zeph-acp 0.21.0

ACP (Agent Client Protocol) server for IDE embedding
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366

// SPDX-FileCopyrightText: 2026 Andrei G <bug-ops>
// SPDX-License-Identifier: MIT OR Apache-2.0

//! Driver loop and command channel for the ACP sub-agent client.
//!
//! The driver runs inside `connect_with`'s closure and services a
//! `SubagentCommand` channel that `SubagentHandle` writes to. A biased
//! `tokio::select!` inside read operations guarantees that a `Cancel` command
//! preempts an in-flight `read_update` within one poll cycle.

use std::sync::{Arc, Mutex};
use std::time::Duration;

use agent_client_protocol::{
    ActiveSession, Agent, ConnectionTo, SessionMessage,
    schema::{
        CancelNotification, ContentBlock, ContentChunk, InitializeRequest, ProtocolVersion,
        SessionId, SessionNotification, SessionUpdate,
    },
};
use futures::StreamExt;
use tokio::sync::oneshot;
use tokio::task::JoinHandle;

use crate::client::{AcpClientError, HandshakeStep, RunOutcome, SubagentConfig};

type ReadySlot = Arc<Mutex<Option<oneshot::Sender<Result<SessionId, AcpClientError>>>>>;

/// Commands sent from [`super::SubagentHandle`] to the driver.
pub(crate) enum SubagentCommand {
    /// Send a text prompt to the sub-agent.
    Prompt {
        text: String,
        reply: oneshot::Sender<Result<(), AcpClientError>>,
    },
    /// Read one `SessionMessage` update from the sub-agent.
    ReadUpdate {
        reply: oneshot::Sender<Result<SessionMessage, AcpClientError>>,
    },
    /// Drain all updates until `StopReason`, collecting text chunks.
    ReadToString {
        reply: oneshot::Sender<Result<RunOutcome, AcpClientError>>,
    },
    /// Send a `session/cancel` notification to the sub-agent.
    Cancel {
        reply: oneshot::Sender<Result<(), AcpClientError>>,
    },
    /// Close the session and shut down the driver.
    Close { ack: oneshot::Sender<()> },
}

/// Run the full ACP handshake + command loop for a single sub-agent session.
///
/// This function is intended to be called inside `Client.builder().connect_with(transport, ...)`.
/// It:
/// 1. Sends `InitializeRequest` and waits for the response.
/// 2. Builds a session via `build_session(session_cwd).block_task().run_until(...)`.
/// 3. On success, fires `ready_tx` with `Ok(session_id)`.
/// 4. Enters the command loop, servicing `SubagentCommand` messages until `Close`.
/// 5. Kills and reaps the child process, aborts the stderr drain task.
///
/// Any handshake failure fires `ready_tx` with an `Err` variant so the caller
/// receives a typed `AcpClientError::Handshake` rather than a silent `DriverDied`.
pub(crate) async fn run_driver(
    cx: ConnectionTo<Agent>,
    cmd_rx: futures::channel::mpsc::UnboundedReceiver<SubagentCommand>,
    ready_slot: ReadySlot,
    cfg: SubagentConfig,
    mut child: tokio::process::Child,
    stderr_task: JoinHandle<()>,
) -> Result<(), agent_client_protocol::Error> {
    let cx_clone = cx.clone();

    // Stage 1: Initialize.
    let init_result = tokio::time::timeout(
        Duration::from_secs(cfg.handshake_timeout_secs),
        cx.send_request(InitializeRequest::new(ProtocolVersion::V1))
            .block_task(),
    )
    .await;

    match init_result {
        Ok(Ok(_)) => {}
        Ok(Err(e)) => {
            fire_handshake_err(&ready_slot, HandshakeStep::Initialize, e);
            cleanup_child(&mut child, stderr_task).await;
            return Ok(());
        }
        Err(_) => {
            fire_handshake_err(
                &ready_slot,
                HandshakeStep::Initialize,
                agent_client_protocol::Error::internal_error().data("initialize timed out"),
            );
            cleanup_child(&mut child, stderr_task).await;
            return Ok(());
        }
    }

    let session_cwd = cfg.effective_session_cwd();

