Sam & Claude
a7565c49ad
Closes #135. The daemon stages per-spawn launch.sh/env.sh under the jail root; the previous location /var/run/colibri-stage is root-owned, so the daemon (running as clawdie) could not create per-spawn subdirs there — the second jail-spawn EACCES, worked around in #134 by pre-creating the dir in agent-jail-bootstrap.sh. Move the default staging root to the daemon user's home, /home/clawdie/.cache/colibri/stage, which clawdie owns by construction of the jail account. create_dir_all now succeeds with no privileged pre-creation step, and /home is persistent (unlike a tmpfs /var/run). The path is overridable via COLIBRI_JAIL_STAGE_DIR, matching the daemon's other env-configurable paths. - spawner.rs: const → staged_jail_run_dir() resolver; updated unit test. - agent-jail-bootstrap.sh: drop the now-unnecessary install -d staging block and DAEMON_USER var (the #134 workaround). - docs: update jailed-spawn design + truss analysis to the new location. clippy clean; spawner suite green (21 tests); sh -n clean; touched docs pass the markdown gate. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> |
||
|---|---|---|
| .forgejo/workflows | ||
| crates | ||
| docs | ||
| manifests | ||
| packaging/freebsd | ||
| scripts | ||
| src | ||
| tests | ||
| .env.example | ||
| .gitignore | ||
| .prettierignore | ||
| .prettierrc | ||
| AGENTS.md | ||
| Cargo.lock | ||
| Cargo.toml | ||
| LICENSE | ||
| README.md | ||
| rust-toolchain.toml | ||
Colibri
The Clawdie control plane core — a small, cross-platform (FreeBSD + Linux) Rust daemon. Developed from an operator USB environment; deploys as the Clawdie service on bare FreeBSD hardware (ZFS RAID1, PostgreSQL + pgvector, bhyve VMs, Bastille jails). Unifies coordination (task board, agent registry, skills catalog) with cache-first cost discipline (byte-stable prompt prefixes, cache-hit metering).
Status: workspace gates are fmt/clippy/test/release green. Round 2 audit is closed. Current priorities: ISO boot/runtime validation, Pi spawn end-to-end, and cost-mode enforcement (see docs/PRIORITY-HANDOFF-ISO-SPAWN-COST.md). Always query live state: see the crate table below and run the gate commands for current counts.
FreeBSD build lane handoff: docs/FREEBSD-BUILD-LANE-HANDOFF.md.
ISO acceptance runbook: docs/ISO-ACCEPTANCE-RUNBOOK.md.
Clawdie Studio/Zed proposal: docs/CLAWDIE-STUDIO-PROPOSAL.md.
External MCP host prototype: docs/COLIBRI-EXTERNAL-MCP-PROTOTYPE.md.
Optional Headroom compression sidecar: docs/HEADROOM-SIDECAR.md.
Workspace
| Crate | Role |
|---|---|
colibri (root) |
Workspace root + probe binaries (colibri-probe, runtime-inventory) |
colibri-mcp |
MCP bridge for editor integration (Zed, Claude Code) via stdio JSON-RPC |
colibri-contracts |
JSON schema contracts (golden tests) |
colibri-deepseek |
DeepSeek cache-hit probe, prefix metering |
colibri-runtime |
Host status ingestion, runtime inventory |
colibri-glasspane |
Agent 5-state machine (zot/pi JSONL events → state) |
colibri-daemon |
Always-on Unix socket server, session lifecycle |
colibri-client |
Typed Unix-socket client + operator CLI |
colibri-glasspane-tui |
ratatui live dashboard (FreeBSD-native) |
colibri-store |
Embedded SQLite coordination (task board, agents, skills) |
colibri-skills |
Skills catalog crate |
clawdie |
Host installer/deployer: ZFS layout + clawdie service (FreeBSD/Linux) |
Build
cargo build --release
Test
cargo test --workspace
cargo clippy --workspace --all-targets -- -D warnings
Architecture
colibri-daemon (always-on Unix socket server)
├── glasspane — agent state machine (zot/pi JSONL → idle/working/blocked/done)
├── store — SQLite coordination (tasks, agents, skills)
├── socket — newline-JSON socket API
├── session — append-only JSONL sessions, 3-region prompt assembly
└── spawner — agent subprocess management (retry/backoff, FreeBSD jail confinement)
colibri-client — CLI tools (colibri, colibri-test-agent)
colibri-glasspane-tui— ratatui dashboard
Probe binaries
# DeepSeek cache probe (needs DEEPSEEK_API_KEY)
cargo run --release --bin colibri-probe
# Runtime inventory manifest
cargo run --release --bin colibri-runtime-inventory
FreeBSD
Target x86_64-unknown-freebsd (Rust Tier-2). TLS uses rustls for clean
static linking (no openssl-sys dependency). Default DB path: /var/db/colibri/colibri.sqlite.