feat(mqtt): full source-scoped ingest with channel decryption and unified-view fixes

[Yeraze]

Summary

MQTT bridges were connecting to upstream brokers but contributing almost nothing to the unified views. This PR fixes the entire ingest path so MQTT-relayed traffic lands properly attributed, decrypts via the channel database, and dedups across TCP + MQTT receptions of the same mesh packet.

Before: ~99% packet drop rate on Florida MQTT, zero messages in DB from MQTT sources, no MQTT entries in the unified channels picker or source filter.

After: ~25–35% ingest rate, full nodes/messages/telemetry/traceroutes/neighbors populated per MQTT source, picker entries from TCP and MQTT collapse to one logical channel, and a single mesh packet heard by TCP + Florida MQTT + Yeraze Broker appears as one unified entry with three receptions.

What's in here

Ingest pipeline (src/server/mqttIngestion.ts)

• ingestServiceEnvelope is async now and dispatches four additional portnums with the same storage semantics as the TCP path: TRACEROUTE_APP (incl. route segments + hop telemetry), NEIGHBORINFO_APP, PAXCOUNTER_APP, and STORE_FORWARD_APP (ROUTER_HEARTBEAT + ROUTER_TEXT_*).
• Server-side channel decryption via channelDecryptionService, mirroring meshtasticManager.processMeshPacket — encrypted packets get a synthetic decoded field populated from any matching channel_database PSK.
• bootstrapMqttChannelDatabase auto-seeds the well-known LongFast key (AQ==, expanded by expandShorthandPsk) so MQTT decryption works out of the box for new MQTT sources. Idempotent across multiple sources.
• Auto-records each (envelope.channelId, packet.channel) pair seen into the per-source channels table so the unified channels picker surfaces MQTT-side labels.
• Message row IDs now use the TCP convention ${sourceId}_${fromNum}_${packetId}. This is load-bearing — extractPacketIdFromRowId in unifiedRoutes.ts splits on _ and reads the trailing segment for the cross-source dedup key. Previously diverged with hyphens, which made the same packet appear N times in the unified view.
• Messages now flow through databaseService.messages.insertMessage(msg, sourceId) (repo) instead of databaseService.insertMessage(msg) (facade). The facade drops the sourceId, leaving rows orphaned with sourceId=NULL and invisible to source-scoped queries.

Geo-membership seed (src/server/mqttPacketFilter.ts, mqttBridgeManager.ts)

• seedMembership(positions) marks nodes whose stored position is inside the bbox as 'in' on bridge start, so non-POSITION traffic from already-known nodes flows without waiting for a fresh POSITION_APP broadcast (which can be hours and is reset on every restart).
• seedTrustedNodes(nodeNums) bypasses the bbox check for any node already heard directly by a non-MQTT source — fixes the case where the operator's own station (GPS off, no stored position) was geo-dropped on MQTT-relayed copies of its own packets.

Unified routes (src/server/routes/unifiedRoutes.ts)

• /telemetry: getLatestTelemetryByNode now takes a sourceId so cross-source telemetry no longer misattributes to whichever source happens to be iterating in the outer loop. Telemetry repo signatures widened.
• /channels + /messages: multi-slot match (filter, not find) so MQTT sources with multiple slots sharing one channel name all resolve.
• unifiedChannelDisplayName accepts a preset hint; slot 0 with empty name resolves to the firmware-derived label (MediumFast, LongFast, etc.) from the persisted lora.preset.<sourceId> setting. Collapses TCP empty-name slot 0 with MQTT-side "MediumFast" rows into one picker entry. meshtasticManager persists the preset on each LoRa config response.
• New MODEM_PRESET_CHANNEL_NAMES constant + modemPresetChannelName helper in src/server/constants/meshtastic.ts (firmware-spec pascal-case names — distinct from the human-friendly "Long Fast" labels).
• Expanded jsdoc on extractPacketIdFromRowId documenting the row-ID contract so future ingest paths don't diverge.

Misc

• docker-compose.dev.yml: removed the standalone LN4CY mqtt-proxy sidecar service. The feature has been integrated.

