github.com/aws/aws-cryptographic-material-providers-library/releases/go/mpl@v0.2.0/KMSKeystoreOperations/KMSKeystoreOperations.go (about) 1 // Package KMSKeystoreOperations 2 // Dafny module KMSKeystoreOperations compiled into Go 3 4 package KMSKeystoreOperations 5 6 import ( 7 os "os" 8 9 m_ComAmazonawsDynamodbTypes "github.com/aws/aws-cryptographic-material-providers-library/releases/go/dynamodb/ComAmazonawsDynamodbTypes" 10 m_ComAmazonawsKmsTypes "github.com/aws/aws-cryptographic-material-providers-library/releases/go/kms/ComAmazonawsKmsTypes" 11 m_AwsArnParsing "github.com/aws/aws-cryptographic-material-providers-library/releases/go/mpl/AwsArnParsing" 12 m_AwsCryptographyKeyStoreTypes "github.com/aws/aws-cryptographic-material-providers-library/releases/go/mpl/AwsCryptographyKeyStoreTypes" 13 m_AwsCryptographyMaterialProvidersTypes "github.com/aws/aws-cryptographic-material-providers-library/releases/go/mpl/AwsCryptographyMaterialProvidersTypes" 14 m_AwsKmsMrkMatchForDecrypt "github.com/aws/aws-cryptographic-material-providers-library/releases/go/mpl/AwsKmsMrkMatchForDecrypt" 15 m_AwsKmsUtils "github.com/aws/aws-cryptographic-material-providers-library/releases/go/mpl/AwsKmsUtils" 16 m_KeyStoreErrorMessages "github.com/aws/aws-cryptographic-material-providers-library/releases/go/mpl/KeyStoreErrorMessages" 17 m_KmsArn "github.com/aws/aws-cryptographic-material-providers-library/releases/go/mpl/KmsArn" 18 m_Structure "github.com/aws/aws-cryptographic-material-providers-library/releases/go/mpl/Structure" 19 m_AtomicPrimitives "github.com/aws/aws-cryptographic-material-providers-library/releases/go/primitives/AtomicPrimitives" 20 m_AwsCryptographyPrimitivesOperations "github.com/aws/aws-cryptographic-material-providers-library/releases/go/primitives/AwsCryptographyPrimitivesOperations" 21 m_AwsCryptographyPrimitivesTypes "github.com/aws/aws-cryptographic-material-providers-library/releases/go/primitives/AwsCryptographyPrimitivesTypes" 22 m_Digest "github.com/aws/aws-cryptographic-material-providers-library/releases/go/primitives/Digest" 23 m_HKDF "github.com/aws/aws-cryptographic-material-providers-library/releases/go/primitives/HKDF" 24 m_KdfCtr "github.com/aws/aws-cryptographic-material-providers-library/releases/go/primitives/KdfCtr" 25 m_Random "github.com/aws/aws-cryptographic-material-providers-library/releases/go/primitives/Random" 26 m_WrappedHKDF "github.com/aws/aws-cryptographic-material-providers-library/releases/go/primitives/WrappedHKDF" 27 m_WrappedHMAC "github.com/aws/aws-cryptographic-material-providers-library/releases/go/primitives/WrappedHMAC" 28 m_Actions "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Actions" 29 m_Base64 "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Base64" 30 m_Base64Lemmas "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Base64Lemmas" 31 m_BoundedInts "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/BoundedInts" 32 m_DivInternals "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/DivInternals" 33 m_DivInternalsNonlinear "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/DivInternalsNonlinear" 34 m_DivMod "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/DivMod" 