rayhpeng
229c8095be
``get_thread_history`` and ``get_thread_state`` in Gateway mode read
messages from ``checkpoint.channel_values["messages"]``. After
SummarizationMiddleware runs mid-run, that list is rewritten in-place:
pre-summarize messages are dropped and a synthetic summary-as-human
message takes position 0. The frontend then renders a chat history that
starts with ``"Here is a summary of the conversation to date:..."``
instead of the user's original query, and all earlier turns are gone.
The event store (``RunEventStore``) is append-only and never rewritten,
so it retains the full transcript. This commit adds a helper
``_get_event_store_messages`` that loads the event store's message
stream and overrides ``values["messages"]`` in both endpoints; the
checkpoint fallback kicks in only when the event store is unavailable.
Behavior contract of the helper:
- **Full pagination.** ``list_messages`` returns the newest ``limit``
records when no cursor is given, so a fixed limit silently drops
older messages on long threads. The helper sizes the read from
``count_messages()`` and pages forward with ``after_seq`` cursors.
- **Copy-on-read.** Each content dict is copied before ``id`` is
patched so the live store object (``MemoryRunEventStore`` returns
references) is never mutated.
- **Stable ids.** Messages with ``id=None`` (human + tool_result,
which don't receive an id until checkpoint persistence) get a
deterministic ``uuid5(NAMESPACE_URL, f"{thread_id}:{seq}")`` so
React keys stay stable across requests. AI messages keep their
LLM-assigned ``lc_run--*`` ids.
- **Legacy ``Command`` repr sanitization.** Rows captured before the
``journal.py`` ``on_tool_end`` fix (previous commit) stored
``str(Command(update={'messages': [ToolMessage(content='X', ...)]}))``
as the tool_result content. ``_sanitize_legacy_command_repr``
regex-extracts the inner text so old threads render cleanly.
- **Inline feedback.** When loading the stream, the helper also pulls
``feedback_repo.list_by_thread_grouped`` and attaches ``run_id`` to
every message plus ``feedback`` to the final ``ai_message`` of each
run. This removes the frontend's need to fetch a second endpoint
and positional-index-map its way back to the right run. When the
feedback subsystem is unavailable, the ``feedback`` field is left
absent entirely so the frontend hides the button rather than
rendering it over a broken write path.
- **User context.** ``DbRunEventStore`` is user-scoped by default via
``resolve_user_id(AUTO)``. The helper relies on the ``@require_permission``
decorator having populated the user contextvar on both callers; the
docstring documents this dependency explicitly so nobody wires it
into a CLI or migration script without passing ``user_id=None``.
Real data verification against thread
``6d30913e-dcd4-41c8-8941-f66c716cf359``: checkpoint showed 12 messages
(summarize-corrupted), event store had 16. The original human message
``"最新伊美局势"`` was preserved as seq=1 in the event store and
correctly restored to position 0 in the helper output. Helper output
for AI messages was byte-identical to checkpoint for every overlapping
message; only tool_result ids differed (patched to uuid5) and the
legacy Command repr at seq=48 was sanitized.
Tests:
- ``test_thread_state_event_store.py`` — 18 tests covering
``_sanitize_legacy_command_repr`` (passthrough, single/double-quote
extraction, unparseable fallback), helper happy path (all message
types, stable uuid5, store non-mutation), multi-page pagination,
summarize regression (recovers pre-summarize messages), feedback
attachment (per-run, multi-run threads, repo failure graceful),
and dependency failure fallback to ``None``.
Docs:
- ``docs/superpowers/plans/2026-04-10-event-store-history.md`` — the
implementation plan this commit realizes, with Task 1 revised after
the evaluation findings (pagination, copy-on-read, Command wrap
already landed in journal.py, frontend feedback pagination in the
follow-up commit, Standard-mode follow-up noted).
