Internal Server Error when creating a repository in edge case #2777

New Issue

Closed

opened 2025-11-02 04:48:08 -06:00 by GiteaMirror · 10 comments

GiteaMirror commented 2025-11-02 04:48:08 -06:00

Owner

Copy Link

Originally created by @Larivact on GitHub (Jan 19, 2019).

I do not have Gitea installed and discovered this very weird bug at https://try.gitea.io, which currently uses af45648.

Description

1. Create an account
2. Go to your account settings and set your Full Name to <Test (it needs to start with a less-than sign)
3. Attempt to create a repository: enter a name and check Initialize Repository (Adds .gitignore, License and README) (this is important it will not fail if you do not check it). Click Create Repository.
4. Internal Server Error 500

Originally created by @Larivact on GitHub (Jan 19, 2019). I do not have Gitea installed and discovered this very weird bug at https://try.gitea.io, which currently uses af45648. ## Description 1. Create an account 2. Go to your account settings and set your Full Name to `<Test` (it needs to start with a less-than sign) 3. Attempt to create a repository: enter a name and check `Initialize Repository (Adds .gitignore, License and README)` (this is important it will not fail if you do not check it). Click `Create Repository`. 4. Internal Server Error 500

GiteaMirror added the type/bug label 2025-11-02 04:48:08 -06:00

GiteaMirror closed this issue 2025-11-02 04:48:08 -06:00

GiteaMirror commented 2025-11-02 04:48:09 -06:00

Author

Owner

Copy Link

@zeripath commented on GitHub (Jan 19, 2019):

Thanks @Larivact I can confirm this bug.

@zeripath commented on GitHub (Jan 19, 2019): Thanks @Larivact I can confirm this bug.

GiteaMirror commented 2025-11-02 04:48:09 -06:00

Author

Owner

Copy Link

@zeripath commented on GitHub (Jan 19, 2019):

The issue is this line:

https://github.com/go-gitea/gitea/blob/master/models/repo.go#L1097

		"git", "commit", fmt.Sprintf("--author='%s <%s>'", sig.Name, sig.Email),

The author's name isn't being escaped - this appears to be safe despite the potential security problems due to the way the whole thing is passed as a single argument direct to the git binary rather than going through an interpreter - git just then interprets the mess after the = as being the author no matter what is in there. It is quite liberal with what it expects to be a name, the only issues seem to be that there can only be one segment enclosed by <> and that segment had better be an email address.

@zeripath commented on GitHub (Jan 19, 2019): The issue is this line: https://github.com/go-gitea/gitea/blob/master/models/repo.go#L1097 ```go "git", "commit", fmt.Sprintf("--author='%s <%s>'", sig.Name, sig.Email), ``` The author's name isn't being escaped - this appears to be safe despite the potential security problems due to the way the whole thing is passed as a single argument direct to the `git` binary rather than going through an interpreter - `git` just then interprets the mess after the `=` as being the author no matter what is in there. It is quite liberal with what it expects to be a name, the only issues seem to be that there can only be one segment enclosed by `<>` and that segment had better be an email address.

GiteaMirror commented 2025-11-02 04:48:09 -06:00

Author

Owner

Copy Link

@zeripath commented on GitHub (Jan 19, 2019):

There are 4 other places that do the same thing in the code base.

@zeripath commented on GitHub (Jan 19, 2019): There are 4 other places that do the same thing in the code base.

GiteaMirror commented 2025-11-02 04:48:09 -06:00

Author

Owner

Copy Link

@Larivact commented on GitHub (Jan 19, 2019):

Thanks for tracking this down. Git does not validate email addresses but expects a name:

$ git commit --author='<a>'
fatal: empty ident name (for <a>) not allowed

So the issue can also be reproduced with a Full Name that's just a space.

@Larivact commented on GitHub (Jan 19, 2019): Thanks for tracking this down. Git does not validate email addresses but expects a name: ``` $ git commit --author='<a>' fatal: empty ident name (for <a>) not allowed ``` So the issue can also be reproduced with a Full Name that's just a space.

GiteaMirror commented 2025-11-02 04:48:10 -06:00

Author

Owner

Copy Link

@zeripath commented on GitHub (Jan 19, 2019):

Looking at what git does internally, if you set GIT_AUTHOR_NAME and GIT_AUTHOR_EMAIL it will pass them through this function https://github.com/git/git/blob/master/ident.c#L221 which will remove \n<> and Trim preceding and following whitespace.

