b3nw/zerogravity
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4e4d8e94741d04e5fa7f5c4376ebd383366204e8
zerogravity/docs/standalone-ls-todo.md
Nikketryhard 4e4d8e9474 chore: code cleanup and documentation overhaul 
- Remove debug header dump from MITM proxy (was temp debugging code)
- Suppress dead_code warnings for intentional OpenAI compat fields
- Rewrite README with styled mermaid architecture diagrams, full
  feature listing, usage examples, and CLI reference
- Update endpoint-gap-analysis: images implemented, audio only stretch
- Update mitm-interception-status: add request modification and error
  capture components
- Update standalone-ls-todo: add new endpoints to test results
- Zero compiler warnings
2026-02-15 18:27:53 -06:00

3.7 KiB
Raw Blame History

Standalone LS for Proxy Isolation

Status: FULLY IMPLEMENTED (incl. MITM interception)

The standalone LS is the default mode. Disable with --no-standalone. All cascade types (sync, streaming, multi-turn) and all endpoints work. MITM interception captures real token usage from Google's API.

Implementation

Module: src/standalone.rs

The proxy spawns a standalone LS as a child process:

  1. Discovers extension_server_port and csrf_token from the real LS (via /proc/PID/cmdline)
  2. Picks a random free port
  3. Builds init metadata protobuf (via proto::build_init_metadata())
  4. Spawns the LS binary with correct args and env vars
  5. Feeds init metadata via stdin, then closes it
  6. Waits for TCP readiness (retry loop)
  7. Kills the child on proxy shutdown (via Drop)

UID Isolation (MITM mode)

When scripts/mitm-redirect.sh install has been run:

  1. The antigravity-ls system user exists
  2. iptables redirects that UID's port-443 traffic → MITM proxy port
  3. The proxy spawns the LS via sudo -n -u antigravity-ls
  4. Environment variables (SSL_CERT_FILE, etc.) are passed via /usr/bin/env
  5. A combined CA bundle (system CAs + MITM CA) is written to /tmp/antigravity-mitm-combined-ca.pem
  6. Only the standalone LS traffic is intercepted — no impact on other software

Usage

# Setup (one-time, requires sudo)
sudo ./scripts/mitm-redirect.sh install

# Run
RUST_LOG=info ./target/release/antigravity-proxy

# Check intercepted usage
curl -s http://localhost:8741/v1/usage | jq .

Root Cause of Original Failure

The bash script (scripts/standalone-ls.sh) used MODEL_PLACEHOLDER_M3 — an unassigned/invalid model enum. The LS silently drops cascades with unknown models.

Fix: Use correct model enums (M18=Flash, M26=Opus4.6) via the proxy's byte-exact protobuf encoder.

Key Technical Details

  • Init metadata protobuf field 34 = detect_and_use_proxy (1=ENABLED)
  • Model IDs: M18=Flash, M8=Pro-High, M7=Pro-Low, M26=Opus4.6, M12=Opus4.5
  • LS binary: /usr/share/antigravity/resources/app/extensions/antigravity/bin/language_server_linux_x64
  • API endpoint: daily-cloudcode-pa.googleapis.com/v1internal:streamGenerateContent?alt=sse
  • SSE response format: {"response": {"usageMetadata": {"promptTokenCount", "candidatesTokenCount", "thoughtsTokenCount"}, "modelVersion": "..."}}

Test Results (2026-02-15)

Endpoint Result
GET /health OK
GET /v1/models OK, 5 models
GET /v1/sessions OK
GET /v1/quota OK, real plan/credits
GET /v1/usage OK, real MITM tokens
POST /v1/responses (sync) OK
POST /v1/responses (stream) OK, full SSE event set
POST /v1/responses (multi-turn) OK, context preserved
POST /v1/responses (tools) OK, function calls captured
POST /v1/responses (images) OK, MITM injection
POST /v1/chat/completions OK
POST /v1/gemini OK
GET/POST /v1/search OK, grounding + citations
MITM interception OK, TLS decrypt + parse
MITM request modification OK, tools/images/params
MITM usage capture OK, per-model token counts
MITM error capture OK, instant client feedback
UID isolation OK, no side effects
Reference in New Issue View Git Blame Copy Permalink