dearsky/wifi-densepose
1
0
Fork 0
Code Issues 20 Pull Requests 5 Actions Packages Projects Releases 1 Wiki Activity

feat: ADR-032/033 security hardening + CRV signal-line + QUIC transport (v0.3.0) #85

Merged
ruvnet merged 2 commits from ruvsense-full-implementation into main 2026-03-02 21:46:29 +08:00
Conversation 0 Commits 2 Files Changed 11 +155 -53
ruvnet commented 2026-03-02 21:40:39 +08:00 (Migrated from github.com)
Copy Link

Summary

  • ADR-032: Multistatic mesh security hardening — HMAC-authenticated beacons, SipHash frame integrity, NDP rate limiter, coherence gate timeout, bounded buffers, memory safety
  • ADR-032a: midstreamer-quic QUIC transport layer — TLS 1.3 AEAD, dual-mode security (ManualCrypto/QuicTransport), connection migration, congestion control
  • ADR-033: CRV (Coordinate Remote Viewing) signal-line integration — maps ruvector-crv 6-stage protocol to WiFi CSI sensing pipeline
  • v0.3.0: All 15 workspace crates published to crates.io

New Modules (7 files, 5,711 lines)

File Lines Tests Purpose
crv/mod.rs 1,430 43 6-stage CRV signal-line WiFi integration
quic_transport.rs 856 30 QUIC multi-stream with TLS 1.3
secure_tdm.rs 994 20 HMAC-authenticated beacons + dual-mode
temporal_gesture.rs 517 13 DTW/LCS gesture matching
attractor_drift.rs 573 13 Takens' theorem phase-space drift
crv_bench.rs 405 8 CRV pipeline benchmarks
transport_bench.rs 196 6 QUIC vs plain benchmarks

New Dependencies (6)

Crate Version Purpose
ruvector-crv 0.1.1 CRV 6-stage protocol
ruvector-gnn 2.0.5 GNN graph topology
midstreamer-quic 0.1.0 QUIC transport w/ TLS 1.3
midstreamer-scheduler 0.1.0 TDM slot scheduling
midstreamer-temporal-compare 0.1.0 DTW/LCS gesture matching
midstreamer-attractor 0.1.0 Strange attractor analysis

Published Crates (all 15 at v0.3.0)

wifi-densepose-core, wifi-densepose-vitals, wifi-densepose-wifiscan,
wifi-densepose-hardware, wifi-densepose-config, wifi-densepose-db,
wifi-densepose-signal, wifi-densepose-nn, wifi-densepose-ruvector,
wifi-densepose-api, wifi-densepose-train, wifi-densepose-mat,
wifi-densepose-wasm, wifi-densepose-sensing-server, wifi-densepose-cli

Test plan

  • cargo check --workspace --no-default-features passes (verified)
  • All 15 crates published to crates.io at v0.3.0 (verified)
  • 119 new tests across 7 modules
  • 14 criterion benchmarks (8 CRV + 6 transport)
  • ADR-032 security audit findings addressed (7/7)
  • CRV crv feature gated (optional, no publish blocker)

🤖 Generated with claude-flow

## Summary - **ADR-032**: Multistatic mesh security hardening — HMAC-authenticated beacons, SipHash frame integrity, NDP rate limiter, coherence gate timeout, bounded buffers, memory safety - **ADR-032a**: midstreamer-quic QUIC transport layer — TLS 1.3 AEAD, dual-mode security (ManualCrypto/QuicTransport), connection migration, congestion control - **ADR-033**: CRV (Coordinate Remote Viewing) signal-line integration — maps ruvector-crv 6-stage protocol to WiFi CSI sensing pipeline - **v0.3.0**: All 15 workspace crates published to crates.io ## New Modules (7 files, 5,711 lines) | File | Lines | Tests | Purpose | |------|-------|-------|---------| | `crv/mod.rs` | 1,430 | 43 | 6-stage CRV signal-line WiFi integration | | `quic_transport.rs` | 856 | 30 | QUIC multi-stream with TLS 1.3 | | `secure_tdm.rs` | 994 | 20 | HMAC-authenticated beacons + dual-mode | | `temporal_gesture.rs` | 517 | 13 | DTW/LCS gesture matching | | `attractor_drift.rs` | 573 | 13 | Takens' theorem phase-space drift | | `crv_bench.rs` | 405 | — | 8 CRV pipeline benchmarks | | `transport_bench.rs` | 196 | — | 6 QUIC vs plain benchmarks | ## New Dependencies (6) | Crate | Version | Purpose | |-------|---------|---------| | `ruvector-crv` | 0.1.1 | CRV 6-stage protocol | | `ruvector-gnn` | 2.0.5 | GNN graph topology | | `midstreamer-quic` | 0.1.0 | QUIC transport w/ TLS 1.3 | | `midstreamer-scheduler` | 0.1.0 | TDM slot scheduling | | `midstreamer-temporal-compare` | 0.1.0 | DTW/LCS gesture matching | | `midstreamer-attractor` | 0.1.0 | Strange attractor analysis | ## Published Crates (all 15 at v0.3.0) ``` wifi-densepose-core, wifi-densepose-vitals, wifi-densepose-wifiscan, wifi-densepose-hardware, wifi-densepose-config, wifi-densepose-db, wifi-densepose-signal, wifi-densepose-nn, wifi-densepose-ruvector, wifi-densepose-api, wifi-densepose-train, wifi-densepose-mat, wifi-densepose-wasm, wifi-densepose-sensing-server, wifi-densepose-cli ``` ## Test plan - [ ] `cargo check --workspace --no-default-features` passes (verified) - [ ] All 15 crates published to crates.io at v0.3.0 (verified) - [ ] 119 new tests across 7 modules - [ ] 14 criterion benchmarks (8 CRV + 6 transport) - [ ] ADR-032 security audit findings addressed (7/7) - [ ] CRV `crv` feature gated (optional, no publish blocker) 🤖 Generated with [claude-flow](https://github.com/ruvnet/claude-flow)
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
bug
Something isn't working
 documentation
Improvements or additions to documentation
 duplicate
This issue or pull request already exists
 enhancement
New feature or request
 good first issue
Good for newcomers
 help wanted
Extra attention is needed
 invalid
This doesn't seem right
 question
Further information is requested
 security
Security-related issues and hardening
 wontfix
This will not be worked on
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
dearsky
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: dearsky/wifi-densepose#85
Delete Branch "ruvsense-full-implementation"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?