@zeripath commented on GitHub (Jan 19, 2019): Looking at what git does internally, if you set `GIT_AUTHOR_NAME` and `GIT_AUTHOR_EMAIL` it will pass them through this function https://github.com/git/git/blob/master/ident.c#L221 which will remove `\n<>` and Trim preceding and following whitespace.

GiteaMirror commented 2025-11-02 04:48:10 -06:00

Author

Owner

Copy Link

@zeripath commented on GitHub (Jan 19, 2019):

I guess we should do this too. If the name is effectively empty we should use the username.

@zeripath commented on GitHub (Jan 19, 2019): I guess we should do this too. If the name is effectively empty we should use the username.

GiteaMirror commented 2025-11-02 04:48:10 -06:00

Author

Owner

Copy Link

@zeripath commented on GitHub (Jan 19, 2019):

I'll have a PR up if this passes the integration tests in a few mins

@zeripath commented on GitHub (Jan 19, 2019): I'll have a PR up if this passes the integration tests in a few mins

GiteaMirror commented 2025-11-02 04:48:10 -06:00

Author

Owner

Copy Link

@Larivact commented on GitHub (Jan 19, 2019):

Just doing strip and trim would still let <Test slide because of the argument parsing. So we should probably pass name & email via environment variables with ExecDirEnv.

@Larivact commented on GitHub (Jan 19, 2019): Just doing strip and trim would still let `<Test` slide because of the argument parsing. So we should probably pass name & email via environment variables with `ExecDirEnv`.

GiteaMirror commented 2025-11-02 04:48:11 -06:00

Author

Owner

Copy Link

@zeripath commented on GitHub (Jan 19, 2019):

Take a look at my fix, it's cleverer than that.

@zeripath commented on GitHub (Jan 19, 2019): Take a look at my fix, it's cleverer than that.

GiteaMirror commented 2025-11-02 04:48:11 -06:00

Author

Owner

Copy Link

@Larivact commented on GitHub (Jan 19, 2019):

I see. Thanks for the quick and elegant solution.

@Larivact commented on GitHub (Jan 19, 2019): I see. Thanks for the quick and elegant solution.

