Add mbedtls files and dependency.

I had to include some auto-generated files because Zig does not allow me to download the .tar.bz2 file which contains these (see ziglang/zig#26050)

Author: IntegratedQuantum

build.zig

@@ -84,6 +84,118 @@ const freetypeSources = [_][]const u8{
 	"src/winfonts/winfnt.c",
 };
 
+const tfPsaCryptoCoreSources: []const []const u8 = &.{
+	"psa_crypto.c",
+	"psa_crypto_client.c",
+	"psa_crypto_slot_management.c",
+	"psa_crypto_storage.c",
+	"psa_its_file.c",
+	"tf_psa_crypto_config.c",
+	"tf_psa_crypto_version.c",
+};
+
+const tfPsaCryptoDriverSources: []const []const u8 = &.{
+	"aes.c",
+	"aesce.c",
+	"aesni.c",
+	"aria.c",
+	"asn1parse.c",
+	"asn1write.c",
+	"base64.c",
+	"bignum.c",
+	"bignum_core.c",
+	"bignum_mod.c",
+	"bignum_mod_raw.c",
+	"block_cipher.c",
+	"camellia.c",
+	"ccm.c",
+	"chacha20.c",
+	"chachapoly.c",
+	"cipher.c",
+	"cipher_wrap.c",
+	"cmac.c",
+	"constant_time.c",
+	"ctr_drbg.c",
+	"ecdh.c",
+	"ecdsa.c",
+	"ecjpake.c",
+	"ecp.c",
+	"ecp_curves.c",
+	"ecp_curves_new.c",
+	"entropy.c",
+	"entropy_poll.c",
+	"gcm.c",
+	"hmac_drbg.c",
+	"lmots.c",
+	"lms.c",
+	"md.c",
+	"md5.c",
+	"memory_buffer_alloc.c",
+	"nist_kw.c",
+	"oid.c",
+	"pem.c",
+	"pk.c",
+	"pk_ecc.c",
+	"pk_rsa.c",
+	"pk_wrap.c",
+	"pkcs5.c",
+	"pkparse.c",
+	"pkwrite.c",
+	"platform.c",
+	"platform_util.c",
+	"poly1305.c",
+	"psa_crypto_aead.c",
+	"psa_crypto_cipher.c",
+	"psa_crypto_ecp.c",
+	"psa_crypto_ffdh.c",
+	"psa_crypto_hash.c",
+	"psa_crypto_mac.c",
+	"psa_crypto_pake.c",
+	"psa_crypto_rsa.c",
+	"psa_util.c",
+	"ripemd160.c",
+	"rsa.c",
+	"rsa_alt_helpers.c",
+	"sha1.c",
+	"sha256.c",
+	"sha3.c",
+	"sha512.c",
+	"threading.c",
+};
+
+const mbedTlsSources: []const []const u8 = &.{
+	"mbedtls_config.c",
+	"pkcs7.c",
+	"x509.c",
+	"x509_create.c",
+	"x509_crl.c",
+	"x509_crt.c",
+	"x509_csr.c",
+	"x509_oid.c",
+	"x509write.c",
+	"x509write_crt.c",
+	"x509write_csr.c",
+	"debug.c",
+	"mps_reader.c",
+	"mps_trace.c",
+	"net_sockets.c",
+	"ssl_cache.c",
+	"ssl_ciphersuites.c",
+	"ssl_client.c",
+	"ssl_cookie.c",
+	"ssl_msg.c",
+	"ssl_ticket.c",
+	"ssl_tls.c",
+	"ssl_tls12_client.c",
+	"ssl_tls12_server.c",
+	"ssl_tls13_keys.c",
+	"ssl_tls13_server.c",
+	"ssl_tls13_client.c",
+	"ssl_tls13_generic.c",
+	"timing.c",
+	"version.c",
+};
+
 pub fn addVulkanApple(b: *std.Build, step: *std.Build.Step, c_lib: *std.Build.Step.Compile, name: []const u8, target: std.Build.ResolvedTarget, flags: []const []const u8, replace_tool: *std.Build.Step.Compile) !void {
 	std.debug.assert(target.result.os.tag.isDarwin());
 
@@ -545,6 +657,45 @@ pub fn addMiniaudioAndStbVorbis(b: *std.Build, c_lib: *std.Build.Step.Compile, f
 	c_lib.addCSourceFile(.{.file = b.path("lib/miniaudio_stbvorbis.c"), .flags = flags});
 }
 
