agtop 2.4.21

Terminal UI for monitoring AI coding agents (Claude Code, Codex, Aider, Cursor, Gemini, Goose, ...) — like top, but for agents.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226

#!/usr/bin/env python3
"""Upload an already-signed PPA source package to Launchpad from
the maintainer's host directly, bypassing docker.  Useful when the
container's getaddrinfo only returns v4 (no v6 routing on docker's
default bridge) and Launchpad's v4 endpoint is intermittently
rate-limited.

Usage:
    python3 packages/ppa/host-upload.py
    python3 packages/ppa/host-upload.py --changes dist-ppa/agtop_*_source.changes
    python3 packages/ppa/host-upload.py --target ppa:other-user/other-archive

Reads:
    ~/.ssh/id_ed25519        SSH key registered with Launchpad
    dist-ppa/*.changes       signed source-package manifest
"""
from __future__ import annotations
import argparse, getpass, glob, os, re, socket, sys, time
from pathlib import Path

try:
    import paramiko
except ImportError:
    sys.exit("paramiko not installed.  pip install --user --break-system-packages paramiko")


def main() -> int:
    ap = argparse.ArgumentParser()
    ap.add_argument("--changes", help="path to .changes file (default: auto-discover under dist-ppa/)")
    ap.add_argument("--target", default="ppa:mbrassey/agtop", help="dput-style target ppa:<user>/<archive>")
    ap.add_argument("--key", default=str(Path.home() / ".ssh" / "id_ed25519"),
                    help="SSH private key (default ~/.ssh/id_ed25519)")
    ap.add_argument("--key-passphrase", default=os.environ.get("SSH_PASSPHRASE", ""),
                    help="passphrase for SSH key, or set SSH_PASSPHRASE env var")
    args = ap.parse_args()

    # Locate the .changes file.
    if args.changes:
        changes_path = Path(args.changes)
    else:
        candidates = sorted(glob.glob("dist-ppa/*_source.changes"))
        if not candidates:
            sys.exit("no dist-ppa/*_source.changes found.  Run packages/ppa/build.sh with PPA_NO_UPLOAD=1 first.")
        changes_path = Path(candidates[-1])
    print(f"==> changes file: {changes_path}")
    base = changes_path.parent

    # Parse Files: stanza for the list of artefacts.
    body = changes_path.read_text()
    files: list[str] = []
    in_files = False
    for line in body.splitlines():
        if line.startswith("Files:"):
            in_files = True; continue
        if in_files:
            if line and not line.startswith(" "):
                in_files = False; continue
            tok = line.split()
            if len(tok) >= 5: files.append(tok[-1])
    files.append(changes_path.name)
    files = sorted(set(files))
    print(f"    {len(files)} files: {files}")

    # Verify all files exist.
    missing = [f for f in files if not (base / f).exists()]
    if missing:
        sys.exit(f"missing artefacts: {missing}")

    # Parse target.
    m = re.match(r"^ppa:([^/]+)/([^/]+)$", args.target)
    if not m:
        sys.exit(f"bad target: {args.target}")
    user, archive = m.group(1), m.group(2)

    # Resolve all addresses, prefer v6 (often less rate-limited).
    host = "ppa.launchpad.net"
    print(f"==> resolving {host}")
    candidates: list[tuple[int, tuple]] = []
    for fam in (socket.AF_INET6, socket.AF_INET):
        try:
            for ai in socket.getaddrinfo(host, 22, fam, socket.SOCK_STREAM):
                candidates.append((fam, ai[4]))
        except socket.gaierror:
            pass
    print(f"    candidates: {[c[1] for c in candidates]}")
    if not candidates:
        sys.exit("no DNS results for ppa.launchpad.net")

    # Try each address, banner-peek before committing.  Launchpad's
    # PPA SSH endpoint is intermittent today — banner returns one
    # tick, times out the next.  Retry up to 12 times with a short
    # backoff between attempts before giving up.
    max_attempts = int(os.environ.get("PPA_RETRIES", "12"))
    sock = None
    last_err: Exception | None = None
    for attempt in range(1, max_attempts + 1):
        for fam, addr in candidates:
            try:
                print(f"  [{attempt}/{max_attempts}] trying {addr}...")
                s = socket.socket(fam, socket.SOCK_STREAM)
                s.settimeout(20)
                s.connect(addr)
                s.settimeout(25)
                peek = s.recv(20, socket.MSG_PEEK)
                if peek.startswith(b"SSH-"):
                    print(f"    banner OK, using {addr}")
                    sock = s
                    break
                print(f"      no banner (peek={peek!r}), trying next")
                s.close()
                last_err = RuntimeError(f"no banner from {addr}")
            except (OSError, socket.timeout) as e:
                print(f"      {type(e).__name__}: {e}")
                last_err = e
        if sock is not None:
            break
        # backoff: 5s, 10s, 15s, 20s, then 30s capped
        delay = min(5 * attempt, 30)
        print(f"    all candidates failed; sleeping {delay}s before retry")
        time.sleep(delay)
    if sock is None:
        sys.exit(f"no usable Launchpad SSH endpoint after {max_attempts} attempts: {last_err}")
    sock.settimeout(120)

