fix: pterm can resolve to NAT

Co-authored-by: Anja Rabich <a.rabich@uni-luebeck.de>

Cargo.lock

@@ -2070,7 +2070,6 @@ dependencies = [
  "serde",
  "serial_test",
  "signal-hook",
- "signal-hook-mio",
  "stacker",
  "static_assertions",
  "tempfile",
@@ -2153,38 +2152,6 @@ dependencies = [
  "rosenpass-util",
 ]
 
-[[package]]
-name = "rosenpass-rp"
-version = "0.2.1"
-dependencies = [
- "anyhow",
- "base64ct",
- "ctrlc-async",
- "env_logger",
- "futures",
- "futures-util",
- "genetlink",
- "libc",
- "log",
- "netlink-packet-core",
- "netlink-packet-generic",
- "netlink-packet-wireguard",
- "rosenpass",
- "rosenpass-cipher-traits",
- "rosenpass-ciphers",
- "rosenpass-secret-memory",
- "rosenpass-util",
- "rosenpass-wireguard-broker",
- "rtnetlink",
- "serde",
- "stacker",
- "tempfile",
- "tokio",
- "toml",
- "x25519-dalek",
- "zeroize",
-]
-
 [[package]]
 name = "rosenpass-secret-memory"
 version = "0.1.0"
@@ -2217,13 +2184,11 @@ dependencies = [
  "anyhow",
  "base64ct",
  "libcrux-test-utils",
- "log",
  "mio",
  "rustix",
  "static_assertions",
  "tempfile",
  "thiserror 1.0.69",
- "tokio",
  "typenum",
  "uds",
  "zerocopy 0.7.35",
@@ -2254,6 +2219,35 @@ dependencies = [
  "zerocopy 0.7.35",
 ]
 
+[[package]]
+name = "rp"
+version = "0.2.1"
+dependencies = [
+ "anyhow",
+ "base64ct",
+ "ctrlc-async",
+ "futures",
+ "futures-util",
+ "genetlink",
+ "netlink-packet-core",
+ "netlink-packet-generic",
+ "netlink-packet-wireguard",
+ "rosenpass",
+ "rosenpass-cipher-traits",
+ "rosenpass-ciphers",
+ "rosenpass-secret-memory",
+ "rosenpass-util",
+ "rosenpass-wireguard-broker",
+ "rtnetlink",
+ "serde",
+ "stacker",
+ "tempfile",
+ "tokio",
+ "toml",
+ "x25519-dalek",
+ "zeroize",
+]
+
 [[package]]
 name = "rtnetlink"
 version = "0.14.1"
@@ -2438,25 +2432,14 @@ checksum = "0fda2ff0d084019ba4d7c6f371c95d8fd75ce3524c3cb8fb653a3023f6323e64"
 
 [[package]]
 name = "signal-hook"
-version = "0.3.18"
+version = "0.3.17"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d881a16cf4426aa584979d30bd82cb33429027e42122b169753d6ef1085ed6e2"
+checksum = "8621587d4798caf8eb44879d42e56b9a93ea5dcd315a6487c357130095b62801"
 dependencies = [
  "libc",
  "signal-hook-registry",
 ]
 
-[[package]]
-name = "signal-hook-mio"
-version = "0.2.4"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "34db1a06d485c9142248b7a054f034b349b212551f3dfd19c94d45a754a217cd"
-dependencies = [
- "libc",
- "mio",
- "signal-hook",
-]
-
 [[package]]
 name = "signal-hook-registry"
 version = "1.4.2"

Cargo.toml

@@ -54,8 +54,6 @@ serde = { version = "1.0.217", features = ["derive"] }
 arbitrary = { version = "1.4.1", features = ["derive"] }
 anyhow = { version = "1.0.95", features = ["backtrace", "std"] }
 mio = { version = "1.0.3", features = ["net", "os-poll"] }
-signal-hook-mio = { version = "0.2.4", features = ["support-v1_0"] }
-signal-hook = "0.3.17"
 oqs-sys = { version = "0.9.1", default-features = false, features = [
   'classic_mceliece',
   'kyber',
@@ -81,6 +79,7 @@ hex = { version = "0.4.3" }
 heck = { version = "0.5.0" }
 libc = { version = "0.2" }
 uds = { git = "https://github.com/rosenpass/uds" }
+signal-hook = "0.3.17"
 lazy_static = "1.5"
 
 #Dev dependencies

cipher-traits/src/primitives/keyed_hash.rs

@@ -40,7 +40,7 @@ pub struct InferKeyedHash<Static, const KEY_LEN: usize, const HASH_LEN: usize>
 where
     Static: KeyedHash<KEY_LEN, HASH_LEN>,
 {
-    pub _phantom_keyed_hasher: PhantomData<Static>,
+    pub _phantom_keyed_hasher: PhantomData<*const Static>,
 }
 
 impl<Static, const KEY_LEN: usize, const HASH_LEN: usize> InferKeyedHash<Static, KEY_LEN, HASH_LEN>

marzipan/README.md

@@ -0,0 +1,8 @@
+# Rewriting analyze.sh in Python
+
+* `../analyze.sh` is the old script
+* `src/__init__.py` is the new script
+
+* call the old script from the Rosenpass repository's root directory with `./analyze.sh`
+* call the new script from the marzipan directory:
+  * `nix run .# -- analyze $repo` where `$repo` is the absolute(?) path to the root directory of the Rosenpass repository.

marzipan/TODO.md

@@ -0,0 +1,64 @@
+# TODO for the project of rewriting Marzipan
+
+## Done
+
+* ~~figure out why ProVerif is started on the non-processed mpv file~~
+* ~~rework rebound warnings (`clean_warnings` Bash function)~~
+  ```bash
+  rosenpass$ rosenpass-marzipan run-proverif target/proverif/03_identity_hiding_responder.entry.o.pv target/proverif/03_identity_hiding_responder.entry.log
+  ```
+* ~~provide log parameter to `rosenpass-marzipan`-call~~ (no, it was intentionally not used)
+* ~~cpp pre-processing stuff~~
+* ~~awk pre-processing stuff~~
+* ~~`pretty_output` Bash function~~
+  * ~~pretty_output_line~~
+  * ~~click function intervention weirdness~~
+  * ~~why is everything red in the pretty output? (see line 96 in __init__.py)~~
+  * ~~awk RESULT flush in marzipan()~~
+  * ~~move the whole metaverif function to Python~~
+* ~move the whole analyze function to Python~
+  * ~find the files~
+  * ~start subprocesses in parallel~
+  * ~wait for them to finish~
+* ~~rebase from main~~
+* ~~see if we still need the `extra_args is None` check in `_run_proverif`~`
+* ~~set colors differently to prevent injection attack~~
+  * ~~by calling a function~~
+  * ~~by prepared statements~~
+* ~~standalone function parse_result_line is no longer necessary~~
+* ~~is the clean function still necessary?~~
+* ~~implement better main function for click~~
+* ~~why does analyze fail when the target/proverif directory is not empty?~~
+* ~~return an exit status that is meaningful for CI~~
+* ~~exception handling in analyze() and in run_proverif()~~
+* ~~refactor filtering in run_proverif (see karo's comment)~~
+* ~configurable target directory~
+* ~lark parser: multiline comments, how???~
+
+## Next Steps
+
+* integrate marzipan.awk into Python, somehow
+  * options term special cases (c.f. manual page 133, starting with "fun" term)
+    * complete with CryptoVerif options
+  * error when trying with: `nix run .# -- parse ../target/proverif/01_secrecy.entry.i.pv`
+    * `in(C, Cinit_conf(Ssskm, Spsk, Sspkt, ic));`
+    *                                           ^
+* rewrite marzipan.awk into Python/LARK
+  * define a LARK grammar for marzipan.awk rules
+  * write python code for processing marzipan rules, e.g. alias replacement (step: i.pv->o.pv)
+* do not assume that the repo path has subdir marzipan
+* do not assume that the repo path has subdir analysis
+* rewrite cpp into Python/LARK (step: mpv->i.pv)
+* integrate the Nix flake into the main Nix flake
+  * pull the gawk dependency into the Nix flake
+* think about next steps
+  * integrate this upstream, into the CI?
+  * “make it beautiful” steps? more resiliency to working directory?
+  * rewrite our awk usages into Python/…?
+    * yes, possibly as extension to the LARK grammar
+    * and rewrite the AST within Python
+    * reconstruct ProVerif input file for ProVerif
+  * rewrite our CPP usages into Python/…?
+* low priority: nested comments in ProVerif code
+
+“it replaces the Bash script and is idiomatic Python code”

marzipan/flake.lock

@@ -0,0 +1,190 @@
+{
+  "nodes": {
+    "flake-utils": {
+      "inputs": {
+        "systems": "systems"
+      },
+      "locked": {
+        "lastModified": 1731533236,
+        "narHash": "sha256-l0KFg5HjrsfsO/JpG+r7fRrqm12kzFHyUHqHCVpMMbI=",
+        "owner": "numtide",
+        "repo": "flake-utils",
+        "rev": "11707dc2f618dd54ca8739b309ec4fc024de578b",
+        "type": "github"
+      },
+      "original": {
+        "owner": "numtide",
+        "repo": "flake-utils",
+        "type": "github"
+      }
+    },
+    "flake-utils_2": {
+      "inputs": {
+        "systems": "systems_2"
+      },
+      "locked": {
+        "lastModified": 1726560853,
+        "narHash": "sha256-X6rJYSESBVr3hBoH0WbKE5KvhPU5bloyZ2L4K60/fPQ=",
+        "owner": "numtide",
+        "repo": "flake-utils",
+        "rev": "c1dfcf08411b08f6b8615f7d8971a2bfa81d5e8a",
+        "type": "github"
+      },
+      "original": {
+        "owner": "numtide",
+        "repo": "flake-utils",
+        "type": "github"
+      }
+    },
+    "nix-github-actions": {
+      "inputs": {
+        "nixpkgs": [
+          "poetry2nix",
+          "nixpkgs"
+        ]
+      },
+      "locked": {
+        "lastModified": 1729742964,
+        "narHash": "sha256-B4mzTcQ0FZHdpeWcpDYPERtyjJd/NIuaQ9+BV1h+MpA=",
+        "owner": "nix-community",
+        "repo": "nix-github-actions",
+        "rev": "e04df33f62cdcf93d73e9a04142464753a16db67",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nix-community",
+        "repo": "nix-github-actions",
+        "type": "github"
+      }
+    },
+    "nixpkgs": {
+      "locked": {
+        "lastModified": 1736166416,
+        "narHash": "sha256-U47xeACNBpkSO6IcCm0XvahsVXpJXzjPIQG7TZlOToU=",
+        "owner": "NixOS",
+        "repo": "nixpkgs",
+        "rev": "b30f97d8c32d804d2d832ee837d0f1ca0695faa5",
+        "type": "github"
+      },
+      "original": {
+        "owner": "NixOS",
+        "ref": "nixpkgs-unstable",
+        "repo": "nixpkgs",
+        "type": "github"
+      }
+    },
+    "nixpkgs_2": {
+      "locked": {
+        "lastModified": 1730157240,
+        "narHash": "sha256-P8wF4ag6Srmpb/gwskYpnIsnspbjZlRvu47iN527ABQ=",
+        "owner": "NixOS",
+        "repo": "nixpkgs",
+        "rev": "75e28c029ef2605f9841e0baa335d70065fe7ae2",
+        "type": "github"
+      },
+      "original": {
+        "owner": "NixOS",
+        "ref": "nixos-unstable-small",
+        "repo": "nixpkgs",
+        "type": "github"
+      }
+    },
+    "poetry2nix": {
+      "inputs": {
+        "flake-utils": "flake-utils_2",
+        "nix-github-actions": "nix-github-actions",
+        "nixpkgs": "nixpkgs_2",
+        "systems": "systems_3",
+        "treefmt-nix": "treefmt-nix"
+      },
+      "locked": {
+        "lastModified": 1736280331,
+        "narHash": "sha256-mkVHnky9h/s2EA+t9eEC8qxgcNTE3V+vb/9XgG4fCig=",
+        "owner": "nix-community",
+        "repo": "poetry2nix",
+        "rev": "4d260d908f3d95fa4b3ef6a98781ff64e1eede22",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nix-community",
+        "repo": "poetry2nix",
+        "type": "github"
+      }
+    },
+    "root": {
+      "inputs": {
+        "flake-utils": "flake-utils",
+        "nixpkgs": "nixpkgs",
+        "poetry2nix": "poetry2nix"
+      }
+    },
+    "systems": {
+      "locked": {
+        "lastModified": 1681028828,
+        "narHash": "sha256-Vy1rq5AaRuLzOxct8nz4T6wlgyUR7zLU309k9mBC768=",
+        "owner": "nix-systems",
+        "repo": "default",
+        "rev": "da67096a3b9bf56a91d16901293e51ba5b49a27e",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nix-systems",
+        "repo": "default",
+        "type": "github"
+      }
+    },
+    "systems_2": {
+      "locked": {
+        "lastModified": 1681028828,
+        "narHash": "sha256-Vy1rq5AaRuLzOxct8nz4T6wlgyUR7zLU309k9mBC768=",
+        "owner": "nix-systems",
+        "repo": "default",
+        "rev": "da67096a3b9bf56a91d16901293e51ba5b49a27e",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nix-systems",
+        "repo": "default",
+        "type": "github"
+      }
+    },
+    "systems_3": {
+      "locked": {
+        "lastModified": 1681028828,
+        "narHash": "sha256-Vy1rq5AaRuLzOxct8nz4T6wlgyUR7zLU309k9mBC768=",
+        "owner": "nix-systems",
+        "repo": "default",
+        "rev": "da67096a3b9bf56a91d16901293e51ba5b49a27e",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nix-systems",
+        "repo": "default",
+        "type": "github"
+      }
+    },
+    "treefmt-nix": {
+      "inputs": {
+        "nixpkgs": [
+          "poetry2nix",
+          "nixpkgs"
+        ]
+      },
+      "locked": {
+        "lastModified": 1730120726,
+        "narHash": "sha256-LqHYIxMrl/1p3/kvm2ir925tZ8DkI0KA10djk8wecSk=",
+        "owner": "numtide",
+        "repo": "treefmt-nix",
+        "rev": "9ef337e492a5555d8e17a51c911ff1f02635be15",
+        "type": "github"
+      },
+      "original": {
+        "owner": "numtide",
+        "repo": "treefmt-nix",
+        "type": "github"
+      }
+    }
+  },
+  "root": "root",
+  "version": 7
+}

marzipan/flake.nix

@@ -0,0 +1,18 @@
+{
+  inputs.nixpkgs.url = "github:NixOS/nixpkgs/nixpkgs-unstable";
+  inputs.poetry2nix.url = "github:nix-community/poetry2nix";
+  inputs.flake-utils.url = "github:numtide/flake-utils";
+
+  outputs = (inputs:
+    let scoped = (scope: scope.result);
+    in scoped rec {
+      inherit (builtins) removeAttrs;
+
+      result = (import ./nix/init.nix) {
+        scoped = scoped;
+        flake.self = inputs.self;
+        flake.inputs = removeAttrs inputs ["self"];
+      };
+    }
+  );
+}

marzipan/nix/hyuga/pyproject.toml

@@ -0,0 +1,16 @@
+[tool.poetry]
+name = "hyuga-language-server-installer"
+version = "0.1.0"
+description = ""
+authors = []
+
+[tool.poetry.dependencies]
+python = ">=3.12,<3.13"
+
+[tool.poetry.group.dev.dependencies]
+hyuga = "^1.0.0"
+poetry = "^2.0.0"
+
+[build-system]
+requires = ["poetry-core"]
+build-backend = "poetry.core.masonry.api"

marzipan/nix/init.nix

@@ -0,0 +1,32 @@
+outer_ctx: outer_ctx.scoped rec {
+  inherit (builtins) trace;
+
+  ctx = outer_ctx // { inherit config; };
+
+  inherit (ctx) scoped;
+
+  inherit (ctx.flake.inputs) nixpkgs flake-utils;
+  inherit (nixpkgs.lib) genAttrs zipAttrsWith;
+  inherit (nixpkgs.lib.debug) traceVal;
+  inherit (flake-utils.lib) allSystems eachSystem;
+
+  result = {
+    devShells = eachSupportedSystem (system: (setupSystem system).devShells);
+    packages = eachSupportedSystem (system: (setupSystem system).packages);
+    apps = eachSupportedSystem (system: (setupSystem system).apps);
+  };
+
+  setupSystem = (system_name: scoped rec {
+    result = (import ./system.nix) (ctx // {
+      system.name = system_name;
+      system.pkgs = nixpkgs.legacyPackages.${system_name};
+    });
+  });
+
+  config = {
+    supportedSystems = allSystems;
+    poetry.projectDir = ctx.flake.self;
+  };
+
+  eachSupportedSystem = genAttrs config.supportedSystems;
+}

marzipan/nix/system.nix

@@ -0,0 +1,47 @@
+ctx: ctx.scoped rec {
+  inherit (ctx.system) pkgs;
+  inherit (ctx.flake.inputs) poetry2nix flake-utils;
+  inherit (pkgs) mkShellNoCC writeShellApplication;
+  inherit (flake-utils.lib) mkApp;
+
+  poetryCtx = poetry2nix.lib.mkPoetry2Nix { inherit pkgs; };
+  inherit (poetryCtx) mkPoetryEnv mkPoetryApplication;
+
+  deps = [poetryEnv];
+  dev-deps = [] 
+    ++ deps
+    ++ [poetryHyugaEnv]
+    ++ (with pkgs; [poetry]);
+
+  poetryCfg = ctx.config.poetry // { overrides = poetryOverrides; };
+  poetryEnv = mkPoetryEnv poetryCfg;
+
+  poetryHyugaCfg = poetryCfg // { projectDir = ./hyuga; };
+  poetryHyugaEnv = mkPoetryEnv poetryHyugaCfg;
+
+  poetryOverrides = poetryCtx.defaultPoetryOverrides.extend (final: prev: {
+    hyuga = prev.hyuga.overridePythonAttrs (old: {
+        buildInputs = []
+          ++ (old.buildInputs or [ ])
+          ++ [ final.poetry-core ];
+        preferWheel = true;
+      }
+    );
+  });
+
+  result.packages.default = mkPoetryApplication poetryCfg;
+  result.devShells.default = mkShellNoCC {
+    packages = dev-deps;
+  };
+
+  result.apps.replPython = mkShellApp "python-repl" ''python'';
+  result.apps.replHy = mkShellApp "hy-repl" ''hy'';
+
+  mkShellApp = (name: script: mkApp {
+    drv = writeShellApplication {
+      inherit name;
+      text = script;
+      runtimeInputs = dev-deps;
+    };
+  });
+}

marzipan/pyproject.toml

@@ -0,0 +1,31 @@
+[tool.poetry]
+name = "rosenpass-marzipan"
+version = "0.1.0"
+description = ""
+authors = ["Author Name <author@example.com>"]
+# readme = "README.md"
+# license = "BSD"
+packages = [
+    { include = "**/*.[hp]y", from = "src", to = "rosenpass_marzipan" },
+    { include = "**/*.sh", from = "src", to = "rosenpass_marzipan" },
+    #{ include = "**/*.lark", from = "src", to = "rosenpass_marzipan" },
+]
+
+[tool.poetry.scripts]
+rosenpass-marzipan = 'rosenpass_marzipan:main'
+
+[tool.poetry.dependencies]
+python = ">=3.12,<3.13"
+hy = "^1.0.0"
+lark = "^1.2.2"
+hyrule = "^0.8.0"
+ipython = "^8.32.0"
+click = "^8.1.8"
+rich = "^13.9.4"
+
+[tool.poetry.group.dev.dependencies]
+poetry = "^2.0.0"
+
+[build-system]
+requires = ["poetry-core"]
+build-backend = "poetry.core.masonry.api"

