首頁 探索 說明
登入
mirrors
/
mailcow-dockerized
镜像来自 https://github.com/mailcow/mailcow-dockerized
2
0
複刻 0
檔案 問題管理 0 Wiki
瀏覽代碼

[Web] More secure compose project name check

andryyy 5 年之前
父節點
4cefc6039f
當前提交
e1aadb0268
共有 1 個文件被更改,包括 4 次插入4 次删除
統一視圖 顯示文件統計
  1. 4 4
      data/web/inc/functions.docker.inc.php

+ 4 - 4
data/web/inc/functions.docker.inc.php
查看文件 

@@ -25,7 +25,7 @@ function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $ex
 
           foreach ($containers as $container) {

           foreach ($containers as $container) {

             if (isset($container['Config']['Labels']['com.docker.compose.service'])

             if (isset($container['Config']['Labels']['com.docker.compose.service'])

               && $container['Config']['Labels']['com.docker.compose.service'] == $service_name

               && $container['Config']['Labels']['com.docker.compose.service'] == $service_name

-              && $container['Config']['Labels']['com.docker.compose.project'] == strtolower(getenv('COMPOSE_PROJECT_NAME'))) {

+              && strtolower($container['Config']['Labels']['com.docker.compose.project']) == strtolower(getenv('COMPOSE_PROJECT_NAME'))) {

               return trim($container['Id']);

               return trim($container['Id']);

             }

             }

           }

           }

@@ -48,7 +48,7 @@ function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $ex
 
         $containers = json_decode($response, true);

         $containers = json_decode($response, true);

         if (!empty($containers)) {

         if (!empty($containers)) {

           foreach ($containers as $container) {

           foreach ($containers as $container) {

-            if ($container['Config']['Labels']['com.docker.compose.project'] == strtolower(getenv('COMPOSE_PROJECT_NAME'))) {

+            if (strtolower($container['Config']['Labels']['com.docker.compose.project']) == strtolower(getenv('COMPOSE_PROJECT_NAME'))) {

               $out[$container['Config']['Labels']['com.docker.compose.service']]['State'] = $container['State'];

               $out[$container['Config']['Labels']['com.docker.compose.service']]['State'] = $container['State'];

               $out[$container['Config']['Labels']['com.docker.compose.service']]['Config'] = $container['Config'];

               $out[$container['Config']['Labels']['com.docker.compose.service']]['Config'] = $container['Config'];

             }

             }

@@ -90,7 +90,7 @@ function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $ex
 
           if (empty($service_name)) {

           if (empty($service_name)) {

             foreach ($decoded_response as $container) {

             foreach ($decoded_response as $container) {

               if (isset($container['Config']['Labels']['com.docker.compose.project'])

               if (isset($container['Config']['Labels']['com.docker.compose.project'])

-                && $container['Config']['Labels']['com.docker.compose.project'] == strtolower(getenv('COMPOSE_PROJECT_NAME'))) {

+                && strtolower($container['Config']['Labels']['com.docker.compose.project']) == strtolower(getenv('COMPOSE_PROJECT_NAME'))) {

                 unset($container['Config']['Env']);

                 unset($container['Config']['Env']);

                 $out[$container['Config']['Labels']['com.docker.compose.service']]['State'] = $container['State'];

                 $out[$container['Config']['Labels']['com.docker.compose.service']]['State'] = $container['State'];

                 $out[$container['Config']['Labels']['com.docker.compose.service']]['Config'] = $container['Config'];

                 $out[$container['Config']['Labels']['com.docker.compose.service']]['Config'] = $container['Config'];

@@ -99,7 +99,7 @@ function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $ex
 
           }

           }

           else {

           else {

             if (isset($decoded_response['Config']['Labels']['com.docker.compose.project']) 

             if (isset($decoded_response['Config']['Labels']['com.docker.compose.project']) 

-              && $decoded_response['Config']['Labels']['com.docker.compose.project'] == strtolower(getenv('COMPOSE_PROJECT_NAME'))) {

+              && strtolower($decoded_response['Config']['Labels']['com.docker.compose.project']) == strtolower(getenv('COMPOSE_PROJECT_NAME'))) {

               unset($container['Config']['Env']);

               unset($container['Config']['Env']);

               $out[$decoded_response['Config']['Labels']['com.docker.compose.service']]['State'] = $decoded_response['State'];

               $out[$decoded_response['Config']['Labels']['com.docker.compose.service']]['State'] = $decoded_response['State'];

               $out[$decoded_response['Config']['Labels']['com.docker.compose.service']]['Config'] = $decoded_response['Config'];

               $out[$decoded_response['Config']['Labels']['com.docker.compose.service']]['Config'] = $decoded_response['Config'];