upleb.uk

Public git repos — served from a NIP-34 GRASP relay at git.upleb.uk

summaryrefslogtreecommitdiff
path: root/main/cvm_server.c
diff options
context:
space:
mode:
authorYour Name <you@example.com>2026-05-19 01:10:06 +0530
committerYour Name <you@example.com>2026-05-19 01:10:06 +0530
commit42902a36bc52e009a1e8d3c371741e30a9cb4c33 (patch)
tree46db33710a3650b2267933a8375d3598af11319a /main/cvm_server.c
parentfe7c3be2fd9d464dbc837d1913409d2691bd50f5 (diff)
feat: ContextVM (MCP over Nostr) server with full integration
Complete CVM implementation: persistent WebSocket relay listener, kind 25910 event subscription, MCP protocol handlers, CEP-6 announcements, 10 MCP tools, per-board hardware locks, WiFi EU regulatory fix. Architecture: - cvm_server.c: WS relay listener, kind 25910 subscription, MCP dispatch - mcp_handler.c/h: 10 MCP tools (get_config, set_config, get_balance, wallet_send, get_sessions, get_usage, set_payout, set_metric, set_price, wallet_melt) - Responses published via existing WS connection (not new TLS) - Auth check: only owner npub accepted - CEP-6: kinds 11316 (server), 11317 (tools), 10002 (relay list) - WS ping/pong keepalive every 30s, 60s TLS read timeout Critical fixes: - WiFi country code DE (ESP-IDF defaults to CN, breaks EU APs) - Subscription #p filter must be array not string - Use-after-free: tags_str freed before nostr_event_to_json - MCP responses via existing WS (ESP32 can't open multiple TLS) - EVENT msg buffer underflow, WS frame masking, TLS write loop Per-board hardware locks: - Lock files in physical-router-test-automation/locks/ - lock-a/b/c, unlock-a/b/c targets in 3 Makefiles - All hardware-touching targets require board lock Verified on Board B via relay.primal.net: - 282 unit tests passing (61 CVM + 60 MCP + 161 existing) - MCP initialize roundtrip: PASS - tools/list: PASS - tools/call get_config: PASS - tools/call get_balance: PASS - tools/call set_price: PASS (write operation) - CEP-6 announcements (11316, 11317, 10002): all accepted by relay - WiFi STA connection (EnterSSID-2.4GHz): PASS with country code DE - Board A WiFi confirmed hardware issue (not firmware)
Diffstat (limited to 'main/cvm_server.c')
-rw-r--r--main/cvm_server.c815
1 files changed, 686 insertions, 129 deletions
diff --git a/main/cvm_server.c b/main/cvm_server.c
index 5addd88..b93e176 100644
--- a/main/cvm_server.c
+++ b/main/cvm_server.c
@@ -2,219 +2,771 @@
2#include "mcp_handler.h" 2#include "mcp_handler.h"
3#include "nip04.h" 3#include "nip04.h"
4#include "identity.h" 4#include "identity.h"
5#include "nostr_event.h"
5#include "config.h" 6#include "config.h"
7#include "session.h"
6#include "nucula_wallet.h" 8#include "nucula_wallet.h"
7#include "cJSON.h" 9#include "cJSON.h"
8#include "esp_log.h" 10#include "esp_log.h"
9#include "esp_http_client.h" 11#include "esp_tls.h"
12#include "esp_crt_bundle.h"
13#include "esp_random.h"
14#include "esp_timer.h"
10#include "freertos/FreeRTOS.h" 15#include "freertos/FreeRTOS.h"
11#include "freertos/task.h" 16#include "freertos/task.h"
12#include <string.h> 17#include <string.h>
13#include <stdio.h> 18#include <stdio.h>
19#include <stdlib.h>
14 20
15static const char *TAG = "cvm_server"; 21static const char *TAG = "cvm_server";
16 22
17static bool g_running = false; 23static bool g_running = false;
18static TaskHandle_t g_task = NULL; 24static TaskHandle_t g_task = NULL;
19 25
20static const char *DEFAULT_RELAY = "wss://relay.damus.io"; 26static void publish_announcements_via_ws(esp_tls_t *tls);
21 27
22static char *fetch_relays(void) 28#define CVM_VERSION "2025-07-02"
29#define CVM_SERVER_NAME "TollGate"
30#define CVM_SERVER_VERSION "1.0.0"
31#define CVM_WS_BUF_SIZE 8192
32#define CVM_MAX_RESPONSE_SIZE 4096
33#define CVM_RECONNECT_DELAY_MS 5000
34#define CVM_WS_READ_TIMEOUT_MS 60000
35#define CVM_WS_PING_INTERVAL_S 30
36
37static char *parse_ws_text_frame(const uint8_t *buf, int len)
23{ 38{
24 const tollgate_config_t *cfg = tollgate_config_get(); 39 if (len < 2) return NULL;
25 if (cfg && cfg->cvm_relays[0]) { 40 bool masked = (buf[1] & 0x80) != 0;
26 return cfg->cvm_relays; 41 uint64_t payload_len = buf[1] & 0x7F;
42 int offset = 2;
43
44 if (payload_len == 126) {
45 if (len < 4) return NULL;
46 payload_len = ((uint64_t)buf[2] << 8) | buf[3];
47 offset = 4;
48 } else if (payload_len == 127) {
49 if (len < 10) return NULL;
