slancha-wire 0.5.15

Magic-wormhole for AI agents — bilateral signed-message bus over a mailbox relay
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326

//! P1.9 (0.5.11): install + manage an OS service unit that runs
//! `wire daemon` automatically.
//!
//! Today's onboarding tells operators "run `wire daemon &` in a tmux
//! pane or write a launchd plist yourself" — friction that gets skipped,
//! leading to the "daemon dies on reboot, peer sends evaporate" silent
//! class. Bake the unit install into `wire service install` so it's one
//! command, idempotent, cross-platform.
//!
//! macOS: `~/Library/LaunchAgents/sh.slancha.wire.daemon.plist`
//! linux: `~/.config/systemd/user/wire-daemon.service`
//!
//! The unit auto-starts on login + restarts on crash. Pair with
//! `wire upgrade` (P0.5) for atomic version swaps without unit churn.

use std::path::PathBuf;
use std::process::Command;

use anyhow::{Context, Result, anyhow, bail};

const LAUNCHD_LABEL: &str = "sh.slancha.wire.daemon";
const SYSTEMD_UNIT_NAME: &str = "wire-daemon.service";

/// Outcome of `wire service install` etc., suitable for both human + JSON
/// rendering.
#[derive(Debug, Clone, serde::Serialize)]
pub struct ServiceReport {
    pub action: String,
    pub platform: String,
    pub unit_path: String,
    pub status: String,
    pub detail: String,
}

/// Install a user-scope service unit that runs `wire daemon` and writes
/// a [P0.4 versioned pidfile](crate::ensure_up::DaemonPid).
pub fn install() -> Result<ServiceReport> {
    let exe = std::env::current_exe()?;
    let exe_str = exe.to_string_lossy().to_string();

    if cfg!(target_os = "macos") {
        let plist_path = launchd_plist_path()?;
        if let Some(parent) = plist_path.parent() {
            std::fs::create_dir_all(parent)
                .with_context(|| format!("creating {parent:?}"))?;
        }
        let plist = launchd_plist_xml(&exe_str);
        std::fs::write(&plist_path, plist)
            .with_context(|| format!("writing {plist_path:?}"))?;

        // launchctl load is idempotent — bootout first to avoid the
        // "service already loaded" error on re-install.
        let _ = Command::new("launchctl")
            .args(["bootout", &launchctl_user_target()])
            .status();
        let load = Command::new("launchctl")
            .args(["bootstrap", &launchctl_user_target(), plist_path.to_str().unwrap_or("")])
            .status();
        let loaded = load.map(|s| s.success()).unwrap_or(false);

        return Ok(ServiceReport {
            action: "install".into(),
            platform: "macos-launchd".into(),
            unit_path: plist_path.to_string_lossy().to_string(),
            status: if loaded { "loaded".into() } else { "written".into() },
            detail: if loaded {
                "plist written and bootstrapped via launchctl".into()
            } else {
                "plist written; `launchctl bootstrap` failed — try manually".into()
            },
        });
    }
    if cfg!(target_os = "linux") {
        let unit_path = systemd_unit_path()?;
        if let Some(parent) = unit_path.parent() {
            std::fs::create_dir_all(parent)
                .with_context(|| format!("creating {parent:?}"))?;
        }
        let unit = systemd_unit_text(&exe_str);
        std::fs::write(&unit_path, unit)
            .with_context(|| format!("writing {unit_path:?}"))?;

        // Reload + enable + start. Each is idempotent on linux.
        let _ = Command::new("systemctl")
            .args(["--user", "daemon-reload"])
            .status();
        let enabled = Command::new("systemctl")
            .args(["--user", "enable", "--now", SYSTEMD_UNIT_NAME])
            .status()
            .map(|s| s.success())
            .unwrap_or(false);

        return Ok(ServiceReport {
            action: "install".into(),
            platform: "linux-systemd-user".into(),
            unit_path: unit_path.to_string_lossy().to_string(),
            status: if enabled { "enabled".into() } else { "written".into() },
            detail: if enabled {
                "service unit written, daemon-reload + enable --now succeeded".into()
            } else {
                "unit written; `systemctl --user enable --now` failed — try manually".into()
            },
        });
    }
    bail!("wire service install: unsupported platform")
}

pub fn uninstall() -> Result<ServiceReport> {
    if cfg!(target_os = "macos") {
        let plist_path = launchd_plist_path()?;
        let _ = Command::new("launchctl")
            .args(["bootout", &launchctl_user_target()])
            .status();
        let removed = if plist_path.exists() {
            std::fs::remove_file(&plist_path).ok();
            true
        } else {
            false
        };
        return Ok(ServiceReport {
            action: "uninstall".into(),
            platform: "macos-launchd".into(),
            unit_path: plist_path.to_string_lossy().to_string(),
            status: if removed { "removed".into() } else { "absent".into() },
            detail: "launchctl bootout + plist file removed".into(),
        });
    }
    if cfg!(target_os = "linux") {
        let unit_path = systemd_unit_path()?;
        let _ = Command::new("systemctl")
            .args(["--user", "disable", "--now", SYSTEMD_UNIT_NAME])
            .status();
        let removed = if unit_path.exists() {
            std::fs::remove_file(&unit_path).ok();
            true
        } else {
            false
        };
        let _ = Command::new("systemctl")
            .args(["--user", "daemon-reload"])
            .status();
        return Ok(ServiceReport {
            action: "uninstall".into(),
            platform: "linux-systemd-user".into(),
            unit_path: unit_path.to_string_lossy().to_string(),
            status: if removed { "removed".into() } else { "absent".into() },
            detail: "systemctl disable --now + unit file removed".into(),
        });
    }
    bail!("wire service uninstall: unsupported platform")
}

