arisa 2.3.55 → 3.0.1

package/src/daemon/lifecycle.ts

@@ -1,313 +0,0 @@
-/**
- * @module daemon/lifecycle
- * @role Spawn and manage the Core process with --watch for hot reload.
- * @responsibilities
- *   - Start Core as a child process with `bun --watch`
- *   - Capture stdout+stderr, detect errors in real-time
- *   - When errors detected: notify via Telegram, trigger autofix
- *   - Track Core state: starting → up → down
- *   - Health-check loop to detect when Core is ready
- * @dependencies shared/config, daemon/autofix
- * @effects Spawns child process, manages process lifecycle
- */
-
-import { config } from "../shared/config";
-import { createLogger } from "../shared/logger";
-import { attemptAutoFix } from "./autofix";
-import { isRunningAsRoot } from "../shared/ai-cli";
-import { spawnSync } from "child_process";
-import { join } from "path";
-
-const log = createLogger("daemon");
-
-export type CoreState = "starting" | "up" | "down";
-
-let coreProcess: ReturnType<typeof Bun.spawn> | null = null;
-let shouldRun = true;
-let coreState: CoreState = "down";
-let lastError: string | null = null;
-let crashCount = 0;
-let lastCrashAt = 0;
-let healthCheckTimer: ReturnType<typeof setInterval> | null = null;
-let autofixInProgress = false;
-
-const BUF_MAX = 2000;
-const HEALTH_CHECK_INTERVAL = 1000;
-
-// Patterns that indicate real errors in Core STDERR output
-const ERROR_PATTERNS = [
-  /error:/i,
-  /SyntaxError/,
-  /TypeError/,
-  /ReferenceError/,
-  /ENOENT/,
-  /EACCES/,
-  /JSON Parse error/,
-  /Cannot find module/,
-  /Module not found/,
-];
-
-// --- Notification callback (set by index.ts) ---
-type NotifyFn = (text: string) => Promise<void>;
-let notifyFn: NotifyFn | null = null;
-
-export function setLifecycleNotify(fn: NotifyFn) {
-  notifyFn = fn;
-}
-
-// --- State getters ---
-
-export function getCoreState(): CoreState {
-  return coreState;
-}
-
-export function setCoreState(state: CoreState) {
-  coreState = state;
-}
-
-export function getCoreError(): string | null {
-  return lastError;
-}
-
-export function waitForCoreReady(timeoutMs: number): Promise<boolean> {
-  if (coreState === "up") return Promise.resolve(true);
-  if (coreState === "down") return Promise.resolve(false);
-
-  return new Promise((resolve) => {
-    const start = Date.now();
-    const check = setInterval(() => {
-      if (coreState === "up") {
-        clearInterval(check);
-        resolve(true);
-      } else if (coreState === "down" || Date.now() - start > timeoutMs) {
-        clearInterval(check);
-        resolve(false);
-      }
-    }, 500);
-  });
-}
-
-// --- Health check ---
-
-function startHealthCheck() {
-  stopHealthCheck();
-  healthCheckTimer = setInterval(async () => {
-    if (coreState !== "starting") {
-      stopHealthCheck();
-      return;
-    }
-    try {
-      const res = await fetch("http://localhost/health", {
-        signal: AbortSignal.timeout(2000),
-        unix: config.coreSocket,
-      } as any);
-      if (res.ok) {
-        coreState = "up";
-        log.info("Core is ready (health check passed)");
-        stopHealthCheck();
-      }
-    } catch {
-      // Still starting
-    }
-  }, HEALTH_CHECK_INTERVAL);
-}
-
-function stopHealthCheck() {
-  if (healthCheckTimer) {
-    clearInterval(healthCheckTimer);
-    healthCheckTimer = null;
-  }
-}
-
-// --- Core process management ---
-
-export function startCore() {
-  if (!shouldRun) return;
-
-  const coreEntry = join(config.projectDir, "src", "core", "index.ts");
-
-  // When root, spawn Core as arisa user so Claude CLI calls work directly
-  // (no su wrapper per invocation). su without "-" preserves parent env
-  // (tokens, ARISA_DATA_DIR, API keys). We only override HOME/BUN/PATH.
