fix

wxiaoguang · wxiaoguang · commit 4b709db516e1 · 2025-10-03T17:19:49.000+08:00
diff --git a/models/repo/repo.go b/models/repo/repo.go
@@ -605,7 +605,7 @@ func (repo *Repository) IsGenerated() bool {
 
 // RepoPath returns repository path by given user and repository name.
 func RepoPath(userName, repoName string) string { //revive:disable-line:exported
-	return filepath.Join(user_model.UserPath(userName), strings.ToLower(repoName)+".git")
+	return filepath.Join(setting.RepoRootPath, filepath.Clean(strings.ToLower(userName)), filepath.Clean(strings.ToLower(repoName)+".git"))
 }
 
 // RepoPath returns the repository path
diff --git a/models/user/user.go b/models/user/user.go
@@ -980,7 +980,7 @@ func GetInactiveUsers(ctx context.Context, olderThan time.Duration) ([]*User, er
 
 // UserPath returns the path absolute path of user repositories.
 func UserPath(userName string) string { //revive:disable-line:exported
-	return filepath.Join(setting.RepoRootPath, strings.ToLower(userName))
+	return filepath.Join(setting.RepoRootPath, filepath.Clean(strings.ToLower(userName)))
 }
 
 // GetUserByID returns the user object by given ID if exists.
diff --git a/modules/auth/password/hash/argon2.go b/modules/auth/password/hash/argon2.go
@@ -61,17 +61,11 @@ func NewArgon2Hasher(config string) *Argon2Hasher {
 		return nil
 	}
 
-	parsed, err := parseUIntParam(vals[0], "time", "argon2", config, nil)
-	hasher.time = uint32(parsed)
-
-	parsed, err = parseUIntParam(vals[1], "memory", "argon2", config, err)
-	hasher.memory = uint32(parsed)
-
-	parsed, err = parseUIntParam(vals[2], "threads", "argon2", config, err)
-	hasher.threads = uint8(parsed)
-
-	parsed, err = parseUIntParam(vals[3], "keyLen", "argon2", config, err)
-	hasher.keyLen = uint32(parsed)
+	var err error
+	hasher.time, err = parseUintParam[uint32](vals[0], "time", "argon2", config, nil)
+	hasher.memory, err = parseUintParam[uint32](vals[1], "memory", "argon2", config, err)
+	hasher.threads, err = parseUintParam[uint8](vals[2], "threads", "argon2", config, err)
+	hasher.keyLen, err = parseUintParam[uint32](vals[3], "keyLen", "argon2", config, err)
 	if err != nil {
 		return nil
 	}
diff --git a/modules/auth/password/hash/common.go b/modules/auth/password/hash/common.go
@@ -7,6 +7,7 @@ import (
 	"strconv"
 
 	"code.gitea.io/gitea/modules/log"
+	"code.gitea.io/gitea/modules/util"
 )
 
 func parseIntParam(value, param, algorithmName, config string, previousErr error) (int, error) {
@@ -18,11 +19,12 @@ func parseIntParam(value, param, algorithmName, config string, previousErr error
 	return parsed, previousErr // <- Keep the previous error as this function should still return an error once everything has been checked if any call failed
 }
 
-func parseUIntParam(value, param, algorithmName, config string, previousErr error) (uint64, error) { //nolint:unparam // algorithmName is always argon2
-	parsed, err := strconv.ParseUint(value, 10, 64)
+func parseUintParam[T uint32 | uint8](value, param, algorithmName, config string, previousErr error) (ret T, _ error) { //nolint:unparam // algorithmName is always argon2
+	_, isUint32 := any(ret).(uint32)
+	parsed, err := strconv.ParseUint(value, 10, util.Iif(isUint32, 32, 8))
 	if err != nil {
 		log.Error("invalid integer for %s representation in %s hash spec %s", param, algorithmName, config)
 		return 0, err
 	}
-	return parsed, previousErr // <- Keep the previous error as this function should still return an error once everything has been checked if any call failed
+	return T(parsed), previousErr // <- Keep the previous error as this function should still return an error once everything has been checked if any call failed
 }
diff --git a/modules/git/hook.go b/modules/git/hook.go
@@ -45,7 +45,7 @@ func GetHook(repoPath, name string) (*Hook, error) {
 	}
 	h := &Hook{
 		name: name,
-		path: filepath.Join(repoPath, "hooks", name+".d", name),
+		path: filepath.Join(repoPath, filepath.Join("hooks", name+".d", name)),
 	}
 	isFile, err := util.IsFile(h.path)
 	if err != nil {
diff --git a/modules/setting/config_env.go b/modules/setting/config_env.go
@@ -65,7 +65,7 @@ func decodeEnvSectionKey(encoded string) (ok bool, section, key string) {
 		decodedBytes := make([]byte, len(toDecode)/2)
 		for i := 0; i < len(toDecode)/2; i++ {
 			// Can ignore error here as we know these should be hexadecimal from the regexp
-			byteInt, _ := strconv.ParseInt(toDecode[2*i:2*i+2], 16, 0)
+			byteInt, _ := strconv.ParseInt(toDecode[2*i:2*i+2], 16, 8)
 			decodedBytes[i] = byte(byteInt)
 		}
 		if inKey {
diff --git a/modules/tempdir/tempdir.go b/modules/tempdir/tempdir.go
@@ -19,7 +19,7 @@ type TempDir struct {
 }
 
