mockforge-foundation 0.3.126

Foundation types shared across the MockForge workspace (Error, Result, EncryptionError)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384

//! Error types and handling for encryption operations
//!
//! This module provides comprehensive error handling for all encryption-related
//! operations, including encryption, decryption, key management, and validation.

#![allow(missing_docs)]

use std::fmt;
use thiserror::Error;

/// Errors that can occur during encryption/decryption operations
#[derive(Error, Debug)]
pub enum EncryptionError {
    /// Invalid key length or format
    #[error("Invalid key: {message}")]
    InvalidKey { message: String },

    /// Invalid nonce/IV length or format
    #[error("Invalid nonce: {message}")]
    InvalidNonce { message: String },

    /// Authentication failed during decryption
    #[error("Authentication failed: {message}")]
    AuthenticationFailed { message: String },

    /// Invalid ciphertext format
    #[error("Invalid ciphertext: {message}")]
    InvalidCiphertext { message: String },

    /// Key derivation failed
    #[error("Key derivation failed: {message}")]
    KeyDerivationFailed { message: String },

    /// Key not found in key store
    #[error("Key not found: {key_id}")]
    KeyNotFound { key_id: String },

    /// Insufficient permissions for key operation
    #[error("Access denied: {message}")]
    AccessDenied { message: String },

    /// Key store operation failed
    #[error("Key store error: {message}")]
    KeyStoreError { message: String },

    /// Random number generation failed
    #[error("Random generation failed: {message}")]
    RandomGenerationFailed { message: String },

    /// Invalid algorithm configuration
    #[error("Invalid algorithm: {message}")]
    InvalidAlgorithm { message: String },

    /// Cipher operation failed
    #[error("Cipher operation failed: {message}")]
    CipherOperationFailed { message: String },

    /// Base64 encoding/decoding failed
    #[error("Base64 operation failed: {message}")]
    Base64Error { message: String },

    /// Serialization/deserialization failed
    #[error("Serialization failed: {message}")]
    SerializationError { message: String },

    /// Template processing failed
    #[error("Template processing failed: {message}")]
    TemplateError { message: String },

    /// Auto-encryption configuration error
    #[error("Auto-encryption configuration error: {message}")]
    AutoEncryptionConfigError { message: String },

    /// Workspace encryption error
    #[error("Workspace encryption error: {message}")]
    Workspace { message: String },

    /// Generic encryption error
    #[error("Encryption error: {message}")]
    Generic { message: String },
}

impl EncryptionError {
    /// Create a new invalid key error
    pub fn invalid_key(message: impl Into<String>) -> Self {
        Self::InvalidKey {
            message: message.into(),
        }
    }

    /// Create a new invalid nonce error
    pub fn invalid_nonce(message: impl Into<String>) -> Self {
        Self::InvalidNonce {
            message: message.into(),
        }
    }

    /// Create a new authentication failed error
    pub fn authentication_failed(message: impl Into<String>) -> Self {
        Self::AuthenticationFailed {
            message: message.into(),
        }
    }

    /// Create a new invalid ciphertext error
    pub fn invalid_ciphertext(message: impl Into<String>) -> Self {
        Self::InvalidCiphertext {
            message: message.into(),
        }
    }

    /// Create a new key derivation failed error
    pub fn key_derivation_failed(message: impl Into<String>) -> Self {
        Self::KeyDerivationFailed {
            message: message.into(),
        }
    }

    /// Create a new key not found error
    pub fn key_not_found(key_id: impl Into<String>) -> Self {
        Self::KeyNotFound {
            key_id: key_id.into(),
        }
    }

    /// Create a new access denied error
    pub fn access_denied(message: impl Into<String>) -> Self {
        Self::AccessDenied {
            message: message.into(),
        }
    }

    /// Create a new key store error
    pub fn key_store_error(message: impl Into<String>) -> Self {
        Self::KeyStoreError {
            message: message.into(),
        }
    }

    /// Create a new random generation failed error
    pub fn random_generation_failed(message: impl Into<String>) -> Self {
        Self::RandomGenerationFailed {
            message: message.into(),
        }
    }

    /// Create a new invalid algorithm error
    pub fn invalid_algorithm(message: impl Into<String>) -> Self {
        Self::InvalidAlgorithm {
            message: message.into(),
        }
    }

    /// Create a new cipher operation failed error
    pub fn cipher_operation_failed(message: impl Into<String>) -> Self {
        Self::CipherOperationFailed {
            message: message.into(),
        }
    }

    /// Create a new base64 error
    pub fn base64_error(message: impl Into<String>) -> Self {
        Self::Base64Error {
            message: message.into(),
        }
    }

    /// Create a new serialization error
    pub fn serialization_error(message: impl Into<String>) -> Self {
        Self::SerializationError {
            message: message.into(),
        }
    }

    /// Create a new template error
    pub fn template_error(message: impl Into<String>) -> Self {
        Self::TemplateError {
            message: message.into(),
        }
    }

    /// Create a new auto-encryption config error
    pub fn auto_encryption_config_error(message: impl Into<String>) -> Self {
        Self::AutoEncryptionConfigError {
            message: message.into(),
        }
    }

    /// Create a new workspace encryption error
    pub fn workspace_encryption_error(message: impl Into<String>) -> Self {
        Self::Workspace {
            message: message.into(),
        }
    }

    /// Create a new generic error
    pub fn generic(message: impl Into<String>) -> Self {
        Self::Generic {
            message: message.into(),
        }
    }

