2 Downloads feeds, keys, packages and icons.
5 # Copyright (C) 2009, Thomas Leonard
6 # See the README file for details, or visit http://0install.net.
8 from zeroinstall
import _
, NeedDownload
10 from logging
import info
, debug
, warn
12 from zeroinstall
.support
import tasks
, basedir
13 from zeroinstall
.injector
.namespaces
import XMLNS_IFACE
, config_site
14 from zeroinstall
.injector
.model
import DownloadSource
, Recipe
, SafeException
, escape
, DistributionSource
15 from zeroinstall
.injector
.iface_cache
import PendingFeed
, ReplayAttack
16 from zeroinstall
.injector
.handler
import NoTrustedKeys
17 from zeroinstall
.injector
import download
19 def _escape_slashes(path
):
20 return path
.replace('/', '%23')
22 def _get_feed_dir(feed
):
23 """The algorithm from 0mirror."""
25 raise SafeException(_("Invalid URL '%s'") % feed
)
26 scheme
, rest
= feed
.split('://', 1)
27 assert '/' in rest
, "Missing / in %s" % feed
28 domain
, rest
= rest
.split('/', 1)
29 for x
in [scheme
, domain
, rest
]:
30 if not x
or x
.startswith(','):
31 raise SafeException(_("Invalid URL '%s'") % feed
)
32 return os
.path
.join('feeds', scheme
, domain
, _escape_slashes(rest
))
35 """Fetches information about a GPG key from a key-info server.
36 See L{Fetcher.fetch_key_info} for details.
41 >>> kf = KeyInfoFetcher(handler, 'https://server', fingerprint)
44 if kf.blocker is None: break
48 def __init__(self
, handler
, server
, fingerprint
):
49 self
.fingerprint
= fingerprint
53 if server
is None: return
55 self
.status
= _('Fetching key information from %s...') % server
57 dl
= handler
.get_download(server
+ '/key/' + fingerprint
)
59 from xml
.dom
import minidom
64 tempfile
= dl
.tempfile
67 tasks
.check(dl
.downloaded
)
69 doc
= minidom
.parse(tempfile
)
70 if doc
.documentElement
.localName
!= 'key-lookup':
71 raise SafeException(_('Expected <key-lookup>, not <%s>') % doc
.documentElement
.localName
)
72 self
.info
+= doc
.documentElement
.childNodes
73 except Exception as ex
:
74 doc
= minidom
.parseString('<item vote="bad"/>')
75 root
= doc
.documentElement
76 root
.appendChild(doc
.createTextNode(_('Error getting key information: %s') % ex
))
77 self
.info
.append(root
)
79 self
.blocker
= fetch_key_info()
81 class Fetcher(object):
82 """Downloads and stores various things.
83 @ivar config: used to get handler, iface_cache and stores
84 @type config: L{config.Config}
85 @ivar key_info: caches information about GPG keys
86 @type key_info: {str: L{KeyInfoFetcher}}
88 __slots__
= ['config', 'key_info']
90 def __init__(self
, config
):
91 assert config
.handler
, "API change!"
97 return self
.config
.handler
100 def cook(self
, required_digest
, recipe
, stores
, force
= False, impl_hint
= None):
102 @param impl_hint: the Implementation this is for (if any) as a hint for the GUI
103 @see: L{download_impl} uses this method when appropriate"""
104 # Maybe we're taking this metaphor too far?
106 # Start downloading all the ingredients.
107 streams
= {} # Streams collected from successful downloads
109 # Start a download for each ingredient
111 for step
in recipe
.steps
:
112 blocker
, stream
= self
.download_archive(step
, force
= force
, impl_hint
= impl_hint
)
114 blockers
.append(blocker
)
115 streams
[step
] = stream
119 tasks
.check(blockers
)
120 blockers
= [b
for b
in blockers
if not b
.happened
]
122 from zeroinstall
.zerostore
import unpack
124 # Create an empty directory for the new implementation
125 store
= stores
.stores
[0]
126 tmpdir
= store
.get_tmp_dir_for(required_digest
)
128 # Unpack each of the downloaded archives into it in turn
129 for step
in recipe
.steps
:
130 stream
= streams
[step
]
132 unpack
.unpack_archive_over(step
.url
, stream
, tmpdir
,
133 extract
= step
.extract
,
135 start_offset
= step
.start_offset
or 0)
136 # Check that the result is correct and store it in the cache
137 store
.check_manifest_and_rename(required_digest
, tmpdir
)
140 # If unpacking fails, remove the temporary directory
141 if tmpdir
is not None:
142 from zeroinstall
import support
143 support
.ro_rmtree(tmpdir
)
145 def get_feed_mirror(self
, url
):
146 """Return the URL of a mirror for this feed."""
