harn-vm 0.8.148

Async bytecode virtual machine for the Harn programming language
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234

//! Unofficial `/.well-known/mcp.json` server discovery.
//!
//! This descriptor is not part of the MCP protocol, but a few clients and
//! providers use it as a low-friction way to discover the actual Streamable
//! HTTP endpoint from a website URL. Keep this module intentionally narrow:
//! it fetches and validates the descriptor, while OAuth metadata discovery and
//! MCP protocol negotiation remain in their dedicated modules.

use std::time::Duration;

use serde::{Deserialize, Serialize};
use url::Url;

pub const WELL_KNOWN_MCP_JSON_PATH: &str = "/.well-known/mcp.json";
const MCP_JSON_DISCOVERY_TIMEOUT: Duration = Duration::from_secs(10);

#[derive(Clone, Debug, PartialEq, Eq, Serialize, Deserialize)]
#[serde(rename_all = "camelCase")]
pub struct McpJsonDescriptor {
    pub name: String,
    pub description: String,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub icon: Option<String>,
    pub endpoint: String,
}

#[derive(Clone, Debug, PartialEq, Eq, Serialize, Deserialize)]
#[serde(rename_all = "camelCase")]
pub struct McpJsonDiscovery {
    pub source: String,
    pub descriptor: McpJsonDescriptor,
}

#[derive(Clone, Debug, PartialEq, Eq, Serialize, Deserialize)]
#[serde(rename_all = "camelCase")]
pub struct McpJsonDiscoveryReport {
    pub found: bool,
    pub source: String,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub descriptor: Option<McpJsonDescriptor>,
}

#[derive(Debug, Deserialize)]
struct RawMcpJsonDescriptor {
    name: String,
    description: String,
    #[serde(default)]
    icon: Option<String>,
    endpoint: String,
}

/// Return the canonical `/.well-known/mcp.json` URL for a website or server URL.
pub fn mcp_json_url_for(input: &str) -> Result<Url, String> {
    let url = Url::parse(input.trim())
        .map_err(|error| format!("invalid MCP discovery URL `{input}`: {error}"))?;
    match url.scheme() {
        "http" | "https" => {}
        scheme => {
            return Err(format!(
                "MCP discovery URL must use http or https, got `{scheme}`"
            ))
        }
    }
    let origin = url.origin().ascii_serialization();
    Url::parse(&format!("{origin}{WELL_KNOWN_MCP_JSON_PATH}"))
        .map_err(|error| format!("failed to build MCP discovery URL for `{input}`: {error}"))
}

/// Fetch and validate the unofficial MCP discovery descriptor. A missing
/// descriptor is reported as `Ok(None)`; malformed or non-404 error responses
/// are surfaced as diagnostics because they usually indicate server setup drift.
pub async fn discover_mcp_json(input: &str) -> Result<Option<McpJsonDiscovery>, String> {
    let source = mcp_json_url_for(input)?;
    let client = reqwest::Client::builder()
        .timeout(MCP_JSON_DISCOVERY_TIMEOUT)
        .build()
        .map_err(|error| format!("failed to build MCP discovery client: {error}"))?;
    discover_mcp_json_with_client(&client, source).await
}

async fn discover_mcp_json_with_client(
    client: &reqwest::Client,
    source: Url,
) -> Result<Option<McpJsonDiscovery>, String> {
    let response = client.get(source.clone()).send().await.map_err(|error| {
        format!("failed to fetch MCP discovery descriptor at {source}: {error}")
    })?;
    if response.status() == reqwest::StatusCode::NOT_FOUND {
        return Ok(None);
    }
    if !response.status().is_success() {
        return Err(format!(
            "MCP discovery descriptor at {source} returned {}",
            response.status()
        ));
    }
    let descriptor = response
        .json::<RawMcpJsonDescriptor>()
        .await
        .map_err(|error| format!("invalid MCP discovery descriptor JSON at {source}: {error}"))?;
    let descriptor = validate_descriptor(&source, descriptor)?;
    Ok(Some(McpJsonDiscovery {
        source: source.to_string(),
        descriptor,
    }))
}

