github/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-10 07:42:44 +00:00
Code Issues Packages Projects Releases Wiki Activity

perf(test): consolidate archive safety cases and cache session manager

Browse Source
This commit is contained in:
Peter Steinberger
2026-02-22 17:49:57 +00:00
parent b17f677439
commit 239f72c582
2 changed files with 118 additions and 139 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
src/agents/pi-embedded-runner.test.ts
View File

@@ -1,8 +1,9 @@
import fs from "node:fs/promises"; import fs from "node:fs/promises";
import os from "node:os"; import os from "node:os";
import path from "node:path"; import path from "node:path";
import { afterAll, beforeAll, describe, expect, it, vi } from "vitest"; import type { SessionManager as PiSessionManager } from "@mariozechner/pi-coding-agent";
import "./test-helpers/fast-coding-tools.js"; import "./test-helpers/fast-coding-tools.js";
import { afterAll, beforeAll, describe, expect, it, vi } from "vitest";
import type { OpenClawConfig } from "../config/config.js"; import type { OpenClawConfig } from "../config/config.js";
vi.mock("@mariozechner/pi-coding-agent", async () => { vi.mock("@mariozechner/pi-coding-agent", async () => {
@@ -115,6 +116,7 @@ vi.mock("@mariozechner/pi-ai", async () => {
}); });
let runEmbeddedPiAgent: typeof import("./pi-embedded-runner/run.js").runEmbeddedPiAgent; let runEmbeddedPiAgent: typeof import("./pi-embedded-runner/run.js").runEmbeddedPiAgent;
let SessionManager: PiSessionManager;
let tempRoot: string | undefined; let tempRoot: string | undefined;
let agentDir: string; let agentDir: string;
let workspaceDir: string; let workspaceDir: string;
@@ -124,6 +126,7 @@ let runCounter = 0;
beforeAll(async () => { beforeAll(async () => {
vi.useRealTimers(); vi.useRealTimers();
({ runEmbeddedPiAgent } = await import("./pi-embedded-runner/run.js")); ({ runEmbeddedPiAgent } = await import("./pi-embedded-runner/run.js"));
({ SessionManager } = await import("@mariozechner/pi-coding-agent"));
tempRoot = await fs.mkdtemp(path.join(os.tmpdir(), "openclaw-embedded-agent-")); tempRoot = await fs.mkdtemp(path.join(os.tmpdir(), "openclaw-embedded-agent-"));
agentDir = path.join(tempRoot, "agent"); agentDir = path.join(tempRoot, "agent");
workspaceDir = path.join(tempRoot, "workspace"); workspaceDir = path.join(tempRoot, "workspace");
@@ -171,7 +174,6 @@ const testSessionKey = "agent:test:embedded";
const immediateEnqueue = async <T>(task: () => Promise<T>) => task(); const immediateEnqueue = async <T>(task: () => Promise<T>) => task();
const runWithOrphanedSingleUserMessage = async (text: string) => { const runWithOrphanedSingleUserMessage = async (text: string) => {
const { SessionManager } = await import("@mariozechner/pi-coding-agent");
const sessionFile = nextSessionFile(); const sessionFile = nextSessionFile();
const sessionManager = SessionManager.open(sessionFile); const sessionManager = SessionManager.open(sessionFile);
sessionManager.appendMessage({ sessionManager.appendMessage({
@@ -297,7 +299,6 @@ describe("runEmbeddedPiAgent", () => {
"appends new user + assistant after existing transcript entries", "appends new user + assistant after existing transcript entries",
{ timeout: 90_000 }, { timeout: 90_000 },
async () => { async () => {
const { SessionManager } = await import("@mariozechner/pi-coding-agent");
const sessionFile = nextSessionFile(); const sessionFile = nextSessionFile();
const sessionManager = SessionManager.open(sessionFile); const sessionManager = SessionManager.open(sessionFile);

