Fuse rmux terminal gateway into lucarned

[qinsehm1128]

Summary

• Fuse the rmux terminal monitor/gateway path into the default lucarned runtime and TUI entrypoint instead of requiring a separate feature-gated launch path.
• Add typed remote configuration handling, provider field merging, loopback/control-port validation, strong token validation, and unified rmux binary resolution.
• Harden the terminal gateway boundary: public gateway router excludes remote control routes, readonly sessions reject write frames, tickets are scoped/single-use/rate-capped, and resync handles have_rev correctly.
• Add repeatable remote Quick Tunnel E2E harness/docs and cover the fusion boundary with unit, integration, and default-build tests.

Testing

• cargo +nightly fmt --check
• git diff --check HEAD
• bash -n scripts/remote-quick-tunnel-e2e.sh && scripts/remote-quick-tunnel-e2e.sh
• cargo +nightly clippy -Zbuild-dir-new-layout --workspace --all-targets --all-features --exclude agent-sessions --no-deps -- -D warnings
• cargo +nightly test -Zbuild-dir-new-layout -p lucarne --test live_unit codex_live_preflight_accepts_minimal_turn -- --exact
• cargo +nightly test -Zbuild-dir-new-layout --workspace --all-features --exclude agent-sessions
• Real Cloudflare Quick Tunnel E2E completed before PR submission; the checked-in harness remains env-gated with cleanup behavior for repeatable release validation.

Notes

• Quick Tunnel is documented as a development/testing path; named Cloudflare tunnels remain the recommended production path.
• The branch is merged with upstream main at 670e403 / release v0.4.3, with lockfile versions synchronized after merge.

[tuchg]

Review position: significant progress, but still do not merge as-is.

最新 head c509935a 相比上一轮确实做了实质收敛：lucarne-web / lucarne-agentbind 独立 crate 已移除，WebChat -> new AgentRuntime 这条 live-agent 分叉看起来被删掉了；archive 收进 lucarne-rmux::archive，TUI 和 gateway 复用同一 store；remote control plane 和 public gateway 分端口隔离；remote_config.rs 也把一部分配置解析从 main.rs 拿出来了。

但这些改动还没有把架构收成一条清晰主线。尤其需要强调：release 入口对齐不等于产品能力应该默认融合。该有 feature 还是要有 feature。 默认 lucarned 把 remote / rmux / termgw / TUI 全部无条件拉进来，不是架构改善，只是把 feature 边界抹掉了。

What improved

• The old lucarne-web direct runtime bridge is gone, so the most dangerous WebChat -> AgentRuntime::new live-agent split appears removed.
• The old sidecar lucarne-agentbind crate is gone; terminal-bound agent binding now lives in lucarne::terminal_agent_bind and records observations in ControlPlaneSqliteStore.
• Archive now has one implementation under lucarne-rmux::archive; both TUI and termgw call that store.
• Terminal scrollback capture is now bounded to the recent window through SCROLLBACK_CAPTURE_LINES.
• Public gateway no longer mounts /api/remote/*; remote control routes are served from a distinct loopback-only control listener.
• Quick Tunnel smoke coverage was added as an env-gated harness.

Those are real improvements. They do not yet resolve the main architecture issues below.

Remaining architecture issues

• [P1] Default/product fusion removed the feature boundary instead of fixing release packaging. crates/lucarned/Cargo.toml now has default = [], but lucarne-remote, lucarne-termgw, lucarne-rmux, ratatui, crossterm, qrcode, and reqwest blocking are unconditional dependencies. A release binary may choose to build a named product bundle feature, but the source architecture still needs explicit features such as terminal/rmux, terminal-gateway, remote-access, TUI, and any convenience bundle. Otherwise no-default/default builds can no longer protect the base daemon from remote/rmux/TUI drift.

• [P1] Remote is still terminal-gateway-shaped rather than a reusable middle layer. DaemonRemoteControl::ensure_gateway still connects RmuxMonitor, adopts rmux sessions, builds lucarne_termgw::router_with_pool_and_store, then starts the tunnel. The request path is still effectively remote start -> rmux monitor -> termgw -> tunnel, not RemoteAccess -> Admission -> Operator API -> capability.

• [P1] Terminal-bound agent control is not the same as LucarneCore live session control. /agent/{id} mirrors a provider transcript and writes prompts into an interactive rmux pane. That can be a valid terminal-adjacent feature, but it must be named and tested as such. It is not Operator -> LucarneCore -> AgentRuntime open/resume/submit/approve/interrupt/close.

• [P1] The new live-journey coverage is mostly a manifest, not an executed journey. terminal_live_journey_manifest.rs names required gates, but it does not drive the actual local/remote/channel user journeys. The Quick Tunnel harness checks public auth, route isolation, session list, and read-only write refusal, but it does not cover live agent open/resume/submit/stream/approve/interrupt/close or prove terminal archive-and-close isolation from LucarneCore.live_sessions.

• [P1] Transcript hot paths are still not bounded enough. terminal_agent_bind::read_messages(path, 0) is still used for initial agent load and history reads, and read_complete_lines_from does read_to_end from that offset. Incremental reads after the initial offset are better, but initial/history load can still scan whole transcripts. The product-level history/chat API needs tail-window/cursor semantics from day one.

• [P2] Provider-specific config is improved but not fully back at the provider boundary. remote_config.rs still owns CloudflareFileConfig { token, public_url, binary_path } and merges it when provider == cloudflared. Moving this out of main.rs helps, but daemon config still owns concrete provider field names for legacy compatibility.

