po-session 0.1.0

Session management, handshake state machine, and framing for Protocol Orzatty
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248

//! Connection state machine for PO sessions.

use crate::framer::Framer;
use crate::handshake::{self, HandshakeError};
use po_crypto::aead::SessionCipher;
use po_crypto::identity::{Identity, NodeId};
use po_transport::traits::AsyncFrameTransport;
use po_wire::{FrameHeader, FrameType};

/// The lifecycle state of a PO connection.
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum SessionState {
    /// Connection established at transport level, no handshake yet.
    New,
    /// Handshake in progress.
    Handshaking,
    /// Handshake complete, encrypted session active.
    Established,
    /// Graceful close initiated.
    Closing,
    /// Connection fully closed.
    Closed,
}

/// A fully managed PO session over any transport.
///
/// Handles the handshake, encryption, and frame IO.
pub struct Session {
    state: SessionState,
    framer: Framer,
    cipher: Option<SessionCipher>,
    identity: Identity,
    peer_node_id: Option<NodeId>,
    peer_pubkey: Option<[u8; 32]>,
}

impl Session {
    /// Create a new session with the given identity.
    pub fn new(identity: Identity) -> Self {
        Self {
            state: SessionState::New,
            framer: Framer::new(),
            cipher: None,
            identity,
            peer_node_id: None,
            peer_pubkey: None,
        }
    }

    /// Get the current session state.
    pub fn state(&self) -> SessionState {
        self.state
    }

    /// Get our own node ID.
    pub fn node_id(&self) -> &NodeId {
        self.identity.node_id()
    }

    /// Get the peer's node ID (available after handshake).
    pub fn peer_node_id(&self) -> Option<&NodeId> {
        self.peer_node_id.as_ref()
    }

    /// Perform the handshake as the initiator (client).
    pub async fn handshake_initiator(
        &mut self,
        transport: &mut dyn AsyncFrameTransport,
    ) -> Result<(), HandshakeError> {
        self.state = SessionState::Handshaking;

        let result =
            handshake::perform_handshake_initiator(&self.identity, transport, &mut self.framer)
                .await?;

        self.cipher = Some(result.cipher);
        self.peer_pubkey = Some(result.peer_pubkey);
        self.peer_node_id = Some(result.peer_node_id);
        self.state = SessionState::Established;

        Ok(())
    }

    /// Perform the handshake as the responder (server).
    pub async fn handshake_responder(
        &mut self,
        transport: &mut dyn AsyncFrameTransport,
    ) -> Result<(), HandshakeError> {
        self.state = SessionState::Handshaking;

        let result =
            handshake::perform_handshake_responder(&self.identity, transport, &mut self.framer)
                .await?;

        self.cipher = Some(result.cipher);
        self.peer_pubkey = Some(result.peer_pubkey);
        self.peer_node_id = Some(result.peer_node_id);
        self.state = SessionState::Established;

        Ok(())
    }

    /// Send encrypted application data.
    pub async fn send(
        &mut self,
        transport: &mut dyn AsyncFrameTransport,
        channel: u32,
        data: &[u8],
    ) -> Result<(), SessionError> {
        if self.state != SessionState::Established {
            return Err(SessionError::NotEstablished);
        }

        let cipher = self.cipher.as_mut().ok_or(SessionError::NoCipher)?;

        // Encode header bytes for AAD
        let header = FrameHeader::data(channel, 0).with_encrypted();
        let mut header_buf = [0u8; 32];
        let header_len = header
            .encode(&mut header_buf)
            .map_err(|e| SessionError::Wire(e.to_string()))?;
        let aad = &header_buf[..header_len];

        // Encrypt payload
        let encrypted = cipher
            .encrypt(data, aad)
            .map_err(|e| SessionError::Crypto(e.to_string()))?;

        // Update header with actual encrypted payload length
        let final_header = FrameHeader {
            payload_len: encrypted.len() as u64,
            ..header
        };

        self.framer
            .write_frame(transport, &final_header, &encrypted)
            .await
            .map_err(|e| SessionError::Framer(e.to_string()))?;

        Ok(())
    }

    /// Receive the next message. Returns `(channel_id, decrypted_data)`.
    ///
    /// Automatically handles control frames (Ping/Pong/Close).
    pub async fn recv(
        &mut self,
        transport: &mut dyn AsyncFrameTransport,
    ) -> Result<Option<(u32, Vec<u8>)>, SessionError> {
        loop {
            if self.state == SessionState::Closed {
                return Ok(None);
            }

            let (header, payload) = match self.framer.read_frame(transport).await {
                Ok(Some(frame)) => frame,
                Ok(None) => {
                    self.state = SessionState::Closed;
                    return Ok(None);
                }
                Err(e) => return Err(SessionError::Framer(e.to_string())),
            };

            // Handle control frames
            match header.frame_type {
                FrameType::Ping => {
                    let pong = FrameHeader::control(FrameType::Pong);
                    self.framer
                        .write_frame(transport, &pong, &[])
                        .await
                        .map_err(|e| SessionError::Framer(e.to_string()))?;
                    continue; // Don't return pings to the caller
                }
                FrameType::Pong => continue, // Absorb pongs
                FrameType::Close => {
                    self.state = SessionState::Closed;
                    return Ok(None);
                }
                FrameType::Data => {
                    // Decrypt if the frame is marked as encrypted
                    if header.flags.encrypted {
                        let cipher = self.cipher.as_ref().ok_or(SessionError::NoCipher)?;

                        // Reconstruct AAD from the header (same process as sender)
                        let aad_header = FrameHeader::data(header.channel_id, 0).with_encrypted();
                        let mut aad_buf = [0u8; 32];
                        let aad_len = aad_header
                            .encode(&mut aad_buf)
                            .map_err(|e| SessionError::Wire(e.to_string()))?;

                        let decrypted = cipher
                            .decrypt(&payload, &aad_buf[..aad_len])
                            .map_err(|e| SessionError::Crypto(e.to_string()))?;

                        return Ok(Some((header.channel_id, decrypted)));
                    } else {
                        return Ok(Some((header.channel_id, payload.to_vec())));
                    }
                }
                _ => continue, // Skip other frame types for now
            }
        }
    }

    /// Send a graceful close frame.
    pub async fn close(
        &mut self,
        transport: &mut dyn AsyncFrameTransport,
    ) -> Result<(), SessionError> {
        if self.state == SessionState::Closed {
            return Ok(());
        }

        self.state = SessionState::Closing;
        let header = FrameHeader::control(FrameType::Close);
        self.framer
            .write_frame(transport, &header, &[])
            .await
            .map_err(|e| SessionError::Framer(e.to_string()))?;
        self.state = SessionState::Closed;

        Ok(())
    }
}

/// Session-level errors.
#[derive(Debug)]
pub enum SessionError {
    NotEstablished,
    NoCipher,
    Wire(String),
    Crypto(String),
    Framer(String),
}

impl std::fmt::Display for SessionError {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        match self {
            Self::NotEstablished => write!(f, "session not established (handshake not complete)"),
            Self::NoCipher => write!(f, "no session cipher available"),
            Self::Wire(e) => write!(f, "wire error: {e}"),
            Self::Crypto(e) => write!(f, "crypto error: {e}"),
            Self::Framer(e) => write!(f, "framer error: {e}"),
        }
    }
}

impl std::error::Error for SessionError {}