Merge 9035c78016 into b83ca24eb7

[core] Catch broken Cryptodome installations (#11486 )
Authored by: seproDev
2024-11-27 01:31:25 +01:00 · 2024-11-10 09:19:38 +05:30 · 2024-11-10 00:53:49 +01:00 · 2024-11-09 23:46:47 +00:00 · 2024-11-09 23:26:02 +00:00 · 2024-10-13 17:17:16 +02:00
8 changed files with 61 additions and 15 deletions
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@ -504,7 +504,8 @@ jobs:
      - windows32
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/download-artifact@v4
+      - name: Download artifacts
        uses: actions/download-artifact@v4
        with:
          path: artifact
          pattern: build-bin-*
--- a/.github/workflows/release-master.yml
+++ b/.github/workflows/release-master.yml
@ -28,3 +28,20 @@ jobs:
      actions: write  # For cleaning up cache
      id-token: write  # mandatory for trusted publishing
    secrets: inherit
  publish_pypi:
    needs: [release]
    if: vars.MASTER_PYPI_PROJECT != ''
    runs-on: ubuntu-latest
    permissions:
      id-token: write  # mandatory for trusted publishing
    steps:
      - name: Download artifacts
        uses: actions/download-artifact@v4
        with:
          path: dist
          name: build-pypi
      - name: Publish to PyPI
        uses: pypa/gh-action-pypi-publish@release/v1
        with:
          verbose: true
--- a/.github/workflows/release-nightly.yml
+++ b/.github/workflows/release-nightly.yml
@ -41,3 +41,20 @@ jobs:
      actions: write  # For cleaning up cache
      id-token: write  # mandatory for trusted publishing
    secrets: inherit
  publish_pypi:
    needs: [release]
    if: vars.NIGHTLY_PYPI_PROJECT != ''
    runs-on: ubuntu-latest
    permissions:
      id-token: write  # mandatory for trusted publishing
    steps:
      - name: Download artifacts
        uses: actions/download-artifact@v4
        with:
          path: dist
          name: build-pypi
      - name: Publish to PyPI
        uses: pypa/gh-action-pypi-publish@release/v1
        with:
          verbose: true
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@ -2,10 +2,6 @@ name: Release
 on:
  workflow_call:
    inputs:
      prerelease:
        required: false
        default: true
        type: boolean
      source:
        required: false
        default: ''
@ -18,6 +14,10 @@ on:
        required: false
        default: ''
        type: string
      prerelease:
        required: false
        default: true
        type: boolean
  workflow_dispatch:
    inputs:
      source:
@ -278,11 +278,20 @@ jobs:
          make clean-cache
          python -m build --no-isolation .
      - name: Upload artifacts
        if: github.event_name != 'workflow_dispatch'
        uses: actions/upload-artifact@v4
        with:
          name: build-pypi
          path: |
            dist/*
          compression-level: 0
      - name: Publish to PyPI
        if: github.event_name == 'workflow_dispatch'
        uses: pypa/gh-action-pypi-publish@release/v1
        with:
          verbose: true
          attestations: false  # Currently doesn't work w/ reusable workflows (breaks nightly)
  publish:
    needs: [prepare, build]
--- a/pyproject.toml
+++ b/pyproject.toml
@ -52,7 +52,7 @@ default = [
    "pycryptodomex",
    "requests>=2.32.2,<3",
    "urllib3>=1.26.17,<3",
-    "websockets>=13.0",
+    "websockets>=13.0,<14",
 ]
 curl-cffi = [
    "curl-cffi==0.5.10; os_name=='nt' and implementation_name=='cpython'",
--- a/test/test_YoutubeDL.py
+++ b/test/test_YoutubeDL.py
@ -712,13 +712,13 @@ class TestYoutubeDL(unittest.TestCase):
    }
    def test_prepare_outtmpl_and_filename(self):
-        def test(tmpl, expected, *, info=None, **params):
+        def test(tmpl, expected, *, info=None, sanitize=False, **params):
            params['outtmpl'] = tmpl
            ydl = FakeYDL(params)
            ydl._num_downloads = 1
