Spaces:

AUXteam
/

WitNote

Paused

App Files Files Community

WitNote / npm /src /download.ts

AUXteam

Upload folder using huggingface_hub

6a7089a verified about 1 month ago

raw

history blame contribute delete

9.12 kB

	import * as fs from 'fs';
	import * as path from 'path';
	import * as https from 'https';
	import * as crypto from 'crypto';
	import { detectPlatform, getBinaryName, getBinaryPath } from './platform';

	const GITHUB_REPO = 'pinchtab/pinchtab';

	// Read version from package.json at build time
	function getVersion(): string {
	const pkgPath = path.join(__dirname, '..', 'package.json');
	const pkg = JSON.parse(fs.readFileSync(pkgPath, 'utf-8'));
	return pkg.version;
	}

	function fetchUrl(url: string, maxRedirects = 5): Promise<Buffer> {
	return new Promise((resolve, reject) => {
	const attemptFetch = (currentUrl: string, redirectsRemaining: number) => {
	let agent: https.Agent \| undefined;

	// Proxy support for corporate environments
	const proxyUrl = process.env.HTTPS_PROXY \|\| process.env.HTTP_PROXY;
	if (proxyUrl) {
	try {
	const proxy = new URL(proxyUrl);
	const proxyPort = proxy.port ? parseInt(proxy.port, 10) : 8080;
	agent = new https.Agent({
	host: proxy.hostname,
	port: proxyPort,
	keepAlive: true,
	});
	} catch (_err) {
	console.warn(`Warning: Invalid proxy URL ${proxyUrl}, ignoring`);
	}
	}

	const request = https.get(currentUrl, agent ? { agent } : {}, (response) => {
	// Handle redirects (301, 302, 307, 308)
	if ([301, 302, 307, 308].includes(response.statusCode \|\| 0)) {
	if (redirectsRemaining <= 0) {
	reject(new Error(`Too many redirects from ${currentUrl}`));
	return;
	}

	let redirectUrl = response.headers.location;
	if (!redirectUrl) {
	reject(new Error(`Redirect without location header from ${currentUrl}`));
	return;
	}

	// Resolve relative URLs
	try {
	redirectUrl = new URL(redirectUrl, currentUrl).toString();
	} catch (_err) {
	reject(new Error(`Invalid redirect URL from ${currentUrl}: ${redirectUrl}`));
	return;
	}

	// Consume the response stream to avoid memory leaks
	response.resume();
	attemptFetch(redirectUrl, redirectsRemaining - 1);
	return;
	}

	if (response.statusCode === 404) {
	reject(new Error(`Not found: ${currentUrl}`));
	return;
	}

	if (response.statusCode !== 200) {
	reject(new Error(`HTTP ${response.statusCode}: ${currentUrl}`));
	return;
	}

	const chunks: Buffer[] = [];
	response.on('data', (chunk) => chunks.push(chunk));
	response.on('end', () => resolve(Buffer.concat(chunks)));
	response.on('error', reject);
	});

	request.on('error', reject);
	};

	attemptFetch(url, maxRedirects);
	});
	}

	async function downloadChecksums(version: string): Promise<Map<string, string>> {
	const url = `https://github.com/${GITHUB_REPO}/releases/download/v${version}/checksums.txt`;

	try {
	const data = await fetchUrl(url);
	const checksums = new Map<string, string>();

	data
	.toString('utf-8')
	.trim()
	.split('\n')
	.forEach((line) => {
	const [hash, filename] = line.split(/\s+/);
	if (hash && filename) {
	checksums.set(filename.trim(), hash.trim());
	}
	});

	return checksums;
	} catch (err) {
	throw new Error(
	`Failed to download checksums: ${(err as Error).message}. ` +
	`Ensure v${version} is released on GitHub with checksums.txt`
	);
	}
	}

	function verifySHA256(filePath: string, expectedHash: string): boolean {
	const hash = crypto.createHash('sha256');
	const data = fs.readFileSync(filePath);
	hash.update(data);
	const actualHash = hash.digest('hex');
	return actualHash.toLowerCase() === expectedHash.toLowerCase();
	}

	async function downloadBinary(
	platform: ReturnType<typeof detectPlatform>,
	version: string
	): Promise<void> {
	const binaryName = getBinaryName(platform);
	const binaryPath = getBinaryPath(binaryName, version);