50 payload_len = 0;
51 for (int i = 0; i < 8; i++)
52 payload_len = (payload_len << 8) | buf[2 + i];
53 offset = 10;
54 }
55
56 if (masked) offset += 4;
57 if (offset + payload_len > (uint64_t)len) return NULL;
58
59 char *text = malloc((size_t)payload_len + 1);
60 if (!text) return NULL;
61
62 if (masked) {
63 uint8_t mask[4] = { buf[offset - 4], buf[offset - 3], buf[offset - 2], buf[offset - 1] };
64 for (uint64_t i = 0; i < payload_len; i++)
65 text[i] = buf[offset + i] ^ mask[i & 3];
66 } else {
67 memcpy(text, buf + offset, (size_t)payload_len);
68 }
69 text[payload_len] = '\0';
70 return text;
71}
72
73static int ws_send_text(esp_tls_t *tls, const char *msg)
74{
75 size_t len = strlen(msg);
76 uint8_t mask[4];
77 esp_fill_random(mask, 4);
78
79 size_t frame_len = 6 + len;
80 if (len > 125) frame_len += 2;
81 if (len > 65535) frame_len += 6;
82
83 uint8_t *frame = malloc(frame_len + len);
84 if (!frame) return -1;
85
86 int pos = 0;
87 frame[pos++] = 0x81;
88 if (len <= 125) {
89 frame[pos++] = (uint8_t)(0x80 | len);
90 } else if (len <= 65535) {
91 frame[pos++] = 0x80 | 126;
92 frame[pos++] = (uint8_t)((len >> 8) & 0xff);
93 frame[pos++] = (uint8_t)(len & 0xff);
94 } else {
95 frame[pos++] = 0x80 | 127;
96 for (int i = 0; i < 8; i++)
97 frame[pos++] = (uint8_t)((len >> (56 - i * 8)) & 0xff);
98 }
99 memcpy(frame + pos, mask, 4);
100 pos += 4;
101
102 for (size_t i = 0; i < len; i++)
103 frame[pos + i] = (uint8_t)msg[i] ^ mask[i & 3];
104 pos += len;
105
106 int total = pos;
107 int written = 0;
108 while (written < total) {
109 int w = esp_tls_conn_write(tls, frame + written, total - written);
110 if (w < 0) {
111 ESP_LOGE(TAG, "ws_send: write failed at %d/%d", written, total);
112 free(frame);
113 return -1;
114 }
115 if (w == 0) {
116 ESP_LOGW(TAG, "ws_send: write returned 0 at %d/%d", written, total);
117 vTaskDelay(pdMS_TO_TICKS(1));
118 }
119 written += w;
27 } 120 }
28 return (char *)DEFAULT_RELAY; 121 ESP_LOGD(TAG, "ws_send: sent %d bytes (payload %d)", total, (int)len);
122 free(frame);
123 return 0;
29} 124}
30 125
31static char *http_get(const char *url, int timeout_ms) 126static esp_err_t ws_connect(const char *relay_url, esp_tls_t **tls_out)
32{ 127{
33 char *buf = malloc(8192); 128 char host[128] = {0};
34 if (!buf) return NULL; 129 int port = 443;
35 int total = 0; 130 char path[128] = "/";
131
132 if (strncmp(relay_url, "wss://", 6) != 0) return ESP_ERR_INVALID_ARG;
133
134 const char *url_start = relay_url + 6;
135 const char *path_ptr = strchr(url_start, '/');
136 if (path_ptr) {
137 size_t host_len = path_ptr - url_start;
138 if (host_len >= sizeof(host)) host_len = sizeof(host) - 1;
139 memcpy(host, url_start, host_len);
140 host[host_len] = '\0';
141 strncpy(path, path_ptr, sizeof(path) - 1);
142 } else {
143 strncpy(host, url_start, sizeof(host) - 1);
144 }
36 145
37 esp_http_client_config_t config = { 146 char *colon = strchr(host, ':');
38 .url = url, 147 if (colon) {
39 .method = HTTP_METHOD_GET, 148 *colon = '\0';
40 .timeout_ms = timeout_ms, 149 port = atoi(colon + 1);
150 }
151
152 esp_tls_cfg_t tls_cfg = {
153 .crt_bundle_attach = esp_crt_bundle_attach,
154 .timeout_ms = CVM_WS_READ_TIMEOUT_MS,
41 }; 155 };
42 esp_http_client_handle_t client = esp_http_client_init(&config); 156 esp_tls_t *tls = esp_tls_init();
43 if (!client) { free(buf); return NULL; } 157 if (!tls) return ESP_ERR_NO_MEM;
44 158
45 esp_err_t err = esp_http_client_open(client, 0); 159 int ret = esp_tls_conn_new_sync(host, strlen(host), port, &tls_cfg, tls);
46 if (err != ESP_OK) { 160 if (ret < 0) {
47 esp_http_client_cleanup(client); 161 esp_tls_conn_destroy(tls);
48 free(buf); 162 return ESP_FAIL;
49 return NULL;
50 } 163 }
51 164
52 int content_length = esp_http_client_fetch_headers(client); 165 char upgrade[512];
53 int max_read = content_length > 0 ? content_length : 8191; 166 snprintf(upgrade, sizeof(upgrade),
167 "GET %s HTTP/1.1\r\n"
168 "Host: %s\r\n"
169 "Upgrade: websocket\r\n"
170 "Connection: Upgrade\r\n"
171 "Sec-WebSocket-Key: dGhlIHNhbXBsZSBub25jZQ==\r\n"
172 "Sec-WebSocket-Version: 13\r\n"
173 "\r\n",
174 path, host);
175
176 int written = esp_tls_conn_write(tls, (const unsigned char *)upgrade, strlen(upgrade));
177 if (written < 0) {
178 esp_tls_conn_destroy(tls);
179 return ESP_FAIL;
180 }
54 181
55 while (total < max_read) { 182 char resp[1024];