147 if self
.config
.feed_mirror
is None:
150 if urlparse
.urlparse(url
).hostname
== 'localhost':
152 return '%s/%s/latest.xml' % (self
.config
.feed_mirror
, _get_feed_dir(url
))
155 def get_packagekit_feed(self
, feed_url
):
156 """Send a query to PackageKit (if available) for information about this package.
157 On success, the result is added to iface_cache.
159 assert feed_url
.startswith('distribution:'), feed_url
160 master_feed
= self
.config
.iface_cache
.get_feed(feed_url
.split(':', 1)[1])
162 fetch
= self
.config
.iface_cache
.distro
.fetch_candidates(master_feed
)
167 # Force feed to be regenerated with the new information
168 self
.config
.iface_cache
.get_feed(feed_url
, force
= True)
170 def download_and_import_feed(self
, feed_url
, iface_cache
= None, force
= False):
171 """Download the feed, download any required keys, confirm trust if needed and import.
172 @param feed_url: the feed to be downloaded
174 @param iface_cache: (deprecated)
175 @param force: whether to abort and restart an existing download"""
176 from .download
import DownloadAborted
178 assert iface_cache
is None or iface_cache
is self
.config
.iface_cache
180 self
.config
.iface_cache
.mark_as_checking(feed_url
)
182 debug(_("download_and_import_feed %(url)s (force = %(force)d)"), {'url': feed_url
, 'force': force
})
183 assert not os
.path
.isabs(feed_url
)
185 if feed_url
.startswith('distribution:'):
186 return self
.get_packagekit_feed(feed_url
)
188 primary
= self
._download
_and
_import
_feed
(feed_url
, force
, use_mirror
= False)
190 @tasks.named_async("monitor feed downloads for " + feed_url
)
191 def wait_for_downloads(primary
):
192 # Download just the upstream feed, unless it takes too long...
193 timeout
= tasks
.TimeoutBlocker(5, 'Mirror timeout') # 5 seconds
195 yield primary
, timeout
201 return # OK, primary succeeded!
202 # OK, maybe it's just being slow...
203 info("Feed download from %s is taking a long time.", feed_url
)
205 except NoTrustedKeys
as ex
:
206 raise # Don't bother trying the mirror if we have a trust problem
207 except ReplayAttack
as ex
:
208 raise # Don't bother trying the mirror if we have a replay attack
209 except DownloadAborted
as ex
:
210 raise # Don't bother trying the mirror if the user cancelled
211 except SafeException
as ex
:
215 warn(_("Feed download from %(url)s failed: %(exception)s"), {'url': feed_url
, 'exception': ex
})
217 # Start downloading from mirror...
218 mirror
= self
._download
_and
_import
_feed
(feed_url
, force
, use_mirror
= True)
220 # Wait until both mirror and primary tasks are complete...
222 blockers
= filter(None, [primary
, mirror
])
232 # No point carrying on with the mirror once the primary has succeeded
234 info(_("Primary feed download succeeded; aborting mirror download for %s") % feed_url
)
236 except SafeException
as ex
:
239 info(_("Feed download from %(url)s failed; still trying mirror: %(exception)s"), {'url': feed_url
, 'exception': ex
})
247 # We already warned; no need to raise an exception too,
248 # as the mirror download succeeded.
250 except ReplayAttack
as ex
:
251 info(_("Version from mirror is older than cached version; ignoring it: %s"), ex
)
254 except SafeException
as ex
:
255 info(_("Mirror download failed: %s"), ex
)
261 return wait_for_downloads(primary
)
263 def _download_and_import_feed(self
, feed_url
, force
, use_mirror
):
264 """Download and import a feed.
265 @param use_mirror: False to use primary location; True to use mirror."""