marzipan/src/__init__.py

@@ -0,0 +1,281 @@
+from .util import pkgs, setup_exports, export, rename
+from .parser import *
+
+# from rich.console import Console
+import click
+
+target_subdir = "target/proverif"
+
+(__all__, export) = setup_exports()
+export(setup_exports)
+
+
+console = pkgs.rich.console.Console()
+logger = pkgs.logging.getLogger(__name__)
+
+
+@click.group()
+def main():
+    pkgs.logging.basicConfig(level=pkgs.logging.DEBUG)
+
+
+def eprint(*args, **kwargs):
+    print(*args, **{"file": pkgs.sys.stderr, **kwargs})
+
+
+def exc(argv, **kwargs):
+    eprint("$", *argv)
+    command = pkgs.subprocess.run(argv, **kwargs)
+
+    if command.returncode != 0:
+        logger.error("subprocess with terminated with non-zero return code.")
+        eprint("", *argv)
+        exit(command.returncode)
+
+    if command.stdout is not None:
+        return command.stdout.decode("utf-8")
+
+    return ""
+
+
+def exc_piped(argv, **kwargs):
+    eprint("$", *argv)
+    return pkgs.subprocess.Popen(argv, **kwargs)
+
+
+def clean_line(prev_line, line):
+    line = line.rstrip()
+    if pkgs.re.match(r"^Warning: identifier \w+ rebound.$", line) or prev_line is None:
+        return None
+    return prev_line
+
+
+def run_proverif(file, extra_args=[]):
+    params = ["proverif", "-test", *extra_args, file]
+    logger.debug(params)
+
+    process = exc_piped(
+        params,
+        stderr=pkgs.subprocess.PIPE,
+        stdout=pkgs.subprocess.PIPE,
+        text=True,
+        bufsize=1,
+    )
+    try:
+        prev_line = None
+        for line in process.stdout:
+            cleaned_line = clean_line(prev_line, line)
+            prev_line = line
+            if cleaned_line is not None:
+                yield cleaned_line
+        if prev_line is not None:
+            yield prev_line
+
+    except Exception as e:
+        # When does this happen? Should the error even be ignored? Metaverif should probably just abort here, right? --karo
+        logger.error(f"Proverif generated an exception with {params}: {e}")
+        exit(1)
+    finally:
+        process.stdout.close()
+        return_code = process.wait()
+
+        if return_code != 0:
+            logger.error(
+                f"Proverif exited with a non-zero error code {params}: {return_code}"
+            )
+            exit(return_code)
+
+
+def cpp(file, cpp_prep):
+    logger.debug(f"_cpp: {file}, {cpp_prep}")
+    file_path = pkgs.pathlib.Path(file)
+
+    dirname = file_path.parent
+    cwd = pkgs.pathlib.Path.cwd()
+
+    params = ["cpp", "-P", f"-I{dirname}", file, "-o", cpp_prep]
+    return exc(params, stderr=pkgs.sys.stderr)
+
+
+def awk(repo_path, cpp_prep, awk_prep):
+    params = [
+        "awk",
+        "-f",
+        str(pkgs.os.path.join(repo_path, "marzipan/marzipan.awk")),
+        cpp_prep,
+    ]
+    with open(awk_prep, "w") as file:
+        exc(params, stderr=pkgs.sys.stderr, stdout=file)
+        file.write("\nprocess main")
+
+
+def pretty_output_line(prefix, mark, color, text):
+    content = f"{mark} {text}"
+    console.print(prefix, style="grey42", end="", no_wrap=True)
+    console.print(content, style=color)
+
+
+def pretty_output_init(file_path):
+    expected = []
+    descs = []
+
+    with open(file_path, "r") as file:
+        content = file.read()
+
+        # Process lemmas first
+        result = pkgs.re.findall(r"@(lemma)(?=\s+\"([^\"]*)\")", content)
+        if result:
+            # The regex only returns lemmas. For lemmas, we always expect the result 'true' from ProVerif.
+            expected.extend([True for _ in range(len(result))])
+            descs.extend([e[1] for e in result])
+
+        # Then process regular queries
+        result = pkgs.re.findall(r'@(query|reachable)(?=\s+"[^\"]*")', content)
+        if result:
+            # For queries, we expect 'true' from ProVerif, for reachable, we expect 'false'.
+            expected.extend([e == "@query" for e in result])
+            reachable_result = pkgs.re.findall(
+                r'@(query|reachable)\s+"([^\"]*)"', content
+            )
+            descs.extend([e[1] for e in reachable_result])
+
+    ta = pkgs.time.time()
+    res = 0
+    ctr = 0
+    return (ta, res, ctr, expected, descs)
+
+
+def pretty_output_step(file_path, line, expected, descs, res, ctr, ta):
+    tz = pkgs.time.time()
+
+    # Output from ProVerif contains a trailing newline, which we do not have in the expected output. Remove it for meaningful matching.
+    outp_clean_raw = line.rstrip()
+    if outp_clean_raw == "true":
+        outp_clean = True
+    elif outp_clean_raw == "false":
+        outp_clean = False
+    else:
+        outp_clean = outp_clean_raw
+
+    if outp_clean == expected[ctr]:
+        pretty_output_line(f"{int(tz - ta)}s ", "✔", "green", descs[ctr])
+    else:
+        res = 1
+        pretty_output_line(f"{int(tz - ta)}s ", "✖", "red", descs[ctr])
+
+    ctr += 1
+    ta = tz
+
+    return (res, ctr, ta)
+
+
+def pretty_output(file_path):
+    (ta, res, ctr, expected, descs) = pretty_output_init(file_path)
+    for line in pkgs.sys.stdin:
+        (res, ctr, ta) = pretty_output_step(
+            file_path, line, expected, descs, res, ctr, ta
+        )
+
+
+def get_target_dir(path, output):
+    if output is not None and not output == "":
+        return pkgs.pathlib.Path(output)
+    else:
+        return pkgs.os.path.join(path, target_subdir)
+
+
+@main.command()
+@click.option("--output", "output", required=False)
+@click.argument("repo_path")
+def analyze(repo_path, output):
+    target_dir = get_target_dir(repo_path, output)
+    pkgs.os.makedirs(target_dir, exist_ok=True)
+
+    entries = []
+    analysis_dir = pkgs.os.path.join(repo_path, "analysis")
+    entries.extend(sorted(pkgs.glob.glob(str(analysis_dir) + "/*.entry.mpv")))
+
+    with pkgs.concurrent.futures.ProcessPoolExecutor() as executor:
+        futures = {
+            executor.submit(metaverif, repo_path, target_dir, entry): entry
+            for entry in entries
+        }
+        for future in pkgs.concurrent.futures.as_completed(futures):
+            cmd = futures[future]
+            logger.info(f"Metaverif {cmd} finished.")
+
+    print("all processes finished.")
+
+
+@main.command()
+@click.option("--output", "output", required=False)
+@click.argument("repo_path")
+def clean(repo_path, output):
+    cleans_failed = 0
+    target_dir = get_target_dir(repo_path, output)
+    if pkgs.os.path.isdir(target_dir):
+        for filename in pkgs.os.listdir(target_dir):
+            file_path = pkgs.os.path.join(target_dir, filename)
+            if pkgs.os.path.isfile(file_path) and pkgs.os.path.splitext(file_path)[
+                1
+            ] in [".pv", ".log"]:
+                try:
+                    pkgs.os.remove(file_path)
+                except Exception as e:
+                    print(f"Error deleting {file_path}: {str(e)}")
+                    cleans_failed += 1
+
+    if cleans_failed > 0:
+        print(f"{cleans_failed} could not be deleted.")
+        exit(1)
+
+
+def metaverif(repo_path, tmpdir, file):
+    print(f"Start metaverif on {file}")
+    # Extract the name using regex
+    name_match = pkgs.re.search(r"([^/]*)(?=\.mpv)", file)
+    if name_match:
+        name = name_match.group(0)  # Get the matched name
+
+        # Create the file paths
+        cpp_prep = pkgs.os.path.join(tmpdir, f"{name}.i.pv")
+        awk_prep = pkgs.os.path.join(tmpdir, f"{name}.o.pv")
+
+        # Output the results
+        print(f"Name: {name}")
+        print(f"CPP Prep Path: {cpp_prep}")
+        print(f"AWK Prep Path: {awk_prep}")
+
+        cpp(file, cpp_prep)
+        awk(repo_path, cpp_prep, awk_prep)
+
+        log_file = pkgs.os.path.join(tmpdir, f"{name}.log")
+
+        ta, res, ctr, expected, descs = pretty_output_init(cpp_prep)
+        with open(log_file, "a") as log:
+            generator = run_proverif(awk_prep)
+            for line in generator:
+                log.write(line)
+                # parse-result-line:
+                match = pkgs.re.search(r"^RESULT .* \b(true|false)\b\.$", line)
+                if match:
+                    result = match.group(1)
+                    # pretty-output:
+                    res, ctr, ta = pretty_output_step(
+                        cpp_prep, result, expected, descs, res, ctr, ta
+                    )
+    else:
+        logger.error(
+            f"No match found for the filename {file}: extension should be .mpv"
+        )
+        exit(1)
+
+
+@main.command()
+@click.argument("file_path")
+def parse(file_path):
+    parse_main(file_path)
+
+
+if __name__ == "__main__":
+    main()

marzipan/src/analyze.sh

@@ -0,0 +1,104 @@
+#!/usr/bin/env bash
+
+exc() {
+  echo >&2 "\$" "$@"
+  "$@"
+}
+
+run_proverif() {
+  local file; file="$1"; shift
+  local log; log="$1"; shift # intentionally unused
+
+  exc rosenpass-marzipan run-proverif "${file}" "${@}"
+}
+
+clean_warnings() {
+    exc rosenpass-marzipan clean-warnings
+}
+
+color_red='red'
+color_green='green'
+color_gray='gray'
+color_clear=''
+
+checkmark="✔"
+cross="❌"
+
+pretty_output() {
+  exc rosenpass-marzipan pretty-output "${@}"
+}
+
+metaverif() {
+  local file; file="$1"; shift
+  local name; name="$(echo "${file}" | grep -Po '[^/]*(?=\.mpv)')"
+
+  local cpp_prep; cpp_prep="${tmpdir}/${name}.i.pv"
+  local awk_prep; awk_prep="${tmpdir}/${name}.o.pv"
+
+  exc rosenpass-marzipan cpp ${file} ${cpp_prep}
+  exc rosenpass-marzipan awk-prep ${cpp_prep} ${awk_prep}
+
+  local log; log="${tmpdir}/${name}.log"
+  {
+    run_proverif "${awk_prep}" "$@" \
+      | clean_warnings \
+      | tee "${log}" \
+      | exc rosenpass-marzipan parse-result-line \
+      | pretty_output "${cpp_prep}"
+  } || {
+    echo "TODO: Commented out some debug output"
+    #if ! grep -q "^Verification summary" "${log}"; then
+    #  echo -ne "\033[0\r"
+    #  cat "${log}"
+    #fi
+  }
+}
+
+analyze() {
+  mkdir -p "${tmpdir}"
+
+  entries=()
+  readarray -t -O "${#entries[@]}" entries < <(
+    find analysis -iname '*.entry.mpv' | sort)
+
+  local entry
+  local procs; procs=()
+  for entry in "${entries[@]}"; do
+    echo "call metaverif"
+    # TODO: commented out for testing
+    #exc rosenpass-marzipan metaverif "${tmpdir}" "${entry}" >&2 & procs+=("$!")
+    exc rosenpass-marzipan metaverif "${tmpdir}" "${entry}" >&2
+  done
+
+  # TODO: commented out for testing
+  # for entry in "${procs[@]}"; do
+  #   exc wait -f "${entry}"
+  # done
+}
+
+err_usage() {
+    echo >&1 "USAGE: ${0} analyze PATH"
+    echo >&1 "The script will cd into PATH and continue there."
+    exit 1
+}
+
+main() {
+  set -e -o pipefail
+
+  local cmd="$1"; shift || err_usage
+  local dir="$1"; shift || err_usage
+
+  cd -- "${dir}"
+  tmpdir="target/proverif"
+
+  echo "call main"
+
+  case "${cmd}" in
+    analyze) analyze ;;
+    clean_warnings) clean_warnings ;;
+    *) err_usage
+  esac
+}
+
+# Do not execute main if sourced
+(return 0 2>/dev/null) || main "$@"

marzipan/src/parser.py

@@ -0,0 +1,467 @@
+import sys
+
+from lark import Lark, Token, Transformer, exceptions, tree
+
+# taken from Page 17 in the ProVerif manual
+# At the moment, we do not reject a ProVerif model that uses reserved words as identifier,
+# because this caused problems with the LARK grammar. We plan to check this in a later
+# processing step.
+reserved_words = [
+    "among",
+    "axiom",
+    "channel",
+    "choice",
+    "clauses",
+    "const",
+    "def",
+    "diff",
+    "do",
+    "elimtrue",
+    "else",
+    "equation",
+    "equivalence",  # no rule yet (this is CryptoVerif-specific)
+    "event",
+    "expand",
+    "fail",
+    "for",
+    "forall",
+    "foreach",
+    "free",
+    "fun",
+    "get",
+    "if",
+    "implementation",  # no rule yet (this is CryptoVerif-specific)
+    "in",
+    "inj-event",
+    "insert",
+    "lemma",
+    "let",
+    "letfun",
+    "letproba",
+    "new",
+    "noninterf",
+    "noselect",
+    "not",
+    "nounif",
+    "or",
+    "otherwise",
+    "out",
+    "param",
+    "phase",
+    "pred",
+    "proba",
+    "process",
+    "proof",
+    "public_vars",
+    "putbegin",
+    "query",
+    "reduc",
+    "restriction",
+    "secret",
+    "select",
+    "set",
+    "suchthat",
+    "sync",
+    "table",
+    "then",
+    "type",
+    "weaksecret",
+    "yield",
+]
+
+ident_regex = (
+    "/^" + "".join(f"(?!{w}$)" for w in reserved_words) + "[a-zA-Z][a-zA-Z0-9À-ÿ'_]*/"
+)
+
+proverif_grammar = Lark(
+    grammar="""
+    PROCESS: "process"
+    start: decl* PROCESS process
+    YIELD: "yield"
+    channel: CHANNEL
+    CHANNEL: "channel"
+    """
+    + "IDENT: /[a-zA-Z][a-zA-Z0-9À-ÿ'_]*/"
+    + """
+    ZERO: "0"
+    INFIX: "||"
+         | "&&"
+         | "="
+         | "<>"
+         | "<="
+         | ">="
+         | "<"
+         | ">"
+    typeid: channel
+          | IDENT
+    _non_empty_seq{x}: x ("," x)*
+    _maybe_empty_seq{x}: [ _non_empty_seq{x} ]
+
+    OPTIONS_FUN_CONST: "data" | "private" | "typeConverter"
+    OPTIONS_FUN: OPTIONS_FUN_CONST
+    OPTIONS_CONST: OPTIONS_FUN_CONST
+    OPTIONS_FREE_REDUC: "private"
+    OPTIONS_PRED: "memberOptim" | "block"
+    OPTIONS_PROCESS: "precise"
+    OPTIONS_QUERY_LEMMA_AXIOM: "noneSat" | "discardSat" | "instantiateSat" | "fullSat" | "noneVerif" | "discardVerif" | "instantiateVerif" | "fullVerif"
+    OPTIONS_AXIOM: OPTIONS_QUERY_LEMMA_AXIOM
+    OPTIONS_QUERY_LEMMA: OPTIONS_QUERY_LEMMA_AXIOM | "induction" | "noInduction"
+    OPTIONS_LEMMA: OPTIONS_QUERY_LEMMA_AXIOM | "maxSubset"
+    OPTIONS_QUERY: OPTIONS_QUERY_LEMMA_AXIOM | "proveAll"
+    OPTIONS_QUERY_SECRET: "reachability" | "pv_reachability" | "real_or_random" | "pv_real_or_random" | "/cv_[a-zA-Z0-9À-ÿ'_]*/"
+    OPTIONS_RESTRICTION: "removeEvents" | "keepEvents" | "keep" # transl_option_lemma_query in pitsyntax.ml
+    OPTIONS_EQUATION: "convergent" | "linear" # check_equations in pitsyntax.ml
+    OPTIONS_TYPE: "fixed" | "bounded" # TODO(blipp): complete this. These are only for compatibility with CryptoVerif and are ignored
+    options{idents}: [ "[" _non_empty_seq{idents} "]" ]
+    process: ZERO
+           | YIELD
+           | IDENT [ "(" _maybe_empty_seq{pterm} ")" ]
+           | bracketed_process
+           | piped_process
+           | replicated_process
+           | replicated_process_bounds
+           | sample_process
+           | if_process
+           | in_process
+           | out_process
+           | let_process
+           | insert_process
+           | get_process
+           | event_process
+           | phase
+           | sync
+    bracketed_process: "(" process ")"
+    piped_process: process "|" process
+    replicated_process: "!" process
+    replicated_process_bounds: "!" IDENT "<=" IDENT process
+                             | "foreach" IDENT "<=" IDENT "do" process
+    sample_process: "new" IDENT [ "[" _maybe_empty_seq{IDENT} "]" ] ":" typeid [";" process]
+                  | IDENT "<-R" typeid [";" process]
+    let_process: "let" pattern "=" pterm ["in" process [ "else" process ]]
+               | IDENT [":" typeid] "<-" pterm [";" process]
+               | "let" typedecl "suchthat" pterm options{OPTIONS_PROCESS} [ "in" process [ "else" process ] ]
+    if_process: "if" pterm "then" process [ "else" process ]
+    in_process: "in" "(" pterm "," pattern ")" options{OPTIONS_PROCESS} [ ";" process ]
+    get_process: IDENT "(" _maybe_empty_seq{pattern} ")" [ "suchthat" pterm ] options{OPTIONS_PROCESS} [ "in" process [ "else" process ] ]
+    out_process: "out" "(" pterm "," pterm ")" [ ";" process ]
+    insert_process: "insert" IDENT "(" _maybe_empty_seq{pterm} ")" [ ";" process ]
+    event_process: "event" IDENT [ "(" _maybe_empty_seq{pterm} ")" ] [ ";" process ]
+    term: IDENT
+          | NAT
+          | "(" _maybe_empty_seq{term} ")"
+          | IDENT "(" _maybe_empty_seq{term} ")"
+          | term ( "+" | "-" ) NAT
+          | NAT "+" term
+          | term INFIX term
+          | "not" "(" term ")"
+
+    query: gterm ["public_vars" _non_empty_seq{IDENT}] [";" query]
+         | "secret" IDENT ["public_vars" _non_empty_seq{IDENT}] options{OPTIONS_QUERY_SECRET} [";" query]
+         | "putbegin" "event" ":" _non_empty_seq{IDENT} [";" query] // Opportunistically left a space between "event" and ":", ProVerif might not accept it with spaces.
+         | "putbegin" "inj-event" ":" _non_empty_seq{IDENT} [";" query]
+    lemma: gterm [";" lemma]
+         | gterm "for" "{" "public_vars" _non_empty_seq{IDENT} "}" [";" lemma]
+         | gterm "for" "{" "secret" IDENT [ "public_vars" _non_empty_seq{IDENT}] "[real_or_random]" "}" [";" lemma]
+    gterm: ident_gterm
+         | fun_gterm
+         | choice_gterm
+         | infix_gterm
+         | arith_gterm
+         | arith2_gterm
+         | event_gterm
+         | injevent_gterm
+         | implies_gterm
+         | paren_gterm
+         | sample_gterm
+         | let_gterm
+    ident_gterm: IDENT
+    fun_gterm: IDENT "(" _maybe_empty_seq{gterm} ")" ["phase" NAT] ["@" IDENT]
+    choice_gterm: "choice" "[" gterm "," gterm "]"
+    infix_gterm: gterm INFIX gterm
+    arith_gterm: gterm ( "+" | "-" ) NAT
+    arith2_gterm: NAT "+" gterm
+    event_gterm: "event" "(" _maybe_empty_seq{gterm} ")" ["@" IDENT]
+    injevent_gterm: "inj-event" "(" _maybe_empty_seq{gterm} ")" ["@" IDENT]
+    implies_gterm: gterm "==>" gterm
+    paren_gterm: "(" _maybe_empty_seq{gterm} ")"
+    sample_gterm: "new" IDENT [ "[" [ gbinding ] "]" ]
+    let_gterm: "let" IDENT "=" gterm "in" gterm
+
+    gbinding: "!" NAT "=" gterm [";" gbinding]
+            | IDENT "=" gterm [";" gbinding]
+
+    nounifdecl: "let" IDENT "=" gformat "in" nounifdecl
+              | IDENT ["(" _maybe_empty_seq{gformat} ")" ["phase" NAT]]
+    gformat: IDENT
+           | "*" IDENT
+           | IDENT "(" _maybe_empty_seq{gformat} ")"
+           | "choice" "[" gformat "," gformat "]"
+           | "not" "(" _maybe_empty_seq{gformat} ")"
+           | "new" IDENT [ "[" [ fbinding ] "]" ]
+           | "let" IDENT "=" gformat "in" gformat
+    fbinding: "!" NAT "=" gformat [";" fbinding]
+            | IDENT "=" gformat [";" fbinding]
+    nounifoption: "hypothesis"
+                | "conclusion"
+                | "ignoreAFewTimes"
+                | "inductionOn" "=" IDENT
+                | "inductionOn" "=" "{" _non_empty_seq{IDENT} "}"
+
+    pterm: IDENT
+          | NAT
+          | "(" _maybe_empty_seq{pterm} ")"
+          | IDENT "(" _maybe_empty_seq{pterm} ")"
+          | choice_pterm
+          | pterm ("+" | "-") NAT
+          | NAT "+" pterm
+          | pterm INFIX pterm
+          | not_pterm
+          | sample_pterm
+          | if_pterm
+          | let_pterm
+          | insert_pterm
+          | get_pterm
+          | event_pterm
+    choice_pterm: "choice[" pterm "," pterm "]"
+    if_pterm: "if" pterm "then" pterm [ "else" pterm ]
+    not_pterm: "not" "(" pterm ")"
+    let_pterm: "let" pattern "=" pterm "in" pterm [ "else" pterm ]
+             | IDENT [":" typeid] "<-" pterm ";" pterm
+             | "let" typedecl "suchthat" pterm "in" pterm [ "else" pterm ]
+    sample_pterm: "new" IDENT [ "[" _maybe_empty_seq{IDENT} "]" ] ":" typeid [";" pterm]
+                | IDENT "<-R" typeid [";" pterm]
+    insert_pterm: "insert" IDENT "(" _maybe_empty_seq{pterm} ")" ";" pterm
+    event_pterm: "event" IDENT [ "(" _maybe_empty_seq{pterm} ")" ] ";" pterm
+    get_pterm: IDENT "(" _maybe_empty_seq{pattern} ")" [ "suchthat" pterm ] options{OPTIONS_PROCESS} [ "in" pterm [ "else" pterm ] ]
+    pattern: IDENT [":" typeid]
+           | "_" [ ":" typeid ]
+           | NAT
+           | pattern "+" NAT
+           | NAT "+" pattern
+           | "(" _maybe_empty_seq{pattern} ")"
+           | IDENT "(" _maybe_empty_seq{pattern} ")"
+           | "=" pterm
+    mayfailterm: term
+               | "fail"
+    mayfailterm_seq: "(" _non_empty_seq{mayfailterm} ")"
+    typedecl: _non_empty_seq{IDENT} ":" typeid [ "," typedecl ]
+    failtypedecl: _non_empty_seq{IDENT} ":" typeid [ "or fail" ] [ "," failtypedecl ]
+
+    decl: type_decl
+        | channel_decl
+        | free_decl
+        | const_decl
+        | fun_decl
+        | letfun_decl
+        | reduc_decl
+        | fun_reduc_decl
+        | equation_decl
+        | pred_decl
+        | table_decl
+        | let_decl
+        | set_settings_decl
+        | event_decl
+        | query_decl
+        | axiom_decl
+        | restriction_decl
+        | lemma_decl
+        | noninterf_decl
+        | weaksecret_decl
+        | not_decl
+        | select_decl
+        | noselect_decl
+        | nounif_decl
+        | elimtrue_decl
+        | clauses_decl
+        | module_decl
+        #| param_decl
+        #| proba_decl
+        #| letproba_decl
+        #| proof_decl
+        #| def_decl
+        #| expand_decl
+
+    type_decl: "type" IDENT options{OPTIONS_TYPE} "."
+    channel_decl: "channel" _non_empty_seq{IDENT} "."
+    free_decl: "free" _non_empty_seq{IDENT} ":" typeid options{OPTIONS_FREE_REDUC} "."
+    const_decl: "const" _non_empty_seq{IDENT} ":" typeid options{OPTIONS_FUN_CONST} "."
+    fun_decl: "fun" IDENT "(" _maybe_empty_seq{typeid} ")" ":" typeid options{OPTIONS_FUN_CONST} "."
+    letfun_decl: "letfun" IDENT [ "(" [ typedecl ] ")" ] "=" pterm "."
+    reduc_decl: "reduc" eqlist options{OPTIONS_FREE_REDUC} "."
+    fun_reduc_decl: "fun" IDENT "(" _maybe_empty_seq{typeid} ")" ":" typeid "reduc" mayfailreduc options{OPTIONS_FUN_CONST} "."
+    equation_decl: "equation" eqlist options{OPTIONS_EQUATION} "."
+    pred_decl: "pred" IDENT [ "(" [ _maybe_empty_seq{typeid} ] ")" ] options{OPTIONS_PRED} "."
+    table_decl: IDENT "(" _maybe_empty_seq{typeid} ")" "."
+    let_decl: "let" IDENT [ "(" [ typedecl ] ")" ] "=" process "."
+
+    BOOL : "true" | "false"
+    NONE: "none"
+    FULL: "full"
+    ALL: "all"
+    FUNC: IDENT
+    ignoretype_options: BOOL | ALL | NONE | "attacker"
+    boolean_settings_names: "privateCommOnPublicTerms"
+                            | "rejectChoiceTrueFalse"
+                            | "rejectNoSimplif"
+                            | "allowDiffPatterns"
+                            | "inductionQueries"
+                            | "inductionLemmas"
+                            | "movenew"
+                            | "movelet"
+                            | "stopTerm"
+                            | "removeEventsForLemma"
+                            | "simpEqAll"
+                            | "eqInNames"
+                            | "preciseLetExpand"
+                            | "expandSimplifyIfCst"
+                            | "featureFuns"
+                            | "featureNames"
+                            | "featurePredicates"
+                            | "featureEvents"
+                            | "featureTables"
+                            | "featureDepth"
+                            | "featureWidth"
+                            | "simplifyDerivation"
+                            | "abbreviateDerivation"
+                            | "explainDerivation"
+                            | "unifyDerivation"
+                            | "reconstructDerivation"
+                            | "displayDerivation"
+                            | "traceBacktracking"
+                            | "interactiveSwapping"
+                            | "color"
+                            | "verboseLemmas"
+                            | "abbreviateClauses"
+                            | "removeUselessClausesBeforeDisplay"
+                            | "verboseEq"
+                            | "verboseDestructors"
+                            | "verboseTerm"
+                            | "verboseStatistics"
+                            | "verboseRules"
+                            | "verboseBase"
+                            | "verboseRedundant"
+                            | "verboseCompleted"
+                            | "verboseGoalReachable"
+
+    _decl_pair{name, value}: "set" name "=" value "."
+
+    set_settings_boolean_decl: _decl_pair{boolean_settings_names, BOOL}
+
+    ignore_types_values: BOOL | "all" | "none" | "attacker"
+    simplify_process_values: BOOL | "interactive"
+    precise_actions_values: BOOL | "trueWithoutArgsInNames"
+    redundant_hyp_elim_values: BOOL | "beginOnly"
+    reconstruct_trace_values: BOOL | "n"
+    attacker_values: "active" | "passive"
+    key_compromise_values: "none" | "approx" | "strict"
+    predicates_implementable: "check" | "nocheck"
+    application_values: "instantiate" | "full" | "none" | "discard"
+    max_values: "none" | "n"
+    sel_fun_values: "TermMaxsize" | "Term"| "NounifsetMaxsize" | "Nounifset"
+    redundancy_elim_values: "best" | "simple" | "no"
+    nounif_ignore_a_few_times_values: "none" | "auto" | "all"
+    nounif_ignore_ntimes_values: "n"
+    trace_display_values: "short" | "long" | "none"
+    verbose_clauses_values: "none" | "explained" | "short"
+    set_settings_decl: set_settings_boolean_decl
+                | _decl_pair{"ignoreTypes", ignore_types_values}
+                | _decl_pair{"simplifyProcess", simplify_process_values}
+                | _decl_pair{"preciseActions", precise_actions_values}
+                | _decl_pair{"redundantHypElim", redundant_hyp_elim_values}
+                | _decl_pair{"reconstructTrace", reconstruct_trace_values}
+                | _decl_pair{"attacker", attacker_values}
+                | _decl_pair{"keyCompromise", key_compromise_values}
+                | _decl_pair{"predicatesImplementable", predicates_implementable}
+                | _decl_pair{"saturationApplication", application_values}
+                | _decl_pair{"verificationApplication", application_values}
+                | _decl_pair{"maxDepth", max_values}
+                | _decl_pair{"maxHyp", max_values}
+                | _decl_pair{"selFun", sel_fun_values}
+                | _decl_pair{"redundancyElim", redundancy_elim_values}
+                | _decl_pair{"nounifIgnoreAFewTimes", nounif_ignore_a_few_times_values}
+                | _decl_pair{"nounifIgnoreNtimes", nounif_ignore_ntimes_values}
+                | _decl_pair{"traceDisplay", trace_display_values}
+                | _decl_pair{"verboseClauses", verbose_clauses_values}
+                | set_strategy
+                | set_symb_order
+
+    _swap_strategy_seq{x}: x ("->" x)*
+    set_strategy: "set" "swapping" "=" _swap_strategy_seq{TAG} "."
+    _symb_ord_seq{x}: x (">" x)*
+    set_symb_order: "set" "symbOrder" "=" _symb_ord_seq{FUNC} "."
+
+    event_decl: "event" IDENT ["(" _maybe_empty_seq{typeid} ")"] "."
+    query_decl: "query" [ typedecl ";"] query options{OPTIONS_QUERY} "."
+
+    axiom_decl:       "axiom"       [ typedecl ";"] lemma options{OPTIONS_AXIOM} "."
+    restriction_decl: "restriction" [ typedecl ";"] lemma options{OPTIONS_RESTRICTION} "."
+    lemma_decl:       "lemma"       [ typedecl ";"] lemma options{OPTIONS_LEMMA} "."
+
+    noninterf_decl: [ typedecl ";"] _maybe_empty_seq{nidecl} "."
+    weaksecret_decl: "weaksecret" IDENT "."
+    not_decl: "not" [ typedecl ";"] gterm "."
+
+    INT: NAT | "-" NAT
+    select_decl:    "select"    [ typedecl ";"] nounifdecl [ "/" INT ] [ "[" _non_empty_seq{nounifoption} "]" ] "."
+    noselect_decl:  "noselect"  [ typedecl ";"] nounifdecl [ "/" INT ] [ "[" _non_empty_seq{nounifoption} "]" ] "."
+    nounif_decl:    "nounif"    [ typedecl ";"] nounifdecl [ "/" INT ] [ "["_non_empty_seq{nounifoption} "]" ] "."
+
+    elimtrue_decl: "elimtrue" [ failtypedecl ";" ] term "."
+    clauses_decl: "clauses" clauses "."
+
+    module_decl: "@module" " " IDENT
+
+    # TODO: finish defining these (comes from Cryptoverif)
+    #param_decl: "param" _non_empty_seq{IDENT} options "."
+    #proba_decl: "proba" IDENT ["(...)"] options "."
+    #letproba_decl: "letproba" IDENT ["(...)"] "= ..." "."
+    #proof_decl: "proof" "{" proof "}"
+    #def_decl: "def" IDENT "(" _maybe_empty_seq{typeid} ")" "{" decl* "}"
+    #expand_decl: "expand" IDENT "(" _maybe_empty_seq{typeid} ")" "."
+
+    nidecl: IDENT [ "among" "(" _non_empty_seq{term} ")" ]
+    equality: term "=" term
+            | "let" IDENT "=" term "in" equality
+    mayfailequality: IDENT mayfailterm_seq "=" mayfailterm
+    eqlist: [ "forall" typedecl ";" ] equality [ ";" eqlist ]
+    clause: term
+           | term "->" term
+           | term "<->" term
+           | term "<=>" term
+    clauses: [ "forall" failtypedecl ";" ] clause [ ";" clauses ]
+    mayfailreduc: [ "forall" failtypedecl ";" ] mayfailequality [ "otherwise" mayfailreduc ]
+    NAT: DIGIT+
+    phase: "phase" NAT [";" process]
+    TAG: IDENT
+    sync: "sync" NAT ["[" TAG "]"] [";" process]
+    COMMENT:  /\(\*(\*(?!\))|[^*])*\*\)/
+    %import common (WORD, DIGIT, NUMBER, WS) // imports from terminal library
+    %ignore WS // Disregard spaces in text
+    %ignore COMMENT
+""",
+    debug=True,
+    # lexer_callbacks={"COMMENT": comments.append},
+)
+
+# COMMENT:  /\(\*(\*(?!\))|[^*])*\*\)/
+# COMMENT:  "(*" /(\*(?!\))|[^*])*/  "*)"
+# comment: /\(\*(?:(?!\(\*|\*\)).|(?R))*\*\)/
+
+# TODO Open ProVerif compatibility questions
+# TODO * does it allow leading zeros for NAT?
+# TODO * tag is not defined? is it ident?
+# TODO * are spaces between "event" and ":" allowed?
+# TODO * spaces between "nat" and "("? "choice" and "["?
+
+
+def parsertest(input):
+    parsetree = proverif_grammar.parse(input)
+    # tree.pydot__tree_to_png(parsetree, name + ".png")
+    return parsetree
+
+
+def parse_main(file_path):
+    with open(file_path, "r") as f:
+        content = f.read()
+        # print(content)
+        parsertest(content)

