Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 1820003

Browse files
committed
Warn about tech preview of checksums.
Docker-DCO-1.1-Signed-off-by: Jessica Frazelle <[email protected]> (github: jfrazelle)
1 parent f1bc037 commit 1820003

1 file changed

Lines changed: 4 additions & 1 deletion

File tree

graph/pull.go

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -428,10 +428,11 @@ func (s *TagStore) pullV2Tag(eng *engine.Engine, r *registry.Session, out io.Wri
428428
}
429429

430430
if verified {
431-
out.Write(sf.FormatStatus(repoInfo.CanonicalName+":"+tag, "The image you are pulling has been verified"))
431+
log.Printf("Image manifest for %s:%s has been verified", repoInfo.CanonicalName, tag)
432432
} else {
433433
out.Write(sf.FormatStatus(tag, "Pulling from %s", repoInfo.CanonicalName))
434434
}
435+
435436
downloads := make([]downloadInfo, len(manifest.FSLayers))
436437

437438
for i := len(manifest.FSLayers) - 1; i >= 0; i-- {
@@ -553,6 +554,8 @@ func (s *TagStore) pullV2Tag(eng *engine.Engine, r *registry.Session, out io.Wri
553554

554555
}
555556

557+
out.Write(sf.FormatStatus(repoInfo.CanonicalName+":"+tag, "The image you are pulling has been verified - This is a tech preview, don't rely on it for security yet."))
558+
556559
if err = s.Set(repoInfo.LocalName, tag, downloads[0].img.ID, true); err != nil {
557560
return false, err
558561
}

0 commit comments

Comments
 (0)