RubyGems - rubygems-update - Versions diffs - 3.4.22 → 3.5.0 - Mend

rubygems-update 3.4.22 → 3.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (528) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +99 -2
data/Manifest.txt +34 -221
data/README.md +1 -3
data/bundler/CHANGELOG.md +53 -0
data/bundler/bundler.gemspec +4 -2
data/bundler/exe/bundle +1 -10
data/bundler/lib/bundler/build_metadata.rb +3 -3
data/bundler/lib/bundler/capistrano.rb +1 -1
data/bundler/lib/bundler/checksum.rb +245 -0
data/bundler/lib/bundler/ci_detector.rb +75 -0
data/bundler/lib/bundler/cli/add.rb +3 -3
data/bundler/lib/bundler/cli/binstubs.rb +4 -4
data/bundler/lib/bundler/cli/cache.rb +1 -1
data/bundler/lib/bundler/cli/check.rb +1 -1
data/bundler/lib/bundler/cli/common.rb +9 -1
data/bundler/lib/bundler/cli/config.rb +8 -7
data/bundler/lib/bundler/cli/console.rb +3 -2
data/bundler/lib/bundler/cli/doctor.rb +2 -2
data/bundler/lib/bundler/cli/exec.rb +1 -1
data/bundler/lib/bundler/cli/gem.rb +28 -23
data/bundler/lib/bundler/cli/info.rb +2 -13
data/bundler/lib/bundler/cli/install.rb +5 -4
data/bundler/lib/bundler/cli/issue.rb +1 -1
data/bundler/lib/bundler/cli/lock.rb +4 -4
data/bundler/lib/bundler/cli/open.rb +1 -1
data/bundler/lib/bundler/cli/outdated.rb +6 -6
data/bundler/lib/bundler/cli/plugin.rb +7 -14
data/bundler/lib/bundler/cli/pristine.rb +38 -30
data/bundler/lib/bundler/cli/show.rb +2 -2
data/bundler/lib/bundler/cli/update.rb +5 -5
data/bundler/lib/bundler/cli.rb +215 -263
data/bundler/lib/bundler/compact_index_client/cache.rb +29 -9
data/bundler/lib/bundler/compact_index_client/cache_file.rb +153 -0
data/bundler/lib/bundler/compact_index_client/gem_parser.rb +7 -3
data/bundler/lib/bundler/compact_index_client/updater.rb +79 -81
data/bundler/lib/bundler/compact_index_client.rb +14 -7
data/bundler/lib/bundler/constants.rb +1 -1
data/bundler/lib/bundler/current_ruby.rb +5 -21
data/bundler/lib/bundler/definition.rb +42 -15
data/bundler/lib/bundler/dependency.rb +16 -12
data/bundler/lib/bundler/digest.rb +2 -2
data/bundler/lib/bundler/dsl.rb +43 -25
data/bundler/lib/bundler/endpoint_specification.rb +5 -1
data/bundler/lib/bundler/env.rb +1 -3
data/bundler/lib/bundler/errors.rb +43 -0
data/bundler/lib/bundler/fetcher/base.rb +3 -1
data/bundler/lib/bundler/fetcher/compact_index.rb +4 -4
data/bundler/lib/bundler/fetcher/downloader.rb +13 -11
data/bundler/lib/bundler/fetcher/gem_remote_fetcher.rb +16 -0
data/bundler/lib/bundler/fetcher/index.rb +1 -1
data/bundler/lib/bundler/fetcher.rb +28 -25
data/bundler/lib/bundler/friendly_errors.rb +5 -5
data/bundler/lib/bundler/gem_helper.rb +1 -1
data/bundler/lib/bundler/gem_helpers.rb +5 -2
data/bundler/lib/bundler/graph.rb +9 -9
data/bundler/lib/bundler/index.rb +1 -2
data/bundler/lib/bundler/injector.rb +1 -1
data/bundler/lib/bundler/inline.rb +3 -3
data/bundler/lib/bundler/installer/gem_installer.rb +5 -5
data/bundler/lib/bundler/installer/parallel_installer.rb +16 -8
data/bundler/lib/bundler/installer/standalone.rb +2 -3
data/bundler/lib/bundler/installer.rb +9 -9
data/bundler/lib/bundler/lazy_specification.rb +24 -17
data/bundler/lib/bundler/lockfile_generator.rb +9 -0
data/bundler/lib/bundler/lockfile_parser.rb +81 -10
data/bundler/lib/bundler/man/bundle-add.1 +3 -26
data/bundler/lib/bundler/man/bundle-binstubs.1 +4 -16
data/bundler/lib/bundler/man/bundle-cache.1 +3 -24
data/bundler/lib/bundler/man/bundle-check.1 +3 -12
data/bundler/lib/bundler/man/bundle-clean.1 +3 -10
data/bundler/lib/bundler/man/bundle-config.1 +20 -211
data/bundler/lib/bundler/man/bundle-config.1.ronn +6 -0
data/bundler/lib/bundler/man/bundle-console.1 +4 -22
data/bundler/lib/bundler/man/bundle-doctor.1 +4 -18
data/bundler/lib/bundler/man/bundle-exec.1 +12 -73
data/bundler/lib/bundler/man/bundle-gem.1 +13 -49
data/bundler/lib/bundler/man/bundle-help.1 +3 -7
data/bundler/lib/bundler/man/bundle-info.1 +3 -9
data/bundler/lib/bundler/man/bundle-init.1 +3 -12
data/bundler/lib/bundler/man/bundle-inject.1 +6 -19
data/bundler/lib/bundler/man/bundle-install.1 +27 -125
data/bundler/lib/bundler/man/bundle-install.1.ronn +1 -0
data/bundler/lib/bundler/man/bundle-list.1 +4 -19
data/bundler/lib/bundler/man/bundle-lock.1 +5 -29
data/bundler/lib/bundler/man/bundle-open.1 +7 -27
data/bundler/lib/bundler/man/bundle-outdated.1 +3 -55
data/bundler/lib/bundler/man/bundle-outdated.1.ronn +1 -0
data/bundler/lib/bundler/man/bundle-platform.1 +5 -27
data/bundler/lib/bundler/man/bundle-plugin.1 +3 -29
data/bundler/lib/bundler/man/bundle-pristine.1 +5 -16
data/bundler/lib/bundler/man/bundle-remove.1 +4 -14
data/bundler/lib/bundler/man/bundle-show.1 +3 -10
data/bundler/lib/bundler/man/bundle-update.1 +18 -137
data/bundler/lib/bundler/man/bundle-version.1 +3 -16
data/bundler/lib/bundler/man/bundle-viz.1 +4 -16
data/bundler/lib/bundler/man/bundle.1 +5 -44
data/bundler/lib/bundler/man/gemfile.5 +24 -301
data/bundler/lib/bundler/man/gemfile.5.ronn +4 -0
data/bundler/lib/bundler/match_metadata.rb +4 -0
data/bundler/lib/bundler/match_platform.rb +1 -1
data/bundler/lib/bundler/plugin/api/source.rb +3 -2
data/bundler/lib/bundler/plugin/installer.rb +1 -1
data/bundler/lib/bundler/plugin.rb +3 -3
data/bundler/lib/bundler/resolver/base.rb +1 -1
data/bundler/lib/bundler/resolver/incompatibility.rb +1 -1
data/bundler/lib/bundler/resolver/spec_group.rb +1 -4
data/bundler/lib/bundler/resolver.rb +16 -16
data/bundler/lib/bundler/ruby_dsl.rb +20 -12
data/bundler/lib/bundler/ruby_version.rb +1 -1
