feat(agent): add privilege escalation for least-privilege mode#344
Merged
feat(agent): add privilege escalation for least-privilege mode#344
Conversation
Reference documentation for running the agent as an unprivileged user. Includes sudoers drop-in, capability setup, systemd unit file, and full command privilege reference table. Code changes for privilege escalation support are tracked separately. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Add exec manager RunPrivilegedCmd design, config schema for privilege_escalation (sudo, capabilities, preflight), preflight check design with example output, and updated command reference showing which calls use RunCmd vs RunPrivilegedCmd. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Content will live in docs/plans/ as a design spec instead of user-facing documentation. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Config-driven sudo escalation, RunPrivilegedCmd exec manager method, Linux capabilities, preflight verification at agent startup, sudoers drop-in, and full command read/write classification. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
15 tasks covering exec manager RunPrivilegedCmd, preflight checks, provider migration across 10 domains, and documentation. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Add PrivilegeEscalation struct to config types with sudo, capabilities, and preflight fields. Wire into AgentConfig and add commented-out defaults to all config files. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Add a preflight system that runs during agent start to verify sudo access and Linux capabilities before accepting jobs. Checks are controlled by the privilege_escalation config (sudo, capabilities, preflight flags). Also adds execManager field to Agent struct for preflight sudo verification. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Migrate all systemctl write commands (start, stop, restart, enable, disable, daemon-reload) to RunPrivilegedCmd so they run with privilege escalation. Read-only checks (is-active, is-enabled) remain on RunCmd. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
… ntp writes Migrate write operations in four providers to use RunPrivilegedCmd so they are executed with privilege escalation when configured: - sysctl: sysctl -p <path> and sysctl --system - host: hostnamectl set-hostname - timezone: timedatectl set-timezone - ntp: chronyc reload sources Read-only operations (sysctl -n, hostnamectl hostname, timedatectl show, chronyc tracking/sources) remain as RunCmd. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
…ficate, dns writes Migrate write operations from RunCmd to RunPrivilegedCmd across five provider domains so privileged commands use sudo/capabilities when configured. Read-only commands (id, passwd -S, dpkg-query, apt list, resolvectl status) remain as RunCmd. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Add agent-hardening.md feature page documenting least-privilege mode, sudoers drop-in, Linux capabilities, systemd unit, and preflight checks. Update configuration.md with privilege_escalation YAML block, env vars, and section reference table. Add Agent Hardening to the navbar dropdown. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Uncomment privilege_escalation in all config files with preflight enabled by default. Add to integration test config with preflight disabled (tests run without sudo/caps). 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
When sudo or capabilities is enabled, the agent now automatically runs preflight verification at startup. The separate preflight config field is no longer needed. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Replace sudo + capabilities booleans with a single enabled toggle. When enabled, both sudo and capability verification are active. Update all configs, preflight, docs, and spec. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Codecov Report✅ All modified and coverable lines are covered by tests. @@ Coverage Diff @@
## main #344 +/- ##
========================================
Coverage 99.91% 99.91%
========================================
Files 438 440 +2
Lines 21268 21377 +109
========================================
+ Hits 21249 21358 +109
Misses 11 11
Partials 8 8
Continue to review full report in Codecov by Sentry.
🚀 New features to boost your workflow:
|
Extract command execution into a CommandExecutor interface so RunPrivilegedCmd tests can assert exact command/args via gomock without executing real commands or triggering sudo prompts. Co-Authored-By: Claude <noreply@anthropic.com>
Extract command execution into a CommandExecutor interface so RunPrivilegedCmd tests can assert exact command/args via gomock without executing real commands or prompting for sudo passwords. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Add test cases for invalid hex CapEff, missing CapEff line, and preflight failure/success in agent Start(). Add defense-in-depth comment to user update validation.Struct call. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
Write a line exceeding bufio.MaxScanTokenSize to trigger a scanner error, covering the remaining branch in readCapEff. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
RunPrivilegedCmdto the execManagerinterface — prependssudoto write commands whenprivilege_escalation.enabledis trueRunCmdtoRunPrivilegedCmdfor write operations (service, sysctl, hostname, timezone, NTP, user, group, ssh-key, package, power, certificate, DNS)CAP_DAC_OVERRIDE,CAP_DAC_READ_SEARCH,CAP_FOWNER,CAP_KILL)agent.privilege_escalation.enabledConfig
When enabled: write commands use sudo, capabilities verified at startup. When disabled: everything runs as current user (no behavior change).
Test plan
RunCmdfor write operationsRunCmd🤖 Generated with Claude Code