marzipan/src/util.py

@@ -0,0 +1,130 @@
+from typing import Callable, Any, Tuple, List, TypeVar
+from types import ModuleType as Module
+from importlib import import_module
+from dataclasses import dataclass
+
+T = TypeVar('T')
+
+def setup_exports() -> Tuple[List[str], Callable[[T], T]]:
+    __all__ = []
+
+    """
+    Helper to provide an export() function with little boilerplate.
+
+    ```
+    from marzipan.util import setup_exports
+    (__all__, export) = setup_exports()
+    ```
+    """
+    def export(what: T) -> T:
+        match what:
+            case str():
+                __all__.append(what)
+            case object(__name__ = name):
+                __all__.append(name)
+            case _:
+                raise TypeError(
+                    f"Unsupported export type `{what}`: Export is neither `str` nor has it an attribute named `__name__`.")
+        return what
+
+    return (__all__, export)
+
+(__all__, export) = setup_exports()
+export(setup_exports)
+
+@export
+def rename(name: str) -> Callable[[T], T]:
+    def rename_impl(v: T) -> T:
+        v.__name__ = name
+        return v
+    return rename_impl
+
+@export
+def attempt(fn):
+    # TODO: Documentation tests
+    """
+    Call a function returning a tuple of (result, exception).
+
+    The following example uses safe_call to implement a checked_divide
+    function that returns None if the division by zero is caught.
+
+    ```python
+    try_divide = attempt(lambda a, b: a/b)
+
+    def checked_divide(a, b):
+        match try_divide(a, b):
+            case (result, None):
+                return result
+            case (None, ZeroDivisionError()):
+                return None
+            case _:
+                raise RuntimeError("Unreachable")
+
+    assert(checked_divide(1, 0) == None)
+    assert(checked_divide(0, 1) == 0)
+    assert(checked_divide(1, 1) == 1)
+    ```
+    """
+    def retfn(*args, **kwargs):
+        try:
+            return (fn(*args, **kwargs), None)
+        except Exception as e:
+            return (None, e)
+    retfn.__name__ = f"try_{fn.__name__}"
+    return retfn
+
+@export
+def scoped(fn: Callable[[], Any]) -> Any:
+    """
+    Scoped variable assignment.
+
+    Just an alias for `call`. Use as a decorator to immediately call a function,
+    assigning the return value to the function name.
+    """
+    return fn()
+
+@export
+def try_import(name : str) -> Tuple[Module | None, Exception | None]:
+    return attempt(import_module)(name)
+
+@dataclass(frozen=True)
+class Pkgs:
+    __mod__: Module | None
+    __prefix__: str | None
+
+    def __get__(self, k: str):
+        return getattr(self, k)
+
+    def __getattribute__(self, k: str):
+        match k:
+            case "__mod__" | "__prefix__" | "__class__":
+                # Access the underlying module value
+                return super().__getattribute__(k)
+
+        match self:
+            case Pkgs(None, None):
+                # Import package from root
+                return Pkgs(import_module(k), k)
+
+        # Try importing a subpackage
+        name = f"{self.__prefix__}.{k}"
+        match try_import(name):
+            case (child, None):
+                # Imported subpackage
+                return Pkgs(child, name)
+            case (_, ModuleNotFoundError()):
+                # No such module; access module property instead
+                return getattr(self.__mod__, k)
+            case (_, err):
+                # Unknown error, pass error on
+                raise err
+
+@scoped
+@export
+def pkgs() -> Pkgs:
+    """
+    Global package scope.
+
+    `pkgs.marzipan` imports the package `marzipan`
+    """
+    return Pkgs(None, None)

marzipan/test-gpt-oss-2.py

@@ -0,0 +1,265 @@
+#!/usr/bin/env python3
+
+# Below is a **more “Pythonic”** rewrite of the original AWK‑to‑Python translator.
+# The logic is exactly the same – the same error messages, line numbers and exit
+# codes – but the code is organized into small, reusable functions, uses
+# `dataclasses`, type hints, `Path.read_text()`, `re.sub()` and other idiomatic
+# constructs.  It is also easier to read and to extend.
+
+
+"""
+py_awk_translator.py
+
+A line‑by‑line pre‑processor that implements the same behaviour as the
+original AWK script you posted (handling @module, @alias, @long‑alias,
+private‑variable expansion, @query/@reachable/@lemma checks and token‑wise
+alias substitution).
+
+Usage
+
+    python3 py_awk_translator.py  file1.pv  file2.pv
+    # or
+    cat file.pv | python3 py_awk_translator.py
+"""
+
+from __future__ import annotations
+
+import re
+import sys
+from dataclasses import dataclass, field
+from pathlib import Path
+from typing import Dict, Iterable
+
+# ----------------------------------------------------------------------
+# Helper utilities
+# ----------------------------------------------------------------------
+TOKEN_RE = re.compile(r"[0-9A-Za-z_']")
+
+def is_token_char(ch: str) -> bool:
+    """Return True if *ch* can be part of an identifier token."""
+    return bool(TOKEN_RE.fullmatch(ch))
+
+def die(msg: str, fname: str, lineno: int) -> None:
+    """Print an error to stderr and exit with status 1 (exactly like AWK)."""
+    sys.stderr.write(f"{fname}:{lineno}: {msg}\n")
+    sys.exit(1)
+
+# ----------------------------------------------------------------------
+# Core translator – holds the mutable state that the AWK script kept in
+# global variables.
+# ----------------------------------------------------------------------
+@dataclass
+class Translator:
+    """Collects state while processing a file line‑by‑line."""
+
+    # final output buffer
+    out: list[str] = field(default_factory=list)
+
+    # current @module name (used when expanding "~")
+    module: str = ""
+
+    # simple one‑line aliases: name → replacement text
+    aliases: Dict[str, str] = field(default_factory=dict)
+
+    # multi‑line alias handling
+    long_name: str = ""
+    long_value: str = ""
+
+    # error flag – mirrors the AWK variable `err`
+    err: int = 0
+
+    # ------------------------------------------------------------------
+    # Public entry point for a single line
+    # ------------------------------------------------------------------
+    def process(self, raw: str, fname: str, lineno: int) -> None:
+        """Apply all transformation rules to *raw* and store the result."""
+        line = raw.rstrip("\n")          # keep a copy for error messages
+        original = line                  # keep the untouched line for later
+
+        # --------------------------------------------------------------
+        # 1️⃣  @module
+        # --------------------------------------------------------------
+        if line.startswith("@module"):
+            parts = line.split(maxsplit=1)
+            self.module = parts[1] if len(parts) > 1 else ""
+            self.aliases.clear()
+            line = ""
+
+        # --------------------------------------------------------------
+        # 2️⃣  @alias
+        # --------------------------------------------------------------
+        elif line.startswith("@alias"):
+            for token in line.split()[1:]:
+                if "=" in token:
+                    name, value = token.split("=", 1)
+                    self.aliases[name] = value
+            line = ""
+
+        # --------------------------------------------------------------
+        # 3️⃣  @long-alias‑end
+        # --------------------------------------------------------------
+        elif line.startswith("@long-alias-end"):
+            if not self.long_name:
+                die("Long alias not started", fname, lineno)
+            # collapse multiple spaces → single space, strip trailing space
+            self.long_value = re.sub(r" +", " ", self.long_value).strip()
+            self.aliases[self.long_name] = self.long_value
+            self.long_name = self.long_value = ""
+            line = ""
+
+        # --------------------------------------------------------------
+        # 4️⃣  @long-alias (start)
+        # --------------------------------------------------------------
+        elif line.startswith("@long-alias"):
+            parts = line.split(maxsplit=1)
+            self.long_name = parts[1] if len(parts) > 1 else ""
+            self.long_value = ""
+            line = ""
+
+        # --------------------------------------------------------------
+        # 5️⃣  PRIVATE__ detection (illegal use of "~")
+        # --------------------------------------------------------------
+        elif "PRIVATE__" in line:
+            die(
+                "Used private variable without ~:\n\n"
+                f"    {lineno} > {original}",
+                fname,
+                lineno,
+            )
+
+        # --------------------------------------------------------------
+        # 6️⃣  @query / @reachable / @lemma validation
+        # --------------------------------------------------------------
+        elif re.search(r"@(query|reachable|lemma)", line):
+            if not re.search(r'@(query|reachable|lemma)\s+"[^"]*"', line):
+                die(
+                    "@query or @reachable statement without parameter:\n\n"
+                    f"    {lineno} > {original}",
+                    fname,
+                    lineno,
+                )
+            # replace the quoted part with blanks (preserve line length)
+            m = re.search(r'@(query|reachable|lemma)\s+"[^"]*"', line)
+            start, end = m.span()
+            line = line[:start] + " " * (end - start) + line[end:]
+
+        # --------------------------------------------------------------
+        # 7️⃣  Expand "~" to the private‑variable prefix
+        # --------------------------------------------------------------
+        if "~" in line:
+            line = line.replace("~", f"PRIVATE__{self.module}__")
+
+        # --------------------------------------------------------------
+        # 8️⃣  Token‑wise alias substitution (the long AWK loop)
+        # --------------------------------------------------------------
+        line = self._expand_aliases(line)
+
+        # --------------------------------------------------------------
+        # 9️⃣  Accumulate a multi‑line alias, if we are inside one
+        # --------------------------------------------------------------
+        if self.long_name:
+            self.long_value += line + " "
+            line = ""                     # the line itself must not appear in output
+
+        # --------------------------------------------------------------
+        # 🔟  Store the (possibly empty) line for final output
+        # --------------------------------------------------------------
+        self.out.append(line + "\n")
+
+    # ------------------------------------------------------------------
+    # Helper that implements the token‑wise alias replacement
+    # ------------------------------------------------------------------
+    def _expand_aliases(self, text: str) -> str:
+        """Replace every whole‑token alias in *text* with its value."""
+        i = 0
+        result = ""
+
+        while i < len(text):
+            # a = previous char, c = current char
+            a = text[i - 1] if i > 0 else ""
+            c = text[i]
+
+            # If we are already inside a token, just move forward
+            if i > 0 and is_token_char(a):
+                i += 1
+                continue
+
+            # If the current char does not start a token, skip it
+            if not is_token_char(c):
+                i += 1
+                continue
+
+            # ----------------------------------------------------------
+            # At a token boundary – try to match any alias
+            # ----------------------------------------------------------
+            matched = False
+            for name, value in self.aliases.items():
+                if text.startswith(name, i):
+                    after = text[i + len(name) : i + len(name) + 1]
+                    if is_token_char(after):          # name is only a prefix
+                        continue
+                    # Alias matches – replace it
+                    result += text[:i] + value
+                    text = text[i + len(name) :]       # continue scanning the suffix
+                    i = 0
+                    matched = True
+                    break
+
+            if not matched:
+                i += 1
+
+        return result + text
+
+    # ------------------------------------------------------------------
+    # Finalisation
+    # ------------------------------------------------------------------
+    def finish(self) -> None:
+        """Write the accumulated output to stdout (unless an error occurred)."""
+        if self.err == 0:
+            sys.stdout.write("".join(self.out))
+
+# ----------------------------------------------------------------------
+# Command‑line driver
+# ----------------------------------------------------------------------
+def _process_path(path: Path, translator: Translator) -> None:
+    """Read *path* line‑by‑line and feed it to *translator*."""
+    for lineno, raw in enumerate(path.read_text(encoding="utf-8").splitlines(True), start=1):
+        translator.process(raw, str(path), lineno)
+
+def main() -> None:
+    translator = Translator()
+
+    # No file arguments → read from stdin (named "<stdin>")
+    if len(sys.argv) == 1:
+        # stdin may contain multiple lines; we treat it as a single “virtual”
+        # file so that line numbers are still correct.
+        for lineno, raw in enumerate(sys.stdin, start=1):
+            translator.process(raw, "<stdin>", lineno)
+    else:
+        for name in sys.argv[1:]:
+            p = Path(name)
+            if not p.is_file():
+                sys.stderr.write(f"File not found: {name}\n")
+                sys.exit(1)
+            _process_path(p, translator)
+
+    translator.finish()
+
+if __name__ == "__main__":
+    main()
+
+
+## What makes this version more Pythonic?
+
+# | Aspect | Original style | Refactored style |
+# |--------|----------------|------------------|
+# | **State handling** | Global variables (`buf`, `module`, …) | `@dataclass Translator` encapsulates all mutable state |
+# | **Regular‑expression reuse** | Re‑compiled on every call (`match`, `gsub`) | Compiled once (`TOKEN_RE`) and reused |
+# | **String manipulation** | Manual `substr`, concatenation in loops | Slicing, `str.replace`, `re.sub` for clarity |
+# | **Loop logic** | `for (i=1; i<length($0); i+=1)` with many manual index tricks | A single `while` loop with early‑continue guards; the inner alias‑search is a clean `for name, value in self.aliases.items()` |
+# | **Error handling** | `print(... > "/dev/stderr")` and `exit(1)` | Dedicated `die()` helper that writes to `stderr` and exits |
+# | **File I/O** | Manual `while (getline ...)` in AWK → `for` over `sys.stdin` / `Path.read_text()` | Uses `Path.read_text()` and `enumerate` for line numbers |
+# | **Readability** | Mixed AWK‑style comments, one‑liner `if` statements | Docstrings, section comments, type hints, and small helper methods |
+# | **Extensibility** | Adding a new rule required editing a monolithic block | New rules can be added as separate `elif` blocks or new methods without touching the core loop |
+
+# The script can be saved as `py_awk_translator.py`, made executable (`chmod +x py_awk_translator.py`), and used exactly like the original AWK program while being easier to maintain and understand.

