Package: ruby2.5 / 2.5.5-3+deb10u3

Metadata

Package Version Patches format
ruby2.5 2.5.5-3+deb10u3 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 rdoc build reproducible documentation.patch | (download)

lib/rdoc/generator/json_index.rb | 4 2 + 2 - 0 !
lib/rdoc/rdoc.rb | 2 1 + 1 - 0 !
2 files changed, 3 insertions(+), 3 deletions(-)

 rdoc: build reproducible documentation

- sort input filenames
- provide a fixed timestamp to the gzip compression

Signed-off-by: Antonio Terceiro <terceiro@debian.org>
Signed-off-by: Christian Hofstaedtler <zeha@debian.org>

0002 lib mkmf.rb sort list of object files in generated M.patch | (download)

lib/mkmf.rb | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 lib/mkmf.rb: sort list of object files in generated makefile

Without sorting the list explicitly, its order is indeterministic,
because readdir() is also not deterministic.
When the list of object files varies between builds, they are linked
0003 Mark Gemspec reproducible change fixing 784225 too.patch | (download)

lib/rubygems/specification.rb | 4 3 + 1 - 0 !
1 file changed, 3 insertions(+), 1 deletion(-)

 mark gemspec-reproducible change fixing #784225, too

I think the UTC date change will fix the Multi-Arch not-same file issue,
too.

Signed-off-by: Antonio Terceiro <terceiro@debian.org>
Signed-off-by: Christian Hofstaedtler <zeha@debian.org>

0004 Make gemspecs reproducible.patch | (download)

ext/bigdecimal/bigdecimal.gemspec | 1 1 + 0 - 0 !
ext/fiddle/fiddle.gemspec | 1 1 + 0 - 0 !
ext/io/console/io-console.gemspec | 2 1 + 1 - 0 !
lib/ipaddr.gemspec | 1 1 + 0 - 0 !
lib/rdoc/rdoc.gemspec | 1 1 + 0 - 0 !
5 files changed, 5 insertions(+), 1 deletion(-)

 make gemspecs reproducible

Without an explicit date, they will get the current date and make the
build unreproducible

0005 ia64 update ia64 specific code to use execution cont.patch | (download)

cont.c | 6 3 + 3 - 0 !
thread.c | 2 1 + 1 - 0 !
2 files changed, 4 insertions(+), 4 deletions(-)

 ia64: update ia64-specific code to use execution context

This change follows commit 837fd5e494731d7d44786f29e7d6e8c27029806f
in '#ifdef __ia64' branches.

Noticed as a build failure by John Paul Adrian Glaubitz:

```
  cont.c:502:50: error: 'rb_thread_t {aka struct rb_thread_struct}'
    has no member named 'machine'
       size = cont->machine.register_stack_size =
           th->machine.register_stack_end - th->machine.register_stack_start;
               ^~
```

The change is trivial: update 'th->machine' usage to 'th->ec->machine'.
Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>

git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@62106 b2dd03c8-39d4-4d8f-98ff-823fe69b080e

0006 Fix FTBFS on hurd.patch | (download)

io.c | 6 5 + 1 - 0 !
1 file changed, 5 insertions(+), 1 deletion(-)

 fix ftbfs on hurd

Closes: #896509

Signed-off-by: Antonio Terceiro <terceiro@debian.org>
Signed-off-by: Samuel Thibault <samuel.thibault@ens-lyon.org>

0007 Port to kfreebsd amd64.patch | (download)

ext/socket/option.c | 1 1 + 0 - 0 !
ext/socket/raddrinfo.c | 22 22 + 0 - 0 !
test/fiddle/test_handle.rb | 3 2 + 1 - 0 !
test/socket/test_socket.rb | 2 1 + 1 - 0 !
4 files changed, 26 insertions(+), 2 deletions(-)

 port to kfreebsd-amd64

Closes: #899267

Signed-off-by: Antonio Terceiro <terceiro@debian.org>
Signed-off-by: Svante Signell <svante.signell@gmail.com>

0008 Disable tests failing on Ubuntu builders.patch | (download)

test/excludes/TestFileUtils.rb | 1 1 + 0 - 0 !
test/excludes/TestProcess.rb | 1 1 + 0 - 0 !
2 files changed, 2 insertions(+)

 disable tests failing on ubuntu builders


0009 test test_pair fix deadlock in test_connect_accept_n.patch | (download)

test/openssl/test_pair.rb | 51 22 + 29 - 0 !
1 file changed, 22 insertions(+), 29 deletions(-)

 test/test_pair: fix deadlock in test_connect_accept_nonblock

Call IO.select with a timeout value and limit the number of retries to
prevent stacking forever.

