mirror of
https://github.com/containers/podman.git
synced 2025-06-06 06:44:53 +08:00
fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
This commit is contained in:
renovate[bot]
2
go.mod
2
go.mod
@ -23,7 +23,7 @@ require (
|
|||||||
github.com/coreos/go-systemd/v22 v22.5.0
|
github.com/coreos/go-systemd/v22 v22.5.0
|
||||||
github.com/coreos/stream-metadata-go v0.4.3
|
github.com/coreos/stream-metadata-go v0.4.3
|
||||||
github.com/crc-org/vfkit v0.1.1
|
github.com/crc-org/vfkit v0.1.1
|
||||||
github.com/cyphar/filepath-securejoin v0.2.3
|
github.com/cyphar/filepath-securejoin v0.2.4
|
||||||
github.com/digitalocean/go-qemu v0.0.0-20230711162256-2e3d0186973e
|
github.com/digitalocean/go-qemu v0.0.0-20230711162256-2e3d0186973e
|
||||||
github.com/docker/distribution v2.8.2+incompatible
|
github.com/docker/distribution v2.8.2+incompatible
|
||||||
github.com/docker/docker v24.0.5+incompatible
|
github.com/docker/docker v24.0.5+incompatible
|
||||||
|
|||||||
3
go.sum
3
go.sum
@ -299,8 +299,9 @@ github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ3
|
|||||||
github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY=
|
github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY=
|
||||||
github.com/cyberphone/json-canonicalization v0.0.0-20230710064741-aa7fe85c7dbd h1:0av0vtcjA8Hqv5gyWj79CLCFVwOOyBNWPjrfUWceMNg=
|
github.com/cyberphone/json-canonicalization v0.0.0-20230710064741-aa7fe85c7dbd h1:0av0vtcjA8Hqv5gyWj79CLCFVwOOyBNWPjrfUWceMNg=
|
||||||
github.com/cyberphone/json-canonicalization v0.0.0-20230710064741-aa7fe85c7dbd/go.mod h1:uzvlm1mxhHkdfqitSA92i7Se+S9ksOn3a3qmv/kyOCw=
|
github.com/cyberphone/json-canonicalization v0.0.0-20230710064741-aa7fe85c7dbd/go.mod h1:uzvlm1mxhHkdfqitSA92i7Se+S9ksOn3a3qmv/kyOCw=
|
||||||
github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
|
|
||||||
github.com/cyphar/filepath-securejoin v0.2.3/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
|
github.com/cyphar/filepath-securejoin v0.2.3/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
|
||||||
|
github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
|
||||||
|
github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
|
||||||
github.com/d2g/dhcp4 v0.0.0-20170904100407-a1d1b6c41b1c/go.mod h1:Ct2BUK8SB0YC1SMSibvLzxjeJLnrYEVLULFNiHY9YfQ=
|
github.com/d2g/dhcp4 v0.0.0-20170904100407-a1d1b6c41b1c/go.mod h1:Ct2BUK8SB0YC1SMSibvLzxjeJLnrYEVLULFNiHY9YfQ=
|
||||||
github.com/d2g/dhcp4client v1.0.0/go.mod h1:j0hNfjhrt2SxUOw55nL0ATM/z4Yt3t2Kd1mW34z5W5s=
|
github.com/d2g/dhcp4client v1.0.0/go.mod h1:j0hNfjhrt2SxUOw55nL0ATM/z4Yt3t2Kd1mW34z5W5s=
|
||||||
github.com/d2g/dhcp4server v0.0.0-20181031114812-7d4a0a7f59a5/go.mod h1:Eo87+Kg/IX2hfWJfwxMzLyuSZyxSoAug2nGa1G2QAi8=
|
github.com/d2g/dhcp4server v0.0.0-20181031114812-7d4a0a7f59a5/go.mod h1:Eo87+Kg/IX2hfWJfwxMzLyuSZyxSoAug2nGa1G2QAi8=
|
||||||
|
|||||||
21
vendor/github.com/cyphar/filepath-securejoin/.travis.yml
generated
vendored
21
vendor/github.com/cyphar/filepath-securejoin/.travis.yml
generated
vendored
@ -1,21 +0,0 @@
|
|||||||
# Copyright (C) 2017 SUSE LLC. All rights reserved.
|
|
||||||
# Use of this source code is governed by a BSD-style
|
|
||||||
# license that can be found in the LICENSE file.
|
|
||||||
|
|
||||||
language: go
|
|
||||||
go:
|
|
||||||
- 1.13.x
|
|
||||||
- 1.16.x
|
|
||||||
- tip
|
|
||||||
arch:
|
|
||||||
- AMD64
|
|
||||||
- ppc64le
|
|
||||||
os:
|
|
||||||
- linux
|
|
||||||
- osx
|
|
||||||
|
|
||||||
script:
|
|
||||||
- go test -cover -v ./...