Test plan

• npx vitest run — 10064 tests pass (4 new in mqttPacketFilter, 10 new in mqttIngestion, 3 new in unifiedRoutes)
• npx tsc --noEmit -p tsconfig.json — clean
• Live verification in dev container with 3 MQTT sources (1 broker + 2 bridges):
  • Bridges seed 346 trusted + ~600-700 in-bbox nodes on start
  • LongFast PSK auto-bootstrapped to channel_database

  • 4500 packets decrypted via channel decryption in normal operation

  • Telemetry, traceroute, neighbor info rows landing per-source
  • Sent test message confirmed to appear as ONE unified entry with TCP + Florida MQTT + Yeraze Broker receptions stacked
  • MediumFast shows in the unified picker (was Primary)
• System tests run on every PR via CI

🤖 Generated with Claude Code

[github-actions]

Claude finished @Yeraze's task —— View job

---

Code Review Results

✅ Overall Assessment

This is a well-implemented and comprehensive PR that successfully addresses a significant architectural gap in MQTT ingestion. The code quality is high, follows established patterns, and demonstrates deep understanding of the MeshMonitor codebase.

🏆 Strengths

Excellent Architecture & Design

• Per-source scoping compliance: Properly follows MeshMonitor's multi-source architecture with consistent sourceId attribution
• Channel decryption integration: Mirrors TCP path's server-side decryption using the channel database
• Unified view deduplication: Implements cross-source packet deduplication using the established row ID format ${sourceId}_${fromNum}_${packetId}
• Comprehensive portnum support: Extends beyond the original 4 portnums to handle TRACEROUTE_APP, NEIGHBORINFO_APP, PAXCOUNTER_APP, and STORE_FORWARD_APP

Code Quality & Best Practices

• Robust error handling: Defensive validation throughout (packet ID bounds checking, type guards, graceful fallbacks)
• Consistent patterns: Follows existing TCP ingestion patterns for telemetry insertion, node updates, and channel recording
• Performance optimizations: Uses Promise.all for parallel database operations in unified routes
• Memory management: Channel recording memoization with per-source caching to avoid redundant DB writes

Security & Reliability

• Geo-filtering compliance: Proper bbox enforcement with membership seeding for trusted nodes
• Input validation: Strong type checking and bounds validation for packet fields
• Idempotent operations: Channel database bootstrapping and duplicate handling prevent data corruption

Test Coverage

• Comprehensive test expansion: 24 new tests added across ingestion, filtering, and unified routes
• Integration testing: Tests cover the full ingestion pipeline from envelope to database storage
• Edge case coverage: Geo-filtering, channel resolution, and cross-source deduplication scenarios

⚠️ Areas for Improvement

Performance Considerations

1. Sequential telemetry queries in src/server/routes/unifiedRoutes.ts:667: While the code uses Promise.all for per-node lookups, the underlying getLatestTelemetryByNode method still does sequential queries per telemetry type. Consider batch optimization for high-node-count deployments.

2. Channel memo memory growth: The channelMemo Map in mqttIngestion.ts:759 grows indefinitely per source. Consider adding periodic cleanup or size limits for long-running deployments.

Minor Code Quality

1. Type assertions: Some unavoidable as any casts for schema extensions (e.g., line 741 for isStoreForwardServer). These are documented and necessary given the migration state.

2. Magic numbers: Some constants like BROADCAST_ADDR = 4294967295 could be moved to the constants file for consistency.

🔒 Security Assessment: APPROVED

• No security vulnerabilities identified
• Proper input validation and sanitization
• Maintains source isolation boundaries
• No exposure of sensitive data across permission boundaries

🚀 Performance Assessment: GOOD

• Efficient deduplication algorithms
• Parallel database operations where possible
• Minimal memory footprint for packet processing
• Channel memoization reduces redundant DB writes

⚙️ Implementation Notes

Row ID Format Contract

The implementation correctly maintains the critical ${sourceId}_${fromNum}_${packetId} format for message IDs. This is load-bearing for cross-source deduplication and is well-documented in both the code and PR description.

Channel Name Resolution

The preset-based channel name resolution in unifiedChannelDisplayName elegantly solves the TCP vs MQTT channel naming discrepancy, allowing MediumFast MQTT channels to group with empty-named slot 0 TCP channels.

Error Handling Strategy

The code uses appropriate error isolation - MQTT ingestion failures don't crash the entire source, and individual packet decode errors are logged without stopping the stream.

✅ Recommendations

Immediate Actions

1. Monitor memory usage of channelMemo in production MQTT deployments
2. Verify telemetry performance under high node counts during peak traffic

Future Enhancements

1. Consider batching telemetry type queries in getLatestTelemetryByNode
2. Add configurable limits to the channel memoization cache

🎯 Verdict: APPROVE

This PR successfully transforms MQTT from a 99% packet drop scenario to a fully functional multi-source ingestion pipeline. The implementation is production-ready, well-tested, and follows MeshMonitor's architectural principles. The code quality is excellent with comprehensive error handling and performance considerations.

Ready for merge after CI passes.

---

| PR #3089