redshirt 0.1.3

Provides support for the Redshirt 1 and Redshirt 2 data encoding schemes.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379

// Copyright (c) 2019 FaultyRAM
//
// Licensed under the Apache License, Version 2.0
// <LICENSE-APACHE or http://www.apache.org/licenses/LICENSE-2.0> or the MIT license
// <LICENSE-MIT or http://opensource.org/licenses/MIT>, at your option. This file may not be copied,
// modified, or distributed except according to those terms.

//! Redshirt 2 utilities.
//!
//! This module provides `Reader` and `Writer` types for reading and writing Redshirt 2-encoded
//! data, respectively.

use crate::{cursor::Cursor, error::Error};
use ring::digest::{Context, SHA1_FOR_LEGACY_USE_ONLY as SHA1, SHA1_OUTPUT_LEN};
use std::{
    fmt::{self, Debug, Formatter},
    io::{self, Read, Seek, SeekFrom, Write},
    mem,
};

const MARKER: [u8; MARKER_LEN] = *b"REDSHRT2\x00";
const MARKER_LEN: usize = 9;
const HEADER_LEN: usize = MARKER_LEN + SHA1_OUTPUT_LEN;

#[derive(Debug)]
/// Reads Redshirt 2-protected data from an input stream.
pub struct Reader<R>(Cursor<R>);

/// Writes Redshirt 2-protected data to an output stream.
pub struct Writer<W: Seek + Write> {
    dst: Option<Cursor<W>>,
    checksum: ChecksumBuilder,
}

#[derive(Clone)]
struct ChecksumBuilder(Context);

impl<R: Read + Seek> Reader<R> {
    #[inline]
    /// Creates a new reader from an input stream.
    ///
    /// # Errors
    ///
    /// Returns an `Err` if any of the following occurs:
    ///
    /// * An I/O error occurs;
    /// * The underlying reader produces an invalid Redshirt 2 header;
    /// * The SHA-1 hash in the header does not match that of the encoded data.
    ///
    /// # Examples
    ///
    /// ```no_run
    /// use redshirt::v2::Reader;
    /// use std::fs::OpenOptions;
    ///
    /// let file = OpenOptions::new().read(true).open("User.usr").unwrap();
    /// let reader = Reader::new(file).unwrap();
    /// ```
    pub fn new(mut src: R) -> Result<Self, Error> {
        let mut header_buf = array!(HEADER_LEN);
        src.read_exact(&mut header_buf)
            .map_err(Error::Io)
            .and_then(|_| {
                if header_buf[..MARKER_LEN] == MARKER {
                    let mut buffer = array!(16384);
                    let mut checksum = ChecksumBuilder::new();
                    loop {
                        match src.read(&mut buffer) {
                            Ok(len) => {
                                if len == 0 {
                                    break;
                                } else {
                                    checksum.update(&buffer[..len]);
                                }
                            }
                            Err(e) => {
                                if e.kind() == io::ErrorKind::Interrupted {
                                    continue;
                                } else {
                                    return Err(Error::Io(e));
                                }
                            }
                        }
                    }
                    let digest_a = &header_buf[MARKER_LEN..];
                    let digest_b = checksum.finish();
                    if digest_a == digest_b {
                        src.seek(SeekFrom::Start(HEADER_LEN as u64))
                            .map(|_| Self(Cursor::new(src)))
                            .map_err(Error::Io)
                    } else {
                        Err(Error::BadChecksum)
                    }
                } else {
                    Err(Error::BadHeader)
                }
            })
    }

    #[inline]
    /// Unwraps a `Reader`, returning its underlying reader.
    ///
    /// # Examples
    ///
    /// ```no_run
    /// use redshirt::v2::Reader;
    /// use std::fs::OpenOptions;
    ///
    /// let file = OpenOptions::new().read(true).open("User.usr").unwrap();
    /// let reader = Reader::new(file).unwrap();
    /// let inner = reader.into_inner();
    /// ```
    pub fn into_inner(self) -> R {
        self.0.into_inner()
    }
}

impl<R: Read> Read for Reader<R> {
    #[inline]
    fn read(&mut self, buf: &mut [u8]) -> io::Result<usize> {
        self.0.read(buf)
    }
}

impl<R: Seek> Seek for Reader<R> {
    #[inline]
    fn seek(&mut self, pos: SeekFrom) -> io::Result<u64> {
        self.0.seek(pos)
    }
}

