1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
//! Error handling for lib-Q
//!
//! This module defines the error types used throughout the library.
use core::fmt;
#[cfg(feature = "alloc")]
extern crate alloc;
#[cfg(feature = "alloc")]
#[allow(unused_imports)]
use alloc::{
string::{
String,
ToString,
},
vec::Vec,
};
/// Why hexadecimal decoding failed ([`Error::HexDecode`], [`crate::api::Utils::hex_to_bytes`]).
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash)]
#[cfg_attr(feature = "serde", derive(serde::Serialize, serde::Deserialize))]
pub enum HexDecodeError {
/// After trimming, the string has an odd number of hexadecimal characters.
OddLength {
/// Number of UTF-8 bytes in the trimmed hex string (not decoded byte length).
char_count: usize,
},
/// A two-character slice is not a valid hexadecimal byte.
InvalidDigit {
/// UTF-8 byte index in the trimmed string where the invalid pair starts.
pair_start: usize,
/// Total UTF-8 byte length of the trimmed hex string.
char_count: usize,
},
}
impl fmt::Display for HexDecodeError {
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
match self {
HexDecodeError::OddLength { char_count } => write!(
f,
"odd hex length ({char_count} characters); length must be even"
),
HexDecodeError::InvalidDigit {
pair_start,
char_count,
} => write!(
f,
"invalid hex digit at index {pair_start} (trimmed length {char_count})"
),
}
}
}
/// The error type for lib-Q operations
///
/// This enum represents all possible errors that can occur during cryptographic operations
/// across all libQ libraries. Each variant includes context about when the error occurs.
#[derive(Debug, Clone, PartialEq, Eq)]
#[cfg_attr(feature = "serde", derive(serde::Serialize, serde::Deserialize))]
// #[cfg_attr(
// feature = "wasm",
// derive(wasm_bindgen::FromJsValue, wasm_bindgen::IntoJsValue)
// )]
pub enum Error {
/// Invalid key size
///
/// **When it occurs:** A key (public or secret) has an incorrect size for the algorithm.
/// **Cause:** The key data provided doesn't match the expected size for the algorithm variant.
/// **Resolution:** Ensure the key size matches the algorithm's requirements. Check algorithm documentation for expected key sizes.
InvalidKeySize { expected: usize, actual: usize },
/// Invalid signature size
///
/// **When it occurs:** A signature has an incorrect size for the algorithm.
/// **Cause:** The signature data doesn't match the expected size for verification.
/// **Resolution:** Ensure the signature was generated for the same algorithm variant and hasn't been corrupted.
InvalidSignatureSize { expected: usize, actual: usize },
/// Invalid nonce size
///
/// **When it occurs:** A nonce has an incorrect size for the operation.
/// **Cause:** The nonce doesn't meet the size requirements for the cryptographic operation.
/// **Resolution:** Ensure the nonce size matches the algorithm's requirements (typically 12-16 bytes for AEAD).
InvalidNonceSize { expected: usize, actual: usize },
/// Invalid message size
///
/// **When it occurs:** A caller-supplied message or payload exceeds a configured policy limit
/// (for example AEAD or hash absorb bounds from [`crate::security::SecurityValidator`]).
/// **Cause:** The input is too large for the operation under current security constants.
/// **Resolution:** Split the message into smaller chunks or use a different approach that supports larger messages.
///
/// For fixed internal or stack buffers, use [`Error::BufferTooSmall`] instead.
InvalidMessageSize { max: usize, actual: usize },
/// Invalid ciphertext size
///
/// **When it occurs:** A ciphertext has an incorrect size for decryption.
/// **Cause:** The ciphertext data doesn't match the expected size for the algorithm.
/// **Resolution:** Ensure the ciphertext was generated for the same algorithm and hasn't been corrupted.
InvalidCiphertextSize { expected: usize, actual: usize },
/// Invalid plaintext size
///
/// **When it occurs:** A plaintext has an incorrect size for the operation.
/// **Cause:** The plaintext doesn't meet the size requirements for encryption.
/// **Resolution:** Verify the plaintext size matches the algorithm's requirements.