data/bundler/lib/bundler/rubygems_ext.rb +24 -50
data/bundler/lib/bundler/rubygems_gem_installer.rb +6 -56
data/bundler/lib/bundler/rubygems_integration.rb +25 -94
data/bundler/lib/bundler/runtime.rb +2 -2
data/bundler/lib/bundler/self_manager.rb +23 -7
data/bundler/lib/bundler/settings.rb +27 -7
data/bundler/lib/bundler/setup.rb +4 -1
data/bundler/lib/bundler/shared_helpers.rb +35 -13
data/bundler/lib/bundler/source/git/git_proxy.rb +15 -15
data/bundler/lib/bundler/source/git.rb +4 -3
data/bundler/lib/bundler/source/metadata.rb +15 -15
data/bundler/lib/bundler/source/path.rb +7 -6
data/bundler/lib/bundler/source/rubygems.rb +21 -14
data/bundler/lib/bundler/source.rb +2 -0
data/bundler/lib/bundler/spec_set.rb +38 -10
data/bundler/lib/bundler/stub_specification.rb +1 -0
data/bundler/lib/bundler/templates/Executable.bundler +1 -1
data/bundler/lib/bundler/templates/newgem/README.md.tt +3 -3
data/bundler/lib/bundler/templates/newgem/Rakefile.tt +2 -6
data/bundler/lib/bundler/templates/newgem/ext/newgem/Cargo.toml.tt +1 -1
data/bundler/lib/bundler/templates/newgem/standard.yml.tt +1 -1
data/bundler/lib/bundler/ui/shell.rb +1 -1
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/version.rb +1 -1
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool.rb +53 -6
data/bundler/lib/bundler/vendor/fileutils/lib/fileutils.rb +8 -20
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/connection.rb +3 -3
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/pool.rb +2 -2
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/timed_stack_multi.rb +1 -1
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent.rb +35 -35
data/bundler/lib/bundler/vendor/tsort/lib/tsort.rb +3 -0
data/bundler/lib/bundler/vendor/uri/lib/uri/common.rb +256 -132
data/bundler/lib/bundler/vendor/uri/lib/uri/generic.rb +1 -0
data/bundler/lib/bundler/vendor/uri/lib/uri/rfc3986_parser.rb +95 -31
data/bundler/lib/bundler/vendor/uri/lib/uri/version.rb +1 -1
data/bundler/lib/bundler/vendored_net_http.rb +8 -0
data/bundler/lib/bundler/vendored_persistent.rb +0 -4
data/bundler/lib/bundler/vendored_timeout.rb +8 -0
data/bundler/lib/bundler/version.rb +1 -1
data/bundler/lib/bundler/vlad.rb +1 -1
data/bundler/lib/bundler/yaml_serializer.rb +3 -3
data/bundler/lib/bundler.rb +38 -27
data/lib/rubygems/available_set.rb +4 -4
data/lib/rubygems/basic_specification.rb +35 -37
data/lib/rubygems/bundler_version_finder.rb +4 -4
data/lib/rubygems/ci_detector.rb +75 -0
data/lib/rubygems/command.rb +13 -15
data/lib/rubygems/command_manager.rb +5 -4
data/lib/rubygems/commands/build_command.rb +2 -2
data/lib/rubygems/commands/cert_command.rb +1 -2
data/lib/rubygems/commands/check_command.rb +4 -4
data/lib/rubygems/commands/cleanup_command.rb +12 -14
data/lib/rubygems/commands/contents_command.rb +4 -4
data/lib/rubygems/commands/dependency_command.rb +4 -5
data/lib/rubygems/commands/environment_command.rb +1 -3
data/lib/rubygems/commands/exec_command.rb +1 -1
data/lib/rubygems/commands/fetch_command.rb +2 -2
data/lib/rubygems/commands/generate_index_command.rb +39 -74
data/lib/rubygems/commands/help_command.rb +3 -3
data/lib/rubygems/commands/info_command.rb +2 -2
data/lib/rubygems/commands/install_command.rb +8 -16
data/lib/rubygems/commands/list_command.rb +2 -2
data/lib/rubygems/commands/lock_command.rb +1 -1
data/lib/rubygems/commands/open_command.rb +1 -1
data/lib/rubygems/commands/owner_command.rb +1 -1
data/lib/rubygems/commands/pristine_command.rb +13 -15
data/lib/rubygems/commands/push_command.rb +2 -2
data/lib/rubygems/commands/query_command.rb +4 -5
data/lib/rubygems/commands/rdoc_command.rb +2 -2
data/lib/rubygems/commands/search_command.rb +2 -2
data/lib/rubygems/commands/setup_command.rb +31 -34
data/lib/rubygems/commands/sources_command.rb +12 -12
data/lib/rubygems/commands/specification_command.rb +10 -10
data/lib/rubygems/commands/stale_command.rb +1 -1
data/lib/rubygems/commands/uninstall_command.rb +9 -10
data/lib/rubygems/commands/unpack_command.rb +4 -4
data/lib/rubygems/commands/update_command.rb +10 -12
data/lib/rubygems/commands/which_command.rb +1 -1
data/lib/rubygems/commands/yank_command.rb +1 -1
data/lib/rubygems/compatibility.rb +5 -6
data/lib/rubygems/config_file.rb +4 -4
data/lib/rubygems/core_ext/kernel_gem.rb +0 -2
data/lib/rubygems/core_ext/kernel_require.rb +19 -48
data/lib/rubygems/core_ext/kernel_warn.rb +1 -1
data/lib/rubygems/core_ext/tcpsocket_init.rb +1 -1
data/lib/rubygems/defaults.rb +15 -3
data/lib/rubygems/dependency.rb +12 -14
data/lib/rubygems/dependency_installer.rb +29 -30
data/lib/rubygems/dependency_list.rb +1 -1
data/lib/rubygems/deprecate.rb +16 -15
data/lib/rubygems/doctor.rb +5 -5
data/lib/rubygems/errors.rb +2 -6
data/lib/rubygems/exceptions.rb +2 -1
data/lib/rubygems/ext/builder.rb +15 -10
data/lib/rubygems/ext/cargo_builder.rb +5 -5
data/lib/rubygems/ext/ext_conf_builder.rb +1 -3
data/lib/rubygems/gem_runner.rb +4 -4
data/lib/rubygems/gemcutter_utilities/webauthn_listener/response.rb +3 -3
data/lib/rubygems/gemcutter_utilities/webauthn_poller.rb +3 -3
data/lib/rubygems/gemcutter_utilities.rb +18 -19
data/lib/rubygems/install_update_options.rb +18 -19
data/lib/rubygems/installer.rb +59 -33
data/lib/rubygems/installer_uninstaller_utils.rb +0 -2
data/lib/rubygems/local_remote_options.rb +7 -10
data/lib/rubygems/name_tuple.rb +7 -9
data/lib/rubygems/net/http.rb +3 -0
data/lib/rubygems/net-http/LICENSE.txt +22 -0
data/lib/rubygems/net-http/lib/net/http/backward.rb +40 -0
