forked from TrueCloudLab/distribution
The toolkit to pack, ship, store, and deliver container content
26762a54fe
To ensure that we only unmarshal the verified payload into the contained manifest, we first copy the entire incoming buffer into Raw and then unmarshal only the Payload portion of the incoming bytes. If the contents is later verified, the caller can then be sure that the contents of the Manifest fields can be trusted. Signed-off-by: Aaron Lehmann <aaron.lehmann@docker.com> |
||
---|---|---|
docs |