errors

package
v1.0.11 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 20, 2026 License: Apache-2.0 Imports: 10 Imported by: 0

Documentation

Index

Constants

View Source 
const ExitCodePermission = 4

ExitCodePermission is the process exit code for PAT authorisation failures.

Variables

View Source 
var (
	ErrInvalidResourceName = stderrors.New("invalid resource name")
	ErrUnsafePath          = stderrors.New("unsafe path detected")
)

Functions

func ClassifyMCPResponseText added in v1.0.11 

func ClassifyMCPResponseText(text string) error

ClassifyMCPResponseText classifies a text response returned by an MCP tool call. Returns a typed error for known gateway auth failures, PAT interceptions, and business-level errors embedded in HTTP-200 JSON bodies.

Check order: DWS gateway > PAT permission > generic business error.

func ClassifyToolResultContent added in v1.0.11 

func ClassifyToolResultContent(content map[string]any) error

ClassifyToolResultContent checks a raw MCP tool result content map for DWS gateway auth errors and PAT permission error codes. This is intended for use as the edition.Hooks.ClassifyToolResult callback so the framework's runner returns a typed error before its generic business-error classification.

Check order: DWS gateway auth > PAT permission.

func ExitCode 

func ExitCode(err error) int

ExitCode maps any error to a stable exit code.

func IsPATError added in v1.0.11 

func IsPATError(err error) bool

IsPATError reports whether err is a *PATError.

func IsPATNoPermissionCode added in v1.0.11 

func IsPATNoPermissionCode(code string) bool

IsPATNoPermissionCode reports whether code is a known PAT permission error code.

func NewAPI 

func NewAPI(message string, opts ...Option) error

NewAPI returns an API-category error.

func NewAuth 

func NewAuth(message string, opts ...Option) error

NewAuth returns an auth-category error.

func NewDiscovery 

func NewDiscovery(message string, opts ...Option) error

NewDiscovery returns a discovery-category error.

func NewInternal 

func NewInternal(message string, opts ...Option) error

NewInternal returns an internal-category error.

func NewValidation 

func NewValidation(message string, opts ...Option) error

NewValidation returns a validation-category error.

func PrintHuman 

func PrintHuman(w io.Writer, err error) error

PrintHuman writes a concise human-readable error rendering at normal verbosity.

func PrintHumanAt added in v1.0.5 

func PrintHumanAt(w io.Writer, err error, v Verbosity) error

PrintHumanAt writes a human-readable error rendering at the given verbosity level.

func PrintJSON 

func PrintJSON(w io.Writer, err error) error

PrintJSON writes a machine-readable JSON error object.

func RejectCRLF 

func RejectCRLF(value, fieldName string) error

RejectCRLF rejects strings containing carriage return (\r) or line feed (\n). These characters enable MIME/HTTP header injection and must never appear in header field names, values, Content-ID, or filename parameters.

func RejectControlChars 

func RejectControlChars(value, flagName string) error

RejectControlChars rejects C0 control characters (except \t and \n) and dangerous Unicode characters from user input.

Control characters cause subtle security issues:

  • Null bytes truncate strings at the C layer
  • \r\n enables HTTP header injection
  • Unicode Bidi characters allow visual spoofing (e.g. making "report.exe" display as "report.txt")

Tab and newline are allowed as they may appear in legitimate multi-line input.

func ResourceName 

func ResourceName(name string) error

func SafeInputPath 

func SafeInputPath(path string) (string, error)

SafeInputPath validates an upload/read source path for --file flags. It applies the same rules as SafeOutputPath — rejecting absolute paths, resolving symlinks, and enforcing working directory containment — to prevent an AI Agent from being tricked into reading sensitive files like /etc/passwd.

func SafeLocalFlagPath 

func SafeLocalFlagPath(flagName, value string) (string, error)

SafeLocalFlagPath validates a flag value as a local file path. Empty values and http/https URLs are returned unchanged without validation, allowing the caller to handle non-path inputs (e.g. API keys, URLs) upstream. For all other values, SafeInputPath rules apply. The original relative path is returned unchanged (not resolved to absolute) so upload helpers can re-validate at the actual I/O point via SafeUploadPath.

func SafeOutputPath 

func SafeOutputPath(path string) (string, error)

SafeOutputPath validates a download/export target path for --output flags. It rejects absolute paths, resolves symlinks to their real location, and verifies the canonical result is still under the current working directory. This prevents an AI Agent from being tricked into writing files outside the working directory (e.g. "../../.ssh/authorized_keys") or following symlinks to sensitive locations.

The returned absolute path MUST be used for all subsequent I/O to prevent time-of-check-to-time-of-use (TOCTOU) race conditions.

func SafePath 

func SafePath(path string) error

SafePath performs basic path validation checking for dangerous patterns. For full security (symlink resolution, CWD containment), use SafeOutputPath or SafeInputPath.

func StripQueryFragment 

func StripQueryFragment(path string) string

StripQueryFragment removes any ?query or #fragment suffix from a URL path. API parameters must go through structured --params flags, not embedded in the path, to prevent parameter injection and behaviour confusion.