data/lib/rubygems/net-http/lib/net/http/exceptions.rb +34 -0
data/lib/rubygems/net-http/lib/net/http/generic_request.rb +414 -0
data/lib/rubygems/net-http/lib/net/http/header.rb +981 -0
data/lib/rubygems/net-http/lib/net/http/proxy_delta.rb +17 -0
data/lib/rubygems/net-http/lib/net/http/request.rb +88 -0
data/lib/rubygems/net-http/lib/net/http/requests.rb +425 -0
data/lib/rubygems/net-http/lib/net/http/response.rb +738 -0
data/lib/rubygems/net-http/lib/net/http/responses.rb +1174 -0
data/lib/rubygems/net-http/lib/net/http/status.rb +84 -0
data/lib/rubygems/net-http/lib/net/http.rb +2496 -0
data/lib/rubygems/net-http/lib/net/https.rb +23 -0
data/lib/rubygems/net-protocol/LICENSE.txt +22 -0
data/lib/rubygems/net-protocol/lib/net/protocol.rb +544 -0
data/lib/rubygems/optparse/lib/optparse.rb +39 -17
data/lib/rubygems/package/old.rb +2 -2
data/lib/rubygems/package/tar_header.rb +45 -39
data/lib/rubygems/package/tar_reader/entry.rb +5 -4
data/lib/rubygems/package/tar_reader.rb +5 -3
data/lib/rubygems/package/tar_writer.rb +19 -17
data/lib/rubygems/package.rb +27 -26
data/lib/rubygems/package_task.rb +2 -2
data/lib/rubygems/path_support.rb +9 -10
data/lib/rubygems/platform.rb +60 -45
data/lib/rubygems/query_utils.rb +7 -9
data/lib/rubygems/remote_fetcher.rb +15 -15
data/lib/rubygems/request/connection_pools.rb +3 -3
data/lib/rubygems/request.rb +20 -17
data/lib/rubygems/request_set/gem_dependency_api.rb +119 -122
data/lib/rubygems/request_set/lockfile/parser.rb +9 -9
data/lib/rubygems/request_set/lockfile/tokenizer.rb +20 -12
data/lib/rubygems/request_set/lockfile.rb +6 -11
data/lib/rubygems/request_set.rb +5 -5
data/lib/rubygems/requirement.rb +7 -7
data/lib/rubygems/resolv/LICENSE.txt +22 -0
data/lib/rubygems/resolv/lib/resolv.rb +3387 -0
data/lib/rubygems/resolver/activation_request.rb +1 -3
data/lib/rubygems/resolver/api_set/gem_parser.rb +7 -3
data/lib/rubygems/resolver/best_set.rb +1 -1
data/lib/rubygems/resolver/composed_set.rb +1 -1
data/lib/rubygems/resolver/conflict.rb +4 -12
data/lib/rubygems/resolver/index_set.rb +4 -4
data/lib/rubygems/resolver/index_specification.rb +2 -2
data/lib/rubygems/resolver/installer_set.rb +5 -6
data/lib/rubygems/resolver/lock_set.rb +1 -1
data/lib/rubygems/resolver.rb +3 -10
data/lib/rubygems/s3_uri_signer.rb +6 -6
data/lib/rubygems/safe_marshal/elements.rb +138 -0
data/lib/rubygems/safe_marshal/reader.rb +306 -0
data/lib/rubygems/safe_marshal/visitors/stream_printer.rb +31 -0
data/lib/rubygems/safe_marshal/visitors/to_ruby.rb +385 -0
data/lib/rubygems/safe_marshal/visitors/visitor.rb +74 -0
data/lib/rubygems/safe_marshal.rb +74 -0
data/lib/rubygems/safe_yaml.rb +5 -28
data/lib/rubygems/security/policies.rb +36 -38
data/lib/rubygems/security/policy.rb +7 -11
data/lib/rubygems/security/signer.rb +1 -1
data/lib/rubygems/security/trust_dir.rb +3 -3
data/lib/rubygems/security.rb +8 -22
data/lib/rubygems/source/git.rb +1 -3
data/lib/rubygems/source/installed.rb +0 -2
data/lib/rubygems/source/local.rb +5 -8
data/lib/rubygems/source/lock.rb +1 -3
data/lib/rubygems/source/specific_file.rb +0 -1
data/lib/rubygems/source/vendor.rb +0 -2
data/lib/rubygems/source.rb +12 -12
data/lib/rubygems/source_list.rb +4 -4
data/lib/rubygems/spec_fetcher.rb +29 -29
data/lib/rubygems/specification.rb +125 -138
data/lib/rubygems/specification_policy.rb +55 -25
data/lib/rubygems/stub_specification.rb +4 -5
data/lib/rubygems/text.rb +1 -2
data/lib/rubygems/timeout/LICENSE.txt +22 -0
data/lib/rubygems/timeout/lib/timeout.rb +199 -0
data/lib/rubygems/timeout.rb +3 -0
data/lib/rubygems/tsort/lib/tsort.rb +3 -0
data/lib/rubygems/uninstaller.rb +7 -9
data/lib/rubygems/update_suggestion.rb +5 -18
data/lib/rubygems/uri_formatter.rb +1 -1
data/lib/rubygems/user_interaction.rb +15 -21
data/lib/rubygems/util/licenses.rb +65 -35
data/lib/rubygems/util/list.rb +3 -1
data/lib/rubygems/util.rb +2 -4
data/lib/rubygems/validator.rb +5 -3
data/lib/rubygems/version.rb +34 -28
data/lib/rubygems/version_option.rb +2 -5
data/lib/rubygems/yaml_serializer.rb +3 -3
data/lib/rubygems.rb +37 -37
data/rubygems-update.gemspec +4 -4
data/setup.rb +2 -2
metadata +38 -225
data/lib/rubygems/indexer.rb +0 -428
data/lib/rubygems/mock_gem_ui.rb +0 -86
data/test/rubygems/alternate_cert.pem +0 -19
data/test/rubygems/alternate_cert_32.pem +0 -19
data/test/rubygems/alternate_key.pem +0 -27
data/test/rubygems/bad_rake.rb +0 -3
data/test/rubygems/bundler_test_gem.rb +0 -424
data/test/rubygems/ca_cert.pem +0 -77
data/test/rubygems/child_cert.pem +0 -19
data/test/rubygems/child_cert_32.pem +0 -19
data/test/rubygems/child_key.pem +0 -27
data/test/rubygems/client.pem +0 -107
data/test/rubygems/data/excon-0.7.7.gemspec.rz +0 -0
data/test/rubygems/data/gem-private_key.pem +0 -27
data/test/rubygems/data/gem-public_cert.pem +0 -20
data/test/rubygems/data/null-required-ruby-version.gemspec.rz +0 -0
data/test/rubygems/data/null-required-rubygems-version.gemspec.rz +0 -0
data/test/rubygems/data/pry-0.4.7.gemspec.rz +0 -0
data/test/rubygems/encrypted_private_key.pem +0 -30
data/test/rubygems/expired_cert.pem +0 -19
data/test/rubygems/fake_certlib/openssl.rb +0 -9
data/test/rubygems/foo/discover.rb +0 -1
data/test/rubygems/future_cert.pem +0 -19
data/test/rubygems/future_cert_32.pem +0 -19
data/test/rubygems/good_rake.rb +0 -3
data/test/rubygems/grandchild_cert.pem +0 -19
data/test/rubygems/grandchild_cert_32.pem +0 -19
data/test/rubygems/grandchild_key.pem +0 -27
data/test/rubygems/helper.rb +0 -1649
