Skip to content

[WIP] support dbapi providers #50

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 2 commits into from
Closed

[WIP] support dbapi providers #50

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
b4e88a1
ignore .cache
minrk Sep 23, 2016
c1a6afa
support dbapi providers
minrk Sep 23, 2016
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,3 +20,4 @@ __pycache__
\#*#
.#*
.coverage
.cache
21 changes: 16 additions & 5 deletions .travis.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,11 +5,22 @@ python:
- 3.3
- 2.7
sudo: false
env:
services:
- postgres
install:
- pip install . codecov
- pip install nbformat[test]
- pip install . codecov
- pip install nbformat[test]
- |
if [[ ! -z "$NBFORMAT_TEST_POSTGRES" ]]; then
psql -c 'create database travis_ci_test;' -U postgres
pip install psycopg2
cp ci/postgres_jupyter_config.py ./jupyter_config.py
fi
script:
- nosetests --with-coverage --cover-package=nbformat nbformat
- nosetests --with-coverage --cover-package=nbformat nbformat
after_success:
- codecov
- codecov
matrix:
include:
- env: NBFORMAT_TEST_POSTGRES=1
python: 3.5
5 changes: 5 additions & 0 deletions ci/postgres_jupyter_config.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
# config file for running Travis with postgres
c.NotebookNotary.db_connect = 'psycopg2.connect'
c.NotebookNotary.db_connect_kwargs = dict(
database='travis_ci_test',
)
142 changes: 110 additions & 32 deletions nbformat/sign.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,8 +20,13 @@
sqlite3 = None

from ipython_genutils.py3compat import unicode_type, cast_bytes
from traitlets import Instance, Bytes, Enum, Any, Unicode, Bool, Integer
from traitlets import (
Instance, Bytes, Enum, Any, Unicode, Bool, Integer,
DottedObjectName, Dict, Tuple,
default,
)
from traitlets.config import LoggingConfigurable, MultipleInstanceError
from traitlets.utils.importstring import import_item
from jupyter_core.application import JupyterApp, base_flags

from . import read, NO_CONVERT, __version__
Expand Down Expand Up @@ -82,6 +87,11 @@ def signature_removed(nb):
if save_signature is not None:
nb['metadata']['signature'] = save_signature

_param_styles = {
'qmark': '?',
'pyformat': '%s',
'format': '%s',
}

class NotebookNotary(LoggingConfigurable):
"""A class for computing and verifying notebook signatures."""
Expand All @@ -104,12 +114,57 @@ def _data_dir_default(self):
help="""The sqlite file in which to store notebook signatures.
By default, this will be in your Jupyter data directory.
You can set it to ':memory:' to disable sqlite writing to the filesystem.

To use a database other than sqlite,
specify db_connect and db_connect_args|kwargs.

db_file will be ignored if db_connect is used.
""")
def _db_file_default(self):
if not self.data_dir:
return ':memory:'
return os.path.join(self.data_dir, u'nbsignatures.db')

db_connect = DottedObjectName(None, allow_none=True,
help="""Import string for a Python DB-API v2 connect callable.

e.g. 'psycopg2.connect' for postgres.
"""
).tag(config=True)

db_connect_args = Tuple(
help="""Positional arguments to pass to db_connect.

Only used if db_connect is specified.
"""
).tag(config=True)

db_connect_kwargs = Dict(
help="""Keyword arguments to pass to db_connect.

Only used if db_connect is specified.
"""
).tag(config=True)

db_table_name = Unicode('nbsignatures',
help="""The name of the signature table in the database."""
).tag(config=True)

db_param = Unicode(
help="""db parameter format.

Use '?' for sqlite, '%s' for most other dbapi implementers.

The default is '%s' if a custom db implementation is used,
'?' if the default sqlite file is used.

Only specify this if '%s' is wrong for your dbapi implementation.
"""
)
@default('db_param')
def _db_param(self):
return '%s' if self.db_connect else '?'

# 64k entries ~ 12MB
cache_size = Integer(65535, config=True,
help="""The number of notebook signatures to cache.
Expand All @@ -119,6 +174,15 @@ def _db_file_default(self):
)
db = Any()
def _db_default(self):
if self.db_connect:
connect = import_item(self.db_connect)
db = connect(*self.db_connect_args, **self.db_connect_kwargs)
self.init_db(db)
return db
else:
return self._connect_db_sqlite()

