cb8d941adf
- Renamed directory: codex-backend-openapi-models -> llmx-backend-openapi-models
- Updated all Cargo.toml files:
- Package names: codex-* -> llmx-*
- Library names: codex_* -> llmx_*
- Workspace dependencies updated
- Renamed Rust source files:
- codex*.rs -> llmx*.rs (all modules)
- codex_conversation -> llmx_conversation
- codex_delegate -> llmx_delegate
- codex_message_processor -> llmx_message_processor
- codex_tool_* -> llmx_tool_*
- Updated all Rust imports:
- use codex_* -> use llmx_*
- mod codex* -> mod llmx*
- Updated environment variables in code:
- CODEX_HOME -> LLMX_HOME
- .codex -> .llmx paths
- Updated protocol crate lib name for proper linking
Note: Some compilation errors remain (type inference issues) but all
renaming is complete. Will fix compilation in next phase.
🤖 Generated with Claude Code
168 lines
4.8 KiB
Rust
168 lines
4.8 KiB
Rust
extern crate llmx_execpolicy;
|
|
|
|
use llmx_execpolicy::ArgType;
|
|
use llmx_execpolicy::Error;
|
|
use llmx_execpolicy::ExecCall;
|
|
use llmx_execpolicy::MatchedArg;
|
|
use llmx_execpolicy::MatchedExec;
|
|
use llmx_execpolicy::MatchedFlag;
|
|
use llmx_execpolicy::Policy;
|
|
use llmx_execpolicy::Result;
|
|
use llmx_execpolicy::ValidExec;
|
|
use llmx_execpolicy::get_default_policy;
|
|
|
|
#[expect(clippy::expect_used)]
|
|
fn setup() -> Policy {
|
|
get_default_policy().expect("failed to load default policy")
|
|
}
|
|
|
|
#[test]
|
|
fn test_ls_no_args() {
|
|
let policy = setup();
|
|
let ls = ExecCall::new("ls", &[]);
|
|
assert_eq!(
|
|
Ok(MatchedExec::Match {
|
|
exec: ValidExec::new("ls", vec![], &["/bin/ls", "/usr/bin/ls"])
|
|
}),
|
|
policy.check(&ls)
|
|
);
|
|
}
|
|
|
|
#[test]
|
|
fn test_ls_dash_a_dash_l() {
|
|
let policy = setup();
|
|
let args = &["-a", "-l"];
|
|
let ls_a_l = ExecCall::new("ls", args);
|
|
assert_eq!(
|
|
Ok(MatchedExec::Match {
|
|
exec: ValidExec {
|
|
program: "ls".into(),
|
|
flags: vec![MatchedFlag::new("-a"), MatchedFlag::new("-l")],
|
|
system_path: ["/bin/ls".into(), "/usr/bin/ls".into()].into(),
|
|
..Default::default()
|
|
}
|
|
}),
|
|
policy.check(&ls_a_l)
|
|
);
|
|
}
|
|
|
|
#[test]
|
|
fn test_ls_dash_z() {
|
|
let policy = setup();
|
|
|
|
// -z is currently an invalid option for ls, but it has so many options,
|
|
// perhaps it will get added at some point...
|
|
let ls_z = ExecCall::new("ls", &["-z"]);
|
|
assert_eq!(
|
|
Err(Error::UnknownOption {
|
|
program: "ls".into(),
|
|
option: "-z".into()
|
|
}),
|
|
policy.check(&ls_z)
|
|
);
|
|
}
|
|
|
|
#[test]
|
|
fn test_ls_dash_al() {
|
|
let policy = setup();
|
|
|
|
// This currently fails, but it should pass once option_bundling=True is implemented.