            self.assertEqual(ydl.validate_outtmpl(tmpl), None)
-            out = ydl.evaluate_outtmpl(tmpl, info or self.outtmpl_info)
+            out = ydl.evaluate_outtmpl(tmpl, info or self.outtmpl_info, sanitize=sanitize)
            fname = ydl.prepare_filename(info or self.outtmpl_info)
            if not isinstance(expected, (list, tuple)):
@ -917,6 +917,7 @@ class TestYoutubeDL(unittest.TestCase):
        test('Hello %(title2)s', 'Hello %PATH%')
        test('%(title3)s', ('foo/bar\\test', 'foo⧸bar⧹test'))
        test('folder/%(title3)s', ('folder/foo/bar\\test', f'folder{os.path.sep}foo⧸bar⧹test'))
        test('%(title3).7B', 'foo⧸b', sanitize=True)
    def test_format_note(self):
        ydl = YoutubeDL()
--- a/yt_dlp/YoutubeDL.py
+++ b/yt_dlp/YoutubeDL.py
@ -1374,9 +1374,6 @@ class YoutubeDL:
            elif fmt[-1] == 'q':  # quoted
                value = map(str, variadic(value) if '#' in flags else [value])
                value, fmt = shell_quote(value, shell=True), str_fmt
            elif fmt[-1] == 'B':  # bytes
                value = f'%{str_fmt}'.encode() % str(value).encode()
                value, fmt = value.decode('utf-8', 'ignore'), 's'
            elif fmt[-1] == 'U':  # unicode normalized
                value, fmt = unicodedata.normalize(
                    # "+" = compatibility equivalence, "#" = NFD
@ -1393,7 +1390,7 @@ class YoutubeDL:
                    value = str(value)[0]
                else:
                    fmt = str_fmt
-            elif fmt[-1] not in 'rsa':  # numeric
+            elif fmt[-1] not in 'rsaB':  # numeric
                value = float_or_none(value)
                if value is None:
                    value, fmt = default, 's'
@ -1405,9 +1402,13 @@ class YoutubeDL:
                    value, fmt = repr(value), str_fmt
                elif fmt[-1] == 'a':
                    value, fmt = ascii(value), str_fmt
-                if fmt[-1] in 'csra':
+                if fmt[-1] in 'csraB':
                    value = sanitizer(last_field, value)
            if fmt[-1] == 'B':  # bytes
                value = f'%{str_fmt}'.encode() % str(value).encode()
                value, fmt = value.decode('utf-8', 'ignore'), 's'
            key = '{}\0{}'.format(key.replace('%', '%\0'), outer_mobj.group('format'))
            TMPL_DICT[key] = value
            return '{prefix}%({key}){fmt}'.format(key=key, fmt=fmt, prefix=outer_mobj.group('prefix'))
--- a/yt_dlp/dependencies/Cryptodome.py
+++ b/yt_dlp/dependencies/Cryptodome.py
@ -24,7 +24,7 @@ try:
        from Crypto.Cipher import AES, PKCS1_OAEP, Blowfish, PKCS1_v1_5  # noqa: F401
        from Crypto.Hash import CMAC, SHA1  # noqa: F401
        from Crypto.PublicKey import RSA  # noqa: F401
-except ImportError:
+except (ImportError, OSError):
    __version__ = f'broken {__version__}'.strip()
Author	SHA1	Message	Date
nurupo	65e7e40c39	Merge `9035c78016` into `b83ca24eb7`	2024-11-10 09:19:38 +05:30
sepro	b83ca24eb7	[core] Catch broken Cryptodome installations (#11486 ) Authored by: seproDev	2024-11-10 00:53:49 +01:00
bashonly	240a7d43c8	[build] Pin `websockets` version to >=13.0,<14 (#11488 ) websockets 14.0 causes CI test failures (a lot more of them) Authored by: bashonly	2024-11-09 23:46:47 +00:00
bashonly	f13df591d4	[build] Enable attestations for trusted publishing (#11420 ) Reverts `428ffb75aa` Authored by: bashonly	2024-11-09 23:26:02 +00:00
Simon Sawicki	9035c78016	Merge branch 'master' into pr/10068	2024-10-13 17:17:16 +02:00
Maxim Biro	ec2ee10f34	[core] Fix the byte string-format going over the specified byte limit The byte string-format should be applied after the sanitization is done, as sanitize might replace a single byte character with a multi-byte one, e.g. '/' with '⧸', making the resulting string go over the desired byte limit. Fixes #10060	2024-07-03 14:55:48 -04:00