RubyGems - rubygems-update - Versions diffs - 3.4.22 → 3.5.0 - Mend

rubygems-update 3.4.22 → 3.5.0

Files changed (528) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +99 -2
data/Manifest.txt +34 -221
data/README.md +1 -3
data/bundler/CHANGELOG.md +53 -0
data/bundler/bundler.gemspec +4 -2
data/bundler/exe/bundle +1 -10
data/bundler/lib/bundler/build_metadata.rb +3 -3
data/bundler/lib/bundler/capistrano.rb +1 -1
data/bundler/lib/bundler/checksum.rb +245 -0
data/bundler/lib/bundler/ci_detector.rb +75 -0
data/bundler/lib/bundler/cli/add.rb +3 -3
data/bundler/lib/bundler/cli/binstubs.rb +4 -4
data/bundler/lib/bundler/cli/cache.rb +1 -1
data/bundler/lib/bundler/cli/check.rb +1 -1
data/bundler/lib/bundler/cli/common.rb +9 -1
data/bundler/lib/bundler/cli/config.rb +8 -7
data/bundler/lib/bundler/cli/console.rb +3 -2
data/bundler/lib/bundler/cli/doctor.rb +2 -2
data/bundler/lib/bundler/cli/exec.rb +1 -1
data/bundler/lib/bundler/cli/gem.rb +28 -23
data/bundler/lib/bundler/cli/info.rb +2 -13
data/bundler/lib/bundler/cli/install.rb +5 -4
data/bundler/lib/bundler/cli/issue.rb +1 -1
data/bundler/lib/bundler/cli/lock.rb +4 -4
data/bundler/lib/bundler/cli/open.rb +1 -1
data/bundler/lib/bundler/cli/outdated.rb +6 -6
data/bundler/lib/bundler/cli/plugin.rb +7 -14
data/bundler/lib/bundler/cli/pristine.rb +38 -30
data/bundler/lib/bundler/cli/show.rb +2 -2
data/bundler/lib/bundler/cli/update.rb +5 -5
data/bundler/lib/bundler/cli.rb +215 -263
data/bundler/lib/bundler/compact_index_client/cache.rb +29 -9
data/bundler/lib/bundler/compact_index_client/cache_file.rb +153 -0
data/bundler/lib/bundler/compact_index_client/gem_parser.rb +7 -3
data/bundler/lib/bundler/compact_index_client/updater.rb +79 -81
data/bundler/lib/bundler/compact_index_client.rb +14 -7
data/bundler/lib/bundler/constants.rb +1 -1
data/bundler/lib/bundler/current_ruby.rb +5 -21
data/bundler/lib/bundler/definition.rb +42 -15
data/bundler/lib/bundler/dependency.rb +16 -12
data/bundler/lib/bundler/digest.rb +2 -2
data/bundler/lib/bundler/dsl.rb +43 -25
data/bundler/lib/bundler/endpoint_specification.rb +5 -1
data/bundler/lib/bundler/env.rb +1 -3
data/bundler/lib/bundler/errors.rb +43 -0
data/bundler/lib/bundler/fetcher/base.rb +3 -1
data/bundler/lib/bundler/fetcher/compact_index.rb +4 -4
data/bundler/lib/bundler/fetcher/downloader.rb +13 -11
data/bundler/lib/bundler/fetcher/gem_remote_fetcher.rb +16 -0
data/bundler/lib/bundler/fetcher/index.rb +1 -1
data/bundler/lib/bundler/fetcher.rb +28 -25
data/bundler/lib/bundler/friendly_errors.rb +5 -5
data/bundler/lib/bundler/gem_helper.rb +1 -1
data/bundler/lib/bundler/gem_helpers.rb +5 -2
data/bundler/lib/bundler/graph.rb +9 -9
data/bundler/lib/bundler/index.rb +1 -2
data/bundler/lib/bundler/injector.rb +1 -1
data/bundler/lib/bundler/inline.rb +3 -3
data/bundler/lib/bundler/installer/gem_installer.rb +5 -5
data/bundler/lib/bundler/installer/parallel_installer.rb +16 -8
data/bundler/lib/bundler/installer/standalone.rb +2 -3
data/bundler/lib/bundler/installer.rb +9 -9
data/bundler/lib/bundler/lazy_specification.rb +24 -17
data/bundler/lib/bundler/lockfile_generator.rb +9 -0
data/bundler/lib/bundler/lockfile_parser.rb +81 -10
data/bundler/lib/bundler/man/bundle-add.1 +3 -26
data/bundler/lib/bundler/man/bundle-binstubs.1 +4 -16
data/bundler/lib/bundler/man/bundle-cache.1 +3 -24
data/bundler/lib/bundler/man/bundle-check.1 +3 -12
data/bundler/lib/bundler/man/bundle-clean.1 +3 -10
data/bundler/lib/bundler/man/bundle-config.1 +20 -211
data/bundler/lib/bundler/man/bundle-config.1.ronn +6 -0
data/bundler/lib/bundler/man/bundle-console.1 +4 -22
data/bundler/lib/bundler/man/bundle-doctor.1 +4 -18
data/bundler/lib/bundler/man/bundle-exec.1 +12 -73
data/bundler/lib/bundler/man/bundle-gem.1 +13 -49
data/bundler/lib/bundler/man/bundle-help.1 +3 -7
data/bundler/lib/bundler/man/bundle-info.1 +3 -9
data/bundler/lib/bundler/man/bundle-init.1 +3 -12
data/bundler/lib/bundler/man/bundle-inject.1 +6 -19
data/bundler/lib/bundler/man/bundle-install.1 +27 -125
data/bundler/lib/bundler/man/bundle-install.1.ronn +1 -0
data/bundler/lib/bundler/man/bundle-list.1 +4 -19
data/bundler/lib/bundler/man/bundle-lock.1 +5 -29
data/bundler/lib/bundler/man/bundle-open.1 +7 -27
data/bundler/lib/bundler/man/bundle-outdated.1 +3 -55
data/bundler/lib/bundler/man/bundle-outdated.1.ronn +1 -0
data/bundler/lib/bundler/man/bundle-platform.1 +5 -27
data/bundler/lib/bundler/man/bundle-plugin.1 +3 -29
data/bundler/lib/bundler/man/bundle-pristine.1 +5 -16
data/bundler/lib/bundler/man/bundle-remove.1 +4 -14
data/bundler/lib/bundler/man/bundle-show.1 +3 -10
data/bundler/lib/bundler/man/bundle-update.1 +18 -137
data/bundler/lib/bundler/man/bundle-version.1 +3 -16
data/bundler/lib/bundler/man/bundle-viz.1 +4 -16
data/bundler/lib/bundler/man/bundle.1 +5 -44
data/bundler/lib/bundler/man/gemfile.5 +24 -301
data/bundler/lib/bundler/man/gemfile.5.ronn +4 -0
data/bundler/lib/bundler/match_metadata.rb +4 -0
data/bundler/lib/bundler/match_platform.rb +1 -1
data/bundler/lib/bundler/plugin/api/source.rb +3 -2
data/bundler/lib/bundler/plugin/installer.rb +1 -1
data/bundler/lib/bundler/plugin.rb +3 -3
data/bundler/lib/bundler/resolver/base.rb +1 -1
data/bundler/lib/bundler/resolver/incompatibility.rb +1 -1
data/bundler/lib/bundler/resolver/spec_group.rb +1 -4
data/bundler/lib/bundler/resolver.rb +16 -16
data/bundler/lib/bundler/ruby_dsl.rb +20 -12
data/bundler/lib/bundler/ruby_version.rb +1 -1
data/bundler/lib/bundler/rubygems_ext.rb +24 -50