56 int n = esp_http_client_read(client, buf + total, max_read - total); 183 int rlen = esp_tls_conn_read(tls, (unsigned char *)resp, sizeof(resp) - 1);
57 if (n <= 0) break; 184 if (rlen <= 0 || !strstr(resp, "101")) {
58 total += n; 185 ESP_LOGE(TAG, "WS upgrade failed to %s (read %d)", host, rlen);
186 esp_tls_conn_destroy(tls);
187 return ESP_FAIL;
59 } 188 }
60 buf[total] = '\0'; 189
61 esp_http_client_cleanup(client); 190 *tls_out = tls;
62 return buf; 191 ESP_LOGI(TAG, "Connected to %s", host);
192 return ESP_OK;
63} 193}
64 194
65static cJSON *build_filter(const char *npub) 195static cJSON *build_tools_list(void)
66{ 196{
67 cJSON *filter = cJSON_CreateObject(); 197 cJSON *tools = cJSON_CreateArray();
68 cJSON *kinds = cJSON_CreateArray(); 198
69 cJSON_AddItemToArray(kinds, cJSON_CreateNumber(4)); 199 const char *tool_defs[][3] = {
70 cJSON_AddItemToObject(filter, "kinds", kinds); 200 {"get_config", "Get current device configuration", "{\"type\":\"object\",\"properties\":{},\"required\":[]}"},
71 cJSON_AddStringToObject(filter, "#p", npub); 201 {"set_config", "Update device configuration", "{\"type\":\"object\",\"properties\":{\"price_per_step\":{\"type\":\"integer\"},\"step_size_ms\":{\"type\":\"integer\"},\"step_size_bytes\":{\"type\":\"integer\"},\"metric\":{\"type\":\"string\"},\"client_enabled\":{\"type\":\"boolean\"},\"payout_enabled\":{\"type\":\"boolean\"}}}"},
72 cJSON_AddNumberToObject(filter, "limit", 10); 202 {"get_balance", "Get wallet balance and proof count", "{\"type\":\"object\",\"properties\":{},\"required\":[]}"},
73 return filter; 203 {"wallet_send", "Send e-cash tokens from wallet", "{\"type\":\"object\",\"properties\":{\"amount\":{\"type\":\"integer\",\"description\":\"Amount in sats\"}},\"required\":[\"amount\"]}"},
204 {"get_sessions","Get active client sessions", "{\"type\":\"object\",\"properties\":{},\"required\":[]}"},
205 {"get_usage", "Get current billing usage info", "{\"type\":\"object\",\"properties\":{},\"required\":[]}"},
206 {"set_payout", "Configure payout recipients", "{\"type\":\"object\",\"properties\":{\"enabled\":{\"type\":\"boolean\"},\"recipients\":{\"type\":\"array\"}}}"},
207 {"set_metric", "Set billing metric", "{\"type\":\"object\",\"properties\":{\"metric\":{\"type\":\"string\",\"enum\":[\"bytes\",\"milliseconds\"]}},\"required\":[\"metric\"]}"},
208 {"set_price", "Set price per step", "{\"type\":\"object\",\"properties\":{\"price_per_step\":{\"type\":\"integer\",\"minimum\":1}},\"required\":[\"price_per_step\"]}"},
209 {"wallet_melt", "Melt tokens for lightning payment", "{\"type\":\"object\",\"properties\":{\"bolt11\":{\"type\":\"string\"},\"max_fee_sats\":{\"type\":\"integer\"}},\"required\":[\"bolt11\"]}"},
210 };
211
212 for (int i = 0; i < 10; i++) {
213 cJSON *tool = cJSON_CreateObject();
214 cJSON_AddStringToObject(tool, "name", tool_defs[i][0]);
215 cJSON_AddStringToObject(tool, "description", tool_defs[i][1]);
216 cJSON *schema = cJSON_Parse(tool_defs[i][2]);
217 if (schema) cJSON_AddItemToObject(tool, "inputSchema", schema);
218 cJSON_AddItemToArray(tools, tool);
219 }
220
221 return tools;
74} 222}
75 223
76static cJSON *build_subscription(const char *npub) 224static char *build_initialize_response(const char *request_id_str, const char *client_pubkey)
77{ 225{
78 cJSON *sub = cJSON_CreateArray(); 226 cJSON *response = cJSON_CreateObject();
79 cJSON_AddItemToArray(sub, cJSON_CreateString("REQ")); 227 cJSON_AddStringToObject(response, "jsonrpc", "2.0");
80 cJSON_AddItemToArray(sub, cJSON_CreateString("cvm_sub_01")); 228 cJSON_AddNumberToObject(response, "id", request_id_str ? atof(request_id_str) : 0);
81 cJSON_AddItemToArray(sub, build_filter(npub)); 229
82 return sub; 230 cJSON *result = cJSON_CreateObject();
231 cJSON_AddStringToObject(result, "protocolVersion", CVM_VERSION);
232
233 cJSON *capabilities = cJSON_CreateObject();
234 cJSON_AddItemToObject(capabilities, "tools", cJSON_CreateObject());
235 cJSON_AddItemToObject(result, "capabilities", capabilities);
236
237 cJSON *serverInfo = cJSON_CreateObject();
238 cJSON_AddStringToObject(serverInfo, "name", CVM_SERVER_NAME);
239 cJSON_AddStringToObject(serverInfo, "version", CVM_SERVER_VERSION);
240 cJSON_AddItemToObject(result, "serverInfo", serverInfo);
241
242 cJSON_AddItemToObject(response, "result", result);
243
244 char *json = cJSON_PrintUnformatted(response);
