Mirrors/aqtinstall
1
0
Fork 0
mirror of https://github.com/miurahr/aqtinstall.git synced 2025-12-18 05:04:38 +03:00
Code Issues Actions Packages Projects Releases Wiki Activity

Use sha256 hashes only from trusted mirrors

Browse Source 
To keep this commit small, `hashurl` was removed from QtPackage, and
`get_hash` constructs the hash url based on the url of the 7z archive
to download. I think that in the future, QtArchive and QtPackage could
be refactored to construct this url more appropriately. However, this
would be a complicated change that doesn't belong in this commit.
This commit is contained in:
David Dalcino
2022-02-27 11:43:36 -08:00
parent b92ee9935d
commit 7ebd6aa34e
7 changed files with 85 additions and 22 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
aqt/archives.py
View File

@@ -48,7 +48,6 @@ class QtPackage:
archive_url: str
archive: str
package_desc: str
hashurl: str
pkg_update_name: str
version: Optional[Version] = field(default=None)
@@ -61,7 +60,7 @@ class QtPackage:
return (
f"QtPackage(name={self.name}, url={self.archive_url}, "
f"archive={self.archive}, desc={self.package_desc}"
f"hashurl={self.hashurl}{v_info})"
f"{v_info})"
)
@@ -278,14 +277,12 @@ class QtArchives:
# 5.15.0-0-202005140804qtbase-Linux-RHEL_7_6-GCC-Linux-RHEL_7_6-X86_64.7z
full_version + archive,
)
hashurl = package_url + ".sha1"
self.archives.append(
QtPackage(
name=archive_name,
archive_url=package_url,
archive=archive,
package_desc=package_desc,
hashurl=hashurl,
pkg_update_name=pkg_name, # For testing purposes
)
)
@@ -480,14 +477,12 @@ class ToolArchives(QtArchives):
# 4.1.1-202105261130ifw-linux-x64.7z
f"{named_version}{archive}",
)
hashurl = package_url + ".sha1"
self.archives.append(
QtPackage(
name=name,
archive_url=package_url,
archive=archive,
package_desc=package_desc,
hashurl=hashurl,
pkg_update_name=name, # Redundant
)
)