mirror of
https://github.com/openai/codex.git
synced 2026-04-30 11:21:34 +03:00
e8949f4507
## Why The zsh integration tests were still brittle in two ways: - they relied on `CODEX_TEST_ZSH_PATH` / environment-specific setup, so they often did not exercise the patched zsh fork that `shell-tool-mcp` ships - once the tests consistently used the vendored zsh fork, they exposed real Linux-specific zsh-fork issues in CI In particular, the Linux failures were not just test noise: - the zsh-fork launch path was dropping `ExecRequest.arg0`, so Linux `codex-linux-sandbox` arg0 dispatch did not run and zsh wrapper-mode could receive malformed arguments - the `turn_start_shell_zsh_fork_subcommand_decline_marks_parent_declined_v2` test uses the zsh exec bridge (which talks to the parent over a Unix socket), but Linux restricted sandbox seccomp denies `connect(2)`, causing timeouts on `ubuntu-24.04` x86/arm This PR makes the zsh tests consistently run against the intended vendored zsh fork and fixes/hardens the zsh-fork path so the Linux CI signal is meaningful. ## What Changed - Added a single shared test-only DotSlash file for the patched zsh fork at `codex-rs/exec-server/tests/suite/zsh` (analogous to the existing `bash` test resource). - Updated both app-server and exec-server zsh tests to use that shared DotSlash zsh (no duplicate zsh DotSlash file, no `CODEX_TEST_ZSH_PATH` dependency). - Updated the app-server zsh-fork test helper to resolve the shared DotSlash zsh and avoid silently falling back to host zsh. - Kept the app-server zsh-fork tests configured via `config.toml`, using a test wrapper path where needed to force `zsh -df` (and rewrite `-lc` to `-c`) for the subcommand-decline test. - Hardened the app-server subcommand-decline zsh-fork test for CI variability: - tolerate an extra `/responses` POST with a no-op mock response - tolerate non-target approval ordering while remaining strict on the two `/usr/bin/true` approvals and decline behavior - use `DangerFullAccess` on Linux for this one test because it validates zsh approval flow, not Linux sandbox socket restrictions - Fixed zsh-fork process launching on Linux by preserving `req.arg0` in `ZshExecBridge::execute_shell_request(...)` so `codex-linux-sandbox` arg0 dispatch continues to work. - Moved `maybe_run_zsh_exec_wrapper_mode()` under `arg0_dispatch_or_else(...)` in `app-server` and `cli` so wrapper-mode handling coexists correctly with arg0-dispatched helper modes. - Consolidated duplicated `dotslash -- fetch` resolution logic into shared test support (`core/tests/common/lib.rs`). - Updated `codex-rs/exec-server/tests/suite/accept_elicitation.rs` to use DotSlash zsh and hardened the zsh elicitation test for Bazel/zsh differences by: - resolving an absolute `git` path - running `git init --quiet .` - asserting success / `.git` creation instead of relying on banner text ## Verification - `cargo test -p codex-app-server turn_start_zsh_fork -- --nocapture` - `cargo test -p codex-exec-server accept_elicitation -- --nocapture` - `bazel test //codex-rs/exec-server:exec-server-all-test --test_output=streamed --test_arg=--nocapture --test_arg=accept_elicitation_for_prompt_rule_with_zsh` - CI (`rust-ci`) on the final cleaned commit: `Tests — ubuntu-24.04 - x86_64-unknown-linux-gnu` and `Tests — ubuntu-24.04-arm - aarch64-unknown-linux-gnu` passed in [run 22291424358](https://github.com/openai/codex/actions/runs/22291424358)
486 lines