InvalidPlaintextSize { expected: usize, actual: usize },
/// Invalid associated data size
///
/// **When it occurs:** Associated data exceeds the maximum allowed size.
/// **Cause:** The associated data is too large for the AEAD operation.
/// **Resolution:** Reduce the associated data size or use a different approach.
InvalidAssociatedDataSize { max: usize, actual: usize },
/// Invalid tag size
///
/// **When it occurs:** An authentication tag has an incorrect size.
/// **Cause:** The tag doesn't match the expected size for the AEAD algorithm.
/// **Resolution:** Ensure the tag size matches the algorithm's requirements (typically 16 bytes).
InvalidTagSize { expected: usize, actual: usize },
/// Invalid hash size
///
/// **When it occurs:** A hash output has an incorrect size.
/// **Cause:** The hash size doesn't match the expected output length for the hash function.
/// **Resolution:** Ensure the hash size matches the algorithm's output length (e.g., SHA-256 = 32 bytes).
InvalidHashSize { expected: usize, actual: usize },
/// Invalid algorithm
///
/// **When it occurs:** An unsupported or invalid algorithm is specified.
/// **Cause:** The algorithm identifier doesn't match any supported algorithm, or the algorithm isn't available in the current configuration.
/// **Resolution:** Check that the algorithm is supported and that required features are enabled.
InvalidAlgorithm { algorithm: &'static str },
/// Invalid security level
#[cfg(feature = "alloc")]
InvalidSecurityLevel { level: u32, supported: Vec<u32> },
#[cfg(not(feature = "alloc"))]
InvalidSecurityLevel {
level: u32,
supported: &'static [u32],
},
/// Verification failed
///
/// **When it occurs:** Signature or message authentication verification fails.
/// **Cause:** The signature is invalid, the message was tampered with, or the verification key is incorrect.
/// **Resolution:** Verify the signature, message, and key are correct and correspond to each other.
#[cfg(feature = "alloc")]
VerificationFailed { operation: String },
#[cfg(not(feature = "alloc"))]
VerificationFailed { operation: &'static str },
/// Encryption failed
///
/// **When it occurs:** Encryption or encapsulation fails to produce a valid ciphertext.
/// **Cause:** Random number generation may have failed, or internal computation encountered an error.
/// **Resolution:** Ensure a secure random number generator is available and functioning correctly.
#[cfg(feature = "alloc")]
EncryptionFailed { operation: String },
#[cfg(not(feature = "alloc"))]
EncryptionFailed { operation: &'static str },
/// Decryption failed
///
/// **When it occurs:** Decryption or decapsulation fails to recover the plaintext or shared secret.
/// **Cause:** The ciphertext may be corrupted, the key may be incorrect, or authentication failed.
/// **Resolution:** Verify the ciphertext and key are valid and correspond to each other.
#[cfg(feature = "alloc")]
DecryptionFailed { operation: String },
#[cfg(not(feature = "alloc"))]
DecryptionFailed { operation: &'static str },
/// Key generation failed
///
/// **When it occurs:** Key pair generation fails.
/// **Cause:** Random number generation may have failed, or internal computation encountered an error.
/// **Resolution:** Ensure a secure random number generator is available and functioning correctly.
#[cfg(feature = "alloc")]
KeyGenerationFailed { operation: String },
#[cfg(not(feature = "alloc"))]
KeyGenerationFailed { operation: &'static str },
/// Random number generation failed
///
/// **When it occurs:** The random number generator fails to produce random bytes.
/// **Cause:** The underlying RNG implementation encountered an error or is unavailable.
/// **Resolution:** Check RNG initialization and ensure a secure random source is available.
#[cfg(feature = "alloc")]
RandomGenerationFailed { operation: String },
#[cfg(not(feature = "alloc"))]
RandomGenerationFailed { operation: &'static str },
/// Signing failed
///
/// **When it occurs:** Digital signature generation fails.
/// **Cause:** Random number generation may have failed, or internal computation encountered an error.
/// **Resolution:** Ensure a secure random number generator is available and functioning correctly.
