Mirrors/aqtinstall
1
0
Fork 0
mirror of https://github.com/miurahr/aqtinstall.git synced 2025-12-17 04:34:37 +03:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add setting for trusted_mirrors

Browse Source
This commit is contained in:
David Dalcino
2022-02-27 06:05:47 -08:00
parent edad37705a
commit b92ee9935d
3 changed files with 32 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
aqt/helper.py
View File

@@ -361,10 +361,18 @@ class SettingsClass:
def max_retries_on_checksum_error(self):
return self.config.getint("requests", "max_retries_on_checksum_error", fallback=int(self.max_retries))
@property
def max_retries_to_retrieve_hash(self):
return self.config.getint("requests", "max_retries_to_retrieve_hash", fallback=int(self.max_retries))
@property
def backoff_factor(self):
return self.config.getfloat("requests", "retry_backoff", fallback=0.1)
@property
def trusted_mirrors(self):
return self.config.getlist("mirrors", "trusted_mirrors", fallback=[self.baseurl])
@property
def fallbacks(self):
return self.config.getlist("mirrors", "fallbacks", fallback=[])

3
aqt/settings.ini
View File

@@ -15,8 +15,11 @@ response_timeout: 30
max_retries_on_connection_error: 5
retry_backoff: 0.1
max_retries_on_checksum_error: 5
max_retries_to_retrieve_hash: 5
[mirrors]
trusted_mirrors:
https://download.qt.io
blacklist:
http://mirrors.ocf.berkeley.edu
http://mirrors.tuna.tsinghua.edu.cn

21
docs/configuration.rst
View File

@@ -30,8 +30,11 @@ A file is like as follows:
max_retries_on_connection_error: 5
retry_backoff: 0.1
max_retries_on_checksum_error: 5
max_retries_to_retrieve_hash: 5
[mirrors]
trusted_mirrors:
https://download.qt.io
blacklist:
http://mirrors.ustc.edu.cn
http://mirrors.tuna.tsinghua.edu.cn
@@ -130,6 +133,24 @@ max_retries_on_checksum_error:
The ``[mirrors]`` section is a configuration for mirror handling.
trusted_mirrors:
``trusted_mirrors`` is a list of URLs that you trust to provide accurate
checksums for all downloaded archives.
This is a security feature; please do not change this value unless you know
what you're doing!
``aqtinstall`` downloads all checksums from mirrors in this list.
These checksums are used to verify that every other file that ``aqtinstall``
downloads is, in fact, the correct file, and not a corrupt or malicious copy
of the file.
You may need to modify this list if the default mirrors are unreachable,
or if you do not trust that they have not been compromised.
``aqtinstall`` can safely download archive files from the fallback mirror
list, and ensure that they are not malicious files, by checking them against
the checksums downloaded from the ``trusted_mirrors`` list.
``aqtinstall`` uses the SHA-256 algorithm to perform this check.
blacklist:
It is a list of URL where is a problematic mirror site.
Some mirror sites ignore a connection from IP addresses out of their preffered one.