mirror of
https://github.com/garrytan/gstack.git
synced 2026-06-26 19:49:57 +02:00
Garry Tan
3af07a0c23
Commit 0 of the v1.44 long-lived-sidebar PR — foundation for the watchdog
and removes a latent cross-session footgun.
`pkill -f terminal-agent\.ts` (cli.ts spawn site + server.ts shutdown) matched
by argv regex and would kill ANY process whose argv contained the string —
sibling gstack sessions on the same host, an editor with the file open, a
second `$B connect` run. Identity-based PID kill via a new helper module
removes that whole class of bug.
* New `browse/src/terminal-agent-control.ts`: `readAgentRecord`,
`writeAgentRecord`, `clearAgentRecord`, `killAgentByRecord`. Validates
PID liveness via `isProcessAlive` before signaling (PID-reuse defense).
* `terminal-agent.ts` writes `<stateDir>/terminal-agent-pid` (JSON
`{pid, gen, startedAt}`) at boot; clears on SIGTERM/SIGINT.
* New per-boot `CURRENT_GEN` (16-byte random); `/internal/*` callers can
include `X-Browse-Gen` to defend against split-brain in the upcoming
watchdog. Absent header is accepted (backward compat); mismatch returns
409. New `checkInternalAuth` helper centralizes bearer + gen checks.
* New `/internal/healthz` route — agent liveness probe used by the
upcoming watchdog (returns pid/gen/sessions, no claude-binary lookup).
* `cli.ts` and `server.ts` both call `killAgentByRecord` instead of pkill.
* `ServerConfig.ownsTerminalAgent` JSDoc updated; the gated teardown now
runs 4 side effects (was 3) — adds the new agent-record unlink.
Test changes:
* New `browse/test/terminal-agent-pid-identity.test.ts` — static-grep
tripwire that fails CI if any source file re-introduces `pkill ...
terminal-agent` or `spawnSync('pkill', ...)`; round-trips
write/read/clear; verifies killAgentByRecord no-ops on dead PIDs.
* `browse/test/server-embedder-terminal-port.test.ts` rewritten to
intercept `process.kill` (not `child_process.spawnSync`); writes a
sentinel agent-record with a guaranteed-dead PID; asserts probe-only
(signal 0) calls, no termination signals; verifies all 3 discovery
files including the new terminal-agent-pid.
Closes TODOS.md P3 ("Identity-based terminal-agent kill").
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
233 lines
9.3 KiB
TypeScript
233 lines
9.3 KiB
TypeScript
import { describe, test, expect, beforeEach, beforeAll, afterAll } from 'bun:test';
|
|
import * as fs from 'fs';
|
|
import * as path from 'path';
|
|
import * as crypto from 'crypto';
|
|
import {
|
|
buildFetchHandler,
|
|
__resetShuttingDown,
|
|
type ServerConfig,
|
|
} from '../src/server';
|
|
import { __resetRegistry } from '../src/token-registry';
|
|
import { BrowserManager } from '../src/browser-manager';
|
|
import { resolveConfig } from '../src/config';
|
|
|
|
// Tests for the v1.41+ ownsTerminalAgent flag.
|
|
//
|
|
// Embedders (gbrowser phoenix overlay) that run their own PTY server and write
|
|
// terminal-port / terminal-internal-token / terminal-agent-pid themselves were
|
|
// getting those files clobbered by gstack's shutdown(). The flag (default true)
|
|
// gates four side effects (v1.44+):
|
|
// 1. identity-based kill of the PID in <stateDir>/terminal-agent-pid
|
|
// 2. unlink terminal-port
|
|
// 3. unlink terminal-internal-token
|
|
// 4. unlink terminal-agent-pid
|
|
// False = embedder owns them, gstack stays hands-off.
|
|
//
|
|
// Pre-v1.44 used `pkill -f terminal-agent\.ts` which matched sibling gstack
|
|
// sessions on the same host — see browse/src/terminal-agent-control.ts header.
|
|
//
|
|
// CRITICAL: each test stubs process.exit (so shutdown's exit doesn't kill
|
|
// the test runner). The PID in the test agent-record is a guaranteed-dead
|
|
// PID (1 = init / launchd — exists but cannot be killed by an unprivileged
|
|
// process, so safeKill returns ESRCH-equivalent without affecting anything).
|
|
// Use isProcessAlive's false branch by also testing with a PID that does
|
|
// not exist (negative PID rejected by the OS).
|
|
|
|
const stateDir = resolveConfig().stateDir;
|
|
const PORT_FILE = path.join(stateDir, 'terminal-port');
|
|
const TOKEN_FILE = path.join(stateDir, 'terminal-internal-token');
|
|
const AGENT_RECORD_FILE = path.join(stateDir, 'terminal-agent-pid');
|
|
const SENTINEL_PORT = 'sentinel-port-65432';
|
|
const SENTINEL_TOKEN = 'sentinel-token-abcdef1234567890';
|
|
// PID 2^31-1 is the Linux PID_MAX_LIMIT; macOS uses 99998. Either way, no
|
|
// real process will ever hold this PID on a developer machine. isProcessAlive
|
|
// returns false → killAgentByRecord no-ops without sending any signal.