+pub fn addMbedTls(b: *std.Build, c_lib: *std.Build.Step.Compile, flags: []const []const u8) void {
+	const mbedtls = b.dependency("mbedtls", .{});
+	const tfPsaCrypto = b.dependency("tf_psa_crypto", .{});
+	c_lib.addCSourceFiles(.{
+		.root = mbedtls.path("library"),
+		.files = mbedTlsSources,
+		.flags = flags,
+	});
+	c_lib.addCSourceFiles(.{
+		.root = tfPsaCrypto.path("core"),
+		.files = tfPsaCryptoCoreSources,
+		.flags = flags,
+	});
+	c_lib.addCSourceFiles(.{
+		.root = tfPsaCrypto.path("drivers/builtin/src"),
+		.files = tfPsaCryptoDriverSources,
+		.flags = flags,
+	});
+	c_lib.addCSourceFile(.{
+		.file = b.path("lib/tf_psa_crypto/psa_crypto_driver_wrappers_no_static.c"), // Generated file
+		.flags = flags,
+	});
+	c_lib.addCSourceFiles(.{
+		.root = b.path("lib/mbedtls"),
+		.files = &.{"error.c", "ssl_debug_helpers_generated.c", "version_features.c"}, // Generated files
+		.flags = flags,
+	});
+	c_lib.addIncludePath(b.path("lib/tf_psa_crypto")); // Contains generated files
+	c_lib.addIncludePath(b.path("lib/mbedtls")); // Contains generated files
+	c_lib.addIncludePath(tfPsaCrypto.path("core"));
+	c_lib.addIncludePath(tfPsaCrypto.path("drivers/builtin/src"));
+	c_lib.addIncludePath(tfPsaCrypto.path("include"));
+	c_lib.addIncludePath(tfPsaCrypto.path("drivers/builtin/include"));
+	c_lib.addIncludePath(mbedtls.path("include"));
+	c_lib.installHeadersDirectory(mbedtls.path("include"), "", .{});
+	c_lib.installHeadersDirectory(tfPsaCrypto.path("include"), "", .{});
+	c_lib.installHeadersDirectory(tfPsaCrypto.path("drivers/builtin/include"), "", .{});
+}
+
 pub inline fn addHeaderOnlyLibs(b: *std.Build, c_lib: *std.Build.Step.Compile, flags: []const []const u8) void {
 	const cgltf = b.dependency("cgltf", .{});
 
@@ -589,6 +740,7 @@ pub inline fn makeCubyzLibs(b: *std.Build, step: *std.Build.Step, name: []const
 		try addVulkanApple(b, step, c_lib, name, target, flags, replace_tool);
 	}
 	try addGLFWSources(b, c_lib, target, flags);
+	addMbedTls(b, c_lib, flags);
 	c_lib.addCSourceFile(.{.file = b.path("lib/gl.c"), .flags = flags});
 
 	// NOTE(blackedout): See the above glad comment

build.zig.zon

@@ -52,5 +52,13 @@
 			.url = "https://github.com/mackron/miniaudio/archive/refs/tags/0.11.23.tar.gz",
 			.hash = "N-V-__8AAPu4vwC_P5AHlL_kEON58uGgrDcJSjGq9Hc5yadh",
 		},
+		.mbedtls = .{
+			.url = "https://github.com/Mbed-TLS/mbedtls/archive/refs/tags/mbedtls-4.0.0.tar.gz",
+			.hash = "N-V-__8AAKIwiADtY89ifMh8C6X0PHvyBULclU19OYMsiDg_",
+		},
+		.tf_psa_crypto = .{
+			.url = "https://github.com/Mbed-TLS/TF-PSA-Crypto/archive/refs/tags/tf-psa-crypto-1.0.0.tar.gz",
+			.hash = "N-V-__8AAOuqOgGAlxfU32chMWurMwBPZACZk-9MdknRMDIM",
+		},
 	},
 }

