codec-rs 0.5.0

Isomorphic tokenizer + detokenizer for the Codec binary transport protocol — for Rust. Decodes streaming token IDs from Codec-compliant servers (vLLM, SGLang) and encodes text into IDs for the bidirectional path.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491

// SPDX-License-Identifier: MIT
//! Client-side helpers for the Codec compression contract.
//!
//! Rust twin of `codecai.compression` (Python): the server emits
//! `Codec-Zstd-Dict: sha256:<hex>` on every zstd response, the client
//! validates that header against locally-loaded dicts before
//! decompressing. See `spec/PROTOCOL.md` "Codec-Zstd-Dict response
//! header" (stable since v0.2) for the full contract.
//!
//! The actual zstd decompression is intentionally out of scope here —
//! callers usually already have an HTTP stack and pick their own
//! zstd binding (`zstd` crate, `zstd-safe`, an FFI wrapper, etc.).
//! This module just gives you the small piece that's specific to
//! Codec: matching a response's declared dict hash to the dict you've
//! loaded, with the case-insensitive header lookup and fail-fast
//! semantics the spec mandates.
//!
//! Wrong-dict decompression produces garbage bytes that downstream
//! msgpack / protobuf parsers will silently misinterpret — fail fast
//! at the dict-select boundary instead.

use std::collections::HashMap;
use std::fmt;

use sha2::{Digest, Sha256};

/// Compute the canonical `Codec-Zstd-Dict` hash for `dict_bytes`.
///
/// Returns `sha256:<lowercase hex>` — same shape as the server-side
/// header value and the `hash` field in tokenizer-map
/// `zstd_dictionaries[]` entries.
pub fn hash_zstd_dict(dict_bytes: &[u8]) -> String {
    let mut hasher = Sha256::new();
    hasher.update(dict_bytes);
    let digest = hasher.finalize();
    format!("sha256:{}", hex::encode(digest))
}

/// Raised when the server's `Codec-Zstd-Dict` header doesn't match any
/// dict the client has loaded, or is missing on a zstd response.
///
/// A wrong-dict decompression would produce garbage bytes that
/// downstream parsers would misinterpret — fail fast instead.
#[derive(Debug, Clone, PartialEq, Eq)]
pub enum CodecZstdDictError {
    /// Response was `Content-Encoding: zstd` but the server omitted
    /// the `Codec-Zstd-Dict` header. Per spec/PROTOCOL.md the server
    /// MUST name the dict it used; we refuse to guess.
    MissingHeader,
    /// `Codec-Zstd-Dict` value was not in the canonical
    /// `sha256:<64 hex chars>` shape. The wrapped string is the raw
    /// header value (trimmed) for diagnostics.
    MalformedHash(String),
    /// `Codec-Zstd-Dict` named a dict we haven't loaded. The caller
    /// should fetch it from the tokenizer map's `zstd_dictionaries[]`
    /// entry (the one whose `hash` matches) or retry the request with
    /// `Accept-Encoding: gzip` to downgrade to a no-dict path. The
    /// wrapped string is the declared hash.
    UnknownHash(String),
}

impl fmt::Display for CodecZstdDictError {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            CodecZstdDictError::MissingHeader => write!(
                f,
                "Response is Content-Encoding: zstd but no Codec-Zstd-Dict \
                 header was present. Per spec/PROTOCOL.md the server MUST \
                 name the dict it used. Refusing to guess."
            ),
            CodecZstdDictError::MalformedHash(value) => write!(
                f,
                "Malformed Codec-Zstd-Dict value: {value:?}. Expected \
                 'sha256:<64 hex chars>'."
            ),
            CodecZstdDictError::UnknownHash(hash) => write!(
                f,
                "Server used zstd dict {hash} but it isn't loaded \
                 locally. Fetch it from the tokenizer map's \
                 zstd_dictionaries[] entry (the entry whose hash \
                 matches), or send Accept-Encoding: gzip to downgrade."
            ),
        }
    }
}

