mirrors
/
gitea
espelhamento de https://github.com/go-gitea/gitea.git
Observar 1
Favorito 0
Fork 0
Código Issues 0 Versões 211 Wiki Atividade
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
376 Commits
17 Branches
Tag: 59ffdbf6f8
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de 59ffdbf6f8
${ noResults }
gitea/models/publickey.go

publickey.go 5.1KB
Original Anotar Histórico

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"bufio"

  9. 	"errors"

  10. 	"fmt"

  11. 	"io"

  12. 	"io/ioutil"

  13. 	"os"

  14. 	"os/exec"

  15. 	"path"

  16. 	"path/filepath"

  17. 	"strings"

  18. 	"sync"

  19. 	"time"

  20. 

  21. 	"github.com/Unknwon/com"

  22. 

  23. 	"github.com/gogits/gogs/modules/log"

  24. )

  25. 

  26. const (

  27. 	// "### autogenerated by gitgos, DO NOT EDIT\n"

  28. 	TPL_PUBLICK_KEY = `command="%s serv key-%d",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty %s`

  29. )

  30. 

  31. var (

  32. 	ErrKeyAlreadyExist = errors.New("Public key already exist")

  33. )

  34. 

  35. var sshOpLocker = sync.Mutex{}

  36. 

  37. var (

  38. 	sshPath string

  39. 	appPath string

  40. )

  41. 

  42. // exePath returns the executable path.

  43. func exePath() (string, error) {

  44. 	file, err := exec.LookPath(os.Args[0])

  45. 	if err != nil {

  46. 		return "", err

  47. 	}

  48. 	return filepath.Abs(file)

  49. }

  50. 

  51. // homeDir returns the home directory of current user.

  52. func homeDir() string {

  53. 	home, err := com.HomeDir()

  54. 	if err != nil {

  55. 		return "/"

  56. 	}

  57. 	return home

  58. }

  59. 

  60. func init() {

  61. 	var err error

  62. 

  63. 	appPath, err = exePath()

  64. 	if err != nil {

  65. 		fmt.Printf("publickey.init(fail to get app path): %v\n", err)

  66. 		os.Exit(2)

  67. 	}

  68. 

  69. 	// Determine and create .ssh path.

  70. 	sshPath = filepath.Join(homeDir(), ".ssh")

  71. 	if err = os.MkdirAll(sshPath, os.ModePerm); err != nil {

  72. 		fmt.Printf("publickey.init(fail to create sshPath(%s)): %v\n", sshPath, err)

  73. 		os.Exit(2)

  74. 	}

  75. }

  76. 

  77. // PublicKey represents a SSH key of user.

  78. type PublicKey struct {

  79. 	Id          int64

  80. 	OwnerId     int64  `xorm:"index"`

  81. 	Name        string `xorm:"unique not null"`

  82. 	Fingerprint string

  83. 	Content     string    `xorm:"TEXT not null"`

  84. 	Created     time.Time `xorm:"created"`

  85. 	Updated     time.Time `xorm:"updated"`

  86. }

  87. 

  88. // GenAuthorizedKey returns formatted public key string.

  89. func GenAuthorizedKey(keyId int64, key string) string {

  90. 	return fmt.Sprintf(TPL_PUBLICK_KEY+"\n", appPath, keyId, key)

  91. }

  92. 

  93. // AddPublicKey adds new public key to database and SSH key file.

  94. func AddPublicKey(key *PublicKey) (err error) {

  95. 	// Check if public key name has been used.

  96. 	has, err := orm.Get(key)

  97. 	if err != nil {

  98. 		return err

  99. 	} else if has {

  100. 		return ErrKeyAlreadyExist

  101. 	}

  102. 

  103. 	// Calculate fingerprint.

  104. 	tmpPath := strings.Replace(filepath.Join(os.TempDir(), fmt.Sprintf("%d", time.Now().Nanosecond()),

  105. 		"id_rsa.pub"), "\\", "/", -1)

  106. 	os.MkdirAll(path.Dir(tmpPath), os.ModePerm)

  107. 	if err = ioutil.WriteFile(tmpPath, []byte(key.Content), os.ModePerm); err != nil {

  108. 		return err

  109. 	}

  110. 	stdout, _, err := com.ExecCmd("ssh-keygen", "-l", "-f", tmpPath)

  111. 	if err != nil {

  112. 		return err

  113. 	} else if len(stdout) < 2 {

  114. 		return errors.New("Not enough output for calculating fingerprint")

  115. 	}

  116. 	key.Fingerprint = strings.Split(stdout, " ")[1]

  117. 

