mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16872 Commits
17 Branches
Tree: v1.21.5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'v1.21.5'
${ noResults }
gitea/services/migrations/migrate.go

migrate.go 15KB
Raw Permalink Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Copyright 2018 Jonas Franz. All rights reserved.

  3. // SPDX-License-Identifier: MIT

  4. 

  5. package migrations

  6. 

  7. import (

  8. 	"context"

  9. 	"fmt"

  10. 	"net"

  11. 	"net/url"

  12. 	"path/filepath"

  13. 	"strings"

  14. 

  15. 	"code.gitea.io/gitea/models"

  16. 	repo_model "code.gitea.io/gitea/models/repo"

  17. 	system_model "code.gitea.io/gitea/models/system"

  18. 	user_model "code.gitea.io/gitea/models/user"

  19. 	"code.gitea.io/gitea/modules/hostmatcher"

  20. 	"code.gitea.io/gitea/modules/log"

  21. 	base "code.gitea.io/gitea/modules/migration"

  22. 	"code.gitea.io/gitea/modules/setting"

  23. 	"code.gitea.io/gitea/modules/util"

  24. )

  25. 

  26. // MigrateOptions is equal to base.MigrateOptions

  27. type MigrateOptions = base.MigrateOptions

  28. 

  29. var (

  30. 	factories []base.DownloaderFactory

  31. 

  32. 	allowList *hostmatcher.HostMatchList

  33. 	blockList *hostmatcher.HostMatchList

  34. )

  35. 

  36. // RegisterDownloaderFactory registers a downloader factory

  37. func RegisterDownloaderFactory(factory base.DownloaderFactory) {

  38. 	factories = append(factories, factory)

  39. }

  40. 

  41. // IsMigrateURLAllowed checks if an URL is allowed to be migrated from

  42. func IsMigrateURLAllowed(remoteURL string, doer *user_model.User) error {

  43. 	// Remote address can be HTTP/HTTPS/Git URL or local path.

  44. 	u, err := url.Parse(remoteURL)

  45. 	if err != nil {

  46. 		return &models.ErrInvalidCloneAddr{IsURLError: true, Host: remoteURL}

  47. 	}

  48. 

  49. 	if u.Scheme == "file" || u.Scheme == "" {

  50. 		if !doer.CanImportLocal() {

  51. 			return &models.ErrInvalidCloneAddr{Host: "<LOCAL_FILESYSTEM>", IsPermissionDenied: true, LocalPath: true}

  52. 		}

  53. 		isAbs := filepath.IsAbs(u.Host + u.Path)

  54. 		if !isAbs {

  55. 			return &models.ErrInvalidCloneAddr{Host: "<LOCAL_FILESYSTEM>", IsInvalidPath: true, LocalPath: true}

  56. 		}

  57. 		isDir, err := util.IsDir(u.Host + u.Path)

  58. 		if err != nil {

  59. 			log.Error("Unable to check if %s is a directory: %v", u.Host+u.Path, err)

  60. 			return err

  61. 		}

  62. 		if !isDir {

  63. 			return &models.ErrInvalidCloneAddr{Host: "<LOCAL_FILESYSTEM>", IsInvalidPath: true, LocalPath: true}

  64. 		}

  65. 

  66. 		return nil

  67. 	}

  68. 

  69. 	if u.Scheme == "git" && u.Port() != "" && (strings.Contains(remoteURL, "%0d") || strings.Contains(remoteURL, "%0a")) {

  70. 		return &models.ErrInvalidCloneAddr{Host: u.Host, IsURLError: true}

  71. 	}

  72. 

  73. 	if u.Opaque != "" || u.Scheme != "" && u.Scheme != "http" && u.Scheme != "https" && u.Scheme != "git" {

  74. 		return &models.ErrInvalidCloneAddr{Host: u.Host, IsProtocolInvalid: true, IsPermissionDenied: true, IsURLError: true}

  75. 	}

  76. 

  77. 	hostName, _, err := net.SplitHostPort(u.Host)

  78. 	if err != nil {

  79. 		// u.Host can be "host" or "host:port"

  80. 		err = nil //nolint

  81. 		hostName = u.Host

  82. 	}

  83. 

  84. 	// some users only use proxy, there is no DNS resolver. it's safe to ignore the LookupIP error

  85. 	addrList, _ := net.LookupIP(hostName)

  86. 	return checkByAllowBlockList(hostName, addrList)

  87. }

  88. 

