debian-mirror-gitlab/lib/gitlab/shell.rb

272 lines
8.1 KiB
Ruby
Raw Normal View History

2016-08-24 12:49:21 +05:30
require 'securerandom'
2014-09-02 18:07:02 +05:30
module Gitlab
class Shell
2017-08-17 22:00:37 +05:30
Error = Class.new(StandardError)
2014-09-02 18:07:02 +05:30
2015-12-23 02:04:40 +05:30
KeyAdder = Struct.new(:io) do
2014-09-02 18:07:02 +05:30
def add_key(id, key)
2016-09-29 09:46:39 +05:30
key = Gitlab::Shell.strip_key(key)
# Newline and tab are part of the 'protocol' used to transmit id+key to the other end
if key.include?("\t") || key.include?("\n")
raise Error.new("Invalid key: #{key.inspect}")
end
2015-10-24 18:46:33 +05:30
io.puts("#{id}\t#{key}")
2014-09-02 18:07:02 +05:30
end
end
2015-04-26 12:48:37 +05:30
class << self
2016-11-03 12:29:30 +05:30
def secret_token
@secret_token ||= begin
File.read(Gitlab.config.gitlab_shell.secret_file).chomp
end
end
def ensure_secret_token!
return if File.exist?(File.join(Gitlab.config.gitlab_shell.path, '.gitlab_shell_secret'))
generate_and_link_secret_token
end
2015-04-26 12:48:37 +05:30
def version_required
@version_required ||= File.read(Rails.root.
join('GITLAB_SHELL_VERSION')).strip
end
2016-09-29 09:46:39 +05:30
def strip_key(key)
2017-08-17 22:00:37 +05:30
key.split(/[ ]+/)[0, 2].join(' ')
2016-09-29 09:46:39 +05:30
end
2016-11-03 12:29:30 +05:30
private
# Create (if necessary) and link the secret token file
def generate_and_link_secret_token
secret_file = Gitlab.config.gitlab_shell.secret_file
shell_path = Gitlab.config.gitlab_shell.path
unless File.size?(secret_file)
# Generate a new token of 16 random hexadecimal characters and store it in secret_file.
@secret_token = SecureRandom.hex(16)
File.write(secret_file, @secret_token)
end
link_path = File.join(shell_path, '.gitlab_shell_secret')
if File.exist?(shell_path) && !File.exist?(link_path)
FileUtils.symlink(secret_file, link_path)
end
end
2015-04-26 12:48:37 +05:30
end
2014-09-02 18:07:02 +05:30
# Init new repository
#
2016-08-24 12:49:21 +05:30
# storage - project's storage path
2014-09-02 18:07:02 +05:30
# name - project path with namespace
#
# Ex.
2016-08-24 12:49:21 +05:30
# add_repository("/path/to/storage", "gitlab/gitlab-ci")
2014-09-02 18:07:02 +05:30
#
2016-08-24 12:49:21 +05:30
def add_repository(storage, name)
2015-04-26 12:48:37 +05:30
Gitlab::Utils.system_silent([gitlab_shell_projects_path,
2016-08-24 12:49:21 +05:30
'add-project', storage, "#{name}.git"])
2014-09-02 18:07:02 +05:30
end
# Import repository
#
2016-08-24 12:49:21 +05:30
# storage - project's storage path
2014-09-02 18:07:02 +05:30
# name - project path with namespace
#
# Ex.
2016-08-24 12:49:21 +05:30
# import_repository("/path/to/storage", "gitlab/gitlab-ci", "https://github.com/randx/six.git")
2014-09-02 18:07:02 +05:30
#
2016-08-24 12:49:21 +05:30
def import_repository(storage, name, url)
2017-08-17 22:00:37 +05:30
# Timeout should be less than 900 ideally, to prevent the memory killer
# to silently kill the process without knowing we are timing out here.
output, status = Popen.popen([gitlab_shell_projects_path, 'import-project',
storage, "#{name}.git", url, "#{Gitlab.config.gitlab_shell.git_timeout}"])
raise Error, output unless status.zero?
