rubygems-update 3.5.18 → 3.5.19
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +40 -0
- data/Manifest.txt +10 -0
- data/bundler/CHANGELOG.md +28 -0
- data/bundler/lib/bundler/build_metadata.rb +2 -2
- data/bundler/lib/bundler/cli/add.rb +1 -1
- data/bundler/lib/bundler/cli/gem.rb +4 -1
- data/bundler/lib/bundler/cli/lock.rb +5 -5
- data/bundler/lib/bundler/cli/outdated.rb +1 -1
- data/bundler/lib/bundler/definition.rb +3 -7
- data/bundler/lib/bundler/dsl.rb +27 -17
- data/bundler/lib/bundler/errors.rb +7 -5
- data/bundler/lib/bundler/fetcher.rb +2 -2
- data/bundler/lib/bundler/inline.rb +19 -4
- data/bundler/lib/bundler/installer/gem_installer.rb +4 -2
- data/bundler/lib/bundler/installer/parallel_installer.rb +3 -2
- data/bundler/lib/bundler/installer.rb +9 -11
- data/bundler/lib/bundler/man/bundle-add.1 +27 -16
- data/bundler/lib/bundler/man/bundle-add.1.ronn +37 -14
- data/bundler/lib/bundler/man/bundle-binstubs.1 +1 -1
- data/bundler/lib/bundler/man/bundle-cache.1 +1 -1
- data/bundler/lib/bundler/man/bundle-check.1 +1 -1
- data/bundler/lib/bundler/man/bundle-clean.1 +1 -1
- data/bundler/lib/bundler/man/bundle-config.1 +1 -1
- data/bundler/lib/bundler/man/bundle-console.1 +1 -1
- data/bundler/lib/bundler/man/bundle-doctor.1 +1 -1
- data/bundler/lib/bundler/man/bundle-exec.1 +1 -1
- data/bundler/lib/bundler/man/bundle-gem.1 +1 -1
- data/bundler/lib/bundler/man/bundle-help.1 +1 -1
- data/bundler/lib/bundler/man/bundle-info.1 +1 -1
- data/bundler/lib/bundler/man/bundle-init.1 +1 -1
- data/bundler/lib/bundler/man/bundle-inject.1 +1 -1
- data/bundler/lib/bundler/man/bundle-install.1 +1 -1
- data/bundler/lib/bundler/man/bundle-list.1 +1 -1
- data/bundler/lib/bundler/man/bundle-lock.1 +1 -1
- data/bundler/lib/bundler/man/bundle-open.1 +1 -1
- data/bundler/lib/bundler/man/bundle-outdated.1 +1 -1
- data/bundler/lib/bundler/man/bundle-platform.1 +1 -1
- data/bundler/lib/bundler/man/bundle-plugin.1 +1 -1
- data/bundler/lib/bundler/man/bundle-pristine.1 +1 -1
- data/bundler/lib/bundler/man/bundle-remove.1 +1 -1
- data/bundler/lib/bundler/man/bundle-show.1 +1 -1
- data/bundler/lib/bundler/man/bundle-update.1 +1 -1
- data/bundler/lib/bundler/man/bundle-version.1 +1 -1
- data/bundler/lib/bundler/man/bundle-viz.1 +1 -1
- data/bundler/lib/bundler/man/bundle.1 +1 -1
- data/bundler/lib/bundler/man/gemfile.5 +3 -1
- data/bundler/lib/bundler/man/gemfile.5.ronn +6 -0
- data/bundler/lib/bundler/retry.rb +1 -1
- data/bundler/lib/bundler/ruby_version.rb +7 -1
- data/bundler/lib/bundler/rubygems_ext.rb +43 -16
- data/bundler/lib/bundler/rubygems_gem_installer.rb +4 -3
- data/bundler/lib/bundler/source/git.rb +9 -5
- data/bundler/lib/bundler/source/rubygems.rb +5 -12
- data/bundler/lib/bundler/ui/shell.rb +24 -2
- data/bundler/lib/bundler/ui/silent.rb +12 -1
- data/bundler/lib/bundler/vendor/securerandom/.document +1 -0
- data/bundler/lib/bundler/vendor/securerandom/LICENSE.txt +22 -0
- data/bundler/lib/bundler/vendor/securerandom/lib/random/formatter.rb +373 -0
- data/bundler/lib/bundler/vendor/securerandom/lib/securerandom.rb +96 -0
- data/bundler/lib/bundler/vendored_securerandom.rb +14 -0
- data/bundler/lib/bundler/version.rb +1 -1
- data/bundler/lib/bundler.rb +1 -1
- data/lib/rubygems/commands/exec_command.rb +1 -6
- data/lib/rubygems/commands/fetch_command.rb +14 -0
- data/lib/rubygems/commands/install_command.rb +0 -4
- data/lib/rubygems/commands/setup_command.rb +2 -0
- data/lib/rubygems/exceptions.rb +2 -3
- data/lib/rubygems/installer.rb +1 -1