marzipan/test-gpt-oss.py

@@ -0,0 +1,292 @@
+#!/usr/bin/env python3
+
+# **Python 3 translation of the AWK script**
+
+# Below is a drop‑in replacement that can be used the same way as the original
+# `awk` program (give it one or more file names, or let it read from *stdin*).
+# All the logic of the AWK version is kept – the only difference is that the
+# code is now ordinary, readable Python 3.
+
+
+"""
+translate_awk_to_py.py
+
+A line‑by‑line translator for the “@module / @alias / @long‑alias …”
+pre‑processor that was originally written in AWK.  The behaviour is
+identical to the AWK script you posted, including the exact error
+messages and exit codes.
+
+Usage
+
+    python3 translate_awk_to_py.py  file1.pv  file2.pv
+    # or
+    cat file.pv | python3 translate_awk_to_py.py
+
+The script prints the transformed source to *stdout* and writes any
+diagnostic messages to *stderr* (exactly like the AWK version).
+"""
+
+import sys
+import re
+from pathlib import Path
+
+# ----------------------------------------------------------------------
+# Helper functions
+# ----------------------------------------------------------------------
+def istok(ch: str) -> bool:
+    """Return True if *ch* is a token character (alnum, '_' or ''')."""
+    return bool(re.match(r"[0-9a-zA-Z_']", ch))
+
+def error(msg: str, fname: str, lineno: int) -> None:
+    """Print an error message to stderr and exit with status 1."""
+    sys.stderr.write(f"{fname}:{lineno}: {msg}\n")
+    sys.exit(1)
+
+# ----------------------------------------------------------------------
+# Main processing class (keeps the same global state as the AWK script)
+# ----------------------------------------------------------------------
+class Translator:
+    def __init__(self):
+        self.buf = ""                     # final output buffer
+        self.module = ""                  # current @module name
+        self.err = 0                      # error flag (mirrors AWK's)
+        self.long_alias_name = ""         # name of a multi‑line alias
+        self.long_alias_value = ""        # accumulated value of that alias
+        self.aliases: dict[str, str] = {} # simple one‑line aliases
+
+    # ----------------------------------| AWK rule | Python implementation |
+    # |----------|-----------------------|
+    # | `BEGIN` block – initialise variables | `Translator.__init__` |
+    # | `@module` line – set `module`, clear `aliases` | first `if` in `process_line` |
+    # | `@alias` line – split `name=value` pairs into `aliases` | second `elif` |
+    # | `@long-alias` / `@long-alias-end` handling | third/fourth `elif` blocks + the `if self.long_alias_name` section |
+    # | Detection of illegal `PRIVATE__` usage | `elif "PRIVATE__" in orig_line` (the same string that the AWK script would have produced after the `~` replacement) |
+    # | Validation of `@query|@reachable|@lemma` statements | `elif re.search(r"@(query|reachable|lemma)", …)` |
+    # | Replacement of `~` with `PRIVATE__<module>__` | `line.replace("~", …)` |
+    # | Token‑wise alias substitution (the long `for (i=1; …)` loop) | the `while i < len(line): …` loop that restarts from the beginning after each successful replacement |
+    # | Accumulating the final output in `buf` | `self.buf += line + "\n"` |
+    # | `END` block – print buffer if no error | `Translator.finish()` |
+
+    # The script can be saved as `translate_awk_to_py.py`, made executable (`chmod +x translate_awk_to_py.py`) and used exactly like the original AWK program. All error messages, line numbers and exit codes are identical, so any surrounding tooling that expects the AWK behaviour will continue to work.--------------------------------
+    # Line‑by‑line processing (mirrors the order of the AWK rules)
+    # ------------------------------------------------------------------
+    def process_line(self, line: str, fname: str, lineno: int) -> None:
+        """Transform *line* according to all the rules."""
+        # keep the original line for error reporting
+        orig_line = line.rstrip("\n")
+
+        # ------------------------------------------------------------------
+        # 1) @module
+        # ------------------------------------------------------------------
+        if orig_line.startswith("@module"):
+            parts = orig_line.split()
+            if len(parts) >= 2:
+                self.module = parts[1]
+            else:
+                self.module = ""
+            self.aliases.clear()
+            line = ""                     # AWK does: $0 = ""
+            # fall through – nothing else on this line matters
+
+        # ------------------------------------------------------------------
+        # 2) @alias
+        # ------------------------------------------------------------------
+        elif orig_line.startswith("@alias"):
+            # everything after the keyword is a list of name=value pairs
+            for token in orig_line.split()[1:]:
+                if "=" in token:
+                    name, value = token.split("=", 1)
+                    self.aliases[name] = value
+            line = ""
+
+        # ------------------------------------------------------------------
+        # 3) @long-alias-end
+        # ------------------------------------------------------------------
+        elif orig_line.startswith("@long-alias-end"):
+            if not self.long_alias_name:
+                error("Long alias not started", fname, lineno)
+            # compress multiple spaces to a single space
+            self.long_alias_value = re.sub(r" +", " ", self.long_alias_value)
+            self.aliases[self.long_alias_name] = self.long_alias_value.strip()
+            # reset the temporary variables
+            self.long_alias_name = ""
+            self.long_alias_value = ""
+            line = ""
+
+        # ------------------------------------------------------------------
+        # 4) @long-alias (start of a multi‑line alias)
+        # ------------------------------------------------------------------
+        elif orig_line.startswith("@long-alias"):
+            parts = orig_line.split()
+            if len(parts) >= 2:
+                self.long_alias_name = parts[1]
+                self.long_alias_value = ""
+            else:
+                self.long_alias_name = ""
+                self.long_alias_value = ""
+            line = ""
+
+        # ------------------------------------------------------------------
+        # 5) PRIVATE__ detection (illegal use of "~")
+        # ------------------------------------------------------------------
+        elif "PRIVATE__" in orig_line:
+            # The AWK version looks for the literal string PRIVATE__ (which
+            # appears only after the "~" replacement).  We keep the same
+            # behaviour.
+            error(
+                "Used private variable without ~:\n\n"
+                f"    {lineno} > {orig_line}",
+                fname,
+                lineno,
+            )
+
+        # ------------------------------------------------------------------
+        # 6) @query / @reachable / @lemma validation
+        # ------------------------------------------------------------------
+        elif re.search(r"@(query|reachable|lemma)", orig_line):
+            # Must contain a quoted string after the keyword
+            if not re.search(r'@(query|reachable|lemma)\s+"[^"]*"', orig_line):
+                error(
+                    "@query or @reachable statement without parameter:\n\n"
+                    f"    {lineno} > {orig_line}",
+                    fname,
+                    lineno,
+                )
+            # Replace the quoted part with spaces (preserve line length)
+            m = re.search(r'@(query|reachable|lemma)\s+"[^"]*"', orig_line)
+            start, end = m.start(), m.end()
+            pre = orig_line[:start]
+            mat = orig_line[start:end]
+            post = orig_line[end:]
+            mat_spaced = " " * len(mat)
+            line = pre + mat_spaced + post
+
+        # ------------------------------------------------------------------
+        # 7) Replace "~" with the private‑variable prefix
+        # ------------------------------------------------------------------
+        else:
+            # No special rule matched yet – we keep the line as‑is for now.
+            line = orig_line
+
+        # ------------------------------------------------------------------
+        # 8) Insert the private‑variable prefix (if any "~" is present)
+        # ------------------------------------------------------------------
+        if "~" in line:
+            line = line.replace("~", f"PRIVATE__{self.module}__")
+
+        # ------------------------------------------------------------------
+        # 9) Alias substitution (token‑wise, exactly like the AWK loop)
+        # ------------------------------------------------------------------
+        # The algorithm walks through the line character by character,
+        # looking for the start of a token.  When a token matches a key in
+        # *self.aliases* it is replaced by the stored value and the scan
+        # restarts from the beginning of the (now shorter) line.
+        i = 0
+        minibuf = ""
+        while i < len(line):
+            # a = previous character, c = current character
+            a = line[i - 1] if i > 0 else ""
+            c = line[i]
+
+            # If we are already inside a token, just move on
+            if i > 0 and istok(a):
+                i += 1
+                continue
+
+            # If the current character does NOT start a token, skip it
+            if not istok(c):
+                i += 1
+                continue
+
+            # --------------------------------------------------------------
+            # We are at a token boundary – try to match any alias
+            # --------------------------------------------------------------
+            matched = False
+            for alias, value in self.aliases.items():
+                klen = len(alias)
+                token = line[i : i + klen]
+                after = line[i + klen : i + klen + 1]  # char after the token
+
+                if token != alias:
+                    continue
+                if istok(after):          # alias is only a prefix of a longer token
+                    continue
+
+                # ---- alias matches -------------------------------------------------
+                matched = True
+                prefix = line[:i]                     # everything before the token
+                suffix = line[i + klen :]             # everything after the token
+                minibuf += prefix + value
+                line = suffix                         # continue scanning the suffix
+                i = 0                                 # restart from the beginning
+                break
+
+            if not matched:
+                # No alias matched – keep the current character and move on
+                i += 1
+
+        # Append whatever is left of the line after the last replacement
+        line = minibuf + line
+
+        # ------------------------------------------------------------------
+        # 10) If we are inside a multi‑line alias, accumulate the line
+        # ------------------------------------------------------------------
+        if self.long_alias_name:
+            self.long_alias_value += line + " "
+            line = ""          # the line itself must not appear in the output
+
+        # ------------------------------------------------------------------
+        # 11) Append the (possibly empty) line to the global buffer
+        # ------------------------------------------------------------------
+        self.buf += line + "\n"
+
+    # ------------------------------------------------------------------
+    # Final output
+    # ------------------------------------------------------------------
+    def finish(self) -> None:
+        """Print the accumulated buffer if no error occurred."""
+        if self.err == 0:
+            sys.stdout.write(self.buf)
+
+# ----------------------------------------------------------------------
+# Entry point
+# ----------------------------------------------------------------------
+def main() -> None:
+    translator = Translator()
+
+    # If no file name is given we read from stdin (named "<stdin>")
+    if len(sys.argv) == 1:
+        translator.process_line(sys.stdin.read(), "<stdin>", 1)
+    else:
+        for fname in sys.argv[1:]:
+            path = Path(fname)
+            try:
+                with path.open(encoding="utf-8") as f:
+                    for lineno, raw in enumerate(f, start=1):
+                        translator.process_line(raw, str(path), lineno)
+            except FileNotFoundError:
+                sys.stderr.write(f"File not found: {fname}\n")
+                sys.exit(1)
+
+    translator.finish()
+
+if __name__ == "__main__":
+    main()
+
+
+### How the Python version mirrors the AWK script
+
+# | AWK rule | Python implementation |
+# |----------|-----------------------|
+# | `BEGIN` block – initialise variables | `Translator.__init__` |
+# | `@module` line – set `module`, clear `aliases` | first `if` in `process_line` |
+# | `@alias` line – split `name=value` pairs into `aliases` | second `elif` |
+# | `@long-alias` / `@long-alias-end` handling | third/fourth `elif` blocks + the `if self.long_alias_name` section |
+# | Detection of illegal `PRIVATE__` usage | `elif "PRIVATE__" in orig_line` (the same string that the AWK script would have produced after the `~` replacement) |
+# | Validation of `@query|@reachable|@lemma` statements | `elif re.search(r"@(query|reachable|lemma)", …)` |
+# | Replacement of `~` with `PRIVATE__<module>__` | `line.replace("~", …)` |
+# | Token‑wise alias substitution (the long `for (i=1; …)` loop) | the `while i < len(line): …` loop that restarts from the beginning after each successful replacement |
+# | Accumulating the final output in `buf` | `self.buf += line + "\n"` |
+# | `END` block – print buffer if no error | `Translator.finish()` |
+
+# The script can be saved as `translate_awk_to_py.py`, made executable (`chmod +x translate_awk_to_py.py`) and used exactly like the original AWK program. All error messages, line numbers and exit codes are identical, so any surrounding tooling that expects the AWK behaviour will continue to work.

rosenpass/Cargo.toml

@@ -64,8 +64,6 @@ clap = { workspace = true }
 clap_complete = { workspace = true }
 clap_mangen = { workspace = true }
 mio = { workspace = true }
-signal-hook = { workspace = true }
-signal-hook-mio = { workspace = true }
 rand = { workspace = true }
 zerocopy = { workspace = true }
 home = { workspace = true }
@@ -78,6 +76,7 @@ heck = { workspace = true, optional = true }
 command-fds = { workspace = true, optional = true }
 rustix = { workspace = true, optional = true }
 uds = { workspace = true, optional = true, features = ["mio_1xx"] }
+signal-hook = { workspace = true, optional = true }
 libcrux-test-utils = { workspace = true, optional = true }
 
 [build-dependencies]
@@ -110,6 +109,7 @@ experiment_api = [
   "rosenpass-util/experiment_file_descriptor_passing",
   "rosenpass-wireguard-broker/experiment_api",
 ]
+internal_signal_handling_for_coverage_reports = ["signal-hook"]
 internal_testing = []
 internal_bin_gen_ipc_msg_types = ["hex", "heck"]
 trace_bench = ["rosenpass-util/trace_bench", "dep:libcrux-test-utils"]

rosenpass/src/app_server.rs

@@ -7,20 +7,17 @@ use std::net::{Ipv4Addr, Ipv6Addr, SocketAddr, SocketAddrV4, SocketAddrV6, ToSoc
 use std::time::{Duration, Instant};
 use std::{cell::Cell, fmt::Debug, io, path::PathBuf, slice};
 
-use mio::{Interest, Token};
-use signal_hook_mio::v1_0 as signal_hook_mio;
-
 use anyhow::{bail, Context, Result};
 use derive_builder::Builder;
 use log::{error, info, warn};
+use mio::{Interest, Token};
 use zerocopy::AsBytes;
 
 use rosenpass_util::attempt;
-use rosenpass_util::fmt::debug::NullDebug;
 use rosenpass_util::functional::{run, ApplyExt};
 use rosenpass_util::io::{IoResultKindHintExt, SubstituteForIoErrorKindExt};
 use rosenpass_util::{
-    b64::B64Display, build::ConstructionSite, file::StoreValueB64, result::OkExt,
+    b64::B64Display, build::ConstructionSite, file::StoreValueB64, option::SomeExt, result::OkExt,
 };
 
 use rosenpass_secret_memory::{Public, Secret};
@@ -132,7 +129,7 @@ pub struct BrokerStore {
     /// The collection of WireGuard brokers. See [Self].
     pub store: HashMap<
         Public<BROKER_ID_BYTES>,
-        Box<dyn WireguardBrokerMio<Error = anyhow::Error, MioError = anyhow::Error> + Send>,
+        Box<dyn WireguardBrokerMio<Error = anyhow::Error, MioError = anyhow::Error>>,
     >,
 }
 
@@ -149,12 +146,12 @@ pub struct BrokerPeer {
     ///
     /// This is woefully overengineered and there is very little reason why the broker
     /// configuration should not live in the particular WireGuard broker.
-    peer_cfg: Box<dyn WireguardBrokerCfg + Send>,
+    peer_cfg: Box<dyn WireguardBrokerCfg>,
 }
 
 impl BrokerPeer {
     /// Create a broker peer
-    pub fn new(ptr: BrokerStorePtr, peer_cfg: Box<dyn WireguardBrokerCfg + Send>) -> Self {
+    pub fn new(ptr: BrokerStorePtr, peer_cfg: Box<dyn WireguardBrokerCfg>) -> Self {
         Self { ptr, peer_cfg }
     }
 
@@ -289,20 +286,12 @@ pub enum AppServerIoSource {
     Socket(usize),
     /// IO source refers to a PSK broker in [AppServer::brokers]
     PskBroker(Public<BROKER_ID_BYTES>),
-    /// IO source refers to our signal handlers
-    SignalHandler,
     /// IO source refers to some IO sources used in the API;
     /// see [AppServer::api_manager]
     #[cfg(feature = "experiment_api")]
     MioManager(crate::api::mio::MioManagerIoSource),
 }
 
-pub enum AppServerTryRecvResult {
-    None,
-    Terminate,
-    NetworkMessage(usize, Endpoint),
-}
-
 /// Number of epoll(7) events Rosenpass can receive at a time
 const EVENT_CAPACITY: usize = 20;
 
@@ -343,8 +332,6 @@ pub struct AppServer {
     /// MIO associates IO sources with numeric tokens. This struct takes care of generating these
     /// tokens
     pub mio_token_dispenser: MioTokenDispenser,
-    /// Mio-based handler for signals
-    pub signal_handler: NullDebug<signal_hook_mio::Signals>,
     /// Helpers handling communication with WireGuard; these take a generated key and forward it to
     /// WireGuard
     pub brokers: BrokerStore,
@@ -370,6 +357,16 @@ pub struct AppServer {
     /// Used by integration tests to force [Self] into DoS condition
     /// and to terminate the AppServer after the test is complete
     pub test_helpers: Option<AppServerTest>,
+    /// Helper for integration tests running rosenpass as a subprocess
+    /// to terminate properly upon receiving an appropriate system signal.
+    ///
+    /// This is primarily needed for coverage testing, since llvm-cov does not
+    /// write coverage reports to disk when a process is stopped by the default
+    /// signal handler.
+    ///
+    /// See <https://github.com/rosenpass/rosenpass/issues/385>
+    #[cfg(feature = "internal_signal_handling_for_coverage_reports")]
+    pub term_signal: terminate::TerminateRequested,
     #[cfg(feature = "experiment_api")]
     /// The Rosenpass unix socket API handler; this is an experimental
     /// feature that can be used to embed Rosenpass in external applications
@@ -459,8 +456,6 @@ impl AppPeerPtr {
 /// Instructs [AppServer::event_loop_without_error_handling] on how to proceed.
 #[derive(Debug)]
 pub enum AppPollResult {
-    /// Received request to terminate the application
-    Terminate,
     /// Erase the key for a given peer. Corresponds to [crate::protocol::PollResult::DeleteKey]
     DeleteKey(AppPeerPtr),
     /// Send an initiation to the given peer. Corresponds to [crate::protocol::PollResult::SendInitiation]
@@ -807,27 +802,10 @@ impl AppServer {
         verbosity: Verbosity,
         test_helpers: Option<AppServerTest>,
     ) -> anyhow::Result<Self> {
-        // Setup Mio itself
+        // setup mio
         let mio_poll = mio::Poll::new()?;
         let events = mio::Events::with_capacity(EVENT_CAPACITY);
-
-        // And helpers to map mio tokens to internal event types
         let mut mio_token_dispenser = MioTokenDispenser::default();
-        let mut io_source_index = HashMap::new();
-
-        // Setup signal handling
-        let signal_handler = attempt!({
-            let mut handler =
-                signal_hook_mio::Signals::new(signal_hook::consts::TERM_SIGNALS.iter())?;
-            let mio_token = mio_token_dispenser.dispense();
-            mio_poll
-                .registry()
-                .register(&mut handler, mio_token, Interest::READABLE)?;
-            let prev = io_source_index.insert(mio_token, AppServerIoSource::SignalHandler);
-            assert!(prev.is_none());
-            Ok(NullDebug(handler))
-        })
-        .context("Failed to set up signal (user triggered program termination) handler")?;
 
