parsec-service 1.5.0

A language-agnostic API to secure services in a platform-agnostic way
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208

// Copyright 2020 Contributors to the Parsec project.
// SPDX-License-Identifier: Apache-2.0
use log::error;
use psa_crypto::types::status::{Error as PsaError, Status as PsaStatus};
use std::error::Error as ErrorTrait;
use std::fmt;

/// Wrapper over types of error that the TS Context might return
#[derive(Debug, PartialEq, Eq, Copy, Clone)]
pub enum Error {
    /// errors coming from the Crypto TS service, associated with performed operations.
    PsaCrypto(PsaError),
    /// errors returned by the RPC context that mediates communication with the Trusted Service
    RpcCaller(RpcCallerError),
    /// errors returned natively by this wrapper
    Wrapper(WrapperError),
}

impl Error {
    /// Transform the `(status, opstatus)` duo returned by the RPC caller
    /// into a native `Result`
    pub fn from_status_opstatus(status: i32, opstatus: i32) -> Result<(), Self> {
        if opstatus != 0 {
            let error = PsaStatus::from(opstatus).to_result().unwrap_err();
            error!("Operation error, opstatus = {}", error);
            Err(Error::PsaCrypto(error))
        } else if status != 0 {
            let error = RpcCallerError::from(status);
            error!("RPC caller error, status = {}", error);
            Err(Error::RpcCaller(error))
        } else {
            Ok(())
        }
    }
}

impl From<PsaError> for Error {
    fn from(psa_error: PsaError) -> Error {
        Error::PsaCrypto(psa_error)
    }
}

impl From<RpcCallerError> for Error {
    fn from(rpc_caller_error: RpcCallerError) -> Error {
        Error::RpcCaller(rpc_caller_error)
    }
}

impl From<WrapperError> for Error {
    fn from(wrapper_error: WrapperError) -> Error {
        Error::Wrapper(wrapper_error)
    }
}

impl From<std::convert::Infallible> for Error {
    fn from(_: std::convert::Infallible) -> Self {
        unimplemented!()
    }
}

impl From<std::num::TryFromIntError> for Error {
    fn from(_: std::num::TryFromIntError) -> Self {
        Error::Wrapper(WrapperError::InvalidParam)
    }
}

impl fmt::Display for Error {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            Error::PsaCrypto(e) => e.fmt(f),
            Error::Wrapper(e) => e.fmt(f),
            Error::RpcCaller(e) => e.fmt(f),
        }
    }
}

impl ErrorTrait for Error {
    fn source(&self) -> Option<&(dyn ErrorTrait + 'static)> {
        match self {
            Error::PsaCrypto(e) => Some(e),
            Error::Wrapper(e) => Some(e),
            Error::RpcCaller(e) => Some(e),
        }
    }
}

/// Native representation of errors returned by the
/// RPC caller
#[derive(Debug, Copy, Clone, PartialEq, Eq)]
pub enum RpcCallerError {
    /// endpoint for connecting to Trusted Services does not exist
    EndpointDoesNotExist,
    /// opcode provided for call was invalid
    InvalidOpcode,
    /// serialization of requested kind is not supported for the given message
    SerializationNotSupported,
    /// provided request body was invalid
    InvalidRequestBody,
    /// response body received from Trusted Service was invalid
    InvalidResponseBody,
    /// failed to access or use resource
    ResourceFailure,
    /// RPC layer was not ready for an operation
    NotReady,
    /// transaction handle was invalid
    InvalidTransaction,
    /// internal RPC caller error
    Internal,
    /// call contained an invalid parameter
    InvalidParameter,
}

impl From<i32> for RpcCallerError {
    fn from(e: i32) -> Self {
        match e {
            -1 => RpcCallerError::EndpointDoesNotExist,
            -2 => RpcCallerError::InvalidOpcode,
            -3 => RpcCallerError::SerializationNotSupported,
            -4 => RpcCallerError::InvalidRequestBody,
            -5 => RpcCallerError::InvalidResponseBody,
            -6 => RpcCallerError::ResourceFailure,
            -7 => RpcCallerError::NotReady,
            -8 => RpcCallerError::InvalidTransaction,
            -9 => RpcCallerError::Internal,
            -10 => RpcCallerError::InvalidParameter,
            _ => RpcCallerError::Internal,
        }
    }
}

impl fmt::Display for RpcCallerError {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            RpcCallerError::EndpointDoesNotExist => {
                write!(
                    f,
                    "endpoint for connecting to Trusted Services does not exist"
                )
            }
            RpcCallerError::InvalidOpcode => {
                write!(f, "opcode provided for call was invalid")
            }
            RpcCallerError::SerializationNotSupported => {
                write!(
                    f,
                    "serialization of requested kind is not supported for the given message"
                )
            }
            RpcCallerError::InvalidRequestBody => {
                write!(f, "provided request body was invalid")
            }
            RpcCallerError::InvalidResponseBody => {
                write!(f, "response body received from Trusted Service was invalid")
            }
            RpcCallerError::ResourceFailure => {
                write!(f, "failed to access or use resource")
            }
            RpcCallerError::NotReady => write!(f, "RPC layer was not ready for an operation"),
            RpcCallerError::InvalidTransaction => {
                write!(f, "transaction handle was invalid")
            }
            RpcCallerError::Internal => write!(f, "internal RPC caller error"),
            RpcCallerError::InvalidParameter => {
                write!(f, "call contained an invalid parameter")
            }
        }
    }
}

impl ErrorTrait for RpcCallerError {}

/// Errors returned by this wrapper layer
#[derive(Debug, Copy, Clone, PartialEq, Eq)]
pub enum WrapperError {
    /// call handle returned by RPC layer was null
    CallHandleNull,
    /// call buffer returned by RPC layer was null
    CallBufferNull,
    /// serialization or deserialization of protobuf message failed
    FailedPbConversion,
    /// invalid operation status value
    InvalidOpStatus,
    /// a parameter passed to the function was invalid
    InvalidParam,
}

impl fmt::Display for WrapperError {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            WrapperError::CallHandleNull => write!(f, "call handle returned by RPC layer was null"),
            WrapperError::CallBufferNull => {
                write!(f, "call buffer returned by RPC layer was null")
            }
            WrapperError::FailedPbConversion => write!(
                f,
                "serialization or deserialization of protobuf message failed"
            ),
            WrapperError::InvalidParam => {
                write!(f, "a parameter passed to the function was invalid")
            }
            WrapperError::InvalidOpStatus => {
                write!(f, "the RPC layer returned an invalid operation status")
            }
        }
    }
}

impl ErrorTrait for WrapperError {}