1berry/ruby
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

[rubygems/rubygems] Add CHECKSUMS for each gem in lockfile

Browse Source 
We lock the checksum for each resolved spec under a new CHECKSUMS
section in the lockfile.

If the locked spec does not resolve for the local platform, we preserve
the locked checksum, similar to how we preserve specs.

Checksum locking only makes sense on install. The compact index
information is only available then.

https://github.com/rubygems/rubygems/commit/bde37ca6bf
This commit is contained in:
Thong Kuah 2022-08-01 11:42:18 +12:00 committed by Hiroshi SHIBATA
parent 2d468358a5
commit ad08674d8d
No known key found for this signature in database
GPG Key ID: F9CF13417264FAC2
31 changed files with 760 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
lib/bundler.rb
View File

@ -39,6 +39,7 @@ module Bundler
environment_preserver.replace_with_backup environment_preserver.replace_with_backup
SUDO_MUTEX = Thread::Mutex.new SUDO_MUTEX = Thread::Mutex.new
autoload :Checksum, File.expand_path("bundler/checksum", __dir__)
autoload :Definition, File.expand_path("bundler/definition", __dir__) autoload :Definition, File.expand_path("bundler/definition", __dir__)
autoload :Dependency, File.expand_path("bundler/dependency", __dir__) autoload :Dependency, File.expand_path("bundler/dependency", __dir__)
autoload :Deprecate, File.expand_path("bundler/deprecate", __dir__) autoload :Deprecate, File.expand_path("bundler/deprecate", __dir__)

42
lib/bundler/checksum.rb Normal file
View File

@ -0,0 +1,42 @@
# frozen_string_literal: true
module Bundler
class Checksum
attr_reader :name, :version, :platform
attr_accessor :checksum
SHA256 = /\Asha256-([a-z0-9]{64}|[A-Za-z0-9+\/=]{44})\z/.freeze
def initialize(name, version, platform, checksum = nil)
@name = name
@version = version
@platform = platform || Gem::Platform::RUBY
@checksum = checksum
if @checksum && @checksum !~ SHA256
raise ArgumentError, "invalid checksum (#{@checksum})"
end
end
def match_spec?(spec)
name == spec.name &&
version == spec.version &&
platform.to_s == spec.platform.to_s
end
def to_lock
out = String.new
if platform == Gem::Platform::RUBY
out << " #{name} (#{version})"
else
out << " #{name} (#{version}-#{platform})"
end
out << " #{checksum}" if checksum
out << "\n"
out
end
end
end

3
lib/bundler/definition.rb
View File

@ -15,6 +15,7 @@ module Bundler
:dependencies, :dependencies,
:locked_deps, :locked_deps,
:locked_gems, :locked_gems,
:locked_checksums,
:platforms, :platforms,
:ruby_version, :ruby_version,
:lockfile, :lockfile,
@ -92,6 +93,7 @@ module Bundler
@locked_bundler_version = @locked_gems.bundler_version @locked_bundler_version = @locked_gems.bundler_version
@locked_ruby_version = @locked_gems.ruby_version @locked_ruby_version = @locked_gems.ruby_version
@originally_locked_specs = SpecSet.new(@locked_gems.specs) @originally_locked_specs = SpecSet.new(@locked_gems.specs)
@locked_checksums = @locked_gems.checksums
if unlock != true if unlock != true
@locked_deps = @locked_gems.dependencies @locked_deps = @locked_gems.dependencies
@ -112,6 +114,7 @@ module Bundler
@originally_locked_specs = @locked_specs @originally_locked_specs = @locked_specs
@locked_sources = [] @locked_sources = []
@locked_platforms = [] @locked_platforms = []
@locked_checksums = []
end end
locked_gem_sources = @locked_sources.select {|s| s.is_a?(Source::Rubygems) } locked_gem_sources = @locked_sources.select {|s| s.is_a?(Source::Rubygems) }

5
lib/bundler/endpoint_specification.rb
View File

@ -104,6 +104,11 @@ module Bundler
@remote_specification = spec @remote_specification = spec
end end
def to_checksum
digest = "sha256-#{checksum}" if checksum
Bundler::Checksum.new(name, version, platform, digest)
end
private private
def _remote_specification def _remote_specification

26
lib/bundler/lazy_specification.rb
View File

@ -76,6 +76,18 @@ module Bundler
out out
end end
#def materialize_for_checksum
#if @specification
#yield
#else
#materialize_for_installation
#yield
#@specification = nil
#end
#end
def materialize_for_installation def materialize_for_installation
source.local! source.local!
@ -134,6 +146,20 @@ module Bundler
" #{source.revision[0..6]}" " #{source.revision[0..6]}"
end end
def to_checksum
return nil unless @specification
#
# See comment about #ruby_platform_materializes_to_ruby_platform?
# If the old lockfile format is present where there is no specific
# platform, then we should skip locking checksums as it is not
# deterministic which platform variant is locked.
#
return nil unless ruby_platform_materializes_to_ruby_platform?
@specification.to_checksum
end
private private
def use_exact_resolved_specifications? def use_exact_resolved_specifications?

19
lib/bundler/lockfile_generator.rb
View File

@ -19,6 +19,7 @@ module Bundler
add_sources add_sources
add_platforms add_platforms
add_dependencies add_dependencies
add_checksums
add_locked_ruby_version add_locked_ruby_version
add_bundled_with add_bundled_with
@ -65,6 +66,24 @@ module Bundler
end end
end end
def add_checksums
out << "\nCHECKSUMS\n"
definition.resolve.sort_by(&:full_name).each do |spec|
checksum = spec.to_checksum if spec.respond_to?(:to_checksum)
#if spec.is_a?(LazySpecification)
#spec.materialize_for_checksum do
#checksum ||= spec.to_checksum if spec.respond_to?(:to_checksum)
#end
#end
checksum ||= definition.locked_checksums.find {|c| c.match_spec?(spec) }
out << checksum.to_lock if checksum
end
end
def add_locked_ruby_version def add_locked_ruby_version
return unless locked_ruby_version = definition.locked_ruby_version return unless locked_ruby_version = definition.locked_ruby_version
add_section("RUBY VERSION", locked_ruby_version.to_s) add_section("RUBY VERSION", locked_ruby_version.to_s)

