[APP-7635]: Define type for managing bluetooth WiFi provisioning.

[maxhorowitz]

Summary

Add type (without implementing a low-level Linux solution) that can be "plugged-in" to the Agent provisioning flow for spinning up BT, waiting for credentials, and cleanly shutting itself down.

Included

1. APP-7635: Define type for bluetooth provisioning, which does not include any low-level bluetooth-stack specific assumptions about how we will read/write values to bluetooth characteristics on the peripheral.
2. I have NOT added unit tests. I will do so once we can agree upon the public implementation added in this PR.

The following functionality is added in this PR:

type bluetoothWiFiProvisioner struct {...}
func NewBluetoothWiFiProvisioner(...) (*bluetoothWiFiProvisioner, error)
func (bwp *BluetoothWiFiProvisioner) Start(ctx context.Context) error {...}
func (bwp *BluetoothWiFiProvisioner) Stop() error {...}
func (bwp *BluetoothWiFiProvisioner) RefreshAvailableNetworks(ctx context.Context, awns []*NetworkInfo) error {...}
func (bwp *BluetoothWiFiProvisioner) WaitForCredentials(ctx context.Context) (*userInput, error) {...}

Example usage

The following code snippet describes how I plan to use the functionality added in this PR.

func bluetoothWiFiProvisioningExample(ctx context.Context, logger logging.Logger, availableWiFiNetworksChan chan []*NetworkInfo) {
	ctx, cancel := context.WithCancel(ctx)
	defer cancel()

	bwp, err := ble.NewBluetoothWiFiProvisioner(ctx, logger, "Viam Agent") // STEP 1: Create instance that implements interface.
	if err != nil {
		logger.Fatal(err)
	}

	go func() {  // STEP 2: Run background job to update available WiFi networks.
		for {
			if ctx.Err() != nil {
				return
			}
			select {
			case <-ctx.Done():
				return
			case awn := <-availableWiFiNetworksChan:
				// 
				// Example []*NetworkInfo value (passed in via channel):
				// 
				// awn := []*NetworkInfo{
				// 		{
				// 			SSID:        "HomeWiFi",
				// 			Signal:    85,
				// 			Security: "WPA",
				// 		},
				// 		{
				// 			Ssid:        "GuestWiFi",
				// 			Signal:    50,
				// 			Security: "None",
				// 		},
				// 	},
				// }
				// 
				if err := bwp.RefreshAvailableNetworks(ctx, awn); err != nil {
					logger.Error(err)
					return
				}
			default:
				time.Sleep(time.Second * 3)
			}
		}
	}()

	if err := bwp.Start(ctx); err != nil { // STEP 3: Start advertising BLE to a client.
		logger.Fatal(err)
	}

	// Interface method naming implies this should be a blocking call.
	userInput, err := bwp.WaitForCredentials(ctx, true, true) // STEP 4: Wait for the client to send credentials over BT.
	if err != nil {
		logger.Fatal(err)
	}
	logger.Infof("User provided SSID: %s and Psk: %s, will attempt to connect with those WiFi credentials. "+
		"Once connected, will provision this device with the following cloud config: Robot Part Key ID: %s, "+
		"Robot Part Key: %s", userInput.SSID, userInput.PSK, userInput.PartD, userInput.Secret)

	if err := bwp.Stop(); err != nil { // STEP 5: Close BLE advertisement (tears down client connection if exists).
		logger.Fatal(err)
	}
}

[maxhorowitz]

Note to reviewers: once we can agree upon the interface(s) added here, I will add unit testing to make it lock tight.

[maxhorowitz]

I know it is against Golang best practice to have unexported interfaces, and I'm far from an expert using generic types, so let me know if there are better ways to be designing this feature.

The purpose of this layer of abstraction was to protect the Linux-specific BT stuff from the core implementation of our BluetoothWiFiProvisioner interface. It isn't exported because I don't expect anyone to need it. If you have more specific questions, let me know, and I'll dive in.

[benjirewis]

It's tough for me to tell what's going on here without the implementer of this bluetoothService interface, but I'm definitely suspicious of the need for any interface at all.

Will you have multiple implementers of bluetoothService? Or multiple of BluetoothWiFiProvisioner?

