Upstream

.azuredevops/dependabot.yml

@@ -0,0 +1,5 @@
+version: 2
+
+# Disabling dependabot on Azure DevOps as this is a mirrored repo. Updates should go through github.
+enable-campaigned-updates: false
+enable-security-updates: false

.azuredevops/policies/branchClassification.yml

@@ -0,0 +1,15 @@
+# Schema taken from https://eng.ms/docs/cloud-ai-platform/devdiv/one-engineering-system-1es/1es-docs/product-catalog/branch-classification/branch-classification#optional-update-branch-classification-at-the-repo.
+name: branch_classification
+description: Branch classification configuration for repository
+resource: repository
+disabled: false
+where:
+configuration:
+  branchClassificationSettings:
+    defaultClassification: nonproduction
+    ruleset:
+      - name: prod-branches
+        branchNames:
+          - microsoft/main
+          - microsoft/release-branch.go*
+        classification: production

.config/guardian/.gdnsuppress

@@ -1,8 +1,8 @@
 {
-  "hydrated": false,
+  "hydrated": true,
   "properties": {
     "helpUri": "https://eng.ms/docs/microsoft-security/security/azure-security/cloudai-security-fundamentals-engineering/security-integration/guardian-wiki/microsoft-guardian/general/suppressions",
-    "hydrationStatus": "This file does not contain identifying data. It is safe to check into your repo. To hydrate this file with identifying data, run `guardian hydrate --help` and follow the guidance."
+    "hydrationStatus": "This file is hydrated. This is ok, it doesn't contain sensitive information."
   },
   "version": "1.0.0",
   "suppressionSets": {
@@ -13,13 +13,149 @@
     }
   },
   "results": {
+    "dd76b3defecd301787000102e3ce76506d45147b98fc4accb410b87097b2f0dd": {
+      "signature": "dd76b3defecd301787000102e3ce76506d45147b98fc4accb410b87097b2f0dd",
+      "alternativeSignatures": [],
+      "target": "go/src/crypto/ecdh/ecdh_test.go",
+      "line": 128,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0060",
+      "createdDate": "2024-12-16 10:13:25Z"
+    },
+    "6b250bd6def22ac84e477b4d22ec0b12cb69721002a7fe0fccf23ff5a7dfa688": {
+      "signature": "6b250bd6def22ac84e477b4d22ec0b12cb69721002a7fe0fccf23ff5a7dfa688",
+      "alternativeSignatures": [],
+      "target": "go/src/crypto/ecdh/ecdh_test.go",
+      "line": 136,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0060",
+      "createdDate": "2024-12-16 10:13:25Z"
+    },
+    "877868030fa2e6114057d685aea3f4ec90d3190dcfe0e0ae1d86a3a4094fad87": {
+      "signature": "877868030fa2e6114057d685aea3f4ec90d3190dcfe0e0ae1d86a3a4094fad87",
+      "alternativeSignatures": [],
+      "target": "go/src/crypto/ecdh/ecdh_test.go",
+      "line": 147,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0060",
+      "createdDate": "2024-12-16 10:13:25Z"
+    },
+    "3f72337007e55d003a9f252112dbaead6ddf0f89bac847d528b44c263ddce0e1": {
+      "signature": "3f72337007e55d003a9f252112dbaead6ddf0f89bac847d528b44c263ddce0e1",
+      "alternativeSignatures": [],
+      "target": "go/src/crypto/ecdh/ecdh_test.go",
+      "line": 154,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0060",
+      "createdDate": "2024-12-16 10:13:25Z"
+    },
+    "1ebc50c2b5fecaf320705d05137b2d29a3851823251d6224fc6223ca653b7c02": {
+      "signature": "1ebc50c2b5fecaf320705d05137b2d29a3851823251d6224fc6223ca653b7c02",
+      "alternativeSignatures": [],
+      "target": "go/src/crypto/tls/example_test.go",
+      "line": 165,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0020",
+      "createdDate": "2024-12-16 10:13:25Z"
+    },
+    "3d4c2bb9f6a10eec92970320f48c0ee107981491a38c0869e054c54f156aafa1": {
+      "signature": "3d4c2bb9f6a10eec92970320f48c0ee107981491a38c0869e054c54f156aafa1",
+      "alternativeSignatures": [],
+      "target": "go/src/crypto/x509/platform_root_key.pem",
+      "line": 1,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0020",
+      "createdDate": "2024-12-16 10:13:25Z"
+    },
+    "ebf235ebc38c8301d92931d07d3ba98a286fc46d53f24467f7d804c7d907a88b": {
+      "signature": "ebf235ebc38c8301d92931d07d3ba98a286fc46d53f24467f7d804c7d907a88b",
+      "alternativeSignatures": [],
+      "target": "go/src/crypto/tls/testdata/example-key.pem",
+      "line": 1,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0020",
+      "createdDate": "2024-12-16 10:13:25Z"
+    },
+    "d00714f4abdecfa0f2b96d616a8631088ace81abf5f0688c05937dcf9cc4bb5e": {
+      "signature": "d00714f4abdecfa0f2b96d616a8631088ace81abf5f0688c05937dcf9cc4bb5e",
+      "alternativeSignatures": [],
+      "target": "go/src/cmd/vendor/rsc.io/markdown/emoji.go",
+      "line": 1432,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0060",
+      "createdDate": "2024-12-16 10:13:25Z"
+    },
     "d5ce1218657b3f7da8e9a6ac55d72833387257e76e39d837edfd5c62781b9b97": {
       "signature": "d5ce1218657b3f7da8e9a6ac55d72833387257e76e39d837edfd5c62781b9b97",
       "alternativeSignatures": [],
+      "target": "go/src/crypto/internal/hpke/testdata/rfc9180-vectors.json",
+      "line": 1,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0060",
+      "createdDate": "2024-12-20 00:07:58Z"
+    },
+    "e194d8614310e9f30653b5fb8ae34c07968131fce828c224c30536e1cb217e9e": {
+      "signature": "e194d8614310e9f30653b5fb8ae34c07968131fce828c224c30536e1cb217e9e",
+      "alternativeSignatures": [],
+      "target": "go/src/cmd/go/internal/auth/gitauth_test.go",
+      "line": 51,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0060",
+      "createdDate": "2024-12-20 19:29:53Z"
+    },
+    "dd34d1fbdcab2b03eccc9e9544d25b6830f28ef5f72e815035df834a6b3e57e4": {
+      "signature": "dd34d1fbdcab2b03eccc9e9544d25b6830f28ef5f72e815035df834a6b3e57e4",
+      "alternativeSignatures": [],
+      "target": "go/src/cmd/go/testdata/script/goauth_git.txt",
+      "line": 72,
+      "memberOf": [
+        "default"
+      ],
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0060",
+      "createdDate": "2024-12-20 19:29:53Z"
+    },
+    "2d264e899faa2c2dcf9c3c63acad2f0b0b7b9464fe1657d0313d8aa477103a3c": {
+      "signature": "2d264e899faa2c2dcf9c3c63acad2f0b0b7b9464fe1657d0313d8aa477103a3c",
+      "alternativeSignatures": [],
+      "target": "go/src/cmd/go/testdata/script/goauth_userauth.txt",
+      "line": 126,
       "memberOf": [
         "default"
       ],
-      "createdDate": "2024-06-10 09:31:52Z"
+      "tool": "credscan",
+      "ruleId": "CSCAN-GENERAL0120",
+      "createdDate": "2024-12-20 19:29:53Z"
     }
   }
 }

