Escape Blubber config values when compiling to Dockerfile
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	dduvall
	Jun 15 2017, 6:25 PM

Description

The Dockerfile compiler doesn't currently escape any config values when writing its instructions to the buffer. This may cause unexpected breakage and should also be considered a vulnerability open to instruction injection. Let's escape these values.

Revisions and Commits

rGBLBR Blubber
	D705	rGBLBR3ad2c475d963 Escape docker output

Event Timeline

dduvall created this task.Jun 15 2017, 6:25 PM

Restricted Application added a project: Release-Engineering-Team (Kanban). · View Herald TranscriptJun 15 2017, 6:25 PM

Restricted Application added a subscriber: Aklapper. · View Herald Transcript

dduvall triaged this task as Medium priority.Jun 15 2017, 6:31 PM

dduvall moved this task from Backlog to Doing on the Release Pipeline (Blubber) board.

thcipriani moved this task from Backlog to In-progress on the Release-Engineering-Team (Kanban) board.Jun 26 2017, 4:37 PM

thcipriani added a revision: D705: Escape docker output.Jul 6 2017, 9:27 PM

thcipriani closed this task as Resolved by committing rGBLBR3ad2c475d963: Escape docker output.Jul 11 2017, 3:56 PM

thcipriani added a commit: rGBLBR3ad2c475d963: Escape docker output.

• Phabricator_maintenance edited projects, added RelEng-Archive-FY201718-Q1; removed Release-Engineering-Team (Kanban).Sep 26 2017, 11:45 PM

Escape Blubber config values when compiling to DockerfileClosed, ResolvedPublicActions

Description

Revisions and Commits

Event Timeline

Escape Blubber config values when compiling to Dockerfile
Closed, ResolvedPublic
Actions