Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use checksum from Hook release: #66

Merged
merged 2 commits into from
Oct 9, 2023
Merged

Use checksum from Hook release: #66

merged 2 commits into from
Oct 9, 2023

Conversation

jacobweinstock
Copy link
Member

@jacobweinstock jacobweinstock commented Oct 8, 2023
edited
Loading

Description

Hook now provides a checksum file. Use it to verify downloads of Hook.

Why is this needed

Fixes: #

How Has This Been Tested?

Manually tested.

How are existing users impacted? What migration steps/scripts do we need?

Checklist:

I have:

  • updated the documentation and/or roadmap (if required)
  • added unit or e2e tests
  • provided instructions on how to upgrade

@jacobweinstock
Use checksum from Hook release:
4ff4abf 
Hook now provides a checksum file.
Use it to verify downloads of Hook.

Signed-off-by: Jacob Weinstock <jakobweinstock@gmail.com>
chrisdoherty4
chrisdoherty4 reviewed Oct 9, 2023
View reviewed changes
tinkerbell/stack/templates/nginx.yaml Outdated
wget "$f"
done
sha512sum -c checksum.txt
for f in *.tar.gz; do tar --no-same-permissions --overwrite -ozxvf "$f" && rm -f "$f"; done
Copy link
Member

@chrisdoherty4 chrisdoherty4 Oct 9, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are we confident files aren't going to overwrite each other from the double untar? What about future changes? Would it be safer to use a subdirectory?

Copy link
Member Author

@jacobweinstock jacobweinstock Oct 9, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

by double tar, do you mean the 2 iterations in the for loop? If so, there shouldnt be a concern. The vmlinuz and initramfs for each arch (x86_64 and arm) are named differently.

Sorry, i dont know if i follow what a subdirectory provides us?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

are you saying download to a temp dir and extract to the final location instead of downloading to the final dir?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hmm...regardless. I'll download to a tmp directory.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

done

@jacobweinstock
Download Hook tarballs to a temp dir:
94ee906 
Signed-off-by: Jacob Weinstock <jakobweinstock@gmail.com>
@chrisdoherty4 chrisdoherty4 added the ready-to-merge Mergify: Ready for Merging label Oct 9, 2023
@mergify mergify bot merged commit d19a915 into tinkerbell:main Oct 9, 2023
5 checks passed
@jacobweinstock jacobweinstock deleted the update-hook-download branch October 10, 2023 18:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@chrisdoherty4 chrisdoherty4 chrisdoherty4 approved these changes

Assignees
No one assigned
Labels
ready-to-merge Mergify: Ready for Merging
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@jacobweinstock @chrisdoherty4