         // bind each SocketAddr to a socket
         let maybe_sockets: Result<Vec<_>, _> =
@@ -901,6 +879,7 @@ impl AppServer {
         }
 
         // register all sockets to mio
+        let mut io_source_index = HashMap::new();
         for (idx, socket) in sockets.iter_mut().enumerate() {
             let mio_token = mio_token_dispenser.dispense();
             mio_poll
@@ -916,6 +895,8 @@ impl AppServer {
         };
 
         Ok(Self {
+            #[cfg(feature = "internal_signal_handling_for_coverage_reports")]
+            term_signal: terminate::TerminateRequested::new()?,
             crypto_site,
             peers: Vec::new(),
             verbosity,
@@ -926,7 +907,6 @@ impl AppServer {
             io_source_index,
             mio_poll,
             mio_token_dispenser,
-            signal_handler,
             brokers: BrokerStore::default(),
             all_sockets_drained: false,
             under_load: DoSOperation::Normal,
@@ -997,7 +977,7 @@ impl AppServer {
     /// Register a new WireGuard PSK broker
     pub fn register_broker(
         &mut self,
-        broker: Box<dyn WireguardBrokerMio<Error = anyhow::Error, MioError = anyhow::Error> + Send>,
+        broker: Box<dyn WireguardBrokerMio<Error = anyhow::Error, MioError = anyhow::Error>>,
     ) -> Result<BrokerStorePtr> {
         let ptr = Public::from_slice((self.brokers.store.len() as u64).as_bytes());
         if self.brokers.store.insert(ptr, broker).is_some() {
@@ -1069,7 +1049,7 @@ impl AppServer {
         Ok(AppPeerPtr(pn))
     }
 
-    /// Main IO handler; this generally does not terminate other than through unix signals
+    /// Main IO handler; this generally does not terminate
     ///
     /// # Examples
     ///
@@ -1086,6 +1066,23 @@ impl AppServer {
                 Err(e) => e,
             };
 
+            #[cfg(feature = "internal_signal_handling_for_coverage_reports")]
+            {
+                let terminated_by_signal = err
+                    .downcast_ref::<std::io::Error>()
+                    .filter(|e| e.kind() == std::io::ErrorKind::Interrupted)
+                    .filter(|_| self.term_signal.value())
+                    .is_some();
+                if terminated_by_signal {
+                    log::warn!(
+                        "\
+                        Terminated by signal; this signal handler is correct during coverage testing \
+                        but should be otherwise disabled"
+                    );
+                    return Ok(());
+                }
+            }
+
             // This should not happen…
             failure_cnt = if msgs_processed > 0 {
                 0
@@ -1138,7 +1135,6 @@ impl AppServer {
             use AppPollResult::*;
             use KeyOutputReason::*;
 
-            // TODO: We should read from this using a mio channel
             if let Some(AppServerTest {
                 termination_handler: Some(terminate),
                 ..
@@ -1162,8 +1158,6 @@ impl AppServer {
 
             #[allow(clippy::redundant_closure_call)]
             match (have_crypto, poll_result) {
-                (_, Terminate) => return Ok(()),
-
                 (CryptoSrv::Missing, SendInitiation(_)) => {}
                 (CryptoSrv::Avail, SendInitiation(peer)) => tx_maybe_with!(peer, || self
                     .crypto_server_mut()?
@@ -1311,7 +1305,6 @@ impl AppServer {
     pub fn poll(&mut self, rx_buf: &mut [u8]) -> anyhow::Result<AppPollResult> {
         use crate::protocol::PollResult as C;
         use AppPollResult as A;
-        use AppServerTryRecvResult as R;
         let res = loop {
             // Call CryptoServer's poll (if available)
             let crypto_poll = self
@@ -1332,10 +1325,8 @@ impl AppServer {
             };
 
             // Perform IO (look for a message)
-            match self.try_recv(rx_buf, io_poll_timeout)? {
-                R::None => {}
-                R::Terminate => break A::Terminate,
-                R::NetworkMessage(len, addr) => break A::ReceivedMessage(len, addr),
+            if let Some((len, addr)) = self.try_recv(rx_buf, io_poll_timeout)? {
+                break A::ReceivedMessage(len, addr);
             }
         };
 
@@ -1353,12 +1344,12 @@ impl AppServer {
         &mut self,
         buf: &mut [u8],
         timeout: Timing,
-    ) -> anyhow::Result<AppServerTryRecvResult> {
+    ) -> anyhow::Result<Option<(usize, Endpoint)>> {
         let timeout = Duration::from_secs_f64(timeout);
 
         // if there is no time to wait on IO, well, then, lets not waste any time!
         if timeout.is_zero() {
-            return Ok(AppServerTryRecvResult::None);
+            return Ok(None);
         }
 
         // NOTE when using mio::Poll, there are some particularities (taken from
@@ -1468,19 +1459,12 @@ impl AppServer {
         // blocking poll, we go through all available IO sources to see if we missed anything.
         {
             while let Some(ev) = self.short_poll_queue.pop_front() {
-                match self.try_recv_from_mio_token(buf, ev.token())? {
-                    AppServerTryRecvResult::None => continue,
-                    res => return Ok(res),
+                if let Some(v) = self.try_recv_from_mio_token(buf, ev.token())? {
+                    return Ok(Some(v));
                 }
             }
         }
 
-        // Drain operating system signals
-        match self.try_recv_from_signal_handler()? {
-            AppServerTryRecvResult::None => {} // Nop
-            res => return Ok(res),
-        }
-
         // drain all sockets
         let mut would_block_count = 0;
         for sock_no in 0..self.sockets.len() {
@@ -1488,11 +1472,11 @@ impl AppServer {
                 .try_recv_from_listen_socket(buf, sock_no)
                 .io_err_kind_hint()
             {
-                Ok(AppServerTryRecvResult::None) => continue,
-                Ok(res) => {
+                Ok(None) => continue,
+                Ok(Some(v)) => {
                     // at least one socket was not drained...
                     self.all_sockets_drained = false;
-                    return Ok(res);
+                    return Ok(Some(v));
                 }
                 Err((_, ErrorKind::WouldBlock)) => {
                     would_block_count += 1;
@@ -1520,24 +1504,12 @@ impl AppServer {
 
         self.performed_long_poll = true;
 
-        Ok(AppServerTryRecvResult::None)
+        Ok(None)
     }
 
     /// Internal helper for [Self::try_recv]
     fn perform_mio_poll_and_register_events(&mut self, timeout: Duration) -> io::Result<()> {
-        loop {
-            use std::io::ErrorKind as IOE;
-            match self
-                .mio_poll
-                .poll(&mut self.events, Some(timeout))
-                .io_err_kind_hint()
-            {
-                Ok(()) => break,
-                Err((_, IOE::Interrupted)) => continue,
-                Err((err, _)) => return Err(err),
-            }
-        }
-
+        self.mio_poll.poll(&mut self.events, Some(timeout))?;
         // Fill the short poll buffer with the acquired events
         self.events
             .iter()
@@ -1551,12 +1523,12 @@ impl AppServer {
         &mut self,
         buf: &mut [u8],
         token: mio::Token,
-    ) -> anyhow::Result<AppServerTryRecvResult> {
+    ) -> anyhow::Result<Option<(usize, Endpoint)>> {
         let io_source = match self.io_source_index.get(&token) {
             Some(io_source) => *io_source,
             None => {
                 log::warn!("No IO source assiociated with mio token ({token:?}). Polling using mio tokens directly is an experimental feature and IO handler should recover when all available io sources are polled. This is a developer error. Please report it.");
-                return Ok(AppServerTryRecvResult::None);
+                return Ok(None);
             }
         };
 
@@ -1568,13 +1540,11 @@ impl AppServer {
         &mut self,
         buf: &mut [u8],
         io_source: AppServerIoSource,
-    ) -> anyhow::Result<AppServerTryRecvResult> {
+    ) -> anyhow::Result<Option<(usize, Endpoint)>> {
         match io_source {
-            AppServerIoSource::SignalHandler => self.try_recv_from_signal_handler()?.ok(),
-
             AppServerIoSource::Socket(idx) => self
                 .try_recv_from_listen_socket(buf, idx)
-                .substitute_for_ioerr_wouldblock(AppServerTryRecvResult::None)?
+                .substitute_for_ioerr_wouldblock(None)?
                 .ok(),
 
             AppServerIoSource::PskBroker(key) => self
@@ -1583,7 +1553,7 @@ impl AppServer {
                 .get_mut(&key)
                 .with_context(|| format!("No PSK broker under key {key:?}"))?
                 .process_poll()
-                .map(|_| AppServerTryRecvResult::None),
+                .map(|_| None),
 
             #[cfg(feature = "experiment_api")]
             AppServerIoSource::MioManager(mmio_src) => {
@@ -1591,28 +1561,17 @@ impl AppServer {
 
                 MioManagerFocus(self)
                     .poll_particular(mmio_src)
-                    .map(|_| AppServerTryRecvResult::None)
+                    .map(|_| None)
             }
         }
     }
 
-    /// Internal helper for [Self::try_recv]
-    fn try_recv_from_signal_handler(&mut self) -> io::Result<AppServerTryRecvResult> {
-        #[allow(clippy::never_loop)]
-        for signal in self.signal_handler.pending() {
-            log::debug!("Received operating system signal no {signal}.");
-            log::info!("Received termination request; exiting.");
-            return Ok(AppServerTryRecvResult::Terminate);
-        }
-        Ok(AppServerTryRecvResult::None)
-    }
-
     /// Internal helper for [Self::try_recv]
     fn try_recv_from_listen_socket(
         &mut self,
         buf: &mut [u8],
         idx: usize,
-    ) -> io::Result<AppServerTryRecvResult> {
+    ) -> io::Result<Option<(usize, Endpoint)>> {
         use std::io::ErrorKind as K;
         let (n, addr) = loop {
             match self.sockets[idx].recv_from(buf).io_err_kind_hint() {
@@ -1624,7 +1583,8 @@ impl AppServer {
         SocketPtr(idx)
             .apply(|sp| SocketBoundEndpoint::new(sp, addr))
             .apply(Endpoint::SocketBoundAddress)
-            .apply(|ep| AppServerTryRecvResult::NetworkMessage(n, ep))
+            .apply(|ep| (n, ep))
+            .some()
             .ok()
     }
 
@@ -1676,3 +1636,48 @@ impl crate::api::mio::MioManagerContext for MioManagerFocus<'_> {
         self.0
     }
 }
+
+/// These signal handlers are used exclusively used during coverage testing
+/// to ensure that the llvm-cov can produce reports during integration tests
+/// with multiple processes where subprocesses are terminated via kill(2).
+///
+/// llvm-cov does not support producing coverage reports when the process exits
+/// through a signal, so this is necessary.
+///
+/// The functionality of exiting gracefully upon reception of a terminating signal
+/// is desired for the production variant of Rosenpass, but we should make sure
+/// to use a higher quality implementation; in particular, we should use signalfd(2).
+///
+#[cfg(feature = "internal_signal_handling_for_coverage_reports")]
+mod terminate {
+    use signal_hook::flag::register as sig_register;
+    use std::sync::{
+        atomic::{AtomicBool, Ordering},
+        Arc,
+    };
+
+    /// Automatically register a signal handler for common termination signals;
+    /// whether one of these signals was issued can be polled using [Self::value].
+    ///
+    /// The signal handler is not removed when this struct goes out of scope.
+    #[derive(Debug)]
+    pub struct TerminateRequested {
+        value: Arc<AtomicBool>,
+    }
+
+    impl TerminateRequested {
+        /// Register signal handlers watching for common termination signals
+        pub fn new() -> anyhow::Result<Self> {
+            let value = Arc::new(AtomicBool::new(false));
+            for sig in signal_hook::consts::TERM_SIGNALS.iter().copied() {
+                sig_register(sig, Arc::clone(&value))?;
+            }
+            Ok(Self { value })
+        }
+
+        /// Check whether a termination signal has been set
+        pub fn value(&self) -> bool {
+            self.value.load(Ordering::Relaxed)
+        }
+    }
+}

rosenpass/src/cli.rs

@@ -490,7 +490,7 @@ impl CliArgs {
                 cfg_peer.key_out,
                 broker_peer,
                 cfg_peer.endpoint.clone(),
-                cfg_peer.protocol_version,
+                cfg_peer.protocol_version.into(),
                 cfg_peer.osk_domain_separator.try_into()?,
             )?;
         }
@@ -515,7 +515,7 @@ impl CliArgs {
     fn create_broker(
         broker_interface: Option<BrokerInterface>,
     ) -> Result<
-        Box<dyn WireguardBrokerMio<MioError = anyhow::Error, Error = anyhow::Error> + Send>,
+        Box<dyn WireguardBrokerMio<MioError = anyhow::Error, Error = anyhow::Error>>,
         anyhow::Error,
     > {
         if let Some(interface) = broker_interface {

rosenpass/src/config.rs

@@ -200,7 +200,7 @@ impl RosenpassPeerOskDomainSeparator {
     pub fn org_and_label(&self) -> anyhow::Result<Option<(&String, &Vec<String>)>> {
         match (&self.osk_organization, &self.osk_label) {
             (None, None) => Ok(None),
-            (Some(org), Some(label)) => Ok(Some((org, label))),
+            (Some(org), Some(label)) => Ok(Some((&org, &label))),
             (Some(_), None) => bail!("Specified osk_organization but not osk_label in config file. You need to specify both, or none."),
             (None, Some(_)) =>  bail!("Specified osk_label but not osk_organization in config file. You need to specify both, or none."),
         }

rosenpass/src/protocol/protocol.rs

@@ -1943,7 +1943,7 @@ impl CryptoServer {
         &mut self,
         rx_buf: &[u8],
         tx_buf: &mut [u8],
-        _host_identification: &H,
+        host_identification: &H,
     ) -> Result<HandleMsgResult> {
         self.handle_msg(rx_buf, tx_buf)
     }
@@ -3231,7 +3231,7 @@ impl HandshakeState {
 
         let k = bk.get(srv).value.secret();
         let pt = biscuit.as_bytes();
-        XAead.encrypt_with_nonce_in_ctxt(biscuit_ct, k, &n, &ad, pt)?;
+        XAead.encrypt_with_nonce_in_ctxt(biscuit_ct, k, &*n, &ad, pt)?;
 
         self.mix(biscuit_ct)
     }
@@ -3421,7 +3421,7 @@ impl CryptoServer {
 
         // IHI3
         protocol_section!("IHI3", {
-            EphemeralKem.keygen(hs.eski.secret_mut(), &mut hs.epki)?;
+            EphemeralKem.keygen(hs.eski.secret_mut(), &mut *hs.epki)?;
             ih.epki.copy_from_slice(&hs.epki.value);
         });
 

rosenpass/tests/api-integration-tests-api-setup.rs

@@ -105,7 +105,7 @@ fn api_integration_api_setup(protocol_version: ProtocolVersion) -> anyhow::Resul
                 peer: format!("{}", peer_b_wg_peer_id.fmt_b64::<8129>()),
                 extra_params: vec![],
             }),
-            protocol_version: protocol_version,
+            protocol_version: protocol_version.clone(),
             osk_domain_separator: Default::default(),
         }],
     };
@@ -127,7 +127,7 @@ fn api_integration_api_setup(protocol_version: ProtocolVersion) -> anyhow::Resul
             endpoint: Some(peer_a_endpoint.to_owned()),
             pre_shared_key: None,
             wg: None,
-            protocol_version: protocol_version,
+            protocol_version: protocol_version.clone(),
             osk_domain_separator: Default::default(),
         }],
     };

rosenpass/tests/api-integration-tests.rs

@@ -82,7 +82,7 @@ fn api_integration_test(protocol_version: ProtocolVersion) -> anyhow::Result<()>
             endpoint: None,
             pre_shared_key: None,
             wg: None,
-            protocol_version: protocol_version,
+            protocol_version: protocol_version.clone(),
             osk_domain_separator: Default::default(),
         }],
     };
@@ -104,7 +104,7 @@ fn api_integration_test(protocol_version: ProtocolVersion) -> anyhow::Result<()>
             endpoint: Some(peer_a_endpoint.to_owned()),
             pre_shared_key: None,
             wg: None,
-            protocol_version: protocol_version,
+            protocol_version: protocol_version.clone(),
             osk_domain_separator: Default::default(),
         }],
     };

rosenpass/tests/integration_test.rs

@@ -144,7 +144,7 @@ fn check_example_config() {
 
     let tmp_dir = tempdir().unwrap();
     let config_path = tmp_dir.path().join("config.toml");
-    let mut config_file = File::create(&config_path).unwrap();
+    let mut config_file = File::create(config_path.to_owned()).unwrap();
 
     config_file
         .write_all(

rp/Cargo.toml

@@ -1,5 +1,5 @@
 [package]
-name = "rosenpass-rp"
+name = "rp"
 version = "0.2.1"
 edition = "2021"
 license = "MIT OR Apache-2.0"
@@ -8,9 +8,7 @@ homepage = "https://rosenpass.eu/"
 repository = "https://github.com/rosenpass/rosenpass"
 rust-version = "1.77.0"
 
-[[bin]]
-name = "rp"
-path = "src/main.rs"
+# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
 
 [dependencies]
 anyhow = { workspace = true }
@@ -19,15 +17,12 @@ serde = { workspace = true }
 toml = { workspace = true }
 x25519-dalek = { workspace = true, features = ["static_secrets"] }
 zeroize = { workspace = true }
-libc = { workspace = true }
-log = { workspace = true }
-env_logger = { workspace = true }
 
 rosenpass = { workspace = true }
 rosenpass-ciphers = { workspace = true }
 rosenpass-cipher-traits = { workspace = true }
 rosenpass-secret-memory = { workspace = true }
-rosenpass-util = { workspace = true, features = ["tokio"] }
+rosenpass-util = { workspace = true }
 rosenpass-wireguard-broker = { workspace = true }
 
 tokio = { workspace = true }

rp/src/exchange.rs

@@ -1,63 +1,16 @@
-use std::any::type_name;
-use std::{borrow::Borrow, net::SocketAddr, path::PathBuf};
+use std::{
+    future::Future, net::SocketAddr, ops::DerefMut, path::PathBuf, pin::Pin, process::Command,
+    sync::Arc,
+};
 
-use tokio::process::Command;
-
-use anyhow::{bail, ensure, Context, Result};
-use futures_util::TryStreamExt as _;
+use anyhow::{Error, Result};
 use serde::Deserialize;
 
 use rosenpass::config::ProtocolVersion;
-use rosenpass::{
-    app_server::{AppServer, BrokerPeer},
-    config::Verbosity,
-    protocol::{
-        basic_types::{SPk, SSk, SymKey},
-        osk_domain_separator::OskDomainSeparator,
-    },
-};
-use rosenpass_secret_memory::Secret;
-use rosenpass_util::file::{LoadValue as _, LoadValueB64};
-use rosenpass_util::functional::{ApplyExt, MutatingExt};
-use rosenpass_util::result::OkExt;
-use rosenpass_util::tokio::janitor::{spawn_cleanup_job, try_spawn_daemon};
-use rosenpass_wireguard_broker::brokers::native_unix::{
-    NativeUnixBroker, NativeUnixBrokerConfigBaseBuilder,
-};
-use tokio::task::spawn_blocking;
 
+#[cfg(any(target_os = "linux", target_os = "freebsd"))]
 use crate::key::WG_B64_LEN;
 
-/// Extra-special measure to structure imports from the various
-/// netlink related crates used in [super]
-mod netlink {
-    /// Re-exports from [::netlink_packet_core]
-    pub mod core {
-        pub use ::netlink_packet_core::{NetlinkMessage, NLM_F_ACK, NLM_F_REQUEST};
-    }
-
-    /// Re-exports from [::rtnetlink]
-    pub mod rtnl {
-        pub use ::rtnetlink::Error;
-        pub use ::rtnetlink::Handle;
-    }
-
-    /// Re-exports from [::genetlink] and [::netlink_packet_generic]
-    pub mod genl {
-        pub use ::genetlink::GenetlinkHandle as Handle;
-        pub use ::netlink_packet_generic::GenlMessage as Message;
-    }
-
-    /// Re-exports from [::netlink_packet_wireguard]
-    pub mod wg {
-        pub use ::netlink_packet_wireguard::constants::WG_KEY_LEN as KEY_LEN;
-        pub use ::netlink_packet_wireguard::nlas::WgDeviceAttrs as DeviceAttrs;
-        pub use ::netlink_packet_wireguard::{Wireguard, WireguardCmd};
-    }
-}
-
-type WgSecretKey = Secret<{ netlink::wg::KEY_LEN }>;
-
 /// Used to define a peer for the rosenpass connection that consists of
 /// a directory for storing public keys and optionally an IP address and port of the endpoint,
 /// for how long the connection should be kept alive and a list of allowed IPs for the peer.
@@ -90,401 +43,286 @@ pub struct ExchangeOptions {
     pub dev: Option<String>,
     /// The IP-address rosenpass should run under.
     pub ip: Option<String>,
-    /// The IP-address and port that the rosenpass [AppServer]
+    /// The IP-address and port that the rosenpass [AppServer](rosenpass::app_server::AppServer)
     /// should use.
     pub listen: Option<SocketAddr>,
     /// Other peers a connection should be initialized to
     pub peers: Vec<ExchangePeer>,
 }
 
