Alfred
/
fm-rds-tx
1
0
Fork 0
Código Issues 0 Pull requests 0 Versões 6 Wiki Atividade
Go-based FM stereo transmitter with RDS, Windows-first and cross-platform
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
208 Commits
1 Branch
37MB
Tag: 47764ed655
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de 47764ed655
${ noResults }
fm-rds-tx/internal/control/control.go

891 linhas
27KB
Original Anotar Histórico 

  1. package control

  2. 

  3. import (

  4. 	_ "embed"

  5. 	"encoding/json"

  6. 	"errors"

  7. 	"io"

  8. 	"mime"

  9. 	"net/http"

  10. 	"strings"

  11. 	"sync"

  12. 	"sync/atomic"

  13. 	"time"

  14. 

  15. 	"golang.org/x/net/websocket"

  16. 

  17. 	"github.com/jan/fm-rds-tx/internal/audio"

  18. 	"github.com/jan/fm-rds-tx/internal/config"

  19. 	drypkg "github.com/jan/fm-rds-tx/internal/dryrun"

  20. 	"github.com/jan/fm-rds-tx/internal/ingest"

  21. 	offpkg "github.com/jan/fm-rds-tx/internal/offline"

  22. 	"github.com/jan/fm-rds-tx/internal/platform"

  23. )

  24. 

  25. //go:embed ui.html

  26. var uiHTML []byte

  27. 

  28. //go:embed logo.png

  29. var logoPNG []byte

  30. 

  31. // TXController is an optional interface the Server uses to start/stop TX

  32. // and apply live config changes.

  33. type TXController interface {

  34. 	StartTX() error

  35. 	StopTX() error

  36. 	TXStats() map[string]any

  37. 	UpdateConfig(patch LivePatch) error

  38. 	ResetFault() error

  39. }

  40. 

  41. // LivePatch mirrors the patchable fields from ConfigPatch for the engine.

  42. // nil = no change.

  43. type LivePatch struct {

  44. 	FrequencyMHz            *float64

  45. 	OutputDrive             *float64

  46. 	StereoEnabled           *bool

  47. 	StereoMode              *string

  48. 	PilotLevel              *float64

  49. 	RDSInjection            *float64

  50. 	RDSEnabled              *bool

  51. 	LimiterEnabled          *bool

  52. 	LimiterCeiling          *float64

  53. 	PS                      *string

  54. 	RadioText               *string

  55. 	TA                      *bool

  56. 	TP                      *bool

  57. 	ToneLeftHz              *float64

  58. 	ToneRightHz             *float64

  59. 	ToneAmplitude           *float64

  60. 	AudioGain               *float64

  61. 	CompositeClipperEnabled *bool

  62. }

  63. 

  64. type Server struct {

  65. 	mu           sync.RWMutex

  66. 	cfg          config.Config

  67. 	tx           TXController

  68. 	drv          platform.SoapyDriver // optional, for runtime stats

  69. 	streamSrc    *audio.StreamSource  // optional, for live audio ring stats

  70. 	audioIngress AudioIngress         // optional, for /audio/stream

  71. 	ingestRt     IngestRuntime        // optional, for /runtime ingest stats

  72. 	saveConfig   func(config.Config) error

  73. 	hardReload   func()

  74. 	// BUG-F fix: reloadPending prevents multiple concurrent goroutines from

  75. 	// calling hardReload when handleIngestSave is hit multiple times quickly.

  76. 	reloadPending atomic.Bool

  77. 	audit         auditCounters

  78. 	telemetryHub  *TelemetryHub

  79. }

  80. 

  81. type AudioIngress interface {

  82. 	WritePCM16(data []byte) (int, error)

  83. }

  84. 

  85. type IngestRuntime interface {

  86. 	Stats() ingest.Stats

  87. }

  88. 

  89. type auditEvent string

  90. 

  91. const (

  92. 	auditMethodNotAllowed     auditEvent = "methodNotAllowed"

  93. 	auditUnsupportedMediaType auditEvent = "unsupportedMediaType"

  94. 	auditBodyTooLarge         auditEvent = "bodyTooLarge"

  95. 	auditUnexpectedBody       auditEvent = "unexpectedBody"

  96. )

  97. 

  98. type auditCounters struct {

  99. 	methodNotAllowed     uint64

  100. 	unsupportedMediaType uint64

  101. 	bodyTooLarge         uint64

  102. 	unexpectedBody       uint64

  103. }

  104. 

  105. const (

  106. 	maxConfigBodyBytes          = 64 << 10 // 64 KiB

  107. 	configContentTypeHeader     = "application/json"

  108. 	noBodyErrMsg                = "request must not include a body"

  109. 	audioStreamContentTypeError = "Content-Type must be application/octet-stream or audio/L16"

  110. 	audioStreamBodyLimitDefault = 512 << 20 // 512 MiB

  111. )

  112. 

  113. var audioStreamAllowedMediaTypes = []string{

  114. 	"application/octet-stream",

  115. 	"audio/l16",

  116. }

  117. 

  118. var audioStreamBodyLimit = int64(audioStreamBodyLimitDefault) // bytes allowed per /audio/stream request; tests may override.

  119. 

