o PL j1 @sdZddlZddlZddlZddlZddlZddlmZddlm Z m Z ddl m Z ddl Z eeZehdZd@de d ed efd d ZdAded ed efddZded dfddZdeddd dfddZde eefde eefd efddZddde eefde ded e d df d!d"Zdddd#de eefde d$ed%ed&edBd df d'd(Zde eefd)ede d dfd*d+ZdBd,ed e d e fd-d.ZdCd/ed ed efd0d1Zd@d/ed ed efd2d3Z d4Z!d5edBd edBfd6d7Z"dDd8d9Z#d:ed efd;d<Z$d:ed=ed efd>d?Z%dS)Ez*Shared utility functions for hermes-agent.N)Path)AnyUnion)urlparse>1onyestrueFvaluedefaultreturncCs<|dur|St|tr |St|tr|tvSt|S)zDCoerce bool-ish values using the project's shared truthy string set.N) isinstanceboolstrstriplowerTRUTHY_STRINGS)r r r)/home/kuhnn/.hermes/hermes-agent/utils.pyis_truthy_values  rnamecCstt||ddS)zBReturn True when an environment variable is set to a truthy value.Fr rosgetenv)rr rrrenv_var_enabledrpathz int | NonecCs6z|rt|jWSdWStyYdSw)zBCapture the permission bits of *path* if it exists, else ``None``.N)existsstatS_IMODEst_modeOSError)rrrr_preserve_file_mode$s   r$modecCs4|durdSz t||WdStyYdSw)aRe-apply *mode* to *path* after an atomic replace. ``tempfile.mkstemp`` creates files with 0o600 (owner-only). After ``os.replace`` swaps the temp file into place the target inherits those restrictive permissions, breaking Docker / NAS volume mounts that rely on broader permissions set by the user. Calling this right after ``os.replace`` restores the original permissions. N)rchmodr#)rr%rrr_restore_file_mode,s  r'tmp_pathtargetcCs8t|}tj|rtj|n|}tt|||S)u9Atomically move *tmp_path* onto *target*, preserving symlinks. ``os.replace(tmp, target)`` atomically swaps ``tmp`` into place at ``target``. When ``target`` is a symlink, the symlink itself is replaced with a regular file — silently detaching managed deployments that symlink ``config.yaml`` / ``SOUL.md`` / ``auth.json`` etc. from ``~/.hermes/`` to a git-tracked profile package or dotfiles repo (GitHub #16743). This helper resolves the symlink first so ``os.replace`` writes to the real file in-place while the symlink survives. For non-symlink and non-existent paths the behavior is identical to a plain ``os.replace`` call. Returns the resolved real path used for the replace, so callers that need to re-apply permissions can target it instead of the symlink. )rrrislinkrealpathreplace)r(r) target_str real_pathrrratomic_replace=sr/)indentdatar1 dump_kwargsc Kst|}|jjdddt|}tjt|jd|jddd\}}z=tj |ddd  }t j ||f|d d || t |Wd n1sNwYt||}t||Wd Stywzt|WtyvYww) aWrite JSON data to a file atomically. Uses temp file + fsync + os.replace to ensure the target file is never left in a partially-written state. If the process crashes mid-write, the previous version of the file remains intact. Args: path: Target file path (will be created or overwritten). data: JSON-serializable data to write. indent: JSON indentation (default 2). **dump_kwargs: Additional keyword args forwarded to json.dump(), such as default=str for non-native types. Tparentsexist_ok._.tmpdirprefixsuffixwutf-8encodingF)r1 ensure_asciiN)rparentmkdirr$tempfilemkstemprstemrfdopenjsondumpflushfsyncfilenor/r' BaseExceptionunlinkr#) rr2r1r3 original_modefdr(fr.rrratomic_json_writeUsB      rS)default_flow_style sort_keys extra_contentrTrUrVc Cst|}|jjdddt|}tjt|jd|jddd\}}z@tj |ddd #}t j ||||d |r<| || t|Wd n1sQwYt||} t| |Wd Styzzt|WtyyYww) anWrite YAML data to a file atomically. Uses temp file + fsync + os.replace to ensure the target file is never left in a partially-written state. If the process crashes mid-write, the previous version of the file remains intact. Args: path: Target file path (will be created or overwritten). data: YAML-serializable data to write. default_flow_style: YAML flow