    // Stage 2 + 3: build_session / run_until.
    // `ready_slot` is taken inside the closure on success; if `run_until` returns
    // `Err` without the body ever running, the outer code fires the handshake error.
    let ready_for_body = ready_slot.clone();
    let cmd_rx = Arc::new(Mutex::new(Some(cmd_rx)));
    let cmd_rx_for_body = cmd_rx.clone();

    let run_result = cx_clone
        .build_session(session_cwd)
        .block_task()
        .run_until(async move |mut session: ActiveSession<'_, Agent>| {
            // Session is up — notify the waiting caller.
            if let Some(tx) = ready_for_body
                .lock()
                .unwrap_or_else(std::sync::PoisonError::into_inner)
                .take()
            {
                let _ = tx.send(Ok(session.session_id().clone()));
            }

            // Extract cmd_rx from the Arc<Mutex<Option<_>>>.
            let Some(mut cmd_rx) = cmd_rx_for_body
                .lock()
                .unwrap_or_else(std::sync::PoisonError::into_inner)
                .take()
            else {
                return Ok(());
            };

            // Command loop.
            while let Some(cmd) = cmd_rx.next().await {
                match cmd {
                    SubagentCommand::Prompt { text, reply } => {
                        let r = session.send_prompt(text).map_err(AcpClientError::Sdk);
                        let _ = reply.send(r);
                    }
                    SubagentCommand::ReadUpdate { reply } => {
                        let r = read_one_with_preemption(&mut session, &mut cmd_rx).await;
                        let _ = reply.send(r);
                    }
                    SubagentCommand::ReadToString { reply } => {
                        let r = drain_until_stop(&mut session, &mut cmd_rx).await;
                        let _ = reply.send(r);
                    }
                    SubagentCommand::Cancel { reply } => {
                        let r = session
                            .connection()
                            .send_notification(CancelNotification::new(
                                session.session_id().clone(),
                            ))
                            .map_err(AcpClientError::Sdk);
                        let _ = reply.send(r);
                    }
                    SubagentCommand::Close { ack } => {
                        let _ = ack.send(());
                        break;
                    }
                }
            }
            Ok(())
        })
        .await;

    // If run_until failed before the body could run, surface a handshake error.
    if let (Err(e), Some(tx)) = (
        run_result.as_ref(),
        ready_slot
            .lock()
            .unwrap_or_else(std::sync::PoisonError::into_inner)
            .take(),
    ) {
        let _ = tx.send(Err(AcpClientError::Handshake {
            step: HandshakeStep::NewSession,
            source: e.clone(),
        }));
    }

    cleanup_child(&mut child, stderr_task).await;

    run_result
}

/// Read a single `SessionMessage`, allowing Cancel/Close to preempt the read.
///
/// Uses a `biased` `tokio::select!` so that an incoming command is always checked
/// before the read future, bounding cancellation latency to one poll cycle.
///
/// When a non-Cancel/Close command arrives while reading, this function replies
/// `DriverBusy` to *that* command's caller and continues waiting for the update.
pub(crate) async fn read_one_with_preemption(
    session: &mut ActiveSession<'_, Agent>,
    cmd_rx: &mut futures::channel::mpsc::UnboundedReceiver<SubagentCommand>,
) -> Result<SessionMessage, AcpClientError> {
    loop {
        tokio::select! {
            biased;

            maybe = cmd_rx.next() => match maybe {
                Some(SubagentCommand::Cancel { reply }) => {
                    // Send cancel notification inline, then wait for the real StopReason update.
                    let r = session
                        .connection()
                        .send_notification(CancelNotification::new(session.session_id().clone()))
                        .map_err(AcpClientError::Sdk);
                    let _ = reply.send(r);
                    // Fall through to read the cancel acknowledgement from the agent.
                    return session.read_update().await.map_err(AcpClientError::Sdk);
                }
                Some(SubagentCommand::Close { ack }) => {
                    let _ = ack.send(());
                    return Err(AcpClientError::Closed);
                }
                Some(other) => {
                    // Reply DriverBusy to the incoming command, keep waiting for update.
                    send_busy(other);
                }
                None => return Err(AcpClientError::Closed),
            },

            update = session.read_update() => {
                return update.map_err(AcpClientError::Sdk);
            }
        }
    }
}

