mirror of
https://github.com/apple/swift-nio-extras.git
synced 2025-05-16 09:52:28 +08:00
d861f305a1
* Guard channel is active * Add delayed channel connection test * Soundness * Fix endianness * Add delayed added test * Soundness * Apply suggestions from code review Co-authored-by: George Barnett <gbarnett@apple.com> Co-authored-by: George Barnett <gbarnett@apple.com>
192 lines
6.7 KiB
Swift
192 lines
6.7 KiB
Swift
//===----------------------------------------------------------------------===//
|
|
//
|
|
// This source file is part of the SwiftNIO open source project
|
|
//
|
|
// Copyright (c) 2021 Apple Inc. and the SwiftNIO project authors
|
|
// Licensed under Apache License v2.0
|
|
//
|
|
// See LICENSE.txt for license information
|
|
// See CONTRIBUTORS.txt for the list of SwiftNIO project authors
|
|
//
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
//
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
import NIO
|
|
@testable import NIOSOCKS
|
|
import XCTest
|
|
|
|
class SocksClientHandlerTests: XCTestCase {
|
|
|
|
var channel: EmbeddedChannel!
|
|
var handler: SOCKSClientHandler!
|
|
|
|
override func setUp() {
|
|
XCTAssertNil(self.channel)
|
|
self.handler = SOCKSClientHandler(targetAddress: .address(try! .init(ipAddress: "192.168.1.1", port: 80)))
|
|
self.channel = EmbeddedChannel(handler: self.handler)
|
|
}
|
|
|
|
func connect() {
|
|
try! self.channel.connect(to: .init(ipAddress: "127.0.0.1", port: 80)).wait()
|
|
}
|
|
|
|
override func tearDown() {
|
|
XCTAssertNotNil(self.channel)
|
|
self.channel = nil
|
|
}
|
|
|
|
func assertOutputBuffer(_ bytes: [UInt8], line: UInt = #line) {
|
|
if var buffer = try! self.channel.readOutbound(as: ByteBuffer.self) {
|
|
XCTAssertEqual(buffer.readBytes(length: buffer.readableBytes), bytes, line: line)
|
|
} else if bytes.count > 0 {
|
|
XCTFail("Expected bytes but found none")
|
|
}
|
|
}
|
|
|
|
func writeInbound(_ bytes: [UInt8], line: UInt = #line) {
|
|
try! self.channel.writeInbound(ByteBuffer(bytes: bytes))
|
|
}
|
|
|
|
func assertInbound(_ bytes: [UInt8], line: UInt = #line) {
|
|
var buffer = try! self.channel.readInbound(as: ByteBuffer.self)
|
|
XCTAssertEqual(buffer!.readBytes(length: buffer!.readableBytes), bytes, line: line)
|
|
}
|
|
|
|
func testTypicalWorkflow() {
|
|
self.connect()
|
|
|
|
// the client should start the handshake instantly
|
|
self.assertOutputBuffer([0x05, 0x01, 0x00])
|
|
|
|
// server selects an authentication method
|
|
self.writeInbound([0x05, 0x00])
|
|
|
|
// client sends the request
|
|
self.assertOutputBuffer([0x05, 0x01, 0x00, 0x01, 192, 168, 1, 1, 0x00, 0x50])
|
|
|
|
// server replies yay or nay
|
|
self.writeInbound([0x05, 0x00, 0x00, 0x01, 192, 168, 1, 1, 0x00, 0x50])
|
|
|
|
// any inbound data should now go straight through
|
|
self.writeInbound([1, 2, 3, 4, 5])
|
|
self.assertInbound([1, 2, 3, 4, 5])
|
|
|
|
}
|
|
|
|
func testTypicalWorkflowDripfeed() {
|
|
self.connect()
|
|
|
|
// the client should start the handshake instantly
|
|
self.assertOutputBuffer([0x05, 0x01, 0x00])
|
|
|
|
// server selects authentication method
|
|
// once the dripfeed is complete we should get the client request
|
|
self.writeInbound([0x05])
|
|
self.assertOutputBuffer([])
|
|
self.writeInbound([0x00])
|
|
self.assertOutputBuffer([0x05, 0x01, 0x00, 0x01, 192, 168, 1, 1, 0x00, 0x50])