15 KiB
Rust
486 lines
15 KiB
Rust
#![expect(clippy::expect_used)]
|
||
|
||
use anyhow::Context as _;
|
||
use anyhow::ensure;
|
||
use codex_utils_cargo_bin::CargoBinError;
|
||
use ctor::ctor;
|
||
use tempfile::TempDir;
|
||
|
||
use codex_core::CodexThread;
|
||
use codex_core::config::Config;
|
||
use codex_core::config::ConfigBuilder;
|
||
use codex_core::config::ConfigOverrides;
|
||
use codex_utils_absolute_path::AbsolutePathBuf;
|
||
use regex_lite::Regex;
|
||
use std::path::PathBuf;
|
||
|
||
pub mod apps_test_server;
|
||
pub mod context_snapshot;
|
||
pub mod process;
|
||
pub mod responses;
|
||
pub mod streaming_sse;
|
||
pub mod test_codex;
|
||
pub mod test_codex_exec;
|
||
|
||
#[ctor]
|
||
fn enable_deterministic_unified_exec_process_ids_for_tests() {
|
||
codex_core::test_support::set_thread_manager_test_mode(true);
|
||
codex_core::test_support::set_deterministic_process_ids(true);
|
||
}
|
||
|
||
#[ctor]
|
||
fn configure_insta_workspace_root_for_snapshot_tests() {
|
||
if std::env::var_os("INSTA_WORKSPACE_ROOT").is_some() {
|
||
return;
|
||
}
|
||
|
||
let workspace_root = codex_utils_cargo_bin::repo_root()
|
||
.ok()
|
||
.map(|root| root.join("codex-rs"));
|
||
|
||
if let Some(workspace_root) = workspace_root
|
||
&& let Ok(workspace_root) = workspace_root.canonicalize()
|
||
{
|
||
// Safety: this ctor runs at process startup before test threads begin.
|
||
unsafe {
|
||
std::env::set_var("INSTA_WORKSPACE_ROOT", workspace_root);
|
||
}
|
||
}
|
||
}
|
||
|
||
#[track_caller]
|
||
pub fn assert_regex_match<'s>(pattern: &str, actual: &'s str) -> regex_lite::Captures<'s> {
|
||
let regex = Regex::new(pattern).unwrap_or_else(|err| {
|
||
panic!("failed to compile regex {pattern:?}: {err}");
|
||
});
|
||
regex
|
||
.captures(actual)
|
||
.unwrap_or_else(|| panic!("regex {pattern:?} did not match {actual:?}"))
|
||
}
|
||
|
||
pub fn test_path_buf_with_windows(unix_path: &str, windows_path: Option<&str>) -> PathBuf {
|
||
if cfg!(windows) {
|
||
if let Some(windows) = windows_path {
|
||
PathBuf::from(windows)
|
||
} else {
|
||
let mut path = PathBuf::from(r"C:\");
|
||
path.extend(
|
||
unix_path
|
||
.trim_start_matches('/')
|
||
.split('/')
|
||
.filter(|segment| !segment.is_empty()),
|
||
);
|
||
path
|
||
}
|
||
} else {
|
||
PathBuf::from(unix_path)
|
||
}
|
||
}
|
||
|
||
pub fn test_path_buf(unix_path: &str) -> PathBuf {
|
||
test_path_buf_with_windows(unix_path, None)
|
||
}
|
||
|
||
pub fn test_absolute_path_with_windows(
|
||
unix_path: &str,
|
||
windows_path: Option<&str>,
|
||
) -> AbsolutePathBuf {
|
||
AbsolutePathBuf::from_absolute_path(test_path_buf_with_windows(unix_path, windows_path))
|
||
.expect("test path should be absolute")
|
||
}
|
||
|
||
pub fn test_absolute_path(unix_path: &str) -> AbsolutePathBuf {
|
||
test_absolute_path_with_windows(unix_path, None)
|
||
}
|
||
|
||
pub fn test_tmp_path() -> AbsolutePathBuf {
|
||
test_absolute_path_with_windows("/tmp", Some(r"C:\Users\codex\AppData\Local\Temp"))
|
||
}
|
||
|
||
pub fn test_tmp_path_buf() -> PathBuf {
|
||
test_tmp_path().into_path_buf()
|
||
}
|
||
|
||
/// Fetch a DotSlash resource and return the resolved executable/file path.
