Because of the peer-to-peer nature of control communication, it is useful to have a "ping" or "echo" command that lets you know you've received all responses up to the current command's response.

command: echo\t$message
response: $message

I don't use these features, but they are expected features for any daemon.

To get quickly going it would be super helpful to have an example config in the repo or in the manfile

Interactive mode exits as soon as it sees end of file on STDIN. It should print a message telling the user why it is exiting. Perhaps it should also print the PIDs of services that were still running when it exited...

If a service is defined which uses filehandles "control.event" or "control.cmd", these should be attached as a new Controller instance. This is how the service which manages the other services gets defined. (in absence of connecting to a unix socket)

Signals which have not been explicitly cleared should also be dumped.

Should take a signal (by name or number) and only perform the kill() if the service is running. Else, print an error.

Will require adding signal-by-name lookup function.

Daemonproxy should be using non-blocking I/O on its logging file descriptor.

The language is supposed to be simple, and that command is awkward to parse.

It is better to have more commands to handle the details than to try packing it all into a single command.

init-frame needs to know which services to auto-restart. I'm planning to use the meta tags for this. It needs to parse "auto-restart=1" and set the corresponding flag in the service.

These will cause the creation and deletion of the control socket at a specified path.

Verify the important bits of the output, and the exit code

This version of terminate should immediately exit with an optional value. (or trigger the exec-on-exit feature)

If a controller is actively responding to SIGTERM and SIGQUIT, then these signals need to be caught and forwarded. But if there isn't a controller, there should be some option to handle them in a normal sensible way, like terminating all services and exiting.

Close unused filehandles.

dup filehandles into correct positions according to service's fd spec

This is really weird. So as you know I'm trying to get offlineimap under
daemonproxy. Here's my current config:

  fd.pipe ol-log.r        ol-log.w
  service.args    ol-log  /usr/sbin/tinylog       -k      1       log/offlineimap
  service.fds     ol-log  ol-log.r        stderr  stderr
  service.auto_up ol-log  2       always

  service.args    offlineimap     offlineimap
  service.fds     offlineimap     null    ol-log.w        ol-log.w
  service.auto_up offlineimap     1       always

Here's the output I get from running offlineimap from my shell:

  OfflineIMAP 6.5.4
    Licensed under the GNU GPL v2+ (v2 or any later version)
  Account sync Mail:
   *** Processing account Mail
   Establishing connection to imap.gmail.com:993
  Folder INBOX [acc: Mail]:
   Syncing INBOX: Gmail -> Maildir
  Folder mitsi [acc: Mail]:
   Syncing mitsi: Gmail -> Maildir

Now here's the output of the logger when I run it under daemonproxy:

  OfflineIMAP 6.5.4
    Licensed under the GNU GPL v2+ (v2 or any later version)
  Account sync Mail:
   *** Processing account Mail
   Establishing connection to imap.gmail.com:993
   ERROR: While attempting to sync account 'Mail'
    Could not find .netrc: $HOME is not set
   *** Finished account 'Mail' in 0:00
   Next refresh in 1.0 minutes

I suspect that the environment does not correctly get cloned into the
subprocess. That would explain why I needed to include the path for tinylog.

Thoughts?

Daemonproxy provides built-in file descriptors of "stdin", "stdout" and "stderr", but using these can conflict with other uses of the file descriptor, like reading the config file on stdin or having stdin/stdout connected in interactive mode.

If something is using stdin/stdout/stderr, the handle of that name should be redirected to /dev/null.

I think it would be really cool, expecially for casual" users like myself, if
you had a set of control scripts for a starting point for creating the external
scripts.

Obviously this is not my forté, but a fun thing to do might be to make a
daemonproxy based perp (similar commands), so maybe

• derpctl
• derphup
• derpls
• derpok
• derpstat

I might try my hand at this, but I'm honestly not really sure where to start; I
guess if I were using perl I'd want to have an event loop watching for events on
STDIN and on some domain socket for external control? I'll let you know if I
come up with anything.

Oh also, I'd understand if you don't think that stuff like this should be
bundled with daemonproxy, but at least linking to examples would be nice.

service.delete deletes a service, regardless of whether it is running, and no further events will be reported from it.

The backend for opening pipes and files is implemented, but not the command interface. These are needed to set up logging for services. Also fd.close should be implemented.

I was trying to get a really basic config set up and I tried this:

  service.args    offlineimap
  service.fds     offlineimap     null    stdout  stdout
  service.auto_up offlineimap     1       always

The problem, obviously, is that I'm not actually picking a program to exec.

It might be nice to check that sooner instead of when the command is actually
being run.

This command should set the exec-on-exit argument list (which can also be specified on the command line).

