wasefire 0.8.1

High-level Wasefire applet API
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135

// Copyright 2025 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

//! Provides fingerprint sensor.

use alloc::boxed::Box;

use wasefire_applet_api::fingerprint::sensor as api;
use wasefire_common::ptr::SharedPtr;
use wasefire_error::Code;
use wasefire_sync::Mutex;

use crate::{Error, convert, convert_bool, convert_unit};

/// Whether fingerprint sensor is supported.
pub fn is_supported() -> bool {
    convert_bool(unsafe { api::is_supported() }).unwrap_or(false)
}

/// A captured image.
pub struct Image {
    /// Pixel values.
    pub data: Box<[u8]>,

    /// Width of the image.
    pub width: usize,
}

/// State of an image capture.
pub struct Capture {
    // Safety: This is a `Box<Mutex<CaptureState>>` we own and lend the platform as a shared
    // borrow between the call to `api::capture()` and either `Self::abort()` or `Self::call()`.
    state: SharedPtr<Mutex<CaptureState>>,
    // Whether the state has already been dropped.
    dropped: bool,
}

impl Drop for Capture {
    fn drop(&mut self) {
        if !self.dropped {
            self.drop_state().unwrap();
        }
    }
}

enum CaptureState {
    Started,
    Done { image: Box<[u8]>, width: usize },
    Failed { error: Error },
}

impl Capture {
    /// Starts an image capture.
    pub fn new() -> Result<Self, Error> {
        let handler_func = Self::call;
        let state = Box::into_raw(Box::new(Mutex::new(CaptureState::Started)));
        let handler_data = state as *const u8;
        let params = api::capture::Params { handler_func, handler_data };
        convert_unit(unsafe { api::capture(params) })?;
        Ok(Capture { state: SharedPtr(state), dropped: false })
    }

    /// Returns whether the capture has completed.
    ///
    /// Use `Self::result()` to access the result.
    pub fn is_done(&self) -> bool {
        match *Self::state(self.state.0 as *const u8).lock() {
            CaptureState::Started => false,
            CaptureState::Done { .. } | CaptureState::Failed { .. } => true,
        }
    }

    /// Returns the result of the capture.
    pub fn result(mut self) -> Result<Image, Error> {
        match Self::into_state(&mut self) {
            CaptureState::Started => {
                let _ = self.abort();
                Err(Error::user(Code::InvalidState))
            }
            CaptureState::Done { image, width } => Ok(Image { data: image, width }),
            CaptureState::Failed { error } => Err(error),
        }
    }

    /// Aborts the capture.
    pub fn abort(mut self) -> Result<(), Error> {
        self.drop_state()
    }

    fn drop_state(&mut self) -> Result<(), Error> {
        if matches!(Self::into_state(self), CaptureState::Started) {
            convert_unit(unsafe { api::abort_capture() })?;
        }
        Ok(())
    }

    extern "C" fn call(data: *const u8, ptr: *mut u8, width: isize, height: usize) {
        *Self::state(data).lock() = match convert(width) {
            Ok(width) => {
                assert!(0 < width);
                let len = width * height;
                let ptr = core::ptr::slice_from_raw_parts_mut(ptr, len);
                let image = unsafe { Box::from_raw(ptr) };
                CaptureState::Done { image, width }
            }
            Err(error) => CaptureState::Failed { error },
        }
    }

    fn state<'a>(data: *const u8) -> &'a Mutex<CaptureState> {
        // SAFETY: `data` is the `&CaptureState` we lent the platform (see `Capture::state`). We are
        // borrowing it back for the duration of this call.
        unsafe { &*(data as *const Mutex<CaptureState>) }
    }

    #[allow(clippy::wrong_self_convention)]
    fn into_state(&mut self) -> CaptureState {
        assert!(!self.dropped);
        self.dropped = true;
        // SAFETY: `self.state` is a `Box<Mutex<CaptureState>>` we own back, now that the
        // lifetime of the platform borrow is over (see `Capture::state`).
        unsafe { Box::from_raw(self.state.0 as *mut Mutex<CaptureState>) }.into_inner()
    }
}