Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update module github.com/docker/docker to v25 [security] #2324

Closed
wants to merge 1 commit into from
Closed

fix(deps): update module github.com/docker/docker to v25 [security] #2324

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Aug 6, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
github.com/docker/docker v24.0.9+incompatible -> v25.0.6+incompatible age adoption passing confidence

GitHub Vulnerability Alerts

CVE-2024-41110

A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypass authorization plugins (AuthZ) under specific circumstances. The base likelihood of this being exploited is low. This advisory outlines the issue, identifies the affected versions, and provides remediation steps for impacted users.

Impact

Using a specially-crafted API request, an Engine API client could make the daemon forward the request or response to an authorization plugin without the body. In certain circumstances, the authorization plugin may allow a request which it would have otherwise denied if the body had been forwarded to it.

A security issue was discovered In 2018, where an attacker could bypass AuthZ plugins using a specially crafted API request. This could lead to unauthorized actions, including privilege escalation. Although this issue was fixed in Docker Engine v18.09.1 in January 2019, the fix was not carried forward to later major versions, resulting in a regression. Anyone who depends on authorization plugins that introspect the request and/or response body to make access control decisions is potentially impacted.

Docker EE v19.03.x and all versions of Mirantis Container Runtime are not vulnerable.

Vulnerability details

  • AuthZ bypass and privilege escalation: An attacker could exploit a bypass using an API request with Content-Length set to 0, causing the Docker daemon to forward the request without the body to the AuthZ plugin, which might approve the request incorrectly.
  • Initial fix: The issue was fixed in Docker Engine v18.09.1 January 2019..
  • Regression: The fix was not included in Docker Engine v19.03 or newer versions. This was identified in April 2024 and patches were released for the affected versions on July 23, 2024. The issue was assigned CVE-2024-41110.

Patches

  • docker-ce v27.1.1 containes patches to fix the vulnerability.
  • Patches have also been merged into the master, 19.0, 20.0, 23.0, 24.0, 25.0, 26.0, and 26.1 release branches.

Remediation steps

  • If you are running an affected version, update to the most recent patched version.
  • Mitigation if unable to update immediately:
    • Avoid using AuthZ plugins.
    • Restrict access to the Docker API to trusted parties, following the principle of least privilege.

References

Authz zero length regression

CVE-2024-41110 / GHSA-v23v-6jw2-98fq / GO-2024-3005

More information

Details

A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypass authorization plugins (AuthZ) under specific circumstances. The base likelihood of this being exploited is low. This advisory outlines the issue, identifies the affected versions, and provides remediation steps for impacted users.

Impact

Using a specially-crafted API request, an Engine API client could make the daemon forward the request or response to an authorization plugin without the body. In certain circumstances, the authorization plugin may allow a request which it would have otherwise denied if the body had been forwarded to it.

A security issue was discovered In 2018, where an attacker could bypass AuthZ plugins using a specially crafted API request. This could lead to unauthorized actions, including privilege escalation. Although this issue was fixed in Docker Engine v18.09.1 in January 2019, the fix was not carried forward to later major versions, resulting in a regression. Anyone who depends on authorization plugins that introspect the request and/or response body to make access control decisions is potentially impacted.

Docker EE v19.03.x and all versions of Mirantis Container Runtime are not vulnerable.

Vulnerability details
  • AuthZ bypass and privilege escalation: An attacker could exploit a bypass using an API request with Content-Length set to 0, causing the Docker daemon to forward the request without the body to the AuthZ plugin, which might approve the request incorrectly.
  • Initial fix: The issue was fixed in Docker Engine v18.09.1 January 2019..
  • Regression: The fix was not included in Docker Engine v19.03 or newer versions. This was identified in April 2024 and patches were released for the affected versions on July 23, 2024. The issue was assigned CVE-2024-41110.
Patches
  • docker-ce v27.1.1 containes patches to fix the vulnerability.
  • Patches have also been merged into the master, 19.0, 20.0, 23.0, 24.0, 25.0, 26.0, and 26.1 release branches.
Remediation steps
  • If you are running an affected version, update to the most recent patched version.
  • Mitigation if unable to update immediately:
    • Avoid using AuthZ plugins.
    • Restrict access to the Docker API to trusted parties, following the principle of least privilege.
References

Severity

  • CVSS Score: 9.9 / 10 (Critical)
  • Vector String: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

References

This data is provided by OSV and the GitHub Advisory Database (CC-BY 4.0).

