cbor-core 0.9.1

CBOR::Core deterministic encoder/decoder with owned data structures
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121

//! Per-decode policy for accepting non-deterministic CBOR encodings.
//!
//! See [`Strictness`].

/// Policy for accepting non-deterministic CBOR encodings during a decode.
///
/// CBOR::Core requires every value to be encoded in a single canonical
/// form. The default decoder enforces that and rejects any deviation
/// with [`Error::NonDeterministic`](crate::Error::NonDeterministic).
/// Some producers (legacy encoders, bridges from other formats, hand
/// written test vectors) emit valid CBOR that violates one or more of
/// these rules. `Strictness` selects which violations the decoder
/// tolerates so that such input can still be read.
///
/// Each tolerated violation is normalized while decoding: the resulting
/// [`Value`](crate::Value) is the same value the canonical encoder
/// would produce, and re-encoding it always yields a CBOR::Core
/// compliant byte sequence. The original wire bytes are not preserved.
///
/// The default, [`Strictness::STRICT`], matches the CBOR::Core draft
/// exactly. [`Strictness::LENIENT`] accepts every supported deviation.
/// Set individual fields for a custom mix.
///
/// # Examples
///
/// ```
/// use cbor_core::{DecodeOptions, Strictness, Value};
///
/// // 255 wrongly encoded with a two byte argument (canonical: 0x18 0xff).
/// let bytes = [0x19, 0x00, 0xff];
///
/// // Default: rejected.
/// assert!(DecodeOptions::new().decode(&bytes).is_err());
///
/// // Lenient: accepted and normalized.
/// let v = DecodeOptions::new()
///     .strictness(Strictness::LENIENT)
///     .decode(&bytes)
///     .unwrap();
/// assert_eq!(v, Value::from(255));
/// assert_eq!(v.encode(), vec![0x18, 0xff]);
/// ```
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash)]
pub struct Strictness {
    /// Accept integers, lengths, and tag numbers encoded in a wider
    /// argument than necessary (for example `0x19 0x00 0xff` for the
    /// value 255 instead of `0x18 0xff`).
    pub allow_non_shortest_integers: bool,

    /// Accept floating point values encoded in a wider form than
    /// necessary (for example an f32 that fits exactly in f16). The
    /// decoded [`Float`](crate::Float) is re-stored in the shortest
    /// form that preserves the value bit for bit, including NaN
    /// payloads.
    pub allow_non_shortest_floats: bool,

    /// Accept big integer tags (tag 2 / tag 3) whose payload has
    /// leading zero bytes or fits into a `u64`. Leading zeros are
    /// stripped; a value that fits is downcast to
    /// [`Value::Unsigned`](crate::Value::Unsigned) or
    /// [`Value::Negative`](crate::Value::Negative).
    pub allow_oversized_bigints: bool,

    /// Accept maps whose keys are not in CBOR canonical (length and
    /// then bytewise) order. Keys are sorted by [`Value`](crate::Value)
    /// after decoding, which is equivalent to canonical order once each
    /// value has been re-encoded in shortest form. With
    /// [`allow_non_shortest_integers`](Self::allow_non_shortest_integers)
    /// off, the two orders coincide; with it on, the by-value order is
    /// the only well-defined choice because the original byte lengths
    /// are normalized away.
    pub allow_unsorted_map_keys: bool,

    /// Accept maps that contain the same key more than once. The last
    /// occurrence wins, matching
    /// [`Map::from_pairs`](crate::Map::from_pairs).
    pub allow_duplicate_map_keys: bool,

    /// Accept indefinite-length encodings (RFC 8949 §3.2.2) for byte
    /// strings, text strings, arrays, and maps. The chunks of an
    /// indefinite-length string are concatenated; an indefinite-length
    /// array or map is read until the break code. The resulting
    /// [`Value`](crate::Value) is the same that a definite-length
    /// encoding would produce, so re-encoding emits canonical bytes.
    ///
    /// In [`Format::Diagnostic`](crate::Format::Diagnostic) input, the
    /// flag also enables the matching RFC 8949 §8 spellings:
    /// `[_ ...]`, `{_ ...}`, and `(_ chunk, ...)`.
    pub allow_indefinite_length: bool,
}

impl Strictness {
    /// Reject every form of non-deterministic encoding. Default for
    /// [`DecodeOptions`](crate::DecodeOptions).
    pub const STRICT: Self = Self {
        allow_non_shortest_integers: false,
        allow_non_shortest_floats: false,
        allow_oversized_bigints: false,
        allow_unsorted_map_keys: false,
        allow_duplicate_map_keys: false,
        allow_indefinite_length: false,
    };

    /// Accept every non-deterministic encoding the decoder knows how to
    /// normalize. The resulting [`Value`](crate::Value) is canonical;
    /// re-encoding it produces CBOR::Core compliant bytes.
    pub const LENIENT: Self = Self {
        allow_non_shortest_integers: true,
        allow_non_shortest_floats: true,
        allow_oversized_bigints: true,
        allow_unsorted_map_keys: true,
        allow_duplicate_map_keys: true,
        allow_indefinite_length: true,
    };
}

impl Default for Strictness {
    fn default() -> Self {
        Self::STRICT
    }
}