canic-host 0.68.16

Host-side build, install, deployment, and fleet-template library for Canic workspaces
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141

use super::{DeploymentCheckV1, DeploymentRootObservationSourceV1, SafetyFindingV1};
use serde::{Deserialize, Serialize};

///
/// DeploymentRootVerificationRequestV1
///
#[derive(Clone, Debug, Deserialize, Eq, PartialEq, Serialize)]
pub struct DeploymentRootVerificationRequestV1 {
    pub report_id: String,
    pub requested_at: String,
    pub deployment_name: String,
    pub network: String,
    pub expected_fleet_template: String,
    pub expected_root_principal: String,
    pub current_root_verification: DeploymentRootVerificationStateV1,
    pub source: DeploymentRootVerificationSourceV1,
    pub deployment_check: DeploymentCheckV1,
}

///
/// DeploymentRootVerificationReportV1
///
#[derive(Clone, Debug, Deserialize, Eq, PartialEq, Serialize)]
pub struct DeploymentRootVerificationReportV1 {
    pub schema_version: u32,
    pub report_id: String,
    pub report_digest: String,
    pub requested_at: String,
    pub evidence_status: DeploymentRootVerificationEvidenceStatusV1,
    pub state_transition: DeploymentRootVerificationStateTransitionV1,
    pub deployment_name: String,
    pub network: String,
    pub expected_fleet_template: String,
    pub expected_root_principal: String,
    pub observed_deployment_name: Option<String>,
    pub observed_network: Option<String>,
    pub observed_fleet_template: Option<String>,
    pub observed_root_principal: Option<String>,
    pub observed_root_canister_id: Option<String>,
    pub observed_root_observation_source: Option<DeploymentRootObservationSourceV1>,
    pub source: DeploymentRootVerificationSourceV1,
    pub source_check_id: String,
    pub source_check_digest: String,
    pub source_deployment_plan_id: String,
    pub source_deployment_plan_digest: String,
    pub source_inventory_id: String,
    pub source_inventory_digest: String,
    pub current_root_verification: DeploymentRootVerificationStateV1,
    pub identity_checks: Vec<DeploymentRootVerificationCheckV1>,
    pub evidence_checks: Vec<DeploymentRootVerificationCheckV1>,
    pub blockers: Vec<SafetyFindingV1>,
    pub warnings: Vec<SafetyFindingV1>,
    pub recommended_next_actions: Vec<String>,
}

///
/// DeploymentRootVerificationReceiptV1
///
#[derive(Clone, Debug, Deserialize, Eq, PartialEq, Serialize)]
pub struct DeploymentRootVerificationReceiptV1 {
    pub schema_version: u32,
    pub receipt_id: String,
    pub receipt_digest: String,
    pub deployment_name: String,
    pub network: String,
    pub fleet_template: String,
    pub root_principal: String,
    pub previous_root_verification: DeploymentRootVerificationStateV1,
    pub new_root_verification: DeploymentRootVerificationStateV1,
    pub state_transition: DeploymentRootVerificationStateTransitionV1,
    pub source_report_id: String,
    pub source_report_digest: String,
    pub source_report_requested_at: String,
    pub source_report_source: DeploymentRootVerificationSourceV1,
    pub source_report_evidence_status: DeploymentRootVerificationEvidenceStatusV1,
    pub source_report_current_root_verification: DeploymentRootVerificationStateV1,
    pub source_report_state_transition: DeploymentRootVerificationStateTransitionV1,
    pub source_root_observation_source: DeploymentRootObservationSourceV1,
    pub source_observed_root_canister_id: String,
    pub source_check_id: String,
    pub source_check_digest: String,
    pub source_deployment_plan_id: String,
    pub source_deployment_plan_digest: String,
    pub source_inventory_id: String,
    pub source_inventory_digest: String,
    pub verified_at_unix_secs: u64,
    pub local_state_path: String,
    pub local_state_digest_before: String,
    pub local_state_digest_after: String,
    pub warnings: Vec<SafetyFindingV1>,
}

///
/// DeploymentRootVerificationCheckV1
///
#[derive(Clone, Debug, Deserialize, Eq, PartialEq, Serialize)]
pub struct DeploymentRootVerificationCheckV1 {
    pub name: String,
    pub expected: Option<String>,
    pub observed: Option<String>,
    pub satisfied: bool,
}

///
/// DeploymentRootVerificationSourceV1
///
#[derive(Clone, Copy, Debug, Deserialize, Eq, Ord, PartialEq, PartialOrd, Serialize)]
pub enum DeploymentRootVerificationSourceV1 {
    DeploymentTruthCheck,
}

///
/// DeploymentRootVerificationEvidenceStatusV1
///
#[derive(Clone, Copy, Debug, Deserialize, Eq, Ord, PartialEq, PartialOrd, Serialize)]
pub enum DeploymentRootVerificationEvidenceStatusV1 {
    EvidenceSatisfied,
    VerificationFailed,
    NotApplicable,
}

///
/// DeploymentRootVerificationStateTransitionV1
///
#[derive(Clone, Copy, Debug, Deserialize, Eq, Ord, PartialEq, PartialOrd, Serialize)]
pub enum DeploymentRootVerificationStateTransitionV1 {
    NotAttempted,
    WouldPromoteNotVerifiedToVerified,
    PromotedNotVerifiedToVerified,
    NoStateChange,
    Blocked,
}

///
/// DeploymentRootVerificationStateV1
///
#[derive(Clone, Copy, Debug, Deserialize, Eq, Ord, PartialEq, PartialOrd, Serialize)]
pub enum DeploymentRootVerificationStateV1 {
    NotVerified,
    Verified,
}