impl<W: Seek + Write> Writer<W> {
    #[inline]
    /// Wraps an existing output stream and writes a Redshirt 2 header that is valid, but contains
    /// an invalid SHA-1 hash.
    ///
    /// # Errors
    ///
    /// Returns an `Err` if writing the header fails.
    ///
    /// # Examples
    ///
    /// ```no_run
    /// use redshirt::v2::Writer;
    /// use std::io::Cursor;
    ///
    /// let mut data = [u8::default(); 30];
    /// let writer = Writer::new(Cursor::new(&mut data[..])).unwrap();
    /// ```
    pub fn new(mut dst: W) -> Result<Self, Error> {
        let mut dummy_header = array!(HEADER_LEN);
        dummy_header[..MARKER_LEN].copy_from_slice(&MARKER);
        dst.write_all(&dummy_header)
            .map(|_| Self {
                dst: Some(Cursor::new(dst)),
                checksum: ChecksumBuilder::new(),
            })
            .map_err(Error::Io)
    }

    #[inline]
    /// Writes out the SHA-1 hash of all previously encoded data, then unwraps the `Writer`.
    ///
    /// If a `Writer` is dropped without calling this method, the SHA-1 hash is written out, but the
    /// destructor will panic if an error occurs. Calling this method ensures that any such errors
    /// are safely handled.
    ///
    /// # Errors
    ///
    /// Returns an `Err` if writing the SHA-1 hash fails.
    ///
    /// # Examples
    ///
    /// ```no_run
    /// use redshirt::v2::Writer;
    /// use std::io::Cursor;
    ///
    /// let mut data = [u8::default(); 30];
    /// let writer = Writer::new(Cursor::new(&mut data[..])).unwrap();
    /// let inner = writer.into_inner().unwrap();
    /// ```
    pub fn into_inner(mut self) -> Result<W, Error> {
        self.write_digest().map(Option::unwrap)
    }

    #[inline]
    fn write_digest(&mut self) -> Result<Option<W>, Error> {
        if let Some(mut dst) = self.dst.take() {
            let offset = dst.offset();
            dst.inner_mut()
                .seek(SeekFrom::Start(MARKER_LEN as u64))
                .and_then(|_| {
                    let digest = self.checksum.clone().finish();
                    let res = dst.inner_mut().write_all(&digest);
                    let _ = dst.seek(SeekFrom::Start(offset)).unwrap();
                    res
                })
                .map(|_| Some(dst.into_inner()))
                .map_err(Error::Io)
        } else {
            Ok(None)
        }
    }
}

impl<W: Debug + Seek + Write> Debug for Writer<W> {
    #[inline]
    fn fmt(&self, f: &mut Formatter<'_>) -> fmt::Result {
        let digest = self.checksum.clone().finish();
        f.debug_struct("Writer")
            .field("dst", &self.dst)
            .field("digest", &digest)
            .finish()
    }
}

impl<W: Seek + Write> Write for Writer<W> {
    #[inline]
    fn write(&mut self, buf: &[u8]) -> io::Result<usize> {
        self.dst.as_mut().unwrap().write_chunk(buf).map(|chunk| {
            self.checksum.update(&chunk);
            chunk.len()
        })
    }

    #[inline]
    fn flush(&mut self) -> io::Result<()> {
        self.dst.as_mut().unwrap().flush()
    }
}

impl<W: Seek + Write> Drop for Writer<W> {
    #[inline]
    /// When a `Writer` is dropped, this causes the SHA-1 hash of all previously encoded data to be
    /// written into the header.
    ///
    /// In general, you should use `Writer::into_inner` instead of relying on implict `drop` calls.
    ///
    /// # Panics
    ///
    /// Panics if writing the SHA-1 hash fails for any reason. To catch these errors, use
    /// `Writer::into_inner` instead of relying on implicit `drop` calls.
    fn drop(&mut self) {
        let _ = self.write_digest().unwrap();
    }
}

impl ChecksumBuilder {
    pub(self) fn new() -> Self {
        Self(Context::new(&SHA1))
    }

    pub(self) fn update(&mut self, data: &[u8]) {
        self.0.update(data);
    }

    pub(self) fn finish(self) -> [u8; SHA1_OUTPUT_LEN] {
        let digest = self.0.finish();
        let mut out = array!(SHA1_OUTPUT_LEN);
        out.copy_from_slice(digest.as_ref());
        for chunk in out.chunks_exact_mut(mem::size_of::<u32>()) {
            chunk.reverse();
        }
        out
    }
}

impl Debug for ChecksumBuilder {
    fn fmt(&self, f: &mut Formatter<'_>) -> fmt::Result {
        let digest = self.0.clone().finish();
        f.debug_tuple("Checksum").field(&digest).finish()
    }
}

impl Default for ChecksumBuilder {
    fn default() -> Self {
        Self::new()
    }
}

