[GITEA] Make atomic ssh keys replacement robust

- After stumbling upon https://github.com/golang/go/issues/22397 and reading the implementations I realized that Forgejo code doesn't have `Sync()` and it doesn't properly error handle the `Close` function. - (likely) Resolves https://codeberg.org/forgejo/forgejo/issues/1446 (cherry picked from commit 0efcb334c2) (cherry picked from commit 04ef02c0dd) (cherry picked from commit 85f2065c9b) (cherry picked from commit 8d36b5cce6) (cherry picked from commit 378dc30fb5) (cherry picked from commit 2b28bf826e) (cherry picked from commit d0625a001e) (cherry picked from commit f161a4f60f)
2024-05-29 05:38:11 +00:00 · 2023-09-30 22:16:47 +02:00 · 2023-09-30 22:16:47 +02:00 · 7430ca43e5
parent 57b69e334c
commit 7430ca43e5
2 changed files with 12 additions and 2 deletions
--- a/models/asymkey/ssh_key_authorized_keys.go
+++ b/models/asymkey/ssh_key_authorized_keys.go
@ -169,7 +169,12 @@ func RewriteAllPublicKeys(ctx context.Context) error {
 		return err
 	}

-	t.Close()
+	if err := t.Sync(); err != nil {
+		return err
+	}
+	if err := t.Close(); err != nil {
+		return err
+	}
 	return util.Rename(tmpPath, fPath)
 }

--- a/models/asymkey/ssh_key_authorized_principals.go
+++ b/models/asymkey/ssh_key_authorized_principals.go
@ -92,7 +92,12 @@ func RewriteAllPrincipalKeys(ctx context.Context) error {
 		return err
 	}

-	t.Close()
+	if err := t.Sync(); err != nil {
+		return err
+	}
+	if err := t.Close(); err != nil {
+		return err
+	}
 	return util.Rename(tmpPath, fPath)
 }