sqlite3 1.5.0.rc2-arm-linux → 1.5.2-arm-linux
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +33 -3
- data/CONTRIBUTING.md +1 -1
- data/README.md +4 -2
- data/dependencies.yml +14 -0
- data/ext/sqlite3/aggregator.c +3 -2
- data/ext/sqlite3/extconf.rb +3 -17
- data/lib/sqlite3/2.6/sqlite3_native.so +0 -0
- data/lib/sqlite3/2.7/sqlite3_native.so +0 -0
- data/lib/sqlite3/3.0/sqlite3_native.so +0 -0
- data/lib/sqlite3/3.1/sqlite3_native.so +0 -0
- data/lib/sqlite3/version.rb +3 -5
- metadata +5 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 1829cf9ccdd7524878079df875e29611593b267372f07635b4c91c5f78f403ee
|
4
|
+
data.tar.gz: 4b4073a65bb12a23d06e1985b2f09742c47f588e5872374354db7e263fd3735e
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 1fccdebe123798fdcb831998c7b33a138375bc2364ce2eb3332b9e1ce0cbf02623da65606c74153c1a523d288eb1e6cae103b3218dd9ee6fec06bceb25257be3
|
7
|
+
data.tar.gz: dd0c88a563ba39e168f276aaab6a5640e2d4ab0a933114ea149537e7c8d7c3ab7e55665f77977dfd2ad4f9e8a4951848e3c5d9a0004252bc15e087c73ba1c006
|
data/CHANGELOG.md
CHANGED
@@ -1,6 +1,36 @@
|
|
1
1
|
# sqlite3-ruby Changelog
|
2
2
|
|
3
|
-
## 1.5.
|
3
|
+
## 1.5.2 / 2022-10-01
|
4
|
+
|
5
|
+
### Packaging
|
6
|
+
|
7
|
+
This version correctly vendors the tarball for sqlite v3.39.4 in the vanilla "ruby" platform gem package, so that users will not require network access at installation.
|
8
|
+
|
9
|
+
v1.5.0 and v1.5.1 mistakenly packaged the tarball for sqlite v3.38.5 in the vanilla "ruby" platform gem, resulting in downloading the intended tarball over the network at installation time (or, if the network was not available, failure to install). Note that the precompiled native gems were not affected by this issue. [#352]
|
10
|
+
|
11
|
+
|
12
|
+
## 1.5.1 / 2022-09-29
|
13
|
+
|
14
|
+
### Dependencies
|
15
|
+
|
16
|
+
* Vendored sqlite is updated to [v3.39.4](https://sqlite.org/releaselog/3_39_4.html).
|
17
|
+
|
18
|
+
### Security
|
19
|
+
|
20
|
+
The vendored version of sqlite, v3.39.4, should be considered to be a security release. From the release notes:
|
21
|
+
|
22
|
+
> Version 3.39.4 is a minimal patch against the prior release that addresses issues found since the
|
23
|
+
> prior release. In particular, a potential vulnerability in the FTS3 extension has been fixed, so
|
24
|
+
> this should be considered a security update.
|
25
|
+
>
|
26
|
+
> In order to exploit the vulnerability, an attacker must have full SQL access and must be able to
|
27
|
+
> construct a corrupt database with over 2GB of FTS3 content. The problem arises from a 32-bit
|
28
|
+
> signed integer overflow.
|
29
|
+
|
30
|
+
For more information please see [GHSA-mgvv-5mxp-xq67](https://github.com/sparklemotion/sqlite3-ruby/security/advisories/GHSA-mgvv-5mxp-xq67).
|
31
|
+
|
32
|
+
|
33
|
+
## 1.5.0 / 2022-09-08
|
4
34
|
|
5
35
|
### Packaging
|
6
36
|
|
@@ -23,13 +53,13 @@ See [the README](https://github.com/sparklemotion/sqlite3-ruby#native-gems-recom
|
|
23
53
|
|
24
54
|
#### More consistent developer experience
|
25
55
|
|
26
|
-
Both the native (precompiled) gems and the vanilla "ruby platform" (source) gem include sqlite v3.39.
|
56
|
+
Both the native (precompiled) gems and the vanilla "ruby platform" (source) gem include sqlite v3.39.3 by default.
|
27
57
|
|
28
58
|
Defaulting to a consistent version of sqlite across all systems means that your development environment behaves exactly like your production environment, and you have access to the latest and greatest features of sqlite.
|
29
59
|
|
30
60
|
You can opt-out of the packaged version of sqlite (and use your system-installed library as in versions < 1.5.0). See [the README](https://github.com/sparklemotion/sqlite3-ruby#avoiding-the-precompiled-native-gem) for more information.
