refactor code into separate function files for doctest upgrades.

Author: michelp

.dockerignore

@@ -6,4 +6,6 @@ psql.sh
 .cache
 test/
 example/
+site/
+docs/    
 .virt

Makefile

@@ -5,9 +5,9 @@ PG_CONFIG ?= pg_config
 DATA = $(wildcard extension/*--*.sql)
 PGXS := $(shell $(PG_CONFIG) --pgxs)
 MODULE_big = pgsodium
-OBJS = $(patsubst %.c,%.o,$(wildcard src/*.c))
+OBJS = $(patsubst %.c,%.o,$(shell find pgsodium/ -name '*.c'))
 SHLIB_LINK = -lsodium
-PG_CPPFLAGS = -O0
+PG_CPPFLAGS = -O0 -I$(srcdir)/pgsodium/include
 
 TESTS        = $(wildcard sql/*.sql)
 REGRESS      = $(patsubst sql/%.sql,%,$(TESTS))

docgen.py

@@ -1,12 +1,13 @@
 import os
 import sys
 
+PREFIX = "/* doctest"
 
 def process_file(path):
     with open(path, "r") as f:
         content = f.read()
     s = content.lstrip()
-    if not s.startswith("/* doctest"):
+    if not s.startswith(PREFIX):
         return
     end = s.find("*/")
     if end == -1:
@@ -16,9 +17,9 @@ def process_file(path):
     if not lines:
         return
     first = lines[0]
-    if not first.startswith("/* doctest"):
+    if not first.startswith(PREFIX):
         return
-    target = first[len("/* doctest"):].strip()
+    target = first[len(PREFIX):].strip()
     if target.startswith("/"):
         target = target[1:]
     if not target:
@@ -30,7 +31,6 @@ def process_file(path):
     with open(out_file, "w") as out:
         out.write(stripped_comment + "\n\n")
 
-
 def main():
     base = sys.argv[1] if len(sys.argv) > 1 else "."
     for root, _, files in os.walk(base):

pgsodium/aead/det_decrypt.c

@@ -0,0 +1,56 @@
+#include "pgsodium.h"
+
+PG_FUNCTION_INFO_V1 (pgsodium_crypto_aead_det_decrypt);
+Datum
+pgsodium_crypto_aead_det_decrypt (PG_FUNCTION_ARGS)
+{
+	bytea      *ciphertext;
+	bytea      *associated;
+	bytea      *key;
+	size_t      result_len;
+	bytea      *result, *nonce;
+	int         success;
+
+	ERRORIF (PG_ARGISNULL (0), "%s: ciphertext cannot be NULL");
+	ERRORIF (PG_ARGISNULL (2), "%s: key cannot be NULL");
+
+	ciphertext = PG_GETARG_BYTEA_PP (0);
+	if (!PG_ARGISNULL (1))
+	{
+		associated = PG_GETARG_BYTEA_PP (1);
+	}
+	else
+	{
+		associated = NULL;
+	}
+
+	key = PG_GETARG_BYTEA_PP (2);
+
+	ERRORIF (VARSIZE_ANY_EXHDR (ciphertext) <=
+			 crypto_aead_det_xchacha20_ABYTES, "%s: invalid message");
+	ERRORIF (VARSIZE_ANY_EXHDR (key) != crypto_aead_det_xchacha20_KEYBYTES,
+			 "%s: invalid key");
+	result_len =
+		VARSIZE_ANY_EXHDR (ciphertext) - crypto_aead_det_xchacha20_ABYTES;
+	result = _pgsodium_zalloc_bytea (result_len + VARHDRSZ);
+	if (!PG_ARGISNULL (3))
+	{
+		nonce = PG_GETARG_BYTEA_P (3);
+		ERRORIF (VARSIZE_ANY_EXHDR (nonce) !=
+				 crypto_aead_det_xchacha20_NONCEBYTES, "%s: invalid nonce");
+	}
+	else
+	{
+		nonce = NULL;
+	}
+	success = crypto_aead_det_xchacha20_decrypt (
+		PGSODIUM_UCHARDATA (result),
+		PGSODIUM_UCHARDATA_ANY (ciphertext),
+		VARSIZE_ANY_EXHDR (ciphertext),
+		associated != NULL ? PGSODIUM_UCHARDATA_ANY (associated) : NULL,
+		associated != NULL ? VARSIZE_ANY_EXHDR (associated) : 0,
+		nonce != NULL ? PGSODIUM_UCHARDATA_ANY (nonce) : NULL,
+		PGSODIUM_UCHARDATA_ANY (key));
+	ERRORIF (success != 0, "%s: invalid ciphertext");
+	PG_RETURN_BYTEA_P (result);
+}

