Add disk header loader.

This commit introduces the first piece of code in the core component of TFS. It does something relatively basicaly: it reads the disk header as specified in the spec document.

Author: ticki

.gitignore

@@ -5,3 +5,4 @@ Cargo.lock
 *.log
 *.out
 *.pdf_tex
+*.toc

specification.tex

@@ -21,12 +21,14 @@
 \newcommand{\concat}{\Vert}
 
 \begin{document}
-    \maketitle
     \begin{abstract}
         We give a complete specification of the on-disk representation of the
         TFS file system. Certain implementation details are covered.
     \end{abstract}
 
+    \maketitle
+    \tableofcontents
+
     \chapter{Introduction}
     This specification should detail the TFS file system such that it can be
     implemented without ambiguity. As such, it should bridge various
@@ -116,7 +118,7 @@
         \subsection{Encryption parameters (byte 68-84)}
         \label{header:encryptionparams}
         These are parameters used differently based on the choice
-        in~\ref{header:encyption}.
+        in~\ref{header:encryption}.
 
         \subsection{Bitwise negation of encryption parameters (byte 84-100)}
         Repetition of~\ref{header:encyptionparams}, bitwise negated.
@@ -128,9 +130,10 @@
 
         \begin{description}
             \item [$n = 0$]    state block uninitialized.
-            \item [$n \neq 0$] the $n$'th cluster (starting at byte
-                $\clustersize n$) is used as the state block and abides the
-                format set out in~\ref{stateblock}.
+            \item [$n \neq 0$] the $n$'th cluster
+                (starting at byte $\clustersize n$) is used
+                as the state block and abides the format set out
+                in~\ref{stateblock}.
         \end{description}
 
         \subsection{Bitwise negation of state block address (byte 136-144)}
@@ -218,8 +221,8 @@
 
         \begin{description}
             \item [$n = 0$]    super-page uninitialized.
-            \item [$n \neq 0$] the $n$'th page is the super-page as
-                defined in~\ref{fs:superpage}.
+            \item [$n \neq 0$] the $n$'th page is the super-page as defined
+                in~\ref{fs:superpage}.
         \end{description}
 
     \section{Integrity checking}
@@ -310,7 +313,7 @@
 
     \section{Checksums}
         \subsection{Constant checksum}
-        \label{checksum:seahash}
+        \label{checksum:constant}
         Constant checksum is independent of the input\footnote{This is used as
         an alternative to storing no checksum, which would make implementation
         harder. Instead, this allows some -- but weak -- protection against failure

src/cluster.rs

@@ -0,0 +1,17 @@
+use std::NonZero;
+
+pub struct ClusterPointer(NonZero<u64>);
+
+impl ClusterPointer {
+    pub fn new(x: u64) -> Option<ClusterPointer> {
+        if x == 0 {
+            None
+        } else {
+            Some(ClusterPointer(unsafe {
+                NonZero::new(x)
+            }))
+        }
+    }
+}
+
+

src/disk.rs

@@ -0,0 +1,56 @@
+type Sector = u64;
+type SectorOffset = u16;
+
+enum Error {
+    OutOfBounds,
+    SectorCorrupted,
+}
+
+trait Disk {
+    fn sector_size(&self) -> SectorOffset;
+    fn number_of_sectors(&self) -> Sector;
+
+    fn write(sector: Sector, offset: SectorOffset, buffer: &[u8]) -> Result<(), Error>;
+    fn read(sector: Sector, offset: SectorOffset, buffer: &mut [u8]) -> Result<(), Error>;
+
+    fn write_all(sector: Sector, offset: SectorOffset, buffer: &[u8]) -> Result<(), Error> {
+
+    }
+    fn read_all(sector: Sector, offset: SectorOffset, buffer: &mut [u8]) -> Result<(), Error> {
+        let sector_size = self.sector_size();
+
+        self.read(buffer.len() / sector_size, offset, buffer[..offset])?;
+        for i in 1..buffer.len() as Sector / sector_size + 1 {
+            self.read(sector + i, 0, buffer[i * sector_size..])
+        }
+    }
+}
+
+/// For testing, we allow byte slices to act as disks.
+#[cfg(tests)]
+impl Disk for &mut [u8] {
+    fn sector_size(&self) -> SectorOffset {
+        512
+    }
+
+    fn number_of_sectors(&self) -> Sector {
+        self.len() as Sector / self.sector_size()
+    }
+
+    fn write(sector: Sector, offset: SectorOffset, buffer: &[u8]) -> Result<(), Error> {
+        if offset + buffer.len() > self.sector_size() {
+            Err(Error::OutOfBounds)
+        } else {
+            Ok(self[(sector / self.sector_size() + offset as Sector) as usize..][..buffer.len()]
+               .copy_from_slice(buffer))
+        }
+    }
+
+    fn read(sector: Sector, offset: SectorOffset, buffer: &mut [u8]) -> Result<(), Error> {
+        if offset + buffer.len() > self.sector_size() {
+            Err(Error::OutOfBounds)
+        } else {
+            Ok(buffer.copy_from_slice(self[(sector / self.sector_size() + offset as Sector) as usize..][..buffer.len()]))
+        }
+    }
+}