  89. func checkByAllowBlockList(hostName string, addrList []net.IP) error {

  90. 	var ipAllowed bool

  91. 	var ipBlocked bool

  92. 	for _, addr := range addrList {

  93. 		ipAllowed = ipAllowed || allowList.MatchIPAddr(addr)

  94. 		ipBlocked = ipBlocked || blockList.MatchIPAddr(addr)

  95. 	}

  96. 	var blockedError error

  97. 	if blockList.MatchHostName(hostName) || ipBlocked {

  98. 		blockedError = &models.ErrInvalidCloneAddr{Host: hostName, IsPermissionDenied: true}

  99. 	}

  100. 	// if we have an allow-list, check the allow-list before return to get the more accurate error

  101. 	if !allowList.IsEmpty() {

  102. 		if !allowList.MatchHostName(hostName) && !ipAllowed {

  103. 			return &models.ErrInvalidCloneAddr{Host: hostName, IsPermissionDenied: true}

  104. 		}

  105. 	}

  106. 	// otherwise, we always follow the blocked list

  107. 	return blockedError

  108. }

  109. 

  110. // MigrateRepository migrate repository according MigrateOptions

  111. func MigrateRepository(ctx context.Context, doer *user_model.User, ownerName string, opts base.MigrateOptions, messenger base.Messenger) (*repo_model.Repository, error) {

  112. 	err := IsMigrateURLAllowed(opts.CloneAddr, doer)

  113. 	if err != nil {

  114. 		return nil, err

  115. 	}

  116. 	if opts.LFS && len(opts.LFSEndpoint) > 0 {

  117. 		err := IsMigrateURLAllowed(opts.LFSEndpoint, doer)

  118. 		if err != nil {

  119. 			return nil, err

  120. 		}

  121. 	}

  122. 	downloader, err := newDownloader(ctx, ownerName, opts)

  123. 	if err != nil {

  124. 		return nil, err

  125. 	}

  126. 

  127. 	uploader := NewGiteaLocalUploader(ctx, doer, ownerName, opts.RepoName)

  128. 	uploader.gitServiceType = opts.GitServiceType

  129. 

  130. 	if err := migrateRepository(ctx, doer, downloader, uploader, opts, messenger); err != nil {

  131. 		if err1 := uploader.Rollback(); err1 != nil {

  132. 			log.Error("rollback failed: %v", err1)

  133. 		}

  134. 		if err2 := system_model.CreateRepositoryNotice(fmt.Sprintf("Migrate repository from %s failed: %v", opts.OriginalURL, err)); err2 != nil {

  135. 			log.Error("create respotiry notice failed: ", err2)

  136. 		}

  137. 		return nil, err

  138. 	}

  139. 	return uploader.repo, nil

  140. }

  141. 

  142. func newDownloader(ctx context.Context, ownerName string, opts base.MigrateOptions) (base.Downloader, error) {

  143. 	var (

  144. 		downloader base.Downloader

  145. 		err        error

  146. 	)

  147. 

  148. 	for _, factory := range factories {

  149. 		if factory.GitServiceType() == opts.GitServiceType {

  150. 			downloader, err = factory.New(ctx, opts)

  151. 			if err != nil {

  152. 				return nil, err

  153. 			}

  154. 			break

  155. 		}

  156. 	}

  157. 

  158. 	if downloader == nil {

  159. 		opts.Wiki = true

  160. 		opts.Milestones = false

  161. 		opts.Labels = false

  162. 		opts.Releases = false

  163. 		opts.Comments = false

  164. 		opts.Issues = false

  165. 		opts.PullRequests = false

  166. 		downloader = NewPlainGitDownloader(ownerName, opts.RepoName, opts.CloneAddr)

  167. 		log.Trace("Will migrate from git: %s", opts.OriginalURL)

  168. 	}

  169. 

  170. 	if setting.Migrations.MaxAttempts > 1 {

  171. 		downloader = base.NewRetryDownloader(ctx, downloader, setting.Migrations.MaxAttempts, setting.Migrations.RetryBackoff)

  172. 	}

  173. 	return downloader, nil

  174. }

  175. 

  176. // migrateRepository will download information and then upload it to Uploader, this is a simple

  177. // process for small repository. For a big repository, save all the data to disk

  178. // before upload is better

  179. func migrateRepository(ctx context.Context, doer *user_model.User, downloader base.Downloader, uploader base.Uploader, opts base.MigrateOptions, messenger base.Messenger) error {

  180. 	if messenger == nil {

  181. 		messenger = base.NilMessenger

  182. 	}

  183. 

