History

rUv bf1dfe79fd fix(homecore core): TOCTOU race dropped/reordered state_changed events under concurrent writers (~93k→0) + 2 fail-closed hardenings (#1087 ) * fix(homecore): atomic state set — close TOCTOU lost/reordered state_changed events StateMachine::set did get() (release shard lock) → compute next + no-op decision → insert() (re-acquire lock) → send(). The read-modify-write was not atomic w.r.t. a concurrent writer on the same entity: a writer that read a stale `old` could mis-classify a real transition as a no-op and drop its state_changed event (a missed automation trigger) or fire an event whose new_state duplicated the previously delivered one (a spurious trigger for any automation keyed on old_state != new_state). ADR-127 §2.1 promises "writer atomically replaces the map entry"; the implementation did not. Fix: hold the DashMap shard write-lock across the whole read→decide→insert→ fire sequence via entry()/insert_entry(). tx.send is non-blocking, non-async, and never re-enters the map, so firing under the shard lock cannot deadlock and keeps global event order in lock-step with global commit order. Pinned by concurrent_set_fires_no_duplicate_adjacent_events: 4 writers toggling one entity A/B; asserts no two consecutive fired events carry the same new_state (impossible under correct serialisation). Fails reliably on the old code (~365-476 duplicate-adjacent events on the first trial), passes on the fix across repeated runs. Co-Authored-By: claude-flow <ruv@ruv.net> * harden(homecore): bound entity_id length — close memory-DoS at the REST boundary homecore-api/src/rest.rs parses untrusted path segments straight through EntityId::parse (get/delete/set_state). With no length cap, an otherwise-valid id like "a." + many MB of [a-z0-9_] was accepted; a POST /api/states/<giant> would persist it into the DashMap state store, permanently growing memory (amplification across distinct ids). Fix: reject ids longer than MAX_ENTITY_ID_LEN (255, HA-compatible) up front in parse(), before any per-char scan, with a new EntityIdError::TooLong. Fails closed at the boundary type so every caller (REST, registry deserialize, automation) is protected. Pinned by entity_id_length_boundary: exactly-MAX accepted, MAX+1 rejected, 4 MiB id rejected as TooLong. Fails on old code (oversized parses Ok). Co-Authored-By: claude-flow <ruv@ruv.net> * harden(homecore): isolate panicking service handlers (catch_unwind) ServiceRegistry::call already ran handlers outside the registry lock (the Arc<dyn ServiceHandler> is cloned out of the read guard first), so a panic could never poison the RwLock or block other callers — good. But a panicking handler unwound through call() into the caller's task; the task driving the engine (e.g. an axum request handler invoking a service) could be aborted by one buggy integration. Fix: wrap the handler future in AssertUnwindSafe + FutureExt::catch_unwind and convert a panic into ServiceError::HandlerPanicked. Mirrors HA isolating service-handler exceptions. The registry stays fully usable afterwards. Pinned by panicking_handler_is_isolated_and_registry_survives: the panicking call returns HandlerPanicked (not an unwind), a sibling healthy service still returns its value, and the bad service remains registered. Fails on old code (the await point panics instead of returning Err). Co-Authored-By: claude-flow <ruv@ruv.net> * test(homecore): pin event-bus lag safety (bounded broadcast, no DoS) Documents-with-evidence that the core EventBus does NOT have the homecore-api WS broadcast-lag failure: with EVENT_CHANNEL_CAPACITY=4096, firing 3x capacity while a subscriber never drains keeps fire_* non-blocking (publisher never waits on slow receivers), gives the slow receiver a recoverable Lagged(n) (drop-oldest + re-sync) rather than a closed channel, and leaves the bus live for a fresh fast subscriber. No code change — pins the clean dimension. Co-Authored-By: claude-flow <ruv@ruv.net> * docs(homecore): record ADR-127 §9 security+concurrency review + CHANGELOG Documents the three pinned fixes (HC-RACE-01 state-set TOCTOU, HC-EID-LEN-01 entity_id memory-DoS, HC-SVC-PANIC-01 service-handler isolation) and the clean dimensions (bounded event-bus lag handling, lock discipline / no lock-across-await, no panic-on-input) with their evidence. Co-Authored-By: claude-flow <ruv@ruv.net>		2026-06-14 22:28:05 -04:00
..
cog-ha-matter	harden(cog-ha-matter crypto): domain-separate witness signing + verify_strict (signing chain otherwise sound — P2 crypto core verified) (#1080 )	2026-06-14 19:04:09 -04:00
cog-person-count	bench(cogs): steady-state CPU infer latency benches (ADR-163 T2)	2026-06-12 08:01:50 -04:00
cog-pose-estimation	bench(cogs): steady-state CPU infer latency benches (ADR-163 T2)	2026-06-12 08:01:50 -04:00
homecore	fix(homecore core): TOCTOU race dropped/reordered state_changed events under concurrent writers (~93k→0) + 2 fail-closed hardenings (#1087 )	2026-06-14 22:28:05 -04:00
homecore-api	fix(homecore-api security): auth-gate GET /api/ (was unauthenticated) + recover WS subscription on broadcast lag (#1076 )	2026-06-14 16:48:57 -04:00
homecore-assist	harden(assist security): bound untrusted utterance (DoS); cmd-injection/ReDoS/NaN/fail-open all proven clean with evidence (#1086 )	2026-06-14 21:34:38 -04:00
