mirror of
https://github.com/sipeed/picoclaw.git
synced 2026-05-25 16:00:35 +00:00
Liu Yuan
15a70ac45c
* feat(seahorse): implement short-term memory engine of seahorse Add pkg/seahorse/ module implementing a SQLite-backed DAG-based summary hierarchy for context management, ported from lossless-claw's LCM design: - types.go + short_constants.go: core types (Message, Summary, Conversation, ContextItem) and configuration constants (fanout, token targets, thresholds) - migration.go: idempotent DB schema with FTS5 trigram tokenizer for CJK - store.go: full SQLite CRUD (conversations, messages, summaries DAG, context_items with ordinal gap numbering, FTS5 search) - short_engine.go: Engine lifecycle (NewEngine, Ingest, Assemble, Compact), session pattern filtering (ignore/stateless glob→regex compilation), per-session mutex via sync.Map - short_assembler.go: budget-aware context assembly with fresh tail protection (32 messages), oldest-first eviction, summary XML formatting, RebuildContextItems - short_compaction.go: leaf compaction (messages→summary) and condensed compaction (summaries→higher-level summary), 3-level LLM escalation, CompactUntilUnder for emergency overflow - short_retrieval.go: lookupByID, FTS5/LIKE search, recursive expand with token cap - context_seahorse.go: agent.ContextManager adapter, registered as "seahorse", provider↔seahorse message type conversion (ToolCalls, tool_result) * fix(seahorse): correct 3 adapter bugs in context management - TokenCount: use full message (Content+ToolCalls+Media) instead of Content-only - Empty Content: rebuild Content from tool_result Parts when stored empty - Duplicate summaries: summaries only in Summary field, not in History messages - Grep: fix SearchResult.Snippet→Content for summaries - Schema: fix FTS5 SQL uses VIRTUAL TABLE not TEMP TABLE - TestFTS5SQLConstants: verify FTS5 SQL syntax correctness - Test: fix flaky TestCompactLeaf * fix(agent): ingest steering messages into seahorse SQLite Steering messages were only persisted to session JSONL but not ingested into seahorse SQLite, causing them to be missing from context assembly. Added `ts.ingestMessage(turnCtx, al, pm)` call in the steering message injection block alongside the existing JSONL persistence. Test: TestSeahorseSteeringMessageIngested verifies steering messages appear in seahorse SQLite DB after being processed. * fix(seahorse): address 3 blocking bugs from code review - Fix resequenceContextItemsTx scan error handling (store.go:850) Changed `return err` to `return scanErr` to properly propagate scan errors instead of returning nil (which silently corrupts data) - Fix sql.NullString for INTEGER column (store.go:847) Changed `mid` from sql.NullString to sql.NullInt64 since message_id is INTEGER in schema. Removed unnecessary strconv.ParseInt call. - Fix compactCondensed fallback deleting non-candidate items Added ReplaceContextItemsWithSummary method for per-item deletion when candidates are not contiguous in ordinal space. Optimized to use range deletion when candidates are consecutive. * fix(seahorse): pass Budget to Compact for correct condensed threshold Issue #4 from PR review: When Budget was not passed to seahorse.Compact, it defaulted to `tokensBefore * 0.75`, making `tokensBefore > budget` always true and causing condensed compaction to trigger unnecessarily. Changes: - context_seahorse.go: Forward Budget from CompactRequest to CompactInput - loop.go: Pass Budget (ContextWindow) in all 3 Compact calls - Add test verifying condensed is skipped when tokens < threshold - Fix lint issues in store.go and store_test.go * fix(seahorse): add mutex for assembler lazy initialization Issue #5 from PR review: The check-then-create pattern for e.assembler was a data race when multiple goroutines called Assemble() concurrently: if e.assembler == nil { e.assembler = &Assembler{...