  184. 	repo, err := downloader.GetRepoInfo()

  185. 	if err != nil {

  186. 		if !base.IsErrNotSupported(err) {

  187. 			return err

  188. 		}

  189. 		log.Info("migrating repo infos is not supported, ignored")

  190. 	}

  191. 	repo.IsPrivate = opts.Private

  192. 	repo.IsMirror = opts.Mirror

  193. 	if opts.Description != "" {

  194. 		repo.Description = opts.Description

  195. 	}

  196. 	if repo.CloneURL, err = downloader.FormatCloneURL(opts, repo.CloneURL); err != nil {

  197. 		return err

  198. 	}

  199. 

  200. 	// SECURITY: If the downloader is not a RepositoryRestorer then we need to recheck the CloneURL

  201. 	if _, ok := downloader.(*RepositoryRestorer); !ok {

  202. 		// Now the clone URL can be rewritten by the downloader so we must recheck

  203. 		if err := IsMigrateURLAllowed(repo.CloneURL, doer); err != nil {

  204. 			return err

  205. 		}

  206. 

  207. 		// SECURITY: Ensure that we haven't been redirected from an external to a local filesystem

  208. 		// Now we know all of these must parse

  209. 		cloneAddrURL, _ := url.Parse(opts.CloneAddr)

  210. 		cloneURL, _ := url.Parse(repo.CloneURL)

  211. 

  212. 		if cloneURL.Scheme == "file" || cloneURL.Scheme == "" {

  213. 			if cloneAddrURL.Scheme != "file" && cloneAddrURL.Scheme != "" {

  214. 				return fmt.Errorf("repo info has changed from external to local filesystem")

  215. 			}

  216. 		}

  217. 

  218. 		// We don't actually need to check the OriginalURL as it isn't used anywhere

  219. 	}

  220. 

  221. 	log.Trace("migrating git data from %s", repo.CloneURL)

  222. 	messenger("repo.migrate.migrating_git")

  223. 	if err = uploader.CreateRepo(repo, opts); err != nil {

  224. 		return err

  225. 	}

  226. 	defer uploader.Close()

  227. 

  228. 	log.Trace("migrating topics")

  229. 	messenger("repo.migrate.migrating_topics")

  230. 	topics, err := downloader.GetTopics()

  231. 	if err != nil {

  232. 		if !base.IsErrNotSupported(err) {

  233. 			return err

  234. 		}

  235. 		log.Warn("migrating topics is not supported, ignored")

  236. 	}

  237. 	if len(topics) != 0 {

  238. 		if err = uploader.CreateTopics(topics...); err != nil {

  239. 			return err

  240. 		}

  241. 	}

  242. 

  243. 	if opts.Milestones {

  244. 		log.Trace("migrating milestones")

  245. 		messenger("repo.migrate.migrating_milestones")

  246. 		milestones, err := downloader.GetMilestones()

  247. 		if err != nil {

  248. 			if !base.IsErrNotSupported(err) {

  249. 				return err

  250. 			}

  251. 			log.Warn("migrating milestones is not supported, ignored")

  252. 		}

  253. 

  254. 		msBatchSize := uploader.MaxBatchInsertSize("milestone")

  255. 		for len(milestones) > 0 {

  256. 			if len(milestones) < msBatchSize {

  257. 				msBatchSize = len(milestones)

  258. 			}

  259. 

  260. 			if err := uploader.CreateMilestones(milestones...); err != nil {

  261. 				return err

  262. 			}

  263. 			milestones = milestones[msBatchSize:]

  264. 		}

  265. 	}

  266. 

  267. 	if opts.Labels {

  268. 		log.Trace("migrating labels")

  269. 		messenger("repo.migrate.migrating_labels")

  270. 		labels, err := downloader.GetLabels()

  271. 		if err != nil {

  272. 			if !base.IsErrNotSupported(err) {

  273. 				return err

  274. 			}

  275. 			log.Warn("migrating labels is not supported, ignored")

  276. 		}

  277. 

  278. 		lbBatchSize := uploader.MaxBatchInsertSize("label")

  279. 		for len(labels) > 0 {

  280. 			if len(labels) < lbBatchSize {

  281. 				lbBatchSize = len(labels)

  282. 			}

  283. 

  284. 			if err := uploader.CreateLabels(labels[:lbBatchSize]...); err != nil {

  285. 				return err

  286. 			}

  287. 			labels = labels[lbBatchSize:]

  288. 		}

  289. 	}

  290. 

