mirrors
/
gitea
kopia lustrzana https://github.com/go-gitea/gitea.git
Obserwuj 1
Gwiazdka 0
Forkuj 0
Kod Problemy 0 Wydania 211 Wiki Aktywność
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8376 Commity
17 Gałęzie
Drzewo: 9930d47be2
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z '9930d47be2'
${ noResults }
gitea/models/repo_sign.go

repo_sign.go 7.5KB
Czysty Blame Historia

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"strings"

  9. 

  10. 	"code.gitea.io/gitea/modules/git"

  11. 	"code.gitea.io/gitea/modules/log"

  12. 	"code.gitea.io/gitea/modules/process"

  13. 	"code.gitea.io/gitea/modules/setting"

  14. )

  15. 

  16. type signingMode string

  17. 

  18. const (

  19. 	never         signingMode = "never"

  20. 	always        signingMode = "always"

  21. 	pubkey        signingMode = "pubkey"

  22. 	twofa         signingMode = "twofa"

  23. 	parentSigned  signingMode = "parentsigned"

  24. 	baseSigned    signingMode = "basesigned"

  25. 	headSigned    signingMode = "headsigned"

  26. 	commitsSigned signingMode = "commitssigned"

  27. )

  28. 

  29. func signingModeFromStrings(modeStrings []string) []signingMode {

  30. 	returnable := make([]signingMode, 0, len(modeStrings))

  31. 	for _, mode := range modeStrings {

  32. 		signMode := signingMode(strings.ToLower(mode))

  33. 		switch signMode {

  34. 		case never:

  35. 			return []signingMode{never}

  36. 		case always:

  37. 			return []signingMode{always}

  38. 		case pubkey:

  39. 			fallthrough

  40. 		case twofa:

  41. 			fallthrough

  42. 		case parentSigned:

  43. 			fallthrough

  44. 		case baseSigned:

  45. 			fallthrough

  46. 		case headSigned:

  47. 			fallthrough

  48. 		case commitsSigned:

  49. 			returnable = append(returnable, signMode)

  50. 		}

  51. 	}

  52. 	if len(returnable) == 0 {

  53. 		return []signingMode{never}

  54. 	}

  55. 	return returnable

  56. }

  57. 

  58. func signingKey(repoPath string) string {

  59. 	if setting.Repository.Signing.SigningKey == "none" {

  60. 		return ""

  61. 	}

  62. 

  63. 	if setting.Repository.Signing.SigningKey == "default" || setting.Repository.Signing.SigningKey == "" {

  64. 		// Can ignore the error here as it means that commit.gpgsign is not set

  65. 		value, _ := git.NewCommand("config", "--get", "commit.gpgsign").RunInDir(repoPath)

  66. 		sign, valid := git.ParseBool(strings.TrimSpace(value))

  67. 		if !sign || !valid {

  68. 			return ""

  69. 		}

  70. 

  71. 		signingKey, _ := git.NewCommand("config", "--get", "user.signingkey").RunInDir(repoPath)

  72. 		return strings.TrimSpace(signingKey)

  73. 	}

  74. 

  75. 	return setting.Repository.Signing.SigningKey

  76. }

  77. 

  78. // PublicSigningKey gets the public signing key within a provided repository directory

  79. func PublicSigningKey(repoPath string) (string, error) {

  80. 	signingKey := signingKey(repoPath)

  81. 	if signingKey == "" {

  82. 		return "", nil

  83. 	}

  84. 

  85. 	content, stderr, err := process.GetManager().ExecDir(-1, repoPath,

  86. 		"gpg --export -a", "gpg", "--export", "-a", signingKey)

  87. 	if err != nil {

  88. 		log.Error("Unable to get default signing key in %s: %s, %s, %v", repoPath, signingKey, stderr, err)

  89. 		return "", err

  90. 	}

  91. 	return content, nil

  92. }

  93. 