} } Changes: - Add assemblerMu sync.Mutex to Engine struct - Add initAssemblerOnce() using double-checked locking (same pattern as initCompactionOnce) - Add TestAssemblerLazyInitRace to verify thread-safety * fix(seahorse): handle non-consecutive depths in selectShallowestCondensationCandidate Issue #8 from PR review: the loop iterated depth 0, 1, 2... assuming consecutive keys, but break when key was missing caused deeper depths to never be checked. Fix: collect all existing depth keys, sort, then iterate in order. * fix(seahorse): wrap DeleteMessagesAfterID and appendContextItems in transactions - DeleteMessagesAfterID: wrap all DELETE operations in a transaction for atomicity, remove redundant manual FTS delete (handled by trigger) - appendContextItems: use transaction to fix read-then-write race condition - Add GetMaxOrdinalTx and resolveItemTokenCountTx for transaction-scoped queries - Remove unused resolveItemTokenCount function Fixes PR review issues 6 and 7. * fix(seahorse): derive readable content from Parts and cap CompactUntilUnder iterations - Derive readable content from MessageParts in AddMessageWithParts so FTS5 indexing and summary formatting can access tool call information - formatMessagesForSummary and truncateSummary now fall back to Parts when Content is empty, fixing blank summaries for Part-based messages - Add MaxCompactIterations (20) to prevent CompactUntilUnder infinite loops; exceeded iterations are logged as warnings
488 lines
13 KiB
Go
488 lines
13 KiB
Go
package memory
|
|
|
|
import (
|
|
"bufio"
|
|
"bytes"
|
|
"context"
|
|
"encoding/json"
|
|
"fmt"
|
|
"hash/fnv"
|
|
"log"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/sipeed/picoclaw/pkg/fileutil"
|
|
"github.com/sipeed/picoclaw/pkg/providers"
|
|
)
|
|
|
|
const (
|
|
// numLockShards is the fixed number of mutexes used to serialize
|
|
// per-session access. Using a sharded array instead of a map keeps
|
|
// memory bounded regardless of how many sessions are created over
|
|
// the lifetime of the process — important for a long-running daemon.
|
|
numLockShards = 64
|
|
|
|
// maxLineSize is the maximum size of a single JSON line in a .jsonl
|
|
// file. Tool results (read_file, web search, etc.) can be large, so
|
|
// we set a generous limit. The scanner starts at 64 KB and grows
|
|
// only as needed up to this cap.
|
|
maxLineSize = 10 * 1024 * 1024 // 10 MB
|
|
)
|
|
|
|
// sessionMeta holds per-session metadata stored in a .meta.json file.
|
|
type sessionMeta struct {
|
|
Key string `json:"key"`
|
|
Summary string `json:"summary"`
|
|
Skip int `json:"skip"`
|
|
Count int `json:"count"`
|
|
CreatedAt time.Time `json:"created_at"`
|
|
UpdatedAt time.Time `json:"updated_at"`
|
|
}
|
|
|
|
// JSONLStore implements Store using append-only JSONL files.
|
|
//
|
|
// Each session is stored as two files:
|
|
//
|
|
// {sanitized_key}.jsonl — one JSON-encoded message per line, append-only
|
|
// {sanitized_key}.meta.json — session metadata (summary, logical truncation offset)
|
|
//
|
|
// Messages are never physically deleted from the JSONL file. Instead,
|
|
// TruncateHistory records a "skip" offset in the metadata file and
|
|
// GetHistory ignores lines before that offset. This keeps all writes
|
|
// append-only, which is both fast and crash-safe.
|
|
type JSONLStore struct {
|
|
dir string
|
|
locks [numLockShards]sync.Mutex
|
|
}
|
|
|
|
// NewJSONLStore creates a new JSONL-backed store rooted at dir.
|
|
func NewJSONLStore(dir string) (*JSONLStore, error) {
|
|
err := os.MkdirAll(dir, 0o755)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("memory: create directory: %w", err)
|
|
}
|
|
return &JSONLStore{dir: dir}, nil
|
|
}
|
|
|
|
// sessionLock returns a mutex for the given session key.