#[cfg(feature = "alloc")]
SigningFailed { operation: String },
#[cfg(not(feature = "alloc"))]
SigningFailed { operation: &'static str },
/// Memory allocation failed
///
/// **When it occurs:** Dynamic memory allocation fails during an operation.
/// **Cause:** Insufficient memory is available, or allocation is not supported in the current environment.
/// **Resolution:** Ensure sufficient memory is available, or use a no_std-compatible configuration.
#[cfg(feature = "alloc")]
MemoryAllocationFailed { operation: String },
#[cfg(not(feature = "alloc"))]
MemoryAllocationFailed { operation: &'static str },
/// Internal error
///
/// **When it occurs:** An unexpected internal error occurs during cryptographic operations.
/// **Cause:** This typically indicates a bug in the implementation or corrupted internal state.
/// **Resolution:** Report this error as it may indicate a software bug. Check inputs and system state.
#[cfg(feature = "alloc")]
InternalError { operation: String, details: String },
#[cfg(not(feature = "alloc"))]
InternalError {
operation: &'static str,
details: &'static str,
},
/// Not implemented
///
/// **When it occurs:** A requested feature or operation is not yet implemented.
/// **Cause:** The operation is not available in the current implementation.
/// **Resolution:** Check if an alternative approach is available, or wait for the feature to be implemented.
#[cfg(feature = "alloc")]
NotImplemented { feature: String },
#[cfg(not(feature = "alloc"))]
NotImplemented { feature: &'static str },
/// Unsupported operation
#[cfg(feature = "alloc")]
UnsupportedOperation { operation: String },
#[cfg(not(feature = "alloc"))]
UnsupportedOperation { operation: &'static str },
/// No `CryptoProvider` configured on the context (distinct from stub `NotImplemented`)
#[cfg(feature = "alloc")]
ProviderNotConfigured { operation: String },
#[cfg(not(feature = "alloc"))]
ProviderNotConfigured { operation: &'static str },
/// Invalid state
#[cfg(feature = "alloc")]
InvalidState { operation: String, reason: String },
#[cfg(not(feature = "alloc"))]
InvalidState {
operation: &'static str,
reason: &'static str,
},
/// Plugin dependency error
#[cfg(feature = "alloc")]
PluginDependencyError {
plugin: String,
dependency: String,
required_version: String,
available_version: Option<String>,
},
#[cfg(not(feature = "alloc"))]
PluginDependencyError {
plugin: &'static str,
dependency: &'static str,
required_version: &'static str,
available_version: Option<&'static str>,
},
/// Plugin version incompatibility
#[cfg(feature = "alloc")]
PluginVersionIncompatible {
plugin: String,
required_version: String,
available_version: String,
},
#[cfg(not(feature = "alloc"))]
PluginVersionIncompatible {
plugin: &'static str,
required_version: &'static str,
available_version: &'static str,
},
/// Invalid key format
InvalidKeyFormat,
/// Invalid key with specific reason
#[cfg(feature = "alloc")]
InvalidKey { key_type: String, reason: String },
#[cfg(not(feature = "alloc"))]
InvalidKey {
key_type: &'static str,
reason: &'static str,
},
/// Unsupported algorithm
#[cfg(feature = "alloc")]
UnsupportedAlgorithm { algorithm: String },
#[cfg(not(feature = "alloc"))]
UnsupportedAlgorithm { algorithm: &'static str },
/// Authentication failed
#[cfg(feature = "alloc")]
AuthenticationFailed { operation: String },
#[cfg(not(feature = "alloc"))]
AuthenticationFailed { operation: &'static str },
/// Invalid randomness size
InvalidRandomnessSize { expected: usize, actual: usize },
/// Requested output length for [`crate::api::Utils::random_bytes`] is outside the supported range.
///
/// **When it occurs:** `length` is zero or exceeds the platform-specific maximum for this helper.
/// **Resolution:** Use a length in the inclusive range given by `min` and `max`.
RandomBytesLengthInvalid {
min: usize,
max: usize,
requested: usize,
},
/// Hexadecimal decoding failed ([`crate::api::Utils::hex_to_bytes`]).
