koi-net 0.3.0

Local network toolkit: service discovery, DNS, health monitoring, TLS proxy, and certificate mesh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114

//! Factory reset command handler.
//!
//! Destroys the entire Koi data directory and recreates it from scratch.
//! If a daemon is running, attempts graceful shutdown first.

use std::io::IsTerminal;

use crate::client::KoiClient;

/// Execute the factory-reset command.
///
/// 1. Prompt for confirmation (unless `--json` mode, which expects scripted use).
/// 2. If a daemon is running (breadcrumb exists), shut it down gracefully.
/// 3. Remove the entire data directory.
/// 4. Print success message.
pub fn run(json: bool) -> anyhow::Result<()> {
    let data_dir = koi_common::paths::koi_data_dir();

    // ── Confirmation gate ───────────────────────────────────────────
    if !json {
        println!();
        println!("  This will permanently delete all Koi data:");
        println!("    {}", data_dir.display());
        println!();
        println!("  This includes certificates, CA keys, DNS entries,");
        println!("  health checks, proxy config, and all audit logs.");
        println!();

        if !std::io::stdin().is_terminal() {
            anyhow::bail!(
                "factory-reset requires interactive confirmation.\n\
                 Use --json mode for scripted execution."
            );
        }

        eprint!("  Type RESET to confirm: ");
        let mut answer = String::new();
        std::io::stdin().read_line(&mut answer)?;
        if answer.trim() != "RESET" {
            println!("  Aborted. No changes made.");
            return Ok(());
        }
        println!();
    }

    // ── Shut down running daemon if reachable ───────────────────────
    let daemon_was_running = try_shutdown_daemon();

    // ── Remove data directory ───────────────────────────────────────
    if data_dir.exists() {
        std::fs::remove_dir_all(&data_dir).map_err(|e| {
            anyhow::anyhow!(
                "Failed to remove data directory {}: {e}\n\
                 You may need elevated permissions (run as administrator/root).",
                data_dir.display()
            )
        })?;
    }

    // ── Recreate empty data directory ───────────────────────────────
    std::fs::create_dir_all(&data_dir).map_err(|e| {
        anyhow::anyhow!(
            "Failed to recreate data directory {}: {e}",
            data_dir.display()
        )
    })?;

    // ── Output ──────────────────────────────────────────────────────
    if json {
        println!(
            "{}",
            serde_json::json!({
                "reset": true,
                "data_dir": data_dir.display().to_string(),
                "daemon_stopped": daemon_was_running,
            })
        );
    } else {
        println!("Factory reset complete.");
        println!("  Data directory: {}", data_dir.display());
        if daemon_was_running {
            println!("  Daemon was stopped before reset.");
        }
        println!();
        println!("Koi is now in a clean state. Run `koi install` to reinstall the service.");
    }
    Ok(())
}

/// Attempt to shut down a running daemon via the breadcrumb endpoint.
/// Returns `true` if a daemon was detected and shutdown was attempted.
fn try_shutdown_daemon() -> bool {
    let breadcrumb = match koi_config::breadcrumb::read_breadcrumb() {
        Some(bc) => bc,
        None => return false,
    };

    let client = KoiClient::with_token(&breadcrumb.endpoint, &breadcrumb.token);

    match client.shutdown() {
        Ok(()) => {
            tracing::info!("Daemon shutdown requested successfully");
            // Give the daemon a moment to wind down before we delete its files.
            std::thread::sleep(std::time::Duration::from_secs(2));
            true
        }
        Err(e) => {
            tracing::warn!("Could not shut down daemon (may already be stopped): {e}");
            // Breadcrumb exists but daemon is unreachable - stale breadcrumb.
            // Proceed with reset anyway.
            true
        }
    }
}