35 m_FileIO "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/FileIO" 36 m_FloatCompare "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/FloatCompare" 37 m_Functions "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Functions" 38 m_GeneralInternals "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/GeneralInternals" 39 m_GetOpt "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/GetOpt" 40 m_HexStrings "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/HexStrings" 41 m_Logarithm "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Logarithm" 42 m__Math "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Math_" 43 m_ModInternals "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/ModInternals" 44 m_ModInternalsNonlinear "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/ModInternalsNonlinear" 45 m_Mul "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Mul" 46 m_MulInternals "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/MulInternals" 47 m_MulInternalsNonlinear "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/MulInternalsNonlinear" 48 m_Power "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Power" 49 m_Relations "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Relations" 50 m_Seq "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Seq" 51 m_Seq_MergeSort "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Seq_MergeSort" 52 m_Sorting "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Sorting" 53 m_StandardLibrary "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/StandardLibrary" 54 m_StandardLibraryInterop "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/StandardLibraryInterop" 55 m_StandardLibrary_Sequence "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/StandardLibrary_Sequence" 56 m_StandardLibrary_String "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/StandardLibrary_String" 57 m_StandardLibrary_UInt "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/StandardLibrary_UInt" 58 m_Streams "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Streams" 59 m_UnicodeStrings "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/UnicodeStrings" 60 m__Unicode "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Unicode_" 61 m_Utf16EncodingForm "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Utf16EncodingForm" 62 m_Utf8EncodingForm "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Utf8EncodingForm" 63 m_Wrappers "github.com/aws/aws-cryptographic-material-providers-library/releases/go/smithy-dafny-standard-library/Wrappers" 64 m__System "github.com/dafny-lang/DafnyRuntimeGo/v4/System_" 65 _dafny "github.com/dafny-lang/DafnyRuntimeGo/v4/dafny" 66 ) 67 68 var _ = os.Args 69 var _ _dafny.Dummy__ 70 var _ m__System.Dummy__ 71 var _ m_Wrappers.Dummy__ 72 var _ m_BoundedInts.Dummy__ 73 var _ m_StandardLibrary_UInt.Dummy__ 74 var _ m_StandardLibrary_Sequence.Dummy__ 75 var _ m_StandardLibrary_String.Dummy__ 76 var _ m_StandardLibrary.Dummy__ 77 var _ m_AwsCryptographyPrimitivesTypes.Dummy__ 78 var _ m_Random.Dummy__ 79 var _ m_Digest.Dummy__ 80 var _ m_WrappedHMAC.Dummy__ 81 var _ m_HKDF.Dummy__ 82 var _ m_WrappedHKDF.Dummy__ 83 var _ m_KdfCtr.Dummy__ 84 var _ m_AwsCryptographyPrimitivesOperations.Dummy__ 85 var _ m_AtomicPrimitives.Dummy__ 86 var _ m_ComAmazonawsDynamodbTypes.Dummy__ 87 var _ m_ComAmazonawsKmsTypes.Dummy__ 88 var _ m_Relations.Dummy__ 89 var _ m_Seq_MergeSort.Dummy__ 90 var _ m__Math.Dummy__ 91 var _ m_Seq.Dummy__ 92 var _ m__Unicode.Dummy__ 93 var _ m_Functions.Dummy__ 94 var _ m_Utf8EncodingForm.Dummy__ 95 var _ m_Utf16EncodingForm.Dummy__ 96 var _ m_UnicodeStrings.Dummy__ 97 var _ m_FileIO.Dummy__ 98 var _ m_GeneralInternals.Dummy__ 99 var _ m_MulInternalsNonlinear.Dummy__ 100 var _ m_MulInternals.Dummy__ 101 var _ m_Mul.Dummy__ 102 var _ m_ModInternalsNonlinear.Dummy__ 103 var _ m_DivInternalsNonlinear.Dummy__ 104 var _ m_ModInternals.Dummy__ 105 var _ m_DivInternals.Dummy__ 106 var _ m_DivMod.Dummy__ 107 var _ m_Power.Dummy__ 108 var _ m_Logarithm.Dummy__ 109 var _ m_StandardLibraryInterop.Dummy__ 110 var _ m_Streams.Dummy__ 111 var _ m_Sorting.Dummy__ 112 var _ m_HexStrings.Dummy__ 113 var _ m_GetOpt.Dummy__ 114 var _ m_FloatCompare.Dummy__ 115 var _ m_Base64.Dummy__ 116 var _ m_Base64Lemmas.Dummy__ 117 var _ m_Actions.Dummy__ 118 var _ m_AwsCryptographyKeyStoreTypes.Dummy__ 119 var _ m_AwsCryptographyMaterialProvidersTypes.Dummy__ 120 var _ m_AwsArnParsing.Dummy__ 121 var _ m_AwsKmsMrkMatchForDecrypt.Dummy__ 122 var _ m_AwsKmsUtils.Dummy__ 123 var _ m_KeyStoreErrorMessages.Dummy__ 124 var _ m_KmsArn.Dummy__ 125 var _ m_Structure.Dummy__ 126 127 type Dummy__ struct{} 128 129 // Definition of class Default__ 130 type Default__ struct { 131 dummy byte 132 } 133 134 func New_Default___() *Default__ { 135 _this := Default__{} 136 137 return &_this 138 } 139 140 type CompanionStruct_Default___ struct { 141 } 142 143 var Companion_Default___ = CompanionStruct_Default___{} 144 145 func (_this *Default__) Equals(other *Default__) bool { 146 return _this == other 147 } 148 149 func (_this *Default__) EqualsGeneric(x interface{}) bool { 150 other, ok := x.(*Default__) 151 return ok && _this.Equals(other) 152 } 153 154 func (*Default__) String() string { 155 return "KMSKeystoreOperations.Default__" 156 } 157 func (_this *Default__) ParentTraits_() []*_dafny.TraitID { 158 return [](*_dafny.TraitID){} 159 } 160 161 var _ _dafny.TraitOffspring = &Default__{} 162 163 func (_static *CompanionStruct_Default___) ReplaceRegion(arn _dafny.Sequence, region _dafny.Sequence) _dafny.Sequence { 164 var _0_parsed m_Wrappers.Result = m_AwsArnParsing.Companion_Default___.ParseAwsKmsArn(arn) 165 _ = _0_parsed 166 if (_0_parsed).Is_Failure() { 167 return arn 168 } else if !(m_AwsArnParsing.Companion_Default___.IsMultiRegionAwsKmsArn((_0_parsed).Dtor_value().(m_AwsArnParsing.AwsArn))) { 169 return arn 170 } else { 171 var _1_newArn _dafny.Sequence = ((_0_parsed).Dtor_value().