data/test/rubygems/installer_test_case.rb +0 -248
data/test/rubygems/invalid_client.pem +0 -49
data/test/rubygems/invalid_issuer_cert.pem +0 -20
data/test/rubygems/invalid_issuer_cert_32.pem +0 -20
data/test/rubygems/invalid_key.pem +0 -27
data/test/rubygems/invalid_signer_cert.pem +0 -19
data/test/rubygems/invalid_signer_cert_32.pem +0 -19
data/test/rubygems/invalidchild_cert.pem +0 -19
data/test/rubygems/invalidchild_cert_32.pem +0 -19
data/test/rubygems/invalidchild_key.pem +0 -27
data/test/rubygems/multifactor_auth_utilities.rb +0 -111
data/test/rubygems/package/tar_test_case.rb +0 -175
data/test/rubygems/packages/Bluebie-legs-0.6.2.gem +0 -0
data/test/rubygems/packages/ascii_binder-0.1.10.1.gem +0 -0
data/test/rubygems/packages/ill-formatted-platform-1.0.0.10.gem +0 -0
data/test/rubygems/plugin/exception/rubygems_plugin.rb +0 -4
data/test/rubygems/plugin/load/rubygems_plugin.rb +0 -5
data/test/rubygems/plugin/standarderror/rubygems_plugin.rb +0 -4
data/test/rubygems/private3072_key.pem +0 -40
data/test/rubygems/private_ec_key.pem +0 -9
data/test/rubygems/private_key.pem +0 -27
data/test/rubygems/public3072_cert.pem +0 -25
data/test/rubygems/public_cert.pem +0 -20
data/test/rubygems/public_cert_32.pem +0 -19
data/test/rubygems/public_key.pem +0 -9
data/test/rubygems/rubygems/commands/crash_command.rb +0 -5
data/test/rubygems/rubygems_plugin.rb +0 -24
data/test/rubygems/sff/discover.rb +0 -1
data/test/rubygems/simple_gem.rb +0 -68
data/test/rubygems/specifications/bar-0.0.2.gemspec +0 -9
data/test/rubygems/specifications/foo-0.0.1-x86-mswin32.gemspec +0 -0
data/test/rubygems/specifications/rubyforge-0.0.1.gemspec +0 -14
data/test/rubygems/ssl_cert.pem +0 -80
data/test/rubygems/ssl_key.pem +0 -27
data/test/rubygems/test_bundled_ca.rb +0 -61
data/test/rubygems/test_config.rb +0 -28
data/test/rubygems/test_deprecate.rb +0 -158
data/test/rubygems/test_exit.rb +0 -17
data/test/rubygems/test_gem.rb +0 -1799
data/test/rubygems/test_gem_available_set.rb +0 -130
data/test/rubygems/test_gem_bundler_version_finder.rb +0 -127
data/test/rubygems/test_gem_command.rb +0 -403
data/test/rubygems/test_gem_command_manager.rb +0 -400
data/test/rubygems/test_gem_commands_build_command.rb +0 -739
data/test/rubygems/test_gem_commands_cert_command.rb +0 -866
data/test/rubygems/test_gem_commands_check_command.rb +0 -68
data/test/rubygems/test_gem_commands_cleanup_command.rb +0 -292
data/test/rubygems/test_gem_commands_contents_command.rb +0 -271
data/test/rubygems/test_gem_commands_dependency_command.rb +0 -228
data/test/rubygems/test_gem_commands_environment_command.rb +0 -169
data/test/rubygems/test_gem_commands_exec_command.rb +0 -857
data/test/rubygems/test_gem_commands_fetch_command.rb +0 -258
data/test/rubygems/test_gem_commands_generate_index_command.rb +0 -81
data/test/rubygems/test_gem_commands_help_command.rb +0 -94
data/test/rubygems/test_gem_commands_info_command.rb +0 -70
data/test/rubygems/test_gem_commands_install_command.rb +0 -1573
data/test/rubygems/test_gem_commands_list_command.rb +0 -33
data/test/rubygems/test_gem_commands_lock_command.rb +0 -67
data/test/rubygems/test_gem_commands_mirror.rb +0 -20
data/test/rubygems/test_gem_commands_open_command.rb +0 -101
data/test/rubygems/test_gem_commands_outdated_command.rb +0 -50
data/test/rubygems/test_gem_commands_owner_command.rb +0 -503
data/test/rubygems/test_gem_commands_pristine_command.rb +0 -708
data/test/rubygems/test_gem_commands_push_command.rb +0 -603
data/test/rubygems/test_gem_commands_query_command.rb +0 -858
data/test/rubygems/test_gem_commands_search_command.rb +0 -16
data/test/rubygems/test_gem_commands_server_command.rb +0 -20
data/test/rubygems/test_gem_commands_setup_command.rb +0 -474
data/test/rubygems/test_gem_commands_signin_command.rb +0 -259
data/test/rubygems/test_gem_commands_signout_command.rb +0 -30
data/test/rubygems/test_gem_commands_sources_command.rb +0 -534
data/test/rubygems/test_gem_commands_specification_command.rb +0 -277
data/test/rubygems/test_gem_commands_stale_command.rb +0 -43
data/test/rubygems/test_gem_commands_uninstall_command.rb +0 -542
data/test/rubygems/test_gem_commands_unpack_command.rb +0 -224
data/test/rubygems/test_gem_commands_update_command.rb +0 -836
data/test/rubygems/test_gem_commands_which_command.rb +0 -85
data/test/rubygems/test_gem_commands_yank_command.rb +0 -299
data/test/rubygems/test_gem_config_file.rb +0 -551
data/test/rubygems/test_gem_dependency.rb +0 -398
data/test/rubygems/test_gem_dependency_installer.rb +0 -1190
data/test/rubygems/test_gem_dependency_list.rb +0 -265
data/test/rubygems/test_gem_dependency_resolution_error.rb +0 -27
data/test/rubygems/test_gem_doctor.rb +0 -195
data/test/rubygems/test_gem_ext_builder.rb +0 -337
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/.gitignore +0 -1
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/custom_name.gemspec +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/ext/custom_name_lib/Cargo.lock +0 -249
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/ext/custom_name_lib/Cargo.toml +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/ext/custom_name_lib/src/lib.rs +0 -27
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/lib/custom_name.rb +0 -3
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/.gitignore +0 -1
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.lock +0 -249