  120. func isJSONContentType(r *http.Request) bool {

  121. 	ct := strings.TrimSpace(r.Header.Get("Content-Type"))

  122. 	if ct == "" {

  123. 		return false

  124. 	}

  125. 	mediaType, _, err := mime.ParseMediaType(ct)

  126. 	if err != nil {

  127. 		return false

  128. 	}

  129. 	return strings.EqualFold(mediaType, configContentTypeHeader)

  130. }

  131. 

  132. type ConfigPatch struct {

  133. 	FrequencyMHz                *float64   `json:"frequencyMHz,omitempty"`

  134. 	OutputDrive                 *float64   `json:"outputDrive,omitempty"`

  135. 	StereoEnabled               *bool      `json:"stereoEnabled,omitempty"`

  136. 	StereoMode                  *string    `json:"stereoMode,omitempty"`

  137. 	PilotLevel                  *float64   `json:"pilotLevel,omitempty"`

  138. 	RDSInjection                *float64   `json:"rdsInjection,omitempty"`

  139. 	RDSEnabled                  *bool      `json:"rdsEnabled,omitempty"`

  140. 	ToneLeftHz                  *float64   `json:"toneLeftHz,omitempty"`

  141. 	ToneRightHz                 *float64   `json:"toneRightHz,omitempty"`

  142. 	ToneAmplitude               *float64   `json:"toneAmplitude,omitempty"`

  143. 	PS                          *string    `json:"ps,omitempty"`

  144. 	RadioText                   *string    `json:"radioText,omitempty"`

  145. 	PreEmphasisTauUS            *float64   `json:"preEmphasisTauUS,omitempty"`

  146. 	LimiterEnabled              *bool      `json:"limiterEnabled,omitempty"`

  147. 	LimiterCeiling              *float64   `json:"limiterCeiling,omitempty"`

  148. 	AudioGain                   *float64   `json:"audioGain,omitempty"`

  149. 	PI                          *string    `json:"pi,omitempty"`

  150. 	PTY                         *int       `json:"pty,omitempty"`

  151. 	TP                          *bool      `json:"tp,omitempty"`

  152. 	TA                          *bool      `json:"ta,omitempty"`

  153. 	MS                          *bool      `json:"ms,omitempty"`

  154. 	CTEnabled                   *bool      `json:"ctEnabled,omitempty"`

  155. 	RTPlusEnabled               *bool      `json:"rtPlusEnabled,omitempty"`

  156. 	RTPlusSeparator             *string    `json:"rtPlusSeparator,omitempty"`

  157. 	PTYN                        *string    `json:"ptyn,omitempty"`

  158. 	LPS                         *string    `json:"lps,omitempty"`

  159. 	ERTEnabled                  *bool      `json:"ertEnabled,omitempty"`

  160. 	ERT                         *string    `json:"ert,omitempty"`

  161. 	RDS2Enabled                 *bool      `json:"rds2Enabled,omitempty"`

  162. 	StationLogoPath             *string    `json:"stationLogoPath,omitempty"`

  163. 	AF                          *[]float64 `json:"af,omitempty"`

  164. 	BS412Enabled                *bool      `json:"bs412Enabled,omitempty"`

  165. 	BS412ThresholdDBr           *float64   `json:"bs412ThresholdDBr,omitempty"`

  166. 	MpxGain                     *float64   `json:"mpxGain,omitempty"`

  167. 	CompositeClipperEnabled     *bool      `json:"compositeClipperEnabled,omitempty"`

  168. 	CompositeClipperIterations  *int       `json:"compositeClipperIterations,omitempty"`

  169. 	CompositeClipperSoftKnee    *float64   `json:"compositeClipperSoftKnee,omitempty"`

  170. 	CompositeClipperLookaheadMs *float64   `json:"compositeClipperLookaheadMs,omitempty"`

  171. }

  172. 

  173. type IngestSaveRequest struct {

  174. 	Ingest config.IngestConfig `json:"ingest"`

  175. }

  176. 

  177. func NewServer(cfg config.Config) *Server {

  178. 	return &Server{cfg: cfg, telemetryHub: NewTelemetryHub()}

  179. }

  180. 

  181. func hasRequestBody(r *http.Request) bool {

  182. 	if r.ContentLength > 0 {

  183. 		return true

  184. 	}

  185. 	for _, te := range r.TransferEncoding {

  186. 		if strings.EqualFold(te, "chunked") {

  187. 			return true

  188. 		}

  189. 	}

  190. 	return false

  191. }

  192. 

  193. func (s *Server) rejectBody(w http.ResponseWriter, r *http.Request) bool {

  194. 	// Returns true when the request has an unexpected body and the error response

  195. 	// has already been written — callers should return immediately in that case.

  196. 	// Returns false when there is no body (happy path — request should proceed).

  197. 	if !hasRequestBody(r) {

  198. 		return false

  199. 	}

  200. 	s.recordAudit(auditUnexpectedBody)

  201. 	http.Error(w, noBodyErrMsg, http.StatusBadRequest)

  202. 	return true

  203. }

  204. 

  205. func (s *Server) recordAudit(evt auditEvent) {

  206. 	switch evt {

  207. 	case auditMethodNotAllowed:

  208. 		atomic.AddUint64(&s.audit.methodNotAllowed, 1)

  209. 	case auditUnsupportedMediaType:

  210. 		atomic.AddUint64(&s.audit.unsupportedMediaType, 1)

  211. 	case auditBodyTooLarge:

  212. 		atomic.AddUint64(&s.audit.bodyTooLarge, 1)

  213. 	case auditUnexpectedBody:

  214. 		atomic.AddUint64(&s.audit.unexpectedBody, 1)

  215. 	}

  216. }

  217. 