- data/lib/rubygems/remote_fetcher.rb +0 -1
- data/lib/rubygems/resolver/activation_request.rb +1 -1
- data/lib/rubygems/resolver/best_set.rb +2 -28
- data/lib/rubygems/source/git.rb +7 -5
- data/lib/rubygems/source/installed.rb +3 -1
- data/lib/rubygems/source/local.rb +8 -4
- data/lib/rubygems/source/specific_file.rb +5 -3
- data/lib/rubygems/source.rb +10 -8
- data/lib/rubygems/specification.rb +1 -1
- data/lib/rubygems/specification_policy.rb +1 -1
- data/lib/rubygems/vendor/molinillo/lib/molinillo/resolution.rb +1 -1
- data/lib/rubygems/vendor/net-http/lib/net/https.rb +1 -1
- data/lib/rubygems/vendor/optparse/lib/optparse.rb +1 -1
- data/lib/rubygems/vendor/resolv/lib/resolv.rb +71 -16
- data/lib/rubygems/vendor/securerandom/.document +1 -0
- data/lib/rubygems/vendor/securerandom/LICENSE.txt +22 -0
- data/lib/rubygems/vendor/securerandom/lib/random/formatter.rb +373 -0
- data/lib/rubygems/vendor/securerandom/lib/securerandom.rb +96 -0
- data/lib/rubygems/vendored_securerandom.rb +4 -0
- data/lib/rubygems.rb +18 -15
- data/rubygems-update.gemspec +1 -1
- metadata +13 -3
@@ -0,0 +1,373 @@
|
|
1
|
+
# -*- coding: us-ascii -*-
|
2
|
+
# frozen_string_literal: true
|
3
|
+
|
4
|
+
# == \Random number formatter.
|
5
|
+
#
|
6
|
+
# Formats generated random numbers in many manners. When <tt>'random/formatter'</tt>
|
7
|
+
# is required, several methods are added to empty core module <tt>Bundler::Random::Formatter</tt>,
|
8
|
+
# making them available as Random's instance and module methods.
|
9
|
+
#
|
10
|
+
# Standard library Bundler::SecureRandom is also extended with the module, and the methods
|
11
|
+
# described below are available as a module methods in it.
|
12
|
+
#
|
13
|
+
# === Examples
|
14
|
+
#
|
15
|
+
# Generate random hexadecimal strings:
|
16
|
+
#
|
17
|
+
# require 'bundler/vendor/securerandom/lib/random/formatter'
|
18
|
+
#
|
19
|
+
# prng = Random.new
|
20
|
+
# prng.hex(10) #=> "52750b30ffbc7de3b362"
|
21
|
+
# prng.hex(10) #=> "92b15d6c8dc4beb5f559"
|
22
|
+
# prng.hex(13) #=> "39b290146bea6ce975c37cfc23"
|
23
|
+
# # or just
|
24
|
+
# Random.hex #=> "1aed0c631e41be7f77365415541052ee"
|
25
|
+
#
|
26
|
+
# Generate random base64 strings:
|
27
|
+
#
|
28
|
+
# prng.base64(10) #=> "EcmTPZwWRAozdA=="
|
29
|
+
# prng.base64(10) #=> "KO1nIU+p9DKxGg=="
|
30
|
+
# prng.base64(12) #=> "7kJSM/MzBJI+75j8"
|
31
|
+
# Random.base64(4) #=> "bsQ3fQ=="
|
32
|
+
#
|
33
|
+
# Generate random binary strings:
|
34
|
+
#
|
35
|
+
# prng.random_bytes(10) #=> "\016\t{\370g\310pbr\301"
|
36
|
+
# prng.random_bytes(10) #=> "\323U\030TO\234\357\020\a\337"
|
37
|
+
# Random.random_bytes(6) #=> "\xA1\xE6Lr\xC43"
|
38
|
+
#
|
39
|
+
# Generate alphanumeric strings:
|
40
|
+
#
|
41
|
+
# prng.alphanumeric(10) #=> "S8baxMJnPl"
|
42
|
+
# prng.alphanumeric(10) #=> "aOxAg8BAJe"
|
43
|
+
# Random.alphanumeric #=> "TmP9OsJHJLtaZYhP"
|
44
|
+
#
|
45
|
+
# Generate UUIDs:
|
46
|
+
#
|
47
|
+
# prng.uuid #=> "2d931510-d99f-494a-8c67-87feb05e1594"
|
48
|
+
# prng.uuid #=> "bad85eb9-0713-4da7-8d36-07a8e4b00eab"
|
49
|
+
# Random.uuid #=> "f14e0271-de96-45cc-8911-8910292a42cd"
|
50
|
+
#
|
51
|
+
# All methods are available in the standard library Bundler::SecureRandom, too:
|
52
|
+
#
|
53
|
+
# Bundler::SecureRandom.hex #=> "05b45376a30c67238eb93b16499e50cf"
|
54
|
+
|
55
|
+
module Bundler::Random::Formatter
|
56
|
+
|
57
|
+
# Generate a random binary string.
|
58
|
+
#
|
59
|
+
# The argument _n_ specifies the length of the result string.
|
60
|
+
#
|
61
|
+
