclosed to a third party.
|
|
|
324
324
|
require "fileutils"
|
|
325
325
|
FileUtils.mkdir_p(dirname)
|
|
326
326
|
|
|
327
|
-
|
|
328
|
-
|
|
329
|
-
permissions = 0600 & (~File.umask)
|
|
327
|
+
permissions = 0o600 & (~File.umask)
|
|
330
328
|
File.open(credentials_path, "w", permissions) do |f|
|
|
331
|
-
f.write config
|
|
329
|
+
f.write self.class.dump_with_rubygems_yaml(config)
|
|
332
330
|
end
|
|
333
331
|
|
|
334
332
|
load_api_keys # reload
|
|
@@ -344,20 +342,18 @@ if you believe they were disclosed to a third party.
|
|
|
344
342
|
end
|
|
345
343
|
|
|
346
344
|
def load_file(filename)
|
|
347
|
-
Gem.load_yaml
|
|
348
|
-
|
|
349
345
|
yaml_errors = [ArgumentError]
|
|
350
|
-
yaml_errors << Psych::SyntaxError if defined?(Psych::SyntaxError)
|
|
351
346
|
|
|
352
347
|
return {} unless filename && !filename.empty? && File.exist?(filename)
|
|
353
348
|
|
|
354
349
|
begin
|
|
355
|
-
|
|
356
|
-
|
|
350
|
+
config = self.class.load_with_rubygems_config_hash(File.read(filename))
|
|
351
|
+
if config.keys.any? {|k| k.to_s.gsub(%r{https?:\/\/}, "").include?(": ") }
|
|
357
352
|
warn "Failed to load #{filename} because it doesn't contain valid YAML hash"
|
|
358
353
|
return {}
|
|
354
|
+
else
|
|
355
|
+
return config
|
|
359
356
|
end
|
|
360
|
-
return content
|
|
361
357
|
rescue *yaml_errors => e
|
|
362
358
|
warn "Failed to load #{filename}, #{e}"
|
|
363
359
|
rescue Errno::EACCES
|
|
@@ -487,7 +483,7 @@ if you believe they were disclosed to a third party.
|
|
|
487
483
|
yaml_hash[key.to_s] = value
|
|
488
484
|
end
|
|
489
485
|
|
|
490
|
-
yaml_hash
|
|
486
|
+
self.class.dump_with_rubygems_yaml(yaml_hash)
|
|
491
487
|
end
|
|
492
488
|
|
|
493
489
|
# Writes out this config file, replacing its source.
|
|
@@ -522,6 +518,57 @@ if you believe they were disclosed to a third party.
|
|
|
522
518
|
attr_reader :hash
|
|
523
519
|
protected :hash
|
|
524
520
|
|
|
521
|
+
def self.dump_with_rubygems_yaml(content)
|
|
522
|
+
content.transform_keys! do |k|
|
|
523
|
+
k.is_a?(Symbol) ? ":#{k}" : k
|
|
524
|
+
end
|
|
525
|
+
|
|
526
|
+
require_relative "yaml_serializer"
|
|
527
|
+
Gem::YAMLSerializer.dump(content)
|
|
528
|
+
end
|
|
529
|
+
|
|
530
|
+
def self.load_with_rubygems_config_hash(yaml)
|
|
531
|
+
require_relative "yaml_serializer"
|
|
532
|
+
|
|
533
|
+
content = Gem::YAMLSerializer.load(yaml)
|
|
534
|
+
|
|
535
|
+
content.transform_keys! do |k|
|
|
536
|
+
if k.match?(/\A:(.*)\Z/)
|
|
537
|
+
k[1..-1].to_sym
|
|
538
|
+
elsif k.include?("__") || k.match?(%r{/\Z})
|
|
539
|
+
if k.is_a?(Symbol)
|
|
540
|
+
k.to_s.gsub(/__/,".").gsub(%r{/\Z}, "").to_sym
|
|
541
|
+
else
|
|
542
|
+
k.dup.gsub(/__/,".").gsub(%r{/\Z}, "")
|
|
543
|
+
end
|
|
544
|
+
else
|
|
545
|
+
k
|
|
546
|
+
end
|
|
547
|
+
end
|
|
548
|
+
|
|
549
|
+
content.transform_values! do |v|
|
|
550
|
+
if v.is_a?(String)
|
|
551
|
+
if v.match?(/\A:(.*)\Z/)
|
|
552
|
+
v[1..-1].to_sym
|
|
553
|
+
elsif v.match?(/\A[+-]?\d+\Z/)
|
|
554
|
+
v.to_i
|
|
555
|
+
elsif v.match?(/\Atrue|false\Z/)
|
|
556
|
+
v == "true"
|
|
557
|
+
elsif v.empty?
