Collaborator trust model should trust collaborators

zeripath · zeripath · commit 7bb4ff822d2d · 2022-02-01T22:39:19.000Z
There was an unintended regression in go-gitea#17917 which leads to only repository admin commits being trusted. This PR restores the old logic. Fix go-gitea#18501 Signed-off-by: Andrew Thornton <art27@cantab.net>
diff --git a/models/asymkey/gpg_key_commit_verification.go b/models/asymkey/gpg_key_commit_verification.go
@@ -71,7 +71,7 @@ const (
 )
 
 // ParseCommitsWithSignature checks if signaute of commits are corresponding to users gpg keys.
-func ParseCommitsWithSignature(oldCommits []*user_model.UserCommit, repoTrustModel repo_model.TrustModelType, isCodeReader func(*user_model.User) (bool, error)) []*SignCommit {
+func ParseCommitsWithSignature(oldCommits []*user_model.UserCommit, repoTrustModel repo_model.TrustModelType, isOwnerMemberCollaborator func(*user_model.User) (bool, error)) []*SignCommit {
 	newCommits := make([]*SignCommit, 0, len(oldCommits))
 	keyMap := map[string]bool{}
 
@@ -81,7 +81,7 @@ func ParseCommitsWithSignature(oldCommits []*user_model.UserCommit, repoTrustMod
 			Verification: ParseCommitWithSignature(c.Commit),
 		}
 
-		_ = CalculateTrustStatus(signCommit.Verification, repoTrustModel, isCodeReader, &keyMap)
+		_ = CalculateTrustStatus(signCommit.Verification, repoTrustModel, isOwnerMemberCollaborator, &keyMap)
 
 		newCommits = append(newCommits, signCommit)
 	}
@@ -455,7 +455,7 @@ func hashAndVerifyForKeyID(sig *packet.Signature, payload string, committer *use
 
 // CalculateTrustStatus will calculate the TrustStatus for a commit verification within a repository
 // There are several trust models in Gitea
-func CalculateTrustStatus(verification *CommitVerification, repoTrustModel repo_model.TrustModelType, isCodeReader func(*user_model.User) (bool, error), keyMap *map[string]bool) (err error) {
+func CalculateTrustStatus(verification *CommitVerification, repoTrustModel repo_model.TrustModelType, isOwnerMemberCollaborator func(*user_model.User) (bool, error), keyMap *map[string]bool) (err error) {
 	if !verification.Verified {
 		return
 	}
@@ -500,11 +500,11 @@ func CalculateTrustStatus(verification *CommitVerification, repoTrustModel repo_
 			var has bool
 			isMember, has = (*keyMap)[verification.SigningKey.KeyID]
 			if !has {
-				isMember, err = isCodeReader(verification.SigningUser)
+				isMember, err = isOwnerMemberCollaborator(verification.SigningUser)
 				(*keyMap)[verification.SigningKey.KeyID] = isMember
 			}
 		} else {
-			isMember, err = isCodeReader(verification.SigningUser)
+			isMember, err = isOwnerMemberCollaborator(verification.SigningUser)
 		}
 
 		if !isMember {
diff --git a/models/commit.go b/models/commit.go
@@ -18,7 +18,7 @@ func ConvertFromGitCommit(commits []*git.Commit, repo *repo_model.Repository) []
 			user_model.ValidateCommitsWithEmails(commits),
 			repo.GetTrustModel(),
 			func(user *user_model.User) (bool, error) {
-				return IsUserRepoAdmin(repo, user)
+				return IsOwnerMemberCollaborator(repo, user)
 			},
 		),
 		repo,
diff --git a/models/repo_collaboration.go b/models/repo_collaboration.go
@@ -274,21 +274,21 @@ func GetRepoTeams(repo *repo_model.Repository) ([]*Team, error) {
 }
 
