Struct ExtensionManager 

pub struct ExtensionManager { /* private fields */ }

Extension manager for handling loaded extensions.

Implementations

impl ExtensionManager

pub const DEFAULT_CLEANUP_BUDGET: Duration

Default cleanup budget for extension shutdown.

pub fn new() -> Self

Create a new extension manager.

Loads persisted permission decisions from disk (if any) and seeds the in-memory policy prompt cache so that “Allow Always” / “Deny Always” choices survive across sessions.

pub fn with_budget(budget: Budget) -> Self

Create a new extension manager with a specific operation budget.

pub fn snapshot_version(&self) -> u64

Current snapshot version (seqlock counter).

Cheap atomic load — useful for staleness checks without cloning.

pub fn set_budget(&self, budget: Budget)

Set the budget for extension operations.

pub fn budget(&self) -> Budget

Get the current extension operation budget.

pub fn extension_cx(&self) -> Cx

Create a Cx for extension operations using the configured budget.

If a budget with constraints is set, returns a budget-constrained Cx. Otherwise returns a standard request-scoped Cx.

pub fn set_runtime_risk_config(&self, config: RuntimeRiskConfig)

pub fn runtime_risk_config(&self) -> RuntimeRiskConfig

pub fn rollout_phase(&self) -> RolloutPhase

Get the current rollout phase.

pub fn set_rollout_phase(&self, phase: RolloutPhase)

Set the rollout phase explicitly (operator override).

pub fn advance_rollout(&self) -> bool

Advance the rollout to the next phase. Returns true if changed.

pub fn record_rollout_decision( &self, latency_ms: u64, was_error: bool, was_false_positive: bool, ) -> bool

Record a risk decision for rollback trigger evaluation. Returns true if a rollback was triggered.

pub fn set_rollback_trigger(&self, trigger: &RollbackTrigger)

Configure the rollback trigger thresholds.

pub fn rollout_state(&self) -> RolloutState

Get a snapshot of the current rollout state for operator inspection.

pub fn record_subprocess_spawn(&self, extension_id: &str)

Record subprocess spawn (increments active subprocess counter).

pub fn record_subprocess_exit(&self, extension_id: &str)

Record subprocess exit (decrements active subprocess counter).

pub fn record_write_bytes(&self, extension_id: &str, bytes: u64)

Record bytes written by an extension (for write quota tracking).

pub fn quota_state(&self, extension_id: &str) -> Option<(u64, u32, u64, u64)>

Get the current quota state for an extension (for telemetry/inspection).

pub fn set_budget_controller_config( &self, config: ExtensionBudgetControllerConfig, )

Update the budget-controller configuration.

pub fn budget_controller_config(&self) -> ExtensionBudgetControllerConfig

Snapshot the budget-controller configuration.

pub fn regime_shift_snapshot( &self, extension_id: &str, ) -> Option<RegimeShiftSnapshot>

Snapshot the regime-shift detector state for an extension.

pub fn any_safety_envelope_vetoing(&self) -> bool

Check if any extension has an active safety envelope veto.

When any extension is in a vetoed state, aggressive optimization (e.g. AMAC interleaving) should be disabled to remain conservative.

pub fn safety_envelope_snapshot( &self, extension_id: &str, ) -> Option<SafetyEnvelopeSnapshot>

Snapshot the safety envelope state for an extension.

pub fn oco_tuner_snapshot(&self, extension_id: &str) -> Option<OcoTunerSnapshot>

Snapshot OCO tuner state for an extension.

pub fn set_quota_config(&self, config: ExtensionQuotaConfig)

Update the global quota configuration.

pub fn drain_quota_breach_events(&self) -> Vec<QuotaBreachEvent>

Drain and return all quota breach telemetry events.

pub fn quota_breach_count(&self) -> usize

Get the count of recorded quota breach events (for inspection).

pub fn reset_quota_state(&self, extension_id: &str)

Reset quota counters for a specific extension (e.g. on extension reload). The sliding window timestamps and monotonic counters are cleared.

pub fn enable_replay(&self, config: ReplayLaneConfig)

Enable replay trace recording with the given budget/config.

pub fn disable_replay(&self)

Disable replay trace recording.

pub fn store_replay_bundle(&self, bundle: ReplayTraceBundle)

