Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update install.sh #215

Merged
merged 4 commits into from
Dec 26, 2022
Merged

Update install.sh #215

merged 4 commits into from
Dec 26, 2022

Conversation

cyqsimon
Copy link
Contributor

I think this is good enough, although I cannot fully test it until there's a new release using the updated builder.py.

Don't rush with the release though, I want to merge #214 first (which also requires me to change 2 or 3 lines in install.sh).

@cyqsimon cyqsimon marked this pull request as draft December 14, 2022 00:30
@rooklift
Copy link
Owner

Hmm - is it necessary to make such drastic changes? Various people spent some time making it as good as possible last time, and also, since I barely know Linux, I'm nervous about changing it, especially when strings like "sudo rm -rf" pop up...

@cyqsimon
Copy link
Contributor Author

cyqsimon commented Dec 14, 2022
edited
Loading

Hmm - is it necessary to make such drastic changes?

Well, kind of. I made the changes I made because I want the script to be as maintainable as possible going forward, not necessarily taking into account the amount I'm changing.

Various people spent some time making it as good as possible last time

I really can't agree that it's "as good as possible", no disrespect to the people who worked on this. There were several things that could be improved that I saw:

  1. Not using standard Unix/Linux tools where appropriate.
    • line 5-8: the standard way to determine if a binary is present is which.
    • line 16: the standard way of obtaining a temporary directory is mktemp. Using /tmp directly has many (though mostly rare) pitfalls.
  2. Mixed wget and curl usage. This requires both binaries to be present, which is an unnecessary point of failure. Also unlike curl which was checked at the start of the script, wget was never checked before being used.
  3. Very sketchy sudo unzip call on line 32. You shouldn't unzip directly into a system directory, for a host of safety reasons.
    • This also does not check/warn/handle overwrites. So in case you have already installed Nibbler from another source (e.g. from AUR), or have an older version installed, this is essentially UB.
  4. Asking to install .desktop file is simply unnecessary. Since Nibbler is a desktop GUI application, it's almost a given that the user would want to launch it graphically.
    • Just to clarify, this is not a "desktop shortcut" (although it can be used as such), rather Linux's standard way of registering the application with the Desktop Environment, so that it can be launched graphically from the launcher.
  5. General lack of comments. Although the script is rather straightforward, I think we can all agree that more comments is never bad.
  6. Mixed code styles - clearly the code was written and then patched over by several authors with very different code styles. I won't say any of them is superior or inferior, but suffice to say it's not good for maintainability.

Again, it's my principle to make code that pass through my hands as high quality as I can. And in this case, it does indeed involve lots of changes.

I'm nervous about changing it, especially when strings like "sudo rm -rf" pop up...

That's okay. Any sudo usage is scary, as it should be. Although I'm pretty confident about the quality of my code, I'm happy to have someone else review it, if that floats your boat.

That being said, I would argue that the sudo calls I'm using are actually much safer than the current ones, since the inputs are all hard-coded instead of dependent on the contents of a zip file from the internet.

cyqsimon
cyqsimon commented Dec 14, 2022
View reviewed changes
files/scripts/install.sh
Comment on lines +71 to +74
for FILE in "${INSTALL_DIR}" "${BIN_SYMLINK_PATH}" "${DESKTOP_ENTRY_PATH}" "${ICON_PATH}"; do
sudo rm -rf "$FILE"
sudo mkdir -p $(dirname "$FILE")
done
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

${INSTALL_DIR} ${BIN_SYMLINK_PATH} ${DESKTOP_ENTRY_PATH} and ${ICON_PATH} are all statically defined. It's just deleting several files at statically-known locations, so there's really nothing unsafe here.

cyqsimon
cyqsimon commented Dec 14, 2022
View reviewed changes
files/scripts/install.sh
LOCATION="/opt/${FILE_NAME}"
echo "Unzipping to $LOCATION, sudo needed"
echo sudo unzip -qq ${ZIP_NAME} -d /opt/
sudo unzip -qq ${ZIP_NAME} -d /opt/
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This sudo unzip -d /opt/ on the other hand, I really do not like at all.

cyqsimon
cyqsimon commented Dec 14, 2022
View reviewed changes
files/scripts/install.sh
Comment on lines +36 to +40
# extract
echo "Extracting..."
unzip -q "${ZIP_NAME}"
echo "Successfully extracted Nibbler"
UNZIPPED_NAME="${ZIP_NAME%.zip}"
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This unzips into a tempdir

cyqsimon
cyqsimon commented Dec 14, 2022
View reviewed changes
files/scripts/install.sh
Comment on lines +76 to +80
# install new
sudo mv "${UNZIPPED_NAME}" "${INSTALL_DIR}"
sudo ln -s "${INSTALL_DIR}/nibbler" "${BIN_SYMLINK_PATH}"
sudo mv "linux/nibbler.desktop" "${DESKTOP_ENTRY_PATH}"
sudo mv "nibbler.png" "${ICON_PATH}"
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

... and only install statically-known files into system directories.

@rooklift
Copy link
Owner

I had some people look at it and they seem happy enough, so go ahead.

Uh, are you wanting 2.3.9 to exist before you complete this?

@rooklift
Copy link
Owner

@cyqsimon - also if you're ready I guess I'll merge the reorganise branch into master?

@cyqsimon
Copy link
Contributor Author

@cyqsimon - also if you're ready I guess I'll merge the reorganise branch into master?

Sure. I'll notify downstream on AUR to update their build script when you're done.

@cyqsimon cyqsimon marked this pull request as ready for review December 26, 2022 04:23
rooklift
rooklift approved these changes Dec 26, 2022
View reviewed changes
Copy link
Owner

@rooklift rooklift left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I guess.

@rooklift rooklift merged commit 354478c into rooklift:reorganise Dec 26, 2022
@rooklift
Copy link
Owner

@cyqsimon - so everything is done and 2.3.9 now exists.

Uh, I guess the one-liner to install Nibbler is:

bash -c "$(wget -O- https://raw.githubusercontent.com/rooklift/nibbler/master/files/scripts/install.sh)"

Right?

@cyqsimon
Copy link
Contributor Author

@rooklift I like this more:

curl -L https://raw.githubusercontent.com/rooklift/nibbler/master/files/scripts/install.sh | bash

It's cleaner, and is consistent with the script in that it doesn't require wget.

@rooklift
Copy link
Owner

OK.

@cyqsimon cyqsimon deleted the reorganise branch December 30, 2022 10:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rooklift rooklift rooklift approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@cyqsimon @rooklift