1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
//! Reader trait.
#[cfg(feature = "pem")]
pub(crate) mod pem;
pub(crate) mod slice;
#[cfg(feature = "pem")]
mod position;
use crate::{
Decode, DecodeValue, Encode, EncodingRules, Error, ErrorKind, FixedTag, Header, Length, Tag,
TagMode, TagNumber, asn1::ContextSpecific,
};
#[cfg(feature = "alloc")]
use alloc::vec::Vec;
#[cfg(feature = "ber")]
use crate::length::indefinite::read_eoc;
/// Reader trait which reads DER-encoded input.
pub trait Reader<'r>: Clone {
/// Does this reader support the `read_slice` method? (i.e. can it borrow from his input?)
const CAN_READ_SLICE: bool;
/// Get the [`EncodingRules`] which should be applied when decoding the input.
fn encoding_rules(&self) -> EncodingRules;
/// Get the length of the input.
fn input_len(&self) -> Length;
/// Get the position within the buffer.
fn position(&self) -> Length;
/// Read nested data of the given length.
///
/// # Errors
/// If `f` returns an error.
fn read_nested<T, F, E>(&mut self, len: Length, f: F) -> Result<T, E>
where
E: From<Error>,
F: FnOnce(&mut Self) -> Result<T, E>;
/// Attempt to read data borrowed directly from the input as a slice,
/// updating the internal cursor position.
///
/// # Errors
/// - `Err(ErrorKind::Incomplete)` if there is not enough data
/// - `Err(ErrorKind::Reader)` if the reader can't borrow from the input
fn read_slice(&mut self, len: Length) -> Result<&'r [u8], Error>;
/// Attempt to decode an ASN.1 `CONTEXT-SPECIFIC` field with the
/// provided [`TagNumber`].
///
/// # Errors
/// If a decoding error occurred.
fn context_specific<T>(
&mut self,
tag_number: TagNumber,
tag_mode: TagMode,
) -> Result<Option<T>, T::Error>
where
T: DecodeValue<'r> + FixedTag + 'r,
{
Ok(match tag_mode {
TagMode::Explicit => ContextSpecific::<T>::decode_explicit(self, tag_number)?,
TagMode::Implicit => ContextSpecific::<T>::decode_implicit(self, tag_number)?,
}
.map(|field| field.value))
}
/// Decode a value which impls the [`Decode`] trait.
///
/// # Errors
/// Returns `T::Error` if a decoding error occurred.
fn decode<T: Decode<'r>>(&mut self) -> Result<T, T::Error> {
T::decode(self)
}
/// Drain the given amount of data from the reader, discarding it.
///
/// # Errors
/// If an error occurred reading the given `amount` of data.
fn drain(&mut self, mut amount: Length) -> Result<(), Error> {
const BUFFER_SIZE: usize = 16;
let mut buffer = [0u8; BUFFER_SIZE];
while amount > Length::ZERO {
let amount_usize = usize::try_from(amount)?;
let nbytes_drained = if amount_usize >= BUFFER_SIZE {
self.read_into(&mut buffer)?;
Length::try_from(BUFFER_SIZE)?
} else {
self.read_into(&mut buffer[..amount_usize])?;
amount
};
amount = (amount - nbytes_drained)?;
}
Ok(())
}
/// Return an error with the given [`ErrorKind`], annotating it with
/// context about where the error occurred.
fn error(&mut self, kind: ErrorKind) -> Error {
kind.at(self.position())
}
/// Finish decoding, returning `Ok(())` if there is no
/// remaining data, or an error otherwise.
///
/// # Errors
/// If there is trailing data remaining in the reader.
fn finish(self) -> Result<(), Error> {
if !self.is_finished() {
Err(ErrorKind::TrailingData {
decoded: self.position(),
remaining: self.remaining_len(),
}
.at(self.position()))
} else {
Ok(())
}
}
/// Have we read all input data?
fn is_finished(&self) -> bool {
self.remaining_len().is_zero()
}
/// Offset within the original input stream.
