base58-turbo 0.1.0

A high-performance Base58 encoder/decoder for Rust, optimized for high-throughput systems.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381

use crate::{Config, Error};

// ----------------------------------------------------------------------
// Constants & Lookups
// ----------------------------------------------------------------------

/// Base 58^10 (~4.3 * 10^17).
/// This fits in a u64, allowing us to process 10 characters per bignum iteration.
const RADIX_58_10: u64 = 430_804_206_899_405_824;

// ----------------------------------------------------------------------
// Arithmetic Helpers
// ----------------------------------------------------------------------

/// Multiplies the bignum by `multiplier` and adds `addend`.
///
/// `bignum = bignum * multiplier + addend`
///
/// Operates on Little Endian u64 digits. Returns true on success, false on overflow.
#[inline(always)]
unsafe fn bignum_mul_add(
    digits: &mut [u64],
    count: &mut usize,
    multiplier: u64,
    addend: u64,
) -> bool {
    let mut carry = addend as u128;
    let mul = multiplier as u128;
    let len = *count;

    // Standard schoolbook multiplication-with-carry (unrolled 2x)
    let mut i = 0;
    while i + 1 < len {
        let digit0 = *unsafe { digits.get_unchecked(i) };
        let result0 = (digit0 as u128) * mul + carry;
        *unsafe { digits.get_unchecked_mut(i) } = result0 as u64;
        let carry0 = result0 >> 64;

        let digit1 = *unsafe { digits.get_unchecked(i + 1) };
        let result1 = (digit1 as u128) * mul + carry0;
        *unsafe { digits.get_unchecked_mut(i + 1) } = result1 as u64;
        carry = result1 >> 64;

        i += 2;
    }
    if i < len {
        let digit = *unsafe { digits.get_unchecked(i) };
        let result = (digit as u128) * mul + carry;
        *unsafe { digits.get_unchecked_mut(i) } = result as u64;
        carry = result >> 64;
    }

    // Expand bignum if there is a remaining carry
    if carry > 0 {
        if len >= digits.len() {
            return false;
        }
        *unsafe { digits.get_unchecked_mut(len) } = carry as u64;
        *count += 1;
    }
    true
}

/// Parses a chunk of Base58 characters into a u64 value.
/// Also calculates the effective multiplier (58^len) for that chunk.
#[inline(always)]
unsafe fn parse_chunk(config: &Config, src: &[u8]) -> Result<(u64, u64), Error> {
    let mut value = 0u64;
    let mut multiplier = 1u64;
    let mut bad = 0u8;

    for &byte in src {
        let digit = *unsafe { config.decode_map.get_unchecked(byte as usize) };
        bad |= digit;

        value = value * 58 + (digit as u64);
        multiplier *= 58;
    }

    if bad & 0x80 != 0 {
        return Err(Error::InvalidCharacter);
    }

    Ok((value, multiplier))
}

// ----------------------------------------------------------------------
// Core Logic
// ----------------------------------------------------------------------

/// Decodes the payload into the destination buffer.
/// Returns the number of bytes written.
#[inline(always)]
unsafe fn decode_payload(config: &Config, mut src: &[u8], dst: &mut [u8]) -> Result<usize, Error> {
    // 1. Accumulation Phase
    // Use a stack-allocated buffer for the bignum (Little Endian u64s).
    // 160 u64s = 1280 bytes, sufficient for very large inputs.
    // Bypass zero-initialization to avoid memset overhead.
    let mut bignum_uninit = core::mem::MaybeUninit::<[u64; 160]>::uninit();
    let bignum_ptr = bignum_uninit.as_mut_ptr() as *mut u64;
    unsafe {
        *bignum_ptr = 0;
    }
    let bignum = unsafe { &mut *bignum_uninit.as_mut_ptr() };
    let mut count = 1;