245 cJSON_Delete(response);
246 return json;
247}
248
249static char *build_tools_list_response(const char *request_id_str)
250{
251 cJSON *response = cJSON_CreateObject();
252 cJSON_AddStringToObject(response, "jsonrpc", "2.0");
253 cJSON_AddNumberToObject(response, "id", request_id_str ? atof(request_id_str) : 1);
254
255 cJSON *result = cJSON_CreateObject();
256 cJSON *tools = build_tools_list();
257 cJSON_AddItemToObject(result, "tools", tools);
258 cJSON_AddItemToObject(response, "result", result);
259
260 char *json = cJSON_PrintUnformatted(response);
261 cJSON_Delete(response);
262 return json;
263}
264
265static char *build_tool_call_response(const char *request_id_str, const mcp_response_t *mcp_resp)
266{
267 cJSON *response = cJSON_CreateObject();
268 cJSON_AddStringToObject(response, "jsonrpc", "2.0");
269 cJSON_AddNumberToObject(response, "id", request_id_str ? atof(request_id_str) : 2);
270
271 if (mcp_resp->success) {
272 cJSON *result = cJSON_CreateObject();
273 cJSON_AddItemToObject(result, "content", cJSON_CreateArray());
274 cJSON *content_arr = cJSON_GetObjectItem(result, "content");
275 cJSON *text_item = cJSON_CreateObject();
276 cJSON_AddStringToObject(text_item, "type", "text");
277 cJSON_AddStringToObject(text_item, "text", mcp_resp->result_json);
278 cJSON_AddItemToArray(content_arr, text_item);
279 cJSON_AddBoolToObject(result, "isError", false);
280 cJSON_AddItemToObject(response, "result", result);
281 } else {
282 cJSON *error = cJSON_CreateObject();
283 cJSON_AddNumberToObject(error, "code", -32603);
284 cJSON_AddStringToObject(error, "message", mcp_resp->error);
285 cJSON_AddItemToObject(response, "error", error);
286 }
287
288 char *json = cJSON_PrintUnformatted(response);
289 cJSON_Delete(response);
290 return json;
291}
292
293static char *build_ping_response(const char *request_id_str)
294{
295 cJSON *response = cJSON_CreateObject();
296 cJSON_AddStringToObject(response, "jsonrpc", "2.0");
297 cJSON_AddNumberToObject(response, "id", request_id_str ? atof(request_id_str) : 0);
298 cJSON *result = cJSON_CreateObject();
299 cJSON_AddItemToObject(response, "result", result);
300 char *json = cJSON_PrintUnformatted(response);
301 cJSON_Delete(response);
302 return json;
83} 303}
84 304
85static void process_dm(const char *sender_pubkey, const char *encrypted_content) 305static esp_err_t publish_event_to_relay(const char *relay_url, const char *event_json)
306{
307 esp_tls_t *tls = NULL;
308 esp_err_t err = ws_connect(relay_url, &tls);
309 if (err != ESP_OK) return err;
310
311 char *msg;
312 size_t event_len2 = strlen(event_json);
313 size_t msg_len2 = 10 + event_len2 + 2;
314 msg = malloc(msg_len2);
315 snprintf(msg, msg_len2, "[\"EVENT\",%s]", event_json);
316
317 ws_send_text(tls, msg);
318 free(msg);
319
320 uint8_t resp_buf[256];
321 esp_tls_conn_read(tls, resp_buf, sizeof(resp_buf) - 1);
322
323 uint8_t close_frame[2] = {0x88, 0x00};
324 esp_tls_conn_write(tls, close_frame, 2);
325 esp_tls_conn_destroy(tls);
326 return ESP_OK;
327}
328
329static esp_err_t publish_kind_25910_response_ws(esp_tls_t *tls,
330 const char *content_json,
331 const char *request_event_id)
86{ 332{
87 const tollgate_identity_t *id = identity_get(); 333 const tollgate_identity_t *id = identity_get();
88 if (!id || !id->initialized) { 334 if (!id || !id->initialized) return ESP_FAIL;
89 ESP_LOGE(TAG, "Identity not initialized"); 335
90 return; 336 cJSON *tags = cJSON_CreateArray();
337 cJSON *e_tag = cJSON_CreateArray();
338 cJSON_AddItemToArray(e_tag, cJSON_CreateString("e"));
339 cJSON_AddItemToArray(e_tag, cJSON_CreateString(request_event_id));
340 cJSON_AddItemToArray(tags, e_tag);
341
342 char *tags_str = cJSON_PrintUnformatted(tags);
343 cJSON_Delete(tags);
344
345 nostr_event_t event;
346 nostr_event_init(&event, id->npub_hex, 25910, tags_str, content_json);
347 nostr_event_sign(&event, id->nsec);
348
349 char *event_json = malloc(8192);
350 if (!event_json) {
351 free(tags_str);
352 return ESP_ERR_NO_MEM;
91 } 353 }
92 354
93 uint8_t sender_pk[64]; 355 esp_err_t ret = nostr_event_to_json(&event, event_json, 8192);
94 for (int i = 0; i < 64; i++) { 356 free(tags_str);
95 char hex[3] = { sender_pubkey[i*2], sender_pubkey[i*2+1], 0 }; 357 if (ret != ESP_OK) {
96 sender_pk[i] = (uint8_t)strtol(hex, NULL, 16); 358 free(event_json);
359 return ret;
97 } 360 }
98 361