Store a completed replay trace bundle from a dispatch cycle.

pub fn drain_replay_bundles(&self) -> Vec<ReplayTraceBundle>

Drain and return all stored replay trace bundles.

pub fn replay_config(&self) -> Option<ReplayLaneConfig>

Get the current replay lane config (if enabled).

pub fn runtime_risk_ledger_artifact(&self) -> RuntimeRiskLedgerArtifact

pub fn runtime_hostcall_telemetry_artifact( &self, ) -> RuntimeHostcallTelemetryArtifact

pub fn runtime_risk_verify_ledger(&self) -> RuntimeRiskLedgerVerificationReport

pub fn runtime_risk_replay_ledger(&self) -> Result<RuntimeRiskReplayArtifact>

pub fn runtime_risk_calibrate_ledger( &self, config: &RuntimeRiskCalibrationConfig, ) -> Result<RuntimeRiskCalibrationReport>

pub fn build_baseline( &self, extension_id: &str, ) -> Result<RuntimeRiskBaselineModel>

Build a baseline model for the given extension from the current ledger.

pub fn record_exec_mediation(&self, entry: ExecMediationLedgerEntry)

Record an exec mediation decision into the SEC-4.3 ledger.

pub fn record_secret_broker(&self, entry: SecretBrokerLedgerEntry)

Record a secret broker decision into the SEC-4.3 ledger.

pub fn exec_mediation_artifact(&self) -> ExecMediationArtifact

Export the exec mediation ledger as a structured artifact.

pub fn secret_broker_artifact(&self) -> SecretBrokerArtifact

Export the secret broker ledger as a structured artifact.

pub fn record_security_alert(&self, alert: SecurityAlert)

Record a security alert into the SEC-5.1 alert stream.

pub fn security_alert_artifact(&self) -> SecurityAlertArtifact

Export the security alert stream as a structured artifact.

pub fn security_alert_count(&self) -> usize

Return the current count of recorded security alerts.

pub fn set_hostcall_compat_kill_switch_global(&self, enabled: bool)

Enable or disable the global hostcall compatibility-lane kill-switch.

When enabled, all hostcalls that would normally use the fast lane are deterministically routed through the compatibility lane.

pub fn set_hostcall_compat_kill_switch_for_extension( &self, extension_id: &str, enabled: bool, )

Enable or disable per-extension hostcall compatibility-lane kill-switch.

When enabled for extension_id, fast-lane-eligible hostcalls from that extension are routed through the compatibility lane.

pub fn hostcall_compat_kill_switch_global(&self) -> bool

pub fn hostcall_compat_kill_switch_for_extension( &self, extension_id: &str, ) -> bool

pub fn enable_hostcall_reactor(&self, config: HostcallReactorConfig)

Enable the hostcall reactor mesh with the given configuration.

Fast-lane opcodes will be routed through per-shard SPSC lanes for reduced cross-core contention.

pub fn disable_hostcall_reactor(&self)

Disable the hostcall reactor mesh.

pub fn hostcall_reactor_enabled(&self) -> bool

Check if the reactor mesh is enabled.

pub fn reactor_drain_shard( &self, shard_id: usize, budget: usize, ) -> Vec<HostcallReactorRequest>

Drain pending requests from a specific reactor shard.

pub fn reactor_drain_global(&self, budget: usize) -> Vec<HostcallReactorRequest>

Drain pending requests in deterministic global sequence order.

pub fn reactor_telemetry(&self) -> Option<HostcallReactorTelemetry>

Get reactor mesh telemetry snapshot.

pub fn kill_switch( &self, extension_id: &str, reason: &str, operator: &str, ) -> KillSwitchResult

Activate the kill-switch for an extension.

Immediately sets the extension’s trust state to Killed and quarantines it in the runtime risk controller so all future hostcalls are rejected. Emits a Critical security alert and records an audit entry.

pub fn lift_kill_switch( &self, extension_id: &str, reason: &str, operator: &str, ) -> KillSwitchResult

Lift the kill-switch for an extension.

