Distributed Nodes

Hub ←→ Node distributed architecture for CortexPrism, enabling a central Hub to orchestrate multiple remote Nodes with tiered capabilities, secure WebSocket communication, and session routing.

Architecture

Hub side (packages/server/src/hub/, 4 files): ... Remote side (packages/server/src/remote/, 3 files):

File	Purpose
`agent.ts`	Node agent loop — connection, heartbeat, directive execution, local policy enforcement
`manager.ts`	In-memory agent registry and config management
`types.ts`	Protocol message types, metrics, stream chunk types

Hub Side

Node Registry

Persistent storage in SQLite (nodes table) via the core database. Each node has:

Field	Description
`id`	Generated: `node_<timestamp>_<random>`
`name`	Human-readable name
`endpoint`	WebSocket endpoint URL
`tier`	`root` / `sudo` / `unprivileged`
`status`	`connecting` / `connected` / `disconnected` / `error` / `deregistered`
`capabilities`	JSON array of capability strings
`version`	Cortex version running on node
`group_name`	Optional grouping label
`last_heartbeat`	ISO timestamp of last ping
`last_processed_directive_id`	For resume on reconnect
`registered_at` / `created_at` / `updated_at`	Timestamps

Token management: 32-byte hex tokens stored in the vault (node_token_<id>), with rotation and validation. Nodes can be grouped and queried by tier, status, and group.

WebSocket Node Handler

handleNodeWebSocket() upgrades HTTP requests to WebSocket and processes messages:

Hub → Node messages: registered, heartbeat_ack, directive, cancel, config_update, rekey, error

Node → Hub messages: register, heartbeat, result, stream_chunk, disconnect

Heartbeat interval: 30 seconds. Timeout: 3x interval (90s). A health check loop runs every 10 seconds to detect stale connections via heartbeat acknowledgments and the database (for disconnected nodes with stale heartbeat timestamps).

Directive Dispatch

dispatchDirective() sends directives to connected nodes after validating against the node's capability tier and global policies via validateNodeDirective(). dispatchAndWait() returns a Promise that resolves when the node sends back a result message or rejects on timeout.

Pending directives are tracked with automatic cleanup on node disconnect or timeout.

Session Routing

directiveSessionMap maps directive IDs to {sessionId, nodeId} pairs. When a node returns a result, routeResult() fires result handlers with the session context. The system supports registration, cancellation, and event-based handlers for result routing.

Capability Tiers

Tier	Shell	File Writes	System Paths	Description
root	Full sudo	All paths (`/`)	Unrestricted	Full unrestricted access, audit-logged
sudo	Managed commands via regex	`/home/`, `/opt/`, `/var/`, `/tmp/`, `/etc/`, `/usr/local/`	Forbidden: `/etc/shadow`, `/root/`, `/boot/`, `/sys/`, `/proc/`	Scoped sudo with allow-listed commands
unprivileged	Blocked	`/home/`, `/tmp/` only	Forbidden: `/etc/`, `/root/`, `/boot/`, `/sys/`, `/proc/`, `/var/`, `/opt/`, `/usr/`	Read-only exploration, no shell

Sudo-tier allowed commands use a regex allow-list:

systemctl\s+(restart|start|stop|status)\s+\S+
docker\s+(ps|logs|restart|start|stop)\b.*
apt-get\s+(install|update|upgrade)\b.*
journalctl\b.*
supervisorctl\s+(restart|start|stop|status)\s+\S+

Validation functions: isToolAllowedByTier(), isPathAllowedByTier(), isCommandAllowedByTier().

Remote Side (Node Agent)

runNodeAgent() implements the Node-side loop:

Connect: Establishes WebSocket to Hub and sends register with agentId, name, token, version, tier, group, and last-processed directive ID
Heartbeat: Every heartbeatMs sends heartbeat with system metrics (CPU%, memory MB, disk free MB, active directives, uptime)
Directive handling: Parses directives into tool calls, enforces local policy checks (tier + path + command validation), executes via executeTool(), optionally streams output in 4KB chunks
Reconnection: Exponential backoff (doubles each attempt, capped at 30s)

Local Policy Enforcement

Before executing any directive, the node performs a secondary policy check:

Validates tool against tier whitelist/blocklist
Validates shell/exec commands against tier command regex
Validates file operation paths against tier path restrictions

Metrics Collection

Node metrics collected every heartbeat cycle:

CPU percentage (from /proc/stat)
Memory (from /proc/meminfo)
Disk free/total (from df command)
Active directive count
Uptime in seconds

Protocol Messages

Node → Hub

Type	Fields
`register`	`agentId`, `name`, `token`, `capabilities`, `version`, `tier`, `group`, `lastProcessedDirectiveId`
`heartbeat`	`agentId`, `metrics?` (cpuPercent, memoryMb, memoryTotalMb, diskFreeMb, diskTotalMb, activeDirectives, uptimeSeconds)
`result`	`directiveId`, `success`, `output`, `error?`, `durationMs`
`stream_chunk`	`directiveId`, `seq`, `chunk`
`disconnect`	`reason`

Hub → Node

Type	Fields
`registered`	`agentId`
`heartbeat_ack`	`agentId`
`directive`	`id`, `sessionId`, `action`, `params`, `stream?`, `timeoutMs?`
`cancel`	`directiveId`
`config_update`	`agentId`, `policies?`, `toolsAllowList?`
`rekey`	`agentId`, `newToken`
`error`	`message`, `code?` (bidirectional)

CLI and REST API

cortex hub start              # Start Hub server
cortex node register          # Register a new node
cortex node list              # List registered nodes
cortex node deregister ID     # Deregister a node
cortex node token ID          # Show node token
cortex node token-rotate ID   # Rotate node token
cortex remote connect         # Start remote node agent

Method	Path	Description
`GET`	`/api/nodes`	List nodes (filter: `?group=`, `?tier=`, `?status=`)
`POST`	`/api/nodes`	Register node
`DELETE`	`/api/nodes/:id`	Deregister node
`POST`	`/api/nodes/:id/token-rotate`	Rotate token
`GET`	`/api/nodes/groups`	List node groups
`WS`	`/ws/node`	Node WebSocket endpoint

Swarm (v0.52.0+)

The distributed agent swarm (packages/infra/src/swarm/) extends the Hub/Node model for cross-instance agent coordination. Swarm uses A2A as the wire transport and adds fleet topology, resource aggregation, directive broadcasting, and remote kernel process proxying. The cortex swarm CLI provides init, nodes, topology, report, drain, and seal subcommands. See the Changelog for details.

Uh oh!

Uh oh!

Distributed Nodes

Distributed Nodes

Architecture

Hub Side

Node Registry

WebSocket Node Handler

Directive Dispatch

Session Routing

Capability Tiers

Remote Side (Node Agent)

Local Policy Enforcement

Metrics Collection

Protocol Messages

Node → Hub

Hub → Node

CLI and REST API

Swarm (v0.52.0+)

See Also

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!