SQUASHME: Fix a bunch of compiler errors

Using `manticore::Result` everywhere introduced a lot of compiler
errors, even with the added `From` implementations added in
`debug_from!`. Most of these errors are places where `Err` is directly
returned.

This commit fixes most of these issues using the `check!` and `fail!`
macros.

 #### TODO

 * Figure out an appropriate `Result` boundary between the x509 modules
   and the `untrusted` crate. That crate leaks in a
   `core::result::Result` type.
 * Fix remaining few compiler errors
 * Double-check changes, especially wherever the `check!` was added, to
   make sure that logical errors weren't introduced.
 * Fix unit tests if necessary

 #### Future PR(s)

 * Incrementally add error messages to the `fail!` macros
 * Incrementally replace usage of try operator with the `fail!` macro so
   that error messages can be introduced.

Author: kesyog

src/cert/chain.rs

@@ -67,9 +67,7 @@ impl<'cert, const LEN: usize> SimpleChain<'cert, LEN> {
         ciphers: &mut impl sig::Ciphers,
         signer: Option<&'cert mut dyn sig::Sign>,
     ) -> Result<Self, Error> {
-        if raw_chain.len() > LEN {
-            return Err(Error::ChainTooLong);
-        }
+        check!(raw_chain.len() <= LEN, Error::ChainTooLong);
 
         let mut chain = ArrayVec::new();
         for (i, &raw_cert) in raw_chain.iter().enumerate() {
@@ -78,26 +76,21 @@ impl<'cert, const LEN: usize> SimpleChain<'cert, LEN> {
             let cert = Cert::parse(raw_cert, format, key, ciphers)?;
 
             let prev = prev.unwrap_or(&cert);
-            if prev.subject() != cert.issuer() {
-                return Err(Error::BadChainLink);
-            }
-            if !prev.supports_cert_signing() {
-                return Err(Error::BadChainLink);
-            }
+            check!(prev.subject() == cert.issuer(), Error::BadChainLink);
+            check!(prev.supports_cert_signing(), Error::BadChainLink);
 
             // None is also ok; it means the format (e.g. CWT) does not support
             // a CA bit.
-            if prev.is_ca_cert() == Some(false) {
-                return Err(Error::BadChainLink);
-            }
+            check!(prev.is_ca_cert() != Some(false), Error::BadChainLink);
 
             // raw_chain.len() - i is the number of certificates that follow
             // `cert`; the path length constraint for `prev` is the number of
             // certs that follow it, except the leaf; these numbers are the
             // same.
-            if !prev.is_within_path_len_constraint(raw_chain.len() - i) {
-                return Err(Error::BadChainLink);
-            }
+            check!(
+                prev.is_within_path_len_constraint(raw_chain.len() - i),
+                Error::BadChainLink
+            );
 
             chain.push(cert);
         }

src/cert/cwt/cbor/mod.rs

@@ -159,9 +159,7 @@ impl<'i, 'r> Item<'i, 'r> {
 
             24 => {
                 let n = buf.read_byte()?;
-                if n < 24 {
-                    return Err(Error::BadEncoding);
-                }
+                check!(n >= 24, Error::BadEncoding);
 
                 n as u32
             }
@@ -171,9 +169,7 @@ impl<'i, 'r> Item<'i, 'r> {
                 let bytes: [u8; 2] = slice.try_into().unwrap();
 
                 let n = u16::from_be_bytes(bytes);
-                if n < u8::MAX as u16 {
-                    return Err(Error::BadEncoding);
-                }
+                check!(n >= u8::MAX as u16, Error::BadEncoding);
 
                 n as u32
             }
@@ -183,17 +179,15 @@ impl<'i, 'r> Item<'i, 'r> {
                 let bytes: [u8; 4] = slice.try_into().unwrap();
 
                 let n = u32::from_be_bytes(bytes);
-                if n < u16::MAX as u32 {
-                    return Err(Error::BadEncoding);
-                }
+                check!(n >= u16::MAX as u32, Error::BadEncoding);
 
                 n
             }
 
             // 27 is 64-bit integers, which we don't handle currently;
             // 28-30 are reserved;
             // 31 is indefinite-length encoding, which is banned.
-            _ => return Err(Error::BadEncoding),
+            _ => return Err(fail!(Error::BadEncoding)),
         };
 
