RubyGems - tep - Versions diffs - 0.11.0 - Mend

tep 0.11.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (193) hide show

checksums.yaml +7 -0
data/LICENSE +21 -0
data/Makefile +134 -0
data/README.md +247 -0
data/SINATRA_COMPAT.md +376 -0
data/bin/tep +2156 -0
data/examples/agentic_chat/README.md +103 -0
data/examples/agentic_chat/app.rb +310 -0
data/examples/api_gateway/README.md +49 -0
data/examples/api_gateway/app.rb +66 -0
data/examples/blog/app.rb +367 -0
data/examples/blog/views/index.erb +36 -0
data/examples/blog/views/login.erb +28 -0
data/examples/blog/views/new_post.erb +25 -0
data/examples/blog/views/show.erb +16 -0
data/examples/chat/app.rb +278 -0
data/examples/chat/assets/logo.svg +13 -0
data/examples/chat/assets/style.css +209 -0
data/examples/chat/views/index.erb +142 -0
data/examples/chatbot/README.md +111 -0
data/examples/chatbot/app.rb +1024 -0
data/examples/chatbot/assets/chat.js +249 -0
data/examples/chatbot/assets/compare.js +93 -0
data/examples/chatbot/assets/markdown.js +84 -0
data/examples/chatbot/assets/style.css +215 -0
data/examples/chatbot/schema.sql +25 -0
data/examples/chatbot/views/compare.erb +43 -0
data/examples/chatbot/views/index.erb +42 -0
data/examples/chatbot/views/login.erb +22 -0
data/examples/chatbot/views/setup.erb +23 -0
data/examples/counter/README.md +68 -0
data/examples/counter/app.rb +85 -0
data/examples/experiments/AGENTS.md +91 -0
data/examples/experiments/README.md +99 -0
data/examples/experiments/app.rb +225 -0
data/examples/geohash/Gemfile +11 -0
data/examples/geohash/Gemfile.lock +17 -0
data/examples/geohash/README.md +58 -0
data/examples/geohash/app.rb +33 -0
data/examples/hello.rb +120 -0
data/examples/llm_gateway/README.md +73 -0
data/examples/llm_gateway/app.rb +91 -0
data/examples/maidenhead/Gemfile +7 -0
data/examples/maidenhead/Gemfile.lock +17 -0
data/examples/maidenhead/README.md +47 -0
data/examples/maidenhead/app.rb +46 -0
data/examples/pg_hello.rb +76 -0
data/examples/qdrant/Gemfile +11 -0
data/examples/qdrant/Gemfile.lock +29 -0
data/examples/qdrant/README.md +54 -0
data/examples/sinatra_style.rb +32 -0
data/examples/websocket_echo.rb +37 -0
data/lib/tep/agent_delegation.rb +35 -0
data/lib/tep/app.rb +291 -0
data/lib/tep/assets.rb +52 -0
data/lib/tep/auth.rb +78 -0
data/lib/tep/auth_bearer_token.rb +126 -0
data/lib/tep/auth_oauth2.rb +189 -0
data/lib/tep/auth_oauth2_client.rb +29 -0
data/lib/tep/auth_oauth2_code.rb +40 -0
data/lib/tep/auth_session_cookie.rb +132 -0
data/lib/tep/broadcast.rb +265 -0
data/lib/tep/broadcast_subscription.rb +42 -0
data/lib/tep/cache.rb +49 -0
data/lib/tep/events.rb +257 -0
data/lib/tep/filter.rb +21 -0
data/lib/tep/handler.rb +35 -0
data/lib/tep/http.rb +599 -0
data/lib/tep/identity.rb +67 -0
data/lib/tep/job.rb +186 -0
data/lib/tep/json.rb +572 -0
data/lib/tep/jwt.rb +126 -0
data/lib/tep/live_view.rb +219 -0
data/lib/tep/llm.rb +505 -0
data/lib/tep/logger.rb +85 -0
data/lib/tep/mcp.rb +203 -0
data/lib/tep/multipart.rb +98 -0
data/lib/tep/net.rb +155 -0
data/lib/tep/openai_server.rb +725 -0
data/lib/tep/parallel.rb +168 -0
data/lib/tep/parser.rb +81 -0
data/lib/tep/password.rb +102 -0
data/lib/tep/pg.rb +1128 -0
