lean-agent-core 0.2.0

Core library for tracing Lean 4 diagnostics and evaluating Lean theorem-proving agents.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441

//! The agent stage: hand mined tasks to an external runner, collect attempts.
//!
//! `lean-agent` itself never calls a model. Instead it talks to a user-supplied
//! runner over a line-oriented process contract: one task JSON per line goes to
//! the runner's stdin, and one attempt JSON per line is read back from its
//! stdout. The runner owns prompt construction and any model calls; this crate
//! owns the task model, the pairing, and turning each reply into a replayable
//! [`Attempt`].
//!
//! ## Process contract
//!
//! - The runner is spawned once and read in lock step: a task is written and
//!   flushed, then exactly one reply line is read before the next task is sent.
//!   A well-behaved runner emits one line per task and flushes after each.
//! - Blank lines from the runner are ignored, so a chatty runner does not
//!   desynchronize the exchange.
//! - The lake root is passed to the runner in the `LEAN_AGENT_LAKE_ROOT`
//!   environment variable so the runner can read the project if it needs to.
//!
//! Each reply is `{task_id, attempt_id, replacement, model?, prompt_hash?,
//! metadata?}`. The reply carries only the proof text; the editable span,
//! target file, and backing diagnostic come from the mined task, so the merged
//! [`Attempt`] is everything `replay` needs.

use crate::writer::JsonlWriter;
use crate::{Attempt, Error, MineTask, Result};
use camino::{Utf8Path, Utf8PathBuf};
use serde::{Deserialize, Serialize};
use sha2::{Digest, Sha256};
use std::fmt::Write as _;
use std::process::Stdio;
use std::time::Duration;
use tokio::io::{AsyncBufReadExt, AsyncWriteExt, BufReader, Lines};
use tokio::process::{Child, ChildStdin, ChildStdout, Command};
use tokio::time;
use tracing::warn;

/// Default attempt identifier when a runner omits one.
const DEFAULT_ATTEMPT_ID: &str = "attempt";

/// Environment variable carrying the lake root through to the runner.
pub const LAKE_ROOT_ENV: &str = "LEAN_AGENT_LAKE_ROOT";

/// One line the runner writes back for one task.
///
/// Only `replacement` is required beyond the identifiers; the span and file are
/// taken from the mined task, so the runner stays a pure text producer.
#[derive(Clone, Debug, Eq, PartialEq, Serialize, Deserialize)]
pub struct RunnerResponse {
    /// Task this reply answers; advisory, since pairing is positional.
    pub task_id: String,
    /// Identifier for this attempt; defaults to `attempt` when omitted.
    #[serde(default = "default_attempt_id")]
    pub attempt_id: String,
    /// New content the runner proposes for the task's editable span.
    pub replacement: String,
    /// Model the runner used, when it reports one.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub model: Option<String>,
    /// Hash of the prompt the runner built, when it reports one.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub prompt_hash: Option<String>,
    /// Free-form runner metadata (cost, latency, sampling settings).
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub metadata: Option<serde_json::Value>,
}

fn default_attempt_id() -> String {
    DEFAULT_ATTEMPT_ID.to_owned()
}

/// Runtime options for an eval run.
#[derive(Clone, Debug, Eq, PartialEq)]
pub struct EvalOptions {
    /// Runner executable or script that speaks the process contract.
    pub runner: Utf8PathBuf,
    /// Lake workspace root, forwarded to the runner via [`LAKE_ROOT_ENV`].
    pub lake_root: Utf8PathBuf,
    /// How long to wait for one reply before treating the runner as stuck.
    pub timeout: Duration,
}

impl EvalOptions {
    /// Options for `runner` rooted at `lake_root`, with a two-minute per-task
    /// reply timeout.
    #[must_use]
    pub fn new(runner: Utf8PathBuf, lake_root: Utf8PathBuf) -> Self {
        Self {
            runner,
            lake_root,
            timeout: Duration::from_secs(120),
        }
    }
}

/// Counts from an eval run.
#[derive(Clone, Copy, Debug, Default, Eq, PartialEq)]
pub struct EvalSummary {
    /// Tasks sent to the runner.
    pub tasks_read: usize,
    /// Attempts written to the output.
    pub attempts_written: usize,
    /// Tasks where the runner errored, timed out, or replied malformed.
    pub runner_errors: usize,
    /// Replies whose `task_id` did not match the task that was sent.
    pub id_mismatches: usize,
}