- ``docs/superpowers/specs/2026-04-11-runjournal-history-evaluation.md``
— the Claude + second-opinion evaluation document that drove the
plan revisions (pagination bug, dict-mutation bug, feedback hidden
bug, Command bug).
- ``docs/superpowers/specs/2026-04-11-summarize-marker-design.md`` —
design for a follow-up PR that visually marks summarize events in
history, based on a verified ``adispatch_custom_event`` experiment
(``trace=False`` middleware nodes can still forward the Pregel task
config via explicit signature injection).
Scope: Gateway mode only (``make dev-pro``). Standard mode
(``make dev``) hits LangGraph Server directly and bypasses these
endpoints; the summarize symptom is still present there and is
tracked as a separate follow-up in the plan.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
10 KiB
10 KiB
RunJournal 替换 History Messages — 方案评估与对比
日期:2026-04-11
分支:rayhpeng/fix-persistence-new
相关 plan:docs/superpowers/plans/2026-04-10-event-store-history.md(尚未落地)
1. 问题与数据核对
症状:SummarizationMiddleware 触发后,前端历史中无法展示 summarize 之前的真实用户消息。
复现数据(thread 6d30913e-dcd4-41c8-8941-f66c716cf359):
| 数据源 | seq=1 的 message | 总 message 数 | 是否保留原始 human |
|---|---|---|---|
run_events(SQLite) |
human "最新伊美局势" |
9(1 human + 7 ai_tool_call + 9 tool_result + 1 ai_message) | ✅ |
/history 响应(docs/resp.json) |
type=human,content="Here is a summary of the conversation to date:…" |
不定 | ❌(已被 summary 替换) |
根因:backend/app/gateway/routers/threads.py:587-589 的 get_thread_history 从 checkpoint.channel_values["messages"] 读取,而 LangGraph 的 SummarizationMiddleware 会原地改写这个列表。
2. 候选方案
| 方案 | 描述 | 本次是否推荐 |
|---|---|---|
| A. event_store 覆盖 messages(已有 plan) | /history、/state 改读 RunEventStore.list_messages(),覆盖 channel_values["messages"];其它字段保持 checkpoint 来源 |
✅ 主方案 |
| B. 修 SummarizationMiddleware | 让 summarize 不原地替换 messages(作为附加 system message) | ❌ 违背 summarize 的 token 预算初衷 |
| C. 双读合并(checkpoint + event_store diff) | 合并 summarize 切点前后的两段 | ❌ 合并逻辑复杂无额外收益 |
D. 切到现有 /api/threads/{id}/messages 端点 |
前端直接消费已经存在的 event-store 消息端点(thread_runs.py:285-323) |
⚠️ 更干净但需要前端改动 |
3. Claude 自评 vs Codex 独立评估
两方独立分析了同一份 plan。重合点基本一致,但 Codex 发现了一个我遗漏的关键 bug。
3.1 一致结论
| 维度 | 结论 |
|---|---|
| 正确性方向 | event_store 是 append-only + 不受 summarize 影响,方向正确 |
| ID 补齐 | uuid5(NAMESPACE_URL, f"{thread_id}:{seq}") 稳定且确定性,安全 |
| 前端 schema | 零改动 |
| Non-message 字段(artifacts/todos/title/thread_data) | summarize 只影响 messages,不需要覆盖其它字段 |
