shishantbiswas/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2026-06-02 20:48:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
82752844bc96c68ca5f8f9ca251a95c1aec624cc
coder/agent/x/agentmcp/manager.go
T
Mathias Fredriksson 82752844bc fix: isolate MCP HTTP transports from DefaultTransport in tests (#25821) 
Use testing.Testing() inside createTransport to automatically
clone http.DefaultTransport when running in tests. In production,
DefaultTransport is used as-is (efficient connection pooling).

This fixes the CloseIdleConnections flake class: httptest.Server.Close()
calls http.DefaultTransport.CloseIdleConnections(), which disrupts
any MCP client sharing that transport. The testing.Testing() check
means every MCP transport created during tests gets isolation
automatically, with no caller changes needed.

Closes coder/internal#1016
Closes PLAT-291
2026-06-01 16:17:29 +03:00

1097 lines
31 KiB
Go
Raw Blame History

package agentmcp
import (
"context"
"errors"
"fmt"
"io/fs"
"maps"
"os"
"os/exec"
"reflect"
"slices"
"strings"
"sync"
"time"
"github.com/mark3labs/mcp-go/client"
"github.com/mark3labs/mcp-go/client/transport"
"github.com/mark3labs/mcp-go/mcp"
"golang.org/x/sync/errgroup"
"golang.org/x/xerrors"
tailscalesingleflight "tailscale.com/util/singleflight"
"cdr.dev/slog/v3"
"github.com/coder/coder/v2/agent/agentchat"
"github.com/coder/coder/v2/agent/agentexec"
"github.com/coder/coder/v2/agent/usershell"
"github.com/coder/coder/v2/buildinfo"
"github.com/coder/coder/v2/codersdk/workspacesdk"
"github.com/coder/quartz"
)
// ToolNameSep separates the server name from the original tool name
// in prefixed tool names. Double underscore avoids collisions with
// tool names that may contain single underscores.
const ToolNameSep = "__"
// connectTimeout bounds how long we wait for a single MCP server
// to start its transport and complete initialization.
const connectTimeout = 30 * time.Second
// toolCallTimeout bounds how long a single tool invocation may
// take before being canceled.
const toolCallTimeout = 60 * time.Second
// toolsReloadTimeout bounds how long Tools waits for a
// post-startup reload to settle.
const toolsReloadTimeout = 35 * time.Second
var (
// ErrInvalidToolName is returned when the tool name format
// is not "server__tool".
ErrInvalidToolName = xerrors.New("invalid tool name format")
// ErrUnknownServer is returned when no MCP server matches
// the prefix in the tool name.
ErrUnknownServer = xerrors.New("unknown MCP server")
// ErrManagerClosed is returned by Reload and Tools after
// Close. Close cancels the Manager's derived context, so this
// sentinel keeps explicit Close distinguishable from parent
// context cancellation.
ErrManagerClosed = xerrors.New("manager closed")
)
// fileSnapshot records the identity of a config file at the time
// it was last read.
type fileSnapshot struct {
exists bool
modTime time.Time
size int64
}
type reloadResult = tailscalesingleflight.Result[struct{}]
// Manager manages connections to MCP servers discovered from a
// workspace's .mcp.json file. It caches the aggregated tool list
// and proxies tool calls to the appropriate server.
type Manager struct {
ctx context.Context
cancel context.CancelFunc
execer agentexec.Execer
updateEnv func(current []string) ([]string, error)
mu sync.RWMutex
logger slog.Logger
clock quartz.Clock
closed bool
servers map[string]*serverEntry
tools []workspacesdk.MCPToolInfo
snapshot map[string]fileSnapshot
serverGen uint64
sf tailscalesingleflight.Group[string, struct{}]
// startupSettled is closed once startup scripts reach a terminal
// state. Before that, missing MCP config files are unknown
// because startup scripts may still create them.
startupSettled chan struct{}
startupOnce sync.Once
// firstSyncSettled records that a reload body reached a
// terminal result, successful or not. It gates whether callers
// may receive cached tools after reload errors.
firstSyncSettled bool
// closedCh is closed by Close to unblock waiters that do not
// otherwise observe Close (the parent ctx is owned by the
// caller and may outlive Close).