23
lib/bundler/lockfile_parser.rb
View File

@ -2,10 +2,11 @@
module Bundler module Bundler
class LockfileParser class LockfileParser
attr_reader :sources, :dependencies, :specs, :platforms, :bundler_version, :ruby_version attr_reader :sources, :dependencies, :specs, :platforms, :bundler_version, :ruby_version, :checksums
BUNDLED = "BUNDLED WITH" BUNDLED = "BUNDLED WITH"
DEPENDENCIES = "DEPENDENCIES" DEPENDENCIES = "DEPENDENCIES"
CHECKSUMS = "CHECKSUMS"
PLATFORMS = "PLATFORMS" PLATFORMS = "PLATFORMS"
RUBY = "RUBY VERSION" RUBY = "RUBY VERSION"
GIT = "GIT" GIT = "GIT"
@ -21,6 +22,7 @@ module Bundler
Gem::Version.create("1.10") => [BUNDLED].freeze, Gem::Version.create("1.10") => [BUNDLED].freeze,
Gem::Version.create("1.12") => [RUBY].freeze, Gem::Version.create("1.12") => [RUBY].freeze,
Gem::Version.create("1.13") => [PLUGIN].freeze, Gem::Version.create("1.13") => [PLUGIN].freeze,
Gem::Version.create("2.4.0") => [CHECKSUMS].freeze,
}.freeze }.freeze
KNOWN_SECTIONS = SECTIONS_BY_VERSION_INTRODUCED.values.flatten!.freeze KNOWN_SECTIONS = SECTIONS_BY_VERSION_INTRODUCED.values.flatten!.freeze
@ -64,6 +66,7 @@ module Bundler
@sources = [] @sources = []
@dependencies = {} @dependencies = {}
@parse_method = nil @parse_method = nil
@checksums = []
@specs = {} @specs = {}
if lockfile.match?(/<<<<<<<|=======|>>>>>>>|\|\|\|\|\|\|\|/) if lockfile.match?(/<<<<<<<|=======|>>>>>>>|\|\|\|\|\|\|\|/)
@ -77,6 +80,8 @@ module Bundler
parse_source(line) parse_source(line)
elsif line == DEPENDENCIES elsif line == DEPENDENCIES
@parse_method = :parse_dependency @parse_method = :parse_dependency
elsif line == CHECKSUMS
@parse_method = :parse_checksum
elsif line == PLATFORMS elsif line == PLATFORMS
@parse_method = :parse_platform @parse_method = :parse_platform
elsif line == RUBY elsif line == RUBY
@ -144,6 +149,7 @@ module Bundler
(?:#{space}\(([^-]*) # Space, followed by version (?:#{space}\(([^-]*) # Space, followed by version
(?:-(.*))?\))? # Optional platform (?:-(.*))?\))? # Optional platform
(!)? # Optional pinned marker (!)? # Optional pinned marker
(?:#{space}(.*))? # Optional checksum
$ # Line end $ # Line end
/xo.freeze /xo.freeze
@ -176,6 +182,21 @@ module Bundler
@dependencies[dep.name] = dep @dependencies[dep.name] = dep
end end
def parse_checksum(line)
if line =~ NAME_VERSION
spaces = $1
return unless spaces.size == 2
name = $2
version = $3
platform = $4
checksum = $6
version = Gem::Version.new(version)
platform = platform ? Gem::Platform.new(platform) : Gem::Platform::RUBY
@checksums << Bundler::Checksum.new(name, version, platform, checksum)
end
end
def parse_spec(line) def parse_spec(line)
return unless line =~ NAME_VERSION return unless line =~ NAME_VERSION
spaces = $1 spaces = $1

13
spec/bundler/bundler/definition_spec.rb
View File

@ -77,6 +77,10 @@ RSpec.describe Bundler::Definition do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
#{checksum_for_repo_gem gem_repo1, "rack", "1.0.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -132,6 +136,10 @@ RSpec.describe Bundler::Definition do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
#{checksum_for_repo_gem gem_repo1, "rack", "1.0.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -159,6 +167,8 @@ RSpec.describe Bundler::Definition do
DEPENDENCIES DEPENDENCIES
only_java only_java
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -185,6 +195,9 @@ RSpec.describe Bundler::Definition do
DEPENDENCIES DEPENDENCIES
foo foo
CHECKSUMS
#{checksum_for_repo_gem gem_repo1, "foo", "1.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G

4
spec/bundler/bundler/lockfile_parser_spec.rb
View File

@ -60,7 +60,7 @@ RSpec.describe Bundler::LockfileParser do
it "returns the same as > 1.0" do it "returns the same as > 1.0" do
expect(subject).to contain_exactly( expect(subject).to contain_exactly(
described_class::BUNDLED, described_class::RUBY, described_class::PLUGIN described_class::BUNDLED, described_class::CHECKSUMS, described_class::RUBY, described_class::PLUGIN
) )
end end
end end
@ -70,7 +70,7 @@ RSpec.describe Bundler::LockfileParser do
it "returns the same as for the release version" do it "returns the same as for the release version" do
expect(subject).to contain_exactly( expect(subject).to contain_exactly(
described_class::RUBY, described_class::PLUGIN described_class::CHECKSUMS, described_class::RUBY, described_class::PLUGIN
) )
end end
end end

9
spec/bundler/commands/check_spec.rb
View File

@ -425,6 +425,10 @@ RSpec.describe "bundle check" do
DEPENDENCIES DEPENDENCIES
depends_on_rack! depends_on_rack!
CHECKSUMS
#{checksum_for_repo_gem gem_repo4, "depends_on_rack", "1.0"}
#{checksum_for_repo_gem gem_repo4, "rack", "1.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -488,6 +492,11 @@ RSpec.describe "bundle check" do
bundle-check-issue! bundle-check-issue!
dex-dispatch-engine! dex-dispatch-engine!
CHECKSUMS
#{checksum_for_repo_gem gem_repo4, "awesome_print", "1.0"}
bundle-check-issue (9999)
#{checksum_for_repo_gem gem_repo2, "dex-dispatch-engine", "1.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

