clevis 0.4.4

A preliminary Rust implementation of the clevis protocol
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97

use std::str::Utf8Error;
use std::{fmt, io};

use crate::jose::Jwk;

/// An alias for `Result` with this crate's [`Error`] type
pub type Result<T, E = Error> = core::result::Result<T, E>;

/// Error types that this crate may produce
#[derive(Debug)]
pub enum Error {
    Server(Box<ureq::Error>),
    Algorithm(Box<str>),
    IoError(io::Error),
    MissingKeyOp(Box<str>),
    JsonMissingKey(Box<str>),
    JsonKeyType(Box<str>),
    Utf8(Utf8Error),
    Base64(base64ct::Error),
    Json(serde_json::Error),
    KeyType(Box<str>),
    VerifyKey,
    InvalidPublicKey(Box<Jwk>),
    EllipitcCurve,
    MissingPublicKey,
    IdentityPointCreated,
    EcDsa,
    FailedVerification,
}

impl fmt::Display for Error {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            Self::Server(e) => write!(f, "server error: {e}"),
            Self::Algorithm(v) => write!(f, "unsupported algorithm {v}"),
            Error::IoError(e) => write!(f, "io error {e}"),
            Error::MissingKeyOp(e) => write!(f, "no key operation {e}"),
            Error::Json(e) => write!(f, "json serde error: {e}"),
            Self::JsonMissingKey(v) => write!(f, "missing key {v}"),
            Self::JsonKeyType(v) => write!(f, "invalid key type {v} in JSON"),
            Error::Utf8(e) => write!(f, "utf8 error {e}"),
            Error::Base64(e) => write!(f, "base64 error {e}"),
            Self::VerifyKey => write!(f, "missing a key marked 'verify'"),
            Self::KeyType(v) => write!(f, "unsupported key type {v}"),
            Error::InvalidPublicKey(key) => write!(f, "invalid public key {key}"),
            Error::EllipitcCurve => write!(f, "elliptic curve cryptography"),
            Error::MissingPublicKey => write!(f, "could not locate a key with the correct key ID"),
            Error::IdentityPointCreated => write!(f, "math resulted an an identity key"),
            Error::EcDsa => write!(f, "error with verification"),
            Error::FailedVerification => write!(f, "key verification failed"),
        }
    }
}

impl std::error::Error for Error {}

impl From<ureq::Error> for Error {
    fn from(value: ureq::Error) -> Self {
        Error::Server(value.into())
    }
}

impl From<io::Error> for Error {
    fn from(value: io::Error) -> Self {
        Error::IoError(value)
    }
}

impl From<Utf8Error> for Error {
    fn from(value: Utf8Error) -> Self {
        Self::Utf8(value)
    }
}

impl From<base64ct::Error> for Error {
    fn from(value: base64ct::Error) -> Self {
        Self::Base64(value)
    }
}

impl From<serde_json::Error> for Error {
    fn from(value: serde_json::Error) -> Self {
        Self::Json(value)
    }
}

impl From<elliptic_curve::Error> for Error {
    fn from(_value: elliptic_curve::Error) -> Self {
        Self::EllipitcCurve
    }
}

impl From<ecdsa::Error> for Error {
    fn from(_value: ecdsa::Error) -> Self {
        Self::EcDsa
    }
}