 // IsOwnerMemberCollaborator checks if a provided user is the owner, a collaborator or a member of a team in a repository
-func IsOwnerMemberCollaborator(repo *repo_model.Repository, userID int64) (bool, error) {
-	if repo.OwnerID == userID {
+func IsOwnerMemberCollaborator(repo *repo_model.Repository, user *user_model.User) (bool, error) {
+	if repo.OwnerID == user.ID {
 		return true, nil
 	}
 	teamMember, err := db.GetEngine(db.DefaultContext).Join("INNER", "team_repo", "team_repo.team_id = team_user.team_id").
 		Join("INNER", "team_unit", "team_unit.team_id = team_user.team_id").
 		Where("team_repo.repo_id = ?", repo.ID).
 		And("team_unit.`type` = ?", unit.TypeCode).
-		And("team_user.uid = ?", userID).Table("team_user").Exist(&TeamUser{})
+		And("team_user.uid = ?", user.ID).Table("team_user").Exist(&TeamUser{})
 	if err != nil {
 		return false, err
 	}
 	if teamMember {
 		return true, nil
 	}
 
-	return db.GetEngine(db.DefaultContext).Get(&Collaboration{RepoID: repo.ID, UserID: userID})
+	return db.GetEngine(db.DefaultContext).Get(&Collaboration{RepoID: repo.ID, UserID: user.ID})
 }
diff --git a/modules/gitgraph/graph_models.go b/modules/gitgraph/graph_models.go
@@ -117,7 +117,7 @@ func (graph *Graph) LoadAndProcessCommits(repository *repo_model.Repository, git
 		c.Verification = asymkey_model.ParseCommitWithSignature(c.Commit)
 
 		_ = asymkey_model.CalculateTrustStatus(c.Verification, repository.GetTrustModel(), func(user *user_model.User) (bool, error) {
-			return models.IsUserRepoAdmin(repository, user)
+			return models.IsOwnerMemberCollaborator(repository, user)
 		}, &keyMap)
 
 		statuses, _, err := models.GetLatestCommitStatus(repository.ID, c.Commit.ID.String(), db.ListOptions{})
diff --git a/routers/web/repo/commit.go b/routers/web/repo/commit.go
@@ -351,7 +351,7 @@ func Diff(ctx *context.Context) {
 	ctx.Data["DiffNotAvailable"] = diff.NumFiles == 0
 
 	if err := asymkey_model.CalculateTrustStatus(verification, ctx.Repo.Repository.GetTrustModel(), func(user *user_model.User) (bool, error) {
-		return models.IsUserRepoAdmin(ctx.Repo.Repository, user)
+		return models.IsOwnerMemberCollaborator(ctx.Repo.Repository, user)
 	}, nil); err != nil {
 		ctx.ServerError("CalculateTrustStatus", err)
 		return
diff --git a/routers/web/repo/view.go b/routers/web/repo/view.go
@@ -799,7 +799,7 @@ func renderDirectoryFiles(ctx *context.Context, timeout time.Duration) git.Entri
 		verification := asymkey_model.ParseCommitWithSignature(latestCommit)
 
 		if err := asymkey_model.CalculateTrustStatus(verification, ctx.Repo.Repository.GetTrustModel(), func(user *user_model.User) (bool, error) {
-			return models.IsUserRepoAdmin(ctx.Repo.Repository, user)
+			return models.IsOwnerMemberCollaborator(ctx.Repo.Repository, user)
 		}, nil); err != nil {
 			ctx.ServerError("CalculateTrustStatus", err)
 			return nil

