rubygems-update 3.5.18 → 3.5.19

Sign up to get free protection for your applications and to get access to all the features.
Files changed (91) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +40 -0
  3. data/Manifest.txt +10 -0
  4. data/bundler/CHANGELOG.md +28 -0
  5. data/bundler/lib/bundler/build_metadata.rb +2 -2
  6. data/bundler/lib/bundler/cli/add.rb +1 -1
  7. data/bundler/lib/bundler/cli/gem.rb +4 -1
  8. data/bundler/lib/bundler/cli/lock.rb +5 -5
  9. data/bundler/lib/bundler/cli/outdated.rb +1 -1
  10. data/bundler/lib/bundler/definition.rb +3 -7
  11. data/bundler/lib/bundler/dsl.rb +27 -17
  12. data/bundler/lib/bundler/errors.rb +7 -5
  13. data/bundler/lib/bundler/fetcher.rb +2 -2
  14. data/bundler/lib/bundler/inline.rb +19 -4
  15. data/bundler/lib/bundler/installer/gem_installer.rb +4 -2
  16. data/bundler/lib/bundler/installer/parallel_installer.rb +3 -2
  17. data/bundler/lib/bundler/installer.rb +9 -11
  18. data/bundler/lib/bundler/man/bundle-add.1 +27 -16
  19. data/bundler/lib/bundler/man/bundle-add.1.ronn +37 -14
  20. data/bundler/lib/bundler/man/bundle-binstubs.1 +1 -1
  21. data/bundler/lib/bundler/man/bundle-cache.1 +1 -1
  22. data/bundler/lib/bundler/man/bundle-check.1 +1 -1
  23. data/bundler/lib/bundler/man/bundle-clean.1 +1 -1
  24. data/bundler/lib/bundler/man/bundle-config.1 +1 -1
  25. data/bundler/lib/bundler/man/bundle-console.1 +1 -1
  26. data/bundler/lib/bundler/man/bundle-doctor.1 +1 -1
  27. data/bundler/lib/bundler/man/bundle-exec.1 +1 -1
  28. data/bundler/lib/bundler/man/bundle-gem.1 +1 -1
  29. data/bundler/lib/bundler/man/bundle-help.1 +1 -1
  30. data/bundler/lib/bundler/man/bundle-info.1 +1 -1
  31. data/bundler/lib/bundler/man/bundle-init.1 +1 -1
  32. data/bundler/lib/bundler/man/bundle-inject.1 +1 -1
  33. data/bundler/lib/bundler/man/bundle-install.1 +1 -1
  34. data/bundler/lib/bundler/man/bundle-list.1 +1 -1
  35. data/bundler/lib/bundler/man/bundle-lock.1 +1 -1
  36. data/bundler/lib/bundler/man/bundle-open.1 +1 -1
  37. data/bundler/lib/bundler/man/bundle-outdated.1 +1 -1
  38. data/bundler/lib/bundler/man/bundle-platform.1 +1 -1
  39. data/bundler/lib/bundler/man/bundle-plugin.1 +1 -1
  40. data/bundler/lib/bundler/man/bundle-pristine.1 +1 -1
  41. data/bundler/lib/bundler/man/bundle-remove.1 +1 -1
  42. data/bundler/lib/bundler/man/bundle-show.1 +1 -1
  43. data/bundler/lib/bundler/man/bundle-update.1 +1 -1
  44. data/bundler/lib/bundler/man/bundle-version.1 +1 -1
  45. data/bundler/lib/bundler/man/bundle-viz.1 +1 -1
  46. data/bundler/lib/bundler/man/bundle.1 +1 -1
  47. data/bundler/lib/bundler/man/gemfile.5 +3 -1
  48. data/bundler/lib/bundler/man/gemfile.5.ronn +6 -0
  49. data/bundler/lib/bundler/retry.rb +1 -1
  50. data/bundler/lib/bundler/ruby_version.rb +7 -1
  51. data/bundler/lib/bundler/rubygems_ext.rb +43 -16
  52. data/bundler/lib/bundler/rubygems_gem_installer.rb +4 -3
  53. data/bundler/lib/bundler/source/git.rb +9 -5
  54. data/bundler/lib/bundler/source/rubygems.rb +5 -12
  55. data/bundler/lib/bundler/ui/shell.rb +24 -2
  56. data/bundler/lib/bundler/ui/silent.rb +12 -1
  57. data/bundler/lib/bundler/vendor/securerandom/.document +1 -0
  58. data/bundler/lib/bundler/vendor/securerandom/LICENSE.txt +22 -0
  59. data/bundler/lib/bundler/vendor/securerandom/lib/random/formatter.rb +373 -0
  60. data/bundler/lib/bundler/vendor/securerandom/lib/securerandom.rb +96 -0
  61. data/bundler/lib/bundler/vendored_securerandom.rb +14 -0
  62. data/bundler/lib/bundler/version.rb +1 -1
  63. data/bundler/lib/bundler.rb +1 -1
  64. data/lib/rubygems/commands/exec_command.rb +1 -6
  65. data/lib/rubygems/commands/fetch_command.rb +14 -0