41
spec/bundler/commands/install_spec.rb
View File

@ -543,6 +543,8 @@ RSpec.describe "bundle install with gem sources" do
DEPENDENCIES DEPENDENCIES
CHECKSUMS
RUBY VERSION RUBY VERSION
#{Bundler::RubyVersion.system} #{Bundler::RubyVersion.system}
@ -567,6 +569,8 @@ RSpec.describe "bundle install with gem sources" do
DEPENDENCIES DEPENDENCIES
CHECKSUMS
RUBY VERSION RUBY VERSION
#{Bundler::RubyVersion.system} #{Bundler::RubyVersion.system}
@ -888,16 +892,16 @@ RSpec.describe "bundle install with gem sources" do
context "with missing platform specific gems in lockfile" do context "with missing platform specific gems in lockfile" do
before do before do
build_repo4 do build_repo4 do
build_gem "racc", "1.5.2" build_gem "racca", "1.5.2"
build_gem "nokogiri", "1.12.4" do |s| build_gem "nokogiri", "1.12.4" do |s|
s.platform = "x86_64-darwin" s.platform = "x86_64-darwin"
s.add_runtime_dependency "racc", "~> 1.4" s.add_runtime_dependency "racca", "~> 1.4"
end end
build_gem "nokogiri", "1.12.4" do |s| build_gem "nokogiri", "1.12.4" do |s|
s.platform = "x86_64-linux" s.platform = "x86_64-linux"
s.add_runtime_dependency "racc", "~> 1.4" s.add_runtime_dependency "racca", "~> 1.4"
end end
build_gem "crass", "1.0.6" build_gem "crass", "1.0.6"
@ -916,6 +920,13 @@ RSpec.describe "bundle install with gem sources" do
gem "loofah", "~> 2.12.0" gem "loofah", "~> 2.12.0"
G G
checksums = construct_checksum_section do |c|
c.repo_gem gem_repo4, "crass", "1.0.6"
c.repo_gem gem_repo4, "loofah", "2.12.0"
c.repo_gem gem_repo4, "nokogiri", "1.12.4", "x86_64-darwin"
c.repo_gem gem_repo4, "racca", "1.5.2"
end
lockfile <<-L lockfile <<-L
GEM GEM
remote: https://gem.repo4/ remote: https://gem.repo4/
@ -925,8 +936,8 @@ RSpec.describe "bundle install with gem sources" do
crass (~> 1.0.2) crass (~> 1.0.2)
nokogiri (>= 1.5.9) nokogiri (>= 1.5.9)
nokogiri (1.12.4-x86_64-darwin) nokogiri (1.12.4-x86_64-darwin)
racc (~> 1.4) racca (~> 1.4)
racc (1.5.2) racca (1.5.2)
PLATFORMS PLATFORMS
x86_64-darwin-20 x86_64-darwin-20
@ -935,6 +946,9 @@ RSpec.describe "bundle install with gem sources" do
DEPENDENCIES DEPENDENCIES
loofah (~> 2.12.0) loofah (~> 2.12.0)
CHECKSUMS
#{checksums}
RUBY VERSION RUBY VERSION
#{Bundler::RubyVersion.system} #{Bundler::RubyVersion.system}
@ -950,6 +964,14 @@ RSpec.describe "bundle install with gem sources" do
bundle "install", :artifice => "compact_index" bundle "install", :artifice => "compact_index"
end end
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo4, "crass", "1.0.6"
c.repo_gem gem_repo4, "loofah", "2.12.0"
c.repo_gem gem_repo4, "nokogiri", "1.12.4", "x86_64-darwin"
c.repo_gem gem_repo4, "nokogiri", "1.12.4", "x86_64-linux"
c.repo_gem gem_repo4, "racca", "1.5.2"
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
GEM GEM
remote: https://gem.repo4/ remote: https://gem.repo4/
@ -959,10 +981,10 @@ RSpec.describe "bundle install with gem sources" do
crass (~> 1.0.2) crass (~> 1.0.2)
nokogiri (>= 1.5.9) nokogiri (>= 1.5.9)
nokogiri (1.12.4-x86_64-darwin) nokogiri (1.12.4-x86_64-darwin)
racc (~> 1.4) racca (~> 1.4)
nokogiri (1.12.4-x86_64-linux) nokogiri (1.12.4-x86_64-linux)
racc (~> 1.4) racca (~> 1.4)
racc (1.5.2) racca (1.5.2)
PLATFORMS PLATFORMS
x86_64-darwin-20 x86_64-darwin-20
@ -971,6 +993,9 @@ RSpec.describe "bundle install with gem sources" do
DEPENDENCIES DEPENDENCIES
loofah (~> 2.12.0) loofah (~> 2.12.0)
CHECKSUMS
#{expected_checksums}
RUBY VERSION RUBY VERSION
#{Bundler::RubyVersion.system} #{Bundler::RubyVersion.system}

70
spec/bundler/commands/lock_spec.rb
View File

@ -42,6 +42,8 @@ RSpec.describe "bundle lock" do
rails rails
weakling weakling
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -104,6 +106,8 @@ RSpec.describe "bundle lock" do
DEPENDENCIES DEPENDENCIES
foo foo
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -126,8 +130,58 @@ RSpec.describe "bundle lock" do
bundle "install" bundle "install"
bundle "lock --lockfile=lock" bundle "lock --lockfile=lock"
expected_checksums = construct_checksum_section do |c|
c.repo_gem repo, "actionmailer", "2.3.2"
c.repo_gem repo, "actionpack", "2.3.2"
c.repo_gem repo, "activerecord", "2.3.2"
c.repo_gem repo, "activeresource", "2.3.2"
c.repo_gem repo, "activesupport", "2.3.2"
c.repo_gem repo, "foo", "1.0"
c.repo_gem repo, "rails", "2.3.2"
c.repo_gem repo, "rake", "13.0.1"
c.repo_gem repo, "weakling", "0.0.3"
end
lockfile = strip_lockfile(<<-L)
GEM
remote: #{file_uri_for(repo)}/
specs:
actionmailer (2.3.2)
activesupport (= 2.3.2)
actionpack (2.3.2)
activesupport (= 2.3.2)
activerecord (2.3.2)
activesupport (= 2.3.2)
activeresource (2.3.2)
activesupport (= 2.3.2)
activesupport (2.3.2)
foo (1.0)
rails (2.3.2)
actionmailer (= 2.3.2)
actionpack (= 2.3.2)
activerecord (= 2.3.2)
activeresource (= 2.3.2)
rake (= 13.0.1)
rake (13.0.1)
weakling (0.0.3)
PLATFORMS
#{lockfile_platforms}
DEPENDENCIES
foo
rails
weakling
CHECKSUMS
#{expected_checksums}
BUNDLED WITH
#{Bundler::VERSION}
L
expect(out).to match(/Writing lockfile to.+lock/) expect(out).to match(/Writing lockfile to.+lock/)
expect(read_lockfile("lock")).to eq(@lockfile) expect(read_lockfile("lock")).to eq(lockfile)
end end
it "update specific gems using --update" do it "update specific gems using --update" do
@ -535,6 +589,8 @@ RSpec.describe "bundle lock" do
gssapi gssapi
mixlib-shellout mixlib-shellout
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -564,6 +620,8 @@ RSpec.describe "bundle lock" do
gssapi gssapi
mixlib-shellout mixlib-shellout
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -642,6 +700,8 @@ RSpec.describe "bundle lock" do
DEPENDENCIES DEPENDENCIES
libv8 libv8
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -677,6 +737,10 @@ RSpec.describe "bundle lock" do
DEPENDENCIES DEPENDENCIES
libv8 libv8
CHECKSUMS
#{checksum_for_repo_gem gem_repo4, "libv8", "8.4.255.0", "x86_64-darwin-19"}
#{checksum_for_repo_gem gem_repo4, "libv8", "8.4.255.0", "x86_64-darwin-20"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -895,6 +959,8 @@ RSpec.describe "bundle lock" do
DEPENDENCIES DEPENDENCIES
debug debug
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -918,6 +984,8 @@ RSpec.describe "bundle lock" do
DEPENDENCIES DEPENDENCIES
debug debug
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