data/bundler/lib/bundler/rubygems_gem_installer.rb +6 -56
data/bundler/lib/bundler/rubygems_integration.rb +25 -94
data/bundler/lib/bundler/runtime.rb +2 -2
data/bundler/lib/bundler/self_manager.rb +23 -7
data/bundler/lib/bundler/settings.rb +27 -7
data/bundler/lib/bundler/setup.rb +4 -1
data/bundler/lib/bundler/shared_helpers.rb +35 -13
data/bundler/lib/bundler/source/git/git_proxy.rb +15 -15
data/bundler/lib/bundler/source/git.rb +4 -3
data/bundler/lib/bundler/source/metadata.rb +15 -15
data/bundler/lib/bundler/source/path.rb +7 -6
data/bundler/lib/bundler/source/rubygems.rb +21 -14
data/bundler/lib/bundler/source.rb +2 -0
data/bundler/lib/bundler/spec_set.rb +38 -10
data/bundler/lib/bundler/stub_specification.rb +1 -0
data/bundler/lib/bundler/templates/Executable.bundler +1 -1
data/bundler/lib/bundler/templates/newgem/README.md.tt +3 -3
data/bundler/lib/bundler/templates/newgem/Rakefile.tt +2 -6
data/bundler/lib/bundler/templates/newgem/ext/newgem/Cargo.toml.tt +1 -1
data/bundler/lib/bundler/templates/newgem/standard.yml.tt +1 -1
data/bundler/lib/bundler/ui/shell.rb +1 -1
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool/version.rb +1 -1
data/bundler/lib/bundler/vendor/connection_pool/lib/connection_pool.rb +53 -6
data/bundler/lib/bundler/vendor/fileutils/lib/fileutils.rb +8 -20
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/connection.rb +3 -3
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/pool.rb +2 -2
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent/timed_stack_multi.rb +1 -1
data/bundler/lib/bundler/vendor/net-http-persistent/lib/net/http/persistent.rb +35 -35
data/bundler/lib/bundler/vendor/tsort/lib/tsort.rb +3 -0
data/bundler/lib/bundler/vendor/uri/lib/uri/common.rb +256 -132
data/bundler/lib/bundler/vendor/uri/lib/uri/generic.rb +1 -0
data/bundler/lib/bundler/vendor/uri/lib/uri/rfc3986_parser.rb +95 -31
data/bundler/lib/bundler/vendor/uri/lib/uri/version.rb +1 -1
data/bundler/lib/bundler/vendored_net_http.rb +8 -0
data/bundler/lib/bundler/vendored_persistent.rb +0 -4
data/bundler/lib/bundler/vendored_timeout.rb +8 -0
data/bundler/lib/bundler/version.rb +1 -1
data/bundler/lib/bundler/vlad.rb +1 -1
data/bundler/lib/bundler/yaml_serializer.rb +3 -3
data/bundler/lib/bundler.rb +38 -27
data/lib/rubygems/available_set.rb +4 -4
data/lib/rubygems/basic_specification.rb +35 -37
data/lib/rubygems/bundler_version_finder.rb +4 -4
data/lib/rubygems/ci_detector.rb +75 -0
data/lib/rubygems/command.rb +13 -15
data/lib/rubygems/command_manager.rb +5 -4
data/lib/rubygems/commands/build_command.rb +2 -2
data/lib/rubygems/commands/cert_command.rb +1 -2
data/lib/rubygems/commands/check_command.rb +4 -4
data/lib/rubygems/commands/cleanup_command.rb +12 -14
data/lib/rubygems/commands/contents_command.rb +4 -4
data/lib/rubygems/commands/dependency_command.rb +4 -5
data/lib/rubygems/commands/environment_command.rb +1 -3
data/lib/rubygems/commands/exec_command.rb +1 -1
data/lib/rubygems/commands/fetch_command.rb +2 -2
data/lib/rubygems/commands/generate_index_command.rb +39 -74
data/lib/rubygems/commands/help_command.rb +3 -3
data/lib/rubygems/commands/info_command.rb +2 -2
data/lib/rubygems/commands/install_command.rb +8 -16
data/lib/rubygems/commands/list_command.rb +2 -2
data/lib/rubygems/commands/lock_command.rb +1 -1
data/lib/rubygems/commands/open_command.rb +1 -1
data/lib/rubygems/commands/owner_command.rb +1 -1
data/lib/rubygems/commands/pristine_command.rb +13 -15
data/lib/rubygems/commands/push_command.rb +2 -2
data/lib/rubygems/commands/query_command.rb +4 -5
data/lib/rubygems/commands/rdoc_command.rb +2 -2
data/lib/rubygems/commands/search_command.rb +2 -2
data/lib/rubygems/commands/setup_command.rb +31 -34
data/lib/rubygems/commands/sources_command.rb +12 -12
data/lib/rubygems/commands/specification_command.rb +10 -10
data/lib/rubygems/commands/stale_command.rb +1 -1
data/lib/rubygems/commands/uninstall_command.rb +9 -10
data/lib/rubygems/commands/unpack_command.rb +4 -4
data/lib/rubygems/commands/update_command.rb +10 -12
data/lib/rubygems/commands/which_command.rb +1 -1
data/lib/rubygems/commands/yank_command.rb +1 -1
data/lib/rubygems/compatibility.rb +5 -6
data/lib/rubygems/config_file.rb +4 -4
data/lib/rubygems/core_ext/kernel_gem.rb +0 -2
data/lib/rubygems/core_ext/kernel_require.rb +19 -48
data/lib/rubygems/core_ext/kernel_warn.rb +1 -1
data/lib/rubygems/core_ext/tcpsocket_init.rb +1 -1
data/lib/rubygems/defaults.rb +15 -3
data/lib/rubygems/dependency.rb +12 -14
data/lib/rubygems/dependency_installer.rb +29 -30
data/lib/rubygems/dependency_list.rb +1 -1
data/lib/rubygems/deprecate.rb +16 -15
data/lib/rubygems/doctor.rb +5 -5
data/lib/rubygems/errors.rb +2 -6
data/lib/rubygems/exceptions.rb +2 -1
data/lib/rubygems/ext/builder.rb +15 -10
data/lib/rubygems/ext/cargo_builder.rb +5 -5
data/lib/rubygems/ext/ext_conf_builder.rb +1 -3
data/lib/rubygems/gem_runner.rb +4 -4
data/lib/rubygems/gemcutter_utilities/webauthn_listener/response.rb +3 -3
data/lib/rubygems/gemcutter_utilities/webauthn_poller.rb +3 -3
data/lib/rubygems/gemcutter_utilities.rb +18 -19
data/lib/rubygems/install_update_options.rb +18 -19
data/lib/rubygems/installer.rb +59 -33
data/lib/rubygems/installer_uninstaller_utils.rb +0 -2
data/lib/rubygems/local_remote_options.rb +7 -10
data/lib/rubygems/name_tuple.rb +7 -9
data/lib/rubygems/net/http.rb +3 -0
data/lib/rubygems/net-http/LICENSE.txt +22 -0
data/lib/rubygems/net-http/lib/net/http/backward.rb +40 -0
