main.h File Reference

Go to the source code of this file.

Data Structures
struct	acds_config_t
	Discovery server configuration. More...

Functions
int	acds_main (void)
	ACDS (discovery-service mode) entry point.

Function Documentation

acds_main()

int acds_main

(

void

)

ACDS (discovery-service mode) entry point.

Expects options already parsed and shared initialization complete. Called by main.c mode dispatcher after options_init() and asciichat_shared_init().

Returns

Exit code (0 = success, non-zero = error)

Definition at line 99 of file discovery-service/main.c.

                    {
  asciichat_error_t result;
 
  // Handle keepawake: check for mutual exclusivity and apply mode default
  // Discovery-service default: keepawake DISABLED (use --keepawake to enable)
  if (GET_OPTION(enable_keepawake) && GET_OPTION(disable_keepawake)) {
    log_error("--keepawake and --no-keepawake are mutually exclusive");
    return ERROR_INVALID_PARAM;
  }
  if (GET_OPTION(enable_keepawake)) {
    (void)platform_enable_keepawake();
  }
 
  // Increase file descriptor limit for many concurrent connections
#ifdef __linux__
  struct rlimit rl = {.rlim_cur = 65536, .rlim_max = 65536};
  if (setrlimit(RLIMIT_NOFILE, &rl) < 0) {
    log_warn("couldn't raise fd limit: %s", strerror(errno));
  }
#elif defined(__APPLE__)
  struct rlimit rl = {.rlim_cur = 10240, .rlim_max = RLIM_INFINITY};
  setrlimit(RLIMIT_NOFILE, &rl);
#endif
 
  // Options already parsed and shared initialization complete (done by main.c)
  const options_t *opts = options_get();
 
  log_info("ascii-chat Discovery Service (acds) starting...");
  log_info("Version: %s (%s, %s)", ASCII_CHAT_VERSION_FULL, ASCII_CHAT_BUILD_TYPE, ASCII_CHAT_BUILD_DATE);
 
  // Initialize session string generator (libsodium)
  result = acds_string_init();
  if (result != ASCIICHAT_OK) {
    log_error("Failed to initialize session string generator");
    return result;
  }
 
  // Load or generate identity keys
  uint8_t public_key[32];
  uint8_t secret_key[64];
 
  const char *acds_key_path = GET_OPTION(encrypt_key);
  // If no key provided, use default path in config directory
  char default_key_path[PLATFORM_MAX_PATH_LENGTH] = {0};
  if (!acds_key_path || acds_key_path[0] == '\0') {
    const char *config_dir = get_config_dir();
    if (config_dir) {
      safe_snprintf(default_key_path, sizeof(default_key_path), "%sdiscovery_identity", config_dir);
      acds_key_path = default_key_path;
    }
  }
  log_info("Loading identity key from %s", acds_key_path);
  result = acds_identity_load(acds_key_path, public_key, secret_key);
 
  if (result != ASCIICHAT_OK) {
    log_info("Identity key not found, generating new key...");
 
    result = acds_identity_generate(public_key, secret_key);
    if (result != ASCIICHAT_OK) {
      log_error("Failed to generate identity key");
      return result;
    }
 
    result = acds_identity_save(acds_key_path, public_key, secret_key);
    if (result != ASCIICHAT_OK) {
      log_error("Failed to save identity key to %s", acds_key_path);
      return result;
    }
 
    log_info("Saved new identity key to %s", acds_key_path);
  }
 
  // Display server fingerprint
  char fingerprint[65];
  acds_identity_fingerprint(public_key, fingerprint);
  log_info("Discovery server identity: SHA256:%s", fingerprint);
  char msg[256];
  safe_snprintf(msg, sizeof(msg), "🔑 Server fingerprint: SHA256:%s", fingerprint);
  log_console(LOG_INFO, msg);
 
