Skip to main content

RevocationsList

mur_common::trust::revocations

Struct RevocationsList

pub struct RevocationsList {
    pub version: u32,
    pub this_update: DateTime<Utc>,
    pub next_update: DateTime<Utc>,
    pub expires_at: DateTime<Utc>,
    pub crl_number: u64,
    pub revoked: Vec<RevokedEntry>,
}

Expand description

The signed revocations list fetched from https://mur.run/revocations.json.

Modeled on TUF’s timestamp.json role. Outer DSSE envelope is stripped during fetch; this struct represents the payload.

Fields§

§version: u32§this_update: DateTime<Utc>§next_update: DateTime<Utc>§expires_at: DateTime<Utc>

After this timestamp Hub refuses to operate until the list is refreshed.

§crl_number: u64

Monotonically increasing counter. Hub rejects any list whose crl_number is ≤ the last accepted value (rollback / clock-rollback defence per spec §7.4.1).

§revoked: Vec<RevokedEntry>

Implementations§

impl RevocationsList

pub fn parse_and_validate( bytes: &[u8], known_crl: Option<u64>, ) -> Result<Self, MuragentError>

Parse from raw JSON bytes and validate monotonicity + expiry.

known_crl is the crl_number from the last accepted list (or None on first fetch — in which case any validly-signed list is accepted).

pub fn is_expired(&self) -> bool

Returns true if the list’s expires_at is in the past.

pub fn is_package_revoked(&self, manifest_hash: &str) -> bool

Returns true if the given manifest hash appears in the revoked list.

manifest_hash should be the sha256:<hex> string from the manifest.

pub fn is_author_revoked(&self, pubkey: &str) -> bool

Returns true if the given author pubkey is revoked.

pubkey should be the ed25519:<base64> string from the manifest.

pub fn load_cached(mur_home: &Path) -> Option<Self>

Load the locally-cached revocations list from <mur_home>/trust/revocations.json.

Returns None if no cache file exists or if the file cannot be parsed. Callers that only need the cached crl_number should unwrap and read list.crl_number.

pub fn save_cached(&self, mur_home: &Path) -> Result<(), MuragentError>

Atomically write the revocations list to the local cache.

Uses temp-file + rename for crash-safety (same pattern as TrustStore).

Trait Implementations§

impl Clone for RevocationsList

fn clone(&self) -> RevocationsList

Returns a duplicate of the value. Read more

1.0.0 (const: unstable) · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

impl Debug for RevocationsList

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

impl<'de> Deserialize<'de> for RevocationsList

fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more

impl Serialize for RevocationsList

fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
where S: Serializer,

Serialize this value into the given Serde serializer. Read more

Auto Trait Implementations§

impl Freeze for RevocationsList

impl RefUnwindSafe for RevocationsList

impl Send for RevocationsList

impl Sync for RevocationsList

impl Unpin for RevocationsList

impl UnsafeUnpin for RevocationsList

impl UnwindSafe for RevocationsList

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> CloneToUninit for T
where T: Clone,

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)

Performs copy-assignment from self to dest. Read more

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T> Instrument for T

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> Same for T

type Output = T

Should always be Self

impl<T> ToOwned for T
where T: Clone,

type Owned = T

The resulting type after obtaining ownership.

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

fn vzip(self) -> V

impl<T> WithSubscriber for T

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more

impl<ST, DT> CastableFrom<ST, Initialized, Initialized> for DT
where ST: ?Sized, DT: ?Sized,

impl<ST, DT> CastableFrom<ST, Uninit, Uninit> for DT
where ST: ?Sized, DT: ?Sized,

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,

impl<T> Read<Exclusive, BecauseExclusive> for T
where T: ?Sized,