zagens-core 0.8.2

Core runtime boundaries for Zagens agent architecture
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239

//! Pure outer-loop boundary policy (Phase 3b batch 5b).
//!
//! Encodes guard conditions from `run.rs` (step-limit, loop-guard, context
//! overflow, in-turn cycle advance) so live execution and replay projection
//! share one decision surface.

use crate::engine::context::MAX_CONTEXT_RECOVERY_ATTEMPTS;
use crate::engine::kernel_event::OverflowStrategy;
use crate::engine::streaming::{
    MAX_CONTEXT_CYCLE_HANDOFFS, MAX_IN_TURN_CYCLE_ADVANCES, MAX_LOOP_GUARD_CONTINUATIONS,
    MAX_STEP_LIMIT_CONTINUATIONS,
};
use crate::turn::{TurnContext, TurnLoopMode};

/// Which outer-loop boundary fired in the turn driver.
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum OuterBoundaryKind {
    StepLimit,
    LoopGuard,
    ContextOverflowCycleHandoff,
    InTurnCycleAdvance,
    /// Pre-request capacity intervention held the outer loop (`continue` without step advance).
    PreRequestCapacityHold,
    /// Error-escalation capacity intervention held the outer loop after tool errors.
    ErrorEscalationCapacityHold,
}

/// Outer-loop counters sampled at boundary checks.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Default)]
pub struct OuterBoundaryCounters {
    pub step_limit_continuations: u32,
    pub loop_guard_continuations: u32,
    pub cycle_handoff_attempts: u32,
    pub in_turn_cycle_advances: u32,
}

/// Back-compat alias for continuation-only call sites.
pub type ContinuationBoundaryCounters = OuterBoundaryCounters;

/// Back-compat alias for continuation-only call sites.
pub type ContinuationBoundaryKind = OuterBoundaryKind;

/// Whether the step-limit cap may offer another bounded LHT grant.
#[must_use]
pub fn step_limit_boundary_eligible(mode: TurnLoopMode, counters: OuterBoundaryCounters) -> bool {
    !mode.is_plan() && counters.step_limit_continuations < MAX_STEP_LIMIT_CONTINUATIONS
}

/// Whether a loop-guard halt may offer another bounded LHT grant.
#[must_use]
pub fn loop_guard_boundary_eligible(
    mode: TurnLoopMode,
    loop_guard_halted: bool,
    counters: OuterBoundaryCounters,
) -> bool {
    loop_guard_halted
        && !mode.is_plan()
        && counters.loop_guard_continuations < MAX_LOOP_GUARD_CONTINUATIONS
}

/// Whether emergency compaction retries are exhausted for this overflow episode.
#[must_use]
pub fn context_recovery_attempts_exhausted(context_recovery_attempts: u8) -> bool {
    context_recovery_attempts >= MAX_CONTEXT_RECOVERY_ATTEMPTS
}

/// Whether a bounded cycle handoff may run after recovery exhaustion.
#[must_use]
pub fn cycle_handoff_boundary_eligible(
    mode: TurnLoopMode,
    counters: OuterBoundaryCounters,
) -> bool {
    !mode.is_plan() && counters.cycle_handoff_attempts < MAX_CONTEXT_CYCLE_HANDOFFS
}

/// Whether the clean in-turn cycle gate may run at a per-step safe boundary.
#[must_use]
pub fn in_turn_cycle_advance_boundary_eligible(
    mode: TurnLoopMode,
    counters: OuterBoundaryCounters,
) -> bool {
    !mode.is_plan() && counters.in_turn_cycle_advances < MAX_IN_TURN_CYCLE_ADVANCES
}

/// Reset recovery budget after a successful cycle handoff (fresh seed is small).
#[must_use]
pub const fn context_recovery_budget_after_cycle_handoff() -> u8 {
    0
}

/// User-visible failure when overflow persists after recovery + handoff grants.
#[must_use]
pub fn context_overflow_hard_fail_message(estimated_input: usize, input_budget: usize) -> String {
    format!(
        "Context remains above model limit after {} recovery attempts \
         (~{} token estimate, ~{} budget). Please run /compact or /clear.",
        MAX_CONTEXT_RECOVERY_ATTEMPTS, estimated_input, input_budget
    )
}