|
|
||||||
|
|
||||||
notifications:
|
|
||||||
email: false
|
|
||||||
2
vendor/github.com/cyphar/filepath-securejoin/README.md
generated
vendored
2
vendor/github.com/cyphar/filepath-securejoin/README.md
generated
vendored
@ -1,6 +1,6 @@
|
|||||||
## `filepath-securejoin` ##
|
## `filepath-securejoin` ##
|
||||||
|
|
||||||
[](https://travis-ci.org/cyphar/filepath-securejoin)
|
[](https://github.com/cyphar/filepath-securejoin/actions/workflows/ci.yml)
|
||||||
|
|
||||||
An implementation of `SecureJoin`, a [candidate for inclusion in the Go
|
An implementation of `SecureJoin`, a [candidate for inclusion in the Go
|
||||||
standard library][go#20126]. The purpose of this function is to be a "secure"
|
standard library][go#20126]. The purpose of this function is to be a "secure"
|
||||||
|
|||||||
2
vendor/github.com/cyphar/filepath-securejoin/VERSION
generated
vendored
2
vendor/github.com/cyphar/filepath-securejoin/VERSION
generated
vendored
@ -1 +1 @@
|
|||||||
0.2.3
|
0.2.4
|
||||||
|
|||||||
12
vendor/github.com/cyphar/filepath-securejoin/join.go
generated
vendored
12
vendor/github.com/cyphar/filepath-securejoin/join.go
generated
vendored
@ -39,17 +39,27 @@ func IsNotExist(err error) bool {
|
|||||||
// components in the returned string are not modified (in other words are not
|
// components in the returned string are not modified (in other words are not
|
||||||
// replaced with symlinks on the filesystem) after this function has returned.
|
// replaced with symlinks on the filesystem) after this function has returned.
|
||||||
// Such a symlink race is necessarily out-of-scope of SecureJoin.
|
// Such a symlink race is necessarily out-of-scope of SecureJoin.
|
||||||
|
//
|
||||||
|
// Volume names in unsafePath are always discarded, regardless if they are
|
||||||
|
// provided via direct input or when evaluating symlinks. Therefore:
|
||||||
|
//
|
||||||
|
// "C:\Temp" + "D:\path\to\file.txt" results in "C:\Temp\path\to\file.txt"
|
||||||
func SecureJoinVFS(root, unsafePath string, vfs VFS) (string, error) {
|
func SecureJoinVFS(root, unsafePath string, vfs VFS) (string, error) {
|
||||||
// Use the os.* VFS implementation if none was specified.
|
// Use the os.* VFS implementation if none was specified.
|
||||||
if vfs == nil {
|
if vfs == nil {
|
||||||
vfs = osVFS{}
|
vfs = osVFS{}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
unsafePath = filepath.FromSlash(unsafePath)
|
||||||
var path bytes.Buffer
|
var path bytes.Buffer
|
||||||
n := 0
|
n := 0
|
||||||
for unsafePath != "" {
|
for unsafePath != "" {
|
||||||
if n > 255 {
|
if n > 255 {
|
||||||
return "", &os.PathError{Op: "SecureJoin", Path: root + "/" + unsafePath, Err: syscall.ELOOP}
|
return "", &os.PathError{Op: "SecureJoin", Path: root + string(filepath.Separator) + unsafePath, Err: syscall.ELOOP}
|
||||||
|
}
|
||||||
|
|
||||||
|
if v := filepath.VolumeName(unsafePath); v != "" {
|
||||||
|
unsafePath = unsafePath[len(v):]
|
||||||
}
|
}
|
||||||
|
|
||||||
// Next path component, p.
|
// Next path component, p.
|
||||||
|
|||||||
2
vendor/modules.txt
vendored
2
vendor/modules.txt
vendored
@ -401,7 +401,7 @@ github.com/crc-org/vfkit/pkg/util
|
|||||||
# github.com/cyberphone/json-canonicalization v0.0.0-20230710064741-aa7fe85c7dbd
|
# github.com/cyberphone/json-canonicalization v0.0.0-20230710064741-aa7fe85c7dbd
|
||||||
## explicit
|
## explicit
|
||||||
github.com/cyberphone/json-canonicalization/go/src/webpki.org/jsoncanonicalizer
|
github.com/cyberphone/json-canonicalization/go/src/webpki.org/jsoncanonicalizer
|
||||||
# github.com/cyphar/filepath-securejoin v0.2.3
|
# github.com/cyphar/filepath-securejoin v0.2.4
|
||||||
## explicit; go 1.13
|
## explicit; go 1.13
|
||||||
github.com/cyphar/filepath-securejoin
|
github.com/cyphar/filepath-securejoin
|
||||||
# github.com/davecgh/go-spew v1.1.1
|
# github.com/davecgh/go-spew v1.1.1
|
||||||
|
|||||||
Reference in New Issue
Block a user