|
|
558
|
+
nil
|
|
559
|
+
else
|
|
560
|
+
v
|
|
561
|
+
end
|
|
562
|
+
elsif v.is_a?(Hash) && v.empty?
|
|
563
|
+
nil
|
|
564
|
+
else
|
|
565
|
+
v
|
|
566
|
+
end
|
|
567
|
+
end
|
|
568
|
+
|
|
569
|
+
content
|
|
570
|
+
end
|
|
571
|
+
|
|
525
572
|
private
|
|
526
573
|
|
|
527
574
|
def set_config_file_name(args)
|
|
@@ -39,7 +39,7 @@ module Kernel
|
|
|
39
39
|
|
|
40
40
|
if gem_name.is_a? Gem::Dependency
|
|
41
41
|
unless Gem::Deprecate.skip
|
|
42
|
-
warn "#{Gem.location_of_caller.join
|
|
42
|
+
warn "#{Gem.location_of_caller.join ":"}:Warning: Kernel.gem no longer "\
|
|
43
43
|
"accepts a Gem::Dependency object, please pass the name "\
|
|
44
44
|
"and requirements directly"
|
|
45
45
|
end
|
|
@@ -128,7 +128,7 @@ module Kernel
|
|
|
128
128
|
|
|
129
129
|
if names.size > 1
|
|
130
130
|
RUBYGEMS_ACTIVATION_MONITOR.exit
|
|
131
|
-
raise Gem::LoadError, "#{path} found in multiple gems: #{names.join
|
|
131
|
+
raise Gem::LoadError, "#{path} found in multiple gems: #{names.join ", "}"
|
|
132
132
|
end
|
|
133
133
|
|
|
134
134
|
# Ok, now find a gem that has no conflicts, starting
|
data/lib/rubygems/defaults.rb
CHANGED
|
@@ -80,7 +80,7 @@ module Gem
|
|
|
80
80
|
|
|
81
81
|
def self.find_home
|
|
82
82
|
Dir.home.dup
|
|
83
|
-
rescue
|
|
83
|
+
rescue StandardError
|
|
84
84
|
if Gem.win_platform?
|
|
85
85
|
File.expand_path File.join(ENV["HOMEDRIVE"] || ENV["SystemDrive"], "/")
|
|
86
86
|
else
|
|
@@ -184,7 +184,11 @@ module Gem
|
|
|
184
184
|
# Deduce Ruby's --program-prefix and --program-suffix from its install name
|
|
185
185
|
|
|
186
186
|
def self.default_exec_format
|
|
187
|
-
exec_format =
|
|
187
|
+
exec_format = begin
|
|
188
|
+
RbConfig::CONFIG["ruby_install_name"].sub("ruby", "%s")
|
|
189
|
+
rescue StandardError
|
|
190
|
+
"%s"
|
|
191
|
+
end
|
|
188
192
|
|
|
189
193
|
unless exec_format.include?("%s")
|
|
190
194
|
raise Gem::Exception,
|
data/lib/rubygems/deprecate.rb
CHANGED
|
@@ -83,7 +83,8 @@ module Gem::Deprecate
|
|
|
83
83
|
# Temporarily turn off warnings. Intended for tests only.
|
|
84
84
|
|
|
85
85
|
def skip_during
|
|
86
|
-
|
|
86
|
+
original = Gem::Deprecate.skip
|
|
87
|
+
Gem::Deprecate.skip = true
|
|
87
88
|
yield
|
|
88
89
|
ensure
|
|
89
90
|
Gem::Deprecate.skip = original
|
data/lib/rubygems/doctor.rb
CHANGED
|
@@ -33,7 +33,7 @@ class Gem::Doctor
|
|
|
33
33
|
Gem::REPOSITORY_SUBDIRECTORIES.sort -
|
|
34
34
|
REPOSITORY_EXTENSION_MAP.map {|(k,_)| k }.sort
|
|
35
35
|
|
|
36
|
-
raise "Update REPOSITORY_EXTENSION_MAP, missing: #{missing.join
|
|
36
|
+
raise "Update REPOSITORY_EXTENSION_MAP, missing: #{missing.join ", "}" unless
|
|
37
37
|
missing.empty?