58
spec/bundler/commands/update_spec.rb
View File

@ -290,6 +290,8 @@ RSpec.describe "bundle update" do
countries countries
country_select country_select
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -505,6 +507,11 @@ RSpec.describe "bundle update" do
original_lockfile = lockfile original_lockfile = lockfile
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo4, "activesupport", "6.0.4.1"
c.repo_gem gem_repo4, "tzinfo", "1.2.9"
end
expected_lockfile = <<~L expected_lockfile = <<~L
GEM GEM
remote: #{file_uri_for(gem_repo4)}/ remote: #{file_uri_for(gem_repo4)}/
@ -519,6 +526,9 @@ RSpec.describe "bundle update" do
DEPENDENCIES DEPENDENCIES
activesupport (~> 6.0.0) activesupport (~> 6.0.0)
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -535,7 +545,25 @@ RSpec.describe "bundle update" do
lockfile original_lockfile lockfile original_lockfile
bundle "lock --update" bundle "lock --update"
expect(the_bundle).to include_gems("activesupport 6.0.4.1", "tzinfo 1.2.9") expect(the_bundle).to include_gems("activesupport 6.0.4.1", "tzinfo 1.2.9")
expect(lockfile).to eq(expected_lockfile) expect(lockfile).to eq <<~L
GEM
remote: #{file_uri_for(gem_repo4)}/
specs:
activesupport (6.0.4.1)
tzinfo (~> 1.1)
tzinfo (1.2.9)
PLATFORMS
#{lockfile_platforms}
DEPENDENCIES
activesupport (~> 6.0.0)
CHECKSUMS
BUNDLED WITH
#{Bundler::VERSION}
L
end end
end end
@ -1128,6 +1156,8 @@ RSpec.describe "bundle update --ruby" do
DEPENDENCIES DEPENDENCIES
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -1159,6 +1189,8 @@ RSpec.describe "bundle update --ruby" do
DEPENDENCIES DEPENDENCIES
CHECKSUMS
RUBY VERSION RUBY VERSION
#{Bundler::RubyVersion.system} #{Bundler::RubyVersion.system}
@ -1199,6 +1231,8 @@ RSpec.describe "bundle update --ruby" do
DEPENDENCIES DEPENDENCIES
CHECKSUMS
RUBY VERSION RUBY VERSION
ruby 2.1.4p222 ruby 2.1.4p222
@ -1224,6 +1258,8 @@ RSpec.describe "bundle update --ruby" do
DEPENDENCIES DEPENDENCIES
CHECKSUMS
RUBY VERSION RUBY VERSION
#{Bundler::RubyVersion.system} #{Bundler::RubyVersion.system}
@ -1246,6 +1282,10 @@ RSpec.describe "bundle update --bundler" do
G G
lockfile lockfile.sub(/(^\s*)#{Bundler::VERSION}($)/, '\11.0.0\2') lockfile lockfile.sub(/(^\s*)#{Bundler::VERSION}($)/, '\11.0.0\2')
excepted_checksum = checksum_for_repo_gem(gem_repo4, "rack", "1.0")
FileUtils.rm_r gem_repo4
bundle :update, :bundler => true, :artifice => "compact_index", :verbose => true bundle :update, :bundler => true, :artifice => "compact_index", :verbose => true
expect(out).to include("Using bundler #{Bundler::VERSION}") expect(out).to include("Using bundler #{Bundler::VERSION}")
@ -1261,6 +1301,9 @@ RSpec.describe "bundle update --bundler" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{excepted_checksum}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -1296,6 +1339,9 @@ RSpec.describe "bundle update --bundler" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem(gem_repo4, "rack", "1.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -1399,6 +1445,9 @@ RSpec.describe "bundle update --bundler" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem(gem_repo4, "rack", "1.0")}
BUNDLED WITH BUNDLED WITH
2.3.0.dev 2.3.0.dev
L L
@ -1438,6 +1487,9 @@ RSpec.describe "bundle update --bundler" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem(gem_repo4, "rack", "1.0")}
BUNDLED WITH BUNDLED WITH
2.3.9 2.3.9
L L
@ -1628,6 +1680,8 @@ RSpec.describe "bundle update conservative" do
shared_owner_a shared_owner_a
shared_owner_b shared_owner_b
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -1681,6 +1735,8 @@ RSpec.describe "bundle update conservative" do
shared_owner_a shared_owner_a
shared_owner_b shared_owner_b
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

40
spec/bundler/install/gemfile/gemspec_spec.rb
View File

@ -448,6 +448,12 @@ RSpec.describe "bundle install from an existing gemspec" do
context "as a runtime dependency" do context "as a runtime dependency" do
it "keeps all platform dependencies in the lockfile" do it "keeps all platform dependencies in the lockfile" do
expect(the_bundle).to include_gems "foo 1.0", "platform_specific 1.0 RUBY" expect(the_bundle).to include_gems "foo 1.0", "platform_specific 1.0 RUBY"
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "platform_specific", "1.0"
c.repo_gem gem_repo2, "platform_specific", "1.0", x64_mingw32
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
PATH PATH
remote: . remote: .
@ -470,6 +476,10 @@ RSpec.describe "bundle install from an existing gemspec" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -481,6 +491,12 @@ RSpec.describe "bundle install from an existing gemspec" do
it "keeps all platform dependencies in the lockfile" do it "keeps all platform dependencies in the lockfile" do
expect(the_bundle).to include_gems "foo 1.0", "platform_specific 1.0 RUBY" expect(the_bundle).to include_gems "foo 1.0", "platform_specific 1.0 RUBY"
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "platform_specific", "1.0"
c.repo_gem gem_repo2, "platform_specific", "1.0", x64_mingw32
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
PATH PATH
remote: . remote: .
@ -503,6 +519,10 @@ RSpec.describe "bundle install from an existing gemspec" do
foo! foo!
platform_specific platform_specific
CHECKSUMS
foo (1.0)
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -515,6 +535,13 @@ RSpec.describe "bundle install from an existing gemspec" do
it "keeps all platform dependencies in the lockfile" do it "keeps all platform dependencies in the lockfile" do
expect(the_bundle).to include_gems "foo 1.0", "indirect_platform_specific 1.0", "platform_specific 1.0 RUBY" expect(the_bundle).to include_gems "foo 1.0", "indirect_platform_specific 1.0", "platform_specific 1.0 RUBY"
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "indirect_platform_specific", "1.0"
c.repo_gem gem_repo2, "platform_specific", "1.0"
c.repo_gem gem_repo2, "platform_specific", "1.0", x64_mingw32
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
PATH PATH
remote: . remote: .
@ -539,6 +566,10 @@ RSpec.describe "bundle install from an existing gemspec" do
foo! foo!
indirect_platform_specific indirect_platform_specific
CHECKSUMS
foo (1.0)
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -623,6 +654,11 @@ RSpec.describe "bundle install from an existing gemspec" do
DEPENDENCIES DEPENDENCIES
chef! chef!
CHECKSUMS
chef (17.1.17)
chef (17.1.17-universal-mingw32)
#{checksum_for_repo_gem gem_repo4, "win32-api", "1.5.3", "universal-mingw32"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -680,6 +716,10 @@ RSpec.describe "bundle install from an existing gemspec" do
activeadmin! activeadmin!
jruby-openssl jruby-openssl
CHECKSUMS
activeadmin (2.9.0)
#{checksum_for_repo_gem gem_repo4, "railties", "6.1.4"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

