bairelay-wake-server 1.1.2

Local replacement for Reolink's P2P cloud servers; wakes battery cameras over the LAN.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144

//! Middleman UDP loop on port 9999 (default). Handles `C2M_Q` (clients)
//! and `D2M_Q` (cameras) queries and replies pointing the peer at our
//! register listener. No state — the loop owns nothing beyond its socket.

use std::net::{IpAddr, SocketAddr};
use std::sync::Arc;

use bairelay_neolink_core::bcudp::xml::{EmptyTag, IpPort, M2cQr, M2dQr, UdpXml};
use tokio::net::UdpSocket;
use tokio_util::sync::CancellationToken;
use tracing::{debug, warn};

use crate::packet::{decode_discovery, encode_discovery};
use crate::registry::SessionAnchors;
use crate::route::advertise_ip;
use crate::WakeServerError;

pub(crate) async fn run(
	sock: Arc<UdpSocket>,
	register_addr: SocketAddr,
	bind: IpAddr,
	anchors: Arc<SessionAnchors>,
	cancel: CancellationToken,
) -> Result<(), WakeServerError> {
	let local = sock.local_addr().ok();
	tracing::info!(?local, register = %register_addr, %bind, "wake-server middleman listening");
	let mut buf = vec![0u8; 4096];
	loop {
		tokio::select! {
			_ = cancel.cancelled() => {
				tracing::info!("wake-server middleman cancelled");
				return Ok(());
			}
			res = sock.recv_from(&mut buf) => {
				let (n, src) = match res {
					Ok(p) => p,
					Err(e) => { warn!(error = %e, "middleman recv_from"); continue; }
				};
				handle(&sock, register_addr, bind, &anchors, src, &buf[..n]).await;
			}
		}
	}
}

async fn handle(
	sock: &UdpSocket,
	register_addr: SocketAddr,
	bind: IpAddr,
	anchors: &SessionAnchors,
	src: SocketAddr,
	raw: &[u8],
) {
	let (tid, payload) = match decode_discovery(raw) {
		Ok(v) => v,
		Err(e) => {
			debug!(%src, error = %e, "middleman: bad packet");
			return;
		}
	};
	// Resolve which local IP we should advertise to this peer. When
	// `bind` is `0.0.0.0` we ask the kernel which interface IP it would
	// use to reach `src`; advertising the wildcard makes Argus firmware
	// silently reject the reply.
	let advertise = advertise_ip(bind, src).to_string();
	let reg_port = register_addr.port();
	match payload {
		UdpXml::C2mQ(q) => {
			debug!(%src, uid = %q.uid, advertise = %advertise, "C2M_Q");
			let reply = UdpXml::M2cQr(M2cQr {
				reg: Some(IpPort {
					ip: advertise.clone(),
					port: reg_port,
				}),
				relay: Some(IpPort {
					ip: advertise.clone(),
					port: reg_port,
				}),
				log: Some(IpPort {
					ip: advertise.clone(),
					port: reg_port,
				}),
				t: Some(IpPort {
					ip: advertise,
					port: reg_port,
				}),
			});
			match encode_discovery(tid, reply) {
				Ok(bytes) => {
					if let Err(e) = sock.send_to(&bytes, src).await {
						warn!(%src, error = %e, "middleman: send M2C_Q_R");
					} else {
						debug!(%src, "middleman -> M2C_Q_R");
					}
				}
				Err(e) => warn!(%src, error = %e, "middleman: encode M2C_Q_R"),
			}
		}
		UdpXml::D2mQ(q) => {
			debug!(%src, uid = %q.uid, revision = ?q.revision, advertise = %advertise, "D2M_Q");
			// Verified shape from a real Reolink cloud capture (			// live-verify): reg + log addresses, empty `<timer/>` and
			// `<retry/>` markers, rsp/token/ac. Token + ac are
			// session-bound; the cloud generates fresh values per query,
			// so we do too. Stash the pair under the camera UID so the
			// register loop can echo `ac` back in the matching
			// `R2D_R_R` (cameras anchor to that value).
			let token = rand::random::<u64>();
			let ac = rand::random::<u32>();
			if !anchors.issue(&q.uid, token, ac, std::time::Instant::now()) {
				warn!(
					%src, uid = %q.uid,
					cap = crate::registry::MAX_MAP_ENTRIES,
					"session-anchor map at capacity; rejecting D2M_Q"
				);
				return;
			}
			let reply = UdpXml::M2dQr(M2dQr {
				reg: IpPort {
					ip: advertise.clone(),
					port: reg_port,
				},
				log: IpPort {
					ip: advertise,
					port: reg_port,
				},
				timer: EmptyTag::default(),
				retry: EmptyTag::default(),
				rsp: 0,
				token,
				ac,
			});
			match encode_discovery(tid, reply) {
				Ok(bytes) => {
					if let Err(e) = sock.send_to(&bytes, src).await {
						warn!(%src, error = %e, "middleman: send M2D_Q_R");
					} else {
						debug!(%src, "middleman -> M2D_Q_R");
					}
				}
				Err(e) => warn!(%src, error = %e, "middleman: encode M2D_Q_R"),
			}
		}
		other => debug!(%src, ?other, "middleman: unexpected payload"),
	}
}