closedCh chan struct{}
closeOnce sync.Once
// lastPaths records the most recent config paths passed to
// Reload/Tools. The fsnotify-backed watcher uses these to
// drive its own reloads when ~/.mcp.json appears late on
// dual-agent workspaces.
lastPaths []string
// watcher fires a debounced Reload when any watched config
// file is created, written, removed, or renamed. It is armed
// lazily on the first Reload call so tests that never call
// Reload do not pay for an extra goroutine and file
// descriptor.
watcher *configWatcher
watcherOnce sync.Once
watchDebounce time.Duration
// connectStartedHook is a test hook invoked at the start of
// connectAll, before any client is dialed. Production code
// leaves this nil; tests set it to coordinate with an
// in-flight reload (for example, to verify Close()'s
// shutdown ordering does not stall on a stuck connect).
connectStartedHook func()
}
// serverEntry pairs a server config with its connected client.
type serverEntry struct {
config ServerConfig
client *client.Client
}
// NewManager creates a new MCP client manager. The ctx bounds
// subprocess lifetime. The execer applies resource limits to
// MCP server subprocesses. The updateEnv callback enriches the
// subprocess environment to match interactive sessions.
func NewManager(
ctx context.Context,
logger slog.Logger,
execer agentexec.Execer,
updateEnv func([]string) ([]string, error),
) *Manager {
managerCtx, cancel := context.WithCancel(ctx)
return &Manager{
ctx: managerCtx,
cancel: cancel,
logger: logger,
clock: quartz.NewReal(),
execer: execer,
updateEnv: updateEnv,
servers: make(map[string]*serverEntry),
snapshot: make(map[string]fileSnapshot),
startupSettled: make(chan struct{}),
closedCh: make(chan struct{}),
watchDebounce: defaultWatchDebounce,
}
}
// Reload ensures the tool cache reflects the current config.
//
// If config files differ from the last snapshot, a singleflight
// differential reconnect is driven and Reload waits for it. If the
// snapshot is current, Reload returns immediately.
//
// Starting and running the reload is manager-scoped. Caller contexts
// may bound only that caller's wait for the reload result. They are
// never passed to, and must not suppress, the reload body.
func (m *Manager) Reload(ctx context.Context, paths []string) error {
ch, started, err := m.startReloadIfNeeded(paths)
if err != nil {
return err
}
if !started {
return nil
}
return m.waitReload(ctx, ch, 0)
}
// MarkStartupSettled marks startup scripts as terminal for MCP
// config purposes. Missing config files after this point are a real
// empty config, not an unknown startup state.
func (m *Manager) MarkStartupSettled() {
m.startupOnce.Do(func() { close(m.startupSettled) })
}
// Tools returns the current MCP tool cache after startup-safe config
// synchronization.
//
// Before startup has settled via MarkStartupSettled, Tools blocks until
// settlement or ctx cancels. After settlement, it drives a config reload
// bounded by toolsReloadTimeout.
//
// On error before the first sync settles, Tools returns nil tools and
// the error. On error after a prior sync, it returns cached tools and
// the error so callers can degrade gracefully.
func (m *Manager) Tools(ctx context.Context, paths []string) ([]workspacesdk.MCPToolInfo, error) {
if err := m.waitForStartupSettled(ctx); err != nil {
return nil, err
}
ch, started, err := m.startReloadIfNeeded(paths)
if err != nil {
return m.toolsAfterReloadError(err)
}
if !started {
return normalizeTools(m.cachedTools()), nil
}
if err := m.waitReload(ctx, ch, toolsReloadTimeout); err != nil {
return m.toolsAfterReloadError(err)
}
return normalizeTools(m.cachedTools()), nil
}
func (m *Manager) waitForStartupSettled(ctx context.Context) error {
select {
case <-m.startupSettled:
return nil
default:
}
select {
case <-m.startupSettled:
return nil
case <-ctx.Done():
return ctx.Err()
case <-m.ctx.Done():
if err := m.closeErr(); err != nil {
return err
}
return m.ctx.Err()
case <-m.closedCh:
return ErrManagerClosed
}
}
func (m *Manager) toolsAfterReloadError(err error) ([]workspacesdk.MCPToolInfo, error) {
m.mu.RLock()
firstSyncSettled := m.firstSyncSettled
tools := slices.Clone(m.tools)
m.mu.RUnlock()
if !firstSyncSettled {
return nil, err
}
return normalizeTools(tools), err
}
func normalizeTools(tools []workspacesdk.MCPToolInfo) []workspacesdk.MCPToolInfo {
if tools == nil {
return []workspacesdk.MCPToolInfo{}
}
return tools
}
// startReloadIfNeeded registers the reload with the singleflight group
// using a fixed key so concurrent triggers share one body. The body
// always runs under m.ctx. The returned channel yields the body's result
// exactly once.