  66. data/lib/rubygems/commands/install_command.rb +0 -4
  67. data/lib/rubygems/commands/setup_command.rb +2 -0
  68. data/lib/rubygems/exceptions.rb +2 -3
  69. data/lib/rubygems/installer.rb +1 -1
  70. data/lib/rubygems/remote_fetcher.rb +0 -1
  71. data/lib/rubygems/resolver/activation_request.rb +1 -1
  72. data/lib/rubygems/resolver/best_set.rb +2 -28
  73. data/lib/rubygems/source/git.rb +7 -5
  74. data/lib/rubygems/source/installed.rb +3 -1
  75. data/lib/rubygems/source/local.rb +8 -4
  76. data/lib/rubygems/source/specific_file.rb +5 -3
  77. data/lib/rubygems/source.rb +10 -8
  78. data/lib/rubygems/specification.rb +1 -1
  79. data/lib/rubygems/specification_policy.rb +1 -1
  80. data/lib/rubygems/vendor/molinillo/lib/molinillo/resolution.rb +1 -1
  81. data/lib/rubygems/vendor/net-http/lib/net/https.rb +1 -1
  82. data/lib/rubygems/vendor/optparse/lib/optparse.rb +1 -1
  83. data/lib/rubygems/vendor/resolv/lib/resolv.rb +71 -16
  84. data/lib/rubygems/vendor/securerandom/.document +1 -0
  85. data/lib/rubygems/vendor/securerandom/LICENSE.txt +22 -0
  86. data/lib/rubygems/vendor/securerandom/lib/random/formatter.rb +373 -0
  87. data/lib/rubygems/vendor/securerandom/lib/securerandom.rb +96 -0
  88. data/lib/rubygems/vendored_securerandom.rb +4 -0
  89. data/lib/rubygems.rb +18 -15
  90. data/rubygems-update.gemspec +1 -1
  91. metadata +13 -3
@@ -0,0 +1,373 @@
1
+ # -*- coding: us-ascii -*-
2
+ # frozen_string_literal: true
3
+
4
+ # == \Random number formatter.
5
+ #
6
+ # Formats generated random numbers in many manners. When <tt>'random/formatter'</tt>
7
+ # is required, several methods are added to empty core module <tt>Bundler::Random::Formatter</tt>,
8
+ # making them available as Random's instance and module methods.
9
+ #
10
+ # Standard library Bundler::SecureRandom is also extended with the module, and the methods
11
+ # described below are available as a module methods in it.
12
+ #
13
+ # === Examples
14
+ #
15
+ # Generate random hexadecimal strings:
16
+ #
17
+ # require 'bundler/vendor/securerandom/lib/random/formatter'
18
+ #
19
+ # prng = Random.new
20
+ # prng.hex(10) #=> "52750b30ffbc7de3b362"
21
+ # prng.hex(10) #=> "92b15d6c8dc4beb5f559"
22
+ # prng.hex(13) #=> "39b290146bea6ce975c37cfc23"
23
+ # # or just
24
+ # Random.hex #=> "1aed0c631e41be7f77365415541052ee"
25
+ #
26
+ # Generate random base64 strings:
27
+ #
28
+ # prng.base64(10) #=> "EcmTPZwWRAozdA=="
29
+ # prng.base64(10) #=> "KO1nIU+p9DKxGg=="
30
+ # prng.base64(12) #=> "7kJSM/MzBJI+75j8"
31
+ # Random.base64(4) #=> "bsQ3fQ=="
32
+ #
33
+ # Generate random binary strings:
34
+ #
35
+ # prng.random_bytes(10) #=> "\016\t{\370g\310pbr\301"
36
+ # prng.random_bytes(10) #=> "\323U\030TO\234\357\020\a\337"
37
+ # Random.random_bytes(6) #=> "\xA1\xE6Lr\xC43"
38
+ #
39
+ # Generate alphanumeric strings:
40
+ #
41
+ # prng.alphanumeric(10) #=> "S8baxMJnPl"
42
+ # prng.alphanumeric(10) #=> "aOxAg8BAJe"
43
+ # Random.alphanumeric #=> "TmP9OsJHJLtaZYhP"
44
+ #
45
+ # Generate UUIDs:
46
+ #
47
+ # prng.uuid #=> "2d931510-d99f-494a-8c67-87feb05e1594"
48
+ # prng.uuid #=> "bad85eb9-0713-4da7-8d36-07a8e4b00eab"
49
+ # Random.uuid #=> "f14e0271-de96-45cc-8911-8910292a42cd"
50
+ #
51
+ # All methods are available in the standard library Bundler::SecureRandom, too:
52
+ #
53
+ # Bundler::SecureRandom.hex #=> "05b45376a30c67238eb93b16499e50cf"
54
+
55
+ module Bundler::Random::Formatter
56
+
57
+ # Generate a random binary string.
58
+ #
59
+ # The argument _n_ specifies the length of the result string.
60
+ #
61
+ # If _n_ is not specified or is nil, 16 is assumed.
62
+ # It may be larger in future.
63
+ #
64
+ # The result may contain any byte: "\x00" - "\xff".