homecore-automation	fix(automation security): template-bomb DoS (100MB/11s render → fuel-bounded, HIGH) + delay panic-on-config (MEDIUM) (#1083 )	2026-06-14 20:22:07 -04:00
homecore-hap	docs(homecore-hap): comprehensive README — HomeKit bridge with 11 accessory types	2026-05-25 23:11:15 -04:00
homecore-migrate	docs(adr): write ADR-165 (HOMECORE-MIGRATE), repoint migrate 134→165 — ADR-164 G3	2026-06-12 23:00:33 -04:00
homecore-plugin-example	HOMECORE: native Rust/WASM/TS port of Home Assistant — ADRs 125-134 implementation (#800 )	2026-05-25 22:47:48 -04:00
homecore-plugins	feat(homecore-plugins): enforce plugin signature + capability isolation (ADR-162 P4/P5)	2026-06-12 01:33:52 -04:00
homecore-recorder	fix(recorder): bound history query (memory-DoS) + add missing transactional purge (disk-DoS); SQL-injection & NaN dims clean (#1084 )	2026-06-14 21:00:52 -04:00
homecore-server	fix(homecore-automation): start engine + implement time/run-mode/choose/template (ADR-161 A3-A7)	2026-06-12 00:55:34 -04:00
nvsim	fix(security): audit — fix RUSTSEC vulns, clippy warnings, dead code (#769 )	2026-05-23 05:36:13 -04:00
nvsim-server	fix(security): audit — fix RUSTSEC vulns, clippy warnings, dead code (#769 )	2026-05-23 05:36:13 -04:00
ruv-neural@1ece3afa33	chore: extract ruv-neural to ruvnet/ruv-neural, wire as submodule (#1019 )	2026-06-11 18:12:51 -04:00
ruview-swarm	fix(adr): resolve duplicate ADR numbers + close ADR-080 security + ADR-154 M1 signal backlog (#1051 )	2026-06-13 14:31:38 -04:00
wifi-densepose-bfld	fix(bfld security): close HIGH privacy-bypass in process_to_frame (identity surface leaked despite restrictive class) + JSON-injection (#1075 )	2026-06-14 16:15:42 -04:00
wifi-densepose-calibration	fix(calibration): NaN-poisoning silently disabled presence specialist (Features::from_series unguarded) + de-magic (#1077 )	2026-06-14 17:22:20 -04:00
wifi-densepose-cli	release: bump signal 0.3.4 / sensing-server 0.3.3 / cli 0.3.1 (fixes #1009 , #1004 )	2026-06-12 16:55:27 -04:00
wifi-densepose-core	Beyond-SOTA engine/signal/train improvements: mesh partition guard, FFT CIR solver, canonical frame decoder, falsifiable occupancy benchmark, governed streaming, adapter provenance (#1018 )	2026-06-11 16:08:54 -04:00
wifi-densepose-desktop	fix: revert config-dependent cargo-fix changes (kept only always-safe edits)	2026-06-12 08:56:26 -04:00
wifi-densepose-engine	fix(engine security): close witness domain-separation collision in governed-trust cycle + prove privacy monotonicity (#1074 )	2026-06-14 15:32:24 -04:00
wifi-densepose-geo	fix(geo numerical): parse_hgt underflow/inf-grid (HIGH) + haversine asin-NaN; pointcloud confirmed-robust (NaN-poisoning class, 3rd find) (#1081 )	2026-06-14 19:37:08 -04:00
wifi-densepose-hardware	feat(beyond-sota): ADR-157 M1 — constant-time HMAC compare + MEASURED 5.57x native wlanapi scan (#1054 )	2026-06-13 16:32:34 -04:00
wifi-densepose-mat	release: bump 9 crates changed in the beyond-SOTA sweep for crates.io	2026-06-11 22:41:21 -04:00
wifi-densepose-nn	refactor(beyond-sota): ADR-155 M2 — host-verifiable §8 closeout (7 de-magic, 9 boundary tests, native-conv honest-null) (#1059 )	2026-06-14 00:07:56 -04:00
wifi-densepose-occworld-candle	feat(occworld): real conv encoder/decoder forward pass + honesty flag	2026-06-11 21:47:19 -04:00
wifi-densepose-pointcloud	fix(geo numerical): parse_hgt underflow/inf-grid (HIGH) + haversine asin-NaN; pointcloud confirmed-robust (NaN-poisoning class, 3rd find) (#1081 )	2026-06-14 19:37:08 -04:00
wifi-densepose-rufield	feat(ADR-262 P3): live /api/field + /ws/field — RuView sensing speaks RuField (fail-closed egress) (#1071 )	2026-06-14 13:55:41 -04:00
wifi-densepose-ruvector	feat(ADR-261 M2): multi-bit + large-N ANN scaling study — measured, no crossover (refutes M1 prediction) (#1066 )	2026-06-14 10:31:00 -04:00
wifi-densepose-sensing-server	feat(ADR-262 P3): live /api/field + /ws/field — RuView sensing speaks RuField (fail-closed egress) (#1071 )	2026-06-14 13:55:41 -04:00
wifi-densepose-signal	refactor(beyond-sota): ADR-154 M3 — clear §7.4 P3 backlog (22 de-magic + 6 boundary tests, backlog 36→0) (#1057 )	2026-06-13 19:36:05 -04:00
wifi-densepose-train	refactor(beyond-sota): ADR-155 M2 — host-verifiable §8 closeout (7 de-magic, 9 boundary tests, native-conv honest-null) (#1059 )	2026-06-14 00:07:56 -04:00
wifi-densepose-vitals	fix(vitals safety): non-finite CSI frame permanently froze breathing+HR via IIR-state poisoning (self-heal) + noise-never-Valid pin (#1079 )	2026-06-14 18:01:47 -04:00
wifi-densepose-wasm	fix(security): audit — fix RUSTSEC vulns, clippy warnings, dead code (#769 )	2026-05-23 05:36:13 -04:00
wifi-densepose-wasm-edge	test(wasm-edge): synthetic-ground-truth validation harness for edge skills (ADR-160)	2026-06-13 00:33:51 -04:00
wifi-densepose-wifiscan	feat(beyond-sota): ADR-157 M1 — constant-time HMAC compare + MEASURED 5.57x native wlanapi scan (#1054 )	2026-06-13 16:32:34 -04:00
wifi-densepose-worldgraph	Beyond-SOTA engine/signal/train improvements: mesh partition guard, FFT CIR solver, canonical frame decoder, falsifiable occupancy benchmark, governed streaming, adapter provenance (#1018 )	2026-06-11 16:08:54 -04:00
wifi-densepose-worldmodel	feat: per-room calibration system (ADR-151) + cognitum-v0 appliance integration spec (#989 )	2026-06-10 15:21:09 -04:00
README.md	chore(repo): rename rust-port/wifi-densepose-rs → v2/ (flatten to one level) (#427 )	2026-04-25 21:28:13 -04:00

