summaryrefslogtreecommitdiff
path: root/app/models/commit.rb
diff options
context:
space:
mode:
Diffstat (limited to 'app/models/commit.rb')
-rw-r--r--app/models/commit.rb17
1 files changed, 16 insertions, 1 deletions
diff --git a/app/models/commit.rb b/app/models/commit.rb
index 9c8edbb097d..a6a11a2d3a5 100644
--- a/app/models/commit.rb
+++ b/app/models/commit.rb
@@ -240,7 +240,22 @@ class Commit
@signature = nil
signature, signed_text = @raw.signature(project.repository)
- if signature && signed_text
+
+ return unless signature && signed_text
+
+ Gitlab::Gpg.using_tmp_keychain do
+ # first we need to get the keyid from the signature...
+ GPGME::Crypto.new.verify(signature, signed_text: signed_text) do |verified_signature|
+ @signature = verified_signature
+ end
+
+ # ... then we query the gpg key belonging to the keyid.
+ gpg_key = GpgKey.find_by(primary_keyid: @signature.fingerprint)
+
+ return @signature unless gpg_key
+
+ Gitlab::Gpg::CurrentKeyChain.add(gpg_key.key)
+
GPGME::Crypto.new.verify(signature, signed_text: signed_text) do |verified_signature|
@signature = verified_signature
end
View Lorry Controller Status