|
|
|
|
// drip feed server response
|
|
self.writeInbound([0x05, 0x00, 0x00, 0x01])
|
|
self.assertOutputBuffer([])
|
|
self.writeInbound([192, 168])
|
|
self.assertOutputBuffer([])
|
|
self.writeInbound([1, 1])
|
|
self.assertOutputBuffer([])
|
|
self.writeInbound([0x00, 0x50])
|
|
|
|
// any inbound data should now go straight through
|
|
self.writeInbound([1, 2, 3, 4, 5])
|
|
self.assertInbound([1, 2, 3, 4, 5])
|
|
}
|
|
|
|
func testInvalidAuthenticationMethod() {
|
|
self.connect()
|
|
|
|
class ErrorHandler: ChannelInboundHandler {
|
|
typealias InboundIn = ByteBuffer
|
|
|
|
var promise: EventLoopPromise<Void>
|
|
|
|
init(promise: EventLoopPromise<Void>) {
|
|
self.promise = promise
|
|
}
|
|
|
|
func errorCaught(context: ChannelHandlerContext, error: Error) {
|
|
promise.fail(error)
|
|
}
|
|
}
|
|
|
|
self.assertOutputBuffer([0x05, 0x01, 0x00])
|
|
|
|
// server requests an auth method we don't support
|
|
let promise = self.channel.eventLoop.makePromise(of: Void.self)
|
|
try! self.channel.pipeline.addHandler(ErrorHandler(promise: promise), position: .last).wait()
|
|
self.writeInbound([0x05, 0x01])
|
|
XCTAssertThrowsError(try promise.futureResult.wait()) { e in
|
|
XCTAssertTrue(e is SOCKSError.InvalidAuthenticationSelection)
|
|
}
|
|
}
|
|
|
|
func testProxyConnectionFailed() {
|
|
self.connect()
|
|
|
|
class ErrorHandler: ChannelInboundHandler {
|
|
typealias InboundIn = ByteBuffer
|
|
|
|
var promise: EventLoopPromise<Void>
|
|
|
|
init(promise: EventLoopPromise<Void>) {
|
|
self.promise = promise
|
|
}
|
|
|
|
func errorCaught(context: ChannelHandlerContext, error: Error) {
|
|
promise.fail(error)
|
|
}
|
|
}
|
|
|
|
// start handshake, send request
|
|
self.assertOutputBuffer([0x05, 0x01, 0x00])
|
|
self.writeInbound([0x05, 0x00])
|
|
self.assertOutputBuffer([0x05, 0x01, 0x00, 0x01, 192, 168, 1, 1, 0x00, 0x50])
|
|
|
|
// server replies with an error
|
|
let promise = self.channel.eventLoop.makePromise(of: Void.self)
|
|
try! self.channel.pipeline.addHandler(ErrorHandler(promise: promise), position: .last).wait()
|
|
self.writeInbound([0x05, 0x01, 0x00, 0x01, 192, 168, 1, 1, 0x00, 0x50])
|
|
XCTAssertThrowsError(try promise.futureResult.wait()) { e in
|
|
XCTAssertEqual(e as? SOCKSError.ConnectionFailed, .init(reply: .serverFailure))
|
|
}
|
|
}
|
|
|
|
func testDelayedConnection() {
|
|
// we shouldn't start the handshake until the client
|
|
// has connected
|
|
self.assertOutputBuffer([])
|
|
|
|
self.connect()
|
|
|
|
// now the handshake should have started
|
|
self.assertOutputBuffer([0x05, 0x01, 0x00])
|
|
}
|
|
|
|
func testDelayedHandlerAdded() {
|
|
|
|
// reset the channel that was set up automatically
|
|
XCTAssertNoThrow(try self.channel.close().wait())
|
|
self.channel = EmbeddedChannel()
|
|
self.handler = SOCKSClientHandler(targetAddress: .domain("127.0.0.1", port: 1234))
|
|
XCTAssertNoThrow(try self.channel.connect(to: .init(ipAddress: "127.0.0.1", port: 80)).wait())
|
|
XCTAssertTrue(self.channel.isActive)
|
|
|
|
// there shouldn't be anything outbound
|
|
self.assertOutputBuffer([])
|
|
|
|
// add the handler, there should be outbound data immediately
|
|
XCTAssertNoThrow(self.channel.pipeline.addHandler(handler))
|
|
self.assertOutputBuffer([0x05, 0x01, 0x00])
|
|
}
|
|
|
|
}
|