nono-cli 0.61.2

CLI for nono capability-based sandbox
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165

//! End-to-end integration tests for the URL open helper feature.
//!
//! These tests exercise the full pipeline: the `nono open-url-helper` binary
//! connects to a supervisor socket, sends an OpenUrl request, and processes
//! the response. The tests run the actual CLI binary as a subprocess.

use nono::supervisor::SupervisorListener;
use nono::supervisor::types::{SupervisorMessage, SupervisorResponse};
use std::path::PathBuf;
use std::process::Command;

fn nono_bin() -> Command {
    Command::new(env!("CARGO_BIN_EXE_nono"))
}

fn socket_test_dir() -> tempfile::TempDir {
    let target = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("target");
    std::fs::create_dir_all(&target).ok();
    tempfile::Builder::new()
        .prefix("url-e2e-")
        .tempdir_in(&target)
        .expect("create test tmpdir in target/")
}

fn can_use_unix_sockets(dir: &std::path::Path) -> bool {
    let probe_path = dir.join("probe.sock");
    let listener = match std::os::unix::net::UnixListener::bind(&probe_path) {
        Ok(l) => l,
        Err(_) => return false,
    };
    let connect_result = std::os::unix::net::UnixStream::connect(&probe_path);
    drop(listener);
    let _ = std::fs::remove_file(&probe_path);
    connect_result.is_ok()
}

#[test]
fn test_open_url_helper_binary_succeeds_with_valid_supervisor() {
    let dir = socket_test_dir();
    if !can_use_unix_sockets(dir.path()) {
        eprintln!("Skipping: Unix socket connect() blocked by sandbox");
        return;
    }

    let sock_path = dir.path().join("supervisor.sock");
    let listener = SupervisorListener::bind(&sock_path).expect("bind listener");

    let child = nono_bin()
        .args(["open-url-helper", "https://example.com/oauth/authorize"])
        .env("NONO_SUPERVISOR_PATH", &sock_path)
        .stdout(std::process::Stdio::piped())
        .stderr(std::process::Stdio::piped())
        .spawn()
        .expect("spawn nono open-url-helper");

    // Accept connection from the helper binary
    let mut server_sock = loop {
        std::thread::sleep(std::time::Duration::from_millis(20));
        match listener.accept() {
            Ok(Some(s)) => break s,
            Ok(None) => continue,
            Err(e) => panic!("accept error: {e}"),
        }
    };

    // Read the OpenUrl request
    let msg = server_sock.recv_message().expect("recv message");
    match msg {
        SupervisorMessage::OpenUrl(req) => {
            assert_eq!(req.url, "https://example.com/oauth/authorize");
            assert!(req.child_pid > 0);
        }
        other => panic!("Expected OpenUrl, got: {other:?}"),
    }

    // Send success response
    let response = SupervisorResponse::UrlOpened {
        request_id: "test".to_string(),
        success: true,
        error: None,
    };
    server_sock.send_response(&response).expect("send response");

    // Verify child exits successfully
    let output = child.wait_with_output().expect("wait for child");
    assert!(
        output.status.success(),
        "open-url-helper should exit 0 on success, stderr: {}",
        String::from_utf8_lossy(&output.stderr)
    );
}

#[test]
fn test_open_url_helper_binary_fails_when_supervisor_denies() {
    let dir = socket_test_dir();
    if !can_use_unix_sockets(dir.path()) {
        eprintln!("Skipping: Unix socket connect() blocked by sandbox");
        return;
    }

    let sock_path = dir.path().join("deny.sock");
    let listener = SupervisorListener::bind(&sock_path).expect("bind listener");

    let child = nono_bin()
        .args(["open-url-helper", "https://evil.example.com/phishing"])
        .env("NONO_SUPERVISOR_PATH", &sock_path)
        .stdout(std::process::Stdio::piped())
        .stderr(std::process::Stdio::piped())
        .spawn()
        .expect("spawn nono open-url-helper");

    let mut server_sock = loop {
        std::thread::sleep(std::time::Duration::from_millis(20));
        match listener.accept() {
            Ok(Some(s)) => break s,
            Ok(None) => continue,
            Err(e) => panic!("accept error: {e}"),
        }
    };

    let _msg = server_sock.recv_message().expect("recv message");

    // Send denial response
    let response = SupervisorResponse::UrlOpened {
        request_id: "test".to_string(),
        success: false,
        error: Some("Origin not in allowed list".to_string()),
    };
    server_sock.send_response(&response).expect("send response");

    let output = child.wait_with_output().expect("wait for child");
    assert!(
        !output.status.success(),
        "open-url-helper should exit non-zero on denial"
    );
    let stderr = String::from_utf8_lossy(&output.stderr);
    assert!(
        stderr.contains("denied") || stderr.contains("Origin not in allowed list"),
        "stderr should mention denial reason, got: {stderr}"
    );
}

#[test]
fn test_open_url_helper_binary_fails_when_socket_does_not_exist() {
    let output = nono_bin()
        .args(["open-url-helper", "https://example.com"])
        .env(
            "NONO_SUPERVISOR_PATH",
            "/tmp/nonexistent-nono-test-socket-99999.sock",
        )
        .stdout(std::process::Stdio::piped())
        .stderr(std::process::Stdio::piped())
        .output()
        .expect("run nono open-url-helper");

    assert!(
        !output.status.success(),
        "open-url-helper should exit non-zero when socket doesn't exist"
    );
    let stderr = String::from_utf8_lossy(&output.stderr);
    assert!(
        stderr.contains("Failed to connect") || stderr.contains("supervisor socket"),
        "stderr should mention connection failure, got: {stderr}"
    );
}