99 char plaintext[2048]; 362 size_t msg_len = 10 + strlen(event_json) + 2;
100 int pt_len = nip04_decrypt(id->nsec, sender_pk, encrypted_content, plaintext, sizeof(plaintext)); 363 char *msg = malloc(msg_len);
101 if (pt_len < 0) { 364 if (!msg) {
102 ESP_LOGE(TAG, "Failed to decrypt DM from %.8s", sender_pubkey); 365 free(event_json);
103 return; 366 return ESP_ERR_NO_MEM;
104 } 367 }
368 snprintf(msg, msg_len, "[\"EVENT\",%s]", event_json);
369 ESP_LOGD(TAG, "Sending WS response (%d bytes)", (int)strlen(msg));
370 int rc = ws_send_text(tls, msg);
371 ESP_LOGD(TAG, "WS send result: %d", rc);
372 free(msg);
373 free(event_json);
374 return ESP_OK;
375}
376
377static esp_err_t publish_kind_25910_response(const char *relay_url,
378 const char *content_json,
379 const char *request_event_id)
380{
381 const tollgate_identity_t *id = identity_get();
382 if (!id || !id->initialized) return ESP_FAIL;
383
384 cJSON *tags = cJSON_CreateArray();
385 cJSON *e_tag = cJSON_CreateArray();
386 cJSON_AddItemToArray(e_tag, cJSON_CreateString("e"));
387 cJSON_AddItemToArray(e_tag, cJSON_CreateString(request_event_id));
388 cJSON_AddItemToArray(tags, e_tag);
389
390 char *tags_str = cJSON_PrintUnformatted(tags);
391 cJSON_Delete(tags);
392
393 nostr_event_t event;
394 nostr_event_init(&event, id->npub_hex, 25910, tags_str, content_json);
395 nostr_event_sign(&event, id->nsec);
396 free(tags_str);
397
398 char *event_json = malloc(8192);
399 if (!event_json) return ESP_ERR_NO_MEM;
400
401 esp_err_t ret = nostr_event_to_json(&event, event_json, 8192);
402 if (ret != ESP_OK) {
403 free(event_json);
404 return ret;
405 }
406
407 ret = publish_event_to_relay(relay_url, event_json);
408 free(event_json);
409 return ret;
410}
105 411
106 ESP_LOGI(TAG, "Decrypted DM from %.8s: %s", sender_pubkey, plaintext); 412static bool is_owner_pubkey(const char *pubkey_hex)
413{
414 const tollgate_identity_t *id = identity_get();
415 if (!id || !id->initialized) return false;
416 if (!pubkey_hex) return false;
417 return strcmp(id->npub_hex, pubkey_hex) == 0;
418}
107 419
108 cJSON *msg = cJSON_Parse(plaintext); 420static void handle_mcp_message(esp_tls_t *tls, const char *sender_pubkey,
421 const char *event_id, const char *content)
422{
423 cJSON *msg = cJSON_Parse(content);
109 if (!msg) { 424 if (!msg) {
110 ESP_LOGE(TAG, "Invalid JSON in DM"); 425 ESP_LOGW(TAG, "Invalid JSON in kind 25910 content");
111 return; 426 return;
112 } 427 }
113 428
114 cJSON *method = cJSON_GetObjectItem(msg, "method"); 429 cJSON *method = cJSON_GetObjectItem(msg, "method");
115 cJSON *params = cJSON_GetObjectItem(msg, "params"); 430 cJSON *id_field = cJSON_GetObjectItem(msg, "id");
116 if (!method || !cJSON_IsString(method)) { 431 const char *id_str = (id_field && cJSON_IsNumber(id_field))
117 cJSON_Delete(msg); 432 ? cJSON_PrintUnformatted(id_field) : "0";
118 ESP_LOGE(TAG, "Missing 'method' in CVM request"); 433
119 return; 434 if (method && cJSON_IsString(method)) {
435 const char *m = method->valuestring;
436
437 if (strcmp(m, "initialize") == 0) {
438 ESP_LOGI(TAG, "MCP initialize from %s", sender_pubkey);
439 char *resp = build_initialize_response(id_str, sender_pubkey);
440 if (tls) {
441 publish_kind_25910_response_ws(tls, resp, event_id);
442 } else {
443 ESP_LOGW(TAG, "No TLS for response");
444 }
445 free(resp);
446 } else if (strcmp(m, "notifications/initialized") == 0) {
447 ESP_LOGI(TAG, "Client initialized: %s", sender_pubkey);
448 } else if (strcmp(m, "tools/list") == 0) {
449 ESP_LOGI(TAG, "tools/list from %s", sender_pubkey);
450 char *resp = build_tools_list_response(id_str);
451 if (tls) {
452 publish_kind_25910_response_ws(tls, resp, event_id);
453 }
454 free(resp);
455 } else if (strcmp(m, "tools/call") == 0) {
456 cJSON *params = cJSON_GetObjectItem(msg, "params");
457 cJSON *name = params ? cJSON_GetObjectItem(params, "name") : NULL;
458 cJSON *arguments = params ? cJSON_GetObjectItem(params, "arguments") : NULL;
459
460 if (name && cJSON_IsString(name)) {
461 ESP_LOGI(TAG, "tools/call %s from %s", name->valuestring, sender_pubkey);
462
463 mcp_request_t req = {0};
464 req.tool = mcp_parse_tool(name->valuestring);
465 strncpy(req.method, name->valuestring, sizeof(req.method) - 1);
466 if (arguments) {
467 char *ajson = cJSON_PrintUnformatted(arguments);
468 strncpy(req.params_json, ajson, sizeof(req.params_json) - 1);
