brainwires-hardware 0.8.0

Hardware I/O for the Brainwires Agent Framework — audio, GPIO, Bluetooth, and network
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64

//! GPIO-specific safety policies.

use std::collections::HashSet;

use super::config::GpioConfig;

/// Safety policy for GPIO access that enforces an explicit allow-list of (chip, line) pairs.
pub struct GpioSafetyPolicy {
    allowed_pins: HashSet<(u32, u32)>,
}

impl GpioSafetyPolicy {
    /// Create from configuration.
    pub fn from_config(config: &GpioConfig) -> Self {
        Self {
            allowed_pins: config.allowed_pins.iter().cloned().collect(),
        }
    }

    /// Check if access to a pin is allowed.
    pub fn check(
        &self,
        chip: u32,
        line: u32,
        _direction: &str,
        _agent_id: &str,
    ) -> Result<(), String> {
        if self.allowed_pins.is_empty() {
            return Err("No GPIO pins are configured in the allow-list. \
                 Add pins to GpioConfig.allowed_pins to enable access."
                .to_string());
        }

        if !self.allowed_pins.contains(&(chip, line)) {
            return Err(format!(
                "GPIO pin chip{chip}/line{line} is not in the allow-list"
            ));
        }

        Ok(())
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn empty_allow_list_rejects_all() {
        let policy = GpioSafetyPolicy::from_config(&GpioConfig::default());
        assert!(policy.check(0, 17, "output", "agent-1").is_err());
    }

    #[test]
    fn allowed_pin_passes() {
        let config = GpioConfig {
            allowed_pins: vec![(0, 17)],
            ..Default::default()
        };
        let policy = GpioSafetyPolicy::from_config(&config);
        assert!(policy.check(0, 17, "output", "agent-1").is_ok());
        assert!(policy.check(0, 18, "output", "agent-1").is_err());
    }
}