Moby authz zero length regression in github.com/moby/moby

CVE-2024-41110 / GHSA-v23v-6jw2-98fq / GO-2024-3005

More information

Details

Moby authz zero length regression in github.com/moby/moby

Severity

Unknown

References

This data is provided by OSV and the Go Vulnerability Database (CC-BY 4.0).

Release Notes

docker/docker (github.com/docker/docker)

v25.0.6+incompatible

Compare Source

v25.0.5+incompatible

Compare Source

v25.0.4+incompatible

Compare Source

v25.0.3+incompatible

Compare Source

v25.0.2+incompatible

Compare Source

v25.0.1+incompatible

Compare Source

v25.0.0+incompatible

Compare Source

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@github-actions GitHub Actions
Copy link

github-actions bot commented Aug 6, 2024
edited
Loading

Coverage from tests in ./e2e_test/... for ./consensus/istanbul/... at commit b185c16

coverage: 53.9% of statements across all listed packages 
coverage:  65.0% of statements in consensus/istanbul
coverage:  63.3% of statements in consensus/istanbul/announce
coverage:  57.0% of statements in consensus/istanbul/backend
coverage:   0.0% of statements in consensus/istanbul/backend/backendtest
coverage:  24.3% of statements in consensus/istanbul/backend/internal/replica
coverage:  62.9% of statements in consensus/istanbul/core
coverage:  50.0% of statements in consensus/istanbul/db
coverage:   0.0% of statements in consensus/istanbul/proxy
coverage:  64.2% of statements in consensus/istanbul/uptime
coverage:  52.4% of statements in consensus/istanbul/validator
coverage:  79.2% of statements in consensus/istanbul/validator/random

@github-actions GitHub Actions
Copy link

github-actions bot commented Aug 6, 2024
edited
Loading

5888 passed, 1 failed, 45 skipped

Test failures:
  TestPriorityClient: geth

Failed
    les_test.go:121: Initializing geth: [--networkid=42 init ./testdata/clique.json] 