  218. func (s *Server) auditSnapshot() map[string]uint64 {

  219. 	return map[string]uint64{

  220. 		"methodNotAllowed":     atomic.LoadUint64(&s.audit.methodNotAllowed),

  221. 		"unsupportedMediaType": atomic.LoadUint64(&s.audit.unsupportedMediaType),

  222. 		"bodyTooLarge":         atomic.LoadUint64(&s.audit.bodyTooLarge),

  223. 		"unexpectedBody":       atomic.LoadUint64(&s.audit.unexpectedBody),

  224. 	}

  225. }

  226. 

  227. func isAudioStreamContentType(r *http.Request) bool {

  228. 	ct := strings.TrimSpace(r.Header.Get("Content-Type"))

  229. 	if ct == "" {

  230. 		return false

  231. 	}

  232. 	mediaType, _, err := mime.ParseMediaType(ct)

  233. 	if err != nil {

  234. 		return false

  235. 	}

  236. 	for _, allowed := range audioStreamAllowedMediaTypes {

  237. 		if strings.EqualFold(mediaType, allowed) {

  238. 			return true

  239. 		}

  240. 	}

  241. 	return false

  242. }

  243. 

  244. func (s *Server) TelemetryHub() *TelemetryHub {

  245. 	return s.telemetryHub

  246. }

  247. 

  248. func (s *Server) SetTXController(tx TXController) {

  249. 	s.mu.Lock()

  250. 	s.tx = tx

  251. 	s.mu.Unlock()

  252. }

  253. 

  254. func (s *Server) SetDriver(drv platform.SoapyDriver) {

  255. 	s.mu.Lock()

  256. 	s.drv = drv

  257. 	s.mu.Unlock()

  258. }

  259. 

  260. func (s *Server) SetStreamSource(src *audio.StreamSource) {

  261. 	s.mu.Lock()

  262. 	s.streamSrc = src

  263. 	s.mu.Unlock()

  264. }

  265. 

  266. func (s *Server) SetAudioIngress(ingress AudioIngress) {

  267. 	s.mu.Lock()

  268. 	s.audioIngress = ingress

  269. 	s.mu.Unlock()

  270. }

  271. 

  272. func (s *Server) SetIngestRuntime(rt IngestRuntime) {

  273. 	s.mu.Lock()

  274. 	s.ingestRt = rt

  275. 	s.mu.Unlock()

  276. }

  277. 

  278. func (s *Server) SetConfigSaver(save func(config.Config) error) {

  279. 	s.mu.Lock()

  280. 	s.saveConfig = save

  281. 	s.mu.Unlock()

  282. }

  283. 

  284. func (s *Server) SetHardReload(fn func()) {

  285. 	s.mu.Lock()

  286. 	s.hardReload = fn

  287. 	s.mu.Unlock()

  288. }

  289. 

  290. func (s *Server) Handler() http.Handler {

  291. 	mux := http.NewServeMux()

  292. 	mux.HandleFunc("/", s.handleUI)

  293. 	mux.HandleFunc("/logo", s.handleLogo)

  294. 	mux.HandleFunc("/healthz", s.handleHealth)

  295. 	mux.HandleFunc("/status", s.handleStatus)

  296. 	mux.HandleFunc("/dry-run", s.handleDryRun)

  297. 	mux.HandleFunc("/config", s.handleConfig)

  298. 	mux.HandleFunc("/config/ingest/save", s.handleIngestSave)

  299. 	mux.HandleFunc("/runtime", s.handleRuntime)

  300. 	mux.HandleFunc("/measurements", s.handleMeasurements)

  301. 	mux.Handle("/ws/telemetry", websocket.Handler(s.handleTelemetryWS))

  302. 	mux.HandleFunc("/runtime/fault/reset", s.handleRuntimeFaultReset)

  303. 	mux.HandleFunc("/tx/start", s.handleTXStart)

  304. 	mux.HandleFunc("/tx/stop", s.handleTXStop)

  305. 	mux.HandleFunc("/audio/stream", s.handleAudioStream)

  306. 	return mux

  307. }

  308. 

  309. func (s *Server) handleHealth(w http.ResponseWriter, _ *http.Request) {

  310. 	w.Header().Set("Content-Type", "application/json")

  311. 	_ = json.NewEncoder(w).Encode(map[string]any{"ok": true})

  312. }

  313. 

  314. func (s *Server) handleUI(w http.ResponseWriter, r *http.Request) {

  315. 	if r.URL.Path != "/" {

  316. 		http.NotFound(w, r)

  317. 		return

  318. 	}

  319. 	w.Header().Set("Content-Type", "text/html; charset=utf-8")

  320. 	w.Header().Set("Cache-Control", "no-cache")

  321. 	w.Write(uiHTML)

  322. }

  323. 

  324. func (s *Server) handleLogo(w http.ResponseWriter, r *http.Request) {

  325. 	w.Header().Set("Content-Type", "image/png")

  326. 	w.Header().Set("Cache-Control", "public, max-age=3600")

  327. 	w.Write(logoPNG)

  328. }

  329. 