65
+ #
66
+ # require 'bundler/vendor/securerandom/lib/random/formatter'
67
+ #
68
+ # Random.random_bytes #=> "\xD8\\\xE0\xF4\r\xB2\xFC*WM\xFF\x83\x18\xF45\xB6"
69
+ # # or
70
+ # prng = Random.new
71
+ # prng.random_bytes #=> "m\xDC\xFC/\a\x00Uf\xB2\xB2P\xBD\xFF6S\x97"
72
+ def random_bytes(n=nil)
73
+ n = n ? n.to_int : 16
74
+ gen_random(n)
75
+ end
76
+
77
+ # Generate a random hexadecimal string.
78
+ #
79
+ # The argument _n_ specifies the length, in bytes, of the random number to be generated.
80
+ # The length of the resulting hexadecimal string is twice of _n_.
81
+ #
82
+ # If _n_ is not specified or is nil, 16 is assumed.
83
+ # It may be larger in the future.
84
+ #
85
+ # The result may contain 0-9 and a-f.
86
+ #
87
+ # require 'bundler/vendor/securerandom/lib/random/formatter'
88
+ #
89
+ # Random.hex #=> "eb693ec8252cd630102fd0d0fb7c3485"
90
+ # # or
91
+ # prng = Random.new
92
+ # prng.hex #=> "91dc3bfb4de5b11d029d376634589b61"
93
+ def hex(n=nil)
94
+ random_bytes(n).unpack1("H*")
95
+ end
96
+
97
+ # Generate a random base64 string.
98
+ #
99
+ # The argument _n_ specifies the length, in bytes, of the random number
100
+ # to be generated. The length of the result string is about 4/3 of _n_.
101
+ #
102
+ # If _n_ is not specified or is nil, 16 is assumed.
103
+ # It may be larger in the future.
104
+ #
105
+ # The result may contain A-Z, a-z, 0-9, "+", "/" and "=".
106
+ #
107
+ # require 'bundler/vendor/securerandom/lib/random/formatter'
108
+ #
109
+ # Random.base64 #=> "/2BuBuLf3+WfSKyQbRcc/A=="
110
+ # # or
111
+ # prng = Random.new
112
+ # prng.base64 #=> "6BbW0pxO0YENxn38HMUbcQ=="
113
+ #
114
+ # See RFC 3548 for the definition of base64.
115
+ def base64(n=nil)
116
+ [random_bytes(n)].pack("m0")
117
+ end
118
+
119
+ # Generate a random URL-safe base64 string.
120
+ #
121
+ # The argument _n_ specifies the length, in bytes, of the random number
122
+ # to be generated. The length of the result string is about 4/3 of _n_.
123
+ #
124
+ # If _n_ is not specified or is nil, 16 is assumed.
125
+ # It may be larger in the future.
126
+ #
127
+ # The boolean argument _padding_ specifies the padding.
128
+ # If it is false or nil, padding is not generated.
129
+ # Otherwise padding is generated.
130
+ # By default, padding is not generated because "=" may be used as a URL delimiter.
131
+ #
132
+ # The result may contain A-Z, a-z, 0-9, "-" and "_".
133
+ # "=" is also used if _padding_ is true.
134
+ #
135
+ # require 'bundler/vendor/securerandom/lib/random/formatter'
136
+ #
137
+ # Random.urlsafe_base64 #=> "b4GOKm4pOYU_-BOXcrUGDg"
138
+ # # or
139
+ # prng = Random.new
140
+ # prng.urlsafe_base64 #=> "UZLdOkzop70Ddx-IJR0ABg"
141
+ #
142
+ # prng.urlsafe_base64(nil, true) #=> "i0XQ-7gglIsHGV2_BNPrdQ=="
143
+ # prng.urlsafe_base64(nil, true) #=> "-M8rLhr7JEpJlqFGUMmOxg=="
144
+ #
145
+ # See RFC 3548 for the definition of URL-safe base64.
146
+ def urlsafe_base64(n=nil, padding=false)
147
+ s = [random_bytes(n)].pack("m0")
148
+ s.tr!("+/", "-_")
149
+ s.delete!("=") unless padding
150
+ s
151
+ end
152
+
153
+ # Generate a random v4 UUID (Universally Unique IDentifier).
154
+ #
155
+ # require 'bundler/vendor/securerandom/lib/random/formatter'
156
+ #
157
+ # Random.uuid #=> "2d931510-d99f-494a-8c67-87feb05e1594"
158
+ # Random.uuid #=> "bad85eb9-0713-4da7-8d36-07a8e4b00eab"
159
+ # # or
160
+ # prng = Random.new
161
+ # prng.uuid #=> "62936e70-1815-439b-bf89-8492855a7e6b"
162
+ #
163
+ # The version 4 UUID is purely random (except the version).
164
+ # It doesn't contain meaningful information such as MAC addresses, timestamps, etc.
165
+ #
166