  // Create config from options for server initialization
  acds_config_t config;
  // Read validated port option (discovery-service listens on 'port', not 'acds_port')
  int port_num = GET_OPTION(port);
  if (port_num < 1 || port_num > 65535) {
    log_error("Invalid port: %d (must be 1-65535)", port_num);
    return ERROR_INVALID_PARAM;
  }
  config.port = port_num;
 
  const char *address = opts && opts->address[0] != '\0' ? opts->address : "127.0.0.1";
  const char *address6 = opts && opts->address6[0] != '\0' ? opts->address6 : "::1";
  const char *log_file = opts && opts->log_file[0] != '\0' ? opts->log_file : "acds.log";
  SAFE_STRNCPY(config.address, address, sizeof(config.address));
  SAFE_STRNCPY(config.address6, address6, sizeof(config.address6));
  SAFE_STRNCPY(config.database_path, GET_OPTION(discovery_database_path), sizeof(config.database_path));
  SAFE_STRNCPY(config.key_path, acds_key_path, sizeof(config.key_path));
  SAFE_STRNCPY(config.log_file, log_file, sizeof(config.log_file));
  config.log_level = GET_OPTION(log_level);
  config.require_server_identity = GET_OPTION(require_server_identity) != 0;
  config.require_client_identity = GET_OPTION(require_client_identity) != 0;
 
  // Log security policy
  if (config.require_server_identity) {
    log_info("Security: Requiring signed identity from servers creating sessions");
  }
  if (config.require_client_identity) {
    log_info("Security: Requiring signed identity from clients joining sessions");
  }
 
  // Parse STUN servers from comma-separated list
  config.stun_count = 0;
  memset(config.stun_servers, 0, sizeof(config.stun_servers));
  const char *stun_servers_str = GET_OPTION(stun_servers);
  if (stun_servers_str && stun_servers_str[0] != '\0') {
    char stun_copy[OPTIONS_BUFF_SIZE];
    SAFE_STRNCPY(stun_copy, stun_servers_str, sizeof(stun_copy));
 
    char *saveptr = NULL;
    char *token = platform_strtok_r(stun_copy, ",", &saveptr);
    while (token && config.stun_count < 4) {
      // Trim whitespace
      while (*token == ' ' || *token == '\t')
        token++;
      size_t len = strlen(token);
      while (len > 0 && (token[len - 1] == ' ' || token[len - 1] == '\t')) {
        token[--len] = '\0';
      }
 
      if (len > 0 && len < sizeof(config.stun_servers[0].host)) {
        config.stun_servers[config.stun_count].host_len = (uint8_t)len;
        SAFE_STRNCPY(config.stun_servers[config.stun_count].host, token,
                     sizeof(config.stun_servers[config.stun_count].host));
        log_info("Added STUN server: %s", token);
        config.stun_count++;
      } else if (len > 0) {
        log_warn("STUN server URL too long (max 63 chars): %s", token);
      }
 
      token = platform_strtok_r(NULL, ",", &saveptr);
    }
  }
 
  // Parse TURN servers from comma-separated list
  config.turn_count = 0;
  memset(config.turn_servers, 0, sizeof(config.turn_servers));
  const char *turn_servers_str = GET_OPTION(turn_servers);
  const char *turn_username_str = GET_OPTION(turn_username);
  const char *turn_credential_str = GET_OPTION(turn_credential);
 
  if (turn_servers_str && turn_servers_str[0] != '\0') {
    char turn_copy[OPTIONS_BUFF_SIZE];
    SAFE_STRNCPY(turn_copy, turn_servers_str, sizeof(turn_copy));
 
    char *saveptr = NULL;
    char *token = platform_strtok_r(turn_copy, ",", &saveptr);
    while (token && config.turn_count < 4) {
      // Trim whitespace
      while (*token == ' ' || *token == '\t')
        token++;
      size_t len = strlen(token);
      while (len > 0 && (token[len - 1] == ' ' || token[len - 1] == '\t')) {
        token[--len] = '\0';
      }
 
      if (len > 0 && len < sizeof(config.turn_servers[0].url)) {
        config.turn_servers[config.turn_count].url_len = (uint8_t)len;
        SAFE_STRNCPY(config.turn_servers[config.turn_count].url, token,
                     sizeof(config.turn_servers[config.turn_count].url));
 
        // Set username if provided
        if (turn_username_str && turn_username_str[0] != '\0') {
          size_t username_len = strlen(turn_username_str);
          if (username_len < sizeof(config.turn_servers[0].username)) {
            config.turn_servers[config.turn_count].username_len = (uint8_t)username_len;
            SAFE_STRNCPY(config.turn_servers[config.turn_count].username, turn_username_str,
                         sizeof(config.turn_servers[config.turn_count].username));
          }
        }
 