test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.010] Maximum peer count                       ETH=175 LES=0 total=175
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.011] Set global gas inflation rate            rate=1.300
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.011] Set global gas cap                       cap=25,000,000
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.011] Allocated cache and file handles         database=/tmp/geth-test1602671792/celo/chaindata cache=16.00MiB handles=16
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.030] Writing custom genesis block 
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.031] Persisted trie from memory database      nodes=4 size=566.00B time="86.47µs" gcnodes=0 gcsize=0.00B gctime=0s livenodes=1 livesize=-82.00B
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.031] Successfully wrote genesis state         database=chaindata                               hash=9195f2..122dcd
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.031] Allocated cache and file handles         database=/tmp/geth-test1602671792/celo/lightchaindata cache=16.00MiB handles=16
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.039] Writing custom genesis block 
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.040] Persisted trie from memory database      nodes=4 size=566.00B time="36.032µs" gcnodes=0 gcsize=0.00B gctime=0s livenodes=1 livesize=-82.00B
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.040] Successfully wrote genesis state         database=lightchaindata                          hash=9195f2..122dcd
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.040] Allocated cache and file handles         database=/tmp/geth-test1602671792/celo/lightestchaindata cache=16.00MiB handles=16
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.046] Writing custom genesis block 
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.047] Persisted trie from memory database      nodes=4 size=566.00B time="116.145µs" gcnodes=0 gcsize=0.00B gctime=0s livenodes=1 livesize=-82.00B
test_cmd.go:262: (stderr:31) INFO [09-19|10:50:22.047] Successfully wrote genesis state         database=lightestchaindata                       hash=9195f2..122dcd
les_test.go:130: Importing keys to geth
test_cmd.go:262: (stderr:32) INFO [09-19|10:50:22.082] Maximum peer count                       ETH=175 LES=0 total=175
test_cmd.go:262: (stderr:32) INFO [09-19|10:50:22.083] Set global gas inflation rate            rate=1.300
test_cmd.go:262: (stderr:32) INFO [09-19|10:50:22.083] Set global gas cap                       cap=25,000,000
les_test.go:99: Starting lightserver with rpc: [--networkid=42 --port=0 --ipcpath geth-1.ipc --allow-insecure-unlock --datadir /tmp/geth-test1602671792 --password ./testdata/password.txt --unlock 0x02f0d131f1f97aef08aec6e3291b957d9efe7105 --mine --miner.validator 0x02f0d131f1f97aef08aec6e3291b957d9efe7105 --tx-fee-recipient 0x02f0d131f1f97aef08aec6e3291b957d9efe7105 --light.serve=100 --light.maxpeers=1 --nodiscover --nat=extip:127.0.0.1 --verbosity=4]
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.330] Maximum peer count                       ETH=175 LES=1 total=176
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.331] FS scan times                            list="45.46µs" set="3.488µs" diff="5.424µs"
test_cmd.go:262: (stderr:33) WARN [09-19|10:50:22.331] LES server cannot serve old transaction status and cannot connect below les/4 protocol version if transaction lookup index is limited 
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.331] Sanitizing Go's GC trigger               percent=100
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.332] Set global gas inflation rate            rate=1.300
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.332] Set global gas cap                       cap=25,000,000
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.332] Allocated trie memory caches             clean=154.00MiB dirty=256.00MiB
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.332] Allocated cache and file handles         database=/tmp/geth-test1602671792/celo/chaindata cache=512.00MiB handles=524,288
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.398] Chain freezer table opened               database=/tmp/geth-test1602671792/celo/chaindata/ancient table=diffs items=0 size=0.00B
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.400] Chain freezer table opened               database=/tmp/geth-test1602671792/celo/chaindata/ancient table=headers items=0 size=0.00B
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.402] Chain freezer table opened               database=/tmp/geth-test1602671792/celo/chaindata/ancient table=hashes  items=0 size=0.00B
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.405] Chain freezer table opened               database=/tmp/geth-test1602671792/celo/chaindata/ancient table=bodies  items=0 size=0.00B
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.407] Chain freezer table opened               database=/tmp/geth-test1602671792/celo/chaindata/ancient table=receipts items=0 size=0.00B
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.407] Opened ancient database                  database=/tmp/geth-test1602671792/celo/chaindata/ancient readonly=false
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.407] Current full block not old enough        number=0 hash=9195f2..122dcd delay=90000