  330. func (s *Server) handleStatus(w http.ResponseWriter, _ *http.Request) {

  331. 	s.mu.RLock()

  332. 	cfg := s.cfg

  333. 	tx := s.tx

  334. 	s.mu.RUnlock()

  335. 

  336. 	status := map[string]any{

  337. 		"service":             "fm-rds-tx",

  338. 		"backend":             cfg.Backend.Kind,

  339. 		"frequencyMHz":        cfg.FM.FrequencyMHz,

  340. 		"stereoEnabled":       cfg.FM.StereoEnabled,

  341. 		"stereoMode":          cfg.FM.StereoMode,

  342. 		"rdsEnabled":          cfg.RDS.Enabled,

  343. 		"preEmphasisTauUS":    cfg.FM.PreEmphasisTauUS,

  344. 		"limiterEnabled":      cfg.FM.LimiterEnabled,

  345. 		"fmModulationEnabled": cfg.FM.FMModulationEnabled,

  346. 	}

  347. 	if tx != nil {

  348. 		if stats := tx.TXStats(); stats != nil {

  349. 			if ri, ok := stats["runtimeIndicator"]; ok {

  350. 				status["runtimeIndicator"] = ri

  351. 			}

  352. 			if alert, ok := stats["runtimeAlert"]; ok {

  353. 				status["runtimeAlert"] = alert

  354. 			}

  355. 			if queue, ok := stats["queue"]; ok {

  356. 				status["queue"] = queue

  357. 			}

  358. 			if runtimeState, ok := stats["state"]; ok {

  359. 				status["runtimeState"] = runtimeState

  360. 			}

  361. 		}

  362. 	}

  363. 

  364. 	w.Header().Set("Content-Type", "application/json")

  365. 	_ = json.NewEncoder(w).Encode(status)

  366. }

  367. 

  368. func (s *Server) handleMeasurements(w http.ResponseWriter, _ *http.Request) {

  369. 	s.mu.RLock()

  370. 	tx := s.tx

  371. 	s.mu.RUnlock()

  372. 

  373. 	result := map[string]any{"noData": true, "stale": true}

  374. 	if tx != nil {

  375. 		if stats := tx.TXStats(); stats != nil {

  376. 			if measurement, ok := stats["measurement"]; ok && measurement != nil {

  377. 				result = map[string]any{"noData": false, "stale": false, "measurement": measurement}

  378. 				if state, ok := stats["state"]; ok {

  379. 					result["state"] = state

  380. 				}

  381. 				if applied, ok := stats["appliedFrequencyMHz"]; ok {

  382. 					result["appliedFrequencyMHz"] = applied

  383. 				}

  384. 				if queue, ok := stats["queue"]; ok {

  385. 					result["queue"] = queue

  386. 				}

  387. 				if runtimeIndicator, ok := stats["runtimeIndicator"]; ok {

  388. 					result["runtimeIndicator"] = runtimeIndicator

  389. 				}

  390. 				if runtimeAlert, ok := stats["runtimeAlert"]; ok {

  391. 					result["runtimeAlert"] = runtimeAlert

  392. 				}

  393. 			}

  394. 		}

  395. 	}

  396. 	w.Header().Set("Content-Type", "application/json")

  397. 	_ = json.NewEncoder(w).Encode(result)

  398. }

  399. 

  400. func (s *Server) handleTelemetryWS(ws *websocket.Conn) {

  401. 	if s.telemetryHub == nil {

  402. 		_ = ws.Close()

  403. 		return

  404. 	}

  405. 	_ = ws.SetDeadline(time.Now().Add(30 * time.Second))

  406. 	sub, unsubscribe := s.telemetryHub.Subscribe()

  407. 	defer unsubscribe()

  408. 	defer ws.Close()

  409. 

  410. 	s.mu.RLock()

  411. 	tx := s.tx

  412. 	s.mu.RUnlock()

  413. 	if tx != nil {

  414. 		if stats := tx.TXStats(); stats != nil {

  415. 			if measurement, ok := stats["measurement"].(interface{ }); ok {

  416. 				if m, ok := measurement.(*offpkg.MeasurementSnapshot); ok && m != nil {

  417. 					_ = ws.SetWriteDeadline(time.Now().Add(2 * time.Second))

  418. 					if err := websocket.JSON.Send(ws, TelemetryMessage{Type: "measurement", TS: m.Timestamp, Seq: m.Sequence, Data: m}); err != nil {

  419. 						return

  420. 					}

  421. 				}

  422. 			}

  423. 		}

  424. 	}

  425. 

  426. 	for msg := range sub.ch {

  427. 		_ = ws.SetWriteDeadline(time.Now().Add(2 * time.Second))

  428. 		if err := websocket.JSON.Send(ws, msg); err != nil {

  429. 			return

  430. 		}

  431. 	}

  432. }

  433. 

  434. func (s *Server) handleRuntime(w http.ResponseWriter, _ *http.Request) {

  435. 	s.mu.RLock()

  436. 	drv := s.drv

  437. 	tx := s.tx

  438. 	stream := s.streamSrc

  439. 	ingestRt := s.ingestRt

  440. 	s.mu.RUnlock()

  441. 

