Merge pull request #51 from diggerhq/feat/claude-sdk-abstraction

feat/claude sdk abstraction

Author: motatoes

cmd/agent/main.go

@@ -9,6 +9,7 @@ import (
 	"log"
 	"os"
 	"os/signal"
+	"strings"
 	"syscall"
 
 	"github.com/opensandbox/opensandbox/internal/agent"
@@ -18,6 +19,14 @@ const version = "0.1.0"
 
 func main() {
 	log.SetFlags(log.Ltime | log.Lmicroseconds)
+
+	// Ensure /usr/local/bin and /usr/local/sbin are in PATH for exec.LookPath.
+	// The init script may not set a full PATH.
+	path := os.Getenv("PATH")
+	if !strings.Contains(path, "/usr/local/bin") {
+		os.Setenv("PATH", "/usr/local/bin:/usr/local/sbin:"+path)
+	}
+
 	log.Printf("osb-agent %s starting", version)
 
 	// Listen on vsock port 1024 (inside Firecracker) or Unix socket (testing).

cmd/worker/main.go

@@ -3,6 +3,7 @@ package main
 import (
 	"context"
 	"fmt"
+	"io"
 	"log"
 	"os"
 	"os/signal"
@@ -92,23 +93,29 @@ func main() {
 		scrollback := sandbox.NewScrollbackBuffer(0)
 		done := make(chan struct{})
 
+		// Create a pipe for stdin: writes to stdinW are forwarded to the gRPC stream
+		stdinR, stdinW := io.Pipe()
+
 		handle := &sandbox.ExecSessionHandle{
-			ID:         sessionID,
-			SandboxID:  sandboxID,
-			Command:    req.Command,
-			Args:       req.Args,
-			Running:    true,
-			StartedAt:  time.Now(),
-			Done:       done,
-			Scrollback: scrollback,
+			ID:          sessionID,
+			SandboxID:   sandboxID,
+			Command:     req.Command,
+			Args:        req.Args,
+			Running:     true,
+			StartedAt:   time.Now(),
+			Done:        done,
+			Scrollback:  scrollback,
+			StdinWriter: stdinW,
 			OnKill: func(signal int) error {
+				stdinW.Close()
 				return agent.ExecSessionKill(context.Background(), sessionID, int32(signal))
 			},
 		}
 
 		// Attach to the session to pipe output into the host-side scrollback
 		go func() {
 			defer close(done)
+			defer stdinR.Close()
 			stream, err := agent.ExecSessionAttach(context.Background())
 			if err != nil {
 				return
@@ -117,6 +124,25 @@ func main() {
 			if err := stream.Send(&agentpb.ExecSessionInput{SessionId: sessionID}); err != nil {
 				return
 			}
+
+			// Forward stdin pipe to gRPC stream in a separate goroutine
+			go func() {
+				buf := make([]byte, 4096)
+				for {
+					n, err := stdinR.Read(buf)
+					if err != nil {
+						return
+					}
+					if n > 0 {
+						data := make([]byte, n)
+						copy(data, buf[:n])
+						if err := stream.Send(&agentpb.ExecSessionInput{Stdin: data}); err != nil {
+							return
+						}
+					}
+				}
+			}()
+
 			for {
 				msg, err := stream.Recv()
 				if err != nil {

deploy/ec2/build-rootfs-docker.sh

@@ -149,6 +149,13 @@ exec /usr/local/bin/osb-agent
 INIT_EOF
 chmod +x "$TMPDIR/init"
 
+# Copy claude-agent-wrapper source (for images that include it)
+WRAPPER_DIR="$PROJECT_ROOT/scripts/claude-agent-wrapper"
+if [ -d "$WRAPPER_DIR" ]; then
+    mkdir -p "$TMPDIR/scripts"
+    cp -r "$WRAPPER_DIR" "$TMPDIR/scripts/claude-agent-wrapper"
+fi
+
 # Append agent/init injection to Dockerfile
 cat >> "$TMPDIR/Dockerfile" << 'INJECT_EOF'
 

deploy/firecracker/rootfs/Dockerfile.default

@@ -76,6 +76,18 @@ RUN curl -fsSL https://deb.nodesource.com/setup_20.x | bash - \
     && rm -rf /var/lib/apt/lists/* \
     && npm install -g npm@latest
 
+# ── Claude Agent SDK + wrapper ───────────────────────────────────────────────
+RUN npm install -g @anthropic-ai/claude-agent-sdk @anthropic-ai/claude-code
+COPY scripts/claude-agent-wrapper /tmp/claude-agent-wrapper
+RUN cd /tmp/claude-agent-wrapper \
+    && npm install --ignore-scripts \
+    && npx tsc \
+    && cp dist/index.js /usr/local/lib/claude-agent-wrapper.js \
+    && ln -sf /usr/lib/node_modules /usr/local/lib/node_modules \
+    && printf '#!/bin/sh\nexport IS_SANDBOX=1\nexec node --experimental-vm-modules /usr/local/lib/claude-agent-wrapper.js "$@"\n' > /usr/local/bin/claude-agent-wrapper \
+    && chmod +x /usr/local/bin/claude-agent-wrapper \
+    && rm -rf /tmp/claude-agent-wrapper
+
 # ── Locale ───────────────────────────────────────────────────────────────────
 RUN locale-gen en_US.UTF-8
 ENV LANG=en_US.UTF-8

internal/agent/exec.go

@@ -13,17 +13,32 @@ import (
 	pb "github.com/opensandbox/opensandbox/proto/agent"
 )
 