//
// All concurrent callers share one in-flight reload keyed by "reload".
// If a concurrent caller resolves different paths, its paths are not
// consulted. The next SnapshotChanged check after this reload completes
// will detect the mismatch and trigger a fresh reload.
func (m *Manager) startReloadIfNeeded(paths []string) (<-chan reloadResult, bool, error) {
m.mu.RLock()
closed := m.closed
firstSyncSettled := m.firstSyncSettled
m.mu.RUnlock()
if closed {
return nil, false, ErrManagerClosed
}
if err := m.ctx.Err(); err != nil {
if closeErr := m.closeErr(); closeErr != nil {
return nil, false, closeErr
}
return nil, false, err
}
// Arm the fsnotify watcher before deciding whether to short
// circuit. The first call lazily creates it; subsequent calls
// re-sync the watched path set if it changed. Arming before
// the SnapshotChanged check ensures any Create event that
// races with parseAndDedup is still delivered: the watcher
// is running when parseAndDedup returns the empty snapshot.
m.armWatcher(paths)
if firstSyncSettled && !m.SnapshotChanged(paths) {
return nil, false, nil
}
ch := m.sf.DoChan("reload", func() (struct{}, error) {
defer m.markFirstSyncSettled()
err := m.doReload(m.ctx, paths)
return struct{}{}, err
})
return ch, true, nil
}
// armWatcher lazily initializes the fsnotify-backed configWatcher
// and syncs it to the latest config paths. Lazy initialization
// keeps unit tests that never call Reload free of extra goroutines
// and file descriptors.
//
// If the underlying watcher cannot be created (e.g. inotify limit
// reached), the error is logged once and the manager continues
// without a watcher. The lazy stat-on-request path remains the
// primary mechanism; the watcher is an optimization that closes
// the dual-agent race window.
func (m *Manager) armWatcher(paths []string) {
m.watcherOnce.Do(func() {
cw, err := newConfigWatcher(
m.logger.Named("config_watcher"),
m.clock,
m.watchDebounce,
m.handleWatchedConfigChange,
)
if err != nil {
m.logger.Warn(m.ctx,
"failed to start MCP config watcher; falling back to lazy stat",
slog.Error(err))
return
}
// Close the watcher if the manager was closed between
// newConfigWatcher returning and us acquiring m.mu.
// Otherwise its goroutine and inotify fd leak.
m.mu.Lock()
if m.closed {
m.mu.Unlock()
_ = cw.Close()
return
}
m.watcher = cw
m.mu.Unlock()
})
m.mu.Lock()
m.lastPaths = slices.Clone(paths)
w := m.watcher
closed := m.closed
m.mu.Unlock()
if w == nil || closed {
return
}
w.Sync(paths)
}
// handleWatchedConfigChange is invoked by the watcher on a
// debounced fire. It triggers a singleflight Reload using the
// most recently observed path set so the cached server map and
// snapshot are refreshed without waiting for the next HTTP
// request.
func (m *Manager) handleWatchedConfigChange() {
m.mu.RLock()
paths := slices.Clone(m.lastPaths)
closed := m.closed
m.mu.RUnlock()
if closed || len(paths) == 0 {
return
}
logger := m.logger.With(slog.F("trigger", "fsnotify"))
logger.Debug(m.ctx, "reloading due to config change")
if err := m.Reload(m.ctx, paths); err != nil {
if errors.Is(err, ErrManagerClosed) ||
errors.Is(err, context.Canceled) {
logger.Debug(m.ctx,
"watched reload short-circuited by shutdown",
slog.Error(err))
return
}
logger.Warn(m.ctx, "watched reload failed", slog.Error(err))
}
}
func (m *Manager) waitReload(ctx context.Context, ch <-chan reloadResult, timeout time.Duration) error {
// Prefer caller cancellation when it already happened before the
// wait. Otherwise select may choose a ready reload result instead.