data/lib/tep/presence.rb +589 -0
data/lib/tep/presence_entry.rb +52 -0
data/lib/tep/proxy.rb +801 -0
data/lib/tep/request.rb +194 -0
data/lib/tep/response.rb +134 -0
data/lib/tep/router.rb +137 -0
data/lib/tep/scheduler.rb +342 -0
data/lib/tep/security.rb +140 -0
data/lib/tep/server.rb +276 -0
data/lib/tep/server_scheduled.rb +375 -0
data/lib/tep/session.rb +98 -0
data/lib/tep/shell.rb +62 -0
data/lib/tep/sphttp.c +858 -0
data/lib/tep/sqlite.rb +215 -0
data/lib/tep/streamer.rb +31 -0
data/lib/tep/tep_pg.c +769 -0
data/lib/tep/tep_sqlite.c +320 -0
data/lib/tep/url.rb +161 -0
data/lib/tep/version.rb +3 -0
data/lib/tep/websocket/connection.rb +171 -0
data/lib/tep/websocket/driver.rb +169 -0
data/lib/tep/websocket/frame.rb +238 -0
data/lib/tep/websocket/handshake.rb +159 -0
data/lib/tep/websocket.rb +68 -0
data/lib/tep.rb +981 -0
data/public/hello.txt +1 -0
data/public/style.css +4 -0
data/spinel-ext.json +33 -0
data/test/helper.rb +248 -0
data/test/real_world/01_simple.rb +5 -0
data/test/real_world/02_lifecycle.rb +20 -0
data/test/real_world/03_chat.rb +75 -0
data/test/real_world/04_health_api.rb +25 -0
data/test/real_world/05_todo_api.rb +57 -0
data/test/real_world/06_basic_auth.rb +25 -0
data/test/real_world/07_bbc_rest_api.rb +228 -0
data/test/real_world/07_sklise_things.rb +109 -0
data/test/real_world/08_jwd83_helloworld.rb +56 -0
data/test/run_all.rb +7 -0
data/test/run_parallel.rb +89 -0
data/test/spinel_scheduled_burst_segv_repro.rb +33 -0
data/test/test_api_gateway.rb +76 -0
data/test/test_auth.rb +223 -0
data/test/test_auth_oauth2.rb +208 -0
data/test/test_auth_session_cookie.rb +198 -0
data/test/test_broadcast.rb +197 -0
data/test/test_broadcast_pg.rb +135 -0
data/test/test_cache.rb +98 -0
data/test/test_cache_static.rb +48 -0
data/test/test_cookies.rb +52 -0
data/test/test_erb.rb +53 -0
data/test/test_erb_ivars.rb +58 -0
data/test/test_events.rb +114 -0
data/test/test_filters.rb +41 -0
data/test/test_geohash_example.rb +89 -0
data/test/test_http.rb +137 -0
data/test/test_http_pool.rb +122 -0
data/test/test_http_pool_send.rb +57 -0
data/test/test_identity.rb +165 -0
data/test/test_inbound_tls.rb +101 -0
data/test/test_inbound_tls_scheduled.rb +101 -0
data/test/test_job.rb +108 -0
data/test/test_json.rb +168 -0
data/test/test_jwt.rb +143 -0
data/test/test_live_view.rb +324 -0
data/test/test_llm.rb +250 -0
data/test/test_llm_gateway.rb +95 -0
data/test/test_logger.rb +101 -0
data/test/test_maidenhead_example.rb +86 -0
data/test/test_mcp.rb +264 -0
data/test/test_misc_v02.rb +54 -0
data/test/test_modular.rb +43 -0
data/test/test_multi_filters.rb +40 -0
data/test/test_mustache.rb +57 -0
data/test/test_openai_server.rb +598 -0
data/test/test_optional_segments.rb +45 -0
data/test/test_parallel.rb +102 -0
data/test/test_params.rb +99 -0
data/test/test_pass.rb +42 -0
data/test/test_password.rb +101 -0
data/test/test_pg.rb +673 -0
data/test/test_presence.rb +374 -0
data/test/test_presence_pg.rb +309 -0
data/test/test_proxy.rb +556 -0
data/test/test_proxy_dsl.rb +119 -0
data/test/test_proxy_streaming.rb +146 -0
data/test/test_real_world.rb +397 -0
data/test/test_regex_routes.rb +52 -0
data/test/test_request_methods.rb +102 -0