data/lib/rubygems/net-http/lib/net/http/exceptions.rb +34 -0
data/lib/rubygems/net-http/lib/net/http/generic_request.rb +414 -0
data/lib/rubygems/net-http/lib/net/http/header.rb +981 -0
data/lib/rubygems/net-http/lib/net/http/proxy_delta.rb +17 -0
data/lib/rubygems/net-http/lib/net/http/request.rb +88 -0
data/lib/rubygems/net-http/lib/net/http/requests.rb +425 -0
data/lib/rubygems/net-http/lib/net/http/response.rb +738 -0
data/lib/rubygems/net-http/lib/net/http/responses.rb +1174 -0
data/lib/rubygems/net-http/lib/net/http/status.rb +84 -0
data/lib/rubygems/net-http/lib/net/http.rb +2496 -0
data/lib/rubygems/net-http/lib/net/https.rb +23 -0
data/lib/rubygems/net-protocol/LICENSE.txt +22 -0
data/lib/rubygems/net-protocol/lib/net/protocol.rb +544 -0
data/lib/rubygems/optparse/lib/optparse.rb +39 -17
data/lib/rubygems/package/old.rb +2 -2
data/lib/rubygems/package/tar_header.rb +45 -39
data/lib/rubygems/package/tar_reader/entry.rb +5 -4
data/lib/rubygems/package/tar_reader.rb +5 -3
data/lib/rubygems/package/tar_writer.rb +19 -17
data/lib/rubygems/package.rb +27 -26
data/lib/rubygems/package_task.rb +2 -2
data/lib/rubygems/path_support.rb +9 -10
data/lib/rubygems/platform.rb +60 -45
data/lib/rubygems/query_utils.rb +7 -9
data/lib/rubygems/remote_fetcher.rb +15 -15
data/lib/rubygems/request/connection_pools.rb +3 -3
data/lib/rubygems/request.rb +20 -17
data/lib/rubygems/request_set/gem_dependency_api.rb +119 -122
data/lib/rubygems/request_set/lockfile/parser.rb +9 -9
data/lib/rubygems/request_set/lockfile/tokenizer.rb +20 -12
data/lib/rubygems/request_set/lockfile.rb +6 -11
data/lib/rubygems/request_set.rb +5 -5
data/lib/rubygems/requirement.rb +7 -7
data/lib/rubygems/resolv/LICENSE.txt +22 -0
data/lib/rubygems/resolv/lib/resolv.rb +3387 -0
data/lib/rubygems/resolver/activation_request.rb +1 -3
data/lib/rubygems/resolver/api_set/gem_parser.rb +7 -3
data/lib/rubygems/resolver/best_set.rb +1 -1
data/lib/rubygems/resolver/composed_set.rb +1 -1
data/lib/rubygems/resolver/conflict.rb +4 -12
data/lib/rubygems/resolver/index_set.rb +4 -4
data/lib/rubygems/resolver/index_specification.rb +2 -2
data/lib/rubygems/resolver/installer_set.rb +5 -6
data/lib/rubygems/resolver/lock_set.rb +1 -1
data/lib/rubygems/resolver.rb +3 -10
data/lib/rubygems/s3_uri_signer.rb +6 -6
data/lib/rubygems/safe_marshal/elements.rb +138 -0
data/lib/rubygems/safe_marshal/reader.rb +306 -0
data/lib/rubygems/safe_marshal/visitors/stream_printer.rb +31 -0
data/lib/rubygems/safe_marshal/visitors/to_ruby.rb +385 -0
data/lib/rubygems/safe_marshal/visitors/visitor.rb +74 -0
data/lib/rubygems/safe_marshal.rb +74 -0
data/lib/rubygems/safe_yaml.rb +5 -28
data/lib/rubygems/security/policies.rb +36 -38
data/lib/rubygems/security/policy.rb +7 -11
data/lib/rubygems/security/signer.rb +1 -1
data/lib/rubygems/security/trust_dir.rb +3 -3
data/lib/rubygems/security.rb +8 -22
data/lib/rubygems/source/git.rb +1 -3
data/lib/rubygems/source/installed.rb +0 -2
data/lib/rubygems/source/local.rb +5 -8
data/lib/rubygems/source/lock.rb +1 -3
data/lib/rubygems/source/specific_file.rb +0 -1
data/lib/rubygems/source/vendor.rb +0 -2
data/lib/rubygems/source.rb +12 -12
data/lib/rubygems/source_list.rb +4 -4
data/lib/rubygems/spec_fetcher.rb +29 -29
data/lib/rubygems/specification.rb +125 -138
data/lib/rubygems/specification_policy.rb +55 -25
data/lib/rubygems/stub_specification.rb +4 -5
data/lib/rubygems/text.rb +1 -2
data/lib/rubygems/timeout/LICENSE.txt +22 -0
data/lib/rubygems/timeout/lib/timeout.rb +199 -0
data/lib/rubygems/timeout.rb +3 -0
data/lib/rubygems/tsort/lib/tsort.rb +3 -0
data/lib/rubygems/uninstaller.rb +7 -9
data/lib/rubygems/update_suggestion.rb +5 -18
data/lib/rubygems/uri_formatter.rb +1 -1
data/lib/rubygems/user_interaction.rb +15 -21
data/lib/rubygems/util/licenses.rb +65 -35
data/lib/rubygems/util/list.rb +3 -1
data/lib/rubygems/util.rb +2 -4
data/lib/rubygems/validator.rb +5 -3
data/lib/rubygems/version.rb +34 -28
data/lib/rubygems/version_option.rb +2 -5
data/lib/rubygems/yaml_serializer.rb +3 -3
data/lib/rubygems.rb +37 -37
data/rubygems-update.gemspec +4 -4
data/setup.rb +2 -2
metadata +38 -225
data/lib/rubygems/indexer.rb +0 -428
data/lib/rubygems/mock_gem_ui.rb +0 -86
data/test/rubygems/alternate_cert.pem +0 -19
data/test/rubygems/alternate_cert_32.pem +0 -19
data/test/rubygems/alternate_key.pem +0 -27
data/test/rubygems/bad_rake.rb +0 -3
data/test/rubygems/bundler_test_gem.rb +0 -424
data/test/rubygems/ca_cert.pem +0 -77
data/test/rubygems/child_cert.pem +0 -19
data/test/rubygems/child_cert_32.pem +0 -19
data/test/rubygems/child_key.pem +0 -27
data/test/rubygems/client.pem +0 -107
data/test/rubygems/data/excon-0.7.7.gemspec.rz +0 -0
data/test/rubygems/data/gem-private_key.pem +0 -27
data/test/rubygems/data/gem-public_cert.pem +0 -20
data/test/rubygems/data/null-required-ruby-version.gemspec.rz +0 -0
data/test/rubygems/data/null-required-rubygems-version.gemspec.rz +0 -0
data/test/rubygems/data/pry-0.4.7.gemspec.rz +0 -0
data/test/rubygems/encrypted_private_key.pem +0 -30
data/test/rubygems/expired_cert.pem +0 -19
data/test/rubygems/fake_certlib/openssl.rb +0 -9
data/test/rubygems/foo/discover.rb +0 -1
data/test/rubygems/future_cert.pem +0 -19
data/test/rubygems/future_cert_32.pem +0 -19
data/test/rubygems/good_rake.rb +0 -3
data/test/rubygems/grandchild_cert.pem +0 -19
data/test/rubygems/grandchild_cert_32.pem +0 -19
data/test/rubygems/grandchild_key.pem +0 -27
data/test/rubygems/helper.rb +0 -1649
