2021-02-22 17:27:13 +05:30
|
|
|
package upload
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"bytes"
|
|
|
|
|
"context"
|
|
|
|
|
"fmt"
|
|
|
|
|
"io/ioutil"
|
|
|
|
|
"mime/multipart"
|
|
|
|
|
"net/http"
|
|
|
|
|
|
2022-05-07 20:08:51 +05:30
|
|
|
"github.com/golang-jwt/jwt/v4"
|
|
|
|
|
|
2021-10-27 15:23:28 +05:30
|
|
|
"gitlab.com/gitlab-org/gitlab/workhorse/internal/api"
|
|
|
|
|
"gitlab.com/gitlab-org/gitlab/workhorse/internal/helper"
|
2022-05-07 20:08:51 +05:30
|
|
|
"gitlab.com/gitlab-org/gitlab/workhorse/internal/upload/destination"
|
2021-10-27 15:23:28 +05:30
|
|
|
"gitlab.com/gitlab-org/gitlab/workhorse/internal/upload/exif"
|
|
|
|
|
"gitlab.com/gitlab-org/gitlab/workhorse/internal/zipartifacts"
|
2021-02-22 17:27:13 +05:30
|
|
|
)
|
|
|
|
|
|
2022-05-07 20:08:51 +05:30
|
|
|
const RewrittenFieldsHeader = "Gitlab-Workhorse-Multipart-Fields"
|
|
|
|
|
|
|
|
|
|
type PreAuthorizer interface {
|
|
|
|
|
PreAuthorizeHandler(next api.HandleFunc, suffix string) http.Handler
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type MultipartClaims struct {
|
|
|
|
|
RewrittenFields map[string]string `json:"rewritten_fields"`
|
|
|
|
|
jwt.StandardClaims
|
|
|
|
|
}
|
|
|
|
|
|
2022-04-04 11:22:00 +05:30
|
|
|
// MultipartFormProcessor abstracts away implementation differences
|
|
|
|
|
// between generic MIME multipart file uploads and CI artifact uploads.
|
2021-02-22 17:27:13 +05:30
|
|
|
type MultipartFormProcessor interface {
|
2022-05-07 20:08:51 +05:30
|
|
|
ProcessFile(ctx context.Context, formName string, file *destination.FileHandler, writer *multipart.Writer) error
|
2021-02-22 17:27:13 +05:30
|
|
|
ProcessField(ctx context.Context, formName string, writer *multipart.Writer) error
|
|
|
|
|
Finalize(ctx context.Context) error
|
|
|
|
|
Name() string
|
2021-10-29 20:43:33 +05:30
|
|
|
Count() int
|
2021-02-22 17:27:13 +05:30
|
|
|
}
|
|
|
|
|
|
2022-05-07 20:08:51 +05:30
|
|
|
// interceptMultipartFiles is the core of the implementation of
|
|
|
|
|
// Multipart.
|
|
|
|
|
func interceptMultipartFiles(w http.ResponseWriter, r *http.Request, h http.Handler, preauth *api.Response, filter MultipartFormProcessor, opts *destination.UploadOpts) {
|
2021-02-22 17:27:13 +05:30
|
|
|
var body bytes.Buffer
|
|
|
|
|
writer := multipart.NewWriter(&body)
|
|
|
|
|
defer writer.Close()
|
|
|
|
|
|
|
|
|
|
// Rewrite multipart form data
|
|
|
|
|
err := rewriteFormFilesFromMultipart(r, writer, preauth, filter, opts)
|
|
|
|
|
if err != nil {
|
|
|
|
|
switch err {
|
|
|
|
|
case ErrInjectedClientParam:
|
|
|
|
|
helper.CaptureAndFail(w, r, err, "Bad Request", http.StatusBadRequest)
|
2022-01-26 12:08:38 +05:30
|
|
|
case ErrTooManyFilesUploaded:
|
|
|
|
|
helper.CaptureAndFail(w, r, err, err.Error(), http.StatusBadRequest)
|
2021-02-22 17:27:13 +05:30
|
|
|
case http.ErrNotMultipart:
|
|
|
|
|
h.ServeHTTP(w, r)
|
2022-05-07 20:08:51 +05:30
|
|
|
case destination.ErrEntityTooLarge:
|
2021-02-22 17:27:13 +05:30
|
|
|
helper.RequestEntityTooLarge(w, r, err)
|
|
|
|
|
case zipartifacts.ErrBadMetadata:
|
|
|
|
|
helper.RequestEntityTooLarge(w, r, err)
|
|
|
|
|
case exif.ErrRemovingExif:
|
|
|
|
|
helper.CaptureAndFail(w, r, err, "Failed to process image", http.StatusUnprocessableEntity)
|
|
|
|
|
default:
|
|
|
|
|
helper.Fail500(w, r, fmt.Errorf("handleFileUploads: extract files from multipart: %v", err))
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Close writer
|
|
|
|
|
writer.Close()
|
|
|
|
|
|
|
|
|
|
// Hijack the request
|
|
|
|
|
r.Body = ioutil.NopCloser(&body)
|
|
|
|
|
r.ContentLength = int64(body.Len())
|
|
|
|
|
r.Header.Set("Content-Type", writer.FormDataContentType())
|
|
|
|
|
|
|
|
|
|
if err := filter.Finalize(r.Context()); err != nil {
|
|
|
|
|
helper.Fail500(w, r, fmt.Errorf("handleFileUploads: Finalize: %v", err))
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Proxy the request
|
|
|
|
|
h.ServeHTTP(w, r)
|
|
|
|
|
}
|
