vendor: update buildkit to 8effd45b

Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2025-07-09 21:17:09 +08:00 · 2021-03-22 15:23:46 -07:00
parent 28809b82a2
commit d40a6082fa
618 changed files with 75150 additions and 10913 deletions
--- a/vendor/github.com/miekg/pkcs11/Makefile.release
+++ b/vendor/github.com/miekg/pkcs11/Makefile.release
@ -0,0 +1,57 @@
+# Makefile for releasing.
+#
+# The release is controlled from version.go. The version found there is
+# used to tag the git repo, we're not building any artifects so there is nothing
+# to upload to github.
+#
+# * Up the version in version.go
+# * Run: make -f Makefile.release release
+#   * will *commit* your change with 'Release $VERSION'
+#   * push to github
+#
+
+define GO
+//+build ignore
+
+package main
+
+import (
+	"fmt"
+
+	"github.com/miekg/pkcs11"
+)
+
+func main() {
+	fmt.Println(pkcs11.Release.String())
+}
+endef
+
+$(file > version_release.go,$(GO))
+VERSION:=$(shell go run -tags release version_release.go)
+TAG="v$(VERSION)"
+
+all:
+	rm -f version_release.go
+	@echo Use the \'release\' target to start a release $(VERSION)
+
+.PHONY: run
+run:
+	rm -f version_release.go
+	@echo $(VERSION)
+
+.PHONY: release
+release: commit push
+	@echo Released $(VERSION)
+
+.PHONY: commit
+commit:
+	rm -f version_release.go
+	@echo Committing release $(VERSION)
+	git commit -am"Release $(VERSION)"
+	git tag $(TAG)
+
+.PHONY: push
+push:
+	@echo Pushing release $(VERSION) to master
+	git push --tags
+	git push
--- a/vendor/github.com/miekg/pkcs11/README.md
+++ b/vendor/github.com/miekg/pkcs11/README.md
@ -1,68 +1,68 @@
 # PKCS#11 [![Build Status](https://travis-ci.org/miekg/pkcs11.png?branch=master)](https://travis-ci.org/miekg/pkcs11) [![GoDoc](https://img.shields.io/badge/godoc-reference-blue.svg)](http://godoc.org/github.com/miekg/pkcs11)

-This is a Go implementation of the PKCS#11 API. It wraps the library closely, but uses Go idiom
-were it makes sense. It has been tested with SoftHSM.
+This is a Go implementation of the PKCS#11 API. It wraps the library closely, but uses Go idiom were
+it makes sense. It has been tested with SoftHSM.

 ## SoftHSM

-* Make it use a custom configuration file `export SOFTHSM_CONF=$PWD/softhsm.conf`
+ *  Make it use a custom configuration file `export SOFTHSM_CONF=$PWD/softhsm.conf`

-* Then use `softhsm` to init it
+ *  Then use `softhsm` to init it

-        softhsm --init-token --slot 0 --label test --pin 1234
+    ~~~
+    softhsm --init-token --slot 0 --label test --pin 1234
+    ~~~
+
+ *  Then use `libsofthsm.so` as the pkcs11 module:
+
+    ~~~ go
+    p := pkcs11.New("/usr/lib/softhsm/libsofthsm.so")
+    ~~~

-* Then use `libsofthsm.so` as the pkcs11 module:
-```go
-        p := pkcs11.New("/usr/lib/softhsm/libsofthsm.so")
-```
 ## Examples

 A skeleton program would look somewhat like this (yes, pkcs#11 is verbose):
-```go
-    p := pkcs11.New("/usr/lib/softhsm/libsofthsm.so")
-    err := p.Initialize()
-    if err != nil {
-        panic(err)
-    }

-    defer p.Destroy()
-    defer p.Finalize()
+~~~ go
+p := pkcs11.New("/usr/lib/softhsm/libsofthsm.so")
+err := p.Initialize()
+if err != nil {
+    panic(err)
+}

-    slots, err := p.GetSlotList(true)
-    if err != nil {
-        panic(err)
-    }
+defer p.Destroy()
+defer p.Finalize()

-    session, err := p.OpenSession(slots[0], pkcs11.CKF_SERIAL_SESSION|pkcs11.CKF_RW_SESSION)
-    if err != nil {
-        panic(err)
-    }
-    defer p.CloseSession(session)
+slots, err := p.GetSlotList(true)
+if err != nil {
+    panic(err)
+}

