mirrors
/
gitea
peilaus alkaen https://github.com/go-gitea/gitea.git
Tarkkaile 1
Äänestä 0
Fork 0
Koodi Ongelmat 0 Julkaisut 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16634 Commitit
17 Branchit
Puu: dc7cf7a984
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from 'dc7cf7a984'
${ noResults }
gitea/services/release/release.go

release.go 11KB
Raaka Blame Historia

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package release

  5. 

  6. import (

  7. 	"context"

  8. 	"errors"

  9. 	"fmt"

  10. 	"strings"

  11. 

  12. 	"code.gitea.io/gitea/models"

  13. 	"code.gitea.io/gitea/models/db"

  14. 	git_model "code.gitea.io/gitea/models/git"

  15. 	repo_model "code.gitea.io/gitea/models/repo"

  16. 	user_model "code.gitea.io/gitea/models/user"

  17. 	"code.gitea.io/gitea/modules/container"

  18. 	"code.gitea.io/gitea/modules/git"

  19. 	"code.gitea.io/gitea/modules/log"

  20. 	"code.gitea.io/gitea/modules/repository"

  21. 	"code.gitea.io/gitea/modules/storage"

  22. 	"code.gitea.io/gitea/modules/timeutil"

  23. 	"code.gitea.io/gitea/modules/util"

  24. 	notify_service "code.gitea.io/gitea/services/notify"

  25. )

  26. 

  27. func createTag(ctx context.Context, gitRepo *git.Repository, rel *repo_model.Release, msg string) (bool, error) {

  28. 	err := rel.LoadAttributes(ctx)

  29. 	if err != nil {

  30. 		return false, err

  31. 	}

  32. 

  33. 	err = rel.Repo.MustNotBeArchived()

  34. 	if err != nil {

  35. 		return false, err

  36. 	}

  37. 

  38. 	var created bool

  39. 	// Only actual create when publish.

  40. 	if !rel.IsDraft {

  41. 		if !gitRepo.IsTagExist(rel.TagName) {

  42. 			if err := rel.LoadAttributes(ctx); err != nil {

  43. 				log.Error("LoadAttributes: %v", err)

  44. 				return false, err

  45. 			}

  46. 

  47. 			protectedTags, err := git_model.GetProtectedTags(ctx, rel.Repo.ID)

  48. 			if err != nil {

  49. 				return false, fmt.Errorf("GetProtectedTags: %w", err)

  50. 			}

  51. 

  52. 			// Trim '--' prefix to prevent command line argument vulnerability.

  53. 			rel.TagName = strings.TrimPrefix(rel.TagName, "--")

  54. 			isAllowed, err := git_model.IsUserAllowedToControlTag(ctx, protectedTags, rel.TagName, rel.PublisherID)

  55. 			if err != nil {

  56. 				return false, err

  57. 			}

  58. 			if !isAllowed {

  59. 				return false, models.ErrProtectedTagName{

  60. 					TagName: rel.TagName,

  61. 				}

  62. 			}

  63. 

  64. 			commit, err := gitRepo.GetCommit(rel.Target)

  65. 			if err != nil {

  66. 				return false, fmt.Errorf("createTag::GetCommit[%v]: %w", rel.Target, err)

  67. 			}

  68. 

  69. 			if len(msg) > 0 {

  70. 				if err = gitRepo.CreateAnnotatedTag(rel.TagName, msg, commit.ID.String()); err != nil {

  71. 					if strings.Contains(err.Error(), "is not a valid tag name") {

  72. 						return false, models.ErrInvalidTagName{

  73. 							TagName: rel.TagName,

  74. 						}

  75. 					}

  76. 					return false, err

  77. 				}

  78. 			} else if err = gitRepo.CreateTag(rel.TagName, commit.ID.String()); err != nil {

  79. 				if strings.Contains(err.Error(), "is not a valid tag name") {

  80. 					return false, models.ErrInvalidTagName{

  81. 						TagName: rel.TagName,

  82. 					}

  83. 				}

  84. 				return false, err

  85. 			}

  86. 			created = true

  87. 			rel.LowerTagName = strings.ToLower(rel.TagName)

  88. 

  89. 			commits := repository.NewPushCommits()

  90. 			commits.HeadCommit = repository.CommitToPushCommit(commit)

  91. 			commits.CompareURL = rel.Repo.ComposeCompareURL(git.EmptySHA, commit.ID.String())

  92. 