• [P2] Archive single-owner improved, but archive file permissions are still weak. lucarne-rmux::archive::save uses create_dir_all and fs::write with platform defaults. Terminal scrollback can contain secrets; the archive directory/file should be created owner-only on Unix, e.g. 0700 dir / 0600 file.

Required before merge

1. Restore explicit capability features. Keep a minimal base daemon/default path; add named features for terminal/rmux, terminal-gateway, remote-access, TUI, and a deliberate product bundle if wanted. Release packaging can opt into a bundle, but default source architecture should not erase the boundaries.
2. Define RemoteAccess as the middle layer and RemoteExposureManager as the control plane. Remote startup must not be structurally tied to rmux/termgw unless the selected exposed capability is terminal.
3. Clarify terminal-bound agent semantics: distinguish rmux pane running an agent CLI from LucarneCore live session, and do not let either pretend to own the other.
4. Replace the live journey manifest with executable E2E coverage for the real user journeys: local/remote ingress, open/resume/submit/stream/approve/interrupt/close, read-only/write refusal, reconnect/disconnect, and archive-and-close isolation from core live sessions.
5. Make transcript initial/history reads bounded and cursor-based.
6. Finish archive hardening with owner-only permissions.
7. Keep provider-specific remote config at the provider descriptor/compat layer, not in daemon/common logic.

Bottom line

This head is materially better than the earlier one, and several previous objections should be downgraded or removed. But the current “Fuse rmux terminal gateway into lucarned” direction overcorrects: it aligns the release entrypoint by fusing product capabilities into the default daemon instead of preserving explicit features and an access/operator architecture. I would still hold merge until features, access-plane ownership, operator API, bounded transcript reads, and real live E2E journeys are in place.

[qinsehm1128]

已按 review 总评修复并推送到 head 0dbddb1。

处理内容：

1. 恢复显式 capability features：remote-access、terminal-rmux、terminal-gateway、tui、product-terminal。默认 source build 保持 base daemon，release packaging 通过 [package.metadata.dist] features = ["product-terminal"] 选择产品 bundle。
2. lucarned 默认构建不再链接 lucarne-remote / lucarne-termgw / lucarne-rmux / rmux-sdk / ratatui / crossterm；新增 default_build_fusion guard 同时验证默认排除、product-terminal 包含，以及单独 feature 编译不意外耦合。
3. RemoteAccess 语义改为中间层：DaemonRemoteControl 重命名为 RemoteExposureManager，增加 ExposedCapability::TerminalGateway，startup 路径改为先准备 selected capability，再由 provider tunnel publish loopback listener；control listener 明确为 off-tunnel dedicated loopback listener。
4. terminal-bound agent 语义已明确为 terminal-adjacent provider transcript / rmux pane binding，不再宣称等同于 LucarneCore live session；contract test 也验证 archive-and-close 不触碰 LucarneCore / live_sessions。
5. 删除 checklist-only terminal_live_journey_manifest.rs，替换为可执行 terminal_live_journey_contract.rs，要求本地可复跑测试 / harness 证据存在，包括 Quick Tunnel harness、read-only refusal、bounded transcript、owner-only archive、core isolation。
6. transcript 初始/history 读取改为 bounded tail window，增量读取也使用 bounded reader，并保留 cursor / partial-line 语义。
7. archive 存储改为 Unix owner-only：目录 0700，文件 0600，并补测试。
8. provider-specific compat config 下沉到 provider descriptor：Cloudflared 自己声明 deprecated remote.cloudflare alias；daemon config 只保留 opaque extra_sections + generic providers.<id> map，不再拥有 CloudflareFileConfig concrete struct。
9. 文档同步为“单一入口 + 显式 source features + release bundle”，修正之前“默认无条件融合”的表述。

验证已通过：

• cargo +nightly fmt --check
• git diff --check
• cargo +nightly check -Zbuild-dir-new-layout -p lucarned
• cargo +nightly check -Zbuild-dir-new-layout -p lucarned --features remote-access
• cargo +nightly check -Zbuild-dir-new-layout -p lucarned --features terminal-gateway
• cargo +nightly test -Zbuild-dir-new-layout -p lucarned
• cargo +nightly test -Zbuild-dir-new-layout -p lucarned --features product-terminal
• cargo +nightly test -Zbuild-dir-new-layout -p lucarned --features product-terminal --test default_build_fusion
• cargo +nightly test -Zbuild-dir-new-layout -p lucarned --features product-terminal remote::tests
• cargo +nightly test -Zbuild-dir-new-layout -p lucarned --features product-terminal remote_config
• cargo +nightly test -Zbuild-dir-new-layout -p lucarne --features terminal-agent-bind terminal_agent_bind --lib
• cargo +nightly test -Zbuild-dir-new-layout -p lucarne --features terminal-agent-bind --test terminal_live_journey_contract
• cargo +nightly test -Zbuild-dir-new-layout -p lucarne-rmux archive
• cargo +nightly test -Zbuild-dir-new-layout -p lucarne-remote cloudflared_declares_legacy_config_section_alias
• bash -n scripts/remote-quick-tunnel-e2e.sh && scripts/remote-quick-tunnel-e2e.sh（env-gated harness skip path）
• cargo +nightly clippy -Zbuild-dir-new-layout --workspace --all-targets --all-features --exclude agent-sessions --no-deps -- -D warnings
• cargo +nightly test -Zbuild-dir-new-layout --workspace --all-features --exclude agent-sessions