pgsodium/aead/det_decrypt_by_id.c

@@ -0,0 +1,63 @@
+#include "pgsodium.h"
+
+PG_FUNCTION_INFO_V1 (pgsodium_crypto_aead_det_decrypt_by_id);
+Datum
+pgsodium_crypto_aead_det_decrypt_by_id (PG_FUNCTION_ARGS)
+{
+	bytea      *ciphertext;
+	bytea      *associated;
+	unsigned long long key_id;
+	bytea      *context;
+	size_t      result_len;
+	bytea      *key, *result, *nonce;
+	int         success;
+
+
+	ERRORIF (PG_ARGISNULL (0), "%s: message cannot be NULL");
+	ERRORIF (PG_ARGISNULL (2), "%s: key id cannot be NULL");
+	ERRORIF (PG_ARGISNULL (3), "%s: key context cannot be NULL");
+
+	ciphertext = PG_GETARG_BYTEA_PP (0);
+
+	if (!PG_ARGISNULL (1))
+	{
+		associated = PG_GETARG_BYTEA_PP (1);
+	}
+	else
+	{
+		associated = NULL;
+	}
+
+	key_id = PG_GETARG_INT64 (2);
+	context = PG_GETARG_BYTEA_PP (3);
+
+	if (!PG_ARGISNULL (4))
+	{
+		nonce = PG_GETARG_BYTEA_PP (4);
+		ERRORIF (VARSIZE_ANY_EXHDR (nonce) !=
+				 crypto_aead_det_xchacha20_NONCEBYTES, "%s: invalid nonce");
+	}
+	else
+	{
+		nonce = NULL;
+	}
+	ERRORIF (VARSIZE_ANY_EXHDR (ciphertext) <=
+			 crypto_aead_det_xchacha20_ABYTES, "%s: invalid message");
+	result_len =
+		VARSIZE_ANY_EXHDR (ciphertext) - crypto_aead_det_xchacha20_ABYTES;
+	result = _pgsodium_zalloc_bytea (result_len + VARHDRSZ);
+	key =
+		pgsodium_derive_helper (key_id, crypto_aead_det_xchacha20_KEYBYTES,
+								context);
+
+	success = crypto_aead_det_xchacha20_decrypt (
+		PGSODIUM_UCHARDATA (result),
+		PGSODIUM_UCHARDATA_ANY (ciphertext),
+		VARSIZE_ANY_EXHDR (ciphertext),
+		associated != NULL ? PGSODIUM_UCHARDATA_ANY (associated) : NULL,
+		associated != NULL ? VARSIZE_ANY_EXHDR (associated) : 0,
+		nonce != NULL ? PGSODIUM_UCHARDATA_ANY (nonce) : NULL,
+		PGSODIUM_UCHARDATA_ANY (key));
+	ERRORIF (success != 0, "%s: invalid ciphertext");
+	PG_RETURN_BYTEA_P (result);
+}

pgsodium/aead/det_encrypt.c

@@ -0,0 +1,56 @@
+#include "pgsodium.h"
+
+PG_FUNCTION_INFO_V1 (pgsodium_crypto_aead_det_encrypt);
+Datum
+pgsodium_crypto_aead_det_encrypt (PG_FUNCTION_ARGS)
+{
+	bytea      *message;
+	bytea      *associated;
+	bytea      *key;
+	bytea      *nonce;
+	size_t      result_size;
+	bytea      *result;
+	int         success;
+
+	ERRORIF (PG_ARGISNULL (0), "%s: message cannot be NULL");
+	ERRORIF (PG_ARGISNULL (2), "%s: key cannot be NULL");
+
+	message = PG_GETARG_BYTEA_PP (0);
+
+	if (!PG_ARGISNULL (1))
+	{
+		associated = PG_GETARG_BYTEA_PP (1);
+	}
+	else
+	{
+		associated = NULL;
+	}
+
+	key = PG_GETARG_BYTEA_PP (2);
+
+	ERRORIF (VARSIZE_ANY_EXHDR (key) != crypto_aead_det_xchacha20_KEYBYTES,
+			 "%s: invalid key");
+	if (!PG_ARGISNULL (3))
+	{
+		nonce = PG_GETARG_BYTEA_PP (3);
+		ERRORIF (VARSIZE_ANY_EXHDR (nonce) !=
+				 crypto_aead_det_xchacha20_NONCEBYTES, "%s: invalid nonce");
+	}
+	else
+	{
+		nonce = NULL;
+	}
+	result_size =
+		VARSIZE_ANY_EXHDR (message) + crypto_aead_det_xchacha20_ABYTES;
+	result = _pgsodium_zalloc_bytea (result_size + VARHDRSZ);
+	success = crypto_aead_det_xchacha20_encrypt (
+		PGSODIUM_UCHARDATA (result),
+		PGSODIUM_UCHARDATA_ANY (message),
+		VARSIZE_ANY_EXHDR (message),
+		associated != NULL ? PGSODIUM_UCHARDATA_ANY (associated) : NULL,
+		associated != NULL ? VARSIZE_ANY_EXHDR (associated) : 0,
+		nonce != NULL ? PGSODIUM_UCHARDATA_ANY (nonce) : NULL,
+		PGSODIUM_UCHARDATA_ANY (key));
+	ERRORIF (success != 0, "%s: crypto_aead_det_xchacha20_encrypt failed");
+	PG_RETURN_BYTEA_P (result);
+}