(m_AwsArnParsing.AwsArn)).ToArnString(m_Wrappers.Companion_Option_.Create_Some_(region)) 172 _ = _1_newArn 173 if m_ComAmazonawsKmsTypes.Companion_Default___.IsValid__KeyIdType(_1_newArn) { 174 return _1_newArn 175 } else { 176 return arn 177 } 178 } 179 } 180 func (_static *CompanionStruct_Default___) GetArn(kmsConfiguration m_AwsCryptographyKeyStoreTypes.KMSConfiguration, discoverdArn _dafny.Sequence) _dafny.Sequence { 181 var _source0 m_AwsCryptographyKeyStoreTypes.KMSConfiguration = kmsConfiguration 182 _ = _source0 183 { 184 if _source0.Is_kmsKeyArn() { 185 var _0_arn _dafny.Sequence = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_kmsKeyArn).KmsKeyArn 186 _ = _0_arn 187 return _0_arn 188 } 189 } 190 { 191 if _source0.Is_kmsMRKeyArn() { 192 var _1_arn _dafny.Sequence = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_kmsMRKeyArn).KmsMRKeyArn 193 _ = _1_arn 194 return _1_arn 195 } 196 } 197 { 198 if _source0.Is_discovery() { 199 var _2_obj m_AwsCryptographyKeyStoreTypes.Discovery = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_discovery).Discovery 200 _ = _2_obj 201 return discoverdArn 202 } 203 } 204 { 205 var _3_region m_AwsCryptographyKeyStoreTypes.MRDiscovery = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_mrDiscovery).MrDiscovery 206 _ = _3_region 207 return Companion_Default___.ReplaceRegion(discoverdArn, (_3_region).Dtor_region()) 208 } 209 } 210 func (_static *CompanionStruct_Default___) AttemptKmsOperation_q(kmsConfiguration m_AwsCryptographyKeyStoreTypes.KMSConfiguration, encryptionContext _dafny.Map) bool { 211 var _source0 m_AwsCryptographyKeyStoreTypes.KMSConfiguration = kmsConfiguration 212 _ = _source0 213 { 214 if _source0.Is_kmsKeyArn() { 215 var _0_arn _dafny.Sequence = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_kmsKeyArn).KmsKeyArn 216 _ = _0_arn 217 return (_dafny.Companion_Sequence_.Equal(_0_arn, (encryptionContext).Get(m_Structure.Companion_Default___.KMS__FIELD()).(_dafny.Sequence))) && (m_KmsArn.Companion_Default___.ValidKmsArn_q(_0_arn)) 218 } 219 } 220 { 221 if _source0.Is_kmsMRKeyArn() { 222 var _1_arn _dafny.Sequence = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_kmsMRKeyArn).KmsMRKeyArn 223 _ = _1_arn 224 return (Companion_Default___.MrkMatch(_1_arn, (encryptionContext).Get(m_Structure.Companion_Default___.KMS__FIELD()).(_dafny.Sequence))) && (m_KmsArn.Companion_Default___.ValidKmsArn_q(_1_arn)) 225 } 226 } 227 { 228 if _source0.Is_discovery() { 229 var _2_obj m_AwsCryptographyKeyStoreTypes.Discovery = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_discovery).Discovery 230 _ = _2_obj 231 return m_KmsArn.Companion_Default___.ValidKmsArn_q((encryptionContext).Get(m_Structure.Companion_Default___.KMS__FIELD()).(_dafny.Sequence)) 232 } 233 } 234 { 235 var _3_obj m_AwsCryptographyKeyStoreTypes.MRDiscovery = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_mrDiscovery).MrDiscovery 236 _ = _3_obj 237 return m_KmsArn.Companion_Default___.ValidKmsArn_q((encryptionContext).Get(m_Structure.Companion_Default___.KMS__FIELD()).(_dafny.Sequence)) 238 } 239 } 240 func (_static *CompanionStruct_Default___) Compatible_q(kmsConfiguration m_AwsCryptographyKeyStoreTypes.KMSConfiguration, keyId _dafny.Sequence) bool { 241 var _source0 m_AwsCryptographyKeyStoreTypes.KMSConfiguration = kmsConfiguration 242 _ = _source0 243 { 244 if _source0.Is_kmsKeyArn() { 245 var _0_arn _dafny.Sequence = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_kmsKeyArn).KmsKeyArn 246 _ = _0_arn 247 return _dafny.Companion_Sequence_.Equal(_0_arn, keyId) 248 } 249 } 250 { 251 var _1_arn _dafny.Sequence = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_kmsMRKeyArn).KmsMRKeyArn 252 _ = _1_arn 253 return Companion_Default___.MrkMatch(_1_arn, keyId) 254 } 255 } 256 func (_static *CompanionStruct_Default___) OptCompatible_q(kmsConfiguration m_AwsCryptographyKeyStoreTypes.KMSConfiguration, keyId m_Wrappers.Option) bool { 257 return ((keyId).Is_Some()) && (Companion_Default___.Compatible_q(kmsConfiguration, (keyId).Dtor_value().(_dafny.Sequence))) 258 } 259 func (_static *CompanionStruct_Default___) MrkMatch(x _dafny.Sequence, y _dafny.Sequence) bool { 260 var _0_xArn m_Wrappers.Result = m_AwsArnParsing.Companion_Default___.ParseAwsKmsArn(x) 261 _ = _0_xArn 262 var _1_yArn m_Wrappers.Result = m_AwsArnParsing.Companion_Default___.ParseAwsKmsArn(y) 263 _ = _1_yArn 264 if ((_0_xArn).Is_Failure()) || ((_1_yArn).Is_Failure()) { 265 return false 266 } else { 267 return m_AwsKmsMrkMatchForDecrypt.Companion_Default___.AwsKmsMrkMatchForDecrypt(m_AwsArnParsing.Companion_AwsKmsIdentifier_.Create_AwsKmsArnIdentifier_((_0_xArn).Dtor_value().(m_AwsArnParsing.AwsArn)), m_AwsArnParsing.Companion_AwsKmsIdentifier_.Create_AwsKmsArnIdentifier_((_1_yArn).Dtor_value().(m_AwsArnParsing.AwsArn))) 268 } 269 } 270 func (_static *CompanionStruct_Default___) HasKeyId(kmsConfiguration m_AwsCryptographyKeyStoreTypes.KMSConfiguration) bool { 271 return ((kmsConfiguration).Is_kmsKeyArn()) || ((kmsConfiguration).Is_kmsMRKeyArn()) 272 } 273 func (_static *CompanionStruct_Default___) GetKeyId(kmsConfiguration m_AwsCryptographyKeyStoreTypes.KMSConfiguration) _dafny.Sequence { 274 var _source0 m_AwsCryptographyKeyStoreTypes.KMSConfiguration = kmsConfiguration 275 _ = _source0 276 { 277 if _source0.Is_kmsKeyArn() { 278 var _0_arn _dafny.Sequence = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_kmsKeyArn).KmsKeyArn 279 _ = _0_arn 280 return _0_arn 281 } 282 } 283 { 284 var _1_arn _dafny.Sequence = _source0.Get_().(m_AwsCryptographyKeyStoreTypes.KMSConfiguration_kmsMRKeyArn).KmsMRKeyArn 285 _ = _1_arn 286 return _1_arn 287 } 288 } 289 func (_static *CompanionStruct_Default___) GenerateKey(encryptionContext _dafny.Map, kmsConfiguration m_AwsCryptographyKeyStoreTypes.KMSConfiguration, grantTokens _dafny.Sequence, kmsClient m_ComAmazonawsKmsTypes.IKMSClient) m_Wrappers.Result { 290 var res m_Wrappers.Result = m_Wrappers.Companion_Result_.Default(m_ComAmazonawsKmsTypes.Companion_GenerateDataKeyWithoutPlaintextResponse_.Default()) 291 _ = res 292 var _0_kmsKeyArn _dafny.Sequence 293 _ = _0_kmsKeyArn 294 _0_kmsKeyArn = Companion_Default___.GetKeyId(kmsConfiguration) 295 var _1_generatorRequest m_ComAmazonawsKmsTypes.GenerateDataKeyWithoutPlaintextRequest 296 _ = _1_generatorRequest 297 _1_generatorRequest = m_ComAmazonawsKmsTypes.Companion_GenerateDataKeyWithoutPlaintextRequest_.Create_GenerateDataKeyWithoutPlaintextRequest_(_0_kmsKeyArn, m_Wrappers.Companion_Option_.Create_Some_(encryptionContext), m_Wrappers.Companion_Option_.Create_None_(), m_Wrappers.Companion_Option_.Create_Some_(int32(32)), m_Wrappers.Companion_Option_.Create_Some_(grantTokens), m_Wrappers.Companion_Option_.Create_None_()) 