|
|
// Keys are mapped to a fixed pool of shards via FNV hash, so
|
|
// memory usage is O(1) regardless of total session count.
|
|
func (s *JSONLStore) sessionLock(key string) *sync.Mutex {
|
|
h := fnv.New32a()
|
|
h.Write([]byte(key))
|
|
return &s.locks[h.Sum32()%numLockShards]
|
|
}
|
|
|
|
func (s *JSONLStore) jsonlPath(key string) string {
|
|
return filepath.Join(s.dir, sanitizeKey(key)+".jsonl")
|
|
}
|
|
|
|
func (s *JSONLStore) metaPath(key string) string {
|
|
return filepath.Join(s.dir, sanitizeKey(key)+".meta.json")
|
|
}
|
|
|
|
// sanitizeKey converts a session key to a safe filename component.
|
|
// Mirrors pkg/session.sanitizeFilename so that migration paths match.
|
|
// Replaces ':' with '_' (session key separator) and '/' and '\' with '_'
|
|
// so composite IDs (e.g. Telegram forum "chatID/threadID", Slack "channel/thread_ts")
|
|
// do not create subdirectories or break on Windows.
|
|
func sanitizeKey(key string) string {
|
|
s := strings.ReplaceAll(key, ":", "_")
|
|
s = strings.ReplaceAll(s, "/", "_")
|
|
s = strings.ReplaceAll(s, "\\", "_")
|
|
return s
|
|
}
|
|
|
|
// readMeta loads the metadata file for a session.
|
|
// Returns a zero-value sessionMeta if the file does not exist.
|
|
func (s *JSONLStore) readMeta(key string) (sessionMeta, error) {
|
|
data, err := os.ReadFile(s.metaPath(key))
|
|
if os.IsNotExist(err) {
|
|
return sessionMeta{Key: key}, nil
|
|
}
|
|
if err != nil {
|
|
return sessionMeta{}, fmt.Errorf("memory: read meta: %w", err)
|
|
}
|
|
var meta sessionMeta
|
|
err = json.Unmarshal(data, &meta)
|
|
if err != nil {
|
|
return sessionMeta{}, fmt.Errorf("memory: decode meta: %w", err)
|
|
}
|
|
return meta, nil
|
|
}
|
|
|
|
// writeMeta atomically writes the metadata file using the project's
|
|
// standard WriteFileAtomic (temp + fsync + rename).
|
|
func (s *JSONLStore) writeMeta(key string, meta sessionMeta) error {
|
|
data, err := json.MarshalIndent(meta, "", " ")
|
|
if err != nil {
|
|
return fmt.Errorf("memory: encode meta: %w", err)
|
|
}
|
|
return fileutil.WriteFileAtomic(s.metaPath(key), data, 0o644)
|
|
}
|
|
|
|
// readMessages reads valid JSON lines from a .jsonl file, skipping
|
|
// the first `skip` lines without unmarshaling them. This avoids the
|
|
// cost of json.Unmarshal on logically truncated messages.
|
|
// Malformed trailing lines (e.g. from a crash) are silently skipped.
|
|
func readMessages(path string, skip int) ([]providers.Message, error) {
|
|
f, err := os.Open(path)
|
|
if os.IsNotExist(err) {
|
|
return []providers.Message{}, nil
|
|
}
|
|
if err != nil {
|
|
return nil, fmt.Errorf("memory: open jsonl: %w", err)
|
|
}
|
|
defer f.Close()
|
|
|
|
var msgs []providers.Message
|
|
scanner := bufio.NewScanner(f)
|
|
// Allow large lines for tool results (read_file, web search, etc.).