| 多 checkpoint 语义 | 前端 useStream 只取 limit: 1(frontend/src/core/threads/hooks.ts:203-210),不做时间旅行;latest-only 可接受但应在注释/文档写清楚 |
| 作用域 | 仅 Gateway mode;Standard mode 直连 LangGraph Server,bug 在默认部署路径仍然存在 |
3.2 Claude 的独立观察
- 已验证数据对齐:plan 文档第 15-28 行的真实数据对齐表与本次
run_events导出一致(9 条消息 id 分布:AI 来自 LLMlc_run--*、human/tool 为 None)。 - 担心
run_end/run_error/cancel路径未必都 flush —— 这一点 Codex 实际核查了代码并给出确定结论(见下)。 - 方案 A 的单文件改动约 60 行,复杂度小。
3.3 Codex 的关键补充(Claude 遗漏)
Bug #1 — Plan 用
limit=1000并非全量RunEventStore.list_messages()的语义是"返回最新 limit 条"(base.py:51-65、db.py:151-181)。对于消息数超过 1000 的长对话,plan 当前写法会丢掉最早的消息,再次引入"消息丢失"bug(只是换了丢失的段)。
Bug #2 — helper 就地修改了 store 的 dict plan 的 helper 里对
content原地写id;MemoryRunEventStore返回的是活引用,会污染 store 中的对象。应 deep-copy 或 dict 推导出新对象。
Flush 路径已核查:
RunJournal在 threshold (journal.py:360-373)、run_end(91-96)、run_error(97-106)、workerfinally(worker.py:280-286) 都会 flush;CancelledError也走 finally。正常 end/error/cancel 都 flush,仅硬 kill / 进程崩溃会丢缓冲区。 因此flush_threshold 20 → 5的意义仅在于硬崩溃窗口与 mid-run reload 可见性,不是正确性修复,属于可选 tuning。代价是更多 put_batch / SQLite churn;且_flush_sync()(383-398) 已防止并发 flush,所以"每 5 条一 flush"是 best-effort 非严格保证。
3.4 Codex 未否决但提示的次要点
- 方案 D(消费现有
/api/threads/{id}/messages端点)更干净但需前端改动。 /history一旦被方案 A 改过,就不再是严格意义上的"按 checkpoint 快照"API(对 messages 字段),应写进注释和 API 文档。- Standard mode 的 summarize bug 应建立独立 follow-up issue。
4. 最终合并判决
Codex:APPROVE-WITH-CHANGES Claude:同意 Codex 的判决
合并前必须修改(Top 3)
- 修复分页 bug:不能用固定
limit=1000。必须用以下之一:count = await event_store.count_messages(thread_id),再list_messages(thread_id, limit=count)- 或循环 cursor 分页(
after_seq)直到耗尽
- 不要原地修改 store dict:helper 对
content的 id 补齐需要 copy(dict(content)浅拷贝足够,因为只写 top-levelid) - Standard mode 显式 follow-up:在 plan 文末加 "Standard-mode follow-up: TODO #xxx",或在合并 PR 描述中明确这是 Gateway-only 止血
可选(非阻塞)
flush_threshold 20 → 5降级为"可选 tuning",不是修复的一部分;或独立一条 commit 并说明只对硬崩溃窗口有用get_thread_history新增注释,说明 messages 字段脱离了 checkpoint 快照语义- 测试覆盖:模拟 summarize 后的 checkpoint + 真实 event_store,端到端验证
/history返回包含原始 human 消息
5. 推荐执行顺序
- 按本文档 §4 修订
docs/superpowers/plans/2026-04-10-event-store-history.md(主要是 Task 1 的 helper 实现 + 分页) - 按修订后的 plan 执行(走
superpowers:executing-plans) - 合并后立即建 Standard mode follow-up issue
6. Feedback 影响分析(2026-04-11 补充)
6.1 数据模型
feedback 表(persistence/feedback/model.py):
| 字段 | 说明 |
|---|---|
feedback_id PK |
- |
run_id NOT NULL |
反馈目标 run |
thread_id NOT NULL |
- |
user_id |
- |
message_id nullable |
注释明确写:optional RunEventStore event identifier — 已经面向 event_store 设计 |
