Gateway: finalize WS control plane

2025-12-09 14:41:41 +01:00
parent 9ef1545d06
commit b2e7fb01a9
23 changed files with 5209 additions and 2495 deletions
--- a/src/gateway/server.ts
+++ b/src/gateway/server.ts
@@ -0,0 +1,479 @@
+import os from "node:os";
+import { randomUUID } from "node:crypto";
+import { WebSocketServer, type WebSocket } from "ws";
+
+import { getHealthSnapshot } from "../commands/health.js";
+import { getStatusSummary } from "../commands/status.js";
+import { enqueueSystemEvent } from "../infra/system-events.js";
+import { listSystemPresence, upsertPresence } from "../infra/system-presence.js";
+import { logError } from "../logger.js";
+import { defaultRuntime } from "../runtime.js";
+import {
+  ErrorCodes,
+  type ErrorShape,
+  type Hello,
+  type RequestFrame,
+  type Snapshot,
+  errorShape,
+  formatValidationErrors,
+  validateAgentParams,
+  validateHello,
+  validateRequestFrame,
+  validateSendParams,
+} from "./protocol/index.js";
+import { sendMessageWhatsApp } from "../web/outbound.js";
+import { createDefaultDeps } from "../cli/deps.js";
+import { agentCommand } from "../commands/agent.js";
+import { onAgentEvent } from "../infra/agent-events.js";
+
+type Client = {
+  socket: WebSocket;
+  hello: Hello;
+  connId: string;
+};
+
+const METHODS = [
+  "health",
+  "status",
+  "system-presence",
+  "system-event",
+  "set-heartbeats",
+  "send",
+  "agent",
+];
+
+const EVENTS = ["agent", "presence", "tick", "shutdown"];
+
+export type GatewayServer = {
+  close: () => Promise<void>;
+};
+
+let presenceVersion = 1;
+let healthVersion = 1;
+let seq = 0;
+
+function buildSnapshot(): Snapshot {
+  const presence = listSystemPresence();
+  const uptimeMs = Math.round(process.uptime() * 1000);
+  // Health is async; caller should await getHealthSnapshot and replace later if needed.
+  const emptyHealth: unknown = {};
+  return {
+    presence,
+    health: emptyHealth,
+    stateVersion: { presence: presenceVersion, health: healthVersion },
+    uptimeMs,
+  };
+}
+
+const MAX_PAYLOAD_BYTES = 512 * 1024; // cap incoming frame size
+const MAX_BUFFERED_BYTES = 1.5 * 1024 * 1024; // per-connection send buffer limit
+const HANDSHAKE_TIMEOUT_MS = 3000;
+const TICK_INTERVAL_MS = 30_000;
+const DEDUPE_TTL_MS = 5 * 60_000;
+const DEDUPE_MAX = 1000;
+const SERVER_PROTO = 1;
+
+type DedupeEntry = { ts: number; ok: boolean; payload?: unknown; error?: ErrorShape };
+const dedupe = new Map<string, DedupeEntry>();
+
+const getGatewayToken = () => process.env.CLAWDIS_GATEWAY_TOKEN;
+
+export async function startGatewayServer(port = 18789): Promise<GatewayServer> {
+  const wss = new WebSocketServer({ port, host: "127.0.0.1", maxPayload: MAX_PAYLOAD_BYTES });
+  const clients = new Set<Client>();
+
+  const broadcast = (
+    event: string,
+    payload: unknown,
+    opts?: { dropIfSlow?: boolean; stateVersion?: { presence?: number; health?: number } },
+  ) => {
+    const frame = JSON.stringify({
+      type: "event",
+      event,
+      payload,
+      seq: ++seq,
+      stateVersion: opts?.stateVersion,
+    });
+    for (const c of clients) {
+      const slow = c.socket.bufferedAmount > MAX_BUFFERED_BYTES;
+      if (slow && opts?.dropIfSlow) continue;
+      if (slow) {
+        try {
+          c.socket.close(1008, "slow consumer");
+        } catch {
+          /* ignore */
+        }
+        continue;
+      }
+      try {
+        c.socket.send(frame);
+      } catch {
+        /* ignore */
+      }
+    }
+  };
+
+  // periodic keepalive
+  const tickInterval = setInterval(() => {
+    broadcast("tick", { ts: Date.now() }, { dropIfSlow: true });
+  }, TICK_INTERVAL_MS);
+
+  // dedupe cache cleanup
+  const dedupeCleanup = setInterval(() => {
+    const now = Date.now();
+    for (const [k, v] of dedupe) {
+      if (now - v.ts > DEDUPE_TTL_MS) dedupe.delete(k);
+    }
+    if (dedupe.size > DEDUPE_MAX) {
+      const entries = [...dedupe.entries()].sort((a, b) => a[1].ts - b[1].ts);
+      for (let i = 0; i < dedupe.size - DEDUPE_MAX; i++) {
+        dedupe.delete(entries[i][0]);
+      }
+    }
+  }, 60_000);
+
+  const agentUnsub = onAgentEvent((evt) => {
+    broadcast("agent", evt);
+  });
+
+  wss.on("connection", (socket) => {
+    let client: Client | null = null;
+    let closed = false;
+    const connId = randomUUID();
+    const deps = createDefaultDeps();
+
+    const send = (obj: unknown) => {
+      try {
+        socket.send(JSON.stringify(obj));
+      } catch {
+        /* ignore */
+      }
+    };
+
+    const close = () => {
+      if (closed) return;
+      closed = true;
+      clearTimeout(handshakeTimer);
+      if (client) clients.delete(client);
+      try {
+        socket.close(1000);
+      } catch {
+        /* ignore */
+      }
+    };
+
+    socket.once("error", () => close());
+    socket.once("close", () => {
+      if (client) {
+        // mark presence as disconnected
+        const key = client.hello.client.instanceId || connId;
+        upsertPresence(key, {
+          reason: "disconnect",
+        });
+        presenceVersion += 1;
+        broadcast(
+          "presence",
+          { presence: listSystemPresence() },
+          {
+            dropIfSlow: true,
