Support importing factory from https and unrelated fix

Contians fix for #15 (closed) and allows to import factory image from https with checksum verification.

Small tip, you can use https://docs.gitlab.com/ee/user/project/issues/managing_issues.html#default-closing-pattern

Want to have some level of security so not supporting http and ftp on purpose.

And isn't the variable substitution bash specific?

No they are supported, not all of them that bash support but they are. Behold: https://pubs.opengroup.org/onlinepubs/9699919799/ and now please use it everywhere.

Want to have some level of security so not supporting http and ftp on purpose.

I still think that you should detect not only https but URLs in general and report that provided schema is not valid. If you plan on supporting schema then, I think, you should support also file://.

Ok, would still prefer expr for readability reasons - I'm matching regexp, while your suggestion is to use globs to modify variable and then compare it - somehow less straight forward although faster for computer (as those are builtins), I would argue that slower for average reader. But I can compromise on case.

changed this line in version 3 of the diff

I do not think that expr is more readable honestly. It matches regexp without you really using regexp. It is like doing grep vs. grep -F, both are correct but one of them is better, guess which one. Also my version is technically more correct as it really compares only schema, yours looks for it in whole string (well it would be easy fix but with regexp this is common error).

Personally expr usage for me smells like obsolete code. It is probably because in bash it is fully replaced by [[ but when I can I am not using it. Maybe my problem but really here for me it on the other hand decreases readability as I am thinking what are you matching instead that you are looking for substring.

Idea is to support multiple directories that needs to be cleaned on exit

changed this line in version 2 of the diff

Why when you can have one root directory. You are not cleaning any input data or something so I think that you can get away with using single directory and making it easy to use.

Shouldn't we somehow check that at least one sum was checked or force it optionally somehow?

In theory should work even without the sum - on error wget should fail. MITM should be prevented by https.

changed this line in version 2 of the diff

Eh ok.

Thinking about it we should probably use signatures..

assigned to @mhrusecky and unassigned @kkoci

added 1 commit

• d631aa16 - fixup! Import generic config before processing -d

Compare with previous version

marked as a Work In Progress from d631aa16

Now needs retesting, but let's see more comments.

That is expected. That is why you should have implemented CI to ease testing process.

With VM supporting that would give me access to root and internet and will support bttrfs and loop mounts...

You can always fake btrfs command

Then it is not a test ;-)

It is. Checking expected behavior in controlled environment is the test. Yes you should later correlate output of your mocker with real stuff but for preserving expected functionality and checking for introduced errors it is the best option you right now have. Consider unit-tests, those fake pretty much whole application context, those are not tests then?

assigned to @kkoci and unassigned @mhrusecky

assigned to @mhrusecky and unassigned @kkoci

added 1 commit

• ed5e91d1 - fixup! fixup! Import generic config before processing -d

Compare with previous version

assigned to @kkoci and unassigned @mhrusecky

unmarked as a Work In Progress

approved this merge request

Just few comments but otherwise I am ok with the code now.

assigned to @mhrusecky and unassigned @kkoci

added 2 commits

• 5b8bb9a2 - Support importing factory from https
• fadd4d93 - Import generic config before processing -d

Compare with previous version

merged

mentioned in issue #15 (closed)