|
|
38
38
|
|
|
39
39
|
##
|
data/lib/rubygems/errors.rb
CHANGED
data/lib/rubygems/exceptions.rb
CHANGED
|
@@ -264,7 +264,7 @@ class Gem::UnsatisfiableDependencyError < Gem::DependencyError
|
|
|
264
264
|
def initialize(dep, platform_mismatch=nil)
|
|
265
265
|
if platform_mismatch && !platform_mismatch.empty?
|
|
266
266
|
plats = platform_mismatch.map {|x| x.platform.to_s }.sort.uniq
|
|
267
|
-
super "Unable to resolve dependency: No match for '#{dep}' on this platform. Found: #{plats.join(
|
|
267
|
+
super "Unable to resolve dependency: No match for '#{dep}' on this platform. Found: #{plats.join(", ")}"
|
|
268
268
|
else
|
|
269
269
|
if dep.explicit?
|
|
270
270
|
super "Unable to resolve dependency: user requested '#{dep}'"
|
data/lib/rubygems/ext/builder.rb
CHANGED
|
@@ -77,7 +77,8 @@ class Gem::Ext::Builder
|
|
|
77
77
|
verbose = Gem.configuration.really_verbose
|
|
78
78
|
|
|
79
79
|
begin
|
|
80
|
-
rubygems_gemdeps
|
|
80
|
+
rubygems_gemdeps = ENV["RUBYGEMS_GEMDEPS"]
|
|
81
|
+
ENV["RUBYGEMS_GEMDEPS"] = nil
|
|
81
82
|
if verbose
|
|
82
83
|
puts("current directory: #{dir}")
|
|
83
84
|
p(command)
|
|
@@ -90,7 +91,7 @@ class Gem::Ext::Builder
|
|
|
90
91
|
build_env = { "SOURCE_DATE_EPOCH" => Gem.source_date_epoch_string }.merge(env)
|
|
91
92
|
output, status = begin
|
|
92
93
|
Open3.capture2e(build_env, *command, :chdir => dir)
|
|
93
|
-
rescue => error
|
|
94
|
+
rescue StandardError => error
|
|
94
95
|
raise Gem::InstallError, "#{command_name || class_name} failed#{error.message}"
|
|
95
96
|
end
|
|
96
97
|
if verbose
|
|
@@ -190,7 +191,7 @@ EOF
|
|
|
190
191
|
verbose { results.join("\n") }
|
|
191
192
|
|
|
192
193
|
write_gem_make_out results.join "\n"
|
|
193
|
-
rescue => e
|
|
194
|
+
rescue StandardError => e
|
|
194
195
|
results << e.message
|
|
195
196
|
build_error(results.join("\n"), $@)
|
|
196
197
|
end
|
|
@@ -206,7 +207,7 @@ EOF
|
|
|
206
207
|
if @build_args.empty?
|
|
207
208
|
say "Building native extensions. This could take a while..."
|
|
208
209
|
else
|
|
209
|
-
say "Building native extensions with: '#{@build_args.join
|
|
210
|
+
say "Building native extensions with: '#{@build_args.join " "}'"
|
|
210
211
|
say "This could take a while..."
|
|
211
212
|
end
|
|
212
213
|
|
|
@@ -199,7 +199,7 @@ class Gem::Ext::CargoBuilder < Gem::Ext::Builder
|
|
|
199
199
|
output, status =
|
|
200
200
|
begin
|
|
201
201
|
Open3.capture2e(cargo, "metadata", "--no-deps", "--format-version", "1", :chdir => cargo_dir)
|
|
202
|
-
rescue => error
|
|
202
|
+
rescue StandardError => error
|
|
203
203
|
raise Gem::InstallError, "cargo metadata failed #{error.message}"
|
|
204
204
|
end
|
|
205
205
|
|
|
@@ -313,7 +313,7 @@ EOF
|
|
|
313
313
|
deffile_path
|
|
314
314
|
end
|
|
315
315
|
|
|
316
|
-
# We have to basically reimplement RbConfig::CONFIG['SOEXT'] here to support
|
|
316
|
+
# We have to basically reimplement <code>RbConfig::CONFIG['SOEXT']</code> here to support
|
|
317
317
|
# Ruby < 2.5
|
|
318
318
|
#
|
|
319
319
|
# @see https://github.com/ruby/ruby/blob/c87c027f18c005460746a74c07cd80ee355b16e4/configure.ac#L3185
|
data/lib/rubygems/gem_runner.rb
CHANGED
|
@@ -216,7 +216,7 @@ module Gem::GemcutterUtilities
|
|
|
216
216
|
say clean_text(response.body)
|
|
217
217
|
end
|
|
218
218
|
when Net::HTTPPermanentRedirect, Net::HTTPRedirection then
|
|
219
|
-
message = "The request has redirected permanently to #{response[
|
|
219
|
+
message = "The request has redirected permanently to #{response["location"]}. Please check your defined push host URL."