Reference: https://github.com/ruby/openssl/issues/214

0010 test use larger keys for SSL tests.patch | (download)

test/openssl/fixtures/pkey/dh-1.pem | 13 13 + 0 - 0 !
test/openssl/fixtures/pkey/rsa-1.pem | 51 51 + 0 - 0 !
test/openssl/fixtures/pkey/rsa-2.pem | 51 51 + 0 - 0 !
test/openssl/fixtures/pkey/rsa-3.pem | 51 51 + 0 - 0 !
test/openssl/test_pair.rb | 8 4 + 4 - 0 !
test/openssl/test_pkey_dh.rb | 8 4 + 4 - 0 !
test/openssl/test_ssl.rb | 11 6 + 5 - 0 !
test/openssl/utils.rb | 14 6 + 8 - 0 !
8 files changed, 186 insertions(+), 21 deletions(-)

 test: use larger keys for ssl tests

Some systems enforce a system-wide policy to restrict key sizes used in
SSL/TLS. Use larger ones if possible so that the test suite runs
successfully.

New PEM files test/openssl/fixtures/pkey/{dh-1,rsa-1,rsa-2,rsa-3}.pem are added
to the tree, and SSL tests now use them instead of the fixed-size keys.

Reference: https://github.com/ruby/openssl/issues/215

0011 ia64 Don t clear register_stack_start.patch | (download)

cont.c | 1 0 + 1 - 0 !
1 file changed, 1 deletion(-)

 ia64: don't clear register_stack_start

r59829 stopped clearing stack_start and enabled the code for
!FIBER_USE_NATIVE, but we need to do the same for register_stack_start
on ia64, otherwise we end up with NULL in cont_save_machine_stack.

Closes: https://github.com/ruby/ruby/pull/2155

0012 Fix for wrong fnmatch patttern.patch | (download)

dir.c | 2 1 + 1 - 0 !
test/ruby/test_fnmatch.rb | 6 6 + 0 - 0 !
2 files changed, 7 insertions(+), 1 deletion(-)

 fix for wrong fnmatch patttern
0013 Loop with String scan without creating substrings.patch | (download)

lib/webrick/httpauth/digestauth.rb | 19 2 + 17 - 0 !
test/webrick/test_httpauth.rb | 22 22 + 0 - 0 !
2 files changed, 24 insertions(+), 17 deletions(-)

 loop with string#scan without creating substrings
0014 WEBrick prevent response splitting and header inject.patch | (download)

lib/webrick/httpresponse.rb | 3 2 + 1 - 0 !
test/webrick/test_httpresponse.rb | 46 44 + 2 - 0 !
2 files changed, 46 insertions(+), 3 deletions(-)

 webrick: prevent response splitting and header injection
0015 lib shell command processor.rb Shell prevent unknown.patch | (download)

lib/shell/command-processor.rb | 3 3 + 0 - 0 !
test/shell/test_command_processor.rb | 18 18 + 0 - 0 !
2 files changed, 21 insertions(+)

 lib/shell/command-processor.rb (shell#[]): prevent unknown command
CVE 2020 10933.patch | (download)

ext/socket/init.c | 17 8 + 9 - 0 !
1 file changed, 8 insertions(+), 9 deletions(-)

 [patch] ext/socket/init.c: do not return uninitialized buffer

Resize string buffer only if some data is received in
BasicSocket#read_nonblock and some methods.

Co-Authored-By: Samuel Williams <samuel.williams@oriontransfer.co.nz>


CVE 2020 10663.patch | (download)

ext/json/parser/parser.c | 2 1 + 1 - 0 !
ext/json/parser/parser.rl | 2 1 + 1 - 0 !
2 files changed, 2 insertions(+), 2 deletions(-)

 [patch] merge revision(s) 36e9ed7fef6eb2d14becf6c52452e4ab16e4bf01:
 [Backport #16698]

	backport 80b5a0ff2a7709367178f29d4ebe1c54122b1c27 partially as a
	 securify fix for CVE-2020-10663. The patch was provided by Jeremy Evans.

	git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/branches/ruby_2_6@67856 b2dd03c8-39d4-4d8f-98ff-823fe69b080e

git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/branches/ruby_2_5@67869 b2dd03c8-39d4-4d8f-98ff-823fe69b080e


CVE 2020 25613.patch | (download)

lib/webrick/httprequest.rb | 6 3 + 3 - 0 !
1 file changed, 3 insertions(+), 3 deletions(-)

 [patch] make it more strict to interpret some headers

Some regexps were too tolerant.