greentic-deploy-spec 0.1.27258078137

Greentic deployment object-model schemas (Environment, Revision, TrafficSplit, BundleDeployment, Credentials, PackConfig, RuntimeConfig)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43

//! `greentic.pack-list-lock.v1`.
//!
//! Pinned, per-revision list of the `.gtpack` artifacts a revision resolves to.
//! Written under `<env_dir>/<pack_list_lock_ref>` at stage time — the lockfile
//! that [`Revision::pack_list_lock_ref`](crate::Revision) points at — and read
//! by `greentic-start` at boot to build the runner load set.
//!
//! Each [`LockedPack`] carries the env-relative path to an extracted `.gtpack`
//! plus its `sha256:<hex>` content digest, so the boot loader can verify the
//! artifact on disk still matches what was staged before loading it (closing
//! the stage→boot TOCTOU window).

use crate::ids::{PackId, RevisionId};
use crate::version::SchemaVersion;
use serde::{Deserialize, Serialize};
use std::path::PathBuf;

/// One pinned `.gtpack` within a revision's resolved pack list.
#[derive(Clone, Debug, PartialEq, Eq, Serialize, Deserialize)]
pub struct LockedPack {
    /// Pack identity, derived from the `.gtpack` file stem at stage time.
    pub pack_id: PackId,
    /// Env-relative path to the extracted `.gtpack` artifact on disk.
    pub path: PathBuf,
    /// Content digest of the artifact at `path`, `sha256:<hex>` (lowercase hex).
    pub digest: String,
}

/// The `pack-list.lock` document for a single revision.
#[derive(Clone, Debug, PartialEq, Eq, Serialize, Deserialize)]
pub struct PackListLock {
    pub schema: SchemaVersion,
    /// The revision this lock pins — binds the file to its owner so a misplaced
    /// or cross-revision lock is detectable by the reader.
    pub revision_id: RevisionId,
    pub packs: Vec<LockedPack>,
}

impl PackListLock {
    pub fn schema_str() -> &'static str {
        SchemaVersion::PACK_LIST_LOCK_V1
    }
}