We use cookies to ensure you get the best experience on our website
Sākums Izpētīt Palīdzība
Reģistrēties Pierakstīties
0ct0pu5
/
g-node-gin
1
0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne
Atzars: master
Atzari Tagi
g-node-gin
/
internal
/
db
/
db_gin.go

db_gin.go 6.1 KB
Patstāvīgā saite Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218 
  1. package db
    2. 

  2. 

  3. import (
    4. 

  4. 	"bufio"
    5. 

  5. 	"encoding/json"
    6. 

  6. 	"fmt"
    7. 

  7. 	"net/http"
    8. 

  8. 	"os"
    9. 

  9. 	"path/filepath"
    10. 

  10. 	"regexp"
    11. 

  11. 	"strings"
    12. 

  12. 

  13. 	"github.com/G-Node/git-module"
    14. 

  14. 	"github.com/G-Node/gogs/internal/conf"
    15. 

  15. 	"github.com/G-Node/libgin/libgin"
    16. 

  16. 	"github.com/G-Node/libgin/libgin/annex"
    17. 

  17. 	"github.com/unknwon/com"
    18. 

  18. 	"golang.org/x/crypto/bcrypt"
    19. 

  19. 	log "gopkg.in/clog.v1"
    20. 

  20. )
    21. 

  21. 

  22. // StartIndexing sends an indexing request to the configured indexing service
    23. 

  23. // for a repository.
    24. 

  24. func StartIndexing(repo Repository) {
    25. 

  25. 	go func() {
    26. 

  26. 		if conf.Search.IndexURL == "" {
    27. 

  27. 			log.Trace("Indexing not enabled")
    28. 

  28. 			return
    29. 

  29. 		}
    30. 

  30. 		log.Trace("Indexing repository %d", repo.ID)
    31. 

  31. 		ireq := libgin.IndexRequest{
    32. 

  32. 			RepoID:   repo.ID,
    33. 

  33. 			RepoPath: repo.FullName(),
    34. 

  34. 		}
    35. 

  35. 		data, err := json.Marshal(ireq)
    36. 

  36. 		if err != nil {
    37. 

  37. 			log.Error(2, "Could not marshal index request: %v", err)
    38. 

  38. 			return
    39. 

  39. 		}
    40. 

  40. 		key := []byte(conf.Search.Key)
    41. 

  41. 		encdata, err := libgin.EncryptString(key, string(data))
    42. 

  42. 		if err != nil {
    43. 

  43. 			log.Error(2, "Could not encrypt index request: %v", err)
    44. 

  44. 		}
    45. 

  45. 		req, err := http.NewRequest(http.MethodPost, conf.Search.IndexURL, strings.NewReader(encdata))
    46. 

  46. 		if err != nil {
    47. 

  47. 			log.Error(2, "Error creating index request")
    48. 

  48. 		}
    49. 

  49. 		client := http.Client{}
    50. 

  50. 		resp, err := client.Do(req)
    51. 

  51. 		if err != nil || resp.StatusCode != http.StatusOK {
    52. 

  52. 			log.Error(2, "Error submitting index request for [%d: %s]: %v", repo.ID, repo.FullName(), err)
    53. 

  53. 			return
    54. 

  54. 		}
    55. 

  55. 	}()
    56. 

  56. }
    57. 

  57. 

  58. // RebuildIndex sends all repositories to the indexing service to be indexed.
    59. 

  59. func RebuildIndex() error {
    60. 

  60. 	indexurl := conf.Search.IndexURL
    61. 

  61. 	if indexurl == "" {
    62. 

  62. 		return fmt.Errorf("Indexing service not configured")
    63. 

  63. 	}
    64. 

  64. 

  65. 	// collect all repo ID -> Path mappings directly from the DB
    66. 

  66. 	repos := make(RepositoryList, 0, 100)
    67. 

  67. 	if err := x.Find(&repos); err != nil {
    68. 

  68. 		return fmt.Errorf("get all repos: %v", err)
    69. 

  69. 	}
    70. 

  70. 	log.Trace("Found %d repositories to index", len(repos))
    71. 

