heddle-refs 0.3.1

An AI-native version control system
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72

// SPDX-License-Identifier: Apache-2.0
//! Abstract backend trait for reference storage.
//!
//! The local CLI uses `RefManager` (disk-based). The server uses `PgRefBackend`
//! (Postgres-backed). Both implement this trait so `Repository` can hold either.

use objects::{
    error::{HeddleError, Result},
    object::{ChangeId, ThreadName},
};

use super::{RefSummaryIndexInspection, RefUpdate, backend::CoreRefBackend};

/// Backend-agnostic interface for reading and writing repository references.
pub trait RefBackend: CoreRefBackend<Error = HeddleError> {
    fn get_remote_thread(&self, remote: &str, thread: &ThreadName) -> Result<Option<ChangeId>>;
    fn set_remote_thread(&self, remote: &str, thread: &ThreadName, state: &ChangeId) -> Result<()>;
    fn delete_remote_thread(&self, remote: &str, thread: &ThreadName) -> Result<Option<ChangeId>>;
    fn list_remotes(&self) -> Result<Vec<String>>;
    fn list_remote_threads(&self, remote: &str) -> Result<Vec<ThreadName>>;

    /// The write chokepoint (heddle#330 §2.2 r18): append the caller-supplied
    /// ref-carrying record batch (phase 4, opaque rmp-serde `OpRecord` bytes so
    /// `refs` names no `oplog` type) before publishing the atomic ref batch
    /// (phase 5), record-before-publish. The seam is **per backend**: the file
    /// backend (`RefManager`) earns atomicity by oplog-append-then-publish +
    /// per-read reconciliation; the Postgres backend would co-commit the record
    /// row and ref/head rows in one SQL transaction (native ACID).
    ///
    /// The default publishes **without** a record — backends with an injected
    /// committer override it. (`PgRefBackend`'s single-tx co-commit needs the
    /// server's shared-pool wiring, which is out of this tree; it keeps the
    /// default until that lands.)
    ///
    /// **Fail closed (heddle#354 r9, cid 3330304656).** A backend with no
    /// record committer MUST NOT publish the ref batch while silently dropping
    /// the records it was handed — committed data must never be lost. A
    /// record-free publish has nothing to lose and stays on the plain path; a
    /// publish carrying records is refused with an error so the caller learns
    /// the records would have vanished, rather than discovering it after the
    /// fact via a reconcile that folds an empty tail.
    fn commit_and_publish(
        &self,
        encoded_records: &[Vec<u8>],
        ref_updates: &[RefUpdate],
        scope: Option<&str>,
    ) -> Result<()> {
        let _ = scope;
        if !encoded_records.is_empty() {
            return Err(HeddleError::Config(format!(
                "commit_and_publish was handed {} record(s) on a backend with no record \
                 committer; refusing to publish and silently drop committed data",
                encoded_records.len()
            )));
        }
        self.update_refs(ref_updates)
    }

    fn inspect_ref_summary_index(&self) -> Result<RefSummaryIndexInspection> {
        Ok(RefSummaryIndexInspection::absent())
    }

    fn rebuild_ref_summary_index(&self) -> Result<RefSummaryIndexInspection> {
        Ok(RefSummaryIndexInspection::absent())
    }

    fn pack_refs(&self) -> Result<()> {
        Ok(())
    }

    fn cleanup_stale_temps(&self) {}
}