lanzaboote/rust/lanzatool/src/generation.rs

use serde::de::IntoDeserializer;
use serde::{Deserialize, Serialize};

use std::fmt;
use std::fs;
use std::path::{Path, PathBuf};

use anyhow::{anyhow, Context, Result};
use bootspec::generation::Generation as BootspecGeneration;
use bootspec::BootJson;
use bootspec::SpecialisationName;

#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct SecureBootExtension {
    #[serde(rename = "osRelease")]
    pub os_release: PathBuf,
}

#[derive(Debug, Clone)]
pub struct ExtendedBootJson {
    pub bootspec: BootJson,
    pub extensions: SecureBootExtension,
}

#[derive(Debug)]
pub struct Generation {
    /// Profile symlink index
    version: u64,
    /// Top-level specialisation name
    specialisation_name: Option<SpecialisationName>,
    /// Top-level extended boot specification
    pub spec: ExtendedBootJson,
}

impl Generation {
    fn extract_extensions(bootspec: &BootJson) -> Result<SecureBootExtension> {
        Ok(Deserialize::deserialize(
            bootspec.extensions.get("lanzaboote")
            .context("Failed to extract Lanzaboote-specific extension from Bootspec, missing lanzaboote field in `extensions`")?
            .clone()
            .into_deserializer()
        )?)
    }

    pub fn from_toplevel(toplevel: impl AsRef<Path>) -> Result<Self> {
        let bootspec_path = toplevel.as_ref().join("boot.json");
        let generation: BootspecGeneration = serde_json::from_slice(
            &fs::read(bootspec_path).context("Failed to read bootspec file")?,
        )
        .context("Failed to parse bootspec json")?;

        let bootspec: BootJson = generation
            .try_into()
            .map_err(|err: &'static str| anyhow!(err))?;

        let extensions = Self::extract_extensions(&bootspec)?;

        Ok(Self {
            version: parse_version(toplevel)?,
            specialisation_name: None,
            spec: ExtendedBootJson {
                bootspec,
                extensions,
            },
        })
    }

    pub fn specialise(&self, name: &SpecialisationName, bootspec: &BootJson) -> Result<Self> {
        Ok(Self {
            version: self.version,
            specialisation_name: Some(name.clone()),
            spec: ExtendedBootJson {
                bootspec: bootspec.clone(),
                extensions: Self::extract_extensions(bootspec)?,
            },
        })
    }

    pub fn is_specialized(&self) -> Option<SpecialisationName> {
        self.specialisation_name.clone()
    }
}

impl fmt::Display for Generation {
    fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
        write!(f, "{}", self.version)
    }
}

/// Parse version number from a path.
///
/// Expects a path in the format of "system-{version}-link".
fn parse_version(path: impl AsRef<Path>) -> Result<u64> {
    let generation_version = path
        .as_ref()
        .file_name()
        .and_then(|x| x.to_str())
        .and_then(|x| x.split('-').nth(1))
        .and_then(|x| x.parse::<u64>().ok())
        .with_context(|| format!("Failed to extract version from: {:?}", path.as_ref()))?;

    Ok(generation_version)
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn parse_version_correctly() {
        let path = Path::new("system-2-link");
        let parsed_version = parse_version(path).unwrap();
        assert_eq!(parsed_version, 2,);
    }
}
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`use serde::de::IntoDeserializer;`
lanzatool(bootspec): introduce DetSys's bootspec library 2022-12-17 17:55:38 -05:00			`use serde::{Deserialize, Serialize};`

lanzatool: make it more typedriven 2022-11-26 08:55:15 -05:00			`use std::fmt;`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00			`use std::fs;`
lanzatool(bootspec): introduce DetSys's bootspec library 2022-12-17 17:55:38 -05:00			`use std::path::{Path, PathBuf};`
lanzatool: make it more typedriven 2022-11-26 08:55:15 -05:00
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`use anyhow::{anyhow, Context, Result};`
			`use bootspec::generation::Generation as BootspecGeneration;`
lanzatool(bootspec): introduce DetSys's bootspec library 2022-12-17 17:55:38 -05:00			`use bootspec::BootJson;`
			`use bootspec::SpecialisationName;`

nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`#[derive(Debug, Clone, Serialize, Deserialize)]`
lanzatool(bootspec): introduce DetSys's bootspec library 2022-12-17 17:55:38 -05:00			`pub struct SecureBootExtension {`
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`#[serde(rename = "osRelease")]`
			`pub os_release: PathBuf,`
lanzatool(bootspec): introduce DetSys's bootspec library 2022-12-17 17:55:38 -05:00			`}`
lanzatool: make it more typedriven 2022-11-26 08:55:15 -05:00
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`#[derive(Debug, Clone)]`
			`pub struct ExtendedBootJson {`
			`pub bootspec: BootJson,`
			`pub extensions: SecureBootExtension,`
			`}`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00
lanzatool: make it more typedriven 2022-11-26 08:55:15 -05:00			`#[derive(Debug)]`
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`pub struct Generation {`
			`/// Profile symlink index`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00			`version: u64,`
lanzatool(bootspec): introduce DetSys's bootspec library 2022-12-17 17:55:38 -05:00			`/// Top-level specialisation name`
			`specialisation_name: Option<SpecialisationName>,`
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`/// Top-level extended boot specification`
			`pub spec: ExtendedBootJson,`
lanzatool(bootspec): introduce DetSys's bootspec library 2022-12-17 17:55:38 -05:00			`}`

nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`impl Generation {`
			`fn extract_extensions(bootspec: &BootJson) -> Result<SecureBootExtension> {`
			`Ok(Deserialize::deserialize(`
			`bootspec.extensions.get("lanzaboote")`
			.context("Failed to extract Lanzaboote-specific extension from Bootspec, missing lanzaboote field in `extensions`")?
			`.clone()`
			`.into_deserializer()`
			`)?)`
			`}`
lanzatool: make it more typedriven 2022-11-26 08:55:15 -05:00
			`pub fn from_toplevel(toplevel: impl AsRef<Path>) -> Result<Self> {`
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`let bootspec_path = toplevel.as_ref().join("boot.json");`
			`let generation: BootspecGeneration = serde_json::from_slice(`
lanzatool: appease clippy 2022-11-26 17:19:08 -05:00			`&fs::read(bootspec_path).context("Failed to read bootspec file")?,`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00			`)`
			`.context("Failed to parse bootspec json")?;`

nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`let bootspec: BootJson = generation`
			`.try_into()`
			`.map_err(\|err: &'static str\| anyhow!(err))?;`

			`let extensions = Self::extract_extensions(&bootspec)?;`

lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00			`Ok(Self {`
			`version: parse_version(toplevel)?,`
lanzatool: enable specialisation 2022-11-27 05:19:02 -05:00			`specialisation_name: None,`
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`spec: ExtendedBootJson {`
			`bootspec,`
			`extensions,`
			`},`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00			`})`
lanzatool: make it more typedriven 2022-11-26 08:55:15 -05:00			`}`
lanzatool: enable specialisation 2022-11-27 05:19:02 -05:00
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`pub fn specialise(&self, name: &SpecialisationName, bootspec: &BootJson) -> Result<Self> {`
			`Ok(Self {`
lanzatool: enable specialisation 2022-11-27 05:19:02 -05:00			`version: self.version,`
lanzatool(bootspec): introduce DetSys's bootspec library 2022-12-17 17:55:38 -05:00			`specialisation_name: Some(name.clone()),`
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`spec: ExtendedBootJson {`
			`bootspec: bootspec.clone(),`
lanzatool: appease clippy by removing borrow 2022-12-22 19:04:07 -05:00			`extensions: Self::extract_extensions(bootspec)?,`
nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`},`
			`})`
lanzatool: enable specialisation 2022-11-27 05:19:02 -05:00			`}`

lanzatool(bootspec): introduce DetSys's bootspec library 2022-12-17 17:55:38 -05:00			`pub fn is_specialized(&self) -> Option<SpecialisationName> {`
lanzatool: enable specialisation 2022-11-27 05:19:02 -05:00			`self.specialisation_name.clone()`
			`}`
lanzatool: make it more typedriven 2022-11-26 08:55:15 -05:00			`}`

nixos/lanzaboote: use upstream bootspec for extension generation 2022-12-17 18:31:09 -05:00			`impl fmt::Display for Generation {`
lanzatool: make it more typedriven 2022-11-26 08:55:15 -05:00			`fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00			`write!(f, "{}", self.version)`
lanzatool: make it more typedriven 2022-11-26 08:55:15 -05:00			`}`
			`}`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00
lanzatool: clean up parse_version and add simple test 2022-12-30 16:23:52 -05:00			`/// Parse version number from a path.`
			`///`
			`/// Expects a path in the format of "system-{version}-link".`
			`fn parse_version(path: impl AsRef<Path>) -> Result<u64> {`
			`let generation_version = path`
lanzatool: appease clippy 2022-11-26 17:19:08 -05:00			`.as_ref()`
			`.file_name()`
lanzatool: clean up parse_version and add simple test 2022-12-30 16:23:52 -05:00			`.and_then(\|x\| x.to_str())`
			`.and_then(\|x\| x.split('-').nth(1))`
			`.and_then(\|x\| x.parse::<u64>().ok())`
			`.with_context(\|\| format!("Failed to extract version from: {:?}", path.as_ref()))?;`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00
lanzatool: clean up parse_version and add simple test 2022-12-30 16:23:52 -05:00			`Ok(generation_version)`
			`}`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00
lanzatool: clean up parse_version and add simple test 2022-12-30 16:23:52 -05:00			`#[cfg(test)]`
			`mod tests {`
			`use super::*;`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00
lanzatool: clean up parse_version and add simple test 2022-12-30 16:23:52 -05:00			`#[test]`
			`fn parse_version_correctly() {`
			`let path = Path::new("system-2-link");`
			`let parsed_version = parse_version(path).unwrap();`
			`assert_eq!(parsed_version, 2,);`
			`}`
lanzatool: bootspec from generation The bootspec is now read from each generation so that more than one entry can be generated when calling install 2022-11-26 16:23:00 -05:00			`}`