GiteaMirror referenced this issue 2025-11-02 12:14:02 -06:00

[PR #2777] [MERGED] Add dingtalk webhook #16585

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

release/v1.25

release/v1.24

release/v1.23

release/v1.22

release/v1.21

release/v1.20

release/v1.19

release/v1.18

release/v1.17

release/v1.16

release/v1.15

release/v1.14

release/v1.13

release/v1.12

release/v1.11

release/v1.10

release/v1.9

release/v1.8

v1.25.3

v1.25.2

v1.25.1

v1.25.0

v1.24.7

v1.25.0-rc0

v1.26.0-dev

v1.24.6

v1.24.5

v1.24.4

v1.24.3

v1.24.2

v1.24.1

v1.24.0

v1.23.8

v1.24.0-rc0

v1.25.0-dev

v1.23.7

v1.23.6

v1.23.5

v1.23.4

v1.23.3

v1.23.2

v1.23.1

v1.23.0

v1.23.0-rc0

v1.24.0-dev

v1.22.6

v1.22.5

v1.22.4

v1.22.3

v1.22.2

v1.22.1

v1.22.0

v1.23.0-dev

v1.22.0-rc1

v1.21.11

v1.22.0-rc0

v1.21.10

v1.21.9

v1.21.8

v1.21.7

v1.21.6

v1.21.5

v1.21.4

v1.21.3

v1.21.2

v1.20.6

v1.21.1

v1.21.0

v1.21.0-rc2

v1.21.0-rc1

v1.20.5

v1.22.0-dev

v1.21.0-rc0

v1.20.4

v1.20.3

v1.20.2

v1.20.1

v1.20.0

v1.19.4

v1.21.0-dev

v1.20.0-rc2

v1.20.0-rc1

v1.20.0-rc0

v1.19.3

v1.19.2

v1.19.1

v1.19.0

v1.19.0-rc1

v1.20.0-dev

v1.19.0-rc0

v1.18.5

v1.18.4

v1.18.3

v1.18.2

v1.18.1

v1.18.0

v1.17.4

v1.18.0-rc1

v1.19.0-dev

v1.18.0-rc0

v1.17.3

v1.17.2

v1.17.1

v1.17.0

v1.17.0-rc2

v1.16.9

v1.17.0-rc1

v1.18.0-dev

v1.16.8

v1.16.7

v1.16.6

v1.16.5

v1.16.4

v1.16.3

v1.16.2

v1.16.1

v1.16.0

v1.15.11

v1.17.0-dev

v1.16.0-rc1

v1.15.10

v1.15.9

v1.15.8

v1.15.7

v1.15.6

v1.15.5

v1.15.4

v1.15.3

v1.15.2

v1.15.1

v1.14.7

v1.15.0

v1.15.0-rc3

v1.14.6

v1.15.0-rc2

v1.14.5

v1.16.0-dev

v1.15.0-rc1

v1.14.4

v1.14.3

v1.14.2

v1.14.1

v1.14.0

v1.13.7

v1.14.0-rc2

v1.13.6

v1.13.5

v1.14.0-rc1

v1.15.0-dev

v1.13.4

v1.13.3

v1.13.2

v1.13.1

v1.13.0

v1.12.6

v1.13.0-rc2

v1.14.0-dev

v1.13.0-rc1

v1.12.5

v1.12.4

v1.12.3

v1.12.2

v1.12.1

v1.11.8

v1.12.0

v1.11.7

v1.12.0-rc2

v1.11.6

v1.12.0-rc1

v1.13.0-dev

v1.11.5

v1.11.4

v1.11.3

v1.10.6

v1.12.0-dev

v1.11.2

v1.10.5

v1.11.1

v1.10.4

v1.11.0

v1.11.0-rc2

v1.10.3

v1.11.0-rc1

v1.10.2

v1.10.1

v1.10.0

v1.9.6

v1.9.5

v1.10.0-rc2

v1.11.0-dev

v1.10.0-rc1

v1.9.4

v1.9.3

v1.9.2

v1.9.1

v1.9.0

v1.9.0-rc2

v1.10.0-dev

v1.9.0-rc1

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.8.0-rc3

v1.7.6

v1.8.0-rc2

v1.7.5

v1.8.0-rc1

v1.9.0-dev

v1.7.4

v1.7.3

v1.7.2

v1.7.1

v1.7.0

v1.7.0-rc3

v1.6.4

v1.7.0-rc2

v1.6.3

v1.7.0-rc1

v1.7.0-dev

v1.6.2

v1.6.1

v1.6.0

v1.6.0-rc2

v1.5.3

v1.6.0-rc1

v1.6.0-dev

v1.5.2

v1.5.1

v1.5.0

v1.5.0-rc2

v1.5.0-rc1

v1.5.0-dev

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.4.0-rc3

v1.4.0-rc2

v1.3.3

v1.4.0-rc1

v1.3.2

v1.3.1

v1.3.0

v1.3.0-rc2

v1.3.0-rc1

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.2.0-rc3

v1.2.0-rc2

v1.1.4

v1.2.0-rc1

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.2

v1.0.1

v1.0.0

v0.9.99

Labels

Clear labels

$20

$250

$50

$500

backport/done

💎 Bounty

docs-update-needed

good first issue

hacktoberfest

issue/bounty

issue/confirmed

issue/critical

issue/duplicate

issue/needs-feedback

issue/not-a-bug

issue/regression

issue/stale

issue/workaround

lgtm/need 2

modifies/api

modifies/translation

outdated/backport/v1.18

outdated/theme/markdown

outdated/theme/timetracker

performance/bigrepo

performance/cpu

performance/memory

performance/speed

pr/breaking

proposal/accepted

proposal/rejected

pr/wip

pull-request

Mirrored from GitHub Pull Request

reviewed/wontfix

💰 Rewarded

skip-changelog

status/blocked

topic/accessibility

topic/api

topic/authentication

topic/build

topic/code-linting

topic/commit-signing

topic/content-rendering

topic/deployment

topic/distribution

topic/federation

topic/gitea-actions

topic/issues

topic/lfs

topic/mobile

topic/moderation

topic/packages

topic/pr

topic/projects

topic/repo

topic/repo-migration

topic/security

topic/theme

topic/ui

topic/ui-interaction

topic/ux

topic/webhooks

topic/wiki

type/bug

type/deprecation

type/docs

type/enhancement

type/feature

type/miscellaneous

type/proposal

type/question

type/refactoring

type/summary

type/testing

type/upstream

No Label type/bug

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/gitea#2777