Sam & Claude
a7565c49ad
Closes #135. The daemon stages per-spawn launch.sh/env.sh under the jail root; the previous location /var/run/colibri-stage is root-owned, so the daemon (running as clawdie) could not create per-spawn subdirs there — the second jail-spawn EACCES, worked around in #134 by pre-creating the dir in agent-jail-bootstrap.sh. Move the default staging root to the daemon user's home, /home/clawdie/.cache/colibri/stage, which clawdie owns by construction of the jail account. create_dir_all now succeeds with no privileged pre-creation step, and /home is persistent (unlike a tmpfs /var/run). The path is overridable via COLIBRI_JAIL_STAGE_DIR, matching the daemon's other env-configurable paths. - spawner.rs: const → staged_jail_run_dir() resolver; updated unit test. - agent-jail-bootstrap.sh: drop the now-unnecessary install -d staging block and DAEMON_USER var (the #134 workaround). - docs: update jailed-spawn design + truss analysis to the new location. clippy clean; spawner suite green (21 tests); sh -n clean; touched docs pass the markdown gate. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| CLAWDIE-INSTALLER-HANDOFF.md | ||
| CLAWDIE-STUDIO-PROPOSAL.md | ||
| COLIBRI-EXTERNAL-MCP-PROTOTYPE.md | ||
| COLIBRI-JAILED-AGENT-SPAWN-DESIGN.md | ||
| COLIBRI-SKILLS-PLAN.md | ||
| COLIBRI-TOKENOMICS-TRIFECTA.md | ||
| FREEBSD-BUILD-LANE-HANDOFF.md | ||
| HEADROOM-SIDECAR.md | ||
| INTEGRATION-LAYERED-SOUL.md | ||
| ISO-ACCEPTANCE-RUNBOOK.md | ||
| ISO-SERVICE-LAYOUT.md | ||
| MULTI-AGENT-HOST-PLAN.md | ||
| PRIORITY-HANDOFF-ISO-SPAWN-COST.md | ||
| README.md | ||
| TRUSS-SPAWN-ANALYSIS.md | ||
| VAULT-PROVISION-FIRST-PROOF.md | ||
Colibri Docs Index
A quick-reference guide to every document in this folder.
| Document | One-liner | Audience |
|---|---|---|
CLAWDIE-INSTALLER-HANDOFF.md |
FreeBSD validation handoff for the clawdie installer |
Codex (FreeBSD) |
CLAWDIE-STUDIO-PROPOSAL.md |
Zed/Claude Code + control plane integration (bare-metal deployment option) | Sam & agents |
COLIBRI-EXTERNAL-MCP-PROTOTYPE.md |
Colibri as MCP host for external stdio servers (jailed, 3-tier trust) | Agents |
COLIBRI-JAILED-AGENT-SPAWN-DESIGN.md |
FreeBSD jail confinement for spawned agents — accepted & implemented | Rust agents |
COLIBRI-SKILLS-PLAN.md |
Skills catalog roadmap: read-only Phase 1, write-gated Phase 2+ | Agents |
COLIBRI-TOKENOMICS-TRIFECTA.md |
Strategic vision: useful tokens, cost-per-intelligence, measurement | All |
HEADROOM-SIDECAR.md |
Optional headroom-ai tool-result compression sidecar |
Agents |
INTEGRATION-LAYERED-SOUL.md |
How Colibri consumes layered-soul reviewed context today vs planned |
Agents |
ISO-ACCEPTANCE-RUNBOOK.md |
Post-boot acceptance commands after staging Colibri into an ISO | Codex (FreeBSD) |
ISO-SERVICE-LAYOUT.md |
rc.conf service layout for the ISO image |
All |
MULTI-AGENT-HOST-PLAN.md |
Current sprint: multi-agent task-board tests + CLI surface gaps | All agents |
PRIORITY-HANDOFF-ISO-SPAWN-COST.md |
ISO boot validation, Pi spawn path, cost mode enforcement (P2/P3 done) | All agents |
TRUSS-SPAWN-ANALYSIS.md |
truss trace of jail-spawn Permission Denied — root cause + fix | Debugging |
VAULT-PROVISION-FIRST-PROOF.md |
First-proof runbook: vault → jail → .env chain (clean CLI) |
Agents, Sam |