Skip to content

Pr3/3 manage apt key removal #1487

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 15 commits into
base: 3.x
Choose a base branch
from
Draft

Pr3/3 manage apt key removal #1487

wants to merge 15 commits into from

Conversation

@maisim
Copy link
Contributor

@maisim maisim commented Oct 14, 2025
edited
Loading

This pull request refactors and modernizes the APT repository and key management logic in src/pyinfra/facts/apt.py and related files. supporting both legacy and deb822 repository formats, and updating keyring handling to use modern GPG infrastructure.

Follow #1465

  • Pull request is based on the default branch (3.x at this time)
  • Pull request includes tests for any new/updated operations/facts
  • Pull request includes documentation for any new/updated operations/facts
  • Tests pass (see scripts/dev-test.sh)
  • Type checking & code style passes (see scripts/dev-lint.sh)

@maisim
Copy link
Contributor Author

maisim commented Oct 14, 2025

WIP, I messed up the rebase of this branch... I'll continue at the end of the week.

maisim added 8 commits October 16, 2025 07:52
@maisim
operations/facts: add GPG key management operations and facts
1b5d74d 
- Add GpgFactBase, GpgKey, GpgKeys, GpgSecretKeys, and GpgKeyrings facts
- Add gpg.key and gpg.dearmor operations for managing GPG keys
- Support for keyserver fetching, local files, URLs, and key removal
- Comprehensive test coverage for all GPG operations and facts
@maisim
facts: add deb822 format support for APT sources
60d8744 
- Add AptRepo and AptSourcesFile dataclasses for type-safe repository handling
- Support both legacy .list and modern .sources deb822 formats
- Maintain backward compatibility with dict-like access patterns
- Add comprehensive parsing for deb822 multi-value fields
- Expand deb822 entries to individual repository configurations
- Add test coverage for deb822 sources and components with numbers
- Update existing tests to handle new file-marker based parsing
@maisim
operations/facts: add GPG key management operations and facts
55aca14 
- Add GpgFactBase, GpgKey, GpgKeys, GpgSecretKeys, and GpgKeyrings facts
- Add gpg.key and gpg.dearmor operations for managing GPG keys
- Support for keyserver fetching, local files, URLs, and key removal
- Comprehensive test coverage for all GPG operations and facts
@maisim
facts: add deb822 format support for APT sources
d7bb770 
- Add AptRepo and AptSourcesFile dataclasses for type-safe repository handling
- Support both legacy .list and modern .sources deb822 formats
- Maintain backward compatibility with dict-like access patterns
- Add comprehensive parsing for deb822 multi-value fields
- Expand deb822 entries to individual repository configurations
- Add test coverage for deb822 sources and components with numbers
- Update existing tests to handle new file-marker based parsing
@maisim
operations/facts: modernize apt.key to replace deprecated apt-key com…
408a40e 
…mand

- Update AptKeys fact to use GpgKeyrings instead of deprecated apt-key command
- Maintain backward compatibility by flattening keyring data to match old format
- Search APT-specific directories: /etc/apt/trusted.gpg.d, /etc/apt/keyrings, /usr/share/keyrings
- Add comprehensive test coverage for modernized apt.key operations
- Support both legacy and modern APT key management workflows
@maisim
operations/gpg: refactor key() function for better maintainability
b458fa4 
- Break down complex key() function into smaller, focused helper functions
- Add _install_key_from_src() for file/URL installation
- Add _install_key_from_keyserver() for keyserver installation
- Add _remove_key_from_keyrings() for multi-keyring removal
- Add _remove_key_from_keyring() for single keyring removal
- Add _remove_keyring_file() for complete keyring removal
- Add validation helper functions for parameters
- Improve code readability and maintainability
- Follow Docker operations pattern for function organization
- Maintain 100% backward compatibility with existing API
@maisim
Merge branch 'pr1-add-gpg-operations' into pr2-add-deb822-support
154dd2e 
# Conflicts:
#	src/pyinfra/operations/gpg.py
@maisim
Merge branch 'pr2-add-deb822-support' into pr3-manage-apt-key-removal
c9e83ad 
# Conflicts:
#	src/pyinfra/facts/apt.py
#	src/pyinfra/operations/gpg.py
@maisim maisim force-pushed the pr3-manage-apt-key-removal branch from 2602657 to c9e83ad Compare October 16, 2025 09:05
maisim added 3 commits October 16, 2025 09:41
@maisim
typos: exclude GPG keyring test files from spell checking
0ee7de8 
GPG key IDs contain hexadecimal values that trigger false positives
in typos (e.g., 'BA' in '1E9377A2BA9EF27F' is flagged as misspelled).
These are valid hex values, not typos.
@maisim
Merge branch 'pr1-add-gpg-operations' into pr2-add-deb822-support
40dbd46
@maisim
Merge branch 'pr2-add-deb822-support' into pr3-manage-apt-key-removal
5269335
@maisim maisim mentioned this pull request Oct 16, 2025
Closed
5 tasks
@maisim maisim changed the title Pr3 manage apt key removal Pr3/3 manage apt key removal Oct 16, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@maisim