|
|
scanner.Buffer(make([]byte, 0, 64*1024), maxLineSize)
|
|
|
|
lineNum := 0
|
|
for scanner.Scan() {
|
|
line := scanner.Bytes()
|
|
if len(line) == 0 {
|
|
continue
|
|
}
|
|
lineNum++
|
|
if lineNum <= skip {
|
|
continue
|
|
}
|
|
var msg providers.Message
|
|
if err := json.Unmarshal(line, &msg); err != nil {
|
|
// Corrupt line — likely a partial write from a crash.
|
|
// Log so operators know data was skipped, but don't
|
|
// fail the entire read; this is the standard JSONL
|
|
// recovery pattern.
|
|
log.Printf("memory: skipping corrupt line %d in %s: %v",
|
|
lineNum, filepath.Base(path), err)
|
|
continue
|
|
}
|
|
msgs = append(msgs, msg)
|
|
}
|
|
if scanner.Err() != nil {
|
|
return nil, fmt.Errorf("memory: scan jsonl: %w", scanner.Err())
|
|
}
|
|
|
|
if msgs == nil {
|
|
msgs = []providers.Message{}
|
|
}
|
|
return msgs, nil
|
|
}
|
|
|
|
// countLines counts the total number of non-empty lines in a .jsonl file.
|
|
// Used by TruncateHistory to reconcile a stale meta.Count without
|
|
// the overhead of unmarshaling every message.
|
|
func countLines(path string) (int, error) {
|
|
f, err := os.Open(path)
|
|
if os.IsNotExist(err) {
|
|
return 0, nil
|
|
}
|
|
if err != nil {
|
|
return 0, fmt.Errorf("memory: open jsonl: %w", err)
|
|
}
|
|
defer f.Close()
|
|
|
|
n := 0
|
|
scanner := bufio.NewScanner(f)
|
|
scanner.Buffer(make([]byte, 0, 64*1024), maxLineSize)
|
|
for scanner.Scan() {
|
|
if len(scanner.Bytes()) > 0 {
|
|
n++
|
|
}
|
|
}
|
|
return n, scanner.Err()
|
|
}
|
|
|
|
func (s *JSONLStore) AddMessage(
|
|
_ context.Context, sessionKey, role, content string,
|
|
) error {
|
|
return s.addMsg(sessionKey, providers.Message{
|
|
Role: role,
|
|
Content: content,
|
|
})
|
|
}
|
|
|
|
func (s *JSONLStore) AddFullMessage(
|
|
_ context.Context, sessionKey string, msg providers.Message,
|
|
) error {
|
|
return s.addMsg(sessionKey, msg)
|
|
}
|
|
|
|
// addMsg is the shared implementation for AddMessage and AddFullMessage.
|
|
func (s *JSONLStore) addMsg(sessionKey string, msg providers.Message) error {
|
|
l := s.sessionLock(sessionKey)
|
|
l.Lock()
|
|
defer l.Unlock()
|
|
|
|
// Append the message as a single JSON line.
|
|
line, err := json.Marshal(msg)
|
|
if err != nil {
|
|
return fmt.Errorf("memory: marshal message: %w", err)
|
|
}
|
|
line = append(line, '\n')
|
|
|
|
f, err := os.OpenFile(
|
|
s.jsonlPath(sessionKey),
|
|
os.O_CREATE|os.O_WRONLY|os.O_APPEND,
|
|
0o644,
|
|
)
|
|
if err != nil {
|
|
return fmt.Errorf("memory: open jsonl for append: %w", err)
|
|
}
|
|
_, writeErr := f.Write(line)
|
|
if writeErr != nil {
|
|
f.Close()
|
|
return fmt.Errorf("memory: append message: %w", writeErr)
|
|
}
|
|
// Flush to physical storage before closing. This matches the
|
|
// durability guarantee of writeMeta and rewriteJSONL (which use
|
|
// WriteFileAtomic with fsync). Without Sync, a power loss could
|
|
// leave the append in the kernel page cache only — lost on reboot.