Using interfaces to have a "pimpl" (private implementation + public methods) design is definitely against Go best practices, but maybe I'm misunderstanding what you're doing here. Interfaces are generally helpful for accepting multiple types of things that implement a common set of methods, not for hiding implementations. Apologies if you know these things already, but figured I'd come out strong and say I'm suspicious of the patterns you're using here wrt to the two interfaces (and one that's unexported.)

I think my concern extends to your use of generics, as they seem to be how you're getting around your usage of interfaces.

[maxhorowitz]

Thanks for diving in --- and definitely appreciate explanations of pimpl and best practices because I'm always looking to level up in Golang. I've used pimpl interfaces in the past because I liked how it made testing modular, so that's what I was going for --- and happy to learn that's not how it should be done.

I added the bluetoothService interface with the idea that some day we could support more than just Linux. The implementation I had in mind was linuxBluetoothService, windowsBluetoothService, etc., so that we could abstract away OS-specific bluetooth differences from the business logic inside of BluetoothWiFiProvisioner. That being said, it is super unlikely we get to that point soon. So the only real reason I could have for adding it is to make unit tests not reliant on the OS, but even that seems like overkill.

Changes I will make:

1. Remove the BluetoothWiFiProvisioner interface and make the corresponding private impl public
2. Remove the bluetoothService interface and instead add the methods I had in mind as private methods on the BluetoothWiFiProvisioner type so they're only accessible here

[maxhorowitz]

This is the exported interface which is to be consumed in the provisioning loop. In the interest of not "muddying" our provisioning loop flow, I keep this interface very simple. It only has things that you would need from the perspective of the provisioning loop, and it doesn't include anything about BT peripheral advertisement, characteristics, etc.

I get into the more "under-the-hood" functionality in the bluetooth_service.go file. There, I also have an interface so I can abstract away all Linux OS stuff.

[benjirewis]

Missing some of the picture here, but I thought I'd leave a round of comments before I'm OOO for most of next week. Feel free to ignore anything, too, more @Otterverse's + your code than mine.

[benjirewis]

It's tough for me to tell what's going on here without the implementer of this bluetoothService interface, but I'm definitely suspicious of the need for any interface at all.

Will you have multiple implementers of bluetoothService? Or multiple of BluetoothWiFiProvisioner?

Using interfaces to have a "pimpl" (private implementation + public methods) design is definitely against Go best practices, but maybe I'm misunderstanding what you're doing here. Interfaces are generally helpful for accepting multiple types of things that implement a common set of methods, not for hiding implementations. Apologies if you know these things already, but figured I'd come out strong and say I'm suspicious of the patterns you're using here wrt to the two interfaces (and one that's unexported.)

I think my concern extends to your use of generics, as they seem to be how you're getting around your usage of interfaces.

[benjirewis]

This method probably doesn't need a context if it's not passing it anywhere and is just immediately checking if it has errored.

[maxhorowitz]

Yes, removed from there and passing it a layer below.

[benjirewis]

If one of these four goroutines errors, do you want the other goroutines to stop?

[maxhorowitz]

Hmm - yes. That's right because if it enters that line it means we're requiring that value to be read properly.

[benjirewis]

[nit] This function isn't really waiting for any BLE value, it's just calling a callback in a loop and continuing if there's a certain type of error. I wonder if the name should reflect that a bit better.

[maxhorowitz]

Good point - will make it more accurate and less bias to how its used.

[benjirewis]

[nit] Not sure what agent's pattern is, but generally the standard library errors is a little more idiomatic.

[benjirewis]

Pls no.

[maxhorowitz]

😅

[maxhorowitz]

Copied this (including the errw prefix) from elsewhere in the Agent. The "github.com/pkg/errors" package has errors.WithMessage(err, "some wrapping message") and errors.Errorf("message with arg %s", arg) (which do not exist in the standard "errors" package).

[cheukt]

I assume that using errw is just so we can migrate old code without too much hassle, but for new code you can use fmt.Errorf

// An easy way to create wrapped errors is to call [fmt.Errorf] and apply
// the %w verb to the error argument:
//
//	wrapsErr := fmt.Errorf("... %w ...", ..., err, ...)

[maxhorowitz]

Awesome. Didn't know it was doable that way. Will change to this, thanks.

[ale7714]

you can re-use this type

agent/subsystems/provisioning/definitions.go

Line 112 in 90b7f59

type NetworkInfo struct {

[maxhorowitz]

Same as the above with regards to import cycles. Can use, but would need to pull that out. Otherwise, maybe we should just be moving this code into the existing provisioning package as its own file where it can also access those values?