 func (td *TempDir) JoinPath(elems ...string) string {
-	return filepath.Join(append([]string{td.base, td.sub}, elems...)...)
+	return filepath.Join(append([]string{td.base, td.sub}, filepath.Join(elems...))...)
 }
 
 // MkdirAllSub works like os.MkdirAll, but the base directory must exist
diff --git a/modules/util/color.go b/modules/util/color.go
@@ -26,7 +26,7 @@ func HexToRBGColor(colorString string) (float64, float64, float64) {
 	if len(hexString) == 8 {
 		hexString = hexString[0:6]
 	}
-	color, err := strconv.ParseUint(hexString, 16, 64)
+	color, err := strconv.ParseUint(hexString, 16, 32)
 	if err != nil {
 		return 0, 0, 0
 	}
diff --git a/routers/web/repo/activity.go b/routers/web/repo/activity.go
@@ -25,33 +25,28 @@ func Activity(ctx *context.Context) {
 
 	ctx.Data["PageIsPulse"] = true
 
-	ctx.Data["Period"] = ctx.PathParam("period")
-
 	timeUntil := time.Now()
-	var timeFrom time.Time
-
-	switch ctx.Data["Period"] {
+	period, timeFrom := "weekly", timeUntil.Add(-time.Hour*168)
+	switch ctx.PathParam("period") {
 	case "daily":
-		timeFrom = timeUntil.Add(-time.Hour * 24)
+		period, timeFrom = "daily", timeUntil.Add(-time.Hour*24)
 	case "halfweekly":
-		timeFrom = timeUntil.Add(-time.Hour * 72)
+		period, timeFrom = "halfweekly", timeUntil.Add(-time.Hour*72)
 	case "weekly":
-		timeFrom = timeUntil.Add(-time.Hour * 168)
+		period, timeFrom = "weekly", timeUntil.Add(-time.Hour*168)
 	case "monthly":
-		timeFrom = timeUntil.AddDate(0, -1, 0)
+		period, timeFrom = "monthly", timeUntil.AddDate(0, -1, 0)
 	case "quarterly":
-		timeFrom = timeUntil.AddDate(0, -3, 0)
+		period, timeFrom = "quarterly", timeUntil.AddDate(0, -3, 0)
 	case "semiyearly":
-		timeFrom = timeUntil.AddDate(0, -6, 0)
+		period, timeFrom = "semiyearly", timeUntil.AddDate(0, -6, 0)
 	case "yearly":
-		timeFrom = timeUntil.AddDate(-1, 0, 0)
-	default:
-		ctx.Data["Period"] = "weekly"
-		timeFrom = timeUntil.Add(-time.Hour * 168)
+		period, timeFrom = "yearly", timeUntil.AddDate(-1, 0, 0)
 	}
 	ctx.Data["DateFrom"] = timeFrom
 	ctx.Data["DateUntil"] = timeUntil
-	ctx.Data["PeriodText"] = ctx.Tr("repo.activity.period." + ctx.Data["Period"].(string))
+	ctx.Data["Period"] = ctx.Data["Period"]
+	ctx.Data["PeriodText"] = ctx.Tr("repo.activity.period." + period)
 