         match initial >> 5 {
@@ -208,7 +202,7 @@ impl<'i, 'r> Item<'i, 'r> {
                     buf.read_bytes(argument as usize)?.as_slice_less_safe();
                 Ok(Item::Scalar(Scalar::Utf8(
                     core::str::from_utf8(bytes)
-                        .map_err(|_| Error::BadEncoding)?,
+                        .map_err(|_| fail!(Error::BadEncoding))?,
                 )))
             }
             4 => Ok(Item::Array(Array { buf, len: argument })),
@@ -218,57 +212,58 @@ impl<'i, 'r> Item<'i, 'r> {
                 prev_key: None,
                 current_key: None,
             })),
-            _ => Err(Error::BadEncoding),
+            _ => Err(fail!(Error::BadEncoding)),
         }
     }
 
     /// Folds this item into an [`Int`].
     pub fn into_int(self) -> Result<Int, Error> {
         match self {
             Item::Scalar(Scalar::Int(i)) => Ok(i),
-            _ => Err(Error::BadEncoding),
+            _ => Err(fail!(Error::BadEncoding)),
         }
     }
 
     /// Folds this item into a UTF-8 string.
     pub fn into_utf8(self) -> Result<&'i str, Error> {
         match self {
             Item::Scalar(Scalar::Utf8(b)) => Ok(b),
-            _ => Err(Error::BadEncoding),
+            _ => Err(fail!(Error::BadEncoding)),
         }
     }
 
     /// Folds this item into a byte string.
     pub fn into_bytes(self) -> Result<&'i [u8], Error> {
         match self {
             Item::Scalar(Scalar::Bytes(b)) => Ok(b),
-            _ => Err(Error::BadEncoding),
+            _ => Err(fail!(Error::BadEncoding)),
         }
     }
 
     /// Folds this item into a byte string and recurses into it for reading
     /// more CBOR.
     pub fn read_all<R>(
         self,
-        f: impl FnOnce(&mut untrusted::Reader<'i>) -> Result<R, Error>,
+        f: impl FnOnce(&mut untrusted::Reader<'i>) -> core::result::Result<R, Error>,
     ) -> Result<R, Error> {
         untrusted::Input::from(self.into_bytes()?)
             .read_all(Error::BadEncoding, f)
+            .map_err(|e| fail!(e))
     }
 
     /// Folds this item into an [`Array`].
     pub fn into_array(self) -> Result<Array<'i, 'r>, Error> {
         match self {
             Item::Array(a) => Ok(a),
-            _ => Err(Error::BadEncoding),
+            _ => Err(fail!(Error::BadEncoding)),
         }
     }
 
     /// Folds this item into a [`Map`].
     pub fn into_map(self) -> Result<Map<'i, 'r>, Error> {
         match self {
             Item::Map(m) => Ok(m),
-            _ => Err(Error::BadEncoding),
+            _ => Err(fail!(Error::BadEncoding)),
         }
     }
 
@@ -338,15 +333,13 @@ impl<'i, 'r> Map<'i, 'r> {
         let k = match Item::parse(&mut *self.buf) {
             Ok(Item::Scalar(i @ Scalar::Int { .. })) => i,
             Ok(Item::Scalar(s @ Scalar::Utf8(..))) => s,
-            _ => return Err(Error::BadEncoding),
+            _ => return Err(fail!(Error::BadEncoding)),
         };
 
         // Map key encodings must be in lexicographic order, and duplicate keys
         // are not permitted.
         if let Some(prev) = self.prev_key {
-            if prev >= k {
-                return Err(Error::BadEncoding);
-            }
+            check!(prev < k, Error::BadEncoding);
         }
 
         self.current_key = Some(k);
@@ -427,7 +420,7 @@ impl<'i, 'r> MapWalker<'i, 'r> {
         &mut self,
         key: impl Into<Scalar<'i>>,
     ) -> Result<Item<'i, '_>, Error> {
-        self.get(key)?.ok_or(Error::BadEncoding)
+        self.get(key)?.ok_or_else(|| fail!(Error::BadEncoding))
     }
 
