From 8129eb6cc84701c8c8f3e1aa06c5d0f2e0a286b7 Mon Sep 17 00:00:00 2001
From: sim <git@sgougeon.fr>
Date: Mon, 17 Nov 2025 17:47:44 +0100
Subject: [PATCH] Add HTTP2 support to webpush

---
 simplexmq.cabal                               |  1 +
 .../Messaging/Notifications/Server/Env.hs     | 14 ++--
 .../Notifications/Server/Push/WebPush.hs      | 64 +++++++++++++++----
 tests/NtfServerTests.hs                       |  3 +-
 4 files changed, 63 insertions(+), 19 deletions(-)

diff --git a/simplexmq.cabal b/simplexmq.cabal
index d72d3f02c..ea8257669 100644
--- a/simplexmq.cabal
+++ b/simplexmq.cabal
@@ -305,6 +305,7 @@ library
     , containers ==0.6.*
     , crypton ==0.34.*
     , crypton-x509 ==1.7.*
+    , crypton-x509-system ==1.6.*
     , crypton-x509-store ==1.6.*
     , crypton-x509-validation ==1.6.*
     , cryptostore ==0.3.*
diff --git a/src/Simplex/Messaging/Notifications/Server/Env.hs b/src/Simplex/Messaging/Notifications/Server/Env.hs
index 83f999461..2721c2a1f 100644
--- a/src/Simplex/Messaging/Notifications/Server/Env.hs
+++ b/src/Simplex/Messaging/Notifications/Server/Env.hs
@@ -30,20 +30,21 @@ import qualified Simplex.Messaging.Crypto as C
 import Simplex.Messaging.Notifications.Protocol
 import Simplex.Messaging.Notifications.Server.Push
 import Simplex.Messaging.Notifications.Server.Push.APNS
-import Simplex.Messaging.Notifications.Server.Push.WebPush (WebPushClient (..), WebPushConfig, wpPushProviderClient)
+import Simplex.Messaging.Notifications.Server.Push.WebPush (WebPushClient (..), WebPushConfig, wpPushProviderClientH1, wpPushProviderClientH2, wpHTTP2Client)
 import Simplex.Messaging.Notifications.Server.Stats
 import Simplex.Messaging.Notifications.Server.Store (newNtfSTMStore)
 import Simplex.Messaging.Notifications.Server.Store.Postgres
 import Simplex.Messaging.Notifications.Server.Store.Types
 import Simplex.Messaging.Notifications.Server.StoreLog (readWriteNtfSTMStore)
 import Simplex.Messaging.Notifications.Transport (NTFVersion, VersionRangeNTF)
-import Simplex.Messaging.Protocol (BasicAuth, CorrId, Party (..), SMPServer, SParty (..), Transmission)
+import Simplex.Messaging.Protocol (BasicAuth, CorrId, Party (..), SMPServer, SParty (..), Transmission, SrvLoc (..))
 import Simplex.Messaging.Server.Env.STM (StartOptions (..))
 import Simplex.Messaging.Server.Expiration
 import Simplex.Messaging.Server.QueueStore.Postgres.Config (PostgresStoreCfg (..))
 import Simplex.Messaging.Server.StoreLog (closeStoreLog)
 import Simplex.Messaging.Session
 import Simplex.Messaging.TMap (TMap)
+import Simplex.Messaging.Util (tshow)
 import qualified Simplex.Messaging.TMap as TM
 import Simplex.Messaging.Transport (ASrvTransport, SMPServiceRole (..), ServiceCredentials (..), THandleParams, TransportPeer (..))
 import Simplex.Messaging.Transport.Server (AddHTTP, ServerCredentials, TransportServerConfig, loadFingerprint, loadServerCredential)
@@ -180,14 +181,19 @@ newAPNSPushClient NtfPushServer {apnsConfig, pushClients} pp = do
     Just host -> apnsPushProviderClient <$> createAPNSPushClient host apnsConfig
 