+ # The result contains 122 random bits (15.25 random bytes).
167
+ #
168
+ # See RFC4122[https://datatracker.ietf.org/doc/html/rfc4122] for details of UUID.
169
+ #
170
+ def uuid
171
+ ary = random_bytes(16).unpack("NnnnnN")
172
+ ary[2] = (ary[2] & 0x0fff) | 0x4000
173
+ ary[3] = (ary[3] & 0x3fff) | 0x8000
174
+ "%08x-%04x-%04x-%04x-%04x%08x" % ary
175
+ end
176
+
177
+ alias uuid_v4 uuid
178
+
179
+ # Generate a random v7 UUID (Universally Unique IDentifier).
180
+ #
181
+ # require 'bundler/vendor/securerandom/lib/random/formatter'
182
+ #
183
+ # Random.uuid_v7 # => "0188d4c3-1311-7f96-85c7-242a7aa58f1e"
184
+ # Random.uuid_v7 # => "0188d4c3-16fe-744f-86af-38fa04c62bb5"
185
+ # Random.uuid_v7 # => "0188d4c3-1af8-764f-b049-c204ce0afa23"
186
+ # Random.uuid_v7 # => "0188d4c3-1e74-7085-b14f-ef6415dc6f31"
187
+ # # |<--sorted-->| |<----- random ---->|
188
+ #
189
+ # # or
190
+ # prng = Random.new
191
+ # prng.uuid_v7 # => "0188ca51-5e72-7950-a11d-def7ff977c98"
192
+ #
193
+ # The version 7 UUID starts with the least significant 48 bits of a 64 bit
194
+ # Unix timestamp (milliseconds since the epoch) and fills the remaining bits
195
+ # with random data, excluding the version and variant bits.
196
+ #
197
+ # This allows version 7 UUIDs to be sorted by creation time. Time ordered
198
+ # UUIDs can be used for better database index locality of newly inserted
199
+ # records, which may have a significant performance benefit compared to random
200
+ # data inserts.
201
+ #
202
+ # The result contains 74 random bits (9.25 random bytes).
203
+ #
204
+ # Note that this method cannot be made reproducable because its output
205
+ # includes not only random bits but also timestamp.
206
+ #
207
+ # See draft-ietf-uuidrev-rfc4122bis[https://datatracker.ietf.org/doc/draft-ietf-uuidrev-rfc4122bis/]
208
+ # for details of UUIDv7.
209
+ #
210
+ # ==== Monotonicity
211
+ #
212
+ # UUIDv7 has millisecond precision by default, so multiple UUIDs created
213
+ # within the same millisecond are not issued in monotonically increasing
214
+ # order. To create UUIDs that are time-ordered with sub-millisecond
215
+ # precision, up to 12 bits of additional timestamp may added with
216
+ # +extra_timestamp_bits+. The extra timestamp precision comes at the expense
217
+ # of random bits. Setting <tt>extra_timestamp_bits: 12</tt> provides ~244ns
218
+ # of precision, but only 62 random bits (7.75 random bytes).
219
+ #
220
+ # prng = Random.new
221
+ # Array.new(4) { prng.uuid_v7(extra_timestamp_bits: 12) }
222
+ # # =>
223
+ # ["0188d4c7-13da-74f9-8b53-22a786ffdd5a",
224
+ # "0188d4c7-13da-753b-83a5-7fb9b2afaeea",
225
+ # "0188d4c7-13da-754a-88ea-ac0baeedd8db",
226
+ # "0188d4c7-13da-7557-83e1-7cad9cda0d8d"]
227
+ # # |<--- sorted --->| |<-- random --->|
228
+ #
229
+ # Array.new(4) { prng.uuid_v7(extra_timestamp_bits: 8) }
230
+ # # =>
231
+ # ["0188d4c7-3333-7a95-850a-de6edb858f7e",
232
+ # "0188d4c7-3333-7ae8-842e-bc3a8b7d0cf9", # <- out of order
233
+ # "0188d4c7-3333-7ae2-995a-9f135dc44ead", # <- out of order
234
+ # "0188d4c7-3333-7af9-87c3-8f612edac82e"]
235
+ # # |<--- sorted -->||<---- random --->|
236
+ #
237
+ # Any rollbacks of the system clock will break monotonicity. UUIDv7 is based
238
+ # on UTC, which excludes leap seconds and can rollback the clock. To avoid
239
+ # this, the system clock can synchronize with an NTP server configured to use
240
+ # a "leap smear" approach. NTP or PTP will also be needed to synchronize
241
+ # across distributed nodes.
242
+ #
243
+ # Counters and other mechanisms for stronger guarantees of monotonicity are
244
+ # not implemented. Applications with stricter requirements should follow
245
