Merge pull request #88 from matrix-org/kegan/mitm

Make mitm/callback options more composable
matrix-org · Jun 20, 2024 · 7041e29 · 7041e29
2 parents 7696ab5 + 5ae5ce6
commit 7041e29
Show file tree

Hide file tree

Showing 9 changed files with 315 additions and 280 deletions.
diff --git a/internal/deploy/callback_addon.go b/internal/deploy/callback_addon.go
@@ -10,7 +10,6 @@ import (
 	"testing"
 	"time"
 
-	"github.com/matrix-org/complement"
 	"github.com/matrix-org/complement/ct"
 	"github.com/matrix-org/complement/must"
 )
@@ -33,7 +32,7 @@ func (cd CallbackData) String() string {
 // NewCallbackServer runs a local HTTP server that can read callbacks from mitmproxy.
 // Returns the URL of the callback server for use with WithMITMOptions, along with a close function
 // which should be called when the test finishes to shut down the HTTP server.
-func NewCallbackServer(t *testing.T, deployment complement.Deployment, cb func(CallbackData)) (callbackURL string, close func()) {
+func NewCallbackServer(t *testing.T, hostnameRunningComplement string, cb func(CallbackData)) (callbackURL string, close func()) {
 	if lastTestName != "" {
 		t.Logf("WARNING[%s]: NewCallbackServer called without closing the last one. Check test '%s'", t.Name(), lastTestName)
 	}
@@ -66,7 +65,7 @@ func NewCallbackServer(t *testing.T, deployment complement.Deployment, cb func(C
 		Handler: mux,
 	}
 	go srv.Serve(ln)
-	return fmt.Sprintf("http://%s:%d", deployment.GetConfig().HostnameRunningComplement, port), func() {
+	return fmt.Sprintf("http://%s:%d", hostnameRunningComplement, port), func() {
 		srv.Close()
 		lastTestName = ""
 	}

diff --git a/internal/deploy/deploy.go b/internal/deploy/deploy.go
@@ -1,14 +1,11 @@
 package deploy
 
 import (
-	"bytes"
 	"context"
-	"encoding/json"
 	"fmt"
 	"io"
 	"io/fs"
 	"log"
-	"net/http"
 	"net/url"
 	"os"
 	"path/filepath"
@@ -31,80 +28,22 @@ import (
 	"github.com/testcontainers/testcontainers-go/wait"
 )
 
-// must match the value in tests/addons/__init__.py
-const magicMITMURL = "http://mitm.code"
-
 const mitmDumpFilePathOnContainer = "/tmp/mitm.dump"
 
 type SlidingSyncDeployment struct {
 	complement.Deployment
 	extraContainers      map[string]testcontainers.Container
-	mitmClient           *http.Client
+	mitmClient           *MITMClient
 	ControllerURL        string
 	dnsToReverseProxyURL map[string]string
 	mu                   sync.RWMutex
 	mitmDumpFile         string
 }
 