  71. 	for _, repo := range repos {
    72. 

  72. 		StartIndexing(*repo)
    73. 

  73. 	}
    74. 

  74. 	log.Trace("Rebuilding search index")
    75. 

  75. 	return nil
    76. 

  76. }
    77. 

  77. 

  78. func annexUninit(path string) {
    79. 

  79. 	// walker sets the permission for any file found to 0660, to allow deletion
    80. 

  80. 	var mode os.FileMode
    81. 

  81. 	walker := func(path string, info os.FileInfo, err error) error {
    82. 

  82. 		if info == nil {
    83. 

  83. 			return nil
    84. 

  84. 		}
    85. 

  85. 

  86. 		mode = 0660
    87. 

  87. 		if info.IsDir() {
    88. 

  88. 			mode = 0770
    89. 

  89. 		}
    90. 

  90. 

  91. 		if err := os.Chmod(path, mode); err != nil {
    92. 

  92. 			log.Error(3, "failed to change permissions on '%s': %v", path, err)
    93. 

  93. 		}
    94. 

  94. 		return nil
    95. 

  95. 	}
    96. 

  96. 

  97. 	log.Trace("Uninit annex at '%s'", path)
    98. 

  98. 	if msg, err := annex.Uninit(path); err != nil {
    99. 

  99. 		log.Error(3, "uninit failed: %v (%s)", err, msg)
    100. 

  100. 		if werr := filepath.Walk(path, walker); werr != nil {
    101. 

  101. 			log.Error(3, "file permission change failed: %v", werr)
    102. 

  102. 		}
    103. 

  103. 	}
    104. 

  104. }
    105. 

  105. 

  106. func annexSetup(path string) {
    107. 

  107. 	log.Trace("Running annex add (with filesize filter) in '%s'", path)
    108. 

  108. 

  109. 	// Initialise annex in case it's a new repository
    110. 

  110. 	if msg, err := annex.Init(path); err != nil {
    111. 

  111. 		log.Error(2, "Annex init failed: %v (%s)", err, msg)
    112. 

  112. 		return
    113. 

  113. 	}
    114. 

  114. 

  115. 	// Upgrade to v8 in case the directory was here before and wasn't cleaned up properly
    116. 

  116. 	if msg, err := annex.Upgrade(path); err != nil {
    117. 

  117. 		log.Error(2, "Annex upgrade failed: %v (%s)", err, msg)
    118. 

  118. 		return
    119. 

  119. 	}
    120. 

  120. 

  121. 	// Enable addunlocked for annex v8
    122. 

  122. 	if msg, err := annex.SetAddUnlocked(path); err != nil {
    123. 

  123. 		log.Error(2, "Failed to set 'addunlocked' annex option: %v (%s)", err, msg)
    124. 

  124. 	}
    125. 

  125. 

  126. 	// Set MD5 as default backend
    127. 

  127. 	if msg, err := annex.MD5(path); err != nil {
    128. 

  128. 		log.Error(2, "Failed to set default backend to 'MD5': %v (%s)", err, msg)
    129. 

  129. 	}
    130. 

  130. 

  131. 	// Set size filter in config
    132. 

  132. 	if msg, err := annex.SetAnnexSizeFilter(path, conf.Repository.Upload.AnnexFileMinSize*annex.MEGABYTE); err != nil {
    133. 

  133. 		log.Error(2, "Failed to set size filter for annex: %v (%s)", err, msg)
    134. 

  134. 	}
    135. 

  135. }
    136. 

  136. 

  137. func annexAdd(repoPath string, all bool, files ...string) error {
    138. 

  138. 	cmd := git.NewCommand("annex", "add")
    139. 

  139. 	if all {
    140. 

  140. 		cmd.AddArguments(".")
    141. 

  141. 	}
    142. 

  142. 	_, err := cmd.AddArguments(files...).RunInDir(repoPath)
    143. 

  143. 	return err
    144. 

  144. }
    145. 

  145. 

  146. func annexUpload(repoPath, remote string) error {
    147. 

