Stabilize exec-server filesystem tests in CI (#17671)

## Summary\n- add an exec-server package-local test helper binary that can run exec-server and fs-helper flows\n- route exec-server filesystem tests through that helper instead of cross-crate codex helper binaries\n- stop relying on Bazel-only extra binary wiring for these tests\n\n## Testing\n- not run (per repo guidance for codex changes) --------- Co-authored-by: Codex <noreply@openai.com>
2026-05-01 18:06:47 +00:00 · 2026-04-13 16:53:42 -07:00
parent d4be06adea
commit 280a4a6d42
16 changed files with 674 additions and 111 deletions
--- a/codex-rs/exec-server/src/fs_sandbox.rs
+++ b/codex-rs/exec-server/src/fs_sandbox.rs
@@ -2,6 +2,7 @@ use std::collections::HashMap;
 use std::path::PathBuf;

 use codex_app_server_protocol::JSONRPCErrorError;
+use codex_protocol::models::FileSystemPermissions;
 use codex_protocol::models::PermissionProfile;
 use codex_protocol::permissions::FileSystemAccessMode;
 use codex_protocol::permissions::FileSystemSandboxPolicy;
@@ -128,10 +129,31 @@ impl FileSystemSandboxRunner {
        &self,
        additional_permissions: Option<&PermissionProfile>,
    ) -> PermissionProfile {
+        let helper_read_root = self
+            .runtime_paths
+            .codex_self_exe
+            .parent()
+            .and_then(|path| AbsolutePathBuf::from_absolute_path(path).ok());
+        let file_system =
+            match additional_permissions.and_then(|permissions| permissions.file_system.clone()) {
+                Some(mut file_system) => {
+                    if let Some(helper_read_root) = &helper_read_root {
+                        let read_paths = file_system.read.get_or_insert_with(Vec::new);
+                        if !read_paths.contains(helper_read_root) {
+                            read_paths.push(helper_read_root.clone());
+                        }
+                    }
+                    Some(file_system)
+                }
+                None => helper_read_root.map(|helper_read_root| FileSystemPermissions {
+                    read: Some(vec![helper_read_root]),
+                    write: None,
+                }),
+            };
+
        PermissionProfile {
            network: None,
-            file_system: additional_permissions
-                .and_then(|permissions| permissions.file_system.clone()),
+            file_system,
        }
    }
 }
@@ -522,7 +544,7 @@ mod tests {
                enabled: Some(true),
            }),
            file_system: Some(FileSystemPermissions {
-                read: Some(vec![readable.clone()]),
+                read: Some(vec![]),
                write: Some(vec![writable.clone()]),
            }),
        }));
@@ -543,4 +565,30 @@ mod tests {
            Some(vec![readable])
        );
    }
+
+    #[test]
+    fn helper_permissions_include_helper_read_root_without_additional_permissions() {
+        let codex_self_exe = std::env::current_exe().expect("current exe");
+        let runtime_paths = ExecServerRuntimePaths::new(
+            codex_self_exe.clone(),
+            /*codex_linux_sandbox_exe*/ None,
+        )
+        .expect("runtime paths");
+        let runner = FileSystemSandboxRunner::new(runtime_paths);
+        let readable = AbsolutePathBuf::from_absolute_path(
+            codex_self_exe.parent().expect("current exe parent"),
+        )
+        .expect("absolute readable path");
+
+        let permissions = runner.helper_permissions(/*additional_permissions*/ None);
+
+        assert_eq!(permissions.network, None);
+        assert_eq!(
+            permissions.file_system,
+            Some(FileSystemPermissions {
+                read: Some(vec![readable]),
+                write: None,
+            })
+        );
+    }
 }