  442. 	result := map[string]any{}

  443. 	if drv != nil {

  444. 		result["driver"] = drv.Stats()

  445. 	}

  446. 	if tx != nil {

  447. 		if stats := tx.TXStats(); stats != nil {

  448. 			result["engine"] = stats

  449. 		}

  450. 	}

  451. 	if stream != nil {

  452. 		result["audioStream"] = stream.Stats()

  453. 	}

  454. 	if ingestRt != nil {

  455. 		result["ingest"] = ingestRt.Stats()

  456. 	}

  457. 	result["controlAudit"] = s.auditSnapshot()

  458. 	w.Header().Set("Content-Type", "application/json")

  459. 	_ = json.NewEncoder(w).Encode(result)

  460. }

  461. 

  462. func (s *Server) handleRuntimeFaultReset(w http.ResponseWriter, r *http.Request) {

  463. 	if r.Method != http.MethodPost {

  464. 		s.recordAudit(auditMethodNotAllowed)

  465. 		http.Error(w, "method not allowed", http.StatusMethodNotAllowed)

  466. 		return

  467. 	}

  468. 	if s.rejectBody(w, r) { // BUG-01 fix: rejectBody returns true when rejected

  469. 		return

  470. 	}

  471. 	s.mu.RLock()

  472. 	tx := s.tx

  473. 	s.mu.RUnlock()

  474. 	if tx == nil {

  475. 		http.Error(w, "tx controller not available", http.StatusServiceUnavailable)

  476. 		return

  477. 	}

  478. 	if err := tx.ResetFault(); err != nil {

  479. 		http.Error(w, err.Error(), http.StatusConflict)

  480. 		return

  481. 	}

  482. 	w.Header().Set("Content-Type", "application/json")

  483. 	_ = json.NewEncoder(w).Encode(map[string]any{"ok": true})

  484. }

  485. 

  486. // handleAudioStream accepts raw S16LE PCM via HTTP POST and pushes

  487. // it into the configured ingest http-raw source. Use with:

  488. //

  489. //	curl -X POST --data-binary @- http://host:8088/audio/stream < audio.raw

  490. //	ffmpeg ... -f s16le -ar 44100 -ac 2 - | curl -X POST --data-binary @- http://host:8088/audio/stream

  491. func (s *Server) handleAudioStream(w http.ResponseWriter, r *http.Request) {

  492. 	if r.Method != http.MethodPost {

  493. 		s.recordAudit(auditMethodNotAllowed)

  494. 		http.Error(w, "method not allowed", http.StatusMethodNotAllowed)

  495. 		return

  496. 	}

  497. 	if !isAudioStreamContentType(r) {

  498. 		s.recordAudit(auditUnsupportedMediaType)

  499. 		http.Error(w, audioStreamContentTypeError, http.StatusUnsupportedMediaType)

  500. 		return

  501. 	}

  502. 	s.mu.RLock()

  503. 	ingress := s.audioIngress

  504. 	s.mu.RUnlock()

  505. 

  506. 	if ingress == nil {

  507. 		http.Error(w, "audio ingest not configured (use --audio-http with ingest runtime)", http.StatusServiceUnavailable)

  508. 		return

  509. 	}

  510. 

  511. 	// BUG-10 fix: /audio/stream is a long-lived streaming endpoint.

  512. 	// The global HTTP server ReadTimeout (5s) and WriteTimeout (10s) would

  513. 	// kill connections mid-stream. Disable them per-request via ResponseController

  514. 	// (requires Go 1.20+, confirmed Go 1.22).

  515. 	rc := http.NewResponseController(w)

  516. 	_ = rc.SetReadDeadline(time.Time{})

  517. 	_ = rc.SetWriteDeadline(time.Time{})

  518. 

  519. 	r.Body = http.MaxBytesReader(w, r.Body, audioStreamBodyLimit)

  520. 

  521. 	// Read body in chunks and push to ring buffer

  522. 	buf := make([]byte, 32768)

  523. 	totalFrames := 0

  524. 	for {

  525. 		n, err := r.Body.Read(buf)

  526. 		if n > 0 {

  527. 			written, writeErr := ingress.WritePCM16(buf[:n])

  528. 			totalFrames += written

  529. 			if writeErr != nil {

  530. 				http.Error(w, writeErr.Error(), http.StatusServiceUnavailable)

  531. 				return

  532. 			}

  533. 		}

  534. 		if err != nil {

  535. 			if err == io.EOF {

  536. 				break

  537. 			}

  538. 			var maxErr *http.MaxBytesError

  539. 			if errors.As(err, &maxErr) {

  540. 				s.recordAudit(auditBodyTooLarge)

  541. 				http.Error(w, maxErr.Error(), http.StatusRequestEntityTooLarge)

  542. 				return

  543. 			}

  544. 			http.Error(w, err.Error(), http.StatusInternalServerError)

  545. 			return

  546. 		}

  547. 	}

  548. 

  549. 	w.Header().Set("Content-Type", "application/json")

  550. 	_ = json.NewEncoder(w).Encode(map[string]any{

  551. 		"ok":     true,

  552. 		"frames": totalFrames,

  553. 	})

  554. }

  555. 

