FilesExpand file tree

 main

/

snapshot.go

Copy path

Blame

More file actions

Blame

More file actions

Latest commit

 

History

History

History

284 lines (236 loc) · 8.17 KB

 main

/

snapshot.go

Top

File metadata and controls

• Code
• Blame

284 lines (236 loc) · 8.17 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

284

package rigging

import (

"crypto/rand"

"encoding/hex"

"encoding/json"

"errors"

"os"

"path/filepath"

"reflect"

"strings"

"time"

)

// MaxSnapshotSize is the maximum allowed snapshot size (100MB).

const MaxSnapshotSize = 100 * 1024 * 1024

// SnapshotVersion is the current snapshot format version.

const SnapshotVersion = "1.0"

// Snapshot errors.

var (

// ErrSnapshotTooLarge is returned when a snapshot exceeds MaxSnapshotSize.

ErrSnapshotTooLarge = errors.New("rigging: snapshot exceeds 100MB size limit")

// ErrNilConfig is returned when CreateSnapshot receives a nil config.

ErrNilConfig = errors.New("rigging: config is nil")

// ErrUnsupportedVersion is returned when reading a snapshot with unknown version.

ErrUnsupportedVersion = errors.New("rigging: unsupported snapshot version")

)

// supportedVersions lists snapshot format versions that can be read.

var supportedVersions = map[string]bool{

"1.0": true,

}

// ConfigSnapshot represents a point-in-time configuration capture.

type ConfigSnapshot struct {

// Version is the snapshot format version (currently "1.0")

Version string `json:"version"`

// Timestamp is when the snapshot was created

Timestamp time.Time `json:"timestamp"`

// Config contains flattened configuration values with secrets redacted.

// Keys are dot-notation paths (e.g., "database.host").

Config map[string]any `json:"config"`

// Provenance tracks the source of each configuration field.

Provenance []FieldProvenance `json:"provenance"`

}

// SnapshotOption configures snapshot creation behavior.

type SnapshotOption func(*snapshotConfig)

// snapshotConfig holds internal configuration for snapshot creation.

type snapshotConfig struct {

excludeFields []string // Field paths to exclude

}

// WithExcludeFields excludes specified field paths from the snapshot.

// Paths use dot notation (e.g., "database.password", "cache.redis.url").

func WithExcludeFields(paths ...string) SnapshotOption {

return func(cfg *snapshotConfig) {

cfg.excludeFields = append(cfg.excludeFields, paths...)

}

}

// CreateSnapshot captures the current configuration state.

// Returns a snapshot with flattened config, provenance, and metadata.

// Secrets are automatically redacted using existing provenance data.

// The snapshot's Timestamp is captured at creation time.

func CreateSnapshot[T any](cfg *T, opts ...SnapshotOption) (*ConfigSnapshot, error) {

if cfg == nil {

return nil, ErrNilConfig

}

// Apply options

snapCfg := &snapshotConfig{}

for _, opt := range opts {

opt(snapCfg)

}

// Capture timestamp at creation time

timestamp := time.Now().UTC()

// Get provenance data

var provFields []FieldProvenance

if prov, ok := GetProvenance(cfg); ok && prov != nil {

provFields = prov.Fields

}

// Flatten config (handles secret redaction internally)

flatConfig := flattenConfig(cfg)

// Apply field exclusions

flatConfig = applyExclusions(flatConfig, snapCfg.excludeFields)

return &ConfigSnapshot{

Version: SnapshotVersion,

Timestamp: timestamp,

Config: flatConfig,

Provenance: provFields,

}, nil

}

// flattenConfig walks a configuration struct and returns a flat map of key paths to values.

// It handles nested structs, Optional[T] types, and time.Time.

// Secret fields are redacted using provenance information.

func flattenConfig[T any](cfg *T) map[string]any {

if cfg == nil {

return make(map[string]any)

}

provenanceMap := buildProvenanceMap(cfg)

v, ok := getStructRootValue(cfg)

if !ok {

return make(map[string]any)

}

result := make(map[string]any)

walkFlatFields(v, "", "", provenanceMap, false, func(w walkedField) {

// Snapshots omit unset Optional[T] fields.

if w.optional && !w.set {

return

}

result[w.keyPath] = formatFlatValue(w.value, w.secret)

})

return result

}

// applyExclusions filters out excluded field paths from the config map.

