docker/buildx
1
0
Fork 0
mirror of https://gitea.com/Lydanne/buildx.git synced 2025-11-04 18:13:42 +08:00
Code Issues Packages Projects Releases 1 Wiki Activity
Files
10365ddf22e768e235a3801360ae6566e483f7a6
buildx/vendor/github.com/miekg/pkcs11
History
Sebastiaan van Stijn 35b238ee82 vendor: vendor with -compat=1.17 
This might break compatibility with projects using this module that
are still on go1.16, which is EOL, so probably ok to ignore:

    github.com/docker/buildx/store imports
        github.com/gofrs/flock tested by
        github.com/gofrs/flock.test imports
        gopkg.in/check.v1 loaded from gopkg.in/check.v1@v1.0.0-20200227125254-8fa46927fb4f,
        but go 1.16 would select v1.0.0-20201130134442-10cb98267c6c

    To upgrade to the versions selected by go 1.16:
        go mod tidy -go=1.16 && go mod tidy -go=1.17
    If reproducibility with go 1.16 is not needed:
        go mod tidy -compat=1.17
    For other options, see:
        https://golang.org/doc/modules/pruning

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2022-05-10 20:33:20 +02:00
..
.gitignore
vendor: initial vendor
2019-03-22 16:27:37 -07:00
error.go
vendor: initial vendor
2019-03-22 16:27:37 -07:00
hsm.db
vendor: initial vendor
2019-03-22 16:27:37 -07:00
LICENSE
vendor: initial vendor
2019-03-22 16:27:37 -07:00
Makefile.release
vendor: update buildkit to 8effd45b
2021-03-22 15:54:07 -07:00
params.go
vendor: initial vendor
2019-03-22 16:27:37 -07:00
pkcs11.go
vendor: update buildkit to 3e38a2d
2022-04-03 20:40:33 +02:00
pkcs11.h
vendor: initial vendor
2019-03-22 16:27:37 -07:00
pkcs11f.h
vendor: initial vendor
2019-03-22 16:27:37 -07:00
pkcs11go.h
vendor: initial vendor
2019-03-22 16:27:37 -07:00
pkcs11t.h
vendor: initial vendor
2019-03-22 16:27:37 -07:00
README.md
vendor: update buildkit to 3e38a2d
2022-04-03 20:40:33 +02:00
release.go
vendor: update buildkit to 3e38a2d
2022-04-03 20:40:33 +02:00
softhsm2.conf
vendor: update buildkit to 8effd45b
2021-03-22 15:54:07 -07:00
softhsm.conf
vendor: initial vendor
2019-03-22 16:27:37 -07:00
types.go
vendor: update buildkit to 3e38a2d
2022-04-03 20:40:33 +02:00
vendor.go
vendor: initial vendor
2019-03-22 16:27:37 -07:00
zconst.go
vendor: update buildkit to 3e38a2d
2022-04-03 20:40:33 +02:00

README.md

PKCS#11

This is a Go implementation of the PKCS#11 API. It wraps the library closely, but uses Go idiom where it makes sense. It has been tested with SoftHSM.

SoftHSM

  • Make it use a custom configuration file export SOFTHSM_CONF=$PWD/softhsm.conf

  • Then use softhsm to init it

    softhsm --init-token --slot 0 --label test --pin 1234

  • Then use libsofthsm2.so as the pkcs11 module:

    p := pkcs11.New("/usr/lib/softhsm/libsofthsm2.so")

Examples

A skeleton program would look somewhat like this (yes, pkcs#11 is verbose):

p := pkcs11.New("/usr/lib/softhsm/libsofthsm2.so")
err := p.Initialize()
if err != nil {
    panic(err)
}

defer p.Destroy()
defer p.Finalize()

slots, err := p.GetSlotList(true)
if err != nil {
    panic(err)
}

session, err := p.OpenSession(slots[0], pkcs11.CKF_SERIAL_SESSION|pkcs11.CKF_RW_SESSION)
if err != nil {
    panic(err)
}
defer p.CloseSession(session)

err = p.Login(session, pkcs11.CKU_USER, "1234")
if err != nil {
    panic(err)
}
defer p.Logout(session)

p.DigestInit(session, []*pkcs11.Mechanism{pkcs11.NewMechanism(pkcs11.CKM_SHA_1, nil)})
hash, err := p.Digest(session, []byte("this is a string"))
if err != nil {
    panic(err)
}

for _, d := range hash {
        fmt.Printf("%x", d)
}
fmt.Println()

Further examples are included in the tests.

To expose PKCS#11 keys using the crypto.Signer interface, please see github.com/thalesignite/crypto11.