README.md

WiFi-DensePose Rust Crates

See through walls with WiFi. No cameras. No wearables. Just radio waves.

A modular Rust workspace for WiFi-based human pose estimation, vital sign monitoring, and disaster response using Channel State Information (CSI). Built on RuVector graph algorithms and the WiFi-DensePose research platform by rUv.

Performance

Operation	Python v1	Rust v2	Speedup
CSI Preprocessing	~5 ms	5.19 us	~1000x
Phase Sanitization	~3 ms	3.84 us	~780x
Feature Extraction	~8 ms	9.03 us	~890x
Motion Detection	~1 ms	186 ns	~5400x
Full Pipeline	~15 ms	18.47 us	~810x
Vital Signs	N/A	86 us (11,665 fps)	--

Crate Overview

Core Foundation

Crate	Description	crates.io
`wifi-densepose-core`	Types, traits, and utilities (`CsiFrame`, `PoseEstimate`, `SignalProcessor`)
`wifi-densepose-config`	Configuration management (env, TOML, YAML)
`wifi-densepose-db`	Database persistence (PostgreSQL, SQLite, Redis)

Signal Processing & Sensing

Crate	Description	RuVector Integration
`wifi-densepose-signal`	SOTA CSI signal processing (6 algorithms from SpotFi, FarSense, Widar 3.0)	`ruvector-mincut`, `ruvector-attn-mincut`, `ruvector-attention`, `ruvector-solver`
`wifi-densepose-vitals`	Vital sign extraction: breathing (6-30 BPM) and heart rate (40-120 BPM)	--
`wifi-densepose-wifiscan`	Multi-BSSID WiFi scanning for Windows-enhanced sensing	--