 	canReadCode := ctx.Repo.CanRead(unit.TypeCode)
 	if canReadCode {
diff --git a/routers/web/repo/githttp.go b/routers/web/repo/githttp.go
@@ -376,7 +376,7 @@ func (h *serviceHandler) sendFile(ctx *context.Context, contentType, file string
 		ctx.Resp.WriteHeader(http.StatusBadRequest)
 		return
 	}
-	reqFile := filepath.Join(h.getRepoDir(), file)
+	reqFile := filepath.Join(h.getRepoDir(), filepath.Clean(file))
 
 	fi, err := os.Stat(reqFile)
 	if os.IsNotExist(err) {
@@ -395,13 +395,12 @@ func (h *serviceHandler) sendFile(ctx *context.Context, contentType, file string
 var safeGitProtocolHeader = regexp.MustCompile(`^[0-9a-zA-Z]+=[0-9a-zA-Z]+(:[0-9a-zA-Z]+=[0-9a-zA-Z]+)*$`)
 
 func prepareGitCmdWithAllowedService(service string) (*gitcmd.Command, error) {
-	if service == "receive-pack" {
-		return gitcmd.NewCommand("receive-pack"), nil
+	if service == ServiceTypeReceivePack {
+		return gitcmd.NewCommand(ServiceTypeReceivePack), nil
 	}
-	if service == "upload-pack" {
-		return gitcmd.NewCommand("upload-pack"), nil
+	if service == ServiceTypeUploadPack {
+		return gitcmd.NewCommand(ServiceTypeUploadPack), nil
 	}
-
 	return nil, fmt.Errorf("service %q is not allowed", service)
 }
 
@@ -464,28 +463,35 @@ func serviceRPC(ctx *context.Context, h *serviceHandler, service string) {
 	}
 }
 
+const (
+	ServiceTypeUploadPack  = "upload-pack"
+	ServiceTypeReceivePack = "receive-pack"
+)
+
 // ServiceUploadPack implements Git Smart HTTP protocol
 func ServiceUploadPack(ctx *context.Context) {
 	h := httpBase(ctx)
 	if h != nil {
-		serviceRPC(ctx, h, "upload-pack")
+		serviceRPC(ctx, h, ServiceTypeUploadPack)
 	}
 }
 
 // ServiceReceivePack implements Git Smart HTTP protocol
 func ServiceReceivePack(ctx *context.Context) {
 	h := httpBase(ctx)
 	if h != nil {
-		serviceRPC(ctx, h, "receive-pack")
+		serviceRPC(ctx, h, ServiceTypeReceivePack)
 	}
 }
 
 func getServiceType(ctx *context.Context) string {
-	serviceType := ctx.Req.FormValue("service")
-	if !strings.HasPrefix(serviceType, "git-") {
-		return ""
+	switch ctx.Req.FormValue("service") {
+	case "git-" + ServiceTypeUploadPack:
+		return ServiceTypeUploadPack
+	case "git-" + ServiceTypeReceivePack:
+		return ServiceTypeReceivePack
 	}
-	return strings.TrimPrefix(serviceType, "git-")
+	return ""
 }
 
 func updateServerInfo(ctx gocontext.Context, dir string) []byte {
diff --git a/services/context/access_log.go b/services/context/access_log.go
@@ -10,6 +10,7 @@ import (
 	"strings"
 	"text/template"
 	"time"
+	"unicode"
 
 	user_model "code.gitea.io/gitea/models/user"
 	"code.gitea.io/gitea/modules/log"
@@ -37,6 +38,16 @@ const keyOfRequestIDInTemplate = ".RequestID"
 // So, we accept a Request ID with a maximum character length of 40
 const maxRequestIDByteLength = 40
 
+func isSafeRequestID(id string) bool {
+	for _, r := range id {
+		safe := unicode.IsPrint(r)
+		if !safe {
+			return false
+		}
+	}
+	return true
+}
+
 func parseRequestIDFromRequestHeader(req *http.Request) string {
 	requestID := "-"
 	for _, key := range setting.Log.RequestIDHeaders {
@@ -45,6 +56,9 @@ func parseRequestIDFromRequestHeader(req *http.Request) string {
 			break
 		}
 	}
+	if !isSafeRequestID(requestID) {
+		return "-"
+	}
 	if len(requestID) > maxRequestIDByteLength {
 		requestID = requestID[:maxRequestIDByteLength] + "..."
 	}
diff --git a/services/context/access_log_test.go b/services/context/access_log_test.go
@@ -69,3 +69,8 @@ func TestAccessLogger(t *testing.T) {
 	recorder.record(time.Date(2000, 1, 2, 3, 4, 5, 0, time.UTC), &testAccessLoggerResponseWriterMock{}, req)
 	assert.Equal(t, []string{`remote-addr - - [02/Jan/2000:03:04:05 +0000] "GET /path https" 200 123123 "referer" "user-agent"`}, mockLogger.logs)
 }
+
+func TestAccessLoggerRequestID(t *testing.T) {
+	assert.False(t, isSafeRequestID("\x00"))
+	assert.True(t, isSafeRequestID("a b-c"))
+}
diff --git a/web_src/fomantic/build/components/dropdown.js b/web_src/fomantic/build/components/dropdown.js
@@ -66,7 +66,7 @@ $.fn.dropdown = function(parameters) {
         moduleNamespace = 'module-' + namespace,
 