4
spec/bundler/install/gemfile/install_if_spec.rb
View File

@ -37,6 +37,10 @@ RSpec.describe "bundle install with install_if conditionals" do
rack rack
thin thin
CHECKSUMS
#{checksum_for_repo_gem gem_repo1, "activesupport", "2.3.5"}
#{checksum_for_repo_gem gem_repo1, "rack", "1.0.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

25
spec/bundler/install/gemfile/path_spec.rb
View File

@ -120,6 +120,10 @@ RSpec.describe "bundle install with explicit source paths" do
aaa! aaa!
demo! demo!
CHECKSUMS
aaa (1.0)
demo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -359,6 +363,10 @@ RSpec.describe "bundle install with explicit source paths" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (0.1.0)
#{checksum_for_repo_gem gem_repo4, "graphql", "2.0.15"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -683,6 +691,10 @@ RSpec.describe "bundle install with explicit source paths" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
#{checksum_for_repo_gem gem_repo1, "rack", "0.9.1"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -711,6 +723,10 @@ RSpec.describe "bundle install with explicit source paths" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
#{checksum_for_repo_gem gem_repo1, "rack", "0.9.1"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -745,6 +761,10 @@ RSpec.describe "bundle install with explicit source paths" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
#{checksum_for_repo_gem gem_repo1, "rack", "0.9.1"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -776,6 +796,11 @@ RSpec.describe "bundle install with explicit source paths" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
#{checksum_for_repo_gem gem_repo1, "rack", "0.9.1"}
#{checksum_for_repo_gem gem_repo1, "rake", "13.0.1"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G

11
spec/bundler/install/gemfile/platform_spec.rb
View File

@ -225,6 +225,8 @@ RSpec.describe "bundle install across platforms" do
empyrean (= 0.1.0) empyrean (= 0.1.0)
pry pry
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -257,6 +259,8 @@ RSpec.describe "bundle install across platforms" do
empyrean (= 0.1.0) empyrean (= 0.1.0)
pry pry
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -290,6 +294,8 @@ RSpec.describe "bundle install across platforms" do
empyrean (= 0.1.0) empyrean (= 0.1.0)
pry pry
CHECKSUMS
BUNDLED WITH BUNDLED WITH
1.16.1 1.16.1
L L
@ -399,6 +405,9 @@ RSpec.describe "bundle install across platforms" do
DEPENDENCIES DEPENDENCIES
platform_specific platform_specific
CHECKSUMS
#{checksum_for_repo_gem(gem_repo1, "platform_specific", "1.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -568,6 +577,8 @@ RSpec.describe "bundle install with platform conditionals" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

93
spec/bundler/install/gemfile/sources_spec.rb
View File

@ -284,6 +284,11 @@ RSpec.describe "bundle install with gems on multiple sources" do
expect(err).to include("Warning: the gem 'rack' was found in multiple sources.") expect(err).to include("Warning: the gem 'rack' was found in multiple sources.")
expect(err).to include("Installed from: https://gem.repo2") expect(err).to include("Installed from: https://gem.repo2")
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo3, "depends_on_rack", "1.0.1"
c.repo_gem gem_repo2, "rack", "1.0.0"
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
GEM GEM
remote: https://gem.repo1/ remote: https://gem.repo1/
@ -303,6 +308,9 @@ RSpec.describe "bundle install with gems on multiple sources" do
DEPENDENCIES DEPENDENCIES
depends_on_rack! depends_on_rack!
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -698,6 +706,21 @@ RSpec.describe "bundle install with gems on multiple sources" do
expect(the_bundle).to include_gems("concurrent-ruby 1.1.8") expect(the_bundle).to include_gems("concurrent-ruby 1.1.8")
expect(the_bundle).not_to include_gems("concurrent-ruby 1.1.9") expect(the_bundle).not_to include_gems("concurrent-ruby 1.1.9")
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "activesupport", "6.0.3.4"
c.repo_gem gem_repo2, "concurrent-ruby", "1.1.8"
c.repo_gem gem_repo2, "connection_pool", "2.2.3"
c.repo_gem gem_repo2, "i18n", "1.8.9"
c.repo_gem gem_repo2, "minitest", "5.14.3"
c.repo_gem gem_repo2, "rack", "2.2.3"
c.repo_gem gem_repo2, "redis", "4.2.5"
c.repo_gem gem_repo2, "sidekiq", "6.1.3"
c.repo_gem gem_repo3, "sidekiq-pro", "5.2.1"
c.repo_gem gem_repo2, "thread_safe", "0.3.6"
c.repo_gem gem_repo2, "tzinfo", "1.2.9"
c.repo_gem gem_repo2, "zeitwerk", "2.4.2"
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
GEM GEM
remote: https://gem.repo2/ remote: https://gem.repo2/
@ -738,6 +761,9 @@ RSpec.describe "bundle install with gems on multiple sources" do
activesupport activesupport
sidekiq-pro! sidekiq-pro!
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -783,6 +809,20 @@ RSpec.describe "bundle install with gems on multiple sources" do
expect(the_bundle).not_to include_gems("concurrent-ruby 1.1.8") expect(the_bundle).not_to include_gems("concurrent-ruby 1.1.8")
expect(the_bundle).to include_gems("concurrent-ruby 1.1.9") expect(the_bundle).to include_gems("concurrent-ruby 1.1.9")
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "activesupport", "6.1.2.1"
c.repo_gem gem_repo2, "concurrent-ruby", "1.1.9"
c.repo_gem gem_repo2, "connection_pool", "2.2.3"
c.repo_gem gem_repo2, "i18n", "1.8.9"
c.repo_gem gem_repo2, "minitest", "5.14.3"
c.repo_gem gem_repo2, "rack", "2.2.3"
c.repo_gem gem_repo2, "redis", "4.2.5"
c.repo_gem gem_repo2, "sidekiq", "6.1.3"
c.repo_gem gem_repo3, "sidekiq-pro", "5.2.1"
c.repo_gem gem_repo2, "tzinfo", "2.0.4"
c.repo_gem gem_repo2, "zeitwerk", "2.4.2"
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
GEM GEM
remote: https://gem.repo2/ remote: https://gem.repo2/
@ -822,6 +862,9 @@ RSpec.describe "bundle install with gems on multiple sources" do
activesupport activesupport
sidekiq-pro! sidekiq-pro!
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -838,6 +881,21 @@ RSpec.describe "bundle install with gems on multiple sources" do
expect(the_bundle).to include_gems("concurrent-ruby 1.1.9") expect(the_bundle).to include_gems("concurrent-ruby 1.1.9")
expect(the_bundle).not_to include_gems("concurrent-ruby 1.1.8") expect(the_bundle).not_to include_gems("concurrent-ruby 1.1.8")
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "activesupport", "6.0.3.4"
c.repo_gem gem_repo2, "concurrent-ruby", "1.1.9"
c.repo_gem gem_repo2, "connection_pool", "2.2.3"
c.repo_gem gem_repo2, "i18n", "1.8.9"
c.repo_gem gem_repo2, "minitest", "5.14.3"
c.repo_gem gem_repo2, "rack", "2.2.3"
c.repo_gem gem_repo2, "redis", "4.2.5"
c.repo_gem gem_repo2, "sidekiq", "6.1.3"
c.repo_gem gem_repo3, "sidekiq-pro", "5.2.1"
c.repo_gem gem_repo2, "thread_safe", "0.3.6"
c.repo_gem gem_repo2, "tzinfo", "1.2.9"
c.repo_gem gem_repo2, "zeitwerk", "2.4.2"
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
GEM GEM
remote: https://gem.repo2/ remote: https://gem.repo2/
@ -878,6 +936,9 @@ RSpec.describe "bundle install with gems on multiple sources" do
activesupport activesupport
sidekiq-pro! sidekiq-pro!
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -945,6 +1006,12 @@ RSpec.describe "bundle install with gems on multiple sources" do
end end
it "installs from the default source without any warnings or errors and generates a proper lockfile" do it "installs from the default source without any warnings or errors and generates a proper lockfile" do
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo3, "handsoap", "0.2.5.5"
c.repo_gem gem_repo2, "nokogiri", "1.11.1"
c.repo_gem gem_repo2, "racca", "1.5.2"
end
expected_lockfile = <<~L expected_lockfile = <<~L
GEM GEM
remote: https://gem.repo2/ remote: https://gem.repo2/
@ -966,6 +1033,9 @@ RSpec.describe "bundle install with gems on multiple sources" do
handsoap! handsoap!
nokogiri nokogiri
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -1489,6 +1559,8 @@ RSpec.describe "bundle install with gems on multiple sources" do
DEPENDENCIES DEPENDENCIES
capybara (~> 2.5.0) capybara (~> 2.5.0)
mime-types (~> 3.0)! mime-types (~> 3.0)!
CHECKSUMS
L L
end end
@ -1514,6 +1586,8 @@ RSpec.describe "bundle install with gems on multiple sources" do
capybara (~> 2.5.0) capybara (~> 2.5.0)
mime-types (~> 3.0)! mime-types (~> 3.0)!
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -1567,6 +1641,10 @@ RSpec.describe "bundle install with gems on multiple sources" do
DEPENDENCIES DEPENDENCIES
ruport (= 1.7.0.3)! ruport (= 1.7.0.3)!
CHECKSUMS
#{checksum_for_repo_gem gem_repo4, "pdf-writer", "1.1.8"}
#{checksum_for_repo_gem gem_repo2, "ruport", "1.7.0.3"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -1602,6 +1680,11 @@ RSpec.describe "bundle install with gems on multiple sources" do
it "handles that fine" do it "handles that fine" do
bundle "install", :artifice => "compact_index_extra", :env => { "BUNDLER_SPEC_GEM_REPO" => gem_repo4.to_s } bundle "install", :artifice => "compact_index_extra", :env => { "BUNDLER_SPEC_GEM_REPO" => gem_repo4.to_s }
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo4, "pdf-writer", "1.1.8"
c.repo_gem gem_repo2, "ruport", "1.7.0.3"
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
GEM GEM
remote: https://localgemserver.test/ remote: https://localgemserver.test/
@ -1620,6 +1703,9 @@ RSpec.describe "bundle install with gems on multiple sources" do
DEPENDENCIES DEPENDENCIES
ruport (= 1.7.0.3)! ruport (= 1.7.0.3)!
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -1649,6 +1735,10 @@ RSpec.describe "bundle install with gems on multiple sources" do
it "handles that fine" do it "handles that fine" do
bundle "install --verbose", :artifice => "endpoint", :env => { "BUNDLER_SPEC_GEM_REPO" => gem_repo4.to_s } bundle "install --verbose", :artifice => "endpoint", :env => { "BUNDLER_SPEC_GEM_REPO" => gem_repo4.to_s }
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo4, "pdf-writer", "1.1.8"
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
GEM GEM
remote: https://localgemserver.test/ remote: https://localgemserver.test/
@ -1661,6 +1751,9 @@ RSpec.describe "bundle install with gems on multiple sources" do
DEPENDENCIES DEPENDENCIES
pdf-writer (= 1.1.8) pdf-writer (= 1.1.8)
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