if err := ctx.Err(); err != nil {
return err
}
var timeoutC <-chan time.Time
if timeout > 0 {
timer := m.clock.NewTimer(timeout, "agentmcp", "tools_reload")
defer timer.Stop()
timeoutC = timer.C
}
select {
case res := <-ch:
return res.Err
case <-ctx.Done():
return ctx.Err()
case <-timeoutC:
return xerrors.Errorf("tools reload timed out after %s: %w", timeout, context.DeadlineExceeded)
case <-m.ctx.Done():
if err := m.closeErr(); err != nil {
return err
}
return m.ctx.Err()
case <-m.closedCh:
return ErrManagerClosed
}
}
func (m *Manager) closeErr() error {
m.mu.RLock()
closed := m.closed
m.mu.RUnlock()
if closed {
return ErrManagerClosed
}
return nil
}
func (m *Manager) markFirstSyncSettled() {
m.mu.Lock()
m.firstSyncSettled = true
m.mu.Unlock()
}
// SnapshotChanged checks whether any config file has changed
// since the last reload by comparing os.Stat results against
// the stored snapshot.
func (m *Manager) SnapshotChanged(paths []string) bool {
seen := make(map[string]struct{}, len(paths))
unique := make([]string, 0, len(paths))
for _, p := range paths {
if _, ok := seen[p]; !ok {
seen[p] = struct{}{}
unique = append(unique, p)
}
}
paths = unique
m.mu.RLock()
snap := maps.Clone(m.snapshot)
snapshotLen := len(snap)
m.mu.RUnlock()
if len(paths) != snapshotLen {
return true
}
for _, p := range paths {
prev, ok := snap[p]
if !ok {
return true
}
info, err := os.Stat(p)
if err != nil {
// Stat failed; changed only if the file existed before.
if prev.exists {
return true
}
continue
}
// Stat succeeded but file was absent before: it appeared.
if !prev.exists {
return true
}
if !info.ModTime().Equal(prev.modTime) || info.Size() != prev.size {
return true
}
}
return false
}
// serverDiff is the output of classifyServers: which servers to
// connect, which to close, which to keep, and a snapshot of the
// previous map for fallback on connect failure.
type serverDiff struct {
toConnect []ServerConfig
toClose []*serverEntry
keep map[string]*serverEntry
prev map[string]*serverEntry
}
type connectedServer struct {
name string
config ServerConfig
client *client.Client
}
// doReload reads MCP config files and performs a differential
// reconnect. Unchanged servers keep their existing client; new or
// changed servers get a fresh connection; removed servers are
// closed.
func (m *Manager) doReload(ctx context.Context, mcpConfigFiles []string) error {
allConfigs, snap := m.parseAndDedup(ctx, mcpConfigFiles)
wanted := make(map[string]ServerConfig, len(allConfigs))
for _, cfg := range allConfigs {
wanted[cfg.Name] = cfg
}
diff, err := m.classifyServers(wanted)
if err != nil {
return err
}
connected := m.connectAll(ctx, diff.toConnect)
replaced, err := m.installServers(wanted, diff, connected, snap)
if err != nil {
return err
}
// Close removed and replaced servers outside the lock to
// avoid leaking child processes and to avoid blocking
// concurrent readers on subprocess I/O.
// Note: a concurrent CallTool that captured a removed
// entry's client before the swap may call a closed client.
// This is a narrow race that self-heals on the next request.
for _, entry := range diff.toClose {
_ = entry.client.Close()
}
for _, entry := range replaced {
_ = entry.client.Close()
}
// Refresh tools outside the lock to avoid blocking
// concurrent reads during network I/O.
if err := m.RefreshTools(ctx); err != nil {
logger := m.logger.With(agentchat.Fields(ctx)...)
logger.Warn(ctx, "failed to refresh MCP tools after connect", slog.Error(err))
}
return nil
}
// parseAndDedup reads all config files and returns a deduplicated
// list of server configs. Missing files are silently skipped;
// parse errors are logged and skipped.
func (m *Manager) parseAndDedup(ctx context.Context, mcpConfigFiles []string) ([]ServerConfig, map[string]fileSnapshot) {
logger := m.logger.With(agentchat.Fields(ctx)...)