-  let cmd: string[];
-  if (isRunningAsRoot()) {
-    // Ensure arisa owns all data dir files created during Daemon init
-    // (encryption keys, DB, PID files, etc.) before Core reads them.
-    spawnSync("chown", ["-R", "arisa:arisa", config.arisaDir], { stdio: "ignore" });
-
-    const bunInstall = process.env.BUN_INSTALL || "/root/.bun";
-    const bunEnv = `export HOME=/home/arisa && export BUN_INSTALL=${bunInstall} && export PATH=${bunInstall}/bin:$PATH`;
-    const inner = `${bunEnv} && cd ${config.projectDir} && exec bun --watch ${coreEntry}`;
-    cmd = ["su", "arisa", "-s", "/bin/bash", "-c", inner];
-    log.info(`Starting Core as arisa: bun --watch ${coreEntry}`);
-  } else {
-    cmd = ["bun", "--watch", coreEntry];
-    log.info(`Starting Core: bun --watch ${coreEntry}`);
-  }
-
-  if (crashCount > 3) {
-    coreState = "down";
-  } else {
-    coreState = "starting";
-  }
-
-  // Output buffers
-  const stdoutBuf = { data: "" };
-  const stderrBuf = { data: "" };
-
-  // Error detection state (per spawn — resets each time Core restarts)
-  let errorHandled = false;
-  let errorDebounce: ReturnType<typeof setTimeout> | null = null;
-
-  // Called when an error pattern is detected in the output stream
-  function onErrorDetected() {
-    if (errorHandled || autofixInProgress || !shouldRun) return;
-    errorHandled = true;
-
-    // Wait 3s for full stack trace to accumulate, then act
-    if (errorDebounce) clearTimeout(errorDebounce);
-    errorDebounce = setTimeout(() => {
-      const combined = (stderrBuf.data + "\n" + stdoutBuf.data).trim();
-      lastError = combined.slice(-BUF_MAX);
-      handleError(lastError);
-    }, 3000);
-  }
-
-  coreProcess = Bun.spawn(cmd, {
-    cwd: config.projectDir,
-    stdout: "pipe",
-    stderr: "pipe",
-    env: { ...process.env },
-    onExit(proc, exitCode, signalCode) {
-      log.warn(`Core exited (code=${exitCode}, signal=${signalCode})`);
-      coreProcess = null;
-      coreState = "down";
-      stopHealthCheck();
-      if (errorDebounce) clearTimeout(errorDebounce);
-
-      // Save last error
-      const combined = (stderrBuf.data + "\n" + stdoutBuf.data).trim();
-      if (combined) lastError = combined.slice(-BUF_MAX);
-
-      const now = Date.now();
-      if (now - lastCrashAt < 10_000) {
-        crashCount++;
-      } else {
-        crashCount = 1;
-      }
-      lastCrashAt = now;
-
-      if (!shouldRun) return;
-
-      // On 2nd+ rapid crash and error not yet handled: autofix
-      if (crashCount >= 2 && !autofixInProgress && !errorHandled) {
-        log.error(`Core crash loop (${crashCount}x). Triggering auto-fix...`);
-        errorHandled = true;
-        handleError(lastError || `Core crashed with exit code ${exitCode}`);
-      } else if (!autofixInProgress) {
-        log.info("Restarting Core in 2s...");
-        setTimeout(() => startCore(), 2000);
-      }
-    },
-  });
-
-  // Capture streams: print to console + accumulate + detect errors
-  if (coreProcess.stdout && typeof coreProcess.stdout !== "number") {
-    pipeAndWatch(coreProcess.stdout, process.stdout, stdoutBuf, onErrorDetected, false);
-  }
-  if (coreProcess.stderr && typeof coreProcess.stderr !== "number") {
-    pipeAndWatch(coreProcess.stderr, process.stderr, stderrBuf, onErrorDetected, true);
-  }
-
-  if (coreState === "starting") {
-    startHealthCheck();
-  }
-
-  log.info(`Core spawned (pid=${coreProcess.pid})`);
-}
-
-/**
- * Pipe a stream to a target, accumulate into buffer, call onError when error patterns detected.
