blob: 54ae9ba0f51a08dd173c1f4bb5615f39eb4b3055 [file] [log] [blame]
/*
* Copyright (c) 2024 Project CHIP Authors
* All rights reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#pragma once
#include <app/MessageDef/StatusIB.h>
#include <app/data-model/WrappedStructEncoder.h>
#include <lib/core/CHIPError.h>
namespace chip {
namespace app {
namespace InteractionModel {
/// Handles encoding of an invoke response for a specific invoke request.
///
/// This class handles a single request (i.e. a CommandDataIB within the
/// matter protocol) and is responsible for constructing its corresponding
/// response (i.e. a InvokeResponseIB within the matter protocol)
///
/// Invoke responses MUST contain exactly ONE of:
/// - response data (accessed via `ResponseEncoder`)
/// - A status, which may be success or failure, both of which may
/// contain a cluster-specific error code.
///
/// To encode a response, `Complete` MUST be called.
///
/// `Complete` requirements
/// - Complete with InteractionModel::Status::Success will respond with data
/// some response data was written.
/// - Any other case (including success with cluster specific codes) implies
/// no response data and a status will be encoded instead
/// - this includes the case when some response data was written already.
/// In that case, the response data will be rolled back and only the status
/// will be encoded.
///
/// Creating a response MAY be retried at most once, if and only if `Complete`
/// returns CHIP_ERROR_BUFFER_TOO_SMALL. Retry attempts MUST not exceed 1:
/// - FlushPendingResponses MUST be called to make as much buffer space as possible
/// available for encoding
/// - The response encoding (including `ResponseEncoder` usage and calling Complete)
/// MUST be retried once more. If the final Complete returns an error, the result
/// of the invoke will be an error status.
///
class InvokeResponder
{
public:
virtual ~InvokeResponder() = default;
// Copying not allowed since underlying requirement is that on deletion of this
// object, a reply will be sent.
InvokeResponder(const InvokeResponder &) = delete;
InvokeResponder & operator=(const InvokeResponder &) = delete;
/// Flush any pending replies before encoding the current reply.
///
/// MAY be called at most once.
///
/// This function is intended to provided the ability to retry sending a reply
/// if a reply encoding fails due to insufficient buffer.
///
/// Call this if `Complete(...)` returns CHIP_ERROR_BUFFER_TOO_SMALL and try
/// again. If reply data is needed, the complete ResponseEncoder + Complete
/// call chain MUST be re-run.
virtual CHIP_ERROR FlushPendingResponses() = 0;
/// Reply with a data payload.
///
/// MUST be called at most once per reply.
/// Can be called a 2nd time after a `FlushPendingResponses()` call
///
/// - responseCommandId must correspond with the data encoded in the returned encoder
/// - Complete(CHIP_NO_ERROR) MUST be called to flush the reply
///
/// If encoder returns CHIP_ERROR_BUFFER_TOO_SMALL, FlushPendingResponses should be
/// used to attempt to free up buffer space then encoding should be tried again.
virtual DataModel::WrappedStructEncoder & ResponseEncoder(CommandId responseCommandId) = 0;
/// Signal completing of the reply.
///
/// MUST be called exactly once to signal a response is to be recorded to be sent.
/// The error code (and the data encoded by ResponseEncoder) may be buffered for
/// sending among other batched responses.
///
/// If this returns CHIP_ERROR_BUFFER_TOO_SMALL, this can be called a 2nd time after
/// a FlushPendingResponses.
///
/// Argument behavior:
/// - Commands can only be replied with ONE of the following (spec 8.9.4.4):
/// - command data (i.e. ResponseEncoder contents)
/// - A status (including success/error/cluster-specific-success-or-error )
/// - As a result there are two possible paths:
/// - IF a Status::Success is given (WITHOUT cluster specific status), then
/// the data in ResponseEncoder is sent as a reply. If no data was sent,
/// a invoke `Status::Success` with no cluster specific data is sent
/// - OTHERWISE any previously encoded data via ResponseEncoder is discarded
/// and the given reply (success with cluster status or failure) is sent
/// as a reply to the invoke.
///
///
/// Returns success/failure state. One error code MUST be handled in particular:
///
/// - CHIP_ERROR_BUFFER_TOO_SMALL will return IF AND ONLY IF the responder was unable
/// to fully serialize the given reply/error data.
///
/// If such an error is returned, the caller MUST retry by calling FlushPendingResponses
/// first and then re-encoding the reply content (use ResponseEncoder if applicable and
/// call Complete again)
///
/// - Any other error (i.e. different from CHIP_NO_ERROR) mean that the invoke response
/// will contain an error and such an error is considered permanent.
///
virtual CHIP_ERROR Complete(StatusIB error) = 0;
};
/// Enforces that once acquired, Complete will be called on the underlying writer
class AutoCompleteInvokeResponder
{
public:
// non-copyable: once you have a handle, keep it
AutoCompleteInvokeResponder(const AutoCompleteInvokeResponder &) = delete;
AutoCompleteInvokeResponder & operator=(const AutoCompleteInvokeResponder &) = delete;
AutoCompleteInvokeResponder(InvokeResponder * writer) : mWriter(writer) {}
~AutoCompleteInvokeResponder()
{
if (mCompleteState != CompleteState::kComplete)
{
mWriter->Complete(Protocols::InteractionModel::Status::Failure);
}
}
/// Direct access to reply encoding.