data/test/test_response.rb +123 -0
data/test/test_routing.rb +109 -0
data/test/test_scheduler.rb +153 -0
data/test/test_security.rb +72 -0
data/test/test_server_scheduled.rb +56 -0
data/test/test_sessions.rb +59 -0
data/test/test_shell.rb +54 -0
data/test/test_sqlite.rb +148 -0
data/test/test_sqlite_cached.rb +171 -0
data/test/test_static.rb +57 -0
data/test/test_streaming.rb +96 -0
data/test/test_unsupported.rb +32 -0
data/test/test_websocket.rb +152 -0
data/test/test_websocket_echo.rb +138 -0
data/test/views/greet.erb +5 -0
data/test/views/hello.erb +5 -0
data/test/views/list.erb +5 -0
data/test/views/m_ivars.mustache +3 -0
data/test/views/m_simple.mustache +4 -0
data/test/views/mixed.erb +3 -0
metadata +264 -0

data/lib/tep/websocket/driver.rb ADDED Viewed

@@ -0,0 +1,169 @@
+# Tep::WebSocket::Driver -- Faye-shape state machine + event dispatch.
+#
+# Constructed AFTER the handshake completes, before the recv loop
+# starts. Holds per-connection state + outbound write methods +
+# the event-callback registry that the handler (or the Phase 3 DSL)
+# populates.
+#
+# Faye-shape API (matches faye/websocket-driver-ruby's surface for
+# the parts tep ships -- single-frame text/binary, ping/pong, close):
+#
+#     drv = Tep::WebSocket::Driver.new(fd)
+#     drv.on_message    do |evt| ... end    # block-based on:open/on:message etc
+#     drv.on_close      do |evt| ... end    #   are syntactic sugar; tep ships
+#     drv.text("hi")                        #   the explicit setters instead
+#     drv.binary(bytes)
+#     drv.ping("")
+#     drv.close(1000, "bye")
+#
+# In Phase 2, callbacks are set via explicit setters (`set_on_message`)
+# rather than `on(:message) { block }` since spinel's block-with-
+# closure-on-locals support is still uneven outside Fiber.new bodies.
+# Phase 3's DSL hides this behind `ws.on(:message) { ... }` once we
+# decide on the lowering shape.
+module Tep
+  module WebSocket
+    class Driver
+      attr_accessor :fd, :max_frame_size, :subprotocol
+      # Callback slots. Each holds a subclass of Tep::WebSocket::Handler
+      # (or the base) that gets `handle_event(event)` called when the
+      # corresponding wire event arrives. Defaults to a no-op base
+      # so the slot is type-safe pre-set.
+      attr_accessor :h_open, :h_message, :h_close, :h_ping, :h_pong, :h_error
+      def initialize(fd)
+        @fd             = fd
+        @max_frame_size = Tep::WebSocket::DEFAULT_MAX_FRAME
+        @subprotocol    = ""
+        @h_open    = Tep::WebSocket::Handler.new
+        @h_message = Tep::WebSocket::Handler.new
+        @h_close   = Tep::WebSocket::Handler.new
+        @h_ping    = Tep::WebSocket::Handler.new
+        @h_pong    = Tep::WebSocket::Handler.new
+        @h_error   = Tep::WebSocket::Handler.new
+      end
+      def set_max_frame_size(n)
+        @max_frame_size = n
+      end
+      # Reassign the underlying fd. Used by the server-side upgrade
+      # path: the user handler builds the Driver with a placeholder
+      # fd (since the client fd isn't visible at handler-dispatch
+      # time), and the write_response branch sets the real fd here
+      # right before constructing the Connection.
