File CVE-2019-10214.patch of Package buildah.29475
diff --git vendor/github.com/containers/image/docker/docker_client.go vendor/github.com/containers/image/docker/docker_client.go
index 6d2c5b6..e9f853d 100644
--- vendor/github.com/containers/image/docker/docker_client.go
+++ vendor/github.com/containers/image/docker/docker_client.go
@@ -480,11 +480,7 @@ func (c *dockerClient) getBearerToken(ctx context.Context, realm, service, scope
authReq.SetBasicAuth(c.username, c.password)
}
logrus.Debugf("%s %s", authReq.Method, authReq.URL.String())
- tr := tlsclientconfig.NewTransport()
- // TODO(runcom): insecure for now to contact the external token service
- tr.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
- client := &http.Client{Transport: tr}
- res, err := client.Do(authReq)
+ res, err := c.client.Do(authReq)
if err != nil {
return nil, err
}