-// baseEnv returns the current OS environment with HOME set to /root.
+// baseEnv returns the current OS environment with HOME set to /root and
+// PATH guaranteed to include /usr/local/bin and /usr/local/sbin.
 // With overlayfs, the entire filesystem is backed by the data disk,
 // so /root (the standard root home) has full disk space available.
 func baseEnv() []string {
 	var env []string
+	hasPath := false
 	for _, e := range os.Environ() {
 		if strings.HasPrefix(e, "HOME=") {
 			continue
 		}
+		if strings.HasPrefix(e, "PATH=") {
+			hasPath = true
+			path := e[5:]
+			// Ensure /usr/local/bin and /usr/local/sbin are in PATH
+			if !strings.Contains(path, "/usr/local/bin") {
+				path = "/usr/local/bin:/usr/local/sbin:" + path
+			}
+			env = append(env, "PATH="+path)
+			continue
+		}
 		env = append(env, e)
 	}
+	if !hasPath {
+		env = append(env, "PATH=/usr/local/bin:/usr/local/sbin:/usr/bin:/usr/sbin:/bin:/sbin")
+	}
 	env = append(env, "HOME=/root")
 	return env
 }

internal/api/agent_session.go

@@ -0,0 +1,224 @@
+package api
+
+import (
+	"context"
+	"encoding/json"
+	"net/http"
+	"time"
+
+	"github.com/labstack/echo/v4"
+	"github.com/opensandbox/opensandbox/internal/sandbox"
+	"github.com/opensandbox/opensandbox/pkg/types"
+)
+
+func (s *Server) createAgentSession(c echo.Context) error {
+	if s.execSessionManager == nil {
+		return c.JSON(http.StatusServiceUnavailable, errSandboxNotAvailable)
+	}
+
+	id := c.Param("id")
+
+	var req types.AgentSessionCreateRequest
+	if err := c.Bind(&req); err != nil {
+		return c.JSON(http.StatusBadRequest, map[string]string{
+			"error": "invalid request body: " + err.Error(),
+		})
+	}
+
+	execReq := types.ExecSessionCreateRequest{
+		Command: "claude-agent-wrapper",
+	}
+
+	var session *sandbox.ExecSessionHandle
+
+	routeOp := func(_ context.Context) error {
+		var err error
+		session, err = s.execSessionManager.CreateSession(id, execReq)
+		return err
+	}
+
+	if s.router != nil {
+		if err := s.router.Route(c.Request().Context(), id, "agentSessionCreate", routeOp); err != nil {
+			return c.JSON(http.StatusInternalServerError, map[string]string{"error": err.Error()})
+		}
+	} else {
+		if err := routeOp(c.Request().Context()); err != nil {
+			return c.JSON(http.StatusInternalServerError, map[string]string{"error": err.Error()})
+		}
+	}
+
+	// Send configure command if any config options provided
+	hasConfig := req.Model != "" || req.SystemPrompt != "" || len(req.AllowedTools) > 0 ||
+		req.PermissionMode != "" || req.MaxTurns > 0 || req.Cwd != "" || len(req.McpServers) > 0
+	if hasConfig && session.StdinWriter != nil {
+		configCmd := map[string]interface{}{"type": "configure"}
+		if req.Model != "" {
+			configCmd["model"] = req.Model
+		}
+		if req.SystemPrompt != "" {
+			configCmd["systemPrompt"] = req.SystemPrompt
+		}
+		if len(req.AllowedTools) > 0 {
+			configCmd["allowedTools"] = req.AllowedTools
+		}
+		if req.PermissionMode != "" {
+			configCmd["permissionMode"] = req.PermissionMode
+		}
+		if req.MaxTurns > 0 {
+			configCmd["maxTurns"] = req.MaxTurns
+		}
+		if req.Cwd != "" {
+			configCmd["cwd"] = req.Cwd
+		}
+		if len(req.McpServers) > 0 {
+			configCmd["mcpServers"] = req.McpServers
+		}
+		configJSON, _ := json.Marshal(configCmd)
+		session.StdinWriter.Write(append(configJSON, '\n'))
+	}
+
+	// Send initial prompt if provided
+	if req.Prompt != "" && session.StdinWriter != nil {
+		promptCmd := map[string]interface{}{
+			"type": "prompt",
+			"text": req.Prompt,
+		}
+		promptJSON, _ := json.Marshal(promptCmd)
+		session.StdinWriter.Write(append(promptJSON, '\n'))
+	}
+
+	return c.JSON(http.StatusCreated, types.AgentSessionInfo{
+		SessionID: session.ID,
+		SandboxID: id,
+		Running:   true,
+		StartedAt: session.StartedAt.Format(time.RFC3339),
+	})
+}
+
+func (s *Server) listAgentSessions(c echo.Context) error {
+	if s.execSessionManager == nil {
