mirror of
https://github.com/simplex-chat/simplexmq.git
synced 2026-04-26 21:45:15 +00:00
Evgeny Poberezkin
ad4b5b6b71
* parameterize transport handle with transport peer to include server certificate * include server certificate into THandle * load server chain and sign key * fix key type * fix for 8.10 --------- Co-authored-by: Alexander Bondarenko <486682+dpwiz@users.noreply.github.com> Co-authored-by: IC Rainbow <aenor.realm@gmail.com>
69 lines
2.5 KiB
Haskell
69 lines
2.5 KiB
Haskell
{-# LANGUAGE DataKinds #-}
|
|
{-# LANGUAGE OverloadedStrings #-}
|
|
{-# LANGUAGE RankNTypes #-}
|
|
{-# LANGUAGE ScopedTypeVariables #-}
|
|
{-# LANGUAGE TypeApplications #-}
|
|
|
|
module SMPProxyTests where
|
|
|
|
import Debug.Trace
|
|
import SMPAgentClient (testSMPServer, testSMPServer2)
|
|
import SMPClient
|
|
import ServerTests (sendRecv)
|
|
import Simplex.Messaging.Protocol
|
|
import Simplex.Messaging.Server.Env.STM (ServerConfig (..))
|
|
import Simplex.Messaging.Transport
|
|
import Simplex.Messaging.Version (mkVersionRange)
|
|
import Test.Hspec
|
|
|
|
smpProxyTests :: Spec
|
|
smpProxyTests = do
|
|
describe "server configuration" $ do
|
|
it "refuses proxy handshake unless enabled" testNoProxy
|
|
it "checks basic auth in proxy requests" testProxyAuth
|
|
xdescribe "proxy requests" $ do
|
|
xdescribe "bad relay URIs" $ do
|
|
it "host not resolved" todo
|
|
it "when SMP port blackholed" todo
|
|
it "no SMP service at host/port" todo
|
|
it "bad SMP fingerprint" todo
|
|
it "connects to relay" testProxyConnect
|
|
xit "connects to itself as a relay" todo
|
|
xit "batching proxy requests" todo
|
|
xdescribe "forwarding requests" $ do
|
|
it "sender-proxy-relay-recipient works" todo
|
|
it "similar timing for proxied and direct sends" todo
|
|
|
|
proxyVRange :: VersionRangeSMP
|
|
proxyVRange = mkVersionRange batchCmdsSMPVersion sendingProxySMPVersion
|
|
|
|
testNoProxy :: IO ()
|
|
testNoProxy = do
|
|
withSmpServerConfigOn (transport @TLS) cfg testPort2 $ \_ -> do
|
|
testSMPClient_ "127.0.0.1" testPort2 proxyVRange $ \(th :: THandleSMP TLS 'TClient) -> do
|
|
(_, _, (_corrId, _entityId, reply)) <- sendRecv th (Nothing, "0", "", PRXY testSMPServer Nothing)
|
|
reply `shouldBe` Right (ERR AUTH)
|
|
|
|
testProxyAuth :: IO ()
|
|
testProxyAuth = do
|
|
withSmpServerConfigOn (transport @TLS) proxyCfgAuth testPort $ \_ -> do
|
|
testSMPClient_ "127.0.0.1" testPort proxyVRange $ \(th :: THandleSMP TLS 'TClient) -> do
|
|
(_, s, (_corrId, _entityId, reply)) <- sendRecv th (Nothing, "0", "", PRXY testSMPServer2 $ Just "wrong")
|
|
traceShowM s
|
|
reply `shouldBe` Right (ERR AUTH)
|
|
where
|
|
proxyCfgAuth = proxyCfg {newQueueBasicAuth = Just "correct"}
|
|
|
|
testProxyConnect :: IO ()
|
|
testProxyConnect = do
|
|
withSmpServerConfigOn (transport @TLS) proxyCfg testPort $ \_ -> do
|
|
testSMPClient_ "127.0.0.1" testPort proxyVRange $ \(th :: THandleSMP TLS 'TClient) -> do
|
|
(_, _, (_corrId, _entityId, reply)) <- sendRecv th (Nothing, "0", "", PRXY testSMPServer2 Nothing)
|
|
case reply of
|
|
Right PKEY {} -> pure ()
|
|
_ -> fail $ "bad reply: " <> show reply
|
|
|
|
todo :: IO ()
|
|
todo = do
|
|
fail "TODO"
|