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.407] Initialised chain configuration          config="{ChainID: 15 Homestead: 0 DAO: <nil> DAOSupport: false EIP150: 0 EIP155: 0 EIP158: 0 Byzantium: 0 Constantinople: 0 Petersburg: 0 Istanbul: <nil> Churrito: <nil>, Donut: <nil>, Espresso: <nil>, Gingerbread: <nil>, Gingerbread P2: <nil>, HForkBlock: <nil>, Engine: istanbul}"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.408] Setting up Istanbul consensus engine 
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.430] Initialising Ethereum protocol           versions=[67] network=42 dbversion=<nil>
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.431] Loading Last State: 0 
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.431] Loaded most recent local header          number=0 hash=9195f2..122dcd td=1 age=55y6mo5d
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.431] Loaded most recent local full block      number=0 hash=9195f2..122dcd td=1 age=55y6mo5d
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.431] Loaded most recent local fast block      number=0 hash=9195f2..122dcd td=1 age=55y6mo5d
test_cmd.go:262: (stderr:33) WARN [09-19|10:50:22.432] Failed to load snapshot, regenerating    err="missing or corrupted snapshot"
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.432] Rebuilding state snapshot 
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Journalled generator progress            progress=empty
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Start snapshot generation                root=8a7a77..f86ff6
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.432] Resuming state snapshot generation       root=8a7a77..f86ff6 accounts=0 slots=0 storage=0.00B elapsed="333.276µs"
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.432] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd9272338b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Registry contract not yet deployed       function=blockGasLimit registryId=0x8b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Error calling blockGasLimit              err="Registry not deployed"         contract=0x8b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.432] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd92723348766a30bcca8b3c8b03b4e4b1f6510aee73f7b41aa6c7578a97040d20334f42 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Registry contract not yet deployed       function=gasPriceMinimumFloor registryId=0x48766a30bcca8b3c8b03b4e4b1f6510aee73f7b41aa6c7578a97040d20334f42
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Regenerated state range                  kind=storage prefix=0x6fc8292a2675fd2df398d2f757c44afe1b96e4c7ba26dac7ed67cdef77799ef404 root=09f508..8cb885 last=0x count=1 created=1 updated=0 untouched=0 deleted=0
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Regenerated state range                  kind=account prefix=0x61 root=8a7a77..f86ff6 last=0x count=2 created=2 updated=0 untouched=0 deleted=0
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Journalled generator progress            progress=done
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.432] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd9272338b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.432] Generated state snapshot                 accounts=2 slots=1 storage=230.00B elapsed="662.848µs"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Registry contract not yet deployed       function=intrinsicGasForAlternativeFeeCurrency registryId=0x8b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.432] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd9272338f897d9543fdc9082789208180c3e3d11f7473aaef3e249ab0020ea0c761c1b6 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Registry contract not yet deployed       function=getWhitelist                          registryId=0x8f897d9543fdc9082789208180c3e3d11f7473aaef3e249ab0020ea0c761c1b6
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.432] getWhitelist invocation failed           err="Registry not deployed"
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.432] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd927233d7e89ade8430819f08bf97a087285824af3351ee12d72a2d132b0c6c0687bfaf maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.432] Reinjecting stale transactions           count=0
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.433] Regenerated local transaction journal    transactions=0 accounts=0
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.444] Allocated fast sync bloom                size=512.00MiB
test_cmd.go:262: (stderr:33) WARN [09-19|10:50:22.444] Error reading unclean shutdown markers   error="leveldb: not found"
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.444] Allocated cache and file handles         database=/tmp/geth-test1602671792/celo/les.server cache=16.00MiB  handles=16
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.445] Initialized state bloom                  items=5 errorrate=0.000 elapsed="216.014µs"
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.456] Checkpoint oracle is not enabled 
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.456] Starting peer-to-peer node               instance=celo/v1.8.2-stable/linux-amd64/go1.19.13
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.465] IPCs registered                          namespaces=admin,debug,web3,eth,txpool,personal,istanbul,miner,net,les