impl std::error::Error for CodecZstdDictError {}

/// Pick the zstd dict to decompress this response with.
///
/// # Parameters
///
/// - `response_headers`: HTTP response header map. Keys are looked up
///   case-insensitively, matching the way `reqwest::HeaderMap` and most
///   HTTP libraries treat headers on the wire.
/// - `loaded_dicts`: `{ "sha256:<hex>" -> dict bytes }`. Populate this
///   from your tokenizer map's `zstd_dictionaries[]` entries; keys
///   follow the same canonical shape the server emits.
///
/// # Returns
///
/// - `Ok(Some(&dict_bytes))` when the response is
///   `Content-Encoding: zstd` and the server's `Codec-Zstd-Dict`
///   header points at a loaded dict — pass these bytes to your zstd
///   decoder (e.g. `zstd::stream::Decoder::with_dictionary`).
/// - `Ok(None)` when the response isn't zstd. The caller should pass
///   the body through identity / let its HTTP stack auto-decompress
///   gzip / brotli.
///
/// # Errors
///
/// Returns `CodecZstdDictError` when the response is zstd but the
/// header is missing, malformed, or names a dict the client hasn't
/// loaded. Wrong-dict decompression is never attempted — see the
/// spec rationale at `spec/PROTOCOL.md`.
pub fn select_zstd_dict_for_response<'a>(
    response_headers: &HashMap<String, String>,
    loaded_dicts: &'a HashMap<String, Vec<u8>>,
) -> Result<Option<&'a [u8]>, CodecZstdDictError> {
    let enc = header(response_headers, "content-encoding");
    match enc.map(|v| v.trim().to_ascii_lowercase()) {
        Some(ref v) if v == "zstd" => {}
        _ => return Ok(None), // caller's HTTP stack handles gzip/br/identity
    }

    let declared = match header(response_headers, "codec-zstd-dict") {
        Some(v) => v.trim().to_string(),
        None => return Err(CodecZstdDictError::MissingHeader),
    };
    if declared.is_empty() {
        return Err(CodecZstdDictError::MissingHeader);
    }

    if !is_canonical_sha256(&declared) {
        return Err(CodecZstdDictError::MalformedHash(declared));
    }

    match loaded_dicts.get(&declared) {
        Some(bytes) => Ok(Some(bytes.as_slice())),
        None => Err(CodecZstdDictError::UnknownHash(declared)),
    }
}

/// Case-insensitive header lookup. Most idiomatic HTTP libraries
/// (`reqwest::HeaderMap`, `http::HeaderMap`) already treat header
/// names case-insensitively; this is the defensive fallback for
/// callers that hand us a plain `HashMap<String, String>` lifted
/// out of their own request plumbing.
fn header<'a>(headers: &'a HashMap<String, String>, name: &str) -> Option<&'a str> {
    if let Some(v) = headers.get(name) {
        return Some(v.as_str());
    }
    let lower = name.to_ascii_lowercase();
    for (k, v) in headers.iter() {
        if k.to_ascii_lowercase() == lower {
            return Some(v.as_str());
        }
    }
    None
}

fn is_canonical_sha256(value: &str) -> bool {
    const PREFIX: &str = "sha256:";
    if !value.starts_with(PREFIX) {
        return false;
    }
    let hex = &value[PREFIX.len()..];
    hex.len() == 64 && hex.bytes().all(|b| matches!(b, b'0'..=b'9' | b'a'..=b'f'))
}

// ── Discoverable zstd dictionaries (.well-known/codec/dicts/<sha>.zstd, v0.5+) ──

/// Errors raised by the v0.5 zstd-dictionary discovery surface.
///
/// The discovery path is hard-fail by design (no silent fallback to identity
/// bytes) — see `spec/WELL_KNOWN_DISCOVERY.md § Resolution failures`. Silent
/// dict-load failure was the v0.4.1 sglang COPY-dicts regression class this
/// surface eliminates.
#[derive(Debug, thiserror::Error)]
pub enum ZstdDictDiscoveryError {
    /// Hash input was not `sha256:<64 hex>` or bare `<64 hex>`.
    #[error("Invalid dict hash {hash:?}: expected 'sha256:<64 hex>' or '<64 hex>'")]
    InvalidHash { hash: String },
    /// `.well-known/codec/dicts/<hex>.zstd` returned HTTP 404.
    #[error("No zstd dict at {url} (HTTP 404)")]
    NotFound { url: String },
    /// Fetched bytes did not hash to the `<hex>` path component in the URL.
    /// Treat as byte-tampering: never decompress.
    #[error("Zstd dict hash mismatch at {url}\n  expected: {expected}\n  actual:   {actual}")]
    HashMismatch {
        url: String,
        expected: String,
        actual: String,
    },
    /// HTTP transport-layer failure (reqwest). Surfaced separately from 404 so
    /// callers can distinguish "origin doesn't publish this dict" from "we
    /// couldn't reach the origin at all."
    #[cfg(feature = "http")]
    #[error("HTTP error fetching {url}: {source}")]
    Http {
        url: String,
        #[source]
        source: reqwest::Error,
    },
}

/// Validate + normalise an sha256 dict hash to bare lowercase hex.
///
/// Accepts either `sha256:<hex>` or bare `<hex>`. Used both as a URL builder
/// guard and as the expected verifier in [`discover_zstd_dict_blocking`].
fn parse_dict_hash(hash: &str) -> Result<String, ZstdDictDiscoveryError> {
    let s = hash.trim();
    let stripped = s.strip_prefix("sha256:").unwrap_or(s);
    let lower = stripped.to_ascii_lowercase();
    if lower.len() != 64 || !lower.bytes().all(|b| matches!(b, b'0'..=b'9' | b'a'..=b'f')) {
        return Err(ZstdDictDiscoveryError::InvalidHash {
            hash: hash.to_string(),
        });
    }
    Ok(lower)
}