267 url
= self
.get_feed_mirror(feed_url
)
268 if url
is None: return None
269 info(_("Trying mirror server for feed %s") % feed_url
)
273 dl
= self
.handler
.get_download(url
, force
= force
, hint
= feed_url
)
276 @tasks.named_async("fetch_feed " + url
)
279 tasks
.check(dl
.downloaded
)
281 pending
= PendingFeed(feed_url
, stream
)
284 # If we got the feed from a mirror, get the key from there too
285 key_mirror
= self
.config
.feed_mirror
+ '/keys/'
289 keys_downloaded
= tasks
.Task(pending
.download_keys(self
.handler
, feed_hint
= feed_url
, key_mirror
= key_mirror
), _("download keys for %s") % feed_url
)
290 yield keys_downloaded
.finished
291 tasks
.check(keys_downloaded
.finished
)
293 if not self
.config
.iface_cache
.update_feed_if_trusted(pending
.url
, pending
.sigs
, pending
.new_xml
):
294 blocker
= self
.config
.trust_mgr
.confirm_keys(pending
)
298 if not self
.config
.iface_cache
.update_feed_if_trusted(pending
.url
, pending
.sigs
, pending
.new_xml
):
299 raise NoTrustedKeys(_("No signing keys trusted; not importing"))
305 def fetch_key_info(self
, fingerprint
):
307 return self
.key_info
[fingerprint
]
309 self
.key_info
[fingerprint
] = key_info
= KeyInfoFetcher(self
.handler
,
310 self
.config
.key_info_server
, fingerprint
)
313 def download_impl(self
, impl
, retrieval_method
, stores
, force
= False):
314 """Download an implementation.
315 @param impl: the selected implementation
316 @type impl: L{model.ZeroInstallImplementation}
317 @param retrieval_method: a way of getting the implementation (e.g. an Archive or a Recipe)
318 @type retrieval_method: L{model.RetrievalMethod}
319 @param stores: where to store the downloaded implementation
320 @type stores: L{zerostore.Stores}
321 @param force: whether to abort and restart an existing download
322 @rtype: L{tasks.Blocker}"""
324 assert retrieval_method
326 if isinstance(retrieval_method
, DistributionSource
):
327 return retrieval_method
.install(self
.handler
)
329 from zeroinstall
.zerostore
import manifest
331 for digest
in impl
.digests
:
332 alg_name
= digest
.split('=', 1)[0]
333 alg
= manifest
.algorithms
.get(alg_name
, None)
334 if alg
and (best
is None or best
.rating
< alg
.rating
):
336 required_digest
= digest
340 raise SafeException(_("No <manifest-digest> given for '%(implementation)s' version %(version)s") %
341 {'implementation': impl
.feed
.get_name(), 'version': impl
.get_version()})
342 raise SafeException(_("Unknown digest algorithms '%(algorithms)s' for '%(implementation)s' version %(version)s") %
343 {'algorithms': impl
.digests
, 'implementation': impl
.feed
.get_name(), 'version': impl
.get_version()})
347 if isinstance(retrieval_method
, DownloadSource
):
348 blocker
, stream
= self
.download_archive(retrieval_method
, force
= force
, impl_hint
= impl
)
353 self
._add
_to
_cache
(required_digest
, stores
, retrieval_method
, stream
)
354 elif isinstance(retrieval_method
, Recipe
):
355 blocker
= self
.cook(required_digest
, retrieval_method
, stores
, force
, impl_hint
= impl
)
359 raise Exception(_("Unknown download type for '%s'") % retrieval_method
)
361 self
.handler
.impl_added_to_store(impl
)
362 return download_impl()
364 def _add_to_cache(self
, required_digest
, stores
, retrieval_method
, stream
):
365 assert isinstance(retrieval_method
, DownloadSource
)
366 stores
.add_archive_to_cache(required_digest
, stream
, retrieval_method
.url
, retrieval_method
.extract
,
367 type = retrieval_method
.type, start_offset
= retrieval_method
.start_offset
or 0)
369 def download_archive(self
, download_source
, force
= False, impl_hint
= None):
370 """Fetch an archive. You should normally call L{download_impl}
371 instead, since it handles other kinds of retrieval method too."""