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.465] IPC endpoint opened                      url=/tmp/geth-test1602671792/geth-1.ipc
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.471] Mapped network port                      proto=tcp extport=46477 intport=46477 interface=ExtIP(127.0.0.1)
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.471] TCP listener up                          addr=[::]:46477
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.472] New local node record                    seq=1,726,743,022,464 id=a5af0064deb9e781 ip=127.0.0.1 udp=0 tcp=46477
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.473] Started P2P networking                   self="enode://4216bae56e144e5207ce7644298e3a73e1b19cef56845f04ab2216813f683c4624e9c62012932c629beca2acddd3f3f040fb3a0311de9a17c41c7a214b2c0c41@127.0.0.1:46477?discport=0" maxdialed=58 maxinbound=118
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.473] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd927233235a6f54090e9b94aa4e585a699c4375a2ff8f572c68114d138f0ed121527849 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.473] Registry contract not yet deployed       function=getElectableValidators                registryId=0x235a6f54090e9b94aa4e585a699c4375a2ff8f572c68114d138f0ed121527849
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.473] Snapshot is nil, creating from genesis 
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.560] Unlocked account                         address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.561] Starting istanbul.Engine validating 
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.561] Open roundstate db                       func=newRoundStateDB type=roundStateDB rsdb_path=/tmp/geth-test1602671792/celo/roundstates
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.561] NewWork called, acquiring core lock      func=NewWork
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.561] Allocated cache and file handles         database=/tmp/geth-test1602671792/celo/roundstates cache=512.00MiB handles=500
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.571] Creating new RoundState                  address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105 func=createRoundState cur_seq=0 cur_epoch=0 cur_round=-1 des_round=-1 state="Accept request" address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105 reason="No storedView found"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.571] Posting FinalCommittedEvent              func=NewWork
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.572] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd9272338b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Registry contract not yet deployed       function=blockGasLimit                         registryId=0x8b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Error calling blockGasLimit              err="Registry not deployed"         contract=0x8b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.572] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd9272338b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Registry contract not yet deployed       function=intrinsicGasForAlternativeFeeCurrency registryId=0x8b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.572] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd9272338f897d9543fdc9082789208180c3e3d11f7473aaef3e249ab0020ea0c761c1b6 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Registry contract not yet deployed       function=getWhitelist                          registryId=0x8f897d9543fdc9082789208180c3e3d11f7473aaef3e249ab0020ea0c761c1b6
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.572] getWhitelist invocation failed           err="Registry not deployed"
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.572] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd927233d7e89ade8430819f08bf97a087285824af3351ee12d72a2d132b0c6c0687bfaf maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.572] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd92723302dfe2d0485b616b61db1800f30f4a14b26754b328fa09ba4ec73ee7276766cc maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Registry address lookup failed           err="Registry not deployed"         contract=0x02dfe2d0485b616b61db1800f30f4a14b26754b328fa09ba4ec73ee7276766cc
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.572] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd927233d7e89ade8430819f08bf97a087285824af3351ee12d72a2d132b0c6c0687bfaf maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Registry contract not yet deployed       function=totalSupply                           registryId=0xd7e89ade8430819f08bf97a087285824af3351ee12d72a2d132b0c6c0687bfaf
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.572] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd9272338b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Registry contract not yet deployed       function=blockGasLimit                         registryId=0x8b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Error calling blockGasLimit              err="Registry not deployed"         contract=0x8b91d837e1684f7353d73b6197230894243cf869282f722841df96b441303f37