|
||
pub fn fetch_dotslash_file(
|
||
dotslash_file: &std::path::Path,
|
||
dotslash_cache: Option<&std::path::Path>,
|
||
) -> anyhow::Result<PathBuf> {
|
||
let mut command = std::process::Command::new("dotslash");
|
||
command.arg("--").arg("fetch").arg(dotslash_file);
|
||
if let Some(dotslash_cache) = dotslash_cache {
|
||
command.env("DOTSLASH_CACHE", dotslash_cache);
|
||
}
|
||
let output = command.output().with_context(|| {
|
||
format!(
|
||
"failed to run dotslash to fetch resource {}",
|
||
dotslash_file.display()
|
||
)
|
||
})?;
|
||
ensure!(
|
||
output.status.success(),
|
||
"dotslash fetch failed for {}: {}",
|
||
dotslash_file.display(),
|
||
String::from_utf8_lossy(&output.stderr).trim()
|
||
);
|
||
let fetched_path = String::from_utf8(output.stdout)
|
||
.context("dotslash fetch output was not utf8")?
|
||
.trim()
|
||
.to_string();
|
||
ensure!(!fetched_path.is_empty(), "dotslash fetch output was empty");
|
||
let fetched_path = PathBuf::from(fetched_path);
|
||
ensure!(
|
||
fetched_path.is_file(),
|
||
"dotslash returned non-file path: {}",
|
||
fetched_path.display()
|
||
);
|
||
Ok(fetched_path)
|
||
}
|
||
|
||
/// Returns a default `Config` whose on-disk state is confined to the provided
|
||
/// temporary directory. Using a per-test directory keeps tests hermetic and
|
||
/// avoids clobbering a developer’s real `~/.codex`.
|
||
pub async fn load_default_config_for_test(codex_home: &TempDir) -> Config {
|
||
ConfigBuilder::default()
|
||
.codex_home(codex_home.path().to_path_buf())
|
||
.harness_overrides(default_test_overrides())
|
||
.build()
|
||
.await
|
||
.expect("defaults for test should always succeed")
|
||
}
|
||
|
||
#[cfg(target_os = "linux")]
|
||
fn default_test_overrides() -> ConfigOverrides {
|
||
ConfigOverrides {
|
||
codex_linux_sandbox_exe: Some(
|
||
codex_utils_cargo_bin::cargo_bin("codex-linux-sandbox")
|
||
.expect("should find binary for codex-linux-sandbox"),
|
||
),
|
||
..ConfigOverrides::default()
|
||
}
|
||
}
|
||
|
||
#[cfg(not(target_os = "linux"))]
|
||
fn default_test_overrides() -> ConfigOverrides {
|
||
ConfigOverrides::default()
|
||
}
|
||
|
||
/// Builds an SSE stream body from a JSON fixture.
|
||
///
|
||
/// The fixture must contain an array of objects where each object represents a
|
||
/// single SSE event with at least a `type` field matching the `event:` value.
|
||
/// Additional fields become the JSON payload for the `data:` line. An object
|
||
/// with only a `type` field results in an event with no `data:` section. This
|
||
/// makes it trivial to extend the fixtures as OpenAI adds new event kinds or
|
||
/// fields.