true
end
# Fetch remote for repository
#
# name - project path with namespace
# remote - remote name
# forced - should we use --force flag?
# no_tags - should we use --no-tags flag?
#
# Ex.
# fetch_remote("gitlab/gitlab-ci", "upstream")
#
def fetch_remote(storage, name, remote, forced: false, no_tags: false)
args = [gitlab_shell_projects_path, 'fetch-remote', storage, "#{name}.git", remote, "#{Gitlab.config.gitlab_shell.git_timeout}"]
args << '--force' if forced
args << '--no-tags' if no_tags
output, status = Popen.popen(args)
2015-11-26 14:37:03 +05:30
raise Error, output unless status.zero?
true
2014-09-02 18:07:02 +05:30
end
# Move repository
2016-08-24 12:49:21 +05:30
# storage - project's storage path
2014-09-02 18:07:02 +05:30
# path - project path with namespace
# new_path - new project path with namespace
#
# Ex.
2016-08-24 12:49:21 +05:30
# mv_repository("/path/to/storage", "gitlab/gitlab-ci", "randx/gitlab-ci-new")
2014-09-02 18:07:02 +05:30
#
2016-08-24 12:49:21 +05:30
def mv_repository(storage, path, new_path)
2015-04-26 12:48:37 +05:30
Gitlab::Utils.system_silent([gitlab_shell_projects_path, 'mv-project',
2016-08-24 12:49:21 +05:30
storage, "#{path}.git", "#{new_path}.git"])
2014-09-02 18:07:02 +05:30
end
# Fork repository to new namespace
2016-08-24 12:49:21 +05:30
# forked_from_storage - forked-from project's storage path
2014-09-02 18:07:02 +05:30
# path - project path with namespace
2016-08-24 12:49:21 +05:30
# forked_to_storage - forked-to project's storage path
2014-09-02 18:07:02 +05:30
# fork_namespace - namespace for forked project
#
# Ex.
2016-08-24 12:49:21 +05:30
# fork_repository("/path/to/forked_from/storage", "gitlab/gitlab-ci", "/path/to/forked_to/storage", "randx")
2014-09-02 18:07:02 +05:30
#
2016-08-24 12:49:21 +05:30
def fork_repository(forked_from_storage, path, forked_to_storage, fork_namespace)
2015-04-26 12:48:37 +05:30
Gitlab::Utils.system_silent([gitlab_shell_projects_path, 'fork-project',
2016-08-24 12:49:21 +05:30
forked_from_storage, "#{path}.git", forked_to_storage,
fork_namespace])
2014-09-02 18:07:02 +05:30
end
# Remove repository from file system
#
2016-08-24 12:49:21 +05:30
# storage - project's storage path
2014-09-02 18:07:02 +05:30
# name - project path with namespace
#
# Ex.
2016-08-24 12:49:21 +05:30
# remove_repository("/path/to/storage", "gitlab/gitlab-ci")
2014-09-02 18:07:02 +05:30
#
2016-08-24 12:49:21 +05:30
def remove_repository(storage, name)
2015-04-26 12:48:37 +05:30
Gitlab::Utils.system_silent([gitlab_shell_projects_path,
2016-08-24 12:49:21 +05:30
'rm-project', storage, "#{name}.git"])
2014-09-02 18:07:02 +05:30
end
# Add new key to gitlab-shell
#
# Ex.
# add_key("key-42", "sha-rsa ...")
#
def add_key(key_id, key_content)
2015-04-26 12:48:37 +05:30
Gitlab::Utils.system_silent([gitlab_shell_keys_path,
2016-09-29 09:46:39 +05:30
'add-key', key_id, self.class.strip_key(key_content)])
2014-09-02 18:07:02 +05:30
end
# Batch-add keys to authorized_keys
#
# Ex.
# batch_add_keys { |adder| adder.add_key("key-42", "sha-rsa ...") }
def batch_add_keys(&block)
IO.popen(%W(#{gitlab_shell_path}/bin/gitlab-keys batch-add-keys), 'w') do |io|
2017-08-17 22:00:37 +05:30
yield(KeyAdder.new(io))
