gitlab-org--gitlab-foss/lib/gitlab/gpg.rb

# frozen_string_literal: true

module Gitlab
  module Gpg
    extend self

    MUTEX = Mutex.new

    module CurrentKeyChain
      extend self

      def add(key)
        GPGME::Key.import(key)
      end

      def fingerprints_from_key(key)
        import = GPGME::Key.import(key)

        return [] if import.imported == 0

        import.imports.map(&:fingerprint)
      end
    end

    def fingerprints_from_key(key)
      using_tmp_keychain do
        CurrentKeyChain.fingerprints_from_key(key)
      end
    end

    def primary_keyids_from_key(key)
      using_tmp_keychain do
        fingerprints = CurrentKeyChain.fingerprints_from_key(key)

        GPGME::Key.find(:public, fingerprints).map { |raw_key| raw_key.primary_subkey.keyid }
      end
    end

    def subkeys_from_key(key)
      using_tmp_keychain do
        fingerprints = CurrentKeyChain.fingerprints_from_key(key)
        raw_keys     = GPGME::Key.find(:public, fingerprints)

        raw_keys.each_with_object({}) do |raw_key, grouped_subkeys|
          primary_subkey_id = raw_key.primary_subkey.keyid

          grouped_subkeys[primary_subkey_id] = raw_key.subkeys[1..-1].map do |s|
            { keyid: s.keyid, fingerprint: s.fingerprint }
          end
        end
      end
    end

    def user_infos_from_key(key)
      using_tmp_keychain do
        fingerprints = CurrentKeyChain.fingerprints_from_key(key)

        GPGME::Key.find(:public, fingerprints).flat_map do |raw_key|
          raw_key.uids.each_with_object([]) do |uid, arr|
            name = uid.name.force_encoding('UTF-8')
            email = uid.email.force_encoding('UTF-8')
            arr << { name: name, email: email.downcase } if name.valid_encoding? && email.valid_encoding?
          end
        end
      end
    end

    # Allows thread safe switching of temporary keychain files
    #
    # 1. The current thread may use nesting of temporary keychain
    # 2. Another thread needs to wait for the lock to be released
    def using_tmp_keychain(&block)
      if MUTEX.locked? && MUTEX.owned?
        optimistic_using_tmp_keychain(&block)
      else
        if Gitlab.rails5?
          ActiveSupport::Dependencies.interlock.permit_concurrent_loads do
            MUTEX.synchronize do
              optimistic_using_tmp_keychain(&block)
            end
          end
        else
          MUTEX.synchronize do
            optimistic_using_tmp_keychain(&block)
          end
        end
      end
    end

    # 1. Returns the custom home directory if one has been set by calling
    #    `GPGME::Engine.home_dir=`
    # 2. Returns the default home directory otherwise
    def current_home_dir
      GPGME::Engine.info.first.home_dir || GPGME::Engine.dirinfo('homedir')
    end

    private

    def optimistic_using_tmp_keychain
      previous_dir = current_home_dir
      tmp_dir = Dir.mktmpdir
      GPGME::Engine.home_dir = tmp_dir
      yield
    ensure
      # Ignore any errors when removing the tmp directory, as we may run into a
      # race condition:
      # The `gpg-agent` agent process may clean up some files as well while
      # `FileUtils.remove_entry` is iterating the directory and removing all
      # its contained files and directories recursively, which could raise an
      # error.
      FileUtils.remove_entry(tmp_dir, true)
      GPGME::Engine.home_dir = previous_dir
    end
  end
end
Enable frozen string for lib/gitlab/*.rb 2018-10-22 07:00:50 +00:00			`# frozen_string_literal: true`

extract gpg functionality to lib class 2017-02-22 16:20:42 +00:00			`module Gitlab`
			`module Gpg`
			`extend self`

use mutex for keychain interaction setting of the gpg home directory is not thread safe, as the directoy gets stored on the class. if multiple threads change the directory at the same time, one of the threads will be working in the wrong directory. 2017-08-10 18:33:24 +00:00			`MUTEX = Mutex.new`

verify gpg commit using tmp keyring and db query 2017-06-13 12:26:42 +00:00			`module CurrentKeyChain`
			`extend self`

			`def add(key)`
			`GPGME::Key.import(key)`
			`end`

extract common method 2017-07-06 09:55:56 +00:00			`def fingerprints_from_key(key)`
extract gpg functionality to lib class 2017-02-22 16:20:42 +00:00			`import = GPGME::Key.import(key)`

			`return [] if import.imported == 0`

			`import.imports.map(&:fingerprint)`
			`end`
			`end`

extract common method 2017-07-06 09:55:56 +00:00			`def fingerprints_from_key(key)`
add primary keyid attribute to gpg keys 2017-06-13 11:46:43 +00:00			`using_tmp_keychain do`
extract common method 2017-07-06 09:55:56 +00:00			`CurrentKeyChain.fingerprints_from_key(key)`
			`end`
			`end`
add primary keyid attribute to gpg keys 2017-06-13 11:46:43 +00:00
extract common method 2017-07-06 09:55:56 +00:00			`def primary_keyids_from_key(key)`
			`using_tmp_keychain do`
			`fingerprints = CurrentKeyChain.fingerprints_from_key(key)`
add primary keyid attribute to gpg keys 2017-06-13 11:46:43 +00:00
			`GPGME::Key.find(:public, fingerprints).map { \|raw_key\| raw_key.primary_subkey.keyid }`
			`end`
			`end`

