claude-smart 0.2.5

Cross-platform Claude Code smart session manager
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154

//! Session liveness check.
//!
//! `sid_live(sid)` answers: "Is there a live Claude Code process managing
//! session `sid` right now?"
//!
//! ## Algorithm (spec §2 "_sid-live")
//!
//! 1. Read `<smart_dir>/<sid>.pid` — one line `"<pid> <born>"`.
//!    If the file is absent or unparseable → `false` (no managed process).
//! 2. Verify that `pid` is a running process whose executable basename
//!    (case-insensitive, `.exe` stripped on Windows) ends with `"claude"` or
//!    `"node"`.
//!
//! The PID→comm check is delegated to the platform abstraction:
//! - **macOS / Linux:** `PosixProcCheck` (`ps -o comm= -p <pid>` — never
//!   `-o args=`, which would leak `CLAUDE_CONFIG_DIR` into logs).
//! - **Windows / Linux (alternative):** `SysinfoProcCheck` (targeted
//!   `sysinfo::refresh_process(Pid)` — never a full sweep on the hot Stop
//!   path).
//!
//! TOCTOU note: the comm check is best-effort.  The caller may record `born`
//! separately and perform a born-match guard for stricter safety (the relaunch
//! loop does this).  `sid_live` intentionally does not do the born-match itself
//! — it is a quick annotation helper for the picker and the auto-resume path.
//!
//! ## Phase 0
//!
//! The body is `unimplemented!()` — the platform proc-check trait and its
//! impls live in `platform/proc_check.rs` (Phase 7 in the scaffold order).
//! The signature and types are final.

use crate::paths;

/// Return `true` if session `sid` has a live managed `claude`/`node` process.
///
/// Reads `<smart_dir>/<sid>.pid`, extracts the PID, and delegates the
/// process-comm check to the platform implementation.
///
/// Returns `false` on any of:
/// - `<sid>.pid` absent,
/// - `<sid>.pid` unparseable,
/// - the recorded PID is not running,
/// - the running process's comm does not end with `"claude"` or `"node"`.
///
/// Never panics.
pub fn sid_live(sid: &str) -> bool {
    use crate::platform::proc_check::ProcCheck;

    let content = match std::fs::read_to_string(paths::pid_file(sid)) {
        Ok(c) => c,
        Err(_) => return false, // pidfile absent → not live
    };
    let (pid, _born) = match parse_pid_file(&content) {
        Some(p) => p,
        None => return false, // unparseable → not live
    };
    // Delegate the PID→comm check to the compile-time platform impl
    // (PosixProcCheck on unix, SysinfoProcCheck on Windows). `born` is read
    // for the relaunch loop's stricter born-match guard, not here.
    crate::platform::PlatformProcCheck::is_live_claude_or_node(pid)
}

/// Parse the two-token PID-file content `"<pid> <born>"`.
///
/// Returns `None` on any parse failure (absent, non-UTF-8, wrong token count,
/// non-numeric tokens).  This matches the spec §6 read-compat contract:
/// "parse failure = absent".
///
/// This is a pure function — always fully implemented (trivial, no platform
/// dependency).
pub(crate) fn parse_pid_file(content: &str) -> Option<(u32, i64)> {
    let mut tokens = content.split_whitespace();
    let pid: u32 = tokens.next()?.parse().ok()?;
    let born: i64 = tokens.next()?.parse().ok()?;
    // Any extra tokens are silently ignored for forward-compatibility.
    Some((pid, born))
}

// ─── tests ────────────────────────────────────────────────────────────────────

#[cfg(test)]
mod tests {
    use super::*;

    // parse_pid_file is REAL (pure, no platform deps) — full test coverage here.

    #[test]
    fn parse_pid_file_basic() {
        let (pid, born) = parse_pid_file("12345 1718000000\n").expect("should parse pid+born");
        assert_eq!(pid, 12345);
        assert_eq!(born, 1_718_000_000);
    }

    #[test]
    fn parse_pid_file_no_trailing_newline() {
        let (pid, born) = parse_pid_file("99 42").expect("no newline is fine");
        assert_eq!(pid, 99);
        assert_eq!(born, 42);
    }

    #[test]
    fn parse_pid_file_extra_whitespace() {
        let (pid, born) =
            parse_pid_file("  1000  9999999999  ").expect("leading/trailing whitespace is fine");
        assert_eq!(pid, 1000);
        assert_eq!(born, 9_999_999_999);
    }

    #[test]
    fn parse_pid_file_extra_tokens_ignored() {
        // Forward-compat: future versions may append more fields.
        let (pid, born) =
            parse_pid_file("1 2 extra tokens here").expect("extra tokens are ignored");
        assert_eq!(pid, 1);
        assert_eq!(born, 2);
    }

    #[test]
    fn parse_pid_file_empty_returns_none() {
        assert!(parse_pid_file("").is_none());
        assert!(parse_pid_file("   ").is_none());
    }

    #[test]
    fn parse_pid_file_only_pid_returns_none() {
        // born epoch is required — one token is not enough.
        assert!(parse_pid_file("12345").is_none());
    }

    #[test]
    fn parse_pid_file_non_numeric_pid_returns_none() {
        assert!(parse_pid_file("abc 1718000000").is_none());
    }

    #[test]
    fn parse_pid_file_non_numeric_born_returns_none() {
        assert!(parse_pid_file("12345 notanumber").is_none());
    }

    #[test]
    fn parse_pid_file_negative_born_is_valid() {
        // born is i64; a negative epoch is unusual but must not panic.
        let (pid, born) = parse_pid_file("1 -1").expect("negative born is valid i64");
        assert_eq!(pid, 1);
        assert_eq!(born, -1);
    }

    #[test]
    fn parse_pid_file_pid_overflow_returns_none() {
        // u32::MAX + 1 cannot fit in u32 → None.
        let too_large = "4294967296 1718000000"; // 2^32
        assert!(parse_pid_file(too_large).is_none());
    }
}