     /// Runs `body` on remaining key-value pair in the map until completion or parse

src/cert/cwt/mod.rs

@@ -107,9 +107,7 @@ pub fn parse<'cert>(
         })?;
 
     let key = key.unwrap_or(&subject_key);
-    if !key.is_params_for(cose.algo) {
-        return Err(Error::WrongAlgorithm);
-    }
+    check!(key.is_params_for(cose.algo), Error::WrongAlgorithm);
 
     let verifier = ciphers
         .verifier(cose.algo, key)
@@ -129,7 +127,7 @@ pub fn parse<'cert>(
             ],
             cose.signature,
         )
-        .map_err(|_| Error::BadSignature)?;
+        .map_err(|_| fail!(Error::BadSignature))?;
     let _ = (verifier, cose.signature, cose.protected_bytes);
 
     Ok(Cert {
@@ -160,7 +158,7 @@ fn parse_cose_key<'cert>(
                     map.must_get(label::RSA_EXPONENT)?.into_bytes()?;
                 sig::PublicKeyParams::Rsa { modulus, exponent }
             }
-            _ => return Err(Error::UnknownAlgorithm),
+            _ => return Err(fail!(Error::UnknownAlgorithm)),
         };
         Ok((algo, params))
     })
@@ -169,7 +167,7 @@ fn parse_cose_key<'cert>(
 fn parse_algo(v: Item) -> Result<sig::Algo, Error> {
     match v.into_int()? {
         label::RSA_PKCS1_SHA256 => Ok(sig::Algo::RsaPkcs1Sha256),
-        _ => Err(Error::UnknownAlgorithm),
+        _ => Err(fail!(Error::UnknownAlgorithm)),
     }
 }
 
@@ -201,25 +199,21 @@ impl<'cert> Cose<'cert> {
                 let algo = map
                     .get(label::COSE_ALG)?
                     .map(|v| {
-                        if !protected {
-                            return Err(Error::BadEncoding);
-                        }
+                        check!(protected, Error::BadEncoding);
                         parse_algo(v)
                     })
                     .transpose()?;
 
                 map.get(label::COSE_CRIT)?
                     .map(|v| -> Result<_, _> {
-                        if !protected {
-                            return Err(Error::BadEncoding);
-                        }
+                        check!(protected, Error::BadEncoding);
                         v.into_array()?.with(|l| match l.into_int()? {
                             // We don't handle any other labels, so CRIT can't
                             // contain any others.
                             label::COSE_ALG
                             | label::COSE_CRIT
                             | label::COSE_KID => Ok(()),
-                            _ => Err(Error::BadEncoding),
+                            _ => Err(fail!(Error::BadEncoding)),
                         })
                     })
                     .transpose()?;
@@ -249,9 +243,7 @@ impl<'cert> Cose<'cert> {
             })?;
 
         let Headers { kid: kid2, .. } = parse_headers(buf, false)?;
-        if kid.is_some() && kid2.is_some() {
-            return Err(Error::BadEncoding);
-        }
+        check!(kid.is_none() || kid2.is_none(), Error::BadEncoding);
 
         let (payload, _) =
             buf.read_partial(|buf| Item::parse(buf)?.into_bytes())?;

src/crypto/ring/csrng.rs

@@ -10,6 +10,7 @@ use ring::rand::SecureRandom as _;
 use ring::rand::SystemRandom;
 
 use crate::crypto::csrng;
+use crate::Result;
 
 #[cfg(doc)]
 use crate::crypto;
@@ -36,6 +37,8 @@ impl Default for Csrng {
 
 impl csrng::Csrng for Csrng {
     fn fill(&mut self, buf: &mut [u8]) -> Result<(), csrng::Error> {
-        self.inner.fill(buf).map_err(|_| csrng::Error::Unspecified)
+        self.inner
+            .fill(buf)
+            .map_err(|_| fail!(csrng::Error::Unspecified))
     }
 }

src/crypto/ring/ecdsa.rs

@@ -63,7 +63,7 @@ impl sig::Verify for VerifyP256 {
                 message.as_slice().into(),
                 signature.into(),
             )
-            .map_err(|_| sig::Error::Unspecified)
+            .map_err(|_| fail!(sig::Error::Unspecified))
     }
 }
 