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.toml +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/rust_ruby_example.gemspec +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/src/lib.rs +0 -51
data/test/rubygems/test_gem_ext_cargo_builder.rb +0 -167
data/test/rubygems/test_gem_ext_cargo_builder_link_flag_converter.rb +0 -34
data/test/rubygems/test_gem_ext_cargo_builder_unit.rb +0 -60
data/test/rubygems/test_gem_ext_cmake_builder.rb +0 -84
data/test/rubygems/test_gem_ext_configure_builder.rb +0 -80
data/test/rubygems/test_gem_ext_ext_conf_builder.rb +0 -229
data/test/rubygems/test_gem_ext_rake_builder.rb +0 -113
data/test/rubygems/test_gem_gem_runner.rb +0 -119
data/test/rubygems/test_gem_gemcutter_utilities.rb +0 -361
data/test/rubygems/test_gem_impossible_dependencies_error.rb +0 -60
data/test/rubygems/test_gem_indexer.rb +0 -381
data/test/rubygems/test_gem_install_update_options.rb +0 -208
data/test/rubygems/test_gem_installer.rb +0 -2512
data/test/rubygems/test_gem_local_remote_options.rb +0 -133
data/test/rubygems/test_gem_name_tuple.rb +0 -43
data/test/rubygems/test_gem_package.rb +0 -1306
data/test/rubygems/test_gem_package_old.rb +0 -91
data/test/rubygems/test_gem_package_tar_header.rb +0 -226
data/test/rubygems/test_gem_package_tar_reader.rb +0 -150
data/test/rubygems/test_gem_package_tar_reader_entry.rb +0 -350
data/test/rubygems/test_gem_package_tar_writer.rb +0 -331
data/test/rubygems/test_gem_package_task.rb +0 -118
data/test/rubygems/test_gem_path_support.rb +0 -139
data/test/rubygems/test_gem_platform.rb +0 -497
data/test/rubygems/test_gem_rdoc.rb +0 -137
data/test/rubygems/test_gem_remote_fetcher.rb +0 -1227
data/test/rubygems/test_gem_request.rb +0 -547
data/test/rubygems/test_gem_request_connection_pools.rb +0 -152
data/test/rubygems/test_gem_request_set.rb +0 -672
data/test/rubygems/test_gem_request_set_gem_dependency_api.rb +0 -853
data/test/rubygems/test_gem_request_set_lockfile.rb +0 -469
data/test/rubygems/test_gem_request_set_lockfile_parser.rb +0 -544
data/test/rubygems/test_gem_request_set_lockfile_tokenizer.rb +0 -307
data/test/rubygems/test_gem_requirement.rb +0 -505
data/test/rubygems/test_gem_resolver.rb +0 -859
data/test/rubygems/test_gem_resolver_activation_request.rb +0 -43
data/test/rubygems/test_gem_resolver_api_set.rb +0 -210
data/test/rubygems/test_gem_resolver_api_specification.rb +0 -167
data/test/rubygems/test_gem_resolver_best_set.rb +0 -159
data/test/rubygems/test_gem_resolver_composed_set.rb +0 -44
data/test/rubygems/test_gem_resolver_conflict.rb +0 -82
data/test/rubygems/test_gem_resolver_dependency_request.rb +0 -83
data/test/rubygems/test_gem_resolver_git_set.rb +0 -188
data/test/rubygems/test_gem_resolver_git_specification.rb +0 -114
data/test/rubygems/test_gem_resolver_index_set.rb +0 -88
data/test/rubygems/test_gem_resolver_index_specification.rb +0 -93
data/test/rubygems/test_gem_resolver_installed_specification.rb +0 -47
data/test/rubygems/test_gem_resolver_installer_set.rb +0 -320
data/test/rubygems/test_gem_resolver_local_specification.rb +0 -44
data/test/rubygems/test_gem_resolver_lock_set.rb +0 -62
data/test/rubygems/test_gem_resolver_lock_specification.rb +0 -98
data/test/rubygems/test_gem_resolver_requirement_list.rb +0 -19
data/test/rubygems/test_gem_resolver_specification.rb +0 -63
data/test/rubygems/test_gem_resolver_vendor_set.rb +0 -82
data/test/rubygems/test_gem_resolver_vendor_specification.rb +0 -82
data/test/rubygems/test_gem_security.rb +0 -341
data/test/rubygems/test_gem_security_policy.rb +0 -535
data/test/rubygems/test_gem_security_signer.rb +0 -218
data/test/rubygems/test_gem_security_trust_dir.rb +0 -99
data/test/rubygems/test_gem_silent_ui.rb +0 -123
data/test/rubygems/test_gem_source.rb +0 -254
data/test/rubygems/test_gem_source_fetch_problem.rb +0 -37
data/test/rubygems/test_gem_source_git.rb +0 -310
data/test/rubygems/test_gem_source_installed.rb +0 -35
data/test/rubygems/test_gem_source_list.rb +0 -119
data/test/rubygems/test_gem_source_local.rb +0 -107
data/test/rubygems/test_gem_source_lock.rb +0 -113
data/test/rubygems/test_gem_source_specific_file.rb +0 -76
data/test/rubygems/test_gem_source_subpath_problem.rb +0 -50
data/test/rubygems/test_gem_source_vendor.rb +0 -30
data/test/rubygems/test_gem_spec_fetcher.rb +0 -338
data/test/rubygems/test_gem_specification.rb +0 -3856
data/test/rubygems/test_gem_stream_ui.rb +0 -255
data/test/rubygems/test_gem_stub_specification.rb +0 -278
data/test/rubygems/test_gem_text.rb +0 -103
data/test/rubygems/test_gem_uninstaller.rb +0 -675
data/test/rubygems/test_gem_unsatisfiable_dependency_error.rb +0 -31
data/test/rubygems/test_gem_update_suggestion.rb +0 -209
data/test/rubygems/test_gem_uri.rb +0 -41
data/test/rubygems/test_gem_uri_formatter.rb +0 -27
data/test/rubygems/test_gem_util.rb +0 -91
data/test/rubygems/test_gem_validator.rb +0 -42
data/test/rubygems/test_gem_version.rb +0 -305
data/test/rubygems/test_gem_version_option.rb +0 -165
data/test/rubygems/test_kernel.rb +0 -124
data/test/rubygems/test_project_sanity.rb +0 -49
data/test/rubygems/test_remote_fetch_error.rb +0 -20
data/test/rubygems/test_require.rb +0 -732
data/test/rubygems/test_rubygems.rb +0 -76
data/test/rubygems/test_webauthn_listener.rb +0 -143
data/test/rubygems/test_webauthn_listener_response.rb +0 -93
data/test/rubygems/test_webauthn_poller.rb +0 -124
data/test/rubygems/utilities.rb +0 -436
data/test/rubygems/wrong_key_cert.pem +0 -19
data/test/rubygems/wrong_key_cert_32.pem +0 -19
data/test/test_changelog_generator.rb +0 -17