test_cmd.go:262: (stderr:33) ERROR[09-19|10:50:22.572] Error invoking evm function: EVM call failure to=0x000000000000000000000000000000000000ce10 method=getAddressFor input=0xdd92723348766a30bcca8b3c8b03b4e4b1f6510aee73f7b41aa6c7578a97040d20334f42 maxgas=100,000 err="execution reverted"            message="No Implementation set"
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Registry contract not yet deployed       function=updateGasPriceMinimum                 registryId=0x48766a30bcca8b3c8b03b4e4b1f6510aee73f7b41aa6c7578a97040d20334f42
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:22.572] Finalized                                func=Finalize         block=1 epochSize=30000 duration="202.027µs" lastInEpoch=false
test_cmd.go:262: (stderr:33) WARN [09-19|10:50:22.572] Block sealing failed                     err="not an elected validator"
test_cmd.go:262: (stderr:33) INFO [09-19|10:50:22.572] Commit new mining work                   number=1 txs=0 gas=0 fees=0 elapsed="833.93µs"
test_cmd.go:262: (stderr:33) WARN [09-19|10:50:22.572] New sequence should be larger than current sequence address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105 func=startNewSequence tag=stateTransition head_block=0 head_block_hash=9195f2..122dcd cur_seq=1 cur_epoch=1 cur_round=0  des_round=0  state="Accept request" address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105
les_test.go:121: Initializing geth: [--networkid=42 init ./testdata/clique.json] 
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.832] Maximum peer count                       ETH=175 LES=0 total=175
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.834] Set global gas inflation rate            rate=1.300
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.834] Set global gas cap                       cap=25,000,000
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.834] Allocated cache and file handles         database=/tmp/geth-test2873207146/celo/chaindata cache=16.00MiB handles=16
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.924] Writing custom genesis block 
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.924] Persisted trie from memory database      nodes=4 size=566.00B time="70.607µs" gcnodes=0 gcsize=0.00B gctime=0s livenodes=1 livesize=-82.00B
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.925] Successfully wrote genesis state         database=chaindata                               hash=9195f2..122dcd
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.925] Allocated cache and file handles         database=/tmp/geth-test2873207146/celo/lightchaindata cache=16.00MiB handles=16
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.932] Writing custom genesis block 
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.933] Persisted trie from memory database      nodes=4 size=566.00B time="39.406µs" gcnodes=0 gcsize=0.00B gctime=0s livenodes=1 livesize=-82.00B
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.933] Successfully wrote genesis state         database=lightchaindata                          hash=9195f2..122dcd
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.933] Allocated cache and file handles         database=/tmp/geth-test2873207146/celo/lightestchaindata cache=16.00MiB handles=16
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.943] Writing custom genesis block 
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.943] Persisted trie from memory database      nodes=4 size=566.00B time="33.417µs" gcnodes=0 gcsize=0.00B gctime=0s livenodes=1 livesize=-82.00B
test_cmd.go:262: (stderr:34) INFO [09-19|10:50:22.944] Successfully wrote genesis state         database=lightestchaindata                       hash=9195f2..122dcd
les_test.go:99: Starting freeCli with rpc: [--networkid=42 --port=0 --ipcpath geth-2.ipc --datadir /tmp/geth-test2873207146 --nodiscover --syncmode=light --nat=extip:127.0.0.1 --verbosity=4]
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.004] Dropping default light client cache      provided=1024 updated=128
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.006] Maximum peer count                       ETH=0 LES=10 total=175
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.006] FS scan times                            list="37.162µs" set=423ns diff="1µs"
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.007] Sanitizing Go's GC trigger               percent=100
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.007] Set global gas inflation rate            rate=1.300
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.007] Set global gas cap                       cap=25,000,000
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.007] Allocated cache and file handles         database=/tmp/geth-test2873207146/celo/lightchaindata cache=64.00MiB handles=524,288
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.061] Allocated cache and file handles         database=/tmp/geth-test2873207146/celo/les.client cache=16.00MiB handles=16
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.070] Initialised chain configuration          config="{ChainID: 15 Homestead: 0 DAO: <nil> DAOSupport: false EIP150: 0 EIP155: 0 EIP158: 0 Byzantium: 0 Constantinople: 0 Petersburg: 0 Istanbul: <nil> Churrito: <nil>, Donut: <nil>, Espresso: <nil>, Gingerbread: <nil>, Gingerbread P2: <nil>, HForkBlock: <nil>, Engine: istanbul}"
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.070] Setting up Istanbul consensus engine 
