mirror of
https://codeberg.org/forgejo/forgejo.git
synced 2024-05-16 02:52:42 +00:00
8fdffc94ca
Because the `git` module did not recognize SSH signed tags, those signatures ended up in the `notes` column of the `release` table. While future signatures will not end up there, Forgejo should clean up the old ones. This migration does just that: finds all releases that have an SSH signature, and removes those signatures, preserving the rest of the note (if any). While this may seem like an expensive operation, it's only done once, and even on the largest known Forgejo instance as of this writing (Codeberg), the number of affected rows are just over a hundred, a tiny amount all things considered. Signed-off-by: Gergely Nagy <forgejo@gergo.csillger.hu>
52 lines
1,008 B
Go
52 lines
1,008 B
Go
// Copyright 2024 The Forgejo Authors. All rights reserved.
|
|
// SPDX-License-Identifier: MIT
|
|
|
|
package v1_22 //nolint
|
|
|
|
import (
|
|
"strings"
|
|
|
|
"xorm.io/xorm"
|
|
)
|
|
|
|
func RemoveSSHSignaturesFromReleaseNotes(x *xorm.Engine) error {
|
|
type Release struct {
|
|
ID int64 `xorm:"pk autoincr"`
|
|
Note string `xorm:"TEXT"`
|
|
}
|
|
|
|
if err := x.Sync(&Release{}); err != nil {
|
|
return err
|
|
}
|
|
|
|
var releaseNotes []struct {
|
|
ID int64
|
|
Note string
|
|
}
|
|
|
|
if err := x.Table("release").Where("note LIKE '%-----BEGIN SSH SIGNATURE-----%'").Find(&releaseNotes); err != nil {
|
|
return err
|
|
}
|
|
|
|
sess := x.NewSession()
|
|
defer sess.Close()
|
|
|
|
if err := sess.Begin(); err != nil {
|
|
return err
|
|
}
|
|
|
|
for _, release := range releaseNotes {
|
|
idx := strings.LastIndex(release.Note, "-----BEGIN SSH SIGNATURE-----")
|
|
if idx == -1 {
|
|
continue
|
|
}
|
|
release.Note = release.Note[:idx]
|
|
_, err := sess.Exec("UPDATE `release` SET note = ? WHERE id = ?", release.Note, release.ID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
return sess.Commit()
|
|
}
|