298 var _2_maybeGenerateResponse m_Wrappers.Result 299 _ = _2_maybeGenerateResponse 300 var _out0 m_Wrappers.Result 301 _ = _out0 302 _out0 = (kmsClient).GenerateDataKeyWithoutPlaintext(_1_generatorRequest) 303 _2_maybeGenerateResponse = _out0 304 var _3_valueOrError0 m_Wrappers.Result = m_Wrappers.Companion_Result_.Default(m_ComAmazonawsKmsTypes.Companion_GenerateDataKeyWithoutPlaintextResponse_.Default()) 305 _ = _3_valueOrError0 306 _3_valueOrError0 = (_2_maybeGenerateResponse).MapFailure(func(coer11 func(m_ComAmazonawsKmsTypes.Error) m_AwsCryptographyKeyStoreTypes.Error) func(interface{}) interface{} { 307 return func(arg11 interface{}) interface{} { 308 return coer11(arg11.(m_ComAmazonawsKmsTypes.Error)) 309 } 310 }(func(_4_e m_ComAmazonawsKmsTypes.Error) m_AwsCryptographyKeyStoreTypes.Error { 311 return m_AwsCryptographyKeyStoreTypes.Companion_Error_.Create_ComAmazonawsKms_(_4_e) 312 })) 313 if (_3_valueOrError0).IsFailure() { 314 res = (_3_valueOrError0).PropagateFailure() 315 return res 316 } 317 var _5_generateResponse m_ComAmazonawsKmsTypes.GenerateDataKeyWithoutPlaintextResponse 318 _ = _5_generateResponse 319 _5_generateResponse = (_3_valueOrError0).Extract().(m_ComAmazonawsKmsTypes.GenerateDataKeyWithoutPlaintextResponse) 320 var _6_valueOrError1 m_Wrappers.Outcome = m_Wrappers.Companion_Outcome_.Default() 321 _ = _6_valueOrError1 322 _6_valueOrError1 = m_Wrappers.Companion_Default___.Need((true) && (((_5_generateResponse).Dtor_KeyId()).Is_Some()), m_AwsCryptographyKeyStoreTypes.Companion_Error_.Create_KeyStoreException_(_dafny.SeqOfString("Invalid response from KMS GenerateDataKey:: Invalid Key Id"))) 323 if (_6_valueOrError1).IsFailure() { 324 res = (_6_valueOrError1).PropagateFailure() 325 return res 326 } 327 var _7_valueOrError2 m_Wrappers.Outcome = m_Wrappers.Companion_Outcome_.Default() 328 _ = _7_valueOrError2 329 _7_valueOrError2 = m_Wrappers.Companion_Default___.Need((((_5_generateResponse).Dtor_CiphertextBlob()).Is_Some()) && (m_ComAmazonawsKmsTypes.Companion_Default___.IsValid__CiphertextType(((_5_generateResponse).Dtor_CiphertextBlob()).Dtor_value().(_dafny.Sequence))), m_AwsCryptographyKeyStoreTypes.Companion_Error_.Create_KeyStoreException_(_dafny.SeqOfString("Invalid response from AWS KMS GenerateDataKey: Invalid ciphertext"))) 330 if (_7_valueOrError2).IsFailure() { 331 res = (_7_valueOrError2).PropagateFailure() 332 return res 333 } 334 res = m_Wrappers.Companion_Result_.Create_Success_(_5_generateResponse) 335 return res 336 return res 337 } 338 func (_static *CompanionStruct_Default___) ReEncryptKey(ciphertext _dafny.Sequence, sourceEncryptionContext _dafny.Map, destinationEncryptionContext _dafny.Map, kmsConfiguration m_AwsCryptographyKeyStoreTypes.KMSConfiguration, grantTokens _dafny.Sequence, kmsClient m_ComAmazonawsKmsTypes.IKMSClient) m_Wrappers.Result { 339 var res m_Wrappers.Result = m_Wrappers.Companion_Result_.Default(m_ComAmazonawsKmsTypes.Companion_ReEncryptResponse_.Default()) 340 _ = res 341 var _0_kmsKeyArn _dafny.Sequence 342 _ = _0_kmsKeyArn 343 _0_kmsKeyArn = Companion_Default___.GetKeyId(kmsConfiguration) 344 var _1_reEncryptRequest