Skip to content

G
gitlab-ce
Commit 1b56af58 authored by Douwe Maan's avatar Douwe Maan
Browse files
Options

Extract push size check into dedicated method

parent ca3d8271
Hide whitespace changes
Inline Side-by-side
Showing with 23 additions and 15 deletions
lib/gitlab/git_access.rb
View file @ 1b56af58
...@@ -279,17 +279,16 @@ module Gitlab ...@@ -279,17 +279,16 @@ module Gitlab
end end
check_change_access! check_change_access!
check_push_size!
end end
# rubocop: disable CodeReuse/ActiveRecord
def check_change_access! def check_change_access!
# If there are worktrees with a HEAD pointing to a non-existent object, # If there are worktrees with a HEAD pointing to a non-existent object,
# calls to `git rev-list --all` will fail in git 2.15+. This should also # calls to `git rev-list --all` will fail in git 2.15+. This should also
# clear stale lock files. # clear stale lock files.
project.repository.clean_stale_repository_files project.repository.clean_stale_repository_files
push_size_in_bytes = 0
# Iterate over all changes to find if user allowed all of them to be applied # Iterate over all changes to find if user allowed all of them to be applied
changes_list.each.with_index do |change, index| changes_list.each.with_index do |change, index|
first_change = index == 0 first_change = index == 0
...@@ -297,17 +296,8 @@ module Gitlab ...@@ -297,17 +296,8 @@ module Gitlab
# If user does not have access to make at least one change, cancel all # If user does not have access to make at least one change, cancel all
# push by allowing the exception to bubble up # push by allowing the exception to bubble up
check_single_change_access(change, skip_lfs_integrity_check: !first_change) check_single_change_access(change, skip_lfs_integrity_check: !first_change)
if project.size_limit_enabled?
push_size_in_bytes += repository.new_blobs(change[:newrev]).sum(&:size)
end
end
if check_size_limit? && project.changes_will_exceed_size_limit?(push_size_in_bytes)
raise UnauthorizedError, Gitlab::RepositorySizeError.new(project).new_changes_error
end end
end end
# rubocop: enable CodeReuse/ActiveRecord
def check_single_change_access(change, skip_lfs_integrity_check: false) def check_single_change_access(change, skip_lfs_integrity_check: false)
change_access = Checks::ChangeAccess.new( change_access = Checks::ChangeAccess.new(
...@@ -325,6 +315,25 @@ module Gitlab ...@@ -325,6 +315,25 @@ module Gitlab
raise TimeoutError, logger.full_message raise TimeoutError, logger.full_message
end end
def check_push_size!
return unless check_size_limit?
# If there are worktrees with a HEAD pointing to a non-existent object,
# calls to `git rev-list --all` will fail in git 2.15+. This should also
# clear stale lock files.
project.repository.clean_stale_repository_files
# rubocop: disable CodeReuse/ActiveRecord
push_size_in_bytes = changes_list.sum do |change|
repository.new_blobs(change[:newrev]).sum(&:size)
end
# rubocop: enable CodeReuse/ActiveRecord
if project.changes_will_exceed_size_limit?(push_size_in_bytes)
raise UnauthorizedError, Gitlab::RepositorySizeError.new(project).new_changes_error
end
end
def deploy_key def deploy_key
actor if deploy_key? actor if deploy_key?
end end
...@@ -381,9 +390,8 @@ module Gitlab ...@@ -381,9 +390,8 @@ module Gitlab
def check_size_limit? def check_size_limit?
strong_memoize(:check_size_limit) do strong_memoize(:check_size_limit) do
changes_list.any? do |change| project.size_limit_enabled? &&
change[:newrev] && change[:newrev] != ::Gitlab::Git::BLANK_SHA changes_list.any? { |change| !Gitlab::Git.blank_ref?(change[:newrev]) }
end
end end
end end
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7