+ # {Section 6.2}[https://www.ietf.org/archive/id/draft-ietf-uuidrev-rfc4122bis-07.html#monotonicity_counters]
246
+ # of the specification.
247
+ #
248
+ def uuid_v7(extra_timestamp_bits: 0)
249
+ case (extra_timestamp_bits = Integer(extra_timestamp_bits))
250
+ when 0 # min timestamp precision
251
+ ms = Process.clock_gettime(Process::CLOCK_REALTIME, :millisecond)
252
+ rand = random_bytes(10)
253
+ rand.setbyte(0, rand.getbyte(0) & 0x0f | 0x70) # version
254
+ rand.setbyte(2, rand.getbyte(2) & 0x3f | 0x80) # variant
255
+ "%08x-%04x-%s" % [
256
+ (ms & 0x0000_ffff_ffff_0000) >> 16,
257
+ (ms & 0x0000_0000_0000_ffff),
258
+ rand.unpack("H4H4H12").join("-")
259
+ ]
260
+
261
+ when 12 # max timestamp precision
262
+ ms, ns = Process.clock_gettime(Process::CLOCK_REALTIME, :nanosecond)
263
+ .divmod(1_000_000)
264
+ extra_bits = ns * 4096 / 1_000_000
265
+ rand = random_bytes(8)
266
+ rand.setbyte(0, rand.getbyte(0) & 0x3f | 0x80) # variant
267
+ "%08x-%04x-7%03x-%s" % [
268
+ (ms & 0x0000_ffff_ffff_0000) >> 16,
269
+ (ms & 0x0000_0000_0000_ffff),
270
+ extra_bits,
271
+ rand.unpack("H4H12").join("-")
272
+ ]
273
+
274
+ when (0..12) # the generic version is slower than the special cases above
275
+ rand_a, rand_b1, rand_b2, rand_b3 = random_bytes(10).unpack("nnnN")
276
+ rand_mask_bits = 12 - extra_timestamp_bits
277
+ ms, ns = Process.clock_gettime(Process::CLOCK_REALTIME, :nanosecond)
278
+ .divmod(1_000_000)
279
+ "%08x-%04x-%04x-%04x-%04x%08x" % [
280
+ (ms & 0x0000_ffff_ffff_0000) >> 16,
281
+ (ms & 0x0000_0000_0000_ffff),
282
+ 0x7000 |
283
+ ((ns * (1 << extra_timestamp_bits) / 1_000_000) << rand_mask_bits) |
284
+ rand_a & ((1 << rand_mask_bits) - 1),
285
+ 0x8000 | (rand_b1 & 0x3fff),
286
+ rand_b2,
287
+ rand_b3
288
+ ]
289
+
290
+ else
291
+ raise ArgumentError, "extra_timestamp_bits must be in 0..12"
292
+ end
293
+ end
294
+
295
+ # Internal interface to Random; Generate random data _n_ bytes.
296
+ private def gen_random(n)
297
+ self.bytes(n)
298
+ end
299
+
300
+ # Generate a string that randomly draws from a
301
+ # source array of characters.
302
+ #
303
+ # The argument _source_ specifies the array of characters from which
304
+ # to generate the string.
305
+ # The argument _n_ specifies the length, in characters, of the string to be
306
+ # generated.
307
+ #
308
+ # The result may contain whatever characters are in the source array.
309
+ #
310
+ # require 'bundler/vendor/securerandom/lib/random/formatter'
311
+ #
312
+ # prng.choose([*'l'..'r'], 16) #=> "lmrqpoonmmlqlron"
313
+ # prng.choose([*'0'..'9'], 5) #=> "27309"
314
+ private def choose(source, n)
315
+ size = source.size
316
+ m = 1
317
+ limit = size
318
+ while limit * size <= 0x100000000
319
+ limit *= size
320
+ m += 1
321
+ end
322
+ result = ''.dup
323
+ while m <= n
324
+ rs = random_number(limit)
325
+ is = rs.digits(size)
326
+ (m-is.length).times { is << 0 }
327
+ result << source.values_at(*is).join('')
328
+ n -= m
329
+ end
330
+ if 0 < n
331
+ rs = random_number(limit)
332
+ is = rs.digits(size)
333
+ if is.length < n
334
+ (n-is.length).times { is << 0 }
335
+ else
336
+ is.pop while n < is.length
337
+ end
338
+ result.concat source.values_at(*is).join('')
339
+ end
340
+ result
341
+ end
342
+
343
+ # The default character list for #alphanumeric.
344
+ ALPHANUMERIC = [*'A'..'Z', *'a'..'z', *'0'..'9']
345
+
346
+ # Generate a random alphanumeric string.
347
+ #
348
+ # The argument _n_ specifies the length, in characters, of the alphanumeric
349
+ # string to be generated.
350
+ # The argument _chars_ specifies the character list which the result is
351
+ # consist of.
352
+ #
353
+ # If _n_ is not specified or is nil, 16 is assumed.
354