[maxhorowitz]

Moved into provisioning and reused this type.

[ale7714]

lets reuse

agent/subsystems/provisioning/definitions.go

Line 257 in 90b7f59

type userInput struct {

These types will be the same in the BLE and the Hotspot flow

[maxhorowitz]

I can use that type but will have to move it out of the provisioning package and into an isolated package where both can import it (to get around an import cycle). Does that sound like something you would want here?

[maxhorowitz]

Moved into provisioning and reused this type.

[ale7714]

does this mean we won't provide helpful logging to the users? or that part will be implemented in enableAutoAcceptPairRequest?

[maxhorowitz]

Logging is included in the implementation of enableAutoAcceptPairRequest. The stacked PR containing its impl is here: #69.

[cheukt]

can use errors.Join

[cheukt]

this pattern feels odd to me - why are we starting 4 goroutines that's each calling 1 function in a loop? Something useful for context would be to know on a high level how each of the functions will work

[maxhorowitz]

To simplify handling asynchronous Bluetooth reads, I created a function that calls readSsid, readPsk, readRobotPartKeyID, and readRobotPartKey in retrying loops (1x per second). Since these values can arrive at any time—or may never be set—we want to wait for each one in parallel.

Rather than leaving this logic to the caller, which could be error-prone, this function ensures all values are retrieved before returning. And in the error case, it cancels context for all. Each function checks an in-memory store for existing data.

The requiresWiFiCredentials and requiresCloudCredentials booleans add flexibility, allowing callers to request only WiFi credentials, cloud credentials, or both as needed.

[cheukt]

I'm looking at https://github.com/viamrobotics/agent/pull/68/files so let me know if I'm missing something.

It seems possible to only have 1 goroutine that calls readSsid, readPsk, readRobotPartKeyID, and readRobotPartKey sequentially and then retry every second, is there a reason why not?

[maxhorowitz]

Suggested change

	// bluetoothWiFiProvisioner provides an interface for managing BLE (bluetooth-low-energy) peripheral advertisement on Linux.
	// bluetoothWiFiProvisioner provides methods for managing BLE (bluetooth-low-energy) peripheral advertisement on Linux.

[maxhorowitz]

Note to self to fix this and manually test the error matching works.

[maxhorowitz]

Suggested change

	func retryCallbackOnExpectedError(
	ctx context.Context, fn func() (string, error), expectedErr error, description string,
	func retryCallbackOnExpectedError[T any](
	ctx context.Context, fn func() (T, error), expectedErr error, description string,

[maxhorowitz]

@cheukt can't seem to get out of "review" mode on my PR which is preventing me from commenting on your comments.

I'm looking at https://github.com/viamrobotics/agent/pull/68/files so let me know if I'm missing something. It seems possible to only have 1 goroutine that calls readSsid, readPsk, readRobotPartKeyID, and readRobotPartKey sequentially and then retry every second, is there a reason why not?

No reason not to do that, other than we will have to add additional state in this function for "skipping" a read if we've already received a value for it.

[maxhorowitz]

Comments for self.

[cheukt]

ok, then we should prefer less goroutines - we can probably not spin a new one off at all and just use a for loop in the Wait function. I would avoid goroutines unless necessary, it introduces complexity and adds a ton of mental overhead for any future reader

[Otterverse]

I know this is far from finished, but left some initial comments. (Apologies if you already know these things and just haven't gotten to them yet.)

[Otterverse]

Generally we don't want to do per-OS logic at runtime. Go has a pretty clever mechanism (build constraints) for making different versions of a file (and therefore the functions it contains) build only under certain conditions. E.g. the "windows" build would include only the windows code, and the regular/linux file would include the linux versions. That keeps code cleaner and resulting binaries smaller as well.

See https://pkg.go.dev/cmd/go#hdr-Build_constraints for details, but feel free to ask me for more examples as we've used it quite a bit in RDK itself.

[Otterverse]

Don't use time.Sleep in agent/subsystems, it can cause health checks to fail. If you're inside a loop, use the mainLoopHealth/bgLoopHealth.Sleep(ctx) function instead

[Otterverse]

I don't understand why you're backgrounding this, only to wg.Wait() right afterwards.

[Otterverse]

That's a lot of individual variables to have be shared into the lambda. Why not just declare &userInput{} itself and set it's contents inside the lambda?