- */
-function pipeAndWatch(
-  stream: ReadableStream<Uint8Array>,
-  target: NodeJS.WriteStream,
-  buf: { data: string },
-  onError: () => void,
-  watchErrors: boolean,
-) {
-  const reader = stream.getReader();
-  const decoder = new TextDecoder();
-
-  (async () => {
-    try {
-      while (true) {
-        const { done, value } = await reader.read();
-        if (done) break;
-        const chunk = decoder.decode(value, { stream: true });
-        target.write(chunk);
-        buf.data += chunk;
-        if (buf.data.length > BUF_MAX) {
-          buf.data = buf.data.slice(-BUF_MAX);
-        }
-
-        // Check for fatal/runtime-like patterns only when explicitly watching this stream.
-        if (watchErrors && ERROR_PATTERNS.some((p) => p.test(chunk))) {
-          onError();
-        }
-      }
-    } catch {
-      // stream closed
-    }
-  })();
-}
-
-/**
- * Central error handler: notify user via Telegram, then try autofix.
- */
-async function handleError(error: string) {
-  autofixInProgress = true;
-
-  try {
-    // 1. Notify immediately
-    const preview = error.length > 500 ? error.slice(-500) : error;
-    log.warn("Core error detected, notifying and attempting auto-fix...");
-    await notifyFn?.(
-      `Core error detected:\n<pre>${escapeHtml(preview)}</pre>\nAttempting auto-fix...`
-    );
-
-    // 2. Run autofix
-    const fixed = await attemptAutoFix(error);
-
-    // 3. Notify result
-    if (fixed) {
-      await notifyFn?.("Auto-fix applied. Core will restart automatically.");
-    } else {
-      await notifyFn?.("Auto-fix could not resolve the error. Please check manually.");
-    }
-  } catch (err) {
-    log.error(`handleError threw: ${err}`);
-  } finally {
-    autofixInProgress = false;
-    // If Core exited while we were fixing, restart it
-    if (shouldRun && coreProcess === null) {
-      log.info("Restarting Core after auto-fix...");
-      startCore();
-    }
-  }
-}
-
-function escapeHtml(s: string): string {
-  return s.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;");
-}
-
-export function stopCore() {
-  shouldRun = false;
-  stopHealthCheck();
-  if (coreProcess) {
-    log.info("Stopping Core...");
-    coreProcess.kill();
-    coreProcess = null;
-  }
-  coreState = "down";
-}

package/src/daemon/setup.ts

@@ -1,329 +0,0 @@
-/**
- * @module daemon/setup
- * @role Idempotent startup setup — runs every boot, checks real state.
- * @responsibilities
- *   - Check required config (TELEGRAM_BOT_TOKEN)
- *   - Check optional config (OPENAI_API_KEY)
- *   - Detect / install missing CLIs (Claude, Codex)
- *   - Check CLI auth and offer login if needed
- *   - Persist tokens to both .env and encrypted DB
- * @dependencies shared/paths, shared/secrets, shared/ai-cli
- * @effects Reads stdin, writes runtime .env, spawns install/login processes
- */
-
-import { existsSync, readFileSync, writeFileSync, mkdirSync } from "fs";
-import { dirname, join } from "path";
-import { dataDir } from "../shared/paths";
-import { secrets, setSecret } from "../shared/secrets";
-import { isAgentCliInstalled, isRunningAsRoot, buildBunWrappedAgentCliCommand, type AgentCliName } from "../shared/ai-cli";
-
-const ENV_PATH = join(dataDir, ".env");
-
-const CLI_PACKAGES: Record<AgentCliName, string> = {
-  claude: "@anthropic-ai/claude-code",
-  codex: "@openai/codex",
-};
-
-function loadExistingEnv(): Record<string, string> {
-  if (!existsSync(ENV_PATH)) return {};
-  const vars: Record<string, string> = {};
-  for (const line of readFileSync(ENV_PATH, "utf8").split("\n")) {
-    const match = line.match(/^([A-Z_][A-Z0-9_]*)=(.+)$/);
-    if (match) vars[match[1]] = match[2].trim();
-  }
-  // Clean up legacy flag — state is now derived from actual config
-  delete vars["ARISA_SETUP_COMPLETE"];
-  return vars;
-}
-
