kotovalexarian-likes-github/moby--moby
1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2022-11-09 12:21:53 -05:00
Code Releases Activity

Only use fallback to short IDs when obvious.

Browse source 
As reported in #11294, the Docker daemon will execute contains it
shouldn't run in the event that a requested tag is present in an image's
ID. This leads to the wrong image being started up silently.

This change reduces the risk of such a collision by using the short ID
iff the actual revOrTag looks like a short ID (not that it necessarily
is).

Signed-off-by: Richard Burnison <rburnison@ebay.com>
This commit is contained in:
Richard Burnison 2015-04-10 13:09:08 -04:00
parent 7cec5f50c5
commit 8d1a500303
3 changed files with 39 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
graph/tags.go
View file

@ -335,11 +335,14 @@ func (store *TagStore) GetImage(repoName, refOrID string) (*image.Image, error)
} }
// If no matching tag is found, search through images for a matching image id // If no matching tag is found, search through images for a matching image id
// iff it looks like a short ID or would look like a short ID
if stringid.IsShortID(stringid.TruncateID(refOrID)) {
for _, revision := range repo { for _, revision := range repo {
if strings.HasPrefix(revision, refOrID) { if strings.HasPrefix(revision, refOrID) {
return store.graph.Get(revision) return store.graph.Get(revision)
} }
} }
}
return nil, nil return nil, nil
} }

14
pkg/stringid/stringid.go
View file

@ -4,19 +4,27 @@ import (
"crypto/rand" "crypto/rand"
"encoding/hex" "encoding/hex"
"io" "io"
"regexp"
"strconv" "strconv"
) )
const shortLen = 12
// Determine if an arbitrary string *looks like* a short ID.
func IsShortID(id string) bool {
return regexp.MustCompile("^[a-z0-9]{12}$").MatchString(id)
}
// TruncateID returns a shorthand version of a string identifier for convenience. // TruncateID returns a shorthand version of a string identifier for convenience.
// A collision with other shorthands is very unlikely, but possible. // A collision with other shorthands is very unlikely, but possible.
// In case of a collision a lookup with TruncIndex.Get() will fail, and the caller // In case of a collision a lookup with TruncIndex.Get() will fail, and the caller
// will need to use a langer prefix, or the full-length Id. // will need to use a langer prefix, or the full-length Id.
func TruncateID(id string) string { func TruncateID(id string) string {
shortLen := 12 trimTo := shortLen
if len(id) < shortLen { if len(id) < shortLen {
shortLen = len(id) trimTo = len(id)
} }
return id[:shortLen] return id[:trimTo]
} }
// GenerateRandomID returns an unique id // GenerateRandomID returns an unique id

23
pkg/stringid/stringid_test.go
View file

@ -1,6 +1,9 @@
package stringid package stringid
import "testing" import (
"strings"
"testing"
)
func TestGenerateRandomID(t *testing.T) { func TestGenerateRandomID(t *testing.T) {
id := GenerateRandomID() id := GenerateRandomID()
@ -33,3 +36,21 @@ func TestShortenIdInvalid(t *testing.T) {
t.Fatalf("Id returned is incorrect: truncate on %s returned %s", id, truncID) t.Fatalf("Id returned is incorrect: truncate on %s returned %s", id, truncID)
} }
} }
func TestIsShortIDNonHex(t *testing.T) {
id := "some non-hex value"
if IsShortID(id) {
t.Fatalf("%s is not a short ID", id)
}
}
func TestIsShortIDNotCorrectSize(t *testing.T) {
id := strings.Repeat("a", shortLen+1)
if IsShortID(id) {
t.Fatalf("%s is not a short ID", id)
}
id = strings.Repeat("a", shortLen-1)
if IsShortID(id) {
t.Fatalf("%s is not a short ID", id)
}
}