mirror of
https://github.com/claude-code-best/claude-code.git
synced 2026-06-22 08:15:53 +00:00
99b9c6a400
模型通过 ExecuteExtraTool 调 CronCreate 时把字段名拼成 schedule(而非 cron),raw params 透传到 validateInput,input.cron 为 undefined,触 发 parseCronExpression 的 expr.trim() 抛 TypeError。所有参数组合同 样崩溃,与具体参数无关。 三层修复: - ExecuteTool.call 在调 validateInput 前先跑 targetTool.inputSchema. safeParse(鸭子类型跳过 MCP),失败时返回 formatZodValidationError 友好消息,成功时透传 parsed data 让 .default() 生效、strictObject 拦截多余字段。这是架构根治,覆盖所有 deferred 工具。 - CronCreateTool.validateInput 顶部加 typeof string 守卫,给模型精确 字段错误消息。 - parseCronExpression 顶部加 typeof string 守卫,覆盖 cronToHuman 等 所有调用者。 新增 4 个测试覆盖:cron undefined 输入返回 null、ExecuteTool schema 验证拒绝错字段名且 validateInput 不被触达、.default() 透传、MCP-like 工具跳过 schema 校验。 Co-Authored-By: glm-5.2 <zai-org@claude-code-best.win>
352 lines
11 KiB
TypeScript
352 lines
11 KiB
TypeScript
import { describe, test, expect } from 'bun:test'
|
|
import { mock } from 'bun:test'
|
|
import { z } from 'zod/v4'
|
|
import { logMock } from '../../../../../../tests/mocks/log'
|
|
import { debugMock } from '../../../../../../tests/mocks/debug'
|
|
|
|
mock.module('src/utils/log.ts', logMock)
|
|
mock.module('src/utils/debug.ts', debugMock)
|
|
|
|
// Mock all heavy dependencies before importing ExecuteTool
|
|
mock.module('src/services/analytics/growthbook.js', () => ({
|
|
getFeatureValue_CACHED_MAY_BE_STALE: () => false,
|
|
checkStatsigFeatureGate_CACHED_MAY_BE_STALE: () => false,
|
|
getFeatureValue_DEPRECATED: async () => undefined,
|
|
getFeatureValue_CACHED_WITH_REFRESH: async () => undefined,
|
|
hasGrowthBookEnvOverride: () => false,
|
|
getAllGrowthBookFeatures: () => ({}),
|
|
getGrowthBookConfigOverrides: () => ({}),
|
|
setGrowthBookConfigOverride: () => {},
|
|
clearGrowthBookConfigOverrides: () => {},
|
|
getApiBaseUrlHost: () => undefined,
|
|
onGrowthBookRefresh: () => {},
|
|
initializeGrowthBook: async () => {},
|
|
checkSecurityRestrictionGate: async () => false,
|
|
checkGate_CACHED_OR_BLOCKING: async () => false,
|
|
refreshGrowthBookAfterAuthChange: () => {},
|
|
resetGrowthBook: () => {},
|
|
refreshGrowthBookFeatures: async () => {},
|
|
setupPeriodicGrowthBookRefresh: () => {},
|
|
stopPeriodicGrowthBookRefresh: () => {},
|
|
}))
|
|
|
|
mock.module('src/utils/searchExtraTools.js', () => ({
|
|
isSearchExtraToolsEnabledOptimistic: () => true,
|
|
getAutoSearchExtraToolsCharThreshold: () => 100,
|
|
getSearchExtraToolsMode: () => 'tst' as const,
|
|
isSearchExtraToolsToolAvailable: () => true,
|
|
isSearchExtraToolsEnabled: async () => true,
|
|
isToolReferenceBlock: () => false,
|
|
// Mark every name as discovered so tests can exercise tools other than
|
|
// TestTool/SecretTool without being blocked by the discovery guard.