HexDecode(HexDecodeError),
/// A fixed-capacity buffer (stack or internal) cannot satisfy the requested byte length.
///
/// **When it occurs:** An implementation uses a bounded temporary buffer and the requested
/// length exceeds that capacity. This is distinct from [`Error::InvalidMessageSize`], which
/// reflects configured cryptographic policy limits on caller-supplied payloads.
BufferTooSmall { capacity: usize, requested: usize },
}
impl Error {
/// AEAD ciphertext is shorter than the minimum length required to hold an authentication tag.
///
/// This is an **operational** input error (Layer A / pre-decrypt validation). It must not be
/// used for tag mismatch after the decrypt/verify schedule; that path uses
/// [`Error::VerificationFailed`] or [`DecryptSemanticOutcome::AuthenticationFailed`](crate::DecryptSemanticOutcome::AuthenticationFailed).
#[must_use]
pub const fn aead_ciphertext_shorter_than_tag(tag_len: usize, actual_len: usize) -> Self {
Self::InvalidCiphertextSize {
expected: tag_len,
actual: actual_len,
}
}
}
impl fmt::Display for Error {
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
match self {
Error::InvalidKeySize { expected, actual } => {
write!(f, "Invalid key size: expected {expected}, got {actual}")
}
Error::InvalidSignatureSize { expected, actual } => {
write!(
f,
"Invalid signature size: expected {expected}, got {actual}"
)
}
Error::InvalidNonceSize { expected, actual } => {
write!(f, "Invalid nonce size: expected {expected}, got {actual}")
}
Error::InvalidMessageSize { max, actual } => {
write!(f, "Invalid message size: maximum {max}, got {actual}")
}
Error::InvalidCiphertextSize { expected, actual } => {
write!(
f,
"Invalid ciphertext size: expected {expected}, got {actual}"
)
}
Error::InvalidPlaintextSize { expected, actual } => {
write!(
f,
"Invalid plaintext size: expected {expected}, got {actual}"
)
}
Error::InvalidAssociatedDataSize { max, actual } => {
write!(
f,
"Invalid associated data size: maximum {max}, got {actual}"
)
}
Error::InvalidTagSize { expected, actual } => {
write!(f, "Invalid tag size: expected {expected}, got {actual}")
}
Error::InvalidHashSize { expected, actual } => {
write!(f, "Invalid hash size: expected {expected}, got {actual}")
}
Error::InvalidAlgorithm { algorithm } => {
write!(f, "Invalid algorithm: {algorithm}")
}
Error::InvalidSecurityLevel { level, supported } => {
write!(
f,
"Invalid security level: {level} (supported: {supported:?})"
)
}
Error::VerificationFailed { operation } => {
write!(f, "Verification failed: {operation}")
}
Error::EncryptionFailed { operation } => {
write!(f, "Encryption failed: {operation}")
}
Error::DecryptionFailed { operation } => {
write!(f, "Decryption failed: {operation}")
}
Error::KeyGenerationFailed { operation } => {
write!(f, "Key generation failed: {operation}")
}
Error::RandomGenerationFailed { operation } => {
write!(f, "Random generation failed: {operation}")
}
Error::SigningFailed { operation } => {
write!(f, "Signing failed: {operation}")
}
Error::MemoryAllocationFailed { operation } => {
write!(f, "Memory allocation failed: {operation}")
}
Error::InternalError { operation, details } => {
write!(f, "Internal error in {operation}: {details}")
}
Error::NotImplemented { feature } => {
write!(f, "Feature not implemented: {feature}")
}
Error::ProviderNotConfigured { operation } => {
write!(
f,
"Cryptographic provider not configured for {operation}; set a provider on the context"
)
}
Error::UnsupportedOperation { operation } => {
write!(f, "Unsupported operation: {operation}")
}
Error::InvalidState { operation, reason } => {