data/test/rubygems/installer_test_case.rb +0 -248
data/test/rubygems/invalid_client.pem +0 -49
data/test/rubygems/invalid_issuer_cert.pem +0 -20
data/test/rubygems/invalid_issuer_cert_32.pem +0 -20
data/test/rubygems/invalid_key.pem +0 -27
data/test/rubygems/invalid_signer_cert.pem +0 -19
data/test/rubygems/invalid_signer_cert_32.pem +0 -19
data/test/rubygems/invalidchild_cert.pem +0 -19
data/test/rubygems/invalidchild_cert_32.pem +0 -19
data/test/rubygems/invalidchild_key.pem +0 -27
data/test/rubygems/multifactor_auth_utilities.rb +0 -111
data/test/rubygems/package/tar_test_case.rb +0 -175
data/test/rubygems/packages/Bluebie-legs-0.6.2.gem +0 -0
data/test/rubygems/packages/ascii_binder-0.1.10.1.gem +0 -0
data/test/rubygems/packages/ill-formatted-platform-1.0.0.10.gem +0 -0
data/test/rubygems/plugin/exception/rubygems_plugin.rb +0 -4
data/test/rubygems/plugin/load/rubygems_plugin.rb +0 -5
data/test/rubygems/plugin/standarderror/rubygems_plugin.rb +0 -4
data/test/rubygems/private3072_key.pem +0 -40
data/test/rubygems/private_ec_key.pem +0 -9
data/test/rubygems/private_key.pem +0 -27
data/test/rubygems/public3072_cert.pem +0 -25
data/test/rubygems/public_cert.pem +0 -20
data/test/rubygems/public_cert_32.pem +0 -19
data/test/rubygems/public_key.pem +0 -9
data/test/rubygems/rubygems/commands/crash_command.rb +0 -5
data/test/rubygems/rubygems_plugin.rb +0 -24
data/test/rubygems/sff/discover.rb +0 -1
data/test/rubygems/simple_gem.rb +0 -68
data/test/rubygems/specifications/bar-0.0.2.gemspec +0 -9
data/test/rubygems/specifications/foo-0.0.1-x86-mswin32.gemspec +0 -0
data/test/rubygems/specifications/rubyforge-0.0.1.gemspec +0 -14
data/test/rubygems/ssl_cert.pem +0 -80
data/test/rubygems/ssl_key.pem +0 -27
data/test/rubygems/test_bundled_ca.rb +0 -61
data/test/rubygems/test_config.rb +0 -28
data/test/rubygems/test_deprecate.rb +0 -158
data/test/rubygems/test_exit.rb +0 -17
data/test/rubygems/test_gem.rb +0 -1799
data/test/rubygems/test_gem_available_set.rb +0 -130
data/test/rubygems/test_gem_bundler_version_finder.rb +0 -127
data/test/rubygems/test_gem_command.rb +0 -403
data/test/rubygems/test_gem_command_manager.rb +0 -400
data/test/rubygems/test_gem_commands_build_command.rb +0 -739
data/test/rubygems/test_gem_commands_cert_command.rb +0 -866
data/test/rubygems/test_gem_commands_check_command.rb +0 -68
data/test/rubygems/test_gem_commands_cleanup_command.rb +0 -292
data/test/rubygems/test_gem_commands_contents_command.rb +0 -271
data/test/rubygems/test_gem_commands_dependency_command.rb +0 -228
data/test/rubygems/test_gem_commands_environment_command.rb +0 -169
data/test/rubygems/test_gem_commands_exec_command.rb +0 -857
data/test/rubygems/test_gem_commands_fetch_command.rb +0 -258
data/test/rubygems/test_gem_commands_generate_index_command.rb +0 -81
data/test/rubygems/test_gem_commands_help_command.rb +0 -94
data/test/rubygems/test_gem_commands_info_command.rb +0 -70
data/test/rubygems/test_gem_commands_install_command.rb +0 -1573
data/test/rubygems/test_gem_commands_list_command.rb +0 -33
data/test/rubygems/test_gem_commands_lock_command.rb +0 -67
data/test/rubygems/test_gem_commands_mirror.rb +0 -20
data/test/rubygems/test_gem_commands_open_command.rb +0 -101
data/test/rubygems/test_gem_commands_outdated_command.rb +0 -50
data/test/rubygems/test_gem_commands_owner_command.rb +0 -503
data/test/rubygems/test_gem_commands_pristine_command.rb +0 -708
data/test/rubygems/test_gem_commands_push_command.rb +0 -603
data/test/rubygems/test_gem_commands_query_command.rb +0 -858
data/test/rubygems/test_gem_commands_search_command.rb +0 -16
data/test/rubygems/test_gem_commands_server_command.rb +0 -20
data/test/rubygems/test_gem_commands_setup_command.rb +0 -474
data/test/rubygems/test_gem_commands_signin_command.rb +0 -259
data/test/rubygems/test_gem_commands_signout_command.rb +0 -30
data/test/rubygems/test_gem_commands_sources_command.rb +0 -534
data/test/rubygems/test_gem_commands_specification_command.rb +0 -277
data/test/rubygems/test_gem_commands_stale_command.rb +0 -43
data/test/rubygems/test_gem_commands_uninstall_command.rb +0 -542
data/test/rubygems/test_gem_commands_unpack_command.rb +0 -224
data/test/rubygems/test_gem_commands_update_command.rb +0 -836
data/test/rubygems/test_gem_commands_which_command.rb +0 -85
data/test/rubygems/test_gem_commands_yank_command.rb +0 -299
data/test/rubygems/test_gem_config_file.rb +0 -551
data/test/rubygems/test_gem_dependency.rb +0 -398
data/test/rubygems/test_gem_dependency_installer.rb +0 -1190
data/test/rubygems/test_gem_dependency_list.rb +0 -265
data/test/rubygems/test_gem_dependency_resolution_error.rb +0 -27
data/test/rubygems/test_gem_doctor.rb +0 -195
data/test/rubygems/test_gem_ext_builder.rb +0 -337
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/.gitignore +0 -1
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/custom_name.gemspec +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/ext/custom_name_lib/Cargo.lock +0 -249
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/ext/custom_name_lib/Cargo.toml +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/ext/custom_name_lib/src/lib.rs +0 -27
data/test/rubygems/test_gem_ext_cargo_builder/custom_name/lib/custom_name.rb +0 -3
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/.gitignore +0 -1
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.lock +0 -249
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/Cargo.toml +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/rust_ruby_example.gemspec +0 -10