+      def set_fd(new_fd)
+        @fd = new_fd
+      end
+      def set_subprotocol(name)
+        @subprotocol = name
+      end
+      def set_on_open(h);    @h_open = h;    end
+      def set_on_message(h); @h_message = h; end
+      def set_on_close(h);   @h_close = h;   end
+      def set_on_ping(h);    @h_ping = h;    end
+      def set_on_pong(h);    @h_pong = h;    end
+      def set_on_error(h);   @h_error = h;   end
+      # Send a text frame.
+      def text(s)
+        Driver.send_frame(@fd, Tep::WebSocket::OPCODE_TEXT, s)
+      end
+      # Streamer-shape alias for `text` so a Driver can stand in
+      # anywhere `Tep::Streamer`-style code calls `out.write(s)`.
+      # Used by Tep::Llm.chat_stream to write LLM deltas as WS
+      # frames (one frame per SSE-shaped chunk).
+      def write(s)
+        Driver.send_frame(@fd, Tep::WebSocket::OPCODE_TEXT, s)
+      end
+      # Send a binary frame.
+      def binary(bytes)
+        Driver.send_frame(@fd, Tep::WebSocket::OPCODE_BINARY, bytes)
+      end
+      # Send a ping with optional payload (<=125 bytes).
+      def ping(payload)
+        Driver.send_frame(@fd, Tep::WebSocket::OPCODE_PING, payload)
+      end
+      # Send a pong with the matching ping's payload (per §5.5.3).
+      def pong(payload)
+        Driver.send_frame(@fd, Tep::WebSocket::OPCODE_PONG, payload)
+      end
+      # Send a close frame with code + reason. Reason capped at
+      # 123 bytes so the 2-byte code + reason fits in a control
+      # frame's 125-byte payload limit.
+      def close(code, reason)
+        body = Driver.encode_close_payload(code, reason)
+        Driver.send_frame(@fd, Tep::WebSocket::OPCODE_CLOSE, body)
+      end
+      # Build the frame bytes (unmasked, server-side) and write via
+      # sphttp_write_bytes (binary-safe, explicit length).
+      def self.send_frame(fd, opcode, payload)
+        frame = Tep::WebSocket::Frame.new(true, opcode, payload)
+        bytes = frame.encode_unmasked
+        Sock.sphttp_write_bytes(fd, bytes, bytes.length)
+      end
+      # Close payload: 2-byte big-endian code + UTF-8 reason. Per
+      # §5.5.1 the payload may be omitted (close with no body); if
+      # `code == 0` we emit an empty payload.
+      def self.encode_close_payload(code, reason)
+        if code == 0
+          return ""
+        end
+        out = Tep::WebSocket::Frame.byte_to_chr((code >> 8) & 0xff) +
+              Tep::WebSocket::Frame.byte_to_chr(code & 0xff)
+        if reason.length > 123
+          out + reason[0, 123]
+        else
+          out + reason
+        end
+      end
+    end
+    # Event passed to handler callbacks. Holds `data` (the payload
+    # as String for text/binary, raw bytes for ping/pong, or the
+    # close code+reason for close) and a numeric `code` for close.
+    class Event
+      attr_accessor :data, :code, :reason
+      def initialize
+        @data   = ""
+        @code   = 0
+        @reason = ""
+      end
+    end
+    # Base class for event handlers. Subclass + override
+    # `handle_event(event)`. The Driver stores one Handler instance
+    # per event type and dispatches via `@h_message.handle_event(evt)`.
+    # The explicit-Handler shape (vs faye's block-based `driver.on(:msg)
+    # { ... }`) is chosen because it stays compatible with future
+    # Fiber.storage per-connection state plumbing without re-typing
+    # the callback boundary.
+    #
+    # `req` is set at WS upgrade time by the route handler the
+    # translator emits, giving on_X handler bodies access to the
+    # request that initiated the connection (req.identity,
+    # req.session, headers, ...). It stays the same across every
+    # event on the connection -- there's no per-frame "request".
+    class Handler
+      attr_accessor :req
+      def initialize
+        @req = Tep::Request.new
+      end
+      def handle_event(event)
+        0
+      end
+    end
+  end
+end

data/lib/tep/websocket/frame.rb ADDED Viewed

@@ -0,0 +1,238 @@
+# Tep::WebSocket::Frame -- single-frame codec.