  556. func (s *Server) handleTXStart(w http.ResponseWriter, r *http.Request) {

  557. 	if r.Method != http.MethodPost {

  558. 		s.recordAudit(auditMethodNotAllowed)

  559. 		http.Error(w, "method not allowed", http.StatusMethodNotAllowed)

  560. 		return

  561. 	}

  562. 	if s.rejectBody(w, r) { // BUG-01 fix: rejectBody returns true when rejected

  563. 		return

  564. 	}

  565. 	s.mu.RLock()

  566. 	tx := s.tx

  567. 	s.mu.RUnlock()

  568. 	if tx == nil {

  569. 		http.Error(w, "tx controller not available", http.StatusServiceUnavailable)

  570. 		return

  571. 	}

  572. 	if err := tx.StartTX(); err != nil {

  573. 		http.Error(w, err.Error(), http.StatusConflict)

  574. 		return

  575. 	}

  576. 	w.Header().Set("Content-Type", "application/json")

  577. 	_ = json.NewEncoder(w).Encode(map[string]any{"ok": true, "action": "started"})

  578. }

  579. 

  580. func (s *Server) handleTXStop(w http.ResponseWriter, r *http.Request) {

  581. 	if r.Method != http.MethodPost {

  582. 		s.recordAudit(auditMethodNotAllowed)

  583. 		http.Error(w, "method not allowed", http.StatusMethodNotAllowed)

  584. 		return

  585. 	}

  586. 	if s.rejectBody(w, r) { // BUG-01 fix: rejectBody returns true when rejected

  587. 		return

  588. 	}

  589. 	s.mu.RLock()

  590. 	tx := s.tx

  591. 	s.mu.RUnlock()

  592. 	if tx == nil {

  593. 		http.Error(w, "tx controller not available", http.StatusServiceUnavailable)

  594. 		return

  595. 	}

  596. 	go func() {

  597. 		_ = tx.StopTX()

  598. 	}()

  599. 	w.Header().Set("Content-Type", "application/json")

  600. 	_ = json.NewEncoder(w).Encode(map[string]any{"ok": true, "action": "stop-requested"})

  601. }

  602. 

  603. func (s *Server) handleDryRun(w http.ResponseWriter, _ *http.Request) {

  604. 	s.mu.RLock()

  605. 	cfg := s.cfg

  606. 	s.mu.RUnlock()

  607. 	w.Header().Set("Content-Type", "application/json")

  608. 	_ = json.NewEncoder(w).Encode(drypkg.Generate(cfg))

  609. }

  610. 

  611. func (s *Server) handleConfig(w http.ResponseWriter, r *http.Request) {

  612. 	switch r.Method {

  613. 	case http.MethodGet:

  614. 		s.mu.RLock()

  615. 		cfg := s.cfg

  616. 		s.mu.RUnlock()

  617. 		w.Header().Set("Content-Type", "application/json")

  618. 		_ = json.NewEncoder(w).Encode(cfg)

  619. 	case http.MethodPost:

  620. 		if !isJSONContentType(r) {

  621. 			s.recordAudit(auditUnsupportedMediaType)

  622. 			http.Error(w, "Content-Type must be application/json", http.StatusUnsupportedMediaType)

  623. 			return

  624. 		}

  625. 		r.Body = http.MaxBytesReader(w, r.Body, maxConfigBodyBytes)

  626. 		var patch ConfigPatch

  627. 		// BUG-4 fix: reject unknown JSON fields (typos) with 400 rather than

  628. 		// silently ignoring them (e.g. "outputDrvie" would succeed and do nothing).

  629. 		dec := json.NewDecoder(r.Body)

  630. 		dec.DisallowUnknownFields()

  631. 		if err := dec.Decode(&patch); err != nil {

  632. 			statusCode := http.StatusBadRequest

  633. 			if strings.Contains(err.Error(), "http: request body too large") {

  634. 				statusCode = http.StatusRequestEntityTooLarge

  635. 				s.recordAudit(auditBodyTooLarge)

  636. 			}

  637. 			http.Error(w, err.Error(), statusCode)

  638. 			return

  639. 		}

  640. 

  641. 		// Update the server's config snapshot (for GET /config and /status)

  642. 		s.mu.Lock()

