mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9799 Commits
17 Branches
Tree: 56f222d44c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '56f222d44c'
${ noResults }
gitea/models/repo_sign.go

repo_sign.go 6.2KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"strings"

  9. 

  10. 	"code.gitea.io/gitea/modules/git"

  11. 	"code.gitea.io/gitea/modules/log"

  12. 	"code.gitea.io/gitea/modules/process"

  13. 	"code.gitea.io/gitea/modules/setting"

  14. )

  15. 

  16. type signingMode string

  17. 

  18. const (

  19. 	never         signingMode = "never"

  20. 	always        signingMode = "always"

  21. 	pubkey        signingMode = "pubkey"

  22. 	twofa         signingMode = "twofa"

  23. 	parentSigned  signingMode = "parentsigned"

  24. 	baseSigned    signingMode = "basesigned"

  25. 	headSigned    signingMode = "headsigned"

  26. 	commitsSigned signingMode = "commitssigned"

  27. 	approved      signingMode = "approved"

  28. 	noKey         signingMode = "nokey"

  29. )

  30. 

  31. func signingModeFromStrings(modeStrings []string) []signingMode {

  32. 	returnable := make([]signingMode, 0, len(modeStrings))

  33. 	for _, mode := range modeStrings {

  34. 		signMode := signingMode(strings.ToLower(mode))

  35. 		switch signMode {

  36. 		case never:

  37. 			return []signingMode{never}

  38. 		case always:

  39. 			return []signingMode{always}

  40. 		case pubkey:

  41. 			fallthrough

  42. 		case twofa:

  43. 			fallthrough

  44. 		case parentSigned:

  45. 			fallthrough

  46. 		case baseSigned:

  47. 			fallthrough

  48. 		case headSigned:

  49. 			fallthrough

  50. 		case approved:

  51. 			fallthrough

  52. 		case commitsSigned:

  53. 			returnable = append(returnable, signMode)

  54. 		}

  55. 	}

  56. 	if len(returnable) == 0 {

  57. 		return []signingMode{never}

  58. 	}

  59. 	return returnable

  60. }

  61. 

  62. func signingKey(repoPath string) string {

  63. 	if setting.Repository.Signing.SigningKey == "none" {

  64. 		return ""

  65. 	}

  66. 

  67. 	if setting.Repository.Signing.SigningKey == "default" || setting.Repository.Signing.SigningKey == "" {

  68. 		// Can ignore the error here as it means that commit.gpgsign is not set

  69. 		value, _ := git.NewCommand("config", "--get", "commit.gpgsign").RunInDir(repoPath)

  70. 		sign, valid := git.ParseBool(strings.TrimSpace(value))

  71. 		if !sign || !valid {

  72. 			return ""

  73. 		}

  74. 

  75. 		signingKey, _ := git.NewCommand("config", "--get", "user.signingkey").RunInDir(repoPath)

  76. 		return strings.TrimSpace(signingKey)

  77. 	}

  78. 

  79. 	return setting.Repository.Signing.SigningKey

  80. }

  81. 

  82. // PublicSigningKey gets the public signing key within a provided repository directory

  83. func PublicSigningKey(repoPath string) (string, error) {

  84. 	signingKey := signingKey(repoPath)

  85. 	if signingKey == "" {

  86. 		return "", nil

  87. 	}

  88. 

  89. 	content, stderr, err := process.GetManager().ExecDir(-1, repoPath,

  90. 		"gpg --export -a", "gpg", "--export", "-a", signingKey)

  91. 	if err != nil {

  92. 		log.Error("Unable to get default signing key in %s: %s, %s, %v", repoPath, signingKey, stderr, err)

  93. 		return "", err

  94. 	}

  95. 	return content, nil

  96. }

  97. 

  98. // SignInitialCommit determines if we should sign the initial commit to this repository

  99. func SignInitialCommit(repoPath string, u *User) (bool, string, error) {

  100. 	rules := signingModeFromStrings(setting.Repository.Signing.InitialCommit)

  101. 	signingKey := signingKey(repoPath)

  102. 	if signingKey == "" {

  103. 		return false, "", &ErrWontSign{noKey}

  104. 	}

  105. 

  106. Loop:

  107. 	for _, rule := range rules {

  108. 		switch rule {

  109. 		case never:

  110. 			return false, "", &ErrWontSign{never}

  111. 		case always:

  112. 			break Loop

  113. 		case pubkey:

  114. 			keys, err := ListGPGKeys(u.ID, ListOptions{})

  115. 			if err != nil {

  116. 				return false, "", err

  117. 			}

  118. 			if len(keys) == 0 {

  119. 				return false, "", &ErrWontSign{pubkey}

  120. 			}

  121. 		case twofa:

  122. 			twofaModel, err := GetTwoFactorByUID(u.ID)

  123. 			if err != nil && !IsErrTwoFactorNotEnrolled(err) {

  124. 				return false, "", err

  125. 			}

  126. 			if twofaModel == nil {

  127. 				return false, "", &ErrWontSign{twofa}

  128. 			}

  129. 		}

  130. 	}

  131. 	return true, signingKey, nil

  132. }

  133. 