/// Drain all `SessionMessage` updates until `StopReason`, collecting text chunks.
///
/// Mirrors the pattern of `ActiveSession::read_to_string` (SDK `session.rs:591`)
/// but exposes `StopReason` via [`RunOutcome`]. Uses the same biased select loop
/// as [`read_one_with_preemption`] so Cancel commands preempt the read.
///
/// Included in `text`:
/// - `SessionUpdate::AgentMessageChunk` with `ContentBlock::Text`.
///
/// Ignored (span event emitted but not concatenated):
/// - Non-text `AgentMessageChunk` variants.
/// - `AgentThoughtChunk` variants.
/// - `ToolCall`, `ToolCallUpdate`, `Plan`, and any `#[non_exhaustive]` unknown variants.
pub(crate) async fn drain_until_stop(
    session: &mut ActiveSession<'_, Agent>,
    cmd_rx: &mut futures::channel::mpsc::UnboundedReceiver<SubagentCommand>,
) -> Result<RunOutcome, AcpClientError> {
    use agent_client_protocol::util::MatchDispatch;

    let mut text = String::new();

    loop {
        let update = {
            loop {
                tokio::select! {
                    biased;

                    maybe = cmd_rx.next() => match maybe {
                        Some(SubagentCommand::Cancel { reply }) => {
                            let r = session
                                .connection()
                                .send_notification(CancelNotification::new(session.session_id().clone()))
                                .map_err(AcpClientError::Sdk);
                            let _ = reply.send(r);
                            let upd = session.read_update().await.map_err(AcpClientError::Sdk)?;
                            break upd;
                        }
                        Some(SubagentCommand::Close { ack }) => {
                            let _ = ack.send(());
                            return Err(AcpClientError::Closed);
                        }
                        Some(other) => {
                            send_busy(other);
                        }
                        None => return Err(AcpClientError::Closed),
                    },

                    upd = session.read_update() => {
                        break upd.map_err(AcpClientError::Sdk)?;
                    }
                }
            }
        };

        match update {
            SessionMessage::SessionMessage(dispatch) => {
                MatchDispatch::new(dispatch)
                    .if_notification(async |notif: SessionNotification| {
                        match notif.update {
                            SessionUpdate::AgentMessageChunk(ContentChunk {
                                content: ContentBlock::Text(t),
                                ..
                            }) => {
                                text.push_str(&t.text);
                            }
                            SessionUpdate::AgentThoughtChunk(_) => {
                                tracing::trace!(target: "acp.client.drain", "thought_chunk ignored");
                            }
                            SessionUpdate::ToolCall(ref tc) => {
                                tracing::trace!(
                                    target: "acp.client.drain",
                                    tool_call_id = ?tc.tool_call_id,
                                    "tool_call ignored"
                                );
                            }
                            SessionUpdate::Plan(_) => {
                                tracing::trace!(target: "acp.client.drain", "plan ignored");
                            }
                            _ => {
                                tracing::debug!(target: "acp.client.drain", "unknown SessionUpdate variant ignored");
                            }
                        }
                        Ok(())
                    })
                    .await
                    .otherwise_ignore()
                    .map_err(AcpClientError::Sdk)?;
            }
            SessionMessage::StopReason(reason) => {
                return Ok(RunOutcome {
                    text,
                    stop_reason: reason,
                });
            }
            _ => {
                tracing::debug!(target: "acp.client.drain", "unknown SessionMessage variant ignored");
            }
        }
    }
}

fn fire_handshake_err(slot: &ReadySlot, step: HandshakeStep, source: agent_client_protocol::Error) {
    if let Some(tx) = slot
        .lock()
        .unwrap_or_else(std::sync::PoisonError::into_inner)
        .take()
    {
        let _ = tx.send(Err(AcpClientError::Handshake { step, source }));
    }
}

async fn cleanup_child(child: &mut tokio::process::Child, stderr_task: JoinHandle<()>) {
    let _ = child.start_kill();
    let _ = child.wait().await;
    stderr_task.abort();
}

/// Reply `DriverBusy` to an incoming command that arrived while a read is in progress.
fn send_busy(cmd: SubagentCommand) {
    match cmd {
        SubagentCommand::Prompt { reply, .. } => {
            let _ = reply.send(Err(AcpClientError::DriverBusy));
        }
        SubagentCommand::ReadUpdate { reply } => {
            let _ = reply.send(Err(AcpClientError::DriverBusy));
        }
        SubagentCommand::ReadToString { reply } => {
            let _ = reply.send(Err(AcpClientError::DriverBusy));
        }
        SubagentCommand::Cancel { .. } => {
            // Cancel is consumed by the biased select arm above; this arm is unreachable.
            unreachable!("Cancel must be handled by the biased select arm, not send_busy");
        }
        SubagentCommand::Close { ack } => {
            // Honour close even during a read; the loop will notice and return.
            let _ = ack.send(());
        }
    }
}