/// Outcome of reading one reply line from the runner.
enum ReplyOutcome {
    /// A reply parsed into a [`RunnerResponse`].
    Parsed(Box<RunnerResponse>),
    /// A line arrived but did not parse; the detail explains why.
    Malformed(String),
    /// The runner closed its output before replying.
    Closed,
    /// No reply arrived within the timeout.
    TimedOut,
}

/// Stream every task to the runner and write one attempt per reply.
///
/// Failures are converted into counts and log lines rather than aborting the
/// run, except when the runner cannot be started at all.
pub async fn run_eval(
    options: &EvalOptions,
    tasks: &[MineTask],
    writer: &mut JsonlWriter,
) -> Result<EvalSummary> {
    let mut summary = EvalSummary::default();
    if tasks.is_empty() {
        return Ok(summary);
    }

    let runner = resolve_runner(&options.runner)?;
    let mut child = spawn_runner(&runner, &options.lake_root)?;
    let mut stdin = child.stdin.take().ok_or_else(|| Error::RunnerProtocol {
        detail: "runner stdin was not captured".to_owned(),
    })?;
    let stdout = child.stdout.take().ok_or_else(|| Error::RunnerProtocol {
        detail: "runner stdout was not captured".to_owned(),
    })?;
    let mut lines = BufReader::new(stdout).lines();

    for task in tasks {
        summary.tasks_read += 1;
        let task_line = serde_json::to_string(task)?;

        if let Err(err) = write_task(&mut stdin, &task_line).await {
            warn!(task = %task.task_id, error = %err, "failed to send task to runner; stopping");
            summary.runner_errors += 1;
            break;
        }

        let response = match read_reply(&mut lines, options.timeout).await {
            ReplyOutcome::Parsed(response) => *response,
            ReplyOutcome::Malformed(detail) => {
                warn!(task = %task.task_id, %detail, "runner reply was malformed; skipping task");
                summary.runner_errors += 1;
                continue;
            }
            ReplyOutcome::Closed => {
                warn!(task = %task.task_id, "runner closed its output early; stopping");
                summary.runner_errors += 1;
                break;
            }
            ReplyOutcome::TimedOut => {
                warn!(task = %task.task_id, seconds = options.timeout.as_secs(), "runner timed out; stopping");
                summary.runner_errors += 1;
                let _ = child.start_kill();
                break;
            }
        };

        if response.task_id != task.task_id {
            summary.id_mismatches += 1;
            warn!(sent = %task.task_id, got = %response.task_id, "runner task_id mismatch; keeping the sent id");
        }

        let attempt = merge_attempt(task, response, &task_line);
        writer.write_record(&attempt)?;
        summary.attempts_written += 1;
    }

    drop(stdin);
    let _ = child.wait().await;
    writer.flush()?;
    Ok(summary)
}

/// Merge a mined task with a runner reply into a replayable attempt.
///
/// The task is authoritative for the editable span, target file, and backing
/// diagnostic; the reply supplies the proof text and provenance. The prompt
/// hash falls back to a hash of the exact task line that was sent.
fn merge_attempt(task: &MineTask, response: RunnerResponse, task_line: &str) -> Attempt {
    let prompt_hash = response
        .prompt_hash
        .unwrap_or_else(|| sha256_hex(task_line));
    Attempt {
        task_id: task.task_id.clone(),
        attempt_id: response.attempt_id,
        allowed_edit: task.allowed_edit.clone(),
        replacement: response.replacement,
        target_file: None,
        extra_edits: Vec::new(),
        original_diagnostic: task.diagnostic.clone(),
        model: response.model,
        prompt_hash: Some(prompt_hash),
        metadata: response.metadata,
    }
}

/// Send one task line to the runner and flush so it can act immediately.
async fn write_task(stdin: &mut ChildStdin, task_line: &str) -> Result<()> {
    stdin.write_all(task_line.as_bytes()).await?;
    stdin.write_all(b"\n").await?;
    stdin.flush().await?;
    Ok(())
}

