alpine-protocol-rs 2.0.20

Authenticated Lighting Protocol (alpine): secure control-plane + streaming guard for lighting data.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100

use std::error::Error;
use std::net::SocketAddr;

use async_trait::async_trait;
use serde_cbor;
use tokio::net::UdpSocket;

use crate::crypto::X25519KeyExchange;
use crate::handshake::{HandshakeContext, HandshakeError, HandshakeMessage, HandshakeTransport};
use crate::messages::{CapabilitySet, DeviceIdentity};
use crate::session::{AlnpSession, StaticKeyAuthenticator};
use uuid::Uuid;

struct UdpHandshakeTransport {
    socket: UdpSocket,
    peer: SocketAddr,
    buf_size: usize,
}

impl UdpHandshakeTransport {
    fn new(socket: UdpSocket, peer: SocketAddr, buf_size: usize) -> Self {
        Self {
            socket,
            peer,
            buf_size,
        }
    }
}

#[async_trait]
impl HandshakeTransport for UdpHandshakeTransport {
    async fn send(&mut self, msg: HandshakeMessage) -> Result<(), HandshakeError> {
        let bytes = serde_cbor::to_vec(&msg)
            .map_err(|e| HandshakeError::Protocol(format!("encode: {}", e)))?;
        self.socket
            .send_to(&bytes, self.peer)
            .await
            .map_err(|e| HandshakeError::Transport(e.to_string()))?;
        Ok(())
    }

    async fn recv(&mut self) -> Result<HandshakeMessage, HandshakeError> {
        let mut buf = vec![0u8; self.buf_size];
        let (len, _) = self
            .socket
            .recv_from(&mut buf)
            .await
            .map_err(|e| HandshakeError::Transport(e.to_string()))?;
        serde_cbor::from_slice(&buf[..len])
            .map_err(|e| HandshakeError::Protocol(format!("decode: {}", e)))
    }
}

pub fn make_identity(prefix: &str) -> DeviceIdentity {
    DeviceIdentity {
        device_id: Uuid::new_v4().to_string(),
        manufacturer_id: format!("{prefix}-manu"),
        model_id: format!("{prefix}-model"),
        hardware_rev: "rev1".into(),
        firmware_rev: "1.0.11".into(),
    }
}

pub async fn run_udp_handshake() -> Result<(AlnpSession, AlnpSession), Box<dyn Error>> {
    let controller_socket = UdpSocket::bind(("127.0.0.1", 0)).await?;
    let node_socket = UdpSocket::bind(("127.0.0.1", 0)).await?;
    let controller_addr = controller_socket.local_addr()?;
    let node_addr = node_socket.local_addr()?;

    let controller_task = tokio::spawn(async move {
        let mut transport = UdpHandshakeTransport::new(controller_socket, node_addr, 4096);
        AlnpSession::connect(
            make_identity("controller"),
            CapabilitySet::default(),
            StaticKeyAuthenticator::default(),
            X25519KeyExchange::new(),
            HandshakeContext::default(),
            &mut transport,
        )
        .await
    });

    let node_task = tokio::spawn(async move {
        let mut transport = UdpHandshakeTransport::new(node_socket, controller_addr, 4096);
        AlnpSession::accept(
            make_identity("node"),
            CapabilitySet::default(),
            StaticKeyAuthenticator::default(),
            X25519KeyExchange::new(),
            HandshakeContext::default(),
            &mut transport,
        )
        .await
    });

    let (controller_res, node_res) = tokio::join!(controller_task, node_task);
    let controller_session = controller_res??;
    let node_session = node_res??;
    Ok((controller_session, node_session))
}