|
||
pub fn load_sse_fixture(path: impl AsRef<std::path::Path>) -> String {
|
||
let events: Vec<serde_json::Value> =
|
||
serde_json::from_reader(std::fs::File::open(path).expect("read fixture"))
|
||
.expect("parse JSON fixture");
|
||
events
|
||
.into_iter()
|
||
.map(|e| {
|
||
let kind = e
|
||
.get("type")
|
||
.and_then(|v| v.as_str())
|
||
.expect("fixture event missing type");
|
||
if e.as_object().map(|o| o.len() == 1).unwrap_or(false) {
|
||
format!("event: {kind}\n\n")
|
||
} else {
|
||
format!("event: {kind}\ndata: {e}\n\n")
|
||
}
|
||
})
|
||
.collect()
|
||
}
|
||
|
||
pub fn load_sse_fixture_with_id_from_str(raw: &str, id: &str) -> String {
|
||
let replaced = raw.replace("__ID__", id);
|
||
let events: Vec<serde_json::Value> =
|
||
serde_json::from_str(&replaced).expect("parse JSON fixture");
|
||
events
|
||
.into_iter()
|
||
.map(|e| {
|
||
let kind = e
|
||
.get("type")
|
||
.and_then(|v| v.as_str())
|
||
.expect("fixture event missing type");
|
||
if e.as_object().map(|o| o.len() == 1).unwrap_or(false) {
|
||
format!("event: {kind}\n\n")
|
||
} else {
|
||
format!("event: {kind}\ndata: {e}\n\n")
|
||
}
|
||
})
|
||
.collect()
|
||
}
|
||
|
||
pub async fn wait_for_event<F>(
|
||
codex: &CodexThread,
|
||
predicate: F,
|
||
) -> codex_protocol::protocol::EventMsg
|
||
where
|
||
F: FnMut(&codex_protocol::protocol::EventMsg) -> bool,
|
||
{
|
||
use tokio::time::Duration;
|
||
wait_for_event_with_timeout(codex, predicate, Duration::from_secs(1)).await
|
||
}
|
||
|
||
pub async fn wait_for_event_match<T, F>(codex: &CodexThread, matcher: F) -> T
|
||
where
|
||
F: Fn(&codex_protocol::protocol::EventMsg) -> Option<T>,
|
||
{
|
||
let ev = wait_for_event(codex, |ev| matcher(ev).is_some()).await;
|
||
matcher(&ev).unwrap()
|
||
}
|
||
|
||
pub async fn wait_for_event_with_timeout<F>(
|
||
codex: &CodexThread,
|
||
mut predicate: F,
|
||
wait_time: tokio::time::Duration,
|
||
) -> codex_protocol::protocol::EventMsg
|
||
where
|
||
F: FnMut(&codex_protocol::protocol::EventMsg) -> bool,
|
||
{
|
||
use tokio::time::Duration;
|
||
use tokio::time::timeout;
|
||
loop {
|
||
// Allow a bit more time to accommodate async startup work (e.g. config IO, tool discovery)
|
||
let ev = timeout(wait_time.max(Duration::from_secs(10)), codex.next_event())
|
||
.await
|
||
.expect("timeout waiting for event")
|
||
.expect("stream ended unexpectedly");
|
||
if predicate(&ev.msg) {
|
||
return ev.msg;
|
||
}
|
||
}
|
||
}
|
||
|
||
pub fn sandbox_env_var() -> &'static str {
|
||
codex_core::spawn::CODEX_SANDBOX_ENV_VAR
|
||
}
|
||
|
||
pub fn sandbox_network_env_var() -> &'static str {
|
||
codex_core::spawn::CODEX_SANDBOX_NETWORK_DISABLED_ENV_VAR
|
||
}
|
||
|
||
pub fn format_with_current_shell(command: &str) -> Vec<String> {
|
||
codex_core::shell::default_user_shell().derive_exec_args(command, true)
|
||
}
|
||
|
||
pub fn format_with_current_shell_display(command: &str) -> String {
|
||
let args = format_with_current_shell(command);
|
||