|
|
if syncErr := f.Sync(); syncErr != nil {
|
|
f.Close()
|
|
return fmt.Errorf("memory: sync jsonl: %w", syncErr)
|
|
}
|
|
if closeErr := f.Close(); closeErr != nil {
|
|
return fmt.Errorf("memory: close jsonl: %w", closeErr)
|
|
}
|
|
|
|
// Update metadata.
|
|
meta, err := s.readMeta(sessionKey)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
now := time.Now()
|
|
if meta.Count == 0 && meta.CreatedAt.IsZero() {
|
|
meta.CreatedAt = now
|
|
}
|
|
meta.Count++
|
|
meta.UpdatedAt = now
|
|
|
|
return s.writeMeta(sessionKey, meta)
|
|
}
|
|
|
|
func (s *JSONLStore) GetHistory(
|
|
_ context.Context, sessionKey string,
|
|
) ([]providers.Message, error) {
|
|
l := s.sessionLock(sessionKey)
|
|
l.Lock()
|
|
defer l.Unlock()
|
|
|
|
meta, err := s.readMeta(sessionKey)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// Pass meta.Skip so readMessages skips those lines without
|
|
// unmarshaling them — avoids wasted CPU on truncated messages.
|
|
msgs, err := readMessages(s.jsonlPath(sessionKey), meta.Skip)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return msgs, nil
|
|
}
|
|
|
|
func (s *JSONLStore) GetSummary(
|
|
_ context.Context, sessionKey string,
|
|
) (string, error) {
|
|
l := s.sessionLock(sessionKey)
|
|
l.Lock()
|
|
defer l.Unlock()
|
|
|
|
meta, err := s.readMeta(sessionKey)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return meta.Summary, nil
|
|
}
|
|
|
|
func (s *JSONLStore) SetSummary(
|
|
_ context.Context, sessionKey, summary string,
|
|
) error {
|
|
l := s.sessionLock(sessionKey)
|
|
l.Lock()
|
|
defer l.Unlock()
|
|
|
|
meta, err := s.readMeta(sessionKey)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
now := time.Now()
|
|
if meta.CreatedAt.IsZero() {
|
|
meta.CreatedAt = now
|
|
}
|
|
meta.Summary = summary
|
|
meta.UpdatedAt = now
|
|
|
|
return s.writeMeta(sessionKey, meta)
|
|
}
|
|
|
|
func (s *JSONLStore) TruncateHistory(
|
|
_ context.Context, sessionKey string, keepLast int,
|
|
) error {
|
|
l := s.sessionLock(sessionKey)
|
|
l.Lock()
|
|
defer l.Unlock()
|
|
|
|
meta, err := s.readMeta(sessionKey)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// Always reconcile meta.Count with the actual line count on disk.
|
|
// A crash between the JSONL append and the meta update in addMsg
|
|
// leaves meta.Count stale (e.g. file has 101 lines but meta says
|
|
// 100). Counting lines is cheap — no unmarshal, just a scan — and
|
|
// TruncateHistory is not a hot path, so always re-count.
|
|
n, countErr := countLines(s.jsonlPath(sessionKey))
|
|
if countErr != nil {
|
|
return countErr
|
|
}
|
|
meta.Count = n
|
|
|
|
if keepLast <= 0 {
|
|
meta.Skip = meta.Count
|
|
} else {
|
|
effective := meta.Count - meta.Skip
|
|
if keepLast < effective {
|
|
meta.Skip = meta.Count - keepLast
|
|
}
|
|
}
|
|
meta.UpdatedAt = time.Now()
|
|
|
|
return s.writeMeta(sessionKey, meta)
|
|
}
|
|
|
|
func (s *JSONLStore) SetHistory(
|
|
_ context.Context,
|
|
sessionKey string,
|
|
history []providers.Message,
|
|
) error {
|
|
l := s.sessionLock(sessionKey)
|
|
l.Lock()
|
|
defer l.Unlock()
|
|
|
|
meta, err := s.readMeta(sessionKey)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
now := time.Now()
|
|
if meta.CreatedAt.IsZero() {
|
|
meta.CreatedAt = now
|
|
}
|
|
meta.Skip = 0
|
|
meta.Count = len(history)
|
|
meta.UpdatedAt = now
|
|
|
|
// Write meta BEFORE rewriting the JSONL file. If we crash between
|
|
// the two writes, meta has Skip=0 and the old file is still intact,
|
|
// so GetHistory reads from line 1 — returning "too many" messages
|
|
// rather than losing data. The next SetHistory call corrects this.