|
|
220
220
|
message = "#{error_prefix}: #{message}" if error_prefix
|
|
221
221
|
|
|
222
222
|
say clean_text(message)
|
|
@@ -338,7 +338,7 @@ module Gem::GemcutterUtilities
|
|
|
338
338
|
end
|
|
339
339
|
|
|
340
340
|
with_response response do |resp|
|
|
341
|
-
Gem::
|
|
341
|
+
Gem::ConfigFile.load_with_rubygems_config_hash(clean_text(resp.body))
|
|
342
342
|
end
|
|
343
343
|
end
|
|
344
344
|
|
data/lib/rubygems/indexer.rb
CHANGED
|
@@ -142,7 +142,7 @@ module Gem::InstallUpdateOptions
|
|
|
142
142
|
end unless v
|
|
143
143
|
|
|
144
144
|
unless v
|
|
145
|
-
message = v ? v : "(tried #{Gem::GEM_DEP_FILES.join
|
|
145
|
+
message = v ? v : "(tried #{Gem::GEM_DEP_FILES.join ", "})"
|
|
146
146
|
|
|
147
147
|
raise Gem::OptionParser::InvalidArgument,
|
|
148
148
|
"cannot find gem dependencies file #{message}"
|
data/lib/rubygems/installer.rb
CHANGED
|
@@ -316,7 +316,7 @@ class Gem::Installer
|
|
|
316
316
|
FileUtils.rm_rf spec.extension_dir
|
|
317
317
|
|
|
318
318
|
dir_mode = options[:dir_mode]
|
|
319
|
-
FileUtils.mkdir_p gem_dir, :mode => dir_mode &&
|
|
319
|
+
FileUtils.mkdir_p gem_dir, :mode => dir_mode && 0o755
|
|
320
320
|
|
|
321
321
|
if @options[:install_as_default]
|
|
322
322
|
extract_bin
|
|
@@ -494,7 +494,7 @@ class Gem::Installer
|
|
|
494
494
|
next unless File.exist? bin_path
|
|
495
495
|
|
|
496
496
|
mode = File.stat(bin_path).mode
|
|
497
|
-
dir_mode = options[:prog_mode] || (mode |
|
|
497
|
+
dir_mode = options[:prog_mode] || (mode | 0o111)
|
|
498
498
|
|
|
499
499
|
unless dir_mode == mode
|
|
500
500
|
require "fileutils"
|
|
@@ -537,9 +537,9 @@ class Gem::Installer
|
|
|
537
537
|
require "fileutils"
|
|
538
538
|
FileUtils.rm_f bin_script_path # prior install may have been --no-wrappers
|
|
539
539
|
|
|
540
|
-
File.open bin_script_path, "wb",
|
|
540
|
+
File.open bin_script_path, "wb", 0o755 do |file|
|
|
541
541
|
file.print app_script_text(filename)
|
|
542
|
-
file.chmod(options[:prog_mode] ||
|
|
542
|
+
file.chmod(options[:prog_mode] || 0o755)
|
|
543
543
|
end
|
|
544
544
|
|
|
545
545
|
verbose bin_script_path
|
|
@@ -709,7 +709,7 @@ class Gem::Installer
|
|
|
709
709
|
end
|
|
710
710
|
|
|
711
711
|
def verify_gem_home # :nodoc:
|
|
712
|
-
FileUtils.mkdir_p gem_home, :mode => options[:dir_mode] &&
|
|
712
|
+
FileUtils.mkdir_p gem_home, :mode => options[:dir_mode] && 0o755
|
|
713
713
|
raise Gem::FilePermissionError, gem_home unless File.writable?(gem_home)
|
|
714
714
|
end
|
|
715
715
|
|
|
@@ -806,7 +806,7 @@ TEXT
|
|
|
806
806
|
rb_topdir = RbConfig::TOPDIR || File.dirname(rb_config["bindir"])
|
|
807
807
|
|
|
808
808
|
# get ruby executable file name from RbConfig
|
|
809
|
-
ruby_exe = "#{rb_config[
|
|
809
|
+
ruby_exe = "#{rb_config["RUBY_INSTALL_NAME"]}#{rb_config["EXEEXT"]}"
|
|
810
810
|
ruby_exe = "ruby.exe" if ruby_exe.empty?
