Skip to content

1.1.rc: bundler may install the wrong version of a gem on MRI 1.8.7 #1486

rsutphin opened this Issue Oct 18, 2011 · 5 comments

3 participants


I've been testing out bundler 1.1.rc. I'm really enjoying the improved performance. I ran into what I think is a pretty serious bug, though: when using multiple gem sources (i.e., plus a private gem repo), I'm intermittently getting gem resolutions that won't work. Here's an example:

Fetching gem metadata from
Fetching gem metadata from http://my-internal-server/gems/.
Fetching full source index from http://my-internal-server/gems/
Fetching gem metadata from
Installing rake (0.9.2)
Installing activesupport (3.0.7)
Installing builder (2.1.2) WARNING: builder-2.1.2 has an invalid nil value for @cert_chain

Installing i18n (0.6.0)
Installing activemodel (3.0.7)
Installing arel (2.0.10)
Installing tzinfo (0.3.30)
Installing activerecord (3.0.5)
Installing activerecord-oracle_enhanced-adapter (1.3.2)
Installing castanet (1.0.1)
Installing net-ldap (0.1.1)
Installing rubytree (0.7.0)
Installing rack (1.3.5)
Installing warden (1.0.6)
Installing aker (3.0.2)
Installing bcaudit (0.3.0)
Installing highline (1.6.2)
Installing thor (0.14.6)
Installing bcdatabase (1.2.1)
Installing fattr (2.2.0)
Installing session (3.1.0)
Installing bcoracle (1.1.0)
Installing ci_reporter (1.6.5)
Installing composite_primary_keys (3.1.10)
Installing diff-lcs (1.1.3)
Installing json (1.6.1) with native extensions
Installing gherkin (2.4.21) with native extensions
Installing term-ansicolor (1.0.7)
Installing cucumber (0.10.7)
Installing database_cleaner (0.5.0)
Installing nokogiri (1.5.0) with native extensions
Installing mechanize (1.0.0)
Installing net-ssh (2.2.1)
Installing net-scp (1.0.4)
Installing rspec-core (2.6.4)
Installing rspec-expectations (2.6.0)
Installing rspec-mocks (2.6.0)
Installing rspec (2.6.0)
Installing yard (0.6.8)
Installing nubic-gem-tasks (1.0.0)
Installing schema_qualified_tables (1.0.1)
Using pers (3.0.1.pre) from source at /home/build/hudson/jobs/Pers for Ruby/workspace/ACTIVERECORD_VERSION/ar_3.0/CI_RUBY/ree-1.8.7-2011.03
Installing rcov (0.9.11) with native extensions WARNING: rcov-0.9.11 has an invalid nil value for @cert_chain

Installing rdiscount (1.6.8) with native extensions
Installing ruby-oci8 (2.0.6) with native extensions
Installing sqlite3 (1.3.4) with native extensions
Using bundler (1.1.rc)
Your bundle is updated! Use bundle show [gemname] to see where a bundled gem is installed.

  • bundle 1.1.rc exec rake autobuild --trace Could not find activesupport-3.0.5 in any of the sources

Some of those are private gems, but the conflict is in publicly available ones: bundler selects activesupport 3.0.7 and activerecord 3.0.5, which can't be used together.

Unfortunately this behavior is intermittent — sometimes it works fine, even within this one project. I'm going to try to track it down further, but it's a serious enough issue that it seemed like reporting it first was the best option.

when using multiple gem sources (i.e., plus a private gem repo)

I noticed that another, completely public project is also having this problem. I'm seeing it in the CI build for Aker. Some links:

In this case, the output from bundle update shows that bundler installed activesupport 3.0.5 and activerecord 3.0.5, but activemodel 3.0.7. Curiously, the lockfile shows that activemodel 3.0.5 was selected, suggesting that this isn't a problem with the resolver but with the installer.


Another item I got wrong in my rush to post:

Unfortunately this behavior is intermittent

It's actually completely reproducible on MRI 1.8.7. I've updated the title to reflect this. You can reproduce it by running Aker's CI script, assuming you have RVM installed:

  • git clone git://
  • cd aker

I'll try to come up with smaller test case.


You can reproduce it by running Aker's CI script, assuming you have RVM installed:

I've rolled back Aker to use bundler 1.0.21 for now, so you can no longer just clone and go if you want to try this in Aker. New steps:

  • git clone git://
  • cd aker
  • git checkout 4ed2a8
@indirect indirect was assigned Oct 18, 2011
Bundler member
hone commented Oct 20, 2011

Thanks for the bug report. We've reproduced this and it's a blocker for 1.1.

@indirect indirect closed this in 2671c42 Oct 20, 2011
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Something went wrong with that request. Please try again.