mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 210 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9600 Commits
17 Branches
Tree: v1.12.0-de
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'v1.12.0-de'
${ noResults }
gitea/models/repo_sign.go

repo_sign.go 6.2KB
Raw Permalink Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package models

  6. 

  7. import (

  8. 	"strings"

  9. 

  10. 	"code.gitea.io/gitea/modules/git"

  11. 	"code.gitea.io/gitea/modules/log"

  12. 	"code.gitea.io/gitea/modules/process"

  13. 	"code.gitea.io/gitea/modules/setting"

  14. )

  15. 

  16. type signingMode string

  17. 

  18. const (

  19. 	never         signingMode = "never"

  20. 	always        signingMode = "always"

  21. 	pubkey        signingMode = "pubkey"

  22. 	twofa         signingMode = "twofa"

  23. 	parentSigned  signingMode = "parentsigned"

  24. 	baseSigned    signingMode = "basesigned"

  25. 	headSigned    signingMode = "headsigned"

  26. 	commitsSigned signingMode = "commitssigned"

  27. 	approved      signingMode = "approved"

  28. 	noKey         signingMode = "nokey"

  29. )

  30. 

  31. func signingModeFromStrings(modeStrings []string) []signingMode {

  32. 	returnable := make([]signingMode, 0, len(modeStrings))

  33. 	for _, mode := range modeStrings {

  34. 		signMode := signingMode(strings.ToLower(mode))

  35. 		switch signMode {

  36. 		case never:

  37. 			return []signingMode{never}

  38. 		case always:

  39. 			return []signingMode{always}

  40. 		case pubkey:

  41. 			fallthrough

  42. 		case twofa:

  43. 			fallthrough

  44. 		case parentSigned:

  45. 			fallthrough

  46. 		case baseSigned:

  47. 			fallthrough

  48. 		case headSigned:

  49. 			fallthrough

  50. 		case approved:

  51. 			fallthrough

  52. 		case commitsSigned:

  53. 			returnable = append(returnable, signMode)

  54. 		}

  55. 	}

  56. 	if len(returnable) == 0 {

  57. 		return []signingMode{never}

  58. 	}

  59. 	return returnable

  60. }

  61. 

  62. func signingKey(repoPath string) string {

  63. 	if setting.Repository.Signing.SigningKey == "none" {

  64. 		return ""

  65. 	}

  66. 

  67. 	if setting.Repository.Signing.SigningKey == "default" || setting.Repository.Signing.SigningKey == "" {

  68. 		// Can ignore the error here as it means that commit.gpgsign is not set

  69. 		value, _ := git.NewCommand("config", "--get", "commit.gpgsign").RunInDir(repoPath)

  70. 		sign, valid := git.ParseBool(strings.TrimSpace(value))

  71. 		if !sign || !valid {

  72. 			return ""

  73. 		}

  74. 

  75. 		signingKey, _ := git.NewCommand("config", "--get", "user.signingkey").RunInDir(repoPath)

  76. 		return strings.TrimSpace(signingKey)

  77. 	}

  78. 

  79. 	return setting.Repository.Signing.SigningKey

  80. }

  81. 

  82. // PublicSigningKey gets the public signing key within a provided repository directory

  83. func PublicSigningKey(repoPath string) (string, error) {

  84. 	signingKey := signingKey(repoPath)

  85. 	if signingKey == "" {

  86. 		return "", nil

  87. 	}

  88. 

  89. 	content, stderr, err := process.GetManager().ExecDir(-1, repoPath,

  90. 		"gpg --export -a", "gpg", "--export", "-a", signingKey)

  91. 	if err != nil {

  92. 		log.Error("Unable to get default signing key in %s: %s, %s, %v", repoPath, signingKey, stderr, err)

  93. 		return "", err

  94. 	}

  95. 	return content, nil

  96. }

  97. 

  98. // SignInitialCommit determines if we should sign the initial commit to this repository

  99. func SignInitialCommit(repoPath string, u *User) (bool, string, error) {

  100. 	rules := signingModeFromStrings(setting.Repository.Signing.InitialCommit)

  101. 	signingKey := signingKey(repoPath)

  102. 	if signingKey == "" {

  103. 		return false, "", &ErrWontSign{noKey}

  104. 	}

  105. 