24
spec/bundler/install/gemfile/specific_platform_spec.rb
View File

@ -101,6 +101,8 @@ RSpec.describe "bundle install with specific platforms" do
DEPENDENCIES DEPENDENCIES
google-protobuf google-protobuf
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -522,6 +524,13 @@ RSpec.describe "bundle install with specific platforms" do
bundle "update" bundle "update"
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo4, "sorbet", "0.5.10160"
c.repo_gem gem_repo4, "sorbet-runtime", "0.5.10160"
c.repo_gem gem_repo4, "sorbet-static", "0.5.10160", Gem::Platform.local
c.repo_gem gem_repo4, "sorbet-static-and-runtime", "0.5.10160"
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
GEM GEM
remote: #{file_uri_for(gem_repo4)}/ remote: #{file_uri_for(gem_repo4)}/
@ -540,6 +549,9 @@ RSpec.describe "bundle install with specific platforms" do
DEPENDENCIES DEPENDENCIES
sorbet-static-and-runtime sorbet-static-and-runtime
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -662,6 +674,13 @@ RSpec.describe "bundle install with specific platforms" do
bundle "update" bundle "update"
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo4, "sorbet", "0.5.10160"
c.repo_gem gem_repo4, "sorbet-runtime", "0.5.10160"
c.repo_gem gem_repo4, "sorbet-static", "0.5.10160", Gem::Platform.local
c.repo_gem gem_repo4, "sorbet-static-and-runtime", "0.5.10160"
end
expect(lockfile).to eq <<~L expect(lockfile).to eq <<~L
GEM GEM
remote: #{file_uri_for(gem_repo4)}/ remote: #{file_uri_for(gem_repo4)}/
@ -680,6 +699,9 @@ RSpec.describe "bundle install with specific platforms" do
DEPENDENCIES DEPENDENCIES
sorbet-static-and-runtime sorbet-static-and-runtime
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -836,6 +858,8 @@ RSpec.describe "bundle install with specific platforms" do
nokogiri nokogiri
tzinfo (~> 1.2) tzinfo (~> 1.2)
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

2
spec/bundler/install/gems/compact_index_spec.rb
View File

@ -949,6 +949,6 @@ Running `bundle update rails` should fix the problem.
G G
gem_command "uninstall activemerchant" gem_command "uninstall activemerchant"
bundle "update rails", :artifice => "compact_index" bundle "update rails", :artifice => "compact_index"
expect(lockfile.scan(/activemerchant \(/).size).to eq(1) expect(lockfile.scan(/activemerchant \(/).size).to eq(2) # Once in the specs, and once in CHECKSUMS
end end
end end