data/bundler/lib/bundler/compact_index_client/cache.rb CHANGED Viewed

@@ -9,11 +9,8 @@ module Bundler
       def initialize(directory)
         @directory = Pathname.new(directory).expand_path
-        info_roots.each do |dir|
-          SharedHelpers.filesystem_access(dir) do
-            FileUtils.mkdir_p(dir)
-          end
-        end
+        info_roots.each {|dir| mkdir(dir) }
+        mkdir(info_etag_root)
       end
       def names
@@ -24,6 +21,10 @@ module Bundler
         directory.join("names")
       end
+      def names_etag_path
+        directory.join("names.etag")
+      end
       def versions
         versions_by_name = Hash.new {|hash, key| hash[key] = [] }
         info_checksums_by_name = {}
@@ -31,12 +32,12 @@ module Bundler
         lines(versions_path).each do |line|
           name, versions_string, info_checksum = line.split(" ", 3)
           info_checksums_by_name[name] = info_checksum || ""
-          versions_string.split(",").each do |version|
-            if version.start_with?("-")
-              version = version[1..-1].split("-", 2).unshift(name)
+          versions_string.split(",") do |version|
+            delete = version.delete_prefix!("-")
+            version = version.split("-", 2).unshift(name)
+            if delete
               versions_by_name[name].delete(version)
             else
-              version = version.split("-", 2).unshift(name)
               versions_by_name[name] << version
             end
           end
@@ -49,6 +50,10 @@ module Bundler
         directory.join("versions")
       end
+      def versions_etag_path
+        directory.join("versions.etag")
+      end
       def checksums
         checksums = {}
@@ -76,8 +81,19 @@ module Bundler
         end
       end
+      def info_etag_path(name)
+        name = name.to_s
+        info_etag_root.join("#{name}-#{SharedHelpers.digest(:MD5).hexdigest(name).downcase}")
+      end
       private
+      def mkdir(dir)
+        SharedHelpers.filesystem_access(dir) do
+          FileUtils.mkdir_p(dir)
+        end
+      end
       def lines(path)
         return [] unless path.file?
         lines = SharedHelpers.filesystem_access(path, :read, &:read).split("\n")
@@ -96,6 +112,10 @@ module Bundler
           directory.join("info-special-characters"),
         ]
       end
+      def info_etag_root
+        directory.join("info-etags")
+      end
     end
   end
 end

data/bundler/lib/bundler/compact_index_client/cache_file.rb ADDED Viewed

@@ -0,0 +1,153 @@
+# frozen_string_literal: true
+require_relative "../vendored_fileutils"
+require "rubygems/package"
+module Bundler
+  class CompactIndexClient
+    # write cache files in a way that is robust to concurrent modifications
+    # if digests are given, the checksums will be verified
+    class CacheFile
+      DEFAULT_FILE_MODE = 0o644
+      private_constant :DEFAULT_FILE_MODE
+      class Error < RuntimeError; end
+      class ClosedError < Error; end
+      class DigestMismatchError < Error
+        def initialize(digests, expected_digests)
+          super "Calculated checksums #{digests.inspect} did not match expected #{expected_digests.inspect}."
+        end
+      end
+      # Initialize with a copy of the original file, then yield the instance.
+      def self.copy(path, &block)
+        new(path) do |file|
+          file.initialize_digests
+          SharedHelpers.filesystem_access(path, :read) do
+            path.open("rb") do |s|
+              file.open {|f| IO.copy_stream(s, f) }
+            end
+          end
+          yield file
+        end
+      end
+      # Write data to a temp file, then replace the original file with it verifying the digests if given.
+      def self.write(path, data, digests = nil)
+        return unless data
+        new(path) do |file|
+          file.digests = digests
+          file.write(data)
+        end
+      end
+      attr_reader :original_path, :path
+      def initialize(original_path, &block)
+        @original_path = original_path
+        @perm = original_path.file? ? original_path.stat.mode : DEFAULT_FILE_MODE
+        @path = original_path.sub(/$/, ".#{$$}.tmp")
+        return unless block_given?
+        begin
+          yield self
+        ensure
+          close
+        end
+      end
+      def size
+        path.size
+      end
+      # initialize the digests using CompactIndexClient::SUPPORTED_DIGESTS, or a subset based on keys.
+      def initialize_digests(keys = nil)
+        @digests = keys ? SUPPORTED_DIGESTS.slice(*keys) : SUPPORTED_DIGESTS.dup
+        @digests.transform_values! {|algo_class| SharedHelpers.digest(algo_class).new }
+      end
+      # reset the digests so they don't contain any previously read data
+      def reset_digests
+        @digests&.each_value(&:reset)
+      end
+      # set the digests that will be verified at the end
+      def digests=(expected_digests)
+        @expected_digests = expected_digests
+        if @expected_digests.nil?
+          @digests = nil
+        elsif @digests
+          @digests = @digests.slice(*@expected_digests.keys)
+        else
+          initialize_digests(@expected_digests.keys)
+        end
+      end
+      # remove this method when we stop generating md5 digests for legacy etags
+      def md5
+        @digests && @digests["md5"]
+      end
+      def digests?
+        @digests&.any?
+      end
+      # Open the temp file for writing, reusing original permissions, yielding the IO object.
+      def open(write_mode = "wb", perm = @perm, &block)
+        raise ClosedError, "Cannot reopen closed file" if @closed
+        SharedHelpers.filesystem_access(path, :write) do
+          path.open(write_mode, perm) do |f|
+            yield digests? ? Gem::Package::DigestIO.new(f, @digests) : f
+          end
+        end
+      end
+      # Returns false without appending when no digests since appending is too error prone to do without digests.
+      def append(data)
+        return false unless digests?
+        open("a") {|f| f.write data }
+        verify && commit
+      end
+      def write(data)
+        reset_digests
+        open {|f| f.write data }
+        commit!
+      end
+      def commit!
+        verify || raise(DigestMismatchError.new(@base64digests, @expected_digests))
+        commit
+      end
+      # Verify the digests, returning true on match, false on mismatch.
+      def verify
+        return true unless @expected_digests && digests?
+        @base64digests = @digests.transform_values!(&:base64digest)
+        @digests = nil
+        @base64digests.all? {|algo, digest| @expected_digests[algo] == digest }
+      end
+      # Replace the original file with the temp file without verifying digests.
+      # The file is permanently closed.
+      def commit
+        raise ClosedError, "Cannot commit closed file" if @closed
+        SharedHelpers.filesystem_access(original_path, :write) do
+          FileUtils.mv(path, original_path)
+        end
+        @closed = true
+      end
+      # Remove the temp file without replacing the original file.
+      # The file is permanently closed.
+      def close
+        return if @closed
+        FileUtils.remove_file(path) if @path&.file?
+        @closed = true
+      end
+    end
+  end
+end

