// Copyright (c) 2022, Google Inc. // SPDX-License-Identifier: ISC // Modifications copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. // SPDX-License-Identifier: Apache-2.0 OR ISC // Needed until MSRV >= 1.70 #![allow(clippy::unnecessary_map_or)] #![allow(clippy::ref_option)] // Clippy can only be run on nightly toolchain #![cfg_attr(clippy, feature(custom_inner_attributes))] #![cfg_attr(clippy, clippy::msrv = "1.77")] use core::fmt; use core::fmt::Debug; use std::env; use std::ffi::{OsStr, OsString}; use std::path::{Path, PathBuf}; use std::process::Command; use cmake_builder::CmakeBuilder; // These should generally match those found in aws-lc/include/openssl/opensslconf.h const OSSL_CONF_DEFINES: &[&str] = &[ "OPENSSL_NO_ASYNC", "OPENSSL_NO_BF", "OPENSSL_NO_BLAKE2", "OPENSSL_NO_BUF_FREELISTS", "OPENSSL_NO_CAMELLIA", "OPENSSL_NO_CAPIENG", "OPENSSL_NO_CAST", "OPENSSL_NO_CMS", "OPENSSL_NO_COMP", "OPENSSL_NO_CT", "OPENSSL_NO_DANE", "OPENSSL_NO_DEPRECATED", "OPENSSL_NO_DGRAM", "OPENSSL_NO_DYNAMIC_ENGINE", "OPENSSL_NO_EC_NISTP_64_GCC_128", "OPENSSL_NO_EC2M", "OPENSSL_NO_EGD", "OPENSSL_NO_ENGINE", "OPENSSL_NO_GMP", "OPENSSL_NO_GOST", "OPENSSL_NO_HEARTBEATS", "OPENSSL_NO_HW", "OPENSSL_NO_IDEA", "OPENSSL_NO_JPAKE", "OPENSSL_NO_KRB5", "OPENSSL_NO_MD2", "OPENSSL_NO_MDC2", "OPENSSL_NO_OCB", "OPENSSL_NO_OCSP", "OPENSSL_NO_RC2", "OPENSSL_NO_RC5", "OPENSSL_NO_RFC3779", "OPENSSL_NO_RIPEMD", "OPENSSL_NO_RMD160", "OPENSSL_NO_SCTP", "OPENSSL_NO_SEED", "OPENSSL_NO_SM2", "OPENSSL_NO_SM3", "OPENSSL_NO_SM4", "OPENSSL_NO_SRP", "OPENSSL_NO_SSL_TRACE", "OPENSSL_NO_SSL2", "OPENSSL_NO_SSL3", "OPENSSL_NO_SSL3_METHOD", "OPENSSL_NO_STATIC_ENGINE", "OPENSSL_NO_STORE", "OPENSSL_NO_WHIRLPOOL", ]; macro_rules! bindgen_available { ($top:ident, $item:item) => { #[allow(clippy::non_minimal_cfg)] #[cfg($top(any( feature = "bindgen", not(all( any(target_arch = "x86_64", target_arch = "aarch64"), any(target_os = "linux", target_os = "macos"), any(target_env = "gnu", target_env = "musl", target_env = "") )) )))] $item }; ($item:item) => { bindgen_available!(any, $item); }; } bindgen_available!( mod sys_bindgen; ); mod cmake_builder; pub(crate) fn get_aws_lc_include_path(manifest_dir: &Path) -> PathBuf { manifest_dir.join("aws-lc").join("include") } pub(crate) fn get_rust_include_path(manifest_dir: &Path) -> PathBuf { manifest_dir.join("include") } pub(crate) fn get_generated_include_path(manifest_dir: &Path) -> PathBuf { manifest_dir.join("generated-include") } pub(crate) fn get_aws_lc_fips_sys_includes_path() -> Option<Vec<PathBuf>> { option_env("AWS_LC_FIPS_SYS_INCLUDES").map(|v| std::env::split_paths(&v).collect()) } #[allow(dead_code)] #[derive(Clone, Copy, PartialEq, Eq)] enum OutputLib { RustWrapper, Crypto, Ssl, } #[allow(dead_code)] #[derive(Clone, Copy, PartialEq, Eq)] enum OutputLibType { Static, Dynamic, } fn cargo_env<N: AsRef<str>>(name: N) -> String { let name = name.as_ref(); std::env::var(name).unwrap_or_else(|_| panic!("missing env var {name:?}")) } fn option_env<N: AsRef<str>>(name: N) -> Option<String> { let name = name.as_ref(); println!("cargo:rerun-if-env-changed={name}"); std::env::var(name).ok() } fn env_var_to_bool(name: &str) -> Option<bool> { let build_type_result = option_env(name); if let Some(env_var_value) = build_type_result { eprintln!("Evaluating: {name}='{env_var_value}'"); let env_var_value = env_var_value.to_lowercase(); if env_var_value.starts_with('0') || env_var_value.starts_with('n') || env_var_value.starts_with("off") || env_var_value.starts_with('f') { eprintln!("Parsed: {name}=false"); return Some(false); } if env_var_value.starts_with(|c: char| c.is_ascii_digit()) || env_var_value.starts_with('y') || env_var_value.starts_with("on") || env_var_value.starts_with('t') { eprintln!("Parsed: {name}=true"); return Some(true); } eprintln!("Parsed: {name}=unknown"); } None } impl Default for OutputLibType { fn default() -> Self { if let Some(stc_lib) = env_var_to_bool("AWS_LC_FIPS_SYS_STATIC") { if stc_lib { OutputLibType::Static } else { OutputLibType::Dynamic } } else if (target_os() == "linux" || target_os().ends_with("bsd")) && (target_arch() == "x86_64" || target_arch() == "aarch64") { OutputLibType::Static } else { OutputLibType::Dynamic } } } impl OutputLibType { fn rust_lib_type(&self) -> &str { match self { OutputLibType::Static => "static", OutputLibType::Dynamic => "dylib", } } } impl OutputLib { fn libname(self, prefix: &Option<String>) -> String { let name = match self { OutputLib::Crypto => "crypto", OutputLib::Ssl => "ssl", OutputLib::RustWrapper => "rust_wrapper", }; if let Some(prefix) = prefix { format!("{prefix}_{name}") } else { name.to_string() } } } const VERSION: &str = env!("CARGO_PKG_VERSION"); fn prefix_string() -> String { format!("aws_lc_fips_{}", VERSION.to_string().replace('.', "_")) } #[cfg(feature = "bindgen")] fn target_platform_prefix(name: &str) -> String { format!("{}_{}", effective_target().replace('-', "_"), name) } pub(crate) struct TestCommandResult { stderr: Box<str>, stdout: Box<str>, executed: bool, status: bool, } const MAX_CMD_OUTPUT_SIZE: usize = 1 << 15; fn execute_command(executable: &OsStr, args: &[&OsStr]) -> TestCommandResult { if let Ok(mut result) = Command::new(executable).args(args).output() { result.stderr.truncate(MAX_CMD_OUTPUT_SIZE); let stderr = String::from_utf8(result.stderr) .unwrap_or_default() .into_boxed_str(); result.stdout.truncate(MAX_CMD_OUTPUT_SIZE); let stdout = String::from_utf8(result.stdout) .unwrap_or_default() .into_boxed_str(); return TestCommandResult { stderr, stdout, executed: true, status: result.status.success(), }; } TestCommandResult { stderr: String::new().into_boxed_str(), stdout: String::new().into_boxed_str(), executed: false, status: false, } } bindgen_available!( fn generate_bindings(manifest_dir: &Path, prefix: &Option<String>, bindings_path: &PathBuf) { let options = BindingOptions { build_prefix: prefix.clone(), include_ssl: cfg!(feature = "ssl"), disable_prelude: true, }; let bindings = sys_bindgen::generate_bindings(manifest_dir, &options); bindings .write(Box::new(std::fs::File::create(bindings_path).unwrap())) .expect("written bindings"); } ); #[cfg(feature = "bindgen")] fn generate_src_bindings(manifest_dir: &Path, prefix: &Option<String>, src_bindings_path: &Path) { sys_bindgen::generate_bindings( manifest_dir, &BindingOptions { build_prefix: prefix.clone(), include_ssl: false, disable_prelude: false, }, ) .write_to_file(src_bindings_path) .expect("write bindings"); } #[allow(unused)] fn external_generate_src_bindings( manifest_dir: &Path, prefix: &Option<String>, src_bindings_path: &Path, ) { invoke_external_bindgen( manifest_dir, &BindingOptions { build_prefix: prefix.clone(), include_ssl: false, disable_prelude: false, }, src_bindings_path, ) .expect("write bindings"); } fn emit_rustc_cfg(cfg: &str) { let cfg = cfg.replace('-', "_"); println!("cargo:rustc-cfg={cfg}"); } fn emit_warning(message: &str) { println!