    // Process full chunks of 10 characters (Base 58^10)
    // This reduces the bignum loop overhead by 10x.
    while src.len() >= 10 {
        // Unroll parsing for the fixed chunk size
        let d0 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(0) as usize)
        } as u64;
        let d1 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(1) as usize)
        } as u64;
        let d2 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(2) as usize)
        } as u64;
        let d3 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(3) as usize)
        } as u64;
        let d4 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(4) as usize)
        } as u64;
        let d5 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(5) as usize)
        } as u64;
        let d6 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(6) as usize)
        } as u64;
        let d7 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(7) as usize)
        } as u64;
        let d8 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(8) as usize)
        } as u64;
        let d9 = *unsafe {
            config
                .decode_map
                .get_unchecked(*src.get_unchecked(9) as usize)
        } as u64;

        let invalid = (d0 | d1 | d2 | d3 | d4 | d5 | d6 | d7 | d8 | d9) & 0x80;
        if invalid != 0 {
            return Err(Error::InvalidCharacter);
        }

        let v01 = d0 * 58 + d1;
        let v23 = d2 * 58 + d3;
        let v45 = d4 * 58 + d5;
        let v67 = d6 * 58 + d7;
        let v89 = d8 * 58 + d9;

        let v03 = v01 * 3364 + v23;
        let v47 = v45 * 3364 + v67;

        let v07 = v03 * 11316496 + v47;
        let chunk = v07 * 3364 + v89;

        if !unsafe { bignum_mul_add(bignum, &mut count, RADIX_58_10, chunk) } {
            return Err(Error::InputTooBig);
        }
        // Enforce 1024-byte decoded limit (128 u64 words)
        if count > 128 {
            return Err(Error::InputTooBig);
        }
        src = &src[10..];
    }

    // Process remaining tail (1-9 characters)
    if !src.is_empty() {
        let (chunk, multiplier) = unsafe { parse_chunk(config, src) }?;
        if !unsafe { bignum_mul_add(bignum, &mut count, multiplier, chunk) } {
            return Err(Error::InputTooBig);
        }
    }

    if count > 128 {
        return Err(Error::InputTooBig);
    }

    // 2. Emission Phase
    // Convert Little Endian u64 words to a Big Endian byte stream.
    // We write backwards from the end of the destination buffer.
    let mut out_idx = dst.len();

    for i in 0..count {
        let mut val = bignum[i];

        // Unpack u64 into 8 bytes
        for _ in 0..8 {
            if out_idx == 0 {
                // If we run out of space but still have data, fail.
                if val > 0 || i + 1 < count {
                    return Err(Error::BufferTooSmall);
                }
                break;
            }
            out_idx -= 1;
            *unsafe { dst.get_unchecked_mut(out_idx) } = val as u8;
            val >>= 8;
        }
    }

    // 3. Normalization Phase
    // Skip leading zeros *written by the loop* (not the explicit leading zeros from step 1)
    while out_idx < dst.len() && *unsafe { dst.get_unchecked(out_idx) } == 0 {
        out_idx += 1;
    }

    let length = dst.len() - out_idx;

    // Move the valid payload to the start of the buffer (memmove)
    if out_idx > 0 {
        let ptr = dst.as_mut_ptr();
        unsafe { core::ptr::copy(ptr.add(out_idx), ptr, length) };
    } else if length > dst.len() {
        return Err(Error::BufferTooSmall);
    }

    Ok(length)
}

// ----------------------------------------------------------------------
// Entry Point
// ----------------------------------------------------------------------

#[inline(always)]
pub unsafe fn decode_slice_unsafe(
    input: &[u8],
    dst: &mut [u8],
    config: &Config,
) -> Result<usize, Error> {
    // Hard limit of 2048 bytes.
    assert!(input.len() <= 2048, "Input too big! {}", input.len());

    // 1. Handle Leading Zeros
    let zero_char = *unsafe { config.alphabet.get_unchecked(0) };

    let mut leading_zeros = 0;
    while leading_zeros < input.len() && *unsafe { input.get_unchecked(leading_zeros) } == zero_char
    {
        leading_zeros += 1;
    }

    if leading_zeros > 1024 {
        return Err(Error::InputTooBig);
    }

    if leading_zeros > dst.len() {
        return Err(Error::BufferTooSmall);
    }

    // Write the zeros
    if leading_zeros > 0 {
        unsafe { core::ptr::write_bytes(dst.as_mut_ptr(), 0, leading_zeros) };
    }

