build(deps): bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6
Bumps [github.com/containers/ocicrypt](https://github.com/containers/ocicrypt) from 1.1.5 to 1.1.6. - [Release notes](https://github.com/containers/ocicrypt/releases) - [Commits](https://github.com/containers/ocicrypt/compare/v1.1.5...v1.1.6) --- updated-dependencies: - dependency-name: github.com/containers/ocicrypt dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
This commit is contained in:
		
							parent
							
								
									5908996738
								
							
						
					
					
						commit
						b5950a9189
					
				
							
								
								
									
										2
									
								
								go.mod
								
								
								
								
							
							
						
						
									
										2
									
								
								go.mod
								
								
								
								
							|  | @ -15,7 +15,7 @@ require ( | |||
| 	github.com/containers/common v0.50.1 | ||||
| 	github.com/containers/conmon v2.0.20+incompatible | ||||
| 	github.com/containers/image/v5 v5.23.0 | ||||
| 	github.com/containers/ocicrypt v1.1.5 | ||||
| 	github.com/containers/ocicrypt v1.1.6 | ||||
| 	github.com/containers/psgo v1.7.3 | ||||
| 	github.com/containers/storage v1.43.0 | ||||
| 	github.com/coreos/go-systemd/v22 v22.4.0 | ||||
|  |  | |||
							
								
								
									
										3
									
								
								go.sum
								
								
								
								
							
							
						
						
									
										3
									
								
								go.sum
								
								
								
