Add: possibility to add C encapsuled functionality

Adds possibility to add nasl-functions written in C.

---------

Co-authored-by: Philipp Eder <philipp.eder@greenbone.net>

.gitignore

@@ -10,3 +10,7 @@ testsuiterun.nasl
 assets/
 *.rsa
 *.pem
+rust/nasl-c-lib/include
+rust/nasl-c-lib/bin
+rust/nasl-c-lib/share
+rust/nasl-c-lib/lib

doc/manual/nasl/built-in-functions/cryptographic/aes_mac_cbc.md

@@ -12,7 +12,7 @@
 
 ## DESCRIPTION
 
-aes_mac_gcm encrypts given data with given key by using AES in CBC mode.
+aes_mac_cbc encrypts given data with given key by using AES in CBC mode.
 The according aes algorithm is dependent on the key size (if the key is 128 bit than AES128 is used, 256 and 512 are supported.)
 
 

doc/manual/nasl/built-in-functions/cryptographic/aes_mac_gcm.md

@@ -6,9 +6,9 @@
 
 ## SYNOPSIS
 
-*str* **aes_mac_gcm**(key: str, data: str);
+*str* **aes_mac_gcm**(key: str, data: str, iv: str);
 
-**aes_mac_gcm** It takes four named arguments key, data.
+**aes_mac_gcm** It takes three named arguments key, data, iv.
 
 ## DESCRIPTION
 

rust/.gitignore

@@ -1 +1,4 @@
 target/
+libsrc/
+nasl-c-lib/libsrc/
+nasl-c-lib/lib/

rust/Cargo.toml

@@ -15,14 +15,16 @@ members = [
   "nasl-syntax",
   "nasl-interpreter",
   "nasl-cli",
+  "nasl-c-lib",
+  "nasl-c-lib/libgcrypt-sys",
   "storage",
   "redis-storage",
   "json-storage",
   "feed",
   "feed-verifier",
   "models",
   "osp",
-  "openvasd", 
+  "openvasd",
   "scanconfig",
   "infisto",
 ]

rust/Cross.toml

@@ -1,3 +1,5 @@
+[build.env]
+passthrough = ["IN_CROSS=1", "CLEAN=1"]
 [target.aarch64-unknown-linux-gnu]
 dockerfile = "cross_aarch64.Dockerfile"
 [target.x86_64-unknown-linux-gnu]

rust/cross.Dockerfile

@@ -10,6 +10,7 @@ WORKDIR /tmp
 RUN tar xvf pcap.tar.gz
 RUN ls -las
 WORKDIR /tmp/libpcap-1.10.3
+ENV CHOST=amd64
 ENV CC=x86_64-linux-gnu-gcc
 ENV CFLAGS='-Os'
 RUN ./configure --host=x86_64-unknown-linux-gnu --with-pcap=linux
@@ -20,8 +21,6 @@ RUN curl --output /tmp/zlib.tar.gz https://www.zlib.net/zlib-1.3.tar.gz
 WORKDIR /tmp
 RUN tar xvf zlib.tar.gz
 WORKDIR /tmp/zlib-1.3
-ENV CC=x86_64-linux-gnu-gcc
-ENV CHOST=amd64
 RUN ./configure
 RUN make install
 RUN ldconfig
@@ -31,8 +30,6 @@ WORKDIR /tmp
 RUN tar xvf openssl.tar.gz
 RUN ls -las
 WORKDIR /tmp/openssl-1.1.1
-ENV CC=x86_64-linux-gnu-gcc
-ENV CFLAGS='-Os'
 RUN ./Configure linux-x86_64 --prefix=/usr/local/ssl --openssldir=/usr/local/ssl shared zlib
 ENV LD_LIBRARY_PATH=/usr/local/ssl/lib:${LD_LIBRARY_PATH}
 RUN ldconfig

rust/cross_aarch64.Dockerfile

@@ -10,12 +10,14 @@ RUN apt-get update && apt-get install -y \
   curl \
   zlib1g-dev
 RUN curl -o /tmp/pcap.tar.gz https://www.tcpdump.org/release/libpcap-1.10.3.tar.gz
+ENV CC=aarch64-linux-gnu-gcc
+ENV CFLAGS='-Os'
+ENV CHOST=arm64
+
 WORKDIR /tmp
 RUN tar xvf pcap.tar.gz
 RUN ls -las
 WORKDIR /tmp/libpcap-1.10.3
-ENV CC=aarch64-linux-gnu-gcc
-ENV CFLAGS='-Os'
 RUN ./configure --host=aarch64-unknown-linux-gnu --with-pcap=linux
 RUN cat config.log
 RUN make install
@@ -24,8 +26,6 @@ RUN curl --output /tmp/zlib.tar.gz https://www.zlib.net/zlib-1.3.tar.gz
 WORKDIR /tmp
 RUN tar xvzf zlib.tar.gz
 WORKDIR /tmp/zlib-1.3
-ENV CC=aarch64-linux-gnu-gcc
-ENV CHOST=arm64
 RUN ./configure
 RUN make install
 RUN ldconfig
@@ -35,8 +35,6 @@ WORKDIR /tmp
 RUN tar xvf openssl.tar.gz
 RUN ls -las
 WORKDIR /tmp/openssl-1.1.1
-ENV CC=aarch64-linux-gnu-gcc
-ENV CFLAGS='-Os'
 RUN ./Configure linux-aarch64 --prefix=/usr/local/ssl --openssldir=/usr/local/ssl shared zlib
 ENV LD_LIBRARY_PATH=/usr/local/ssl/lib:${LD_LIBRARY_PATH}
 RUN ldconfig

rust/nasl-builtin-cryptographic/Cargo.toml

@@ -25,5 +25,8 @@ ripemd = "0.1.3"
 sha1 = "0.10.5"
 sha2 = "0.10.6"
 
+# depend on c libraries and are considered unstable for now
+nasl-c-lib = {path = "../nasl-c-lib", optional = true}
+
 [dev-dependencies]
 nasl-interpreter = {path = "../nasl-interpreter"}