pep_engine_sequoia_backend 1.1.0

An implementation of the p≡p Engine's cryptotech interface using Sequoia.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111

//! Buffer management.
//!
//! Some convenience functions to copying data between Rust and C.
//! When moving data to C, we use libc's allocator, which means that
//! the C code can free the memory in the usual way, i.e., using
//! libc's free.

use std::{
    ptr::{
        copy_nonoverlapping,
    },
    slice,
};

use libc::{
    c_char,
};

use crate::Error;
use crate::Result;
use crate::ffi::MM;

/// Copies a Rust string to a buffer, adding a terminating zero.
pub fn rust_str_to_c_str<S: AsRef<str>>(mm: MM, s: S)
    -> Result<*mut c_char>
{
    let malloc = mm.malloc;

    let s = s.as_ref();
    let bytes = s.as_bytes();
    unsafe {
        let buf = malloc(bytes.len() + 1);
        if buf.is_null() {
            return Err(Error::OutOfMemory("rust_bytes_to_c_str_lossy".into(),
                                          bytes.len() + 1));
        };
        copy_nonoverlapping(bytes.as_ptr(), buf as *mut _, bytes.len());
        *((buf as *mut u8).add(bytes.len())) = 0; // Terminate.
        Ok(buf as *mut c_char)
    }
}

/// Copies a C string to a buffer, adding a terminating zero.
///
/// Replaces embedded zeros with '_'.
pub fn rust_bytes_to_c_str_lossy<S: AsRef<[u8]>>(mm: MM, s: S)
    -> Result<*mut c_char>
{
    let malloc = mm.malloc;

    let bytes = s.as_ref();
    unsafe {
        let buf = malloc(bytes.len() + 1);
        if buf.is_null() {
            return Err(Error::OutOfMemory("rust_bytes_to_c_str_lossy".into(),
                                          bytes.len() + 1));
        };
        copy_nonoverlapping(bytes.as_ptr(), buf as *mut _, bytes.len());

        // Replace embedded zeros.
        let bytes_mut = std::slice::from_raw_parts_mut(buf as *mut u8,
                                                       bytes.len());
        bytes_mut.iter_mut().for_each(|b| if *b == 0 { *b = b'_' });

        *((buf as *mut u8).add(bytes.len())) = 0; // Terminate.
        Ok(buf as *mut c_char)
    }
}

// Copies a slice to a pointer and length adding a terminating NUL.
pub fn rust_bytes_to_ptr_and_len<S: AsRef<[u8]>>(mm: MM, s: S,
                                                 out: &mut *mut c_char,
                                                 out_len: &mut usize)
    -> Result<()>
{
    let malloc = mm.malloc;
    let s = s.as_ref();
    let len = s.len();

    unsafe {
        // Add a NULL byte.
        let buffer = malloc(len + 1) as *mut u8;
        if buffer.is_null() {
            return Err(Error::OutOfMemory("slice".into(), len + 1));
        }

        slice::from_raw_parts_mut(buffer, len).copy_from_slice(&s);

        // Set the NUL byte.
        slice::from_raw_parts_mut(buffer, len + 1)[len] = 0;

        *out = buffer as *mut _;
        *out_len = len;
    }

    Ok(())
}

pub fn malloc_cleared<T>(mm: MM) -> Result<*mut T>
{
    let malloc = mm.malloc;

    let size = std::mem::size_of::<T>();
    let buffer = unsafe { malloc(size) };
    if buffer.is_null() {
        return Err(Error::OutOfMemory("malloc".into(), size));
    };

    unsafe { libc::memset(buffer, 0, size) };
    Ok(buffer as *mut T)
}