7
spec/bundler/install/gems/flex_spec.rb
View File

@ -283,6 +283,10 @@ RSpec.describe "bundle flex_install" do
rack (= 0.9.1) rack (= 0.9.1)
rack-obama rack-obama
CHECKSUMS
#{checksum_for_repo_gem gem_repo1, "rack", "0.9.1"}
#{checksum_for_repo_gem gem_repo1, "rack-obama", "1.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -324,6 +328,9 @@ RSpec.describe "bundle flex_install" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem gem_repo1, "rack", "1.0.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

7
spec/bundler/install/gems/resolving_spec.rb
View File

@ -288,6 +288,9 @@ RSpec.describe "bundle install with install-time dependencies" do
DEPENDENCIES DEPENDENCIES
parallel_tests parallel_tests
CHECKSUMS
#{checksum_for_repo_gem gem_repo2, "parallel_tests", "3.7.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L
@ -368,6 +371,10 @@ RSpec.describe "bundle install with install-time dependencies" do
DEPENDENCIES DEPENDENCIES
rubocop rubocop
CHECKSUMS
#{checksum_for_repo_gem gem_repo2, "rubocop", "1.28.2"}
#{checksum_for_repo_gem gem_repo2, "rubocop-ast", "1.17.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

2
spec/bundler/install/yanked_spec.rb
View File

@ -160,6 +160,8 @@ RSpec.context "when resolving a bundle that includes yanked gems, but unlocking
bar bar
foo foo
CHECKSUMS
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

167
spec/bundler/lock/lockfile_spec.rb
View File

@ -24,6 +24,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "1.0.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -75,6 +78,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "1.0.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -202,6 +208,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack (> 0) rack (> 0)
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "1.0.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -249,6 +258,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "1.0.0")}
BUNDLED WITH BUNDLED WITH
#{current_version} #{current_version}
G G
@ -261,6 +273,11 @@ RSpec.describe "the lockfile format" do
gem "rack-obama" gem "rack-obama"
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "rack", "1.0.0"
c.repo_gem gem_repo2, "rack-obama", "1.0"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -275,6 +292,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack-obama rack-obama
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -287,6 +307,11 @@ RSpec.describe "the lockfile format" do
gem "rack-obama", ">= 1.0" gem "rack-obama", ">= 1.0"
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "rack", "1.0.0"
c.repo_gem gem_repo2, "rack-obama", "1.0"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -301,6 +326,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack-obama (>= 1.0) rack-obama (>= 1.0)
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -321,6 +349,11 @@ RSpec.describe "the lockfile format" do
end end
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "rack", "1.0.0"
c.repo_gem gem_repo2, "rack-obama", "1.0"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo1)}/ remote: #{file_uri_for(gem_repo1)}/
@ -343,6 +376,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack-obama (>= 1.0)! rack-obama (>= 1.0)!
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -354,6 +390,11 @@ RSpec.describe "the lockfile format" do
gem "net-sftp" gem "net-sftp"
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "net-sftp", "1.1.1"
c.repo_gem gem_repo2, "net-ssh", "1.0"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -368,6 +409,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
net-sftp net-sftp
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -400,6 +444,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -471,6 +518,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -503,6 +553,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -535,6 +588,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -650,6 +706,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -683,6 +742,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -725,6 +787,11 @@ RSpec.describe "the lockfile format" do
foo! foo!
rack rack
CHECKSUMS
bar (1.0)
foo (1.0)
#{checksum_for_repo_gem gem_repo2, "rack", "1.0.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -737,6 +804,10 @@ RSpec.describe "the lockfile format" do
gem "rack", :source => "#{file_uri_for(gem_repo2)}/" gem "rack", :source => "#{file_uri_for(gem_repo2)}/"
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "rack", "1.0.0"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -749,6 +820,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack! rack!
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -763,6 +837,14 @@ RSpec.describe "the lockfile format" do
gem "rack-obama" gem "rack-obama"
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "actionpack", "2.3.2"
c.repo_gem gem_repo2, "activesupport", "2.3.2"
c.repo_gem gem_repo2, "rack", "1.0.0"
c.repo_gem gem_repo2, "rack-obama", "1.0"
c.repo_gem gem_repo2, "thin", "1.0"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -784,6 +866,9 @@ RSpec.describe "the lockfile format" do
rack-obama rack-obama
thin thin
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -796,6 +881,16 @@ RSpec.describe "the lockfile format" do
gem "rails" gem "rails"
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "actionmailer", "2.3.2"
c.repo_gem gem_repo2, "actionpack", "2.3.2"
c.repo_gem gem_repo2, "activerecord", "2.3.2"
c.repo_gem gem_repo2, "activeresource", "2.3.2"
c.repo_gem gem_repo2, "activesupport", "2.3.2"
c.repo_gem gem_repo2, "rails", "2.3.2"
c.repo_gem gem_repo2, "rake", "13.0.1"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -823,6 +918,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rails rails
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -844,6 +942,11 @@ RSpec.describe "the lockfile format" do
gem 'double_deps' gem 'double_deps'
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "double_deps", "1.0"
c.repo_gem gem_repo2, "net-ssh", "1.0"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -859,6 +962,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
double_deps double_deps
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -871,6 +977,11 @@ RSpec.describe "the lockfile format" do
gem "rack-obama", ">= 1.0", :require => "rack/obama" gem "rack-obama", ">= 1.0", :require => "rack/obama"
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "rack", "1.0.0"
c.repo_gem gem_repo2, "rack-obama", "1.0"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -885,6 +996,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack-obama (>= 1.0) rack-obama (>= 1.0)
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -897,6 +1011,11 @@ RSpec.describe "the lockfile format" do
gem "rack-obama", ">= 1.0", :group => :test gem "rack-obama", ">= 1.0", :group => :test
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "rack", "1.0.0"
c.repo_gem gem_repo2, "rack-obama", "1.0"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -911,6 +1030,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack-obama (>= 1.0) rack-obama (>= 1.0)
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -942,6 +1064,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -973,6 +1098,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1004,6 +1132,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1033,6 +1164,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
foo! foo!
CHECKSUMS
foo (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1073,6 +1207,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "1.0.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1092,6 +1229,10 @@ RSpec.describe "the lockfile format" do
gem "platform_specific" gem "platform_specific"
G G
expected_checksums = construct_checksum_section do |c|
c.repo_gem gem_repo2, "platform_specific", "1.0", "universal-java-16"
end
expect(lockfile).to eq <<~G expect(lockfile).to eq <<~G
GEM GEM
remote: #{file_uri_for(gem_repo2)}/ remote: #{file_uri_for(gem_repo2)}/
@ -1104,6 +1245,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
platform_specific platform_specific
CHECKSUMS
#{expected_checksums}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1135,6 +1279,10 @@ RSpec.describe "the lockfile format" do
activesupport activesupport
rack rack
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "activesupport", "2.3.5")}
#{checksum_for_repo_gem(gem_repo2, "rack", "1.0.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1159,6 +1307,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "1.0.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1183,6 +1334,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack (= 1.0) rack (= 1.0)
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "1.0.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1207,6 +1361,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack (= 1.0) rack (= 1.0)
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "1.0.0")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1252,6 +1409,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack (> 0.9, < 1.0) rack (> 0.9, < 1.0)
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "0.9.1")}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -1276,6 +1436,9 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
rack (> 0.9, < 1.0) rack (> 0.9, < 1.0)
CHECKSUMS
#{checksum_for_repo_gem(gem_repo2, "rack", "0.9.1")}
RUBY VERSION RUBY VERSION
#{Bundler::RubyVersion.system} #{Bundler::RubyVersion.system}
@ -1473,6 +1636,10 @@ RSpec.describe "the lockfile format" do
DEPENDENCIES DEPENDENCIES
minitest-bisect minitest-bisect
CHECKSUMS
#{checksum_for_repo_gem gem_repo4, "minitest-bisect", "1.6.0"}
#{checksum_for_repo_gem gem_repo4, "path_expander", "1.1.1"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