|
|
extractDiscoveredToolNames: () =>
|
|
new Set([
|
|
'TestTool',
|
|
'SecretTool',
|
|
'CronCreate',
|
|
'WithDefaults',
|
|
'McpTool',
|
|
]),
|
|
isDeferredToolsDeltaEnabled: () => false,
|
|
getDeferredToolsDelta: () => null,
|
|
}))
|
|
|
|
mock.module('src/constants/tools.js', () => ({
|
|
CORE_TOOLS: new Set(['ExecuteExtraTool', 'SearchExtraTools']),
|
|
}))
|
|
|
|
// Mock messages module
|
|
mock.module('src/utils/messages.js', () => ({
|
|
createUserMessage: ({ content }: { content: string }) => ({
|
|
type: 'user' as const,
|
|
content,
|
|
uuid: 'test-uuid',
|
|
}),
|
|
INTERRUPT_MESSAGE_FOR_TOOL_USE: '[Request interrupted]',
|
|
}))
|
|
|
|
const { ExecuteTool } = await import('../ExecuteTool.js')
|
|
const { EXECUTE_TOOL_NAME } = await import('../constants.js')
|
|
|
|
function makeContext(tools: unknown[] = []) {
|
|
return {
|
|
options: {
|
|
tools,
|
|
},
|
|
cwd: '/tmp',
|
|
sessionId: 'test',
|
|
} as never
|
|
}
|
|
|
|
function makeMockTool(name: string, callResult: unknown = 'ok') {
|
|
return {
|
|
name,
|
|
call: async () => ({ data: callResult }),
|
|
checkPermissions: async () => ({ behavior: 'allow' as const }),
|
|
prompt: async () => `Description for ${name}`,
|
|
description: async () => `Description for ${name}`,
|
|
inputSchema: {},
|
|
isEnabled: () => true,
|
|
isConcurrencySafe: () => true,
|
|
isReadOnly: () => false,
|
|
isMcp: false,
|
|
alwaysLoad: undefined,
|
|
shouldDefer: undefined,
|
|
searchHint: '',
|
|
userFacingName: () => name,
|
|
renderToolUseMessage: () => `Running ${name}`,
|
|
mapToolResultToToolResultBlockParam: (content: unknown, id: string) => ({
|
|
tool_use_id: id,
|
|
type: 'tool_result',
|
|
content,
|
|
}),
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Builds a mock tool with a real zod inputSchema, mirroring how actual
|
|
* deferred tools (e.g. CronCreateTool) expose their schema. Records the
|
|
* params that reach call() so tests can assert what was delegated.
|
|
*/
|
|
function makeMockToolWithSchema(
|
|
name: string,
|
|
schema: z.ZodType,
|
|
opts: {
|
|
validateInput?: (input: Record<string, unknown>) => {
|
|
result: boolean
|
|
message?: string
|
|
}
|
|
} = {},
|
|
) {
|
|
const calls: Record<string, unknown>[] = []
|
|
return {
|
|
tool: {
|
|
name,
|
|
inputSchema: schema,
|
|
call: async (input: Record<string, unknown>) => {
|
|
calls.push(input)
|
|
return { data: { ok: true, received: input } }
|
|
},
|
|
validateInput: opts.validateInput,
|
|
checkPermissions: async () => ({ behavior: 'allow' as const }),
|
|
isEnabled: () => true,
|
|
isConcurrencySafe: () => true,
|
|
isReadOnly: () => false,
|
|
isMcp: false,
|
|
userFacingName: () => name,
|
|
renderToolUseMessage: () => `Running ${name}`,
|
|
mapToolResultToToolResultBlockParam: (content: unknown, id: string) => ({
|
|
tool_use_id: id,
|
|
type: 'tool_result',
|
|
content,
|
|
}),
|
|
},
|
|
calls,
|
|
}
|
|
}
|
|
|
|
describe('ExecuteTool', () => {
|
|
test('executes a target tool by name', async () => {
|
|
const mockTarget = makeMockTool('TestTool', { result: 'success' })
|
|
const ctx = makeContext([mockTarget])
|
|
|
|
const result = await ExecuteTool.call(