+#
+# Surface:
+#   - Frame.new(fin, opcode, payload)             build for emit
+#   - frame.encode_unmasked -> String             server-side emit bytes
+#   - Frame.parse_from_buf(bytes_at, bytes_len)   parse a recv'd frame
+#       returns a ParseResult (frame + bytes_consumed, OR an error code).
+#
+# Server-side emit: never masks (RFC 6455 §5.3 -- server MUST NOT
+# mask). Client-side emit isn't shipped here; tep is server-shaped.
+#
+# Parse handles three length encodings (7-bit / 16-bit / 64-bit),
+# the 4-byte mask key, and applies the mask to recover the plaintext
+# payload. Returns a structural error code (close-code-shaped) for
+# the family of malformed-frame cases that warrant a 1002 close:
+#   - reserved bits set
+#   - reserved opcode
+#   - client frame not masked
+#   - control frame payload > 125
+#   - control frame fragmented
+module Tep
+  module WebSocket
+    class Frame
+      attr_accessor :fin, :opcode, :payload
+      def initialize(fin, opcode, payload)
+        @fin     = fin
+        @opcode  = opcode
+        @payload = payload
+      end
+      # Build the unmasked server-side wire bytes. Length-encoding
+      # picks the smallest form that fits the payload. No mask.
+      def encode_unmasked
+        head = ""
+        b0 = (@fin ? 0x80 : 0x00) | (@opcode & 0x0f)
+        head = head + Frame.byte_to_chr(b0)
+        plen = @payload.length
+        if plen <= 125
+          head = head + Frame.byte_to_chr(plen)
+        elsif plen <= 65535
+          head = head + Frame.byte_to_chr(126)
+          head = head + Frame.byte_to_chr((plen >> 8) & 0xff)
+          head = head + Frame.byte_to_chr(plen & 0xff)
+        else
+          head = head + Frame.byte_to_chr(127)
+          i = 7
+          while i >= 0
+            head = head + Frame.byte_to_chr((plen >> (i * 8)) & 0xff)
+            i -= 1
+          end
+        end
+        head + @payload
+      end
+      # Convert a single byte value (0..255) to a 1-char String.
+      def self.byte_to_chr(n)
+        (n & 0xff).chr
+      end
+      # Parse one frame from the sphttp recv frame buffer. `start`
+      # is the byte offset to begin reading; `avail` is the count of
+      # valid bytes in the buffer. Byte reads go through the Ruby
+      # String binding sphttp_recv_frame_buf returns; matz/spinel#657
+      # made slice / bytes[i] survive embedded NULs so binary
+      # payloads parse correctly without the per-byte C accessor we
+      # used before.
+      #
+      # Returns a ParseResult with one of three shapes:
+      #   .status == "ok"      -> .frame populated + .consumed bytes used
+      #   .status == "need"    -> need more bytes (consumed == 0)
+      #   .status == "close"   -> protocol violation; close with .close_code
+      def self.parse_from_buf(start, avail)
+        out = Tep::WebSocket::ParseResult.new
+        if avail - start < 2
+          out.outcome = "need"
+          return out
+        end
+        buf = Sock.sphttp_recv_frame_buf
+        bs  = buf.bytes
+        b0 = bs[start]
+        b1 = bs[start + 1]
+        fin    = (b0 & 0x80) != 0
+        rsv    = b0 & 0x70
+        opcode = b0 & 0x0f
+        masked = (b1 & 0x80) != 0
+        len7   = b1 & 0x7f
+        if rsv != 0
+          out.outcome = "close"
+          out.close_code = Tep::WebSocket::CLOSE_PROTOCOL_ERROR
+          return out
+        end
+        if Frame.reserved_opcode?(opcode)
+          out.outcome = "close"
+          out.close_code = Tep::WebSocket::CLOSE_PROTOCOL_ERROR
+          return out
+        end
+        if Frame.control_opcode?(opcode)
+          if !fin
+            out.outcome = "close"
+            out.close_code = Tep::WebSocket::CLOSE_PROTOCOL_ERROR
+            return out
+          end
+          if len7 > 125
+            out.outcome = "close"
+            out.close_code = Tep::WebSocket::CLOSE_PROTOCOL_ERROR
+            return out
+          end
+        end
+        if !masked
+          # Server MUST close on unmasked client frame (§5.3).
