fix: binary file detection

Author: kccarlos

src/electron/shared/binary.ts

@@ -0,0 +1,125 @@
+// Shared binary detection (web + desktop workers + UI).
+// Strategy:
+//  1) Extension hints (cheap).
+//  2) Magic-byte signatures.
+//  3) UTF-8 text heuristic on a small sample.
+//  4) SVG special-case (XML-ish text).
+//
+// Keep fast and dependency-free.
+
+export const SNIFF_BYTES = 8192
+
+// Pragmatic denylist; not authoritative, just an early-out.
+const BINARY_EXTS = new Set([
+  '.png','.jpg','.jpeg','.gif','.bmp','.webp','.ico',
+  '.pdf','.zip','.rar','.7z','.tar','.gz','.tgz',
+  '.mp3','.wav','.flac',
+  '.mp4','.mov','.avi','.mkv','.webm',
+  '.exe','.dll','.bin','.dmg','.pkg','.iso',
+  '.woff','.woff2','.ttf','.otf',
+  '.so','.dylib','.class','.jar',
+  '.psd','.ai','.sketch',
+  '.wasm',
+  // SVG is special-cased below; keep here so we early-out unless the content proves XML-ish
+  '.svg',
+])
+
+export function isBinaryPath(path: string): boolean {
+  const i = path.lastIndexOf('.')
+  if (i < 0) return false
+  const ext = path.slice(i).toLowerCase()
+  return BINARY_EXTS.has(ext)
+}
+
+function startsWith(bytes: Uint8Array, ascii: string, offset = 0): boolean {
+  if (offset + ascii.length > bytes.length) return false
+  for (let i = 0; i < ascii.length; i++) {
+    if (bytes[offset + i] !== ascii.charCodeAt(i)) return false
+  }
+  return true
+}
+
+// Spot common binary formats by signature (magic bytes).
+export function hasBinaryMagic(bytes: Uint8Array): boolean {
+  const b = bytes
+  const len = b.length
+  if (len >= 8) {
+    // PNG
+    if (
+      b[0] === 0x89 && b[1] === 0x50 && b[2] === 0x4E && b[3] === 0x47 &&
+      b[4] === 0x0D && b[5] === 0x0A && b[6] === 0x1A && b[7] === 0x0A
+    ) return true
+  }
+  if (len >= 3) {
+    // JPEG
+    if (b[0] === 0xFF && b[1] === 0xD8 && b[2] === 0xFF) return true
+  }
+  // GIF
+  if (startsWith(b, 'GIF87a') || startsWith(b, 'GIF89a')) return true
+  // PDF
+  if (startsWith(b, '%PDF-')) return true
+  // ZIP (also covers many Office docs, apk, jar)
+  if (len >= 4 && b[0] === 0x50 && b[1] === 0x4B && (b[2] === 0x03 || b[2] === 0x05 || b[2] === 0x07) && (b[3] === 0x04 || b[3] === 0x06 || b[3] === 0x08)) return true
+  // GZIP
+  if (len >= 3 && b[0] === 0x1F && b[1] === 0x8B && b[2] === 0x08) return true
+  // MP3 (ID3)
+  if (startsWith(b, 'ID3')) return true
+  // MP4/ISO BMFF
+  if (len >= 12 && startsWith(b, 'ftyp', 4)) return true
+  // OGG
+  if (startsWith(b, 'OggS')) return true
+  // Matroska/WebM
+  if (len >= 4 && b[0] === 0x1A && b[1] === 0x45 && b[2] === 0xDF && b[3] === 0xA3) return true
+  // WOFF/WOFF2
+  if (startsWith(b, 'wOFF') || startsWith(b, 'wOF2')) return true
+  // TTF/OTF
+  if (len >= 4 && ((b[0] === 0x00 && b[1] === 0x01 && b[2] === 0x00 && b[3] === 0x00) || startsWith(b, 'OTTO'))) return true
+  // Windows MZ / ELF
+  if (startsWith(b, 'MZ') || (len >= 4 && b[0] === 0x7F && b[1] === 0x45 && b[2] === 0x4C && b[3] === 0x46)) return true
+  return false
+}
+
+// SVG often lives in repos as text; detect text-y SVG even if extension is .svg.
+function isXmlSvgText(bytes: Uint8Array): boolean {
+  // Skip leading whitespace / BOM, then expect '<'
+  let i = 0
+  while (i < bytes.length && (bytes[i] === 0xEF || bytes[i] === 0xBB || bytes[i] === 0xBF || bytes[i] <= 0x20)) i++
+  if (i >= bytes.length || bytes[i] !== 0x3C /* '<' */) return false
+  // Look for "<?xml" or "<svg"
+  return startsWith(bytes, '?xml', i + 1) || startsWith(bytes, 'svg', i + 1) || startsWith(bytes, '!DOCTYPE svg', i + 1)
+}
+
+// Heuristic: treat as binary if many NUL/control chars in the sample.
+export function looksBinaryHeuristic(bytes: Uint8Array): boolean {
+  const n = Math.min(bytes.length, SNIFF_BYTES)
+  if (n === 0) return false
+  let suspicious = 0
+  for (let i = 0; i < n; i++) {
+    const c = bytes[i]
+    if (c === 0) { suspicious += 2; continue }
+    // control chars outside common whitespace range
+    if (c < 7 || (c > 13 && c < 32)) suspicious++
+  }
+  return suspicious / n > 0.30
+}
+
+export function detectBinaryByContent(sample: Uint8Array, path?: string): boolean {
+  // path hint
+  if (path && isBinaryPath(path)) {
+    // Allow SVG override if it looks like XML
+    if (path.toLowerCase().endsWith('.svg') && isXmlSvgText(sample)) return false
+    return true
+  }
+  if (hasBinaryMagic(sample)) return true
+  // SVG override if no magic but looks like XML text
+  if (isXmlSvgText(sample)) return false
+  return looksBinaryHeuristic(sample)
+}
+
+// Convenience: decide with or without sample.
+export function shouldTreatAsBinary(path: string, sample?: Uint8Array): boolean {
+  if (!sample) return isBinaryPath(path)
+  return detectBinaryByContent(sample, path)
+}
+
+export { BINARY_EXTS }

