futu_mcp/

card_num_expand.rs

//! Standalone MCP allowed_card_nums expansion helpers.

use std::sync::Arc;

use anyhow::{Context, Result};
use futu_auth::KeyStore;

use crate::state::ServerState;

#[cfg(unix)]
pub(crate) fn spawn_sighup_reload(store: Arc<KeyStore>, state: ServerState) {
    if !store.is_configured() {
        return;
    }
    use tokio::signal::unix::{SignalKind, signal};
    tokio::spawn(async move {
        let mut sig = match signal(SignalKind::hangup()) {
            Ok(s) => s,
            Err(e) => {
                tracing::error!(error = %e, "failed to install SIGHUP handler");
                return;
            }
        };
        tracing::info!("SIGHUP handler installed; send `kill -HUP <pid>` to reload keys");
        while sig.recv().await.is_some() {
            // (1) reload phase — KeyStore::load_file 重新读盘 + 重新注入
            // fail-closed sentinel for any new allowed_card_nums entries
            match store.reload() {
                Ok(()) => tracing::warn!(keys_loaded = store.len(), "keys file reloaded on SIGHUP"),
                Err(e) => {
                    tracing::error!(error = %e, "SIGHUP reload failed; keeping old keys");
                    continue;
                }
            }
            // (2) expand phase — v1.4.105 external reviewer #4: reload 后 raw allowed_card_nums
            // 已经回到字符串状态 (sentinel acc_id=0 已重新写入), 必须再跑一次
            // expand 把 card_num resolve 成 acc_ids; 否则 keys.json 修改后受
            // 影响的 key 全部回到 fail-closed reject (即使 daemon 已起 +
            // GetAccList 缓存可用). 与 daemon 的 unified SIGHUP handler 同语义.
            if store.has_any_card_num_restrictions() {
                let store_clone = store.clone();
                let state_clone = state.clone();
                tokio::spawn(async move {
                    if let Err(e) = expand_card_nums_via_daemon(&state_clone, &store_clone).await {
                        tracing::warn!(
                            error = %e,
                            "v1.4.105 external report #4: SIGHUP re-expand failed; sentinel 仍生效保护"
                        );
                    }
                });
            }
        }
    });
}

/// v1.4.105 external reviewer #4 fix: 启动时后台 retry 把 KeyStore 的
/// `allowed_card_nums` resolve 成 `allowed_acc_ids`. 与 futu-opend daemon
/// `card_num_reload_and_expand_fn` 启动 retry loop 同节奏 (6 × 10s).
///
/// 失败模式:
/// - daemon 未起来 → connect error → 等 10s 重试
/// - daemon 起来但 GetAccList 失败 (尚未登录 / 无账户) → 等 10s 重试
/// - 6 次都失败 → 放弃 (sentinel `{0}` 仍生效保护)
pub(crate) fn spawn_card_num_expand_retry(state: ServerState, key_store: Arc<KeyStore>) {
    tokio::spawn(async move {
        const MAX_ATTEMPTS: u32 = 6;
        const RETRY_INTERVAL_SECS: u64 = 10;
        for attempt in 1..=MAX_ATTEMPTS {
            match expand_card_nums_via_daemon(&state, &key_store).await {
                Ok(()) => {
                    tracing::info!(
                        attempt,
                        "v1.4.105 external report #4: standalone MCP allowed_card_nums expanded \
                         (与 daemon expand 路径 byte-identical)"
                    );
                    return;
                }
                Err(e) => {
                    if attempt < MAX_ATTEMPTS {
                        tracing::warn!(
                            attempt,
                            max = MAX_ATTEMPTS,
                            error = %e,
                            "v1.4.105 external report #4: card_num expand 失败, {RETRY_INTERVAL_SECS}s 后重试"
                        );
                        tokio::time::sleep(std::time::Duration::from_secs(RETRY_INTERVAL_SECS))
                            .await;
                    } else {
                        tracing::error!(
                            attempt,
                            error = %e,
                            "v1.4.105 external report #4: card_num expand 在 {MAX_ATTEMPTS} × \
                             {RETRY_INTERVAL_SECS}s 后仍失败; 受限 key 走 fail-closed \
                             sentinel reject 直到下次 SIGHUP / 手动 reload"
                        );
                    }
                }
            }
        }
    });
}