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.090] Loaded most recent local header          number=0 hash=9195f2..122dcd td=1 age=55y6mo5d
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.090] Checkpoint oracle is not enabled 
test_cmd.go:262: (stderr:35) WARN [09-19|10:50:23.090] Error reading unclean shutdown markers   error="leveldb: not found"
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.091] Starting peer-to-peer node               instance=celo/v1.8.2-stable/linux-amd64/go1.19.13
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.145] IPCs registered                          namespaces=admin,debug,web3,eth,txpool,personal,istanbul,les,net,vflux
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.145] IPC endpoint opened                      url=/tmp/geth-test2873207146/geth-2.ipc
test_cmd.go:262: (stderr:35) WARN [09-19|10:50:23.145] Light client mode is an experimental feature 
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.145] Mapped network port                      proto=tcp extport=44343 intport=44343 interface=ExtIP(127.0.0.1)
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.145] TCP listener up                          addr=[::]:44343
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.146] New local node record                    seq=1,726,743,023,144 id=b26564fdb08601b2 ip=127.0.0.1 udp=0 tcp=44343
test_cmd.go:262: (stderr:35) INFO [09-19|10:50:23.146] Started P2P networking                   self="enode://9df69e19c1d9ee2d81a515609fd06db94e5981f8a5ddc30a555ae1138ebe98c9ead3bc6e37b91c1837516b7cab7dc623f3950dc48d7909ae822e113e3b9863c4@127.0.0.1:44343?discport=0" maxdialed=58 maxinbound=117
les_test.go:37: freeCli.addPeer(lightserver)
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:23.447] Served admin_nodeInfo                    reqid=1 t="342.065µs"
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.448] Served admin_subscribe                   reqid=1 t="66.164µs"
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.448] Served admin_addPeer                     reqid=2 t="167.582µs"
les_test.go:50: freeCli received event: type=add, peer=a5af0064deb9e781ed0cd9d0de5c8298224111924cea8183225126e905606be9
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:23.450] Adding p2p peer                          peercount=1 id=b26564fdb08601b2 conn=inbound addr=127.0.0.1:60806 name=celo/v1.8.2-stable/l...
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:23.450] Light Ethereum peer connected            id=b26564fdb08601b2 conn=inbound name=celo/v1.8.2-stable/l...
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.450] Adding p2p peer                          peercount=1 id=a5af0064deb9e781 conn=staticdial addr=127.0.0.1:46477 name=celo/v1.8.2-stable/l...
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.450] Light Ethereum peer connected            id=a5af0064deb9e781 conn=staticdial name=celo/v1.8.2-stable/l...
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.451] Node entered                             set=connected id=a5af0064deb9e781 count=1
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.451] Requesting etherbase for peer            id=a5af0064deb9e781 conn=staticdial enode=a5af0064deb9e781ed0cd9d0de5c8298224111924cea8183225126e905606be9
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.451] Received new announce                    peer=a5af0064deb9e781 number=0 hash=9195f2..122dcd reorg=0
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.451] Served admin_unsubscribe                 reqid=3 t="35.358µs"
test_cmd.go:262: (stderr:35) DEBUG[09-19|10:50:23.452] Served admin_peers                       reqid=4 t="169.107µs"
les_test.go:121: Initializing geth: [--networkid=42 init ./testdata/clique.json] 
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:23.487] Maximum peer count                       ETH=175 LES=0 total=175
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:23.488] Set global gas inflation rate            rate=1.300
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:23.488] Set global gas cap                       cap=25,000,000
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:23.488] Allocated cache and file handles         database=/tmp/geth-test3937455634/celo/chaindata cache=16.00MiB handles=16
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:24.102] Writing custom genesis block 
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:24.103] Persisted trie from memory database      nodes=4 size=566.00B time="77.375µs" gcnodes=0 gcsize=0.00B gctime=0s livenodes=1 livesize=-82.00B
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:24.103] Successfully wrote genesis state         database=chaindata                               hash=9195f2..122dcd
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:24.103] Allocated cache and file handles         database=/tmp/geth-test3937455634/celo/lightchaindata cache=16.00MiB handles=16
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:25.084] Writing custom genesis block 
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:25.084] Persisted trie from memory database      nodes=4 size=566.00B time="49.884µs" gcnodes=0 gcsize=0.00B gctime=0s livenodes=1 livesize=-82.00B
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:25.085] Successfully wrote genesis state         database=lightchaindata                          hash=9195f2..122dcd
