update-python-libraries: use sri-hash

This commit is contained in:
Jonathan Ringer 2022-01-25 19:31:30 -08:00
parent 54a44e4f77
commit 47c82c04ae
No known key found for this signature in database
GPG key ID: 5C841D3CFDFEC4E0

View file

@ -340,13 +340,19 @@ def _update_package(path, target):
raise ValueError("no file available for {}.".format(pname))
text = _replace_value('version', new_version, text)
# hashes from pypi are 16-bit encoded sha256's, normalize it to sri to avoid merge conflicts
# sri hashes have been the default format since nix 2.4+
try:
sri_hash = subprocess.check_output(["nix", "hash", "to-sri", "--type", "sha256", new_sha256]).decode('utf-8').strip()
except subprocess.CalledProcessError:
# nix<2.4 compat
sri_hash = subprocess.check_output(["nix", "to-sri", "--type", "sha256", new_sha256]).decode('utf-8').strip()
# fetchers can specify a sha256, or a sri hash
try:
text = _replace_value('sha256', new_sha256, text)
text = _replace_value('sha256', sri_hash, text)
except ValueError:
# hashes from pypi are 16-bit encoded sha256's, need translate to an sri hash if used with "hash"
sri_hash = subprocess.check_output(["nix", "hash", "to-sri", "--type", "sha256", new_sha256]).decode('utf-8').strip()
text = _replace_value('hash', sri_hash, text)
if fetcher == 'fetchFromGitHub':