+ # It may be larger in the future.
355
+ #
356
+ # The result may contain A-Z, a-z and 0-9, unless _chars_ is specified.
357
+ #
358
+ # require 'bundler/vendor/securerandom/lib/random/formatter'
359
+ #
360
+ # Random.alphanumeric #=> "2BuBuLf3WfSKyQbR"
361
+ # # or
362
+ # prng = Random.new
363
+ # prng.alphanumeric(10) #=> "i6K93NdqiH"
364
+ #
365
+ # Random.alphanumeric(4, chars: [*"0".."9"]) #=> "2952"
366
+ # # or
367
+ # prng = Random.new
368
+ # prng.alphanumeric(10, chars: [*"!".."/"]) #=> ",.,++%/''."
369
+ def alphanumeric(n = nil, chars: ALPHANUMERIC)
370
+ n = 16 if n.nil?
371
+ choose(chars, n)
372
+ end
373
+ end
@@ -0,0 +1,96 @@
1
+ # -*- coding: us-ascii -*-
2
+ # frozen_string_literal: true
3
+
4
+ require_relative 'random/formatter'
5
+
6
+ # == Secure random number generator interface.
7
+ #
8
+ # This library is an interface to secure random number generators which are
9
+ # suitable for generating session keys in HTTP cookies, etc.
10
+ #
11
+ # You can use this library in your application by requiring it:
12
+ #
13
+ # require 'bundler/vendor/securerandom/lib/securerandom'
14
+ #
15
+ # It supports the following secure random number generators:
16
+ #
17
+ # * openssl
18
+ # * /dev/urandom
19
+ # * Win32
20
+ #
21
+ # Bundler::SecureRandom is extended by the Bundler::Random::Formatter module which
22
+ # defines the following methods:
23
+ #
24
+ # * alphanumeric
25
+ # * base64
26
+ # * choose
27
+ # * gen_random
28
+ # * hex
29
+ # * rand
30
+ # * random_bytes
31
+ # * random_number
32
+ # * urlsafe_base64
33
+ # * uuid
34
+ #
35
+ # These methods are usable as class methods of Bundler::SecureRandom such as
36
+ # +Bundler::SecureRandom.hex+.
37
+ #
38
+ # If a secure random number generator is not available,
39
+ # +NotImplementedError+ is raised.
40
+
41
+ module Bundler::SecureRandom
42
+
43
+ # The version
44
+ VERSION = "0.3.1"
45
+
46
+ class << self
47
+ # Returns a random binary string containing +size+ bytes.
48
+ #
49
+ # See Random.bytes
50
+ def bytes(n)
51
+ return gen_random(n)
52
+ end
53
+
54
+ private
55
+
56
+ # :stopdoc:
57
+
58
+ # Implementation using OpenSSL
59
+ def gen_random_openssl(n)
60
+ return OpenSSL::Random.random_bytes(n)
61
+ end
62
+
63
+ # Implementation using system random device
64
+ def gen_random_urandom(n)
65
+ ret = Random.urandom(n)
66
+ unless ret
67
+ raise NotImplementedError, "No random device"
68
+ end
69
+ unless ret.length == n
70
+ raise NotImplementedError, "Unexpected partial read from random device: only #{ret.length} for #{n} bytes"
71
+ end
72
+ ret
73
+ end
74
+
75
+ begin
76
+ # Check if Random.urandom is available
77
+ Random.urandom(1)
78
+ alias gen_random gen_random_urandom
79
+ rescue RuntimeError
80
+ begin
81
+ require 'openssl'
82
+ rescue NoMethodError
83
+ raise NotImplementedError, "No random device"
84
+ else
85
+ alias gen_random gen_random_openssl
86
+ end
87
+ end
88
+
89
+ # :startdoc:
90
+
91
+ # Generate random data bytes for Bundler::Random::Formatter
92
+ public :gen_random
93
+ end
94
+ end
95
+
96
+ Bundler::SecureRandom.extend(Bundler::Random::Formatter)
@@ -0,0 +1,14 @@
1
+ # frozen_string_literal: true
2
+
3
+ # Use RubyGems vendored copy when available. Otherwise fallback to Bundler
4
+ # vendored copy. The vendored copy in Bundler can be removed once support for
5
+ # RubyGems 3.5.18 is dropped.
6
+
7
+ begin
8
+ require "rubygems/vendored_securerandom"
9
+ rescue LoadError
10
+ module Bundler::Random; end
11
+ require_relative "vendor/securerandom/lib/securerandom"
12
+ Gem::SecureRandom = Bundler::SecureRandom
13
+ Gem::Random = Bundler::Random
14
+ end
@@ -1,7 +1,7 @@
1
1
  # frozen_string_literal: false
2
2
 