m_ComAmazonawsKmsTypes.ReEncryptRequest 345 _ = _1_reEncryptRequest 346 _1_reEncryptRequest = m_ComAmazonawsKmsTypes.Companion_ReEncryptRequest_.Create_ReEncryptRequest_(ciphertext, m_Wrappers.Companion_Option_.Create_Some_(sourceEncryptionContext), m_Wrappers.Companion_Option_.Create_Some_(_0_kmsKeyArn), _0_kmsKeyArn, m_Wrappers.Companion_Option_.Create_Some_(destinationEncryptionContext), m_Wrappers.Companion_Option_.Create_None_(), m_Wrappers.Companion_Option_.Create_None_(), m_Wrappers.Companion_Option_.Create_Some_(grantTokens), m_Wrappers.Companion_Option_.Create_None_()) 347 var _2_maybeReEncryptResponse m_Wrappers.Result 348 _ = _2_maybeReEncryptResponse 349 var _out0 m_Wrappers.Result 350 _ = _out0 351 _out0 = (kmsClient).ReEncrypt(_1_reEncryptRequest) 352 _2_maybeReEncryptResponse = _out0 353 var _3_valueOrError0 m_Wrappers.Result = m_Wrappers.Companion_Result_.Default(m_ComAmazonawsKmsTypes.Companion_ReEncryptResponse_.Default()) 354 _ = _3_valueOrError0 355 _3_valueOrError0 = (_2_maybeReEncryptResponse).MapFailure(func(coer12 func(m_ComAmazonawsKmsTypes.Error) m_AwsCryptographyKeyStoreTypes.Error) func(interface{}) interface{} { 356 return func(arg12 interface{}) interface{} { 357 return coer12(arg12.(m_ComAmazonawsKmsTypes.Error)) 358 } 359 }(func(_4_e m_ComAmazonawsKmsTypes.Error) m_AwsCryptographyKeyStoreTypes.Error { 360 return m_AwsCryptographyKeyStoreTypes.Companion_Error_.Create_ComAmazonawsKms_(_4_e) 361 })) 362 if (_3_valueOrError0).IsFailure() { 363 res = (_3_valueOrError0).PropagateFailure() 364 return res 365 } 366 var _5_reEncryptResponse m_ComAmazonawsKmsTypes.ReEncryptResponse 367 _ = _5_reEncryptResponse 368 _5_reEncryptResponse = (_3_valueOrError0).Extract().(m_ComAmazonawsKmsTypes.ReEncryptResponse) 369 var _6_valueOrError1 m_Wrappers.Outcome = m_Wrappers.Companion_Outcome_.Default() 370 _ = _6_valueOrError1 371 _6_valueOrError1 = m_Wrappers.Companion_Default___.Need((((((_5_reEncryptResponse).Dtor_SourceKeyId()).Is_Some()) && (((_5_reEncryptResponse).Dtor_KeyId()).Is_Some())) && (_dafny.Companion_Sequence_.Equal(((_5_reEncryptResponse).Dtor_SourceKeyId()).Dtor_value().(_dafny.Sequence), _0_kmsKeyArn))) && (_dafny.Companion_Sequence_.Equal(((_5_reEncryptResponse).Dtor_KeyId()).Dtor_value().(_dafny.Sequence), _0_kmsKeyArn)), m_AwsCryptographyKeyStoreTypes.Companion_Error_.Create_KeyStoreException_(_dafny.SeqOfString("Invalid response from KMS ReEncrypt:: Invalid Key Id"))) 372 if (_6_valueOrError1).IsFailure() { 373 res = (_6_valueOrError1).PropagateFailure() 374 return res 375 } 376 var _7_valueOrError2 m_Wrappers.Outcome = m_Wrappers.Companion_Outcome_.Default() 377 _ = _7_valueOrError2 378 _7_valueOrError2 = m_Wrappers.Companion_Default___.Need((((_5_reEncryptResponse).Dtor_CiphertextBlob()).Is_Some()) && (m_ComAmazonawsKmsTypes.Companion_Default___.IsValid__CiphertextType(((_5_reEncryptResponse).Dtor_CiphertextBlob()).Dtor_value().(_dafny.Sequence))), m_AwsCryptographyKeyStoreTypes.Companion_Error_.Create_KeyStoreException_(_dafny.SeqOfString("Invalid response from AWS KMS ReEncrypt: Invalid ciphertext."))) 