scripts: fix: Make pylint happy

Author: dabao1955

.github/workflows/check.yml

@@ -24,15 +24,16 @@ jobs:
 
     steps:
       - uses: actions/checkout@v6
-      - name: lint
+      - name: lint(mypy)
         if: matrix.lint == 'mypy'
         run: |
           apt update && apt install mypy -y
+          rm .pylintrc
           mypy --explicit-package-bases $(find | grep .py)
 
       - name: lint
         if: matrix.lint == 'pylint'
         run: |
           apt update && apt install pylint -y
           rm mkdtboimg.py
-          pylint $(find | grep .py)
+          pylint $(find | grep .py )

.pylintrc

@@ -1,6 +1,6 @@
 [MASTER]
 # Python version
-py-version = 3.13
+py-version = 3.10
 
 # Disable some style warnings that don't affect functionality
 disable =

action.yml

@@ -431,7 +431,7 @@ runs:
 
         if [ "${{ inputs.nethunter }}" == "true" ]; then
             echo "::group::Initializing Kali NetHunter"
-            python3 ${{ github.action_path }}/nethunter/nconfig.py "$CONFIG_FILE" -w
+            python3 ${{ github.action_path }}/nethunter/config.py "$CONFIG_FILE" -w
             if [ "${{ inputs.nethunter-patch }}" == "true" ]; then
                 python3 "${{ github.action_path }}/nethunter/patch.py"
             fi
@@ -456,7 +456,7 @@ runs:
 
         if [ "${{ inputs.lxc }}" == "true" ]; then
             echo "::group::Enabling LXC"
-            python3 ${{ github.action_path }}/lxcconfig.py "$CONFIG_FILE" -w
+            python3 ${{ github.action_path }}/nethunter/config.py "$CONFIG_FILE" -w
             if [ "${{ inputs.lxc-patch }}" == "true" ]; then
                 python3 "${{ github.action_path }}/lxc/patch.py"
             fi

clean.py

@@ -75,7 +75,11 @@ def clean_ccache() -> None:
 
 
 def clean_env_vars() -> None:
-    """Clean build-related environment variables."""
+    """Clean build-related environment variables.
+
+    Note: This function prints unset commands to stdout for shell evaluation.
+    Use: eval $(python3 clean.py --env)
+    """
     env_vars = [
         "CMD_PATH", "CMD_CC", "CMD_CLANG_TRIPLE", "CMD_CROSS_COMPILE",
         "CMD_CROSS_COMPILE_ARM32", "USE_CCACHE", "CLANG_PATH", "HOMES",
@@ -88,8 +92,7 @@ def clean_env_vars() -> None:
     ]
     for var in env_vars:
         if var in os.environ:
-            del os.environ[var]
-            print(f"Unset environment variable: {var}")
+            print(f"unset {var}")
 
 
 def clean_temp_files() -> None:
@@ -173,7 +176,9 @@ def main() -> None:
             clean_ccache()
 
         if args.env:
+            print("# Run: eval $(python3 clean.py --env)", file=sys.stderr)
             clean_env_vars()
+            return  # Exit early to avoid extra output when sourcing
 
     # Detect package manager for info
     pkg_mgr = detect_package_manager()

lxc/config.py

@@ -223,9 +223,13 @@ def main() -> None:
     parser.add_argument('-w', action='store_true', help='Write changes to config file')
     args = parser.parse_args()
 
-    config_file = Path(args.config_file)
+    config_file = Path(args.config_file).resolve()
     write_mode = args.w
 
+    if not config_file.is_relative_to(Path.cwd()):
+        print("Error: Config file must be within the current directory")
+        sys.exit(1)
+
     if not config_file.exists():
         print("Provide a config file as argument")
         sys.exit(1)

lxc/patch.py

@@ -1,26 +1,29 @@
 #!/usr/bin/env python3
 """
-Apply LXC patches using sed to kernel source files.
+Apply LXC patches to kernel source files using pure Python.
 """
 
