Server autorestart

[buyolitsez]

Hi, I use cmus with cmusfm on macos. At first, thank you for your script! However, sometimes it stops scrobbling for me after some time, and the solution is to manually restart the cmusfm server process. So, I tried to add auto-restart in the cmusfm to make it automatic. I'm not sure that I did it properly, but now it works for me without any problems, so I guess the problem should be fixed

Could you please check the PR?

[arkq]

However, sometimes it stops scrobbling for me after some time, and the solution is to manually restart the cmusfm server process.

Hmm..., it would be nice to know what is the actual cause of the server not being started.

[buyolitsez]

However, sometimes it stops scrobbling for me after some time, and the solution is to manually restart the cmusfm server process.

Hmm..., it would be nice to know what is the actual cause of the server not being started.

I'll run the main branch now and wait for some time to see the debug logs. I'll post them here then

[Copilot]

Pull request overview

This pull request implements automatic server restart functionality to address intermittent scrobbling issues on macOS. The changes add error recovery mechanisms in both the server main loop and the client process that spawns the server.

• Improves error handling in the server's main loop with better errno checking for poll, accept, read, and inotify operations
• Adds automatic restart logic with exponential backoff (up to 5 retries) when the server crashes
• Implements retry mechanism for track sending when the server becomes unavailable

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 9 comments.

File	Description
src/server.c	Enhanced error handling for poll, accept, read, and inotify operations with errno checking; added logic to close previous client connections before accepting new ones
src/main.c	Implemented auto-restart loop with exponential backoff in forked server process; added retry logic to restart server and resend track when initial send fails

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The retry logic spawns a new server process without the restart mechanism. When the send fails and the server needs to be restarted (lines 264-265), the forked child process directly calls cmusfm_server_start() without the retry loop that was added earlier (lines 234-246). This creates inconsistent behavior where the initial server startup has auto-restart capabilities, but the recovery path does not.

The child process should use the same restart loop logic for consistency.

[Copilot]

Potential zombie process creation. When the retry mechanism spawns a new server process (line 260-265), the parent process does not wait for or track the child process. This is different from the initial server spawn (line 223) where the parent continues to execute but should eventually clean up child processes.

In the retry path, after forking, the parent should either track the child PID or ensure proper process management to avoid zombie processes accumulating over time.

[Copilot]

[nitpick] Redundant check in read length validation. The condition rd_len > 0 && rd_len >= sizeof(struct cmusfm_data_record) at line 377 has a redundant check. If rd_len >= sizeof(struct cmusfm_data_record) is true, then rd_len > 0 is always true since sizeof(struct cmusfm_data_record) is guaranteed to be positive.

Simplify to: if (rd_len >= sizeof(struct cmusfm_data_record))

Suggested change

	if (rd_len > 0 && rd_len >= sizeof(struct cmusfm_data_record))
	if (rd_len >= sizeof(struct cmusfm_data_record))

[Copilot]

The exponential backoff delay calculation will overflow for restart counts >= 6. The delay starts at 1 second and doubles each time (line 244: delay = delay * 2). With max_restarts = 5, the delays would be: 1s, 2s, 4s, 8s. However, if this logic were extended or modified, larger values could overflow an int.

Consider using a maximum cap for the delay value (e.g., delay = (delay * 2 < 60) ? delay * 2 : 60;) to prevent unbounded growth.

Suggested change

	delay = delay * 2;
	delay = (delay * 2 < 60) ? delay * 2 : 60;

[Copilot]

Missing error handling for accept(). If accept() is interrupted by a signal (errno == EINTR), the current code logs the error and continues (lines 365-369), which is correct. However, for other error conditions like EMFILE (too many open files) or ENOMEM (out of memory), continuing the loop without any backoff or mitigation could lead to a tight loop consuming CPU resources.

Consider adding a small delay (e.g., usleep(100000) for 100ms) before continuing when accept() fails with certain error conditions to prevent spinning.

Suggested change

	debug("Accept error: %s", strerror(errno));
	debug("Accept error: %s", strerror(errno));
	/* If accept fails due to resource exhaustion, add a small delay to prevent CPU spinning */
	if (errno == EMFILE || errno == ENOMEM) {
	usleep(100000); /* 100ms */
	}

[Copilot]

The new restart mechanism and retry logic lack test coverage. The auto-restart functionality (lines 230-246) and the retry-on-failure logic (lines 257-275) are significant behavioral changes that could fail silently or cause issues in production. Given that the repository has comprehensive test suites for server functionality (see test/test-server-*.c files), these new code paths should be covered by tests to ensure they work correctly under various failure scenarios.

[Copilot]

File descriptor not reset after closing. After closing the previous client connection (line 362), the code does not set pfds[1].fd = -1. This means that on the next iteration, if a new connection arrives, the check if (pfds[1].fd != -1) at line 360 will be true even though the fd was already closed, potentially leading to a double-close error or attempting to close an fd that has been reused by the system for another purpose.

Add pfds[1].fd = -1; after line 362 to properly reset the file descriptor.

Suggested change

	close(pfds[1].fd);
	close(pfds[1].fd);
	pfds[1].fd = -1;

[Copilot]

The static variable server_on is not reset between restarts. The server_on variable (declared as static bool server_on = true; in the file) is set to false by the signal handler when the server is stopped. However, when the server is restarted by the retry logic in main.c (lines 234-246), this variable remains false from the previous run, causing the new server instance to exit immediately without entering the main loop.

The server_on variable should be reset to true at the beginning of cmusfm_server_start() to ensure it works correctly across restarts.

[Copilot]

[nitpick] Potential issue with checking EINTR during signal-based shutdown. When a signal (SIGTERM, SIGHUP, or SIGINT) is received, the signal handler sets server_on = false and may interrupt the poll() call with EINTR. However, the current logic handles EINTR by continuing the loop (lines 348-351). This means that when the signal handler sets server_on = false and poll() returns with EINTR, the code will continue, check server_on in the while condition (line 344), and exit normally with retval = 0.

While this appears to work correctly, it's worth noting that this behavior is implicit and may not be immediately obvious. The signal handling works as intended, but the interaction between EINTR handling and server_on could be documented with a comment.

Suggested change

	/* Interrupted by signal, continue loop */
	/*
	* EINTR may be caused by a signal (e.g., SIGTERM, SIGHUP, SIGINT).
	* The signal handler sets server_on = false, so the next loop
	* iteration will exit cleanly. This continue ensures we re-check
	* server_on before proceeding.
	*/