rpms / podman

Clone
Source Code
GIT

Blame SOURCES/podman-CVE-2019-10214.patch

c7-alt c7-extras c7-extras-i686 c8-beta-stream-1.0 c8-beta-stream-2.0 c8-beta-stream-3.0 c8-beta-stream-4.0 c8-beta-stream-rhel8 c8-stream-1.0 c8-stream-2.0 c8-stream-3.0 c8-stream-4.0 c8-stream-rhel8 c8s c8s-stream-1.0 c8s-stream-2.0 c8s-stream-3.0 c8s-stream-4.0 c8s-stream-rhel8 c9 c9-beta c9-beta-stream-latest
  1.   adb70caa5107dc3f2f71da38ec1916f5e7d09d6d
  2.   SOURCES
  3.   podman-CVE-2019-10214.patch
Blob History Raw
adb70c 
diff -up ./libpod-921f98f8795eb9fcb19ce581020cfdeff6dee09f/cri-o-9b1f0a08285a7f74b21cc9b6bfd98a48905a7ba2/vendor/github.com/containers/image/docker/docker_client.go.CVE-2019-10214 ./libpod-921f98f8795eb9fcb19ce581020cfdeff6dee09f/cri-o-9b1f0a08285a7f74b21cc9b6bfd98a48905a7ba2/vendor/github.com/containers/image/docker/docker_client.go
adb70c 
--- ./libpod-921f98f8795eb9fcb19ce581020cfdeff6dee09f/cri-o-9b1f0a08285a7f74b21cc9b6bfd98a48905a7ba2/vendor/github.com/containers/image/docker/docker_client.go.CVE-2019-10214	2019-09-12 15:16:38.812884788 +0200
adb70c 
+++ ./libpod-921f98f8795eb9fcb19ce581020cfdeff6dee09f/cri-o-9b1f0a08285a7f74b21cc9b6bfd98a48905a7ba2/vendor/github.com/containers/image/docker/docker_client.go	2019-09-12 15:16:38.813884801 +0200
adb70c 
@@ -530,11 +530,7 @@ func (c *dockerClient) getBearerToken(ct
adb70c 
 		authReq.SetBasicAuth(c.username, c.password)
adb70c 
 	}
adb70c 
 	logrus.Debugf("%s %s", authReq.Method, authReq.URL.String())
adb70c 
-	tr := tlsclientconfig.NewTransport()
adb70c 
-	// TODO(runcom): insecure for now to contact the external token service
adb70c 
-	tr.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
adb70c 
-	client := &http.Client{Transport: tr}
adb70c 
-	res, err := client.Do(authReq)
adb70c 
+	res, err := c.client.Do(authReq)
adb70c 
 	if err != nil {
adb70c 
 		return nil, err
adb70c 
 	}
adb70c 
diff -up ./libpod-921f98f8795eb9fcb19ce581020cfdeff6dee09f/vendor/github.com/containers/image/docker/docker_client.go.CVE-2019-10214 ./libpod-921f98f8795eb9fcb19ce581020cfdeff6dee09f/vendor/github.com/containers/image/docker/docker_client.go
adb70c 
--- ./libpod-921f98f8795eb9fcb19ce581020cfdeff6dee09f/vendor/github.com/containers/image/docker/docker_client.go.CVE-2019-10214	2019-09-12 15:16:38.815884828 +0200
adb70c 
+++ ./libpod-921f98f8795eb9fcb19ce581020cfdeff6dee09f/vendor/github.com/containers/image/docker/docker_client.go	2019-09-12 15:16:38.816884841 +0200
adb70c 
@@ -530,11 +530,7 @@ func (c *dockerClient) getBearerToken(ct
adb70c 
 		authReq.SetBasicAuth(c.username, c.password)
adb70c 
 	}
adb70c 
 	logrus.Debugf("%s %s", authReq.Method, authReq.URL.String())
adb70c 
-	tr := tlsclientconfig.NewTransport()
adb70c 
-	// TODO(runcom): insecure for now to contact the external token service
adb70c 
-	tr.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
adb70c 
-	client := &http.Client{Transport: tr}
adb70c 
-	res, err := client.Do(authReq)
adb70c 
+	res, err := c.client.Do(authReq)
adb70c 
 	if err != nil {
adb70c 
 		return nil, err
adb70c 
 	}

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation