Try getting it to workboringfun-ios

4 files changed, 142 insertions, 0 deletions

diff --git a/ios/BoringtunWrapper/BoringTunWrapper.swift b/ios/BoringtunWrapper/BoringTunWrapper.swift
new file mode 100644
index 0000000000..a91c77a37a
--- /dev/null
+++ b/ios/BoringtunWrapper/BoringTunWrapper.swift
@@ -0,0 +1,19 @@
+//
+//  BoringTunWrapper.swift
+//  BoringtunWrapper
+//
+//  Created by Marco Nikic on 2025-04-25.
+//  Copyright © 2025 Mullvad VPN AB. All rights reserved.
+//
+
+import Foundation
+import BoringTunProxy
+
+public class BoringTunWrapper {
+    public init() {}
+
+    public func createTunnel() {
+        print("Hello")
+        new_tunnel("helo", "hello", "hello", 0, 0)
+    }
+}
diff --git a/ios/BoringtunWrapper/BoringtunWrapper.h b/ios/BoringtunWrapper/BoringtunWrapper.h
new file mode 100644
index 0000000000..df317cb022
--- /dev/null
+++ b/ios/BoringtunWrapper/BoringtunWrapper.h
@@ -0,0 +1,10 @@
+//
+//  BoringtunWrapper.h
+//  BoringtunWrapper
+//
+//  Created by Marco Nikic on 2025-04-25.
+//  Copyright © 2025 Mullvad VPN AB. All rights reserved.
+//
+
+#import <Foundation/Foundation.h>
+#import "wireguard_ffi.h"
diff --git a/ios/BoringtunWrapper/include/wireguard_ffi.h b/ios/BoringtunWrapper/include/wireguard_ffi.h
new file mode 100644
index 0000000000..8078ecdbb6
--- /dev/null
+++ b/ios/BoringtunWrapper/include/wireguard_ffi.h
@@ -0,0 +1,108 @@
+// Copyright (c) 2019 Cloudflare, Inc. All rights reserved.
+// SPDX-License-Identifier: BSD-3-Clause
+
+
+#include <stdarg.h>
+#include <stdbool.h>
+#include <stdint.h>
+#include <stdlib.h>
+
+
+struct wireguard_tunnel; // This corresponds to the Rust type
+
+enum
+{
+    MAX_WIREGUARD_PACKET_SIZE = 65536 + 64,
+};
+
+enum result_type
+{
+    WIREGUARD_DONE = 0,
+    WRITE_TO_NETWORK = 1,
+    WIREGUARD_ERROR = 2,
+    WRITE_TO_TUNNEL_IPV4 = 4,
+    WRITE_TO_TUNNEL_IPV6 = 6,
+};
+
+struct wireguard_result
+{
+    enum result_type op;
+    size_t size;
+};
+
+struct stats
+{
+    int64_t time_since_last_handshake;
+    size_t tx_bytes;
+    size_t rx_bytes;
+    float estimated_loss;
+    int32_t estimated_rtt; // rtt estimated on time it took to complete latest initiated handshake in ms
+    uint8_t reserved[56];  // decrement appropriately when adding new fields
+};
+
+struct x25519_key
+{
+    uint8_t key[32];
+};
+
+// Generates a fresh x25519 secret key
+struct x25519_key x25519_secret_key();
+// Computes an x25519 public key from a secret key
+struct x25519_key x25519_public_key(struct x25519_key private_key);
+// Encodes a public or private x25519 key to base64. Must be freed with x25519_key_to_str_free.
+const char *x25519_key_to_base64(struct x25519_key key);
+// Encodes a public or private x25519 key to hex. Must be freed with x25519_key_to_str_free.
+const char *x25519_key_to_hex(struct x25519_key key);
+// Free string pointer obtained from either x25519_key_to_base64 or x25519_key_to_hex
+void x25519_key_to_str_free(const char *key_str);
+// Check if a null terminated string represents a valid x25519 key
+// Returns 0 if not
+int check_base64_encoded_x25519_key(const char *key);
+
+/// Sets the default tracing_subscriber to write to `log_func`.
+///
+/// Uses Compact format without level, target, thread ids, thread names, or ansi control characters.
+/// Subscribes to TRACE level events.
+///
+/// This function should only be called once as setting the default tracing_subscriber
+/// more than once will result in an error.
+///
+/// Returns false on failure.
+///
+/// # Safety
+///
+/// `c_char` will be freed by the library after calling `log_func`. If the value needs
+/// to be stored then `log_func` needs to create a copy, e.g. `strcpy`.
+bool set_logging_function(void (*log_func)(const char *));
+
+// Allocate a new tunnel
+struct wireguard_tunnel *new_tunnel(const char *static_private,
+                                    const char *server_static_public,
+                                    const char *preshared_key,
+                                    uint16_t keep_alive, // Keep alive interval in seconds
+                                    uint32_t index);      // The 24bit index prefix to be used for session indexes
+
+// Deallocate the tunnel
+void tunnel_free(struct wireguard_tunnel *);
+
+struct wireguard_result wireguard_write(const struct wireguard_tunnel *tunnel,
+                                        const uint8_t *src,
+                                        uint32_t src_size,
+                                        uint8_t *dst,
+                                        uint32_t dst_size);
+
+struct wireguard_result wireguard_read(const struct wireguard_tunnel *tunnel,
+                                       const uint8_t *src,
+                                       uint32_t src_size,
+                                       uint8_t *dst,
+                                       uint32_t dst_size);
+
+struct wireguard_result wireguard_tick(const struct wireguard_tunnel *tunnel,
+                                       uint8_t *dst,
+                                       uint32_t dst_size);
+
+struct wireguard_result wireguard_force_handshake(const struct wireguard_tunnel *tunnel,
+                                                  uint8_t *dst,
+                                                  uint32_t dst_size);
+
+struct stats wireguard_stats(const struct wireguard_tunnel *tunnel);
diff --git a/ios/BoringtunWrapper/module.private.modulemap b/ios/BoringtunWrapper/module.private.modulemap
new file mode 100644
index 0000000000..b184c04c7f
--- /dev/null
+++ b/ios/BoringtunWrapper/module.private.modulemap
@@ -0,0 +1,5 @@
+framework module BoringTunProxy {
+   header "wireguard_ffi.h"
+   link "libboringtun"
+   export *
+}