From d230fc216d10a4d60236a0702e10b5bdbd59e607 Mon Sep 17 00:00:00 2001
From: Lunny Xiao <xiaolunwen@gmail.com>
Date: Sat, 11 Feb 2017 22:24:35 +0800
Subject: [PATCH 1/2] don't rewrite non-gitea public keys

---
 models/ssh_key.go | 30 +++++++++++++++++++++++++++---
 1 file changed, 27 insertions(+), 3 deletions(-)

diff --git a/models/ssh_key.go b/models/ssh_key.go
index e82fd3aad3e63..7d05000765321 100644
--- a/models/ssh_key.go
+++ b/models/ssh_key.go
@@ -5,6 +5,7 @@
 package models
 
 import (
+	"bufio"
 	"encoding/base64"
 	"encoding/binary"
 	"errors"
@@ -28,7 +29,8 @@ import (
 )
 
 const (
-	tplPublicKey = `command="%s serv key-%d --config='%s'",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty %s` + "\n"
+	tplCommentPrefix = `command="%s serv`
+	tplPublicKey     = tplCommentPrefix + ` key-%d --config='%s'",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty %s` + "\n"
 )
 
 var sshOpLocker sync.Mutex
@@ -559,16 +561,38 @@ func RewriteAllPublicKeys() error {
 		_, err = f.WriteString((bean.(*PublicKey)).AuthorizedString())
 		return err
 	})
-	f.Close()
+
 	if err != nil {
+		f.Close()
 		return err
 	}
 
 	if com.IsExist(fpath) {
-		if err = os.Remove(fpath); err != nil {
+		if err = os.Rename(fpath, fpath+".gitea_bak"); err != nil {
+			f.Close()
 			return err
 		}
+
+		p, err := os.Open(fpath + ".gitea_bak")
+		if err != nil {
+			f.Close()
+			return err
+		}
+		defer p.Close()
+		scanner := bufio.NewScanner(p)
+		prefix := fmt.Sprintf(tplCommentPrefix, setting.AppPath)
+		for scanner.Scan() {
+			line := scanner.Text()
+			if !strings.HasPrefix(line, prefix) {
+				_, err = f.WriteString(line + "\n")
+				if err != nil {
+					f.Close()
+					return err
+				}
+			}
+		}
 	}
+	f.Close()
 	if err = os.Rename(tmpPath, fpath); err != nil {
 		return err
 	}

From 671781edcedc2739aa34a442ccb378e3c56c4ec2 Mon Sep 17 00:00:00 2001
From: Lunny Xiao <xiaolunwen@gmail.com>
Date: Mon, 27 Feb 2017 12:20:38 +0800
Subject: [PATCH 2/2] add comment for public key

---
 models/migrations/migrations.go |  2 ++
 models/migrations/v21.go        | 53 +++++++++++++++++++++++++++++++++
 models/ssh_key.go               | 34 +++++++++++----------
 3 files changed, 73 insertions(+), 16 deletions(-)
 create mode 100644 models/migrations/v21.go

diff --git a/models/migrations/migrations.go b/models/migrations/migrations.go
index b3e7fcc8c6d6c..bcf6285923916 100644
--- a/models/migrations/migrations.go
+++ b/models/migrations/migrations.go
@@ -90,6 +90,8 @@ var migrations = []Migration{
 	NewMigration("generate and migrate Git hooks", generateAndMigrateGitHooks),
 	// v20 -> v21
 	NewMigration("use new avatar path name for security reason", useNewNameAvatars),
+	// v21 -> v22
+	NewMigration("rewrite authorized_keys file via new format", useNewPublickeyFormat),
 }
 