///
/// Use this only in conjunction with the other Raw* calls
DataModel::WrappedStructEncoder & RawResponseEncoder(CommandId replyCommandId)
{
return mWriter->ResponseEncoder(replyCommandId);
}
/// Direct access to flushing replies
///
/// Use this only in conjunction with the other Raw* calls
CHIP_ERROR RawFlushPendingReplies()
{
// allow a flush if we never called it (this may not be reasonable, however
// we accept an early flush) or if flush is expected
VerifyOrReturnError((mCompleteState == CompleteState::kNeverCalled) || (mCompleteState == CompleteState::kFlushExpected),
CHIP_ERROR_INCORRECT_STATE);
mCompleteState = CompleteState::kFlushed;
return mWriter->FlushPendingResponses();
}
/// Call "Complete" without the automatic retries.
///
/// Use this in conjunction with the other Raw* calls
CHIP_ERROR RawComplete(StatusIB status)
{
VerifyOrReturnError((mCompleteState == CompleteState::kNeverCalled) || (mCompleteState == CompleteState::kFlushed),
CHIP_ERROR_INCORRECT_STATE);
CHIP_ERROR err = mWriter->Complete(status);
if ((err == CHIP_ERROR_BUFFER_TOO_SMALL) && (mCompleteState == CompleteState::kNeverCalled))
{
mCompleteState = CompleteState::kFlushExpected;
}
else
{
mCompleteState = CompleteState::kComplete;
}
return err;
}
/// Complete the given command.
///
/// Automatically handles retries for sending.
/// Cannot be called after Raw* methods are used.
///
/// Any error returned by this are final and not retriable
/// as a retry for CHIP_ERROR_BUFFER_TOO_SMALL is already built in.
CHIP_ERROR Complete(StatusIB status)
{
VerifyOrReturnError(mCompleteState == CompleteState::kNeverCalled, CHIP_ERROR_INCORRECT_STATE);
// this is a final complete, including retry handling
mCompleteState = CompleteState::kComplete;
CHIP_ERROR err = mWriter->Complete(status);
if (err != CHIP_ERROR_BUFFER_TOO_SMALL)
{
return err;
}
// retry once. Failure to flush is permanent.
ReturnErrorOnFailure(mWriter->FlushPendingResponses());
return mWriter->Complete(status);
}
/// Sends the specified data structure as a response
///
/// This version of the send has built-in RETRY and handles
/// Flush/Complete automatically.
/// Cannot be called after Raw* methods are used.
///
/// Any error returned by this are final and not retriable
/// as a retry for CHIP_ERROR_BUFFER_TOO_SMALL is already built in.
template <typename ReplyData>
CHIP_ERROR Send(const ReplyData & data)
{
VerifyOrReturnError(mCompleteState == CompleteState::kNeverCalled, CHIP_ERROR_INCORRECT_STATE);
// this is a final complete, including retry handling
mCompleteState = CompleteState::kComplete;
CHIP_ERROR err = data.Encode(ResponseEncoder(ReplyData::GetCommandId()));
if (err != CHIP_ERROR_BUFFER_TOO_SMALL)
{
LogErrorOnFailure(err);
err = mWriter->Complete(StatusIB(err));
}
if (err != CHIP_ERROR_BUFFER_TOO_SMALL)
{
return err;
}
// retry once. Failure to flush is permanent.
ReturnErrorOnFailure(mWriter->FlushPendingResponses());
err = data.Encode(ResponseEncoder(ReplyData::GetCommandId()));
// If encoding fails, we will end up sending an error back to the other side
// the caller
LogErrorOnFailure(err);
if (err == CHIP_NO_ERROR)
{
err = mWriter->Complete(StatusIB(err));
}
else
{
// Error in "complete" is not something we can really forward anymore since
// we already got an error in Encode ... just log this.
LogErrorOnFailure(mWriter->Complete(StatusIB(err)));
}
return err;
}
private:
// Contract says that complete may only be called twice:
// - initial complete
// - again after a `Flush`
// The states here expect we are in:
//
// +----------------------------Flush---------|
// | v
// NEVER --Complete--> F_EXPECTED --Flush--> FLUSHED --Complete--> COMPLETE
// | ^
// +-------------(success or permanent error)-----------|
enum class CompleteState
{
kNeverCalled,
kFlushExpected,
kFlushed,
kComplete,
};
InvokeResponder * mWriter;
CompleteState mCompleteState = CompleteState::kNeverCalled;
};
enum ReplyAsyncFlags
{
// Some commands that are expensive to process (e.g. crypto).
// Implementations may choose to send an ack on the message right away to
// avoid MRP retransmits.
kSlowCommandHandling = 0x0001,
};
class InvokeReply
{
public:
virtual ~InvokeReply() = default;
// reply with no data
CHIP_ERROR Reply(StatusIB status) { return this->Reply().Complete(status); }
// Enqueue the content of the reply at this point in time (rather than Async sending it).
//
// Implementations will often batch several replies into one packet for batch commands,
// so it will be implementation-specific on when the actual reply packet is
// sent.
virtual AutoCompleteInvokeResponder Reply() = 0;
// Reply "later" to the command. This allows async processing. A reply will be forced
// when the returned InvokeReply is destroyed.
//
// NOTE: Each InvokeReply is associated with a separate `CommandDataIB` within batch
// commands. When replying asynchronously, each InvokeReply will set the response
// data for the given commandpath/ref only.
//
// IF empty pointer is returned, insufficient memory to reply async is available and
// this should be handled (e.g. by returning an error to the handler/replying with
// an errorcode synchronously).
virtual std::unique_ptr<InvokeReply> ReplyAsync(BitFlags<ReplyAsyncFlags> flags) = 0;
};
} // namespace InteractionModel
} // namespace app
} // namespace chip