// Stat before reading so the snapshot is conservatively old.
// If a file changes between stat and read, the snapshot
// records the old mtime, SnapshotChanged detects a mismatch
// on the next check, and triggers a re-read. False positives
// (extra reload) are safe; false negatives (missed change)
// are not.
snap := captureSnapshot(mcpConfigFiles)
var allConfigs []ServerConfig
for _, configPath := range mcpConfigFiles {
configs, err := ParseConfig(configPath)
if err != nil {
if errors.Is(err, fs.ErrNotExist) {
continue
}
logger.Warn(ctx, "failed to parse MCP config",
slog.F("path", configPath),
slog.Error(err),
)
continue
}
allConfigs = append(allConfigs, configs...)
}
// Deduplicate by server name; first occurrence wins.
seen := make(map[string]struct{})
deduped := make([]ServerConfig, 0, len(allConfigs))
for _, cfg := range allConfigs {
if _, ok := seen[cfg.Name]; ok {
continue
}
seen[cfg.Name] = struct{}{}
deduped = append(deduped, cfg)
}
return deduped, snap
}
// classifyServers compares wanted configs against the current
// server map and returns a diff describing what changed.
// Acquires and releases m.mu for reading.
func (m *Manager) classifyServers(wanted map[string]ServerConfig) (*serverDiff, error) {
m.mu.RLock()
defer m.mu.RUnlock()
if m.closed {
return nil, ErrManagerClosed
}
diff := &serverDiff{
keep: make(map[string]*serverEntry),
}
for name, wantCfg := range wanted {
if existing, ok := m.servers[name]; ok {
if reflect.DeepEqual(existing.config, wantCfg) {
diff.keep[name] = existing
} else {
diff.toConnect = append(diff.toConnect, wantCfg)
}
} else {
diff.toConnect = append(diff.toConnect, wantCfg)
}
}
for name, entry := range m.servers {
if _, ok := wanted[name]; !ok {
diff.toClose = append(diff.toClose, entry)
}
}
diff.prev = maps.Clone(m.servers)
return diff, nil
}
// connectAll runs connectServer in parallel for the given configs.
// Failed connects are logged and skipped.
func (m *Manager) connectAll(ctx context.Context, toConnect []ServerConfig) []connectedServer {
logger := m.logger.With(agentchat.Fields(ctx)...)
if hook := m.connectStartedHook; hook != nil {
hook()
}
var (
mu sync.Mutex
connected []connectedServer
)
var eg errgroup.Group
for _, cfg := range toConnect {
eg.Go(func() error {
c, err := m.connectServer(ctx, cfg)
if err != nil {
logger.Warn(ctx, "skipping MCP server",
slog.F("server", cfg.Name),
slog.F("transport", cfg.Transport),
slog.Error(err),
)
return nil // Don't fail the group.
}
mu.Lock()
connected = append(connected, connectedServer{
name: cfg.Name, config: cfg, client: c,
})
mu.Unlock()
return nil
})
}
_ = eg.Wait()
return connected
}
// installServers builds the new server map from diff.keep and the
// connected list, falling back to diff.prev when a connect failed.
// Returns old entries replaced by successful connects (caller
// closes them). Acquires and releases m.mu.
func (m *Manager) installServers(
wanted map[string]ServerConfig,
diff *serverDiff,
connected []connectedServer,
snap map[string]fileSnapshot,
) ([]*serverEntry, error) {
m.mu.Lock()
defer m.mu.Unlock()
if m.closed {
for _, cs := range connected {
_ = cs.client.Close()
}
return nil, ErrManagerClosed
}
newConnected := make(map[string]connectedServer, len(connected))
for _, cs := range connected {
newConnected[cs.name] = cs
}
newServers := make(map[string]*serverEntry, len(wanted))
for name, entry := range diff.keep {
newServers[name] = entry
}
var replaced []*serverEntry
for name, wantCfg := range wanted {
if _, kept := diff.keep[name]; kept {
continue
}
if cs, ok := newConnected[wantCfg.Name]; ok {
newServers[wantCfg.Name] = &serverEntry{
config: cs.config,
client: cs.client,
}
if prev, existed := diff.prev[wantCfg.Name]; existed {
replaced = append(replaced, prev)
}
} else if prev, existed := diff.prev[wantCfg.Name]; existed {
// Connect failed; retain the old client.