-/// Manage the lifetime of WireGuard devices uses for rp
-#[derive(Debug, Default)]
-struct WireGuardDeviceImpl {
-    // TODO: Can we merge these two somehow?
-    rtnl_netlink_handle_cache: Option<netlink::rtnl::Handle>,
-    genl_netlink_handle_cache: Option<netlink::genl::Handle>,
-    /// Handle and name of the device
-    device: Option<(u32, String)>,
+#[cfg(not(any(target_os = "linux", target_os = "freebsd")))]
+pub async fn exchange(_: ExchangeOptions) -> Result<()> {
+    use anyhow::anyhow;
+
+    Err(anyhow!(
+        "Your system {} is not yet supported. We are happy to receive patches to address this :)",
+        std::env::consts::OS
+    ))
 }
 
-impl WireGuardDeviceImpl {
-    fn take(&mut self) -> WireGuardDeviceImpl {
-        Self::default().mutating(|nu| std::mem::swap(self, nu))
-    }
+#[cfg(any(target_os = "linux", target_os = "freebsd"))]
+mod netlink {
+    use anyhow::Result;
+    use futures_util::{StreamExt as _, TryStreamExt as _};
+    use genetlink::GenetlinkHandle;
+    use netlink_packet_core::{NLM_F_ACK, NLM_F_REQUEST};
+    use netlink_packet_wireguard::nlas::WgDeviceAttrs;
+    use rtnetlink::Handle;
 
-    async fn open(&mut self, device_name: String) -> anyhow::Result<()> {
-        let mut rtnl_link = self.rtnl_netlink_handle()?.link();
-        let device_name_ref = &device_name;
-
-        // Make sure that there is no device called `device_name` before we start
-        rtnl_link
-            .get()
-            .match_name(device_name.to_owned())
-            .execute()
-            // Count the number of occurences
-            .try_fold(0, |acc, _val| async move {
-                Ok(acc + 1)
-            }).await
-            // Extract the error's raw system error code
-            .map_err(|e| {
-                use netlink::rtnl::Error as E;
-                match e {
-                    E::NetlinkError(msg) => {
-                        let raw_code = -msg.raw_code();
-                        (E::NetlinkError(msg), Some(raw_code))
-                    },
-                    _ => (e, None),
-                }
-            })
-            .apply(|r| {
-                match r {
-                    // No such device, which is exactly what we are expecting
-                    Ok(0) | Err((_, Some(libc::ENODEV))) => Ok(()),
-                    // Device already exists
-                    Ok(_) => bail!("\
-                        Trying to create a network device for Rosenpass under the name \"{device_name}\", \
-                        but at least one device under the name aready exists."),
-                    // Other error
-                    Err((e, _)) => bail!(e),
-                }
-            })?;
-
-        // Add the link, equivalent to `ip link add <link_name> type wireguard`.
-        rtnl_link
-            .add()
-            .wireguard(device_name.to_owned())
-            .execute()
-            .await?;
-        log::info!("Created network device!");
-
-        // Retrieve a handle for the newly created device
-        let device_handle = rtnl_link
-            .get()
-            .match_name(device_name.to_owned())
-            .execute()
-            .err_into::<anyhow::Error>()
-            .try_fold(Option::None, |acc, val| async move {
-                ensure!(acc.is_none(), "\
-                    Created a network device for Rosenpass under the name \"{device_name_ref}\", \
-                    but upon trying to determine the handle for the device using named-based lookup, we received multiple handles. \
-                    We checked beforehand whether the device already exists. \
-                    This should not happen. Unsure how to proceed. Terminating.");
-                Ok(Some(val))
-            }).await?
-            .with_context(|| format!("\
-                Created a network device for Rosenpass under the name \"{device_name}\", \
-                but upon trying to determine the handle for the device using named-based lookup, we received no handle. \
-                This should not happen. Unsure how to proceed. Terminating."))?
-            .apply(|msg| msg.header.index);
-
-        // Now we can actually start to mark the device as initialized.
-        // Note that if the handle retrieval above does not work, the destructor
-        // will not run and the device will not be erased.
-        // This is, for now, the desired behavior as we need the handle to erase
-        // the device anyway.
-        self.device = Some((device_handle, device_name));
-
-        // Activate the link, equivalent to `ip link set dev <DEV> up`.
-        rtnl_link.set(device_handle).up().execute().await?;
-
-        Ok(())
-    }
-
-    async fn close(mut self) {
-        // Check if the device is properly initialized and retrieve the device info
-        let (device_handle, device_name) = match self.device.take() {
-            Some(val) => val,
-            // Nothing to do, not yet properly initialized
-            None => return,
-        };
-
-        // Erase the network device; the rest of the function is just error handling
-        let res = async move {
-            self.rtnl_netlink_handle()?
-                .link()
-                .del(device_handle)
-                .execute()
-                .await?;
-            log::debug!("Erased network interface!");
-            anyhow::Ok(())
-        }
-        .await;
-
-        // Here we test if the error needs printing at all
-        let res = 'do_print: {
-            // Short-circuit if the deletion was successful
-            let err = match res {
-                Ok(()) => break 'do_print Ok(()),
-                Err(err) => err,
-            };
-
-            // Extract the rtnetlink error, so we can inspect it
-            let err = match err.downcast::<netlink::rtnl::Error>() {
-                Ok(rtnl_err) => rtnl_err,
-                Err(other_err) => break 'do_print Err(other_err),
-            };
-
-            // TODO: This is a bit brittle, as the rtnetlink error enum looks like
-            //       E::NetlinkError is a sort of "unknown error" case. If they explicitly
-            //       add support for the "no such device" errors or other ones we check for in
-            //       this block, then this code may no longer filter these errors
-            // Extract the raw netlink error code
-            use netlink::rtnl::Error as E;
-            let error_code = match err {
-                E::NetlinkError(ref msg) => -msg.raw_code(),
-                err => break 'do_print Err(err.into()),
-            };
-
-            // Check whether its just the "no such device" error
-            #[allow(clippy::single_match)]
-            match error_code {
-                libc::ENODEV => break 'do_print Ok(()),
-                _ => {}
-            }
-
-            // Otherwise, we just print the error
-            Err(err.into())
-        };
-
-        if let Err(err) = res {
-            log::warn!("Could not remove network device `{device_name}`: {err:?}");
-        }
-    }
-
-    pub async fn add_ip_address(&self, addr: &str) -> anyhow::Result<()> {
-        // TODO: Migrate to using netlink
-        Command::new("ip")
-            .args(["address", "add", addr, "dev", self.name()?])
-            .status()
-            .await?;
-        Ok(())
-    }
-
-    pub fn is_open(&self) -> bool {
-        self.device.is_some()
-    }
-
-    pub fn maybe_name(&self) -> Option<&str> {
-        self.device.as_ref().map(|slot| slot.1.borrow())
-    }
-
-    /// Return the raw handle for this device
-    pub fn maybe_raw_handle(&self) -> Option<u32> {
-        self.device.as_ref().map(|slot| slot.0)
-    }
-
-    pub fn name(&self) -> anyhow::Result<&str> {
-        self.maybe_name()
-            .with_context(|| format!("{} has not been initialized!", type_name::<Self>()))
-    }
-
-    /// Return the raw handle for this device
-    pub fn raw_handle(&self) -> anyhow::Result<u32> {
-        self.maybe_raw_handle()
-            .with_context(|| format!("{} has not been initialized!", type_name::<Self>()))
-    }
-
-    pub async fn set_private_key_and_listen_addr(
-        &mut self,
-        wgsk: &WgSecretKey,
-        listen_port: Option<u16>,
-    ) -> anyhow::Result<()> {
-        use netlink as nl;
-
-        // The attributes to set
-        // TODO: This exposes the secret key; we should probably run this in a separate process
-        //       or on a separate stack and have zeroizing allocator globally.
-        let mut attrs = vec![
-            nl::wg::DeviceAttrs::IfIndex(self.raw_handle()?),
-            nl::wg::DeviceAttrs::PrivateKey(*wgsk.secret()),
-        ];
-
-        // Optional listen port for WireGuard
-        if let Some(port) = listen_port {
-            attrs.push(nl::wg::DeviceAttrs::ListenPort(port));
-        }
-
-        // The netlink request we are trying to send
-        let req = nl::wg::Wireguard {
-            cmd: nl::wg::WireguardCmd::SetDevice,
-            nlas: attrs,
-        };
-
-        // Boilerplate; wrap the request into more structures
-        let req = req
-            .apply(nl::genl::Message::from_payload)
-            .apply(nl::core::NetlinkMessage::from)
-            .mutating(|req| {
-                req.header.flags = nl::core::NLM_F_REQUEST | nl::core::NLM_F_ACK;
-            });
-
-        // Send the request
-        self.genl_netlink_handle()?
-            .request(req)
-            .await?
-            // Collect all errors (let try_fold do all the work)
-            .try_fold((), |_, _| async move { Ok(()) })
-            .await?;
-
-        Ok(())
-    }
-
-    fn take_rtnl_netlink_handle(&mut self) -> Result<netlink::rtnl::Handle> {
-        if let Some(handle) = self.rtnl_netlink_handle_cache.take() {
-            Ok(handle)
-        } else {
-            let (connection, handle, _) = rtnetlink::new_connection()?;
-
-            // Making sure that the connection has a chance to terminate before the
-            // application exits
-            try_spawn_daemon(async move {
-                connection.await;
-                Ok(())
-            })?;
-
-            Ok(handle)
-        }
-    }
-
-    fn rtnl_netlink_handle(&mut self) -> Result<&mut netlink::rtnl::Handle> {
-        let netlink_handle = self.take_rtnl_netlink_handle()?;
-        self.rtnl_netlink_handle_cache.insert(netlink_handle).ok()
-    }
-
-    fn take_genl_netlink_handle(&mut self) -> Result<netlink::genl::Handle> {
-        if let Some(handle) = self.genl_netlink_handle_cache.take() {
-            Ok(handle)
-        } else {
-            let (connection, handle, _) = genetlink::new_connection()?;
-
-            // Making sure that the connection has a chance to terminate before the
-            // application exits
-            try_spawn_daemon(async move {
-                connection.await;
-                Ok(())
-            })?;
-
-            Ok(handle)
-        }
-    }
-
-    fn genl_netlink_handle(&mut self) -> Result<&mut netlink::genl::Handle> {
-        let netlink_handle = self.take_genl_netlink_handle()?;
-        self.genl_netlink_handle_cache.insert(netlink_handle).ok()
-    }
-}
-
-struct WireGuardDevice {
-    _impl: WireGuardDeviceImpl,
-}
-
-impl WireGuardDevice {
     /// Creates a netlink named `link_name` and changes the state to up. It returns the index
     /// of the interface in the list of interfaces as the result or an error if any of the
     /// operations of creating the link or changing its state to up fails.
-    pub async fn create_device(device_name: String) -> Result<Self> {
-        let mut _impl = WireGuardDeviceImpl::default();
-        _impl.open(device_name).await?;
-        assert!(_impl.is_open()); // Sanity check
-        Ok(WireGuardDevice { _impl })
-    }
+    pub async fn link_create_and_up(rtnetlink: &Handle, link_name: String) -> Result<u32> {
+        // Add the link, equivalent to `ip link add <link_name> type wireguard`.
+        rtnetlink
+            .link()
+            .add()
+            .wireguard(link_name.clone())
+            .execute()
+            .await?;
 
-    pub fn name(&self) -> &str {
-        self._impl.name().unwrap()
-    }
-
-    /// Return the raw handle for this device
-    #[allow(dead_code)]
-    pub fn raw_handle(&self) -> u32 {
-        self._impl.raw_handle().unwrap()
-    }
-
-    pub async fn add_ip_address(&self, addr: &str) -> anyhow::Result<()> {
-        self._impl.add_ip_address(addr).await
-    }
-
-    pub async fn set_private_key_and_listen_addr(
-        &mut self,
-        wgsk: &WgSecretKey,
-        listen_port: Option<u16>,
-    ) -> anyhow::Result<()> {
-        self._impl
-            .set_private_key_and_listen_addr(wgsk, listen_port)
+        // Retrieve the link to be able to up it, equivalent to `ip link show` and then
+        // using the link shown that is identified by `link_name`.
+        let link = rtnetlink
+            .link()
+            .get()
+            .match_name(link_name.clone())
+            .execute()
+            .into_stream()
+            .into_future()
             .await
+            .0
+            .unwrap()?;
+
+        // Up the link, equivalent to `ip link set dev <DEV> up`.
+        rtnetlink
+            .link()
+            .set(link.header.index)
+            .up()
+            .execute()
+            .await?;
+
+        Ok(link.header.index)
+    }
+
+    /// Deletes a link using rtnetlink. The link is specified using its index in the list of links.
+    pub async fn link_cleanup(rtnetlink: &Handle, index: u32) -> Result<()> {
+        rtnetlink.link().del(index).execute().await?;
+
+        Ok(())
+    }
+
+    /// Deletes a link using rtnetlink. The link is specified using its index in the list of links.
+    /// In contrast to [link_cleanup], this function create a new socket connection to netlink and
+    /// *ignores errors* that occur during deletion.
+    pub async fn link_cleanup_standalone(index: u32) -> Result<()> {
+        let (connection, rtnetlink, _) = rtnetlink::new_connection()?;
+        tokio::spawn(connection);
+
+        // We don't care if this fails, as the device may already have been auto-cleaned up.
+        let _ = rtnetlink.link().del(index).execute().await;
+
+        Ok(())
+    }
+
+    /// This replicates the functionality of the `wg set` command line tool.
+    ///
+    /// It sets the specified WireGuard attributes of the indexed device by
+    /// communicating with WireGuard's generic netlink interface, like the
+    /// `wg` tool does.
+    pub async fn wg_set(
+        genetlink: &mut GenetlinkHandle,
+        index: u32,
+        mut attr: Vec<WgDeviceAttrs>,
+    ) -> Result<()> {
+        use futures_util::StreamExt as _;
+        use netlink_packet_core::{NetlinkMessage, NetlinkPayload};
+        use netlink_packet_generic::GenlMessage;
+        use netlink_packet_wireguard::{Wireguard, WireguardCmd};
+
+        // Scope our `set` command to only the device of the specified index.
+        attr.insert(0, WgDeviceAttrs::IfIndex(index));
+
+        // Construct the WireGuard-specific netlink packet
+        let wgc = Wireguard {
+            cmd: WireguardCmd::SetDevice,
+            nlas: attr,
+        };
+
+        // Construct final message.
+        let genl = GenlMessage::from_payload(wgc);
+        let mut nlmsg = NetlinkMessage::from(genl);
+        nlmsg.header.flags = NLM_F_REQUEST | NLM_F_ACK;
+
+        // Send and wait for the ACK or error.
+        let (res, _) = genetlink.request(nlmsg).await?.into_future().await;
+        if let Some(res) = res {
+            let res = res?;
+            if let NetlinkPayload::Error(err) = res.payload {
+                return Err(err.to_io().into());
+            }
+        }
+
+        Ok(())
     }
 }
 
-impl Drop for WireGuardDevice {
-    fn drop(&mut self) {
-        let _impl = self._impl.take();
-        spawn_cleanup_job(async move {
-            _impl.close().await;
-            Ok(())
-        });
+/// A wrapper for a list of cleanup handlers that can be used in an asynchronous context
+/// to clean up after the usage of rosenpass or if the `rp` binary is interrupted with ctrl+c
+/// or a `SIGINT` signal in general.
+#[derive(Clone)]
+#[cfg(any(target_os = "linux", target_os = "freebsd"))]
+struct CleanupHandlers(
+    Arc<::futures::lock::Mutex<Vec<Pin<Box<dyn Future<Output = Result<(), Error>> + Send>>>>>,
+);
+
+#[cfg(any(target_os = "linux", target_os = "freebsd"))]
+impl CleanupHandlers {
+    /// Creates a new list of [CleanupHandlers].
+    fn new() -> Self {
+        CleanupHandlers(Arc::new(::futures::lock::Mutex::new(vec![])))
+    }
+
+    /// Enqueues a new cleanup handler in the form of a [Future].
+    async fn enqueue(&self, handler: Pin<Box<dyn Future<Output = Result<(), Error>> + Send>>) {
+        self.0.lock().await.push(Box::pin(handler))
+    }
+
+    /// Runs all cleanup handlers. Following the documentation of [futures::future::try_join_all]:
+    /// If any cleanup handler returns an error then all other cleanup handlers will be canceled and
+    /// an error will be returned immediately. If all cleanup handlers complete successfully,
+    /// however, then the returned future will succeed with a Vec of all the successful results.
+    async fn run(self) -> Result<Vec<()>, Error> {
+        futures::future::try_join_all(self.0.lock().await.deref_mut()).await
     }
 }
 
 /// Sets up the rosenpass link and wireguard and configures both with the configuration specified by
 /// `options`.
+#[cfg(any(target_os = "linux", target_os = "freebsd"))]
 pub async fn exchange(options: ExchangeOptions) -> Result<()> {
-    // Load the server parameter files
-    let wgsk = options.private_keys_dir.join("wgsk");
-    let rpsk = options.private_keys_dir.join("pqsk");
-    let rppk = options.private_keys_dir.join("pqpk");
-    let (wgsk, rpsk, rppk) = spawn_blocking(move || {
-        let wgsk = WgSecretKey::load_b64::<WG_B64_LEN, _>(wgsk)?;
-        let rpsk = SSk::load(rpsk)?;
-        let wgpk = SPk::load(rppk)?;
-        anyhow::Ok((wgsk, rpsk, wgpk))
-    })
-    .await??;
+    use std::fs;
 
-    // Setup the WireGuard device
-    let device = options.dev.as_deref().unwrap_or("rosenpass0");
-    let mut device = WireGuardDevice::create_device(device.to_owned()).await?;
+    use anyhow::anyhow;
+    use netlink_packet_wireguard::{constants::WG_KEY_LEN, nlas::WgDeviceAttrs};
+    use rosenpass::{
+        app_server::{AppServer, BrokerPeer},
+        config::Verbosity,
+        protocol::{
+            basic_types::{SPk, SSk, SymKey},
+            osk_domain_separator::OskDomainSeparator,
+        },
+    };
+    use rosenpass_secret_memory::Secret;
+    use rosenpass_util::file::{LoadValue as _, LoadValueB64};
+    use rosenpass_wireguard_broker::brokers::native_unix::{
+        NativeUnixBroker, NativeUnixBrokerConfigBaseBuilder, NativeUnixBrokerConfigBaseBuilderError,
+    };
 
-    // Assign WG secret key & port
-    device
-        .set_private_key_and_listen_addr(&wgsk, options.listen.map(|ip| ip.port() + 1))
-        .await?;
-    std::mem::drop(wgsk);
+    let (connection, rtnetlink, _) = rtnetlink::new_connection()?;
+    tokio::spawn(connection);
 
-    // Assign the public IP address for the interface
-    if let Some(ref ip) = options.ip {
-        device.add_ip_address(ip).await?;
+    let link_name = options.dev.clone().unwrap_or("rosenpass0".to_string());
+    let link_index = netlink::link_create_and_up(&rtnetlink, link_name.clone()).await?;
+
+    // Set up a list of (initiallc empty) cleanup handlers that are to be run if
+    // ctrl-c is hit or generally a `SIGINT` signal is received and always in the end.
+    let cleanup_handlers = CleanupHandlers::new();
+    let final_cleanup_handlers = (&cleanup_handlers).clone();
+
+    cleanup_handlers
+        .enqueue(Box::pin(async move {
+            netlink::link_cleanup_standalone(link_index).await
+        }))
+        .await;
+
+    ctrlc_async::set_async_handler(async move {
+        final_cleanup_handlers
+            .run()
+            .await
+            .expect("Failed to clean up");
+    })?;
+
+    // Run `ip address add <ip> dev <dev>` and enqueue `ip address del <ip> dev <dev>` as a cleanup.
+    if let Some(ip) = options.ip {
+        let dev = options.dev.clone().unwrap_or("rosenpass0".to_string());
+        Command::new("ip")
+            .arg("address")
+            .arg("add")
+            .arg(ip.clone())
+            .arg("dev")
+            .arg(dev.clone())
+            .status()
+            .expect("failed to configure ip");
+        cleanup_handlers
+            .enqueue(Box::pin(async move {
+                Command::new("ip")
+                    .arg("address")
+                    .arg("del")
+                    .arg(ip)
+                    .arg("dev")
+                    .arg(dev)
+                    .status()
+                    .expect("failed to remove ip");
+                Ok(())
+            }))
+            .await;
     }
 
+    // Deploy the classic wireguard private key.
+    let (connection, mut genetlink, _) = genetlink::new_connection()?;
+    tokio::spawn(connection);
+
+    let wgsk_path = options.private_keys_dir.join("wgsk");
+
+    let wgsk = Secret::<WG_KEY_LEN>::load_b64::<WG_B64_LEN, _>(wgsk_path)?;
+
+    let mut attr: Vec<WgDeviceAttrs> = Vec::with_capacity(2);
+    attr.push(WgDeviceAttrs::PrivateKey(*wgsk.secret()));
+
+    if let Some(listen) = options.listen {
+        if listen.port() == u16::MAX {
+            return Err(anyhow!("You may not use {} as the listen port.", u16::MAX));
+        }
+
+        attr.push(WgDeviceAttrs::ListenPort(listen.port() + 1));
+    }
+
+    netlink::wg_set(&mut genetlink, link_index, attr).await?;
+
+    // set up the rosenpass AppServer
+    let pqsk = options.private_keys_dir.join("pqsk");
+    let pqpk = options.private_keys_dir.join("pqpk");
+
+    let sk = SSk::load(&pqsk)?;
+    let pk = SPk::load(&pqpk)?;
+
     let mut srv = Box::new(AppServer::new(
-        Some((rpsk, rppk)),
-        Vec::from_iter(options.listen),
-        match options.verbose {
-            true => Verbosity::Verbose,
-            false => Verbosity::Quiet,
+        Some((sk, pk)),
+        if let Some(listen) = options.listen {
+            vec![listen]
+        } else {
+            Vec::with_capacity(0)
+        },
+        if options.verbose {
+            Verbosity::Verbose
+        } else {
+            Verbosity::Quiet
         },
         None,
     )?);
 
     let broker_store_ptr = srv.register_broker(Box::new(NativeUnixBroker::new()))?;
 
