codex-switch 0.1.10

Local CLI account switcher for Codex
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152

use std::fs;
use std::io::{self, Write};
use std::path::{Path, PathBuf};
use std::thread;
use std::time::{Duration, Instant};

use anyhow::{Context, Result};
use chrono::Utc;
use uuid::Uuid;

const ACCOUNTS_LOCK_RETRY_DELAY: Duration = Duration::from_millis(250);
const ACCOUNTS_LOCK_WAIT_TIMEOUT: Duration = Duration::from_secs(2 * 60);

pub(crate) struct AccountsFileLock {
    path: PathBuf,
    lock_id: String,
}

impl Drop for AccountsFileLock {
    fn drop(&mut self) {
        release_accounts_file_lock(&self.path, &self.lock_id);
    }
}

pub(crate) fn acquire_accounts_file_lock(path: &Path) -> Result<AccountsFileLock> {
    if let Some(parent) = path.parent() {
        fs::create_dir_all(parent)
            .with_context(|| format!("Failed to create directory: {}", parent.display()))?;
    }

    // This coordinates codex-switch writers that share the same ~/.codex-switch
    // directory, including shared dev-container mounts. It cannot coordinate
    // processes that write through different filesystem paths.
    let lock_id = Uuid::new_v4().to_string();
    let deadline = Instant::now() + ACCOUNTS_LOCK_WAIT_TIMEOUT;
    loop {
        match create_accounts_lock_file(path, &lock_id) {
            Ok(()) => {
                return Ok(AccountsFileLock {
                    path: path.to_path_buf(),
                    lock_id,
                });
            }
            Err(err) if err.kind() == io::ErrorKind::AlreadyExists => {
                if Instant::now() >= deadline {
                    anyhow::bail!(
                        "Timed out waiting for accounts lock: {}. Another codex-switch process may be updating accounts.json, or a stale lock file may need to be removed manually.",
                        path.display()
                    );
                }
                thread::sleep(ACCOUNTS_LOCK_RETRY_DELAY);
            }
            Err(err) => {
                return Err(err).with_context(|| {
                    format!("Failed to create accounts lock: {}", path.display())
                });
            }
        }
    }
}

fn create_accounts_lock_file(path: &Path, lock_id: &str) -> io::Result<()> {
    #[cfg(unix)]
    {
        use std::os::unix::fs::OpenOptionsExt;

        let mut file = fs::OpenOptions::new()
            .write(true)
            .create_new(true)
            .mode(0o600)
            .open(path)?;
        write_accounts_lock_metadata(path, lock_id, &mut file)
    }

    #[cfg(not(unix))]
    {
        let mut file = fs::OpenOptions::new()
            .write(true)
            .create_new(true)
            .open(path)?;
        write_accounts_lock_metadata(path, lock_id, &mut file)
    }
}

fn write_accounts_lock_metadata(path: &Path, lock_id: &str, file: &mut fs::File) -> io::Result<()> {
    let result = (|| {
        writeln!(
            file,
            "lock_id={}\npid={}\ncreated_at={}",
            lock_id,
            std::process::id(),
            Utc::now().to_rfc3339()
        )?;
        file.sync_all()
    })();

    if result.is_err() {
        let _ = fs::remove_file(path);
    }

    result
}

fn release_accounts_file_lock(path: &Path, lock_id: &str) {
    if fs::read_to_string(path)
        .ok()
        .is_some_and(|content| accounts_lock_belongs_to_owner(&content, lock_id))
    {
        let _ = fs::remove_file(path);
    }
}

fn accounts_lock_belongs_to_owner(content: &str, lock_id: &str) -> bool {
    content
        .lines()
        .any(|line| line.strip_prefix("lock_id=") == Some(lock_id))
}

#[cfg(test)]
mod tests {
    use std::path::PathBuf;

    use uuid::Uuid;

    use super::{accounts_lock_belongs_to_owner, acquire_accounts_file_lock};

    #[test]
    fn stale_guard_does_not_remove_replaced_lock_file() {
        let (dir, lock_path) = temp_lock_path("replaced-lock");
        let lock_a = acquire_accounts_file_lock(&lock_path).expect("first lock should acquire");
        std::fs::remove_file(&lock_path).expect("test should remove first lock file");

        let lock_b = acquire_accounts_file_lock(&lock_path).expect("second lock should acquire");
        let lock_b_id = lock_b.lock_id.clone();
        drop(lock_a);

        let lock_content = std::fs::read_to_string(&lock_path).expect("second lock should remain");
        assert!(accounts_lock_belongs_to_owner(&lock_content, &lock_b_id));

        drop(lock_b);
        assert!(!lock_path.exists());

        std::fs::remove_dir_all(dir).expect("temp lock dir should be removed");
    }

    fn temp_lock_path(name: &str) -> (PathBuf, PathBuf) {
        let dir = std::env::temp_dir().join(format!("codex-switch-lock-{name}-{}", Uuid::new_v4()));
        std::fs::create_dir_all(&dir).expect("temp lock dir should be created");
        let lock_path = dir.join("accounts.lock");
        (dir, lock_path)
    }
}