oxios-kernel 1.0.0

Oxios kernel: supervisor, event bus, state store
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120

//! Agent security context — unforgeable identity token.
//!
//! `AgentContext` is the proof that the kernel has authenticated an agent.
//! It cannot be constructed without going through the kernel's agent lifecycle,
//! making it impossible to bypass security checks at the type level.

use std::sync::Arc;

use crate::capability::CSpace;
use crate::types::AgentId;

/// Agent security context — unforgeable proof of agent identity.
///
/// This type can only be created by:
/// - `KernelHandle` during agent lifecycle (production)
/// - `AgentContext::test_fixture()` in `#[cfg(test)]` only
///
/// Tools that require access control accept `AgentContext` instead of
/// a raw `Option<String>`. The type's existence is itself proof that
/// the kernel has authenticated the agent.
#[derive(Debug, Clone)]
pub struct AgentContext {
    /// Unique agent identifier.
    pub agent_id: AgentId,
    /// Human-readable agent name for permission lookups.
    pub agent_name: String,
    /// Agent's capability space — determines which tools the agent can access.
    pub cspace: Arc<CSpace>,
}

impl AgentContext {
    /// Create a test fixture with the given name.
    ///
    /// Only available in test builds. Generates a random agent ID and a
    /// permissive CSpace with standard capabilities.
    #[cfg(test)]
    pub fn test_fixture(name: &str) -> Self {
        let agent_id = AgentId::new_v4();
        let mut cspace = CSpace::new(agent_id);

        // Grant standard capabilities for testing
        use crate::capability::{Capability, ResourceRef, Rights};
        cspace.insert(Capability::kernel(
            ResourceRef::Exec {
                mode: "shell".into(),
            },
            Rights::ALL,
        ));
        cspace.insert(Capability::kernel(
            ResourceRef::Exec {
                mode: "structured".into(),
            },
            Rights::ALL,
        ));
        cspace.insert(Capability::kernel(
            ResourceRef::KernelDomain {
                domain: "fs".into(),
            },
            Rights::ALL,
        ));
        cspace.insert(Capability::kernel(
            ResourceRef::KernelDomain {
                domain: "agent".into(),
            },
            Rights::ALL,
        ));
        // Grant all common tools
        for tool in [
            "bash", "read", "write", "edit", "grep", "find", "ls", "exec",
        ] {
            cspace.insert(Capability::kernel(
                ResourceRef::KernelDomain {
                    domain: tool.into(),
                },
                Rights::EXECUTE,
            ));
        }

        Self {
            agent_id,
            agent_name: name.to_string(),
            cspace: Arc::new(cspace),
        }
    }

    /// Create a test fixture with specific capabilities.
    #[cfg(test)]
    pub fn test_fixture_with_cspace(name: &str, cspace: CSpace) -> Self {
        Self {
            agent_id: AgentId::new_v4(),
            agent_name: name.to_string(),
            cspace: Arc::new(cspace),
        }
    }
}

impl std::fmt::Display for AgentContext {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(f, "agent:{}:{}", self.agent_name, self.agent_id)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_fixture_has_name() {
        let ctx = AgentContext::test_fixture("test-agent");
        assert_eq!(ctx.agent_name, "test-agent");
        assert!(!ctx.agent_id.is_nil());
    }

    #[test]
    fn test_display() {
        let ctx = AgentContext::test_fixture("my-agent");
        let s = format!("{}", ctx);
        assert!(s.starts_with("agent:my-agent:"));
    }
}