("cargo:warning={message}"); } fn target_family() -> String { cargo_env("CARGO_CFG_TARGET_FAMILY") } fn target_os() -> String { cargo_env("CARGO_CFG_TARGET_OS") } fn target_arch() -> String { cargo_env("CARGO_CFG_TARGET_ARCH") } #[allow(unused)] fn target_env() -> String { cargo_env("CARGO_CFG_TARGET_ENV") } #[allow(unused)] fn target_vendor() -> String { cargo_env("CARGO_CFG_TARGET_VENDOR") } #[allow(unused)] fn effective_target() -> String { let target = target(); match target.as_str() { "x86_64-alpine-linux-musl" => "x86_64-unknown-linux-musl".to_string(), "aarch64-alpine-linux-musl" => "aarch64-unknown-linux-musl".to_string(), _ => target, } } #[allow(unused)] fn target() -> String { cargo_env("TARGET") } #[allow(unused)] fn target_underscored() -> String { effective_target().replace('-', "_") } fn out_dir() -> PathBuf { PathBuf::from(cargo_env("OUT_DIR")) } fn current_dir() -> PathBuf { std::env::current_dir().unwrap() } fn get_builder(prefix: &Option<String>, manifest_dir: &Path, out_dir: &Path) -> Box<dyn Builder> { Box::new(CmakeBuilder::new( manifest_dir.to_path_buf(), out_dir.to_path_buf(), prefix.clone(), OutputLibType::default(), )) } trait Builder { fn check_dependencies(&self) -> Result<(), String>; fn build(&self) -> Result<(), String>; } static mut PREGENERATED: bool = false; static mut AWS_LC_FIPS_SYS_NO_PREFIX: bool = false; static mut AWS_LC_FIPS_SYS_PREGENERATING_BINDINGS: bool = false; static mut AWS_LC_FIPS_SYS_EXTERNAL_BINDGEN: bool = false; static mut AWS_LC_FIPS_SYS_NO_ASM: bool = false; static mut AWS_LC_FIPS_SYS_CPU_JITTER_ENTROPY: bool = false; fn initialize() { unsafe { AWS_LC_FIPS_SYS_NO_PREFIX = env_var_to_bool("AWS_LC_FIPS_SYS_NO_PREFIX").unwrap_or(false); AWS_LC_FIPS_SYS_PREGENERATING_BINDINGS = env_var_to_bool("AWS_LC_FIPS_SYS_PREGENERATING_BINDINGS").unwrap_or(false); AWS_LC_FIPS_SYS_EXTERNAL_BINDGEN = env_var_to_bool("AWS_LC_FIPS_SYS_EXTERNAL_BINDGEN").unwrap_or(false); AWS_LC_FIPS_SYS_NO_ASM = env_var_to_bool("AWS_LC_FIPS_SYS_NO_ASM").unwrap_or(false); AWS_LC_FIPS_SYS_CPU_JITTER_ENTROPY = env_var_to_bool("AWS_LC_FIPS_SYS_CPU_JITTER_ENTROPY").unwrap_or(false); } // The conditions below should prevent use of pregenerated bindings in all cases where the // consumer either requires or is requesting bindings generation. if (!is_no_prefix() && !has_bindgen_feature() && !is_external_bindgen() && cfg!(not(feature = "ssl"))) || is_pregenerating_bindings() { // We only set the PREGENERATED flag when we know pregenerated bindings are available. let target = effective_target(); let supported_platform = match target.as_str() { "x86_64-unknown-linux-gnu" | "aarch64-unknown-linux-gnu" | "x86_64-unknown-linux-musl" | "aarch64-unknown-linux-musl" | "x86_64-apple-darwin" | "aarch64-apple-darwin" => Some(target), _ => None, }; if let Some(platform) = supported_platform { emit_rustc_cfg(platform.as_str()); unsafe { PREGENERATED = true; } } } env::set_var("GOFLAGS", "-buildvcs=false"); } fn is_bindgen_required() -> bool { is_no_prefix() || is_pregenerating_bindings() || is_external_bindgen() || has_bindgen_feature() || !has_pregenerated() } bindgen_available!( fn internal_bindgen_supported() -> bool { let cv = bindgen::clang_version(); emit_warning(&format!("Clang version: {}", cv.full)); true } ); fn is_no_prefix() -> bool { unsafe { AWS_LC_FIPS_SYS_NO_PREFIX } } fn is_pregenerating_bindings() -> bool { unsafe { AWS_LC_FIPS_SYS_PREGENERATING_BINDINGS } } fn is_external_bindgen() -> bool { unsafe { AWS_LC_FIPS_SYS_EXTERNAL_BINDGEN } } fn is_no_asm() -> bool { unsafe { AWS_LC_FIPS_SYS_NO_ASM } } fn is_cpu_jitter_entropy() -> bool { unsafe { AWS_LC_FIPS_SYS_CPU_JITTER_ENTROPY } } fn has_bindgen_feature() -> bool { cfg!