-function saveEnv(vars: Record<string, string>) {
-  const dir = dirname(ENV_PATH);
-  if (!existsSync(dir)) mkdirSync(dir, { recursive: true });
-  const content = Object.entries(vars)
-    .map(([k, v]) => `${k}=${v}`)
-    .join("\n") + "\n";
-  writeFileSync(ENV_PATH, content);
-}
-
-// Robust readline that survives after child processes inherit stdin
-async function readLine(question: string): Promise<string> {
-  const rl = await import("node:readline");
-  const iface = rl.createInterface({ input: process.stdin, output: process.stdout });
-  return new Promise<string>((resolve) => {
-    iface.question(question, (answer) => {
-      iface.close();
-      resolve(answer.trim());
-    });
-  });
-}
-
-export async function runSetup(): Promise<boolean> {
-  const vars = loadExistingEnv();
-  const telegramSecret = await secrets.telegram();
-  const openaiSecret = await secrets.openai();
-  let changed = false;
-
-  // Try to load inquirer for interactive mode
-  let inq: typeof import("@inquirer/prompts") | null = null;
-  if (process.stdin.isTTY) {
-    try {
-      inq = await import("@inquirer/prompts");
-    } catch {
-      // Fall back to basic prompts
-    }
-  }
-
-  // ─── Phase 1: Tokens ────────────────────────────────────────────
-
-  const hasTelegram = !!(vars.TELEGRAM_BOT_TOKEN || process.env.TELEGRAM_BOT_TOKEN || telegramSecret);
-  const hasOpenAI = !!(vars.OPENAI_API_KEY || process.env.OPENAI_API_KEY || openaiSecret);
-
-  if (!hasTelegram) {
-    console.log("\n🔧 Arisa Setup\n");
-
-    let token: string;
-    if (inq) {
-      token = await inq.input({
-        message: "Telegram Bot Token (from https://t.me/BotFather):",
-        validate: (v) => (v.trim() ? true : "Token is required"),
-      });
-    } else {
-      console.log("Telegram Bot Token required. Get one from https://t.me/BotFather on Telegram.");
-      token = await readLine("TELEGRAM_BOT_TOKEN: ");
-    }
-
-    if (!token.trim()) {
-      console.log("No token provided. Cannot start without Telegram Bot Token.");
-      return false;
-    }
-
-    vars.TELEGRAM_BOT_TOKEN = token.trim();
-    await setSecret("TELEGRAM_BOT_TOKEN", token.trim()).catch((e) =>
-      console.warn(`[setup] Could not persist TELEGRAM_BOT_TOKEN to encrypted DB: ${e}`)
-    );
-    console.log("[setup] TELEGRAM_BOT_TOKEN saved to .env + encrypted DB");
-    changed = true;
-  } else {
-    const src = telegramSecret ? "encrypted DB" : vars.TELEGRAM_BOT_TOKEN ? ".env" : "env var";
-    console.log(`[setup] TELEGRAM_BOT_TOKEN found in ${src}`);
-  }
-
-  if (!hasOpenAI) {
-    if (process.stdin.isTTY) {
-      let key: string;
-      if (inq) {
-        key = await inq.input({
-          message: "OpenAI API Key (optional — voice + image, enter to skip):",
-        });
-      } else {
-        console.log("\nOpenAI API Key (optional — enables voice transcription + image analysis).");
-        key = await readLine("OPENAI_API_KEY (enter to skip): ");
-      }
-
-      if (key.trim()) {
-        vars.OPENAI_API_KEY = key.trim();
-        await setSecret("OPENAI_API_KEY", key.trim()).catch((e) =>
-          console.warn(`[setup] Could not persist OPENAI_API_KEY to encrypted DB: ${e}`)
-        );
-        console.log("[setup] OPENAI_API_KEY saved to .env + encrypted DB");
-        changed = true;
-      }
-    }
-  } else {
-    const src = openaiSecret ? "encrypted DB" : vars.OPENAI_API_KEY ? ".env" : "env var";
-    console.log(`[setup] OPENAI_API_KEY found in ${src}`);
-  }
-
-  if (changed) {
-    saveEnv(vars);
-    console.log(`\nConfig saved to ${ENV_PATH}`);
-  }
-
-  // ─── Phase 2: CLI Installation ──────────────────────────────────
-  // When running as root, bin/arisa.js pre-flight already handled CLI
-  // installation with the interactive checkbox before switching to arisa.
