mirror of
https://github.com/openclaw/openclaw.git
synced 2026-07-16 13:01:33 +00:00
* feat(codex): add native session supervision * fix(codex): harden supervision integration * fix(codex): preserve locked harness ownership * fix(codex): fence native session archive * fix(codex): revalidate archive binding ownership * feat(codex): integrate supervision runtime * feat(sessions): preserve harness-owned execution * feat(sessions): persist harness ownership invariants * feat(gateway): enforce harness-owned sessions * feat(setup): enable detected Codex supervision * feat(mac): expose supervised Codex sessions * feat(ui): make Codex sessions actionable * docs(codex): document session supervision * test(codex): cover integration ownership * chore(i18n): refresh supervision inventories * fix(setup): finalize Codex activation atomically * test(codex): narrow binding store update * fix(sessions): preserve legacy model locks * test(macos): serialize Codex catalog fixtures * fix(sessions): preserve legacy lock admission * chore(i18n): reconcile supervision metadata * test(sessions): mark legacy lock fixture * fix(macos): drain final Codex catalog frame * docs: leave supervision note to release * style(macos): satisfy Codex catalog type length * chore: record session accessor seam owners * fix(macos): honor configured Codex supervision * fix(codex): preserve harness-owned model locks * fix(codex): satisfy supervision lint gates * chore(i18n): refresh native supervision inventory * fix(codex): align supervision validation contracts * fix(codex): close supervision boundary gaps * fix(codex): preserve supervision activation contracts * fix(codex): dispose standalone supervision runtime * fix(codex): pin supervised source connection * fix(plugins): bind delegated runs to exact session target * fix(codex): scope supervised sessions to configured agents * fix(codex): fingerprint effective supervision home * fix(codex): normalize supervision plugin policy * fix(codex): keep supervised bindings stable across upgrades * fix(codex): guard all supervised binding connections * fix(codex): preserve catalog filters and pending CAS identity * fix(codex): preserve supervision identity for diagnostics * fix(codex): bind uncertain commits to supervision connection * fix(codex): satisfy supervision type boundaries * fix(macos): reconcile current main validation * fix(codex): handle absent runtime config in supervision * fix(doctor): own local audio acceleration check * fix(codex): satisfy integration lint gates * fix(codex): satisfy lifecycle safety guards
95 lines
3.3 KiB
Plaintext
95 lines
3.3 KiB
Plaintext
/**
|
|
* @name Raw socket client callsite classification
|
|
* @description Raw net/tls/http2 client egress must be classified before landing.
|
|
* @kind problem
|
|
* @problem.severity error
|
|
* @precision high
|
|
* @id js/openclaw/raw-socket-callsite-classification
|
|
* @tags maintainability
|
|
* security
|
|
* external/cwe/cwe-441
|
|
*/
|
|
|
|
import javascript
|
|
|
|
predicate rawModule(string moduleName) {
|
|
moduleName = ["net", "node:net", "tls", "node:tls", "http2", "node:http2"]
|
|
}
|
|
|
|
predicate netModule(string moduleName) { moduleName = ["net", "node:net"] }
|
|
|
|
predicate rawConnectMember(string memberName) { memberName = ["connect", "createConnection"] }
|
|
|
|
predicate relevantSourceFile(File file) {
|
|
exists(string path |
|
|
path = file.getRelativePath() and
|
|
path.regexpMatch("^(src|extensions)/.*\\.ts$") and
|
|
not path.regexpMatch(".*\\.(test|spec|test-utils|test-harness|e2e-harness)\\.ts$") and
|
|
not path.regexpMatch(".*/test-support/.*") and
|
|
not path.regexpMatch("^extensions/diffs/assets/.*")
|
|
)
|
|
}
|
|
|
|
Expr rawSocketClientCall() {
|
|
exists(API::CallNode call, string moduleName, string memberName |
|
|
rawModule(moduleName) and
|
|
rawConnectMember(memberName) and
|
|
call = API::moduleImport(moduleName).getMember(memberName).getACall() and
|
|
result = call.asExpr()
|
|
)
|
|
or
|
|
exists(string moduleName |
|
|
netModule(moduleName) and
|
|
result =
|
|
DataFlow::moduleMember(moduleName, "Socket")
|
|
.getAnInstantiation()
|
|
.getAMethodCall("connect")
|
|
.asExpr()
|
|
)
|
|
}
|
|
|
|
predicate allowedOwnerScope(Expr call, string path, string functionName) {
|
|
exists(Function owner |
|
|
call.getFile().getRelativePath() = path and
|
|
owner.getFile() = call.getFile() and
|
|
owner.getName() = functionName and
|
|
call.getParent*() = owner.getBody()
|
|
)
|
|
}
|
|
|
|
predicate allowedRawSocketClientCall(Expr call) {
|
|
allowedOwnerScope(call, "src/cli/gateway-cli/run-loop.ts", "waitForGatewayPortReady")
|
|
or
|
|
allowedOwnerScope(call, "src/infra/ssh-tunnel.ts", "canConnectLocal")
|
|
or
|
|
allowedOwnerScope(call, "src/infra/gateway-lock.ts", "checkPortFree")
|
|
or
|
|
allowedOwnerScope(call, "src/infra/jsonl-socket.ts", "requestJsonlSocketWithMaxLineBytes")
|
|
or
|
|
allowedOwnerScope(call, "src/infra/net/http-connect-tunnel.ts", "connectToProxy")
|
|
or
|
|
allowedOwnerScope(call, "src/infra/net/http-connect-tunnel.ts", "startTargetTls")
|
|
or
|
|
allowedOwnerScope(call, "src/infra/push-apns-http2.ts", "openProxiedApnsHttp2Session")
|
|
or
|
|
allowedOwnerScope(call, "src/infra/push-apns-http2.ts", "connectApnsHttp2Session")
|
|
or
|
|
allowedOwnerScope(call, "src/proxy-capture/proxy-server.ts", "startDebugProxyServer")
|
|
or
|
|
allowedOwnerScope(call, "extensions/codex/src/app-server/transport-websocket.ts", "connectCodexAppServerUnixSocket")
|
|
or
|
|
allowedOwnerScope(call, "extensions/irc/src/client.ts", "connectIrcClient")
|
|
or
|
|
allowedOwnerScope(call, "extensions/qa-lab/src/lab-server-capture.ts", "probeTcpReachability")
|
|
or
|
|
allowedOwnerScope(call, "extensions/qa-lab/src/lab-server-ui.ts", "proxyUpgradeRequest")
|
|
}
|
|
|
|
from Expr call
|
|
where
|
|
rawSocketClientCall() = call and
|
|
relevantSourceFile(call.getFile()) and
|
|
not allowedRawSocketClientCall(call)
|
|
select call,
|
|
"Classify raw net/tls/http2 client egress as managed/proxied, local-only, diagnostic guarded, or documented unsupported before adding this callsite."
|