newServers[wantCfg.Name] = prev
}
}
m.servers = newServers
m.serverGen++
m.snapshot = snap
return replaced, nil
}
// captureSnapshot stats each path and returns the current
// snapshot map.
func captureSnapshot(paths []string) map[string]fileSnapshot {
snap := make(map[string]fileSnapshot, len(paths))
for _, p := range paths {
info, err := os.Stat(p)
if err != nil {
snap[p] = fileSnapshot{exists: false}
continue
}
snap[p] = fileSnapshot{
exists: true,
modTime: info.ModTime(),
size: info.Size(),
}
}
return snap
}
// cachedTools returns the cached tool list. Thread-safe.
func (m *Manager) cachedTools() []workspacesdk.MCPToolInfo {
m.mu.RLock()
defer m.mu.RUnlock()
return slices.Clone(m.tools)
}
// CallTool proxies a tool call to the appropriate MCP server.
func (m *Manager) CallTool(ctx context.Context, req workspacesdk.CallMCPToolRequest) (workspacesdk.CallMCPToolResponse, error) {
serverName, originalName, err := splitToolName(req.ToolName)
if err != nil {
return workspacesdk.CallMCPToolResponse{}, err
}
m.mu.RLock()
entry, ok := m.servers[serverName]
m.mu.RUnlock()
if !ok {
return workspacesdk.CallMCPToolResponse{}, xerrors.Errorf("%w: %q", ErrUnknownServer, serverName)
}
callCtx, cancel := context.WithTimeout(ctx, toolCallTimeout)
defer cancel()
result, err := entry.client.CallTool(callCtx, mcp.CallToolRequest{
Params: mcp.CallToolParams{
Name: originalName,
Arguments: req.Arguments,
},
})
if err != nil {
return workspacesdk.CallMCPToolResponse{}, xerrors.Errorf("call tool %q on %q: %w", originalName, serverName, err)
}
return convertResult(result), nil
}
// RefreshTools re-fetches tool lists from all connected servers
// in parallel and rebuilds the cache. On partial failure, tools
// from servers that responded successfully are merged with the
// existing cached tools for servers that failed, so a single
// dead server doesn't block updates from healthy ones.
func (m *Manager) RefreshTools(ctx context.Context) error {
logger := m.logger.With(agentchat.Fields(ctx)...)
// Snapshot servers under read lock.
m.mu.RLock()
servers := make(map[string]*serverEntry, len(m.servers))
for k, v := range m.servers {
servers[k] = v
}
gen := m.serverGen
m.mu.RUnlock()
// Fetch tool lists in parallel without holding any lock.
type serverTools struct {
name string
tools []workspacesdk.MCPToolInfo
}
var (
mu sync.Mutex
results []serverTools
failed []string
errs []error
)
var eg errgroup.Group
for name, entry := range servers {
eg.Go(func() error {
listCtx, cancel := context.WithTimeout(ctx, connectTimeout)
result, err := entry.client.ListTools(listCtx, mcp.ListToolsRequest{})
cancel()
if err != nil {
logger.Warn(ctx, "failed to list tools from MCP server",
slog.F("server", name),
slog.Error(err),
)
mu.Lock()
errs = append(errs, xerrors.Errorf("list tools from %q: %w", name, err))
failed = append(failed, name)
mu.Unlock()
return nil
}
var tools []workspacesdk.MCPToolInfo
for _, tool := range result.Tools {
tools = append(tools, workspacesdk.MCPToolInfo{
ServerName: name,
Name: name + ToolNameSep + tool.Name,
Description: tool.Description,
Schema: tool.InputSchema.Properties,
Required: tool.InputSchema.Required,
})
}
mu.Lock()
results = append(results, serverTools{name: name, tools: tools})
mu.Unlock()
return nil
})
}
_ = eg.Wait()
// Build the new tool list. For servers that failed, preserve
// their tools from the existing cache so a single dead server
// doesn't remove healthy tools.
var merged []workspacesdk.MCPToolInfo
for _, st := range results {
merged = append(merged, st.tools...)