-  // This phase is only needed for direct (non-root) runs.
-
-  if (process.stdin.isTTY) {
-    let claudeInstalled = isAgentCliInstalled("claude");
-    let codexInstalled = isAgentCliInstalled("codex");
-
-    const missing: AgentCliName[] = [];
-    if (!claudeInstalled) missing.push("claude");
-    if (!codexInstalled) missing.push("codex");
-
-    if (missing.length > 0) {
-      console.log("\nCLI Status:");
-      console.log(`  ${claudeInstalled ? "✓" : "✗"} Claude${claudeInstalled ? "" : " — not installed"}`);
-      console.log(`  ${codexInstalled ? "✓" : "✗"} Codex${codexInstalled ? "" : " — not installed"}`);
-
-      let toInstall: AgentCliName[] = [];
-
-      if (inq) {
-        toInstall = await inq.checkbox({
-          message: "Install missing CLIs? (space to select, enter to confirm)",
-          choices: missing.map((cli) => ({
-            name: `${cli === "claude" ? "Claude" : "Codex"} (${CLI_PACKAGES[cli]})`,
-            value: cli as AgentCliName,
-            checked: true,
-          })),
-        });
-      } else {
-        const answer = await readLine("\nInstall missing CLIs? (Y/n): ");
-        if (answer.toLowerCase() !== "n") toInstall = missing;
-      }
-
-      for (const cli of toInstall) {
-        console.log(`\nInstalling ${cli}...`);
-        const ok = await installCli(cli);
-        console.log(ok ? `  ✓ ${cli} installed` : `  ✗ ${cli} install failed`);
-      }
-
-      // Refresh status
-      claudeInstalled = isAgentCliInstalled("claude");
-      codexInstalled = isAgentCliInstalled("codex");
-    }
-
-    // ─── Phase 3: CLI Authentication ────────────────────────────────
-
-    const installed: AgentCliName[] = [];
-    if (claudeInstalled) installed.push("claude");
-    if (codexInstalled) installed.push("codex");
-
-    for (const cli of installed) {
-      const authed = await isCliAuthenticated(cli);
-      if (authed) {
-        console.log(`[setup] ${cli} ✓ authenticated`);
-        continue;
-      }
-
-      console.log(`[setup] ${cli} ✗ not authenticated`);
-      let doLogin = true;
-      if (inq) {
-        doLogin = await inq.confirm({ message: `Log in to ${cli === "claude" ? "Claude" : "Codex"}?`, default: true });
-      } else {
-        const answer = await readLine(`\nLog in to ${cli === "claude" ? "Claude" : "Codex"}? (Y/n): `);
-        doLogin = answer.toLowerCase() !== "n";
-      }
-      if (doLogin) {
-        console.log();
-        await runInteractiveLogin(cli, vars);
-      }
-    }
-
-    if (installed.length === 0) {
-      console.log("\n⚠ No CLIs installed. Arisa needs at least one to work.");
-      console.log("  The daemon will auto-install them in the background.\n");
-    }
-  }
-
-  return true;
-}
-
-/**
- * Quick probe: is this CLI authenticated?