| UNIQUE(thread_id, run_id, user_id) | 每 run 每用户至多一条 |
结论:feedback 不按 message uuid 存,按 run_id 存,所以 summarize 导致的 checkpoint messages 丢失不会影响 feedback 存储。schema 天生与 event_store 兼容,无需数据迁移。
6.2 前端的 runId 映射:发现隐藏 bug
前端 feedback 目前走两条并行的数据链:
| 用途 | 数据源 | 位置 |
|---|---|---|
| 渲染消息体 | POST /history(checkpoint) |
useStream → thread.messages |
拿 runId 映射 |
GET /api/threads/{id}/messages?limit=200(event_store) |
useThreadFeedback (hooks.ts:669-709) |
两者通过 "AI 消息的序号" 对齐:
// hooks.ts:691-698
for (const msg of messages) {
if (msg.event_type === "ai_message") {
runIdByAiIndex.push(msg.run_id); // 只按 AI 顺序 push
}
}
// message-list.tsx:70-71
runId = feedbackData.runIdByAiIndex[aiMessageIndex]
Bug:summarize 过的 thread 里,两条数据链的 AI 消息数量和顺序不一致:
| 数据源 | 本 thread 的 AI 消息序列 | 数量 |
|---|---|---|
/history(checkpoint,summarize 后) |
seq=19,31,37,45,53 | 5 |
/messages(event_store,完整) |
seq=5,13,19,31,37,45,53 | 7 |
结果:前端渲染的"第 0 条 AI 消息"是 seq=19,但 runIdByAiIndex[0] 指向 seq=5 的 run(本例同一 run 里没事,跨多 run 的 thread 点赞就会打到错的 run 上)。
这个 bug 和本次 plan 无关,已经存在了。只是用户未必注意到。
6.3 方案 A 对 feedback 的影响
负面:无。feedback 存储不受影响。
正面(意外收益):/history 切换到 event_store 后,两条数据链的 AI 消息序列自动对齐,§6.2 的隐藏 bug 被顺带修好。
前提条件(加入 Top 3 改动之一同等重要):
- 新 helper 必须和
/messages端点用同样的消息获取逻辑(same store, same filter)。否则两条链仍然可能在边界条件下漂移 - 具体说:两边都要做完整分页。目前
/messages?limit=200在前端硬编码 200,如果 thread 有 >200 条消息就会截断;plan 的limit=1000也一样有上限。两个上限不一致 → 两边顺序不再对齐 → feedback 映射错位 - 必须修:
useThreadFeedback的limit=200需要改成分页获取全部,或者/messages后端改为默认全量
6.4 对前端改造顺序的影响
原 plan 声明"零前端改动",但加入 feedback 考虑后应修正为:
| 改动 | 必须 | 可选 |
|---|---|---|
后端 /history 改读 event_store |
✅ | - |
后端 helper 用分页而非 limit=1000 |
✅ | - |
前端 useThreadFeedback 改用分页或提升 limit |
✅ | - |
runIdByAiIndex 增加防御:索引越界 fallback undefined(已有) |
- | ✅ 已经是 |
前端改用 /messages 直接做渲染(方案 D) |
- | ✅ 长期更干净 |
6.5 feedback 相关的新 Top 3 补充
在原来的 Top 3 之外,再加:
- 前端
useThreadFeedback必须分页或拉全(frontend/src/core/threads/hooks.ts:679),否则和/history的新全量行为仍然错位 - 端到端测试:一个 thread 跨 >1 个 run + 触发 summarize + 给历史 AI 消息点赞,确认 feedback 打到正确的 run_id
- TanStack Query 缓存协调:
thread-feedback与 history 查询的staleTime/ invalidation 需要在新 run 结束时同步刷新,否则新消息写入后runIdByAiIndex没更新,点赞会打到上一个 run
8. 未决问题
RunEventStore.count_messages()与list_messages(after_seq=...)的实际性能(SQLite 上对于数千消息级别应无问题,但未压测)MemoryRunEventStore与DbRunEventStore分页语义是否一致(Codex 只核查了db.py,memory.py需确认)- 是否应把
/api/threads/{id}/messages提升为前端主用 endpoint,把/history保留为纯 checkpoint API —— 架构层面更干净但成本更高