Pass filesystem into apply_patch interceptor

2026-04-24 06:35:50 +00:00 · 2026-04-07 11:17:15 -07:00
parent e56d29ed91
commit 1b42b4a9ca
3 changed files with 61 additions and 55 deletions
--- a/codex-rs/core/src/tools/handlers/apply_patch.rs
+++ b/codex-rs/core/src/tools/handlers/apply_patch.rs
@@ -23,6 +23,7 @@ use crate::tools::runtimes::apply_patch::ApplyPatchRuntime;
 use crate::tools::sandboxing::ToolCtx;
 use codex_apply_patch::ApplyPatchAction;
 use codex_apply_patch::ApplyPatchFileChange;
+use codex_exec_server::ExecutorFileSystem;
 use codex_protocol::models::FileSystemPermissions;
 use codex_protocol::models::PermissionProfile;
 use codex_sandboxing::policy_transforms::effective_file_system_sandbox_policy;
@@ -264,6 +265,7 @@ impl ToolHandler for ApplyPatchHandler {
 pub(crate) async fn intercept_apply_patch(
    command: &[String],
    cwd: &AbsolutePathBuf,
+    fs: &dyn ExecutorFileSystem,
    timeout_ms: Option<u64>,
    session: Arc<Session>,
    turn: Arc<TurnContext>,
@@ -271,11 +273,7 @@ pub(crate) async fn intercept_apply_patch(
    call_id: &str,
    tool_name: &str,
 ) -> Result<Option<FunctionToolOutput>, FunctionCallError> {
-    let Some(environment) = turn.environment.as_ref() else {
-        return Ok(None);
-    };
-    let fs = environment.get_filesystem();
-    match codex_apply_patch::maybe_parse_apply_patch_verified(command, cwd, fs.as_ref()).await {
+    match codex_apply_patch::maybe_parse_apply_patch_verified(command, cwd, fs).await {
        codex_apply_patch::MaybeApplyPatchVerified::Body(changes) => {
            session
                .record_model_warning(
--- a/codex-rs/core/src/tools/handlers/shell.rs
+++ b/codex-rs/core/src/tools/handlers/shell.rs
@@ -459,25 +459,29 @@ impl ShellHandler {
        }

        // Intercept apply_patch if present.
-        let apply_patch_cwd =
-            AbsolutePathBuf::from_absolute_path(&exec_params.cwd).map_err(|err| {
-                FunctionCallError::RespondToModel(format!(
-                    "apply_patch verification failed: failed to resolve cwd: {err}"
-                ))
-            })?;
-        if let Some(output) = intercept_apply_patch(
-            &exec_params.command,
-            &apply_patch_cwd,
-            exec_params.expiration.timeout_ms(),
-            session.clone(),
-            turn.clone(),
-            Some(&tracker),
-            &call_id,
-            tool_name.as_str(),
-        )
-        .await?
-        {
-            return Ok(output);
+        if let Some(environment) = turn.environment.as_ref() {
+            let apply_patch_cwd =
+                AbsolutePathBuf::from_absolute_path(&exec_params.cwd).map_err(|err| {
+                    FunctionCallError::RespondToModel(format!(
+                        "apply_patch verification failed: failed to resolve cwd: {err}"
+                    ))
+                })?;
+            let fs = environment.get_filesystem();
+            if let Some(output) = intercept_apply_patch(
+                &exec_params.command,
+                &apply_patch_cwd,
+                fs.as_ref(),
+                exec_params.expiration.timeout_ms(),
+                session.clone(),
+                turn.clone(),
+                Some(&tracker),
+                &call_id,
+                tool_name.as_str(),
+            )
+            .await?
+            {
+                return Ok(output);
+            }
        }

        let source = ExecCommandSource::Agent;
--- a/codex-rs/core/src/tools/handlers/unified_exec.rs
+++ b/codex-rs/core/src/tools/handlers/unified_exec.rs
@@ -275,39 +275,43 @@ impl ToolHandler for UnifiedExecHandler {
                    }
                };

-                let apply_patch_cwd = match AbsolutePathBuf::from_absolute_path(&cwd) {
-                    Ok(cwd) => cwd,
-                    Err(err) => {
+                if let Some(environment) = context.turn.environment.as_ref() {
+                    let apply_patch_cwd = match AbsolutePathBuf::from_absolute_path(&cwd) {
+                        Ok(cwd) => cwd,
+                        Err(err) => {
+                            manager.release_process_id(process_id).await;
+                            return Err(FunctionCallError::RespondToModel(format!(
+                                "apply_patch verification failed: failed to resolve cwd: {err}"
+                            )));
+                        }
+                    };
+                    let fs = environment.get_filesystem();
+                    if let Some(output) = intercept_apply_patch(
+                        &command,
+                        &apply_patch_cwd,
+                        fs.as_ref(),
+                        Some(yield_time_ms),
+                        context.session.clone(),
+                        context.turn.clone(),
+                        Some(&tracker),
+                        &context.call_id,
+                        tool_name.as_str(),
+                    )
+                    .await?
+                    {
                        manager.release_process_id(process_id).await;
-                        return Err(FunctionCallError::RespondToModel(format!(
-                            "apply_patch verification failed: failed to resolve cwd: {err}"
-                        )));
+                        return Ok(ExecCommandToolOutput {
+                            event_call_id: String::new(),
+                            chunk_id: String::new(),
+                            wall_time: std::time::Duration::ZERO,
+                            raw_output: output.into_text().into_bytes(),
+                            max_output_tokens: None,
+                            process_id: None,
+                            exit_code: None,
+                            original_token_count: None,
+                            session_command: None,
+                        });
                    }
-                };
-                if let Some(output) = intercept_apply_patch(
-                    &command,
-                    &apply_patch_cwd,
-                    Some(yield_time_ms),
-                    context.session.clone(),
-                    context.turn.clone(),
-                    Some(&tracker),
-                    &context.call_id,
-                    tool_name.as_str(),
-                )
-                .await?
-                {
-                    manager.release_process_id(process_id).await;
-                    return Ok(ExecCommandToolOutput {
-                        event_call_id: String::new(),
-                        chunk_id: String::new(),
-                        wall_time: std::time::Duration::ZERO,
-                        raw_output: output.into_text().into_bytes(),
-                        max_output_tokens: None,
-                        process_id: None,
-                        exit_code: None,
-                        original_token_count: None,
-                        session_command: None,
-                    });
                }

                emit_unified_exec_tty_metric(&turn.session_telemetry, tty);