+          out.outcome = "close"
+          out.close_code = Tep::WebSocket::CLOSE_PROTOCOL_ERROR
+          return out
+        end
+        # Decode payload length.
+        pos = start + 2
+        plen = 0
+        if len7 < 126
+          plen = len7
+        elsif len7 == 126
+          if avail - pos < 2
+            out.outcome = "need"
+            return out
+          end
+          h = bs[pos]
+          l = bs[pos + 1]
+          plen = (h << 8) | l
+          pos += 2
+        else
+          # 64-bit length
+          if avail - pos < 8
+            out.outcome = "need"
+            return out
+          end
+          plen = 0
+          i = 0
+          while i < 8
+            plen = (plen << 8) | bs[pos + i]
+            i += 1
+          end
+          pos += 8
+        end
+        # 4-byte mask key.
+        if avail - pos < 4
+          out.outcome = "need"
+          return out
+        end
+        m0 = bs[pos]
+        m1 = bs[pos + 1]
+        m2 = bs[pos + 2]
+        m3 = bs[pos + 3]
+        pos += 4
+        # Payload bytes.
+        if avail - pos < plen
+          out.outcome = "need"
+          return out
+        end
+        # Decode + unmask in one pass.
+        payload = ""
+        i = 0
+        while i < plen
+          b = bs[pos + i]
+          mask_byte = 0
+          if (i & 3) == 0
+            mask_byte = m0
+          elsif (i & 3) == 1
+            mask_byte = m1
+          elsif (i & 3) == 2
+            mask_byte = m2
+          else
+            mask_byte = m3
+          end
+          payload = payload + Frame.byte_to_chr(b ^ mask_byte)
+          i += 1
+        end
+        out.outcome   = "ok"
+        out.frame    = Tep::WebSocket::Frame.new(fin, opcode, payload)
+        out.consumed = pos + plen - start
+        out
+      end
+      def self.reserved_opcode?(op)
+        if op == Tep::WebSocket::OPCODE_CONTINUATION
+          return false
+        end
+        if op == Tep::WebSocket::OPCODE_TEXT
+          return false
+        end
+        if op == Tep::WebSocket::OPCODE_BINARY
+          return false
+        end
+        if op == Tep::WebSocket::OPCODE_CLOSE
+          return false
+        end
+        if op == Tep::WebSocket::OPCODE_PING
+          return false
+        end
+        if op == Tep::WebSocket::OPCODE_PONG
+          return false
+        end
+        true
+      end
+      def self.control_opcode?(op)
+        op == Tep::WebSocket::OPCODE_CLOSE ||
+          op == Tep::WebSocket::OPCODE_PING ||
+          op == Tep::WebSocket::OPCODE_PONG
+      end
+    end
+    # ParseResult carries either a parsed frame, a "need more
+    # bytes" signal, or a close-code for a protocol violation.
+    # Field is named `outcome` (not `status`) because attr_accessor
+    # :status collides with Tep::Response.status (Integer) under
+    # spinel's same-name-attr unification family
+    # (matz/spinel#537 / #538), widening Tep.reason(status) to
+    # accept poly and breaking the build.
+    class ParseResult
+      attr_accessor :outcome, :frame, :consumed, :close_code
+      def initialize
+        @outcome    = ""
+        @frame      = Tep::WebSocket::Frame.new(true, 0, "")
+        @consumed   = 0
+        @close_code = 0
+      end
+    end
+  end
+end

data/lib/tep/websocket/handshake.rb ADDED Viewed

@@ -0,0 +1,159 @@
+# Tep::WebSocket::Handshake -- RFC 6455 §1.3 server-side handshake.
