doc: document generating bindings with prebuilt libs2n #4872
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change | ||||
|---|---|---|---|---|---|---|
| @@ -1,3 +1,43 @@ | ||||||
| This crates provides low level rust bindings for [s2n-tls](https://github.com/aws/s2n-tls) which are autogenerated with [bindgen](https://github.com/rust-lang/rust-bindgen) | ||||||
|
There was a problem hiding this comment.
Suggested change
Since you're here... |
||||||
|
|
||||||
| This crate is not intended for direct consumption by end consumers. Interested developers should instead look at the [s2n-tls](https://crates.io/crates/s2n-tls) or [s2n-tls-tokio](https://crates.io/crates/s2n-tls-tokio) crates. These provide higher-level, more ergonomic bindings than the `s2n-tls-sys` crate. | ||||||
jmayclin marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
|
|
||||||
| # Bring Your Own libs2n | ||||||
|
|
||||||
| The `s2n-tls-sys` crate contains the raw C code of `s2n-tls`. By default, it follows this build process: | ||||||
|
|
||||||
| 1. Uses the system C compiler to build `libs2n.a` | ||||||
| 2. Links the built `libs2n.a` to the Rust bindings | ||||||
jmayclin marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
| 3. Links against `aws-lc` through the `aws-lc-rs` crate | ||||||
|
|
||||||
| However, you can customize this process to use your own pre-built libs2n library. Here's how you can do that: | ||||||
|
|
||||||
| 1. Clone [s2n-tls](https://github.com/aws/s2n-tls) and compile your preferred configuration of s2n-tls. | ||||||
|
|
||||||
| You may choose to link against a specific libcrypto at this step. For more information, see [Building with a specific libcrypto](https://github.com/aws/s2n-tls/blob/main/docs/BUILD.md#building-with-a-specific-libcrypto). | ||||||
| Also see [Building s2n-tls](https://github.com/aws/s2n-tls/blob/main/docs/BUILD.md#building-s2n-tls) for further guidance on configuring s2n-tls for your own use case. | ||||||
| ``` | ||||||
|
There was a problem hiding this comment. Hmmm. I don't think you need to include instructions for building s2n if you've already linked to our build page? Is there a specific cmake flag that a user would need to turn on to create the prebuilt libs2n? There was a problem hiding this comment. No, static/shared shouldn't matter in linking the prebuilt libs2n. I will remove this instruction. |
||||||
| cmake . -Bbuild -DBUILD_SHARED_LIBS=on -DBUILD_TESTING=off | ||||||
| cmake --build build -- -j $(nproc) | ||||||
| ``` | ||||||
|
|
||||||
|
There was a problem hiding this comment.
Suggested change
|
||||||
| 2. `cd` into your rust project and set environment variables to your libs2n library sources. | ||||||
|
|
||||||
jmayclin marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
| This tells the bindings to link to pre-built libs2n when running the build script for s2n-tls-sys | ||||||
| ``` | ||||||
| export S2N_TLS_LIB_DIR=<PATH_TO_ROOT_OF_S2N_TLS>/build/lib | ||||||
| export S2N_TLS_INCLUDE_DIR=<PATH_TO_ROOT_OF_S2N_TLS>/api | ||||||
| export LD_LIBRARY_PATH=$S2N_TLS_LIB_DIR:$LD_LIBRARY_PATH | ||||||
| ``` | ||||||
|
|
||||||
|
There was a problem hiding this comment.
Suggested change
|
||||||
| `S2N_TLS_LIB_DIR` points to the folder containing `libs2n.a`/`lins2n.so` artifact that you would like s2n-tls-sys to link against. | ||||||
| `S2N_TLS_INCLUDE_DIR` points to the folder containing header files for `libs2n.a`/`lins2n.so` artifact. | ||||||
| `LD_LIBRARY_PATH` adds the path to `libs2n.a`/`lins2n.so` artifact for dynamic linker's search path. | ||||||
|
|
||||||
jmayclin marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||
| 3. Build your project. This triggers the build script for s2n-tls-sys | ||||||
|
|
||||||
| ``` | ||||||
| cargo build | ||||||
| ``` | ||||||
|
|
||||||
|
There was a problem hiding this comment. It's weird to put this note at the bottom of the page. You want motivation for "why" to run these commands to come before the instructions, not after. |
||||||
| This method is useful if you want the bindings to be built with a non-default libcrypto. Currently, the default libcrypto when generating rust bindings is `aws-lc`. | ||||||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Nit: I prefer a more "imperative" tone. (use, link) instead of "uses", "links".