|
|
let ls_al = ExecCall::new("ls", &["-al"]);
|
|
assert_eq!(
|
|
Err(Error::UnknownOption {
|
|
program: "ls".into(),
|
|
option: "-al".into()
|
|
}),
|
|
policy.check(&ls_al)
|
|
);
|
|
}
|
|
|
|
#[test]
|
|
fn test_ls_one_file_arg() -> Result<()> {
|
|
let policy = setup();
|
|
|
|
let ls_one_file_arg = ExecCall::new("ls", &["foo"]);
|
|
assert_eq!(
|
|
Ok(MatchedExec::Match {
|
|
exec: ValidExec::new(
|
|
"ls",
|
|
vec![MatchedArg::new(0, ArgType::ReadableFile, "foo")?],
|
|
&["/bin/ls", "/usr/bin/ls"]
|
|
)
|
|
}),
|
|
policy.check(&ls_one_file_arg)
|
|
);
|
|
Ok(())
|
|
}
|
|
|
|
#[test]
|
|
fn test_ls_multiple_file_args() -> Result<()> {
|
|
let policy = setup();
|
|
|
|
let ls_multiple_file_args = ExecCall::new("ls", &["foo", "bar", "baz"]);
|
|
assert_eq!(
|
|
Ok(MatchedExec::Match {
|
|
exec: ValidExec::new(
|
|
"ls",
|
|
vec![
|
|
MatchedArg::new(0, ArgType::ReadableFile, "foo")?,
|
|
MatchedArg::new(1, ArgType::ReadableFile, "bar")?,
|
|
MatchedArg::new(2, ArgType::ReadableFile, "baz")?,
|
|
],
|
|
&["/bin/ls", "/usr/bin/ls"]
|
|
)
|
|
}),
|
|
policy.check(&ls_multiple_file_args)
|
|
);
|
|
Ok(())
|
|
}
|
|
|
|
#[test]
|
|
fn test_ls_multiple_flags_and_file_args() -> Result<()> {
|
|
let policy = setup();
|
|
|
|
let ls_multiple_flags_and_file_args = ExecCall::new("ls", &["-l", "-a", "foo", "bar", "baz"]);
|
|
assert_eq!(
|
|
Ok(MatchedExec::Match {
|
|
exec: ValidExec {
|
|
program: "ls".into(),
|
|
flags: vec![MatchedFlag::new("-l"), MatchedFlag::new("-a")],
|
|
args: vec![
|
|
MatchedArg::new(2, ArgType::ReadableFile, "foo")?,
|
|
MatchedArg::new(3, ArgType::ReadableFile, "bar")?,
|
|
MatchedArg::new(4, ArgType::ReadableFile, "baz")?,
|
|
],
|
|
system_path: ["/bin/ls".into(), "/usr/bin/ls".into()].into(),
|
|
..Default::default()
|
|
}
|
|
}),
|
|
policy.check(&ls_multiple_flags_and_file_args)
|
|
);
|
|
Ok(())
|
|
}
|
|
|
|
#[test]
|
|
fn test_flags_after_file_args() -> Result<()> {
|
|
let policy = setup();
|
|
|
|
// TODO(mbolin): While this is "safe" in that it will not do anything bad
|
|
// to the user's machine, it will fail because apparently `ls` does not
|
|
// allow flags after file arguments (as some commands do). We should
|
|
// extend define_program() to make this part of the configuration so that
|
|
// this command is disallowed.
|
|
let ls_flags_after_file_args = ExecCall::new("ls", &["foo", "-l"]);
|
|
assert_eq!(
|
|
Ok(MatchedExec::Match {
|
|
exec: ValidExec {
|
|
program: "ls".into(),
|
|
flags: vec![MatchedFlag::new("-l")],
|
|
args: vec![MatchedArg::new(0, ArgType::ReadableFile, "foo")?],
|
|
system_path: ["/bin/ls".into(), "/usr/bin/ls".into()].into(),
|
|
..Default::default()
|
|
}
|
|
}),
|
|
policy.check(&ls_flags_after_file_args)
|
|
);
|
|
Ok(())
|
|
}
|