From b87c4717bd12824e67da253f04ffde5bc97b1fa5 Mon Sep 17 00:00:00 2001
From: Jindrich Novy <jnovy@redhat.com>
Date: Wed, 18 Sep 2019 14:51:51 +0200
Subject: [PATCH] Forwardport fix for CVE-2019-10214.

Original patch author Miloslav Trmac <mitr@redhat.com>
---
 docker/docker_client.go | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/docker/docker_client.go b/docker/docker_client.go
index 217e9dc..8d2a0e9 100644
--- a/docker/docker_client.go
+++ b/docker/docker_client.go
@@ -311,11 +311,7 @@ func (c *dockerClient) getBearerToken(ctx context.Context, realm, service, scope
 	if c.username != "" && c.password != "" {
 		authReq.SetBasicAuth(c.username, c.password)
 	}
-	tr := tlsclientconfig.NewTransport()
-	// TODO(runcom): insecure for now to contact the external token service
-	tr.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
-	client := &http.Client{Transport: tr}
-	res, err := client.Do(authReq)
+	res, err := c.client.Do(authReq)
 	if err != nil {
 		return nil, err
 	}