deal with bad SHELL values

jmcphers · jmcphers · commit f8ee2e34672b · 2025-07-16T09:53:24.000-07:00
diff --git a/crates/kcserver/src/kernel_session.rs b/crates/kcserver/src/kernel_session.rs
@@ -466,50 +466,81 @@ impl KernelSession {
         let run_in_shell = self.model.run_in_shell.unwrap_or(false);
 
         // Create the command to start the kernel with the processed arguments
-        let mut command = if run_in_shell {
+        let shell_command = if run_in_shell {
             #[cfg(not(target_os = "windows"))]
             {
-                // On Unix systems, use a login shell if requested
-                // Get the shell from the environment, or use bash as fallback
-                let shell_path =
-                    std::env::var("SHELL").unwrap_or_else(|_| String::from("/bin/bash"));
-
-                log::debug!(
-                    "[session {}] Running kernel in login shell: {}",
-                    self.model.session_id,
-                    shell_path
-                );
+                let candidates = vec![
+                    std::env::var("SHELL").unwrap_or_else(|_| String::from("")),
+                    String::from("/bin/bash"),
+                    String::from("/bin/sh"),
+                ];
+
+                let mut login_shell = None;
+                for i in 0..candidates.len() {
+                    let shell_path = &candidates[i];
+                    // Ignore if empty (happens if SHELL is not set)
+                    if shell_path.is_empty() {
+                        continue;
+                    }
+                    // Found a valid shell path
+                    if fs::metadata(&shell_path).is_ok() {
+                        login_shell = Some(shell_path);
+                        break;
+                    } else if i == 0 {
+                        // The first candidate comes from $SHELL. If it doesn't exist,
+                        // log a warning but continue to try the others.
+                        log::warn!(
+                            "[session {}] Shell path specified in $SHELL '{}' does not exist",
+                            self.model.session_id,
+                            shell_path
+                        );
+                    }
+                }
 
-                // Create the original command as a string with proper shell escaping
-                let mut original_command = argv
-                    .iter()
-                    .map(|arg| escape_for_shell(arg))
-                    .collect::<Vec<_>>()
-                    .join(" ");
-
-                // On macOS, if the DYLD_LIBRARY_PATH environment variable was
-                // requested, set it explictly; it is not inherited by default
-                // in login shells due to SIP.
-                if let Some(dyld_path) = resolved_env.get("DYLD_LIBRARY_PATH") {
+                // If we found a login shell, use it to run the kernel
+                if let Some(login_shell) = login_shell {
                     log::debug!(
-                        "[session {}] Explicitly forwarding DYLD_LIBRARY_PATH: {}",
+                        "[session {}] Running kernel in login shell: {}",
                         self.model.session_id,
-                        dyld_path
+                        login_shell
                     );
-                    original_command = format!(
-                        "DYLD_LIBRARY_PATH={} {}",
-                        escape_for_shell(dyld_path),
-                        original_command
+                    // Create the original command as a string with proper shell escaping
+                    let mut original_command = argv
+                        .iter()
+                        .map(|arg| escape_for_shell(arg))
+                        .collect::<Vec<_>>()
+                        .join(" ");
+
+                    // On macOS, if the DYLD_LIBRARY_PATH environment variable was
+                    // requested, set it explictly; it is not inherited by default
+                    // in login shells due to SIP.
+                    if let Some(dyld_path) = resolved_env.get("DYLD_LIBRARY_PATH") {
+                        log::debug!(
+                            "[session {}] Explicitly forwarding DYLD_LIBRARY_PATH: {}",
+                            self.model.session_id,
+                            dyld_path
+                        );
+                        original_command = format!(
+                            "DYLD_LIBRARY_PATH={} {}",
+                            escape_for_shell(dyld_path),
+                            original_command
+                        );
+                    }
+
+                    // Create a command that uses the login shell. Note that we use
+                    // the short form -l rather than --login to ensure compatibility
+                    // with shells that don't support the long form, such as
+                    // sh/dash.
+                    let mut cmd = tokio::process::Command::new(login_shell);
+                    cmd.args(&["-l", "-c", &original_command]);
+                    Some(cmd)
+                } else {
+                    log::warn!(
+                        "[session {}] No valid login shell found; running kernel without a login shell",
+                        self.model.session_id
                     );
+                    None
                 }
-
-                // Create a command that uses the login shell. Note that we use
-                // the short form -l rather than --login to ensure compatibility
-                // with shells that don't support the long form, such as
-                // sh/dash.
-                let mut cmd = tokio::process::Command::new(shell_path);
-                cmd.args(&["-l", "-c", &original_command]);
-                cmd
             }
 
             #[cfg(target_os = "windows")]
@@ -519,15 +550,22 @@ impl KernelSession {
                     "[session {}] run_in_shell parameter ignored on Windows",
                     self.model.session_id
                 );
+                None
+            }
+        } else {
+            None
+        };
+
+        // If we formed a shell command, start the kernel with the shell
+        // command; otherwise, start it with the original command line
+        // arguments.
+        let mut cmd = match shell_command {
+            Some(command) => command,
+            None => {
                 let mut cmd = tokio::process::Command::new(&argv[0]);
                 cmd.args(&argv[1..]);
                 cmd
             }
-        } else {
-            // Normal execution - no login shell
-            let mut cmd = tokio::process::Command::new(&argv[0]);
-            cmd.args(&argv[1..]);
-            cmd
         };
 
         // If a working directory was specified, test the working directory to
@@ -537,7 +575,7 @@ impl KernelSession {
             match fs::metadata(&working_directory) {
                 Ok(metadata) => {
                     if metadata.is_dir() {
-                        command.current_dir(&working_directory);
+                        cmd.current_dir(&working_directory);
                         log::trace!(
                             "[session {}] Using working directory '{}'",
                             self.model.session_id.clone(),
@@ -571,7 +609,7 @@ impl KernelSession {
         }
 