Process and create subkeys when a new GPG key is created 2017-09-27 00:42:23 +00:00			`def subkeys_from_key(key)`
			`using_tmp_keychain do`
Address feedback from last code review 2017-09-29 22:55:36 +00:00			`fingerprints = CurrentKeyChain.fingerprints_from_key(key)`
			`raw_keys = GPGME::Key.find(:public, fingerprints)`
Process and create subkeys when a new GPG key is created 2017-09-27 00:42:23 +00:00
Address feedback from last code review 2017-09-29 22:55:36 +00:00			`raw_keys.each_with_object({}) do \|raw_key, grouped_subkeys\|`
Process and create subkeys when a new GPG key is created 2017-09-27 00:42:23 +00:00			`primary_subkey_id = raw_key.primary_subkey.keyid`

Address feedback from last code review 2017-09-29 22:55:36 +00:00			`grouped_subkeys[primary_subkey_id] = raw_key.subkeys[1..-1].map do \|s\|`
			`{ keyid: s.keyid, fingerprint: s.fingerprint }`
Process and create subkeys when a new GPG key is created 2017-09-27 00:42:23 +00:00			`end`
			`end`
			`end`
			`end`

store gpg user name and email on the signature 2017-07-13 13:22:15 +00:00			`def user_infos_from_key(key)`
email handling for gpg keys 2017-02-24 19:07:57 +00:00			`using_tmp_keychain do`
extract common method 2017-07-06 09:55:56 +00:00			`fingerprints = CurrentKeyChain.fingerprints_from_key(key)`
email handling for gpg keys 2017-02-24 19:07:57 +00:00
store gpg user name and email on the signature 2017-07-13 13:22:15 +00:00			`GPGME::Key.find(:public, fingerprints).flat_map do \|raw_key\|`
Reject GPG keys that have e-mail or names with non-valid UTF-8 encodings These were causing 500 Errors when accessing GPG keys for some users. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/47280 2018-06-05 21:39:44 +00:00			`raw_key.uids.each_with_object([]) do \|uid, arr\|`
			`name = uid.name.force_encoding('UTF-8')`
			`email = uid.email.force_encoding('UTF-8')`
			`arr << { name: name, email: email.downcase } if name.valid_encoding? && email.valid_encoding?`
			`end`
store gpg user name and email on the signature 2017-07-13 13:22:15 +00:00			`end`
email handling for gpg keys 2017-02-24 19:07:57 +00:00			`end`
			`end`

use mutex for keychain interaction setting of the gpg home directory is not thread safe, as the directoy gets stored on the class. if multiple threads change the directory at the same time, one of the threads will be working in the wrong directory. 2017-08-10 18:33:24 +00:00			`# Allows thread safe switching of temporary keychain files`
			`#`
			`# 1. The current thread may use nesting of temporary keychain`
			`# 2. Another thread needs to wait for the lock to be released`
			`def using_tmp_keychain(&block)`
			`if MUTEX.locked? && MUTEX.owned?`
			`optimistic_using_tmp_keychain(&block)`
			`else`
Permit concurrent loads in gpg keychain mutex 2018-07-28 13:47:26 +00:00			`if Gitlab.rails5?`
			`ActiveSupport::Dependencies.interlock.permit_concurrent_loads do`
			`MUTEX.synchronize do`
			`optimistic_using_tmp_keychain(&block)`
			`end`
			`end`
			`else`
			`MUTEX.synchronize do`
			`optimistic_using_tmp_keychain(&block)`
			`end`
use mutex for keychain interaction setting of the gpg home directory is not thread safe, as the directoy gets stored on the class. if multiple threads change the directory at the same time, one of the threads will be working in the wrong directory. 2017-08-10 18:33:24 +00:00			`end`
			`end`
			`end`

			`# 1. Returns the custom home directory if one has been set by calling`
			# `GPGME::Engine.home_dir=`
			`# 2. Returns the default home directory otherwise`
			`def current_home_dir`
			`GPGME::Engine.info.first.home_dir \|\| GPGME::Engine.dirinfo('homedir')`
			`end`

			`private`

			`def optimistic_using_tmp_keychain`
reset original directory in ensure 2017-08-14 10:38:08 +00:00			`previous_dir = current_home_dir`
Fix: GPG tmp dir removal race condition 2017-09-13 11:31:37 +00:00			`tmp_dir = Dir.mktmpdir`
			`GPGME::Engine.home_dir = tmp_dir`
			`yield`
reset original directory in ensure 2017-08-14 10:38:08 +00:00			`ensure`
Fix: GPG tmp dir removal race condition 2017-09-13 11:31:37 +00:00			`# Ignore any errors when removing the tmp directory, as we may run into a`
			`# race condition:`
			# The `gpg-agent` agent process may clean up some files as well while
			# `FileUtils.remove_entry` is iterating the directory and removing all
			`# its contained files and directories recursively, which could raise an`
			`# error.`
			`FileUtils.remove_entry(tmp_dir, true)`
reset original directory in ensure 2017-08-14 10:38:08 +00:00			`GPGME::Engine.home_dir = previous_dir`
extract gpg functionality to lib class 2017-02-22 16:20:42 +00:00			`end`
			`end`
			`end`