.config/tsa/tsaoptions.json

@@ -8,7 +8,7 @@
   ],
   "instanceUrl": "https://devdiv.visualstudio.com/",
   "projectName": "DEVDIV",
-  "areaPath": "DevDiv\\NET Compilers\\GoLang",
+  "areaPath": "DevDiv\\GoLang",
   "iterationPath": "DevDiv",
   "allTools": true
 }

.git-go-patch

@@ -0,0 +1,7 @@
+{
+  "MinimumToolVersion": "v1.0.1",
+  "SubmoduleDir": "go",
+  "PatchesDir": "patches",
+  "StatusFileDir": "eng/artifacts/go-patch",
+  "ExtractAsAuthor": "bot-for-go[bot] <199222863+bot-for-go[bot]@users.noreply.github.com>"
+}

.gitattributes

@@ -1,4 +1,9 @@
+# Default: normalize text files to LF in the repo and on checkout.
+* text=auto eol=lf
+
 # On Windows, running "git apply" with CRLF patch files causes an error for binary files:
 # "git diff header lacks filename information when removing 1 leading pathname component".
 # To fix this, always check out patch files as LF.
 *.patch -text
+
+.github/workflows/*.lock.yml linguist-generated=true merge=ours

.github/CODEOWNERS

@@ -1,8 +1,9 @@
-# Require review from golang-compiler team for changes in any file. This keeps us in the loop on
-# auto-merge PRs. The review bot is also an owner so that it can still trigger auto-merge for sync
-# PRs on its own. We may remove this rule once auto-merges are routine.
-* @microsoft/golang-compiler @microsoft-golang-review-bot
+# Require review from golang-compiler team for changes in all files.
 