    /// Check if this is a recoverable error
    pub fn is_recoverable(&self) -> bool {
        match self {
            Self::InvalidKey { .. }
            | Self::InvalidNonce { .. }
            | Self::AuthenticationFailed { .. }
            | Self::InvalidCiphertext { .. }
            | Self::KeyNotFound { .. }
            | Self::InvalidAlgorithm { .. }
            | Self::Base64Error { .. }
            | Self::SerializationError { .. }
            | Self::TemplateError { .. }
            | Self::AutoEncryptionConfigError { .. } => false,

            Self::KeyDerivationFailed { .. }
            | Self::AccessDenied { .. }
            | Self::KeyStoreError { .. }
            | Self::RandomGenerationFailed { .. }
            | Self::CipherOperationFailed { .. }
            | Self::Workspace { .. }
            | Self::Generic { .. } => true,
        }
    }

    /// Get error severity level
    pub fn severity(&self) -> ErrorSeverity {
        match self {
            Self::AuthenticationFailed { .. } | Self::AccessDenied { .. } => {
                ErrorSeverity::Critical
            }

            Self::InvalidKey { .. }
            | Self::InvalidNonce { .. }
            | Self::InvalidCiphertext { .. }
            | Self::InvalidAlgorithm { .. } => ErrorSeverity::High,

            Self::KeyDerivationFailed { .. }
            | Self::KeyStoreError { .. }
            | Self::RandomGenerationFailed { .. }
            | Self::CipherOperationFailed { .. } => ErrorSeverity::Medium,

            Self::Base64Error { .. }
            | Self::SerializationError { .. }
            | Self::TemplateError { .. }
            | Self::AutoEncryptionConfigError { .. }
            | Self::Workspace { .. }
            | Self::Generic { .. } => ErrorSeverity::Low,

            Self::KeyNotFound { .. } => ErrorSeverity::Info,
        }
    }
}

/// Error severity levels for encryption operations
#[derive(Debug, Clone, Copy, PartialEq, Eq, PartialOrd, Ord)]
pub enum ErrorSeverity {
    /// Informational messages (non-fatal)
    Info,
    /// Low severity errors (minor issues)
    Low,
    /// Medium severity errors (issues that should be addressed)
    Medium,
    /// High severity errors (significant problems)
    High,
    /// Critical severity errors (blocks operation)
    Critical,
}

/// Result type alias for encryption operations
pub type EncryptionResult<T> = Result<T, EncryptionError>;

/// Error context for enhanced debugging and error reporting
#[derive(Debug, Clone)]
pub struct ErrorContext {
    /// Name of the encryption operation that failed
    pub operation: String,
    /// Additional context information (key-value pairs)
    pub context: HashMap<String, String>,
    /// Timestamp when the error occurred
    pub timestamp: chrono::DateTime<chrono::Utc>,
}

impl ErrorContext {
    /// Create a new error context
    pub fn new(operation: impl Into<String>) -> Self {
        Self {
            operation: operation.into(),
            context: HashMap::new(),
            timestamp: chrono::Utc::now(),
        }
    }

    /// Add context information
    pub fn with_context(mut self, key: impl Into<String>, value: impl Into<String>) -> Self {
        self.context.insert(key.into(), value.into());
        self
    }
}

/// Enhanced encryption error with additional debugging context
#[derive(Debug)]
pub struct ContextualError {
    /// The underlying encryption error that occurred
    pub error: EncryptionError,
    /// Additional context information for debugging
    pub context: ErrorContext,
}

impl fmt::Display for ContextualError {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(
            f,
            "Encryption error in {} at {}: {} (context: {:?})",
            self.context.operation, self.context.timestamp, self.error, self.context.context
        )
    }
}

impl std::error::Error for ContextualError {
    fn source(&self) -> Option<&(dyn std::error::Error + 'static)> {
        Some(&self.error)
    }
}

/// Error recovery strategies for handling encryption failures
#[derive(Debug, Clone)]
pub enum ErrorRecoveryStrategy {
    /// Retry with exponential backoff
    RetryWithBackoff {
        /// Maximum number of retry attempts
        max_attempts: usize,
        /// Base delay in milliseconds between retries
        base_delay_ms: u64,
    },
    /// Use fallback encryption method (e.g., different algorithm)
    FallbackMethod,
    /// Skip encryption for this operation (data stored unencrypted)
    SkipEncryption,
    /// Request user intervention to resolve the error
    ManualIntervention,
    /// Fail fast and return error immediately (no retry)
    FailFast,
}

impl EncryptionError {
    /// Suggest recovery strategy based on error type
    pub fn suggested_recovery(&self) -> ErrorRecoveryStrategy {
        match self {
            Self::RandomGenerationFailed { .. } => ErrorRecoveryStrategy::RetryWithBackoff {
                max_attempts: 3,
                base_delay_ms: 100,
            },

            Self::KeyStoreError { .. } | Self::KeyDerivationFailed { .. } => {
                ErrorRecoveryStrategy::ManualIntervention
            }

            Self::AuthenticationFailed { .. } | Self::AccessDenied { .. } => {
                ErrorRecoveryStrategy::FailFast
            }

            Self::InvalidKey { .. } | Self::InvalidNonce { .. } => {
                ErrorRecoveryStrategy::FallbackMethod
            }

            _ => ErrorRecoveryStrategy::RetryWithBackoff {
                max_attempts: 2,
                base_delay_ms: 50,
            },
        }
    }

    /// Convert to contextual error
    pub fn with_context(self, context: ErrorContext) -> ContextualError {
        ContextualError {
            error: self,
            context,
        }
    }
}

use std::collections::HashMap;