/// Read one reply, skipping blank lines, within `timeout`.
async fn read_reply(lines: &mut Lines<BufReader<ChildStdout>>, timeout: Duration) -> ReplyOutcome {
    loop {
        match time::timeout(timeout, lines.next_line()).await {
            Err(_) => return ReplyOutcome::TimedOut,
            Ok(Err(err)) => {
                return ReplyOutcome::Malformed(format!("reading runner output: {err}"));
            }
            Ok(Ok(None)) => return ReplyOutcome::Closed,
            Ok(Ok(Some(line))) => {
                let trimmed = line.trim();
                if trimmed.is_empty() {
                    continue;
                }
                return match serde_json::from_str::<RunnerResponse>(trimmed) {
                    Ok(response) => ReplyOutcome::Parsed(Box::new(response)),
                    Err(err) => ReplyOutcome::Malformed(format!("parsing runner attempt: {err}")),
                };
            }
        }
    }
}

/// Spawn the runner with the lake root in its environment.
fn spawn_runner(runner: &Utf8Path, lake_root: &Utf8Path) -> Result<Child> {
    Command::new(runner.as_str())
        .env(LAKE_ROOT_ENV, lake_root.as_str())
        .stdin(Stdio::piped())
        .stdout(Stdio::piped())
        .stderr(Stdio::inherit())
        .kill_on_drop(true)
        .spawn()
        .map_err(|source| Error::RunnerSpawn {
            runner: runner.to_path_buf(),
            source,
        })
}

/// Resolve the runner path: canonicalize a real file, else pass it through so a
/// bare command name can still be found on `PATH`.
fn resolve_runner(runner: &Utf8Path) -> Result<Utf8PathBuf> {
    match std::fs::canonicalize(runner) {
        Ok(path) => Utf8PathBuf::from_path_buf(path).map_err(|path| Error::NonUtf8Path { path }),
        Err(_) => Ok(runner.to_path_buf()),
    }
}

/// Lowercase hex SHA-256 of `input`.
fn sha256_hex(input: &str) -> String {
    let digest = Sha256::digest(input.as_bytes());
    let mut out = String::with_capacity(digest.len() * 2);
    for byte in digest {
        let _ = write!(out, "{byte:02x}");
    }
    out
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::{
        AllowedEdit, Diagnostic, DiagnosticSeverity, GoalState, LeanFile, MineKind, TargetSpan,
    };
    use camino::Utf8PathBuf;

    fn sample_task(task_id: &str, line: u32, with_diagnostic: bool) -> MineTask {
        let diagnostic = with_diagnostic.then(|| Diagnostic {
            file: Some(Utf8PathBuf::from("Demo.lean")),
            line: Some(line),
            column: Some(2),
            severity: DiagnosticSeverity::Error,
            message: "error: unsolved goals".to_owned(),
            goal_state: Some(GoalState("⊢ n = n".to_owned())),
        });
        MineTask {
            task_id: task_id.to_owned(),
            project: "demo".to_owned(),
            file: LeanFile(Utf8PathBuf::from("Demo.lean")),
            declaration: None,
            kind: MineKind::Sorry,
            line,
            column: 2,
            imports: vec!["import Init".to_owned()],
            source_before: "theorem t : True := by\n  ".to_owned(),
            target_span: TargetSpan {
                start_line: line,
                start_column: 2,
                end_line: line,
                end_column: 7,
                text: "sorry".to_owned(),
            },
            source_after: "\n".to_owned(),
            diagnostic,
            goal_state: None,
            allowed_edit: AllowedEdit {
                file: Utf8PathBuf::from("Demo.lean"),
                start_line: line,
                end_line: line,
            },
            instructions: "Replace only the target span.".to_owned(),
        }
    }

    #[test]
    fn sha256_hex_matches_known_vector() {
        // SHA-256 of the empty string.
        assert_eq!(
            sha256_hex(""),
            "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855"
        );
    }