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:25.085] Allocated cache and file handles         database=/tmp/geth-test3937455634/celo/lightestchaindata cache=16.00MiB handles=16
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:25.905] Writing custom genesis block 
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:25.905] Persisted trie from memory database      nodes=4 size=566.00B time="28.97µs"  gcnodes=0 gcsize=0.00B gctime=0s livenodes=1 livesize=-82.00B
test_cmd.go:262: (stderr:36) INFO [09-19|10:50:25.905] Successfully wrote genesis state         database=lightestchaindata                       hash=9195f2..122dcd
les_test.go:99: Starting prioCli with rpc: [--networkid=42 --port=0 --ipcpath geth-3.ipc --datadir /tmp/geth-test3937455634 --nodiscover --syncmode=light --nat=extip:127.0.0.1 --verbosity=4]
test_cmd.go:262: (stderr:37) INFO [09-19|10:50:25.936] Dropping default light client cache      provided=1024 updated=128
test_cmd.go:262: (stderr:37) INFO [09-19|10:50:25.938] Maximum peer count                       ETH=0 LES=10 total=175
test_cmd.go:262: (stderr:37) DEBUG[09-19|10:50:25.938] FS scan times                            list="31.565µs" set=368ns diff="1.323µs"
test_cmd.go:262: (stderr:37) DEBUG[09-19|10:50:25.939] Sanitizing Go's GC trigger               percent=100
test_cmd.go:262: (stderr:37) INFO [09-19|10:50:25.939] Set global gas inflation rate            rate=1.300
test_cmd.go:262: (stderr:37) INFO [09-19|10:50:25.939] Set global gas cap                       cap=25,000,000
test_cmd.go:262: (stderr:37) INFO [09-19|10:50:25.939] Allocated cache and file handles         database=/tmp/geth-test3937455634/celo/lightchaindata cache=64.00MiB handles=524,288
test_cmd.go:262: (stderr:37) INFO [09-19|10:50:26.875] Allocated cache and file handles         database=/tmp/geth-test3937455634/celo/les.client cache=16.00MiB handles=16
test_cmd.go:262: (stderr:37) INFO [09-19|10:50:27.457] Initialised chain configuration          config="{ChainID: 15 Homestead: 0 DAO: <nil> DAOSupport: false EIP150: 0 EIP155: 0 EIP158: 0 Byzantium: 0 Constantinople: 0 Petersburg: 0 Istanbul: <nil> Churrito: <nil>, Donut: <nil>, Espresso: <nil>, Gingerbread: <nil>, Gingerbread P2: <nil>, HForkBlock: <nil>, Engine: istanbul}"
test_cmd.go:262: (stderr:37) DEBUG[09-19|10:50:27.457] Setting up Istanbul consensus engine 
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:30.572] Timed out, trying to wait for next round address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105 func=handleTimeoutAndMoveToNextRound timed_out_seq=1 timed_out_round=0 cur_seq=1 cur_epoch=1 cur_round=0  des_round=0  state="Accept request" address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:30.572] Round Change: Waiting for desired round  address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105 func=waitForDesiredRound             new_desired_round=1 cur_seq=1 cur_epoch=1 cur_round=0  des_round=0  state="Accept request" address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:30.573] Failed to decode message from payload    address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105 func=handleMsg                       cur_seq=1 cur_epoch=1 cur_round=0  des_round=1  state="Waiting for new round" address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105 err="not an elected validator 0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105"
test_cmd.go:262: (stderr:33) WARN [09-19|10:50:30.573] Error in handling istanbul message       address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105 func=handleEvents                    cur_seq=1 cur_epoch=1 cur_round=0  des_round=1  state="Waiting for new round" address=0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105 err="not an elected validator 0x02F0d131F1f97aef08aEc6E3291B957d9Efe7105"
les_test.go:115: prioCli rpc connect to /tmp/geth-test3937455634/geth-3.ipc: dial unix /tmp/geth-test3937455634/geth-3.ipc: connect: no such file or directory
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:30.915] Light Ethereum message handling failed   id=b26564fdb08601b2 conn=inbound err=EOF
test_cmd.go:262: (stderr:33) DEBUG[09-19|10:50:30.915] Removing p2p peer                        peercount=0 id=b26564fdb08601b2 duration=7.465s      req=false err=EOF</code></pre></td></tr>
This test report was produced by the test-summary action.  Made with ❤️ in Cambridge.

@renovate renovate bot force-pushed the renovate/go-github.com-docker-docker-vulnerability branch from 4bcff67 to 4edc88e Compare September 16, 2024 18:17
@renovate
fix(deps): update module github.com/docker/docker to v25 [security]
4f22e3f 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate renovate bot force-pushed the renovate/go-github.com-docker-docker-vulnerability branch from 4edc88e to 4f22e3f Compare September 19, 2024 10:35
@palango palango closed this Nov 26, 2024
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Nov 26, 2024

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update. You will not get PRs for any future 25.x releases. But if you manually upgrade to 25.x then Renovate will re-enable minor and patch updates automatically.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

@renovate renovate bot deleted the renovate/go-github.com-docker-docker-vulnerability branch November 26, 2024 14:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
type:security
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@palango