        // Set credential if provided
        if (turn_credential_str && turn_credential_str[0] != '\0') {
          size_t credential_len = strlen(turn_credential_str);
          if (credential_len < sizeof(config.turn_servers[0].credential)) {
            config.turn_servers[config.turn_count].credential_len = (uint8_t)credential_len;
            SAFE_STRNCPY(config.turn_servers[config.turn_count].credential, turn_credential_str,
                         sizeof(config.turn_servers[config.turn_count].credential));
          }
        }
 
        log_info("Added TURN server: %s (username: %s)", token,
                 turn_username_str && turn_username_str[0] ? turn_username_str : "<none>");
        config.turn_count++;
      } else if (len > 0) {
        log_warn("TURN server URL too long (max 63 chars): %s", token);
      }
 
      token = platform_strtok_r(NULL, ",", &saveptr);
    }
  }
 
  // Copy TURN secret for dynamic credential generation
  const char *turn_secret_str = GET_OPTION(turn_secret);
  if (turn_secret_str && turn_secret_str[0] != '\0') {
    SAFE_STRNCPY(config.turn_secret, turn_secret_str, sizeof(config.turn_secret));
    log_info("TURN dynamic credential generation enabled");
  } else {
    config.turn_secret[0] = '\0';
  }
 
  // Initialize server
  acds_server_t server;
  memset(&server, 0, sizeof(server));
  g_server = &server;
 
  result = acds_server_init(&server, &config);
  if (result != ASCIICHAT_OK) {
    log_error("Server initialization failed");
    g_server = NULL;
    return result;
  }
 
  // Initialize WebSocket server (for browser clients)
  websocket_server_config_t ws_config = {
      .port = GET_OPTION(websocket_port),
      .client_handler = NULL, // TODO: Implement WebSocket client handler for discovery-service
      .user_data = &server,
  };
 
  memset(&g_websocket_server, 0, sizeof(g_websocket_server));
  asciichat_error_t ws_init_result = websocket_server_init(&g_websocket_server, &ws_config);
  if (ws_init_result != ASCIICHAT_OK) {
    log_warn("Failed to initialize WebSocket server - browser clients will not be supported");
  } else {
    log_info("WebSocket server initialized on port %d", GET_OPTION(websocket_port));
  }
 
  // Set up status screen callback if enabled
  g_discovery_start_time = time(NULL);
  g_last_status_update = g_discovery_start_time;
  if (GET_OPTION(status_screen)) {
    server.tcp_server.config.status_update_fn = discovery_status_update_callback;
    server.tcp_server.config.status_update_data = &server;
  }
 
  // Check if shutdown was requested during initialization
  if (acds_should_exit()) {
    log_info("Shutdown signal received during initialization, skipping server startup");
    return 0;
  }
 
  // =========================================================================
  // UPnP Port Mapping (Quick Win for Direct TCP)
  // =========================================================================
  // Try to open port via UPnP so direct TCP works for ~70% of home users.
  // If this fails, clients fall back to WebRTC automatically - not fatal.
  //
  // Strategy:
  //   1. UPnP (works on ~90% of home routers)
  //   2. NAT-PMP fallback (Apple routers)
  //   3. If both fail: use ACDS + WebRTC (reliable, but slightly higher latency)
 
  // Check again before expensive UPnP initialization (might timeout trying to reach router)
  if (acds_should_exit()) {
    log_info("Shutdown signal received before UPnP initialization");
    result = ASCIICHAT_OK;
    goto cleanup_resources;
  }
 
  if (GET_OPTION(enable_upnp)) {
    asciichat_error_t upnp_result = nat_upnp_open(config.port, "ascii-chat ACDS", &g_upnp_ctx);
 
    if (upnp_result == ASCIICHAT_OK && g_upnp_ctx) {
      char public_addr[22];
      if (nat_upnp_get_address(g_upnp_ctx, public_addr, sizeof(public_addr)) == ASCIICHAT_OK) {
        char msg[256];
        safe_snprintf(msg, sizeof(msg), "🌐 Public endpoint: %s (direct TCP)", public_addr);
        log_console(LOG_INFO, msg);
        log_info("UPnP: Port mapping successful, public endpoint: %s", public_addr);
      }
    } else {
      log_info("UPnP: Port mapping unavailable or failed - will use WebRTC fallback");
      log_console(LOG_INFO, "📡 Clients behind strict NATs will use WebRTC fallback");
    }
  } else {
    log_debug("UPnP: Disabled (use --upnp to enable automatic port mapping)");
  }
 
  // Check if shutdown was requested before initializing mDNS
  if (acds_should_exit()) {
    log_info("Shutdown signal received before mDNS initialization");
    result = ASCIICHAT_OK;
    goto cleanup_resources;
  }
 