data/bundler/lib/bundler/compact_index_client/gem_parser.rb CHANGED Viewed

@@ -6,12 +6,15 @@ module Bundler
       GemParser = Gem::Resolver::APISet::GemParser
     else
       class GemParser
+        EMPTY_ARRAY = [].freeze
+        private_constant :EMPTY_ARRAY
         def parse(line)
           version_and_platform, rest = line.split(" ", 2)
           version, platform = version_and_platform.split("-", 2)
-          dependencies, requirements = rest.split("|", 2).map {|s| s.split(",") } if rest
-          dependencies = dependencies ? dependencies.map {|d| parse_dependency(d) } : []
-          requirements = requirements ? requirements.map {|d| parse_dependency(d) } : []
+          dependencies, requirements = rest.split("|", 2).map! {|s| s.split(",") } if rest
+          dependencies = dependencies ? dependencies.map! {|d| parse_dependency(d) } : EMPTY_ARRAY
+          requirements = requirements ? requirements.map! {|d| parse_dependency(d) } : EMPTY_ARRAY
           [version, platform, dependencies, requirements]
         end
@@ -20,6 +23,7 @@ module Bundler
         def parse_dependency(string)
           dependency = string.split(":")
           dependency[-1] = dependency[-1].split("&") if dependency.size > 1
+          dependency[0] = -dependency[0]
           dependency
         end
       end

data/bundler/lib/bundler/compact_index_client/updater.rb CHANGED Viewed

@@ -1,20 +1,11 @@
 # frozen_string_literal: true
-require_relative "../vendored_fileutils"
 module Bundler
   class CompactIndexClient
     class Updater
-      class MisMatchedChecksumError < Error
-        def initialize(path, server_checksum, local_checksum)
-          @path = path
-          @server_checksum = server_checksum
-          @local_checksum = local_checksum
-        end
-        def message
-          "The checksum of /#{@path} does not match the checksum provided by the server! Something is wrong " \
-            "(local checksum is #{@local_checksum.inspect}, was expecting #{@server_checksum.inspect})."
+      class MismatchedChecksumError < Error
+        def initialize(path, message)
+          super "The checksum of /#{path} does not match the checksum provided by the server! Something is wrong. #{message}"
         end
       end
@@ -22,95 +13,102 @@ module Bundler
         @fetcher = fetcher
       end
-      def update(local_path, remote_path, retrying = nil)
-        headers = {}
-        local_temp_path = local_path.sub(/$/, ".#{$$}")
-        local_temp_path = local_temp_path.sub(/$/, ".retrying") if retrying
-        local_temp_path = local_temp_path.sub(/$/, ".tmp")
-        # first try to fetch any new bytes on the existing file
-        if retrying.nil? && local_path.file?
-          copy_file local_path, local_temp_path
+      def update(remote_path, local_path, etag_path)
+        append(remote_path, local_path, etag_path) || replace(remote_path, local_path, etag_path)
+      rescue CacheFile::DigestMismatchError => e
+        raise MismatchedChecksumError.new(remote_path, e.message)
+      rescue Zlib::GzipFile::Error
+        raise Bundler::HTTPError
+      end
-          headers["If-None-Match"] = etag_for(local_temp_path)
-          headers["Range"] =
-            if local_temp_path.size.nonzero?
-              # Subtract a byte to ensure the range won't be empty.
-              # Avoids 416 (Range Not Satisfiable) responses.
-              "bytes=#{local_temp_path.size - 1}-"
-            else
-              "bytes=#{local_temp_path.size}-"
-            end
-        end
+      private
-        response = @fetcher.call(remote_path, headers)
-        return nil if response.is_a?(Net::HTTPNotModified)
+      def append(remote_path, local_path, etag_path)
+        return false unless local_path.file? && local_path.size.nonzero?
-        content = response.body
+        CacheFile.copy(local_path) do |file|
+          etag = etag_path.read.tap(&:chomp!) if etag_path.file?
+          etag ||= generate_etag(etag_path, file) # Remove this after 2.5.0 has been out for a while.
-        etag = (response["ETag"] || "").gsub(%r{\AW/}, "")
-        correct_response = SharedHelpers.filesystem_access(local_temp_path) do
-          if response.is_a?(Net::HTTPPartialContent) && local_temp_path.size.nonzero?
-            local_temp_path.open("a") {|f| f << slice_body(content, 1..-1) }
+          # Subtract a byte to ensure the range won't be empty.
+          # Avoids 416 (Range Not Satisfiable) responses.
+          response = @fetcher.call(remote_path, request_headers(etag, file.size - 1))
+          break true if response.is_a?(Gem::Net::HTTPNotModified)
-            etag_for(local_temp_path) == etag
+          file.digests = parse_digests(response)
+          # server may ignore Range and return the full response
+          if response.is_a?(Gem::Net::HTTPPartialContent)
+            break false unless file.append(response.body.byteslice(1..-1))
           else
-            local_temp_path.open("wb") {|f| f << content }
-            etag.length.zero? || etag_for(local_temp_path) == etag
+            file.write(response.body)
           end
+          CacheFile.write(etag_path, etag(response))
+          true
         end
+      end
-        if correct_response
-          SharedHelpers.filesystem_access(local_path) do
-            FileUtils.mv(local_temp_path, local_path)
-          end
-          return nil
-        end
+      # request without range header to get the full file or a 304 Not Modified
+      def replace(remote_path, local_path, etag_path)
+        etag = etag_path.read.tap(&:chomp!) if etag_path.file?
+        response = @fetcher.call(remote_path, request_headers(etag))
+        return true if response.is_a?(Gem::Net::HTTPNotModified)
+        CacheFile.write(local_path, response.body, parse_digests(response))
+        CacheFile.write(etag_path, etag(response))
+      end
-        if retrying
-          raise MisMatchedChecksumError.new(remote_path, etag, etag_for(local_temp_path))
-        end
+      def request_headers(etag, range_start = nil)
+        headers = {}
+        headers["Range"] = "bytes=#{range_start}-" if range_start
+        headers["If-None-Match"] = etag if etag
+        headers
+      end
-        update(local_path, remote_path, :retrying)
-      rescue Zlib::GzipFile::Error
-        raise Bundler::HTTPError
-      ensure
-        FileUtils.remove_file(local_temp_path) if File.exist?(local_temp_path)
+      def etag_for_request(etag_path)
+        etag_path.read.tap(&:chomp!) if etag_path.file?
       end
-      def etag_for(path)
-        sum = checksum_for_file(path)
-        sum ? %("#{sum}") : nil
+      # When first releasing this opaque etag feature, we want to generate the old MD5 etag
+      # based on the content of the file. After that it will always use the saved opaque etag.
+      # This transparently saves existing users with good caches from updating a bunch of files.
+      # Remove this behavior after 2.5.0 has been out for a while.
+      def generate_etag(etag_path, file)
+        etag = file.md5.hexdigest
+        CacheFile.write(etag_path, etag)
+        etag
       end
-      def slice_body(body, range)
-        body.byteslice(range)
+      def etag(response)
+        return unless response["ETag"]
+        etag = response["ETag"].delete_prefix("W/")
+        return if etag.delete_prefix!('"') && !etag.delete_suffix!('"')
+        etag
       end
-      def checksum_for_file(path)
-        return nil unless path.file?
-        # This must use File.read instead of Digest.file().hexdigest
-        # because we need to preserve \n line endings on windows when calculating
-        # the checksum
-        SharedHelpers.filesystem_access(path, :read) do
-          SharedHelpers.digest(:MD5).hexdigest(File.read(path))
+      # Unwraps and returns a Hash of digest algorithms and base64 values
+      # according to RFC 8941 Structured Field Values for HTTP.
+      # https://www.rfc-editor.org/rfc/rfc8941#name-parsing-a-byte-sequence
+      # Ignores unsupported algorithms.
+      def parse_digests(response)
+        return unless header = response["Repr-Digest"] || response["Digest"]
+        digests = {}
+        header.split(",") do |param|
+          algorithm, value = param.split("=", 2)
+          algorithm.strip!
+          algorithm.downcase!
+          next unless SUPPORTED_DIGESTS.key?(algorithm)
+          next unless value = byte_sequence(value)
+          digests[algorithm] = value
         end
+        digests.empty? ? nil : digests
       end
-      private
-      def copy_file(source, dest)
-        SharedHelpers.filesystem_access(source, :read) do
-          File.open(source, "r") do |s|
-            SharedHelpers.filesystem_access(dest, :write) do
-              File.open(dest, "wb", s.stat.mode) do |f|
-                IO.copy_stream(s, f)
-              end
-            end
-          end
-        end
+      # Unwrap surrounding colons (byte sequence)
+      # The wrapping characters must be matched or we return nil.
+      # Also handles quotes because right now rubygems.org sends them.
+      def byte_sequence(value)
+        return if value.delete_prefix!(":") && !value.delete_suffix!(":")
+        return if value.delete_prefix!('"') && !value.delete_suffix!('"')
+        value
       end
     end
   end