(feature = "bindgen") } fn has_pregenerated() -> bool { unsafe { PREGENERATED } } fn prepare_cargo_cfg() { // This is supported in Rust >= 1.77.0 if cfg!(clippy) { println!("cargo:rustc-check-cfg=cfg(aarch64_apple_darwin)"); println!("cargo:rustc-check-cfg=cfg(aarch64_unknown_linux_gnu)"); println!("cargo:rustc-check-cfg=cfg(aarch64_unknown_linux_musl)"); println!("cargo:rustc-check-cfg=cfg(cpu_jitter_entropy)"); println!("cargo:rustc-check-cfg=cfg(i686_unknown_linux_gnu)"); println!("cargo:rustc-check-cfg=cfg(use_bindgen_generated)"); println!("cargo:rustc-check-cfg=cfg(x86_64_apple_darwin)"); println!("cargo:rustc-check-cfg=cfg(x86_64_unknown_linux_gnu)"); println!("cargo:rustc-check-cfg=cfg(x86_64_unknown_linux_musl)"); } } bindgen_available!( fn handle_bindgen(manifest_dir: &Path, prefix: &Option<String>) -> bool { if internal_bindgen_supported() && !is_external_bindgen() { emit_warning(&format!( "Generating bindings - internal bindgen. Platform: {}", effective_target() )); let gen_bindings_path = out_dir().join("bindings.rs"); generate_bindings(manifest_dir, prefix, &gen_bindings_path); emit_rustc_cfg("use_bindgen_generated"); true } else { false } } ); bindgen_available!( not, fn handle_bindgen(_manifest_dir: &Path, _prefix: &Option<String>) -> bool { false } ); fn main() { initialize(); prepare_cargo_cfg(); let manifest_dir = current_dir(); let manifest_dir = dunce::canonicalize(Path::new(&manifest_dir)).unwrap(); let prefix_str = prefix_string(); let prefix = if is_no_prefix() { None } else { Some(prefix_str) }; let builder = get_builder(&prefix, &manifest_dir, &out_dir()); emit_warning("Building with: CMake"); emit_warning(&format!("Symbol Prefix: {:?}", &prefix)); builder.check_dependencies().unwrap(); #[allow(unused_assignments)] let mut bindings_available = false; if is_pregenerating_bindings() { #[cfg(feature = "bindgen")] { let src_bindings_path = Path::new(&manifest_dir) .join("src") .join(format!("{}.rs", target_platform_prefix("crypto"))); emit_warning(&format!( "Generating src bindings: {}", &src_bindings_path.display() )); if is_external_bindgen() { external_generate_src_bindings(&manifest_dir, &prefix, &src_bindings_path); } else { generate_src_bindings(&manifest_dir, &prefix, &src_bindings_path); } bindings_available = true; } } else if is_bindgen_required() { bindings_available = handle_bindgen(&manifest_dir, &prefix); } else { bindings_available = true; } if !bindings_available { let options = BindingOptions { build_prefix: prefix, include_ssl: cfg!(feature = "ssl"), disable_prelude: true, }; let gen_bindings_path = out_dir().join("bindings.rs"); let result = invoke_external_bindgen(&manifest_dir, &options, &gen_bindings_path); match result { Ok(()) => { emit_rustc_cfg("use_bindgen_generated"); bindings_available = true; } Err(msg) => eprintln!("Failure invoking external bindgen! {msg}"), } } assert!( bindings_available, "aws-lc-fips-sys build failed. Please enable the 'bindgen' feature on aws-lc-rs or aws-lc-fips-sys.\ For more information, see the aws-lc-rs User Guide: https://aws.github.io/aws-lc-rs/index.html" ); builder.build().unwrap(); println!( "cargo:include={}", setup_include_paths(&out_dir(), &manifest_dir).display() ); // export the artifact names println!("cargo:libcrypto={}_crypto", prefix_string()); if cfg!(feature = "ssl") { println!("cargo:libssl={}_ssl", prefix_string()); } println!("cargo:conf={}", OSSL_CONF_DEFINES.join(",")); println!("cargo:rerun-if-changed=builder/"); println!