+            stateVersion: { presence: presenceVersion, health: healthVersion },
+          },
+        );
+      }
+      close();
+    });
+
+    const handshakeTimer = setTimeout(() => {
+      if (!client) close();
+    }, HANDSHAKE_TIMEOUT_MS);
+
+    socket.on("message", async (data) => {
+      if (closed) return;
+      const text = data.toString();
+      try {
+        const parsed = JSON.parse(text);
+        if (!client) {
+          // Expect hello
+          if (!validateHello(parsed)) {
+            send({
+              type: "hello-error",
+              reason: `invalid hello: ${formatValidationErrors(validateHello.errors)}`,
+            });
+            socket.close(1008, "invalid hello");
+            close();
+            return;
+          }
+          const hello = parsed as Hello;
+          // protocol negotiation
+          const { minProtocol, maxProtocol } = hello;
+          if (maxProtocol < SERVER_PROTO || minProtocol > SERVER_PROTO) {
+            send({
+              type: "hello-error",
+              reason: "protocol mismatch",
+              expectedProtocol: SERVER_PROTO,
+            });
+            socket.close(1002, "protocol mismatch");
+            close();
+            return;
+          }
+          // token auth if required
+          const token = getGatewayToken();
+          if (token && hello.auth?.token !== token) {
+            send({
+              type: "hello-error",
+              reason: "unauthorized",
+            });
+            socket.close(1008, "unauthorized");
+            close();
+            return;
+          }
+
+          client = { socket, hello, connId };
+          clients.add(client);
+          // synthesize presence entry for this connection
+          const presenceKey = hello.client.instanceId || connId;
+          upsertPresence(presenceKey, {
+            host: os.hostname(),
+            version:
+              process.env.CLAWDIS_VERSION ??
+              process.env.npm_package_version ??
+              "dev",
+            mode: hello.client.mode,
+            instanceId: hello.client.instanceId,
+            reason: "connect",
+          });
+          presenceVersion += 1;
+          const snapshot = buildSnapshot();
+          // Fill health asynchronously for snapshot
+          const health = await getHealthSnapshot();
+          snapshot.health = health;
+          snapshot.stateVersion.health = ++healthVersion;
+          const helloOk = {
+            type: "hello-ok",
+            protocol: SERVER_PROTO,
+            server: {
+              version: process.env.CLAWDIS_VERSION ?? process.env.npm_package_version ?? "dev",
+              commit: process.env.GIT_COMMIT,
+              host: os.hostname(),
+              connId,
+            },
+            features: { methods: METHODS, events: EVENTS },
+            snapshot,
+            policy: {
+              maxPayload: MAX_PAYLOAD_BYTES,
+              maxBufferedBytes: MAX_BUFFERED_BYTES,
+              tickIntervalMs: TICK_INTERVAL_MS,
+            },
+          };
+          clearTimeout(handshakeTimer);
+          send(helloOk);
+          return;
+        }
+
+        // After handshake, accept only req frames
+        if (!validateRequestFrame(parsed)) {
+          send({
+            type: "res",
+            id: (parsed as { id?: unknown })?.id ?? "invalid",
+            ok: false,
+            error: errorShape(
+              ErrorCodes.INVALID_REQUEST,
+              `invalid request frame: ${formatValidationErrors(validateRequestFrame.errors)}`,
+            ),
+          });
+          return;
+        }
+        const req = parsed as RequestFrame;
+        const respond = (
+          ok: boolean,
+          payload?: unknown,
+          error?: ErrorShape,
+        ) => send({ type: "res", id: req.id, ok, payload, error });
+
+        switch (req.method) {
+          case "health": {
+            const health = await getHealthSnapshot();
+            healthVersion += 1;
+            respond(true, health, undefined);
+            break;
+          }
+          case "status": {
+            const status = await getStatusSummary();
+            respond(true, status, undefined);
+            break;
+          }
+          case "system-presence": {
+            const presence = listSystemPresence();
+            respond(true, presence, undefined);
+            break;
+          }
+          case "system-event": {
+            const text = String((req.params as { text?: unknown } | undefined)?.text ?? "").trim();
+            if (!text) {
+              respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, "text required"));
+              break;
+            }
+            enqueueSystemEvent(text);
+            presenceVersion += 1;
+            broadcast(
+              "presence",
+              { presence: listSystemPresence() },
+              {
+                dropIfSlow: true,
+                stateVersion: { presence: presenceVersion, health: healthVersion },
+              },
+            );
+            respond(true, { ok: true }, undefined);
+            break;
+          }
+          case "set-heartbeats": {
+            respond(true, { ok: true }, undefined);
+            break;
+          }