  118. 	// Save SSH key.

  119. 	if _, err = orm.Insert(key); err != nil {

  120. 		return err

  121. 	}

  122. 	if err = SaveAuthorizedKeyFile(key); err != nil {

  123. 		if _, err2 := orm.Delete(key); err2 != nil {

  124. 			return err2

  125. 		}

  126. 		return err

  127. 	}

  128. 

  129. 	return nil

  130. }

  131. 

  132. func rewriteAuthorizedKeys(key *PublicKey, p, tmpP string) error {

  133. 	// Delete SSH key in SSH key file.

  134. 	sshOpLocker.Lock()

  135. 	defer sshOpLocker.Unlock()

  136. 

  137. 	fr, err := os.Open(p)

  138. 	if err != nil {

  139. 		return err

  140. 	}

  141. 	defer fr.Close()

  142. 

  143. 	fw, err := os.Create(tmpP)

  144. 	if err != nil {

  145. 		return err

  146. 	}

  147. 	defer fw.Close()

  148. 

  149. 	buf := bufio.NewReader(fr)

  150. 	for {

  151. 		line, errRead := buf.ReadString('\n')

  152. 		line = strings.TrimSpace(line)

  153. 

  154. 		if errRead != nil {

  155. 			if errRead != io.EOF {

  156. 				return errRead

  157. 			}

  158. 

  159. 			// Reached end of file, if nothing to read then break,

  160. 			// otherwise handle the last line.

  161. 			if len(line) == 0 {

  162. 				break

  163. 			}

  164. 		}

  165. 

  166. 		// Found the line and copy rest of file.

  167. 		if strings.Contains(line, fmt.Sprintf("key-%d", key.Id)) && strings.Contains(line, key.Content) {

  168. 			continue

  169. 		}

  170. 		// Still finding the line, copy the line that currently read.

  171. 		if _, err = fw.WriteString(line + "\n"); err != nil {

  172. 			return err

  173. 		}

  174. 

  175. 		if errRead == io.EOF {

  176. 			break

  177. 		}

  178. 	}

  179. 	return nil

  180. }

  181. 

  182. // DeletePublicKey deletes SSH key information both in database and authorized_keys file.

  183. func DeletePublicKey(key *PublicKey) (err error) {

  184. 	// Delete SSH key in database.

  185. 	has, err := orm.Id(key.Id).Get(key)

  186. 	if err != nil {

  187. 		return err

  188. 	} else if !has {

  189. 		return errors.New("Public key does not exist")

  190. 	}

  191. 	if _, err = orm.Delete(key); err != nil {

  192. 		return err

  193. 	}

  194. 

  195. 	p := filepath.Join(sshPath, "authorized_keys")

  196. 	tmpP := filepath.Join(sshPath, "authorized_keys.tmp")

  197. 	log.Trace("ssh.DeletePublicKey(authorized_keys): %s", p)

  198. 

  199. 	if err = rewriteAuthorizedKeys(key, p, tmpP); err != nil {

  200. 		return err

  201. 	} else if err = os.Remove(p); err != nil {

  202. 		return err

  203. 	}

  204. 	return os.Rename(tmpP, p)

  205. }

  206. 

  207. // ListPublicKey returns a list of public keys that user has.

  208. func ListPublicKey(userId int64) ([]PublicKey, error) {

  209. 	keys := make([]PublicKey, 0)

  210. 	err := orm.Find(&keys, &PublicKey{OwnerId: userId})

  211. 	return keys, err

  212. }

  213. 

  214. // SaveAuthorizedKeyFile writes SSH key content to SSH key file.

  215. func SaveAuthorizedKeyFile(key *PublicKey) error {

  216. 	sshOpLocker.Lock()

  217. 	defer sshOpLocker.Unlock()

  218. 

  219. 	p := filepath.Join(sshPath, "authorized_keys")

  220. 	f, err := os.OpenFile(p, os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0600)

  221. 	if err != nil {

  222. 		return err

  223. 	}

  224. 	defer f.Close()

  225. 

  226. 	_, err = f.WriteString(GenAuthorizedKey(key.Id, key.Content))

  227. 	return err

  228. }