/// Per-dict document URL for an origin + sha256 hash (v0.5+).
///
/// Returns `<origin>/.well-known/codec/dicts/<sha256-hex>.zstd`. The URL is
/// fully derived from the hash — there is no mutable per-id form for dicts.
///
/// # Errors
///
/// [`ZstdDictDiscoveryError::InvalidHash`] when the hash is not the expected
/// `sha256:<hex>` / bare `<hex>` shape.
pub fn well_known_dict_url(origin: &str, hash: &str) -> Result<String, ZstdDictDiscoveryError> {
    let hex = parse_dict_hash(hash)?;
    let origin = origin.strip_suffix('/').unwrap_or(origin);
    Ok(format!("{origin}/.well-known/codec/dicts/{hex}.zstd"))
}

#[cfg(feature = "http")]
fn sha256_hex_bytes(bytes: &[u8]) -> String {
    let mut hasher = Sha256::new();
    hasher.update(bytes);
    hex::encode(hasher.finalize())
}

/// Synchronously resolve a zstd dictionary via
/// `.well-known/codec/dicts/<hex>.zstd` (v0.5+).
///
/// Fetches `<origin>/.well-known/codec/dicts/<sha256-hex>.zstd`, verifies the
/// fetched bytes hash to `<hex>`, and returns the raw dict bytes ready to
/// feed into `zstd::dict::DecoderDictionary::copy(...)` or equivalent.
///
/// # Example
///
/// ```no_run
/// use codec_rs::discover_zstd_dict_blocking;
///
/// let dict = discover_zstd_dict_blocking(
///     "https://codec.example",
///     "sha256:abc1230000000000000000000000000000000000000000000000000000000000",
/// )?;
/// # Ok::<(), Box<dyn std::error::Error>>(())
/// ```
///
/// # Errors
///
/// - [`ZstdDictDiscoveryError::InvalidHash`] if the hash is malformed
///   (rejected before any HTTP request)
/// - [`ZstdDictDiscoveryError::NotFound`] for HTTP 404
/// - [`ZstdDictDiscoveryError::HashMismatch`] if origin served wrong bytes
/// - [`ZstdDictDiscoveryError::Http`] for transport-layer failures
#[cfg(feature = "http")]
pub fn discover_zstd_dict_blocking(
    origin: &str,
    hash: &str,
) -> Result<Vec<u8>, ZstdDictDiscoveryError> {
    let expected = parse_dict_hash(hash)?;
    let url = well_known_dict_url(origin, hash)?;

    let client = reqwest::blocking::Client::builder()
        .user_agent("codec-rs/0.4")
        .build()
        .map_err(|e| ZstdDictDiscoveryError::Http {
            url: url.clone(),
            source: e,
        })?;

    let resp = client
        .get(&url)
        .send()
        .map_err(|e| ZstdDictDiscoveryError::Http {
            url: url.clone(),
            source: e,
        })?;
    if resp.status() == reqwest::StatusCode::NOT_FOUND {
        return Err(ZstdDictDiscoveryError::NotFound { url });
    }
    let resp = resp
        .error_for_status()
        .map_err(|e| ZstdDictDiscoveryError::Http {
            url: url.clone(),
            source: e,
        })?;
    let bytes = resp.bytes().map_err(|e| ZstdDictDiscoveryError::Http {
        url: url.clone(),
        source: e,
    })?;
    let actual = sha256_hex_bytes(&bytes);
    if actual != expected {
        return Err(ZstdDictDiscoveryError::HashMismatch {
            url,
            expected,
            actual,
        });
    }
    Ok(bytes.to_vec())
}

/// Async variant of [`discover_zstd_dict_blocking`]. Requires a Tokio runtime.
#[cfg(feature = "http")]
pub async fn discover_zstd_dict(
    origin: &str,
    hash: &str,
) -> Result<Vec<u8>, ZstdDictDiscoveryError> {
    let expected = parse_dict_hash(hash)?;
    let url = well_known_dict_url(origin, hash)?;

    let client = reqwest::Client::builder()
        .user_agent("codec-rs/0.4")
        .build()
        .map_err(|e| ZstdDictDiscoveryError::Http {
            url: url.clone(),
            source: e,
        })?;

    let resp =
        client
            .get(&url)
            .send()
            .await
            .map_err(|e| ZstdDictDiscoveryError::Http {
                url: url.clone(),
                source: e,
            })?;
    if resp.status() == reqwest::StatusCode::NOT_FOUND {
        return Err(ZstdDictDiscoveryError::NotFound { url });
    }
    let resp = resp
        .error_for_status()
        .map_err(|e| ZstdDictDiscoveryError::Http {
            url: url.clone(),
            source: e,
        })?;
    let bytes = resp
        .bytes()
        .await
        .map_err(|e| ZstdDictDiscoveryError::Http {
            url: url.clone(),
            source: e,
        })?;
    let actual = sha256_hex_bytes(&bytes);
    if actual != expected {
        return Err(ZstdDictDiscoveryError::HashMismatch {
            url,
            expected,
            actual,
        });
    }
    Ok(bytes.to_vec())
}