+          case "send": {
+            const p = (req.params ?? {}) as Record<string, unknown>;
+            if (!validateSendParams(p)) {
+              respond(
+                false,
+                undefined,
+                errorShape(
+                  ErrorCodes.INVALID_REQUEST,
+                  `invalid send params: ${formatValidationErrors(validateSendParams.errors)}`,
+                ),
+              );
+              break;
+            }
+            const params = p as {
+              to: string;
+              message: string;
+              mediaUrl?: string;
+              provider?: string;
+              idempotencyKey: string;
+            };
+            const idem = params.idempotencyKey;
+            const cached = dedupe.get(`send:${idem}`);
+            if (cached) {
+              respond(cached.ok, cached.payload, cached.error);
+              break;
+            }
+            const to = params.to.trim();
+            const message = params.message.trim();
+            try {
+              const result = await sendMessageWhatsApp(to, message, {
+                mediaUrl: params.mediaUrl,
+                verbose: false,
+              });
+              const payload = {
+                runId: idem,
+                messageId: result.messageId,
+                toJid: result.toJid ?? `${to}@s.whatsapp.net`,
+              };
+              dedupe.set(`send:${idem}`, { ts: Date.now(), ok: true, payload });
+              respond(true, payload, undefined);
+            } catch (err) {
+              const error = errorShape(ErrorCodes.UNAVAILABLE, String(err));
+              dedupe.set(`send:${idem}`, { ts: Date.now(), ok: false, error });
+              respond(false, undefined, error);
+            }
+            break;
+          }
+          case "agent": {
+            const p = (req.params ?? {}) as Record<string, unknown>;
+            if (!validateAgentParams(p)) {
+              respond(
+                false,
+                undefined,
+                errorShape(
+                  ErrorCodes.INVALID_REQUEST,
+                  `invalid agent params: ${formatValidationErrors(validateAgentParams.errors)}`,
+                ),
+              );
+              break;
+            }
+            const params = p as {
+              message: string;
+              to?: string;
+              sessionId?: string;
+              thinking?: string;
+              deliver?: boolean;
+              idempotencyKey: string;
+              timeout?: number;
+            };
+            const idem = params.idempotencyKey;
+            const cached = dedupe.get(`agent:${idem}`);
+            if (cached) {
+              respond(cached.ok, cached.payload, cached.error);
+              break;
+            }
+            const message = params.message.trim();
+            const runId = params.sessionId || randomUUID();
+            const ackPayload = { runId, status: "accepted" as const };
+            dedupe.set(`agent:${idem}`, { ts: Date.now(), ok: true, payload: ackPayload });
+            respond(true, ackPayload, undefined); // ack quickly
+            try {
+              await agentCommand(
+                {
+                  message,
+                  to: params.to,
+                  sessionId: params.sessionId,
+                  thinking: params.thinking,
+                  deliver: params.deliver,
+                  timeout: params.timeout?.toString(),
+                },
+                defaultRuntime,
+                deps,
+              );
+              const payload = { runId, status: "ok" as const, summary: "completed" };
+              dedupe.set(`agent:${idem}`, { ts: Date.now(), ok: true, payload });
+              respond(true, payload, undefined);
+            } catch (err) {
+              const error = errorShape(ErrorCodes.UNAVAILABLE, String(err));
+              const payload = { runId, status: "error" as const, summary: String(err) };
+              dedupe.set(`agent:${idem}`, { ts: Date.now(), ok: false, payload, error });
+              respond(false, payload, error);
+            }
+            break;
+          }
+          default: {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `unknown method: ${req.method}`));
+            break;
+          }
+        }
+      } catch (err) {
+        logError(`gateway: parse/handle error: ${String(err)}`);
+        // If still in handshake, close; otherwise respond error
+        if (!client) {
+          close();
+        }
+      }
+    });
+  });
+
+  defaultRuntime.log(
+    `gateway listening on ws://127.0.0.1:${port} (PID ${process.pid})`,
+  );
+
+  return {
+    close: async () => {
+      broadcast("shutdown", { reason: "gateway stopping", restartExpectedMs: null });
+      clearInterval(tickInterval);
+      clearInterval(dedupeCleanup);
+      if (agentUnsub) {
+        try {
+          agentUnsub();
+        } catch {
+          /* ignore */
+        }
+      }
+      for (const c of clients) {
+        try {
+          c.socket.close(1012, "service restart");
+        } catch {
+          /* ignore */
+        }
+      }
+      clients.clear();
+      await new Promise<void>((resolve) => wss.close(() => resolve()));
+    },
+  };
+}