 newWPPushClient :: NtfPushServer -> WPProvider -> IO PushProviderClient
-newWPPushClient NtfPushServer {wpConfig, pushClients} pp = do
+newWPPushClient NtfPushServer {wpConfig, pushClients} (WPP (WPSrvLoc (SrvLoc h p))) = do
   logDebug "New WP Client requested"
   -- We use one http manager per push server (which may be used by different clients)
   manager <- wpHTTPManager
   cache <- newIORef Nothing
   random <- C.newRandom
   let client = WebPushClient {wpConfig, cache, manager, random}
-  pure $ wpPushProviderClient client
+  r <- wpHTTP2Client h p
+  case r of
+    Right client -> pure $ wpPushProviderClientH2 client
+    Left e -> do
+      logError $ "Error connecting to H2 WP: " <> tshow e
+      wpPushProviderClientH1 client
 
 wpHTTPManager :: IO Manager
 wpHTTPManager =
diff --git a/src/Simplex/Messaging/Notifications/Server/Push/WebPush.hs b/src/Simplex/Messaging/Notifications/Server/Push/WebPush.hs
index d6a656d86..060c65142 100644
--- a/src/Simplex/Messaging/Notifications/Server/Push/WebPush.hs
+++ b/src/Simplex/Messaging/Notifications/Server/Push/WebPush.hs
@@ -38,10 +38,17 @@ import Data.Time.Clock.System (getSystemTime, systemSeconds)
 import Network.HTTP.Client
 import qualified Network.HTTP.Types as N
 import qualified Simplex.Messaging.Crypto as C
-import Simplex.Messaging.Notifications.Protocol (DeviceToken (..), NtfRegCode (..), WPAuth (..), WPKey (..), WPP256dh (..), WPTokenParams (..), encodePNMessages, wpAud, wpRequest)
+import Simplex.Messaging.Notifications.Protocol (DeviceToken (..), NtfRegCode (..), WPAuth (..), WPKey (..), WPP256dh (..), WPTokenParams (..), WPProvider (..), encodePNMessages, wpAud, wpRequest)
 import Simplex.Messaging.Notifications.Server.Push
 import Simplex.Messaging.Notifications.Server.Store.Types
 import Simplex.Messaging.Util (liftError', safeDecodeUtf8, tshow)
+import Simplex.Messaging.Transport.HTTP2.Client (HTTP2Client, getHTTP2Client, defaultHTTP2ClientConfig, HTTP2ClientError, sendRequest)
+import Network.Socket (ServiceName, HostName)
+import System.X509.Unix
+import qualified Network.HTTP2.Client as H
+import Data.ByteString.Builder (lazyByteString)
+import Simplex.Messaging.Encoding.String (StrEncoding(..))
+import Data.Bifunctor (first)
 import UnliftIO.STM
 
 -- | Vapid
@@ -61,7 +68,6 @@ mkVapid key = VapidKey {key, fp}
 data WebPushClient = WebPushClient
   { wpConfig :: WebPushConfig,
     cache :: IORef (Maybe WPCache),
-    manager :: Manager,
     random :: TVar ChaChaDRG
   }
 
@@ -132,26 +138,56 @@ mkVapidHeader VapidKey {key, fp} uriAuthority expire = do
   signedToken <- signedJWTTokenRaw key jwt
   pure $ "vapid t=" <> signedToken <> ",k=" <> fp
 
