aion-cli 0.6.0

The `aion` command line: operate Aion durable workflows over gRPC and run the Aion server.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187

//! Typed shell-out boundary, mirroring `../src/{{name}}/cli.gleam` and the
//! Erlang port runner (`{{name}}_cli_ffi.erl`).
//!
//! Every command outcome is typed: a missing executable is loud, structured
//! data (never a silent skip), and a non-zero exit status is recorded data
//! the caller interprets (diagnostics for check runners, a forfeited cache
//! for the warm build). Output is the combined stdout/stderr text — the port
//! runner merges the streams (`stderr_to_stdout`); here both are captured and
//! concatenated (stdout first), which is identical whenever one stream is
//! silent.

use std::ffi::OsString;
use std::path::{Path, PathBuf};
use std::process::Command;
use std::time::Instant;

/// A completed command run: the exit status, combined stdout/stderr text,
/// and the wall-clock duration of the process.
#[derive(Clone, Debug, PartialEq, Eq)]
pub struct CliRun {
    /// The process exit status (`128 + signal` when killed by a signal, the
    /// shell convention).
    pub exit_status: i32,
    /// Combined stdout/stderr text (stdout first).
    pub output: String,
    /// Wall-clock duration of the process.
    pub duration_ms: u64,
}

impl CliRun {
    /// Whether the command exited with status zero.
    #[must_use]
    pub fn succeeded(&self) -> bool {
        self.exit_status == 0
    }
}

/// A command that could not run at all.
#[derive(Clone, Debug, PartialEq, Eq)]
pub enum CliFailure {
    /// The executable is not on `PATH`. With nothing shimmed this is a loud
    /// activity failure — activities are never silently skipped.
    ExecutableNotFound {
        /// The executable that could not be resolved.
        executable: String,
    },
    /// The process could not be started (for example, a missing working
    /// directory).
    SpawnFailed {
        /// Why the spawn failed.
        reason: String,
    },
}

impl CliFailure {
    /// Render the failure as a single diagnostic line, wording identical to
    /// `cli.failure_message` in the Gleam local implementations.
    #[must_use]
    pub fn message(&self) -> String {
        match self {
            Self::ExecutableNotFound { executable } => {
                format!("executable not found on PATH: {executable}")
            }
            Self::SpawnFailed { reason } => {
                format!("command could not be spawned: {reason}")
            }
        }
    }
}

/// The process runner. Production constructs [`Shell::inherited`]; the
/// hermetic tests construct [`Shell::with_path`] pointing at a directory of
/// fake-CLI shims **alone**, so the handlers really shell out and the shims
/// intercept at the process boundary — the most realistic seam.
#[derive(Clone, Debug)]
pub struct Shell {
    path_override: Option<OsString>,
}

impl Shell {
    /// Resolve executables against the process's own `PATH`.
    #[must_use]
    pub fn inherited() -> Self {
        Self {
            path_override: None,
        }
    }

    /// Resolve executables against exactly this search path, and hand the
    /// same `PATH` to the child process.
    pub fn with_path(path: impl Into<OsString>) -> Self {
        Self {
            path_override: Some(path.into()),
        }
    }

    /// Run `executable` with `args` in `cwd`, capturing exit status,
    /// combined output, and duration.
    ///
    /// # Errors
    ///
    /// Fails with [`CliFailure::SpawnFailed`] when `cwd` is not a directory
    /// or the process cannot start, and [`CliFailure::ExecutableNotFound`]
    /// when `executable` does not resolve on the effective search path. A
    /// non-zero exit status is NOT an error — it is recorded data on the
    /// returned [`CliRun`].
    pub fn run(&self, executable: &str, args: &[&str], cwd: &str) -> Result<CliRun, CliFailure> {
        // A missing working directory would surface from spawn as the same
        // `NotFound` io error as a missing binary on some platforms; check it
        // first so the two failures stay distinguishable.
        if !Path::new(cwd).is_dir() {
            return Err(CliFailure::SpawnFailed {
                reason: format!("working directory does not exist: {cwd}"),
            });
        }
        let resolved =
            self.find_executable(executable)
                .ok_or_else(|| CliFailure::ExecutableNotFound {
                    executable: executable.to_owned(),
                })?;

        let mut command = Command::new(resolved);
        command.args(args).current_dir(cwd);
        if let Some(path) = &self.path_override {
            command.env("PATH", path);
        }

        let started = Instant::now();
        let output = command.output().map_err(|error| CliFailure::SpawnFailed {
            reason: error.to_string(),
        })?;
        let duration_ms = u64::try_from(started.elapsed().as_millis()).unwrap_or(u64::MAX);

        let mut combined = String::from_utf8_lossy(&output.stdout).into_owned();
        combined.push_str(&String::from_utf8_lossy(&output.stderr));

        Ok(CliRun {
            exit_status: exit_code(output.status),
            output: combined,
            duration_ms,
        })
    }

    /// Resolve `executable` against the effective search path, mirroring
    /// `os:find_executable/1` in the Erlang port runner.
    fn find_executable(&self, executable: &str) -> Option<PathBuf> {
        let search_path = match &self.path_override {
            Some(path) => path.clone(),
            None => std::env::var_os("PATH")?,
        };
        std::env::split_paths(&search_path)
            .map(|directory| directory.join(executable))
            .find(|candidate| is_executable_file(candidate))
    }
}

/// Map an exit status to the integer the handlers interpret. A
/// signal-terminated process maps to `128 + signal` (the shell convention),
/// so it reads as a loud non-zero status rather than a fake success.
#[cfg(unix)]
fn exit_code(status: std::process::ExitStatus) -> i32 {
    use std::os::unix::process::ExitStatusExt;
    match (status.code(), status.signal()) {
        (Some(code), _) => code,
        (None, Some(signal)) => 128 + signal,
        (None, None) => -1,
    }
}

#[cfg(not(unix))]
fn exit_code(status: std::process::ExitStatus) -> i32 {
    status.code().unwrap_or(-1)
}

#[cfg(unix)]
fn is_executable_file(candidate: &Path) -> bool {
    use std::os::unix::fs::PermissionsExt;
    candidate
        .metadata()
        .map(|metadata| metadata.is_file() && metadata.permissions().mode() & 0o111 != 0)
        .unwrap_or(false)
}

#[cfg(not(unix))]
fn is_executable_file(candidate: &Path) -> bool {
    candidate.is_file()
}