src/electron/workers/nodeGitWorker.ts

@@ -3,6 +3,7 @@ import * as fs from 'fs'
 import * as path from 'path'
 import * as git from 'isomorphic-git'
 import { LRUCache } from 'lru-cache'
+import { isBinaryPath, detectBinaryByContent, SNIFF_BYTES } from '../shared/binary'
 
 type Msg =
   | { id: number; type: 'loadRepo'; repoPath: string }
@@ -17,19 +18,6 @@ const blobCache = new LRUCache<string, { binary: boolean; text: string | null }>
 let blobCacheHits = 0
 const gitCache: Record<string, any> = Object.create(null)
 const WORKDIR = '__WORKDIR__'
-const BINARY_EXTS = [
-  '.png','.jpg','.jpeg','.gif','.bmp','.webp','.ico',
-  '.pdf','.zip','.rar','.7z','.tar','.gz','.tgz',
-  '.mp3','.wav','.flac',
-  '.mp4','.mov','.avi','.mkv','.webm',
-  '.exe','.dll','.bin','.dmg','.pkg','.iso',
-  '.woff','.woff2','.ttf','.otf',
-  '.svg'
-]
-function isBinaryPathLocal(p: string): boolean {
-  const lower = p.toLowerCase()
-  return BINARY_EXTS.some(ext => lower.endsWith(ext))
-}
 
 // Helper function to parse packed-refs
 async function parsePackedRefs(repoPath: string): Promise<string[]> {
@@ -58,14 +46,7 @@ function ok(id: number, data?: any) { send({ id, type: 'ok', data }) }
 function err(id: number, error: string) { send({ id, type: 'error', error }) }
 function progress(id: number, message: string) { send({ id, type: 'progress', message }) }
 
-function looksBinary(buf: Buffer): boolean {
-  const len = Math.min(buf.length, 8000)
-  for (let i = 0; i < len; i++) {
-    const c = buf[i]
-    if (c === 0) return true
-  }
-  return false
-}
+// (content sniffing comes from shared helper)
 