pgsodium/aead/det_encrypt_by_id.c

@@ -0,0 +1,63 @@
+#include "pgsodium.h"
+
+PG_FUNCTION_INFO_V1 (pgsodium_crypto_aead_det_encrypt_by_id);
+Datum
+pgsodium_crypto_aead_det_encrypt_by_id (PG_FUNCTION_ARGS)
+{
+	bytea      *message;
+	bytea      *associated;
+	unsigned long long key_id;
+	bytea      *context;
+	bytea      *key, *nonce;
+	size_t      result_size;
+	bytea      *result;
+	int         success;
+
+	ERRORIF (PG_ARGISNULL (0), "%s: message cannot be NULL");
+	ERRORIF (PG_ARGISNULL (2), "%s: key id cannot be NULL");
+	ERRORIF (PG_ARGISNULL (3), "%s: key context cannot be NULL");
+
+	message = PG_GETARG_BYTEA_PP (0);
+
+	if (!PG_ARGISNULL (1))
+	{
+		associated = PG_GETARG_BYTEA_PP (1);
+	}
+	else
+	{
+		associated = NULL;
+	}
+
+	key_id = PG_GETARG_INT64 (2);
+	context = PG_GETARG_BYTEA_PP (3);
+
+	if (!PG_ARGISNULL (4))
+	{
+		nonce = PG_GETARG_BYTEA_PP (4);
+		ERRORIF (VARSIZE_ANY_EXHDR (nonce) !=
+				 crypto_aead_det_xchacha20_NONCEBYTES, "%s: invalid nonce");
+	}
+	else
+	{
+		nonce = NULL;
+	}
+
+	result_size =
+		VARSIZE_ANY_EXHDR (message) + crypto_aead_det_xchacha20_ABYTES;
+	result = _pgsodium_zalloc_bytea (result_size + VARHDRSZ);
+
+	key =
+		pgsodium_derive_helper (key_id, crypto_aead_det_xchacha20_KEYBYTES,
+								context);
+
+	success = crypto_aead_det_xchacha20_encrypt (
+		PGSODIUM_UCHARDATA (result),
+		PGSODIUM_UCHARDATA_ANY (message),
+		VARSIZE_ANY_EXHDR (message),
+		associated != NULL ? PGSODIUM_UCHARDATA_ANY (associated) : NULL,
+		associated != NULL ? VARSIZE_ANY_EXHDR (associated) : 0,
+		nonce != NULL ? PGSODIUM_UCHARDATA_ANY (nonce) : NULL,
+		PGSODIUM_UCHARDATA_ANY (key));
+	ERRORIF (success != 0, "%s: failed");
+	PG_RETURN_BYTEA_P (result);
+}

pgsodium/aead/det_keygen.c

@@ -0,0 +1,11 @@
+#include "pgsodium.h"
+
+PG_FUNCTION_INFO_V1 (pgsodium_crypto_aead_det_keygen);
+Datum
+pgsodium_crypto_aead_det_keygen (PG_FUNCTION_ARGS)
+{
+	size_t      result_size = VARHDRSZ + crypto_aead_det_xchacha20_KEYBYTES;
+	bytea      *result = _pgsodium_zalloc_bytea (result_size);
+	crypto_aead_det_xchacha20_keygen (PGSODIUM_UCHARDATA (result));
+	PG_RETURN_BYTEA_P (result);
+}

pgsodium/aead/det_noncegen.c

@@ -0,0 +1,11 @@
+#include "pgsodium.h"
+
+PGDLLEXPORT PG_FUNCTION_INFO_V1 (pgsodium_crypto_aead_det_noncegen);
+Datum
+pgsodium_crypto_aead_det_noncegen (PG_FUNCTION_ARGS)
+{
+	int         result_size = VARHDRSZ + crypto_aead_det_xchacha20_NONCEBYTES;
+	bytea      *result = _pgsodium_zalloc_bytea (result_size);
+	randombytes_buf (VARDATA (result), crypto_aead_det_xchacha20_NONCEBYTES);
+	PG_RETURN_BYTEA_P (result);
+}

src/crypto_aead_det_xchacha20.c pgsodium/aead/det_xchacha20.csrc/crypto_aead_det_xchacha20.c renamed to pgsodium/aead/det_xchacha20.c

@@ -27,7 +27,7 @@
 #include <sodium.h>
 #include <string.h>
 
-#include "crypto_aead_det_xchacha20.h"
+#include "det_xchacha20.h"
 
 static void
 s2v_dbl256 (unsigned char d[32])