         // Attempt to actually start the kernel process
-        let mut child = match command
+        let mut child = match cmd
             .envs(&resolved_env)
             .stdout(Stdio::piped())
             .stderr(Stdio::piped())
diff --git a/crates/kcserver/tests/python_kernel_tests.rs b/crates/kcserver/tests/python_kernel_tests.rs
@@ -17,7 +17,8 @@ use common::test_utils::{
 };
 use common::transport::{run_communication_test, CommunicationChannel, TransportType};
 use common::TestServer;
-use kallichore_api::models::{InterruptMode, NewSession};
+use kallichore_api::models::{InterruptMode, NewSession, VarAction, VarActionType};
+use kallichore_api::NewSessionResponse;
 use kcshared::jupyter_message::{JupyterChannel, JupyterMessage, JupyterMessageHeader};
 use kcshared::websocket_message::WebsocketMessage;
 use std::time::Duration;
@@ -1152,8 +1153,8 @@ async fn test_kernel_session_restart_with_environment_changes() {
     println!("Restarting kernel session with environment changes...");
     let restart_session = kallichore_api::models::RestartSession {
         working_directory: None,
-        env: Some(vec![kallichore_api::models::VarAction {
-            action: kallichore_api::models::VarActionType::Replace,
+        env: Some(vec![VarAction {
+            action: VarActionType::Replace,
             name: "RESTART_TEST_VAR".to_string(),
             value: "restart_value".to_string(),
         }]),
@@ -1346,3 +1347,117 @@ async fn test_multiple_session_shutdown_restart_cycle() {
     println!("Multiple session shutdown/restart cycle test completed successfully");
     drop(server);
 }
+
+#[cfg(not(target_os = "windows"))] // Shell behavior is Unix-specific
+#[tokio::test]
+async fn test_kernel_starts_with_bad_shell_env_var() {
+    let test_result = tokio::time::timeout(Duration::from_secs(30), async {
+        let python_cmd = if let Some(cmd) = get_python_executable().await {
+            cmd
+        } else {
+            println!("Skipping test: No Python executable found");
+            return;
+        };
+
+        if !is_ipykernel_available().await {
+            println!("Skipping test: ipykernel not available for {}", python_cmd);
+            return;
+        }
+
+        // Start a test server
+        let server = TestServer::start().await;
+        let client = server.create_client().await;
+
+        // Generate a unique session ID
+        let session_id = format!("test-bad-shell-{}", Uuid::new_v4());
+
+        // Create a session with run_in_shell=true but set SHELL to a non-existent path
+        let new_session = NewSession {
+            session_id: session_id.clone(),
+            display_name: "Test Bad Shell Session".to_string(),
+            language: "python".to_string(),
+            username: "testuser".to_string(),
+            input_prompt: "In [{}]: ".to_string(),
+            continuation_prompt: "   ...: ".to_string(),
+            argv: vec![
+                python_cmd.clone(),
+                "-m".to_string(),
+                "ipykernel".to_string(),
+                "-f".to_string(),
+                "{connection_file}".to_string(),
+            ],
+            working_directory: std::env::current_dir()
+                .unwrap()
+                .to_string_lossy()
+                .to_string(),
+            env: vec![
+                // Set SHELL to a non-existent path to simulate the bad shell scenario
+                VarAction {
+                    action: VarActionType::Replace,
+                    name: "SHELL".to_string(),
+                    value: "/non/existent/shell".to_string(),
+                }
+            ],
+            connection_timeout: Some(15),
+            interrupt_mode: InterruptMode::Message,
+            protocol_version: Some("5.3".to_string()),
+            run_in_shell: Some(true), // This is the key - enable run_in_shell with bad SHELL
+        };
+
+        println!("Creating session with run_in_shell=true and bad SHELL env var");
+
+        // Create the session - this should succeed despite the bad SHELL value
+        let _created_session_id = create_session_with_client(&client, new_session).await;
+
+        println!("Session created successfully: {}", session_id);
+
+        // Start the session - this should succeed despite the bad SHELL environment variable
+        println!("Starting kernel session with bad SHELL environment variable...");
+        let start_response = client
+            .start_session(session_id.clone())
+            .await
+            .expect("Failed to start session with bad SHELL");
+
+        println!("Start response: {:?}", start_response);
+
+        // Check if the session started successfully
+        match &start_response {
+            kallichore_api::StartSessionResponse::Started(_) => {
+                println!("Kernel started successfully despite bad SHELL environment variable");
+            }
+            kallichore_api::StartSessionResponse::StartFailed(error) => {
+                panic!("Kernel failed to start with bad SHELL: {:?}", error);
+            }
+            _ => {
+                panic!("Unexpected start response: {:?}", start_response);
+            }
+        }
+
+        // Wait for kernel to fully start
+        tokio::time::sleep(Duration::from_millis(2000)).await;
+
+        // Verify the session is actually running by checking its status
+        let sessions = client
+            .list_sessions()
+            .await
+            .expect("Failed to get sessions list");
+
+        let kallichore_api::ListSessionsResponse::ListOfActiveSessions(session_list) = sessions;
+        let session_found = session_list.sessions.iter().any(|s| s.session_id == session_id);
+        assert!(session_found, "Session should be in the active sessions list");
+
+        println!("Test passed: Kernel started successfully despite bad SHELL environment variable");
+
+        drop(server);
+    })
+    .await;
+
+    match test_result {
+        Ok(_) => {
+            println!("Bad shell environment variable test completed successfully");
+        }
+        Err(_) => {
+            panic!("Bad shell environment variable test timed out after 30 seconds");
+        }
+    }
+}