data/test/rubygems/test_gem_ext_cargo_builder/rust_ruby_example/src/lib.rs +0 -51
data/test/rubygems/test_gem_ext_cargo_builder.rb +0 -167
data/test/rubygems/test_gem_ext_cargo_builder_link_flag_converter.rb +0 -34
data/test/rubygems/test_gem_ext_cargo_builder_unit.rb +0 -60
data/test/rubygems/test_gem_ext_cmake_builder.rb +0 -84
data/test/rubygems/test_gem_ext_configure_builder.rb +0 -80
data/test/rubygems/test_gem_ext_ext_conf_builder.rb +0 -229
data/test/rubygems/test_gem_ext_rake_builder.rb +0 -113
data/test/rubygems/test_gem_gem_runner.rb +0 -119
data/test/rubygems/test_gem_gemcutter_utilities.rb +0 -361
data/test/rubygems/test_gem_impossible_dependencies_error.rb +0 -60
data/test/rubygems/test_gem_indexer.rb +0 -381
data/test/rubygems/test_gem_install_update_options.rb +0 -208
data/test/rubygems/test_gem_installer.rb +0 -2512
data/test/rubygems/test_gem_local_remote_options.rb +0 -133
data/test/rubygems/test_gem_name_tuple.rb +0 -43
data/test/rubygems/test_gem_package.rb +0 -1306
data/test/rubygems/test_gem_package_old.rb +0 -91
data/test/rubygems/test_gem_package_tar_header.rb +0 -226
data/test/rubygems/test_gem_package_tar_reader.rb +0 -150
data/test/rubygems/test_gem_package_tar_reader_entry.rb +0 -350
data/test/rubygems/test_gem_package_tar_writer.rb +0 -331
data/test/rubygems/test_gem_package_task.rb +0 -118
data/test/rubygems/test_gem_path_support.rb +0 -139
data/test/rubygems/test_gem_platform.rb +0 -497
data/test/rubygems/test_gem_rdoc.rb +0 -137
data/test/rubygems/test_gem_remote_fetcher.rb +0 -1227
data/test/rubygems/test_gem_request.rb +0 -547
data/test/rubygems/test_gem_request_connection_pools.rb +0 -152
data/test/rubygems/test_gem_request_set.rb +0 -672
data/test/rubygems/test_gem_request_set_gem_dependency_api.rb +0 -853
data/test/rubygems/test_gem_request_set_lockfile.rb +0 -469
data/test/rubygems/test_gem_request_set_lockfile_parser.rb +0 -544
data/test/rubygems/test_gem_request_set_lockfile_tokenizer.rb +0 -307
data/test/rubygems/test_gem_requirement.rb +0 -505
data/test/rubygems/test_gem_resolver.rb +0 -859
data/test/rubygems/test_gem_resolver_activation_request.rb +0 -43
data/test/rubygems/test_gem_resolver_api_set.rb +0 -210
data/test/rubygems/test_gem_resolver_api_specification.rb +0 -167
data/test/rubygems/test_gem_resolver_best_set.rb +0 -159
data/test/rubygems/test_gem_resolver_composed_set.rb +0 -44
data/test/rubygems/test_gem_resolver_conflict.rb +0 -82
data/test/rubygems/test_gem_resolver_dependency_request.rb +0 -83
data/test/rubygems/test_gem_resolver_git_set.rb +0 -188
data/test/rubygems/test_gem_resolver_git_specification.rb +0 -114
data/test/rubygems/test_gem_resolver_index_set.rb +0 -88
data/test/rubygems/test_gem_resolver_index_specification.rb +0 -93
data/test/rubygems/test_gem_resolver_installed_specification.rb +0 -47
data/test/rubygems/test_gem_resolver_installer_set.rb +0 -320
data/test/rubygems/test_gem_resolver_local_specification.rb +0 -44
data/test/rubygems/test_gem_resolver_lock_set.rb +0 -62
data/test/rubygems/test_gem_resolver_lock_specification.rb +0 -98
data/test/rubygems/test_gem_resolver_requirement_list.rb +0 -19
data/test/rubygems/test_gem_resolver_specification.rb +0 -63
data/test/rubygems/test_gem_resolver_vendor_set.rb +0 -82
data/test/rubygems/test_gem_resolver_vendor_specification.rb +0 -82
data/test/rubygems/test_gem_security.rb +0 -341
data/test/rubygems/test_gem_security_policy.rb +0 -535
data/test/rubygems/test_gem_security_signer.rb +0 -218
data/test/rubygems/test_gem_security_trust_dir.rb +0 -99
data/test/rubygems/test_gem_silent_ui.rb +0 -123
data/test/rubygems/test_gem_source.rb +0 -254
data/test/rubygems/test_gem_source_fetch_problem.rb +0 -37
data/test/rubygems/test_gem_source_git.rb +0 -310
data/test/rubygems/test_gem_source_installed.rb +0 -35
data/test/rubygems/test_gem_source_list.rb +0 -119
data/test/rubygems/test_gem_source_local.rb +0 -107
data/test/rubygems/test_gem_source_lock.rb +0 -113
data/test/rubygems/test_gem_source_specific_file.rb +0 -76
data/test/rubygems/test_gem_source_subpath_problem.rb +0 -50
data/test/rubygems/test_gem_source_vendor.rb +0 -30
data/test/rubygems/test_gem_spec_fetcher.rb +0 -338
data/test/rubygems/test_gem_specification.rb +0 -3856
data/test/rubygems/test_gem_stream_ui.rb +0 -255
data/test/rubygems/test_gem_stub_specification.rb +0 -278
data/test/rubygems/test_gem_text.rb +0 -103
data/test/rubygems/test_gem_uninstaller.rb +0 -675
data/test/rubygems/test_gem_unsatisfiable_dependency_error.rb +0 -31
data/test/rubygems/test_gem_update_suggestion.rb +0 -209
data/test/rubygems/test_gem_uri.rb +0 -41
data/test/rubygems/test_gem_uri_formatter.rb +0 -27
data/test/rubygems/test_gem_util.rb +0 -91
data/test/rubygems/test_gem_validator.rb +0 -42
data/test/rubygems/test_gem_version.rb +0 -305
data/test/rubygems/test_gem_version_option.rb +0 -165
data/test/rubygems/test_kernel.rb +0 -124
data/test/rubygems/test_project_sanity.rb +0 -49
data/test/rubygems/test_remote_fetch_error.rb +0 -20
data/test/rubygems/test_require.rb +0 -732
data/test/rubygems/test_rubygems.rb +0 -76
data/test/rubygems/test_webauthn_listener.rb +0 -143
data/test/rubygems/test_webauthn_listener_response.rb +0 -93
data/test/rubygems/test_webauthn_poller.rb +0 -124
data/test/rubygems/utilities.rb +0 -436
data/test/rubygems/wrong_key_cert.pem +0 -19
data/test/rubygems/wrong_key_cert_32.pem +0 -19
data/test/test_changelog_generator.rb +0 -17