- * Claude: check CLAUDE_CODE_OAUTH_TOKEN env/.env, or `claude auth status`
- * Codex: check OPENAI_API_KEY
- */
-async function isCliAuthenticated(cli: AgentCliName): Promise<boolean> {
-  try {
-    if (cli === "claude") {
-      // setup-token auth: token lives in env var (not .credentials.json)
-      if (process.env.CLAUDE_CODE_OAUTH_TOKEN?.startsWith("sk-ant-")) {
-        console.log(`[setup] claude auth via CLAUDE_CODE_OAUTH_TOKEN env var`);
-        return true;
-      }
-      // Native CLI auth: check `claude auth status`
-      const cmd = buildBunWrappedAgentCliCommand("claude", ["auth", "status"], { skipPreload: true });
-      const proc = Bun.spawn(cmd, { stdout: "pipe", stderr: "pipe" });
-      const stdout = await new Response(proc.stdout).text();
-      const exitCode = await proc.exited;
-      return exitCode === 0 && stdout.includes('"loggedIn": true');
-    }
-    // Codex: needs OPENAI_API_KEY — no reliable way to check device-auth
-    if (cli === "codex") {
-      return !!(process.env.OPENAI_API_KEY);
-    }
-    return true;
-  } catch {
-    return false;
-  }
-}
-
-async function installCli(cli: AgentCliName): Promise<boolean> {
-  try {
-    const cmd = ["bun", "add", "-g", CLI_PACKAGES[cli]];
-    const env = { ...process.env };
-
-    // When not root, BUN_INSTALL may point to root's dir (read-only for us).
-    // Install to user's own bun dir instead.
-    if (!isRunningAsRoot()) {
-      const home = process.env.HOME || "/home/arisa";
-      env.BUN_INSTALL = `${home}/.bun`;
-    }
-
-    const proc = Bun.spawn(cmd, {
-      stdout: "inherit",
-      stderr: "inherit",
-      env,
-    });
-    const timeout = setTimeout(() => proc.kill(), 180_000);
-    const exitCode = await proc.exited;
-    clearTimeout(timeout);
-    return exitCode === 0;
-  } catch (e) {
-    console.error(`  Install error: ${e}`);
-    return false;
-  }
-}
-
-async function runInteractiveLogin(cli: AgentCliName, vars: Record<string, string>): Promise<boolean> {
-  const args = cli === "claude"
-    ? ["setup-token"]
-    : ["login", "--device-auth"];
-
-  console.log(`Starting ${cli} login...`);
-
-  try {
-    const proc = Bun.spawn(buildBunWrappedAgentCliCommand(cli, args, { skipPreload: true }), {
-      stdin: "inherit",
-      stdout: "inherit",
-      stderr: "inherit",
-    });
-
-    const exitCode = await proc.exited;
-
-    if (exitCode !== 0) {
-      console.log(`  ✗ ${cli} login failed (exit ${exitCode})`);
-      return false;
-    }
-
-    console.log(`  ✓ ${cli} login successful`);
-
-    // `claude setup-token` prints a token but does NOT store it.
-    // Ask the user to paste it.
-    if (cli === "claude") {
-      console.log("\n  Paste the yellow token shown above (starts with sk-ant-):");
-      const token = (await readLine("  > ")).trim();
-      if (token.startsWith("sk-ant-") && token.length > 80) {
-        vars.CLAUDE_CODE_OAUTH_TOKEN = token;
-        process.env.CLAUDE_CODE_OAUTH_TOKEN = token;
-        saveEnv(vars);
-        console.log(`  ✓ token saved to .env (${token.length} chars)`);
-      } else if (token) {
-        // Save it anyway, user knows best
-        vars.CLAUDE_CODE_OAUTH_TOKEN = token;
-        process.env.CLAUDE_CODE_OAUTH_TOKEN = token;
-        saveEnv(vars);
-        console.log(`  ⚠ token saved (${token.length} chars) — verify it works`);
-      } else {
-        console.log("  ⚠ no token — set CLAUDE_CODE_OAUTH_TOKEN in ~/.arisa/.env");
-      }
-    }
-
-    return true;
-  } catch (e) {
-    console.error(`  Login error: ${e}`);
-    return false;
-  }
-}