Issue for this PR

Closes #21568

Type of change

• Bug fix
• New feature
• Refactor / code improvement
• Documentation

What does this PR do?

This makes POST /session respect an explicit id when one is provided.

Before this change, the server-side session creation path ignored id, so creating the same explicit session twice returned 200 twice and the existing DuplicateIDError / 409 path was unreachable.

This PR wires id through Session.create, maps duplicate session insertions to DuplicateIDError, updates the route error schema to include 409, and updates the generated SDK/types to match the actual API.

How did you verify your code works?

• cd packages/opencode && bun test test/server/session-messages.test.ts
• cd packages/opencode && bun typecheck
• cd packages/sdk/js && bun typecheck
• Built-binary smoke test against opencode serve:
  • first POST /session with explicit id returned 200
  • second identical create returned 409 with DuplicateIDError

Screenshots / recordings

N/A (API-only change)

Checklist

• I have tested my changes locally
• I have not included unrelated changes in this PR