|
|
811
811
|
|
|
812
812
|
if File.exist?(File.join bindir, ruby_exe)
|
|
@@ -931,7 +931,7 @@ TEXT
|
|
|
931
931
|
build_info_dir = File.join gem_home, "build_info"
|
|
932
932
|
|
|
933
933
|
dir_mode = options[:dir_mode]
|
|
934
|
-
FileUtils.mkdir_p build_info_dir, :mode => dir_mode &&
|
|
934
|
+
FileUtils.mkdir_p build_info_dir, :mode => dir_mode && 0o755
|
|
935
935
|
|
|
936
936
|
build_info_file = File.join build_info_dir, "#{spec.full_name}.info"
|
|
937
937
|
|
|
@@ -954,7 +954,7 @@ TEXT
|
|
|
954
954
|
|
|
955
955
|
def ensure_writable_dir(dir) # :nodoc:
|
|
956
956
|
begin
|
|
957
|
-
Dir.mkdir dir, *[options[:dir_mode] &&
|
|
957
|
+
Dir.mkdir dir, *[options[:dir_mode] && 0o755].compact
|
|
958
958
|
rescue SystemCallError
|
|
959
959
|
raise unless File.directory? dir
|
|
960
960
|
end
|
data/lib/rubygems/package/old.rb
CHANGED
|
@@ -78,7 +78,7 @@ class Gem::Package::Old < Gem::Package
|
|
|
78
78
|
|
|
79
79
|
FileUtils.rm_rf destination
|
|
80
80
|
|
|
81
|
-
FileUtils.mkdir_p File.dirname(destination), :mode => dir_mode &&
|
|
81
|
+
FileUtils.mkdir_p File.dirname(destination), :mode => dir_mode && 0o755
|
|
82
82
|
|
|
83
83
|
File.open destination, "wb", file_mode(entry["mode"]) do |out|
|
|
84
84
|
out.write file_data
|
|
@@ -190,7 +190,7 @@ class Gem::Package::TarWriter
|
|
|
190
190
|
if signer.key
|
|
191
191
|
signature = signer.sign signature_digest.digest
|
|
192
192
|
|
|
193
|
-
add_file_simple "#{name}.sig",
|
|
193
|
+
add_file_simple "#{name}.sig", 0o444, signature.length do |io|
|
|
194
194
|
io.write signature
|
|
195
195
|
end
|
|
196
196
|
end
|
data/lib/rubygems/package.rb
CHANGED
|
@@ -230,7 +230,7 @@ class Gem::Package
|
|
|
230
230
|
end
|
|
231
231
|
end
|
|
232
232
|
|
|
233
|
-
tar.add_file_signed "checksums.yaml.gz",
|
|
233
|
+
tar.add_file_signed "checksums.yaml.gz", 0o444, @signer do |io|
|
|
234
234
|
gzip_to io do |gz_io|
|
|
235
235
|
Psych.dump checksums_by_algorithm, gz_io
|
|
236
236
|
end
|
|
@@ -242,7 +242,7 @@ class Gem::Package
|
|
|
242
242
|
# and adds this file to the +tar+.
|
|
243
243
|
|
|
244
244
|
def add_contents(tar) # :nodoc:
|
|
245
|
-
digests = tar.add_file_signed "data.tar.gz",
|
|
245
|
+
digests = tar.add_file_signed "data.tar.gz", 0o444, @signer do |io|
|
|
246
246
|
gzip_to io do |gz_io|
|
|
247
247
|
Gem::Package::TarWriter.new gz_io do |data_tar|
|
|
248
248
|
add_files data_tar
|
|
@@ -278,7 +278,7 @@ class Gem::Package
