build: init c2rust script

bindings/rust/Cargo.toml

@@ -22,3 +22,9 @@ incremental = false
 lto = true
 codegen-units = 1
 incremental = false
+
+[profile.fuzz]
+inherits = "dev"
+opt-level = 3
+incremental = false
+codegen-units = 1

crypto/s2n_certificate.h

@@ -67,7 +67,7 @@ struct s2n_cert_chain_and_key {
     void *context;
 };
 
-struct certs_by_type {
+struct s2n_certs_by_type {
     struct s2n_cert_chain_and_key *certs[S2N_CERT_TYPE_COUNT];
 };
 

error/s2n_errno.c

@@ -428,6 +428,11 @@ void s2n_debug_info_reset(void)
     _s2n_debug_info.source = "";
 }
 
+void _s2n_debug_info_set(struct s2n_debug_info debug_info)
+{
+    _s2n_debug_info = debug_info;
+}
+
 #ifdef S2N_STACKTRACE
 
     #define MAX_BACKTRACE_DEPTH 20

error/s2n_errno.h

@@ -340,6 +340,10 @@ struct s2n_debug_info {
 };
 
 extern __thread struct s2n_debug_info _s2n_debug_info;
+void _s2n_debug_info_set(struct s2n_debug_info debug_info);
+
+#define S2N_ERRNO_GET() s2n_errno
+#define S2N_ERRNO_SET(v) do { s2n_errno = v; } while (0)
 
 #define TO_STRING(s)   #s
 #define STRING_(s)     TO_STRING(s)

scripts/s2n2rust/.gitignore

@@ -0,0 +1,2 @@
+/s2n-tls
+/target

scripts/s2n2rust/Dockerfile

@@ -0,0 +1,76 @@
+FROM ubuntu:bionic as c2rustsrc
+
+ARG c2rust=9511a4f28d18d626a9b9d6fc73596f60e51e2cf7
+
+RUN \
+  set -ex; \
+  apt-get update; \
+  apt-get install curl unzip -y; \
+  cd /opt/; \
+  curl https://github.com/immunant/c2rust/archive/${c2rust}.zip -L -o c2rust.zip; \
+  unzip c2rust.zip; \
+  rm c2rust.zip; \
+  mv c2rust-${c2rust} c2rust; \
+  echo done
+
+FROM ubuntu:bionic
+
+ARG USER=s2n
+ARG UID=1000
+ARG GID=1000
+ENV HOME=/home/$USER
+ENV DEBIAN_FRONTEND=noninteractive
+
+USER root
+RUN groupadd -f -g $GID ${USER}
+RUN useradd --create-home -u $UID -g $GID --create-home --shell /bin/bash ${USER}
+
+# /home/$USER needs to be accessible by other users because we always run the
+# cargo binary from /home/$USER/.cargo/bin
+RUN chmod 755 /home/${USER}
+
+COPY --chown=${USER}:${USER} --from=c2rustsrc /opt/c2rust /home/${USER}/c2rust
+
+RUN \
+  set -ex; \
+  bash /home/${USER}/c2rust/scripts/provision_deb.sh; \
+  chown ${USER}:${USER} -R /home/${USER}; \
+  chmod 755 -R /home/${USER}/c2rust; \
+  echo done
+
+USER $USER
+
+ENV HOME=/home/$USER
+ARG RUST_VER=nightly-2024-05-19
+ENV RUST_VER=${RUST_VER}
+WORKDIR /home/$USER
+
+# setup rust
+RUN \
+  set -ex; \
+  cd $HOME/c2rust; \
+  ./scripts/provision_rust.sh; \
+  echo ". $HOME/.cargo/env" >> $HOME/.bashrc; \
+  echo done
+
+# install dependencies
+RUN \
+  set -ex; \
+  . "$HOME/.cargo/env"; \
+  rustup component add rust-analyzer; \
+  cargo install bindgen-cli; \
+  echo done
+
+RUN \
+  set -ex; \
+  . "$HOME/.cargo/env"; \
+  cd $HOME/c2rust; \
+  cargo build --release; \
+  echo "export PATH=\"$HOME/c2rust/target/release:\$PATH\"" >> $HOME/.bashrc; \
+  echo done
+
+COPY --chmod=766 entrypoint.sh /bin/s2n2rust
+
+SHELL ["/bin/bash"]
+ENTRYPOINT ["/bin/s2n2rust"]
+

scripts/s2n2rust/entrypoint.sh

@@ -0,0 +1,10 @@
+#!/bin/bash
+
+set -ex
+
+. "$HOME/.cargo/env"
+export PATH="$HOME/c2rust/target/release:$PATH"
+
+cargo install --path $2/scripts/s2n2rust/s2n2rust
+
+exec $HOME/.cargo/bin/s2n2rust $@

scripts/s2n2rust/run.sh

@@ -0,0 +1,35 @@
+#!/usr/bin/env bash
+
+set -ex
+
+IMAGE=aws/s2n-tls-2rust
+C2RUST_COMMIT=9511a4f28d18d626a9b9d6fc73596f60e51e2cf7
+SCRIPT_DIR=$( cd "$( dirname $0 )" && pwd )
+S2N_TLS="$(dirname "$SCRIPT_DIR")/../"
+
+BUILD_ARGS=(
+        "--file $SCRIPT_DIR/Dockerfile"
+        "--tag $IMAGE"
+        "--build-arg=c2rust=$C2RUST_COMMIT"
+        "--build-arg=USER=$USER"
+        "--build-arg=UID=$UID"
+       # "--build-arg=GID=$GID"
+)
+
+sudo DOCKER_BUILDKIT=1 docker build $SCRIPT_DIR ${BUILD_ARGS[@]}
+
+docker_run() {
+  sudo docker run \
+    -i \
+    --rm \
+    --tty \
+    --volume $S2N_TLS:/home/$USER/s2n-tls \
+    --user $USER \
+    $IMAGE \
+    $@
+}
+
+docker_run transpile /home/$USER/s2n-tls
+docker_run refactor /home/$USER/s2n-tls
+
+echo "build available in $SCRIPT_DIR/target/s2n-tls"

scripts/s2n2rust/s2n2rust/.gitignore

@@ -0,0 +1 @@
+/target