data/bundler/lib/bundler/compact_index_client.rb CHANGED Viewed

@@ -5,7 +5,13 @@ require "set"
 module Bundler
   class CompactIndexClient
+    # NOTE: MD5 is here not because we expect a server to respond with it, but
+    # because we use it to generate the etag on first request during the upgrade
+    # to the compact index client that uses opaque etags saved to files.
+    # Remove once 2.5.0 has been out for a while.
+    SUPPORTED_DIGESTS = { "sha-256" => :SHA256, "md5" => :MD5 }.freeze
     DEBUG_MUTEX = Thread::Mutex.new
     def self.debug
       return unless ENV["DEBUG_COMPACT_INDEX"]
       DEBUG_MUTEX.synchronize { warn("[#{self}] #{yield}") }
@@ -14,6 +20,7 @@ module Bundler
     class Error < StandardError; end
     require_relative "compact_index_client/cache"
+    require_relative "compact_index_client/cache_file"
     require_relative "compact_index_client/updater"
     attr_reader :directory
@@ -54,13 +61,13 @@ module Bundler
     def names
       Bundler::CompactIndexClient.debug { "/names" }
-      update(@cache.names_path, "names")
+      update("names", @cache.names_path, @cache.names_etag_path)
       @cache.names
     end
     def versions
       Bundler::CompactIndexClient.debug { "/versions" }
-      update(@cache.versions_path, "versions")
+      update("versions", @cache.versions_path, @cache.versions_etag_path)
       versions, @info_checksums_by_name = @cache.versions
       versions
     end
@@ -76,36 +83,36 @@ module Bundler
     def update_and_parse_checksums!
       Bundler::CompactIndexClient.debug { "update_and_parse_checksums!" }
       return @info_checksums_by_name if @parsed_checksums
-      update(@cache.versions_path, "versions")
+      update("versions", @cache.versions_path, @cache.versions_etag_path)
       @info_checksums_by_name = @cache.checksums
       @parsed_checksums = true
     end
     private
-    def update(local_path, remote_path)
+    def update(remote_path, local_path, local_etag_path)
       Bundler::CompactIndexClient.debug { "update(#{local_path}, #{remote_path})" }
       unless synchronize { @endpoints.add?(remote_path) }
         Bundler::CompactIndexClient.debug { "already fetched #{remote_path}" }
         return
       end
-      @updater.update(local_path, url(remote_path))
+      @updater.update(url(remote_path), local_path, local_etag_path)
     end
     def update_info(name)
       Bundler::CompactIndexClient.debug { "update_info(#{name})" }
       path = @cache.info_path(name)
-      checksum = @updater.checksum_for_file(path)
       unless existing = @info_checksums_by_name[name]
         Bundler::CompactIndexClient.debug { "skipping updating info for #{name} since it is missing from versions" }
         return
       end
+      checksum = SharedHelpers.checksum_for_file(path, :MD5)
       if checksum == existing
         Bundler::CompactIndexClient.debug { "skipping updating info for #{name} since the versions checksum matches the local checksum" }
         return
       end
       Bundler::CompactIndexClient.debug { "updating info for #{name} since the versions checksum #{existing} != the local checksum #{checksum}" }
-      update(path, "info/#{name}")
+      update("info/#{name}", path, @cache.info_etag_path(name))
     end
     def url(path)

data/bundler/lib/bundler/constants.rb CHANGED Viewed

@@ -3,5 +3,5 @@
 module Bundler
   WINDOWS = RbConfig::CONFIG["host_os"] =~ /(msdos|mswin|djgpp|mingw)/
   FREEBSD = RbConfig::CONFIG["host_os"].to_s.include?("bsd")
-  NULL    = WINDOWS ? "NUL" : "/dev/null"
+  NULL    = File::NULL
 end

data/bundler/lib/bundler/current_ruby.rb CHANGED Viewed

@@ -43,7 +43,7 @@ module Bundler
     ].freeze
     def ruby?
-      return true if Bundler::GemHelpers.generic_local_platform == Gem::Platform::RUBY
+      return true if Bundler::GemHelpers.generic_local_platform_is_ruby?
       !windows? && (RUBY_ENGINE == "ruby" || RUBY_ENGINE == "rbx" || RUBY_ENGINE == "maglev" || RUBY_ENGINE == "truffleruby")
     end
@@ -71,26 +71,10 @@ module Bundler
     def windows?
       Gem.win_platform?
     end
-    def mswin?
-      # For backwards compatibility
-      windows?
-      # TODO: This should correctly be:
-      # windows? && Bundler.local_platform != Gem::Platform::RUBY && Bundler.local_platform.os == "mswin32" && Bundler.local_platform.cpu == "x86"
-    end
-    def mswin64?
-      windows? && Bundler.local_platform != Gem::Platform::RUBY && Bundler.local_platform.os == "mswin64" && Bundler.local_platform.cpu == "x64"
-    end
-    def mingw?
-      windows? && Bundler.local_platform != Gem::Platform::RUBY && Bundler.local_platform.os == "mingw32" && Bundler.local_platform.cpu != "x64"
-    end
-    def x64_mingw?
-      Gem.win_platform? && Bundler.local_platform != Gem::Platform::RUBY && Bundler.local_platform.os.start_with?("mingw") && Bundler.local_platform.cpu == "x64"
-    end
+    alias_method :mswin?, :windows?
+    alias_method :mswin64?, :windows?
+    alias_method :mingw?, :windows?
+    alias_method :x64_mingw?, :windows?
     (KNOWN_MINOR_VERSIONS + KNOWN_MAJOR_VERSIONS).each do |version|
       trimmed_version = version.tr(".", "")