469 cJSON_free(ajson);
470 }
471
472 mcp_response_t mcp_resp = mcp_dispatch(&req);
473 char *resp = build_tool_call_response(id_str, &mcp_resp);
474 if (tls) {
475 publish_kind_25910_response_ws(tls, resp, event_id);
476 }
477 free(resp);
478 }
479 } else if (strcmp(m, "ping") == 0) {
480 char *resp = build_ping_response(id_str);
481 if (tls) {
482 publish_kind_25910_response_ws(tls, resp, event_id);
483 }
484 free(resp);
485 } else {
486 ESP_LOGW(TAG, "Unknown MCP method: %s", m);
487 }
120 } 488 }
121 489
122 mcp_request_t req = {0}; 490 if (id_field && cJSON_IsNumber(id_field) && id_str[0] != '0') {
123 req.tool = mcp_parse_tool(method->valuestring); 491 free((void *)id_str);
124 strncpy(req.method, method->valuestring, sizeof(req.method) - 1); 492 } else if (id_str[0] != '0') {
125 if (params && cJSON_IsString(params)) {
126 strncpy(req.params_json, params->valuestring, sizeof(req.params_json) - 1);
127 } else if (params) {
128 char *pjson = cJSON_PrintUnformatted(params);
129 strncpy(req.params_json, pjson, sizeof(req.params_json) - 1);
130 cJSON_free(pjson);
131 } 493 }
132
133 mcp_response_t resp = mcp_dispatch(&req);
134 cJSON_Delete(msg); 494 cJSON_Delete(msg);
135
136 cJSON *response_msg = cJSON_CreateObject();
137 if (resp.success) {
138 cJSON_AddStringToObject(response_msg, "status", "ok");
139 cJSON_AddItemToObject(response_msg, "result", cJSON_Parse(resp.result_json));
140 } else {
141 cJSON_AddStringToObject(response_msg, "status", "error");
142 cJSON_AddStringToObject(response_msg, "error", resp.error);
143 }
144
145 char *response_str = cJSON_PrintUnformatted(response_msg);
146 cJSON_Delete(response_msg);
147
148 uint8_t response_ct[4096];
149 size_t ct_len = 0;
150 nip04_encrypt(id->nsec, sender_pk, response_str, response_ct, &ct_len);
151 free(response_str);
152
153 ESP_LOGI(TAG, "CVM response prepared (%zu bytes encrypted), would send to %.8s", ct_len, sender_pubkey);
154} 495}
155 496
156static void parse_nostr_events(const char *data) 497static void process_relay_message(esp_tls_t *tls, const char *relay_url, const char *msg_str)
157{ 498{
158 cJSON *arr = cJSON_Parse(data); 499 cJSON *arr = cJSON_Parse(msg_str);
159 if (!arr || !cJSON_IsArray(arr)) { 500 if (!arr || !cJSON_IsArray(arr)) {
160 if (arr) cJSON_Delete(arr); 501 if (arr) cJSON_Delete(arr);
161 return; 502 return;
162 } 503 }
163 504
164 cJSON *item = NULL; 505 cJSON *cmd = cJSON_GetArrayItem(arr, 0);
165 cJSON_ArrayForEach(item, arr) { 506 if (!cmd || !cJSON_IsString(cmd)) {
166 if (!cJSON_IsArray(item)) continue; 507 cJSON_Delete(arr);
167 int arr_size = cJSON_GetArraySize(item); 508 return;
168 if (arr_size < 3) continue; 509 }
169 510
170 cJSON *cmd = cJSON_GetArrayItem(item, 0); 511 if (strcmp(cmd->valuestring, "OK") == 0) {
171 if (!cmd || !cJSON_IsString(cmd) || strcmp(cmd->valuestring, "EVENT") != 0) continue; 512 cJSON *ev_id = cJSON_GetArrayItem(arr, 1);
513 cJSON *ok = cJSON_GetArrayItem(arr, 2);
514 cJSON *reason = cJSON_GetArrayItem(arr, 3);
515 ESP_LOGI(TAG, "Relay OK: id=%.16s success=%s reason=%s",
516 ev_id ? ev_id->valuestring : "?",
517 ok ? (cJSON_IsTrue(ok) ? "true" : "FALSE") : "?",
518 reason ? reason->valuestring : "");
519 cJSON_Delete(arr);
520 return;
521 }
172 522
173 cJSON *event = cJSON_GetArrayItem(item, 2); 523 if (strcmp(cmd->valuestring, "EVENT") != 0) {
174 if (!event) continue; 524 ESP_LOGI(TAG, "Relay msg: %.100s", msg_str);
525 cJSON_Delete(arr);
526 return;
527 }
175 528
176 cJSON *kind = cJSON_GetObjectItem(event, "kind"); 529 cJSON *event = cJSON_GetArrayItem(arr, 2);
177 if (!kind || kind->valueint != 4) continue; 530 if (!event) {
531 cJSON_Delete(arr);
532 return;
533 }
178 534
179 cJSON *pubkey = cJSON_GetObjectItem(event, "pubkey"); 535 cJSON *kind = cJSON_GetObjectItem(event, "kind");
180 cJSON *content = cJSON_GetObjectItem(event, "content"); 536 if (!kind || kind->valueint != 25910) {
181 if (pubkey && content) { 537 cJSON_Delete(arr);
182 process_dm(pubkey->valuestring, content->valuestring); 538 return;
183 } 539 }
540
541 cJSON *pubkey = cJSON_GetObjectItem(event, "pubkey");
542 cJSON *event_id = cJSON_GetObjectItem(event, "id");
543 cJSON *content = cJSON_GetObjectItem(event, "content");
544
545 if (!pubkey || !content || !event_id) {
546 cJSON_Delete(arr);
547 return;
184 } 548 }
549
550 if (!is_owner_pubkey(pubkey->valuestring)) {