  93. 			refFullName := git.RefNameFromTag(rel.TagName)

  94. 			notify_service.PushCommits(

  95. 				ctx, rel.Publisher, rel.Repo,

  96. 				&repository.PushUpdateOptions{

  97. 					RefFullName: refFullName,

  98. 					OldCommitID: git.EmptySHA,

  99. 					NewCommitID: commit.ID.String(),

  100. 				}, commits)

  101. 			notify_service.CreateRef(ctx, rel.Publisher, rel.Repo, refFullName, commit.ID.String())

  102. 			rel.CreatedUnix = timeutil.TimeStampNow()

  103. 		}

  104. 		commit, err := gitRepo.GetTagCommit(rel.TagName)

  105. 		if err != nil {

  106. 			return false, fmt.Errorf("GetTagCommit: %w", err)

  107. 		}

  108. 

  109. 		rel.Sha1 = commit.ID.String()

  110. 		rel.NumCommits, err = commit.CommitsCount()

  111. 		if err != nil {

  112. 			return false, fmt.Errorf("CommitsCount: %w", err)

  113. 		}

  114. 

  115. 		if rel.PublisherID <= 0 {

  116. 			u, err := user_model.GetUserByEmail(ctx, commit.Author.Email)

  117. 			if err == nil {

  118. 				rel.PublisherID = u.ID

  119. 			}

  120. 		}

  121. 	} else {

  122. 		rel.CreatedUnix = timeutil.TimeStampNow()

  123. 	}

  124. 	return created, nil

  125. }

  126. 

  127. // CreateRelease creates a new release of repository.

  128. func CreateRelease(gitRepo *git.Repository, rel *repo_model.Release, attachmentUUIDs []string, msg string) error {

  129. 	has, err := repo_model.IsReleaseExist(gitRepo.Ctx, rel.RepoID, rel.TagName)

  130. 	if err != nil {

  131. 		return err

  132. 	} else if has {

  133. 		return repo_model.ErrReleaseAlreadyExist{

  134. 			TagName: rel.TagName,

  135. 		}

  136. 	}

  137. 

  138. 	if _, err = createTag(gitRepo.Ctx, gitRepo, rel, msg); err != nil {

  139. 		return err

  140. 	}

  141. 

  142. 	rel.LowerTagName = strings.ToLower(rel.TagName)

  143. 	if err = db.Insert(gitRepo.Ctx, rel); err != nil {

  144. 		return err

  145. 	}

  146. 

  147. 	if err = repo_model.AddReleaseAttachments(gitRepo.Ctx, rel.ID, attachmentUUIDs); err != nil {

  148. 		return err

  149. 	}

  150. 

  151. 	if !rel.IsDraft {

  152. 		notify_service.NewRelease(gitRepo.Ctx, rel)

  153. 	}

  154. 

  155. 	return nil

  156. }

  157. 

  158. // CreateNewTag creates a new repository tag

  159. func CreateNewTag(ctx context.Context, doer *user_model.User, repo *repo_model.Repository, commit, tagName, msg string) error {

  160. 	has, err := repo_model.IsReleaseExist(ctx, repo.ID, tagName)

  161. 	if err != nil {

  162. 		return err

  163. 	} else if has {

  164. 		return models.ErrTagAlreadyExists{

  165. 			TagName: tagName,

  166. 		}

  167. 	}

  168. 

  169. 	gitRepo, closer, err := git.RepositoryFromContextOrOpen(ctx, repo.RepoPath())

  170. 	if err != nil {

  171. 		return err

  172. 	}

  173. 	defer closer.Close()

  174. 

  175. 	rel := &repo_model.Release{

  176. 		RepoID:       repo.ID,

  177. 		Repo:         repo,

  178. 		PublisherID:  doer.ID,

  179. 		Publisher:    doer,

  180. 		TagName:      tagName,

  181. 		Target:       commit,

  182. 		IsDraft:      false,

  183. 		IsPrerelease: false,

  184. 		IsTag:        true,

  185. 	}

  186. 

  187. 	if _, err = createTag(ctx, gitRepo, rel, msg); err != nil {

  188. 		return err

  189. 	}

  190. 

  191. 	return db.Insert(ctx, rel)

  192. }

  193. 

  194. // UpdateRelease updates information, attachments of a release and will create tag if it's not a draft and tag not exist.