-import subprocess
 import sys
 from pathlib import Path
 
 
 def find_cgroup_file() -> str:
     """Determine the cgroup file path based on kernel version."""
-    if Path("kernel/cgroup.c").exists():
-        # Check if it contains the function signature
-        content = Path("kernel/cgroup.c").read_text(encoding='utf-8')
+    cgroup_path = Path("kernel/cgroup.c")
+    if cgroup_path.exists():
+        content = cgroup_path.read_text(encoding='utf-8')
         if "int cgroup_add_file" in content:
             return "kernel/cgroup.c"
     return "kernel/cgroup/cgroup.c"
 
 
 def check_already_patched(file_path: str, patch_type: str) -> bool:
     """Check if the file already contains LXC patches."""
-    content = Path(file_path).read_text(encoding='utf-8')
+    path = Path(file_path)
+    if not path.exists():
+        return False
+
+    content = path.read_text(encoding='utf-8')
 
     if patch_type == "cgroup":
         return 'snprintf(name, CGROUP_FILE_NAME_MAX' in content
@@ -30,54 +33,113 @@ def check_already_patched(file_path: str, patch_type: str) -> bool:
 
 
 def apply_cgroup_patch(cgroup_file: str) -> None:
-    """Apply the cgroup patch using sed."""
-    sed_script = r'''/int cgroup_add_file/,/return 0;/{
-        /return 0;/i\
-    \tif (cft->ss && (cgrp->root->flags & CGRP_ROOT_NOPREFIX) && !(cft->flags & CFTYPE_NO_PREFIX)) {\
-        \tsnprintf(name, CGROUP_FILE_NAME_MAX, "%s.%s", cft->ss->name, cft->name);\
-        \tkernfs_create_link(cgrp->kn, name, kn);\
-    \t}
-}'''
-
-    try:
-        subprocess.run(
-            ["sed", "-i", sed_script, cgroup_file],
-            check=True,
-            capture_output=True,
-            text=True
-        )
-        print(f"Patch applied successfully to {cgroup_file}")
-    except subprocess.CalledProcessError as e:
-        print(f"Error applying cgroup patch: {e}", file=sys.stderr)
-        sys.exit(1)
+    """Apply the cgroup patch using pure Python."""
+    path = Path(cgroup_file)
+    content = path.read_text(encoding='utf-8')
+    lines = content.split('\n')
+
+    # Find the cgroup_add_file function and insert the patch before return 0;
+    new_lines = []
+    in_function = False
+    brace_count = 0
+    inserted = False
+
+    for line in lines:
+        stripped = line.strip()
+
+        # Check if we're entering the cgroup_add_file function
+        if "int cgroup_add_file" in stripped:
+            in_function = True
+
+        if in_function and not inserted:
+            # Count braces to track function scope
+            brace_count += stripped.count('{')
+            brace_count -= stripped.count('}')
+
+            # Look for "return 0;" within the function
+            if stripped == "return 0;" and brace_count > 0:
+                # Insert the patch before return 0;
+                indent = len(line) - len(line.lstrip())
+                base_indent = ' ' * indent
+
+                patch_code = [
+                    f"{base_indent}if (cft->ss && (cgrp->root->flags & CGRP_ROOT_NOPREFIX) && !(cft->flags & CFTYPE_NO_PREFIX)) {{",
+                    f"{base_indent}    snprintf(name, CGROUP_FILE_NAME_MAX, \"%s.%s\", cft->ss->name, cft->name);",
+                    f"{base_indent}    kernfs_create_link(cgrp->kn, name, kn);",
+                    f"{base_indent}}}",
+                ]
+                new_lines.extend(patch_code)
+                inserted = True
+
+        new_lines.append(line)
+
+    if not inserted:
+        print(f"Warning: Could not find insertion point in {cgroup_file}", file=sys.stderr)
+        return
+
+    path.write_text('\n'.join(new_lines), encoding='utf-8')
+    print(f"Patch applied successfully to {cgroup_file}")
 