data/bundler/lib/bundler/compact_index_client/cache.rb CHANGED Viewed

@@ -9,11 +9,8 @@ module Bundler
       def initialize(directory)
         @directory = Pathname.new(directory).expand_path
-        info_roots.each do |dir|
-          SharedHelpers.filesystem_access(dir) do
-            FileUtils.mkdir_p(dir)
-          end
-        end
+        info_roots.each {|dir| mkdir(dir) }
+        mkdir(info_etag_root)
       end
       def names
@@ -24,6 +21,10 @@ module Bundler
         directory.join("names")
       end
+      def names_etag_path
+        directory.join("names.etag")
+      end
       def versions
         versions_by_name = Hash.new {|hash, key| hash[key] = [] }
         info_checksums_by_name = {}
@@ -31,12 +32,12 @@ module Bundler
         lines(versions_path).each do |line|
           name, versions_string, info_checksum = line.split(" ", 3)
           info_checksums_by_name[name] = info_checksum || ""
-          versions_string.split(",").each do |version|
-            if version.start_with?("-")
-              version = version[1..-1].split("-", 2).unshift(name)
+          versions_string.split(",") do |version|
+            delete = version.delete_prefix!("-")
+            version = version.split("-", 2).unshift(name)
+            if delete
               versions_by_name[name].delete(version)
             else
-              version = version.split("-", 2).unshift(name)
               versions_by_name[name] << version
             end
           end
@@ -49,6 +50,10 @@ module Bundler
         directory.join("versions")
       end
+      def versions_etag_path
+        directory.join("versions.etag")
+      end
       def checksums
         checksums = {}
@@ -76,8 +81,19 @@ module Bundler
         end
       end
+      def info_etag_path(name)
+        name = name.to_s
+        info_etag_root.join("#{name}-#{SharedHelpers.digest(:MD5).hexdigest(name).downcase}")
+      end
       private
+      def mkdir(dir)
+        SharedHelpers.filesystem_access(dir) do
+          FileUtils.mkdir_p(dir)
+        end
+      end
       def lines(path)
         return [] unless path.file?
         lines = SharedHelpers.filesystem_access(path, :read, &:read).split("\n")
@@ -96,6 +112,10 @@ module Bundler
           directory.join("info-special-characters"),
         ]
       end
+      def info_etag_root
+        directory.join("info-etags")
+      end
     end
   end
 end

data/bundler/lib/bundler/compact_index_client/cache_file.rb ADDED Viewed

@@ -0,0 +1,153 @@
+# frozen_string_literal: true
+require_relative "../vendored_fileutils"
+require "rubygems/package"
+module Bundler
+  class CompactIndexClient
+    # write cache files in a way that is robust to concurrent modifications
+    # if digests are given, the checksums will be verified
+    class CacheFile
+      DEFAULT_FILE_MODE = 0o644
+      private_constant :DEFAULT_FILE_MODE
+      class Error < RuntimeError; end
+      class ClosedError < Error; end
+      class DigestMismatchError < Error
+        def initialize(digests, expected_digests)
+          super "Calculated checksums #{digests.inspect} did not match expected #{expected_digests.inspect}."
+        end
+      end
+      # Initialize with a copy of the original file, then yield the instance.
+      def self.copy(path, &block)
+        new(path) do |file|
+          file.initialize_digests
+          SharedHelpers.filesystem_access(path, :read) do
+            path.open("rb") do |s|
+              file.open {|f| IO.copy_stream(s, f) }
+            end
+          end
+          yield file
+        end
+      end
+      # Write data to a temp file, then replace the original file with it verifying the digests if given.
+      def self.write(path, data, digests = nil)
+        return unless data
+        new(path) do |file|
+          file.digests = digests
+          file.write(data)
+        end
+      end
+      attr_reader :original_path, :path
+      def initialize(original_path, &block)
+        @original_path = original_path
+        @perm = original_path.file? ? original_path.stat.mode : DEFAULT_FILE_MODE
+        @path = original_path.sub(/$/, ".#{$$}.tmp")
+        return unless block_given?
+        begin
+          yield self
+        ensure
+          close
+        end
+      end
+      def size
+        path.size
+      end
+      # initialize the digests using CompactIndexClient::SUPPORTED_DIGESTS, or a subset based on keys.
+      def initialize_digests(keys = nil)
+        @digests = keys ? SUPPORTED_DIGESTS.slice(*keys) : SUPPORTED_DIGESTS.dup
+        @digests.transform_values! {|algo_class| SharedHelpers.digest(algo_class).new }
+      end
+      # reset the digests so they don't contain any previously read data
+      def reset_digests
+        @digests&.each_value(&:reset)
+      end
+      # set the digests that will be verified at the end
+      def digests=(expected_digests)
+        @expected_digests = expected_digests
+        if @expected_digests.nil?
+          @digests = nil
+        elsif @digests
+          @digests = @digests.slice(*@expected_digests.keys)
+        else
+          initialize_digests(@expected_digests.keys)
+        end
+      end
+      # remove this method when we stop generating md5 digests for legacy etags
+      def md5
+        @digests && @digests["md5"]
+      end
+      def digests?
+        @digests&.any?
+      end
+      # Open the temp file for writing, reusing original permissions, yielding the IO object.
+      def open(write_mode = "wb", perm = @perm, &block)
+        raise ClosedError, "Cannot reopen closed file" if @closed
+        SharedHelpers.filesystem_access(path, :write) do
+          path.open(write_mode, perm) do |f|
+            yield digests? ? Gem::Package::DigestIO.new(f, @digests) : f
+          end
+        end
+      end
+      # Returns false without appending when no digests since appending is too error prone to do without digests.
+      def append(data)
+        return false unless digests?
+        open("a") {|f| f.write data }
+        verify && commit
+      end
+      def write(data)
+        reset_digests
+        open {|f| f.write data }
+        commit!
+      end
+      def commit!
+        verify || raise(DigestMismatchError.new(@base64digests, @expected_digests))
+        commit
+      end
+      # Verify the digests, returning true on match, false on mismatch.
+      def verify
+        return true unless @expected_digests && digests?
+        @base64digests = @digests.transform_values!(&:base64digest)
+        @digests = nil
+        @base64digests.all? {|algo, digest| @expected_digests[algo] == digest }
+      end
+      # Replace the original file with the temp file without verifying digests.
+      # The file is permanently closed.
+      def commit
+        raise ClosedError, "Cannot commit closed file" if @closed
+        SharedHelpers.filesystem_access(original_path, :write) do
+          FileUtils.mv(path, original_path)
+        end
+        @closed = true
+      end
+      # Remove the temp file without replacing the original file.
+      # The file is permanently closed.
+      def close
+        return if @closed
+        FileUtils.remove_file(path) if @path&.file?
+        @closed = true
+      end
+    end
+  end
+end

