CogRPC: Cargo Relay over gRPC

  • Id: RS-008.
  • Status: Draft.
  • Type: Implementation.
  • Issue tracking label: spec-cogrpc.


This document describes CogRPC (pronounced Co-Jee-Arr-Pee-See), a cargo relay binding on top of gRPC.

Table of contents

  1. Introduction
  2. Remote Procedure Calls (RPCs)
    1. DeliverCargo
    2. CollectCargo
  3. Acknowledgement Messages
  4. Protocol Buffers Package Definition
  5. Public Gateway SRV records
  6. Relevant Specifications


As a cargo relay binding, CogRPC’s objective is to establish a Cargo Relay Connection (CRC) between a courier and a gateway so they can exchange cargo.

When a CRC is established between a private gateway and a courier, the gateway and the courier act as the client and the server, respectively. Similarly, when a CRC is established between a public gateway and a courier, they act as the server and the client, respectively.

This binding defines multiple message types and RPCs under a single gRPC service called CargoRelay. The gRPC interface described by this binding is defined in full in the form of Protocol Buffers at the end of this document.

The client is responsible for initiating the delivery and collection of parcels using the corresponding RPC. Note that per RS-000, it is required that the gateway receives any cargo before attempting to send any.

Remote Procedure Calls (RPCs)

The messages sent to and received from the gRPC services below MUST be serialized with Protocol Buffers v3.


This bidirectional streaming RPC MUST be used to deliver cargo to the server. The client MUST send zero or more RAMF-serialized cargo messages and the server MUST acknowledge the receipt of each cargo per the requirements and recommendations in RS-000.

The cargo sent to the server MAY originate in different gateways.


This bidirectional streaming RPC MUST be used to collect cargo from the server. The server MUST send zero or more RAMF-serialized cargo messages and the client MUST acknowledge the receipt of each cargo per the requirements and recommendations in RS-000.

This call MUST be authenticated by setting the Authorization metadata to the string Relaynet-CCA ${crcBase64}, where ${crcBase64} is the Base64-encoded serialization of a valid Cargo Collection Authorization (CCA). As a consequence, each call is bound to exactly one target gateway. The server MUST end the call with a GRPC_STATUS_UNAUTHENTICATED error when the client fails to provide a valid CCA.

The server MUST end the gRPC call when it has no further cargoes to send to the client. The underlying connection MAY remain open in case the client wishes to use the DeliverCargo RPC next.

Acknowledgement Messages

A node sending cargo MUST attach a UUID4 to each individual message. The recipient MUST attach such an identifier to each acknowledgement message.

Protocol Buffers Package Definition

syntax = "proto3";

package relaynet.cogrpc;

service CargoRelay {
    rpc DeliverCargo (stream CargoDelivery) returns (stream CargoDeliveryAck);

    rpc CollectCargo (stream CargoDeliveryAck) returns (stream CargoDelivery);

message CargoDelivery {
    string id = 1;
    bytes cargo = 2;

message CargoDeliveryAck {
    string id = 1;

Public Gateway SRV records

Because this binding uses the Transmission Control Protocol (TCP; RFC 793), SRV records for CRC servers implementing this binding MUST use the tcp protocol.

For example, a public gateway like could specify an SRV record as follows: 300 IN SRV 0 1 443

Relevant Specifications

Relaynet Core (RS-000) defines the requirements for message transport bindings in general and cargo relay bindings specifically, all of which apply to CogRPC. Amongst other things, it defines the use Transport Layer Security (TLS) or equivalent, as well as when it is safe to return acknowledgement messages.