2022-12-29 22:47:02 +01:00
|
|
|
//! Implements the slightly odd "base32" encoding that's used in Nix.
|
|
|
|
//!
|
|
|
|
//! Nix uses a custom alphabet. Contrary to other implementations (RFC4648),
|
|
|
|
//! encoding to "nix base32" doesn't use any padding, and reads in characters
|
|
|
|
//! in reverse order.
|
|
|
|
//!
|
2023-01-26 14:42:16 +01:00
|
|
|
//! This is also the main reason why we can't use `data_encoding::Encoding` -
|
|
|
|
//! it gets things wrong if there normally would be a need for padding.
|
|
|
|
|
|
|
|
use std::fmt::Write;
|
|
|
|
|
|
|
|
use thiserror::Error;
|
2022-12-29 22:47:02 +01:00
|
|
|
|
2023-02-01 11:12:28 +01:00
|
|
|
const ALPHABET: &[u8; 32] = b"0123456789abcdfghijklmnpqrsvwxyz";
|
2023-01-26 14:42:16 +01:00
|
|
|
|
|
|
|
/// Errors that can occur while decoding nixbase32-encoded data.
|
|
|
|
#[derive(Debug, Eq, PartialEq, Error)]
|
|
|
|
pub enum Nixbase32DecodeError {
|
|
|
|
#[error("character {0:x} not in alphabet")]
|
|
|
|
CharacterNotInAlphabet(u8),
|
|
|
|
#[error("nonzero carry")]
|
|
|
|
NonzeroCarry(),
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
|
|
|
|
2023-01-26 14:42:16 +01:00
|
|
|
/// Returns encoded input
|
|
|
|
pub fn encode(input: &[u8]) -> String {
|
|
|
|
let output_len = encode_len(input.len());
|
|
|
|
let mut output = String::with_capacity(output_len);
|
|
|
|
|
|
|
|
if output_len > 0 {
|
|
|
|
for n in (0..=output_len - 1).rev() {
|
|
|
|
let b = n * 5; // bit offset within the entire input
|
|
|
|
let i = b / 8; // input byte index
|
|
|
|
let j = b % 8; // bit offset within that input byte
|
2022-12-29 22:47:02 +01:00
|
|
|
|
2023-01-26 14:42:16 +01:00
|
|
|
let mut c = input[i] >> j;
|
|
|
|
if i + 1 < input.len() {
|
|
|
|
// we want to right shift, and discard shifted out bits (unchecked)
|
|
|
|
// To do this without panicing, we need to do the shifting in u16
|
|
|
|
// and convert back to u8 afterwards.
|
2023-02-01 11:17:32 +01:00
|
|
|
c |= ((input[i + 1] as u16) << (8 - j as u16)) as u8
|
2023-01-26 14:42:16 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
output
|
|
|
|
.write_char(ALPHABET[(c & 0x1f) as usize] as char)
|
|
|
|
.unwrap();
|
|
|
|
}
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
2023-01-26 14:42:16 +01:00
|
|
|
|
|
|
|
output
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
|
|
|
|
2023-01-26 14:42:16 +01:00
|
|
|
/// This maps a nixbase32-encoded character to its binary representation, which
|
2023-10-27 02:34:19 +02:00
|
|
|
/// is also the index of the character in the alphabet. Invalid characters are
|
|
|
|
/// mapped to 0xFF, which is itself an invalid value.
|
|
|
|
const BASE32_ORD: [u8; 256] = {
|
|
|
|
let mut ord = [0xFF; 256];
|
|
|
|
let mut alphabet = ALPHABET.as_slice();
|
|
|
|
let mut i = 0;
|
|
|
|
|
|
|
|
while let &[c, ref tail @ ..] = alphabet {
|
|
|
|
ord[c as usize] = i;
|
|
|
|
alphabet = tail;
|
|
|
|
i += 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
ord
|
|
|
|
};
|
2022-12-29 22:47:02 +01:00
|
|
|
|
2023-01-26 14:42:16 +01:00
|
|
|
/// Returns decoded input
|
2023-10-27 09:50:38 +02:00
|
|
|
pub fn decode(input: impl AsRef<[u8]>) -> Result<Vec<u8>, Nixbase32DecodeError> {
|
|
|
|
let input = input.as_ref();
|
|
|
|
|
2023-01-26 14:42:16 +01:00
|
|
|
let output_len = decode_len(input.len());
|
|
|
|
let mut output: Vec<u8> = vec![0x00; output_len];
|
|
|
|
|
|
|
|
// loop over all characters in reverse, and keep the iteration count in n.
|
2023-10-27 02:06:01 +02:00
|
|
|
let mut carry = 0;
|
2023-10-27 02:34:19 +02:00
|
|
|
let mut mask = 0;
|
2023-10-27 02:06:01 +02:00
|
|
|
for (n, &c) in input.iter().rev().enumerate() {
|
2023-10-27 02:34:19 +02:00
|
|
|
let b = n * 5;
|
|
|
|
let i = b / 8;
|
|
|
|
let j = b % 8;
|
|
|
|
|
|
|
|
let digit = BASE32_ORD[c as usize];
|
|
|
|
let value = (digit as u16) << j;
|
|
|
|
output[i] |= value as u8 | carry;
|
|
|
|
carry = (value >> 8) as u8;
|
|
|
|
|
|
|
|
mask |= digit;
|
|
|
|
}
|
|
|
|
|
|
|
|
if mask == 0xFF {
|
|
|
|
let c = find_invalid(input);
|
|
|
|
return Err(Nixbase32DecodeError::CharacterNotInAlphabet(c));
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
|
|
|
|
2023-10-27 02:06:01 +02:00
|
|
|
// if we're at the end, but have a nonzero carry, the encoding is invalid.