data/bundler/lib/bundler/compact_index_client/gem_parser.rb CHANGED Viewed

@@ -6,12 +6,15 @@ module Bundler
       GemParser = Gem::Resolver::APISet::GemParser
     else
       class GemParser
+        EMPTY_ARRAY = [].freeze
+        private_constant :EMPTY_ARRAY
         def parse(line)
           version_and_platform, rest = line.split(" ", 2)
           version, platform = version_and_platform.split("-", 2)
-          dependencies, requirements = rest.split("|", 2).map {|s| s.split(",") } if rest
-          dependencies = dependencies ? dependencies.map {|d| parse_dependency(d) } : []
-          requirements = requirements ? requirements.map {|d| parse_dependency(d) } : []
+          dependencies, requirements = rest.split("|", 2).map! {|s| s.split(",") } if rest
+          dependencies = dependencies ? dependencies.map! {|d| parse_dependency(d) } : EMPTY_ARRAY
+          requirements = requirements ? requirements.map! {|d| parse_dependency(d) } : EMPTY_ARRAY
           [version, platform, dependencies, requirements]
         end
@@ -20,6 +23,7 @@ module Bundler
         def parse_dependency(string)
           dependency = string.split(":")
           dependency[-1] = dependency[-1].split("&") if dependency.size > 1
+          dependency[0] = -dependency[0]
           dependency
         end
       end

data/bundler/lib/bundler/compact_index_client/updater.rb CHANGED Viewed

@@ -1,20 +1,11 @@
 # frozen_string_literal: true
-require_relative "../vendored_fileutils"
 module Bundler
   class CompactIndexClient
     class Updater
-      class MisMatchedChecksumError < Error
-        def initialize(path, server_checksum, local_checksum)
-          @path = path
-          @server_checksum = server_checksum
-          @local_checksum = local_checksum
-        end
-        def message
-          "The checksum of /#{@path} does not match the checksum provided by the server! Something is wrong " \
-            "(local checksum is #{@local_checksum.inspect}, was expecting #{@server_checksum.inspect})."
+      class MismatchedChecksumError < Error
+        def initialize(path, message)
+          super "The checksum of /#{path} does not match the checksum provided by the server! Something is wrong. #{message}"
         end
       end
@@ -22,95 +13,102 @@ module Bundler
         @fetcher = fetcher
       end
-      def update(local_path, remote_path, retrying = nil)
-        headers = {}
-        local_temp_path = local_path.sub(/$/, ".#{$$}")
-        local_temp_path = local_temp_path.sub(/$/, ".retrying") if retrying
-        local_temp_path = local_temp_path.sub(/$/, ".tmp")
-        # first try to fetch any new bytes on the existing file
-        if retrying.nil? && local_path.file?
-          copy_file local_path, local_temp_path
+      def update(remote_path, local_path, etag_path)
+        append(remote_path, local_path, etag_path) || replace(remote_path, local_path, etag_path)
+      rescue CacheFile::DigestMismatchError => e
+        raise MismatchedChecksumError.new(remote_path, e.message)
+      rescue Zlib::GzipFile::Error
+        raise Bundler::HTTPError
+      end
-          headers["If-None-Match"] = etag_for(local_temp_path)
-          headers["Range"] =
-            if local_temp_path.size.nonzero?
-              # Subtract a byte to ensure the range won't be empty.
-              # Avoids 416 (Range Not Satisfiable) responses.
-              "bytes=#{local_temp_path.size - 1}-"
-            else
-              "bytes=#{local_temp_path.size}-"
-            end
-        end
+      private
-        response = @fetcher.call(remote_path, headers)
-        return nil if response.is_a?(Net::HTTPNotModified)
+      def append(remote_path, local_path, etag_path)
+        return false unless local_path.file? && local_path.size.nonzero?
-        content = response.body
+        CacheFile.copy(local_path) do |file|
+          etag = etag_path.read.tap(&:chomp!) if etag_path.file?
+          etag ||= generate_etag(etag_path, file) # Remove this after 2.5.0 has been out for a while.
-        etag = (response["ETag"] || "").gsub(%r{\AW/}, "")
-        correct_response = SharedHelpers.filesystem_access(local_temp_path) do
-          if response.is_a?(Net::HTTPPartialContent) && local_temp_path.size.nonzero?
-            local_temp_path.open("a") {|f| f << slice_body(content, 1..-1) }
+          # Subtract a byte to ensure the range won't be empty.
+          # Avoids 416 (Range Not Satisfiable) responses.
+          response = @fetcher.call(remote_path, request_headers(etag, file.size - 1))
+          break true if response.is_a?(Gem::Net::HTTPNotModified)
-            etag_for(local_temp_path) == etag
+          file.digests = parse_digests(response)
+          # server may ignore Range and return the full response
+          if response.is_a?(Gem::Net::HTTPPartialContent)
+            break false unless file.append(response.body.byteslice(1..-1))
           else
-            local_temp_path.open("wb") {|f| f << content }
-            etag.length.zero? || etag_for(local_temp_path) == etag
+            file.write(response.body)
           end
+          CacheFile.write(etag_path, etag(response))
+          true
         end
+      end
-        if correct_response
-          SharedHelpers.filesystem_access(local_path) do
-            FileUtils.mv(local_temp_path, local_path)
-          end
-          return nil
-        end
+      # request without range header to get the full file or a 304 Not Modified
+      def replace(remote_path, local_path, etag_path)
+        etag = etag_path.read.tap(&:chomp!) if etag_path.file?
+        response = @fetcher.call(remote_path, request_headers(etag))
+        return true if response.is_a?(Gem::Net::HTTPNotModified)
+        CacheFile.write(local_path, response.body, parse_digests(response))
+        CacheFile.write(etag_path, etag(response))
+      end
-        if retrying
-          raise MisMatchedChecksumError.new(remote_path, etag, etag_for(local_temp_path))
-        end
+      def request_headers(etag, range_start = nil)
+        headers = {}
+        headers["Range"] = "bytes=#{range_start}-" if range_start
+        headers["If-None-Match"] = etag if etag
+        headers
+      end
-        update(local_path, remote_path, :retrying)
-      rescue Zlib::GzipFile::Error
-        raise Bundler::HTTPError
-      ensure
-        FileUtils.remove_file(local_temp_path) if File.exist?(local_temp_path)
+      def etag_for_request(etag_path)
+        etag_path.read.tap(&:chomp!) if etag_path.file?
       end
-      def etag_for(path)
-        sum = checksum_for_file(path)
-        sum ? %("#{sum}") : nil
+      # When first releasing this opaque etag feature, we want to generate the old MD5 etag
+      # based on the content of the file. After that it will always use the saved opaque etag.
+      # This transparently saves existing users with good caches from updating a bunch of files.
+      # Remove this behavior after 2.5.0 has been out for a while.
+      def generate_etag(etag_path, file)
+        etag = file.md5.hexdigest
+        CacheFile.write(etag_path, etag)
+        etag
       end
-      def slice_body(body, range)
-        body.byteslice(range)
+      def etag(response)
+        return unless response["ETag"]
+        etag = response["ETag"].delete_prefix("W/")
+        return if etag.delete_prefix!('"') && !etag.delete_suffix!('"')
+        etag
       end
-      def checksum_for_file(path)
-        return nil unless path.file?
-        # This must use File.read instead of Digest.file().hexdigest
-        # because we need to preserve \n line endings on windows when calculating
-        # the checksum
-        SharedHelpers.filesystem_access(path, :read) do
-          SharedHelpers.digest(:MD5).hexdigest(File.read(path))
+      # Unwraps and returns a Hash of digest algorithms and base64 values
+      # according to RFC 8941 Structured Field Values for HTTP.
+      # https://www.rfc-editor.org/rfc/rfc8941#name-parsing-a-byte-sequence
+      # Ignores unsupported algorithms.
+      def parse_digests(response)
+        return unless header = response["Repr-Digest"] || response["Digest"]
+        digests = {}
+        header.split(",") do |param|
+          algorithm, value = param.split("=", 2)
+          algorithm.strip!
+          algorithm.downcase!
+          next unless SUPPORTED_DIGESTS.key?(algorithm)
+          next unless value = byte_sequence(value)
+          digests[algorithm] = value
         end
+        digests.empty? ? nil : digests
       end
-      private
-      def copy_file(source, dest)
-        SharedHelpers.filesystem_access(source, :read) do
-          File.open(source, "r") do |s|
-            SharedHelpers.filesystem_access(dest, :write) do
-              File.open(dest, "wb", s.stat.mode) do |f|
-                IO.copy_stream(s, f)
-              end
-            end
-          end
-        end
+      # Unwrap surrounding colons (byte sequence)
+      # The wrapping characters must be matched or we return nil.
+      # Also handles quotes because right now rubygems.org sends them.
+      def byte_sequence(value)
+        return if value.delete_prefix!(":") && !value.delete_suffix!(":")
+        return if value.delete_prefix!('"') && !value.delete_suffix!('"')
+        value
       end
     end
   end

