fix: isolate Docker sub-task HOME dirs to prevent config collisions (TODO johannesjo#19)

brooksc · claude · brooksc · commit d394ff675845 · 2026-05-14T11:34:26.000-07:00
Co-Authored-By: Claude Sonnet 4.6 &lt;noreply@anthropic.com&gt;
diff --git a/electron/ipc/pty.test.ts b/electron/ipc/pty.test.ts
@@ -239,24 +239,27 @@ describe('spawnAgent docker mode', () => {
     expect(volumeFlags).toContain(`${cwd}:${cwd}`);
   });
 
-  it('injects HOME=/tmp into docker run args', () => {
+  it('injects a per-agent HOME under /tmp into docker run args', () => {
     vi.stubEnv('HOME', '/Users/tester');
 
-    spawnAgent(createMockWindow(), buildSpawnArgs());
+    const agentId = nextAgentId();
+    spawnAgent(createMockWindow(), buildSpawnArgs({ agentId }));
 
     const { command, args } = getLastSpawnCall();
     expect(command).toBe('docker');
-    expect(getFlagValues(args, '-e')).toContain(`HOME=${DOCKER_CONTAINER_HOME}`);
+    expect(getFlagValues(args, '-e')).toContain(`HOME=${DOCKER_CONTAINER_HOME}/agent-${agentId}`);
   });
 
   it('does not forward host or renderer HOME as a generic docker env flag', () => {
     const hostHome = '/Users/host-home';
     const rendererHome = '/Users/renderer-home';
     vi.stubEnv('HOME', hostHome);
 
+    const agentId = nextAgentId();
     spawnAgent(
       createMockWindow(),
       buildSpawnArgs({
+        agentId,
         env: {
           API_KEY: 'secret',
           HOME: rendererHome,
@@ -267,7 +270,7 @@ describe('spawnAgent docker mode', () => {
     const envFlags = getFlagValues(getLastSpawnCall().args, '-e');
     expect(envFlags).toContain('API_KEY=secret');
     expect(envFlags.filter((value) => value.startsWith('HOME='))).toEqual([
-      `HOME=${DOCKER_CONTAINER_HOME}`,
+      `HOME=${DOCKER_CONTAINER_HOME}/agent-${agentId}`,
     ]);
     expect(envFlags).not.toContain(`HOME=${hostHome}`);
     expect(envFlags).not.toContain(`HOME=${rendererHome}`);
@@ -328,16 +331,18 @@ describe('spawnAgent docker mode', () => {
     expect(ctx.args).toEqual(['-c', '<redacted>']);
   });
 
-  it('redirects credential mounts under /tmp inside the container', () => {
+  it('redirects credential mounts under per-agent /tmp/agent-<id> inside the container', () => {
     const home = makeTempHome(['.ssh/', '.gitconfig', '.config/gh/']);
     vi.stubEnv('HOME', home);
 
-    spawnAgent(createMockWindow(), buildSpawnArgs());
+    const agentId = nextAgentId();
+    spawnAgent(createMockWindow(), buildSpawnArgs({ agentId }));
 
+    const containerHome = `${DOCKER_CONTAINER_HOME}/agent-${agentId}`;
     const volumeFlags = getFlagValues(getLastSpawnCall().args, '-v');
-    expect(volumeFlags).toContain(`${home}/.ssh:${DOCKER_CONTAINER_HOME}/.ssh:ro`);
-    expect(volumeFlags).toContain(`${home}/.gitconfig:${DOCKER_CONTAINER_HOME}/.gitconfig:ro`);
-    expect(volumeFlags).toContain(`${home}/.config/gh:${DOCKER_CONTAINER_HOME}/.config/gh:ro`);
+    expect(volumeFlags).toContain(`${home}/.ssh:${containerHome}/.ssh:ro`);
+    expect(volumeFlags).toContain(`${home}/.gitconfig:${containerHome}/.gitconfig:ro`);
+    expect(volumeFlags).toContain(`${home}/.config/gh:${containerHome}/.config/gh:ro`);
   });
 
   describe('agent config dir mounts (shareDockerAgentAuth)', () => {
@@ -353,11 +358,16 @@ describe('spawnAgent docker mode', () => {
         const home = makeTempHome([]);
         vi.stubEnv('HOME', home);
 
-        spawnAgent(createMockWindow(), buildSpawnArgs({ command, shareDockerAgentAuth: true }));
+        const agentId = nextAgentId();
+        spawnAgent(
+          createMockWindow(),
+          buildSpawnArgs({ agentId, command, shareDockerAgentAuth: true }),
+        );
 
+        const containerHome = `${DOCKER_CONTAINER_HOME}/agent-${agentId}`;
         const volumeFlags = getFlagValues(getLastSpawnCall().args, '-v');
         const expectedHostDir = `${home}/.parallel-code/agent-auth/${command}/${relDir}`;
-        expect(volumeFlags).toContain(`${expectedHostDir}:${DOCKER_CONTAINER_HOME}/${relDir}`);
+        expect(volumeFlags).toContain(`${expectedHostDir}:${containerHome}/${relDir}`);
       },
     );
 
@@ -378,14 +388,16 @@ describe('spawnAgent docker mode', () => {
       const home = makeTempHome([]);
       vi.stubEnv('HOME', home);
 