|
|
|
278
278
|
# Adds the package's Gem::Specification to the +tar+ file
|
|
279
279
|
|
|
280
280
|
def add_metadata(tar) # :nodoc:
|
|
281
|
-
digests = tar.add_file_signed "metadata.gz",
|
|
281
|
+
digests = tar.add_file_signed "metadata.gz", 0o444, @signer do |io|
|
|
282
282
|
gzip_to io do |gz_io|
|
|
283
283
|
gz_io.write @spec.to_yaml
|
|
284
284
|
end
|
|
@@ -384,7 +384,7 @@ EOM
|
|
|
384
384
|
def extract_files(destination_dir, pattern = "*")
|
|
385
385
|
verify unless @spec
|
|
386
386
|
|
|
387
|
-
FileUtils.mkdir_p destination_dir, :mode => dir_mode &&
|
|
387
|
+
FileUtils.mkdir_p destination_dir, :mode => dir_mode && 0o755
|
|
388
388
|
|
|
389
389
|
@gem.with_read_io do |io|
|
|
390
390
|
reader = Gem::Package::TarReader.new io
|
|
@@ -438,7 +438,7 @@ EOM
|
|
|
438
438
|
FileUtils.rm_rf destination
|
|
439
439
|
|
|
440
440
|
mkdir_options = {}
|
|
441
|
-
mkdir_options[:mode] = dir_mode ?
|
|
441
|
+
mkdir_options[:mode] = dir_mode ? 0o755 : (entry.header.mode if entry.directory?)
|
|
442
442
|
mkdir =
|
|
443
443
|
if entry.directory?
|
|
444
444
|
destination
|
|
@@ -474,7 +474,7 @@ EOM
|
|
|
474
474
|
end
|
|
475
475
|
|
|
476
476
|
def file_mode(mode) # :nodoc:
|
|
477
|
-
((mode &
|
|
477
|
+
((mode & 0o111).zero? ? data_mode : prog_mode) ||
|
|
478
478
|
# If we're not using one of the default modes, then we're going to fall
|
|
479
479
|
# back to the mode from the tarball. In this case we need to mask it down
|
|
480
480
|
# to fit into 2^16 bits (the maximum value for a mode in CRuby since it
|
|
@@ -676,7 +676,7 @@ EOM
|
|
|
676
676
|
when "data.tar.gz" then
|
|
677
677
|
verify_gz entry
|
|
678
678
|
end
|
|
679
|
-
rescue
|
|
679
|
+
rescue StandardError
|
|
680
680
|
warn "Exception while verifying #{@gem.path}"
|
|
681
681
|
raise
|
|
682
682
|
end
|
|
@@ -699,7 +699,7 @@ EOM
|
|
|
699
699
|
end
|
|
700
700
|
|
|
701
701
|
if (duplicates = @files.group_by {|f| f }.select {|k,v| v.size > 1 }.map(&:first)) && duplicates.any?
|
|
702
|
-
raise Gem::Security::Exception, "duplicate files in the package: (#{duplicates.map(&:inspect).join(
|
|
702
|
+
raise Gem::Security::Exception, "duplicate files in the package: (#{duplicates.map(&:inspect).join(", ")})"
|
|
703
703
|
end
|
|
704
704
|
end
|
|
705
705
|
|
data/lib/rubygems/platform.rb
CHANGED
|
@@ -90,7 +90,10 @@ class Gem::Platform
|
|
|
90
90
|
end
|
|
91
91
|
|
|
92
92
|
os, = arch
|
|
93
|
-
|
|
93
|
+
if os.nil?