|
31
61
|
|
32
|
-
[Release notes for this version of sqlite](https://sqlite.org/releaselog/
|
62
|
+
[Release notes for this version of sqlite](https://sqlite.org/releaselog/3_39_3.html)
|
33
63
|
|
34
64
|
|
35
65
|
### Rubies and Platforms
|
data/CONTRIBUTING.md
CHANGED
@@ -20,5 +20,5 @@ A quick checklist:
|
|
20
20
|
- [ ] update `CHANGELOG.md` and `lib/sqlite3/version.rb` including `VersionProxy::{MINOR,TINY}`
|
21
21
|
- [ ] create a git tag using a format that matches the pattern `v\d+\.\d+\.\d+`, e.g. `v1.3.13`
|
22
22
|
- [ ] run `bin/build-gems` and make sure it completes and all the tests pass
|
23
|
-
- [ ] `for g in gems/*.gem ; do gem push $g ; done`
|
23
|
+
- [ ] `for g in gems/*.gem ; do gem push $g ; done`s
|
24
24
|
- [ ] create a release at https://github.com/sparklemotion/sqlite3-ruby/releases and include sha2 checksums
|
data/README.md
CHANGED
@@ -107,7 +107,8 @@ If you're on a platform that supports a native gem but you want to avoid using i
|
|
107
107
|
|
108
108
|
- If you're not using Bundler, then run `gem install sqlite3 --platform=ruby`
|
109
109
|
- If you are using Bundler
|
110
|
-
- version 2.
|
110
|
+
- version 2.3.18 or later, you can specify [`gem "sqlite3", force_ruby_platform: true`](https://bundler.io/v2.3/man/gemfile.5.html#FORCE_RUBY_PLATFORM)
|
111
|
+
- version 2.1 or later, then you'll need to run `bundle config set force_ruby_platform true`
|
111
112
|
- version 2.0 or earlier, then you'll need to run `bundle config force_ruby_platform true`
|
112
113
|
|
113
114
|
|
@@ -118,7 +119,7 @@ If you are on a platform or version of Ruby that is not covered by the Native Ge
|
|
118
119
|
|
119
120
|
#### Packaged libsqlite3
|
120
121
|
|
121
|
-
By default, as of v1.5.0 of this library, libsqlite3
|
122
|
+
By default, as of v1.5.0 of this library, the latest available version of libsqlite3 is packaged with the gem and will be compiled and used automatically. This takes a bit longer than the native gem, but will provide a modern, well-supported version of libsqlite3.
|
122
123
|
|
123
124
|
For example, on a linux system running Ruby 2.5:
|
124
125
|
|
@@ -143,6 +144,7 @@ If you would prefer to build the sqlite3-ruby gem against your system libsqlite3
|
|
143
144
|
|
144
145
|
PLEASE NOTE:
|
145
146
|
|
147
|
+
- you must avoid installing a precompiled native gem (see [previous section](#avoiding-the-precompiled-native-gem))
|
146
148
|
- only versions of libsqlite3 `>= 3.5.0` are supported,
|
147
149
|
- and some library features may depend on how your libsqlite3 was compiled.
|
148
150
|
|
data/dependencies.yml
ADDED
@@ -0,0 +1,14 @@
|
|
1
|
+
# TODO: stop using symbols here once we no longer support Ruby 2.7 and can rely on symbolize_names
|
2
|
+
:sqlite3:
|
3
|
+
# checksum verified by first checking the published sha3(256) checksum against https://sqlite.org/download.html:
|
4
|
+
#
|
5
|
+
# $ sha3sum -a 256 ports/archives/sqlite-autoconf-3390400.tar.gz
|
6
|
+
# 431328e30d12c551da9ba7ef2122b269076058512014afa799caaf62ca567090 ports/archives/sqlite-autoconf-3390400.tar.gz
|
7
|
+
#
|
8
|
+
# $ sha256sum ports/archives/sqlite-autoconf-3390400.tar.gz
|
9
|
+
# f31d445b48e67e284cf206717cc170ab63cbe4fd7f79a82793b772285e78fdbb ports/archives/sqlite-autoconf-3390400.tar.gz
|
10
|
+
#
|
11
|
+
:version: "3.39.4"
|
12
|
+
:files:
|
13
|
+
- :url: "https://sqlite.org/2022/sqlite-autoconf-3390400.tar.gz"
|
14
|
+
:sha256: "f31d445b48e67e284cf206717cc170ab63cbe4fd7f79a82793b772285e78fdbb"
|
data/ext/sqlite3/aggregator.c
CHANGED
