feat(parser): implement pstring (Pascal string) type

[unclesp1d3r]

Summary

• Add PString variant to TypeKind for Pascal-style length-prefixed strings
• Parser recognizes pstring keyword and maps to TypeKind::PString
• Evaluator reads length prefix byte then that many bytes as string data
• Bounds checking for both the length byte and the string data it references
• String comparison operators work with pstring values (stored as Value::String)

Changes

• src/parser/ast.rs -- new PString variant in TypeKind with rustdoc
• src/parser/types.rs -- pstring keyword parsing in parse_type_keyword and type_keyword_to_kind
• src/parser/codegen.rs -- serialization support for PString
• src/evaluator/types/string.rs -- read_pstring() implementation with bounds checking
• src/evaluator/types/mod.rs -- dispatch PString through read_typed_value
• src/evaluator/strength.rs -- strength calculation for PString
• src/evaluator/engine/tests.rs -- engine-level pstring rule matching tests
• tests/evaluator_tests.rs -- integration tests for pstring evaluation
• tests/property_tests.rs -- proptest coverage for PString
• src/parser/grammar/tests.rs -- parser round-trip tests
• AGENTS.md, docs/ -- documentation updates

Test plan

• Unit tests for read_pstring (empty, normal, truncated, buffer overrun, offset overflow)
• Parser tests for pstring keyword recognition and serialization
• Engine tests for pstring rule matching with Equal operator
• Integration tests for pstring evaluation through public API
• Property tests include PString variant
• just ci-check passes locally

Closes #43

🤖 Generated with Claude Code

[coderabbitai]

Caution

Review failed

The pull request is closed.

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 070db191-747f-454f-bcd0-61ab976a9846

📥 Commits

Reviewing files that changed from the base of the PR and between b1a22db and d021555.

📒 Files selected for processing (10)

• AGENTS.md
• docs/MAGIC_FORMAT.md
• docs/src/api-reference.md
• docs/src/architecture.md
• docs/src/ast-structures.md
• docs/src/magic-format.md
• docs/src/parser.md
• src/evaluator/engine/mod.rs
• src/evaluator/types/string.rs
• src/parser/types.rs

Disabled knowledge base sources:

• Linear integration is disabled

You can enable these sources in your CodeRabbit configuration.

---

Summary by CodeRabbit

Release Notes

• New Features

  • Added support for Pascal strings (length-prefixed strings), a new data type complementing existing string types with automatic length-prefix handling.

• Documentation

  • Expanded documentation covering the new Pascal string type, including usage examples and feature descriptions.
  • Updated development status and architectural breakdown with current implementation progress.

Walkthrough

Adds Pascal-style length-prefixed string support ("pstring"): new AST TypeKind variant, parser recognition, read_pstring evaluator, dispatch and strength handling, extensive tests, and documentation updates describing the new type.

Changes

Cohort / File(s)	Summary
Parser: AST & Keywords src/parser/ast.rs, src/parser/types.rs, src/parser/grammar/mod.rs, src/parser/grammar/tests.rs, src/parser/types.rs	Introduce TypeKind::PString { max_length }, treat PString like String in bit_width(), parse pstring keyword, and add parsing tests.
Parser: Serialization / Codegen src/parser/codegen.rs	Serialize TypeKind::PString (Some/None) mirroring existing String serialization.
Evaluator: Type readers & dispatch src/evaluator/types/mod.rs, src/evaluator/types/string.rs	Add pub fn read_pstring(...) with bounds/UTF‑8 handling; re-export read_pstring; route TypeKind::PString to read_pstring in typed reader.
Evaluator: Strength & Engine src/evaluator/strength.rs, src/evaluator/engine/mod.rs	Treat PString like String in default strength logic; minor comment/TODO additions in engine error path.
Tests: unit/integration/property src/build_helpers.rs, src/evaluator/engine/tests.rs, tests/evaluator_tests.rs, tests/property_tests.rs	Add unit and integration tests for pstring reading/matching, serialization tests, property-test inclusion. Attention: src/evaluator/engine/tests.rs contains a duplicated PString test block.
Docs & Guides docs/*, docs/src/*, AGENTS.md, .github/copilot-instructions.md, docs/MAGIC_FORMAT.md, docs/src/api-reference.md, docs/src/architecture.md, docs/src/ast-structures.md, docs/src/magic-format.md, docs/src/parser.md	Extensive documentation updates adding pstring description, examples, and references across API, format, architecture and guide docs (some duplicated blocks present).