src/header.rs

@@ -0,0 +1,165 @@
+const DISK_HEADER_SIZE: usize = 4096;
+const DEFAULT_DISK_HEADER: [u8; 146] = [
+    // The magic number (`TFS fmt `).
+    b'T', b'F', b'S', b' ', b'f', b'm', b't', b' ',
+    // The version number.
+    0x00, 0x00, 0x00, 0x00,
+    0xFF, 0xFF, 0xFF, 0xFF,
+    // The implementation ID (`official`).
+    b'o', b'f', b'f', b'i', b'c', b'i', b'a', b'l',
+    !b'o', !b'f', !b'f', !b'i', !b'c', !b'i', !b'a', !b'l',
+    // Encryption algorithm.
+    0x00, 0x00,
+    0xFF, 0xFF,
+    // Encryption parameters.
+    0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+    0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
+    // State block address (uninitialized).
+    0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
+    0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+    // Consistency flag.
+    0x03, 0xFC,
+];
+
+enum Error {
+    CorruptConsistencyFlag,
+    CorruptEncryptionAlgorithm,
+    CorruptEncryptionParameters,
+    CorruptImplementationId,
+    CorruptStateBlockAddress,
+    CorruptVersionNumber,
+    IncompatibleVersion,
+    UnknownCipher,
+    UnknownConsistencyFlag,
+    UnknownFormat,
+    Disk(disk::Error),
+}
+
+impl fmt::Display for Error {
+    fn fmt(&self, f: &mut fmt::Formatter) -> Result<(), Error> {
+        write!(f, )
+    }
+}
+
+enum MagicNumber {
+    PartialCompatibility,
+    TotalCompatibility,
+}
+
+enum EncryptionAlgorithm {
+    Identity = 0,
+    Speck128 = 1,
+}
+
+enum ConsistencyFlag {
+    Closed,
+    StillActive,
+    Inconsistent,
+    Uninitialized,
+}
+
+#[derive(Default)]
+struct DiskHeader {
+    magic_number: MagicNumber,
+    version_number: u32,
+    implementation_id: u32,
+    encryption_algorithm: EncryptionAlgorithm,
+    encryption_parameters: [u8; 16],
+    state_block_address: ClusterPointer,
+    consistency_flag: ConsistencyFlag,
+}
+
+impl DiskHeader {
+    fn flush_encryption_algorithm<D: Disk>(disk: &mut D) -> Result<DiskHeader, Error> {
+        
+    }
+
+    /// Load the disk header from some disk.
+    ///
+    /// This will construct it into memory while performing error checks on the header to ensure
+    /// correctness.
+    fn load<D: Disk>(disk: &mut D) -> Result<DiskHeader, Error> {
+        // Load the disk header into a buffer in memory.
+        let mut buf = [0; DISK_HEADER_SIZE];
+        disk.read_all(0, 0, &mut buf)?;
+        // Start with some default value, which will be filled out later.
+        let mut ret = DiskHeader::default();
+
+        // # Introducer Section
+        //
+        // This section has the purpose of defining the implementation, version, and type of the
+        // disk image. It is rarely changed unless updates or reformatting happens.
+
+        // Load the magic number.
+        ret.magic_number = match buf[..8] {
+            // Total compatibility.
+            b"TFS fmt " => MagicNumber::TotalCompatibility,
+            // Partial compatibility.
+            b"~TFS fmt" => MagicNumber::PartialCompatibility,
+            // Unknown format; abort.
+            _ => return Err(Error::UnknownFormat),
+        };
+
+        // Load the version number.
+        ret.version_number = LittleEndian::read(buf[8..12]);
+        // Right after the version number, the same number follows, but bitwise negated. Make sure
+        // that these numbers match (if it is bitwise negated). The reason for using this form of
+        // code rather than just repeating it as-is is that if one overwrites all bytes with a
+        // constant value, like zero, it won't be detected.
+        if ret.version_number == !LittleEndian::read(buf[12..16]) {
+            // Check if the version is compatible.
+            if ret.version_number >> 16 > 0 {
+                // The version is not compatible; abort.
+                return Err(Error::IncompatibleVersion);
+            }
+        } else {
+            // The version number is corrupt; abort.
+            return Err(Error::CorruptVersionNumber);
+        }
+
+        // Load the implementation ID.
+        ret.implementation_id = LittleEndian::read(buf[16..24]);
+        // Similarly to the version number, a bitwise negated repetition follows. Make sure it
+        // matches.
+        if ret.implementation_id != !LittleEndian::read(buf[24..32]) {
+            // The implementation ID is corrupt; abort.
+            return Err(Error::CorruptImplementationId);
+        }
+
+        // == Encryption Section ==
+
+        // Load the encryption algorithm choice.
+        ret.encryption_algorithm = EncryptionAlgorithm::from(LittleEndian::read(buf[64..66]))?;
+        // Repeat the bitwise negation.
+        if ret.encryption_algorithm as u16 != !LittleEndian::read(buf[66..68]) {
+            // The implementation ID is corrupt; abort.
+            return Err(Error::CorruptEncryptionAlgorithm);
+        }
+
+        // Load the encryption parameters (e.g. salt).
+        self.encryption_parameters.copy_from_slice(&buf[68..84]);
+        // Repeat the bitwise negation.
+        if self.encryption_parameters.iter().eq(buf[84..100].iter().map(|x| !x)) {
+            // The encryption parameters are corrupt; abort.
+            return Err(Error::CorruptEncryptionParameters);
+        }
+
+        // == State ==
+
+        // Load the state block pointer.
+        ret.state_block_address = ClusterPointer::new(LittleEndian::read(buf[128..136]));
+        // Repeat the bitwise negation.
+        if ret.state_block_address as u64 != !LittleEndian::read(buf[136..144]) {
+            // The state block address is corrupt; abort.
+            return Err(Error::CorruptStateBlockAddress);
+        }
+
+        // Load the consistency flag.
+        self.consistency_flag = ConsistencyFlag::from(buf[144])?;
+        // Repeat the bitwise negation.
+        if self.consistency_flag as u8 != !buf[145] {
+            // The consistency flag is corrupt; abort.
+            return Err(Error::CorruptConsistencyFlag);
+        }
+    }
+}

src/lib.rs

@@ -0,0 +1,2 @@
+mod config;
+mod disk;