-# Automatically request review from golang-compiler team for changes in the Microsoft-specific
-# files. This takes precedence over earlier rules in the file.
-/eng/ @microsoft/golang-compiler
+* @microsoft/golang-compiler
+
+# Don't assign a code owner to automatically updated files to allow GitHub apps to use the
+# auto-merge flow without human intervention.
+/go
+/MICROSOFT_REVISION
+/VERSION

.github/ISSUE_TEMPLATE/bug-report.yml

@@ -0,0 +1,103 @@
+# https://docs.github.com/en/communities/using-templates-to-encourage-useful-issues-and-pull-requests/configuring-issue-templates-for-your-repository#creating-issue-forms
+# https://docs.github.com/en/communities/using-templates-to-encourage-useful-issues-and-pull-requests/syntax-for-githubs-form-schema
+name: Bugs
+description: Report a bug with the Microsoft build of Go
+title: "issue title"
+
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Thanks for helping us improve! 🙏 Please answer these questions and provide as much information as possible about your problem.
+
+  - type: input
+    id: go-version
+    attributes:
+      label: Microsoft build of Go version
+      description: |
+        What version of Go are you using (`go version`)?
+
+        Note: we only [support](https://github.com/microsoft/go/blob/microsoft/main/eng/doc/Downloads.md) the two most recent major releases.
+      placeholder: ex. go version go1.24.1 darwin/arm64
+    validations:
+      required: true
+
+  - type: textarea
+    id: platform
+    attributes:
+      label: What is your operating system and platform?
+      description: Please add as much information here as possible. For example, if you have a problem related to platform-provided crypto (`systemcrypto`), your Linux distro+version or specific version of Windows may be necessary to reproduce it.
+      placeholder: e.g. "Ubuntu 24.04 on ARM64" or "Windows 10 2004 on x86-64"
+    validations:
+      required: true
+
+  - type: textarea
+    id: go-env
+    attributes:
+      label: "Output of `go env` in your module/workspace:"
+      placeholder: |
+        GO111MODULE=""
+        GOARCH="arm64"
+        GOBIN="/Users/gopher/go/bin"
+        GOCACHE="/Users/gopher/go/cache"
+        GOENV="/Users/gopher/Library/Application Support/go/env"
+        GOEXE=""
+        GOEXPERIMENT=""
+        GOFLAGS=""
+        GOHOSTARCH="arm64"
+        GOHOSTOS="darwin"
+        GOINSECURE=""
+        GOMODCACHE="/Users/gopher/go/pkg/mod"
+        GONOPROXY=""
+        GONOSUMDB=""
+        GOOS="darwin"
+        GOPATH="/Users/gopher/go"
+        GOPRIVATE=""
+        GOPROXY="https://proxy.golang.org,direct"
+        GOROOT="/usr/local/go"
+        GOSUMDB="sum.golang.org"
+        GOTMPDIR=""
+        GOTOOLDIR="/usr/local/go/pkg/tool/darwin_arm64"
+        GOVCS=""
+        GOVERSION="go1.20.7"
+        GCCGO="gccgo"
+        AR="ar"
+        CC="clang"
+        CXX="clang++"
+        CGO_ENABLED="1"
+        GOMOD="/dev/null"
+        GOWORK=""
+        CGO_CFLAGS="-O2 -g"
+        CGO_CPPFLAGS=""
+        CGO_CXXFLAGS="-O2 -g"
+        CGO_FFLAGS="-O2 -g"
+        CGO_LDFLAGS="-O2 -g"
+        PKG_CONFIG="pkg-config"
+        GOGCCFLAGS="-fPIC -arch arm64 -pthread -fno-caret-diagnostics -Qunused-arguments -fmessage-length=0 -fdebug-prefix-map=/var/folders/44/nbbyll_10jd0z8rj_qxm43740000gn/T/go-build2331607515=/tmp/go-build -gno-record-gcc-switches -fno-common"
+      render: shell
+    validations:
+      required: true
+
+  - type: textarea
+    id: what-did-you-do
+    attributes:
+      label: "What did you do?"
+      description: "If possible, provide a recipe for reproducing the error. A complete runnable program is good."
+    validations:
+      required: true
+
+  - type: textarea
+    id: actual-behavior
+    attributes:
+      label: "What did you see happen?"
+      description: Command invocations and their associated output, functions with their arguments and return results, full stacktraces for panics (upload a file if it is very long), etc. Prefer copying text output over using screenshots.
+    validations:
+      required: true
+
+  - type: textarea
+    id: expected-behavior
+    attributes:
+      label: "What did you expect to see?"
+      description: Why is the current output incorrect, and any additional context we may need to understand the issue.
+    validations:
+      required: true

.github/aw/actions-lock.json

@@ -0,0 +1,14 @@
+{
+  "entries": {
+    "actions/github-script@v8": {
+      "repo": "actions/github-script",
+      "version": "v8",
+      "sha": "ed597411d8f924073f98dfc5c65a23a2325f34cd"
+    },
+    "github/gh-aw/actions/setup@v0.50.2": {
+      "repo": "github/gh-aw/actions/setup",
+      "version": "v0.50.2",
+      "sha": "e32435511ac2c5aa0e08b19284a25dc98fadf1e1"
+    }
+  }
+}

.github/dependabot.yml

@@ -9,11 +9,6 @@ updates:
   schedule:
     interval: daily
   open-pull-requests-limit: 10
-- package-ecosystem: gomod
-  directory: "eng/_core"
-  schedule:
-    interval: daily
-  open-pull-requests-limit: 10
 - package-ecosystem: gomod
   directory: "eng/_util"
   schedule: