dandri/simplexmq
1
0
Fork 0
mirror of https://github.com/simplex-chat/simplexmq.git synced 2026-05-25 18:34:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
bde90500ea50ef180ba95abc4b7393f8c37119ef
simplexmq/spec/modules/Simplex/Messaging/Notifications/Protocol.md
T
Evgeny @ SimpleX Chat bde90500ea agent store and notifications specs
2026-03-13 12:01:06 +00:00

2.6 KiB
Raw Blame History

Simplex.Messaging.Notifications.Protocol

NTF protocol entities, commands, responses, and wire encoding for the notification system.

Source: Notifications/Protocol.hs

Non-obvious behavior

1. Asymmetric credential validation

checkCredentials enforces different rules per command category:

Category Signature required Entity ID
TNEW, SNEW Yes Must be empty (new entity)
PING No Must be empty
All others Yes Must be present

For responses, the rule inverts: NRTknId, NRSubId, and NRPong must NOT have entity IDs (they are returned before/without entity context), while NRErr optionally has one (errors can occur with or without entity context).

2. PNMessageData semicolon separator

encodePNMessages uses ; as the separator between push notification message items instead of the standard , used by NonEmpty strEncode. This is because SMPQueueNtf contains an SMPServer whose host list encoding already uses commas, which would create ambiguous parsing.

3. NTInvalid reason is version-gated

When encoding NRTkn responses, the NTInvalid reason is only included if the negotiated protocol version is >= invalidReasonNTFVersion (v3). Older clients receive NTInvalid Nothing. This prevents parse failures on clients that don't understand the reason field.

4. subscribeNtfStatuses migration invariant

The comment on subscribeNtfStatuses ([NSNew, NSPending, NSActive, NSInactive]) warns that changing these statuses requires a new database migration for queue ID hashes (see m20250830_queue_ids_hash). This is a cross-module invariant between protocol types and server storage.

5. allowNtfSubCommands permits NTInvalid and NTExpired

Token status NTInvalid allows subscription commands (SNEW, SCHK, SDEL), which is counterintuitive. The rationale (noted in a TODO comment) is that invalidation can happen after verification, and existing subscriptions should remain manageable. NTExpired is also permitted for the same reason.

6. PPApnsNull test provider

PPApnsNull is a push provider that never communicates with APNS. It's used for end-to-end testing of the notification server from clients without requiring actual push infrastructure.

7. DeviceToken hex validation

DeviceToken string parsing has two paths: a hardcoded literal match for "apns_null test_ntf_token" (test tokens), and hex string validation for real tokens (must be even-length hex). The wire encoding (smpP) does not perform this validation — it accepts any ByteString.

Reference in New Issue View Git Blame Copy Permalink