write!(f, "Invalid state in {operation}: {reason}")
}
#[cfg(feature = "alloc")]
Error::PluginDependencyError {
plugin,
dependency,
required_version,
available_version,
} => {
if let Some(available) = available_version {
write!(
f,
"Plugin '{plugin}' requires dependency '{dependency}' version {required_version}, but version {available} is available"
)
} else {
write!(
f,
"Plugin '{plugin}' requires dependency '{dependency}' version {required_version}, but it is not available"
)
}
}
#[cfg(not(feature = "alloc"))]
Error::PluginDependencyError {
plugin,
dependency,
required_version,
available_version,
} => {
if let Some(available) = available_version {
write!(
f,
"Plugin '{}' requires dependency '{}' version {}, but version {} is available",
plugin, dependency, required_version, available
)
} else {
write!(
f,
"Plugin '{}' requires dependency '{}' version {}, but it is not available",
plugin, dependency, required_version
)
}
}
#[cfg(feature = "alloc")]
Error::PluginVersionIncompatible {
plugin,
required_version,
available_version,
} => {
write!(
f,
"Plugin '{plugin}' version {available_version} is incompatible with required version {required_version}"
)
}
#[cfg(not(feature = "alloc"))]
Error::PluginVersionIncompatible {
plugin,
required_version,
available_version,
} => {
write!(
f,
"Plugin '{}' version {} is incompatible with required version {}",
plugin, available_version, required_version
)
}
Error::InvalidKeyFormat => {
write!(f, "Invalid key format")
}
Error::InvalidKey { key_type, reason } => {
write!(f, "Invalid {key_type}: {reason}")
}
Error::UnsupportedAlgorithm { algorithm } => {
write!(f, "Unsupported algorithm: {algorithm}")
}
Error::AuthenticationFailed { operation } => {
write!(f, "Authentication failed: {operation}")
}
Error::InvalidRandomnessSize { expected, actual } => {
write!(
f,
"Invalid randomness size: expected {expected}, got {actual}"
)
}
Error::RandomBytesLengthInvalid {
min,
max,
requested,
} => {
write!(
f,
"Invalid random_bytes length: requested {requested}, allowed inclusive range [{min}, {max}]"
)
}
Error::HexDecode(e) => {
write!(f, "Hex decode failed: {e}")
}
Error::BufferTooSmall {
capacity,
requested,
} => {
write!(
f,
"Insufficient fixed buffer capacity: capacity {capacity}, requested {requested}"
)
}
}
}
}
#[cfg(feature = "std")]
impl std::error::Error for Error {}
/// WASM error conversion
#[cfg(feature = "wasm")]
impl From<Error> for wasm_bindgen::JsValue {
fn from(error: Error) -> Self {
use crate::wasm::error::error_to_js_value;
error_to_js_value(error)
}
}
/// Result type for lib-Q operations
pub type Result<T> = core::result::Result<T, Error>;
/// WASM-friendly error handling
#[cfg(feature = "wasm")]
impl Error {
/// Get error message for WASM
pub fn message(&self) -> String {
self.to_string()
}
/// Get error type name for WASM
pub fn error_type(&self) -> String {
match self {
Error::InvalidKeySize { .. } => "InvalidKeySize".to_string(),
Error::InvalidSignatureSize { .. } => "InvalidSignatureSize".to_string(),
Error::InvalidNonceSize { .. } => "InvalidNonceSize".to_string(),
Error::InvalidMessageSize { .. } => "InvalidMessageSize".to_string(),
Error::InvalidCiphertextSize { .. } => "InvalidCiphertextSize".to_string(),
Error::InvalidPlaintextSize { .. } => "InvalidPlaintextSize".to_string(),
Error::InvalidHashSize { .. } => "InvalidHashSize".to_string(),
Error::InvalidAlgorithm { .. } => "InvalidAlgorithm".to_string(),
Error::InvalidSecurityLevel { .. } => "InvalidSecurityLevel".to_string(),
Error::VerificationFailed { .. } => "VerificationFailed".to_string(),
