Add warning for SigningServirce if signing script changes

SigningService issues a warning if the signing script has changed on disk fixes #6291 https://pulp.plan.io/issues/6291
pulp · Apr 21, 2020 · ae31dfe · ae31dfe
1 parent b987f76
commit ae31dfe
Show file tree

Hide file tree

Showing 4 changed files with 54 additions and 1 deletion.
diff --git a/CHANGES/6291.feature b/CHANGES/6291.feature
@@ -0,0 +1 @@
+Added warning in SigningService for signing script if it has changed on disk
diff --git a/pulpcore/app/migrations/0024_signingservice_sha_256.py b/pulpcore/app/migrations/0024_signingservice_sha_256.py
@@ -0,0 +1,18 @@
+# Generated by Django 2.2.11 on 2020-04-20 05:07
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0023_change_exporter_models'),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name='signingservice',
+            name='sha_256',
+            field=models.CharField(max_length=64, null=True),
+        ),
+    ]
diff --git a/pulpcore/app/migrations/0025_auto_20200421_1002.py b/pulpcore/app/migrations/0025_auto_20200421_1002.py
@@ -0,0 +1,18 @@
+# Generated by Django 2.2.11 on 2020-04-21 10:02
+
+from django.db import migrations
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('core', '0024_signingservice_sha_256'),
+    ]
+
+    operations = [
+        migrations.RenameField(
+            model_name='signingservice',
+            old_name='sha_256',
+            new_name='sha256',
+        ),
+    ]
diff --git a/pulpcore/app/models/content.py b/pulpcore/app/models/content.py
@@ -5,6 +5,7 @@
 import hashlib
 import tempfile
 import subprocess
+import warnings
 
 import gnupg
 
@@ -387,6 +388,7 @@ class SigningService(BaseModel):
     """
     name = models.TextField(db_index=True, unique=True)
     script = models.TextField()
+    sha256 = models.CharField(max_length=64, null=True)
 
     def sign(self, filename):
         """
@@ -412,6 +414,9 @@ def sign(self, filename):
             stderr=subprocess.PIPE,
         )
 
+        if self.sha256 != self.hash_value(self.script):
+           warnings.warn('Provided signing script does not match original signing script', Warning)
+
         if completed_process.returncode != 0:
             raise RuntimeError(str(completed_process.stderr))
 
@@ -424,7 +429,7 @@ def sign(self, filename):
 
     def validate(self):
         """
-        Ensure that the external signing script produces the desired beahviour.
+        Ensure that the external signing script produces the desired behaviour.
 
         With desired behaviour we mean the behaviour as validated by this method. Subclasses are
         required to implement this method. Works by calling the sign() method on some test data, and
@@ -441,8 +446,19 @@ def save(self, *args, **kwargs):
         Save a signing service to the database (unless it fails to validate).
         """
         self.validate()
+        self.sha256 = self.hash_value(self.script)
         super().save(*args, **kwargs)
 
+    def hash_value(self, filename):
+        """
+        Calculate hash value (sha256) of signing script.
+        """
+        sha256_hash = hashlib.sha256()
+        with open(filename, "rb") as f:
+            for byte_block in iter(lambda: f.read(4096), b""):
+                sha256_hash.update(byte_block)
+            return sha256_hash.hexdigest()
+
 
 class AsciiArmoredDetachedSigningService(SigningService):
     """