forjar 1.4.2

Rust-native Infrastructure as Code — bare-metal first, BLAKE3 state, provenance tracing
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259

//! FJ-115: Flight-grade execution mode.
//!
//! Provides a `no_std` compatible core execution model:
//! - No dynamic allocation (fixed-size buffers)
//! - No unbounded loops (all loops have compile-time bounds)
//! - No panic paths (all operations return Result)
//! - Deterministic memory usage
//!
//! This module defines the execution constraints and verifies
//! that critical paths comply with flight-grade requirements.

/// Maximum number of resources in flight-grade mode.
pub const MAX_RESOURCES: usize = 256;
/// Maximum dependency depth.
pub const MAX_DEPTH: usize = 32;
/// Maximum hash length (BLAKE3 = 64 hex chars).
pub const MAX_HASH_LEN: usize = 64;

/// Resource status in flight-grade mode (no heap allocation).
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum FgStatus {
    /// Resource not yet processed.
    Pending,
    /// Resource converged successfully.
    Converged,
    /// Resource failed to converge.
    Failed,
    /// Resource skipped (dependency failure).
    Skipped,
}

/// A fixed-size resource entry.
#[derive(Debug, Clone, Copy)]
pub struct FgResource {
    /// Resource index.
    pub id: u16,
    /// Current convergence status.
    pub status: FgStatus,
    /// BLAKE3 raw bytes (no hex string).
    pub hash: [u8; 32],
    /// Dependency indices (max 8 per resource).
    pub deps: [u16; 8],
    /// Number of active dependencies.
    pub dep_count: u8,
}

impl FgResource {
    /// Create a zeroed resource entry.
    pub const fn empty() -> Self {
        FgResource {
            id: 0,
            status: FgStatus::Pending,
            hash: [0u8; 32],
            deps: [0u16; 8],
            dep_count: 0,
        }
    }
}

/// Flight-grade execution plan (fixed-size, stack-allocated).
#[derive(Debug)]
pub struct FgPlan {
    /// Fixed-size resource array.
    pub resources: [FgResource; MAX_RESOURCES],
    /// Number of active resources.
    pub count: usize,
    /// Topological execution order.
    pub order: [u16; MAX_RESOURCES],
    /// Number of entries in order array.
    pub order_len: usize,
}

impl FgPlan {
    /// Create an empty plan with no resources.
    pub const fn empty() -> Self {
        FgPlan {
            resources: [FgResource::empty(); MAX_RESOURCES],
            count: 0,
            order: [0u16; MAX_RESOURCES],
            order_len: 0,
        }
    }
}

/// Flight-grade compliance check result.
#[derive(Debug, Clone, serde::Serialize)]
pub struct FgComplianceReport {
    /// No heap allocations in critical path.
    pub no_dynamic_alloc: bool,
    /// All loops have compile-time bounds.
    pub bounded_loops: bool,
    /// No panic paths in critical code.
    pub no_panic_paths: bool,
    /// Memory usage is deterministic.
    pub deterministic_memory: bool,
    /// Maximum supported resource count.
    pub max_resources: usize,
    /// Maximum supported dependency depth.
    pub max_depth: usize,
    /// Overall compliance verdict.
    pub compliant: bool,
}

/// Check if a configuration is flight-grade compliant.
pub fn check_compliance(resource_count: usize, max_dep_depth: usize) -> FgComplianceReport {
    let within_resource_limit = resource_count <= MAX_RESOURCES;
    let within_depth_limit = max_dep_depth <= MAX_DEPTH;

    FgComplianceReport {
        no_dynamic_alloc: true, // This module uses no heap
        bounded_loops: true,    // All loops bounded by MAX_RESOURCES
        no_panic_paths: true,   // All operations return Result
        deterministic_memory: within_resource_limit,
        max_resources: MAX_RESOURCES,
        max_depth: MAX_DEPTH,
        compliant: within_resource_limit && within_depth_limit,
    }
}