@@ -265,9 +265,10 @@ rb_sqlite3_define_aggregator2(VALUE self, VALUE aggregator, VALUE ruby_name)
|
|
265
265
|
void
|
266
266
|
rb_sqlite3_aggregator_init(void)
|
267
267
|
{
|
268
|
-
rb_gc_register_address(&cAggregatorWrapper);
|
269
|
-
rb_gc_register_address(&cAggregatorInstance);
|
270
268
|
/* rb_class_new generatos class with undefined allocator in ruby 1.9 */
|
271
269
|
cAggregatorWrapper = rb_funcall(rb_cClass, rb_intern("new"), 0);
|
270
|
+
rb_gc_register_mark_object(cAggregatorWrapper);
|
271
|
+
|
272
272
|
cAggregatorInstance = rb_funcall(rb_cClass, rb_intern("new"), 0);
|
273
|
+
rb_gc_register_mark_object(cAggregatorInstance);
|
273
274
|
}
|
data/ext/sqlite3/extconf.rb
CHANGED
@@ -1,5 +1,6 @@
|
|
1
1
|
require "mkmf"
|
2
2
|
require "mini_portile2"
|
3
|
+
require "yaml"
|
3
4
|
|
4
5
|
module Sqlite3
|
5
6
|
module ExtConf
|
@@ -131,23 +132,8 @@ module Sqlite3
|
|
131
132
|
end
|
132
133
|
|
133
134
|
def mini_portile_config
|
134
|
-
|
135
|
-
|
136
|
-
# checksum verified by first checking the published sha3(256) checksum:
|
137
|
-
#
|
138
|
-
# $ sha3sum -a 256 ports/archives/sqlite-autoconf-3390200.tar.gz
|
139
|
-
# b195891eb32305481e61c6718b8cc3b090685b613c4824a076c63166a46c5bee ports/archives/sqlite-autoconf-3390200.tar.gz
|
140
|
-
#
|
141
|
-
# $ sha256sum ports/archives/sqlite-autoconf-3390200.tar.gz
|
142
|
-
# 852be8a6183a17ba47cee0bbff7400b7aa5affd283bf3beefc34fcd088a239de ports/archives/sqlite-autoconf-3390200.tar.gz
|
143
|
-
#
|
144
|
-
version: "3.39.2",
|
145
|
-
files: [{
|
146
|
-
url: "https://www.sqlite.org/2022/sqlite-autoconf-3390200.tar.gz",
|
147
|
-
sha256: "852be8a6183a17ba47cee0bbff7400b7aa5affd283bf3beefc34fcd088a239de",
|
148
|
-
}],
|
149
|
-
}
|
150
|
-
}
|
135
|
+
# TODO: once Ruby 2.7 is no longer supported, use symbolize_names: true
|
136
|
+
YAML.load_file(File.join(package_root_dir, "dependencies.yml"))
|
151
137
|
end
|
152
138
|
|
153
139
|
def abort_could_not_find(missing)
|
Binary file
|
Binary file
|
Binary file
|
Binary file
|
data/lib/sqlite3/version.rb
CHANGED
@@ -1,16 +1,14 @@
|
|
1
1
|
module SQLite3
|
2
2
|
|
3
|
-
VERSION = "1.5.
|
3
|
+
VERSION = "1.5.2"
|
4
4
|
|
5
5
|
module VersionProxy
|
6
|
-
|
7
6
|
MAJOR = 1
|
8
7
|
MINOR = 5
|
9
|
-
TINY =
|
10
|
-
BUILD =
|
8
|
+
TINY = 2
|
9
|
+
BUILD = nil
|
11
10
|
|
12
11
|
STRING = [ MAJOR, MINOR, TINY, BUILD ].compact.join( "." )
|
13
|
-
#:beta-tag:
|
14
12
|
|
15
13
|
VERSION = ::SQLite3::VERSION
|
16
14
|
end
|
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: sqlite3
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.5.
|
4
|
+
version: 1.5.2
|
5
5
|
platform: arm-linux
|
6
6
|
authors:
|
7
7
|
- Jamis Buck
|
@@ -10,7 +10,7 @@ authors:
|
|
10
10
|
autorequire:
|
11
11
|
bindir: bin
|
12
12
|
cert_chain: []
|
13
|
-
date: 2022-
|
13
|
+
date: 2022-10-01 00:00:00.000000000 Z
|
14
14
|
dependencies:
|
15
15
|
- !ruby/object:Gem::Dependency
|
16
16
|
name: minitest
|
@@ -103,6 +103,7 @@ files:
|
|
103
103
|
- LICENSE
|
104
104
|
- LICENSE-DEPENDENCIES
|
105
105
|
- README.md
|
106
|
+
- dependencies.yml
|
106
107
|
- ext/sqlite3/aggregator.c
|
107
108
|
- ext/sqlite3/aggregator.h
|
108
109
|
- ext/sqlite3/backup.c
|
@@ -178,9 +179,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
178
179
|
version: 3.2.dev
|
179
180
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
180
181
|
requirements:
|
181
|
-
- - "
|
182
|
+
- - ">="
|
182
183
|
- !ruby/object:Gem::Version
|
183
|
-
version:
|
184
|
+
version: '0'
|
184
185
|
requirements: []
|
185
186
|
rubygems_version: 3.3.4
|
186
187
|
signing_key:
|