-func (d *SlidingSyncDeployment) WithSniffedEndpoint(t *testing.T, partialPath string, onSniff func(CallbackData), inner func()) {
-	t.Helper()
-	callbackURL, closeCallbackServer := NewCallbackServer(t, d, onSniff)
-	defer closeCallbackServer()
-	d.WithMITMOptions(t, map[string]interface{}{
-		"callback": map[string]interface{}{
-			"callback_url": callbackURL,
-			// the filter is a python regexp
-			// "Regexes are Python-style" - https://docs.mitmproxy.org/stable/concepts-filters/
-			// re.escape() escapes very little:
-			// "Changed in version 3.7: Only characters that can have special meaning in a regular expression are escaped.
-			// As a result, '!', '"', '%', "'", ',', '/', ':', ';', '<', '=', '>', '@', and "`" are no longer escaped."
-			// https://docs.python.org/3/library/re.html#re.escape
-			//
-			// The majority of HTTP paths are just /foo/bar with % for path-encoding e.g @foo:bar=>%40foo%3Abar,
-			// so on balance we can probably just use the path directly.
-			"filter": "~u .*" + partialPath + ".*",
-		},
-	}, func() {
-		inner()
-	})
-}
-
-// WithMITMOptions changes the options of mitmproxy and executes inner() whilst those options are in effect.
-// As the options on mitmproxy are a shared resource, this function has transaction-like semantics, ensuring
-// the lock is released when inner() returns. This is similar to the `with` keyword in python.
-func (d *SlidingSyncDeployment) WithMITMOptions(t *testing.T, options map[string]interface{}, inner func()) {
-	t.Helper()
-	lockID := d.lockOptions(t, options)
-	defer d.unlockOptions(t, lockID)
-	inner()
-}
-
-func (d *SlidingSyncDeployment) lockOptions(t *testing.T, options map[string]interface{}) (lockID []byte) {
-	jsonBody, err := json.Marshal(map[string]interface{}{
-		"options": options,
-	})
-	t.Logf("lockOptions: %v", string(jsonBody))
-	must.NotError(t, "failed to marshal options", err)
-	u := magicMITMURL + "/options/lock"
-	req, err := http.NewRequest("POST", u, bytes.NewBuffer(jsonBody))
-	must.NotError(t, "failed to prepare request", err)
-	req.Header.Set("Content-Type", "application/json")
-	res, err := d.mitmClient.Do(req)
-	must.NotError(t, "failed to POST "+u, err)
-	must.Equal(t, res.StatusCode, 200, "controller returned wrong HTTP status")
-	lockID, err = io.ReadAll(res.Body)
-	must.NotError(t, "failed to read response", err)
-	return lockID
-}
-
-func (d *SlidingSyncDeployment) unlockOptions(t *testing.T, lockID []byte) {
-	t.Logf("unlockOptions")
-	req, err := http.NewRequest("POST", magicMITMURL+"/options/unlock", bytes.NewBuffer(lockID))
-	must.NotError(t, "failed to prepare request", err)
-	req.Header.Set("Content-Type", "application/json")
-	res, err := d.mitmClient.Do(req)
-	must.NotError(t, "failed to do request", err)
-	must.Equal(t, res.StatusCode, 200, "controller returned wrong HTTP status")
+// MITM returns a client capable of configuring man-in-the-middle operations such as
+// snooping on CSAPI traffic and modifying responses.
+func (d *SlidingSyncDeployment) MITM() *MITMClient {
+	return d.mitmClient
 }
 
 func (d *SlidingSyncDeployment) UnauthenticatedClient(t ct.TestLike, serverName string) *client.CSAPI {
@@ -387,12 +326,7 @@ func RunNewDeployment(t *testing.T, mitmProxyAddonsDir string, mitmDumpFile stri
 			"mitmproxy": mitmproxyContainer,
 		},
 		ControllerURL: controllerURL,
-		mitmClient: &http.Client{
-			Timeout: 5 * time.Second,
-			Transport: &http.Transport{
-				Proxy: http.ProxyURL(proxyURL),
-			},
-		},
+		mitmClient:    NewMITMClient(proxyURL, deployment.GetConfig().HostnameRunningComplement),
 		dnsToReverseProxyURL: map[string]string{
 			"hs1":      rpHS1URL,
 			"hs2":      rpHS2URL,