def _connect_db_sqlite(self):
if sqlite3 is None:
self.log.warn("Missing SQLite3, all notebooks will be untrusted!")
return
Expand All @@ -129,14 +193,19 @@ def _db_default(self):
except (sqlite3.DatabaseError, sqlite3.OperationalError):
if self.db_file != ':memory:':
old_db_location = os.path.join(self.data_dir, self.db_file + ".bak")
self.log.warn("""The signatures database cannot be opened; maybe it is corrupted or encrypted. You may need to rerun your notebooks to ensure that they are trusted to run Javascript. The old signatures database has been renamed to %s and a new one has been created.""",
self.log.warn("The signatures database cannot be opened; maybe it is corrupted or encrypted."
" You may need to rerun your notebooks to ensure that they are trusted to run Javascript."
" The old signatures database has been renamed to %s and a new one has been created.",
old_db_location)
try:
os.rename(self.db_file, self.db_file + u'.bak')
db = sqlite3.connect(self.db_file, **kwargs)
self.init_db(db)
except (sqlite3.DatabaseError, sqlite3.OperationalError):
self.log.warn("""Failed commiting signatures database to disk. You may need to move the database file to a non-networked file system, using config option `NotebookNotary.db_file`. Using in-memory signatures database for the remainder of this session.""")
self.log.warn("Failed committing signatures database to disk."
" You may need to move the database file to a non-networked file system,"
" using config option `NotebookNotary.db_file`."
" Using in-memory signatures database for the remainder of this session.")
self.db_file = ':memory:'
db = sqlite3.connect(self.db_file, **kwargs)
self.init_db(db)
Expand All @@ -145,18 +214,18 @@ def _db_default(self):
return db

def init_db(self, db):
db.execute("""
CREATE TABLE IF NOT EXISTS nbsignatures
c = db.cursor()
c.execute("""
CREATE TABLE IF NOT EXISTS {}
(
id integer PRIMARY KEY AUTOINCREMENT,
algorithm text,
signature text,
path text,
last_seen timestamp
)""")
db.execute("""
CREATE INDEX IF NOT EXISTS algosig ON nbsignatures(algorithm, signature)
""")
)""".format(self.db_table_name))
c.execute("""
CREATE INDEX IF NOT EXISTS algosig ON {} (algorithm, signature)
""".format(self.db_table_name))
db.commit()

algorithm = Enum(algorithms, default_value='sha256', config=True,
Expand Down Expand Up @@ -237,16 +306,19 @@ def check_signature(self, nb):
if self.db is None:
return False
signature = self.compute_signature(nb)
r = self.db.execute("""SELECT id FROM nbsignatures WHERE
algorithm = ? AND
signature = ?;
""", (self.algorithm, signature)).fetchone()
c = self.db.cursor()
c.execute("""SELECT signature FROM {0} WHERE
algorithm = {1} AND
signature = {1};
""".format(self.db_table_name, self.db_param),
(self.algorithm, signature))
r = c.fetchone()
if r is None:
return False
self.db.execute("""UPDATE nbsignatures SET last_seen = ? WHERE
algorithm = ? AND
signature = ?;
""",
c.execute("""UPDATE {0} SET last_seen = {1} WHERE
algorithm = {1} AND
signature = {1};
""".format(self.db_table_name, self.db_param),
(datetime.utcnow(), self.algorithm, signature),
)
self.db.commit()
Expand All @@ -265,18 +337,21 @@ def sign(self, nb):
def store_signature(self, signature, nb):
if self.db is None:
return
self.db.execute("""INSERT OR IGNORE INTO nbsignatures
(algorithm, signature, last_seen) VALUES (?, ?, ?)""",
c = self.db.cursor()
c.execute("""INSERT INTO {0}
(algorithm, signature, last_seen) VALUES ({1}, {1}, {1})
""".format(self.db_table_name, self.db_param),
(self.algorithm, signature, datetime.utcnow())
)
self.db.execute("""UPDATE nbsignatures SET last_seen = ? WHERE
algorithm = ? AND
signature = ?;
""",
c.execute("""UPDATE {0} SET last_seen = {1} WHERE
algorithm = {1} AND
signature = {1};
""".format(self.db_table_name, self.db_param),
(datetime.utcnow(), self.algorithm, signature),
)
self.db.commit()
n, = self.db.execute("SELECT Count(*) FROM nbsignatures").fetchone()
c.execute("SELECT Count(*) FROM {}".format(self.db_table_name))
n, = c.fetchone()
if n > self.cache_size:
self.cull_db()

Expand All @@ -286,20 +361,23 @@ def unsign(self, nb):
by removing its signature from the trusted database, if present.
"""
signature = self.compute_signature(nb)
self.db.execute("""DELETE FROM nbsignatures WHERE
algorithm = ? AND
signature = ?;
""",
self.db.execute("""DELETE FROM {0} WHERE
algorithm = {1} AND
signature = {1};
""".format(self.db_table_name, self.db_param),
(self.algorithm, signature)
)
self.db.commit()

def cull_db(self):
"""Cull oldest 25% of the trusted signatures when the size limit is reached"""
self.db.execute("""DELETE FROM nbsignatures WHERE id IN (
SELECT id FROM nbsignatures ORDER BY last_seen DESC LIMIT -1 OFFSET ?
c = self.db.cursor()
c.execute("""DELETE FROM {0} WHERE signature IN (
SELECT signature FROM {0} ORDER BY last_seen DESC LIMIT -1 OFFSET ?
);
""", (max(int(0.75 * self.cache_size), 1),))
""".format(self.db_table_name),
(max(int(0.75 * self.cache_size), 1),))
self.db.commit()

def mark_cells(self, nb, trusted):
"""Mark cells as trusted if the notebook's signature can be verified
Expand Down