@@ -84,7 +84,7 @@ impl SignP256 {
             &ring::signature::ECDSA_P256_SHA256_ASN1_SIGNING,
             pkcs8,
         )
-        .map_err(|_| sig::Error::Unspecified)?;
+        .map_err(|_| fail!(sig::Error::Unspecified))?;
         Ok(Self { keypair })
     }
 
@@ -99,7 +99,7 @@ impl SignP256 {
             &ring::signature::ECDSA_P256_SHA256_FIXED_SIGNING,
             pkcs8,
         )
-        .map_err(|_| sig::Error::Unspecified)?;
+        .map_err(|_| fail!(sig::Error::Unspecified))?;
         Ok(Self { keypair })
     }
 }
@@ -134,7 +134,7 @@ impl sig::Sign for SignP256 {
         let sig = self
             .keypair
             .sign(&rng, &message)
-            .map_err(|_| sig::Error::Unspecified)?;
+            .map_err(|_| fail!(sig::Error::Unspecified))?;
         let signature = signature
             .get_mut(..sig.as_ref().len())
             .ok_or(sig::Error::Unspecified)?;

src/crypto/ring/hash.rs

@@ -75,7 +75,7 @@ impl hash::Engine for Engine {
 
     fn write_raw(&mut self, data: &[u8]) -> Result<(), hash::Error> {
         match &mut self.inner {
-            Inner::Idle => return Err(hash::Error::Idle),
+            Inner::Idle => return Err(fail!(hash::Error::Idle)),
             Inner::Hash(c) => c.update(data),
             Inner::Hmac(c, _) => c.update(data),
         }
@@ -84,18 +84,20 @@ impl hash::Engine for Engine {
 
     fn finish_raw(&mut self, out: &mut [u8]) -> Result<(), hash::Error> {
         match mem::replace(&mut self.inner, Inner::Idle) {
-            Inner::Idle => return Err(hash::Error::Idle),
+            Inner::Idle => return Err(fail!(hash::Error::Idle)),
             Inner::Hash(c) => {
-                if out.len() != c.algorithm().output_len {
-                    return Err(hash::Error::WrongSize);
-                }
+                check!(
+                    out.len() == c.algorithm().output_len,
+                    hash::Error::WrongSize
+                );
                 let digest = c.finish();
                 out.copy_from_slice(digest.as_ref());
             }
             Inner::Hmac(c, a) => {
-                if out.len() != a.digest_algorithm().output_len {
-                    return Err(hash::Error::WrongSize);
-                }
+                check!(
+                    out.len() == a.digest_algorithm().output_len,
+                    hash::Error::WrongSize
+                );
                 let digest = c.sign();
                 out.copy_from_slice(digest.as_ref());
             }
@@ -105,26 +107,26 @@ impl hash::Engine for Engine {
 
     fn compare_raw(&mut self, expected: &[u8]) -> Result<(), hash::Error> {
         match mem::replace(&mut self.inner, Inner::Idle) {
-            Inner::Idle => return Err(hash::Error::Idle),
+            Inner::Idle => return Err(fail!(hash::Error::Idle)),
             Inner::Hash(c) => {
-                if expected.len() != c.algorithm().output_len {
-                    return Err(hash::Error::WrongSize);
-                }
+                check!(
+                    expected.len() == c.algorithm().output_len,
+                    hash::Error::WrongSize
+                );
                 let digest = c.finish();
-                if digest.as_ref() != expected {
-                    return Err(hash::Error::Unspecified);
-                }
+                check!(digest.as_ref() == expected, hash::Error::Unspecified);
             }
             Inner::Hmac(c, a) => {
-                if expected.len() != a.digest_algorithm().output_len {
-                    return Err(hash::Error::WrongSize);
-                }
+                check!(
+                    expected.len() == a.digest_algorithm().output_len,
+                    hash::Error::WrongSize
+                );
                 let digest = c.sign();
                 ring::constant_time::verify_slices_are_equal(
                     digest.as_ref(),
                     expected,
                 )
-                .map_err(|_| hash::Error::Unspecified)?;
+                .map_err(|_| fail!(hash::Error::Unspecified))?;
             }
         }
         Ok(())