Crate koi_embedded 

Modules

testkit

Spin a real embedded Koi in a known posture for tests — no Docker (ADR-020 §13).

Structs

Builder

CertmeshHandle

DiagnosisCheck

One finding: a distinct state, a human-readable cause, and an exact remedy (ADR-020 §13 — miette-style actionable help; the remedy must be runnable, and runnable remotely).

DnsConfigBuilder

DnsEntry

DNS static entry stored in the local state file.

DnsHandle

FirewallPort

Firewall port metadata reported by capability modules.

HealthCheck

Persisted health checks configuration.

HealthHandle

HealthSnapshot

Snapshot returned by health status queries.

KoiConfig

KoiEmbedded

KoiHandle

MdnsHandle

Opened

The result of open (ADR-020 §4): the recovered bytes plus the trust state they arrived with. open returns this only when the inner envelope was intact — a rejected (tampered / unknown-signer / expired / revoked) message never yields bytes (misuse-resistance, ADR-020 §13). Read a trusted identity via assurance.identity().

Peer

A discovered peer enriched with its advertised trust state (ADR-020 §8).

PeerClient

A ready-to-use client to one peer, with the transport already resolved from the peer’s posture (ADR-020 §6).

Posture

A node’s (or a discovered peer’s) trust posture: two orthogonal cryptographic dimensions.

ProxyEntry

ProxyHandle

RegisterPayload

Payload for registering a new service.

RegistrationResult

Result of a successful registration.

RuntimeConfig

Configuration for the runtime adapter.

Sealed

A versioned confidentiality envelope (ADR-020 §4).

ServiceRecord

A service instance as seen on the network. Used in browse results, resolve results, register confirmations, and event payloads. This is THE service representation across all domains.

TrustDiagnosis

The trust-doctor’s report (ADR-020 §13).

Vault

Encrypted key-value vault with platform-adaptive master key protection.

Enums

CheckStatus

The status of a single diagnosis check.

Confidentiality

Type-level confidentiality of a Sealed message (ADR-020 §4).

DiagnosisStatus

The overall rollup of a TrustDiagnosis.

FirewallProtocol

KoiError

KoiEvent

MdnsEvent

Events emitted by the mDNS domain. Subscribers react to service discovery lifecycle changes.

PostureLevel

The named trust level derived from a Posture (ADR-020 §1).

RuntimeBackendKind

Selectable runtime backend kinds.

ServiceCheckKind

Supported health service-check kinds (wire contract). Lives in the kernel so a client can request a check without depending on the koi-health engine; koi-health re-exports it.

ServiceMode

VaultError

Constants

DEFAULT_DISCOVER_WINDOW

Default discovery window (ADR-020 §8): long enough for mDNS resolution on a quiet LAN, short enough to stay responsive — a sane default so the common discover(type) call needs no tuning.

Functions

serve_adaptive

Run a posture-adaptive listener on addr until cancel fires (ADR-020 §5).

Type Aliases

Result