("cargo:rerun-if-changed=aws-lc/"); } fn setup_include_paths(out_dir: &Path, manifest_dir: &Path) -> PathBuf { let mut include_paths = vec![ get_rust_include_path(manifest_dir), get_generated_include_path(manifest_dir), get_aws_lc_include_path(manifest_dir), ]; if let Some(extra_paths) = get_aws_lc_fips_sys_includes_path() { include_paths.extend(extra_paths); } let include_dir = out_dir.join("include"); std::fs::create_dir_all(&include_dir).unwrap(); // iterate over all the include paths and copy them into the final output for path in include_paths { for child in std::fs::read_dir(path).into_iter().flatten().flatten() { if child.file_type().map_or(false, |t| t.is_file()) { let _ = std::fs::copy( child.path(), include_dir.join(child.path().file_name().unwrap()), ); continue; } // prefer the earliest paths let options = fs_extra::dir::CopyOptions::new() .skip_exist(true) .copy_inside(true); let _ = fs_extra::dir::copy(child.path(), &include_dir, &options); } } include_dir } #[derive(Default)] #[allow(dead_code)] pub(crate) struct BindingOptions { pub build_prefix: Option<String>, pub include_ssl: bool, pub disable_prelude: bool, } impl Debug for BindingOptions { fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result { f.debug_struct("BindingOptions") .field("build_prefix", &self.build_prefix) .field("include_ssl", &self.include_ssl) .field("disable_prelude", &self.disable_prelude) .finish() } } fn verify_bindgen() -> Result<(), String> { let result = execute_command("bindgen".as_ref(), &["--version".as_ref()]); if !result.status { if !result.executed { eprintln!( "Consider installing the bindgen-cli: \ `cargo install --force --locked bindgen-cli`\ \n\ See our User Guide for more information about bindgen:\ https://aws.github.io/aws-lc-rs/index.html" ); } return Err("External bindgen command failed.".to_string()); } let mut major_version: u32 = 0; let mut minor_version: u32 = 0; let mut patch_version: u32 = 0; let bindgen_version = result.stdout.split(' ').nth(1); if let Some(version) = bindgen_version { let version_parts: Vec<&str> = version.trim().split('.').collect(); if version_parts.len() == 3 { major_version = version_parts[0].parse::<u32>().unwrap_or(0); minor_version = version_parts[1].parse::<u32>().unwrap_or(0); patch_version = version_parts[2].parse::<u32>().unwrap_or(0); } } // We currently expect to support all bindgen versions >= 0.69.3 if major_version == 0 && (minor_version < 69 || (minor_version == 69 && patch_version < 3)) { eprintln!( "bindgen-cli was used. Detected version was: \ {major_version}.{minor_version}.{patch_version} \n\ If this is not the latest version, consider upgrading : \ `cargo install --force --locked bindgen-cli`\ \n\ See our User Guide for more information about bindgen:\ https://aws.github.io/aws-lc-rs/index.html" ); } Ok(()) } const PRELUDE: &str = r" // Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. // SPDX-License-Identifier: Apache-2.0 OR ISC #![allow( clippy::cast_lossless, clippy::cast_possible_truncation, clippy::default_trait_access, clippy::must_use_candidate, clippy::not_unsafe_ptr_arg_deref, clippy::ptr_as_ptr, clippy::pub_underscore_fields, clippy::semicolon_if_nothing_returned, clippy::too_many_lines, clippy::unreadable_literal, clippy::used_underscore_binding, clippy::useless_transmute, dead_code, improper_ctypes, non_camel_case_types, non_snake_case, non_upper_case_globals, unused_imports, )] "; fn invoke_external_bindgen( manifest_dir: &Path, options: &BindingOptions, gen_bindings_path: &Path, ) -> Result<(), String> { verify_bindgen()?; emit_warning(&format!( "Generating bindings - external bindgen. Platform: '{}' Prefix: '{:?