  291. 	if opts.Releases {

  292. 		log.Trace("migrating releases")

  293. 		messenger("repo.migrate.migrating_releases")

  294. 		releases, err := downloader.GetReleases()

  295. 		if err != nil {

  296. 			if !base.IsErrNotSupported(err) {

  297. 				return err

  298. 			}

  299. 			log.Warn("migrating releases is not supported, ignored")

  300. 		}

  301. 

  302. 		relBatchSize := uploader.MaxBatchInsertSize("release")

  303. 		for len(releases) > 0 {

  304. 			if len(releases) < relBatchSize {

  305. 				relBatchSize = len(releases)

  306. 			}

  307. 

  308. 			if err = uploader.CreateReleases(releases[:relBatchSize]...); err != nil {

  309. 				return err

  310. 			}

  311. 			releases = releases[relBatchSize:]

  312. 		}

  313. 

  314. 		// Once all releases (if any) are inserted, sync any remaining non-release tags

  315. 		if err = uploader.SyncTags(); err != nil {

  316. 			return err

  317. 		}

  318. 	}

  319. 

  320. 	var (

  321. 		commentBatchSize = uploader.MaxBatchInsertSize("comment")

  322. 		reviewBatchSize  = uploader.MaxBatchInsertSize("review")

  323. 	)

  324. 

  325. 	supportAllComments := downloader.SupportGetRepoComments()

  326. 

  327. 	if opts.Issues {

  328. 		log.Trace("migrating issues and comments")

  329. 		messenger("repo.migrate.migrating_issues")

  330. 		issueBatchSize := uploader.MaxBatchInsertSize("issue")

  331. 

  332. 		for i := 1; ; i++ {

  333. 			issues, isEnd, err := downloader.GetIssues(i, issueBatchSize)

  334. 			if err != nil {

  335. 				if !base.IsErrNotSupported(err) {

  336. 					return err

  337. 				}

  338. 				log.Warn("migrating issues is not supported, ignored")

  339. 				break

  340. 			}

  341. 

  342. 			if err := uploader.CreateIssues(issues...); err != nil {

  343. 				return err

  344. 			}

  345. 

  346. 			if opts.Comments && !supportAllComments {

  347. 				allComments := make([]*base.Comment, 0, commentBatchSize)

  348. 				for _, issue := range issues {

  349. 					log.Trace("migrating issue %d's comments", issue.Number)

  350. 					comments, _, err := downloader.GetComments(issue)

  351. 					if err != nil {

  352. 						if !base.IsErrNotSupported(err) {

  353. 							return err

  354. 						}

  355. 						log.Warn("migrating comments is not supported, ignored")

  356. 					}

  357. 

  358. 					allComments = append(allComments, comments...)

  359. 

  360. 					if len(allComments) >= commentBatchSize {

  361. 						if err = uploader.CreateComments(allComments[:commentBatchSize]...); err != nil {

  362. 							return err

  363. 						}

  364. 

  365. 						allComments = allComments[commentBatchSize:]

  366. 					}

  367. 				}

  368. 

  369. 				if len(allComments) > 0 {

  370. 					if err = uploader.CreateComments(allComments...); err != nil {

  371. 						return err

  372. 					}

  373. 				}

  374. 			}

  375. 

  376. 			if isEnd {

  377. 				break

  378. 			}

  379. 		}

  380. 	}

  381. 

  382. 	if opts.PullRequests {

  383. 		log.Trace("migrating pull requests and comments")

  384. 		messenger("repo.migrate.migrating_pulls")

  385. 		prBatchSize := uploader.MaxBatchInsertSize("pullrequest")

  386. 		for i := 1; ; i++ {

  387. 			prs, isEnd, err := downloader.GetPullRequests(i, prBatchSize)

  388. 			if err != nil {

  389. 				if !base.IsErrNotSupported(err) {

  390. 					return err

  391. 				}

  392. 				log.Warn("migrating pull requests is not supported, ignored")

  393. 				break

  394. 			}

  395. 

  396. 			if err := uploader.CreatePullRequests(prs...); err != nil {

  397. 				return err

  398. 			}

  399. 

  400. 			if opts.Comments {

  401. 				if !supportAllComments {

  402. 					// plain comments

  403. 					allComments := make([]*base.Comment, 0, commentBatchSize)

  404. 					for _, pr := range prs {

  405. 						log.Trace("migrating pull request %d's comments", pr.Number)

  406. 						comments, _, err := downloader.GetComments(pr)

  407. 						if err != nil {

  408. 							if !base.IsErrNotSupported(err) {

  409. 								return err

  410. 							}

  411. 							log.Warn("migrating comments is not supported, ignored")

  412. 						}

  413. 

  414. 						allComments = append(allComments, comments...)

  415. 

  416. 						if len(allComments) >= commentBatchSize {

  417. 							if err = uploader.CreateComments(allComments[:commentBatchSize]...); err != nil {

  418. 								return err

  419. 							}

  420. 							allComments = allComments[commentBatchSize:]

  421. 						}

  422. 					}

  423. 					if len(allComments) > 0 {

  424. 						if err = uploader.CreateComments(allComments...); err != nil {

  425. 							return err

  426. 						}

  427. 					}

  428. 				}

  429. 

  430. 				// migrate reviews

  431. 				allReviews := make([]*base.Review, 0, reviewBatchSize)

  432. 				for _, pr := range prs {

  433. 					reviews, err := downloader.GetReviews(pr)

  434. 					if err != nil {

  435. 						if !base.IsErrNotSupported(err) {

  436. 							return err

  437. 						}

  438. 						log.Warn("migrating reviews is not supported, ignored")

  439. 						break

  440. 					}

  441. 

  442. 					allReviews = append(allReviews, reviews...)

  443. 

  444. 					if len(allReviews) >= reviewBatchSize {

  445. 						if err = uploader.CreateReviews(allReviews[:reviewBatchSize]...); err != nil {

  446. 							return err

  447. 						}

  448. 						allReviews = allReviews[reviewBatchSize:]

  449. 					}

  450. 				}

  451. 				if len(allReviews) > 0 {

  452. 					if err = uploader.CreateReviews(allReviews...); err != nil {

  453. 						return err

  454. 					}

  455. 				}

  456. 			}

  457. 

  458. 			if isEnd {

  459. 				break

  460. 			}

  461. 		}

  462. 	}

  463. 

  464. 	if opts.Comments && supportAllComments {

  465. 		log.Trace("migrating comments")

  466. 		for i := 1; ; i++ {

  467. 			comments, isEnd, err := downloader.GetAllComments(i, commentBatchSize)

  468. 			if err != nil {

  469. 				return err

  470. 			}

  471. 

  472. 			if err := uploader.CreateComments(comments...); err != nil {

  473. 				return err

  474. 			}

  475. 

  476. 			if isEnd {

  477. 				break

  478. 			}

  479. 		}

  480. 	}

  481. 

  482. 	return uploader.Finish()

  483. }

  484. 

  485. // Init migrations service

  486. func Init() error {

  487. 	// TODO: maybe we can deprecate these legacy ALLOWED_DOMAINS/ALLOW_LOCALNETWORKS/BLOCKED_DOMAINS, use ALLOWED_HOST_LIST/BLOCKED_HOST_LIST instead

  488. 

  489. 	blockList = hostmatcher.ParseSimpleMatchList("migrations.BLOCKED_DOMAINS", setting.Migrations.BlockedDomains)

  490. 

  491. 	allowList = hostmatcher.ParseSimpleMatchList("migrations.ALLOWED_DOMAINS/ALLOW_LOCALNETWORKS", setting.Migrations.AllowedDomains)

  492. 	if allowList.IsEmpty() {

  493. 		// the default policy is that migration module can access external hosts

  494. 		allowList.AppendBuiltin(hostmatcher.MatchBuiltinExternal)

  495. 	}

  496. 	if setting.Migrations.AllowLocalNetworks {

  497. 		allowList.AppendBuiltin(hostmatcher.MatchBuiltinPrivate)

  498. 		allowList.AppendBuiltin(hostmatcher.MatchBuiltinLoopback)

  499. 	}

  500. 	// TODO: at the moment, if ALLOW_LOCALNETWORKS=false, ALLOWED_DOMAINS=domain.com, and domain.com has IP 127.0.0.1, then it's still allowed.

  501. 	// if we want to block such case, the private&loopback should be added to the blockList when ALLOW_LOCALNETWORKS=false

  502. 

  503. 	if setting.Proxy.Enabled && setting.Proxy.ProxyURLFixed != nil {

  504. 		allowList.AppendPattern(setting.Proxy.ProxyURLFixed.Host)

  505. 	}

  506. 

  507. 	return nil

  508. }