         $module         = $(this),
-        $context        = $(settings.context),
+        $context        = $(document).find(settings.context), // GITEA-PATCH: use "jQuery.find(selector)" instead of "jQuery(selector)"
         $text           = $module.find(selector.text),
         $search         = $module.find(selector.search),
         $sizer          = $module.find(selector.sizer),
diff --git a/web_src/fomantic/build/components/modal.js b/web_src/fomantic/build/components/modal.js
@@ -64,7 +64,7 @@ $.fn.modal = function(parameters) {
         moduleNamespace = 'module-' + namespace,
 
         $module         = $(this),
-        $context        = $(settings.context),
+        $context        = $(document).find(settings.context), // GITEA-PATCH: use "jQuery.find(selector)" instead of "jQuery(selector)"
         $close          = $module.find(selector.close),
 
         $allModals,
diff --git a/web_src/js/features/repo-issue.ts b/web_src/js/features/repo-issue.ts
@@ -333,7 +333,7 @@ export function initRepoPullRequestReview() {
     let ntr = tr.nextElementSibling;
     if (!ntr?.classList.contains('add-comment')) {
       ntr = createElementFromHTML(`
-        <tr class="add-comment" data-line-type="${lineType}">
+        <tr class="add-comment" data-line-type="${htmlEscape(lineType)}">
           ${isSplit ? `
             <td class="add-comment-left" colspan="4"></td>
             <td class="add-comment-right" colspan="4"></td>
diff --git a/web_src/js/modules/fomantic/base.ts b/web_src/js/modules/fomantic/base.ts
@@ -14,4 +14,6 @@ export function linkLabelAndInput(label: Element, input: Element) {
   }
 }
 
-export const fomanticQuery = $;
+export function fomanticQuery(s: string) {
+  return $(document).find(s);
+}
diff --git a/web_src/js/utils.ts b/web_src/js/utils.ts
@@ -35,7 +35,12 @@ export function isDarkTheme(): boolean {
 
 /** strip <tags> from a string */
 export function stripTags(text: string): string {
-  return text.replace(/<[^>]*>?/g, '');
+  let prev = '';
+  while (prev !== text) {
+    prev = text;
+    text = text.replace(/<[^>]*>?/g, '');
+  }
+  return text;
 }
 
