forgejo/routers/api/packages/alpine/alpine.go

// Copyright 2023 The Gitea Authors. All rights reserved.
// SPDX-License-Identifier: MIT

package alpine

import (
	"crypto/x509"
	"encoding/hex"
	"encoding/pem"
	"errors"
	"fmt"
	"io"
	"net/http"
	"strings"

	packages_model "code.gitea.io/gitea/models/packages"
	"code.gitea.io/gitea/modules/context"
	"code.gitea.io/gitea/modules/json"
	packages_module "code.gitea.io/gitea/modules/packages"
	alpine_module "code.gitea.io/gitea/modules/packages/alpine"
	"code.gitea.io/gitea/modules/util"
	"code.gitea.io/gitea/routers/api/packages/helper"
	packages_service "code.gitea.io/gitea/services/packages"
	alpine_service "code.gitea.io/gitea/services/packages/alpine"
)

func apiError(ctx *context.Context, status int, obj any) {
	helper.LogAndProcessError(ctx, status, obj, func(message string) {
		ctx.PlainText(status, message)
	})
}

func GetRepositoryKey(ctx *context.Context) {
	_, pub, err := alpine_service.GetOrCreateKeyPair(ctx, ctx.Package.Owner.ID)
	if err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}

	pubPem, _ := pem.Decode([]byte(pub))
	if pubPem == nil {
		apiError(ctx, http.StatusInternalServerError, "failed to decode private key pem")
		return
	}

	pubKey, err := x509.ParsePKIXPublicKey(pubPem.Bytes)
	if err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}

	fingerprint, err := util.CreatePublicKeyFingerprint(pubKey)
	if err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}

	ctx.ServeContent(strings.NewReader(pub), &context.ServeHeaderOptions{
		ContentType: "application/x-pem-file",
		Filename:    fmt.Sprintf("%s@%s.rsa.pub", ctx.Package.Owner.LowerName, hex.EncodeToString(fingerprint)),
	})
}

func GetRepositoryFile(ctx *context.Context) {
	pv, err := alpine_service.GetOrCreateRepositoryVersion(ctx.Package.Owner.ID)
	if err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}

	s, u, pf, err := packages_service.GetFileStreamByPackageVersion(
		ctx,
		pv,
		&packages_service.PackageFileInfo{
			Filename:     alpine_service.IndexFilename,
			CompositeKey: fmt.Sprintf("%s|%s|%s", ctx.Params("branch"), ctx.Params("repository"), ctx.Params("architecture")),
		},
	)
	if err != nil {
		if errors.Is(err, util.ErrNotExist) {
			apiError(ctx, http.StatusNotFound, err)
		} else {
			apiError(ctx, http.StatusInternalServerError, err)
		}
		return
	}

	helper.ServePackageFile(ctx, s, u, pf)
}

func UploadPackageFile(ctx *context.Context) {
	branch := strings.TrimSpace(ctx.Params("branch"))
	repository := strings.TrimSpace(ctx.Params("repository"))
	if branch == "" || repository == "" {
		apiError(ctx, http.StatusBadRequest, "invalid branch or repository")
		return
	}

	upload, close, err := ctx.UploadStream()
	if err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}
	if close {
		defer upload.Close()
	}

	buf, err := packages_module.CreateHashedBufferFromReader(upload)
	if err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}
	defer buf.Close()

	pck, err := alpine_module.ParsePackage(buf)
	if err != nil {
		if errors.Is(err, util.ErrInvalidArgument) || err == io.EOF {
			apiError(ctx, http.StatusBadRequest, err)
		} else {
			apiError(ctx, http.StatusInternalServerError, err)
		}
		return
	}

	if _, err := buf.Seek(0, io.SeekStart); err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}

	fileMetadataRaw, err := json.Marshal(pck.FileMetadata)
	if err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}

