[PATCH] UBUNTU: download-signed: improve to support grub2 downloads

Stefan Bader stefan.bader at canonical.com
Wed May 13 09:20:26 UTC 2020 

On 13.05.20 11:05, Kleber Souza wrote:
> Hi Dimitri,
> 
> What are the packages and series affected by this issue?

I think this is something for devel/unstable and then would come back to us via
cranky fix.

-Stefan

> 
> 
> Thanks,
> Kleber
> 
> On 05.05.20 10:38, Dimitri John Ledkov wrote:
>> - drop unused imports
>> - drop unused assignments
>> - switch to argparse, thus gain -h/--help
>> - add optional positional argument 'signed_type', defaults to 'signed'
>>   but can be specified to 'uefi' for grub2 downloads
>> - add support to simply download the "current" version
>>
>> This enables `./download-signed grub2 current grub2 uefi` to fetch
>> grub2 signed binaries without breaking any compatibility with any
>> other invocations of this script.
>>
>> BugLink: https://bugs.launchpad.net/bugs/1876875
>> Signed-off-by: Dimitri John Ledkov <xnox at ubuntu.com>
>> ---
>>  download-signed | 40 +++++++++++++++++++++++++++++-----------
>>  1 file changed, 29 insertions(+), 11 deletions(-)
>>
>> diff --git a/download-signed b/download-signed
>> index bed284e..0793696 100755
>> --- a/download-signed
>> +++ b/download-signed
>> @@ -1,9 +1,9 @@
>>  #! /usr/bin/python3
>>  
>>  import hashlib
>> +import argparse
>>  import os
>>  import re
>> -import shutil
>>  import sys
>>  import tarfile
>>  from urllib import request
>> @@ -14,12 +14,28 @@ from urllib.parse import (
>>      )
>>  
>>  import apt
>> -from aptsources.distro import get_distro
>>  
>>  # package_name: package containing the objects we signed
>>  # package_version: package version containing the objects we signed
>>  # src_package: source package name in dists
>> -(package_name, package_version, src_package) = sys.argv[1:]
>> +# signed_type: 'signed' or 'uefi' schema in the url
>> +
>> +parser = argparse.ArgumentParser()
>> +parser.add_argument(
>> +    "package_name",
>> +    help="package containining the objects we signed")
>> +parser.add_argument(
>> +    "package_version",
>> +    help="package version containing the objects we signed, or 'current'")
>> +parser.add_argument(
>> +    "src_package",
>> +    help="source package name in dists")
>> +parser.add_argument(
>> +    "signed_type",
>> +    nargs='?',
>> +    default='signed',
>> +    help="subdirectory type in the url, 'signed' or 'uefi'")
>> +args = parser.parse_args()
>>  
>>  
>>  class SignedDownloader:
>> @@ -30,7 +46,7 @@ class SignedDownloader:
>>      identify the members and to validate them once downloaded.
>>      """
>>  
>> -    def __init__(self, package_name, package_version, src_package):
>> +    def __init__(self, package_name, package_version, src_package, signed_type='signed'):
>>          self.package_name = package_name
>>          self.package_version = package_version
>>          self.src_package = src_package
>> @@ -41,10 +57,13 @@ class SignedDownloader:
>>          cache = apt.Cache()
>>  
>>          self.package = None
>> -        for version in cache[package_name].versions:
>> -            if version.version == self.package_version:
>> -                self.package = version
>> -                break
>> +        if self.package_version == "current":
>> +            self.package = cache[package_name].candidate
>> +        else:
>> +            for version in cache[package_name].versions:
>> +                if version.version == self.package_version:
>> +                    self.package = version
>> +                    break
>>  
>>          if not self.package:
>>              raise KeyError("{0}: package version not found".format(self.package_name))
>> @@ -52,7 +71,7 @@ class SignedDownloader:
>>          origin = self.package.origins[0]
>>          pool_parsed = urlparse(self.package.uri)
>>          self.package_dir = "%s/%s/%s/%s-%s/%s/" % (
>> -            origin.archive, 'main', 'signed',
>> +            origin.archive, 'main', signed_type,
>>              self.src_package, self.package.architecture, self.package_version)
>>  
>>          # Prepare the master url stem and pull out any username/password.  If present
>> @@ -152,7 +171,6 @@ class SignedDownloader:
>>          if os.path.exists(tarball_filename):
>>              with tarfile.open(tarball_filename) as tarball:
>>                  for tarinfo in tarball:
>> -                    fullname = os.path.abspath(os.path.join(base, tarinfo.name))
>>                      if not filename.startswith(here):
>>                          print('download-signed: {0}: tarball member outside output directory'.format(member))
>>                          sys.exit(1)
>> @@ -161,5 +179,5 @@ class SignedDownloader:
>>                      tarball.extract(tarinfo, base)
>>  
>>  
>> -downloader = SignedDownloader(package_name, package_version, src_package)
>> +downloader = SignedDownloader(**vars(args))
>>  downloader.download('.')
>>
> 
> 


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20200513/ebe9e19f/attachment.sig>

More information about the kernel-team mailing list