Original file line number	Diff line number	Diff line change
`@@ -71,7 +71,7 @@ const (`
`71`	`71`	`)`
`72`	`72`
`73`	`73`	`// ParseCommitsWithSignature checks if signaute of commits are corresponding to users gpg keys.`
`74`		`-func ParseCommitsWithSignature(oldCommits []user_model.UserCommit, repoTrustModel repo_model.TrustModelType, isCodeReader func(user_model.User) (bool, error)) []*SignCommit {`
	`74`	`+func ParseCommitsWithSignature(oldCommits []user_model.UserCommit, repoTrustModel repo_model.TrustModelType, isOwnerMemberCollaborator func(user_model.User) (bool, error)) []*SignCommit {`
`75`	`75`	`newCommits := make([]*SignCommit, 0, len(oldCommits))`
`76`	`76`	`keyMap := map[string]bool{}`
`77`	`77`
`@@ -81,7 +81,7 @@ func ParseCommitsWithSignature(oldCommits []*user_model.UserCommit, repoTrustMod`
`81`	`81`	`Verification: ParseCommitWithSignature(c.Commit),`
`82`	`82`	`}`
`83`	`83`
`84`		`- _ = CalculateTrustStatus(signCommit.Verification, repoTrustModel, isCodeReader, &keyMap)`
	`84`	`+ _ = CalculateTrustStatus(signCommit.Verification, repoTrustModel, isOwnerMemberCollaborator, &keyMap)`
`85`	`85`
`86`	`86`	`newCommits = append(newCommits, signCommit)`
`87`	`87`	`}`
`@@ -455,7 +455,7 @@ func hashAndVerifyForKeyID(sig packet.Signature, payload string, committer use`
`455`	`455`
`456`	`456`	`// CalculateTrustStatus will calculate the TrustStatus for a commit verification within a repository`
`457`	`457`	`// There are several trust models in Gitea`
`458`		`-func CalculateTrustStatus(verification CommitVerification, repoTrustModel repo_model.TrustModelType, isCodeReader func(user_model.User) (bool, error), keyMap *map[string]bool) (err error) {`
	`458`	`+func CalculateTrustStatus(verification CommitVerification, repoTrustModel repo_model.TrustModelType, isOwnerMemberCollaborator func(user_model.User) (bool, error), keyMap *map[string]bool) (err error) {`
`459`	`459`	`if !verification.Verified {`
`460`	`460`	`return`
`461`	`461`	`}`
`@@ -500,11 +500,11 @@ func CalculateTrustStatus(verification *CommitVerification, repoTrustModel repo_`
`500`	`500`	`var has bool`
`501`	`501`	`isMember, has = (*keyMap)[verification.SigningKey.KeyID]`
`502`	`502`	`if !has {`
`503`		`- isMember, err = isCodeReader(verification.SigningUser)`
	`503`	`+ isMember, err = isOwnerMemberCollaborator(verification.SigningUser)`
`504`	`504`	`(*keyMap)[verification.SigningKey.KeyID] = isMember`
`505`	`505`	`}`
`506`	`506`	`} else {`
`507`		`- isMember, err = isCodeReader(verification.SigningUser)`
	`507`	`+ isMember, err = isOwnerMemberCollaborator(verification.SigningUser)`
`508`	`508`	`}`
`509`	`509`
`510`	`510`	`if !isMember {`
Original file line number	Diff line number	Diff line change
`@@ -274,21 +274,21 @@ func GetRepoTeams(repo repo_model.Repository) ([]Team, error) {`
`274`	`274`	`}`
`275`	`275`
`276`	`276`	`// IsOwnerMemberCollaborator checks if a provided user is the owner, a collaborator or a member of a team in a repository`
`277`		`-func IsOwnerMemberCollaborator(repo *repo_model.Repository, userID int64) (bool, error) {`
`278`		`- if repo.OwnerID == userID {`
	`277`	`+func IsOwnerMemberCollaborator(repo repo_model.Repository, user user_model.User) (bool, error) {`
	`278`	`+ if repo.OwnerID == user.ID {`
`279`	`279`	`return true, nil`
`280`	`280`	`}`
`281`	`281`	`teamMember, err := db.GetEngine(db.DefaultContext).Join("INNER", "team_repo", "team_repo.team_id = team_user.team_id").`
`282`	`282`	`Join("INNER", "team_unit", "team_unit.team_id = team_user.team_id").`
`283`	`283`	`Where("team_repo.repo_id = ?", repo.ID).`
`284`	`284`	And("team_unit.`type` = ?", unit.TypeCode).
`285`		`- And("team_user.uid = ?", userID).Table("team_user").Exist(&TeamUser{})`
	`285`	`+ And("team_user.uid = ?", user.ID).Table("team_user").Exist(&TeamUser{})`
`286`	`286`	`if err != nil {`
`287`	`287`	`return false, err`
`288`	`288`	`}`
`289`	`289`	`if teamMember {`
`290`	`290`	`return true, nil`
`291`	`291`	`}`
`292`	`292`
`293`		`- return db.GetEngine(db.DefaultContext).Get(&Collaboration{RepoID: repo.ID, UserID: userID})`
	`293`	`+ return db.GetEngine(db.DefaultContext).Get(&Collaboration{RepoID: repo.ID, UserID: user.ID})`
`294`	`294`	`}`