# If _n_ is not specified or is nil, 16 is assumed.
|
62
|
+
# It may be larger in future.
|
63
|
+
#
|
64
|
+
# The result may contain any byte: "\x00" - "\xff".
|
65
|
+
#
|
66
|
+
# require 'bundler/vendor/securerandom/lib/random/formatter'
|
67
|
+
#
|
68
|
+
# Random.random_bytes #=> "\xD8\\\xE0\xF4\r\xB2\xFC*WM\xFF\x83\x18\xF45\xB6"
|
69
|
+
# # or
|
70
|
+
# prng = Random.new
|
71
|
+
# prng.random_bytes #=> "m\xDC\xFC/\a\x00Uf\xB2\xB2P\xBD\xFF6S\x97"
|
72
|
+
def random_bytes(n=nil)
|
73
|
+
n = n ? n.to_int : 16
|
74
|
+
gen_random(n)
|
75
|
+
end
|
76
|
+
|
77
|
+
# Generate a random hexadecimal string.
|
78
|
+
#
|
79
|
+
# The argument _n_ specifies the length, in bytes, of the random number to be generated.
|
80
|
+
# The length of the resulting hexadecimal string is twice of _n_.
|
81
|
+
#
|
82
|
+
# If _n_ is not specified or is nil, 16 is assumed.
|
83
|
+
# It may be larger in the future.
|
84
|
+
#
|
85
|
+
# The result may contain 0-9 and a-f.
|
86
|
+
#
|
87
|
+
# require 'bundler/vendor/securerandom/lib/random/formatter'
|
88
|
+
#
|
89
|
+
# Random.hex #=> "eb693ec8252cd630102fd0d0fb7c3485"
|
90
|
+
# # or
|
91
|
+
# prng = Random.new
|
92
|
+
# prng.hex #=> "91dc3bfb4de5b11d029d376634589b61"
|
93
|
+
def hex(n=nil)
|
94
|
+
random_bytes(n).unpack1("H*")
|
95
|
+
end
|
96
|
+
|
97
|
+
# Generate a random base64 string.
|
98
|
+
#
|
99
|
+
# The argument _n_ specifies the length, in bytes, of the random number
|
100
|
+
# to be generated. The length of the result string is about 4/3 of _n_.
|
101
|
+
#
|
102
|
+
# If _n_ is not specified or is nil, 16 is assumed.
|
103
|
+
# It may be larger in the future.
|
104
|
+
#
|
105
|
+
# The result may contain A-Z, a-z, 0-9, "+", "/" and "=".
|
106
|
+
#
|
107
|
+
# require 'bundler/vendor/securerandom/lib/random/formatter'
|
108
|
+
#
|
109
|
+
# Random.base64 #=> "/2BuBuLf3+WfSKyQbRcc/A=="
|
110
|
+
# # or
|
111
|
+
# prng = Random.new
|
112
|
+
# prng.base64 #=> "6BbW0pxO0YENxn38HMUbcQ=="
|
113
|
+
#
|
114
|
+
# See RFC 3548 for the definition of base64.
|
115
|
+
def base64(n=nil)
|
116
|
+
[random_bytes(n)].pack("m0")
|
117
|
+
end
|
118
|
+
|
119
|
+
# Generate a random URL-safe base64 string.
|
120
|
+
#
|
121
|
+
# The argument _n_ specifies the length, in bytes, of the random number
|
122
|
+
# to be generated. The length of the result string is about 4/3 of _n_.
|
123
|
+
#
|
124
|
+
# If _n_ is not specified or is nil, 16 is assumed.
|
125
|
+
# It may be larger in the future.
|
126
|
+
#
|
127
|
+
# The boolean argument _padding_ specifies the padding.
|
128
|
+
# If it is false or nil, padding is not generated.
|
129
|
+
# Otherwise padding is generated.
|
130
|
+
# By default, padding is not generated because "=" may be used as a URL delimiter.
|
131
|
+
#
|
132
|
+
# The result may contain A-Z, a-z, 0-9, "-" and "_".
|
133
|
+
# "=" is also used if _padding_ is true.
|
134
|
+
#
|
135
|
+
# require 'bundler/vendor/securerandom/lib/random/formatter'
|
136
|
+
#
|
137
|
+
# Random.urlsafe_base64 #=> "b4GOKm4pOYU_-BOXcrUGDg"
|
138
|
+
# # or
|
139
|
+
# prng = Random.new
|
140
|
+
# prng.urlsafe_base64 #=> "UZLdOkzop70Ddx-IJR0ABg"
|
141
|
+
#
|
142
|
+
# prng.urlsafe_base64(nil, true) #=> "i0XQ-7gglIsHGV2_BNPrdQ=="
|
143
|
+
# prng.urlsafe_base64(nil, true) #=> "-M8rLhr7JEpJlqFGUMmOxg=="
|
144
|
+
#
|
145
|
+
# See RFC 3548 for the definition of URL-safe base64.
|
146
|
+
def urlsafe_base64(n=nil, padding=false)
|
147
|
+
s = [random_bytes(n)].pack("m0")
|
148
|
+
s.tr!("+/", "-_")