 export function parseIssueHref(href: string): IssuePathInfo {

Original file line number	Diff line number	Diff line change
`@@ -605,7 +605,7 @@ func (repo *Repository) IsGenerated() bool {`
`605`	`605`
`606`	`606`	`// RepoPath returns repository path by given user and repository name.`
`607`	`607`	`func RepoPath(userName, repoName string) string { //revive:disable-line:exported`
`608`		`- return filepath.Join(user_model.UserPath(userName), strings.ToLower(repoName)+".git")`
	`608`	`+ return filepath.Join(setting.RepoRootPath, filepath.Clean(strings.ToLower(userName)), filepath.Clean(strings.ToLower(repoName)+".git"))`
`609`	`609`	`}`
`610`	`610`
`611`	`611`	`// RepoPath returns the repository path`
Original file line number	Diff line number	Diff line change
`@@ -980,7 +980,7 @@ func GetInactiveUsers(ctx context.Context, olderThan time.Duration) ([]*User, er`
`980`	`980`
`981`	`981`	`// UserPath returns the path absolute path of user repositories.`
`982`	`982`	`func UserPath(userName string) string { //revive:disable-line:exported`
`983`		`- return filepath.Join(setting.RepoRootPath, strings.ToLower(userName))`
	`983`	`+ return filepath.Join(setting.RepoRootPath, filepath.Clean(strings.ToLower(userName)))`
`984`	`984`	`}`
`985`	`985`
`986`	`986`	`// GetUserByID returns the user object by given ID if exists.`
Original file line number	Diff line number	Diff line change
`@@ -7,6 +7,7 @@ import (`
`7`	`7`	`"strconv"`
`8`	`8`
`9`	`9`	`"code.gitea.io/gitea/modules/log"`
	`10`	`+ "code.gitea.io/gitea/modules/util"`
`10`	`11`	`)`
`11`	`12`
`12`	`13`	`func parseIntParam(value, param, algorithmName, config string, previousErr error) (int, error) {`
`@@ -18,11 +19,12 @@ func parseIntParam(value, param, algorithmName, config string, previousErr error`
`18`	`19`	`return parsed, previousErr // <- Keep the previous error as this function should still return an error once everything has been checked if any call failed`
`19`	`20`	`}`
`20`	`21`
`21`		`-func parseUIntParam(value, param, algorithmName, config string, previousErr error) (uint64, error) { //nolint:unparam // algorithmName is always argon2`
`22`		`- parsed, err := strconv.ParseUint(value, 10, 64)`
	`22`	`+func parseUintParam[T uint32 \| uint8](value, param, algorithmName, config string, previousErr error) (ret T, _ error) { //nolint:unparam // algorithmName is always argon2`
	`23`	`+ _, isUint32 := any(ret).(uint32)`
	`24`	`+ parsed, err := strconv.ParseUint(value, 10, util.Iif(isUint32, 32, 8))`
`23`	`25`	`if err != nil {`
`24`	`26`	`log.Error("invalid integer for %s representation in %s hash spec %s", param, algorithmName, config)`
`25`	`27`	`return 0, err`
`26`	`28`	`}`
`27`		`- return parsed, previousErr // <- Keep the previous error as this function should still return an error once everything has been checked if any call failed`
	`29`	`+ return T(parsed), previousErr // <- Keep the previous error as this function should still return an error once everything has been checked if any call failed`
`28`	`30`	`}`
Original file line number	Diff line number	Diff line change
`@@ -45,7 +45,7 @@ func GetHook(repoPath, name string) (*Hook, error) {`
`45`	`45`	`}`
`46`	`46`	`h := &Hook{`
`47`	`47`	`name: name,`
`48`		`- path: filepath.Join(repoPath, "hooks", name+".d", name),`
	`48`	`+ path: filepath.Join(repoPath, filepath.Join("hooks", name+".d", name)),`
`49`	`49`	`}`
`50`	`50`	`isFile, err := util.IsFile(h.path)`
`51`	`51`	`if err != nil {`
Original file line number	Diff line number	Diff line change
`@@ -65,7 +65,7 @@ func decodeEnvSectionKey(encoded string) (ok bool, section, key string) {`
`65`	`65`	`decodedBytes := make([]byte, len(toDecode)/2)`
`66`	`66`	`for i := 0; i < len(toDecode)/2; i++ {`
`67`	`67`	`// Can ignore error here as we know these should be hexadecimal from the regexp`
`68`		`- byteInt, _ := strconv.ParseInt(toDecode[2i:2i+2], 16, 0)`
	`68`	`+ byteInt, _ := strconv.ParseInt(toDecode[2i:2i+2], 16, 8)`