  94. // SignInitialCommit determines if we should sign the initial commit to this repository

  95. func SignInitialCommit(repoPath string, u *User) (bool, string) {

  96. 	rules := signingModeFromStrings(setting.Repository.Signing.InitialCommit)

  97. 	signingKey := signingKey(repoPath)

  98. 	if signingKey == "" {

  99. 		return false, ""

  100. 	}

  101. 

  102. 	for _, rule := range rules {

  103. 		switch rule {

  104. 		case never:

  105. 			return false, ""

  106. 		case always:

  107. 			break

  108. 		case pubkey:

  109. 			keys, err := ListGPGKeys(u.ID)

  110. 			if err != nil || len(keys) == 0 {

  111. 				return false, ""

  112. 			}

  113. 		case twofa:

  114. 			twofa, err := GetTwoFactorByUID(u.ID)

  115. 			if err != nil || twofa == nil {

  116. 				return false, ""

  117. 			}

  118. 		}

  119. 	}

  120. 	return true, signingKey

  121. }

  122. 

  123. // SignWikiCommit determines if we should sign the commits to this repository wiki

  124. func (repo *Repository) SignWikiCommit(u *User) (bool, string) {

  125. 	rules := signingModeFromStrings(setting.Repository.Signing.Wiki)

  126. 	signingKey := signingKey(repo.WikiPath())

  127. 	if signingKey == "" {

  128. 		return false, ""

  129. 	}

  130. 

  131. 	for _, rule := range rules {

  132. 		switch rule {

  133. 		case never:

  134. 			return false, ""

  135. 		case always:

  136. 			break

  137. 		case pubkey:

  138. 			keys, err := ListGPGKeys(u.ID)

  139. 			if err != nil || len(keys) == 0 {

  140. 				return false, ""

  141. 			}

  142. 		case twofa:

  143. 			twofa, err := GetTwoFactorByUID(u.ID)

  144. 			if err != nil || twofa == nil {

  145. 				return false, ""

  146. 			}

  147. 		case parentSigned:

  148. 			gitRepo, err := git.OpenRepository(repo.WikiPath())

  149. 			if err != nil {

  150. 				return false, ""

  151. 			}

  152. 			defer gitRepo.Close()

  153. 			commit, err := gitRepo.GetCommit("HEAD")

  154. 			if err != nil {

  155. 				return false, ""

  156. 			}

  157. 			if commit.Signature == nil {

  158. 				return false, ""

  159. 			}

  160. 			verification := ParseCommitWithSignature(commit)

  161. 			if !verification.Verified {

  162. 				return false, ""

  163. 			}

  164. 		}

  165. 	}

  166. 	return true, signingKey

  167. }

  168. 

  169. // SignCRUDAction determines if we should sign a CRUD commit to this repository

  170. func (repo *Repository) SignCRUDAction(u *User, tmpBasePath, parentCommit string) (bool, string) {

  171. 	rules := signingModeFromStrings(setting.Repository.Signing.CRUDActions)

  172. 	signingKey := signingKey(repo.RepoPath())

  173. 	if signingKey == "" {

  174. 		return false, ""

  175. 	}

  176. 

  177. 	for _, rule := range rules {

  178. 		switch rule {

  179. 		case never:

  180. 			return false, ""

  181. 		case always:

  182. 			break

  183. 		case pubkey:

  184. 			keys, err := ListGPGKeys(u.ID)

  185. 			if err != nil || len(keys) == 0 {

  186. 				return false, ""

  187. 			}

  188. 		case twofa:

  189. 			twofa, err := GetTwoFactorByUID(u.ID)

  190. 			if err != nil || twofa == nil {

  191. 				return false, ""

  192. 			}

  193. 		case parentSigned:

  194. 			gitRepo, err := git.OpenRepository(tmpBasePath)

  195. 			if err != nil {

  196. 				return false, ""

  197. 			}

  198. 			defer gitRepo.Close()

  199. 			commit, err := gitRepo.GetCommit(parentCommit)

  200. 			if err != nil {

  201. 				return false, ""

  202. 			}

  203. 			if commit.Signature == nil {

  204. 				return false, ""

  205. 			}

  206. 			verification := ParseCommitWithSignature(commit)

  207. 			if !verification.Verified {

  208. 				return false, ""

  209. 			}

  210. 		}

  211. 	}

  212. 	return true, signingKey

  213. }

  214. 

