nexo-ext-installer 0.1.2

Phase 31.1 — fetch + resolve + download + sha256-verify nexo plugin tarballs against the ext-registry index. Building block for `nexo plugin install <id>` (CLI integration in 31.1.c).
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82

//! Error variants returned by the installer.

/// Errors surfaced by [`crate::resolve_release`],
/// [`crate::download_and_verify`], and the
/// [`crate::install_plugin`] one-shot.
#[derive(Debug, thiserror::Error)]
pub enum InstallError {
    /// `<owner>/<repo>[@<tag>]` coords malformed.
    #[error("plugin coords `{got}` invalid: {reason}")]
    CoordsInvalid {
        /// The offending coords string.
        got: String,
        /// Why parsing failed.
        reason: &'static str,
    },

    /// HTTP request failed (network, non-2xx, decode).
    #[error("install http error: {0}")]
    Http(String),

    /// IO write to the destination tarball path failed.
    #[error("install io error: {0}")]
    Io(String),

    /// GitHub release JSON didn't match our convention (missing
    /// `nexo-plugin.toml` asset, malformed manifest, tag isn't
    /// semver-shaped).
    #[error("release `{owner}/{repo}` shape error: {reason}")]
    ReleaseShape {
        /// Repo owner.
        owner: String,
        /// Repo name.
        reason: String,
        /// Reason the release didn't fit the convention.
        repo: String,
    },

    /// Release found, but no tarball asset matched the
    /// requested target. Listing the available targets so the
    /// operator can pick one or override `NEXO_INSTALL_TARGET`.
    #[error(
        "release for `{id}@{version}` has no tarball for target `{target}`. \
         Available: {available:?}"
    )]
    TargetNotFound {
        /// Plugin id (from the release's manifest asset).
        id: String,
        /// Resolved version (semver).
        version: semver::Version,
        /// Target triple the daemon requested.
        target: String,
        /// Tarball asset names actually present in the release.
        available: Vec<String>,
    },

    /// `.sha256` asset's body wasn't 64 lowercase hex chars.
    #[error(
        "release for `{id}` `.sha256` asset body `{got}` invalid: must be \
         exactly 64 hex chars"
    )]
    Sha256Invalid {
        /// Plugin id.
        id: String,
        /// Body read from the .sha256 asset.
        got: String,
    },

    /// Computed sha256 of the downloaded tarball doesn't match
    /// the value advertised in the `.sha256` asset.
    #[error(
        "sha256 mismatch for `{id}`: expected `{expected}`, got `{got}`. \
         Tarball was tampered or the .sha256 asset is stale."
    )]
    Sha256Mismatch {
        /// Plugin id.
        id: String,
        /// SHA256 hex from the .sha256 asset.
        expected: String,
        /// SHA256 hex computed from the downloaded bytes.
        got: String,
    },
}