|
|
|
|
if carry != 0 {
|
|
|
|
return Err(Nixbase32DecodeError::NonzeroCarry());
|
|
|
|
}
|
|
|
|
|
2023-01-26 14:42:16 +01:00
|
|
|
Ok(output)
|
|
|
|
}
|
|
|
|
|
2023-10-27 02:34:19 +02:00
|
|
|
#[cold]
|
|
|
|
fn find_invalid(input: &[u8]) -> u8 {
|
|
|
|
for &c in input {
|
|
|
|
if !ALPHABET.contains(&c) {
|
|
|
|
return c;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
unreachable!()
|
|
|
|
}
|
|
|
|
|
2023-01-26 14:42:16 +01:00
|
|
|
/// Returns the decoded length of an input of length len.
|
|
|
|
pub fn decode_len(len: usize) -> usize {
|
2023-02-01 11:13:37 +01:00
|
|
|
(len * 5) / 8
|
2023-01-26 14:42:16 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
/// Returns the encoded length of an input of length len
|
|
|
|
pub fn encode_len(len: usize) -> usize {
|
2023-10-27 02:01:58 +02:00
|
|
|
(len * 8 + 4) / 5
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
#[cfg(test)]
|
|
|
|
mod tests {
|
2023-10-27 03:12:26 +02:00
|
|
|
use hex_literal::hex;
|
2022-12-29 22:47:02 +01:00
|
|
|
use test_case::test_case;
|
|
|
|
|
2023-10-27 03:12:26 +02:00
|
|
|
#[test_case("", &[]; "empty bytes")]
|
|
|
|
#[test_case("0z", &hex!("1f"); "one byte")]
|
|
|
|
#[test_case("00bgd045z0d4icpbc2yyz4gx48ak44la", &hex!("8a12321522fd91efbd60ebb2481af88580f61600"); "store path")]
|
|
|
|
#[test_case("0c5b8vw40dy178xlpddw65q9gf1h2186jcc3p4swinwggbllv8mk", &hex!("b3a24de97a8fdbc835b9833169501030b8977031bcb54b3b3ac13740f846ab30"); "sha256")]
|
|
|
|
fn encode(enc: &str, dec: &[u8]) {
|
2023-01-26 14:42:16 +01:00
|
|
|
assert_eq!(enc, super::encode(&dec));
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
|
|
|
|
2023-10-27 03:12:26 +02:00
|
|
|
#[test_case("", Some(&[]) ; "empty bytes")]
|
|
|
|
#[test_case("0z", Some(&hex!("1f")); "one byte")]
|
|
|
|
#[test_case("00bgd045z0d4icpbc2yyz4gx48ak44la", Some(&hex!("8a12321522fd91efbd60ebb2481af88580f61600")); "store path")]
|
|
|
|
#[test_case("0c5b8vw40dy178xlpddw65q9gf1h2186jcc3p4swinwggbllv8mk", Some(&hex!("b3a24de97a8fdbc835b9833169501030b8977031bcb54b3b3ac13740f846ab30")); "sha256")]
|
2023-10-03 10:05:28 +02:00
|
|
|
// this is invalid encoding, because it encodes 10 1-bits, so the carry
|
|
|
|
// would be 2 1-bits
|
2022-12-29 22:47:02 +01:00
|
|
|
#[test_case("zz", None; "invalid encoding-1")]
|
|
|
|
// this is an even more specific example - it'd decode as 00000000 11
|
2023-01-26 14:42:16 +01:00
|
|
|
#[test_case("c0", None; "invalid encoding-2")]
|
2022-12-29 22:47:02 +01:00
|
|
|
|
2023-10-27 03:12:26 +02:00
|
|
|
fn decode(enc: &str, dec: Option<&[u8]>) {
|
2022-12-29 22:47:02 +01:00
|
|
|
match dec {
|
|
|
|
Some(dec) => {
|
|
|
|
// The decode needs to match what's passed in dec
|
2023-10-27 09:50:38 +02:00
|
|
|
assert_eq!(dec, super::decode(enc).unwrap());
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
|
|
|
None => {
|
|
|
|
// the decode needs to be an error
|
2023-10-27 09:50:38 +02:00
|
|
|
assert!(super::decode(enc).is_err());
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
fn encode_len() {
|
2023-10-27 02:01:58 +02:00
|
|
|
assert_eq!(super::encode_len(0), 0);
|
|
|
|
assert_eq!(super::encode_len(20), 32);
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
fn decode_len() {
|
2023-10-27 02:01:58 +02:00
|
|
|
assert_eq!(super::decode_len(0), 0);
|
|
|
|
assert_eq!(super::decode_len(32), 20);
|
2022-12-29 22:47:02 +01:00
|
|
|
}
|
|
|
|
}
|