style (default False). sort_keys: Whether to sort dict keys (default False). extra_content: Optional string to append after the YAML dump (e.g. commented-out sections for user reference). Tr4r7r8r9r:r>r?r@)rTrUN)rrCrDr$rErFrrGrrHyamlrJwriterKrLrMr/r'rNrOr#) rr2rTrUrVrPrQr(rRr.rrratomic_yaml_writes6       rYkey_pathc Csddlm}ddlm}t|}|jjddd|dd}d|_d|_d|_ |j d d d d | rR|j d d d}| |pA|}Wdn1sLwYn|}t||s^||}|}|d} | ddD]} || } t| |s~|} | || <| }qk||| d<t|} tjt|jd|jddd\} }z6tj| dd d}||||t|Wdn1swYt||}t|| WdStyzt|Wt yYww)a_Update one dotted YAML key while preserving comments and readable text. This is intentionally narrower than :func:`atomic_yaml_write`: it is for user-edited config files where comments, ordering, quoting, and Unicode should survive a single setting mutation. Writes still use the same temp file + fsync + atomic replace pattern. r)YAML) CommentedMapTr4rt)typFr0)mappingsequenceoffsetrr?r@Nr7r8r9r:r>)! ruamel.yamlr[ruamel.yaml.commentsr\rrCrDpreserve_quotes allow_unicoderTr1ropenloadr splitgetr$rErFrrGrrHrJrKrLrMr/r'rNrOr#)rrZr r[r\yaml_rtrRconfigcurrentkeyskey next_valuerPrQr(r.rrratomic_roundtrip_yaml_updatesb              rstextc Cs,zt|WStjttfy|YSw)zParse JSON, returning *default* on any parse error. Replaces the ``try: json.loads(x) except (JSONDecodeError, TypeError)`` pattern duplicated across display.py, anthropic_adapter.py, auxiliary_client.py, and others. )rIloadsJSONDecodeError TypeError ValueError)rtr rrrsafe_json_loadss  ryrqc Cs>t|d}|s |Szt|WSttfy|YSw)z:Read an environment variable as an integer, with fallback.r)rrrintrxrw)rqr rawrrrenv_ints r|cCstt|d|dS)z*Read an environment variable as a boolean.rrr)rqr rrrenv_boolrr}) HTTPS_PROXY HTTP_PROXY ALL_PROXY https_proxy http_proxy all_proxy proxy_urlcCs@t|pd}|s dS|drd|tddS|S)zNormalize proxy URLs for httpx/aiohttp compatibility. WSL/Clash-style environments often export SOCKS proxies as ``socks://127.0.0.1:PORT``. httpx rejects that alias and expects the explicit ``socks5://`` scheme instead. rNzsocks://z socks5://)rrr startswithlen)r candidaterrrnormalize_proxy_url+s rcCs8tD]}t|d}t|}|r||kr|tj|<qdS)zARewrite supported proxy env vars to canonical URL forms in-place.rN)_PROXY_ENV_KEYSrrrenviron)rqr normalizedrrrnormalize_proxy_env_vars:s   rbase_urlcCsB|pd}|s dStd|vr|nd|}|jpddS)aReturn the lowercased hostname for a base URL, or ``""`` if absent. Use exact-hostname comparisons against known provider hosts (``api.openai.com``, ``api.x.ai``, ``api.anthropic.com``) instead of substring matches on the raw URL. Substring checks treat attacker- or proxy-controlled paths/hosts like ``https://api.openai.com.example/v1`` or ``https://proxy.test/api.openai.com/v1`` as native endpoints, which leads to wrong api_mode / auth routing. rz://z//r7)rrhostnamerrstrip)rr{parsedrrrbase_url_hostnameFs rdomaincCsDt|}|sdS|p dd}|sdS||kp!|d|S)acReturn True when the base URL's hostname is ``domain`` or a subdomain. Safer counterpart to ``domain in base_url``, which is the substring false-positive class documented on ``base_url_hostname``. Accepts bare hosts, full URLs, and URLs with paths. base_url_host_matches("https://api.moonshot.ai/v1", "moonshot.ai") == True base_url_host_matches("https://moonshot.ai", "moonshot.ai") == True base_url_host_matches("https://evil.com/moonshot.ai/v1", "moonshot.ai") == False base_url_host_matches("https://moonshot.ai.evil/v1", "moonshot.ai") == False Frr7)rrrrendswith)rrrrrrbase_url_host_matchesWs r)F)r)N)r)r N)&__doc__rIloggingrr rEpathlibrtypingrr urllib.parserrW getLogger__name__logger frozensetrrrrrr$r'r/rzrSrYrsryr|r}rrrrrrrrrs|     &  :  4  C