	_, _, err = packages_service.CreatePackageOrAddFileToExisting(
		&packages_service.PackageCreationInfo{
			PackageInfo: packages_service.PackageInfo{
				Owner:       ctx.Package.Owner,
				PackageType: packages_model.TypeAlpine,
				Name:        pck.Name,
				Version:     pck.Version,
			},
			Creator:  ctx.Doer,
			Metadata: pck.VersionMetadata,
		},
		&packages_service.PackageFileCreationInfo{
			PackageFileInfo: packages_service.PackageFileInfo{
				Filename:     fmt.Sprintf("%s-%s.apk", pck.Name, pck.Version),
				CompositeKey: fmt.Sprintf("%s|%s|%s", branch, repository, pck.FileMetadata.Architecture),
			},
			Creator: ctx.Doer,
			Data:    buf,
			IsLead:  true,
			Properties: map[string]string{
				alpine_module.PropertyBranch:       branch,
				alpine_module.PropertyRepository:   repository,
				alpine_module.PropertyArchitecture: pck.FileMetadata.Architecture,
				alpine_module.PropertyMetadata:     string(fileMetadataRaw),
			},
		},
	)
	if err != nil {
		switch err {
		case packages_model.ErrDuplicatePackageVersion, packages_model.ErrDuplicatePackageFile:
			apiError(ctx, http.StatusBadRequest, err)
		case packages_service.ErrQuotaTotalCount, packages_service.ErrQuotaTypeSize, packages_service.ErrQuotaTotalSize:
			apiError(ctx, http.StatusForbidden, err)
		default:
			apiError(ctx, http.StatusInternalServerError, err)
		}
		return
	}

	if err := alpine_service.BuildSpecificRepositoryFiles(ctx, ctx.Package.Owner.ID, branch, repository, pck.FileMetadata.Architecture); err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}

	ctx.Status(http.StatusCreated)
}

func DownloadPackageFile(ctx *context.Context) {
	pfs, _, err := packages_model.SearchFiles(ctx, &packages_model.PackageFileSearchOptions{
		OwnerID:      ctx.Package.Owner.ID,
		PackageType:  packages_model.TypeAlpine,
		Query:        ctx.Params("filename"),
		CompositeKey: fmt.Sprintf("%s|%s|%s", ctx.Params("branch"), ctx.Params("repository"), ctx.Params("architecture")),
	})
	if err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}
	if len(pfs) != 1 {
		apiError(ctx, http.StatusNotFound, nil)
		return
	}

	s, u, pf, err := packages_service.GetPackageFileStream(ctx, pfs[0])
	if err != nil {
		if errors.Is(err, util.ErrNotExist) {
			apiError(ctx, http.StatusNotFound, err)
		} else {
			apiError(ctx, http.StatusInternalServerError, err)
		}
		return
	}

	helper.ServePackageFile(ctx, s, u, pf)
}

func DeletePackageFile(ctx *context.Context) {
	branch, repository, architecture := ctx.Params("branch"), ctx.Params("repository"), ctx.Params("architecture")

	pfs, _, err := packages_model.SearchFiles(ctx, &packages_model.PackageFileSearchOptions{
		OwnerID:      ctx.Package.Owner.ID,
		PackageType:  packages_model.TypeAlpine,
		Query:        ctx.Params("filename"),
		CompositeKey: fmt.Sprintf("%s|%s|%s", branch, repository, architecture),
	})
	if err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}
	if len(pfs) != 1 {
		apiError(ctx, http.StatusNotFound, nil)
		return
	}

	if err := packages_service.RemovePackageFileAndVersionIfUnreferenced(ctx.Doer, pfs[0]); err != nil {
		if errors.Is(err, util.ErrNotExist) {
			apiError(ctx, http.StatusNotFound, err)
		} else {
			apiError(ctx, http.StatusInternalServerError, err)
		}
		return
	}

	if err := alpine_service.BuildSpecificRepositoryFiles(ctx, ctx.Package.Owner.ID, branch, repository, architecture); err != nil {
		apiError(ctx, http.StatusInternalServerError, err)
		return
	}

	ctx.Status(http.StatusNoContent)
}
Add Alpine package registry (#23714) This PR adds an Alpine package registry. You can follow [this tutorial](https://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package) to build a *.apk package for testing. This functionality is similar to the Debian registry (#22854) and therefore shares some methods. I marked this PR as blocked because it should be merged after #22854. ![grafik](https://user-images.githubusercontent.com/1666336/227779595-b76163aa-eea1-4a79-9583-775c24ad74e8.png) --------- Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: silverwind <me@silverwind.io> Co-authored-by: Giteabot <teabot@gitea.io> 2023-05-12 19:27:50 +02:00			`// Copyright 2023 The Gitea Authors. All rights reserved.`
			`// SPDX-License-Identifier: MIT`