+      const agentId = nextAgentId();
       spawnAgent(
         createMockWindow(),
-        buildSpawnArgs({ command: 'claude', shareDockerAgentAuth: true }),
+        buildSpawnArgs({ agentId, command: 'claude', shareDockerAgentAuth: true }),
       );
 
+      const containerHome = `${DOCKER_CONTAINER_HOME}/agent-${agentId}`;
       const volumeFlags = getFlagValues(getLastSpawnCall().args, '-v');
       const expectedHostFile = `${home}/.parallel-code/agent-auth/claude/.claude.json`;
-      expect(volumeFlags).toContain(`${expectedHostFile}:${DOCKER_CONTAINER_HOME}/.claude.json`);
+      expect(volumeFlags).toContain(`${expectedHostFile}:${containerHome}/.claude.json`);
       expect(JSON.parse(fs.readFileSync(expectedHostFile, 'utf8'))).toMatchObject({
         projects: {
           '/workspace/project': {
diff --git a/electron/ipc/pty.ts b/electron/ipc/pty.ts
@@ -323,12 +323,23 @@ export function spawnAgent(
       cwd,
       // Forward env vars the agent needs (API keys, git config, etc.)
       ...buildDockerEnvFlags(spawnEnv),
-      // Writable HOME for agent config files (host HOME is blocked above)
+      // Per-agent writable HOME so concurrent sub-tasks don't collide on config files.
       '-e',
-      `HOME=${DOCKER_CONTAINER_HOME}`,
+      `HOME=${DOCKER_CONTAINER_HOME}/agent-${args.agentId}`,
       // Mount SSH and git config read-only for git operations
-      ...buildDockerCredentialMounts(args.command, args.shareDockerAgentAuth === true, cwd),
+      ...buildDockerCredentialMounts(
+        args.command,
+        args.shareDockerAgentAuth === true,
+        cwd,
+        `${DOCKER_CONTAINER_HOME}/agent-${args.agentId}`,
+      ),
       image,
+      // Pre-create the per-agent HOME directory then exec the real command.
+      // $HOME is already set by the -e flag above; using it here avoids repeating the path.
+      'sh',
+      '-c',
+      'mkdir -p "$HOME" && exec "$@"',
+      '--',
       command,
       ...args.args,
     ];
@@ -733,6 +744,7 @@ function buildDockerCredentialMounts(
   agentCommand: string,
   shareAgentAuth: boolean,
   worktreePath: string,
+  containerHome: string,
 ): string[] {
   const mounts: string[] = [];
   const home = process.env.HOME;
@@ -749,19 +761,19 @@ function buildDockerCredentialMounts(
   };
 
   // SSH keys for git push/pull
-  mountIfExists(`${home}/.ssh`, `${DOCKER_CONTAINER_HOME}/.ssh`);
+  mountIfExists(`${home}/.ssh`, `${containerHome}/.ssh`);
 
   // Git identity / config
-  mountIfExists(`${home}/.gitconfig`, `${DOCKER_CONTAINER_HOME}/.gitconfig`);
+  mountIfExists(`${home}/.gitconfig`, `${containerHome}/.gitconfig`);
 
   // GitHub CLI auth tokens (~/.config/gh/)
-  mountIfExists(`${home}/.config/gh`, `${DOCKER_CONTAINER_HOME}/.config/gh`);
+  mountIfExists(`${home}/.config/gh`, `${containerHome}/.config/gh`);
 
   // npm auth token
-  mountIfExists(`${home}/.npmrc`, `${DOCKER_CONTAINER_HOME}/.npmrc`);
+  mountIfExists(`${home}/.npmrc`, `${containerHome}/.npmrc`);
 
   // General HTTP/git HTTPS credentials (used by git credential helper)
-  mountIfExists(`${home}/.netrc`, `${DOCKER_CONTAINER_HOME}/.netrc`);
+  mountIfExists(`${home}/.netrc`, `${containerHome}/.netrc`);
 
   // Google Application Credentials file (for Vertex AI / gcloud) — mounted
   // at its original path since the env var points there.
@@ -782,7 +794,7 @@ function buildDockerCredentialMounts(
       const hostDir = path.join(home, '.parallel-code', 'agent-auth', baseCommand, relDir);
       try {
         fs.mkdirSync(hostDir, { recursive: true, mode: 0o700 });
-        mounts.push('-v', `${hostDir}:${DOCKER_CONTAINER_HOME}/${relDir}`);
+        mounts.push('-v', `${hostDir}:${containerHome}/${relDir}`);
       } catch {
         console.warn(`[docker-auth] Could not create host auth dir ${hostDir}, skipping mount`);
       }
@@ -798,7 +810,7 @@ function buildDockerCredentialMounts(
         if (baseCommand === 'claude' && relFile === '.claude.json') {
           seedClaudeProjectTrust(hostFile, worktreePath);
         }
-        mounts.push('-v', `${hostFile}:${DOCKER_CONTAINER_HOME}/${relFile}`);
+        mounts.push('-v', `${hostFile}:${containerHome}/${relFile}`);
       } catch {
         console.warn(`[docker-auth] Could not create host auth file ${hostFile}, skipping mount`);
       }
