cot_publisher 2.0.0

Cursor On Target (COT) Publisher for multicast UDP or TCP for ATAK ecosystem
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231


# COT Publisher

A Rust library for publishing Cursor on Target (COT) messages to multicast networks and TAK Servers. 

This library provides both async and blocking interfaces for integrating COT functionality into Rust applications

## Features

The crate supports publishing COT messages through two transport mechanisms:

 * **Multicast Publishing** 
 * **TLS/mTLS Publishing** (TAK Server etc.)
 * Async and Blocking API's


## Installation

Add this to your `Cargo.toml`:

```toml
[dependencies]
cot_publisher = "2.0.0-rc2"
```

For blocking operations, enable the blocking feature:

```toml
[dependencies]
cot_publisher = { version = "2.0.0-rc2", features = ["blocking"] }
```

## Basic Usage

### Async Multicast Publishing

```rust
use cot_publisher::CotPublisher;

#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
    // Create publisher for standard TAK multicast address
    let publisher = CotPublisher::new_multicast("239.2.3.1".parse()?, 6969);
    
    // Create a COT message with unique identifier and type
    let mut cot = publisher.create_cot("my-device-001", "a-f-G-E-V-C")?;
    
    // Set position and contact information
    cot.set_position(51.5074, -0.1278); // London coordinates
    cot.set_contact(Some("CALLSIGN-1"), Some("192.168.1.100:8080"));
    
    // Publish the message
    cot.publish().await?;
    
    Ok(())
}
```

### Blocking Multicast Publishing

```rust
use cot_publisher::blocking::CotPublisher;

fn main() -> Result<(), Box<dyn std::error::Error>> {
    let publisher = CotPublisher::new_multicast("239.2.3.1".parse()?, 6969);
    let mut cot = publisher.create_cot("my-device-001", "a-f-G-E-V-C")?;
    
    cot.set_position(51.5074, -0.1278);
    cot.set_contact(Some("CALLSIGN-1"), None);
    
    cot.blocking_publish()?;
    
    Ok(())
}
```

### TAK Server Connection with TLS

```rust
use cot_publisher::{CotPublisher, Credentials, Source, TakServerSetting};
use url::Url;

#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
    // Load client certificates
    let credentials = Credentials::from_unencrypted_pem(
        Source::File("/path/to/client-cert.pem".to_string()),
        Source::File("/path/to/client-key.pem".to_string()),
        Some(Source::File("/path/to/ca-cert.pem".to_string())),
    )?;
    
    // Configure TLS settings
    let settings = TakServerSetting {
        tls: true,
        client_credentials: Some(credentials),
        ignore_invalid: false,
        verify_hostname: true,
        auto_reconnect: true,
    };
    
    // Connect to TAK Server
    let tak_server_url = Url::parse("https://takserver.example.com:8089")?;
    let mut publisher = CotPublisher::new_takserver(tak_server_url, settings);
    
    // Wait for connection establishment
    tokio::time::sleep(tokio::time::Duration::from_millis(500)).await;
    
    // Create and publish COT message
    let mut cot = publisher.create_cot("takserver-client-001", "a-f-G-E-V-C")?;
    cot.set_position(40.7128, -74.0060); // New York coordinates
    cot.set_contact(Some("NYC-BASE"), None);
    
    cot.publish().await?;
    
    Ok(())
}
```

## COT Message Types

The COT type field follows the standard COT taxonomy. Common types include:

- `a-f-G-E-V-C`: Ground friendly unit, equipment, vehicle, combat
- `a-f-G-E-V-M`: Ground friendly unit, equipment, vehicle, medical  
- `a-f-G-I`: Ground friendly unit, installations
- `a-h-G`: Ground hostile unit
- `a-n-G`: Ground neutral unit
- `a-u-G`: Ground unknown unit

## Extended Position Information

```rust
// Set position with altitude and accuracy information
cot.set_position_extended(
    51.5074,    // latitude
    -0.1278,    // longitude  
    100.0,      // altitude (HAE - Height Above Ellipsoid)
    10.0,       // circular error (CE)
    15.0        // linear error (LE)
);

// Add precision location source information
cot.set_precision_location(Some("GPS"), Some("GPS"));
```

## Custom XML Details

COT messages support custom XML detail sections for application-specific data:

```rust
cot.set_xml_detail(Some(r#"
<custom>
    <sensor type="thermal" status="active"/>
    <battery level="85" voltage="12.4"/>
</custom>
"#));
```

## Certificate Management for TAK Server

When connecting to TAK Server, you need client certificates. TAK Server typically generates certificates protected with the password "atakatak". 

It is possible to provide the password as part of the connection `Credential` or remove password protection using:

```bash
openssl rsa -in client.key -out client-nopass.key
```

Certificates can be loaded from files or embedded as strings in your application:

```rust
// From files
let credentials = Credentials::from_unencrypted_pem(
    Source::File("client-cert.pem".to_string()),
    Source::File("client-key.pem".to_string()),
    Some(Source::File("/path/to/ca-cert.pem".to_string())),
)?;

// From strings (useful for embedded certificates)
let cert_pem = include_str!("../certs/client-cert.pem");
let key_pem = include_str!("../certs/client-key.pem");

let credentials = Credentials::from_unencrypted_pem(
    Source::String(cert_pem.to_string()),
    Source::String(key_pem.to_string()),
    Source::String(ca_cert.to_string()),
)?;
```

If the CA Certificate is not provided in the `ClientCredentials` then the system native certificates will be used.

## TAK Server Configuration

To accept COT messages, configure TAK Server with a streaming data feed (in many cases a mTLS connection is enabled by default):

1. Navigate to Configuration → Inputs and Data Feeds → Add Streaming Data Feed
2. Select "Secure Streaming TCP (TLS) CoT or Protobuf" as the protocol
3. Configure the desired port
4. Create client certificates using the TAK Server makeCert script

## Error Handling

Enable error logging by adding the `emit_errors` feature:

```toml
[dependencies]
cot_publisher = { version = "2.0.0-rc1", features = ["emit_errors"] }
```

When enabled logs are emitted via the `log` crate. 

## Examples

The repository includes several complete examples:

- `simple_multicast.rs`: Basic multicast publishing with position updates
- `blocking_multicast.rs`: Blocking interface demonstration  
- `takserver_connection.rs`: TAK Server connection with TLS certificates

Run examples with:

```bash
cargo run --example simple_multicast
cargo run --features blocking --example blocking_multicast
```

The takserver example requires certificate / key information to be added before it can be used.

## License

This project is licensed under the MIT License.