  643. 		next := s.cfg

  644. 		if patch.FrequencyMHz != nil {

  645. 			next.FM.FrequencyMHz = *patch.FrequencyMHz

  646. 		}

  647. 		if patch.OutputDrive != nil {

  648. 			next.FM.OutputDrive = *patch.OutputDrive

  649. 		}

  650. 		if patch.ToneLeftHz != nil {

  651. 			next.Audio.ToneLeftHz = *patch.ToneLeftHz

  652. 		}

  653. 		if patch.ToneRightHz != nil {

  654. 			next.Audio.ToneRightHz = *patch.ToneRightHz

  655. 		}

  656. 		if patch.ToneAmplitude != nil {

  657. 			next.Audio.ToneAmplitude = *patch.ToneAmplitude

  658. 		}

  659. 		if patch.AudioGain != nil {

  660. 			next.Audio.Gain = *patch.AudioGain

  661. 		}

  662. 		if patch.PS != nil {

  663. 			next.RDS.PS = *patch.PS

  664. 		}

  665. 		if patch.RadioText != nil {

  666. 			next.RDS.RadioText = *patch.RadioText

  667. 		}

  668. 		if patch.PI != nil {

  669. 			next.RDS.PI = *patch.PI

  670. 		}

  671. 		if patch.PTY != nil {

  672. 			next.RDS.PTY = *patch.PTY

  673. 		}

  674. 		if patch.TP != nil {

  675. 			next.RDS.TP = *patch.TP

  676. 		}

  677. 		if patch.TA != nil {

  678. 			next.RDS.TA = *patch.TA

  679. 		}

  680. 		if patch.MS != nil {

  681. 			next.RDS.MS = *patch.MS

  682. 		}

  683. 		if patch.CTEnabled != nil {

  684. 			next.RDS.CTEnabled = *patch.CTEnabled

  685. 		}

  686. 		if patch.RTPlusEnabled != nil {

  687. 			next.RDS.RTPlusEnabled = *patch.RTPlusEnabled

  688. 		}

  689. 		if patch.RTPlusSeparator != nil {

  690. 			next.RDS.RTPlusSeparator = *patch.RTPlusSeparator

  691. 		}

  692. 		if patch.PTYN != nil {

  693. 			next.RDS.PTYN = *patch.PTYN

  694. 		}

  695. 		if patch.LPS != nil {

  696. 			next.RDS.LPS = *patch.LPS

  697. 		}

  698. 		if patch.ERTEnabled != nil {

  699. 			next.RDS.ERTEnabled = *patch.ERTEnabled

  700. 		}

  701. 		if patch.ERT != nil {

  702. 			next.RDS.ERT = *patch.ERT

  703. 		}

  704. 		if patch.RDS2Enabled != nil {

  705. 			next.RDS.RDS2Enabled = *patch.RDS2Enabled

  706. 		}

  707. 		if patch.StationLogoPath != nil {

  708. 			next.RDS.StationLogoPath = *patch.StationLogoPath

  709. 		}

  710. 		if patch.AF != nil {

  711. 			next.RDS.AF = *patch.AF

  712. 		}

  713. 		if patch.PreEmphasisTauUS != nil {

  714. 			next.FM.PreEmphasisTauUS = *patch.PreEmphasisTauUS

  715. 		}

  716. 		if patch.StereoEnabled != nil {

  717. 			next.FM.StereoEnabled = *patch.StereoEnabled

  718. 		}

  719. 		if patch.StereoMode != nil {

  720. 			next.FM.StereoMode = *patch.StereoMode

  721. 		}

  722. 		if patch.LimiterEnabled != nil {

  723. 			next.FM.LimiterEnabled = *patch.LimiterEnabled

  724. 		}

  725. 		if patch.LimiterCeiling != nil {

  726. 			next.FM.LimiterCeiling = *patch.LimiterCeiling

  727. 		}

  728. 		if patch.RDSEnabled != nil {

  729. 			next.RDS.Enabled = *patch.RDSEnabled

  730. 		}

  731. 		if patch.PilotLevel != nil {

  732. 			next.FM.PilotLevel = *patch.PilotLevel

  733. 		}

  734. 		if patch.RDSInjection != nil {

  735. 			next.FM.RDSInjection = *patch.RDSInjection

  736. 		}

  737. 		if patch.BS412Enabled != nil {

  738. 			next.FM.BS412Enabled = *patch.BS412Enabled

  739. 		}

  740. 		if patch.BS412ThresholdDBr != nil {

  741. 			next.FM.BS412ThresholdDBr = *patch.BS412ThresholdDBr

  742. 		}

  743. 		if patch.MpxGain != nil {

  744. 			next.FM.MpxGain = *patch.MpxGain

  745. 		}

  746. 		if patch.CompositeClipperEnabled != nil {

  747. 			next.FM.CompositeClipper.Enabled = *patch.CompositeClipperEnabled

  748. 		}

  749. 		if patch.CompositeClipperIterations != nil {

  750. 			next.FM.CompositeClipper.Iterations = *patch.CompositeClipperIterations

  751. 		}

  752. 		if patch.CompositeClipperSoftKnee != nil {

  753. 			next.FM.CompositeClipper.SoftKnee = *patch.CompositeClipperSoftKnee

  754. 		}

  755. 		if patch.CompositeClipperLookaheadMs != nil {

  756. 			next.FM.CompositeClipper.LookaheadMs = *patch.CompositeClipperLookaheadMs

  757. 		}

  758. 		if err := next.Validate(); err != nil {

  759. 			s.mu.Unlock()

  760. 			http.Error(w, err.Error(), http.StatusBadRequest)

  761. 			return

  762. 		}

  763. 		lp := LivePatch{

  764. 			FrequencyMHz:            patch.FrequencyMHz,

  765. 			OutputDrive:             patch.OutputDrive,

  766. 			StereoEnabled:           patch.StereoEnabled,

  767. 			StereoMode:              patch.StereoMode,

  768. 			PilotLevel:              patch.PilotLevel,

  769. 			RDSInjection:            patch.RDSInjection,

  770. 			RDSEnabled:              patch.RDSEnabled,

  771. 			LimiterEnabled:          patch.LimiterEnabled,

  772. 			LimiterCeiling:          patch.LimiterCeiling,

  773. 			PS:                      patch.PS,

  774. 			RadioText:               patch.RadioText,

  775. 			TA:                      patch.TA,

  776. 			TP:                      patch.TP,

  777. 			ToneLeftHz:              patch.ToneLeftHz,

  778. 			ToneRightHz:             patch.ToneRightHz,

  779. 			ToneAmplitude:           patch.ToneAmplitude,

  780. 			AudioGain:               patch.AudioGain,

  781. 			CompositeClipperEnabled: patch.CompositeClipperEnabled,

  782. 		}

  783. 		// NEU-02 fix: determine whether any live-patchable fields are present,

  784. 		// then release the lock before calling UpdateConfig to avoid holding

  785. 		// s.mu across a potentially blocking engine call.