}'", effective_target(), &options.build_prefix )); let mut clang_args = prepare_clang_args( manifest_dir, &BindingOptions { // For external bindgen, we don't want the prefix headers to be included. // The bindgen-cli will add prefixes to the symbols to form the correct link name. build_prefix: None, include_ssl: options.include_ssl, disable_prelude: options.disable_prelude, }, ); let header = get_rust_include_path(manifest_dir) .join("rust_wrapper.h") .display() .to_string(); if options.include_ssl { clang_args.extend([String::from("-DAWS_LC_RUST_INCLUDE_SSL")]); } let sym_prefix: String; let mut bindgen_params = vec![]; if let Some(prefix_str) = &options.build_prefix { sym_prefix = if target_os().to_lowercase() == "macos" || target_os().to_lowercase() == "ios" || (target_os().to_lowercase() == "windows" && target_arch() == "x86") { format!("_{prefix_str}_") } else { format!("{prefix_str}_") }; bindgen_params.extend(vec!["--prefix-link-name", sym_prefix.as_str()]); } // These flags needs to be kept in sync with the setup in bindgen::prepare_bindings_builder // If `bindgen-cli` makes backwards incompatible changes, we will update the parameters below // to conform with the most recent release. We will guide consumers to likewise use the // latest version of bindgen-cli. bindgen_params.extend(vec![ "--allowlist-file", r".*(/|\\)openssl((/|\\)[^/\\]+)+\.h", "--allowlist-file", r".*(/|\\)rust_wrapper\.h", "--rustified-enum", r"point_conversion_form_t", "--default-macro-constant-type", r"signed", "--with-derive-default", "--with-derive-partialeq", "--with-derive-eq", "--raw-line", COPYRIGHT, "--generate", "functions,types,vars,methods,constructors,destructors", header.as_str(), "--rust-target", r"1.59", "--output", gen_bindings_path.to_str().unwrap(), "--formatter", r"rustfmt", ]); if !options.disable_prelude { bindgen_params.extend(["--raw-line", PRELUDE]); } bindgen_params.push("--"); clang_args .iter() .for_each(|x| bindgen_params.push(x.as_str())); let cmd_params: Vec<OsString> = bindgen_params.iter().map(OsString::from).collect(); let cmd_params: Vec<&OsStr> = cmd_params.iter().map(OsString::as_os_str).collect(); let result = execute_command("bindgen".as_ref(), cmd_params.as_ref()); if !result.status { return Err(format!( "\n\n\ bindgen-PARAMS: {}\n\ bindgen-STDOUT: {}\n\ bindgen-STDERR: {}", bindgen_params.join(" "), result.stdout.as_ref(), result.stderr.as_ref() )); } Ok(()) } fn add_header_include_path(args: &mut Vec<String>, path: String) { args.push("-I".to_string()); args.push(path); } fn prepare_clang_args(manifest_dir: &Path, options: &BindingOptions) -> Vec<String> { let mut clang_args: Vec<String> = Vec::new(); add_header_include_path( &mut clang_args, get_rust_include_path(manifest_dir).display().to_string(), ); if options.build_prefix.is_some() { // NOTE: It's possible that the prefix embedded in the header files doesn't match the prefix // specified. This only happens when the version number as changed in Cargo.toml, but the // new headers have not yet been generated. add_header_include_path( &mut clang_args, get_generated_include_path(manifest_dir) .display() .to_string(), ); } add_header_include_path( &mut clang_args, get_aws_lc_include_path(manifest_dir).display().to_string(), ); if let Some(include_paths) = get_aws_lc_fips_sys_includes_path() { for path in include_paths { add_header_include_path(&mut clang_args, path.display().to_string()); } } clang_args } const COPYRIGHT: &str = r" // Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. // SPDX-License-Identifier: Apache-2.0 OR ISC ";