ldap-client-ber 0.6.0

ASN.1 BER codec for LDAP
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150

// SPDX-License-Identifier: MIT OR Apache-2.0

use crate::length::encode_length;
use crate::tag::{BOOLEAN, ENUMERATED, INTEGER, OCTET_STRING, Tag};

/// BER encoder that writes into an owned byte buffer.
pub struct BerWriter {
    buf: Vec<u8>,
}

impl BerWriter {
    pub fn new() -> Self {
        Self { buf: Vec::new() }
    }

    pub fn with_capacity(cap: usize) -> Self {
        Self {
            buf: Vec::with_capacity(cap),
        }
    }

    /// Reset the buffer without deallocating.
    pub fn clear(&mut self) {
        self.buf.clear();
    }

    pub fn as_bytes(&self) -> &[u8] {
        &self.buf
    }

    pub fn into_bytes(self) -> Vec<u8> {
        self.buf
    }

    /// Write a constructed element. The closure fills in the content;
    /// the length is back-patched after the closure returns.
    pub fn write_sequence<F>(&mut self, tag: Tag, f: F) -> &mut Self
    where
        F: FnOnce(&mut BerWriter),
    {
        let tag_bytes = tag.with_constructed(true).encode();
        self.buf.extend_from_slice(&tag_bytes);

        let mut inner = BerWriter::new();
        f(&mut inner);
        let content = inner.into_bytes();

        let len_bytes = encode_length(content.len());
        self.buf.extend_from_slice(&len_bytes);
        self.buf.extend_from_slice(&content);
        self
    }

    pub fn write_integer(&mut self, value: i64) -> &mut Self {
        let tag_bytes = Tag::universal(INTEGER).encode();
        self.buf.extend_from_slice(&tag_bytes);

        let content = encode_signed_integer(value);
        let len_bytes = encode_length(content.len());
        self.buf.extend_from_slice(&len_bytes);
        self.buf.extend_from_slice(&content);
        self
    }

    pub fn write_octet_string(&mut self, tag: Tag, value: &[u8]) -> &mut Self {
        let tag_bytes = tag.with_constructed(false).encode();
        self.buf.extend_from_slice(&tag_bytes);

        let len_bytes = encode_length(value.len());
        self.buf.extend_from_slice(&len_bytes);
        self.buf.extend_from_slice(value);
        self
    }

    pub fn write_boolean(&mut self, value: bool) -> &mut Self {
        let tag_bytes = Tag::universal(BOOLEAN).encode();
        self.buf.extend_from_slice(&tag_bytes);
        self.buf.push(1); // length = 1
        self.buf.push(if value { 0xFF } else { 0x00 });
        self
    }

    pub fn write_enumerated(&mut self, value: i64) -> &mut Self {
        let tag_bytes = Tag::universal(ENUMERATED).encode();
        self.buf.extend_from_slice(&tag_bytes);

        let content = encode_signed_integer(value);
        let len_bytes = encode_length(content.len());
        self.buf.extend_from_slice(&len_bytes);
        self.buf.extend_from_slice(&content);
        self
    }

    pub fn write_null(&mut self) -> &mut Self {
        self.buf.push(0x05); // NULL tag
        self.buf.push(0x00); // length 0
        self
    }

    /// Write raw pre-encoded bytes.
    pub fn write_raw(&mut self, data: &[u8]) -> &mut Self {
        self.buf.extend_from_slice(data);
        self
    }

    /// Convenience: write a UTF-8 string as an OCTET STRING.
    pub fn write_string(&mut self, tag: Tag, value: &str) -> &mut Self {
        self.write_octet_string(tag, value.as_bytes())
    }

    /// Convenience: write with universal OCTET_STRING tag.
    pub fn write_bytes(&mut self, value: &[u8]) -> &mut Self {
        self.write_octet_string(Tag::universal(OCTET_STRING), value)
    }
}

impl Default for BerWriter {
    fn default() -> Self {
        Self::new()
    }
}

/// Encode an i64 as minimal BER integer bytes (without tag/length).
pub fn encode_i64_bytes(value: i64) -> Vec<u8> {
    encode_signed_integer(value)
}

fn encode_signed_integer(value: i64) -> Vec<u8> {
    if value == 0 {
        return vec![0x00];
    }

    let bytes = value.to_be_bytes();
    // Find the first significant byte, preserving the sign.
    let mut start = 0;
    if value > 0 {
        while start < 7 && bytes[start] == 0x00 {
            start += 1;
        }
        // If the high bit is set, prepend a 0x00 to keep it positive.
        if bytes[start] & 0x80 != 0 {
            start -= 1;
        }
    } else {
        while start < 7 && bytes[start] == 0xFF && bytes[start + 1] & 0x80 != 0 {
            start += 1;
        }
    }
    bytes[start..].to_vec()
}