  195. // addAttachmentUUIDs accept a slice of new created attachments' uuids which will be reassigned release_id as the created release

  196. // delAttachmentUUIDs accept a slice of attachments' uuids which will be deleted from the release

  197. // editAttachments accept a map of attachment uuid to new attachment name which will be updated with attachments.

  198. func UpdateRelease(ctx context.Context, doer *user_model.User, gitRepo *git.Repository, rel *repo_model.Release,

  199. 	addAttachmentUUIDs, delAttachmentUUIDs []string, editAttachments map[string]string,

  200. ) error {

  201. 	if rel.ID == 0 {

  202. 		return errors.New("UpdateRelease only accepts an exist release")

  203. 	}

  204. 	isCreated, err := createTag(gitRepo.Ctx, gitRepo, rel, "")

  205. 	if err != nil {

  206. 		return err

  207. 	}

  208. 	rel.LowerTagName = strings.ToLower(rel.TagName)

  209. 

  210. 	ctx, committer, err := db.TxContext(ctx)

  211. 	if err != nil {

  212. 		return err

  213. 	}

  214. 	defer committer.Close()

  215. 

  216. 	if err = repo_model.UpdateRelease(ctx, rel); err != nil {

  217. 		return err

  218. 	}

  219. 

  220. 	if err = repo_model.AddReleaseAttachments(ctx, rel.ID, addAttachmentUUIDs); err != nil {

  221. 		return fmt.Errorf("AddReleaseAttachments: %w", err)

  222. 	}

  223. 

  224. 	deletedUUIDs := make(container.Set[string])

  225. 	if len(delAttachmentUUIDs) > 0 {

  226. 		// Check attachments

  227. 		attachments, err := repo_model.GetAttachmentsByUUIDs(ctx, delAttachmentUUIDs)

  228. 		if err != nil {

  229. 			return fmt.Errorf("GetAttachmentsByUUIDs [uuids: %v]: %w", delAttachmentUUIDs, err)

  230. 		}

  231. 		for _, attach := range attachments {

  232. 			if attach.ReleaseID != rel.ID {

  233. 				return util.SilentWrap{

  234. 					Message: "delete attachment of release permission denied",

  235. 					Err:     util.ErrPermissionDenied,

  236. 				}

  237. 			}

  238. 			deletedUUIDs.Add(attach.UUID)

  239. 		}

  240. 

  241. 		if _, err := repo_model.DeleteAttachments(ctx, attachments, true); err != nil {

  242. 			return fmt.Errorf("DeleteAttachments [uuids: %v]: %w", delAttachmentUUIDs, err)

  243. 		}

  244. 	}

  245. 

  246. 	if len(editAttachments) > 0 {

  247. 		updateAttachmentsList := make([]string, 0, len(editAttachments))

  248. 		for k := range editAttachments {

  249. 			updateAttachmentsList = append(updateAttachmentsList, k)

  250. 		}

  251. 		// Check attachments

  252. 		attachments, err := repo_model.GetAttachmentsByUUIDs(ctx, updateAttachmentsList)

  253. 		if err != nil {

  254. 			return fmt.Errorf("GetAttachmentsByUUIDs [uuids: %v]: %w", updateAttachmentsList, err)

  255. 		}

  256. 		for _, attach := range attachments {

  257. 			if attach.ReleaseID != rel.ID {

  258. 				return util.SilentWrap{

  259. 					Message: "update attachment of release permission denied",

  260. 					Err:     util.ErrPermissionDenied,

  261. 				}

  262. 			}

  263. 		}

  264. 

  265. 		for uuid, newName := range editAttachments {

  266. 			if !deletedUUIDs.Contains(uuid) {

  267. 				if err = repo_model.UpdateAttachmentByUUID(ctx, &repo_model.Attachment{

  268. 					UUID: uuid,

  269. 					Name: newName,

  270. 				}, "name"); err != nil {

  271. 					return err

  272. 				}

  273. 			}

  274. 		}

  275. 	}

  276. 

  277. 	if err := committer.Commit(); err != nil {

  278. 		return err

  279. 	}

  280. 

  281. 	for _, uuid := range delAttachmentUUIDs {

  282. 		if err := storage.Attachments.Delete(repo_model.AttachmentRelativePath(uuid)); err != nil {

  283. 			// Even delete files failed, but the attachments has been removed from database, so we

  284. 			// should not return error but only record the error on logs.