			`package alpine`

			`import (`
			`"crypto/x509"`
			`"encoding/hex"`
			`"encoding/pem"`
			`"errors"`
			`"fmt"`
			`"io"`
			`"net/http"`
			`"strings"`

			`packages_model "code.gitea.io/gitea/models/packages"`
			`"code.gitea.io/gitea/modules/context"`
			`"code.gitea.io/gitea/modules/json"`
			`packages_module "code.gitea.io/gitea/modules/packages"`
			`alpine_module "code.gitea.io/gitea/modules/packages/alpine"`
			`"code.gitea.io/gitea/modules/util"`
			`"code.gitea.io/gitea/routers/api/packages/helper"`
			`packages_service "code.gitea.io/gitea/services/packages"`
			`alpine_service "code.gitea.io/gitea/services/packages/alpine"`
			`)`

Replace `interface{}` with `any` (#25686) Result of running `perl -p -i -e 's#interface\{\}#any#g' */` and `make fmt`. Basically the same [as golang did](https://github.com/golang/go/commit/2580d0e08d5e9f979b943758d3c49877fb2324cb). 2023-07-04 20:36:08 +02:00			`func apiError(ctx *context.Context, status int, obj any) {`
Add Alpine package registry (#23714) This PR adds an Alpine package registry. You can follow [this tutorial](https://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package) to build a *.apk package for testing. This functionality is similar to the Debian registry (#22854) and therefore shares some methods. I marked this PR as blocked because it should be merged after #22854. ![grafik](https://user-images.githubusercontent.com/1666336/227779595-b76163aa-eea1-4a79-9583-775c24ad74e8.png) --------- Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: silverwind <me@silverwind.io> Co-authored-by: Giteabot <teabot@gitea.io> 2023-05-12 19:27:50 +02:00			`helper.LogAndProcessError(ctx, status, obj, func(message string) {`
			`ctx.PlainText(status, message)`
			`})`
			`}`

			`func GetRepositoryKey(ctx *context.Context) {`
More refactoring of `db.DefaultContext` (#27083) Next step of #27065 2023-09-15 08:13:19 +02:00			`_, pub, err := alpine_service.GetOrCreateKeyPair(ctx, ctx.Package.Owner.ID)`
Add Alpine package registry (#23714) This PR adds an Alpine package registry. You can follow [this tutorial](https://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package) to build a *.apk package for testing. This functionality is similar to the Debian registry (#22854) and therefore shares some methods. I marked this PR as blocked because it should be merged after #22854. ![grafik](https://user-images.githubusercontent.com/1666336/227779595-b76163aa-eea1-4a79-9583-775c24ad74e8.png) --------- Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: silverwind <me@silverwind.io> Co-authored-by: Giteabot <teabot@gitea.io> 2023-05-12 19:27:50 +02:00			`if err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`

			`pubPem, _ := pem.Decode([]byte(pub))`
			`if pubPem == nil {`
			`apiError(ctx, http.StatusInternalServerError, "failed to decode private key pem")`
			`return`
			`}`

			`pubKey, err := x509.ParsePKIXPublicKey(pubPem.Bytes)`
			`if err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`

			`fingerprint, err := util.CreatePublicKeyFingerprint(pubKey)`
			`if err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`

			`ctx.ServeContent(strings.NewReader(pub), &context.ServeHeaderOptions{`
			`ContentType: "application/x-pem-file",`
			`Filename: fmt.Sprintf("%s@%s.rsa.pub", ctx.Package.Owner.LowerName, hex.EncodeToString(fingerprint)),`
			`})`
			`}`

			`func GetRepositoryFile(ctx *context.Context) {`
			`pv, err := alpine_service.GetOrCreateRepositoryVersion(ctx.Package.Owner.ID)`
			`if err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`