  134. // SignWikiCommit determines if we should sign the commits to this repository wiki

  135. func (repo *Repository) SignWikiCommit(u *User) (bool, string, error) {

  136. 	rules := signingModeFromStrings(setting.Repository.Signing.Wiki)

  137. 	signingKey := signingKey(repo.WikiPath())

  138. 	if signingKey == "" {

  139. 		return false, "", &ErrWontSign{noKey}

  140. 	}

  141. 

  142. Loop:

  143. 	for _, rule := range rules {

  144. 		switch rule {

  145. 		case never:

  146. 			return false, "", &ErrWontSign{never}

  147. 		case always:

  148. 			break Loop

  149. 		case pubkey:

  150. 			keys, err := ListGPGKeys(u.ID, ListOptions{})

  151. 			if err != nil {

  152. 				return false, "", err

  153. 			}

  154. 			if len(keys) == 0 {

  155. 				return false, "", &ErrWontSign{pubkey}

  156. 			}

  157. 		case twofa:

  158. 			twofaModel, err := GetTwoFactorByUID(u.ID)

  159. 			if err != nil && !IsErrTwoFactorNotEnrolled(err) {

  160. 				return false, "", err

  161. 			}

  162. 			if twofaModel == nil {

  163. 				return false, "", &ErrWontSign{twofa}

  164. 			}

  165. 		case parentSigned:

  166. 			gitRepo, err := git.OpenRepository(repo.WikiPath())

  167. 			if err != nil {

  168. 				return false, "", err

  169. 			}

  170. 			defer gitRepo.Close()

  171. 			commit, err := gitRepo.GetCommit("HEAD")

  172. 			if err != nil {

  173. 				return false, "", err

  174. 			}

  175. 			if commit.Signature == nil {

  176. 				return false, "", &ErrWontSign{parentSigned}

  177. 			}

  178. 			verification := ParseCommitWithSignature(commit)

  179. 			if !verification.Verified {

  180. 				return false, "", &ErrWontSign{parentSigned}

  181. 			}

  182. 		}

  183. 	}

  184. 	return true, signingKey, nil

  185. }

  186. 

  187. // SignCRUDAction determines if we should sign a CRUD commit to this repository

  188. func (repo *Repository) SignCRUDAction(u *User, tmpBasePath, parentCommit string) (bool, string, error) {

  189. 	rules := signingModeFromStrings(setting.Repository.Signing.CRUDActions)

  190. 	signingKey := signingKey(repo.RepoPath())

  191. 	if signingKey == "" {

  192. 		return false, "", &ErrWontSign{noKey}

  193. 	}

  194. 

  195. Loop:

  196. 	for _, rule := range rules {

  197. 		switch rule {

  198. 		case never:

  199. 			return false, "", &ErrWontSign{never}

  200. 		case always:

  201. 			break Loop

  202. 		case pubkey:

  203. 			keys, err := ListGPGKeys(u.ID, ListOptions{})

  204. 			if err != nil {

  205. 				return false, "", err

  206. 			}

  207. 			if len(keys) == 0 {

  208. 				return false, "", &ErrWontSign{pubkey}

  209. 			}

  210. 		case twofa:

  211. 			twofaModel, err := GetTwoFactorByUID(u.ID)

  212. 			if err != nil && !IsErrTwoFactorNotEnrolled(err) {

  213. 				return false, "", err

  214. 			}

  215. 			if twofaModel == nil {

  216. 				return false, "", &ErrWontSign{twofa}

  217. 			}

  218. 		case parentSigned:

  219. 			gitRepo, err := git.OpenRepository(tmpBasePath)

  220. 			if err != nil {

  221. 				return false, "", err

  222. 			}

  223. 			defer gitRepo.Close()

  224. 			commit, err := gitRepo.GetCommit(parentCommit)

  225. 			if err != nil {

  226. 				return false, "", err

  227. 			}

  228. 			if commit.Signature == nil {

  229. 				return false, "", &ErrWontSign{parentSigned}

  230. 			}

  231. 			verification := ParseCommitWithSignature(commit)

  232. 			if !verification.Verified {

  233. 				return false, "", &ErrWontSign{parentSigned}

  234. 			}

  235. 		}

  236. 	}

  237. 	return true, signingKey, nil

  238. }