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

• feat(parser): implement pstring (Pascal string) type #170 — Implements pstring (TypeKind, read_pstring, parser/evaluator/test updates), highly overlapping with this change.
• docs: comprehensive documentation, security, and CI hardening #58 — Adds TypeKind::PString and related parsing/serialization adjustments; touches same serialization/tests areas.
• feat(parser): implement comparison operators #104 — Modifies evaluator strength logic and TypeKind handling; overlaps with strength/rule logic changes here.

Poem

🐰 I count the bytes, a one-byte hop,

length then letters, sweet pstring crop.
I nibble tests and document the trail,
A prefix hop, the data's tale.
Hooray — I bound, I parse, I cheer, carrot in paw near! 🥕

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 inconclusive)

Check name	Status	Explanation	Resolution
Out of Scope Changes check	❓ Inconclusive	The changeset contains a notable duplicate: identical PString test blocks in src/evaluator/engine/tests.rs appear twice, suggesting accidental duplication rather than intentional scope expansion.	Remove the duplicate PString test block from src/evaluator/engine/tests.rs to ensure only intentional changes are included.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'feat(parser): implement pstring (Pascal string) type' accurately describes the main change—adding parser support for a new pstring type.
Description check	✅ Passed	The description provides relevant details about the pstring implementation across multiple components (parser, evaluator, tests, docs) and directly relates to the changeset.
Linked Issues check	✅ Passed	All coding requirements from issue #43 are met: TypeKind extended with PString, parser recognizes pstring, evaluator reads length prefix and bytes, string comparison works, bounds checking implemented, and comprehensive tests added.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

• 📝 Generate docstrings (stacked PR)
• 📝 Generate docstrings (commit on current branch)

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch 43-parser-implement-pstring-pascal-string-type

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[mergify]

Merge Protections

Your pull request matches the following merge protections and will not be merged until they are valid.

🟢 CI must pass

Wonderful, this rule succeeded.

All CI checks must pass. Release-plz PRs are exempt because they only bump versions and changelogs (code was already tested on main), and GITHUB_TOKEN-triggered force-pushes suppress CI.

• check-success = coverage
• check-success = quality
• check-success = test
• check-success = test-cross-platform (macos-latest, macOS)
• check-success = test-cross-platform (ubuntu-22.04, Linux)
• check-success = test-cross-platform (ubuntu-latest, Linux)
• check-success = test-cross-platform (windows-latest, Windows)

🟢 Do not merge outdated PRs

Wonderful, this rule succeeded.

Make sure PRs are within 10 commits of the base branch before merging

• #commits-behind <= 3

[mergify]

🧪 CI Insights

Here's what we observed from your CI run for d021555.

🟢 All jobs passed!

But CI Insights is watching 👀

[codecov]

Codecov Report

❌ Patch coverage is 98.86364% with 2 lines in your changes missing coverage. Please review.

Files with missing lines	Patch %	Lines
src/evaluator/types/string.rs	99.30%	1 Missing ⚠️
src/parser/ast.rs	80.00%	1 Missing ⚠️

📢 Thoughts on this report? Let us know!

[dosubot]

Related Documentation

8 document(s) may need updating based on files changed in this PR:

libMagic-rs

api-reference /libmagic-rs/blob/main/docs/src/api-reference.md

View Suggested Changes

@@ -229,6 +229,7 @@
 | `Float { endian }`         | 32-bit IEEE 754 floating-point (added in v0.5.0)                                            |
 | `Double { endian }`        | 64-bit IEEE 754 double-precision floating-point (added in v0.5.0)                           |
 | `String { max_length }`    | String data (discriminant changed from 4 to 6 in v0.5.0)                                    |
+| `PString { max_length }`   | Pascal string - length-prefixed byte followed by string data (returns `Value::String`)      |
 