Add direct serving of package content (#25543) Fixes #24723 Direct serving of content aka HTTP redirect is not mentioned in any of the package registry specs but lots of official registries do that so it should be supported by the usual clients. 2023-07-03 15:33:28 +02:00			`s, u, pf, err := packages_service.GetFileStreamByPackageVersion(`
Add Alpine package registry (#23714) This PR adds an Alpine package registry. You can follow [this tutorial](https://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package) to build a *.apk package for testing. This functionality is similar to the Debian registry (#22854) and therefore shares some methods. I marked this PR as blocked because it should be merged after #22854. ![grafik](https://user-images.githubusercontent.com/1666336/227779595-b76163aa-eea1-4a79-9583-775c24ad74e8.png) --------- Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: silverwind <me@silverwind.io> Co-authored-by: Giteabot <teabot@gitea.io> 2023-05-12 19:27:50 +02:00			`ctx,`
			`pv,`
			`&packages_service.PackageFileInfo{`
			`Filename: alpine_service.IndexFilename,`
			`CompositeKey: fmt.Sprintf("%s\|%s\|%s", ctx.Params("branch"), ctx.Params("repository"), ctx.Params("architecture")),`
			`},`
			`)`
			`if err != nil {`
			`if errors.Is(err, util.ErrNotExist) {`
			`apiError(ctx, http.StatusNotFound, err)`
			`} else {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`}`
			`return`
			`}`

Add direct serving of package content (#25543) Fixes #24723 Direct serving of content aka HTTP redirect is not mentioned in any of the package registry specs but lots of official registries do that so it should be supported by the usual clients. 2023-07-03 15:33:28 +02:00			`helper.ServePackageFile(ctx, s, u, pf)`
Add Alpine package registry (#23714) This PR adds an Alpine package registry. You can follow [this tutorial](https://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package) to build a *.apk package for testing. This functionality is similar to the Debian registry (#22854) and therefore shares some methods. I marked this PR as blocked because it should be merged after #22854. ![grafik](https://user-images.githubusercontent.com/1666336/227779595-b76163aa-eea1-4a79-9583-775c24ad74e8.png) --------- Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: silverwind <me@silverwind.io> Co-authored-by: Giteabot <teabot@gitea.io> 2023-05-12 19:27:50 +02:00			`}`

			`func UploadPackageFile(ctx *context.Context) {`
			`branch := strings.TrimSpace(ctx.Params("branch"))`
			`repository := strings.TrimSpace(ctx.Params("repository"))`
			`if branch == "" \|\| repository == "" {`
			`apiError(ctx, http.StatusBadRequest, "invalid branch or repository")`
			`return`
			`}`

			`upload, close, err := ctx.UploadStream()`
			`if err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`
			`if close {`
			`defer upload.Close()`
			`}`

			`buf, err := packages_module.CreateHashedBufferFromReader(upload)`
			`if err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`
			`defer buf.Close()`

			`pck, err := alpine_module.ParsePackage(buf)`
			`if err != nil {`
			`if errors.Is(err, util.ErrInvalidArgument) \|\| err == io.EOF {`
			`apiError(ctx, http.StatusBadRequest, err)`
			`} else {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`}`
			`return`
			`}`

			`if _, err := buf.Seek(0, io.SeekStart); err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`

			`fileMetadataRaw, err := json.Marshal(pck.FileMetadata)`
			`if err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`

			`_, _, err = packages_service.CreatePackageOrAddFileToExisting(`
			`&packages_service.PackageCreationInfo{`
			`PackageInfo: packages_service.PackageInfo{`
			`Owner: ctx.Package.Owner,`
			`PackageType: packages_model.TypeAlpine,`
			`Name: pck.Name,`
			`Version: pck.Version,`
			`},`
			`Creator: ctx.Doer,`
			`Metadata: pck.VersionMetadata,`
			`},`
			`&packages_service.PackageFileCreationInfo{`
			`PackageFileInfo: packages_service.PackageFileInfo{`
			`Filename: fmt.Sprintf("%s-%s.apk", pck.Name, pck.Version),`
			`CompositeKey: fmt.Sprintf("%s\|%s\|%s", branch, repository, pck.FileMetadata.Architecture),`
			`},`
			`Creator: ctx.Doer,`
			`Data: buf,`
			`IsLead: true,`
			`Properties: map[string]string{`
			`alpine_module.PropertyBranch: branch,`
			`alpine_module.PropertyRepository: repository,`
			`alpine_module.PropertyArchitecture: pck.FileMetadata.Architecture,`
			`alpine_module.PropertyMetadata: string(fileMetadataRaw),`
			`},`
			`},`
			`)`
			`if err != nil {`
			`switch err {`
			`case packages_model.ErrDuplicatePackageVersion, packages_model.ErrDuplicatePackageFile:`
			`apiError(ctx, http.StatusBadRequest, err)`
			`case packages_service.ErrQuotaTotalCount, packages_service.ErrQuotaTypeSize, packages_service.ErrQuotaTotalSize:`
			`apiError(ctx, http.StatusForbidden, err)`
			`default:`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`}`
			`return`
			`}`