|
|
const SENTINEL_DEAD_PID = 2147483646;
|
|
|
|
function makeMinimalConfig(overrides: Partial<ServerConfig> = {}): ServerConfig {
|
|
const token = 'embedder-test-' + crypto.randomBytes(16).toString('hex');
|
|
return {
|
|
authToken: token,
|
|
browsePort: 34568,
|
|
idleTimeoutMs: 1_800_000,
|
|
config: resolveConfig(),
|
|
browserManager: new BrowserManager(),
|
|
startTime: Date.now(),
|
|
...overrides,
|
|
};
|
|
}
|
|
|
|
function writeSentinels(): void {
|
|
fs.mkdirSync(stateDir, { recursive: true });
|
|
fs.writeFileSync(PORT_FILE, SENTINEL_PORT);
|
|
fs.writeFileSync(TOKEN_FILE, SENTINEL_TOKEN);
|
|
fs.writeFileSync(
|
|
AGENT_RECORD_FILE,
|
|
JSON.stringify({ pid: SENTINEL_DEAD_PID, gen: 'sentinel-gen', startedAt: Date.now() }),
|
|
);
|
|
}
|
|
|
|
function readIfExists(p: string): string | null {
|
|
try { return fs.readFileSync(p, 'utf-8'); } catch { return null; }
|
|
}
|
|
|
|
/**
|
|
* Stubs process.exit so shutdown()'s process.exit(0) throws an __exit:N
|
|
* marker the test can swallow instead of killing the runner. Also stubs
|
|
* process.kill so an accidental kill (regression in killAgentByRecord
|
|
* that bypassed isProcessAlive) cannot reach a real PID on the developer
|
|
* machine. Returns the captured kill calls so tests can assert kill
|
|
* scope.
|
|
*/
|
|
async function withStubs(
|
|
cb: (killCalls: Array<[number, NodeJS.Signals | number]>) => Promise<void>
|
|
): Promise<Array<[number, NodeJS.Signals | number]>> {
|
|
const origExit = process.exit;
|
|
const origKill = process.kill;
|
|
const killCalls: Array<[number, NodeJS.Signals | number]> = [];
|
|
(process as any).exit = ((code: number) => {
|
|
throw new Error(`__exit:${code}`);
|
|
}) as any;
|
|
(process as any).kill = ((pid: number, signal: NodeJS.Signals | number) => {
|
|
killCalls.push([pid, signal ?? 'SIGTERM']);
|
|
// signal 0 is a liveness probe — keep the existing 'process is dead'
|
|
// semantics so isProcessAlive(SENTINEL_DEAD_PID) returns false.
|
|
if (signal === 0) {
|
|
const err: any = new Error('No such process');
|
|
err.code = 'ESRCH';
|
|
throw err;
|
|
}
|
|
return true;
|
|
}) as any;
|
|
try {
|
|
await cb(killCalls);
|
|
} finally {
|
|
(process as any).exit = origExit;
|
|
(process as any).kill = origKill;
|
|
}
|
|
return killCalls;
|
|
}
|
|
|
|
async function runShutdown(handle: { shutdown: (code?: number) => Promise<void> }): Promise<void> {
|
|
try {
|
|
await handle.shutdown(0);
|
|
} catch (err: any) {
|
|
if (typeof err?.message !== 'string' || !err.message.startsWith('__exit:')) throw err;
|
|
}
|
|
}
|
|
|
|
// Filter out the signal=0 liveness probes; only count actual termination signals.
|
|
function terminationCalls(
|
|
calls: Array<[number, NodeJS.Signals | number]>,
|
|
): Array<[number, NodeJS.Signals | number]> {
|
|
return calls.filter(([, sig]) => sig !== 0);
|
|
}
|
|
|
|
describe('buildFetchHandler ownsTerminalAgent gate', () => {
|
|
// shutdown() reads `path.dirname(config.stateFile)` from module-level config
|
|
// (composition gap — see TODOS T9). So unlinks target the real state dir,
|
|
// not a per-test temp dir. If a real gstack daemon is running on this host,
|
|
// its terminal-port + terminal-internal-token + terminal-agent-pid live
|
|
// where this test writes. Save + restore real-daemon file contents around
|
|
// the whole suite so the test never clobbers a developer's running session.