#[cfg(test)]
mod tests {
    use super::{Reader, Writer, HEADER_LEN};
    use std::io::{Cursor, Read, Seek, SeekFrom, Write};

    const MSG_DEC: &[u8] = b"Hello world!";
    const MSG_ENC: &[u8] = b"REDSHRT2\x00\x34\x54\x26\x2B\x4A\xBF\x29\x1D\x0B\x8E\x60\xD9\xA1\x76\xE1\x14\x7D\xDF\x05\xD4\xC8\xE5\xEC\xEC\xEF\xA0\xF7\xEF\xF2\xEC\xE4\xA1";
    const MSG_LEN: usize = 12;
    const MSG_LEN_U64: u64 = MSG_LEN as u64;
    const MSG_LEN_I64: i64 = MSG_LEN as i64;

    #[test]
    fn reader_read() {
        let mut reader = Reader::new(Cursor::new(MSG_ENC)).unwrap();
        let mut buffer = array!(MSG_LEN);
        let (left, right) = buffer.split_at_mut(MSG_LEN / 2);
        assert_eq!(
            reader.seek(SeekFrom::Current(MSG_LEN_I64 / 2)).unwrap(),
            MSG_LEN_U64 / 2
        );
        reader.read_exact(right).unwrap();
        assert_eq!(reader.seek(SeekFrom::Current(-MSG_LEN_I64)).unwrap(), 0);
        reader.read_exact(left).unwrap();
        assert_eq!(buffer, MSG_DEC);
    }

    #[test]
    fn reader_seek_start() {
        let mut reader = Reader::new(Cursor::new(MSG_ENC)).unwrap();
        assert_eq!(reader.seek(SeekFrom::Start(0)).unwrap(), 0);
        assert_eq!(
            reader.seek(SeekFrom::Start(MSG_LEN_U64)).unwrap(),
            MSG_LEN_U64
        );
        assert_eq!(reader.seek(SeekFrom::Start(0)).unwrap(), 0);
        assert_eq!(
            reader.seek(SeekFrom::Start(MSG_LEN_U64 / 2)).unwrap(),
            MSG_LEN_U64 / 2
        );
        assert_eq!(reader.seek(SeekFrom::Start(0)).unwrap(), 0);
    }

    #[test]
    fn reader_seek_current() {
        let mut reader = Reader::new(Cursor::new(MSG_ENC)).unwrap();
        assert_eq!(reader.seek(SeekFrom::Current(0)).unwrap(), 0);
        assert_eq!(
            reader.seek(SeekFrom::Current(MSG_LEN_I64)).unwrap(),
            MSG_LEN_U64
        );
        assert_eq!(reader.seek(SeekFrom::Current(-MSG_LEN_I64)).unwrap(), 0);
        assert_eq!(
            reader.seek(SeekFrom::Current(MSG_LEN_I64 / 2)).unwrap(),
            MSG_LEN_U64 / 2
        );
        assert_eq!(
            reader.seek(SeekFrom::Current(-(MSG_LEN_I64 / 2))).unwrap(),
            0
        );
    }

    #[test]
    fn reader_seek_end() {
        let mut reader = Reader::new(Cursor::new(MSG_ENC)).unwrap();
        assert_eq!(reader.seek(SeekFrom::End(-MSG_LEN_I64)).unwrap(), 0);
        assert_eq!(reader.seek(SeekFrom::End(0)).unwrap(), MSG_LEN_U64);
        assert_eq!(reader.seek(SeekFrom::End(-MSG_LEN_I64)).unwrap(), 0);
        assert_eq!(
            reader.seek(SeekFrom::End(-MSG_LEN_I64 / 2)).unwrap(),
            MSG_LEN_U64 / 2
        );
        assert_eq!(reader.seek(SeekFrom::End(-MSG_LEN_I64)).unwrap(), 0);
    }

    #[test]
    #[should_panic]
    fn reader_seek_positive_overflow() {
        let mut reader = Reader::new(Cursor::new(MSG_ENC)).unwrap();
        let _ = reader.seek(SeekFrom::Start(u64::max_value())).unwrap();
    }

    #[test]
    #[should_panic]
    fn reader_seek_negative_overflow() {
        let mut reader = Reader::new(Cursor::new(MSG_ENC)).unwrap();
        let _ = reader.seek(SeekFrom::Current(-1)).unwrap();
    }

    #[test]
    fn writer_write() {
        let mut buffer = array!(HEADER_LEN + MSG_LEN);
        {
            let mut writer = Writer::new(Cursor::new(&mut buffer[..])).unwrap();
            writer.write_all(MSG_DEC).unwrap();
            let _ = writer.into_inner().unwrap();
        }
        assert_eq!(&buffer[..], &MSG_ENC[..]);
    }
}