Neural Network & Training

Crate	Description	RuVector Integration	crates.io
`wifi-densepose-nn`	Multi-backend inference (ONNX, PyTorch, Candle) with DensePose head (24 body parts)	--
`wifi-densepose-train`	Training pipeline with MM-Fi dataset, 114->56 subcarrier interpolation	All 5 crates

Disaster Response

Crate	Description	RuVector Integration	crates.io
`wifi-densepose-mat`	Mass Casualty Assessment Tool -- survivor detection, triage, multi-AP localization	`ruvector-solver`, `ruvector-temporal-tensor`

Hardware & Deployment

Crate	Description	crates.io
`wifi-densepose-hardware`	ESP32, Intel 5300, Atheros CSI sensor interfaces (pure Rust, no FFI)
`wifi-densepose-wasm`	WebAssembly bindings for browser-based disaster dashboard
`wifi-densepose-sensing-server`	Axum server: ESP32 UDP ingestion, WebSocket broadcast, sensing UI

Applications

Crate	Description	crates.io
`wifi-densepose-api`	REST + WebSocket API layer
`wifi-densepose-cli`	Command-line tool for MAT disaster scanning

Architecture

                          wifi-densepose-core
                         (types, traits, errors)
                                  |
              +-------------------+-------------------+
              |                   |                   |
    wifi-densepose-signal   wifi-densepose-nn   wifi-densepose-hardware
    (CSI processing)        (inference)         (ESP32, Intel 5300)
    + ruvector-mincut       + ONNX Runtime          |
    + ruvector-attn-mincut  + PyTorch (tch)   wifi-densepose-vitals
    + ruvector-attention    + Candle          (breathing, heart rate)
    + ruvector-solver            |
              |                  |             wifi-densepose-wifiscan
              +--------+---------+            (BSSID scanning)
                       |
          +------------+------------+
          |                         |
  wifi-densepose-train    wifi-densepose-mat
  (training pipeline)     (disaster response)
  + ALL 5 ruvector        + ruvector-solver
                          + ruvector-temporal-tensor
                                |
              +-----------------+-----------------+
              |                 |                 |
    wifi-densepose-api  wifi-densepose-wasm  wifi-densepose-cli
    (REST/WS)           (browser WASM)       (CLI tool)
              |
    wifi-densepose-sensing-server
    (Axum + WebSocket)

RuVector Integration

All RuVector crates at v2.0.4 from crates.io:

RuVector Crate	Used In	Purpose
`ruvector-mincut`	signal, train	Dynamic min-cut for subcarrier selection & person matching
`ruvector-attn-mincut`	signal, train	Attention-weighted min-cut for antenna gating & spectrograms
`ruvector-temporal-tensor`	train, mat	Tiered temporal compression (4-10x memory reduction)
`ruvector-solver`	signal, train, mat	Sparse Neumann solver for interpolation & triangulation
`ruvector-attention`	signal, train	Scaled dot-product attention for spatial features & BVP

Signal Processing Algorithms

Six state-of-the-art algorithms implemented in wifi-densepose-signal:

Algorithm	Paper	Year	Module
Conjugate Multiplication	SpotFi (SIGCOMM)	2015	`csi_ratio.rs`
Hampel Filter	WiGest	2015	`hampel.rs`
Fresnel Zone Model	FarSense (MobiCom)	2019	`fresnel.rs`
CSI Spectrogram	Standard STFT	2018+	`spectrogram.rs`
Subcarrier Selection	WiDance (MobiCom)	2017	`subcarrier_selection.rs`
Body Velocity Profile	Widar 3.0 (MobiSys)	2019	`bvp.rs`

Quick Start

As a Library

use wifi_densepose_core::{CsiFrame, CsiMetadata, SignalProcessor};
use wifi_densepose_signal::{CsiProcessor, CsiProcessorConfig};

// Configure the CSI processor
let config = CsiProcessorConfig::default();
let processor = CsiProcessor::new(config);

// Process a CSI frame
let frame = CsiFrame { /* ... */ };
let processed = processor.process(&frame)?;

Vital Sign Monitoring

use wifi_densepose_vitals::{
    CsiVitalPreprocessor, BreathingExtractor, HeartRateExtractor,
    VitalAnomalyDetector,
};

let mut preprocessor = CsiVitalPreprocessor::new(56); // 56 subcarriers
let mut breathing = BreathingExtractor::new(100.0);    // 100 Hz sample rate
let mut heartrate = HeartRateExtractor::new(100.0);

