oxios-kernel 1.8.1

Oxios kernel: supervisor, event bus, state store
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72

//! StateStore-backed AuditPersistence for oxi-sdk's AuditTrail.
//!
//! Bridges the `oxi_sdk::observability::AuditPersistence` trait to oxios's
//! filesystem-based `StateStore`. The trail JSON is written to
//! `<base_path>/audit/trail.json`, matching the legacy layout used before
//! the SDK migration (RFC-014 Phase F).
//!
//! See: <https://github.com/a7garden/oxios/blob/main/docs/rfc-014/phase-f-audit-trail.md>

use anyhow::Result;
use oxi_sdk::observability::{AuditPersistence, TrailEntry};

use crate::state_store::StateStore;

impl AuditPersistence for StateStore {
    fn save(&self, entries: &[TrailEntry]) -> Result<()> {
        let path = self.audit_path();
        if let Some(parent) = path.parent() {
            std::fs::create_dir_all(parent)?;
        }
        let json = serde_json::to_string_pretty(entries)?;

        // Durable write: write to a unique temp file, fsync it, atomically
        // rename, then best-effort fsync the directory. Without the fsync
        // steps, a crash (OOM/SIGKILL/power loss) between the write and the
        // rename's metadata commit can leave trail.json truncated or empty,
        // losing the entire hash-chained audit trail. (state-area F3.)
        let temp_path = path
            .parent()
            .unwrap_or(std::path::Path::new("."))
            .join(format!(
                "trail.json.{}.{}.tmp",
                std::process::id(),
                uuid::Uuid::new_v4()
            ));
        {
            use std::io::Write;
            let mut file = std::fs::File::create(&temp_path)?;
            file.write_all(json.as_bytes())?;
            file.sync_all()?;
        }
        std::fs::rename(&temp_path, &path)?;
        if let Some(parent) = path.parent()
            && let Ok(dir) = std::fs::File::open(parent)
        {
            // Best-effort directory fsync so the rename is durable.
            // Ignore errors: not all platforms/fs support dir fsync,
            // and we've already done the file fsync + rename.
            let _ = dir.sync_all();
        }
        Ok(())
    }

    fn load(&self) -> Result<Vec<TrailEntry>> {
        let path = self.audit_path();
        if !path.exists() {
            return Ok(Vec::new());
        }
        let json = std::fs::read_to_string(&path)?;
        let entries: Vec<TrailEntry> = serde_json::from_str(&json)?;
        Ok(entries)
    }
}

impl StateStore {
    /// Path to the persisted audit trail file.
    ///
    /// Layout: `<base_path>/audit/trail.json`
    fn audit_path(&self) -> std::path::PathBuf {
        self.base_path.join("audit").join("trail.json")
    }
}