mirrors
/
gitea
镜像来自 https://github.com/go-gitea/gitea.git
關註 1
收藏 0
複製 0
程式碼 問題管理 0 版本發佈 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11351 Commit
17 分支
目錄樹: 7417628f8d
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from '7417628f8d'
${ noResults }
gitea/models/repo_sign.go

repo_sign.go 6.9KB
原始文件 Blame 文件歷史

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"strings"

  9. 

  10. 	"code.gitea.io/gitea/modules/git"

  11. 	"code.gitea.io/gitea/modules/log"

  12. 	"code.gitea.io/gitea/modules/process"

  13. 	"code.gitea.io/gitea/modules/setting"

  14. )

  15. 

  16. type signingMode string

  17. 

  18. const (

  19. 	never         signingMode = "never"

  20. 	always        signingMode = "always"

  21. 	pubkey        signingMode = "pubkey"

  22. 	twofa         signingMode = "twofa"

  23. 	parentSigned  signingMode = "parentsigned"

  24. 	baseSigned    signingMode = "basesigned"

  25. 	headSigned    signingMode = "headsigned"

  26. 	commitsSigned signingMode = "commitssigned"

  27. 	approved      signingMode = "approved"

  28. 	noKey         signingMode = "nokey"

  29. )

  30. 

  31. func signingModeFromStrings(modeStrings []string) []signingMode {

  32. 	returnable := make([]signingMode, 0, len(modeStrings))

  33. 	for _, mode := range modeStrings {

  34. 		signMode := signingMode(strings.ToLower(strings.TrimSpace(mode)))

  35. 		switch signMode {

  36. 		case never:

  37. 			return []signingMode{never}

  38. 		case always:

  39. 			return []signingMode{always}

  40. 		case pubkey:

  41. 			fallthrough

  42. 		case twofa:

  43. 			fallthrough

  44. 		case parentSigned:

  45. 			fallthrough

  46. 		case baseSigned:

  47. 			fallthrough

  48. 		case headSigned:

  49. 			fallthrough

  50. 		case approved:

  51. 			fallthrough

  52. 		case commitsSigned:

  53. 			returnable = append(returnable, signMode)

  54. 		}

  55. 	}

  56. 	if len(returnable) == 0 {

  57. 		return []signingMode{never}

  58. 	}

  59. 	return returnable

  60. }

  61. 

  62. // SigningKey returns the KeyID and git Signature for the repo

  63. func SigningKey(repoPath string) (string, *git.Signature) {

  64. 	if setting.Repository.Signing.SigningKey == "none" {

  65. 		return "", nil

  66. 	}

  67. 

  68. 	if setting.Repository.Signing.SigningKey == "default" || setting.Repository.Signing.SigningKey == "" {

  69. 		// Can ignore the error here as it means that commit.gpgsign is not set

  70. 		value, _ := git.NewCommand("config", "--get", "commit.gpgsign").RunInDir(repoPath)

  71. 		sign, valid := git.ParseBool(strings.TrimSpace(value))

  72. 		if !sign || !valid {

  73. 			return "", nil

  74. 		}

  75. 

  76. 		signingKey, _ := git.NewCommand("config", "--get", "user.signingkey").RunInDir(repoPath)

  77. 		signingName, _ := git.NewCommand("config", "--get", "user.name").RunInDir(repoPath)

  78. 		signingEmail, _ := git.NewCommand("config", "--get", "user.email").RunInDir(repoPath)

  79. 		return strings.TrimSpace(signingKey), &git.Signature{

  80. 			Name:  strings.TrimSpace(signingName),

  81. 			Email: strings.TrimSpace(signingEmail),

  82. 		}

  83. 	}

  84. 

  85. 	return setting.Repository.Signing.SigningKey, &git.Signature{

  86. 		Name:  setting.Repository.Signing.SigningName,

  87. 		Email: setting.Repository.Signing.SigningEmail,

  88. 	}

  89. }

  90. 

  91. // PublicSigningKey gets the public signing key within a provided repository directory

  92. func PublicSigningKey(repoPath string) (string, error) {

  93. 	signingKey, _ := SigningKey(repoPath)

  94. 	if signingKey == "" {

  95. 		return "", nil

  96. 	}

  97. 

  98. 	content, stderr, err := process.GetManager().ExecDir(-1, repoPath,

  99. 		"gpg --export -a", "gpg", "--export", "-a", signingKey)

  100. 	if err != nil {

  101. 		log.Error("Unable to get default signing key in %s: %s, %s, %v", repoPath, signingKey, stderr, err)

  102. 		return "", err

  103. 	}

  104. 	return content, nil

  105. }

  106. 

  107. // SignInitialCommit determines if we should sign the initial commit to this repository

  108. func SignInitialCommit(repoPath string, u *User) (bool, string, *git.Signature, error) {

  109. 	rules := signingModeFromStrings(setting.Repository.Signing.InitialCommit)

  110. 	signingKey, sig := SigningKey(repoPath)

  111. 	if signingKey == "" {

  112. 		return false, "", nil, &ErrWontSign{noKey}

  113. 	}

  114. 