/// v1.4.105 external reviewer #4 fix: 连 daemon → call GetAccList → 用 acc_list 构造 resolver →
/// 调用 [`KeyStore::expand_allowed_card_nums`].
///
/// 这是 daemon `card_num_reload_and_expand_fn` 在 standalone MCP 进程的镜像.
/// daemon 那边是从 `Arc<TrdCache>` 取已缓存的账户列表; MCP 没有 cache, 必须
/// 主动调 `TRD_GetAccList` 拿 fresh data.
async fn expand_card_nums_via_daemon(state: &ServerState, key_store: &Arc<KeyStore>) -> Result<()> {
    // 1. 连 daemon (state.client() 懒加载 — 第一次会建立 TCP + InitConnect)
    let client = state
        .client()
        .await
        .with_context(|| "connect to daemon for card_num expand")?;

    // 2. 拉 GetAccList — daemon 必须已成功登录拿到账户. 若 user 还没 unlock /
    //    daemon 还在 establish session, 这里会返 server error (ret_type ≠ 0)
    let accs = futu_trd::account::get_acc_list_for_account_discovery(&client)
        .await
        .with_context(|| "GetAccList for card_num expand")?;

    if accs.is_empty() {
        return Err(anyhow::anyhow!(
            "GetAccList returned empty list (daemon 已起但无账户?)"
        ));
    }

    // 3. 用 acc_list 构造 resolver. 行为与
    //    `crates/futu-cache/src/trd_cache.rs::find_acc_ids_by_card_num`
    //    byte-identical (4-suffix / 16-exact 双匹配 card_num + uni_card_num,
    //    sort + dedup).
    let resolver = build_card_num_resolver(accs);

    // 4. expand — 与 daemon `card_num_reload_and_expand_fn` 用同一套 callback
    //    语义 (warn unresolved / ambiguous, 写 sentinel 0 让 fail-closed)
    let (resolved, unresolved, ambiguous) = key_store.expand_allowed_card_nums(
        &resolver,
        |key_id, cn| {
            tracing::warn!(
                key_id = %key_id,
                card_num = %cn,
                "v1.4.105 external report #4 fail-closed: card_num not found in daemon GetAccList; \
                 sentinel acc_id=0 让限额引擎 reject 真账户 (写完整 16 位 / specific 4 位)"
            );
        },
        |key_id, cn, candidates| {
            tracing::warn!(
                key_id = %key_id,
                card_num = %cn,
                candidates = ?candidates,
                "v1.4.105 external report #4 fail-closed: ambiguous card_num suffix matched 多账户 \
                 (skipped; 写完整 16 位 / specific 4 位)"
            );
        },
    );

    tracing::info!(
        resolved,
        unresolved,
        ambiguous,
        "v1.4.105 external report #4: standalone MCP allowed_card_nums expanded into allowed_acc_ids"
    );
    Ok(())
}

/// v1.4.105 external reviewer #4 fix: 用 `Vec<TrdAcc>` 构造 card_num resolver closure.
///
/// v1.4.109 Phase C: 解析规则下沉到 `futu_core::account_locator`，MCP
/// standalone / REST / CLI 不再各自手写 4 位 suffix、16 位完整卡号和
/// `card_num` / `uni_card_num` OR 关系。
pub(crate) fn build_card_num_resolver(accs: Vec<futu_trd::TrdAcc>) -> impl Fn(&str) -> Vec<u64> {
    move |input: &str| -> Vec<u64> {
        futu_core::account_locator::match_card_num_in_records(&accs, input, None)
            .unwrap_or_default()
    }
}