|
149
|
+
s.delete!("=") unless padding
|
150
|
+
s
|
151
|
+
end
|
152
|
+
|
153
|
+
# Generate a random v4 UUID (Universally Unique IDentifier).
|
154
|
+
#
|
155
|
+
# require 'bundler/vendor/securerandom/lib/random/formatter'
|
156
|
+
#
|
157
|
+
# Random.uuid #=> "2d931510-d99f-494a-8c67-87feb05e1594"
|
158
|
+
# Random.uuid #=> "bad85eb9-0713-4da7-8d36-07a8e4b00eab"
|
159
|
+
# # or
|
160
|
+
# prng = Random.new
|
161
|
+
# prng.uuid #=> "62936e70-1815-439b-bf89-8492855a7e6b"
|
162
|
+
#
|
163
|
+
# The version 4 UUID is purely random (except the version).
|
164
|
+
# It doesn't contain meaningful information such as MAC addresses, timestamps, etc.
|
165
|
+
#
|
166
|
+
# The result contains 122 random bits (15.25 random bytes).
|
167
|
+
#
|
168
|
+
# See RFC4122[https://datatracker.ietf.org/doc/html/rfc4122] for details of UUID.
|
169
|
+
#
|
170
|
+
def uuid
|
171
|
+
ary = random_bytes(16).unpack("NnnnnN")