|
|
{ tool_name: 'TestTool', params: {} },
|
|
ctx,
|
|
async () => ({ behavior: 'allow' }),
|
|
{ type: 'assistant', content: [], uuid: 'msg1' } as never,
|
|
undefined,
|
|
)
|
|
|
|
expect(result.data).toEqual({
|
|
result: { result: 'success' },
|
|
tool_name: 'TestTool',
|
|
})
|
|
})
|
|
|
|
test('returns error when tool not found', async () => {
|
|
const ctx = makeContext([])
|
|
|
|
const result = await ExecuteTool.call(
|
|
{ tool_name: 'NonexistentTool', params: {} },
|
|
ctx,
|
|
async () => ({ behavior: 'allow' }),
|
|
{ type: 'assistant', content: [], uuid: 'msg1' } as never,
|
|
undefined,
|
|
)
|
|
|
|
expect(result.data).toEqual({
|
|
result: null,
|
|
tool_name: 'NonexistentTool',
|
|
})
|
|
expect(result.newMessages).toBeDefined()
|
|
expect(result.newMessages!.length).toBeGreaterThan(0)
|
|
})
|
|
|
|
test('returns permission denied when target denies', async () => {
|
|
const mockTarget = makeMockTool('SecretTool', 'secret')
|
|
mockTarget.checkPermissions = async () =>
|
|
({
|
|
behavior: 'deny' as const,
|
|
message: 'Access denied',
|
|
}) as never
|
|
const ctx = makeContext([mockTarget])
|
|
|
|
const result = await ExecuteTool.call(
|
|
{ tool_name: 'SecretTool', params: {} },
|
|
ctx,
|
|
async () => ({ behavior: 'allow' }),
|
|
{ type: 'assistant', content: [], uuid: 'msg1' } as never,
|
|
undefined,
|
|
)
|
|
|
|
expect(result.data).toEqual({
|
|
result: null,
|
|
tool_name: 'SecretTool',
|
|
})
|
|
expect(result.newMessages).toBeDefined()
|
|
})
|
|
|
|
test('returns error when deferred tool has not been discovered via SearchExtraTools', async () => {
|
|
const mockTarget = makeMockTool('UndiscoveredTool', 'result')
|
|
const ctx = makeContext([mockTarget])
|
|
|
|
const result = await ExecuteTool.call(
|
|
{ tool_name: 'UndiscoveredTool', params: {} },
|
|
ctx,
|
|
async () => ({ behavior: 'allow' }),
|
|
{ type: 'assistant', content: [], uuid: 'msg1' } as never,
|
|
undefined,
|
|
)
|
|
|
|
expect(result.data).toEqual({
|
|
result: null,
|
|
tool_name: 'UndiscoveredTool',
|
|
})
|
|
expect(result.newMessages).toBeDefined()
|
|
expect(result.newMessages![0].content).toContain('has not been discovered')
|
|
})
|
|
|
|
test('has correct name', () => {
|
|
expect(ExecuteTool.name).toBe(EXECUTE_TOOL_NAME)
|
|
})
|
|
|
|
test('searchHint contains keywords', () => {
|
|
expect(ExecuteTool.searchHint).toContain('execute')
|
|
expect(ExecuteTool.searchHint).toContain('tool')
|
|
})
|
|
|
|
test('schema-validates params against target tool before delegating', async () => {
|
|
// Reproduces the CronCreate bug class: model passes 'schedule' but the
|
|
// schema requires 'cron'. Without the pre-validation, params reach
|
|
// validateInput with cron=undefined and crash on .trim().
|
|
const { tool, calls } = makeMockToolWithSchema(
|
|
'CronCreate',
|
|
z.strictObject({
|
|
cron: z.string(),
|
|
prompt: z.string(),
|
|
}),
|
|
{
|
|
validateInput: input => {
|
|
// Mirrors CronCreateTool.validateInput pre-fix behavior — would
|
|
// crash on undefined.trim() if schema pre-validation lets bad
|
|
// params through. The guard in ExecuteTool must prevent this.