 parentPort?.on('message', async (m: Msg) => {
   try {
@@ -141,7 +122,7 @@ parentPort?.on('message', async (m: Msg) => {
       }
       case 'readFile': {
         // Fast path: known-binary extension => no content read
-        if (isBinaryPathLocal(m.filepath)) {
+        if (isBinaryPath(m.filepath)) {
           if (m.ref !== WORKDIR) {
             ok(m.id, { binary: true, text: null, notFound: false }); return
           }
@@ -168,17 +149,32 @@ parentPort?.on('message', async (m: Msg) => {
           const res = await git.readBlob({ fs, dir: repoPath, oid: commitOid, filepath: m.filepath }).catch(() => null)
           if (!res) { ok(m.id, { binary: false, text: null, notFound: true }); return }
           const buf = Buffer.from(res.blob)
-          const binary = looksBinary(buf)
+          const sample = buf.subarray(0, SNIFF_BYTES)
+          const binary = detectBinaryByContent(sample, m.filepath)
           const value = { binary, text: binary ? null : buf.toString('utf8') }
           blobCache.set(cacheKey, value)
           ok(m.id, { ...value, notFound: false })
           return
         }
+        // Partial read to sniff type without pulling whole large files
         const fileAbs = path.join(repoPath, m.filepath)
-        const buf = await fs.promises.readFile(fileAbs).catch(() => null as any)
-        if (!buf) { ok(m.id, { binary: false, text: null, notFound: true }); return }
-        const binary = looksBinary(buf as Buffer)
-        ok(m.id, { binary, text: binary ? null : (buf as Buffer).toString('utf8') })
+        const fd = await fs.promises.open(fileAbs, 'r').catch(() => null as any)
+        if (!fd) { ok(m.id, { binary: false, text: null, notFound: true }); return }
+        try {
+          const probe = Buffer.allocUnsafe(SNIFF_BYTES)
+          const { bytesRead } = await fd.read(probe, 0, SNIFF_BYTES, 0)
+          const sample = probe.subarray(0, bytesRead)
+          const binary = detectBinaryByContent(sample, m.filepath)
+          if (binary) {
+            ok(m.id, { binary: true, text: null, notFound: false })
+          } else {
+            // Now read full text if needed
+            const full = await fs.promises.readFile(fileAbs, 'utf8')
+            ok(m.id, { binary: false, text: full, notFound: false })
+          }
+        } finally {
+          await fd.close().catch(() => {})
+        }
         return
       }
       case 'listFiles': {

