mirror of
https://github.com/langgenius/dify.git
synced 2026-05-13 08:57:28 +08:00
0c7e7e0c4e
Port the complete infrastructure for agent sandbox execution and skill system: Sandbox & Virtual Environment (core/sandbox/, core/virtual_environment/): - Sandbox entity with lifecycle management (ready/failed/cancelled states) - SandboxBuilder with fluent API for configuring providers - 5 VM providers: Local, SSH, Docker, E2B, AWS CodeInterpreter - VirtualEnvironment base with command execution, file transfer, transport layers - Channel transport: pipe, queue, socket implementations - Bash session management and DifyCli binary integration - Storage: archive storage, file storage, noop storage, presign storage - Initializers: DifyCli, AppAssets, DraftAppAssets, Skills - Inspector: file browser, archive/runtime source, script utils - Security: encryption utils, debug helpers Skill & App Assets (core/skill/, core/app_assets/, core/app_bundle/): - Skill entity and manager - App asset accessor, builder pipeline (file, skill builders) - App bundle source zip extractor - Storage and converter utilities API Endpoints: - CLI API blueprint (controllers/cli_api/) for sandbox callback - Sandbox provider management (workspace/sandbox_providers) - Sandbox file browser (console/sandbox_files) - App asset management (console/app/app_asset) - Skill management (console/app/skills) - Storage file endpoints (controllers/files/storage_files) Services: - Sandbox service, provider service, file service - App asset service, app bundle service Config: - CliApiConfig, CreatorsPlatformConfig, CollaborationConfig - FILES_API_URL for sandbox file access Note: Controller route registration temporarily commented out (marked TODO) pending resolution of deep dependency chains (socketio, workflow_comment, command node, etc.). Core sandbox modules are fully ported and syntax-validated. 110 files changed, 10,549 insertions. Made-with: Cursor
134 lines
4.0 KiB
Python
134 lines
4.0 KiB
Python
from __future__ import annotations
|
|
|
|
import logging
|
|
import threading
|
|
from typing import TYPE_CHECKING
|
|
from uuid import uuid4
|
|
|
|
from libs.attr_map import AttrMap
|
|
|
|
if TYPE_CHECKING:
|
|
from core.sandbox.storage.sandbox_storage import SandboxStorage
|
|
from core.virtual_environment.__base.virtual_environment import VirtualEnvironment
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
|
|
class Sandbox:
|
|
"""Represents a single sandbox environment.
|
|
|
|
Each ``Sandbox`` owns a stable, path-safe ``id`` (a 32-char hex
|
|
UUID4) that is independent of the underlying provider's environment
|
|
ID. Use ``sandbox.id`` for any path or resource namespacing
|
|
(e.g. ``DifyCli(sandbox.id)``).
|
|
|
|
The raw provider identifier is still accessible via
|
|
``sandbox.vm.metadata.id`` when needed (logging, API calls back to
|
|
the provider, etc.).
|
|
"""
|
|
|
|
def __init__(
|
|
self,
|
|
*,
|
|
vm: VirtualEnvironment,
|
|
storage: SandboxStorage,
|
|
tenant_id: str,
|
|
user_id: str,
|
|
app_id: str,
|
|
assets_id: str,
|
|
) -> None:
|
|
self._id = uuid4().hex
|
|
self._vm = vm
|
|
self._storage = storage
|
|
self._tenant_id = tenant_id
|
|
self._user_id = user_id
|
|
self._app_id = app_id
|
|
self._assets_id = assets_id
|
|
self._attributes = AttrMap()
|
|
self._ready_event = threading.Event()
|
|
self._cancel_event = threading.Event()
|
|
self._init_error: Exception | None = None
|
|
|
|
@property
|
|
def id(self) -> str:
|
|
"""Stable, path-safe identifier for this sandbox (UUID4 hex)."""
|
|
return self._id
|
|
|
|
@property
|
|
def attrs(self) -> AttrMap:
|
|
return self._attributes
|
|
|
|
@property
|
|
def vm(self) -> VirtualEnvironment:
|
|
return self._vm
|
|
|
|
@property
|
|
def storage(self) -> SandboxStorage:
|
|
return self._storage
|
|
|
|
@property
|
|
def tenant_id(self) -> str:
|
|
return self._tenant_id
|
|
|
|
@property
|
|
def user_id(self) -> str:
|
|
return self._user_id
|
|
|
|
@property
|
|
def app_id(self) -> str:
|
|
return self._app_id
|
|
|
|
@property
|
|
def assets_id(self) -> str:
|
|
return self._assets_id
|
|
|
|
def mark_ready(self) -> None:
|
|
# Signal that sandbox initialization has completed successfully.
|
|
self._ready_event.set()
|
|
|
|
def mark_failed(self, error: Exception) -> None:
|
|
# Capture initialization error and unblock waiters.
|
|
self._init_error = error
|
|
self._ready_event.set()
|
|
|
|
def cancel_init(self) -> None:
|
|
# Mark initialization as cancelled to stop background setup.
|
|
self._cancel_event.set()
|
|
self._ready_event.set()
|
|
|
|
def is_cancelled(self) -> bool:
|
|
return self._cancel_event.is_set()
|
|
|
|
def wait_ready(self, timeout: float | None = None) -> None:
|
|
# Block until initialization completes, fails, or is cancelled.
|
|
if not self._ready_event.wait(timeout=timeout):
|
|
raise TimeoutError("Sandbox initialization timed out")
|
|
if self._cancel_event.is_set():
|
|
raise RuntimeError("Sandbox initialization was cancelled")
|
|
if self._init_error is not None:
|
|
if isinstance(self._init_error, ValueError):
|
|
raise RuntimeError(f"Sandbox initialization failed: {self._init_error}") from self._init_error
|
|
else:
|
|
raise RuntimeError("Sandbox initialization failed") from self._init_error
|
|
|
|
def mount(self) -> bool:
|
|
return self._storage.mount(self._vm)
|
|
|
|
def unmount(self) -> bool:
|
|
return self._storage.unmount(self._vm)
|
|
|
|
def release(self) -> None:
|
|
self.cancel_init()
|
|
sandbox_id = self.id
|
|
try:
|
|
self._storage.unmount(self._vm)
|
|
logger.info("Sandbox storage unmounted: sandbox_id=%s", sandbox_id)
|
|
except Exception:
|
|
logger.exception("Failed to unmount sandbox storage: sandbox_id=%s", sandbox_id)
|
|
|
|
try:
|
|
self._vm.release_environment()
|
|
logger.info("Sandbox released: sandbox_id=%s", sandbox_id)
|
|
except Exception:
|
|
logger.exception("Failed to release sandbox: sandbox_id=%s", sandbox_id)
|