 ### Operator
 

✅ Accepted

architecture /libmagic-rs/blob/main/docs/src/architecture.md

View Suggested Changes

@@ -95,6 +95,7 @@
     Long { endian: Endianness, signed: bool },
     Quad { endian: Endianness, signed: bool },
     String { max_length: Option<usize> },
+    PString { max_length: Option<usize> }, // Pascal string (length-prefixed)
 }
 
 pub enum Operator {

✅ Accepted

ast-structures /libmagic-rs/blob/main/docs/src/ast-structures.md

View Suggested Changes

@@ -184,6 +184,9 @@
 
     /// String data
     String { max_length: Option<usize> },
+
+    /// Pascal string (length-prefixed)
+    PString { max_length: Option<usize> },
 }
 ```
 
@@ -223,6 +226,39 @@
 // Null-terminated string, max 256 bytes
 let string_type = TypeKind::String {
     max_length: Some(256)
+};
+```
+
+### PString (Pascal String)
+
+Pascal-style length-prefixed strings where the first byte contains the string length.
+
+**Structure:**
+- Length byte: 1 byte indicating string length (0-255)
+- String data: The number of bytes specified by the length byte
+
+**Example:**
+```
+0    pstring    JPEG
+```
+Reads one byte as length, then reads that many bytes as a string.
+
+**Behavior:**
+- Returns `Value::String` containing the string data (without the length prefix)
+- Performs bounds checking on both the length byte and the string data
+- Supports all string comparison operators
+
+**Usage:**
+
+```rust
+// Pascal string with no length limit
+let pstring_type = TypeKind::PString {
+    max_length: None
+};
+
+// Pascal string with maximum 64-byte limit
+let limited_pstring = TypeKind::PString {
+    max_length: Some(64)
 };
 ```
 
@@ -419,7 +455,8 @@
 1. **Use `Byte { signed }`** for single-byte values and flags, specifying signedness
 2. **Use `Short/Long/Quad`** with explicit endianness and signedness for multi-byte integers
 3. **Use `String`** with length limits for text patterns
-4. **Use `Bytes`** for exact binary sequences
+4. **Use `PString`** for Pascal-style length-prefixed strings
+5. **Use `Bytes`** for exact binary sequences
 
 ### Performance Considerations
 

✅ Accepted

Magic File Compatibility Status

View Suggested Changes

@@ -13,7 +13,7 @@
 The v0.4.x releases provide foundational file identification capabilities across data types, operators, offsets, nested rules, and string matching. While limited in scope compared to GNU file, these features establish the architectural patterns for future expansion.
 
 #### Data Types
-The evaluator currently supports seven basic data types with endianness variants:
+The evaluator currently supports eight basic data types with endianness variants:
 
 - **[Byte](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/types.rs#L77-L85)**: Single byte values (8-bit signed or unsigned)
 - **[Short](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/types.rs#L122-L147)**: 16-bit integers with native, little-endian, big-endian support (signed and unsigned)
@@ -22,6 +22,7 @@
 - **Date**: 32-bit Unix timestamps with endianness variants and UTC/local time formatting. Implementation in `src/evaluator/types/date.rs` uses `chrono` crate for timestamp formatting with format string `"%a %b %e %H:%M:%S %Y"` matching GNU file output.
 - **QDate**: 64-bit Unix timestamps with endianness variants and UTC/local time formatting. Shares formatting implementation with Date type for consistent output.
 - **[String](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/types.rs#L275-L308)**: Null-terminated or length-limited strings with UTF-8 conversion using [SIMD-accelerated null scanning](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/types.rs#L291-L298)
+- **PString**: Pascal-style length-prefixed strings where the first byte stores the string length (0-255), followed by that many bytes of string data. Implementation in `src/evaluator/types/string.rs` provides bounds checking for both the length byte and string data.
 
 #### Operators
 Eighteen operators are [fully implemented in evaluation](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/operators.rs):
@@ -107,13 +108,13 @@
 - [Bitwise XOR (^), NOT (~), and any-value (x) operators implemented in PR #145](https://github.com/EvilBit-Labs/libmagic-rs/pull/145) - Resolves Issue #35. Required for advanced binary pattern matching and unconditional match patterns. Released in v0.4.0.
 