|
|
94
|
+
@cpu = nil
|
|
95
|
+
os = cpu
|
|
96
|
+
end # legacy jruby
|
|
94
97
|
|
|
95
98
|
@os, @version = case os
|
|
96
99
|
when /aix(\d+)?/ then [ "aix", $1 ]
|
|
@@ -107,7 +110,8 @@ class Gem::Platform
|
|
|
107
110
|
when /mingw32/ then [ "mingw32", nil ]
|
|
108
111
|
when /mingw-?(\w+)?/ then [ "mingw", $1 ]
|
|
109
112
|
when /(mswin\d+)(\_(\d+))?/ then
|
|
110
|
-
os
|
|
113
|
+
os = $1
|
|
114
|
+
version = $3
|
|
111
115
|
@cpu = "x86" if @cpu.nil? && os =~ /32$/
|
|
112
116
|
[os, version]
|
|
113
117
|
when /netbsdelf/ then [ "netbsdelf", nil ]
|
data/lib/rubygems/query_utils.rb
CHANGED
|
@@ -264,7 +264,7 @@ module Gem::QueryUtils
|
|
|
264
264
|
end
|
|
265
265
|
end
|
|
266
266
|
|
|
267
|
-
entry << " (#{list.join
|
|
267
|
+
entry << " (#{list.join ", "})"
|
|
268
268
|
end
|
|
269
269
|
|
|
270
270
|
def make_entry(entry_tuples, platforms)
|
|
@@ -283,7 +283,7 @@ module Gem::QueryUtils
|
|
|
283
283
|
end
|
|
284
284
|
|
|
285
285
|
def spec_authors(entry, spec)
|
|
286
|
-
authors = "Author#{spec.authors.length > 1 ?
|
|
286
|
+
authors = "Author#{spec.authors.length > 1 ? "s" : ""}: ".dup
|
|
287
287
|
authors << spec.authors.join(", ")
|
|
288
288
|
entry << format_text(authors, 68, 4)
|
|
289
289
|
end
|
|
@@ -297,7 +297,7 @@ module Gem::QueryUtils
|
|
|
297
297
|
def spec_license(entry, spec)
|
|
298
298
|
return if spec.license.nil? || spec.license.empty?
|
|
299
299
|
|
|
300
|
-
licenses = "License#{spec.licenses.length > 1 ?
|
|
300
|
+
licenses = "License#{spec.licenses.length > 1 ? "s" : ""}: ".dup
|
|
301
301
|
licenses << spec.licenses.join(", ")
|
|
302
302
|
entry << "\n" << format_text(licenses, 68, 4)
|
|
303
303
|
end
|
|
@@ -328,7 +328,7 @@ module Gem::QueryUtils
|
|
|
328
328
|
|
|
329
329
|
if platforms.length == 1
|
|
330
330
|
title = platforms.values.length == 1 ? "Platform" : "Platforms"
|
|
331
|
-
entry << " #{title}: #{platforms.values.sort.join(
|
|
331
|
+
entry << " #{title}: #{platforms.values.sort.join(", ")}\n"
|
|
332
332
|
else
|
|
333
333
|
entry << " Platforms:\n"
|
|
334
334
|
|
|
@@ -125,7 +125,11 @@ class Gem::RemoteFetcher
|
|
|
125
125
|
local_gem_path = File.join cache_dir, gem_file_name
|
|
126
126
|
|
|
127
127
|
require "fileutils"
|
|
128
|
-
|
|
128
|
+
begin
|
|
129
|
+
FileUtils.mkdir_p cache_dir
|
|
130
|
+
rescue StandardError
|
|
131
|
+
nil
|
|
132
|
+
end unless File.exist? cache_dir
|
|
129
133
|
|
|
130
134
|
source_uri = Gem::Uri.new(source_uri)
|
|
131
135
|
|
|
@@ -281,7 +285,11 @@ class Gem::RemoteFetcher
|
|
|
281
285
|
# passes the data.
|
|
282
286
|
|
|
283
287
|
def cache_update_path(uri, path = nil, update = true)
|
|
284
|
-
mtime =
|
|
288
|
+
mtime = begin
|
|
289
|
+
path && File.stat(path).mtime
|
|
290
|
+
rescue StandardError
|
|
291
|
+
nil
|
|
292
|
+
end
|
|
285
293
|
|
|
286
294
|
data = fetch_path(uri, mtime)
|
|
287
295
|
|
data/lib/rubygems/request_set.rb
CHANGED
|
@@ -255,7 +255,8 @@ class Gem::RequestSet
|
|
|
255
255
|
end
|
|
256
256
|
|
|
257
257
|
def install_into(dir, force = true, options = {})
|
|
258
|
-
gem_home
|
|
258
|
+
gem_home = ENV["GEM_HOME"]
|
|
259
|
+
ENV["GEM_HOME"] = dir
|
|
259
260
|
|
|
260
261
|
existing = force ? [] : specs_in(dir)
|
|
261
262
|
existing.delete_if {|s| @always_install.include? s }
|
data/lib/rubygems/requirement.rb
CHANGED
|
@@ -22,7 +22,7 @@ class Gem::Resolver::APISpecification < Gem::Resolver::Specification
