zhangyiss/spack
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

core: use sha256 instead of md5 for spack checksum and spack create

Browse Source 
- This changes `get_checksums_for_versions` to generate code that uses an
  explicit `sha256` argument instead if the bare `md5` hash we used to
  generate.

- also use a generic digest parameter for the `version` directive, rather
  than a specific `md5` parameter.
This commit is contained in:
Todd Gamblin
2018-07-22 17:54:15 -07:00
parent 305c95b69f
commit bd3ffc7b76
6 changed files with 102 additions and 43 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
lib/spack/spack/directives.py
View File

@@ -240,16 +240,17 @@ def remove_directives(arg):
@directive('versions') @directive('versions')
def version(ver, checksum=None, **kwargs): def version(ver, checksum=None, **kwargs):
"""Adds a version and metadata describing how to fetch it. """Adds a version and metadata describing how to fetch its source code.
Metadata is just stored as a dict in the package's versions
dictionary. Package must turn it into a valid fetch strategy Metadata is stored as a dict of ``kwargs`` in the package class's
later. ``versions`` dictionary.
The ``dict`` of arguments is turned into a valid fetch strategy
later. See ``spack.fetch_strategy.for_package_version()``.
""" """
def _execute_version(pkg): def _execute_version(pkg):
# TODO: checksum vs md5 distinction is confusing -- fix this.
# special case checksum for backward compatibility
if checksum: if checksum:
kwargs['md5'] = checksum kwargs['checksum'] = checksum
# Store kwargs for the package to later with a fetch_strategy. # Store kwargs for the package to later with a fetch_strategy.
pkg.versions[Version(ver)] = kwargs pkg.versions[Version(ver)] = kwargs

41
lib/spack/spack/fetch_strategy.py
View File

@@ -181,19 +181,18 @@ class URLFetchStrategy(FetchStrategy):
enabled = True enabled = True
required_attributes = ['url'] required_attributes = ['url']
def __init__(self, url=None, digest=None, **kwargs): def __init__(self, url=None, checksum=None, **kwargs):
super(URLFetchStrategy, self).__init__() super(URLFetchStrategy, self).__init__()
# If URL or digest are provided in the kwargs, then prefer # Prefer values in kwargs to the positionals.
# those values. self.url = kwargs.get('url', url)
self.url = kwargs.get('url', None)
if not self.url:
self.url = url
self.digest = next((kwargs[h] for h in crypto.hashes if h in kwargs), # digest can be set as the first argument, or from an explicit
None) # kwarg by the hash name.
if not self.digest: self.digest = kwargs.get('checksum', checksum)
self.digest = digest for h in crypto.hashes:
if h in kwargs:
self.digest = kwargs[h]
self.expand_archive = kwargs.get('expand', True) self.expand_archive = kwargs.get('expand', True)
self.extra_curl_options = kwargs.get('curl_options', []) self.extra_curl_options = kwargs.get('curl_options', [])
@@ -1009,15 +1008,25 @@ def from_list_url(pkg):
try: try:
versions = pkg.fetch_remote_versions() versions = pkg.fetch_remote_versions()
try: try:
# get a URL, and a checksum if we have it
url_from_list = versions[pkg.version] url_from_list = versions[pkg.version]
digest = None checksum = None
if pkg.version in pkg.versions:
digest = pkg.versions[pkg.version].get('md5', None) # try to find a known checksum for version, from the package
return URLFetchStrategy(url=url_from_list, digest=digest) version = pkg.version
if version in pkg.versions:
args = pkg.versions[version]
checksum = next(
(v for k, v in args.items() if k in crypto.hashes),
args.get('checksum'))
# construct a fetcher
return URLFetchStrategy(url_from_list, checksum)
except KeyError: except KeyError:
tty.msg("Can not find version %s in url_list" % tty.msg("Cannot find version %s in url_list" % pkg.version)
pkg.version)
except BaseException: except BaseException:
# TODO: Don't catch BaseException here! Be more specific.
tty.msg("Could not determine url from list_url.") tty.msg("Could not determine url from list_url.")

2
lib/spack/spack/patch.py
View File

@@ -153,7 +153,7 @@ def apply(self, stage):
if self.archive_sha256: if self.archive_sha256:
fetch_digest = self.archive_sha256 fetch_digest = self.archive_sha256
fetcher = fs.URLFetchStrategy(self.url, digest=fetch_digest) fetcher = fs.URLFetchStrategy(self.url, fetch_digest)
mirror = os.path.join( mirror = os.path.join(
os.path.dirname(stage.mirror_path), os.path.dirname(stage.mirror_path),
os.path.basename(self.url)) os.path.basename(self.url))

