attestation-doc-validation 0.10.0

A Rust library for attesting enclaves according to the Evervault Attestation scheme. This crate is used to generate ffi bindings.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51

use thiserror::Error;

/// Wrapping type to record the specific error that occurred while processing the encoded attestation doc.
#[allow(clippy::module_name_repetitions)]
#[derive(Error, Debug)]
pub enum NsmError
where
    Self: Send + Sync,
{
    #[error("Failed to obtain sufficient entropy")]
    EntropyError(String),
    #[error("Failed to compute hash")]
    HashingError(String),
    #[error("Unimplemented code path hit.")]
    UnimplementedError,
    #[error("Unsupported: {0}")]
    UnsupportedError(String),
    #[error("An error occurred while decoding the attestation from CBOR — {0}")]
    Cbor(#[from] serde_cbor::Error),
    #[error("Failed to verify signature")]
    UnverifiedSignature,
    #[error("Failed to perform signature")]
    SignatureError(String),
    #[error("Specification violated - {0}")]
    SpecificationError(String),
    #[error("Tag was missing or invalid: {0:?}")]
    TagError(Option<u64>),
    #[error("Failed to perform an encryption operation")]
    EncryptionError(String),
    #[error("Failed to deserialize value from der")]
    DerDecodeError,
}

// Impl to support casting errors from AWS types to ours
use aws_nitro_enclaves_cose::error::CoseError;
impl std::convert::From<CoseError> for NsmError {
    fn from(value: CoseError) -> NsmError {
        match value {
            CoseError::EntropyError(inner) => NsmError::EntropyError(inner.to_string()),
            CoseError::HashingError(inner) => NsmError::HashingError(inner.to_string()),
            CoseError::UnimplementedError => NsmError::UnimplementedError,
            CoseError::UnsupportedError(inner) => NsmError::UnsupportedError(inner),
            CoseError::UnverifiedSignature => NsmError::UnverifiedSignature,
            CoseError::SpecificationError(inner) => NsmError::SpecificationError(inner),
            CoseError::SerializationError(inner) => NsmError::Cbor(inner),
            CoseError::TagError(inner) => NsmError::TagError(inner),
            CoseError::EncryptionError(inner) => NsmError::EncryptionError(inner.to_string()),
            CoseError::SignatureError(inner) => NsmError::SignatureError(inner.to_string()),
        }
    }
}