|
|
let realPortBackup: string | null = null;
|
|
let realTokenBackup: string | null = null;
|
|
let realAgentRecordBackup: string | null = null;
|
|
|
|
beforeAll(() => {
|
|
realPortBackup = readIfExists(PORT_FILE);
|
|
realTokenBackup = readIfExists(TOKEN_FILE);
|
|
realAgentRecordBackup = readIfExists(AGENT_RECORD_FILE);
|
|
});
|
|
|
|
afterAll(() => {
|
|
if (realPortBackup !== null) {
|
|
fs.mkdirSync(stateDir, { recursive: true });
|
|
fs.writeFileSync(PORT_FILE, realPortBackup);
|
|
} else {
|
|
try { fs.unlinkSync(PORT_FILE); } catch {}
|
|
}
|
|
if (realTokenBackup !== null) {
|
|
fs.mkdirSync(stateDir, { recursive: true });
|
|
fs.writeFileSync(TOKEN_FILE, realTokenBackup);
|
|
} else {
|
|
try { fs.unlinkSync(TOKEN_FILE); } catch {}
|
|
}
|
|
if (realAgentRecordBackup !== null) {
|
|
fs.mkdirSync(stateDir, { recursive: true });
|
|
fs.writeFileSync(AGENT_RECORD_FILE, realAgentRecordBackup);
|
|
} else {
|
|
try { fs.unlinkSync(AGENT_RECORD_FILE); } catch {}
|
|
}
|
|
});
|
|
|
|
beforeEach(() => {
|
|
__resetRegistry();
|
|
__resetShuttingDown();
|
|
// Clean any leftover sentinels from a prior failed run so the "preserved"
|
|
// assertion can't pass spuriously off a stale file.
|
|
try { fs.unlinkSync(PORT_FILE); } catch {}
|
|
try { fs.unlinkSync(TOKEN_FILE); } catch {}
|
|
try { fs.unlinkSync(AGENT_RECORD_FILE); } catch {}
|
|
});
|
|
|
|
test('1. ownsTerminalAgent:false preserves all three files and sends no signal', async () => {
|
|
writeSentinels();
|
|
const handle = buildFetchHandler(makeMinimalConfig({ ownsTerminalAgent: false }));
|
|
const calls = await withStubs(async () => {
|
|
await runShutdown(handle);
|
|
});
|
|
expect(readIfExists(PORT_FILE)).toBe(SENTINEL_PORT);
|
|
expect(readIfExists(TOKEN_FILE)).toBe(SENTINEL_TOKEN);
|
|
expect(readIfExists(AGENT_RECORD_FILE)).not.toBeNull();
|
|
expect(terminationCalls(calls).length).toBe(0);
|
|
});
|
|
|
|
test('2. ownsTerminalAgent:true deletes all three files; identity-based kill probes the recorded PID', async () => {
|
|
writeSentinels();
|
|
const handle = buildFetchHandler(makeMinimalConfig({ ownsTerminalAgent: true }));
|
|
const calls = await withStubs(async () => {
|
|
await runShutdown(handle);
|
|
});
|
|
expect(readIfExists(PORT_FILE)).toBeNull();
|
|
expect(readIfExists(TOKEN_FILE)).toBeNull();
|
|
expect(readIfExists(AGENT_RECORD_FILE)).toBeNull();
|
|
// isProcessAlive sends signal 0; PID is the sentinel-dead PID, so the
|
|
// probe returns false and no SIGTERM is sent.
|
|
const probes = calls.filter(([pid, sig]) => pid === SENTINEL_DEAD_PID && sig === 0);
|
|
expect(probes.length).toBeGreaterThan(0);
|
|
expect(terminationCalls(calls).length).toBe(0);
|
|
});
|
|
|
|
test('3. ownsTerminalAgent unset defaults to true (deletes all three; probes recorded PID)', async () => {
|
|
writeSentinels();
|
|
// Note: no ownsTerminalAgent in the overrides — uses the `?? true` default.
|
|
const handle = buildFetchHandler(makeMinimalConfig());
|
|
const calls = await withStubs(async () => {
|
|
await runShutdown(handle);
|
|
});
|
|
expect(readIfExists(PORT_FILE)).toBeNull();
|
|
expect(readIfExists(TOKEN_FILE)).toBeNull();
|
|
expect(readIfExists(AGENT_RECORD_FILE)).toBeNull();
|
|
const probes = calls.filter(([pid, sig]) => pid === SENTINEL_DEAD_PID && sig === 0);
|
|
expect(probes.length).toBeGreaterThan(0);
|
|
});
|
|
|
|
test('4. CLI start() call site passes ownsTerminalAgent: true literally (static grep)', () => {
|
|
// Resolves browse/src/server.ts relative to this test file so the test
|
|
// works regardless of cwd. import.meta.url is the test file's URL.
|
|
const serverTsPath = path.resolve(
|
|
new URL(import.meta.url).pathname,
|
|
'..',
|
|
'..',
|
|
'src',
|
|
'server.ts',
|
|
);
|
|
const source = fs.readFileSync(serverTsPath, 'utf-8');
|
|
// Match the call site inside start()'s buildFetchHandler({...}) literal.
|
|
// The pattern looks for the trailing comma and trailing context so the
|
|
// match cannot be satisfied by the JSDoc reference earlier in the file.
|
|
expect(source).toMatch(/ownsTerminalAgent:\s*true,\s*\/\/\s*CLI spawns terminal-agent\.ts/);
|
|
});
|
|
});
|