/// Kernel overflow strategy for a granted cycle handoff.
#[must_use]
pub const fn context_overflow_cycle_handoff_strategy() -> OverflowStrategy {
    OverflowStrategy::CycleHandoff
}

/// Kernel overflow strategy for budget recompile recovery.
#[must_use]
pub const fn context_overflow_budget_recompile_strategy() -> OverflowStrategy {
    OverflowStrategy::BudgetRecompile
}

/// New step budget after granting one step-limit continuation window.
#[must_use]
pub fn step_limit_budget_after_grant(turn: &TurnContext, step_budget_increment: u32) -> u32 {
    turn.max_steps.saturating_add(step_budget_increment)
}

#[must_use]
pub fn max_step_limit_grants() -> u32 {
    MAX_STEP_LIMIT_CONTINUATIONS
}

#[must_use]
pub fn max_loop_guard_grants() -> u32 {
    MAX_LOOP_GUARD_CONTINUATIONS
}

#[must_use]
pub fn max_context_cycle_handoffs() -> u32 {
    MAX_CONTEXT_CYCLE_HANDOFFS
}

#[must_use]
pub fn max_in_turn_cycle_advances() -> u32 {
    MAX_IN_TURN_CYCLE_ADVANCES
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn step_limit_boundary_respects_plan_mode_and_cap() {
        let counters = OuterBoundaryCounters {
            step_limit_continuations: MAX_STEP_LIMIT_CONTINUATIONS,
            ..Default::default()
        };
        assert!(!step_limit_boundary_eligible(TurnLoopMode::Agent, counters));
        assert!(!step_limit_boundary_eligible(
            TurnLoopMode::Plan,
            Default::default()
        ));
        assert!(step_limit_boundary_eligible(
            TurnLoopMode::Agent,
            Default::default()
        ));
    }

    #[test]
    fn loop_guard_boundary_requires_halt_and_cap() {
        let at_cap = OuterBoundaryCounters {
            loop_guard_continuations: MAX_LOOP_GUARD_CONTINUATIONS,
            ..Default::default()
        };
        assert!(!loop_guard_boundary_eligible(
            TurnLoopMode::Agent,
            true,
            at_cap
        ));
        assert!(!loop_guard_boundary_eligible(
            TurnLoopMode::Agent,
            false,
            Default::default()
        ));
        assert!(loop_guard_boundary_eligible(
            TurnLoopMode::Agent,
            true,
            Default::default()
        ));
    }

    #[test]
    fn step_limit_budget_after_grant_adds_increment() {
        let turn = TurnContext::new(100);
        assert_eq!(step_limit_budget_after_grant(&turn, 100), 200);
    }

    #[test]
    fn context_recovery_exhaustion_matches_max() {
        assert!(!context_recovery_attempts_exhausted(0));
        assert!(!context_recovery_attempts_exhausted(
            MAX_CONTEXT_RECOVERY_ATTEMPTS.saturating_sub(1)
        ));
        assert!(context_recovery_attempts_exhausted(
            MAX_CONTEXT_RECOVERY_ATTEMPTS
        ));
    }

    #[test]
    fn cycle_handoff_boundary_respects_plan_and_cap() {
        let at_cap = OuterBoundaryCounters {
            cycle_handoff_attempts: MAX_CONTEXT_CYCLE_HANDOFFS,
            ..Default::default()
        };
        assert!(!cycle_handoff_boundary_eligible(
            TurnLoopMode::Plan,
            Default::default()
        ));
        assert!(!cycle_handoff_boundary_eligible(
            TurnLoopMode::Agent,
            at_cap
        ));
        assert!(cycle_handoff_boundary_eligible(
            TurnLoopMode::Agent,
            Default::default()
        ));
    }

    #[test]
    fn in_turn_cycle_advance_boundary_respects_cap() {
        let at_cap = OuterBoundaryCounters {
            in_turn_cycle_advances: MAX_IN_TURN_CYCLE_ADVANCES,
            ..Default::default()
        };
        assert!(!in_turn_cycle_advance_boundary_eligible(
            TurnLoopMode::Plan,
            Default::default()
        ));
        assert!(!in_turn_cycle_advance_boundary_eligible(
            TurnLoopMode::Agent,
            at_cap
        ));
        assert!(in_turn_cycle_advance_boundary_eligible(
            TurnLoopMode::Agent,
            Default::default()
        ));
    }
}