 ### Epic #54: Type System Expansion (v0.2.0 + v0.3.0)
-[Status: 7 of 33+ types implemented](https://github.com/EvilBit-Labs/libmagic-rs/issues/54). The type system expansion is split across two releases to manage code complexity.
+[Status: 8 of 33+ types implemented](https://github.com/EvilBit-Labs/libmagic-rs/issues/54). The type system expansion is split across two releases to manage code complexity.
 
 **Version 0.2.0 targets:**
 - [Quad (64-bit integer) with endian variants](https://github.com/EvilBit-Labs/libmagic-rs/issues/36) - **Implemented**. Supports signed and unsigned 64-bit integers with full endianness support for modern binary formats
 - [Date and timestamp types tracked in Issue #41](https://github.com/EvilBit-Labs/libmagic-rs/issues/54) - **Implemented**. Supports 32-bit (Date) and 64-bit (QDate) Unix timestamps with endianness variants and UTC/local time formatting
 - [Float and double with endian variants tracked in Issue #40](https://github.com/EvilBit-Labs/libmagic-rs/issues/54) - Required for scientific data and image metadata
-- [Pstring (Pascal string) tracked in Issue #43](https://github.com/EvilBit-Labs/libmagic-rs/issues/54) - Rare but needed for full compatibility
+- [Pstring (Pascal string) tracked in Issue #43](https://github.com/EvilBit-Labs/libmagic-rs/issues/54) - **Implemented**. Length-prefixed strings where the first byte stores the string length (0-255)
 
 **Version 0.3.0 targets:**
 - [Regex and search types tracked in Issue #39](https://github.com/EvilBit-Labs/libmagic-rs/issues/54) - **HIGH priority** for text file detection (JSON, scripts, XML)
@@ -191,7 +192,6 @@
 - [Relative offset resolution via Issue #38](https://github.com/EvilBit-Labs/libmagic-rs/issues/38) - Enables sequential field parsing in complex formats
 - [Regex and search type matching via Issue #39](https://github.com/EvilBit-Labs/libmagic-rs/issues/39) - Critical for detecting text files (JSON, XML, scripts)
 - Float and double numeric types with endianness variants
-- Pascal string type (pstring)
 - ZIP content inspection enhancements
 
 **Mandatory prerequisite refactoring:**

✅ Accepted

magic-format /libmagic-rs/blob/main/docs/src/magic-format.md

View Suggested Changes

@@ -209,7 +209,7 @@
 16      leqldate  x         \b, timestamp %s
 ```
 
-### String Type
+### String Types
 
 Match literal string data:
 
@@ -224,6 +224,20 @@
 - `\n` - newline
 - `\t` - tab
 - `\\` - backslash
+
+### Pascal String Type
+
+Pascal string (pstring) is a length-prefixed string type. The first byte contains the string length (0-255), followed by that many bytes of string data. Unlike C strings, Pascal strings are not null-terminated.
+
+```text
+0       pstring   =JPEG     JPEG image (Pascal string)
+```
+
+The evaluator reads the length byte, then reads that many bytes as string data. The optional max_length parameter caps the length byte value:
+
+```text
+0       pstring   x         \b, name: %s
+```
 
 ### String Flags (Not Yet Implemented)
 
@@ -535,7 +549,7 @@
 - Byte, short, long, quad types (8-bit, 16-bit, 32-bit, 64-bit integers)
 - Float and double types (32-bit and 64-bit IEEE 754 floating-point)
 - Date and qdate types (32-bit and 64-bit Unix timestamps)
-- String type
+- String and pstring types (null-terminated and length-prefixed strings)
 - Comparison operators (equal, not-equal, less-than, greater-than, less-equal, greater-equal)
 - Bitwise AND operator
 - Nested rules

✅ Accepted

MAGIC_FORMAT /libmagic-rs/blob/main/docs/MAGIC_FORMAT.md

View Suggested Changes

@@ -170,7 +170,7 @@
 8       uquad     >0x8000000000000000 (unsigned 64-bit check)
 ```
 
-### String Type
+### String Types
 
 Match literal string data:
 
@@ -185,6 +185,16 @@
 - `\n` - newline
 - `\t` - tab
 - `\\` - backslash
+
+**Pascal String (pstring)**
+
+Length-prefixed string type where the first byte contains the string length (0-255), followed by that many bytes of string data. Unlike C strings, Pascal strings are not null-terminated.
+
+```text
+0       pstring   =JPEG     JPEG image (Pascal string)
+```
+
+The length byte value determines how many bytes to read for the string data. If `max_length` is specified in the magic file (not shown in the basic syntax), it caps the length byte value to prevent reading excessive data.
 
