ForAllSecure · sciencemanx · Jun 1, 2020 · Jun 2, 2020 · Jun 2, 2020 · Jun 3, 2020
diff --git a/.github/push.sh b/.github/push.sh
@@ -0,0 +1,24 @@
+#! /bin/bash
+# Pushes image to logged in docker registry (tagged with github ref)
+
+set -xe
+
+IMAGE_ID=$1
+
+# Change all uppercase to lowercase
+IMAGE_ID=$(echo $IMAGE_ID | tr '[A-Z]' '[a-z]')
+
+# Strip git ref prefix from version
+VERSION=$(echo "${{ github.ref }}" | sed -e 's,.*/\(.*\),\1,')
+
+# Strip "v" prefix from tag name
+[[ "${{ github.ref }}" == "refs/tags/"* ]] && VERSION=$(echo $VERSION | sed -e 's/^v//')
+
+# Use docker `latest` tag convention
+[ "$VERSION" == "master" ] && VERSION=latest
+
+echo IMAGE_ID=$IMAGE_ID
+echo VERSION=$VERSION
+
+docker tag $IMAGE_ID $IMAGE_ID:$VERSION
+docker push $IMAGE_ID:$VERSION
diff --git a/.github/workflows/docker_publish.yml b/.github/workflows/docker_publish.yml
@@ -1,4 +1,4 @@
-name: Published on Dockerhub
+name: Publish on Dockerhub
 
 on:
   push:
@@ -7,11 +7,8 @@ on:
     branches: [ master ]
 
 jobs:
-
   openssl-cve-2014-0160:
-
     runs-on: ubuntu-latest
-
     steps:
     - uses: actions/checkout@v2
     - name: Build the Docker image
@@ -21,29 +18,9 @@ jobs:
       run: echo "${{ secrets.DOCKER_PASSWORD }}" | docker login -u ${{ secrets.DOCKER_USERNAME }} --password-stdin
 
     - name: Push the docker image
-      run: |
-        IMAGE_ID=forallsecure/openssl-cve-2014-0160
-
-        # Change all uppercase to lowercase
-        IMAGE_ID=$(echo $IMAGE_ID | tr '[A-Z]' '[a-z]')
-
-        # Strip git ref prefix from version
-        VERSION=$(echo "${{ github.ref }}" | sed -e 's,.*/\(.*\),\1,')
-
-        # Strip "v" prefix from tag name
-        [[ "${{ github.ref }}" == "refs/tags/"* ]] && VERSION=$(echo $VERSION | sed -e 's/^v//')
-
-        # Use docker `latest` tag convention
-        [ "$VERSION" == "master" ] && VERSION=latest
-
-        echo IMAGE_ID=$IMAGE_ID
-        echo VERSION=$VERSION
-
-        docker tag $IMAGE_ID $IMAGE_ID:$VERSION
-        docker push $IMAGE_ID:$VERSION
+      run: ./.github/push.sh forallsecure/openssl-cve-2014-0160
 
   cereal-cve-2020-11104-11105:
-
     runs-on: ubuntu-latest
     steps:
     - uses: actions/checkout@v2
@@ -54,23 +31,17 @@ jobs:
       run: echo "${{ secrets.DOCKER_PASSWORD }}" | docker login -u ${{ secrets.DOCKER_USERNAME }} --password-stdin
 
     - name: Push the docker image
-      run: |
-        IMAGE_ID=forallsecure/cereal-cve-2020-11104-11105
-
-        # Change all uppercase to lowercase
-        IMAGE_ID=$(echo $IMAGE_ID | tr '[A-Z]' '[a-z]')
-
-        # Strip git ref prefix from version
-        VERSION=$(echo "${{ github.ref }}" | sed -e 's,.*/\(.*\),\1,')
-
-        # Strip "v" prefix from tag name
-        [[ "${{ github.ref }}" == "refs/tags/"* ]] && VERSION=$(echo $VERSION | sed -e 's/^v//')
+      run: ./.github/push.sh forallsecure/cereal-cve-2020-11104-11105
 
-        # Use docker `latest` tag convention
-        [ "$VERSION" == "master" ] && VERSION=latest
+    h2o-cve-2018-0608:
+      runs-on: ubuntu-latest
+      steps:
+      - uses: actions/checkout@v2
+      - name: Build the Docker image
+        run: ./mayhemit.sh --build h2o-cve-2018-0608
 
-        echo IMAGE_ID=$IMAGE_ID
-        echo VERSION=$VERSION
+      - name: Log into the registry
+        run: echo "${{ secrets.DOCKER_PASSWORD }}" | docker login -u ${{ secrets.DOCKER_USERNAME }} --password-stdin
 
-        docker tag $IMAGE_ID $IMAGE_ID:$VERSION
-        docker push $IMAGE_ID:$VERSION
+      - name: Push the docker image
+        run: ./.github/push.sh forallsecure/h2o-cve-2018-0608