Types

type Category 

type Category string

Category represents a stable error class with a documented exit code. 

const (
	CategoryAPI        Category = "api"
	CategoryAuth       Category = "auth"
	CategoryValidation Category = "validation"
	CategoryDiscovery  Category = "discovery"
	CategoryInternal   Category = "internal"
)

type Error 

type Error struct {
	Category   Category
	Message    string
	Operation  string
	ServerKey  string
	Retryable  bool
	Reason     string
	Hint       string
	Actions    []string
	Snapshot   string
	RPCCode    int               `json:"rpc_code,omitempty"`
	RPCData    json.RawMessage   `json:"rpc_data,omitempty"`
	ServerDiag ServerDiagnostics `json:"-"`
	Cause      error             `json:"-"`
}

Error is the structured repository-local error model for the Go rewrite.

func (*Error) Error 

func (e *Error) Error() string

func (*Error) ExitCode 

func (e *Error) ExitCode() int

ExitCode returns the documented process exit code for the error category.

func (*Error) Unwrap 

func (e *Error) Unwrap() error

Unwrap returns the underlying cause, enabling errors.Is and errors.As chains.

type ExitCoder added in v1.0.9 

type ExitCoder interface {
	ExitCode() int
}

ExitCoder is implemented by errors that provide their own exit code. Edition-specific error types (e.g. PATError, CLIError) implement this so the framework can resolve exit codes without importing edition packages.

type Option 

type Option func(*Error)

Option mutates a structured error before it is returned.

func WithActions 

func WithActions(actions ...string) Option

WithActions records suggested next actions for recovery.

func WithCause 

func WithCause(err error) Option

WithCause wraps the original error so it can be retrieved via errors.Unwrap.

func WithHint 

func WithHint(hint string) Option

WithHint records a short recovery hint for humans and agents.

func WithOperation 

func WithOperation(operation string) Option

WithOperation records the operation that failed.

func WithRPCCode 

func WithRPCCode(code int) Option

WithRPCCode records the original JSON-RPC error code.

func WithRPCData 

func WithRPCData(data json.RawMessage) Option

WithRPCData records the original JSON-RPC error data payload.

func WithReason 

func WithReason(reason string) Option

WithReason records a stable machine-readable failure reason.

func WithRetryable 

func WithRetryable(retryable bool) Option

WithRetryable marks whether the error can be retried safely.

func WithServerDiag added in v1.0.5 

func WithServerDiag(diag ServerDiagnostics) Option

WithServerDiag attaches server diagnostics to the error.

func WithServerKey 

func WithServerKey(serverKey string) Option

WithServerKey records the server identifier associated with the failure.

func WithSnapshot 

func WithSnapshot(path string) Option

WithSnapshot records the recovery snapshot path associated with the failure.

func WithTraceID added in v1.0.5 

func WithTraceID(id string) Option

WithTraceID records the server-provided trace identifier. Used when only the trace ID is available (e.g. from HTTP headers) without a full ServerDiagnostics struct.

type PATError added in v1.0.11 

type PATError struct {
	RawJSON string
}

PATError represents a PAT (Personal Action Token) authorization failure that should be passed through to stderr as raw JSON without any CLI-layer wrapping. The host application (e.g. RewindDesktop) parses the JSON to display its own authorisation UI.

func AsPatAuthCheckError added in v1.0.11 

func AsPatAuthCheckError(err error) *PATError

AsPatAuthCheckError extracts a *PATError from an error chain.

func ClassifyPatAuthCheck added in v1.0.11 

func ClassifyPatAuthCheck(content map[string]any) *PATError

ClassifyPatAuthCheck is the open-source fallback that checks a tool-call Content map for PAT permission codes and auth-required codes. Returns a non-nil *PATError when the content carries a recognised PAT/auth error.

func (*PATError) Error added in v1.0.11 

func (e *PATError) Error() string

func (*PATError) ExitCode added in v1.0.11 

func (e *PATError) ExitCode() int

ExitCode returns the documented exit code for PAT permission errors (4).

func (*PATError) RawStderr added in v1.0.11 

func (e *PATError) RawStderr() string

RawStderr returns the raw JSON to be written directly to stderr.

type RawStderrError added in v1.0.9 

type RawStderrError interface {
	error
	RawStderr() string
}

RawStderrError is implemented by errors that must output raw content directly to stderr, bypassing all CLI formatting (e.g. "Error:" prefix). PAT authorization errors use this to pass JSON through to the desktop runtime.

type ServerDiagnostics added in v1.0.5 

type ServerDiagnostics struct {
	TraceID         string `json:"trace_id,omitempty"`
	ServerErrorCode string `json:"server_error_code,omitempty"`
	TechnicalDetail string `json:"technical_detail,omitempty"`
	ServerRetryable *bool  `json:"server_retryable,omitempty"`
}

ServerDiagnostics holds server-side diagnostic fields extracted from MCP response bodies or HTTP response headers. Fields are populated on a best-effort basis during error construction.

func (ServerDiagnostics) IsEmpty added in v1.0.5 

func (d ServerDiagnostics) IsEmpty() bool

IsEmpty returns true when no diagnostic field has been populated.

type Verbosity added in v1.0.5 

type Verbosity int

Verbosity controls how much detail PrintHuman includes. 

const (
	// VerbosityNormal shows essential info: error, hint, actions, trace_id, server_code.
	VerbosityNormal Verbosity = 0
	// VerbosityVerbose adds technical_detail, snapshot, execution context.
	VerbosityVerbose Verbosity = 1
	// VerbosityDebug adds all internal diagnostics (category, operation, reason, rpc_code).
	VerbosityDebug Verbosity = 2
)

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.