src/web/src/shared/binary.ts

@@ -0,0 +1,125 @@
+// Shared binary detection (web + desktop workers + UI).
+// Strategy:
+//  1) Extension hints (cheap).
+//  2) Magic-byte signatures.
+//  3) UTF-8 text heuristic on a small sample.
+//  4) SVG special-case (XML-ish text).
+//
+// Keep fast and dependency-free.
+
+export const SNIFF_BYTES = 8192
+
+// Pragmatic denylist; not authoritative, just an early-out.
+const BINARY_EXTS = new Set([
+  '.png','.jpg','.jpeg','.gif','.bmp','.webp','.ico',
+  '.pdf','.zip','.rar','.7z','.tar','.gz','.tgz',
+  '.mp3','.wav','.flac',
+  '.mp4','.mov','.avi','.mkv','.webm',
+  '.exe','.dll','.bin','.dmg','.pkg','.iso',
+  '.woff','.woff2','.ttf','.otf',
+  '.so','.dylib','.class','.jar',
+  '.psd','.ai','.sketch',
+  '.wasm',
+  // SVG is special-cased below; keep here so we early-out unless the content proves XML-ish
+  '.svg',
+])
+
+export function isBinaryPath(path: string): boolean {
+  const i = path.lastIndexOf('.')
+  if (i < 0) return false
+  const ext = path.slice(i).toLowerCase()
+  return BINARY_EXTS.has(ext)
+}
+
+function startsWith(bytes: Uint8Array, ascii: string, offset = 0): boolean {
+  if (offset + ascii.length > bytes.length) return false
+  for (let i = 0; i < ascii.length; i++) {
+    if (bytes[offset + i] !== ascii.charCodeAt(i)) return false
+  }
+  return true
+}
+
+// Spot common binary formats by signature (magic bytes).
+export function hasBinaryMagic(bytes: Uint8Array): boolean {
+  const b = bytes
+  const len = b.length
+  if (len >= 8) {
+    // PNG
+    if (
+      b[0] === 0x89 && b[1] === 0x50 && b[2] === 0x4E && b[3] === 0x47 &&
+      b[4] === 0x0D && b[5] === 0x0A && b[6] === 0x1A && b[7] === 0x0A
+    ) return true
+  }
+  if (len >= 3) {
+    // JPEG
+    if (b[0] === 0xFF && b[1] === 0xD8 && b[2] === 0xFF) return true
+  }
+  // GIF
+  if (startsWith(b, 'GIF87a') || startsWith(b, 'GIF89a')) return true
+  // PDF
+  if (startsWith(b, '%PDF-')) return true
+  // ZIP (also covers many Office docs, apk, jar)
+  if (len >= 4 && b[0] === 0x50 && b[1] === 0x4B && (b[2] === 0x03 || b[2] === 0x05 || b[2] === 0x07) && (b[3] === 0x04 || b[3] === 0x06 || b[3] === 0x08)) return true
+  // GZIP
+  if (len >= 3 && b[0] === 0x1F && b[1] === 0x8B && b[2] === 0x08) return true
+  // MP3 (ID3)
+  if (startsWith(b, 'ID3')) return true
+  // MP4/ISO BMFF
+  if (len >= 12 && startsWith(b, 'ftyp', 4)) return true
+  // OGG
+  if (startsWith(b, 'OggS')) return true
+  // Matroska/WebM
+  if (len >= 4 && b[0] === 0x1A && b[1] === 0x45 && b[2] === 0xDF && b[3] === 0xA3) return true
+  // WOFF/WOFF2
+  if (startsWith(b, 'wOFF') || startsWith(b, 'wOF2')) return true
+  // TTF/OTF
+  if (len >= 4 && ((b[0] === 0x00 && b[1] === 0x01 && b[2] === 0x00 && b[3] === 0x00) || startsWith(b, 'OTTO'))) return true
+  // Windows MZ / ELF
+  if (startsWith(b, 'MZ') || (len >= 4 && b[0] === 0x7F && b[1] === 0x45 && b[2] === 0x4C && b[3] === 0x46)) return true
+  return false
+}
+
+// SVG often lives in repos as text; detect text-y SVG even if extension is .svg.
+function isXmlSvgText(bytes: Uint8Array): boolean {
+  // Skip leading whitespace / BOM, then expect '<'
+  let i = 0
+  while (i < bytes.length && (bytes[i] === 0xEF || bytes[i] === 0xBB || bytes[i] === 0xBF || bytes[i] <= 0x20)) i++
+  if (i >= bytes.length || bytes[i] !== 0x3C /* '<' */) return false
+  // Look for "<?xml" or "<svg"
+  return startsWith(bytes, '?xml', i + 1) || startsWith(bytes, 'svg', i + 1) || startsWith(bytes, '!DOCTYPE svg', i + 1)
+}
+
+// Heuristic: treat as binary if many NUL/control chars in the sample.
+export function looksBinaryHeuristic(bytes: Uint8Array): boolean {
+  const n = Math.min(bytes.length, SNIFF_BYTES)
+  if (n === 0) return false
+  let suspicious = 0
+  for (let i = 0; i < n; i++) {
+    const c = bytes[i]
+    if (c === 0) { suspicious += 2; continue }
+    // control chars outside common whitespace range
+    if (c < 7 || (c > 13 && c < 32)) suspicious++
+  }
+  return suspicious / n > 0.30
+}
+
+export function detectBinaryByContent(sample: Uint8Array, path?: string): boolean {
+  // path hint
+  if (path && isBinaryPath(path)) {
+    // Allow SVG override if it looks like XML
+    if (path.toLowerCase().endsWith('.svg') && isXmlSvgText(sample)) return false
+    return true
+  }
+  if (hasBinaryMagic(sample)) return true
+  // SVG override if no magic but looks like XML text
+  if (isXmlSvgText(sample)) return false
+  return looksBinaryHeuristic(sample)
+}
+
+// Convenience: decide with or without sample.
+export function shouldTreatAsBinary(path: string, sample?: Uint8Array): boolean {
+  if (!sample) return isBinaryPath(path)
+  return detectBinaryByContent(sample, path)
+}
+
+export { BINARY_EXTS }

src/web/src/utils/binary.ts

@@ -1,18 +1,2 @@
-// Centralized binary-file heuristics to keep UI, workers, and counters in sync.
-// Note: We treat SVG as binary here for safety/perf (often very large).
-const BINARY_EXTS = [
-  '.png','.jpg','.jpeg','.gif','.bmp','.webp','.ico',
-  '.pdf','.zip','.rar','.7z','.tar','.gz','.tgz',
-  '.mp3','.wav','.flac',
-  '.mp4','.mov','.avi','.mkv','.webm',
-  '.exe','.dll','.bin','.dmg','.pkg','.iso',
-  '.woff','.woff2','.ttf','.otf',
-  '.svg'
-]
-
-export function isBinaryPath(p: string): boolean {
-  const lower = p.toLowerCase()
-  return BINARY_EXTS.some(ext => lower.endsWith(ext))
-}
-
-export { BINARY_EXTS }
+// Re-export shared detector for web UI code paths.
+export * from '../shared/binary'