p4u1/docker-cli
0
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
d2386de2d74682f57d2d83d9295c807db04d0d7e
docker-cli/components/engine/api
History
Aaron Lehmann d54e9ca21b Send push information to trust code out-of-band 
The trust code used to parse the console output of `docker push` to
extract the digest, tag, and size information and determine what to
sign. This is fragile and might give an attacker control over what gets
signed if the attacker can find a way to influence what gets printed as
part of the push output.

This commit sends the push metadata out-of-band. It introduces an `Aux`
field in JSONMessage that can carry application-specific data alongside
progress updates. Instead of parsing formatted output, the client looks
in this field to get the digest, size, and tag from the push.

Signed-off-by: Aaron Lehmann <aaron.lehmann@docker.com>
Upstream-commit: 65370be888d940899593a001024f53d6b83b4bb0
Component: engine
2016-01-08 10:57:50 -08:00
..
client
Send push information to trust code out-of-band
2016-01-08 10:57:50 -08:00
fixtures
Add more unit tests (thus coverage) to pkg api
2015-08-04 19:51:02 +02:00
server
Modify import paths to point to the new engine-api package.
2016-01-06 19:48:59 -05:00
common_test.go
Modify import paths to point to the new engine-api package.
2016-01-06 19:48:59 -05:00
common.go
Modify import paths to point to the new engine-api package.
2016-01-06 19:48:59 -05:00
README.md
Update README.md
2014-07-04 18:21:13 +09:00

README.md

This directory contains code pertaining to the Docker API:

  • Used by the docker client when communicating with the docker daemon

  • Used by third party tools wishing to interface with the docker daemon