  147. 	log.Trace("Synchronising annex info")
    148. 

  148. 	if msg, err := git.NewCommand("annex", "sync").RunInDir(repoPath); err != nil {
    149. 

  149. 		log.Error(2, "git-annex sync failed: %v (%s)", err, msg)
    150. 

  150. 	}
    151. 

  151. 	log.Trace("Uploading annexed data")
    152. 

  152. 	cmd := git.NewCommand("annex", "copy", fmt.Sprintf("--to=%s", remote), "--all")
    153. 

  153. 	if msg, err := cmd.RunInDir(repoPath); err != nil {
    154. 

  154. 		log.Error(2, "git-annex copy failed: %v (%s)", err, msg)
    155. 

  155. 		return fmt.Errorf("git annex copy [%s]", repoPath)
    156. 

  156. 	}
    157. 

  157. 	return nil
    158. 

  158. }
    159. 

  159. 

  160. // isAddressAllowed returns true if the email address is allowed to sign up
    161. 

  161. // based on the regular expressions found in the email filter file
    162. 

  162. // (custom/addressfilters).
    163. 

  163. // In case of errors (opening or reading file) or no matches, the function
    164. 

  164. // defaults to 'true'.
    165. 

  165. func isAddressAllowed(email string) bool {
    166. 

  166. 	fpath := filepath.Join(conf.CustomDir(), "addressfilters")
    167. 

  167. 	if !com.IsExist(fpath) {
    168. 

  168. 		// file doesn't exist: default allow everything
    169. 

  169. 		return true
    170. 

  170. 	}
    171. 

  171. 

  172. 	f, err := os.Open(fpath)
    173. 

  173. 	if err != nil {
    174. 

  174. 		log.Error(2, "Failed to open file %q: %v", fpath, err)
    175. 

  175. 		// file read error: default allow everything
    176. 

  176. 		return true
    177. 

  177. 	}
    178. 

  178. 	defer f.Close()
    179. 

  179. 

  180. 	emailBytes := []byte(email)
    181. 

  181. 	scanner := bufio.NewScanner(f)
    182. 

  182. 	for scanner.Scan() {
    183. 

  183. 		// Check provided email address against each line regex
    184. 

  184. 		// Failure to match any line returns true (allowed)
    185. 

  185. 		// Matching a line prefixed with + returns true (allowed)
    186. 

  186. 		// Matching a line prefixed with - returns false (blocked)
    187. 

  187. 		// Erroneous patterns are logged and ignored
    188. 

  188. 		var allow bool
    189. 

  189. 		line := scanner.Text()
    190. 

  190. 		if line[0] == '-' {
    191. 

  191. 			allow = false
    192. 

  192. 		} else if line[0] == '+' {
    193. 

  193. 			allow = true
    194. 

  194. 		} else {
    195. 

  195. 			log.Error(2, "Invalid line in addressfilters: %s", line)
    196. 

  196. 			log.Error(2, "Prefix invalid (must be '-' or '+')")
    197. 

  197. 			continue
    198. 

  198. 		}
    199. 

  199. 		pattern := strings.TrimSpace(line[1:])
    200. 

  200. 		match, err := regexp.Match(pattern, emailBytes)
    201. 

  201. 		if err != nil {
    202. 

  202. 			log.Error(2, "Invalid line in addressfilters: %s", line)
    203. 

  203. 			log.Error(2, "Invalid pattern: %v", err)
    204. 

  204. 		}
    205. 

  205. 		if match {
    206. 

  206. 			log.Trace("New user email %q matched filter rule %q (Allow: %t)", email, line, allow)
    207. 

  207. 			return allow
    208. 

  208. 		}
    209. 

  209. 	}
    210. 

  210. 

  211. 	// No match: Default to allow
    212. 

  212. 	return true
    213. 

  213. }
    214. 

  214. 

  215. func (u *User) OldGinVerifyPassword(plain string) bool {
    216. 

  216. 	err := bcrypt.CompareHashAndPassword([]byte(u.Passwd), []byte(plain))
    217. 

  217. 	return err == nil
    218. 

  218. }
    219.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5