3
3
  module Bundler
4
- VERSION = "2.5.18".freeze
4
+ VERSION = "2.5.19".freeze
5
5
 
6
6
  def self.bundler_major_version
7
7
  @bundler_major_version ||= VERSION.split(".").first.to_i
@@ -652,7 +652,7 @@ module Bundler
652
652
  rescue ScriptError, StandardError => e
653
653
  msg = "There was an error while loading `#{path.basename}`: #{e.message}"
654
654
 
655
- raise GemspecError, Dsl::DSLError.new(msg, path, e.backtrace, contents)
655
+ raise GemspecError, Dsl::DSLError.new(msg, path.to_s, e.backtrace, contents)
656
656
  end
657
657
 
658
658
  def configure_gem_path
@@ -57,8 +57,6 @@ to the same gem path as user-installed gems.
57
57
  end
58
58
 
59
59
  def execute
60
- gem_paths = { "GEM_HOME" => Gem.paths.home, "GEM_PATH" => Gem.paths.path.join(File::PATH_SEPARATOR), "GEM_SPEC_CACHE" => Gem.paths.spec_cache_dir }.compact
61
-
62
60
  check_executable
63
61
 
64
62
  print_command
@@ -74,9 +72,6 @@ to the same gem path as user-installed gems.
74
72
  end
75
73
 
76
74
  load!
77
- ensure
78
- ENV.update(gem_paths) if gem_paths
79
- Gem.clear_paths
80
75
  end
81
76
 
82
77
  private
@@ -143,7 +138,7 @@ to the same gem path as user-installed gems.
143
138
  end
144
139
 
145
140
  def set_gem_exec_install_paths
146
- home = File.join(Gem.dir, "gem_exec")
141
+ home = Gem.dir
147
142
 
148
143
  ENV["GEM_PATH"] = ([home] + Gem.path).join(File::PATH_SEPARATOR)
149
144
  ENV["GEM_HOME"] = home
@@ -63,6 +63,17 @@ then repackaging it.
63
63
 
64
64
  def execute
65
65
  check_version
66
+
67
+ exit_code = fetch_gems
68
+
69
+ terminate_interaction exit_code
70
+ end
71
+
72
+ private
73
+
74
+ def fetch_gems
75
+ exit_code = 0
76
+
66
77
  version = options[:version]
67
78
 
68
79
  platform = Gem.platforms.last
@@ -86,10 +97,13 @@ then repackaging it.
86
97
 