|
|
err = s.writeMeta(sessionKey, meta)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
return s.rewriteJSONL(sessionKey, history)
|
|
}
|
|
|
|
// Compact physically rewrites the JSONL file, dropping all logically
|
|
// skipped lines. This reclaims disk space that accumulates after
|
|
// repeated TruncateHistory calls.
|
|
//
|
|
// It is safe to call at any time; if there is nothing to compact
|
|
// (skip == 0) the method returns immediately.
|
|
func (s *JSONLStore) Compact(
|
|
_ context.Context, sessionKey string,
|
|
) error {
|
|
l := s.sessionLock(sessionKey)
|
|
l.Lock()
|
|
defer l.Unlock()
|
|
|
|
meta, err := s.readMeta(sessionKey)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if meta.Skip == 0 {
|
|
return nil
|
|
}
|
|
|
|
// Read only the active messages, skipping truncated lines
|
|
// without unmarshaling them.
|
|
active, err := readMessages(s.jsonlPath(sessionKey), meta.Skip)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// Write meta BEFORE rewriting the JSONL file. If the process
|
|
// crashes between the two writes, meta has Skip=0 and the old
|
|
// (uncompacted) file is still intact, so GetHistory reads from
|
|
// line 1 — returning previously-truncated messages rather than
|
|
// losing data. The next Compact or TruncateHistory corrects this.
|
|
meta.Skip = 0
|
|
meta.Count = len(active)
|
|
meta.UpdatedAt = time.Now()
|
|
|
|
err = s.writeMeta(sessionKey, meta)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
return s.rewriteJSONL(sessionKey, active)
|
|
}
|
|
|
|
// rewriteJSONL atomically replaces the JSONL file with the given messages
|
|
// using the project's standard WriteFileAtomic (temp + fsync + rename).
|
|
func (s *JSONLStore) rewriteJSONL(
|
|
sessionKey string, msgs []providers.Message,
|
|
) error {
|
|
var buf bytes.Buffer
|
|
for i, msg := range msgs {
|
|
line, err := json.Marshal(msg)
|
|
if err != nil {
|
|
return fmt.Errorf("memory: marshal message %d: %w", i, err)
|
|
}
|
|
buf.Write(line)
|
|
buf.WriteByte('\n')
|
|
}
|
|
return fileutil.WriteFileAtomic(s.jsonlPath(sessionKey), buf.Bytes(), 0o644)
|
|
}
|
|
|
|
// ListSessions returns all known session keys by reading .meta.json files.
|
|
func (s *JSONLStore) ListSessions() []string {
|
|
entries, err := os.ReadDir(s.dir)
|
|
if err != nil {
|
|
return nil
|
|
}
|
|
var keys []string
|
|
for _, entry := range entries {
|
|
if entry.IsDir() || !strings.HasSuffix(entry.Name(), ".meta.json") {
|
|
continue
|
|
}
|
|
// Read the meta file to get the original key
|
|
data, err := os.ReadFile(filepath.Join(s.dir, entry.Name()))
|
|
if err != nil {
|
|
continue
|
|
}
|
|
var meta sessionMeta
|
|
if err := json.Unmarshal(data, &meta); err != nil {
|
|
continue
|
|
}
|
|
if meta.Key != "" {
|
|
keys = append(keys, meta.Key)
|
|
}
|
|
}
|
|
return keys
|
|
}
|
|
|
|
func (s *JSONLStore) Close() error {
|
|
return nil
|
|
}
|