6
spec/bundler/plugins/source/example_spec.rb
View File

@ -87,6 +87,9 @@ RSpec.describe "real source plugins" do
DEPENDENCIES DEPENDENCIES
a-path-gem! a-path-gem!
CHECKSUMS
a-path-gem (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G
@ -354,6 +357,9 @@ RSpec.describe "real source plugins" do
DEPENDENCIES DEPENDENCIES
ma-gitp-gem! ma-gitp-gem!
CHECKSUMS
ma-gitp-gem (1.0)
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G

17
spec/bundler/runtime/platform_spec.rb
View File

@ -61,16 +61,16 @@ RSpec.describe "Bundler.setup with multi platform stuff" do
build_repo4 do build_repo4 do
build_gem "nokogiri", "1.11.1" do |s| build_gem "nokogiri", "1.11.1" do |s|
s.add_dependency "mini_portile2", "~> 2.5.0" s.add_dependency "mini_portile2", "~> 2.5.0"
s.add_dependency "racc", "~> 1.5.2" s.add_dependency "racca", "~> 1.5.2"
end end
build_gem "nokogiri", "1.11.1" do |s| build_gem "nokogiri", "1.11.1" do |s|
s.platform = Bundler.local_platform s.platform = Bundler.local_platform
s.add_dependency "racc", "~> 1.4" s.add_dependency "racca", "~> 1.4"
end end
build_gem "mini_portile2", "2.5.0" build_gem "mini_portile2", "2.5.0"
build_gem "racc", "1.5.2" build_gem "racca", "1.5.2"
end end
good_lockfile = <<~L good_lockfile = <<~L
@ -80,10 +80,10 @@ RSpec.describe "Bundler.setup with multi platform stuff" do
mini_portile2 (2.5.0) mini_portile2 (2.5.0)
nokogiri (1.11.1) nokogiri (1.11.1)
mini_portile2 (~> 2.5.0) mini_portile2 (~> 2.5.0)
racc (~> 1.5.2) racca (~> 1.5.2)
nokogiri (1.11.1-#{Bundler.local_platform}) nokogiri (1.11.1-#{Bundler.local_platform})
racc (~> 1.4) racca (~> 1.4)
racc (1.5.2) racca (1.5.2)
PLATFORMS PLATFORMS
#{lockfile_platforms("ruby")} #{lockfile_platforms("ruby")}
@ -91,6 +91,11 @@ RSpec.describe "Bundler.setup with multi platform stuff" do
DEPENDENCIES DEPENDENCIES
nokogiri (~> 1.11) nokogiri (~> 1.11)
CHECKSUMS
nokogiri (1.11.1)
#{checksum_for_repo_gem gem_repo4, "nokogiri", "1.11.1", Bundler.local_platform}
#{checksum_for_repo_gem gem_repo4, "racca", "1.5.2"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
L L

3
spec/bundler/runtime/setup_spec.rb
View File

@ -1227,6 +1227,9 @@ end
DEPENDENCIES DEPENDENCIES
rack rack
CHECKSUMS
#{checksum_for_repo_gem gem_repo1, "rack", "1.0.0"}
L L
if ruby_version if ruby_version

2
spec/bundler/spec_helper.rb
View File

@ -17,6 +17,7 @@ require "rspec/support/differ"
require_relative "support/builders" require_relative "support/builders"
require_relative "support/build_metadata" require_relative "support/build_metadata"
require_relative "support/checksums"
require_relative "support/filters" require_relative "support/filters"
require_relative "support/helpers" require_relative "support/helpers"
require_relative "support/indexes" require_relative "support/indexes"
@ -34,6 +35,7 @@ end
RSpec.configure do |config| RSpec.configure do |config|
config.include Spec::Builders config.include Spec::Builders
config.include Spec::Checksums
config.include Spec::Helpers config.include Spec::Helpers
config.include Spec::Indexes config.include Spec::Indexes
config.include Spec::Matchers config.include Spec::Matchers

2
spec/bundler/support/artifice/helpers/compact_index.rb
View File

@ -80,7 +80,7 @@ class CompactIndexAPI < Endpoint
CompactIndex::Dependency.new(d.name, reqs) CompactIndex::Dependency.new(d.name, reqs)
end end
checksum = begin checksum = begin
Digest(:SHA256).file("#{gem_repo}/gems/#{spec.original_name}.gem").base64digest Digest(:SHA256).file("#{gem_repo}/gems/#{spec.original_name}.gem").hexdigest
rescue StandardError rescue StandardError
nil nil
end end

51
spec/bundler/support/checksums.rb Normal file
View File

@ -0,0 +1,51 @@
# frozen_string_literal: true
module Spec
module Checksums
class ChecksumsBuilder
def initialize
@checksums = []
end
def repo_gem(gem_repo, gem_name, gem_version, platform = nil)
gem_file = if platform
"#{gem_repo}/gems/#{gem_name}-#{gem_version}-#{platform}.gem"
else
"#{gem_repo}/gems/#{gem_name}-#{gem_version}.gem"
end
checksum = sha256_checksum(gem_file)
@checksums << Bundler::Checksum.new(gem_name, gem_version, platform, checksum)
end
def to_lock
@checksums.map(&:to_lock).join.strip
end
private
def sha256_checksum(file)
File.open(file) do |f|
digest = Bundler::SharedHelpers.digest(:SHA256).new
digest << f.read(16_384) until f.eof?
"sha256-#{digest.hexdigest!}"
end
end
end
def construct_checksum_section
checksums = ChecksumsBuilder.new
yield checksums
checksums.to_lock
end
def checksum_for_repo_gem(gem_repo, gem_name, gem_version, platform = nil)
construct_checksum_section do |c|
c.repo_gem(gem_repo, gem_name, gem_version, platform)
end
end
end
end

4
spec/bundler/update/git_spec.rb
View File

@ -328,6 +328,10 @@ RSpec.describe "bundle update" do
foo! foo!
rack rack
CHECKSUMS
foo (2.0)
#{checksum_for_repo_gem gem_repo2, "rack", "1.0.0"}
BUNDLED WITH BUNDLED WITH
#{Bundler::VERSION} #{Bundler::VERSION}
G G