Skip to main content

PluginVerifier

kojacoord_plugin_system::integrity

Struct PluginVerifier 

Source 
pub struct PluginVerifier { /* private fields */ }
Expand description

Verifies plugin binaries against a configured set of trusted SHA-256 hashes.

Implementations§

Source§

impl PluginVerifier

Source

pub fn new() -> Self

Create a permissive verifier with no allowlist (loads with warnings).

Source

pub fn with_trusted_hashes<I, S>(hashes: I) -> Self
where I: IntoIterator<Item = S>, S: AsRef<str>,

Create a strict verifier seeded with trusted hex-encoded SHA-256 hashes. Verification is required, so unknown binaries are refused.

Source

pub fn set_require_verification(&mut self, require: bool)

Require verification: when true, a binary must be on the allowlist.

Source

pub fn add_trusted_hash(&mut self, hash: &str)

Add a single trusted hex-encoded SHA-256 hash.

Source

pub fn file_sha256(path: &Path) -> Result<String>

Compute the hex-encoded SHA-256 digest of a file.

Source

pub fn verify(&self, path: &Path) -> Result<()>

Verify a plugin binary’s integrity before it is loaded.

Returns Ok(()) if the binary is trusted (or verification is not required and no allowlist is configured), and an error otherwise.

Trait Implementations§

Source§

impl Clone for PluginVerifier

Source§

fn clone(&self) -> PluginVerifier

Returns a duplicate of the value. Read more
1.0.0 (const: unstable) · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for PluginVerifier

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl Default for PluginVerifier

Source§

fn default() -> PluginVerifier

Returns the “default value” for a type. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.