We use cookies to ensure you get the best experience on our website
Página inicial Explorar Ajuda
Registrar Entrar
0ct0pu5
/
moby
1
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Ver código fonte

Stop ADD from following symlinks outside the context when passed as the first argument

Docker-DCO-1.1-Signed-off-by: Andrew Page <admwiggin@gmail.com> (github: tianon)

Docker-DCO-1.1-Signed-off-by: Tianon Gravi <admwiggin@gmail.com> (github: crosbymichael)
Tianon Gravi 11 anos atrás
pai
845b816686
commit
ad69836247
1 arquivos alterados com 5 adições e 0 exclusões
Visão dividida Mostrar estatísticas do Diff
  1. 5 0
      buildfile.go

+ 5 - 0
buildfile.go
Ver arquivo 

@@ -287,6 +287,11 @@ func (b *buildFile) CmdVolume(args string) error {
 
 
 func (b *buildFile) checkPathForAddition(orig string) error {
 
 	origPath := path.Join(b.contextPath, orig)
 
+	if p, err := filepath.EvalSymlinks(origPath); err != nil {
 
+		return err
 
+	} else {
 
+		origPath = p
 
+	}
 
 	if !strings.HasPrefix(origPath, b.contextPath) {
 
 		return fmt.Errorf("Forbidden path outside the build context: %s (%s)", orig, origPath)
 
 	}

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5