|
172
|
+
ary[2] = (ary[2] & 0x0fff) | 0x4000
|
173
|
+
ary[3] = (ary[3] & 0x3fff) | 0x8000
|
174
|
+
"%08x-%04x-%04x-%04x-%04x%08x" % ary
|
175
|
+
end
|
176
|
+
|
177
|
+
alias uuid_v4 uuid
|
178
|
+
|
179
|
+
# Generate a random v7 UUID (Universally Unique IDentifier).
|
180
|
+
#
|
181
|
+
# require 'bundler/vendor/securerandom/lib/random/formatter'
|
182
|
+
#
|
183
|
+
# Random.uuid_v7 # => "0188d4c3-1311-7f96-85c7-242a7aa58f1e"
|
184
|
+
# Random.uuid_v7 # => "0188d4c3-16fe-744f-86af-38fa04c62bb5"
|
185
|
+
# Random.uuid_v7 # => "0188d4c3-1af8-764f-b049-c204ce0afa23"
|
186
|
+
# Random.uuid_v7 # => "0188d4c3-1e74-7085-b14f-ef6415dc6f31"
|
187
|
+
# # |<--sorted-->| |<----- random ---->|
|
188
|
+
#
|
189
|
+
# # or
|
190
|
+
# prng = Random.new
|
191
|
+
# prng.uuid_v7 # => "0188ca51-5e72-7950-a11d-def7ff977c98"
|
192
|
+
#
|
193
|
+
# The version 7 UUID starts with the least significant 48 bits of a 64 bit
|
194
|
+
# Unix timestamp (milliseconds since the epoch) and fills the remaining bits
|
195
|
+
# with random data, excluding the version and variant bits.
|
196
|
+
#
|
197
|
+
# This allows version 7 UUIDs to be sorted by creation time. Time ordered
|
198
|
+
# UUIDs can be used for better database index locality of newly inserted
|
199
|
+
# records, which may have a significant performance benefit compared to random
|
200
|
+
# data inserts.
|
201
|
+
#
|
202
|
+
# The result contains 74 random bits (9.25 random bytes).
|
203
|
+
#
|
204
|
+
# Note that this method cannot be made reproducable because its output
|
205
|
+
# includes not only random bits but also timestamp.
|
206
|
+
#
|
207
|
+
# See draft-ietf-uuidrev-rfc4122bis[https://datatracker.ietf.org/doc/draft-ietf-uuidrev-rfc4122bis/]
|
208
|
+
# for details of UUIDv7.
|
209
|
+
#
|
210
|
+
# ==== Monotonicity
|
211
|
+
#
|
212
|
+
# UUIDv7 has millisecond precision by default, so multiple UUIDs created
|
213
|
+
# within the same millisecond are not issued in monotonically increasing
|
214
|
+
# order. To create UUIDs that are time-ordered with sub-millisecond
|
215
|
+
# precision, up to 12 bits of additional timestamp may added with
|
216
|
+
# +extra_timestamp_bits+. The extra timestamp precision comes at the expense
|
217
|
+
# of random bits. Setting <tt>extra_timestamp_bits: 12</tt> provides ~244ns
|
218
|
+
# of precision, but only 62 random bits (7.75 random bytes).
|
219
|
+
#
|
220
|
+
# prng = Random.new
|
221
|
+
# Array.new(4) { prng.uuid_v7(extra_timestamp_bits: 12) }
|
222
|
+
# # =>
|
223
|
+
# ["0188d4c7-13da-74f9-8b53-22a786ffdd5a",
|
224
|
+
# "0188d4c7-13da-753b-83a5-7fb9b2afaeea",
|
225
|
+
# "0188d4c7-13da-754a-88ea-ac0baeedd8db",
|
226
|
+
# "0188d4c7-13da-7557-83e1-7cad9cda0d8d"]
|
227
|
+
# # |<--- sorted --->| |<-- random --->|
|
228
|
+
#
|
229
|
+
# Array.new(4) { prng.uuid_v7(extra_timestamp_bits: 8) }
|
230
|
+
# # =>
|
231
|
+
# ["0188d4c7-3333-7a95-850a-de6edb858f7e",
|
232
|
+
# "0188d4c7-3333-7ae8-842e-bc3a8b7d0cf9", # <- out of order
|
233
|
+
# "0188d4c7-3333-7ae2-995a-9f135dc44ead", # <- out of order
|
234
|
+
# "0188d4c7-3333-7af9-87c3-8f612edac82e"]
|
235
|
+
# # |<--- sorted -->||<---- random --->|
|
236
|
+
#
|
237
|
+
# Any rollbacks of the system clock will break monotonicity. UUIDv7 is based
|
238
|
+
# on UTC, which excludes leap seconds and can rollback the clock. To avoid
|
239
|
+
# this, the system clock can synchronize with an NTP server configured to use
|
240
|
+
# a "leap smear" approach. NTP or PTP will also be needed to synchronize
|
241
|
+
# across distributed nodes.
|
242
|
+
#
|
243
|
+
# Counters and other mechanisms for stronger guarantees of monotonicity are
|
244
|
+
# not implemented. Applications with stricter requirements should follow
|
245
|
+
# {Section 6.2}[https://www.ietf.org/archive/id/draft-ietf-uuidrev-rfc4122bis-07.html#monotonicity_counters]
|
246
|
+
# of the specification.
|
247
|
+
#
|
248
|
+
def uuid_v7(extra_timestamp_bits: 0)
|
249
|
+
case (extra_timestamp_bits = Integer(extra_timestamp_bits))
|
250
|
+
when 0 # min timestamp precision
|
251
|
+
ms = Process.clock_gettime(Process::CLOCK_REALTIME, :millisecond)
|
252
|
+
rand = random_bytes(10)
|
253
|
+
rand.setbyte(0, rand.getbyte(0) & 0x0f | 0x70) # version
|
254
|
+
rand.setbyte(2, rand.getbyte(2) & 0x3f | 0x80) # variant
|
255
|
+
"%08x-%04x-%s" % [
|
256
|
+
(ms & 0x0000_ffff_ffff_0000) >> 16,
|
257
|
+
(ms & 0x0000_0000_0000_ffff),
|
258
|
+
rand.unpack("H4H4H12").join("-")
|
259
|
+
]
|
260
|
+
|
261
|
+
when 12 # max timestamp precision
|
262
|
+
ms, ns = Process.clock_gettime(Process::CLOCK_REALTIME, :nanosecond)
|
263
|
+
.divmod(1_000_000)
|
264
|
+
extra_bits = ns * 4096 / 1_000_000
|
265
|
+
rand = random_bytes(8)
|
266
|
+
rand.setbyte(0, rand.getbyte(0) & 0x3f | 0x80) # variant
|
267
|
+
"%08x-%04x-7%03x-%s" % [
|
268
|
+
(ms & 0x0000_ffff_ffff_0000) >> 16,
|
269
|
+
(ms & 0x0000_0000_0000_ffff),
|
270
|
+
extra_bits,
|
271
|
+
rand.unpack("H4H12").join("-")
|
272
|
+
]
|
273
|
+
|
274
|
+
when (0..12) # the generic version is slower than the special cases above
|
275
|
+
rand_a, rand_b1, rand_b2, rand_b3 = random_bytes(10).unpack("nnnN")
|
276
|
+
rand_mask_bits = 12 - extra_timestamp_bits
|
277
|
+
ms, ns = Process.clock_gettime(Process::CLOCK_REALTIME, :nanosecond)
|
278
|
+
.divmod(1_000_000)
|
279
|
+
"%08x-%04x-%04x-%04x-%04x%08x" % [
|
280
|
+
(ms & 0x0000_ffff_ffff_0000) >> 16,
|
281
|
+
(ms & 0x0000_0000_0000_ffff),
|
282
|
+
0x7000 |
|
283
|
+
((ns * (1 << extra_timestamp_bits) / 1_000_000) << rand_mask_bits) |
|
284
|
+
rand_a & ((1 << rand_mask_bits) - 1),
|
285
|
+
0x8000 | (rand_b1 & 0x3fff),
|
286
|
+
rand_b2,
|
287
|
+
rand_b3
|
288
|
+
]
|
289
|
+
|
290
|
+
else
|
291
|
+
raise ArgumentError, "extra_timestamp_bits must be in 0..12"
|
292
|
+
end
|
293
|
+
end
|
294
|
+
|
295
|
+
# Internal interface to Random; Generate random data _n_ bytes.
|
296
|
+
private def gen_random(n)
|
297
|
+
self.bytes(n)
|
298
|
+
end
|
299
|
+
|
300
|
+
# Generate a string that randomly draws from a
|
301
|
+
# source array of characters.
|
302
|
+
#
|
303
|
+
# The argument _source_ specifies the array of characters from which
|
304
|
+
# to generate the string.
|
305
|
+
# The argument _n_ specifies the length, in characters, of the string to be
|
306
|
+
# generated.
|
307
|
+
#
|
308
|
+
# The result may contain whatever characters are in the source array.
|
309
|
+
#
|
310
|
+
# require 'bundler/vendor/securerandom/lib/random/formatter'
|
311
|
+
#
|
312
|
+
# prng.choose([*'l'..'r'], 16) #=> "lmrqpoonmmlqlron"
|
313
|
+
# prng.choose([*'0'..'9'], 5) #=> "27309"
|
314
|
+
private def choose(source, n)
|
315
|
+
size = source.size
|
316
|
+
m = 1
|
317
|
+
limit = size
|
318
|
+
while limit * size <= 0x100000000
|
319
|
+
limit *= size
|
320
|
+
m += 1
|
321
|
+
end
|
322
|
+
result = ''.dup
|
323
|
+
while m <= n
|
324
|
+
rs = random_number(limit)
|
325
|
+
is = rs.digits(size)
|
326
|
+
(m-is.length).times { is << 0 }
|
327
|
+
result << source.values_at(*is).join('')
|
328
|
+
n -= m
|
329
|
+
end
|
330
|
+
if 0 < n
|
331
|
+
rs = random_number(limit)
|
332
|
+
is = rs.digits(size)
|
333
|
+
if is.length < n
|
334
|
+
(n-is.length).times { is << 0 }
|
335
|
+
else
|
336
|
+
is.pop while n < is.length
|
337
|
+
end
|
338
|
+
result.concat source.values_at(*is).join('')
|
339
|
+
end
|
340
|
+
result
|
341
|
+
end
|
342
|
+
|
343
|
+
# The default character list for #alphanumeric.
|
344
|
+
ALPHANUMERIC = [*'A'..'Z', *'a'..'z', *'0'..'9']
|
345
|
+
|
346
|
+
# Generate a random alphanumeric string.
|
347
|
+
#
|
348
|
+
# The argument _n_ specifies the length, in characters, of the alphanumeric
|
349
|
+
# string to be generated.
|
350
|
+
# The argument _chars_ specifies the character list which the result is
|
351
|
+
# consist of.
|
352
|
+
#
|
353
|
+
# If _n_ is not specified or is nil, 16 is assumed.
|
354
|
+
# It may be larger in the future.
|
355
|
+
#
|
356
|
+
# The result may contain A-Z, a-z and 0-9, unless _chars_ is specified.
|
357
|
+
#
|
358
|
+
# require 'bundler/vendor/securerandom/lib/random/formatter'
|
359
|
+
#
|
360
|
+
# Random.alphanumeric #=> "2BuBuLf3WfSKyQbR"
|
361
|
+
# # or
|
362
|
+
# prng = Random.new
|
363
|
+
# prng.alphanumeric(10) #=> "i6K93NdqiH"
|
364
|
+
#
|
365
|
+
# Random.alphanumeric(4, chars: [*"0".."9"]) #=> "2952"
|
366
|
+
# # or
|
367
|
+
# prng = Random.new
|
368
|
+
# prng.alphanumeric(10, chars: [*"!".."/"]) #=> ",.,++%/''."
|
369
|
+
def alphanumeric(n = nil, chars: ALPHANUMERIC)
|
370
|
+
n = 16 if n.nil?
|
371
|
+
choose(chars, n)
|
372
|
+
end
|
373
|
+
end
|
@@ -0,0 +1,96 @@
|
|
1
|
+
# -*- coding: us-ascii -*-
|
2
|
+
# frozen_string_literal: true
|
3
|
+
|
4
|
+
require_relative 'random/formatter'
|
5
|
+
|
6
|
+
# == Secure random number generator interface.
|
7
|
+
#
|
8
|
+
# This library is an interface to secure random number generators which are
|
9
|
+
# suitable for generating session keys in HTTP cookies, etc.
|
10
|
+
#
|
11
|
+
# You can use this library in your application by requiring it:
|
12
|
+
#
|
13
|
+
# require 'bundler/vendor/securerandom/lib/securerandom'
|
14
|
+
#
|
15
|
+
# It supports the following secure random number generators:
|
16
|
+
#
|
17
|
+
# * openssl
|
18
|
+
# * /dev/urandom
|
19
|
+
# * Win32
|
20
|
+
#
|
21
|
+
# Bundler::SecureRandom is extended by the Bundler::Random::Formatter module which
|
22
|
+
# defines the following methods:
|
23
|
+
#
|
24
|
+
# * alphanumeric
|
25
|
+
# * base64
|
26
|
+
# * choose
|
27
|
+
# * gen_random
|
28
|
+
# * hex
|
29
|
+
# * rand
|
30
|
+
# * random_bytes
|
31
|
+
# * random_number
|
32
|
+
# * urlsafe_base64
|
33
|
+
# * uuid
|
34
|
+
#
|
35
|
+
# These methods are usable as class methods of Bundler::SecureRandom such as
|
36
|
+
# +Bundler::SecureRandom.hex+.
|
37
|
+
#
|
38
|
+
# If a secure random number generator is not available,
|
39
|
+
# +NotImplementedError+ is raised.
|
40
|
+
|
41
|
+
module Bundler::SecureRandom
|
42
|
+
|
43
|
+
# The version
|
44
|
+
VERSION = "0.3.1"