250
src/agents/skills-install.download.test.ts
View File

@@ -179,46 +179,44 @@ beforeEach(() => {
}); });
describe("installSkill download extraction safety", () => { describe("installSkill download extraction safety", () => {
it("rejects zip slip traversal", async () => { it("rejects archive traversal writes outside targetDir", async () => {
const targetDir = path.join(stateDir, "tools", "zip-slip", "target"); for (const testCase of [
const outsideWriteDir = path.join(workspaceDir, "outside-write"); {
const outsideWritePath = path.join(outsideWriteDir, "pwned.txt"); label: "zip-slip",
const url = "https://example.invalid/evil.zip"; name: "zip-slip",
url: "https://example.invalid/evil.zip",
archive: "zip" as const,
buffer: ZIP_SLIP_BUFFER,
},
{
label: "tar-slip",
name: "tar-slip",
url: "https://example.invalid/evil",
archive: "tar.gz" as const,
buffer: TAR_GZ_TRAVERSAL_BUFFER,
},
]) {
const targetDir = path.join(stateDir, "tools", testCase.name, "target");
const outsideWritePath = path.join(workspaceDir, "outside-write", "pwned.txt");
mockArchiveResponse(new Uint8Array(ZIP_SLIP_BUFFER)); mockArchiveResponse(new Uint8Array(testCase.buffer));
await writeDownloadSkill({
workspaceDir,
name: testCase.name,
installId: "dl",
url: testCase.url,
archive: testCase.archive,
targetDir,
});
await writeDownloadSkill({ const result = await installSkill({
workspaceDir, workspaceDir,
name: "zip-slip", skillName: testCase.name,
installId: "dl", installId: "dl",
url, });
archive: "zip", expect(result.ok, testCase.label).toBe(false);
targetDir, expect(await fileExists(outsideWritePath), testCase.label).toBe(false);
}); }
const result = await installSkill({ workspaceDir, skillName: "zip-slip", installId: "dl" });
expect(result.ok).toBe(false);
expect(await fileExists(outsideWritePath)).toBe(false);
});
it("rejects tar.gz traversal", async () => {
const targetDir = path.join(stateDir, "tools", "tar-slip", "target");
const outsideWritePath = path.join(workspaceDir, "outside-write", "pwned.txt");
const url = "https://example.invalid/evil";
mockArchiveResponse(new Uint8Array(TAR_GZ_TRAVERSAL_BUFFER));
await writeDownloadSkill({
workspaceDir,
name: "tar-slip",
installId: "dl",
url,
archive: "tar.gz",
targetDir,
});
const result = await installSkill({ workspaceDir, skillName: "tar-slip", installId: "dl" });
expect(result.ok).toBe(false);
expect(await fileExists(outsideWritePath)).toBe(false);
}); });
it("extracts zip with stripComponents safely", async () => { it("extracts zip with stripComponents safely", async () => {
@@ -287,107 +285,87 @@ describe("installSkill download extraction safety", () => {
}); });
describe("installSkill download extraction safety (tar.bz2)", () => { describe("installSkill download extraction safety (tar.bz2)", () => {
it("rejects tar.bz2 traversal before extraction", async () => { it("handles tar.bz2 extraction safety edge-cases", async () => {
const url = "https://example.invalid/evil.tbz2"; for (const testCase of [
{
label: "rejects traversal before extraction",
name: "tbz2-slip",
url: "https://example.invalid/evil.tbz2",
listOutput: "../outside.txt\n",
verboseListOutput: "-rw-r--r-- 0 0 0 0 Jan 1 00:00 ../outside.txt\n",
extract: "reject" as const,
expectedOk: false,
expectedExtract: false,
},
{
label: "rejects archives containing symlinks",
name: "tbz2-symlink",
url: "https://example.invalid/evil.tbz2",
listOutput: "link\nlink/pwned.txt\n",
verboseListOutput: "lrwxr-xr-x 0 0 0 0 Jan 1 00:00 link -> ../outside\n",
extract: "reject" as const,
expectedOk: false,
expectedExtract: false,
expectedStderrSubstring: "link",
},
{
label: "extracts safe archives with stripComponents",
name: "tbz2-ok",
url: "https://example.invalid/good.tbz2",
listOutput: "package/hello.txt\n",
verboseListOutput: "-rw-r--r-- 0 0 0 0 Jan 1 00:00 package/hello.txt\n",