data/bundler/lib/bundler/compact_index_client.rb CHANGED Viewed

@@ -5,7 +5,13 @@ require "set"
 module Bundler
   class CompactIndexClient
+    # NOTE: MD5 is here not because we expect a server to respond with it, but
+    # because we use it to generate the etag on first request during the upgrade
+    # to the compact index client that uses opaque etags saved to files.
+    # Remove once 2.5.0 has been out for a while.
+    SUPPORTED_DIGESTS = { "sha-256" => :SHA256, "md5" => :MD5 }.freeze
     DEBUG_MUTEX = Thread::Mutex.new
     def self.debug
       return unless ENV["DEBUG_COMPACT_INDEX"]
       DEBUG_MUTEX.synchronize { warn("[#{self}] #{yield}") }
@@ -14,6 +20,7 @@ module Bundler
     class Error < StandardError; end
     require_relative "compact_index_client/cache"
+    require_relative "compact_index_client/cache_file"
     require_relative "compact_index_client/updater"
     attr_reader :directory
@@ -54,13 +61,13 @@ module Bundler
     def names
       Bundler::CompactIndexClient.debug { "/names" }
-      update(@cache.names_path, "names")
+      update("names", @cache.names_path, @cache.names_etag_path)
       @cache.names
     end
     def versions
       Bundler::CompactIndexClient.debug { "/versions" }
-      update(@cache.versions_path, "versions")
+      update("versions", @cache.versions_path, @cache.versions_etag_path)
       versions, @info_checksums_by_name = @cache.versions
       versions
     end
@@ -76,36 +83,36 @@ module Bundler
     def update_and_parse_checksums!
       Bundler::CompactIndexClient.debug { "update_and_parse_checksums!" }
       return @info_checksums_by_name if @parsed_checksums
-      update(@cache.versions_path, "versions")
+      update("versions", @cache.versions_path, @cache.versions_etag_path)
       @info_checksums_by_name = @cache.checksums
       @parsed_checksums = true
     end
     private
-    def update(local_path, remote_path)
+    def update(remote_path, local_path, local_etag_path)
       Bundler::CompactIndexClient.debug { "update(#{local_path}, #{remote_path})" }
       unless synchronize { @endpoints.add?(remote_path) }
         Bundler::CompactIndexClient.debug { "already fetched #{remote_path}" }
         return
       end
-      @updater.update(local_path, url(remote_path))
+      @updater.update(url(remote_path), local_path, local_etag_path)
     end
     def update_info(name)
       Bundler::CompactIndexClient.debug { "update_info(#{name})" }
       path = @cache.info_path(name)
-      checksum = @updater.checksum_for_file(path)
       unless existing = @info_checksums_by_name[name]
         Bundler::CompactIndexClient.debug { "skipping updating info for #{name} since it is missing from versions" }
         return
       end
+      checksum = SharedHelpers.checksum_for_file(path, :MD5)
       if checksum == existing
         Bundler::CompactIndexClient.debug { "skipping updating info for #{name} since the versions checksum matches the local checksum" }
         return
       end
       Bundler::CompactIndexClient.debug { "updating info for #{name} since the versions checksum #{existing} != the local checksum #{checksum}" }
-      update(path, "info/#{name}")
+      update("info/#{name}", path, @cache.info_etag_path(name))
     end
     def url(path)

data/bundler/lib/bundler/constants.rb CHANGED Viewed

@@ -3,5 +3,5 @@
 module Bundler
   WINDOWS = RbConfig::CONFIG["host_os"] =~ /(msdos|mswin|djgpp|mingw)/
   FREEBSD = RbConfig::CONFIG["host_os"].to_s.include?("bsd")
-  NULL    = WINDOWS ? "NUL" : "/dev/null"
+  NULL    = File::NULL
 end

data/bundler/lib/bundler/current_ruby.rb CHANGED Viewed

@@ -43,7 +43,7 @@ module Bundler
     ].freeze
     def ruby?
-      return true if Bundler::GemHelpers.generic_local_platform == Gem::Platform::RUBY
+      return true if Bundler::GemHelpers.generic_local_platform_is_ruby?
       !windows? && (RUBY_ENGINE == "ruby" || RUBY_ENGINE == "rbx" || RUBY_ENGINE == "maglev" || RUBY_ENGINE == "truffleruby")
     end
@@ -71,26 +71,10 @@ module Bundler
     def windows?
       Gem.win_platform?
     end
-    def mswin?
-      # For backwards compatibility
-      windows?
-      # TODO: This should correctly be:
-      # windows? && Bundler.local_platform != Gem::Platform::RUBY && Bundler.local_platform.os == "mswin32" && Bundler.local_platform.cpu == "x86"
-    end
-    def mswin64?
-      windows? && Bundler.local_platform != Gem::Platform::RUBY && Bundler.local_platform.os == "mswin64" && Bundler.local_platform.cpu == "x64"
-    end
-    def mingw?
-      windows? && Bundler.local_platform != Gem::Platform::RUBY && Bundler.local_platform.os == "mingw32" && Bundler.local_platform.cpu != "x64"
-    end
-    def x64_mingw?
-      Gem.win_platform? && Bundler.local_platform != Gem::Platform::RUBY && Bundler.local_platform.os.start_with?("mingw") && Bundler.local_platform.cpu == "x64"
-    end
+    alias_method :mswin?, :windows?
+    alias_method :mswin64?, :windows?
+    alias_method :mingw?, :windows?
+    alias_method :x64_mingw?, :windows?
     (KNOWN_MINOR_VERSIONS + KNOWN_MAJOR_VERSIONS).each do |version|
       trimmed_version = version.tr(".", "")