+		return c.JSON(http.StatusServiceUnavailable, errSandboxNotAvailable)
+	}
+
+	id := c.Param("id")
+	allSessions := s.execSessionManager.ListSessions(id)
+
+	var agentSessions []types.AgentSessionInfo
+	for _, sess := range allSessions {
+		if sess.Command == "claude-agent-wrapper" {
+			agentSessions = append(agentSessions, types.AgentSessionInfo{
+				SessionID: sess.SessionID,
+				SandboxID: sess.SandboxID,
+				Running:   sess.Running,
+				StartedAt: sess.StartedAt,
+			})
+		}
+	}
+
+	if agentSessions == nil {
+		agentSessions = []types.AgentSessionInfo{}
+	}
+
+	return c.JSON(http.StatusOK, agentSessions)
+}
+
+func (s *Server) sendAgentPrompt(c echo.Context) error {
+	if s.execSessionManager == nil {
+		return c.JSON(http.StatusServiceUnavailable, errSandboxNotAvailable)
+	}
+
+	id := c.Param("id")
+	sessionID := c.Param("sid")
+
+	var req types.AgentPromptRequest
+	if err := c.Bind(&req); err != nil {
+		return c.JSON(http.StatusBadRequest, map[string]string{"error": "invalid request body: " + err.Error()})
+	}
+	if req.Text == "" {
+		return c.JSON(http.StatusBadRequest, map[string]string{"error": "text is required"})
+	}
+
+	session, err := s.execSessionManager.GetSession(sessionID)
+	if err != nil {
+		return c.JSON(http.StatusNotFound, map[string]string{"error": err.Error()})
+	}
+
+	if session.SandboxID != id {
+		return c.JSON(http.StatusNotFound, map[string]string{"error": "session not found"})
+	}
+
+	if session.StdinWriter == nil {
+		return c.JSON(http.StatusInternalServerError, map[string]string{"error": "session stdin not available"})
+	}
+
+	promptCmd := map[string]interface{}{
+		"type": "prompt",
+		"text": req.Text,
+	}
+	promptJSON, _ := json.Marshal(promptCmd)
+	session.StdinWriter.Write(append(promptJSON, '\n'))
+
+	return c.NoContent(http.StatusNoContent)
+}
+
+func (s *Server) interruptAgent(c echo.Context) error {
+	if s.execSessionManager == nil {
+		return c.JSON(http.StatusServiceUnavailable, errSandboxNotAvailable)
+	}
+
+	id := c.Param("id")
+	sessionID := c.Param("sid")
+
+	session, err := s.execSessionManager.GetSession(sessionID)
+	if err != nil {
+		return c.JSON(http.StatusNotFound, map[string]string{"error": err.Error()})
+	}
+
+	if session.SandboxID != id {
+		return c.JSON(http.StatusNotFound, map[string]string{"error": "session not found"})
+	}
+
+	if session.StdinWriter == nil {
+		return c.JSON(http.StatusInternalServerError, map[string]string{"error": "session stdin not available"})
+	}
+
+	interruptCmd := map[string]interface{}{"type": "interrupt"}
+	interruptJSON, _ := json.Marshal(interruptCmd)
+	session.StdinWriter.Write(append(interruptJSON, '\n'))
+
+	return c.NoContent(http.StatusNoContent)
+}
+
+func (s *Server) killAgentSession(c echo.Context) error {
+	if s.execSessionManager == nil {
+		return c.JSON(http.StatusServiceUnavailable, errSandboxNotAvailable)
+	}
+
+	id := c.Param("id")
+	sessionID := c.Param("sid")
+
+	var body struct {
+		Signal int `json:"signal"`
+	}
+	_ = c.Bind(&body)
+
+	if body.Signal == 0 {
+		body.Signal = 9
+	}
+
+	routeOp := func(_ context.Context) error {
+		return s.execSessionManager.KillSession(sessionID, body.Signal)
+	}
+
+	if s.router != nil {
+		if err := s.router.Route(c.Request().Context(), id, "agentSessionKill", routeOp); err != nil {
+			return c.JSON(http.StatusInternalServerError, map[string]string{"error": err.Error()})
+		}
+	} else {
+		if err := routeOp(c.Request().Context()); err != nil {
+			return c.JSON(http.StatusInternalServerError, map[string]string{"error": err.Error()})
+		}
+	}
+
+	return c.NoContent(http.StatusNoContent)
+}

internal/api/exec_session.go

@@ -94,6 +94,10 @@ func (s *Server) execSessionWebSocket(c echo.Context) error {
 		})
 	}
 
+	if session.SandboxID != id {
+		return c.JSON(http.StatusNotFound, map[string]string{"error": "session not found"})
+	}
+
 	if s.router != nil {
 		s.router.Touch(id)
 	}