+    fn cfg_err_map(e: NativeUnixBrokerConfigBaseBuilderError) -> anyhow::Error {
+        anyhow::Error::msg(format!("NativeUnixBrokerConfigBaseBuilderError: {:?}", e))
+    }
+
     // Configure everything per peer.
     for peer in options.peers {
-        // TODO: Some of this is sync but should be async
-        let wgpk = peer
-            .public_keys_dir
-            .join("wgpk")
-            .apply(tokio::fs::read_to_string)
-            .await?;
+        let wgpk = peer.public_keys_dir.join("wgpk");
         let pqpk = peer.public_keys_dir.join("pqpk");
         let psk = peer.public_keys_dir.join("psk");
-        let (pqpk, psk) = spawn_blocking(move || {
-            let pqpk = SPk::load(pqpk)?;
-            let psk = psk
-                .exists()
-                .then(|| SymKey::load_b64::<WG_B64_LEN, _>(psk))
-                .transpose()?;
-            anyhow::Ok((pqpk, psk))
-        })
-        .await??;
 
         let mut extra_params: Vec<String> = Vec::with_capacity(6);
         if let Some(endpoint) = peer.endpoint {
@@ -504,11 +342,11 @@ pub async fn exchange(options: ExchangeOptions) -> Result<()> {
         }
 
         let peer_cfg = NativeUnixBrokerConfigBaseBuilder::default()
-            .peer_id_b64(&wgpk)?
-            .interface(device.name().to_owned())
+            .peer_id_b64(&fs::read_to_string(wgpk)?)?
+            .interface(link_name.clone())
             .extra_params_ser(&extra_params)?
             .build()
-            .with_context(|| format!("Could not configure broker to supply keys from Rosenpass to WireGuard for peer {wgpk}."))?;
+            .map_err(cfg_err_map)?;
 
         let broker_peer = Some(BrokerPeer::new(
             broker_store_ptr.clone(),
@@ -516,8 +354,13 @@ pub async fn exchange(options: ExchangeOptions) -> Result<()> {
         ));
 
         srv.add_peer(
-            psk,
-            pqpk,
+            if psk.exists() {
+                Some(SymKey::load_b64::<WG_B64_LEN, _>(psk))
+            } else {
+                None
+            }
+            .transpose()?,
+            SPk::load(&pqpk)?,
             None,
             broker_peer,
             peer.endpoint.map(|x| x.to_string()),
@@ -529,13 +372,47 @@ pub async fn exchange(options: ExchangeOptions) -> Result<()> {
         // the cleanup as `ip route del <allowed_ips>`.
         if let Some(allowed_ips) = peer.allowed_ips {
             Command::new("ip")
-                .args(["route", "replace", &allowed_ips, "dev", device.name()])
+                .arg("route")
+                .arg("replace")
+                .arg(allowed_ips.clone())
+                .arg("dev")
+                .arg(options.dev.clone().unwrap_or("rosenpass0".to_string()))
                 .status()
-                .await
-                .with_context(|| format!("Could not configure routes for peer {wgpk}"))?;
+                .expect("failed to configure route");
+            cleanup_handlers
+                .enqueue(Box::pin(async move {
+                    Command::new("ip")
+                        .arg("route")
+                        .arg("del")
+                        .arg(allowed_ips)
+                        .status()
+                        .expect("failed to remove ip");
+                    Ok(())
+                }))
+                .await;
         }
     }
 
-    log::info!("Starting to perform rosenpass key exchanges!");
-    spawn_blocking(move || srv.event_loop()).await?
+    let out = srv.event_loop();
+
+    netlink::link_cleanup(&rtnetlink, link_index).await?;
+
+    match out {
+        Ok(_) => Ok(()),
+        Err(e) => {
+            // Check if the returned error is actually EINTR, in which case, the run actually
+            // succeeded.
+            let is_ok = if let Some(e) = e.root_cause().downcast_ref::<std::io::Error>() {
+                matches!(e.kind(), std::io::ErrorKind::Interrupted)
+            } else {
+                false
+            };
+
+            if is_ok {
+                Ok(())
+            } else {
+                Err(e)
+            }
+        }
+    }
 }

rp/src/main.rs

@@ -1,19 +1,59 @@
-#[cfg(any(target_os = "linux", target_os = "freebsd"))]
+use std::{fs, process::exit};
+
+use cli::{Cli, Command};
+use exchange::exchange;
+use key::{genkey, pubkey};
+use rosenpass_secret_memory::policy;
+
 mod cli;
-#[cfg(any(target_os = "linux", target_os = "freebsd"))]
 mod exchange;
-#[cfg(any(target_os = "linux", target_os = "freebsd"))]
 mod key;
 
-#[cfg(any(target_os = "linux", target_os = "freebsd"))]
-mod main_supported_platforms;
+#[tokio::main]
+async fn main() {
+    #[cfg(feature = "experiment_memfd_secret")]
+    policy::secret_policy_try_use_memfd_secrets();
+    #[cfg(not(feature = "experiment_memfd_secret"))]
+    policy::secret_policy_use_only_malloc_secrets();
 
-#[cfg(any(target_os = "linux", target_os = "freebsd"))]
-fn main() -> anyhow::Result<()> {
-    main_supported_platforms::main()
-}
+    let cli = match Cli::parse(std::env::args().peekable()) {
+        Ok(cli) => cli,
+        Err(err) => {
+            eprintln!("{}", err);
+            exit(1);
+        }
+    };
 
-#[cfg(not(any(target_os = "linux", target_os = "freebsd")))]
-fn main() {
-    panic!("Unfortunately, the rp command is currently not supported on your platform. See https://github.com/rosenpass/rosenpass/issues/689 for more information and discussion.")
+    let command = cli.command.unwrap();
+
+    let res = match command {
+        Command::GenKey { private_keys_dir } => genkey(&private_keys_dir),
+        Command::PubKey {
+            private_keys_dir,
+            public_keys_dir,
+        } => pubkey(&private_keys_dir, &public_keys_dir),
+        Command::Exchange(mut options) => {
+            options.verbose = cli.verbose;
+            exchange(options).await
+        }
+        Command::ExchangeConfig { config_file } => {
+            let s: String = fs::read_to_string(config_file).expect("cannot read config");
+            let mut options: exchange::ExchangeOptions =
+                toml::from_str::<exchange::ExchangeOptions>(&s).expect("cannot parse config");
+            options.verbose = options.verbose || cli.verbose;
+            exchange(options).await
+        }
+        Command::Help => {
+            println!("Usage: rp [verbose] genkey|pubkey|exchange [ARGS]...");
+            Ok(())
+        }
+    };
+
+    match res {
+        Ok(_) => {}
+        Err(err) => {
+            eprintln!("An error occurred: {}", err);
+            exit(1);
+        }
+    }
 }

rp/src/main_supported_platforms.rs

@@ -1,58 +0,0 @@
-use std::{fs, process::exit};
-
-use rosenpass_util::tokio::janitor::ensure_janitor;
-
-use rosenpass_secret_memory::policy;
-
-use crate::cli::{Cli, Command};
-use crate::exchange::{exchange, ExchangeOptions};
-use crate::key::{genkey, pubkey};
-
-#[tokio::main]
-pub async fn main() -> anyhow::Result<()> {
-    #[cfg(feature = "experiment_memfd_secret")]
-    policy::secret_policy_try_use_memfd_secrets();
-    #[cfg(not(feature = "experiment_memfd_secret"))]
-    policy::secret_policy_use_only_malloc_secrets();
-
-    ensure_janitor(async move { main_impl().await }).await
-}
-
-async fn main_impl() -> anyhow::Result<()> {
-    let cli = match Cli::parse(std::env::args().peekable()) {
-        Ok(cli) => cli,
-        Err(err) => {
-            eprintln!("{}", err);
-            exit(1);
-        }
-    };
-
-    // init logging
-    // TODO: Taken from rosenpass; we should deduplicate the code.
-    env_logger::Builder::from_default_env().init(); // sets log level filter from environment (or defaults)
-
-    let command = cli.command.unwrap();
-
-    match command {
-        Command::GenKey { private_keys_dir } => genkey(&private_keys_dir),
-        Command::PubKey {
-            private_keys_dir,
-            public_keys_dir,
-        } => pubkey(&private_keys_dir, &public_keys_dir),
-        Command::Exchange(mut options) => {
-            options.verbose = cli.verbose;
-            exchange(options).await
-        }
-        Command::ExchangeConfig { config_file } => {
-            let s: String = fs::read_to_string(config_file).expect("cannot read config");
-            let mut options: ExchangeOptions =
-                toml::from_str::<ExchangeOptions>(&s).expect("cannot parse config");
-            options.verbose = options.verbose || cli.verbose;
-            exchange(options).await
-        }
-        Command::Help => {
-            println!("Usage: rp [verbose] genkey|pubkey|exchange [ARGS]...");
-            Ok(())
-        }
-    }
-}

rp/tests/smoketest.rs

@@ -1,6 +1,5 @@
 use std::process::Command;
 
-#[cfg(any(target_os = "linux", target_os = "freebsd"))]
 #[test]
 fn smoketest() -> anyhow::Result<()> {
     let tmpdir = tempfile::tempdir()?;

secret-memory/src/secret.rs

@@ -379,7 +379,10 @@ impl<const N: usize> StoreSecret for Secret<N> {
 
 #[cfg(test)]
 mod test {
-    use crate::{secret_policy_use_only_malloc_secrets, test_spawn_process_provided_policies};
+    use crate::{
+        secret_policy_try_use_memfd_secrets, secret_policy_use_only_malloc_secrets,
+        test_spawn_process_provided_policies,
+    };
 
     use super::*;
     use std::{fs, os::unix::fs::PermissionsExt};

supply-chain/config.toml

@@ -630,11 +630,7 @@ version = "3.2.0"
 criteria = "safe-to-run"
 
 [[exemptions.signal-hook]]
-version = "0.3.18"
-criteria = "safe-to-deploy"
-
-[[exemptions.signal-hook-mio]]
-version = "0.2.4"
+version = "0.3.17"
 criteria = "safe-to-deploy"
 
 [[exemptions.signal-hook-registry]]

util/Cargo.toml

@@ -25,15 +25,7 @@ mio = { workspace = true }
 tempfile = { workspace = true }
 uds = { workspace = true, optional = true, features = ["mio_1xx"] }
 libcrux-test-utils = { workspace = true, optional = true }
-tokio = { workspace = true, optional = true, features = [
-  "macros",
-  "rt-multi-thread",
-  "sync",
-  "time",
-] }
-log = { workspace = true }
 
 [features]
 experiment_file_descriptor_passing = ["uds"]
 trace_bench = ["dep:libcrux-test-utils"]
-tokio = ["dep:tokio"]

util/src/fmt/debug.rs

@@ -1,82 +0,0 @@
-//! Helpers for string formatting with the debug formatter; extensions for [std::fmt::Debug]
-
-use std::any::type_name;
-use std::borrow::{Borrow, BorrowMut};
-use std::ops::{Deref, DerefMut};
-
-/// Debug formatter which just prints the type name;
-/// used to wrap values which do not support the Debug
-/// trait themselves
-///
-/// # Examples
-///
-/// ```rust
-/// use rosenpass_util::fmt::debug::NullDebug;
-///
-/// // Does not implement debug
-/// struct NoDebug;
-///
-/// #[derive(Debug)]
-/// struct ShouldSupportDebug {
-///     #[allow(dead_code)]
-///     no_debug: NullDebug<NoDebug>,
-/// }
-///
-/// let val = ShouldSupportDebug {
-///     no_debug: NullDebug(NoDebug),
-/// };
-/// ```
-pub struct NullDebug<T>(pub T);
-
-impl<T> std::fmt::Debug for NullDebug<T> {
-    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
-        f.write_str("NullDebug<")?;
-        f.write_str(type_name::<T>())?;
-        f.write_str(">")?;
-        Ok(())
-    }
-}
-
-impl<T> From<T> for NullDebug<T> {
-    fn from(value: T) -> Self {
-        NullDebug(value)
-    }
-}
-
-impl<T> Deref for NullDebug<T> {
-    type Target = T;
-
-    fn deref(&self) -> &Self::Target {
-        self.0.borrow()
-    }
-}
-
-impl<T> DerefMut for NullDebug<T> {
-    fn deref_mut(&mut self) -> &mut Self::Target {
-        self.0.borrow_mut()
-    }
-}
-
-impl<T> Borrow<T> for NullDebug<T> {
-    fn borrow(&self) -> &T {
-        self.deref()
-    }
-}
-
-impl<T> BorrowMut<T> for NullDebug<T> {
-    fn borrow_mut(&mut self) -> &mut T {
-        self.deref_mut()
-    }
-}
-
-impl<T> AsRef<T> for NullDebug<T> {
-    fn as_ref(&self) -> &T {
-        self.deref()
-    }
-}
-
-impl<T> AsMut<T> for NullDebug<T> {
-    fn as_mut(&mut self) -> &mut T {
-        self.deref_mut()
-    }
-}

util/src/fmt/mod.rs

@@ -1,3 +0,0 @@
-//! Helpers for string formatting; extensions for [std::fmt]
-
-pub mod debug;

util/src/lib.rs

@@ -14,7 +14,6 @@ pub mod controlflow;
 pub mod fd;
 /// File system operations and handling.
 pub mod file;
-pub mod fmt;
 /// Functional programming utilities.
 pub mod functional;
 /// Input/output operations.
@@ -31,8 +30,6 @@ pub mod option;
 pub mod result;
 /// Time and duration utilities.
 pub mod time;
-#[cfg(feature = "tokio")]
-pub mod tokio;
 /// Trace benchmarking utilities
 #[cfg(feature = "trace_bench")]
 pub mod trace_bench;

util/src/mio/uds_recv_fd.rs

@@ -39,7 +39,7 @@ use crate::fd::{claim_fd_inplace, IntoStdioErr};
 ///	&io_stream,
 ///	&mut read_fd_buffer,
 /// );
-///
+////
 /// // Simulated reads; the actual operations will depend on the protocol (implementation details)
 /// let mut recv_buffer = Vec::<u8>::new();
 /// let bytes_read = fd_passing_sock.read(&mut recv_buffer[..]).expect("error reading from socket");