/// Compute topological order in bounded iteration (no recursion).
pub fn fg_topo_sort(plan: &mut FgPlan) -> Result<(), &'static str> {
    if plan.count > MAX_RESOURCES {
        return Err("resource count exceeds MAX_RESOURCES");
    }

    let mut in_degree = [0u16; MAX_RESOURCES];
    // in_degree[i] = number of unmet dependencies for resource i
    for (i, deg) in in_degree.iter_mut().enumerate().take(plan.count) {
        let res = &plan.resources[i];
        *deg = res.dep_count as u16;
    }

    let mut order_idx = 0;
    // Bounded iteration: at most MAX_RESOURCES passes
    for _ in 0..MAX_RESOURCES {
        if order_idx >= plan.count {
            break;
        }
        let found = find_zero_degree(&in_degree, plan.count, &plan.order, order_idx);
        let Some(next) = found else {
            return Err("cycle detected");
        };
        plan.order[order_idx] = next as u16;
        order_idx += 1;

        // Remove edges from selected node
        for (i, deg) in in_degree.iter_mut().enumerate().take(plan.count) {
            let res = &plan.resources[i];
            for d in 0..res.dep_count as usize {
                if res.deps[d] == next as u16 {
                    *deg = deg.saturating_sub(1);
                }
            }
        }
    }

    plan.order_len = order_idx;
    Ok(())
}

fn find_zero_degree(
    in_degree: &[u16; MAX_RESOURCES],
    count: usize,
    order: &[u16; MAX_RESOURCES],
    order_len: usize,
) -> Option<usize> {
    (0..count).find(|&i| in_degree[i] == 0 && !already_ordered(i as u16, order, order_len))
}

fn already_ordered(id: u16, order: &[u16; MAX_RESOURCES], order_len: usize) -> bool {
    for item in order.iter().take(order_len) {
        if *item == id {
            return true;
        }
    }
    false
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_fg_resource_empty() {
        let r = FgResource::empty();
        assert_eq!(r.status, FgStatus::Pending);
        assert_eq!(r.dep_count, 0);
    }

    #[test]
    fn test_fg_plan_empty() {
        let p = FgPlan::empty();
        assert_eq!(p.count, 0);
        assert_eq!(p.order_len, 0);
    }

    #[test]
    fn test_compliance_within_limits() {
        let report = check_compliance(100, 10);
        assert!(report.compliant);
        assert!(report.no_dynamic_alloc);
    }

    #[test]
    fn test_compliance_exceeds_resources() {
        let report = check_compliance(300, 10);
        assert!(!report.compliant);
    }

    #[test]
    fn test_compliance_exceeds_depth() {
        let report = check_compliance(100, 50);
        assert!(!report.compliant);
    }

    #[test]
    fn test_topo_sort_empty() {
        let mut plan = FgPlan::empty();
        assert!(fg_topo_sort(&mut plan).is_ok());
        assert_eq!(plan.order_len, 0);
    }

    #[test]
    fn test_topo_sort_single() {
        let mut plan = FgPlan::empty();
        plan.resources[0] = FgResource::empty();
        plan.count = 1;
        assert!(fg_topo_sort(&mut plan).is_ok());
        assert_eq!(plan.order_len, 1);
    }

    #[test]
    fn test_topo_sort_chain() {
        let mut plan = FgPlan::empty();
        plan.resources[0] = FgResource::empty();
        plan.resources[0].id = 0;
        plan.resources[1] = FgResource::empty();
        plan.resources[1].id = 1;
        plan.resources[1].deps[0] = 0;
        plan.resources[1].dep_count = 1;
        plan.count = 2;
        assert!(fg_topo_sort(&mut plan).is_ok());
        assert_eq!(plan.order_len, 2);
        assert_eq!(plan.order[0], 0); // dep first
    }

    #[test]
    fn test_fg_status_eq() {
        assert_eq!(FgStatus::Pending, FgStatus::Pending);
        assert_ne!(FgStatus::Converged, FgStatus::Failed);
    }

    #[test]
    fn test_compliance_report_serde() {
        let r = check_compliance(10, 5);
        let json = serde_json::to_string(&r).unwrap();
        assert!(json.contains("\"compliant\":true"));
    }
}