stripComponents: 1,
extract: "ok" as const,
expectedOk: true,
expectedExtract: true,
},
{
label: "rejects stripComponents escapes",
name: "tbz2-strip-escape",
url: "https://example.invalid/evil.tbz2",
listOutput: "a/../b.txt\n",
verboseListOutput: "-rw-r--r-- 0 0 0 0 Jan 1 00:00 a/../b.txt\n",
stripComponents: 1,
extract: "reject" as const,
expectedOk: false,
expectedExtract: false,
},
]) {
const commandCallCount = runCommandWithTimeoutMock.mock.calls.length;
mockArchiveResponse(new Uint8Array([1, 2, 3]));
mockTarExtractionFlow({
listOutput: testCase.listOutput,
verboseListOutput: testCase.verboseListOutput,
extract: testCase.extract,
});
mockArchiveResponse(new Uint8Array([1, 2, 3])); await writeTarBz2Skill({
mockTarExtractionFlow({ workspaceDir,
listOutput: "../outside.txt\n", stateDir,
verboseListOutput: "-rw-r--r-- 0 0 0 0 Jan 1 00:00 ../outside.txt\n", name: testCase.name,
extract: "reject", url: testCase.url,
}); ...(typeof testCase.stripComponents === "number"
? { stripComponents: testCase.stripComponents }
: {}),
});
await writeTarBz2Skill({ const result = await installSkill({
workspaceDir, workspaceDir,
stateDir, skillName: testCase.name,
name: "tbz2-slip", installId: "dl",
url, });
}); expect(result.ok, testCase.label).toBe(testCase.expectedOk);
const result = await installSkill({ workspaceDir, skillName: "tbz2-slip", installId: "dl" }); const extractionAttempted = runCommandWithTimeoutMock.mock.calls
expect(result.ok).toBe(false); .slice(commandCallCount)
expect( .some((call) => (call[0] as string[])[1] === "xf");
runCommandWithTimeoutMock.mock.calls.some((call) => (call[0] as string[])[1] === "xf"), expect(extractionAttempted, testCase.label).toBe(testCase.expectedExtract);
).toBe(false);
});
it("rejects tar.bz2 archives containing symlinks", async () => { if (typeof testCase.expectedStderrSubstring === "string") {
const url = "https://example.invalid/evil.tbz2"; expect(result.stderr.toLowerCase(), testCase.label).toContain(
testCase.expectedStderrSubstring,
mockArchiveResponse(new Uint8Array([1, 2, 3])); );
mockTarExtractionFlow({ }
listOutput: "link\nlink/pwned.txt\n", }
verboseListOutput: "lrwxr-xr-x 0 0 0 0 Jan 1 00:00 link -> ../outside\n",
extract: "reject",
});
await writeTarBz2Skill({
workspaceDir,
stateDir,
name: "tbz2-symlink",
url,
});
const result = await installSkill({
workspaceDir,
skillName: "tbz2-symlink",
installId: "dl",
});
expect(result.ok).toBe(false);
expect(result.stderr.toLowerCase()).toContain("link");
});
it("extracts tar.bz2 with stripComponents safely (preflight only)", async () => {
const url = "https://example.invalid/good.tbz2";
mockArchiveResponse(new Uint8Array([1, 2, 3]));
mockTarExtractionFlow({
listOutput: "package/hello.txt\n",
verboseListOutput: "-rw-r--r-- 0 0 0 0 Jan 1 00:00 package/hello.txt\n",
extract: "ok",
});
await writeTarBz2Skill({
workspaceDir,
stateDir,
name: "tbz2-ok",
url,
stripComponents: 1,
});
const result = await installSkill({ workspaceDir, skillName: "tbz2-ok", installId: "dl" });
expect(result.ok).toBe(true);
expect(
runCommandWithTimeoutMock.mock.calls.some((call) => (call[0] as string[])[1] === "xf"),
).toBe(true);
});
it("rejects tar.bz2 stripComponents escape", async () => {
const url = "https://example.invalid/evil.tbz2";
mockArchiveResponse(new Uint8Array([1, 2, 3]));
mockTarExtractionFlow({
listOutput: "a/../b.txt\n",
verboseListOutput: "-rw-r--r-- 0 0 0 0 Jan 1 00:00 a/../b.txt\n",
extract: "reject",
});
await writeTarBz2Skill({
workspaceDir,
stateDir,
name: "tbz2-strip-escape",
url,
stripComponents: 1,
});
const result = await installSkill({
workspaceDir,
skillName: "tbz2-strip-escape",
installId: "dl",
});
expect(result.ok).toBe(false);
expect(
runCommandWithTimeoutMock.mock.calls.some((call) => (call[0] as string[])[1] === "xf"),
).toBe(false);
}); });
}); });