Requires explicit acknowledgment. Moves the trust state back to Acknowledged and clears the quarantine flag. Records an audit entry and emits an Info-level security alert.

pub fn is_killed(&self, extension_id: &str) -> bool

Check whether an extension is currently killed.

pub fn trust_state(&self, extension_id: &str) -> ExtensionTrustState

Get the trust state for an extension.

pub fn record_trust_onboarding( &self, extension_id: &str, risk_level: &str, accepted: bool, operator: &str, ) -> ExtensionTrustState

Record a trust onboarding decision.

If accepted is true, the extension moves to Acknowledged. If accepted is false, the extension is killed (rejected).

pub fn promote_trust(&self, extension_id: &str) -> ExtensionTrustState

Promote an extension to Trusted state.

Only extensions currently in Acknowledged state can be promoted.

pub fn kill_switch_audit_log(&self) -> Vec<KillSwitchAuditEntry>

Return the kill-switch audit trail.

pub fn trust_onboarding_decisions(&self) -> Vec<TrustOnboardingDecision>

Return the trust onboarding decision log.

pub fn export_incident_bundle( &self, filter: &IncidentBundleFilter, redaction: &IncidentBundleRedactionPolicy, ) -> IncidentEvidenceBundle

Export a complete incident evidence bundle combining all security artifacts with optional filtering and redaction.

Delegates to build_incident_evidence_bundle after collecting all sub-artifacts from the manager.

pub async fn shutdown(&self, budget: Duration) -> bool

Shut down the extension runtime with a cleanup budget.

Sends a graceful shutdown to the configured extension runtime thread and waits up to budget for it to exit. Returns true if the runtime exited cleanly within the budget.

pub fn set_ui_sender(&self, sender: Sender<ExtensionUiRequest>)

pub fn clear_ui_sender(&self)

pub fn set_runtime(&self, runtime: ExtensionRuntimeHandle)

pub fn set_js_runtime(&self, runtime: JsExtensionRuntimeHandle)

pub fn set_native_runtime(&self, runtime: NativeRustExtensionRuntimeHandle)

pub fn set_cwd(&self, cwd: String)

pub fn set_model_registry_values(&self, values: HashMap<String, String>)

pub fn set_host_actions(&self, actions: Arc<dyn ExtensionHostActions>)

pub fn runtime(&self) -> Option<ExtensionRuntimeHandle>

pub fn js_runtime(&self) -> Option<JsExtensionRuntimeHandle>

pub fn native_runtime(&self) -> Option<NativeRustExtensionRuntimeHandle>

pub fn cached_policy_prompt_decision( &self, extension_id: &str, capability: &str, ) -> Option<bool>

pub fn cache_policy_prompt_decision( &self, extension_id: &str, capability: &str, allow: bool, )

pub fn revoke_extension_permissions(&self, extension_id: &str)

Revoke all persisted permission decisions for an extension.

pub fn reset_all_permissions(&self)

Reset all persisted permission decisions.

pub fn list_permissions( &self, ) -> HashMap<String, HashMap<String, PersistedDecision>>

List all persisted permission decisions.

pub fn active_tools(&self) -> Option<Vec<String>>

Lock-free: reads from the RCU snapshot.

pub async fn load_js_extensions( &self, specs: Vec<JsExtensionLoadSpec>, ) -> Result<()>

pub async fn load_native_extensions( &self, specs: Vec<NativeRustExtensionLoadSpec>, ) -> Result<()>

pub async fn load_wasm_extensions( &self, host: &WasmExtensionHost, specs: Vec<WasmExtensionLoadSpec>, tools: Arc<ToolRegistry>, ) -> Result<()>

pub fn wasm_extensions(&self) -> Vec<WasmExtensionHandle>

pub fn set_session(&self, session: Arc<dyn ExtensionSession>)

pub fn session_handle(&self) -> Option<Arc<dyn ExtensionSession>>

Lock-free: reads from the RCU snapshot.

pub fn set_active_tools(&self, tools: Vec<String>)

pub fn current_model(&self) -> (Option<String>, Option<String>)

Lock-free: reads from the RCU snapshot.

pub fn set_current_model( &self, provider: Option<String>, model_id: Option<String>, )

pub fn current_thinking_level(&self) -> Option<String>

Lock-free: reads from the RCU snapshot.

pub fn set_current_thinking_level(&self, level: Option<String>)

pub fn extension_tool_defs(&self) -> Vec<Value>

Collect tool definitions from all registered extensions.

