registry

No description

Find a file

Stephen J Day 26762a54fe Correct unmarshal order for SignedManifest To ensure that we only unmarshal the verified payload into the contained manifest, we first copy the entire incoming buffer into Raw and then unmarshal only the Payload portion of the incoming bytes. If the contents is later verified, the caller can then be sure that the contents of the Manifest fields can be trusted. Signed-off-by: Aaron Lehmann <aaron.lehmann@docker.com>	2015-10-14 14:37:34 -07:00
docs	Correct unmarshal order for SignedManifest	2015-10-14 14:37:34 -07:00

Stephen J Day 26762a54fe Correct unmarshal order for SignedManifest

To ensure that we only unmarshal the verified payload into the contained
manifest, we first copy the entire incoming buffer into Raw and then unmarshal
only the Payload portion of the incoming bytes. If the contents is later
verified, the caller can then be sure that the contents of the Manifest fields
can be trusted.

Signed-off-by: Aaron Lehmann <aaron.lehmann@docker.com>

2015-10-14 14:37:34 -07:00

docs

Correct unmarshal order for SignedManifest

2015-10-14 14:37:34 -07:00