 ### String Flags
 
@@ -525,7 +535,7 @@
 - Relative offsets
 - Indirect offsets (basic)
 - Byte, short, long, quad types (8-bit, 16-bit, 32-bit, 64-bit integers)
-- String type
+- String types (`string`, `pstring`)
 - Date and timestamp types (32-bit and 64-bit Unix timestamps)
 - Comparison operators (`=`, `!`, `<`, `>`, `<=`, `>=`)
 - Bitwise AND operator
@@ -542,6 +552,7 @@
 
 ### Recently Added
 
+- **Pascal string type**: `pstring` for length-prefixed strings
 - **Date/timestamp types**: `date` (32-bit) and `qdate` (64-bit) Unix timestamp types
 - **Comparison operators**: Full support for `<`, `>`, `<=`, `>=` operators
 - **Strength modifiers**: The `!:strength` directive for adjusting rule priority

✅ Accepted

parser /libmagic-rs/blob/main/docs/src/parser.md

View Suggested Changes

@@ -183,6 +183,46 @@
 - ✅ Comprehensive test coverage for all endianness variants and literal formats
 
 **Note:** Float and double types do **not** have signed/unsigned variants. IEEE 754 handles sign internally via the sign bit, so all float types use a single `TypeKind` variant with only an `endian` field (no `signed: bool` field).
+
+### Pascal String (pstring) Type
+
+The parser supports Pascal-style length-prefixed strings through the `pstring` keyword:
+
+**Type Keyword:**
+
+- `pstring` - Length-prefixed string (1-byte length + string data) → `TypeKind::PString { max_length: None }`
+
+**Format:**
+
+Pascal strings store the length as the first byte (0-255), followed by that many bytes of string data. Unlike C strings, they are not null-terminated.
+
+**Parser Implementation:**
+
+- Recognized by `parse_type_keyword()` in `src/parser/types.rs`
+- Maps to `TypeKind::PString` in the AST
+- Evaluator reads length prefix byte then that many bytes as string data
+- Stored as `Value::String` for comparison with string operators
+- Supports optional `max_length` field to cap the length byte value
+
+**Usage in Magic Rules:**
+
+```rust
+// Basic pstring matching
+0 pstring =Hello     // Match if pstring equals "Hello"
+0 pstring x          // Match any pstring value
+
+// With max_length constraint (parsed separately)
+0 pstring/64 x       // Limit string read to 64 bytes
+```
+
+**Features:**
+
+- ✅ Single type keyword `pstring`
+- ✅ Length-prefixed format (1 byte length, 0-255 bytes data)
+- ✅ Bounds checking for both length byte and string data
+- ✅ UTF-8 validation with replacement character for invalid sequences
+- ✅ Optional `max_length` parameter to limit string reads
+- ✅ String comparison operators work with pstring values
 
 ### Date and Timestamp Types
 

✅ Accepted

Type System And Operator Coverage

View Suggested Changes

@@ -85,6 +85,17 @@
 - **UTF-8 Handling**: Invalid UTF-8 sequences replaced with replacement character (U+FFFD)
 - **Return Type**: `Value::String(String)`
 - **Implementation**: [read_string function](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/types.rs#L275-L308)
+
+#### PString Type
+- **Description**: Pascal-style length-prefixed strings where the first byte indicates the string length, followed by that many bytes of string data
+- **Size**: Variable (1 byte for length prefix + actual string bytes)
+- **Parameters**: `max_length: Option<usize>` caps the length byte value
+- **Behavior**: Reads length byte (0-255), then reads that many bytes as string data; not null-terminated
+- **Bounds Checking**: Validates both the length byte is readable and that the full string data is within bounds
+- **UTF-8 Handling**: Invalid UTF-8 sequences replaced with replacement character (U+FFFD)
+- **Return Type**: `Value::String(String)`
+- **Implementation**: [read_pstring function](https://github.com/EvilBit-Labs/libmagic-rs/blob/main/src/evaluator/types/string.rs)
+- **Comparison Operators**: Supports all string comparison operators (=, !=, <, >, <=, >=)
 