// Feed CSI frames and extract vitals
for frame in csi_stream {
    let residuals = preprocessor.update(&frame.amplitudes);
    if let Some(bpm) = breathing.push_residuals(&residuals) {
        println!("Breathing: {:.1} BPM", bpm);
    }
}

Disaster Response (MAT)

use wifi_densepose_mat::{DisasterResponse, DisasterConfig, DisasterType};

let config = DisasterConfig {
    disaster_type: DisasterType::Earthquake,
    max_scan_zones: 16,
    ..Default::default()
};

let mut responder = DisasterResponse::new(config);
responder.add_scan_zone(zone)?;
responder.start_continuous_scan().await?;

Hardware (ESP32)

use wifi_densepose_hardware::{Esp32CsiParser, CsiFrame};

let parser = Esp32CsiParser::new();
let raw_bytes: &[u8] = /* UDP packet from ESP32 */;
let frame: CsiFrame = parser.parse(raw_bytes)?;
println!("RSSI: {} dBm, {} subcarriers", frame.metadata.rssi, frame.subcarriers.len());

Training

# Check training crate (no GPU needed)
cargo check -p wifi-densepose-train --no-default-features

# Run training with GPU (requires tch/libtorch)
cargo run -p wifi-densepose-train --features tch-backend --bin train -- \
    --config training.toml --dataset /path/to/mmfi

# Verify deterministic training proof
cargo run -p wifi-densepose-train --features tch-backend --bin verify-training

Building

# Clone the repository
git clone https://github.com/ruvnet/wifi-densepose.git
cd wifi-densepose/v2

# Check workspace (no GPU dependencies)
cargo check --workspace --no-default-features

# Run all tests
cargo test --workspace --no-default-features

# Build release
cargo build --release --workspace

Feature Flags

Crate	Feature	Description
`wifi-densepose-nn`	`onnx` (default)	ONNX Runtime backend
`wifi-densepose-nn`	`tch-backend`	PyTorch (libtorch) backend
`wifi-densepose-nn`	`candle-backend`	Candle (pure Rust) backend
`wifi-densepose-nn`	`cuda`	CUDA GPU acceleration
`wifi-densepose-train`	`tch-backend`	Enable GPU training modules
`wifi-densepose-mat`	`ruvector` (default)	RuVector graph algorithms
`wifi-densepose-mat`	`api` (default)	REST + WebSocket API
`wifi-densepose-mat`	`distributed`	Multi-node coordination
`wifi-densepose-mat`	`drone`	Drone-mounted scanning
`wifi-densepose-hardware`	`esp32`	ESP32 protocol support
`wifi-densepose-hardware`	`intel5300`	Intel 5300 CSI Tool
`wifi-densepose-hardware`	`linux-wifi`	Linux commodity WiFi
`wifi-densepose-wifiscan`	`wlanapi`	Windows WLAN API async scanning
`wifi-densepose-core`	`serde`	Serialization support
`wifi-densepose-core`	`async`	Async trait support

Testing

# Unit tests (all crates)
cargo test --workspace --no-default-features

# Signal processing benchmarks
cargo bench -p wifi-densepose-signal

# Training benchmarks
cargo bench -p wifi-densepose-train --no-default-features

# Detection benchmarks
cargo bench -p wifi-densepose-mat

Supported Hardware

Hardware	Crate Feature	CSI Subcarriers	Cost
ESP32-S3 Mesh (3-6 nodes)	`hardware/esp32`	52-56	~$54
Intel 5300 NIC	`hardware/intel5300`	30	~$50
Atheros AR9580	`hardware/linux-wifi`	56	~$100
Any WiFi (Windows/Linux)	`wifiscan`	RSSI-only	$0

Architecture Decision Records

Key design decisions documented in docs/adr/:

ADR	Title	Status
ADR-014	SOTA Signal Processing	Accepted
ADR-015	MM-Fi + Wi-Pose Training Datasets	Accepted
ADR-016	RuVector Training Pipeline	Accepted (Complete)
ADR-017	RuVector Signal + MAT Integration	Accepted
ADR-021	Vital Sign Detection Pipeline	Accepted
ADR-022	Windows WiFi Enhanced Sensing	Accepted
ADR-024	Contrastive CSI Embedding Model	Accepted

WiFi-DensePose -- Main repository (Python v1 + Rust v2)
RuVector -- Graph algorithms for neural networks (5 crates, v2.0.4)
rUv -- Creator and maintainer

License

All crates are dual-licensed under MIT OR Apache-2.0.