  786. 		tx := s.tx

  787. 		hasLiveFields := patch.FrequencyMHz != nil || patch.OutputDrive != nil ||

  788. 			patch.StereoEnabled != nil || patch.StereoMode != nil || patch.PilotLevel != nil ||

  789. 			patch.RDSInjection != nil || patch.RDSEnabled != nil ||

  790. 			patch.LimiterEnabled != nil || patch.LimiterCeiling != nil ||

  791. 			patch.PS != nil || patch.RadioText != nil || patch.TA != nil || patch.TP != nil ||

  792. 			patch.ToneLeftHz != nil || patch.ToneRightHz != nil ||

  793. 			patch.ToneAmplitude != nil || patch.AudioGain != nil ||

  794. 			patch.CompositeClipperEnabled != nil

  795. 		s.mu.Unlock()

  796. 		// Apply live fields to running engine outside the lock.

  797. 		if tx != nil && hasLiveFields {

  798. 			if err := tx.UpdateConfig(lp); err != nil {

  799. 				http.Error(w, err.Error(), http.StatusBadRequest)

  800. 				return

  801. 			}

  802. 		}

  803. 		// Persist the validated config snapshot when a config saver is available.

  804. 		// This ensures restart-required UI changes survive process restarts instead

  805. 		// of only updating the in-memory snapshot.

  806. 		s.mu.RLock()

  807. 		save := s.saveConfig

  808. 		s.mu.RUnlock()

  809. 		if save != nil {

  810. 			if err := save(next); err != nil {

  811. 				http.Error(w, err.Error(), http.StatusInternalServerError)

  812. 				return

  813. 			}

  814. 		}

  815. 		// Commit the server snapshot only after validation, optional persistence,

  816. 		// and any required live update succeeded.

  817. 		s.mu.Lock()

  818. 		s.cfg = next

  819. 		s.mu.Unlock()

  820. 		// NEU-03 fix: report live=true only when live-patchable fields were applied.

  821. 		live := tx != nil && hasLiveFields

  822. 		w.Header().Set("Content-Type", "application/json")

  823. 		_ = json.NewEncoder(w).Encode(map[string]any{"ok": true, "live": live})

  824. 	default:

  825. 		http.Error(w, "method not allowed", http.StatusMethodNotAllowed)

  826. 	}

  827. }

  828. 

  829. func (s *Server) handleIngestSave(w http.ResponseWriter, r *http.Request) {

  830. 	if r.Method != http.MethodPost {

  831. 		s.recordAudit(auditMethodNotAllowed)

  832. 		http.Error(w, "method not allowed", http.StatusMethodNotAllowed)

  833. 		return

  834. 	}

  835. 	if !isJSONContentType(r) {

  836. 		s.recordAudit(auditUnsupportedMediaType)

  837. 		http.Error(w, "Content-Type must be application/json", http.StatusUnsupportedMediaType)

  838. 		return

  839. 	}

  840. 	r.Body = http.MaxBytesReader(w, r.Body, maxConfigBodyBytes)

  841. 

  842. 	var req IngestSaveRequest

  843. 	if err := json.NewDecoder(r.Body).Decode(&req); err != nil {

  844. 		statusCode := http.StatusBadRequest

  845. 		if strings.Contains(err.Error(), "http: request body too large") {

  846. 			statusCode = http.StatusRequestEntityTooLarge

  847. 			s.recordAudit(auditBodyTooLarge)

  848. 		}

  849. 		http.Error(w, err.Error(), statusCode)

  850. 		return

  851. 	}

  852. 

  853. 	s.mu.Lock()

  854. 	next := s.cfg

  855. 	next.Ingest = req.Ingest

  856. 	if err := next.Validate(); err != nil {

  857. 		s.mu.Unlock()

  858. 		http.Error(w, err.Error(), http.StatusBadRequest)

  859. 		return

  860. 	}

  861. 	save := s.saveConfig

  862. 	reload := s.hardReload

  863. 	if save == nil {

  864. 		s.mu.Unlock()

  865. 		http.Error(w, "config save is not configured (start with --config <path>)", http.StatusServiceUnavailable)

  866. 		return

  867. 	}

  868. 	if err := save(next); err != nil {

  869. 		s.mu.Unlock()

  870. 		http.Error(w, err.Error(), http.StatusInternalServerError)

  871. 		return

  872. 	}

  873. 	s.cfg = next

  874. 	s.mu.Unlock()

  875. 

  876. 	w.Header().Set("Content-Type", "application/json")

  877. 	reloadScheduled := reload != nil

  878. 	_ = json.NewEncoder(w).Encode(map[string]any{

  879. 		"ok":              true,

  880. 		"saved":           true,

  881. 		"reloadScheduled": reloadScheduled,

  882. 	})

  883. 	if reloadScheduled && s.reloadPending.CompareAndSwap(false, true) {

  884. 		go func(fn func()) {

  885. 			time.Sleep(250 * time.Millisecond)

  886. 			s.reloadPending.Store(false)

  887. 			fn()

  888. 		}(reload)

  889. 	}

  890. }