 
 def apply_netfilter_patch() -> None:
-    """Apply the xt_qtaguid patch using sed."""
-    netfilter_file = "net/netfilter/xt_qtaguid.c"
-
-    # This is a complex sed script that:
-    # 1. Changes 'struct rtnl_link_stats64 dev_stats, *stats' to 'struct rtnl_link_stats64 *stats'
-    # 2. Adds 'stats = &no_dev_stats;' before the active check
-    # 3. Deletes the if block and its next 5 lines
-    sed_script = r'''/int iface_stat_fmt_proc_show/,/^}/ {
-    s/struct rtnl_link_stats64 dev_stats, \*stats/struct rtnl_link_stats64 *stats/
-    /if (iface_entry->active)/i\
-    \tstats = \&no_dev_stats;
-    /if (iface_entry->active)/,+5d
-}'''
-
-    try:
-        subprocess.run(
-            ["sed", "-i", sed_script, netfilter_file],
-            check=True,
-            capture_output=True,
-            text=True
-        )
-        print(f"Patch applied successfully to {netfilter_file}")
-    except subprocess.CalledProcessError as e:
-        print(f"Error applying netfilter patch: {e}", file=sys.stderr)
-        sys.exit(1)
+    """Apply the xt_qtaguid patch using pure Python."""
+    netfilter_file = Path("net/netfilter/xt_qtaguid.c")
+
+    if not netfilter_file.exists():
+        print(f"Error: {netfilter_file} not found", file=sys.stderr)
+        return
+
+    content = netfilter_file.read_text(encoding='utf-8')
+    lines = content.split('\n')
+
+    new_lines = []
+    in_function = False
+    brace_count = 0
+    modified = False
+    skip_lines = 0
+
+    for line in lines:
+        if skip_lines > 0:
+            skip_lines -= 1
+            continue
+
+        stripped = line.strip()
+
+        # Check if we're entering iface_stat_fmt_proc_show function
+        if "int iface_stat_fmt_proc_show" in stripped:
+            in_function = True
+
+        if in_function and not modified:
+            # Track braces within the function
+            brace_count += stripped.count('{')
+            brace_count -= stripped.count('}')
+
+            # Replace variable declaration
+            if "struct rtnl_link_stats64 dev_stats, *stats" in line:
+                line = line.replace(
+                    "struct rtnl_link_stats64 dev_stats, *stats",
+                    "struct rtnl_link_stats64 *stats"
+                )
+
+            # Insert stats assignment before the active check
+            if "if (iface_entry->active)" in line:
+                indent = len(line) - len(line.lstrip())
+                base_indent = ' ' * indent
+                new_lines.append(f"{base_indent}stats = &no_dev_stats;")
+
+                # Skip the if block and next 5 lines
+                skip_lines = 5
+                modified = True
+                continue
+
+        new_lines.append(line)
+
+    if not modified:
+        print(f"Warning: Could not apply netfilter patch", file=sys.stderr)
+        return
+
+    netfilter_file.write_text('\n'.join(new_lines), encoding='utf-8')
+    print(f"Patch applied successfully to {netfilter_file}")
 
 
 def main() -> None:
@@ -89,12 +151,13 @@ def main() -> None:
     ]
 
     for file_path, patch_type in patch_files:
-        if not Path(file_path).exists():
+        path = Path(file_path)
+        if not path.exists():
             print(f"Warning: {file_path} not found, skipping", file=sys.stderr)
             continue
 
         if check_already_patched(file_path, patch_type):
-            print(f"Warning: {file_path} contains LXC")
+            print(f"Warning: {file_path} already contains LXC patches, skipping")
             continue
 
         if patch_type == "cgroup":

lxc/patch_cocci.py

@@ -38,10 +38,8 @@ def check_dependencies() -> None:
     """Check that required dependencies are installed."""
     missing = []
 
-    if not shutil.which("curl"):
-        missing.append("curl")
-    if not shutil.which("parallel"):
-        missing.append("parallel")
+    if not shutil.which("aria2c"):
+        missing.append("aria2c")
     if not shutil.which("spatch"):
         missing.append("coccinelle")
 
@@ -51,13 +49,13 @@ def check_dependencies() -> None:
 
 
 def download_patch(patch_name: str, temp_dir: Path) -> Path:
-    """Download a single patch file."""
+    """Download a single patch file using aria2c."""
     url = f"{REPO_URL}/{patch_name}"
     output_path = temp_dir / patch_name
 
     try:
         subprocess.run(
-            ["curl", "-sSfL", url, "-o", str(output_path)],
+            ["aria2c", "-d", str(temp_dir), "-o", patch_name, url],
             check=True,
             capture_output=True,
             text=True

nethunter/config.py

@@ -379,9 +379,13 @@ def main() -> None:
     parser.add_argument('-w', action='store_true', help='Write changes to config file')
     args = parser.parse_args()
 
-    config_file = Path(args.config_file)
+    config_file = Path(args.config_file).resolve()
     write_mode = args.w
 
+    if not config_file.is_relative_to(Path.cwd()):
+        print("Error: Config file must be within the current directory")
+        sys.exit(1)
+
     if not config_file.exists():
         print("Provide a config file as argument")
         sys.exit(1)