|
|
|
22
22
|
# Creates an APISpecification for the given +set+ from the rubygems.org
|
|
23
23
|
# +api_data+.
|
|
24
24
|
#
|
|
25
|
-
# See https://guides.rubygems.org/rubygems-org-api/#
|
|
25
|
+
# See https://guides.rubygems.org/rubygems-org-api/#misc-methods for the
|
|
26
26
|
# format of the +api_data+.
|
|
27
27
|
|
|
28
28
|
def initialize(set, api_data)
|
|
@@ -175,10 +175,18 @@ class Gem::Security::Signer
|
|
|
175
175
|
old_cert = @cert_chain.last
|
|
176
176
|
|
|
177
177
|
disk_cert_path = File.join(Gem.default_cert_path)
|
|
178
|
-
disk_cert =
|
|
178
|
+
disk_cert = begin
|
|
179
|
+
File.read(disk_cert_path)
|
|
180
|
+
rescue StandardError
|
|
181
|
+
nil
|
|
182
|
+
end
|
|
179
183
|
|
|
180
184
|
disk_key_path = File.join(Gem.default_key_path)
|
|
181
|
-
disk_key =
|
|
185
|
+
disk_key = begin
|
|
186
|
+
OpenSSL::PKey.read(File.read(disk_key_path), @passphrase)
|
|
187
|
+
rescue StandardError
|
|
188
|
+
nil
|
|
189
|
+
end
|
|
182
190
|
|
|
183
191
|
return unless disk_key
|
|
184
192
|
|
|
@@ -9,8 +9,8 @@ class Gem::Security::TrustDir
|
|
|
9
9
|
# Default permissions for the trust directory and its contents
|
|
10
10
|
|
|
11
11
|
DEFAULT_PERMISSIONS = {
|
|
12
|
-
:trust_dir =>
|
|
13
|
-
:trusted_cert =>
|
|
12
|
+
:trust_dir => 0o700,
|
|
13
|
+
:trusted_cert => 0o600,
|
|
14
14
|
}.freeze
|
|
15
15
|
|
|
16
16
|
##
|
|
@@ -91,7 +91,7 @@ class Gem::Security::TrustDir
|
|
|
91
91
|
|
|
92
92
|
destination = cert_path certificate
|
|
93
93
|
|
|
94
|
-
File.open destination, "wb",
|
|
94
|
+
File.open destination, "wb", 0o600 do |io|
|
|
95
95
|
io.write certificate.to_pem
|
|
96
96
|
io.chmod(@permissions[:trusted_cert])
|
|
97
97
|
end
|
|
@@ -109,7 +109,7 @@ class Gem::Security::TrustDir
|
|
|
109
109
|
"trust directory #{@dir} is not a directory" unless
|
|
110
110
|
File.directory? @dir
|
|
111
111
|
|
|
112
|
-
FileUtils.chmod
|
|
112
|
+
FileUtils.chmod 0o700, @dir
|
|
113
113
|
else
|
|
114
114
|
FileUtils.mkdir_p @dir, :mode => @permissions[:trust_dir]
|
|
115
115
|
end
|
data/lib/rubygems/security.rb
CHANGED
|
@@ -602,7 +602,7 @@ module Gem::Security
|
|
|
602
602
|
# +permissions+. If passed +cipher+ and +passphrase+ those arguments will be
|
|
603
603
|
# passed to +to_pem+.
|
|
604
604
|
|
|
605
|
-
def self.write(pemmable, path, permissions =
|
|
605
|
+
def self.write(pemmable, path, permissions = 0o600, passphrase = nil, cipher = KEY_CIPHER)
|
|
606
606
|
path = File.expand_path path
|
|
607
607
|
|
|
608
608
|
File.open path, "wb", permissions do |io|
|
|
@@ -29,7 +29,7 @@ module Gem::SecurityOption
|
|
|
29
29
|
policy = Gem::Security::Policies[value]
|
|
30
30
|
unless policy
|
|
31
31
|
valid = Gem::Security::Policies.keys.sort
|
|
32
|
-
raise Gem::OptionParser::InvalidArgument, "#{value} (#{valid.join
|
|
32
|
+
raise Gem::OptionParser::InvalidArgument, "#{value} (#{valid.join ", "} are valid)"
|
|
33
33
|
end
|
|
34
34
|
policy
|
|
35
35
|
end
|