// ── unit tests ────────────────────────────────────────────────────────────

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn hash_zstd_dict_matches_python_reference() {
        // "hello world" sha256 — same digest both languages produce.
        let got = hash_zstd_dict(b"hello world");
        assert_eq!(
            got,
            "sha256:b94d27b9934d3e08a52e52d7da7dabfac484efe37a5380ee9088f7ace2efcde9"
        );
    }

    #[test]
    fn select_returns_none_when_not_zstd() {
        let mut headers = HashMap::new();
        headers.insert("content-encoding".into(), "gzip".into());
        let dicts: HashMap<String, Vec<u8>> = HashMap::new();
        assert_eq!(
            select_zstd_dict_for_response(&headers, &dicts).unwrap(),
            None
        );
    }

    #[test]
    fn select_returns_none_when_no_encoding() {
        let headers: HashMap<String, String> = HashMap::new();
        let dicts: HashMap<String, Vec<u8>> = HashMap::new();
        assert_eq!(
            select_zstd_dict_for_response(&headers, &dicts).unwrap(),
            None
        );
    }

    #[test]
    fn select_missing_header_is_error() {
        let mut headers = HashMap::new();
        headers.insert("Content-Encoding".into(), "zstd".into());
        let dicts: HashMap<String, Vec<u8>> = HashMap::new();
        assert_eq!(
            select_zstd_dict_for_response(&headers, &dicts),
            Err(CodecZstdDictError::MissingHeader)
        );
    }

    #[test]
    fn select_malformed_hash_is_error() {
        let mut headers = HashMap::new();
        headers.insert("content-encoding".into(), "zstd".into());
        headers.insert("codec-zstd-dict".into(), "md5:abc".into());
        let dicts: HashMap<String, Vec<u8>> = HashMap::new();
        match select_zstd_dict_for_response(&headers, &dicts) {
            Err(CodecZstdDictError::MalformedHash(v)) => assert_eq!(v, "md5:abc"),
            other => panic!("expected MalformedHash, got {other:?}"),
        }
    }

    // ── well_known_dict_url / parse_dict_hash (v0.5) ─────────────────────────

    #[test]
    fn well_known_dict_url_strips_sha256_prefix() {
        let h = "a".repeat(64);
        assert_eq!(
            well_known_dict_url("https://codec.example", &format!("sha256:{h}")).unwrap(),
            format!("https://codec.example/.well-known/codec/dicts/{h}.zstd"),
        );
    }

    #[test]
    fn well_known_dict_url_accepts_bare_hex() {
        let h = "b".repeat(64);
        assert_eq!(
            well_known_dict_url("https://codec.example", &h).unwrap(),
            format!("https://codec.example/.well-known/codec/dicts/{h}.zstd"),
        );
    }

    #[test]
    fn well_known_dict_url_strips_trailing_slash() {
        let h = "c".repeat(64);
        assert_eq!(
            well_known_dict_url("https://codec.example/", &h).unwrap(),
            format!("https://codec.example/.well-known/codec/dicts/{h}.zstd"),
        );
    }

    #[test]
    fn well_known_dict_url_normalises_uppercase_hex() {
        let upper = "D".repeat(64);
        let expected = "d".repeat(64);
        assert_eq!(
            well_known_dict_url("https://codec.example", &upper).unwrap(),
            format!("https://codec.example/.well-known/codec/dicts/{expected}.zstd"),
        );
    }

    #[test]
    fn well_known_dict_url_rejects_short_hash() {
        let err = well_known_dict_url("https://codec.example", "deadbeef").unwrap_err();
        assert!(matches!(err, ZstdDictDiscoveryError::InvalidHash { .. }));
    }

    #[test]
    fn well_known_dict_url_rejects_wrong_algorithm() {
        let err = well_known_dict_url(
            "https://codec.example",
            &format!("md5:{}", "a".repeat(32)),
        )
        .unwrap_err();
        assert!(matches!(err, ZstdDictDiscoveryError::InvalidHash { .. }));
    }

    #[test]
    fn well_known_dict_url_rejects_nonhex_chars() {
        let err = well_known_dict_url("https://codec.example", &"z".repeat(64)).unwrap_err();
        assert!(matches!(err, ZstdDictDiscoveryError::InvalidHash { .. }));
    }
}