65
lib/spack/spack/test/url_fetch.py
View File

@@ -83,16 +83,65 @@ def test_fetch(
def test_from_list_url(mock_packages, config): def test_from_list_url(mock_packages, config):
pkg = spack.repo.get('url-list-test') pkg = spack.repo.get('url-list-test')
for ver_str in ['0.0.0', '1.0.0', '2.0.0',
'3.0', '4.5', '2.0.0b2', # These URLs are all in the url-list-test package and should have
'3.0a1', '4.5-rc5']: # checksums taken from the package.
spec = Spec('url-list-test@%s' % ver_str) spec = Spec('url-list-test @0.0.0').concretized()
spec.concretize() pkg = spack.repo.get(spec)
pkg.spec = spec
fetch_strategy = from_list_url(pkg) fetch_strategy = from_list_url(pkg)
assert isinstance(fetch_strategy, URLFetchStrategy) assert isinstance(fetch_strategy, URLFetchStrategy)
assert (os.path.basename(fetch_strategy.url) == assert os.path.basename(fetch_strategy.url) == 'foo-0.0.0.tar.gz'
('foo-' + ver_str + '.tar.gz')) assert fetch_strategy.digest == 'abc000'
spec = Spec('url-list-test @1.0.0').concretized()
pkg = spack.repo.get(spec)
fetch_strategy = from_list_url(pkg)
assert isinstance(fetch_strategy, URLFetchStrategy)
assert os.path.basename(fetch_strategy.url) == 'foo-1.0.0.tar.gz'
assert fetch_strategy.digest == 'abc100'
spec = Spec('url-list-test @3.0').concretized()
pkg = spack.repo.get(spec)
fetch_strategy = from_list_url(pkg)
assert isinstance(fetch_strategy, URLFetchStrategy)
assert os.path.basename(fetch_strategy.url) == 'foo-3.0.tar.gz'
assert fetch_strategy.digest == 'abc30'
spec = Spec('url-list-test @4.5').concretized()
pkg = spack.repo.get(spec)
fetch_strategy = from_list_url(pkg)
assert isinstance(fetch_strategy, URLFetchStrategy)
assert os.path.basename(fetch_strategy.url) == 'foo-4.5.tar.gz'
assert fetch_strategy.digest == 'abc45'
spec = Spec('url-list-test @2.0.0b2').concretized()
pkg = spack.repo.get(spec)
fetch_strategy = from_list_url(pkg)
assert isinstance(fetch_strategy, URLFetchStrategy)
assert os.path.basename(fetch_strategy.url) == 'foo-2.0.0b2.tar.gz'
assert fetch_strategy.digest == 'abc200b2'
spec = Spec('url-list-test @3.0a1').concretized()
pkg = spack.repo.get(spec)
fetch_strategy = from_list_url(pkg)
assert isinstance(fetch_strategy, URLFetchStrategy)
assert os.path.basename(fetch_strategy.url) == 'foo-3.0a1.tar.gz'
assert fetch_strategy.digest == 'abc30a1'
spec = Spec('url-list-test @4.5-rc5').concretized()
pkg = spack.repo.get(spec)
fetch_strategy = from_list_url(pkg)
assert isinstance(fetch_strategy, URLFetchStrategy)
assert os.path.basename(fetch_strategy.url) == 'foo-4.5-rc5.tar.gz'
assert fetch_strategy.digest == 'abc45rc5'
# this one is not in the url-list-test package.
spec = Spec('url-list-test @2.0.0').concretized()
pkg = spack.repo.get(spec)
fetch_strategy = from_list_url(pkg)
assert isinstance(fetch_strategy, URLFetchStrategy)
assert os.path.basename(fetch_strategy.url) == 'foo-2.0.0.tar.gz'
assert fetch_strategy.digest is None
def test_hash_detection(checksum_type): def test_hash_detection(checksum_type):

4
lib/spack/spack/util/web.py
View File

@@ -404,7 +404,7 @@ def get_checksums_for_versions(
# Checksum the archive and add it to the list # Checksum the archive and add it to the list
version_hashes.append((version, spack.util.crypto.checksum( version_hashes.append((version, spack.util.crypto.checksum(
hashlib.md5, stage.archive_file))) hashlib.sha256, stage.archive_file)))
i += 1 i += 1
except spack.stage.FailedDownloadError: except spack.stage.FailedDownloadError:
tty.msg("Failed to fetch {0}".format(url)) tty.msg("Failed to fetch {0}".format(url))
@@ -420,7 +420,7 @@ def get_checksums_for_versions(
# Generate the version directives to put in a package.py # Generate the version directives to put in a package.py
version_lines = "\n".join([ version_lines = "\n".join([
" version('{0}', {1}'{2}')".format( " version('{0}', {1}sha256='{2}')".format(
v, ' ' * (max_len - len(str(v))), h) for v, h in version_hashes v, ' ' * (max_len - len(str(v))), h) for v, h in version_hashes
]) ])

14
var/spack/repos/builtin.mock/packages/url-list-test/package.py
View File

@@ -37,13 +37,13 @@ class UrlListTest(Package):
list_url = 'file://' + web_data_path + '/index.html' list_url = 'file://' + web_data_path + '/index.html'
list_depth = 3 list_depth = 3
version('0.0.0') version('0.0.0', 'abc000')
version('1.0.0') version('1.0.0', 'abc100')
version('3.0') version('3.0', 'abc30')
version('4.5') version('4.5', 'abc45')
version('2.0.0b2') version('2.0.0b2', 'abc200b2')
version('3.0a1') version('3.0a1', 'abc30a1')
version('4.5-rc5') version('4.5-rc5', 'abc45rc5')
def install(self, spec, prefix): def install(self, spec, prefix):
pass pass