|
|
const cron = input.cron as string | undefined
|
|
if (typeof cron !== 'string') {
|
|
throw new TypeError(
|
|
"undefined is not an object (evaluating 'cron.trim')",
|
|
)
|
|
}
|
|
return { result: true }
|
|
},
|
|
},
|
|
)
|
|
const ctx = makeContext([tool])
|
|
|
|
const result = await ExecuteTool.call(
|
|
{
|
|
tool_name: 'CronCreate',
|
|
params: { schedule: '*/5 * * * *', prompt: 'hi' },
|
|
},
|
|
ctx,
|
|
async () => ({ behavior: 'allow' }),
|
|
{ type: 'assistant', content: [], uuid: 'msg1' } as never,
|
|
undefined,
|
|
)
|
|
|
|
// Schema validation rejects the wrong field name and returns a model-
|
|
// friendly error instead of crashing.
|
|
expect(result.data).toEqual({
|
|
result: null,
|
|
tool_name: 'CronCreate',
|
|
})
|
|
expect(result.newMessages).toBeDefined()
|
|
const message = result.newMessages![0].content as string
|
|
// Model gets told both what was missing and what was unexpected.
|
|
expect(message).toMatch(/cron/i)
|
|
expect(message).toMatch(/schedule/i)
|
|
// validateInput was never called, so no crash reached it.
|
|
expect(calls.length).toBe(0)
|
|
})
|
|
|
|
test('passes through parsed params to target tool, applying schema defaults', async () => {
|
|
const { tool, calls } = makeMockToolWithSchema(
|
|
'WithDefaults',
|
|
z.strictObject({
|
|
cron: z.string(),
|
|
prompt: z.string(),
|
|
recurring: z.boolean().default(true),
|
|
}),
|
|
)
|
|
const ctx = makeContext([tool])
|
|
|
|
const result = await ExecuteTool.call(
|
|
{
|
|
// recurring intentionally omitted — schema default must fill it in.
|
|
tool_name: 'WithDefaults',
|
|
params: { cron: '*/5 * * * *', prompt: 'hi' },
|
|
},
|
|
ctx,
|
|
async () => ({ behavior: 'allow' }),
|
|
{ type: 'assistant', content: [], uuid: 'msg1' } as never,
|
|
undefined,
|
|
)
|
|
|
|
expect(result.data).toEqual({
|
|
result: {
|
|
ok: true,
|
|
received: { cron: '*/5 * * * *', prompt: 'hi', recurring: true },
|
|
},
|
|
tool_name: 'WithDefaults',
|
|
})
|
|
expect(calls.length).toBe(1)
|
|
// .default() applied — target tool sees recurring: true without
|
|
// needing to defend against undefined itself.
|
|
expect(calls[0]).toEqual({
|
|
cron: '*/5 * * * *',
|
|
prompt: 'hi',
|
|
recurring: true,
|
|
})
|
|
})
|
|
|
|
test('skips schema validation for tools without safeParse (e.g. MCP)', async () => {
|
|
// MCP tools expose inputJSONSchema, not zod — must not crash on
|
|
// duck-typed schema check.
|
|
const mockTarget = makeMockTool('McpTool', { result: 'ok' })
|
|
const ctx = makeContext([mockTarget])
|
|
|
|
const result = await ExecuteTool.call(
|
|
{ tool_name: 'McpTool', params: { anything: true } },
|
|
ctx,
|
|
async () => ({ behavior: 'allow' }),
|
|
{ type: 'assistant', content: [], uuid: 'msg1' } as never,
|
|
undefined,
|
|
)
|
|
|
|
expect(result.data).toEqual({
|
|
result: { result: 'ok' },
|
|
tool_name: 'McpTool',
|
|
})
|
|
})
|
|
})
|