 // Migrate database to current version
diff --git a/models/migrations/v21.go b/models/migrations/v21.go
new file mode 100644
index 0000000000000..f7f01f062b750
--- /dev/null
+++ b/models/migrations/v21.go
@@ -0,0 +1,53 @@
+// Copyright 2017 Gitea. All rights reserved.
+// Use of this source code is governed by a MIT-style
+// license that can be found in the LICENSE file.
+
+package migrations
+
+import (
+	"fmt"
+	"os"
+	"path/filepath"
+
+	"code.gitea.io/gitea/modules/setting"
+
+	"github.com/go-xorm/xorm"
+)
+
+const (
+	tplCommentPrefix = `# gitea public key`
+	tplPublicKey     = tplCommentPrefix + "\n" + `command="%s serv key-%d --config='%s'",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty %s` + "\n"
+)
+
+func useNewPublickeyFormat(x *xorm.Engine) error {
+	fpath := filepath.Join(setting.SSH.RootPath, "authorized_keys")
+	tmpPath := fpath + ".tmp"
+	f, err := os.OpenFile(tmpPath, os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0600)
+	if err != nil {
+		return err
+	}
+	defer func() {
+		f.Close()
+		os.Remove(tmpPath)
+	}()
+
+	type PublicKey struct {
+		ID      int64
+		Content string
+	}
+
+	err = x.Iterate(new(PublicKey), func(idx int, bean interface{}) (err error) {
+		key := bean.(*PublicKey)
+		_, err = f.WriteString(fmt.Sprintf(tplPublicKey, setting.AppPath, key.ID, setting.CustomConf, key.Content))
+		return err
+	})
+	if err != nil {
+		return err
+	}
+
+	f.Close()
+	if err = os.Rename(tmpPath, fpath); err != nil {
+		return err
+	}
+	return nil
+}
diff --git a/models/ssh_key.go b/models/ssh_key.go
index 7d05000765321..802333f48c21d 100644
--- a/models/ssh_key.go
+++ b/models/ssh_key.go
@@ -29,8 +29,8 @@ import (
 )
 
 const (
-	tplCommentPrefix = `command="%s serv`
-	tplPublicKey     = tplCommentPrefix + ` key-%d --config='%s'",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty %s` + "\n"
+	tplCommentPrefix = `# gitea public key`
+	tplPublicKey     = tplCommentPrefix + "\n" + `command="%s serv key-%d --config='%s'",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty %s` + "\n"
 )
 
 var sshOpLocker sync.Mutex
@@ -555,43 +555,45 @@ func RewriteAllPublicKeys() error {
 	if err != nil {
 		return err
 	}
-	defer os.Remove(tmpPath)
+	defer func() {
+		f.Close()
+		os.Remove(tmpPath)
+	}()
 
 	err = x.Iterate(new(PublicKey), func(idx int, bean interface{}) (err error) {
 		_, err = f.WriteString((bean.(*PublicKey)).AuthorizedString())
 		return err
 	})
-
 	if err != nil {
-		f.Close()
 		return err
 	}
 
 	if com.IsExist(fpath) {
-		if err = os.Rename(fpath, fpath+".gitea_bak"); err != nil {
-			f.Close()
+		bakPath := fpath + fmt.Sprintf("_%d.gitea_bak", time.Now().Unix())
+		if err = com.Copy(fpath, bakPath); err != nil {
 			return err
 		}
 
-		p, err := os.Open(fpath + ".gitea_bak")
+		p, err := os.Open(bakPath)
 		if err != nil {
-			f.Close()
 			return err
 		}
 		defer p.Close()
+
 		scanner := bufio.NewScanner(p)
-		prefix := fmt.Sprintf(tplCommentPrefix, setting.AppPath)
 		for scanner.Scan() {
 			line := scanner.Text()
-			if !strings.HasPrefix(line, prefix) {
-				_, err = f.WriteString(line + "\n")
-				if err != nil {
-					f.Close()
-					return err
-				}
+			if strings.HasPrefix(line, tplCommentPrefix) {
+				scanner.Scan()
+				continue
+			}
+			_, err = f.WriteString(line + "\n")
+			if err != nil {
+				return err
 			}
 		}
 	}
+
 	f.Close()
 	if err = os.Rename(tmpPath, fpath); err != nil {
 		return err