144 lines
4.2 KiB
Rust
144 lines
4.2 KiB
Rust
/*
|
|
*
|
|
* Copyright (c) 2020-2022 Project CHIP Authors
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
|
|
use crate::{error::Error, transport::session::SessionMode};
|
|
use log::error;
|
|
use std::sync::RwLock;
|
|
|
|
#[derive(PartialEq)]
|
|
#[allow(dead_code)]
|
|
#[allow(clippy::enum_variant_names)]
|
|
enum NocState {
|
|
NocNotRecvd,
|
|
// This is the local fabric index
|
|
AddNocRecvd(u8),
|
|
UpdateNocRecvd(u8),
|
|
}
|
|
|
|
#[derive(PartialEq)]
|
|
pub struct ArmedCtx {
|
|
session_mode: SessionMode,
|
|
timeout: u8,
|
|
noc_state: NocState,
|
|
}
|
|
|
|
#[derive(PartialEq)]
|
|
pub enum State {
|
|
Idle,
|
|
Armed(ArmedCtx),
|
|
}
|
|
|
|
pub struct FailSafeInner {
|
|
state: State,
|
|
}
|
|
|
|
pub struct FailSafe {
|
|
state: RwLock<FailSafeInner>,
|
|
}
|
|
|
|
impl FailSafe {
|
|
pub fn new() -> Self {
|
|
Self {
|
|
state: RwLock::new(FailSafeInner { state: State::Idle }),
|
|
}
|
|
}
|
|
|
|
pub fn arm(&self, timeout: u8, session_mode: SessionMode) -> Result<(), Error> {
|
|
let mut inner = self.state.write()?;
|
|
match &mut inner.state {
|
|
State::Idle => {
|
|
inner.state = State::Armed(ArmedCtx {
|
|
session_mode,
|
|
timeout,
|
|
noc_state: NocState::NocNotRecvd,
|
|
})
|
|
}
|
|
State::Armed(c) => {
|
|
if c.session_mode != session_mode {
|
|
return Err(Error::Invalid);
|
|
}
|
|
// re-arm
|
|
c.timeout = timeout;
|
|
}
|
|
}
|
|
Ok(())
|
|
}
|
|
|
|
pub fn disarm(&self, session_mode: SessionMode) -> Result<(), Error> {
|
|
let mut inner = self.state.write()?;
|
|
match &mut inner.state {
|
|
State::Idle => {
|
|
error!("Received Fail-Safe Disarm without it being armed");
|
|
return Err(Error::Invalid);
|
|
}
|
|
State::Armed(c) => {
|
|
match c.noc_state {
|
|
NocState::NocNotRecvd => return Err(Error::Invalid),
|
|
NocState::AddNocRecvd(idx) | NocState::UpdateNocRecvd(idx) => {
|
|
if let SessionMode::Case(c) = session_mode {
|
|
if c.fab_idx != idx {
|
|
error!(
|
|
"Received disarm in separate session from previous Add/Update NOC"
|
|
);
|
|
return Err(Error::Invalid);
|
|
}
|
|
} else {
|
|
error!("Received disarm in a non-CASE session");
|
|
return Err(Error::Invalid);
|
|
}
|
|
}
|
|
}
|
|
inner.state = State::Idle;
|
|
}
|
|
}
|
|
Ok(())
|
|
}
|
|
|
|
pub fn is_armed(&self) -> bool {
|
|
self.state.read().unwrap().state != State::Idle
|
|
}
|
|
|
|
pub fn record_add_noc(&self, fabric_index: u8) -> Result<(), Error> {
|
|
let mut inner = self.state.write()?;
|
|
match &mut inner.state {
|
|
State::Idle => Err(Error::Invalid),
|
|
State::Armed(c) => {
|
|
if c.noc_state == NocState::NocNotRecvd {
|
|
c.noc_state = NocState::AddNocRecvd(fabric_index);
|
|
Ok(())
|
|
} else {
|
|
Err(Error::Invalid)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
pub fn allow_noc_change(&self) -> Result<bool, Error> {
|
|
let mut inner = self.state.write()?;
|
|
let allow = match &mut inner.state {
|
|
State::Idle => false,
|
|
State::Armed(c) => c.noc_state == NocState::NocNotRecvd,
|
|
};
|
|
Ok(allow)
|
|
}
|
|
}
|
|
|
|
impl Default for FailSafe {
|
|
fn default() -> Self {
|
|
Self::new()
|
|
}
|
|
}
|