			`if err := alpine_service.BuildSpecificRepositoryFiles(ctx, ctx.Package.Owner.ID, branch, repository, pck.FileMetadata.Architecture); err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`

			`ctx.Status(http.StatusCreated)`
			`}`

			`func DownloadPackageFile(ctx *context.Context) {`
			`pfs, _, err := packages_model.SearchFiles(ctx, &packages_model.PackageFileSearchOptions{`
			`OwnerID: ctx.Package.Owner.ID,`
			`PackageType: packages_model.TypeAlpine,`
			`Query: ctx.Params("filename"),`
			`CompositeKey: fmt.Sprintf("%s\|%s\|%s", ctx.Params("branch"), ctx.Params("repository"), ctx.Params("architecture")),`
			`})`
			`if err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`
			`if len(pfs) != 1 {`
			`apiError(ctx, http.StatusNotFound, nil)`
			`return`
			`}`

Add direct serving of package content (#25543) Fixes #24723 Direct serving of content aka HTTP redirect is not mentioned in any of the package registry specs but lots of official registries do that so it should be supported by the usual clients. 2023-07-03 15:33:28 +02:00			`s, u, pf, err := packages_service.GetPackageFileStream(ctx, pfs[0])`
Add Alpine package registry (#23714) This PR adds an Alpine package registry. You can follow [this tutorial](https://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package) to build a *.apk package for testing. This functionality is similar to the Debian registry (#22854) and therefore shares some methods. I marked this PR as blocked because it should be merged after #22854. ![grafik](https://user-images.githubusercontent.com/1666336/227779595-b76163aa-eea1-4a79-9583-775c24ad74e8.png) --------- Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: silverwind <me@silverwind.io> Co-authored-by: Giteabot <teabot@gitea.io> 2023-05-12 19:27:50 +02:00			`if err != nil {`
			`if errors.Is(err, util.ErrNotExist) {`
			`apiError(ctx, http.StatusNotFound, err)`
			`} else {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`}`
			`return`
			`}`

Add direct serving of package content (#25543) Fixes #24723 Direct serving of content aka HTTP redirect is not mentioned in any of the package registry specs but lots of official registries do that so it should be supported by the usual clients. 2023-07-03 15:33:28 +02:00			`helper.ServePackageFile(ctx, s, u, pf)`
Add Alpine package registry (#23714) This PR adds an Alpine package registry. You can follow [this tutorial](https://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package) to build a *.apk package for testing. This functionality is similar to the Debian registry (#22854) and therefore shares some methods. I marked this PR as blocked because it should be merged after #22854. ![grafik](https://user-images.githubusercontent.com/1666336/227779595-b76163aa-eea1-4a79-9583-775c24ad74e8.png) --------- Co-authored-by: techknowlogick <techknowlogick@gitea.io> Co-authored-by: silverwind <me@silverwind.io> Co-authored-by: Giteabot <teabot@gitea.io> 2023-05-12 19:27:50 +02:00			`}`

			`func DeletePackageFile(ctx *context.Context) {`
			`branch, repository, architecture := ctx.Params("branch"), ctx.Params("repository"), ctx.Params("architecture")`

			`pfs, _, err := packages_model.SearchFiles(ctx, &packages_model.PackageFileSearchOptions{`
			`OwnerID: ctx.Package.Owner.ID,`
			`PackageType: packages_model.TypeAlpine,`
			`Query: ctx.Params("filename"),`
			`CompositeKey: fmt.Sprintf("%s\|%s\|%s", branch, repository, architecture),`
			`})`
			`if err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`
			`if len(pfs) != 1 {`
			`apiError(ctx, http.StatusNotFound, nil)`
			`return`
			`}`

			`if err := packages_service.RemovePackageFileAndVersionIfUnreferenced(ctx.Doer, pfs[0]); err != nil {`
			`if errors.Is(err, util.ErrNotExist) {`
			`apiError(ctx, http.StatusNotFound, err)`
			`} else {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`}`
			`return`
			`}`

			`if err := alpine_service.BuildSpecificRepositoryFiles(ctx, ctx.Package.Owner.ID, branch, repository, architecture); err != nil {`
			`apiError(ctx, http.StatusInternalServerError, err)`
			`return`
			`}`

			`ctx.Status(http.StatusNoContent)`
			`}`