+#
+# `check(req)`:
+#   Returns a Result with `.valid` true if the request is a proper
+#   WebSocket upgrade, `.accept_key` set to the Sec-WebSocket-Accept
+#   value the server should echo, and `.protocols` parsed from
+#   Sec-WebSocket-Protocol. Invalid uses set `.valid = false` +
+#   `.reason` for logging.
+#
+# `build_response(accept_key, protocol)`:
+#   Returns the raw HTTP/1.1 101 Switching Protocols response bytes,
+#   ready to write to the socket. `protocol` is the subprotocol to
+#   echo (empty string = omit the header per RFC §1.3 -- the safe
+#   default per rubys's pushback on tep#8).
+module Tep
+  module WebSocket
+    class Handshake
+      def self.check(req)
+        out = Tep::WebSocket::Handshake::Result.new
+        # Verb must be GET.
+        if req.verb != "GET"
+          out.valid = false
+          out.reason = "bad verb"
+          return out
+        end
+        # Upgrade + Connection headers (downcased per Tep::Request).
+        upgrade = req.headers["upgrade"]
+        if Handshake.icontains(upgrade, "websocket") == false
+          out.valid = false
+          out.reason = "missing/invalid Upgrade"
+          return out
+        end
+        conn = req.headers["connection"]
+        if Handshake.icontains(conn, "upgrade") == false
+          out.valid = false
+          out.reason = "missing/invalid Connection"
+          return out
+        end
+        # Sec-WebSocket-Version must be 13.
+        ver = req.headers["sec-websocket-version"]
+        if ver != "13"
+          out.valid = false
+          out.reason = "bad/missing Sec-WebSocket-Version"
+          return out
+        end
+        # Sec-WebSocket-Key: 24-char base64 (16-byte nonce).
+        key = req.headers["sec-websocket-key"]
+        if key.length == 0
+          out.valid = false
+          out.reason = "missing Sec-WebSocket-Key"
+          return out
+        end
+        out.valid = true
+        out.accept_key = Crypto.sp_crypto_websocket_accept(key)
+        # Parse Sec-WebSocket-Protocol (comma-separated). Handler
+        # gets the offered list; can opt-in via Driver.accept_protocol.
+        out.protocols = Handshake.split_csv(req.headers["sec-websocket-protocol"])
+        out
+      end
+      # Build the 101 Switching Protocols response. `protocol` empty
+      # = omit Sec-WebSocket-Protocol entirely (spec-correct per
+      # RFC 6455 §4.2.2; better than echoing a protocol the server
+      # doesn't actually implement).
+      def self.build_response(accept_key, protocol)
+        out = "HTTP/1.1 101 Switching Protocols\r\n" +
+              "Upgrade: websocket\r\n" +
+              "Connection: Upgrade\r\n" +
+              "Sec-WebSocket-Accept: " + accept_key + "\r\n"
+        if protocol.length > 0
+          out = out + "Sec-WebSocket-Protocol: " + protocol + "\r\n"
+        end
+        out + "\r\n"
+      end
+      # Case-insensitive substring contains. Hand-rolled because
+      # Tep::Request normalises header names to lowercase but
+      # leaves values as-is, and clients sometimes send
+      # `Connection: keep-alive, Upgrade` capitalised.
+      def self.icontains(hay, needle)
+        if hay.length == 0 || needle.length == 0
+          return false
+        end
+        hl = Handshake.downcase(hay)
+        nl = Handshake.downcase(needle)
+        Tep.str_find(hl, nl, 0) >= 0
+      end
+      def self.downcase(s)
+        out = ""
+        i = 0
+        while i < s.length
+          c = s[i]
+          if c >= "A" && c <= "Z"
+            out = out + (c.ord + 32).chr
+          else
+            out = out + c
+          end
+          i += 1
+        end
+        out
+      end
+      # Parse comma-separated header value into an Array<String>.
+      # Trims whitespace around each entry.