  // Initialize mDNS for LAN discovery of ACDS server
  // This allows clients on the local network to discover the discovery service itself
 
  log_debug("Initializing mDNS for ACDS LAN service discovery...");
  g_mdns_ctx = asciichat_mdns_init();
  if (!g_mdns_ctx) {
    LOG_ERRNO_IF_SET("Failed to initialize mDNS (non-fatal, LAN discovery disabled)");
    log_warn("mDNS disabled for ACDS - LAN discovery of discovery service will not be available");
  } else {
    // Advertise ACDS service on the LAN
    // Build hostname if available
    char hostname[256] = {0};
    gethostname(hostname, sizeof(hostname) - 1);
 
    asciichat_mdns_service_t service = {
        .name = "ascii-chat-Discovery-Service",
        .type = "_ascii-chat-discovery-service._tcp",
        .host = hostname,
        .port = config.port,
        .txt_records = NULL,
        .txt_count = 0,
    };
 
    asciichat_error_t mdns_advertise_result = asciichat_mdns_advertise(g_mdns_ctx, &service);
    if (mdns_advertise_result != ASCIICHAT_OK) {
      LOG_ERRNO_IF_SET("Failed to advertise ACDS mDNS service");
      log_warn("mDNS advertising failed for ACDS - LAN discovery disabled");
      asciichat_mdns_destroy(g_mdns_ctx);
      g_mdns_ctx = NULL;
    } else {
      log_console(LOG_INFO, "🌐 mDNS: ACDS advertised as '_ascii-chat-discovery-service._tcp.local' on LAN");
      log_info("mDNS: ACDS advertised as '_ascii-chat-discovery-service._tcp.local' (port=%d)", config.port);
    }
  }
 
  // Install signal handlers for clean shutdown
  signal(SIGINT, acds_handle_signal);
  signal(SIGTERM, acds_handle_signal);
 
  // Display initial status if enabled
  if (GET_OPTION(status_screen)) {
    discovery_status_t status;
    if (discovery_status_gather(&server.tcp_server, (discovery_database_t *)server.db, config.address, config.address6,
                                config.port, g_discovery_start_time, &status) == ASCIICHAT_OK) {
      discovery_status_display(&status);
      g_last_status_update = g_discovery_start_time;
    }
  }
 
  // Run server
  result = acds_server_run(&server);
  if (result != ASCIICHAT_OK) {
    log_error("Server run failed");
  }
 
cleanup_resources:
  // Cleanup
  // Disable keepawake before exit
  platform_disable_keepawake();
 
  log_info("Shutting down discovery server...");
  acds_server_shutdown(&server);
  g_server = NULL;
 
  // Destroy WebSocket server
  websocket_server_destroy(&g_websocket_server);
  log_debug("WebSocket server destroyed");
 
  // Clean up UPnP port mapping
  if (g_upnp_ctx) {
    nat_upnp_close(&g_upnp_ctx);
    log_debug("UPnP port mapping closed");
  }
 
  // Clean up mDNS context
  if (g_mdns_ctx) {
    asciichat_mdns_destroy(g_mdns_ctx);
    g_mdns_ctx = NULL;
    log_debug("mDNS context shut down");
  }
 
  log_info("Discovery server stopped");
  return result;
}

References acds_identity_fingerprint(), acds_identity_generate(), acds_identity_load(), acds_identity_save(), acds_server_init(), acds_server_run(), acds_server_shutdown(), acds_string_init(), acds_config_t::address, acds_config_t::address6, asciichat_mdns_advertise(), asciichat_mdns_destroy(), asciichat_mdns_init(), acds_config_t::database_path, acds_server_t::db, discovery_status_display(), discovery_status_gather(), get_config_dir(), acds_config_t::key_path, acds_config_t::log_file, acds_config_t::log_level, nat_upnp_close(), nat_upnp_get_address(), nat_upnp_open(), options_get(), platform_disable_keepawake(), platform_enable_keepawake(), PLATFORM_MAX_PATH_LENGTH, acds_config_t::port, acds_config_t::require_client_identity, acds_config_t::require_server_identity, safe_snprintf(), acds_config_t::stun_count, acds_config_t::stun_servers, acds_server_t::tcp_server, acds_config_t::turn_count, acds_config_t::turn_secret, acds_config_t::turn_servers, websocket_server_destroy(), and websocket_server_init().