-    err = p.Login(session, pkcs11.CKU_USER, "1234")
-    if err != nil {
-        panic(err)
-    }
-    defer p.Logout(session)
+session, err := p.OpenSession(slots[0], pkcs11.CKF_SERIAL_SESSION|pkcs11.CKF_RW_SESSION)
+if err != nil {
+    panic(err)
+}
+defer p.CloseSession(session)

-    p.DigestInit(session, []*pkcs11.Mechanism{pkcs11.NewMechanism(pkcs11.CKM_SHA_1, nil)})
-    hash, err := p.Digest(session, []byte("this is a string"))
-    if err != nil {
-        panic(err)
-    }
+err = p.Login(session, pkcs11.CKU_USER, "1234")
+if err != nil {
+    panic(err)
+}
+defer p.Logout(session)
+
+p.DigestInit(session, []*pkcs11.Mechanism{pkcs11.NewMechanism(pkcs11.CKM_SHA_1, nil)})
+hash, err := p.Digest(session, []byte("this is a string"))
+if err != nil {
+    panic(err)
+}
+
+for _, d := range hash {
+        fmt.Printf("%x", d)
+}
+fmt.Println()
+~~~

-    for _, d := range hash {
-            fmt.Printf("%x", d)
-    }
-    fmt.Println()
-```
 Further examples are included in the tests.

-To expose PKCS#11 keys using the
-[crypto.Signer interface](https://golang.org/pkg/crypto/#Signer),
+To expose PKCS#11 keys using the [crypto.Signer interface](https://golang.org/pkg/crypto/#Signer),
 please see [github.com/thalesignite/crypto11](https://github.com/thalesignite/crypto11).
-
-# TODO
-
-* Fix/double check endian stuff, see types.go NewAttribute()
-* Look at the memory copying in fast functions (sign, hash etc)
--- a/vendor/github.com/miekg/pkcs11/const.go
+++ b/vendor/github.com/miekg/pkcs11/const.go
@ -723,3 +723,14 @@ const (
 	CKD_NULL                             = 0x00000001
 	CKD_SHA1_KDF                         = 0x00000002
 )
+
+// Special return values defined in PKCS#11 v2.40 section 3.2.
+const (
+	// CK_EFFECTIVELY_INFINITE may be returned in the CK_TOKEN_INFO fields ulMaxSessionCount and ulMaxRwSessionCount.
+	// It indicates there is no practical limit on the number of sessions.
+	CK_EFFECTIVELY_INFINITE = 0
+
+	// CK_UNAVAILABLE_INFORMATION may be returned for several fields within CK_TOKEN_INFO. It indicates
+	// the token is unable or unwilling to provide the requested information.
+	CK_UNAVAILABLE_INFORMATION = ^uint(0)
+)
--- a/vendor/github.com/miekg/pkcs11/go.mod
+++ b/vendor/github.com/miekg/pkcs11/go.mod
@ -0,0 +1,3 @@
+module github.com/miekg/pkcs11
+
+go 1.12
--- a/vendor/github.com/miekg/pkcs11/pkcs11.go
+++ b/vendor/github.com/miekg/pkcs11/pkcs11.go
@ -997,11 +997,11 @@ func (c *Ctx) GetOperationState(sh SessionHandle) ([]byte, error) {
 		statelen C.CK_ULONG
 	)
 	e := C.GetOperationState(c.ctx, C.CK_SESSION_HANDLE(sh), &state, &statelen)
+	defer C.free(unsafe.Pointer(state))
 	if toError(e) != nil {
 		return nil, toError(e)
 	}
 	b := C.GoBytes(unsafe.Pointer(state), C.int(statelen))
-	C.free(unsafe.Pointer(state))
 	return b, nil
 }

--- a/vendor/github.com/miekg/pkcs11/release.go
+++ b/vendor/github.com/miekg/pkcs11/release.go
@ -0,0 +1,17 @@
+// +build release
+
+package pkcs11
+
+import "fmt"
+
+// Release is current version of the pkcs11 library.
+var Release = R{1, 0, 3}
+
+// R holds the version of this library.
+type R struct {
+	Major, Minor, Patch int
+}
+
+func (r R) String() string {
+	return fmt.Sprintf("%d.%d.%d", r.Major, r.Minor, r.Patch)
+}
--- a/vendor/github.com/miekg/pkcs11/softhsm2.conf
+++ b/vendor/github.com/miekg/pkcs11/softhsm2.conf
@ -1,4 +1,4 @@
 log.level = INFO
 objectstore.backend = file
-directories.tokendir = test_db
+directories.tokendir = test_data
 slots.removable = false