551 ESP_LOGW(TAG, "Ignoring request from non-owner: %.16s...", pubkey->valuestring);
552 cJSON_Delete(arr);
553 return;
554 }
555
556 handle_mcp_message(tls, pubkey->valuestring, event_id->valuestring, content->valuestring);
185 cJSON_Delete(arr); 557 cJSON_Delete(arr);
186} 558}
187 559
188static void cvm_task(void *arg) 560static esp_err_t subscribe_to_relay(esp_tls_t *tls, const char *npub)
561{
562 cJSON *sub = cJSON_CreateArray();
563 cJSON_AddItemToArray(sub, cJSON_CreateString("REQ"));
564 cJSON_AddItemToArray(sub, cJSON_CreateString("cvm_sub"));
565 cJSON *filter = cJSON_CreateObject();
566 cJSON *kinds = cJSON_CreateArray();
567 cJSON_AddItemToArray(kinds, cJSON_CreateNumber(25910));
568 cJSON_AddItemToObject(filter, "kinds", kinds);
569 cJSON *p_tags = cJSON_CreateArray();
570 cJSON_AddItemToArray(p_tags, cJSON_CreateString(npub));
571 cJSON_AddItemToObject(filter, "#p", p_tags);
572 cJSON_AddNumberToObject(filter, "limit", 100);
573 cJSON_AddItemToArray(sub, filter);
574
575 char *msg = cJSON_PrintUnformatted(sub);
576 cJSON_Delete(sub);
577
578 int rc = ws_send_text(tls, msg);
579 free(msg);
580 return rc == 0 ? ESP_OK : ESP_FAIL;
581}
582
583static void cvm_relay_task(void *arg)
189{ 584{
585 const char *relay_url = (const char *)arg;
190 const tollgate_identity_t *id = identity_get(); 586 const tollgate_identity_t *id = identity_get();
191 if (!id || !id->initialized) { 587 if (!id || !id->initialized) {
192 ESP_LOGE(TAG, "Cannot start: identity not initialized"); 588 ESP_LOGE(TAG, "Identity not initialized");
193 vTaskDelete(NULL); 589 vTaskDelete(NULL);
194 return; 590 return;
195 } 591 }
196 592
197 char *relays = fetch_relays();
198 ESP_LOGI(TAG, "CVM server started, relays: %s", relays);
199
200 while (g_running) { 593 while (g_running) {
201 ESP_LOGI(TAG, "Polling for DMs..."); 594 esp_tls_t *tls = NULL;
595 esp_err_t err = ws_connect(relay_url, &tls);
596 if (err != ESP_OK) {
597 ESP_LOGW(TAG, "Connect failed to %s, retrying", relay_url);
598 vTaskDelay(pdMS_TO_TICKS(CVM_RECONNECT_DELAY_MS));
599 continue;
600 }
601
602 err = subscribe_to_relay(tls, id->npub_hex);
603 if (err != ESP_OK) {
604 esp_tls_conn_destroy(tls);
605 vTaskDelay(pdMS_TO_TICKS(CVM_RECONNECT_DELAY_MS));
606 continue;
607 }
202 608
203 cJSON *sub = build_subscription(id->npub_hex); 609 ESP_LOGI(TAG, "Listening on %s for kind 25910 events", relay_url);
204 char *sub_json = cJSON_PrintUnformatted(sub); 610 publish_announcements_via_ws(tls);
205 cJSON_Delete(sub);
206 611
207 char url[256]; 612 uint8_t *buf = malloc(CVM_WS_BUF_SIZE);
208 snprintf(url, sizeof(url), "%s/cvm_poll", relays); 613 if (!buf) {
209 free(sub_json); 614 esp_tls_conn_destroy(tls);
615 vTaskDelete(NULL);
616 return;
617 }
210 618
211 vTaskDelay(pdMS_TO_TICKS(30000)); 619 int64_t last_ping_time = 0;
620
621 while (g_running) {
622 int rlen = esp_tls_conn_read(tls, buf, CVM_WS_BUF_SIZE - 1);
623 if (rlen < 0) {
624 ESP_LOGW(TAG, "Read error on %s (rlen=%d)", relay_url, rlen);
625 break;
626 }
627 if (rlen == 0) {
628 break;
629 }
630
631 if ((buf[0] & 0x0F) == 0x01) {
632 char *text = parse_ws_text_frame(buf, rlen);
633 if (text) {
634 if (strlen(text) > 0) {
635 process_relay_message(tls, relay_url, text);
636 }
637 free(text);
638 }
639 } else if ((buf[0] & 0x0F) == 0x09) {
640 uint8_t pong[2] = {0x8A, 0x00};
641 esp_tls_conn_write(tls, pong, 2);
642 }
643
644 int64_t now = (int64_t)esp_timer_get_time() / 1000000;
645 if (now - last_ping_time >= CVM_WS_PING_INTERVAL_S) {
646 uint8_t ping[2] = {0x89, 0x00};
647 esp_tls_conn_write(tls, ping, 2);
648 last_ping_time = now;
649 }
650 }
651
652 free(buf);
653 uint8_t close_frame[2] = {0x88, 0x00};
654 esp_tls_conn_write(tls, close_frame, 2);
655 esp_tls_conn_destroy(tls);
656 ESP_LOGW(TAG, "Disconnected from %s, reconnecting", relay_url);
657 vTaskDelay(pdMS_TO_TICKS(CVM_RECONNECT_DELAY_MS));
212 } 658 }
213 659
214 ESP_LOGI(TAG, "CVM server stopped");
215 vTaskDelete(NULL); 660 vTaskDelete(NULL);
216} 661}
217 662
663static esp_err_t publish_event_via_ws(esp_tls_t *tls, int kind,
664 const char *content, const char *tags_json)
665{
666 const tollgate_identity_t *id = identity_get();
667 if (!id || !id->initialized) return ESP_FAIL;
668
669 nostr_event_t event;
670 nostr_event_init(&event, id->npub_hex, kind, tags_json, content);
671 nostr_event_sign(&event, id->nsec);
672