2014-09-02 18:07:02 +05:30
end
end
# Remove ssh key from gitlab shell
#
# Ex.
# remove_key("key-342", "sha-rsa ...")
#
def remove_key(key_id, key_content)
2015-04-26 12:48:37 +05:30
Gitlab::Utils.system_silent([gitlab_shell_keys_path,
'rm-key', key_id, key_content])
2014-09-02 18:07:02 +05:30
end
# Remove all ssh keys from gitlab shell
#
# Ex.
# remove_all_keys
#
def remove_all_keys
2015-04-26 12:48:37 +05:30
Gitlab::Utils.system_silent([gitlab_shell_keys_path, 'clear'])
2014-09-02 18:07:02 +05:30
end
# Add empty directory for storing repositories
#
# Ex.
2016-08-24 12:49:21 +05:30
# add_namespace("/path/to/storage", "gitlab")
2014-09-02 18:07:02 +05:30
#
2016-08-24 12:49:21 +05:30
def add_namespace(storage, name)
2017-08-17 22:00:37 +05:30
path = full_path(storage, name)
FileUtils.mkdir_p(path, mode: 0770) unless exists?(storage, name)
rescue Errno::EEXIST => e
Rails.logger.warn("Directory exists as a file: #{e} at: #{path}")
2014-09-02 18:07:02 +05:30
end
# Remove directory from repositories storage
# Every repository inside this directory will be removed too
#
# Ex.
2016-08-24 12:49:21 +05:30
# rm_namespace("/path/to/storage", "gitlab")
2014-09-02 18:07:02 +05:30
#
2016-08-24 12:49:21 +05:30
def rm_namespace(storage, name)
FileUtils.rm_r(full_path(storage, name), force: true)
2014-09-02 18:07:02 +05:30
end
# Move namespace directory inside repositories storage
#
# Ex.
2016-08-24 12:49:21 +05:30
# mv_namespace("/path/to/storage", "gitlab", "gitlabhq")
2014-09-02 18:07:02 +05:30
#
2016-08-24 12:49:21 +05:30
def mv_namespace(storage, old_name, new_name)
return false if exists?(storage, new_name) || !exists?(storage, old_name)
2014-09-02 18:07:02 +05:30
2016-08-24 12:49:21 +05:30
FileUtils.mv(full_path(storage, old_name), full_path(storage, new_name))
2014-09-02 18:07:02 +05:30
end
2015-04-26 12:48:37 +05:30
def url_to_repo(path)
2014-09-02 18:07:02 +05:30
Gitlab.config.gitlab_shell.ssh_path_prefix + "#{path}.git"
end
# Return GitLab shell version
def version
gitlab_shell_version_file = "#{gitlab_shell_path}/VERSION"
if File.readable?(gitlab_shell_version_file)
2015-04-26 12:48:37 +05:30
File.read(gitlab_shell_version_file).chomp
2014-09-02 18:07:02 +05:30
end
end
2015-09-11 14:41:01 +05:30
# Check if such directory exists in repositories.
#
# Usage:
2016-08-24 12:49:21 +05:30
# exists?(storage, 'gitlab')
# exists?(storage, 'gitlab/cookies.git')
2015-09-11 14:41:01 +05:30
#
2016-08-24 12:49:21 +05:30
def exists?(storage, dir_name)
File.exist?(full_path(storage, dir_name))
end
2014-09-02 18:07:02 +05:30
protected
def gitlab_shell_path
Gitlab.config.gitlab_shell.path
end
def gitlab_shell_user_home
File.expand_path("~#{Gitlab.config.gitlab_shell.ssh_user}")
end
2016-08-24 12:49:21 +05:30
def full_path(storage, dir_name)
2014-09-02 18:07:02 +05:30
raise ArgumentError.new("Directory name can't be blank") if dir_name.blank?
2016-08-24 12:49:21 +05:30
File.join(storage, dir_name)
2014-09-02 18:07:02 +05:30
end
2015-04-26 12:48:37 +05:30
def gitlab_shell_projects_path
File.join(gitlab_shell_path, 'bin', 'gitlab-projects')
end
def gitlab_shell_keys_path
File.join(gitlab_shell_path, 'bin', 'gitlab-keys')
end
2014-09-02 18:07:02 +05:30
end
end