packaging
/
ostree
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

src: reimplement checksum hex and base64 en/decoding 

This allows us to provide actually useful error handling
This commit is contained in:
Felix Krull 2020-08-26 19:45:32 +02:00 committed by Colin Walters
parent f3b0bbe64c
commit 19076fe6d8
3 changed files with 99 additions and 98 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
rust-bindings/rust/Cargo.toml
View File

@ -41,6 +41,9 @@ gobject-sys = "0.10.0"
gio-sys = "0.10.0" gio-sys = "0.10.0"
once_cell = "1.4.0" once_cell = "1.4.0"
ostree-sys = { version = "0.6.0", path = "sys" } ostree-sys = { version = "0.6.0", path = "sys" }
radix64 = "0.6.2"
hex = "0.4.2"
thiserror = "1.0.20"
[dev-dependencies] [dev-dependencies]
maplit = "1.0.2" maplit = "1.0.2"

191
rust-bindings/rust/src/checksum.rs
View File

@ -1,14 +1,31 @@
use glib::{ use glib::translate::{FromGlibPtrFull, FromGlibPtrNone};
translate::{from_glib_full, FromGlibPtrFull, FromGlibPtrNone}, use glib_sys::{g_free, g_malloc0, gpointer};
GString, use once_cell::sync::OnceCell;
}; use std::ptr::copy_nonoverlapping;
use glib_sys::{g_free, g_malloc, g_malloc0, gpointer};
use libc::c_char;
use std::{fmt, ptr::copy_nonoverlapping};
const BYTES_LEN: usize = ostree_sys::OSTREE_SHA256_DIGEST_LEN as usize; const BYTES_LEN: usize = ostree_sys::OSTREE_SHA256_DIGEST_LEN as usize;
const HEX_LEN: usize = ostree_sys::OSTREE_SHA256_STRING_LEN as usize;
const B64_LEN: usize = 43; static BASE64_CONFIG: OnceCell<radix64::CustomConfig> = OnceCell::new();
fn base64_config() -> &'static radix64::CustomConfig {
BASE64_CONFIG.get_or_init(|| {
radix64::configs::CustomConfigBuilder::with_alphabet(
// modified base64 alphabet used by ostree (uses _ instead of /)
"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+_",
)
.no_padding()
.build()
.unwrap()
})
}
#[derive(Debug, thiserror::Error)]
pub enum ChecksumError {
#[error("invalid hex checksum string")]
InvalidHexString,
#[error("invalid base64 checksum string")]
InvalidBase64String,
}
/// A binary SHA256 checksum. /// A binary SHA256 checksum.
#[derive(Debug)] #[derive(Debug)]
@ -16,80 +33,64 @@ pub struct Checksum {
bytes: *mut [u8; BYTES_LEN], bytes: *mut [u8; BYTES_LEN],
} }
// Safety: just a pointer to some memory owned by the type itself.
unsafe impl Send for Checksum {}
impl Checksum { impl Checksum {
pub const DIGEST_LEN: usize = BYTES_LEN;
/// Create a `Checksum` value, taking ownership of the given memory location.
///
/// # Safety
/// `bytes` must point to a fully initialized 32-byte memory location that is freeable with
/// `g_free` (this is e.g. the case if the memory was allocated with `g_malloc`). The value
/// takes ownership of the memory, i.e. the memory is freed when the value is dropped. The
/// memory must not be freed by other code.
unsafe fn new(bytes: *mut [u8; Self::DIGEST_LEN]) -> Checksum {
assert!(!bytes.is_null());
Checksum { bytes }
}
/// Create a `Checksum` from a byte array.
pub fn from_bytes(checksum: &[u8; Self::DIGEST_LEN]) -> Checksum {
let ptr = checksum as *const [u8; BYTES_LEN] as *mut [u8; BYTES_LEN];
unsafe {
// Safety: we know this byte array is long enough.
Checksum::from_glib_none(ptr)
}
}
/// Create a `Checksum` from a hexadecimal SHA256 string. /// Create a `Checksum` from a hexadecimal SHA256 string.
/// pub fn from_hex(hex_checksum: &str) -> Result<Checksum, ChecksumError> {
/// Unfortunately, the underlying libostree function has no way to report parsing errors. If the let mut checksum = Checksum::zeroed();
/// string is not a valid SHA256 string, the program will abort! match hex::decode_to_slice(hex_checksum, checksum.as_mut()) {