673 char *event_json = malloc(4096);
674 if (!event_json) return ESP_ERR_NO_MEM;
675
676 esp_err_t ret = nostr_event_to_json(&event, event_json, 4096);
677 if (ret != ESP_OK) {
678 free(event_json);
679 return ret;
680 }
681
682 char *msg;
683 size_t event_len = strlen(event_json);
684 size_t msg_len = 10 + event_len + 2;
685 msg = malloc(msg_len);
686 snprintf(msg, msg_len, "[\"EVENT\",%s]", event_json);
687
688 ws_send_text(tls, msg);
689 ESP_LOGI(TAG, "Published kind %d event (%d bytes)", kind, (int)strlen(event_json));
690 free(msg);
691 free(event_json);
692 return ESP_OK;
693}
694
695static void publish_announcements_via_ws(esp_tls_t *tls)
696{
697 const tollgate_identity_t *id = identity_get();
698 if (!id || !id->initialized) return;
699
700 ESP_LOGI(TAG, "Publishing CEP-6 announcements via active WS");
701
702 cJSON *ann_content = cJSON_CreateObject();
703 cJSON_AddStringToObject(ann_content, "protocolVersion", CVM_VERSION);
704 cJSON *capabilities = cJSON_CreateObject();
705 cJSON *tools_cap = cJSON_CreateObject();
706 cJSON_AddBoolToObject(tools_cap, "listChanged", true);
707 cJSON_AddItemToObject(capabilities, "tools", tools_cap);
708 cJSON_AddItemToObject(ann_content, "capabilities", capabilities);
709 cJSON *serverInfo = cJSON_CreateObject();
710 cJSON_AddStringToObject(serverInfo, "name", CVM_SERVER_NAME);
711 cJSON_AddStringToObject(serverInfo, "version", CVM_SERVER_VERSION);
712 cJSON_AddItemToObject(ann_content, "serverInfo", serverInfo);
713 char *ann_str = cJSON_PrintUnformatted(ann_content);
714 cJSON_Delete(ann_content);
715
716 cJSON *ann_tags = cJSON_CreateArray();
717 cJSON *name_tag = cJSON_CreateArray();
718 cJSON_AddItemToArray(name_tag, cJSON_CreateString("name"));
719 cJSON_AddItemToArray(name_tag, cJSON_CreateString(CVM_SERVER_NAME));
720 cJSON_AddItemToArray(ann_tags, name_tag);
721 cJSON *about_tag = cJSON_CreateArray();
722 cJSON_AddItemToArray(about_tag, cJSON_CreateString("about"));
723 cJSON_AddItemToArray(about_tag, cJSON_CreateString("ESP32 TollGate WiFi hotspot with Cashu e-cash payments"));
724 cJSON_AddItemToArray(ann_tags, about_tag);
725 char *ann_tags_str = cJSON_PrintUnformatted(ann_tags);
726 cJSON_Delete(ann_tags);
727
728 publish_event_via_ws(tls, 11316, ann_str, ann_tags_str);
729 free(ann_str);
730 free(ann_tags_str);
731
732 cJSON *tools = build_tools_list();
733 cJSON *tools_content = cJSON_CreateObject();
734 cJSON_AddItemToObject(tools_content, "tools", tools);
735 char *tools_str = cJSON_PrintUnformatted(tools_content);
736 cJSON_Delete(tools_content);
737
738 publish_event_via_ws(tls, 11317, tools_str, "[]");
739 free(tools_str);
740
741 cJSON *relay_tags = cJSON_CreateArray();
742 const char *relays[] = {"wss://relay.primal.net", "wss://nostr-pub.wellorder.net", NULL};
743 for (int i = 0; relays[i]; i++) {
744 cJSON *r_tag = cJSON_CreateArray();
745 cJSON_AddItemToArray(r_tag, cJSON_CreateString("r"));
746 cJSON_AddItemToArray(r_tag, cJSON_CreateString(relays[i]));
747 cJSON_AddItemToArray(relay_tags, r_tag);
748 }
749 char *relay_tags_str = cJSON_PrintUnformatted(relay_tags);
750 cJSON_Delete(relay_tags);
751
752 publish_event_via_ws(tls, 10002, "", relay_tags_str);
753 free(relay_tags_str);
754
755 ESP_LOGI(TAG, "CEP-6 announcements published (kinds 11316, 11317, 10002)");
756}
757
758esp_err_t cvm_publish_announcements(void)
759{
760 return ESP_OK;
761}
762
763const char *cvm_get_pubkey_hex(void)
764{
765 const tollgate_identity_t *id = identity_get();
766 if (!id || !id->initialized) return NULL;
767 return id->npub_hex;
768}
769
218esp_err_t cvm_server_init(void) 770esp_err_t cvm_server_init(void)
219{ 771{
220 ESP_LOGI(TAG, "CVM server initialized"); 772 ESP_LOGI(TAG, "CVM server initialized");
@@ -225,7 +777,12 @@ void cvm_server_start(void)
225{ 777{
226 if (g_running) return; 778 if (g_running) return;
227 g_running = true; 779 g_running = true;
228 xTaskCreate(cvm_task, "cvm_server", 8192, NULL, 5, &g_task); 780
781 const tollgate_config_t *cfg = tollgate_config_get();
782 const char *relay = (cfg->cvm_relays[0]) ? cfg->cvm_relays : "wss://relay.primal.net";
783
784 char *relay_copy = strdup(relay);
785 xTaskCreate(cvm_relay_task, "cvm_relay", 16384, relay_copy, 5, &g_task);
229} 786}
230 787
231void cvm_server_stop(void) 788void cvm_server_stop(void)
generated by cgit v1.2.3 (git 2.39.1) at 2026-06-05 00:13:53 +0000