shlex::try_join(args.iter().map(String::as_str)).expect("serialize current shell command")
|
||
}
|
||
|
||
pub fn format_with_current_shell_non_login(command: &str) -> Vec<String> {
|
||
codex_core::shell::default_user_shell().derive_exec_args(command, false)
|
||
}
|
||
|
||
pub fn format_with_current_shell_display_non_login(command: &str) -> String {
|
||
let args = format_with_current_shell_non_login(command);
|
||
shlex::try_join(args.iter().map(String::as_str))
|
||
.expect("serialize current shell command without login")
|
||
}
|
||
|
||
pub fn stdio_server_bin() -> Result<String, CargoBinError> {
|
||
codex_utils_cargo_bin::cargo_bin("test_stdio_server").map(|p| p.to_string_lossy().to_string())
|
||
}
|
||
|
||
pub mod fs_wait {
|
||
use anyhow::Result;
|
||
use anyhow::anyhow;
|
||
use notify::RecursiveMode;
|
||
use notify::Watcher;
|
||
use std::path::Path;
|
||
use std::path::PathBuf;
|
||
use std::sync::mpsc;
|
||
use std::sync::mpsc::RecvTimeoutError;
|
||
use std::time::Duration;
|
||
use std::time::Instant;
|
||
use tokio::task;
|
||
use walkdir::WalkDir;
|
||
|
||
pub async fn wait_for_path_exists(
|
||
path: impl Into<PathBuf>,
|
||
timeout: Duration,
|
||
) -> Result<PathBuf> {
|
||
let path = path.into();
|
||
task::spawn_blocking(move || wait_for_path_exists_blocking(path, timeout)).await?
|
||
}
|
||
|
||
pub async fn wait_for_matching_file(
|
||
root: impl Into<PathBuf>,
|
||
timeout: Duration,
|
||
predicate: impl FnMut(&Path) -> bool + Send + 'static,
|
||
) -> Result<PathBuf> {
|
||
let root = root.into();
|
||
task::spawn_blocking(move || {
|
||
let mut predicate = predicate;
|
||
blocking_find_matching_file(root, timeout, &mut predicate)
|
||
})
|
||
.await?
|
||
}
|
||
|
||
fn wait_for_path_exists_blocking(path: PathBuf, timeout: Duration) -> Result<PathBuf> {
|
||
if path.exists() {
|
||
return Ok(path);
|
||
}
|
||
|
||
let watch_root = nearest_existing_ancestor(&path);
|
||
let (tx, rx) = mpsc::channel();
|
||
let mut watcher = notify::recommended_watcher(move |res| {
|
||
let _ = tx.send(res);
|
||
})?;
|
||
watcher.watch(&watch_root, RecursiveMode::Recursive)?;
|
||
|
||
let deadline = Instant::now() + timeout;
|
||
loop {
|
||
if path.exists() {
|
||
return Ok(path.clone());
|
||
}
|
||
let now = Instant::now();
|
||
if now >= deadline {
|
||
break;
|
||
}
|
||
let remaining = deadline.saturating_duration_since(now);
|
||
match rx.recv_timeout(remaining) {
|
||
Ok(Ok(_event)) => {
|
||
if path.exists() {
|
||
return Ok(path.clone());
|
||
}
|
||
}
|
||
Ok(Err(err)) => return Err(err.into()),
|
||
Err(RecvTimeoutError::Timeout) => break,
|
||
Err(RecvTimeoutError::Disconnected) => break,
|
||
}
|
||
}
|
||
|
||
if path.exists() {
|
||
Ok(path)
|
||
} else {
|
||
Err(anyhow!("timed out waiting for {path:?}"))
|
||
}
|
||
}
|
||
|
||
fn blocking_find_matching_file(
|
||
root: PathBuf,
|
||
timeout: Duration,
|
||
predicate: &mut impl FnMut(&Path) -> bool,
|
||
) -> Result<PathBuf> {
|
||
let root = wait_for_path_exists_blocking(root, timeout)?;
|
||
|
||
if let Some(found) = scan_for_match(&root, predicate) {
