--- status: draft last_updated: 2026-06-16 --- # alknet-core Core library for ALPN-based protocol dispatch. Every handler crate depends on alknet-core. ## Documents | Document | Status | Description | |----------|--------|-------------| | [core-types.md](core-types.md) | draft | ProtocolHandler trait, HandlerError, Connection, BiStream, StreamError | | [endpoint.md](endpoint.md) | draft | ALPN router, HandlerRegistry, accept loop, graceful shutdown | | [auth.md](auth.md) | draft | AuthContext, Identity, IdentityProvider, AuthToken, resolution flow | | [config.md](config.md) | draft | StaticConfig, DynamicConfig, ArcSwap, ConfigReloadHandle | ## Applicable ADRs | ADR | Title | Relevance | |-----|-------|-----------| | [001](../../decisions/001-alpn-protocol-dispatch.md) | ALPN-Based Protocol Dispatch | Core architectural model | | [002](../../decisions/002-protocol-handler-trait.md) | ProtocolHandler Trait | The trait every handler implements | | [003](../../decisions/003-crate-decomposition.md) | Crate Decomposition | alknet-core's position in the crate graph | | [004](../../decisions/004-auth-as-shared-core.md) | Auth as Shared Core | IdentityProvider in core | | [006](../../decisions/006-alpn-convention-and-connection-model.md) | ALPN String Convention | ALPN format, one-ALPN-per-connection | | [007](../../decisions/007-bistream-type-definition.md) | BiStream Type Definition | Connection, BiStream trait, SendStream, RecvStream | | [009](../../decisions/009-one-way-door-decision-framework.md) | One-Way Door Framework | Decision classification | | [010](../../decisions/010-alpn-router-and-endpoint.md) | ALPN Router and Endpoint | Endpoint, HandlerRegistry, accept loop | | [011](../../decisions/011-authcontext-structure.md) | AuthContext Structure | AuthContext fields and resolution flow | ## Relevant Open Questions | OQ | Title | Status | Relevance | |----|-------|--------|-----------| | OQ-04 | Dynamic handler registration | resolved (start static) | HandlerRegistry is immutable at startup | | OQ-05 | Multi-transport endpoint | open (start with quinn) | AlknetEndpoint uses quinn directly | | OQ-11 | AuthContext resolution completeness | open | How handlers signal auth completion | ## Key Design Principles 1. **One trait, one dispatch point**: `ProtocolHandler` is the only abstraction handlers implement. No StreamInterface/MessageInterface split. 2. **ALPN does the routing**: The endpoint dispatches by ALPN string. No byte-peeking, no ListenerConfig enum. 3. **Handlers own their wire format**: Each handler manages its own protocol parsing. alknet-core provides the Connection, not the framing. 4. **Auth is hybrid**: The endpoint provides what it can (TLS-level auth). Handlers complete what they need. AuthContext may be partial. 5. **WASM door preserved**: BiStream is a trait, Connection is an opaque type. Core types don't assume tokio or quinn in public APIs.