`69`	`69`	`decodedBytes[i] = byte(byteInt)`
`70`	`70`	`}`
`71`	`71`	`if inKey {`
Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ type TempDir struct {`
`19`	`19`	`}`
`20`	`20`
`21`	`21`	`func (td *TempDir) JoinPath(elems ...string) string {`
`22`		`- return filepath.Join(append([]string{td.base, td.sub}, elems...)...)`
	`22`	`+ return filepath.Join(append([]string{td.base, td.sub}, filepath.Join(elems...))...)`
`23`	`23`	`}`
`24`	`24`
`25`	`25`	`// MkdirAllSub works like os.MkdirAll, but the base directory must exist`
Original file line number	Diff line number	Diff line change
`@@ -26,7 +26,7 @@ func HexToRBGColor(colorString string) (float64, float64, float64) {`
`26`	`26`	`if len(hexString) == 8 {`
`27`	`27`	`hexString = hexString[0:6]`
`28`	`28`	`}`
`29`		`- color, err := strconv.ParseUint(hexString, 16, 64)`
	`29`	`+ color, err := strconv.ParseUint(hexString, 16, 32)`
`30`	`30`	`if err != nil {`
`31`	`31`	`return 0, 0, 0`
`32`	`32`	`}`
Original file line number	Diff line number	Diff line change
`@@ -376,7 +376,7 @@ func (h serviceHandler) sendFile(ctx context.Context, contentType, file string`
`376`	`376`	`ctx.Resp.WriteHeader(http.StatusBadRequest)`
`377`	`377`	`return`
`378`	`378`	`}`
`379`		`- reqFile := filepath.Join(h.getRepoDir(), file)`
	`379`	`+ reqFile := filepath.Join(h.getRepoDir(), filepath.Clean(file))`
`380`	`380`
`381`	`381`	`fi, err := os.Stat(reqFile)`
`382`	`382`	`if os.IsNotExist(err) {`
`@@ -395,13 +395,12 @@ func (h serviceHandler) sendFile(ctx context.Context, contentType, file string`
`395`	`395`	var safeGitProtocolHeader = regexp.MustCompile(`^[0-9a-zA-Z]+=[0-9a-zA-Z]+(:[0-9a-zA-Z]+=[0-9a-zA-Z]+)*$`)
`396`	`396`
`397`	`397`	`func prepareGitCmdWithAllowedService(service string) (*gitcmd.Command, error) {`
`398`		`- if service == "receive-pack" {`
`399`		`- return gitcmd.NewCommand("receive-pack"), nil`
	`398`	`+ if service == ServiceTypeReceivePack {`
	`399`	`+ return gitcmd.NewCommand(ServiceTypeReceivePack), nil`
`400`	`400`	`}`
`401`		`- if service == "upload-pack" {`
`402`		`- return gitcmd.NewCommand("upload-pack"), nil`
	`401`	`+ if service == ServiceTypeUploadPack {`
	`402`	`+ return gitcmd.NewCommand(ServiceTypeUploadPack), nil`
`403`	`403`	`}`
`404`		`-`
`405`	`404`	`return nil, fmt.Errorf("service %q is not allowed", service)`
`406`	`405`	`}`
`407`	`406`
`@@ -464,28 +463,35 @@ func serviceRPC(ctx context.Context, h serviceHandler, service string) {`
`464`	`463`	`}`
`465`	`464`	`}`
`466`	`465`
	`466`	`+const (`
	`467`	`+ ServiceTypeUploadPack = "upload-pack"`
	`468`	`+ ServiceTypeReceivePack = "receive-pack"`
	`469`	`+)`
	`470`	`+`
`467`	`471`	`// ServiceUploadPack implements Git Smart HTTP protocol`
`468`	`472`	`func ServiceUploadPack(ctx *context.Context) {`
`469`	`473`	`h := httpBase(ctx)`
`470`	`474`	`if h != nil {`
`471`		`- serviceRPC(ctx, h, "upload-pack")`
	`475`	`+ serviceRPC(ctx, h, ServiceTypeUploadPack)`
`472`	`476`	`}`
`473`	`477`	`}`
`474`	`478`
`475`	`479`	`// ServiceReceivePack implements Git Smart HTTP protocol`
`476`	`480`	`func ServiceReceivePack(ctx *context.Context) {`
`477`	`481`	`h := httpBase(ctx)`
`478`	`482`	`if h != nil {`
`479`		`- serviceRPC(ctx, h, "receive-pack")`
	`483`	`+ serviceRPC(ctx, h, ServiceTypeReceivePack)`
`480`	`484`	`}`
`481`	`485`	`}`
`482`	`486`
`483`	`487`	`func getServiceType(ctx *context.Context) string {`
`484`		`- serviceType := ctx.Req.FormValue("service")`
`485`		`- if !strings.HasPrefix(serviceType, "git-") {`
`486`		`- return ""`
	`488`	`+ switch ctx.Req.FormValue("service") {`
	`489`	`+ case "git-" + ServiceTypeUploadPack:`
	`490`	`+ return ServiceTypeUploadPack`
	`491`	`+ case "git-" + ServiceTypeReceivePack:`
	`492`	`+ return ServiceTypeReceivePack`
`487`	`493`	`}`
`488`		`- return strings.TrimPrefix(serviceType, "git-")`
	`494`	`+ return ""`
`489`	`495`	`}`
`490`	`496`
`491`	`497`	`func updateServerInfo(ctx gocontext.Context, dir string) []byte {`