87
98
  if spec.nil?
88
99
  show_lookup_failure gem_name, gem_version, errors, suppress_suggestions, options[:domain]
100
+ exit_code |= 2
89
101
  next
90
102
  end
91
103
  source.download spec
92
104
  say "Downloaded #{spec.full_name}"
93
105
  end
106
+
107
+ exit_code
94
108
  end
95
109
  end
@@ -224,10 +224,6 @@ You can use `i` command instead of `install`.
224
224
  rescue Gem::InstallError => e
225
225
  alert_error "Error installing #{gem_name}:\n\t#{e.message}"
226
226
  exit_code |= 1
227
- rescue Gem::GemNotFoundException => e
228
- show_lookup_failure e.name, e.version, e.errors, suppress_suggestions
229
-
230
- exit_code |= 2
231
227
  rescue Gem::UnsatisfiableDependencyError => e
232
228
  show_lookup_failure e.name, e.version, e.errors, suppress_suggestions,
233
229
  "'#{gem_name}' (#{gem_version})"
@@ -340,6 +340,8 @@ By default, this RubyGems will install gem as:
340
340
 
341
341
  require_relative "../rdoc"
342
342
 
343
+ return false unless defined?(Gem::RDoc)
344
+
343
345
  fake_spec = Gem::Specification.new "rubygems", Gem::VERSION
344
346
  def fake_spec.full_gem_path
345
347
  File.expand_path "../../..", __dir__
@@ -104,9 +104,6 @@ end
104
104
 
105
105
  class Gem::GemNotFoundException < Gem::Exception; end
106
106
 
107
- ##
108
- # Raised by the DependencyInstaller when a specific gem cannot be found
109
-
110
107
  class Gem::SpecificGemNotFoundException < Gem::GemNotFoundException
111
108
  ##
112
109
  # Creates a new SpecificGemNotFoundException for a gem with the given +name+
@@ -137,6 +134,8 @@ class Gem::SpecificGemNotFoundException < Gem::GemNotFoundException
137
134
  attr_reader :errors
138
135
  end
139
136
 
137
+ Gem.deprecate_constant :SpecificGemNotFoundException
138
+
140
139
  ##
141
140
  # Raised by Gem::Resolver when dependencies conflict and create the
142
141
  # inability to find a valid possible spec for a request.
@@ -538,7 +538,7 @@ class Gem::Installer
538
538
  def generate_bin_script(filename, bindir)
539
539
  bin_script_path = File.join bindir, formatted_program_filename(filename)
540
540
 
541
- Gem.open_file_with_flock("#{bin_script_path}.lock") do
541
+ Gem.open_file_with_lock(bin_script_path) do
542
542
  require "fileutils"
543
543
  FileUtils.rm_f bin_script_path # prior install may have been --no-wrappers
544
544
 
@@ -75,7 +75,6 @@ class Gem::RemoteFetcher
75
75
  def initialize(proxy=nil, dns=nil, headers={})
76
76
  require_relative "core_ext/tcpsocket_init" if Gem.configuration.ipv4_fallback_enabled
77
77
  require_relative "vendored_net_http"
78
- require "stringio"
79
78
  require_relative "vendor/uri/lib/uri"
80
79
 
81
80
  Socket.do_not_reverse_lookup = true
@@ -106,7 +106,7 @@ class Gem::Resolver::ActivationRequest
106
106
  this_spec = full_spec
107
107
 
108
108
  Gem::Specification.any? do |s|
109
- s == this_spec
109
+ s == this_spec && s.base_dir == this_spec.base_dir
110
110
  end
111
111
  end
112
112
  end
@@ -29,10 +29,8 @@ class Gem::Resolver::BestSet < Gem::Resolver::ComposedSet
29
29
  pick_sets if @remote && @sets.empty?
30
30
 
31
31
  super
32
- rescue Gem::RemoteFetcher::FetchError => e
33
- replace_failed_api_set e
34
-
35
- retry
32
+ rescue Gem::RemoteFetcher::FetchError
33
+ []
36
34
  end
37
35
 
38
36
  def prefetch(reqs) # :nodoc:
@@ -50,28 +48,4 @@ class Gem::Resolver::BestSet < Gem::Resolver::ComposedSet
50
48
  q.pp @sets
51
49
  end
52
50
  end
53
-
54
- ##
55
- # Replaces a failed APISet for the URI in +error+ with an IndexSet.
56
- #
57
- # If no matching APISet can be found the original +error+ is raised.
58
- #
59
- # The calling method must retry the exception to repeat the lookup.
60
-
61
- def replace_failed_api_set(error) # :nodoc:
62
- uri = error.original_uri
63
- uri = Gem::URI uri unless Gem::URI === uri
64
- uri += "."
65
-
66
- raise error unless api_set = @sets.find do |set|
67
- Gem::Resolver::APISet === set && set.dep_uri == uri
68
- end
69
-
70
- index_set = Gem::Resolver::IndexSet.new api_set.source
71
-
72
- @sets.map! do |set|
73
- next set unless set == api_set
74
- index_set
75
- end
76
- end
77
51
  end