 ### Endianness Support
 
@@ -244,7 +255,7 @@
 
 **Status**: Released and [published on crates.io](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/README.md#L24)
 
-**Type Coverage**: 19 of ~33 types (58%)
+**Type Coverage**: 20 of ~33 types (61%)
 - ✅ Byte
 - ✅ Short (signed/unsigned, all endianness variants)
 - ✅ Long (signed/unsigned, all endianness variants)
@@ -254,6 +265,7 @@
 - ✅ Date (32-bit Unix timestamp, all endianness variants, UTC/local time)
 - ✅ QDate (64-bit Unix timestamp, all endianness variants, UTC/local time)
 - ✅ String (with optional max_length)
+- ✅ PString (Pascal string with optional max_length)
 
 **Operator Coverage**: 4 of ~13 operators (31%)
 - ✅ Equal (=, ==)
@@ -324,11 +336,10 @@
 
 **Planned New Types**:
 - **Regex and Search**: Pattern matching for text detection ([Issue #39](https://github.com/EvilBit-Labs/libmagic-rs/issues/39))
-- **Pascal String**: Length-prefixed string type ([Issue #43](https://github.com/EvilBit-Labs/libmagic-rs/issues/43))
 - **Meta-Types**: `default`, `clear`, `name`, `use`, `indirect` ([Issue #42](https://github.com/EvilBit-Labs/libmagic-rs/issues/42))
 
 **Coverage**:
-- Types: 19 of ~33 (58%)
+- Types: 20 of ~33 (61%)
 - Operators: 11 of ~13 (85%)
 - Offsets: 5 of 5 (100%)
 
@@ -419,7 +430,7 @@
 | | `ledouble` | 8 bytes | Little | ✅ Implemented | v0.1.0 |
 | | `bedouble` | 8 bytes | Big | ✅ Implemented | v0.1.0 |
 | **String** | `string` | Variable | N/A | ✅ Implemented | v0.1.x |
-| | `pstring` | Variable | N/A | 📋 Planned | v0.4.0 |
+| | `pstring` | Variable | N/A | ✅ Implemented | v0.5.0+ |
 | **Date (32-bit)** | `date` | 4 bytes | Native UTC | ✅ Implemented | v0.5.0+ |
 | | `ldate` | 4 bytes | Native Local | ✅ Implemented | v0.5.0+ |
 | | `bedate` | 4 bytes | Big UTC | ✅ Implemented | v0.5.0+ |
@@ -442,10 +453,10 @@
 | | `use` | N/A | N/A | 📋 Planned | v0.4.0 |
 | | `indirect` | N/A | N/A | 📋 Planned | v0.4.0 |
 
-**Current Coverage**: 19 of 33 types (58%)
+**Current Coverage**: 20 of 33 types (61%)
 **v0.3.0 Status**: 7 of 33 types (21%)
 **v0.4.0 Status**: 7 of 33 types (21%)
-**v0.5.0+ Status**: 19 of 33 types (58%)
+**v0.5.0+ Status**: 20 of 33 types (61%)
 **v1.0.0 Target**: ~31 of 33 types (94%)
 
