cekanje 0.2.1

tmux notifier daemon for Claude Code sessions: track every active session, surface a native popup when one needs attention, jump to its pane via fzf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214

//! Hot-reload of `cek serve` when the daemon's on-disk binary changes
//! (brew upgrade, cargo install, manual tarball swap).
//!
//! Lazy detection: every hook event triggers a cheap `stat` of the binary
//! and, if its fingerprint differs from startup, signals the running server
//! to drain and replace its own process image in place via `execve(2)`.
//! PID is preserved so tmux's child relationship survives.

use std::fs;
use std::os::unix::fs::MetadataExt;
use std::path::{Path, PathBuf};
use std::sync::OnceLock;
use std::sync::atomic::{AtomicBool, Ordering};

use anyhow::Context;
use serde::Serialize;
use tokio::sync::Notify;
use tracing::{info, warn};

/// Inode-level identity of the binary on disk. `fs::metadata` follows
/// symlinks intentionally — brew installs the daemon as a symlink into
/// `Cellar/cekanje/<ver>/bin/cek`, and an upgrade retargets that symlink.
/// Following it is exactly how we notice the upgrade.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize)]
pub struct BinFp {
    pub dev: u64,
    pub ino: u64,
    pub mtime: i64,
    pub size: u64,
}

impl BinFp {
    pub fn snapshot(path: &Path) -> std::io::Result<Self> {
        let m = fs::metadata(path)?;
        Ok(Self {
            dev: m.dev(),
            ino: m.ino(),
            mtime: m.mtime(),
            size: m.size(),
        })
    }
}

pub struct ReloadCtx {
    pub exe_path: PathBuf,
    pub startup_fp: BinFp,
    pub argv_tail: Vec<String>,
    swap_in_flight: AtomicBool,
    shutdown: std::sync::Arc<Notify>,
}

static CTX: OnceLock<ReloadCtx> = OnceLock::new();

/// Capture the binary's identity at startup.
pub fn init(
    exe_path: PathBuf,
    argv_tail: Vec<String>,
    shutdown: std::sync::Arc<Notify>,
) -> anyhow::Result<()> {
    let startup_fp = BinFp::snapshot(&exe_path)
        .with_context(|| format!("snapshot fingerprint for {}", exe_path.display()))?;
    let _ = CTX.set(ReloadCtx {
        exe_path,
        startup_fp,
        argv_tail,
        swap_in_flight: AtomicBool::new(false),
        shutdown,
    });
    Ok(())
}

pub fn ctx() -> Option<&'static ReloadCtx> {
    CTX.get()
}

pub fn current_fp() -> Option<BinFp> {
    let c = ctx()?;
    BinFp::snapshot(&c.exe_path).ok()
}

/// True when the on-disk fingerprint differs from the one captured at boot.
/// Errors stat'ing the binary are treated as "not stale" — a transient FS
/// hiccup must not euthanize a healthy daemon.
pub fn is_stale() -> bool {
    let Some(c) = ctx() else {
        return false;
    };
    match BinFp::snapshot(&c.exe_path) {
        Ok(cur) => cur != c.startup_fp,
        Err(e) => {
            warn!(error = %e, "fingerprint stat failed");
            false
        }
    }
}

/// Returns true if a swap has been requested and is in flight (used by
/// `serve::run` to decide whether to re-image after graceful shutdown).
pub fn was_swap_requested() -> bool {
    ctx()
        .map(|c| c.swap_in_flight.load(Ordering::SeqCst))
        .unwrap_or(false)
}

/// Called from the post-handler middleware. Checks staleness, claims the
/// single-flight slot, and notifies the server to begin graceful shutdown.
pub fn request_swap_if_stale() {
    let Some(c) = ctx() else {
        return;
    };
    if !is_stale() {
        return;
    }
    if c.swap_in_flight.swap(true, Ordering::SeqCst) {
        return;
    }
    info!(exe = %c.exe_path.display(), "binary changed on disk; initiating swap");
    // notify_waiters (not notify_one) so both the axum graceful-shutdown
    // future and the drain-deadline timer in serve::run wake together.
    c.shutdown.notify_waiters();
}

/// Replace the current process image with a fresh invocation of the new
/// binary. Does not return on success — control transfers into the new image.
pub fn replace_process_image() -> anyhow::Result<std::convert::Infallible> {
    use std::os::unix::process::CommandExt;
    use std::process::Command;
    let c = ctx().context("reload ctx not initialised")?;
    info!(
        exe = %c.exe_path.display(),
        argv = ?c.argv_tail,
        "replacing process image"
    );
    let mut cmd = Command::new(&c.exe_path);
    cmd.args(&c.argv_tail);
    // Use the trait fn as a function pointer to avoid a method-call form.
    let replace: fn(&mut Command) -> std::io::Error = CommandExt::exec;
    let err = replace(&mut cmd);
    Err(anyhow::anyhow!("process replacement failed: {err}"))
}

#[cfg(test)]
mod tests {
    use super::*;
    use std::io::Write;

    #[test]
    fn snapshot_then_modify_changes_fingerprint() {
        let mut f = tempfile_shim::NamedTemp::new("alpha");
        let p = f.path().to_owned();
        let a = BinFp::snapshot(&p).unwrap();

        // Sleep just past 1-second mtime resolution on some filesystems.
        std::thread::sleep(std::time::Duration::from_millis(1100));
        f.as_file_mut().write_all(b"-beta").unwrap();
        f.as_file_mut().sync_all().unwrap();

        let b = BinFp::snapshot(&p).unwrap();
        assert_ne!(a, b, "fingerprint must change after file mutation");
    }

    #[test]
    fn snapshot_stable_for_unchanged_file() {
        let f = tempfile_shim::NamedTemp::new("steady");
        let p = f.path().to_owned();
        let a = BinFp::snapshot(&p).unwrap();
        let b = BinFp::snapshot(&p).unwrap();
        assert_eq!(a, b);
    }

    /// Minimal stand-in so we don't pull in the `tempfile` crate just for
    /// these two tests.
    mod tempfile_shim {
        use std::fs::{File, OpenOptions};
        use std::io::Write;
        use std::path::{Path, PathBuf};

        pub struct NamedTemp {
            path: PathBuf,
            file: File,
        }

        impl NamedTemp {
            pub fn new(contents: &str) -> Self {
                let nanos = std::time::SystemTime::now()
                    .duration_since(std::time::UNIX_EPOCH)
                    .unwrap()
                    .as_nanos();
                let path = std::env::temp_dir().join(format!("cek-reload-test-{nanos}"));
                let mut file = OpenOptions::new()
                    .read(true)
                    .write(true)
                    .create_new(true)
                    .open(&path)
                    .unwrap();
                file.write_all(contents.as_bytes()).unwrap();
                file.sync_all().unwrap();
                Self { path, file }
            }
            pub fn path(&self) -> &Path {
                &self.path
            }
            pub fn as_file_mut(&mut self) -> &mut File {
                &mut self.file
            }
        }

        impl Drop for NamedTemp {
            fn drop(&mut self) {
                let _ = std::fs::remove_file(&self.path);
            }
        }
    }
}