pub fn status() -> Result<ServiceReport> {
    if cfg!(target_os = "macos") {
        let plist_path = launchd_plist_path()?;
        let exists = plist_path.exists();
        // launchctl print on a user target succeeds if the service is
        // loaded; failure = not loaded.
        let listed = Command::new("launchctl")
            .args(["list", LAUNCHD_LABEL])
            .output()
            .map(|o| o.status.success())
            .unwrap_or(false);
        return Ok(ServiceReport {
            action: "status".into(),
            platform: "macos-launchd".into(),
            unit_path: plist_path.to_string_lossy().to_string(),
            status: if listed {
                "loaded".into()
            } else if exists {
                "installed (not loaded)".into()
            } else {
                "absent".into()
            },
            detail: format!("plist exists={exists}, launchctl-list-success={listed}"),
        });
    }
    if cfg!(target_os = "linux") {
        let unit_path = systemd_unit_path()?;
        let exists = unit_path.exists();
        let active = Command::new("systemctl")
            .args(["--user", "is-active", SYSTEMD_UNIT_NAME])
            .output()
            .map(|o| String::from_utf8_lossy(&o.stdout).trim() == "active")
            .unwrap_or(false);
        return Ok(ServiceReport {
            action: "status".into(),
            platform: "linux-systemd-user".into(),
            unit_path: unit_path.to_string_lossy().to_string(),
            status: if active {
                "active".into()
            } else if exists {
                "installed (inactive)".into()
            } else {
                "absent".into()
            },
            detail: format!("unit exists={exists}, is-active={active}"),
        });
    }
    bail!("wire service status: unsupported platform")
}

fn launchd_plist_path() -> Result<PathBuf> {
    let home = std::env::var("HOME").map_err(|_| anyhow!("HOME env var unset"))?;
    Ok(PathBuf::from(home)
        .join("Library")
        .join("LaunchAgents")
        .join(format!("{LAUNCHD_LABEL}.plist")))
}

fn launchctl_user_target() -> String {
    // `gui/<uid>` is the modern domain for user-scope LaunchAgents. Use
    // `id -u` rather than pulling in libc just for getuid().
    let uid = Command::new("id")
        .args(["-u"])
        .output()
        .ok()
        .and_then(|o| {
            if o.status.success() {
                Some(String::from_utf8_lossy(&o.stdout).trim().to_string())
            } else {
                None
            }
        })
        .unwrap_or_else(|| "0".to_string());
    format!("gui/{uid}")
}

fn launchd_plist_xml(exe: &str) -> String {
    // Minimal launchd plist. KeepAlive=true keeps the daemon up across
    // any crash; RunAtLoad=true starts it on launchctl bootstrap +
    // every login.
    format!(
        r#"<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
    <key>Label</key>
    <string>{LAUNCHD_LABEL}</string>
    <key>ProgramArguments</key>
    <array>
        <string>{exe}</string>
        <string>daemon</string>
        <string>--interval</string>
        <string>5</string>
    </array>
    <key>RunAtLoad</key>
    <true/>
    <key>KeepAlive</key>
    <true/>
    <key>ProcessType</key>
    <string>Background</string>
    <key>StandardOutPath</key>
    <string>/dev/null</string>
    <key>StandardErrorPath</key>
    <string>/dev/null</string>
</dict>
</plist>
"#
    )
}

fn systemd_unit_path() -> Result<PathBuf> {
    let home = std::env::var("HOME").map_err(|_| anyhow!("HOME env var unset"))?;
    Ok(PathBuf::from(home)
        .join(".config")
        .join("systemd")
        .join("user")
        .join(SYSTEMD_UNIT_NAME))
}

fn systemd_unit_text(exe: &str) -> String {
    // User-scope unit. Restart=on-failure + RestartSec=5 keep daemon
    // alive through transient crashes; Install.WantedBy=default.target
    // makes it survive logout/login.
    format!(
        r#"[Unit]
Description=wire — magic-wormhole for AI agents (daemon)
After=network-online.target
Wants=network-online.target

[Service]
Type=simple
ExecStart={exe} daemon --interval 5
Restart=on-failure
RestartSec=5

[Install]
WantedBy=default.target
"#
    )
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn launchd_plist_xml_contains_required_keys() {
        // P1.9: catch the "minimal plist forgot KeepAlive and the daemon
        // died silently when terminal closed" class.
        let xml = launchd_plist_xml("/usr/local/bin/wire");
        assert!(xml.contains("<key>Label</key>"));
        assert!(xml.contains(LAUNCHD_LABEL));
        assert!(xml.contains("/usr/local/bin/wire"));
        assert!(xml.contains("<key>KeepAlive</key>"));
        assert!(xml.contains("<key>RunAtLoad</key>"));
        // <true/> form, not <bool>true</bool>, is the only one launchd
        // accepts for plist booleans.
        assert!(xml.contains("<true/>"));
    }

    #[test]
    fn systemd_unit_text_contains_required_directives() {
        let unit = systemd_unit_text("/usr/local/bin/wire");
        assert!(unit.contains("[Unit]"));
        assert!(unit.contains("[Service]"));
        assert!(unit.contains("[Install]"));
        assert!(unit.contains("/usr/local/bin/wire daemon"));
        assert!(unit.contains("Restart=on-failure"));
        // WantedBy must be default.target for user-scope units (not
        // multi-user.target which is system-scope and unprivileged users
        // can't enable).
        assert!(unit.contains("WantedBy=default.target"));
    }
}