    // 2. Decode the rest (The Payload)
    let src = &input[leading_zeros..];
    if src.is_empty() {
        return Ok(leading_zeros);
    }

    let written_payload = unsafe { decode_payload(config, src, &mut dst[leading_zeros..]) }?;
    let total_len = leading_zeros + written_payload;

    if total_len > 1024 {
        return Err(Error::InputTooBig);
    }

    Ok(total_len)
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::BITCOIN;

    #[test]
    fn test_bignum_mul_add_carry() {
        let mut digits = [0u64; 10];
        let mut count = 1;
        // (0 * 58) + 1 = 1
        unsafe { bignum_mul_add(&mut digits, &mut count, 58, 1) };
        assert_eq!(count, 1);
        assert_eq!(digits[0], 1);

        // (u64::MAX * 2) + 1 => carry
        digits[0] = u64::MAX;
        count = 1;
        unsafe { bignum_mul_add(&mut digits, &mut count, 2, 1) };
        assert_eq!(count, 2);
        // (2^64-1)*2 + 1 = 2^65 - 2 + 1 = 2^65 - 1.
        // Low 64 bits: all ones (u64::MAX).
        // High 64 bits: 1.
        assert_eq!(digits[0], u64::MAX);
        assert_eq!(digits[1], 1);
    }

    #[test]
    fn test_parse_chunk_invalid() {
        let config = BITCOIN.config();
        let res = unsafe { parse_chunk(config, b"10") }; // '0' is invalid
        assert!(res.is_err());
    }

    #[test]
    fn test_decode_payload_buffer_too_small() {
        let config = BITCOIN.config();
        let mut dst = [0u8; 1];
        // "222" -> 58*59 + 1 = 3423. Needs 2 bytes.
        let res = unsafe { decode_payload(config, b"222", &mut dst) };
        assert_eq!(res.unwrap_err(), Error::BufferTooSmall);
    }
}

#[cfg(all(test, miri))]
mod base58_miri_coverage {
    use super::*;
    use crate::BITCOIN;
    use rand::{RngExt, rng};

    fn random_bytes(len: usize) -> Vec<u8> {
        let mut rng = rng();
        (0..len).map(|_| rng.random()).collect()
    }

    #[test]
    fn miri_base58_decode_fuzz() {
        // Test different lengths under MIRI to ensure no out-of-bounds or UB.
        let lengths = [0, 1, 3, 10, 31, 32, 33, 63, 64, 65, 100, 512, 700];
        for &len in &lengths {
            let input_bytes = random_bytes(len);
            // Encode the random bytes
            let encoded_str = BITCOIN.encode(&input_bytes).unwrap();
            let encoded_bytes = encoded_str.as_bytes();

            // Decode back into a buffer
            let mut decoded_buf = vec![0u8; len];
            let decoded_len =
                unsafe { decode_slice_unsafe(encoded_bytes, &mut decoded_buf, BITCOIN.config()) }
                    .unwrap();
            assert_eq!(decoded_len, len);
            assert_eq!(&decoded_buf[..decoded_len], &input_bytes[..]);
        }
    }

    #[test]
    fn miri_base58_decode_leading_zeros() {
        // Test decoding with leading zeros under MIRI
        let input = "111222"; // 3 leading zeros, followed by data
        let mut out = [0u8; 10];
        let len =
            unsafe { decode_slice_unsafe(input.as_bytes(), &mut out, BITCOIN.config()) }.unwrap();
        // '1' decodes to 0x00. '2' decodes to 0x01.
        // "222" -> 58^2 + 58 + 1 = 3364 + 58 + 1 = 3423 = 0x0D5F
        // Output should be 0x00, 0x00, 0x00, 0x0D, 0x5F
        assert_eq!(len, 5);
        assert_eq!(&out[..5], &[0x00, 0x00, 0x00, 0x0D, 0x5F]);
    }
}