# Copyright (c) 2018 Yubico AB
# All rights reserved.
#
# Redistribution and use in source and binary forms, with or
# without modification, are permitted provided that the following
# conditions are met:
#
# 1. Redistributions of source code must retain the above copyright
# notice, this list of conditions and the following disclaimer.
# 2. Redistributions in binary form must reproduce the above
# copyright notice, this list of conditions and the following
# disclaimer in the documentation and/or other materials provided
# with the distribution.
#
# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
# "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
# LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
# FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
# COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
# BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
# LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
# CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
# ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
# POSSIBILITY OF SUCH DAMAGE.
"""
Minimal CBOR implementation supporting a subset of functionality and types
required for FIDO 2 CTAP.
Use the :func:`encode`, :func:`decode` and :func:`decode_from` functions to encode
and decode objects to/from CBOR.
DO NOT use the dump_x/load_x functions directly, these will be made private in
python-fido2 2.0.
"""
from __future__ import annotations
import struct
from typing import Any, Tuple, Union, Sequence, Mapping, Type, Callable
CborType = Union[int, bool, str, bytes, Sequence[Any], Mapping[Any, Any]]
# TODO 2.0: Make dump_x/load_x functions private
[docs]
def dump_int(data: int, mt: int = 0) -> bytes:
if data < 0:
mt = 1
data = -1 - data
mt = mt << 5
if data <= 23:
args: Any = (">B", mt | data)
elif data <= 0xFF:
args = (">BB", mt | 24, data)
elif data <= 0xFFFF:
args = (">BH", mt | 25, data)
elif data <= 0xFFFFFFFF:
args = (">BI", mt | 26, data)
else:
args = (">BQ", mt | 27, data)
return struct.pack(*args)
[docs]
def dump_bool(data: bool) -> bytes:
return b"\xf5" if data else b"\xf4"
[docs]
def dump_list(data: Sequence[CborType]) -> bytes:
return dump_int(len(data), mt=4) + b"".join([encode(x) for x in data])
def _sort_keys(entry):
key = entry[0]
return key[0], len(key), key
[docs]
def dump_dict(data: Mapping[CborType, CborType]) -> bytes:
items = [(encode(k), encode(v)) for k, v in data.items()]
items.sort(key=_sort_keys)
return dump_int(len(items), mt=5) + b"".join([k + v for (k, v) in items])
[docs]
def dump_bytes(data: bytes) -> bytes:
return dump_int(len(data), mt=2) + data
[docs]
def dump_text(data: str) -> bytes:
data_bytes = data.encode("utf8")
return dump_int(len(data_bytes), mt=3) + data_bytes
_SERIALIZERS: Sequence[Tuple[Type, Callable[[Any], bytes]]] = [
(bool, dump_bool),
(int, dump_int),
(str, dump_text),
(bytes, dump_bytes),
(Mapping, dump_dict),
(Sequence, dump_list),
]
[docs]
def load_int(ai: int, data: bytes) -> Tuple[int, bytes]:
if ai < 24:
return ai, data
elif ai == 24:
return data[0], data[1:]
elif ai == 25:
return struct.unpack_from(">H", data)[0], data[2:]
elif ai == 26:
return struct.unpack_from(">I", data)[0], data[4:]
elif ai == 27:
return struct.unpack_from(">Q", data)[0], data[8:]
raise ValueError("Invalid additional information")
[docs]
def load_nint(ai: int, data: bytes) -> Tuple[int, bytes]:
val, rest = load_int(ai, data)
return -1 - val, rest
[docs]
def load_bool(ai: int, data: bytes) -> Tuple[bool, bytes]:
return ai == 21, data
[docs]
def load_bytes(ai: int, data: bytes) -> Tuple[bytes, bytes]:
l, data = load_int(ai, data)
return data[:l], data[l:]
[docs]
def load_text(ai: int, data: bytes) -> Tuple[str, bytes]:
enc, rest = load_bytes(ai, data)
return enc.decode("utf8"), rest
[docs]
def load_array(ai: int, data: bytes) -> Tuple[Sequence[CborType], bytes]:
l, data = load_int(ai, data)
values = []
for i in range(l):
val, data = decode_from(data)
values.append(val)
return values, data
[docs]
def load_map(ai: int, data: bytes) -> Tuple[Mapping[CborType, CborType], bytes]:
l, data = load_int(ai, data)
values = {}
for i in range(l):
k, data = decode_from(data)
v, data = decode_from(data)
values[k] = v
return values, data
_DESERIALIZERS = {
0: load_int,
1: load_nint,
2: load_bytes,
3: load_text,
4: load_array,
5: load_map,
7: load_bool,
}
[docs]
def encode(data: CborType) -> bytes:
"""Encodes data to a CBOR byte string."""
for k, v in _SERIALIZERS:
if isinstance(data, k):
return v(data)
raise ValueError(f"Unsupported value: {data!r}")
[docs]
def decode_from(data: bytes) -> Tuple[Any, bytes]:
"""Decodes a CBOR-encoded value from the start of a byte string.
Additional data after a valid CBOR object is returned as well.
:return: The decoded object, and any remaining data."""
fb = data[0]
return _DESERIALIZERS[fb >> 5](fb & 0b11111, data[1:])
[docs]
def decode(data) -> CborType:
"""Decodes data from a CBOR-encoded byte string.
Also validates that no extra data follows the encoded object.
"""
value, rest = decode_from(data)
if rest != b"":
raise ValueError("Extraneous data")
return value