  215. // SignMerge determines if we should sign a merge commit to this repository

  216. func (repo *Repository) SignMerge(u *User, tmpBasePath, baseCommit, headCommit string) (bool, string) {

  217. 	rules := signingModeFromStrings(setting.Repository.Signing.Merges)

  218. 	signingKey := signingKey(repo.RepoPath())

  219. 	if signingKey == "" {

  220. 		return false, ""

  221. 	}

  222. 	var gitRepo *git.Repository

  223. 	var err error

  224. 

  225. 	for _, rule := range rules {

  226. 		switch rule {

  227. 		case never:

  228. 			return false, ""

  229. 		case always:

  230. 			break

  231. 		case pubkey:

  232. 			keys, err := ListGPGKeys(u.ID)

  233. 			if err != nil || len(keys) == 0 {

  234. 				return false, ""

  235. 			}

  236. 		case twofa:

  237. 			twofa, err := GetTwoFactorByUID(u.ID)

  238. 			if err != nil || twofa == nil {

  239. 				return false, ""

  240. 			}

  241. 		case baseSigned:

  242. 			if gitRepo == nil {

  243. 				gitRepo, err = git.OpenRepository(tmpBasePath)

  244. 				if err != nil {

  245. 					return false, ""

  246. 				}

  247. 				defer gitRepo.Close()

  248. 			}

  249. 			commit, err := gitRepo.GetCommit(baseCommit)

  250. 			if err != nil {

  251. 				return false, ""

  252. 			}

  253. 			verification := ParseCommitWithSignature(commit)

  254. 			if !verification.Verified {

  255. 				return false, ""

  256. 			}

  257. 		case headSigned:

  258. 			if gitRepo == nil {

  259. 				gitRepo, err = git.OpenRepository(tmpBasePath)

  260. 				if err != nil {

  261. 					return false, ""

  262. 				}

  263. 				defer gitRepo.Close()

  264. 			}

  265. 			commit, err := gitRepo.GetCommit(headCommit)

  266. 			if err != nil {

  267. 				return false, ""

  268. 			}

  269. 			verification := ParseCommitWithSignature(commit)

  270. 			if !verification.Verified {

  271. 				return false, ""

  272. 			}

  273. 		case commitsSigned:

  274. 			if gitRepo == nil {

  275. 				gitRepo, err = git.OpenRepository(tmpBasePath)

  276. 				if err != nil {

  277. 					return false, ""

  278. 				}

  279. 				defer gitRepo.Close()

  280. 			}

  281. 			commit, err := gitRepo.GetCommit(headCommit)

  282. 			if err != nil {

  283. 				return false, ""

  284. 			}

  285. 			verification := ParseCommitWithSignature(commit)

  286. 			if !verification.Verified {

  287. 				return false, ""

  288. 			}

  289. 			// need to work out merge-base

  290. 			mergeBaseCommit, _, err := gitRepo.GetMergeBase("", baseCommit, headCommit)

  291. 			if err != nil {

  292. 				return false, ""

  293. 			}

  294. 			commitList, err := commit.CommitsBeforeUntil(mergeBaseCommit)

  295. 			if err != nil {

  296. 				return false, ""

  297. 			}

  298. 			for e := commitList.Front(); e != nil; e = e.Next() {

  299. 				commit = e.Value.(*git.Commit)

  300. 				verification := ParseCommitWithSignature(commit)

  301. 				if !verification.Verified {

  302. 					return false, ""

  303. 				}

  304. 			}

  305. 		}

  306. 	}

  307. 	return true, signingKey

  308. }