}
if len(failed) > 0 {
failedSet := make(map[string]struct{}, len(failed))
for _, f := range failed {
failedSet[f] = struct{}{}
}
m.mu.RLock()
for _, t := range m.tools {
if _, ok := failedSet[t.ServerName]; ok {
merged = append(merged, t)
}
}
m.mu.RUnlock()
}
slices.SortFunc(merged, func(a, b workspacesdk.MCPToolInfo) int {
return strings.Compare(a.Name, b.Name)
})
m.mu.Lock()
// Skip the write if the server map changed since the
// snapshot. A doReload that bumped the generation will
// produce a correct tool list; this write would be stale.
if m.serverGen == gen {
m.tools = merged
}
m.mu.Unlock()
return errors.Join(errs...)
}
// Close terminates all MCP server connections and child
// processes, stops the config file watcher, and waits for any
// in-flight watcher-driven reload to complete.
func (m *Manager) Close() error {
// Mark the manager closed and signal closedCh first, then
// hand the watcher off and release the lock. Marking closed
// before w.Close() ensures that any in-flight
// handleWatchedConfigChange short-circuits and any Reload
// blocked in waitReload observes m.closedCh, instead of
// blocking firesWG.Wait() inside w.Close() until a 30 s
// connectAll times out.
m.mu.Lock()
m.closed = true
m.closeOnce.Do(func() { close(m.closedCh) })
w := m.watcher
m.watcher = nil
m.mu.Unlock()
// Close the watcher outside the manager lock. Its goroutine
// may call handleWatchedConfigChange, which takes m.mu, so
// holding m.mu while waiting for the watcher to drain would
// deadlock. Close on a nil watcher is a no-op.
if w != nil {
_ = w.Close()
}
m.mu.Lock()
defer m.mu.Unlock()
var errs []error
for _, entry := range m.servers {
if err := entry.client.Close(); err != nil {
// Subprocess kill signals are expected during shutdown.
// The stdio transport returns cmd.Wait() which surfaces
// "signal: killed" as an exec.ExitError.
var exitErr *exec.ExitError
if !errors.As(err, &exitErr) {
errs = append(errs, err)
}
}
}
m.servers = make(map[string]*serverEntry)
// Prevent an in-flight RefreshTools from repopulating tools
// after Close clears the cache.
m.serverGen++
m.tools = nil
// Cancel while holding the lock so waiters that observe
// m.ctx.Done also observe m.closed when checking closeErr.
m.cancel()
return errors.Join(errs...)
}
// connectServer establishes a connection to a single MCP server
// and returns the connected client. It does not modify any Manager
// state.
func (m *Manager) connectServer(ctx context.Context, cfg ServerConfig) (*client.Client, error) {
tr, err := m.createTransport(ctx, cfg)
if err != nil {
return nil, xerrors.Errorf("create transport for %q: %w", cfg.Name, err)
}
c := client.NewClient(tr)
connectCtx, cancel := context.WithTimeout(ctx, connectTimeout)
defer cancel()
// Use the parent ctx (not connectCtx) so the subprocess outlives
// the connect/initialize handshake. connectCtx bounds only the
// Initialize call below. The subprocess is cleaned up when the
// Manager is closed or ctx is canceled.
if err := c.Start(ctx); err != nil {
_ = c.Close()
return nil, xerrors.Errorf("start %q: %w", cfg.Name, err)
}
_, err = c.Initialize(connectCtx, mcp.InitializeRequest{
Params: mcp.InitializeParams{
ProtocolVersion: mcp.LATEST_PROTOCOL_VERSION,
ClientInfo: mcp.Implementation{
Name: "coder-agent",
Version: buildinfo.Version(),
},
},
})
if err != nil {
_ = c.Close()
return nil, xerrors.Errorf("initialize %q: %w", cfg.Name, err)
}
return c, nil
}
// createTransport builds the mcp-go transport for a server config.