  115. Loop:

  116. 	for _, rule := range rules {

  117. 		switch rule {

  118. 		case never:

  119. 			return false, "", nil, &ErrWontSign{never}

  120. 		case always:

  121. 			break Loop

  122. 		case pubkey:

  123. 			keys, err := ListGPGKeys(u.ID, ListOptions{})

  124. 			if err != nil {

  125. 				return false, "", nil, err

  126. 			}

  127. 			if len(keys) == 0 {

  128. 				return false, "", nil, &ErrWontSign{pubkey}

  129. 			}

  130. 		case twofa:

  131. 			twofaModel, err := GetTwoFactorByUID(u.ID)

  132. 			if err != nil && !IsErrTwoFactorNotEnrolled(err) {

  133. 				return false, "", nil, err

  134. 			}

  135. 			if twofaModel == nil {

  136. 				return false, "", nil, &ErrWontSign{twofa}

  137. 			}

  138. 		}

  139. 	}

  140. 	return true, signingKey, sig, nil

  141. }

  142. 

  143. // SignWikiCommit determines if we should sign the commits to this repository wiki

  144. func (repo *Repository) SignWikiCommit(u *User) (bool, string, *git.Signature, error) {

  145. 	rules := signingModeFromStrings(setting.Repository.Signing.Wiki)

  146. 	signingKey, sig := SigningKey(repo.WikiPath())

  147. 	if signingKey == "" {

  148. 		return false, "", nil, &ErrWontSign{noKey}

  149. 	}

  150. 

  151. Loop:

  152. 	for _, rule := range rules {

  153. 		switch rule {

  154. 		case never:

  155. 			return false, "", nil, &ErrWontSign{never}

  156. 		case always:

  157. 			break Loop

  158. 		case pubkey:

  159. 			keys, err := ListGPGKeys(u.ID, ListOptions{})

  160. 			if err != nil {

  161. 				return false, "", nil, err

  162. 			}

  163. 			if len(keys) == 0 {

  164. 				return false, "", nil, &ErrWontSign{pubkey}

  165. 			}

  166. 		case twofa:

  167. 			twofaModel, err := GetTwoFactorByUID(u.ID)

  168. 			if err != nil && !IsErrTwoFactorNotEnrolled(err) {

  169. 				return false, "", nil, err

  170. 			}

  171. 			if twofaModel == nil {

  172. 				return false, "", nil, &ErrWontSign{twofa}

  173. 			}

  174. 		case parentSigned:

  175. 			gitRepo, err := git.OpenRepository(repo.WikiPath())

  176. 			if err != nil {

  177. 				return false, "", nil, err

  178. 			}

  179. 			defer gitRepo.Close()

  180. 			commit, err := gitRepo.GetCommit("HEAD")

  181. 			if err != nil {

  182. 				return false, "", nil, err

  183. 			}

  184. 			if commit.Signature == nil {

  185. 				return false, "", nil, &ErrWontSign{parentSigned}

  186. 			}

  187. 			verification := ParseCommitWithSignature(commit)

  188. 			if !verification.Verified {

  189. 				return false, "", nil, &ErrWontSign{parentSigned}

  190. 			}

  191. 		}

  192. 	}

  193. 	return true, signingKey, sig, nil

  194. }

  195. 

  196. // SignCRUDAction determines if we should sign a CRUD commit to this repository

  197. func (repo *Repository) SignCRUDAction(u *User, tmpBasePath, parentCommit string) (bool, string, *git.Signature, error) {

  198. 	rules := signingModeFromStrings(setting.Repository.Signing.CRUDActions)

  199. 	signingKey, sig := SigningKey(repo.RepoPath())

  200. 	if signingKey == "" {

  201. 		return false, "", nil, &ErrWontSign{noKey}

  202. 	}

  203. 

  204. Loop:

  205. 	for _, rule := range rules {

  206. 		switch rule {

  207. 		case never:

  208. 			return false, "", nil, &ErrWontSign{never}

  209. 		case always:

  210. 			break Loop

  211. 		case pubkey:

  212. 			keys, err := ListGPGKeys(u.ID, ListOptions{})

  213. 			if err != nil {

  214. 				return false, "", nil, err

  215. 			}

  216. 			if len(keys) == 0 {

  217. 				return false, "", nil, &ErrWontSign{pubkey}

  218. 			}

  219. 		case twofa:

  220. 			twofaModel, err := GetTwoFactorByUID(u.ID)

  221. 			if err != nil && !IsErrTwoFactorNotEnrolled(err) {

  222. 				return false, "", nil, err

  223. 			}

  224. 			if twofaModel == nil {

  225. 				return false, "", nil, &ErrWontSign{twofa}

  226. 			}

  227. 		case parentSigned:

  228. 			gitRepo, err := git.OpenRepository(tmpBasePath)

  229. 			if err != nil {

  230. 				return false, "", nil, err

  231. 			}

  232. 			defer gitRepo.Close()

  233. 			commit, err := gitRepo.GetCommit(parentCommit)

  234. 			if err != nil {

  235. 				return false, "", nil, err

  236. 			}

  237. 			if commit.Signature == nil {

  238. 				return false, "", nil, &ErrWontSign{parentSigned}

  239. 			}

  240. 			verification := ParseCommitWithSignature(commit)

  241. 			if !verification.Verified {

  242. 				return false, "", nil, &ErrWontSign{parentSigned}

  243. 			}

  244. 		}

  245. 	}

  246. 	return true, signingKey, sig, nil

  247. }