lib/mbedtls/debug_internal.h

@@ -0,0 +1,115 @@
+/**
+ * \file debug_internal.h
+ *
+ * \brief Internal part of the public "debug.h".
+ */
+/*
+ *  Copyright The Mbed TLS Contributors
+ *  SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
+ */
+#ifndef MBEDTLS_DEBUG_INTERNAL_H
+#define MBEDTLS_DEBUG_INTERNAL_H
+
+#include "mbedtls/debug.h"
+
+/**
+ * \brief    Print a message to the debug output. This function is always used
+ *          through the MBEDTLS_SSL_DEBUG_MSG() macro, which supplies the ssl
+ *          context, file and line number parameters.
+ *
+ * \param ssl       SSL context
+ * \param level     error level of the debug message
+ * \param file      file the message has occurred in
+ * \param line      line number the message has occurred at
+ * \param format    format specifier, in printf format
+ * \param ...       variables used by the format specifier
+ *
+ * \attention       This function is intended for INTERNAL usage within the
+ *                  library only.
+ */
+void mbedtls_debug_print_msg(const mbedtls_ssl_context *ssl, int level,
+                             const char *file, int line,
+                             const char *format, ...) MBEDTLS_PRINTF_ATTRIBUTE(5, 6);
+
+/**
+ * \brief   Print the return value of a function to the debug output. This
+ *          function is always used through the MBEDTLS_SSL_DEBUG_RET() macro,
+ *          which supplies the ssl context, file and line number parameters.
+ *
+ * \param ssl       SSL context
+ * \param level     error level of the debug message
+ * \param file      file the error has occurred in
+ * \param line      line number the error has occurred in
+ * \param text      the name of the function that returned the error
+ * \param ret       the return code value
+ *
+ * \attention       This function is intended for INTERNAL usage within the
+ *                  library only.
+ */
+void mbedtls_debug_print_ret(const mbedtls_ssl_context *ssl, int level,
+                             const char *file, int line,
+                             const char *text, int ret);
+
+/**
+ * \brief   Output a buffer of size len bytes to the debug output. This function
+ *          is always used through the MBEDTLS_SSL_DEBUG_BUF() macro,
+ *          which supplies the ssl context, file and line number parameters.
+ *
+ * \param ssl       SSL context
+ * \param level     error level of the debug message
+ * \param file      file the error has occurred in
+ * \param line      line number the error has occurred in
+ * \param text      a name or label for the buffer being dumped. Normally the
+ *                  variable or buffer name
+ * \param buf       the buffer to be outputted
+ * \param len       length of the buffer
+ *
+ * \attention       This function is intended for INTERNAL usage within the
+ *                  library only.
+ */
+void mbedtls_debug_print_buf(const mbedtls_ssl_context *ssl, int level,
+                             const char *file, int line, const char *text,
+                             const unsigned char *buf, size_t len);
+
+#if defined(MBEDTLS_BIGNUM_C)
+/**
+ * \brief   Print a MPI variable to the debug output.
+ *
+ * \param ssl       SSL context
+ * \param level     error level of the debug message
+ * \param file      file the error has occurred in
+ * \param line      line number the error has occurred in
+ * \param text      a name or label for the MPI being output. Normally the
+ *                  variable name
+ * \param X         the MPI variable
+ *
+ * \attention       This function is intended for INTERNAL usage within the
+ *                  library only.
+ */
+void mbedtls_debug_print_mpi(const mbedtls_ssl_context *ssl, int level,
+                             const char *file, int line,
+                             const char *text, const mbedtls_mpi *X);
+#endif
+
+#if defined(MBEDTLS_X509_CRT_PARSE_C) && !defined(MBEDTLS_X509_REMOVE_INFO)
+/**
+ * \brief   Print a X.509 certificate structure to the debug output. This
+ *          function is always used through the MBEDTLS_SSL_DEBUG_CRT() macro,
+ *          which supplies the ssl context, file and line number parameters.
+ *
+ * \param ssl       SSL context
+ * \param level     error level of the debug message
+ * \param file      file the error has occurred in
+ * \param line      line number the error has occurred in
+ * \param text      a name or label for the certificate being output
+ * \param crt       X.509 certificate structure
+ *
+ * \attention       This function is intended for INTERNAL usage within the
+ *                  library only.
+ */
+void mbedtls_debug_print_crt(const mbedtls_ssl_context *ssl, int level,
+                             const char *file, int line,
+                             const char *text, const mbedtls_x509_crt *crt);
+#endif
+
+#endif /* MBEDTLS_DEBUG_INTERNAL_H */