Uses the pre-computed snapshot (RCU) instead of locking the mutex.

pub fn register(&self, payload: RegisterPayload)

pub fn has_command(&self, name: &str) -> bool

pub fn register_command(&self, name: &str, description: Option<&str>)

Dynamically register a slash command at runtime (from a hostcall).

pub fn register_provider(&self, payload: Value)

Dynamically register a provider at runtime (from a hostcall).

pub fn register_flag(&self, spec: Value)

Dynamically register a flag at runtime (from a hostcall).

pub async fn execute_command( &self, command_name: &str, args: &str, timeout_ms: u64, ) -> Result<Value>

Execute an extension slash command via the JS runtime.

pub fn extension_providers(&self) -> Vec<Value>

Return extension-registered providers as raw JSON specs.

Uses the pre-computed snapshot (RCU) instead of locking the mutex.

pub fn provider_has_stream_simple(&self, provider_id: &str) -> bool

Return true if an extension provider is backed by a JS streamSimple handler.

pub fn extension_model_entries(&self) -> Vec<ModelEntry>

Convert extension-registered providers into model entries suitable for merging into the ModelRegistry.

pub fn list_commands(&self) -> Vec<Value>

pub fn has_shortcut(&self, key_id: &str) -> bool

pub fn list_shortcuts(&self) -> Vec<Value>

pub fn list_flags(&self) -> Vec<Value>

pub fn list_event_hooks(&self) -> Vec<String>

List all event hook names registered by all loaded extensions.

pub async fn execute_shortcut( &self, key_id: &str, ctx_payload: Value, timeout_ms: u64, ) -> Result<Value>

Execute an extension shortcut via the JS runtime.

pub async fn set_flag_value( &self, extension_id: &str, flag_name: &str, value: Value, ) -> Result<()>

Set a flag value in the JS runtime for a specific extension.

pub async fn request_ui( &self, request: ExtensionUiRequest, ) -> Result<Option<ExtensionUiResponse>>

pub fn respond_ui(&self, response: ExtensionUiResponse) -> bool

pub async fn dispatch_event( &self, event: ExtensionEventName, data: Option<Value>, ) -> Result<()>

Dispatch an event to all registered extensions.

pub async fn dispatch_event_with_response( &self, event: ExtensionEventName, data: Option<Value>, timeout_ms: u64, ) -> Result<Option<Value>>

Dispatch an event to all registered extensions and return the raw response (if any).

pub async fn dispatch_cancellable_event( &self, event: ExtensionEventName, data: Option<Value>, timeout_ms: u64, ) -> Result<bool>

Dispatch a cancellable event to all registered extensions.

pub async fn dispatch_event_batch( &self, events: Vec<(ExtensionEventName, Option<Value>)>, ) -> Result<()>

Dispatch multiple fire-and-forget events in a single JS bridge call.

Events that have no registered hooks are filtered out before crossing the bridge. Returns Ok(()) — individual per-event errors are logged but do not fail the batch.

pub async fn dispatch_tool_call( &self, tool_call: &ToolCall, timeout_ms: u64, ) -> Result<Option<ToolCallEventResult>>

Dispatch a tool_call event to registered extensions and return the first blocking response (if any).

pub async fn dispatch_tool_result( &self, tool_call: &ToolCall, output: &ToolOutput, is_error: bool, timeout_ms: u64, ) -> Result<Option<ToolResultEventResult>>

Dispatch a tool_result event to registered extensions and return the last handler response (if any).

pub fn invalidate_ctx_cache(&self)

Invalidate the context cache, forcing the next dispatch to rebuild it.

Call this when session content changes outside the normal setter flow (e.g. after appending messages to a session).

pub fn has_hook_for(&self, event_name: &str) -> bool

Check whether any extension has registered a hook for the given event name. O(1) lookup via pre-computed bitmap.

Lock-free: reads from the RCU snapshot.

pub fn has_any_event_hooks(&self) -> bool

Returns true if at least one event hook is registered across all extensions. Use this as a fast-path gate to skip event serialization entirely when no hooks are present.

Lock-free: reads from the RCU snapshot.

Trait Implementations

impl Clone for ExtensionManager

fn clone(&self) -> ExtensionManager

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for ExtensionManager

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Default for ExtensionManager

fn default() -> Self

Returns the “default value” for a type.