 ### Complete Operator Inventory
@@ -498,7 +509,8 @@
 | File Path | Description | Key Components |
 |-----------|-------------|----------------|
 | [src/parser/ast.rs](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/parser/ast.rs) | AST data structures | TypeKind enum, Operator enum, OffsetSpec enum, Endianness enum |
-| [src/evaluator/types.rs](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/types.rs) | Type reading implementation | read_byte, read_short, read_long, read_quad, read_float, read_double, read_date, read_qdate, read_string, read_typed_value |
+| [src/evaluator/types.rs](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/types.rs) | Type reading implementation | read_byte, read_short, read_long, read_quad, read_float, read_double, read_date, read_qdate, read_string, read_pstring, read_typed_value |
+| [src/evaluator/types/string.rs](https://github.com/EvilBit-Labs/libmagic-rs/blob/main/src/evaluator/types/string.rs) | String type implementation | read_string, read_pstring |
 | [src/evaluator/types/date.rs](https://github.com/EvilBit-Labs/libmagic-rs/blob/main/src/evaluator/types/date.rs) | Date/timestamp implementation | read_date, read_qdate, format_unix_timestamp_64, local_utc_offset_secs |
 | [src/evaluator/operators.rs](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/operators.rs) | Operator evaluation | apply_equal, apply_not_equal, apply_bitwise_and, apply_operator |
 | [src/evaluator/offset.rs](https://github.com/EvilBit-Labs/libmagic-rs/blob/e925ef6b3f2208fc8805a728ba3de55956f4447a/src/evaluator/offset.rs) | Offset resolution | resolve_offset, resolve_absolute_offset, OffsetError |

✅ Accepted

Note: You must be authenticated to accept/decline updates.

^{How did I do? Any feedback?}  

[Copilot]

Pull request overview

Adds Pascal-style length-prefixed string support (pstring) across the parser and evaluator so magic rules can match length-prefixed strings in binary formats.

Changes:

• Extend TypeKind with PString and wire it through parsing (pstring keyword) and codegen serialization.
• Implement evaluator reading for PString and include it in typed-value dispatch + strength calculation.
• Add unit/integration/property tests plus documentation updates for the new type.

Reviewed changes

Copilot reviewed 14 out of 15 changed files in this pull request and generated 2 comments.

Show a summary per file

File	Description
src/parser/ast.rs	Adds TypeKind::PString and updates bit_width() handling.
src/parser/types.rs	Parses pstring keyword and maps it to TypeKind::PString.
src/parser/codegen.rs	Adds PString support to serialize_type_kind().
src/parser/grammar/mod.rs	Updates type docs to mention pstring.
src/parser/grammar/tests.rs	Adds parser tests for pstring parsing and rule parsing.
src/evaluator/types/string.rs	Implements read_pstring() and adds unit tests.
src/evaluator/types/mod.rs	Dispatches TypeKind::PString via read_typed_value() and re-exports read_pstring.
src/evaluator/strength.rs	Includes PString in default strength calculation alongside String.
src/evaluator/engine/tests.rs	Adds engine tests verifying PString rule matching behavior.
tests/evaluator_tests.rs	Adds integration-style tests for PString evaluation.
tests/property_tests.rs	Includes PString in TypeKind generation strategy.
src/build_helpers.rs	Adds serialization tests for TypeKind::PString.
AGENTS.md	Documents pstring as implemented type support.
.github/copilot-instructions.md	Updates project status/docs to reflect current capabilities and pstring support.
mise.lock	Regenerated lockfile content (tooling metadata).

[Copilot]

Pull request overview

Copilot reviewed 21 out of 22 changed files in this pull request and generated 4 comments.

[Copilot]

parse_type_and_operator("pstring& ") currently parses an attached & as Operator::BitwiseAnd for pstring. Since the evaluator’s bitwise operators only apply to integer Values (and return false for strings), this allows nonsensical rules to parse but never match, which is hard to diagnose. Consider rejecting attached & / &mask operators for string/pstring types in parse_type_and_operator/parse_magic_rule, and update this test accordingly (expect an error instead of Some(BitwiseAnd)).

Suggested change

	let (remaining, (typ, op)) = parse_type_and_operator("pstring& ").unwrap();
	assert_eq!(remaining, "");
	assert_eq!(typ, TypeKind::PString { max_length: None });
	assert_eq!(op, Some(Operator::BitwiseAnd));
	let result = parse_type_and_operator("pstring& ");
	assert!(
	result.is_err(),
	"attached '&' for pstring should be rejected as an invalid operator"
	);

[Copilot]

The “Supported Syntax” section lists pstring as a supported type, but the “String Matching” bullet still only mentions null-terminated strings. Updating that bullet to also mention Pascal (length-prefixed) strings would keep the documentation consistent with the implemented feature set.