Error::EncryptionFailed { .. } => "EncryptionFailed".to_string(),
Error::DecryptionFailed { .. } => "DecryptionFailed".to_string(),
Error::KeyGenerationFailed { .. } => "KeyGenerationFailed".to_string(),
Error::RandomGenerationFailed { .. } => "RandomGenerationFailed".to_string(),
Error::SigningFailed { .. } => "SigningFailed".to_string(),
Error::MemoryAllocationFailed { .. } => "MemoryAllocationFailed".to_string(),
Error::InternalError { .. } => "InternalError".to_string(),
Error::NotImplemented { .. } => "NotImplemented".to_string(),
Error::ProviderNotConfigured { .. } => "ProviderNotConfigured".to_string(),
Error::UnsupportedOperation { .. } => "UnsupportedOperation".to_string(),
Error::InvalidState { .. } => "InvalidState".to_string(),
Error::InvalidAssociatedDataSize { .. } => "InvalidAssociatedDataSize".to_string(),
Error::InvalidTagSize { .. } => "InvalidTagSize".to_string(),
Error::PluginDependencyError { .. } => "PluginDependencyError".to_string(),
Error::PluginVersionIncompatible { .. } => "PluginVersionIncompatible".to_string(),
Error::InvalidKeyFormat => "InvalidKeyFormat".to_string(),
Error::InvalidKey { .. } => "InvalidKey".to_string(),
Error::UnsupportedAlgorithm { .. } => "UnsupportedAlgorithm".to_string(),
Error::AuthenticationFailed { .. } => "AuthenticationFailed".to_string(),
Error::InvalidRandomnessSize { .. } => "InvalidRandomnessSize".to_string(),
Error::RandomBytesLengthInvalid { .. } => "RandomBytesLengthInvalid".to_string(),
Error::HexDecode(..) => "HexDecode".to_string(),
Error::BufferTooSmall { .. } => "BufferTooSmall".to_string(),
}
}
}
#[cfg(feature = "wasm")]
impl From<wasm_bindgen::JsValue> for Error {
fn from(_js_value: wasm_bindgen::JsValue) -> Self {
// Convert JsValue to a generic internal error
// This is used when WASM code needs to convert JsValue errors back to Error
Error::InternalError {
operation: "WASM operation".to_string(),
details: "WASM error conversion".to_string(),
}
}
}
/// Security levels supported by lib-Q
pub const SECURITY_LEVELS: &[u32] = &[1, 3, 4, 5];
/// Get supported security levels as a Vec (for Error construction)
#[cfg(feature = "alloc")]
pub fn supported_security_levels() -> Vec<u32> {
SECURITY_LEVELS.to_vec()
}
#[cfg(not(feature = "alloc"))]
pub fn supported_security_levels() -> &'static [u32] {
SECURITY_LEVELS
}
/// Check if a security level is supported
pub fn is_supported_security_level(level: u32) -> bool {
SECURITY_LEVELS.contains(&level)
}
#[cfg(test)]
mod tests {
use super::*;
#[test]
fn test_error_display() {
#[cfg(not(feature = "std"))]
use alloc::string::ToString;
let error = Error::InvalidKeySize {
expected: 32,
actual: 16,
};
assert_eq!(error.to_string(), "Invalid key size: expected 32, got 16");
}
#[test]
fn test_invalid_key_error_display() {
#[cfg(feature = "alloc")]
{
let error = Error::InvalidKey {
key_type: "public key".to_string(),
reason: "cannot be used for encapsulation".to_string(),
};
assert_eq!(
error.to_string(),
"Invalid public key: cannot be used for encapsulation"
);
}
#[cfg(not(feature = "alloc"))]
{
#[cfg(not(feature = "std"))]
use alloc::string::ToString;
let error = Error::InvalidKey {
key_type: "public key",
reason: "cannot be used for encapsulation",
};
assert_eq!(
error.to_string(),
"Invalid public key: cannot be used for encapsulation"
);
}
}
#[test]
fn test_security_levels() {
assert!(is_supported_security_level(1));
assert!(is_supported_security_level(3));
assert!(is_supported_security_level(4));
assert!(is_supported_security_level(5));
assert!(!is_supported_security_level(2));
assert!(!is_supported_security_level(6));
}
}