Add consistency in key creation/deletion

[hug-dev]

on all providers.
Also make the core operations looping on all providers "best-effort" by
being infallible.

This is mainly for initial review/CI testing. This makes the assumption that this comment is agreed but I can change later on.

Fix #323
Fix #319
Fix #149

[ionut-arm]

Cheers for the changes, it's nice to make the providers more consistent

[ionut-arm]

I get that the doc above says how this method works, but to me already_exists implies that Ok(()) would mean yes, not no - at least that's what I'd assume it does if I see it used somewhere in a PR. Maybe something like is_unique (or check_unique) matches the return type better? Or return Result<bool, ResponseStatus>?

[hug-dev]

ah yes you are correct, now that I look at it it's kind of wrong 🤡
I changed the return type following the same kind of convention we use in the interface:

• a method starting by is (an interrogation) return just a bool
• a method which name is a declaration returns a Result

I can change the name to does_not_already_exist

[ionut-arm]

Any way to include the provider ID in that error message?

[ionut-arm]

(same for the other methods that you changed)

[hug-dev]

I could do it with the describe method? I tried that rapidly but felt like it was going too far for this purpose

[ionut-arm]

Yeah, was wondering about that... I'm just thinking that since the operation is unlikely to proper fail and since logs are the only thing that tells you what fails maybe having more specific messages would help

[ionut-arm]

It can still cause some operations to fail: if you restart the service and don't have a higher ID used (the IDs are allocated incrementally, right?) then you'll end up trying to use this one and that will fail, but the next generate/import will be fine, so it just needs a retry.

[hug-dev]

ah yes you are correct, I guess this is the problem with this method... And will be the same with PKCS11 even though we use a random key ID generator: if it happens that we create the same key ID of a zombie key then the operation will have to be retried. In the worst case, if that happens a lot, one would have to re-try the key generation several times before finding an unallocated key ID.
Should we try to delete the key then, if insert_key_id fails? Here and for the PKCS11 provider.

[ionut-arm]

Oh, there's one more issue that I forgot to put in the issue or note here:

In psa_destroy_key_internal in PKCS11 you have two destroy operations happening one after the other (because you could have two parts of a key), but currently if the first bit fails you just return - destroying the second part never happens. Now that you destroy the metadata regardless of that error code I think you should attempt to delete the 2nd part as well, regardless of what happens with the first one. I guess if either fails you return an error

[hug-dev]

I think you should attempt to delete the 2nd part as well

Yes, makes sense!

[hug-dev]

Addressed your comments in a new commit for easier review 🧟

[ionut-arm]

Thanks, looks good, one question but it's just a nit

[ionut-arm]

Suggested change

	if let Err(e) = first_res {
	Err(e)
	} else if let Err(e) = second_res {
	Err(e)
	} else {
	Ok(psa_destroy_key::Result {})
	}
	first_res?;
	second_res?;
	Ok(psa_destroy_key::Result {})

Would this work?

[hug-dev]

Oh yes that's nice 👌

[hug-dev]

I will also add the algorithm we follow for those things, in high level terms in the Provide trait for generate, import and delete so that future implementors can follow the same recipe.