  285. 			// users have to delete this attachments manually or we should have a

  286. 			// synchronize between database attachment table and attachment storage

  287. 			log.Error("delete attachment[uuid: %s] failed: %v", uuid, err)

  288. 		}

  289. 	}

  290. 

  291. 	if !isCreated {

  292. 		notify_service.UpdateRelease(gitRepo.Ctx, doer, rel)

  293. 		return nil

  294. 	}

  295. 

  296. 	if !rel.IsDraft {

  297. 		notify_service.NewRelease(gitRepo.Ctx, rel)

  298. 	}

  299. 

  300. 	return nil

  301. }

  302. 

  303. // DeleteReleaseByID deletes a release and corresponding Git tag by given ID.

  304. func DeleteReleaseByID(ctx context.Context, id int64, doer *user_model.User, delTag bool) error {

  305. 	rel, err := repo_model.GetReleaseByID(ctx, id)

  306. 	if err != nil {

  307. 		return fmt.Errorf("GetReleaseByID: %w", err)

  308. 	}

  309. 

  310. 	repo, err := repo_model.GetRepositoryByID(ctx, rel.RepoID)

  311. 	if err != nil {

  312. 		return fmt.Errorf("GetRepositoryByID: %w", err)

  313. 	}

  314. 

  315. 	if delTag {

  316. 		protectedTags, err := git_model.GetProtectedTags(ctx, rel.RepoID)

  317. 		if err != nil {

  318. 			return fmt.Errorf("GetProtectedTags: %w", err)

  319. 		}

  320. 		isAllowed, err := git_model.IsUserAllowedToControlTag(ctx, protectedTags, rel.TagName, rel.PublisherID)

  321. 		if err != nil {

  322. 			return err

  323. 		}

  324. 		if !isAllowed {

  325. 			return models.ErrProtectedTagName{

  326. 				TagName: rel.TagName,

  327. 			}

  328. 		}

  329. 

  330. 		if stdout, _, err := git.NewCommand(ctx, "tag", "-d").AddDashesAndList(rel.TagName).

  331. 			SetDescription(fmt.Sprintf("DeleteReleaseByID (git tag -d): %d", rel.ID)).

  332. 			RunStdString(&git.RunOpts{Dir: repo.RepoPath()}); err != nil && !strings.Contains(err.Error(), "not found") {

  333. 			log.Error("DeleteReleaseByID (git tag -d): %d in %v Failed:\nStdout: %s\nError: %v", rel.ID, repo, stdout, err)

  334. 			return fmt.Errorf("git tag -d: %w", err)

  335. 		}

  336. 

  337. 		refName := git.RefNameFromTag(rel.TagName)

  338. 		notify_service.PushCommits(

  339. 			ctx, doer, repo,

  340. 			&repository.PushUpdateOptions{

  341. 				RefFullName: refName,

  342. 				OldCommitID: rel.Sha1,

  343. 				NewCommitID: git.EmptySHA,

  344. 			}, repository.NewPushCommits())

  345. 		notify_service.DeleteRef(ctx, doer, repo, refName)

  346. 

  347. 		if err := repo_model.DeleteReleaseByID(ctx, id); err != nil {

  348. 			return fmt.Errorf("DeleteReleaseByID: %w", err)

  349. 		}

  350. 	} else {

  351. 		rel.IsTag = true

  352. 

  353. 		if err = repo_model.UpdateRelease(ctx, rel); err != nil {

  354. 			return fmt.Errorf("Update: %w", err)

  355. 		}

  356. 	}

  357. 

  358. 	rel.Repo = repo

  359. 	if err = rel.LoadAttributes(ctx); err != nil {

  360. 		return fmt.Errorf("LoadAttributes: %w", err)

  361. 	}

  362. 

  363. 	if err := repo_model.DeleteAttachmentsByRelease(ctx, rel.ID); err != nil {

  364. 		return fmt.Errorf("DeleteAttachments: %w", err)

  365. 	}

  366. 

  367. 	for i := range rel.Attachments {

  368. 		attachment := rel.Attachments[i]

  369. 		if err := storage.Attachments.Delete(attachment.RelativePath()); err != nil {

  370. 			log.Error("Delete attachment %s of release %s failed: %v", attachment.UUID, rel.ID, err)

  371. 		}

  372. 	}

  373. 

  374. 	notify_service.DeleteRelease(ctx, doer, rel)

  375. 

  376. 	return nil

  377. }