// Matching is case-insensitive.

func applyExclusions(config map[string]any, exclude []string) map[string]any {

if len(exclude) == 0 {

return config

}

// Build a set of lowercase exclusion paths for case-insensitive matching

excludeSet := make(map[string]bool)

for _, path := range exclude {

excludeSet[strings.ToLower(path)] = true

}

result := make(map[string]any)

for key, value := range config {

if !excludeSet[strings.ToLower(key)] {

result[key] = value

}

}

return result

}

// ExpandPath expands template variables using current time.

// For consistency with snapshot metadata, prefer WriteSnapshot which

// uses the snapshot's internal timestamp for expansion.

func ExpandPath(template string) string {

return ExpandPathWithTime(template, time.Now())

}

// ExpandPathWithTime expands template variables using the provided timestamp.

// Replaces all {{timestamp}} occurrences with the time formatted as 20060102-150405.

// Returns the path unchanged if no template variables are present.

func ExpandPathWithTime(template string, t time.Time) string {

timestamp := t.UTC().Format("20060102-150405")

return strings.ReplaceAll(template, "{{timestamp}}", timestamp)

}

// WriteSnapshot persists a snapshot to disk with atomic write semantics.

// Supports {{timestamp}} template variable in path - uses snapshot.Timestamp

// (not current time) to ensure filename matches internal metadata.

// Returns ErrSnapshotTooLarge if serialized size exceeds 100MB.

func WriteSnapshot(snapshot *ConfigSnapshot, pathTemplate string) error {

if snapshot == nil {

return ErrNilConfig

}

// Expand path template using snapshot's timestamp for consistency

targetPath := ExpandPathWithTime(pathTemplate, snapshot.Timestamp)

// Marshal snapshot to indented JSON

data, err := json.MarshalIndent(snapshot, "", " ")

if err != nil {

return err

}

// Check size against MaxSnapshotSize

if len(data) > MaxSnapshotSize {

return ErrSnapshotTooLarge

}

// Create parent directories with 0700 permissions

dir := filepath.Dir(targetPath)

if dir != "" && dir != "." {

if mkdirErr := os.MkdirAll(dir, 0700); mkdirErr != nil {

return mkdirErr

}

}

// Generate temp file name in same directory for atomic rename

tempPath, err := generateTempFileName(targetPath)

if err != nil {

return err

}

// Ensure temp file is cleaned up on any error

var tempFileCreated bool

defer func() {

if tempFileCreated {

_ = os.Remove(tempPath)

}

}()

// Write to temp file

if err := os.WriteFile(tempPath, data, 0600); err != nil {

return err

}

tempFileCreated = true

// Set file permissions explicitly (WriteFile should set them, but be explicit)

if err := os.Chmod(tempPath, 0600); err != nil {

return err

}

// Atomic rename temp file to target path

if err := os.Rename(tempPath, targetPath); err != nil {

return err

}

// Rename succeeded, don't clean up temp file (it's now the target)

tempFileCreated = false

return nil

}

// ReadSnapshot loads a snapshot from disk.

// Returns ErrUnsupportedVersion if snapshot version is not supported.

// Returns appropriate errors for missing file or invalid JSON.

func ReadSnapshot(path string) (*ConfigSnapshot, error) {

// Read file contents

data, err := os.ReadFile(path)

if err != nil {

return nil, err

}

// Unmarshal JSON to ConfigSnapshot

var snapshot ConfigSnapshot

if err := json.Unmarshal(data, &snapshot); err != nil {

return nil, err

}

// Validate version field is present

if snapshot.Version == "" {

return nil, ErrUnsupportedVersion

}

// Check version against supportedVersions map

if !supportedVersions[snapshot.Version] {

return nil, ErrUnsupportedVersion

}

return &snapshot, nil

}

// formatFlatValue formats a field value for the flattened config map.

// Secrets are redacted, other values are returned in their natural types.

func formatFlatValue(v reflect.Value, secret bool) any {

return formatStructuredValue(v, secret)

}

// generateTempFileName generates a unique temporary file name for atomic writes.

// The temp file is placed in the same directory as the target to ensure

// atomic rename works (same filesystem).

// Format: targetPath + ".tmp." + randomHex

func generateTempFileName(targetPath string) (string, error) {

// Generate 8 random bytes (16 hex chars)

randomBytes := make([]byte, 8)

if _, err := rand.Read(randomBytes); err != nil {

return "", err

}

suffix := hex.EncodeToString(randomBytes)

return targetPath + ".tmp." + suffix, nil

}