util/src/tokio/janitor.rs

@@ -1,618 +0,0 @@
-//! Facilities to spawn tasks that will be reliably executed
-//! before the current tokio context finishes.
-//!
-//! Asynchronous applications often need to manage multiple parallel tasks.
-//! Tokio supports spawning these tasks with [tokio::task::spawn], but when the
-//! tokio event loop exits, all lingering background tasks will aborted.
-//!
-//! Tokio supports managing multiple parallel tasks, all of which should exit successfully, through
-//! [tokio::task::JoinSet]. This is a useful and very explicit API. To launch a background job,
-//! user code needs to be aware of which JoinSet to use, so this can lead to a JoinSet needing to
-//! be handed around in many parts of the application.
-//!
-//! This level of explicitness avoids bugs, but it can be cumbersome to use and it can introduce a
-//! [function coloring](https://morestina.net/1686/rust-async-is-colored) issue;
-//! creating a strong distinction between functions which have access
-//! to a JoinSet (one color) and those that have not (the other color). Functions with the color
-//! that has access to a JoinSet can call those functions that do not need access, but not the
-//! other way around. This can make refactoring quite difficult: your refactor needs to use a
-//! function that requires a JoinSet? Then have fun spending quite a bit of time recoloring
-//! possibly many parts of your code base.
-//!
-//! This module solves this issue by essentially registering a central [JoinSet] through ambient
-//! (semi-global), task-local variables. The mechanism to register this task-local JoinSet is
-//! [tokio::task_local].
-//!
-//! # Error-handling
-//!
-//! The janitor accepts daemons/cleanup jobs which return an [anyhow::Error].
-//! When any daemon returns an error, then the entire janitor will immediately exit with a failure
-//! without awaiting the other registered tasks.
-//!
-//! The janitor can generally produce errors in three scenarios:
-//!
-//! - A daemon panics
-//! - A daemon returns an error
-//! - An internal error
-//!
-//! When [enter_janitor]/[ensure_janitor] is used to set up a janitor, these functions will always
-//! panic in case of a janitor error. **This also means, that these functions panic if any daemon
-//! returns an error**.
-//!
-//! You can explicitly handle janitor errors through [try_enter_janitor]/[try_ensure_janitor].
-//!
-//! # Examples
-//!
-#![doc = "```ignore"]
-#![doc = include_str!("../../tests/janitor.rs")]
-#![doc = "```"]
-
-use std::any::type_name;
-use std::future::Future;
-
-use anyhow::{bail, Context};
-
-use tokio::task::{AbortHandle, JoinError, JoinHandle, JoinSet};
-use tokio::task_local;
-
-use tokio::sync::mpsc::unbounded_channel as janitor_channel;
-
-use crate::tokio::local_key::LocalKeyExt;
-
-/// Type for the message queue from [JanitorClient]/[JanitorSupervisor] to [JanitorAgent]: Receiving side
-type JanitorQueueRx = tokio::sync::mpsc::UnboundedReceiver<JanitorTicket>;
-/// Type for the message queue from [JanitorClient]/[JanitorSupervisor] to [JanitorAgent]: Sending side
-type JanitorQueueTx = tokio::sync::mpsc::UnboundedSender<JanitorTicket>;
-/// Type for the message queue from [JanitorClient]/[JanitorSupervisor] to [JanitorAgent]: Sending side, Weak reference
-type WeakJanitorQueueTx = tokio::sync::mpsc::WeakUnboundedSender<JanitorTicket>;
-
-/// Type of the return value for jobs submitted to [spawn_daemon]/[spawn_cleanup_job]
-type CleanupJobResult = anyhow::Result<()>;
-/// Handle by which we internally refer to cleanup jobs submitted by [spawn_daemon]/[spawn_cleanup_job]
-/// to the current [JanitorAgent]
-type CleanupJob = JoinHandle<CleanupJobResult>;
-
-task_local! {
-    /// Handle to the current [JanitorAgent]; this is where [ensure_janitor]/[enter_janitor]
-    /// register the newly created janitor
-    static CURRENT_JANITOR: JanitorClient;
-}
-
-/// Messages supported by [JanitorAgent]
-#[derive(Debug)]
-enum JanitorTicket {
-    /// This message transmits a new cleanup job to the [JanitorAgent]
-    CleanupJob(CleanupJob),
-}
-
-/// Represents the background task which actually manages cleanup jobs.
-///
-/// This is what is started by [enter_janitor]/[ensure_janitor]
-/// and what receives the messages sent by [JanitorSupervisor]/[JanitorClient]
-#[derive(Debug)]
-struct JanitorAgent {
-    /// Background tasks currently registered with this agent.
-    ///
-    /// This contains two types of tasks:
-    ///
-    /// 1. Background jobs launched through [enter_janitor]/[ensure_janitor]
-    /// 2. A single task waiting for new [JanitorTicket]s being transmitted from a [JanitorSupervisor]/[JanitorClient]
-    tasks: JoinSet<AgentInternalEvent>,
-    /// Whether this [JanitorAgent] will ever receive new [JanitorTicket]s
-    ///
-    /// Communication between [JanitorAgent] and [JanitorSupervisor]/[JanitorClient] uses a message
-    /// queue (see [JanitorQueueTx]/[JanitorQueueRx]/[WeakJanitorQueueTx]), but you may notice that
-    /// the Agent does not actually contain a field storing the message queue.
-    /// Instead, to appease the borrow checker, the message queue is moved into the internal
-    /// background task (see [Self::tasks]) that waits for new [JanitorTicket]s.
-    ///
-    /// Since our state machine still needs to know, whether that queue is closed, we maintain this
-    /// flag.
-    ///
-    /// See [AgentInternalEvent::TicketQueueClosed].
-    ticket_queue_closed: bool,
-}
-
-/// These are the return values (events) returned by [JanitorAgent] internal tasks (see
-/// [JanitorAgent::tasks]).
-#[derive(Debug)]
-enum AgentInternalEvent {
-    /// Notifies the [JanitorAgent] state machine that a cleanup job finished successfully
-    ///
-    /// Sent by genuine background tasks registered through [enter_janitor]/[ensure_janitor].
-    CleanupJobSuccessful,
-    /// Notifies the [JanitorAgent] state machine that a cleanup job finished with a tokio
-    /// [JoinError].
-    ///
-    /// Sent by genuine background tasks registered through [enter_janitor]/[ensure_janitor].
-    CleanupJobJoinError(JoinError),
-    /// Notifies the [JanitorAgent] state machine that a cleanup job returned an error.
-    ///
-    /// Sent by genuine background tasks registered through [enter_janitor]/[ensure_janitor].
-    CleanupJobReturnedError(anyhow::Error),
-    /// Notifies the [JanitorAgent] state machine that a new cleanup job was received through the
-    /// ticket queue.
-    ///
-    /// Sent by the background task managing the ticket queue.
-    ReceivedCleanupJob(JanitorQueueRx, CleanupJob),
-    /// Notifies the [JanitorAgent] state machine that a new cleanup job was received through the
-    /// ticket queue.
-    ///
-    /// Sent by the background task managing the ticket queue.
-    ///
-    /// See [JanitorAgent::ticket_queue_closed].
-    TicketQueueClosed,
-}
-
-impl JanitorAgent {
-    /// Create a new agent. Start with [Self::start].
-    fn new() -> Self {
-        let tasks = JoinSet::new();
-        let ticket_queue_closed = false;
-        Self {
-            tasks,
-            ticket_queue_closed,
-        }
-    }
-
-    /// Main entry point for the [JanitorAgent]. Launches the background task and returns a [JanitorSupervisor]
-    /// which can be used to send tickets to the agent and to wait for agent termination.
-    pub async fn start() -> JanitorSupervisor {
-        let (queue_tx, queue_rx) = janitor_channel();
-        let join_handle = tokio::spawn(async move { Self::new().event_loop(queue_rx).await });
-        JanitorSupervisor::new(join_handle, queue_tx)
-    }
-
-    /// Event loop, processing events from the ticket queue and from [Self::tasks]
-    async fn event_loop(&mut self, queue_rx: JanitorQueueRx) -> anyhow::Result<()> {
-        // Seed the internal task list with a single task to receive
-        self.spawn_internal_recv_ticket_task(queue_rx).await;
-
-        // Process all incoming events until handle_one_event indicates there are
-        // no more events to process
-        while self.handle_one_event().await?.is_some() {}
-
-        Ok(())
-    }
-
-    /// Process events from [Self::tasks] (and by proxy from the ticket queue)
-    ///
-    /// This is the agent's main state machine.
-    async fn handle_one_event(&mut self) -> anyhow::Result<Option<()>> {
-        use AgentInternalEvent as E;
-        match (self.tasks.join_next().await, self.ticket_queue_closed) {
-            // Normal, successful operation
-
-            // CleanupJob exited successfully, no action neccesary
-            (Some(Ok(E::CleanupJobSuccessful)), _) => Ok(Some(())),
-
-            // New cleanup job scheduled, add to task list and wait for another task
-            (Some(Ok(E::ReceivedCleanupJob(queue_rx, job))), _) => {
-                self.spawn_internal_recv_ticket_task(queue_rx).await;
-                self.spawn_internal_cleanup_task(job).await;
-                Ok(Some(()))
-            }
-
-            // Ticket queue is closed; now we are just waiting for the remaining cleanup jobs
-            // to terminate
-            (Some(Ok(E::TicketQueueClosed)), _) => {
-                self.ticket_queue_closed = true;
-                Ok(Some(()))
-            }
-
-            // No more tasks in the task manager and the ticket queue is already closed.
-            // This just means we are done and can finally terminate the janitor agent
-            (Option::None, true) => Ok(None),
-
-            // Error handling
-
-            // User callback errors
-
-            // Some cleanup job returned an error as a result
-            (Some(Ok(E::CleanupJobReturnedError(err))), _) => Err(err).with_context(|| {
-                format!("Error in cleanup job handled by {}", type_name::<Self>())
-            }),
-
-            // JoinError produced by the user task: The user task was cancelled.
-            (Some(Ok(E::CleanupJobJoinError(err))), _) if err.is_cancelled() => Err(err).with_context(|| {
-                format!(
-                    "Error in cleanup job handled by {me}; the cleanup task was cancelled.
-                    This should not happend and likely indicates a developer error in {me}.",
-                    me = type_name::<Self>()
-                )
-            }),
-
-            // JoinError produced by the user task: The user task panicked
-            (Some(Ok(E::CleanupJobJoinError(err))), _) => Err(err).with_context(|| {
-                format!(
-                    "Error in cleanup job handled by {}; looks like the cleanup task panicked.",
-                    type_name::<Self>()
-                )
-            }),
-
-            // Internal errors: Internal task error
-
-            // JoinError produced by JoinSet::join_next(): The internal task was cancelled
-            (Some(Err(err)), _) if err.is_cancelled() => Err(err).with_context(|| {
-                format!(
-                    "Internal error in {me}; internal async task was cancelled. \
-                    This is probably a developer error in {me}.",
-                    me = type_name::<Self>()
-                )
-            }),
-
-            // JoinError produced by JoinSet::join_next(): The internal task panicked
-            (Some(Err(err)), _) => Err(err).with_context(|| {
-                format!(
-                    "Internal error in {me}; internal async task panicked. \
-                    This is probably a developer error in {me}.",
-                    me = type_name::<Self>()
-                )
-            }),
-
-
-            // Internal errors: State machine failure
-
-            // No tasks left, but ticket queue was not drained
-            (Option::None, false) => bail!("Internal error in {me}::handle_one_event(); \
-                there are no more internal tasks active, but the ticket queue was not drained. \
-                The {me}::handle_one_event() code is deliberately designed to never leave the internal task set empty; \
-                instead, there should always be one task to receive new cleanup jobs from the task queue unless the task \
-                queue has been closed. \
-                This is probably a developer error.",
-                me = type_name::<Self>())
-        }
-    }
-
-    /// Used by [Self::event_loop] and [Self::handle_one_event] to start the internal
-    /// task waiting for tickets on the ticket queue.
-    async fn spawn_internal_recv_ticket_task(
-        &mut self,
-        mut queue_rx: JanitorQueueRx,
-    ) -> AbortHandle {
-        self.tasks.spawn(async {
-            use AgentInternalEvent as E;
-            use JanitorTicket as T;
-
-            let ticket = queue_rx.recv().await;
-            match ticket {
-                Some(T::CleanupJob(job)) => E::ReceivedCleanupJob(queue_rx, job),
-                Option::None => E::TicketQueueClosed,
-            }
-        })
-    }
-
-    /// Used by [Self::event_loop] and [Self::handle_one_event] to register
-    /// background deamons/cleanup jobs submitted via [JanitorTicket]
-    async fn spawn_internal_cleanup_task(&mut self, job: CleanupJob) -> AbortHandle {
-        self.tasks.spawn(async {
-            use AgentInternalEvent as E;
-            match job.await {
-                Ok(Ok(())) => E::CleanupJobSuccessful,
-                Ok(Err(e)) => E::CleanupJobReturnedError(e),
-                Err(e) => E::CleanupJobJoinError(e),
-            }
-        })
-    }
-}
-
-/// Client for [JanitorAgent]. Allows for [JanitorTicket]s (background jobs)
-/// to be transmitted to the current [JanitorAgent].
-///
-/// This is stored in [CURRENT_JANITOR] as a task.-local variable.
-#[derive(Debug)]
-struct JanitorClient {
-    /// Queue we can use to send messages to the current janitor
-    queue_tx: WeakJanitorQueueTx,
-}
-
-impl JanitorClient {
-    /// Create a new client. Use through [JanitorSupervisor::get_client]
-    fn new(queue_tx: WeakJanitorQueueTx) -> Self {
-        Self { queue_tx }
-    }
-
-    /// Has the associated [JanitorAgent] shut down?
-    pub fn is_closed(&self) -> bool {
-        self.queue_tx
-            .upgrade()
-            .map(|channel| channel.is_closed())
-            .unwrap_or(false)
-    }
-
-    /// Spawn a new cleanup job/daemon with the associated [JanitorAgent].
-    ///
-    /// Used internally by [spawn_daemon]/[spawn_cleanup_job].
-    pub fn spawn_cleanup_task<F>(&self, future: F) -> Result<(), TrySpawnCleanupJobError>
-    where
-        F: Future<Output = anyhow::Result<()>> + Send + 'static,
-    {
-        let background_task = tokio::spawn(future);
-        self.queue_tx
-            .upgrade()
-            .ok_or(TrySpawnCleanupJobError::ActiveJanitorTerminating)?
-            .send(JanitorTicket::CleanupJob(background_task))
-            .map_err(|_| TrySpawnCleanupJobError::ActiveJanitorTerminating)
-    }
-}
-
-/// Client for [JanitorAgent]. Allows waiting for [JanitorAgent] termination as well as creating
-/// [JanitorClient]s, which in turn can be used to submit background daemons/termination jobs
-/// to the agent.
-#[derive(Debug)]
-struct JanitorSupervisor {
-    /// Represents the tokio task associated with the [JanitorAgent].
-    ///
-    /// We use this to wait for [JanitorAgent] termination in [enter_janitor]/[ensure_janitor]
-    agent_join_handle: CleanupJob,
-    /// Queue we can use to send messages to the current janitor
-    queue_tx: JanitorQueueTx,
-}
-
-impl JanitorSupervisor {
-    /// Create a new janitor supervisor. Use through [JanitorAgent::start]
-    pub fn new(agent_join_handle: CleanupJob, queue_tx: JanitorQueueTx) -> Self {
-        Self {
-            agent_join_handle,
-            queue_tx,
-        }
-    }
-
-    /// Create a [JanitorClient] for submitting background daemons/cleanup jobs
-    pub fn get_client(&self) -> JanitorClient {
-        JanitorClient::new(self.queue_tx.clone().downgrade())
-    }
-
-    /// Wait for [JanitorAgent] termination
-    pub async fn terminate_janitor(self) -> anyhow::Result<()> {
-        std::mem::drop(self.queue_tx);
-        self.agent_join_handle.await?
-    }
-}
-
-/// Return value of [try_enter_janitor].
-#[derive(Debug)]
-pub struct EnterJanitorResult<T, E> {
-    /// The result produced by the janitor itself.
-    ///
-    /// This may contain an error if one of the background daemons/cleanup tasks returned an error,
-    /// panicked, or in case there is an internal error in the janitor.
-    pub janitor_result: anyhow::Result<()>,
-    /// Contains the result of the future passed to [try_enter_janitor].
-    pub callee_result: Result<T, E>,
-}
-
-impl<T, E> EnterJanitorResult<T, E> {
-    /// Create a new result from its components
-    pub fn new(janitor_result: anyhow::Result<()>, callee_result: Result<T, E>) -> Self {
-        Self {
-            janitor_result,
-            callee_result,
-        }
-    }
-
-    /// Turn this named type into a tuple
-    pub fn into_tuple(self) -> (anyhow::Result<()>, Result<T, E>) {
-        (self.janitor_result, self.callee_result)
-    }
-
-    /// Panic if [Self::janitor_result] contains an error; returning [Self::callee_result]
-    /// otherwise.
-    ///
-    /// If this panics and both [Self::janitor_result] and [Self::callee_result] contain an error,
-    /// this will print both errors.
-    pub fn unwrap_janitor_result(self) -> Result<T, E>
-    where
-        E: std::fmt::Debug,
-    {
-        let me: EnsureJanitorResult<T, E> = self.into();
-        me.unwrap_janitor_result()
-    }
-
-    /// Panic if [Self::janitor_result] or [Self::callee_result] contain an error,
-    /// returning the Ok value of [Self::callee_result].
-    ///
-    /// If this panics and both [Self::janitor_result] and [Self::callee_result] contain an error,
-    /// this will print both errors.
-    pub fn unwrap(self) -> T
-    where
-        E: std::fmt::Debug,
-    {
-        let me: EnsureJanitorResult<T, E> = self.into();
-        me.unwrap()
-    }
-}
-
-/// Return value of [try_ensure_janitor]. The only difference compared to [EnterJanitorResult]
-/// is that [Self::janitor_result] contains None in case an ambient janitor had already existed.
-#[derive(Debug)]
-pub struct EnsureJanitorResult<T, E> {
-    /// See [EnterJanitorResult::janitor_result]
-    ///
-    /// This is:
-    ///
-    /// - `None` if a pre-existing ambient janitor was used
-    /// - `Some(Ok(()))` if a new janitor had to be created and it exited successfully
-    /// - `Some(Err(...))` if a new janitor had to be created and it exited with an error
-    pub janitor_result: Option<anyhow::Result<()>>,
-    /// See [EnterJanitorResult::callee]
-    pub callee_result: Result<T, E>,
-}
-
-impl<T, E> EnsureJanitorResult<T, E> {
-    /// See [EnterJanitorResult::new]
-    pub fn new(janitor_result: Option<anyhow::Result<()>>, callee_result: Result<T, E>) -> Self {
-        Self {
-            janitor_result,
-            callee_result,
-        }
-    }
-
-    /// Sets up a [EnsureJanitorResult] with [EnsureJanitorResult::janitor_result] = None.
-    pub fn from_callee_result(callee_result: Result<T, E>) -> Self {
-        Self::new(None, callee_result)
-    }
-
-    /// Turn this named type into a tuple
-    pub fn into_tuple(self) -> (Option<anyhow::Result<()>>, Result<T, E>) {
-        (self.janitor_result, self.callee_result)
-    }
-
-    /// See [EnterJanitorResult::unwrap_janitor_result]
-    ///
-    /// If [Self::janitor_result] is None, this won't panic.
-    pub fn unwrap_janitor_result(self) -> Result<T, E>
-    where
-        E: std::fmt::Debug,
-    {
-        match self.into_tuple() {
-            (Some(Ok(())) | None, res) => res,
-            (Some(Err(err)), Ok(_)) => panic!(
-                "Callee in enter_janitor()/ensure_janitor() was successful, \
-                but the janitor or some of its deamons failed: {err:?}"
-            ),
-            (Some(Err(jerr)), Err(cerr)) => panic!(
-                "Both the calee and the janitor or \
-                some of its deamons falied in enter_janitor()/ensure_janitor():\n\
-                \n\
-                Janitor/Daemon error: {jerr:?}
-                \n\
-                Callee error: {cerr:?}"
-            ),
-        }
-    }
-
-    /// See [EnterJanitorResult::unwrap]
-    ///
-    /// If [Self::janitor_result] is None, this is not considered a failure.
-    pub fn unwrap(self) -> T
-    where
-        E: std::fmt::Debug,
-    {
-        match self.unwrap_janitor_result() {
-            Ok(val) => val,
-            Err(err) => panic!(
-                "Janitor or and its deamons in in enter_janitor()/ensure_janitor() was successful, \
-                but the callee itself failed: {err:?}"
-            ),
-        }
-    }
-}
-
-impl<T, E> From<EnterJanitorResult<T, E>> for EnsureJanitorResult<T, E> {
-    fn from(val: EnterJanitorResult<T, E>) -> Self {
-        EnsureJanitorResult::new(Some(val.janitor_result), val.callee_result)
-    }
-}
-
-/// Non-panicking version of [enter_janitor].
-pub async fn try_enter_janitor<T, E, F>(future: F) -> EnterJanitorResult<T, E>
-where
-    T: 'static,
-    F: Future<Output = Result<T, E>> + 'static,
-{
-    let janitor_handle = JanitorAgent::start().await;
-    let callee_result = CURRENT_JANITOR
-        .scope(janitor_handle.get_client(), future)
-        .await;
-    let janitor_result = janitor_handle.terminate_janitor().await;
-    EnterJanitorResult::new(janitor_result, callee_result)
-}
-
-/// Non-panicking version of [ensure_janitor]
-pub async fn try_ensure_janitor<T, E, F>(future: F) -> EnsureJanitorResult<T, E>
-where
-    T: 'static,
-    F: Future<Output = Result<T, E>> + 'static,
-{
-    match CURRENT_JANITOR.is_set() {
-        true => EnsureJanitorResult::from_callee_result(future.await),
-        false => try_enter_janitor(future).await.into(),
-    }
-}
-
-/// Register a janitor that can be used to register background daemons/cleanup jobs **only within
-/// the future passed to this**.
-///
-/// The function will wait for both the given future and all background jobs registered with the
-/// janitor to terminate.
-///
-/// For a version that does not panick, see [try_enter_janitor].
-pub async fn enter_janitor<T, E, F>(future: F) -> Result<T, E>
-where
-    T: 'static,
-    E: std::fmt::Debug,
-    F: Future<Output = Result<T, E>> + 'static,
-{
-    try_enter_janitor(future).await.unwrap_janitor_result()
-}
-
-/// Variant of [enter_janitor] that will first check if a janitor already exists.
-/// A new janitor is only set up, if no janitor has been previously registered.
-pub async fn ensure_janitor<T, E, F>(future: F) -> Result<T, E>
-where
-    T: 'static,
-    E: std::fmt::Debug,
-    F: Future<Output = Result<T, E>> + 'static,
-{
-    try_ensure_janitor(future).await.unwrap_janitor_result()
-}
-
-/// Error returned by [try_spawn_cleanup_job]
-#[derive(thiserror::Error, Debug)]
-pub enum TrySpawnCleanupJobError {
-    /// No active janitor exists
-    #[error("No janitor registered. Did the developer forget to call enter_janitor(…) or ensure_janitor(…)?")]
-    NoActiveJanitor,
-    /// The currently active janitor is in the process of terminating
-    #[error("There is a registered janitor, but it is currently in the process of terminating and won't accept new tasks.")]
-    ActiveJanitorTerminating,
-}
-
-/// Check whether a janitor has been set up with [enter_janitor]/[ensure_janitor]
-pub fn has_active_janitor() -> bool {
-    CURRENT_JANITOR
-        .try_with(|client| client.is_closed())
-        .unwrap_or(false)
-}
-
-/// Non-panicking variant of [spawn_cleanup_job].
-///
-/// This function is available under two names; see [spawn_cleanup_job] for details about this:
-///
-/// 1. [try_spawn_cleanup_job]
-/// 2. [try_spawn_daemon]
-pub fn try_spawn_cleanup_job<F>(future: F) -> Result<(), TrySpawnCleanupJobError>
-where
-    F: Future<Output = anyhow::Result<()>> + Send + 'static,
-{
-    CURRENT_JANITOR
-        .try_with(|client| client.spawn_cleanup_task(future))
-        .map_err(|_| TrySpawnCleanupJobError::NoActiveJanitor)??;
-    Ok(())
-}
-
-/// Register a cleanup job or a daemon with the current janitor registered through
-/// [enter_janitor]/[ensure_janitor]:
-///
-/// This function is available under two names:
-///
-/// 1. [spawn_cleanup_job]
-/// 2. [spawn_daemon]
-///
-/// The first name should be used in destructors and to spawn cleanup actions which immediately
-/// begin their task.
-///
-/// The second name should be used for any other tasks; e.g. when the janitor setup is used to
-/// manage multiple parallel jobs, all of which must be waited for.
-pub fn spawn_cleanup_job<F>(future: F)
-where
-    F: Future<Output = anyhow::Result<()>> + Send + 'static,
-{
-    if let Err(e) = try_spawn_cleanup_job(future) {
-        panic!("Could not spawn cleanup job/daemon: {e:?}");
-    }
-}
-
-pub use spawn_cleanup_job as spawn_daemon;
-pub use try_spawn_cleanup_job as try_spawn_daemon;

util/src/tokio/local_key.rs

@@ -1,13 +0,0 @@
-//! Helpers for [tokio::task::LocalKey]
-
-/// Extension trait for [tokio::task::LocalKey]
-pub trait LocalKeyExt {
-    /// Check whether a tokio LocalKey is set
-    fn is_set(&'static self) -> bool;
-}
-
-impl<T: 'static> LocalKeyExt for tokio::task::LocalKey<T> {
-    fn is_set(&'static self) -> bool {
-        self.try_with(|_| ()).is_ok()
-    }
-}

util/src/tokio/mod.rs

@@ -1,4 +0,0 @@
-//! Tokio-related utilities
-
-pub mod janitor;
-pub mod local_key;

util/tests/janitor.rs

@@ -1,85 +0,0 @@
-#![cfg(feature = "tokio")]
-
-use std::sync::atomic::{AtomicUsize, Ordering};
-use std::sync::Arc;
-use std::time::Duration;
-
-use tokio::time::sleep;
-
-use rosenpass_util::tokio::janitor::{enter_janitor, spawn_cleanup_job, try_spawn_daemon};
-
-#[tokio::test]
-async fn janitor_demo() -> anyhow::Result<()> {
-    let count = Arc::new(AtomicUsize::new(0));
-
-    // Make sure the program has access to an ambient janitor
-    {
-        let count = count.clone();
-        enter_janitor(async move {
-            let _drop_guard = AsyncDropDemo::new(count.clone()).await;
-
-            // Start a background job
-            {
-                let count = count.clone();
-                try_spawn_daemon(async move {
-                    for _ in 0..17 {
-                        count.fetch_add(1, Ordering::Relaxed);
-                        sleep(Duration::from_micros(200)).await;
-                    }
-                    Ok(())
-                })?;
-            }
-
-            // Start another
-            {
-                let count = count.clone();
-                try_spawn_daemon(async move {
-                    for _ in 0..6 {
-                        count.fetch_add(100, Ordering::Relaxed);
-                        sleep(Duration::from_micros(800)).await;
-                    }
-                    Ok(())
-                })?;
-            }
-
-            // Note how this function just starts a couple background jobs, but exits immediately
-
-            anyhow::Ok(())
-        })
-    }
-    .await;
-
-    // At this point, all background jobs have finished, now we can check the result of all our
-    // additions
-    assert_eq!(count.load(Ordering::Acquire), 41617);
-
-    Ok(())
-}
-
-/// Demo of how janitor can be used to implement async destructors
-struct AsyncDropDemo {
-    count: Arc<AtomicUsize>,
-}
-
-impl AsyncDropDemo {
-    async fn new(count: Arc<AtomicUsize>) -> Self {
-        count.fetch_add(1000, Ordering::Relaxed);
-        sleep(Duration::from_micros(50)).await;
-        AsyncDropDemo { count }
-    }
-}
-
-impl Drop for AsyncDropDemo {
-    fn drop(&mut self) {
-        let count = self.count.clone();
-        // This necessarily uses the panicking variant;
-        // we use spawn_cleanup_job because this makes more semantic sense in this context
-        spawn_cleanup_job(async move {
-            for _ in 0..4 {
-                count.fetch_add(10000, Ordering::Relaxed);
-                sleep(Duration::from_micros(800)).await;
-            }
-            Ok(())
-        })
-    }
-}