|
45
|
+
|
46
|
+
class << self
|
47
|
+
# Returns a random binary string containing +size+ bytes.
|
48
|
+
#
|
49
|
+
# See Random.bytes
|
50
|
+
def bytes(n)
|
51
|
+
return gen_random(n)
|
52
|
+
end
|
53
|
+
|
54
|
+
private
|
55
|
+
|
56
|
+
# :stopdoc:
|
57
|
+
|
58
|
+
# Implementation using OpenSSL
|
59
|
+
def gen_random_openssl(n)
|
60
|
+
return OpenSSL::Random.random_bytes(n)
|
61
|
+
end
|
62
|
+
|
63
|
+
# Implementation using system random device
|
64
|
+
def gen_random_urandom(n)
|
65
|
+
ret = Random.urandom(n)
|
66
|
+
unless ret
|
67
|
+
raise NotImplementedError, "No random device"
|
68
|
+
end
|
69
|
+
unless ret.length == n
|
70
|
+
raise NotImplementedError, "Unexpected partial read from random device: only #{ret.length} for #{n} bytes"
|
71
|
+
end
|
72
|
+
ret
|
73
|
+
end
|
74
|
+
|
75
|
+
begin
|
76
|
+
# Check if Random.urandom is available
|
77
|
+
Random.urandom(1)
|
78
|
+
alias gen_random gen_random_urandom
|
79
|
+
rescue RuntimeError
|
80
|
+
begin
|
81
|
+
require 'openssl'
|
82
|
+
rescue NoMethodError
|
83
|
+
raise NotImplementedError, "No random device"
|
84
|
+
else
|
85
|
+
alias gen_random gen_random_openssl
|
86
|
+
end
|
87
|
+
end
|
88
|
+
|
89
|
+
# :startdoc:
|
90
|
+
|
91
|
+
# Generate random data bytes for Bundler::Random::Formatter
|
92
|
+
public :gen_random
|
93
|
+
end
|
94
|
+
end
|
95
|
+
|
96
|
+
Bundler::SecureRandom.extend(Bundler::Random::Formatter)
|
@@ -0,0 +1,14 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# Use RubyGems vendored copy when available. Otherwise fallback to Bundler
|
4
|
+
# vendored copy. The vendored copy in Bundler can be removed once support for
|
5
|
+
# RubyGems 3.5.18 is dropped.
|
6
|
+
|
7
|
+
begin
|
8
|
+
require "rubygems/vendored_securerandom"
|
9
|
+
rescue LoadError
|
10
|
+
module Bundler::Random; end
|
11
|
+
require_relative "vendor/securerandom/lib/securerandom"
|
12
|
+
Gem::SecureRandom = Bundler::SecureRandom
|
13
|
+
Gem::Random = Bundler::Random
|
14
|
+
end
|
data/bundler/lib/bundler.rb
CHANGED
@@ -652,7 +652,7 @@ module Bundler
|
|
652
652
|
rescue ScriptError, StandardError => e
|
653
653
|
msg = "There was an error while loading `#{path.basename}`: #{e.message}"
|
654
654
|
|
655
|
-
raise GemspecError, Dsl::DSLError.new(msg, path, e.backtrace, contents)
|
655
|
+
raise GemspecError, Dsl::DSLError.new(msg, path.to_s, e.backtrace, contents)
|
656
656
|
end
|
657
657
|
|
658
658
|
def configure_gem_path
|
@@ -57,8 +57,6 @@ to the same gem path as user-installed gems.
|
|
57
57
|
end
|
58
58
|
|
59
59
|
def execute
|
60
|
-
gem_paths = { "GEM_HOME" => Gem.paths.home, "GEM_PATH" => Gem.paths.path.join(File::PATH_SEPARATOR), "GEM_SPEC_CACHE" => Gem.paths.spec_cache_dir }.compact
|
61
|
-
|
62
60
|
check_executable
|
63
61
|
|
64
62
|
print_command
|
@@ -74,9 +72,6 @@ to the same gem path as user-installed gems.
|
|
74
72
|
end
|
75
73
|
|
76
74
|
load!
|
77
|
-
ensure
|
78
|
-
ENV.update(gem_paths) if gem_paths
|
79
|
-
Gem.clear_paths
|
80
75
|
end
|
81
76
|
|
82
77
|
private
|
@@ -143,7 +138,7 @@ to the same gem path as user-installed gems.
|
|
143
138
|
end
|
144
139
|
|
145
140
|
def set_gem_exec_install_paths
|
146
|
-
home =
|
141
|
+
home = Gem.dir
|
147
142
|
|
148
143
|
ENV["GEM_PATH"] = ([home] + Gem.path).join(File::PATH_SEPARATOR)
|
149
144
|
ENV["GEM_HOME"] = home
|
@@ -63,6 +63,17 @@ then repackaging it.
|
|
63
63
|
|
64
64
|
def execute
|
65
65
|
check_version
|
66
|
+
|
67
|
+
exit_code = fetch_gems
|
68
|
+
|
69
|
+
terminate_interaction exit_code
|
70
|
+
end
|
71
|
+
|
72
|
+
private
|
73
|
+
|
74
|
+
def fetch_gems
|
75
|
+
exit_code = 0
|
76
|
+
|
66
77
|
version = options[:version]
|
67
78
|
|
68
79
|
platform = Gem.platforms.last
|
@@ -86,10 +97,13 @@ then repackaging it.
|
|
86
97
|
|
87
98
|
if spec.nil?
|
88
99
|
show_lookup_failure gem_name, gem_version, errors, suppress_suggestions, options[:domain]
|
100
|
+
exit_code |= 2
|
89
101
|
next
|
90
102
|
end
|
91
103
|
source.download spec
|
92
104
|
say "Downloaded #{spec.full_name}"
|
93
105
|
end
|
106
|
+
|
107
|
+
exit_code
|
94
108
|
end
|
95
109
|
end
|
@@ -224,10 +224,6 @@ You can use `i` command instead of `install`.