|
||
return Ok(found);
|
||
}
|
||
|
||
let (tx, rx) = mpsc::channel();
|
||
let mut watcher = notify::recommended_watcher(move |res| {
|
||
let _ = tx.send(res);
|
||
})?;
|
||
watcher.watch(&root, RecursiveMode::Recursive)?;
|
||
|
||
let deadline = Instant::now() + timeout;
|
||
|
||
while Instant::now() < deadline {
|
||
let remaining = deadline.saturating_duration_since(Instant::now());
|
||
match rx.recv_timeout(remaining) {
|
||
Ok(Ok(_event)) => {
|
||
if let Some(found) = scan_for_match(&root, predicate) {
|
||
return Ok(found);
|
||
}
|
||
}
|
||
Ok(Err(err)) => return Err(err.into()),
|
||
Err(RecvTimeoutError::Timeout) => break,
|
||
Err(RecvTimeoutError::Disconnected) => break,
|
||
}
|
||
}
|
||
|
||
if let Some(found) = scan_for_match(&root, predicate) {
|
||
Ok(found)
|
||
} else {
|
||
Err(anyhow!("timed out waiting for matching file in {root:?}"))
|
||
}
|
||
}
|
||
|
||
fn scan_for_match(root: &Path, predicate: &mut impl FnMut(&Path) -> bool) -> Option<PathBuf> {
|
||
for entry in WalkDir::new(root).into_iter().filter_map(Result::ok) {
|
||
let path = entry.path();
|
||
if !entry.file_type().is_file() {
|
||
continue;
|
||
}
|
||
if predicate(path) {
|
||
return Some(path.to_path_buf());
|
||
}
|
||
}
|
||
None
|
||
}
|
||
|
||
fn nearest_existing_ancestor(path: &Path) -> PathBuf {
|
||
let mut current = path;
|
||
loop {
|
||
if current.exists() {
|
||
return current.to_path_buf();
|
||
}
|
||
match current.parent() {
|
||
Some(parent) => current = parent,
|
||
None => return PathBuf::from("."),
|
||
}
|
||
}
|
||
}
|
||
}
|
||
|
||
#[macro_export]
|
||
macro_rules! skip_if_sandbox {
|
||
() => {{
|
||
if ::std::env::var($crate::sandbox_env_var())
|
||
== ::core::result::Result::Ok("seatbelt".to_string())
|
||
{
|
||
eprintln!(
|
||
"{} is set to 'seatbelt', skipping test.",
|
||
$crate::sandbox_env_var()
|
||
);
|
||
return;
|
||
}
|
||
}};
|
||
($return_value:expr $(,)?) => {{
|
||
if ::std::env::var($crate::sandbox_env_var())
|
||
== ::core::result::Result::Ok("seatbelt".to_string())
|
||
{
|
||
eprintln!(
|
||
"{} is set to 'seatbelt', skipping test.",
|
||
$crate::sandbox_env_var()
|
||
);
|
||
return $return_value;
|
||
}
|
||
}};
|
||
}
|
||
|
||
#[macro_export]
|
||
macro_rules! skip_if_no_network {
|
||
() => {{
|
||
if ::std::env::var($crate::sandbox_network_env_var()).is_ok() {
|
||
println!(
|
||
"Skipping test because it cannot execute when network is disabled in a Codex sandbox."
|
||
);
|
||
return;
|
||
}
|
||
}};
|
||
($return_value:expr $(,)?) => {{
|
||
if ::std::env::var($crate::sandbox_network_env_var()).is_ok() {
|
||
println!(
|
||
"Skipping test because it cannot execute when network is disabled in a Codex sandbox."
|
||
);
|
||
return $return_value;
|
||
}
|
||
}};
|
||
}
|
||
|
||
#[macro_export]
|
||
macro_rules! skip_if_windows {
|
||
($return_value:expr $(,)?) => {{
|
||
if cfg!(target_os = "windows") {
|
||
println!("Skipping test because it cannot execute on Windows.");
|
||
return $return_value;
|
||
}
|
||
}};
|
||
}
|