								
							|  | @ -422,8 +422,9 @@ github.com/containers/ocicrypt v1.1.0/go.mod h1:b8AOe0YR67uU8OqfVNcznfFpAzu3rdgU | |||
| github.com/containers/ocicrypt v1.1.1/go.mod h1:Dm55fwWm1YZAjYRaJ94z2mfZikIyIN4B0oB3dj3jFxY= | ||||
| github.com/containers/ocicrypt v1.1.2/go.mod h1:Dm55fwWm1YZAjYRaJ94z2mfZikIyIN4B0oB3dj3jFxY= | ||||
| github.com/containers/ocicrypt v1.1.3/go.mod h1:xpdkbVAuaH3WzbEabUd5yDsl9SwJA5pABH85425Es2g= | ||||
| github.com/containers/ocicrypt v1.1.5 h1:UO+gBnBXvMvC7HTXLh0bPgLslfW8HlY+oxYcoSHBcZQ= | ||||
| github.com/containers/ocicrypt v1.1.5/go.mod h1:WgjxPWdTJMqYMjf3M6cuIFFA1/MpyyhIM99YInA+Rvc= | ||||
| github.com/containers/ocicrypt v1.1.6 h1:uoG52u2e91RE4UqmBICZY8dNshgfvkdl3BW6jnxiFaI= | ||||
| github.com/containers/ocicrypt v1.1.6/go.mod h1:WgjxPWdTJMqYMjf3M6cuIFFA1/MpyyhIM99YInA+Rvc= | ||||
| github.com/containers/psgo v1.7.3 h1:KTNurTMXpZjDJHWmlieVO7k7jgKJ4CR/HpPeSaAKtgc= | ||||
| github.com/containers/psgo v1.7.3/go.mod h1:PfaNzzHmMb8M9/blPgyD4BB3ZEj/0ApZIxN6nNtA+t4= | ||||
| github.com/containers/storage v1.37.0/go.mod h1:kqeJeS0b7DO2ZT1nVWs0XufrmPFbgV3c+Q/45RlH6r4= | ||||
|  |  | |||
|  | @ -33,9 +33,9 @@ import ( | |||
| 	"github.com/containers/ocicrypt/keywrap/pkcs11" | ||||
| 	"github.com/containers/ocicrypt/keywrap/pkcs7" | ||||
| 	"github.com/opencontainers/go-digest" | ||||
| 	log "github.com/sirupsen/logrus" | ||||
| 	ocispec "github.com/opencontainers/image-spec/specs-go/v1" | ||||
| 	"github.com/pkg/errors" | ||||
| 	log "github.com/sirupsen/logrus" | ||||
| ) | ||||
| 
 | ||||
| // EncryptLayerFinalizer is a finalizer run to return the annotations to set for
 | ||||
|  | @ -143,6 +143,9 @@ func EncryptLayer(ec *config.EncryptConfig, encOrPlainLayerReader io.Reader, des | |||
| 
 | ||||
| 		newAnnotations := make(map[string]string) | ||||
| 		keysWrapped := false | ||||
| 		if len(keyWrapperAnnotations) == 0 { | ||||
| 			return nil, errors.New("missing Annotations needed for decryption") | ||||
| 		} | ||||
| 		for annotationsID, scheme := range keyWrapperAnnotations { | ||||
| 			b64Annotations := desc.Annotations[annotationsID] | ||||
| 			keywrapper := GetKeyWrapper(scheme) | ||||
|  | @ -211,6 +214,9 @@ func DecryptLayer(dc *config.DecryptConfig, encLayerReader io.Reader, desc ocisp | |||
| func decryptLayerKeyOptsData(dc *config.DecryptConfig, desc ocispec.Descriptor) ([]byte, error) { | ||||
| 	privKeyGiven := false | ||||
| 	errs := "" | ||||
| 	if len(keyWrapperAnnotations) == 0 { | ||||
| 		return nil, errors.New("missing Annotations needed for decryption") | ||||
| 	} | ||||
| 	for annotationsID, scheme := range keyWrapperAnnotations { | ||||
| 		b64Annotation := desc.Annotations[annotationsID] | ||||
| 		if b64Annotation != "" { | ||||
|  |  | |||
|  | @ -139,7 +139,7 @@ func addPubKeys(dc *config.DecryptConfig, pubKeys [][]byte) ([]interface{}, erro | |||
| 	return pkcs11Keys, nil | ||||
| } | ||||
| 
 | ||||
| func p11confFromParameters(dcparameters map[string][][]byte) (*pkcs11.Pkcs11Config, error){ | ||||
| func p11confFromParameters(dcparameters map[string][][]byte) (*pkcs11.Pkcs11Config, error) { | ||||
| 	if _, ok := dcparameters["pkcs11-config"]; ok { | ||||
| 		return pkcs11.ParsePkcs11ConfigFile(dcparameters["pkcs11-config"][0]) | ||||
| 	} | ||||
|  |  | |||
|  | @ -3,10 +3,14 @@ package spec | |||
| const ( | ||||
| 	// MediaTypeLayerEnc is MIME type used for encrypted layers.
 | ||||
| 	MediaTypeLayerEnc = "application/vnd.oci.image.layer.v1.tar+encrypted" | ||||
| 	// MediaTypeLayerGzipEnc is MIME type used for encrypted compressed layers.
 | ||||
| 	// MediaTypeLayerGzipEnc is MIME type used for encrypted gzip-compressed layers.
 | ||||
| 	MediaTypeLayerGzipEnc = "application/vnd.oci.image.layer.v1.tar+gzip+encrypted" | ||||
| 	// MediaTypeLayerZstdEnc is MIME type used for encrypted zstd-compressed layers.
 | ||||
| 	MediaTypeLayerZstdEnc = "application/vnd.oci.image.layer.v1.tar+zstd+encrypted" | ||||
| 	// MediaTypeLayerNonDistributableEnc is MIME type used for non distributable encrypted layers.
 | ||||
| 	MediaTypeLayerNonDistributableEnc = "application/vnd.oci.image.layer.nondistributable.v1.tar+encrypted" | ||||
| 	// MediaTypeLayerGzipEnc is MIME type used for non distributable encrypted compressed layers.
 | ||||
| 	// MediaTypeLayerGzipEnc is MIME type used for non distributable encrypted gzip-compressed layers.
 | ||||
| 	MediaTypeLayerNonDistributableGzipEnc = "application/vnd.oci.image.layer.nondistributable.v1.tar+gzip+encrypted" | ||||
| 	// MediaTypeLayerZstdEnc is MIME type used for non distributable encrypted zstd-compressed layers.
 | ||||
| 	MediaTypeLayerNonDistributableZsdtEnc = "application/vnd.oci.image.layer.nondistributable.v1.tar+zstd+encrypted" | ||||
| ) | ||||
|  |  | |||
|  | @ -18,9 +18,9 @@ package utils | |||
| 
 | ||||
| import ( | ||||
| 	"bytes" | ||||
| 	"github.com/pkg/errors" | ||||
| 	"io" | ||||
| 	"os/exec" | ||||
| 	"github.com/pkg/errors" | ||||
| ) | ||||
| 
 | ||||
| // FillBuffer fills the given buffer with as many bytes from the reader as possible. It returns
 | ||||
|  |  | |||
|  | @ -239,7 +239,7 @@ github.com/containers/image/v5/version | |||
| # github.com/containers/libtrust v0.0.0-20200511145503-9c3a6c22cd9a | ||||
| ## explicit | ||||
| github.com/containers/libtrust | ||||
| # github.com/containers/ocicrypt v1.1.5 | ||||
| # github.com/containers/ocicrypt v1.1.6 | ||||
| ## explicit; go 1.12 | ||||
| github.com/containers/ocicrypt | ||||
| github.com/containers/ocicrypt/blockcipher | ||||
|  |  | |||
		Loading…
	
		Reference in New Issue