func (m *Manager) createTransport(ctx context.Context, cfg ServerConfig) (transport.Interface, error) {
switch cfg.Transport {
case "stdio":
env := m.buildEnv(ctx, cfg.Env)
return transport.NewStdioWithOptions(
cfg.Command,
env,
cfg.Args,
transport.WithCommandFunc(func(ctx context.Context, command string, cmdEnv []string, args []string) (*exec.Cmd, error) {
cmd := m.execer.CommandContext(ctx, command, args...)
cmd.Env = cmdEnv
return cmd, nil
}),
), nil
case "http", "":
var opts []transport.StreamableHTTPCOption
opts = append(opts, transport.WithHTTPHeaders(cfg.Headers))
if c := mcpHTTPClient(); c != nil {
opts = append(opts, transport.WithHTTPBasicClient(c))
}
return transport.NewStreamableHTTP(cfg.URL, opts...)
case "sse":
var sseOpts []transport.ClientOption
sseOpts = append(sseOpts, transport.WithHeaders(cfg.Headers))
if c := mcpHTTPClient(); c != nil {
sseOpts = append(sseOpts, transport.WithHTTPClient(c))
}
return transport.NewSSE(cfg.URL, sseOpts...)
default:
return nil, xerrors.Errorf("unsupported transport %q", cfg.Transport)
}
}
// buildEnv enriches the process environment via the agent's
// updateEnv callback, then merges explicit overrides from the
// server config on top.
func (m *Manager) buildEnv(ctx context.Context, explicit map[string]string) []string {
logger := m.logger.With(agentchat.Fields(ctx)...)
env := usershell.SystemEnvInfo{}.Environ()
if m.updateEnv != nil {
var err error
env, err = m.updateEnv(env)
if err != nil {
logger.Warn(ctx, "failed to enrich MCP server environment",
slog.Error(err),
)
env = usershell.SystemEnvInfo{}.Environ()
}
}
if len(explicit) == 0 {
return env
}
// Index existing env so explicit keys can override in-place.
existing := make(map[string]int, len(env))
for i, kv := range env {
if k, _, ok := strings.Cut(kv, "="); ok {
existing[k] = i
}
}
for k, v := range explicit {
entry := k + "=" + v
if idx, ok := existing[k]; ok {
env[idx] = entry
} else {
env = append(env, entry)
}
}
return env
}
// splitToolName extracts the server name and original tool name
// from a prefixed tool name like "server__tool".
func splitToolName(prefixed string) (serverName, toolName string, err error) {
server, tool, ok := strings.Cut(prefixed, ToolNameSep)
if !ok || server == "" || tool == "" {
return "", "", xerrors.Errorf("%w: expected format \"server%stool\", got %q", ErrInvalidToolName, ToolNameSep, prefixed)
}
return server, tool, nil
}
// convertResult translates an MCP CallToolResult into a
// workspacesdk.CallMCPToolResponse. It iterates over content
// items and maps each recognized type.
func convertResult(result *mcp.CallToolResult) workspacesdk.CallMCPToolResponse {
if result == nil {
return workspacesdk.CallMCPToolResponse{}
}
var content []workspacesdk.MCPToolContent
for _, item := range result.Content {
switch c := item.(type) {
case mcp.TextContent:
content = append(content, workspacesdk.MCPToolContent{
Type: "text",
Text: c.Text,
})
case mcp.ImageContent:
content = append(content, workspacesdk.MCPToolContent{
Type: "image",
Data: c.Data,
MediaType: c.MIMEType,
})
case mcp.AudioContent:
content = append(content, workspacesdk.MCPToolContent{
Type: "audio",
Data: c.Data,
MediaType: c.MIMEType,
})
case mcp.EmbeddedResource:
content = append(content, workspacesdk.MCPToolContent{
Type: "resource",
Text: fmt.Sprintf("[embedded resource: %T]", c.Resource),
})
case mcp.ResourceLink:
content = append(content, workspacesdk.MCPToolContent{
Type: "resource",
Text: fmt.Sprintf("[resource link: %s]", c.URI),
})
default:
content = append(content, workspacesdk.MCPToolContent{
Type: "text",
Text: fmt.Sprintf("[unsupported content type: %T]", item),
})
}
}
return workspacesdk.CallMCPToolResponse{
Content: content,
IsError: result.IsError,
}
}
Reference in New Issue View Git Blame Copy Permalink