pub fn from_hex(checksum: &str) -> Checksum { Ok(_) => Ok(checksum),
assert_eq!(checksum.len(), HEX_LEN); Err(_) => Err(ChecksumError::InvalidHexString),
unsafe {
// We know checksum is at least as long as needed, trailing NUL is unnecessary.
from_glib_full(ostree_sys::ostree_checksum_to_bytes(
checksum.as_ptr() as *const c_char
))
} }
} }
/// Create a `Checksum` from a base64-encoded String. /// Create a `Checksum` from a base64-encoded String.
/// pub fn from_base64(b64_checksum: &str) -> Result<Checksum, ChecksumError> {
/// Invalid base64 characters will not be reported, but will cause unknown output instead, most let mut checksum = Checksum::zeroed();
/// likely 0. match base64_config().decode_slice(b64_checksum, checksum.as_mut()) {
pub fn from_base64(b64_checksum: &str) -> Checksum { Ok(BYTES_LEN) => Ok(checksum),
assert_eq!(b64_checksum.len(), B64_LEN); Ok(_) => Err(ChecksumError::InvalidBase64String),
unsafe { Err(_) => Err(ChecksumError::InvalidBase64String),
let buf = g_malloc0(BYTES_LEN) as *mut [u8; BYTES_LEN];
// We know b64_checksum is at least as long as needed, trailing NUL is unnecessary.
ostree_sys::ostree_checksum_b64_inplace_to_bytes(
b64_checksum.as_ptr() as *const [c_char; 32],
buf as *mut u8,
);
from_glib_full(buf)
} }
} }
/// Convert checksum to hex-encoded string. /// Convert checksum to hex-encoded string.
pub fn to_hex(&self) -> GString { pub fn to_hex(&self) -> String {
// This one returns a NUL-terminated string. hex::encode(self.as_slice())
unsafe { from_glib_full(ostree_sys::ostree_checksum_from_bytes(self.bytes)) }
} }
/// Convert checksum to base64. /// Convert checksum to base64 string.
pub fn to_base64(&self) -> String { pub fn to_base64(&self) -> String {
let mut buf: Vec<u8> = Vec::with_capacity(B64_LEN + 1); base64_config().encode(self.as_slice())
unsafe { }
ostree_sys::ostree_checksum_b64_inplace_from_bytes(
self.bytes, /// Create a `Checksum` value, taking ownership of the given memory location.
buf.as_mut_ptr() as *mut c_char, ///
); /// # Safety
// Assumption: 43 valid bytes are in the buffer. /// `bytes` must point to an initialized 32-byte memory location that is freeable with
buf.set_len(B64_LEN); /// `g_free` (this is e.g. the case if the memory was allocated with `g_malloc`). The returned
// Assumption: all characters are ASCII, ergo valid UTF-8. /// value takes ownership of the memory and frees it on drop.
String::from_utf8_unchecked(buf) unsafe fn new(bytes: *mut [u8; BYTES_LEN]) -> Checksum {
} assert!(!bytes.is_null());
Checksum { bytes }
}
/// Create a `Checksum` value initialized to 0.
fn zeroed() -> Checksum {
let bytes = unsafe { g_malloc0(BYTES_LEN) as *mut [u8; BYTES_LEN] };
Checksum { bytes }
}
/// Get a shared reference to the inner array.
fn as_slice(&self) -> &[u8; BYTES_LEN] {
unsafe { &(*self.bytes) }
}
/// Get a mutable reference to the inner array.
fn as_mut(&mut self) -> &mut [u8; BYTES_LEN] {
unsafe { &mut (*self.bytes) }
} }
} }
@ -121,8 +122,8 @@ impl PartialEq for Checksum {
impl Eq for Checksum {} impl Eq for Checksum {}
impl fmt::Display for Checksum { impl std::fmt::Display for Checksum {
fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result { fn fmt(&self, f: &mut std::fmt::Formatter) -> std::fmt::Result {
write!(f, "{}", self.to_hex()) write!(f, "{}", self.to_hex())
} }
} }
@ -147,16 +148,17 @@ impl FromGlibPtrFull<*mut u8> for Checksum {
impl FromGlibPtrNone<*mut [u8; BYTES_LEN]> for Checksum { impl FromGlibPtrNone<*mut [u8; BYTES_LEN]> for Checksum {
unsafe fn from_glib_none(ptr: *mut [u8; BYTES_LEN]) -> Self { unsafe fn from_glib_none(ptr: *mut [u8; BYTES_LEN]) -> Self {
let cloned = g_malloc(BYTES_LEN) as *mut [u8; BYTES_LEN]; let checksum = Checksum::zeroed();