372 from zeroinstall
.zerostore
import unpack
374 url
= download_source
.url
375 if not (url
.startswith('http:') or url
.startswith('https:') or url
.startswith('ftp:')):
376 raise SafeException(_("Unknown scheme in download URL '%s'") % url
)
378 mime_type
= download_source
.type
380 mime_type
= unpack
.type_from_url(download_source
.url
)
382 raise SafeException(_("No 'type' attribute on archive, and I can't guess from the name (%s)") % download_source
.url
)
383 unpack
.check_type_ok(mime_type
)
384 dl
= self
.handler
.get_download(download_source
.url
, force
= force
, hint
= impl_hint
)
385 dl
.expected_size
= download_source
.size
+ (download_source
.start_offset
or 0)
386 return (dl
.downloaded
, dl
.tempfile
)
388 def download_icon(self
, interface
, force
= False):
389 """Download an icon for this interface and add it to the
390 icon cache. If the interface has no icon do nothing.
391 @return: the task doing the import, or None
392 @rtype: L{tasks.Task}"""
393 debug("download_icon %(interface)s (force = %(force)d)", {'interface': interface
, 'force': force
})
395 modification_time
= None
396 existing_icon
= self
.config
.iface_cache
.get_icon_path(interface
)
398 file_mtime
= os
.stat(existing_icon
).st_mtime
399 from email
.utils
import formatdate
400 modification_time
= formatdate(timeval
= file_mtime
, localtime
= False, usegmt
= True)
402 # Find a suitable icon to download
403 for icon
in interface
.get_metadata(XMLNS_IFACE
, 'icon'):
404 type = icon
.getAttribute('type')
405 if type != 'image/png':
406 debug(_('Skipping non-PNG icon'))
408 source
= icon
.getAttribute('href')
411 warn(_('Missing "href" attribute on <icon> in %s'), interface
)
413 info(_('No PNG icons found in %s'), interface
)
416 if self
.handler
.dry_run
:
417 raise NeedDownload(source
)
418 dl
= download
.Download(source
, hint
= interface
, modification_time
= modification_time
)
419 self
.handler
.monitor_download(dl
)
422 def download_and_add_icon():
426 tasks
.check(dl
.downloaded
)
427 if dl
.unmodified
: return
431 icons_cache
= basedir
.save_cache_path(config_site
, 'interface_icons')
432 icon_file
= open(os
.path
.join(icons_cache
, escape(interface
.uri
)), 'w')
433 shutil
.copyfileobj(stream
, icon_file
)
434 except Exception as ex
:
435 self
.handler
.report_error(ex
)
437 return download_and_add_icon()
439 def download_impls(self
, implementations
, stores
):
440 """Download the given implementations, choosing a suitable retrieval method for each.
441 If any of the retrieval methods are DistributionSources and
442 need confirmation, handler.confirm is called to check that the
443 installation should proceed.
448 for impl
in implementations
:
449 debug(_("start_downloading_impls: for %(feed)s get %(implementation)s"), {'feed': impl
.feed
, 'implementation': impl
})
450 source
= self
.get_best_source(impl
)
452 raise SafeException(_("Implementation %(implementation_id)s of interface %(interface)s"
453 " cannot be downloaded (no download locations given in "
454 "interface!)") % {'implementation_id': impl
.id, 'interface': impl
.feed
.get_name()})
455 to_download
.append((impl
, source
))
457 if isinstance(source
, DistributionSource
) and source
.needs_confirmation
:
458 unsafe_impls
.append(source
.package_id
)
461 def download_impls():
463 confirm
= self
.handler
.confirm_install(_('The following components need to be installed using native packages. '
464 'These come from your distribution, and should therefore be trustworthy, but they also '
465 'run with extra privileges. In particular, installing them may run extra services on your '
466 'computer or affect other users. You may be asked to enter a password to confirm. The '
467 'packages are:\n\n') + ('\n'.join('- ' + x
for x
in unsafe_impls
)))
473 for impl
, source
in to_download
:
474 blockers
.append(self
.download_impl(impl
, source
, stores
))
476 # Record the first error log the rest
478 def dl_error(ex
, tb
= None):
480 self
.handler
.report_error(ex
)
485 tasks
.check(blockers
, dl_error
)
487 blockers
= [b
for b
in blockers
if not b
.happened
]
494 return download_impls()
496 def get_best_source(self
, impl
):
497 """Return the best download source for this implementation.
498 @rtype: L{model.RetrievalMethod}"""
499 if impl
.download_sources
:
500 return impl
.download_sources
[0]