+      def self.split_csv(s)
+        out = [""]
+        out.delete_at(0)
+        if s.length == 0
+          return out
+        end
+        pos = 0
+        while pos < s.length
+          comma = Tep.str_find(s, ",", pos)
+          if comma < 0
+            out.push(Handshake.trim(s[pos, s.length - pos]))
+            return out
+          end
+          out.push(Handshake.trim(s[pos, comma - pos]))
+          pos = comma + 1
+        end
+        out
+      end
+      def self.trim(s)
+        i = 0
+        while i < s.length && (s[i] == " " || s[i] == "\t")
+          i += 1
+        end
+        j = s.length - 1
+        while j >= i && (s[j] == " " || s[j] == "\t")
+          j -= 1
+        end
+        if j < i
+          return ""
+        end
+        s[i, j - i + 1]
+      end
+      class Result
+        attr_accessor :valid, :reason, :accept_key, :protocols
+        def initialize
+          @valid      = false
+          @reason     = ""
+          @accept_key = ""
+          @protocols  = [""]
+          @protocols.delete_at(0)
+        end
+      end
+    end
+  end
+end

data/lib/tep/websocket.rb ADDED Viewed

@@ -0,0 +1,68 @@
+# Tep::WebSocket -- RFC 6455 WebSocket support for spinel-AOT'd apps.
+#
+# Protocol substrate (this file's directory):
+#   - Tep::WebSocket::Frame      single-frame codec (parse + emit)
+#   - Tep::WebSocket::Handshake  server-side handshake check + response
+#   - Tep::WebSocket::Driver     state machine + event dispatch + writers
+#   - Tep::WebSocket::Connection fiber-driven recv loop (one fiber per conn)
+#
+# Sinatra-style DSL (lowered by bin/tep):
+#
+#     set :scheduler, :scheduled
+#     websocket '/chat' do |ws|
+#       on_open    { |evt| ws.text("welcome") }
+#       on_message { |evt| ws.text("echo: " + evt.data) }
+#       on_close   { |evt| ... }
+#     end
+#
+# Requires the scheduled server (the recv loop parks on
+# Tep::Scheduler.io_wait); the blocking server returns 501 on a WS
+# upgrade attempt. See examples/websocket_echo.rb for a full app and
+# test/test_websocket_echo.rb for the end-to-end smoke harness.
+#
+# Compliance posture (per the OriPekelman/tep#8 strict/lenient table):
+#   strict-emit: server NEVER masks; reserved bits 0 on emit
+#   strict-accept (close 1002):
+#     - client frames MUST be masked
+#     - reserved bits RSV1-3 MUST be 0
+#     - reserved opcodes (3-7, B-F) reject
+#     - control frame payload > 125 reject
+#     - control frames MUST NOT fragment
+#     - continuation without prior fragment reject
+#   strict-accept (close 1007): text frames MUST be UTF-8 (deferred to
+#     Phase 2.1 -- the codec ships the structural strictness first;
+#     the UTF-8 validator is its own ~50 LOC).
+#   liberal-accept: close codes, pong payload contents, unsolicited pong.
+module Tep
+  module WebSocket
+    # Standard opcodes.
+    OPCODE_CONTINUATION = 0
+    OPCODE_TEXT         = 1
+    OPCODE_BINARY       = 2
+    OPCODE_CLOSE        = 8
+    OPCODE_PING         = 9
+    OPCODE_PONG         = 10
+    # Close codes (RFC 6455 §7.4). Caller-facing ones only -- the
+    # internal-error / protocol-error codes are emitted by the
+    # Driver directly, not exposed.
+    CLOSE_NORMAL          = 1000
+    CLOSE_GOING_AWAY      = 1001
+    CLOSE_PROTOCOL_ERROR  = 1002
+    CLOSE_UNSUPPORTED     = 1003
+    CLOSE_INVALID_UTF8    = 1007
+    CLOSE_POLICY_VIOLATION = 1008
+    CLOSE_MESSAGE_TOO_BIG = 1009
+    # Frame-size cap. Configurable via Driver#set_max_frame_size;
+    # default is 16 MiB (large enough for any realistic chat /
+    # Action Cable payload, bounded so an oversized frame can be
+    # closed with 1009 rather than OOM-ing the worker).
+    DEFAULT_MAX_FRAME = 16 * 1024 * 1024
+  end
+end
+require_relative "websocket/frame"
+require_relative "websocket/handshake"
+require_relative "websocket/driver"
+require_relative "websocket/connection"