///
/// This is used for error reporting, and doesn't need to be overridden
/// by any reader implementations (except for the built-in `NestedReader`,
/// which consumes nested input messages)
fn offset(&self) -> Length {
self.position()
}
/// Peek at the next byte of input without modifying the cursor.
fn peek_byte(&self) -> Option<u8> {
let mut byte = [0];
self.peek_into(&mut byte).ok().map(|_| byte[0])
}
/// Peek at the decoded data without updating the internal state, writing into the provided
/// output buffer. Attempts to fill the entire buffer.
///
/// # Errors
/// If there is not enough data.
fn peek_into(&self, buf: &mut [u8]) -> Result<(), Error> {
let mut reader = self.clone();
reader.read_into(buf)?;
Ok(())
}
/// Peek forward in the input data, attempting to decode a [`Header`] from
/// the data at the current position in the decoder.
///
/// Does not modify the decoder's state.
///
/// # Errors
/// If [`Header::peek`] returns an error.
#[deprecated(since = "0.8.0", note = "use `Header::peek` instead")]
fn peek_header(&self) -> Result<Header, Error> {
Header::peek(self)
}
/// Peek at the next tag in the reader.
///
/// # Errors
/// If [`Tag::peek`] returns an error.
#[deprecated(since = "0.8.0", note = "use `Tag::peek` instead")]
fn peek_tag(&self) -> Result<Tag, Error> {
Tag::peek(self)
}
/// Read a single byte.
///
/// # Errors
/// If the byte could not be read.
fn read_byte(&mut self) -> Result<u8, Error> {
let mut buf = [0];
self.read_into(&mut buf)?;
Ok(buf[0])
}
/// Attempt to read input data, writing it into the provided buffer, and
/// returning a slice on success.
///
/// # Errors
/// - `ErrorKind::Incomplete` if there is not enough data
fn read_into<'o>(&mut self, buf: &'o mut [u8]) -> Result<&'o [u8], Error> {
let input = self.read_slice(buf.len().try_into()?)?;
buf.copy_from_slice(input);
Ok(buf)
}
/// Read a byte vector of the given length.
///
/// # Errors
/// If a read error occurred.
#[cfg(feature = "alloc")]
fn read_vec(&mut self, len: Length) -> Result<Vec<u8>, Error> {
let mut bytes = vec![0u8; usize::try_from(len)?];
self.read_into(&mut bytes)?;
Ok(bytes)
}
/// Get the number of bytes still remaining in the buffer.
fn remaining_len(&self) -> Length {
debug_assert!(self.position() <= self.input_len());
self.input_len().saturating_sub(self.position())
}
/// Read an ASN.1 `SEQUENCE`, creating a nested [`Reader`] for the body and
/// calling the provided closure with it.
///
/// # Errors
/// If `f` returns an error, or if a decoding error occurred.
fn sequence<F, T, E>(&mut self, f: F) -> Result<T, E>
where
F: FnOnce(&mut Self) -> Result<T, E>,
E: From<Error>,
{
let header = Header::decode(self)?;
header.tag().assert_eq(Tag::Sequence)?;
read_value(self, header, |r, _| f(r))
}
/// Obtain a slice of bytes containing a complete TLV production suitable for parsing later.
///
/// # Errors
/// If a decoding error occurred, or a length calculation overflowed.
fn tlv_bytes(&mut self) -> Result<&'r [u8], Error> {
let header = Header::peek(self)?;
let header_len = header.encoded_len()?;
self.read_slice((header_len + header.length())?)
}
}
/// Read a value (i.e. the "V" part of a "TLV" field) using the provided header.
///
/// This calls the provided function `f` with a nested reader created using
/// [`Reader::read_nested`].
pub(crate) fn read_value<'r, R, T, F, E>(reader: &mut R, header: Header, f: F) -> Result<T, E>
where
R: Reader<'r>,
E: From<Error>,
F: FnOnce(&mut R, Header) -> Result<T, E>,
{
#[cfg(feature = "ber")]
let header = header.with_length(header.length().sans_eoc());
let ret = reader.read_nested(header.length(), |r| f(r, header))?;
// Consume EOC marker if the length is indefinite.
#[cfg(feature = "ber")]
if header.length().is_indefinite() {
read_eoc(reader)?;
}
Ok(ret)
}