There needs to be a command which controllers can ask init-frame to terminate. While the command is simple, semantics for what should be done when terminating need to be thought through.

Write a controller script that requests a bunch of data without reading any responses. Verify that the overflow gets set and then the overflow event gets delivered when script starts reading stdin again. Verify that commands work again after that.

Also write a script that sends lots of signals to daemonproxy, causing an overflow.

Also write a script that writes longer and longer lines of output and verify that daemonproxy correctly reports them as errors. Ensure that long comment lines don't trigger the error message. Ensure that command processing still works afterward.

Need a command to cancel a previously scheduled service start. Without this, there is no way to "down" a service without waiting for the countdown, if the delayed start or restart interval feature was used.

With this, the prescribed sequence to down a service will be:

  service.auto_up NAME -
  service.start NAME -
  service.signal NAME TERM

(wait for service.state of 'down', or...)

  service.signal NAME KILL

fd.delete will close and remove a file handle

Should test that it runs a service and correctly identifies

• execution time
• exit status (test exit codes 0, 1, 255, sigterm, sigsegv, sighup)
• timestamps for exec and reap (when compared to MONOTONIC of another process)

This command should perform the standard cleanup procedure of sending signals to children, until all have exited, then waiting until I/O has been flushed, then exiting.

This command should enable/disable the failsafe flag. It should take an option of +/-, and an integer argument that must be repeated when disabling the flag.

This command should immediately exec() the arguments given, or else the exec-on-exit arguments.

signal.clear reduces the signal count by some number. It allows a controller to stop seeing signals that it has handled.

Use an exec-on-exit script to verify that daemonproxy passes control to it under a variety of error scenarios, including

• Incorrect arguments following the exec-on-exit argument
• segfault (need some way to link a "buggy" function that reads a null pointer)
• malloc failure (link in bogus malloc function)
• 'terminate' command

Daemonproxy doesn't emit any error messages for commands that come from a config file. These clearly ought to go to the log.

Having a logger that is only used for a single service feels really "heavy". I
wouldn't mind it so much if my services were sharing the logger, but given that
they aren't it ends up being pretty noisy when %50 of my config is for logging.

For example, this is normal for me:

  fd.pipe offlineimap-log.r offlineimap-log.w
  service.args offlineimap-log /usr/sbin/tinylog -t -k 1 log/offlineimap
  service.fds offlineimap-log offlineimap-log.r stderr stderr
  service.auto_up offlineimap-log 1 always

  service.args offlineimap env HOME=/home/frew offlineimap
  service.fds offlineimap null offlineimap-log.w offlineimap-log.w
  service.auto_up offlineimap 1 always

I was thinking it would be nice if (and maybe this is a sugar layer that
generates a config file, or a script that talks to daemonproxy) you could do
something like this:

  service.args offlineimap env HOME=/home/frew offlineimap
  service.pipe offlineimap 0 1 1 /usr/sbin/tinylog -t -k 1 log/offlineimap
  service.auto_up offlineimap 1 always

I see how that's ghetto; maybe once I use daemonproxy enough I'll know how to
make it it scriptable. An example of how to script this might be nice.

This lets the controller know that it has a full view of daemonproxy's state.

In order to keep the code smaller, redesign the signal-by-name and signal-by-number to iterate a small table. The locality of the data should make up for not using switch statements or hash tables.

If daemonproxy has forked a child and the child receives SIGTERM before it calls exec(), make sure the signal doesn't get lost. Investigate the order of un-setting signal handlers vs unmasking signals.

All log messages go to stdout currently, but it should be possible to redirect logging into a service maintained by daemonproxy itself. (i.e. direct log output into a pipe attached to a service.)

It would be more convenient to have "service.meta.apply (changes)" than to have to add/remove values from the client. Also this avoids race conditions. Implement this method.

Also, "service.meta" should be the method to query the state, not set it. Change "service.args", "service.fds", "service.meta" into "service.args.set", "service.fd.set", "service.meta.set".

Write a simple controller that ups/downs a service a few times, and then write a config file referencing this controller script, and then run it.

Write a synopsis of features and protocol, and have makefile 'install' target install it.

Test on an old version of FreeBSD (like 4.4) and then a new version (like 9.0) and assume everything inbetween works.

Would be great if -h (and maybe -?) was just another word for --help.

Currently signals just get delivered to controllers as they arrive. If the controller were in the process of restarting or had a full pipe, the signal is lost.

In order to have proper handling for signals, they need to be added to a queue such that the controller can clear them once they've been dealt with.

There needs to be a sensible interface to handle the accumulation of duplicate signals and containing them in a fixed memory buffer.