Expand description
Rollout manifest fetch + verify + disk cache. Disk-cache hit re-verifies
the bytes (defense in depth); miss fetches from CP, verifies, writes
through. Per RFC-0005 §4.1, the dispatch path also asserts the manifest’s
declared target_closure for this host matches the dispatched value
before the reducer ever sees the event.
Structs§
Enums§
Constants§
- DEFAULT_
FRESHNESS_ WINDOW_ SECS - Production freshness window for signed-artifact verification. Matches CP’s channel-refs poll cadence (RFC-0010 §1.5).
- DEFAULT_
TRUST_ PATH - RFC-0010 §1.5 convention: agent reads trust roots from a hardcoded
path, not a CLI flag. Same shape as
/etc/nixfleet/agent/health-checks.json.
Functions§
- fetch 🔒