379 if (_7_valueOrError2).IsFailure() { 380 res = (_7_valueOrError2).PropagateFailure() 381 return res 382 } 383 res = m_Wrappers.Companion_Result_.Create_Success_(_5_reEncryptResponse) 384 return res 385 return res 386 } 387 func (_static *CompanionStruct_Default___) DecryptKey(encryptionContext _dafny.Map, item _dafny.Map, kmsConfiguration m_AwsCryptographyKeyStoreTypes.KMSConfiguration, grantTokens _dafny.Sequence, kmsClient m_ComAmazonawsKmsTypes.IKMSClient) m_Wrappers.Result { 388 var output m_Wrappers.Result = m_Wrappers.Companion_Result_.Default(m_ComAmazonawsKmsTypes.Companion_DecryptResponse_.Default()) 389 _ = output 390 var _0_kmsKeyArn _dafny.Sequence 391 _ = _0_kmsKeyArn 392 _0_kmsKeyArn = Companion_Default___.GetArn(kmsConfiguration, (encryptionContext).Get(m_Structure.Companion_Default___.KMS__FIELD()).(_dafny.Sequence)) 393 var _1_maybeDecryptResponse m_Wrappers.Result 394 _ = _1_maybeDecryptResponse 395 var _out0 m_Wrappers.Result 396 _ = _out0 397 _out0 = (kmsClient).Decrypt(m_ComAmazonawsKmsTypes.Companion_DecryptRequest_.Create_DecryptRequest_(((item).Get(m_Structure.Companion_Default___.BRANCH__KEY__FIELD()).(m_ComAmazonawsDynamodbTypes.AttributeValue)).Dtor_B(), m_Wrappers.Companion_Option_.Create_Some_(encryptionContext), m_Wrappers.Companion_Option_.Create_Some_(grantTokens), m_Wrappers.Companion_Option_.Create_Some_(_0_kmsKeyArn), m_Wrappers.Companion_Option_.Create_None_(), m_Wrappers.Companion_Option_.Create_None_(), m_Wrappers.Companion_Option_.Create_None_())) 398 _1_maybeDecryptResponse = _out0 399 var _2_valueOrError0 m_Wrappers.Result = m_Wrappers.Companion_Result_.Default(m_ComAmazonawsKmsTypes.Companion_DecryptResponse_.Default()) 400 _ = _2_valueOrError0 401 _2_valueOrError0 = (_1_maybeDecryptResponse).MapFailure(func(coer13 func(m_ComAmazonawsKmsTypes.Error) m_AwsCryptographyKeyStoreTypes.Error) func(interface{}) interface{} { 402 return func(arg13 interface{}) interface{} { 403 return coer13(arg13.(m_ComAmazonawsKmsTypes.Error)) 404 } 405 }(func(_3_e m_ComAmazonawsKmsTypes.Error) m_AwsCryptographyKeyStoreTypes.Error { 406 return m_AwsCryptographyKeyStoreTypes.Companion_Error_.Create_ComAmazonawsKms_(_3_e) 407 })) 408 if (_2_valueOrError0).IsFailure() { 409 output = (_2_valueOrError0).PropagateFailure() 410 return output 411 } 412 var _4_decryptResponse m_ComAmazonawsKmsTypes.DecryptResponse 413 _ = _4_decryptResponse 414 _4_decryptResponse = (_2_valueOrError0).Extract().(m_ComAmazonawsKmsTypes.DecryptResponse) 415 var _5_valueOrError1 m_Wrappers.Outcome = m_Wrappers.Companion_Outcome_.Default() 416 _ = _5_valueOrError1 417 _5_valueOrError1 = m_Wrappers.Companion_Default___.Need((((_4_decryptResponse).Dtor_Plaintext()).Is_Some()) && ((_dafny.IntOfInt64(32)).Cmp(_dafny.IntOfUint32((((_4_decryptResponse).Dtor_Plaintext()).Dtor_value().(_dafny.Sequence)).Cardinality())) == 0), m_AwsCryptographyKeyStoreTypes.Companion_Error_.Create_KeyStoreException_(_dafny.SeqOfString("Invalid response from AWS KMS Decrypt: Key is not 32 bytes."))) 418 if (_5_valueOrError1).IsFailure() { 419 output = (_5_valueOrError1).PropagateFailure() 420 return output 421 } 422 output = m_Wrappers.Companion_Result_.Create_Success_(_4_decryptResponse) 423 return output 424 } 425 426 // End of class Default__