Suggested change

	- **String Matching**: Exact string matching with null-termination
	- **String Matching**: Exact string matching for null-terminated (`string`) and Pascal/length-prefixed (`pstring`) strings

[Copilot]

read_pstring reports TypeReadError::BufferOverrun { offset: usize::MAX, ... } when string_start.checked_add(actual_length) overflows. Using usize::MAX makes the error location misleading and breaks consistency with other buffer-overrun errors. Consider returning the original offset/string_start, or introduce a dedicated overflow error variant so callers can distinguish arithmetic overflow from an actual buffer overrun.

[Copilot]

The security docs for read_pstring say “The length byte is validated against the remaining buffer size before reading”, but the implementation validates the capped length (min(length_byte, max_length)) against the buffer, and can succeed even if the original length byte exceeds remaining data (when max_length is smaller). Either adjust the docs to match the behavior, or change the code to treat an out-of-bounds length byte as an error regardless of max_length.

Suggested change

	/// When `max_length` is set, bounds are validated against the capped length, not the
	/// raw length byte. This matches GNU `file` behavior: `max_length` is intended to
	/// handle cases where the length byte may reference more data than actually exists.
	/// The raw length byte is validated against the remaining buffer size before any
	/// string data is read. When `max_length` is set, the number of bytes actually read
	/// is capped to `min(length_byte, max_length)` after this bounds check.

[unclesp1d3r]

@Mergifyio queue

[mergify]

Merge Queue Status

---

• 🟠 Waiting for queue conditions
• ⬜ Enter queue
• ⬜ Run checks
• ⬜ Merge

Required conditions to enter a queue

• -closed [📌 queue requirement]
• -conflict [📌 queue requirement]
• -draft [📌 queue requirement]
• any of [📌 queue -> configuration change requirements]:
  • -mergify-configuration-changed
  • check-success = Configuration changed
• any of [📌 queue requirement]:
  • check-success = Mergify Merge Protections
  • check-neutral = Mergify Merge Protections
  • check-skipped = Mergify Merge Protections
• any of [🔀 queue conditions]:
  • all of [📌 queue conditions of queue default]:
    • all of [🛡 Merge Protections rule CI must pass]:
      • check-success = coverage
      • check-success = quality
      • check-success = test
      • check-success = test-cross-platform (macos-latest, macOS)
      • check-success = test-cross-platform (ubuntu-22.04, Linux)
      • check-success = test-cross-platform (ubuntu-latest, Linux)
      • check-success = test-cross-platform (windows-latest, Windows)
    • all of [🛡 Merge Protections rule Do not merge outdated PRs]:
      • #commits-behind <= 3
    • any of [🛡 GitHub repository ruleset rule main]:
      • check-success = DCO
      • check-neutral = DCO
      • check-skipped = DCO
    • any of [🛡 GitHub repository ruleset rule main]:
      • check-success = Mergify Merge Protections
      • check-neutral = Mergify Merge Protections
      • check-skipped = Mergify Merge Protections

[mergify]

Merge Queue Status

Rule: default

---

• ✅ Entered queue — 2026-03-09 07:02 UTC
• ✅ Checks passed · in-place
• ✅ Merged — 2026-03-09 07:02 UTC · at d0215558009854608dc6907a36d6df77c22e263c

This pull request spent 7 seconds in the queue, with no time running CI.

Required conditions to merge

• all of [🛡 Merge Protections rule CI must pass]:
  • check-success = coverage
  • check-success = quality
  • check-success = test
  • check-success = test-cross-platform (macos-latest, macOS)
  • check-success = test-cross-platform (ubuntu-22.04, Linux)
  • check-success = test-cross-platform (ubuntu-latest, Linux)
  • check-success = test-cross-platform (windows-latest, Windows)
• all of [🛡 Merge Protections rule Do not merge outdated PRs]:
  • #commits-behind <= 3
    • feat(parser): implement pstring (Pascal string) type #170
• any of [🛡 GitHub repository ruleset rule main]:
  • check-success = DCO
  • check-neutral = DCO
  • check-skipped = DCO
• any of [🛡 GitHub repository ruleset rule main]:
  • check-success = Mergify Merge Protections
  • check-neutral = Mergify Merge Protections
  • check-skipped = Mergify Merge Protections