  106. 	for _, rule := range rules {

  107. 		switch rule {

  108. 		case never:

  109. 			return false, "", &ErrWontSign{never}

  110. 		case always:

  111. 			break

  112. 		case pubkey:

  113. 			keys, err := ListGPGKeys(u.ID, ListOptions{})

  114. 			if err != nil {

  115. 				return false, "", err

  116. 			}

  117. 			if len(keys) == 0 {

  118. 				return false, "", &ErrWontSign{pubkey}

  119. 			}

  120. 		case twofa:

  121. 			twofaModel, err := GetTwoFactorByUID(u.ID)

  122. 			if err != nil && !IsErrTwoFactorNotEnrolled(err) {

  123. 				return false, "", err

  124. 			}

  125. 			if twofaModel == nil {

  126. 				return false, "", &ErrWontSign{twofa}

  127. 			}

  128. 		}

  129. 	}

  130. 	return true, signingKey, nil

  131. }

  132. 

  133. // SignWikiCommit determines if we should sign the commits to this repository wiki

  134. func (repo *Repository) SignWikiCommit(u *User) (bool, string, error) {

  135. 	rules := signingModeFromStrings(setting.Repository.Signing.Wiki)

  136. 	signingKey := signingKey(repo.WikiPath())

  137. 	if signingKey == "" {

  138. 		return false, "", &ErrWontSign{noKey}

  139. 	}

  140. 

  141. 	for _, rule := range rules {

  142. 		switch rule {

  143. 		case never:

  144. 			return false, "", &ErrWontSign{never}

  145. 		case always:

  146. 			break

  147. 		case pubkey:

  148. 			keys, err := ListGPGKeys(u.ID, ListOptions{})

  149. 			if err != nil {

  150. 				return false, "", err

  151. 			}

  152. 			if len(keys) == 0 {

  153. 				return false, "", &ErrWontSign{pubkey}

  154. 			}

  155. 		case twofa:

  156. 			twofaModel, err := GetTwoFactorByUID(u.ID)

  157. 			if err != nil && !IsErrTwoFactorNotEnrolled(err) {

  158. 				return false, "", err

  159. 			}

  160. 			if twofaModel == nil {

  161. 				return false, "", &ErrWontSign{twofa}

  162. 			}

  163. 		case parentSigned:

  164. 			gitRepo, err := git.OpenRepository(repo.WikiPath())

  165. 			if err != nil {

  166. 				return false, "", err

  167. 			}

  168. 			defer gitRepo.Close()

  169. 			commit, err := gitRepo.GetCommit("HEAD")

  170. 			if err != nil {

  171. 				return false, "", err

  172. 			}

  173. 			if commit.Signature == nil {

  174. 				return false, "", &ErrWontSign{parentSigned}

  175. 			}

  176. 			verification := ParseCommitWithSignature(commit)

  177. 			if !verification.Verified {

  178. 				return false, "", &ErrWontSign{parentSigned}

  179. 			}

  180. 		}

  181. 	}

  182. 	return true, signingKey, nil

  183. }

  184. 

  185. // SignCRUDAction determines if we should sign a CRUD commit to this repository

  186. func (repo *Repository) SignCRUDAction(u *User, tmpBasePath, parentCommit string) (bool, string, error) {

  187. 	rules := signingModeFromStrings(setting.Repository.Signing.CRUDActions)

  188. 	signingKey := signingKey(repo.RepoPath())

  189. 	if signingKey == "" {

  190. 		return false, "", &ErrWontSign{noKey}

  191. 	}

  192. 

  193. 	for _, rule := range rules {

  194. 		switch rule {

  195. 		case never:

  196. 			return false, "", &ErrWontSign{never}

  197. 		case always:

  198. 			break

  199. 		case pubkey:

  200. 			keys, err := ListGPGKeys(u.ID, ListOptions{})

  201. 			if err != nil {

  202. 				return false, "", err

  203. 			}

  204. 			if len(keys) == 0 {

  205. 				return false, "", &ErrWontSign{pubkey}

  206. 			}

  207. 		case twofa:

  208. 			twofaModel, err := GetTwoFactorByUID(u.ID)

  209. 			if err != nil && !IsErrTwoFactorNotEnrolled(err) {

  210. 				return false, "", err

  211. 			}

  212. 			if twofaModel == nil {

  213. 				return false, "", &ErrWontSign{twofa}

  214. 			}

  215. 		case parentSigned:

  216. 			gitRepo, err := git.OpenRepository(tmpBasePath)

  217. 			if err != nil {

  218. 				return false, "", err

  219. 			}

  220. 			defer gitRepo.Close()

  221. 			commit, err := gitRepo.GetCommit(parentCommit)

  222. 			if err != nil {

  223. 				return false, "", err

  224. 			}

  225. 			if commit.Signature == nil {

  226. 				return false, "", &ErrWontSign{parentSigned}

  227. 			}

  228. 			verification := ParseCommitWithSignature(commit)

  229. 			if !verification.Verified {

  230. 				return false, "", &ErrWontSign{parentSigned}

  231. 			}

  232. 		}

  233. 	}

  234. 	return true, signingKey, nil

  235. }