    #[test]
    fn merge_takes_span_from_task_and_proof_from_reply() {
        let task = sample_task("Demo.t:2", 2, true);
        let response = RunnerResponse {
            task_id: "Demo.t:2".to_owned(),
            attempt_id: "cand-1".to_owned(),
            replacement: "  rfl".to_owned(),
            model: Some("test-model".to_owned()),
            prompt_hash: Some("deadbeef".to_owned()),
            metadata: Some(serde_json::json!({"latency_ms": 12})),
        };
        let attempt = merge_attempt(&task, response, "{\"task_id\":\"Demo.t:2\"}");
        assert_eq!(attempt.task_id, "Demo.t:2");
        assert_eq!(attempt.attempt_id, "cand-1");
        assert_eq!(attempt.replacement, "  rfl");
        assert_eq!(attempt.allowed_edit.start_line, 2);
        assert_eq!(attempt.allowed_edit.end_line, 2);
        assert_eq!(attempt.model.as_deref(), Some("test-model"));
        assert_eq!(attempt.prompt_hash.as_deref(), Some("deadbeef"));
        assert!(attempt.original_diagnostic.is_some());
        assert!(attempt.metadata.is_some());
    }

    #[test]
    fn merge_computes_prompt_hash_when_reply_omits_it() {
        let task = sample_task("Demo.t:2", 2, false);
        let response = RunnerResponse {
            task_id: "Demo.t:2".to_owned(),
            attempt_id: DEFAULT_ATTEMPT_ID.to_owned(),
            replacement: "  rfl".to_owned(),
            model: None,
            prompt_hash: None,
            metadata: None,
        };
        let attempt = merge_attempt(&task, response, "task-line");
        assert_eq!(
            attempt.prompt_hash.as_deref(),
            Some(sha256_hex("task-line").as_str())
        );
        assert!(attempt.original_diagnostic.is_none());
    }

    #[test]
    fn minimal_runner_response_deserializes_with_defaults() -> Result<()> {
        let line = r#"{"task_id":"T","replacement":"  rfl"}"#;
        let parsed: RunnerResponse = serde_json::from_str(line)?;
        assert_eq!(parsed.task_id, "T");
        assert_eq!(parsed.attempt_id, DEFAULT_ATTEMPT_ID);
        assert_eq!(parsed.replacement, "  rfl");
        assert!(parsed.model.is_none());
        assert!(parsed.metadata.is_none());
        Ok(())
    }

    #[cfg(unix)]
    #[tokio::test]
    async fn run_eval_streams_tasks_through_the_example_runner() -> Result<()> {
        use std::os::unix::fs::PermissionsExt;
        use tempfile::TempDir;

        let runner = Utf8PathBuf::from(concat!(
            env!("CARGO_MANIFEST_DIR"),
            "/../../scripts/echo_runner.sh"
        ));
        // Make sure the shipped example stays executable.
        let mut perms = std::fs::metadata(runner.as_std_path())?.permissions();
        perms.set_mode(0o755);
        std::fs::set_permissions(runner.as_std_path(), perms)?;

        let tasks = vec![
            sample_task("A.foo:2", 2, false),
            sample_task("B.bar:3", 3, true),
        ];
        let dir = TempDir::new()?;
        let out = Utf8PathBuf::from_path_buf(dir.path().join("attempts.jsonl"))
            .map_err(|path| Error::NonUtf8Path { path })?;

        let options = EvalOptions {
            runner,
            lake_root: Utf8PathBuf::from("."),
            timeout: Duration::from_secs(30),
        };
        let mut writer = JsonlWriter::create(&out)?;
        let summary = run_eval(&options, &tasks, &mut writer).await?;

        assert_eq!(summary.tasks_read, 2);
        assert_eq!(summary.attempts_written, 2);
        assert_eq!(summary.runner_errors, 0);
        assert_eq!(summary.id_mismatches, 0);

        let content = std::fs::read_to_string(out.as_std_path())?;
        let mut attempts = Vec::new();
        for line in content.lines().filter(|line| !line.trim().is_empty()) {
            attempts.push(serde_json::from_str::<Attempt>(line)?);
        }
        assert_eq!(attempts.len(), 2);
        // task_id comes from the sent task, replacement from the runner.
        assert_eq!(attempts[0].task_id, "A.foo:2");
        assert_eq!(attempts[1].task_id, "B.bar:3");
        assert_eq!(attempts[0].replacement, "  rfl");
        assert_eq!(attempts[0].model.as_deref(), Some("echo-runner"));
        // prompt_hash falls back to a hash of the sent task line.
        assert!(attempts[0].prompt_hash.is_some());
        // The error task carries its diagnostic through for replay scoring.
        assert!(attempts[1].original_diagnostic.is_some());
        Ok(())
    }
}