	// Always verify existing binaries, even if they exist
	// (guards against corrupted installs from previous failures)
	if (fs.existsSync(binaryPath)) {
	try {
	const checksums = await downloadChecksums(version);
	if (checksums.has(binaryName)) {
	const expectedHash = checksums.get(binaryName)!;
	if (verifySHA256(binaryPath, expectedHash)) {
	console.log(`✓ Pinchtab binary verified: ${binaryPath}`);
	return;
	} else {
	console.warn(`⚠ Existing binary failed checksum, re-downloading...`);
	fs.unlinkSync(binaryPath);
	}
	}
	} catch (_err) {
	console.warn(`⚠ Could not verify existing binary, re-downloading...`);
	try {
	fs.unlinkSync(binaryPath);
	} catch {
	// ignore
	}
	}
	}

	// Fetch checksums
	console.log(`Downloading Pinchtab ${version} for ${platform.os}-${platform.arch}...`);
	const checksums = await downloadChecksums(version);

	if (!checksums.has(binaryName)) {
	throw new Error(
	`Binary not found in checksums: ${binaryName}. ` +
	`Available: ${Array.from(checksums.keys()).join(', ')}`
	);
	}

	const expectedHash = checksums.get(binaryName)!;
	const downloadUrl = `https://github.com/${GITHUB_REPO}/releases/download/v${version}/${binaryName}`;

	// Ensure directory exists (unless using custom PINCHTAB_BINARY_PATH)
	const binDir = path.dirname(binaryPath);
	if (!fs.existsSync(binDir)) {
	fs.mkdirSync(binDir, { recursive: true });
	}

	// Download to temp file first, then atomically rename to final path
	// This prevents partial/corrupted files from being left behind
	const tempPath = `${binaryPath}.tmp`;

	return new Promise((resolve, reject) => {
	console.log(`Downloading from ${downloadUrl}...`);

	const file = fs.createWriteStream(tempPath);
	let redirectCount = 0;
	const maxRedirects = 5;

	const performDownload = (url: string) => {
	https
	.get(url, (response) => {
	// Handle redirects (301, 302, 307, 308)
	if ([301, 302, 307, 308].includes(response.statusCode \|\| 0)) {
	if (redirectCount >= maxRedirects) {
	fs.unlink(tempPath, () => {});
	reject(new Error(`Too many redirects downloading ${downloadUrl}`));
	return;
	}

	let redirectUrl = response.headers.location;
	if (!redirectUrl) {
	fs.unlink(tempPath, () => {});
	reject(new Error(`Redirect without location header from ${url}`));
	return;
	}

	// Resolve relative URLs
	try {
	redirectUrl = new URL(redirectUrl, url).toString();
	} catch (_err) {
	fs.unlink(tempPath, () => {});
	reject(new Error(`Invalid redirect URL from ${url}: ${redirectUrl}`));
	return;
	}

	redirectCount++;
	response.resume(); // Consume response stream
	performDownload(redirectUrl);
	return;
	}

	if (response.statusCode !== 200) {
	fs.unlink(tempPath, () => {});
	reject(new Error(`HTTP ${response.statusCode}: ${url}`));
	return;
	}

	response.pipe(file);

	file.on('finish', () => {
	file.close();

	// Verify checksum before moving to final location
	if (!verifySHA256(tempPath, expectedHash)) {
	fs.unlink(tempPath, () => {});
	reject(
	new Error(
	`Checksum verification failed for ${binaryName}. ` +
	`Download may be corrupted. Please try again.`
	)
	);
	return;
	}

	// Atomically move temp file to final location
	try {
	fs.renameSync(tempPath, binaryPath);
	} catch (err) {
	fs.unlink(tempPath, () => {});
	reject(new Error(`Failed to finalize binary: ${(err as Error).message}`));
	return;
	}

	// Make executable
	try {
	fs.chmodSync(binaryPath, 0o755);
	} catch (err) {
	// On Windows, chmod may fail but binary may still be usable
	console.warn(
	`⚠ Warning: could not set executable permissions: ${(err as Error).message}`
	);
	}

	console.log(`✓ Verified and installed: ${binaryPath}`);
	resolve();
	});

	file.on('error', (err) => {
	fs.unlink(tempPath, () => {});
	reject(err);
	});
	})
	.on('error', reject);
	};

	performDownload(downloadUrl);
	});
	}

	export async function ensureBinary(): Promise<string> {
	const platform = detectPlatform();
	const version = getVersion();

	await downloadBinary(platform, version);

	const binaryName = getBinaryName(platform);
	return getBinaryPath(binaryName, version);
	}