// copy one array of 32 elements // copy one array of BYTES_LEN elements
copy_nonoverlapping::<[u8; BYTES_LEN]>(ptr, cloned, 1); copy_nonoverlapping(ptr, checksum.bytes, 1);
Checksum::new(cloned) checksum
} }
} }
#[cfg(test)] #[cfg(test)]
mod tests { mod tests {
use super::*; use super::*;
use glib::translate::from_glib_full;
use glib_sys::g_malloc0; use glib_sys::g_malloc0;
const CHECKSUM_STRING: &str = const CHECKSUM_STRING: &str =
@ -170,61 +172,54 @@ mod tests {
assert_eq!(checksum.to_string(), "00".repeat(BYTES_LEN)); assert_eq!(checksum.to_string(), "00".repeat(BYTES_LEN));
} }
#[test]
fn should_create_checksum_from_bytes_copy() {
let bytes = [0u8; BYTES_LEN];
let checksum = Checksum::from_bytes(&bytes);
assert_eq!(checksum.to_string(), "00".repeat(BYTES_LEN));
}
#[test] #[test]
fn should_parse_checksum_string_to_bytes() { fn should_parse_checksum_string_to_bytes() {
let csum = Checksum::from_hex(CHECKSUM_STRING); let csum = Checksum::from_hex(CHECKSUM_STRING).unwrap();
assert_eq!(csum.to_string(), CHECKSUM_STRING); assert_eq!(csum.to_string(), CHECKSUM_STRING);
} }
#[test] #[test]
#[should_panic] fn should_fail_for_too_short_hex_string() {
fn should_panic_for_too_short_hex_string() { let result = Checksum::from_hex(&"FF".repeat(31));
Checksum::from_hex(&"FF".repeat(31)); assert!(result.is_err());
} }
#[test] #[test]
fn should_convert_checksum_to_base64() { fn should_convert_checksum_to_base64() {
let csum = Checksum::from_hex(CHECKSUM_STRING); let csum = Checksum::from_hex(CHECKSUM_STRING).unwrap();
assert_eq!(csum.to_base64(), CHECKSUM_BASE64); assert_eq!(csum.to_base64(), CHECKSUM_BASE64);
} }
#[test] #[test]
fn should_convert_base64_string_to_checksum() { fn should_convert_base64_string_to_checksum() {
let csum = Checksum::from_base64(CHECKSUM_BASE64); let csum = Checksum::from_base64(CHECKSUM_BASE64).unwrap();
assert_eq!(csum.to_base64(), CHECKSUM_BASE64); assert_eq!(csum.to_base64(), CHECKSUM_BASE64);
assert_eq!(csum.to_string(), CHECKSUM_STRING); assert_eq!(csum.to_string(), CHECKSUM_STRING);
} }
#[test] #[test]
#[should_panic] fn should_fail_for_too_short_b64_string() {
fn should_panic_for_too_short_b64_string() { let result = Checksum::from_base64("abcdefghi");
Checksum::from_base64("abcdefghi"); assert!(result.is_err());
} }
#[test] #[test]
fn should_be_all_zeroes_for_invalid_base64_string() { fn should_fail_for_invalid_base64_string() {
let csum = Checksum::from_base64(&"\n".repeat(43)); let result = Checksum::from_base64(&"\n".repeat(43));
assert_eq!(csum.to_string(), "00".repeat(32)); assert!(result.is_err());
} }
#[test] #[test]
fn should_compare_checksums() { fn should_compare_checksums() {
let csum = Checksum::from_hex(CHECKSUM_STRING); let csum = Checksum::from_hex(CHECKSUM_STRING).unwrap();
assert_eq!(csum, csum); assert_eq!(csum, csum);
let csum2 = Checksum::from_hex(CHECKSUM_STRING); let csum2 = Checksum::from_hex(CHECKSUM_STRING).unwrap();
assert_eq!(csum2, csum); assert_eq!(csum2, csum);
} }
#[test] #[test]
fn should_clone_value() { fn should_clone_value() {
let csum = Checksum::from_hex(CHECKSUM_STRING); let csum = Checksum::from_hex(CHECKSUM_STRING).unwrap();
let csum2 = csum.clone(); let csum2 = csum.clone();
assert_eq!(csum2, csum); assert_eq!(csum2, csum);
let csum3 = csum2.clone(); let csum3 = csum2.clone();

3
rust-bindings/rust/src/lib.rs
View File

@ -16,7 +16,10 @@ extern crate gio;
extern crate libc; extern crate libc;
#[macro_use] #[macro_use]
extern crate bitflags; extern crate bitflags;
extern crate hex;
extern crate once_cell; extern crate once_cell;
extern crate radix64;
extern crate thiserror;
// code generated by gir // code generated by gir
#[rustfmt::skip] #[rustfmt::skip]