|
|
224
224
|
rescue Gem::InstallError => e
|
225
225
|
alert_error "Error installing #{gem_name}:\n\t#{e.message}"
|
226
226
|
exit_code |= 1
|
227
|
-
rescue Gem::GemNotFoundException => e
|
228
|
-
show_lookup_failure e.name, e.version, e.errors, suppress_suggestions
|
229
|
-
|
230
|
-
exit_code |= 2
|
231
227
|
rescue Gem::UnsatisfiableDependencyError => e
|
232
228
|
show_lookup_failure e.name, e.version, e.errors, suppress_suggestions,
|
233
229
|
"'#{gem_name}' (#{gem_version})"
|
@@ -340,6 +340,8 @@ By default, this RubyGems will install gem as:
|
|
340
340
|
|
341
341
|
require_relative "../rdoc"
|
342
342
|
|
343
|
+
return false unless defined?(Gem::RDoc)
|
344
|
+
|
343
345
|
fake_spec = Gem::Specification.new "rubygems", Gem::VERSION
|
344
346
|
def fake_spec.full_gem_path
|
345
347
|
File.expand_path "../../..", __dir__
|
data/lib/rubygems/exceptions.rb
CHANGED
@@ -104,9 +104,6 @@ end
|
|
104
104
|
|
105
105
|
class Gem::GemNotFoundException < Gem::Exception; end
|
106
106
|
|
107
|
-
##
|
108
|
-
# Raised by the DependencyInstaller when a specific gem cannot be found
|
109
|
-
|
110
107
|
class Gem::SpecificGemNotFoundException < Gem::GemNotFoundException
|
111
108
|
##
|
112
109
|
# Creates a new SpecificGemNotFoundException for a gem with the given +name+
|
@@ -137,6 +134,8 @@ class Gem::SpecificGemNotFoundException < Gem::GemNotFoundException
|
|
137
134
|
attr_reader :errors
|
138
135
|
end
|
139
136
|
|
137
|
+
Gem.deprecate_constant :SpecificGemNotFoundException
|
138
|
+
|
140
139
|
##
|
141
140
|
# Raised by Gem::Resolver when dependencies conflict and create the
|
142
141
|
# inability to find a valid possible spec for a request.
|
data/lib/rubygems/installer.rb
CHANGED
@@ -538,7 +538,7 @@ class Gem::Installer
|
|
538
538
|
def generate_bin_script(filename, bindir)
|
539
539
|
bin_script_path = File.join bindir, formatted_program_filename(filename)
|
540
540
|
|
541
|
-
Gem.
|
541
|
+
Gem.open_file_with_lock(bin_script_path) do
|
542
542
|
require "fileutils"
|
543
543
|
FileUtils.rm_f bin_script_path # prior install may have been --no-wrappers
|
544
544
|
|
@@ -75,7 +75,6 @@ class Gem::RemoteFetcher
|
|
75
75
|
def initialize(proxy=nil, dns=nil, headers={})
|
76
76
|
require_relative "core_ext/tcpsocket_init" if Gem.configuration.ipv4_fallback_enabled
|
77
77
|
require_relative "vendored_net_http"
|
78
|
-
require "stringio"
|
79
78
|
require_relative "vendor/uri/lib/uri"
|
80
79
|
|
81
80
|
Socket.do_not_reverse_lookup = true
|
@@ -29,10 +29,8 @@ class Gem::Resolver::BestSet < Gem::Resolver::ComposedSet
|
|
29
29
|
pick_sets if @remote && @sets.empty?
|
30
30
|
|
31
31
|
super
|
32
|
-
rescue Gem::RemoteFetcher::FetchError
|
33
|
-
|
34
|
-
|
35
|
-
retry
|
32
|
+
rescue Gem::RemoteFetcher::FetchError
|
33
|
+
[]
|
36
34
|
end
|
37
35
|
|
38
36
|
def prefetch(reqs) # :nodoc:
|
@@ -50,28 +48,4 @@ class Gem::Resolver::BestSet < Gem::Resolver::ComposedSet
|
|
50
48
|
q.pp @sets
|
51
49
|
end
|
52
50
|
end
|
53
|
-
|
54
|
-
##
|
55
|
-
# Replaces a failed APISet for the URI in +error+ with an IndexSet.
|
56
|
-
#
|
57
|
-
# If no matching APISet can be found the original +error+ is raised.
|
58
|
-
#
|
59
|
-
# The calling method must retry the exception to repeat the lookup.
|
60
|
-
|
61
|
-
def replace_failed_api_set(error) # :nodoc:
|
62
|
-
uri = error.original_uri
|
63
|
-
uri = Gem::URI uri unless Gem::URI === uri
|
64
|
-
uri += "."
|
65
|
-
|
66
|
-
raise error unless api_set = @sets.find do |set|
|
67
|
-
Gem::Resolver::APISet === set && set.dep_uri == uri
|
68
|
-
end
|
69
|
-
|
70
|
-
index_set = Gem::Resolver::IndexSet.new api_set.source
|
71
|
-
|
72
|
-
@sets.map! do |set|
|
73
|
-
next set unless set == api_set
|
74
|
-
index_set
|
75
|
-
end
|
76
|
-
end
|
77
51
|
end
|