    # Start SSH transport.
    t = paramiko.Transport(sock)
    t.banner_timeout = 60
    t.start_client(timeout=60)
    print(f"    remote: {t.remote_version}")

    # Auth strategy:
    #   1. ssh-agent (or gpg-agent's ssh socket) if SSH_AUTH_SOCK is
    #      set and holds at least one identity — zero-prompt path,
    #      preferred when the user has already unlocked their key
    #      for this session.
    #   2. paramiko load from key_path, falling back to interactive
    #      passphrase prompt if the key is encrypted.
    authed = False
    auth_sock = os.environ.get("SSH_AUTH_SOCK")
    if auth_sock:
        try:
            agent = paramiko.Agent()
            agent_keys = agent.get_keys()
        except Exception as e:
            print(f"    ssh-agent at {auth_sock} unusable: {e}")
            agent_keys = ()
        if agent_keys:
            print(f"    ssh-agent has {len(agent_keys)} key(s); trying agent auth")
            for ak in agent_keys:
                try:
                    t.auth_publickey(user, ak)
                    print(f"    authenticated via ssh-agent ({ak.get_name()} {ak.get_fingerprint().hex()[:16]})")
                    authed = True
                    break
                except paramiko.ssh_exception.AuthenticationException:
                    continue
            if not authed:
                print("    none of the agent keys were accepted; falling back to file-based key")
        else:
            print(f"    ssh-agent at {auth_sock} has no identities loaded; run: ssh-add {args.key}")

    if not authed:
        key_path = args.key
        pp = args.key_passphrase or None
        try:
            key = paramiko.Ed25519Key.from_private_key_file(key_path, password=pp)
        except paramiko.ssh_exception.PasswordRequiredException:
            if not sys.stdin.isatty():
                sys.exit(f"SSH key {key_path} has passphrase.  Either:\n"
                         f"  - run  ssh-add {key_path}  in your shell first (recommended), or\n"
                         f"  - set  SSH_PASSPHRASE=...  env var when invoking this script")
            pp = getpass.getpass(f"Passphrase for {key_path}: ")
            key = paramiko.Ed25519Key.from_private_key_file(key_path, password=pp)
        except paramiko.ssh_exception.SSHException as e:
            sys.exit(f"can't load {key_path}: {e}.  Try `ssh-keygen -p -f {key_path}` to remove passphrase.")
        t.auth_publickey(user, key)
        print("    authenticated via key file")

    sftp = paramiko.SFTPClient.from_transport(t)
    print(f"    remote pwd: {sftp.normalize('.')}")
    # CRITICAL: Launchpad's SFTP default landing dir is the incoming
    # queue for UBUNTU'S PRIMARY ARCHIVE — uploading there rejects
    # with 'The signer of this package has no upload rights to this
    # distribution's primary archive.  Did you mean to upload to a
    # PPA?'.  Per-PPA uploads must target ~<user>/<archive>/ubuntu/
    # (what dput-ng's `incoming = ~%(ppa)s/ubuntu/` resolves to).
    #
    # paramiko.SFTPClient.chdir() calls stat() first to verify the
    # target is a directory; Launchpad's SFTP returns None for stat
    # on those paths, raising TypeError before chdir actually runs.
    # Skip the stat dance by setting _cwd directly OR by passing
    # the full path to each put().  Using full path is more robust
    # — works regardless of paramiko / server stat-quirk evolution.
    remote_prefix = f"~{user}/{archive}/ubuntu"
    print(f"    PPA incoming target: {remote_prefix}/")

    # Upload each file with a progress callback.
    for f in files:
        local = base / f
        size = local.stat().st_size
        print(f"    -> {f} ({size:,} bytes)", end="", flush=True)
        last = [time.time(), 0]
        def cb(done, total, last=last):
            now = time.time()
            if now - last[0] > 1 or done == total:
                pct = (done / total * 100) if total else 0
                print(f"\r    -> {f} ({size:,} bytes) {pct:5.1f}%", end="", flush=True)
                last[0] = now
        # confirm=False: Launchpad's PPA incoming/ is upload-only,
        # sftp.stat() on a just-uploaded file returns no size and
        # paramiko raises 'size mismatch in put! None != N'.  We
        # still know the upload succeeded because put() returns
        # without raising on transport errors.
        sftp.put(str(local), f"{remote_prefix}/{f}", callback=cb, confirm=False)
        print()

    sftp.close()
    t.close()
    sock.close()
    print(f"==> Upload complete.  Watch the build at:")
    print(f"    https://launchpad.net/~{user}/+archive/ubuntu/{archive}/+packages")
    return 0


if __name__ == "__main__":
    sys.exit(main())