-wpPushProviderClient :: WebPushClient -> PushProviderClient
-wpPushProviderClient _ NtfTknRec {token = APNSDeviceToken _ _} _ = throwE PPInvalidPusher
-wpPushProviderClient c@WebPushClient {wpConfig, cache, manager} tkn@NtfTknRec {token = token@(WPDeviceToken pp params)} pn = do
+wpHTTP2Client :: HostName -> ServiceName -> IO (Either HTTP2ClientError HTTP2Client)
+wpHTTP2Client h p = do
+  caStore <- Just <$> getSystemCertificateStore
+  let config = defaultHTTP2ClientConfig
+  getHTTP2Client h p caStore config nop
+  where
+    nop = pure ()
+
+wpHeaders :: B.ByteString -> [N.Header]
+wpHeaders vapidH = [
+  -- Why http2-client doesn't accept TTL AND Urgency?
+  -- Keeping Urgency for now, the TTL should be around 30 days by default on the push servers
+  -- ("TTL", "2592000"), -- 30 days
+  ("Urgency", "high"),
+  ("Content-Encoding", "aes128gcm"),
+  ("Authorization", vapidH)
+  -- TODO: topic for pings and interval
+  ]
+
+wpHTTP2Req :: B.ByteString -> [(N.HeaderName, B.ByteString)] -> LB.ByteString -> H.Request
+wpHTTP2Req path headers s =  H.requestBuilder N.methodPost path headers (lazyByteString s)
+
+wpPushProviderClientH2 :: WebPushClient -> HTTP2Client -> PushProviderClient
+wpPushProviderClientH2 _ _ NtfTknRec {token = APNSDeviceToken _ _} _ = throwE PPInvalidPusher
+wpPushProviderClientH2 c@WebPushClient {wpConfig, cache} http2 tkn@NtfTknRec {token = (WPDeviceToken pp@(WPP p) params)} pn = do
+  -- TODO [webpush] this function should accept type that is restricted to WP token (so, possibly WPProvider and WPTokenParams)
+  -- parsing will happen in DeviceToken parser, so it won't fail here
+  encBody <- body
+  vapidH <- liftError' toPPWPError $ try $ getVapidHeader (vapidKey wpConfig) cache $ wpAud pp
+  let req = wpHTTP2Req (wpPath params) (wpHeaders vapidH) $ LB.fromStrict encBody
+  logDebug $ "HTTP/2 Request to " <> tshow (strEncode p)
+  void $ liftHTTPS2 $ sendRequest http2 req Nothing
+  where
+    body :: ExceptT PushProviderError IO B.ByteString
+    body = withExceptT PPCryptoError $ wpEncrypt c tkn params pn
+    liftHTTPS2 a = ExceptT $ first PPConnection <$> a
+
+wpPushProviderClientH1 :: WebPushClient -> Manager -> PushProviderClient
+wpPushProviderClientH1 _ _ NtfTknRec {token = APNSDeviceToken _ _} _ = throwE PPInvalidPusher
+wpPushProviderClientH1 c@WebPushClient {wpConfig, cache} manager tkn@NtfTknRec {token = token@(WPDeviceToken pp params)} pn = do
   -- TODO [webpush] this function should accept type that is restricted to WP token (so, possibly WPProvider and WPTokenParams)
   -- parsing will happen in DeviceToken parser, so it won't fail here
   r <- wpRequest token
   vapidH <- liftError' toPPWPError $ try $ getVapidHeader (vapidKey wpConfig) cache $ wpAud pp
   logDebug $ "Web Push request to " <> tshow (host r)
   encBody <- withExceptT PPCryptoError $ wpEncrypt c tkn params pn
-  let requestHeaders =
-        [ ("TTL", "2592000"), -- 30 days
-          ("Urgency", "high"),
-          ("Content-Encoding", "aes128gcm"),
-          ("Authorization", vapidH)
-          -- TODO: topic for pings and interval
-        ]
-      req =
+  let req =
         r
           { method = "POST",
-            requestHeaders,
+            requestHeaders = wpHeaders vapidH,
             requestBody = RequestBodyBS encBody,
             redirectCount = 0
           }
diff --git a/tests/NtfServerTests.hs b/tests/NtfServerTests.hs
index 33154cbe0..4aab1845e 100644
--- a/tests/NtfServerTests.hs
+++ b/tests/NtfServerTests.hs
@@ -205,7 +205,8 @@ testWPNotificationSubscription (ATransport t, msType) createQueue =
           PushMockRequest {notification = WPNotification {authorization, encoding, ttl, urgency, body}} <-
             getMockNotification wp tkn
           encoding `shouldBe` Just "aes128gcm"
-          ttl `shouldBe` Just "2592000"
+          -- We can't pass TTL and Urgency ATM
+          -- ttl `shouldBe` Just "2592000"
           urgency `shouldBe` Just "high"
           -- TODO: uncomment when vapid is merged
           -- authorization `shouldContainBS` "vapid t="