fn validate_descriptor(
    source: &Url,
    descriptor: RawMcpJsonDescriptor,
) -> Result<McpJsonDescriptor, String> {
    let name = required_string("name", descriptor.name)?;
    let description = required_string("description", descriptor.description)?;
    let endpoint = required_string("endpoint", descriptor.endpoint)?;
    let endpoint_url = origin_base_url(source)?
        .join(&endpoint)
        .map_err(|error| format!("MCP discovery endpoint `{endpoint}` is not a URL: {error}"))?;
    match endpoint_url.scheme() {
        "http" | "https" => {}
        scheme => {
            return Err(format!(
                "MCP discovery endpoint must use http or https, got `{scheme}`"
            ))
        }
    }
    let icon = descriptor.icon.and_then(|icon| {
        let icon = icon.trim();
        (!icon.is_empty()).then(|| icon.to_string())
    });
    Ok(McpJsonDescriptor {
        name,
        description,
        icon,
        endpoint: endpoint_url.to_string(),
    })
}

fn origin_base_url(source: &Url) -> Result<Url, String> {
    Url::parse(&format!("{}/", source.origin().ascii_serialization()))
        .map_err(|error| format!("failed to build MCP discovery origin URL: {error}"))
}

fn required_string(field: &str, value: String) -> Result<String, String> {
    let value = value.trim();
    if value.is_empty() {
        return Err(format!(
            "MCP discovery descriptor `{field}` must not be empty"
        ));
    }
    Ok(value.to_string())
}

pub fn discovery_report(
    input: &str,
    discovery: Option<McpJsonDiscovery>,
) -> Result<McpJsonDiscoveryReport, String> {
    let source = match discovery.as_ref() {
        Some(discovery) => discovery.source.clone(),
        None => mcp_json_url_for(input)?.to_string(),
    };
    Ok(McpJsonDiscoveryReport {
        found: discovery.is_some(),
        source,
        descriptor: discovery.map(|discovery| discovery.descriptor),
    })
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn mcp_json_url_uses_origin_well_known_path() {
        let url = mcp_json_url_for("https://example.com/docs/mcp?x=1").unwrap();
        assert_eq!(url.as_str(), "https://example.com/.well-known/mcp.json");
    }

    #[test]
    fn mcp_json_url_rejects_non_http_schemes() {
        let error = mcp_json_url_for("file:///tmp/mcp.json").unwrap_err();
        assert!(error.contains("http or https"), "{error}");
    }

    #[tokio::test]
    async fn discover_mcp_json_resolves_relative_endpoint() {
        let listener = tokio::net::TcpListener::bind("127.0.0.1:0").await.unwrap();
        let origin = format!("http://{}", listener.local_addr().unwrap());
        let server = tokio::spawn(async move {
            let Ok((mut stream, _)) = listener.accept().await else {
                return;
            };
            let mut buf = [0u8; 1024];
            let _ = tokio::io::AsyncReadExt::read(&mut stream, &mut buf).await;
            let body = r#"{"name":"Demo","description":"Demo MCP server","endpoint":"mcp","icon":"https://example.com/icon.png"}"#;
            let response = format!(
                "HTTP/1.1 200 OK\r\nContent-Type: application/json\r\nContent-Length: {}\r\nConnection: close\r\n\r\n{}",
                body.len(),
                body
            );
            let _ = tokio::io::AsyncWriteExt::write_all(&mut stream, response.as_bytes()).await;
        });

        let discovery = discover_mcp_json(&format!("{origin}/docs"))
            .await
            .unwrap()
            .unwrap();
        assert_eq!(
            discovery.source,
            format!("{origin}{WELL_KNOWN_MCP_JSON_PATH}")
        );
        assert_eq!(discovery.descriptor.name, "Demo");
        assert_eq!(discovery.descriptor.endpoint, format!("{origin}/mcp"));
        server.await.unwrap();
    }

    #[tokio::test]
    async fn discover_mcp_json_returns_none_for_404() {
        let listener = tokio::net::TcpListener::bind("127.0.0.1:0").await.unwrap();
        let origin = format!("http://{}", listener.local_addr().unwrap());
        let server = tokio::spawn(async move {
            let Ok((mut stream, _)) = listener.accept().await else {
                return;
            };
            let mut buf = [0u8; 1024];
            let _ = tokio::io::AsyncReadExt::read(&mut stream, &mut buf).await;
            let response =
                "HTTP/1.1 404 Not Found\r\nContent-Length: 0\r\nConnection: close\r\n\r\n";
            let _ = tokio::io::AsyncWriteExt::write_all(&mut stream, response.as_bytes()).await;
        });

        assert!(discover_mcp_json(&origin).await.unwrap().is_none());
        server.await.unwrap();
    }
}