diff --git a/internal/deploy/mitm.go b/internal/deploy/mitm.go
@@ -0,0 +1,217 @@
+package deploy
+
+import (
+	"bytes"
+	"encoding/json"
+	"io"
+	"net/http"
+	"net/url"
+	"strings"
+	"sync"
+	"testing"
+	"time"
+
+	"github.com/matrix-org/complement/ct"
+	"github.com/matrix-org/complement/must"
+)
+
+// must match the value in tests/addons/__init__.py
+const magicMITMURL = "http://mitm.code"
+
+var (
+	boolTrue  = true
+	boolFalse = false
+)
+
+type MITMClient struct {
+	client                    *http.Client
+	hostnameRunningComplement string
+}
+
+func NewMITMClient(proxyURL *url.URL, hostnameRunningComplement string) *MITMClient {
+	return &MITMClient{
+		hostnameRunningComplement: hostnameRunningComplement,
+		client: &http.Client{
+			Timeout: 5 * time.Second,
+			Transport: &http.Transport{
+				Proxy: http.ProxyURL(proxyURL),
+			},
+		},
+	}
+}
+
+func (m *MITMClient) Configure(t *testing.T) *MITMConfiguration {
+	return &MITMConfiguration{
+		t:        t,
+		pathCfgs: make(map[string]*MITMPathConfiguration),
+		mu:       &sync.Mutex{},
+		client:   m,
+	}
+}
+
+func (m *MITMClient) lockOptions(t *testing.T, options map[string]any) (lockID []byte) {
+	jsonBody, err := json.Marshal(map[string]interface{}{
+		"options": options,
+	})
+	t.Logf("lockOptions: %v", string(jsonBody))
+	must.NotError(t, "failed to marshal options", err)
+	u := magicMITMURL + "/options/lock"
+	req, err := http.NewRequest("POST", u, bytes.NewBuffer(jsonBody))
+	must.NotError(t, "failed to prepare request", err)
+	req.Header.Set("Content-Type", "application/json")
+	res, err := m.client.Do(req)
+	must.NotError(t, "failed to POST "+u, err)
+	must.Equal(t, res.StatusCode, 200, "controller returned wrong HTTP status")
+	lockID, err = io.ReadAll(res.Body)
+	must.NotError(t, "failed to read response", err)
+	return lockID
+}
+
+func (m *MITMClient) unlockOptions(t *testing.T, lockID []byte) {
+	t.Logf("unlockOptions")
+	req, err := http.NewRequest("POST", magicMITMURL+"/options/unlock", bytes.NewBuffer(lockID))
+	must.NotError(t, "failed to prepare request", err)
+	req.Header.Set("Content-Type", "application/json")
+	res, err := m.client.Do(req)
+	must.NotError(t, "failed to do request", err)
+	must.Equal(t, res.StatusCode, 200, "controller returned wrong HTTP status")
+}
+
+// MITMConfiguration represent a single mitmproxy configuration, with all options specified.
+//
+// Tests will typically build up this configuration by calling `Intercept` with the paths
+// they are interested in.
+type MITMConfiguration struct {
+	t        *testing.T
+	pathCfgs map[string]*MITMPathConfiguration
+	mu       *sync.Mutex
+	client   *MITMClient
+}
+
+func (c *MITMConfiguration) ForPath(partialPath string) *MITMPathConfiguration {
+	c.mu.Lock()
+	defer c.mu.Unlock()
+	p, ok := c.pathCfgs[partialPath]
+	if ok {
+		return p
+	}
+	p = &MITMPathConfiguration{
+		t:    c.t,
+		path: partialPath,
+	}
+	c.pathCfgs[partialPath] = p
+	return p
+}
+
+// Execute a mitm proxy configuration for the duration of `inner`.
+func (c *MITMConfiguration) Execute(inner func()) {
+	// The HTTP request to mitmproxy needs to look like:
+	//   {
+	//     $addon_name: {
+	//       $addon_values...
+	//     }
+	//   }
+	// We have 2 add-ons: "callback" and "status_code". The former just sniffs
+	// requests/responses. The latter modifies the request/response in some way.
+	//
+	// The API shape of the add-ons are located inside the python files in tests/mitmproxy_addons
+	body := map[string]any{}
+	if len(c.pathCfgs) > 1 {
+		c.t.Fatalf(">1 path config currently unsupported") // TODO
+	}
+	c.mu.Lock()
+	for _, pathConfig := range c.pathCfgs {
+		if pathConfig.listener != nil {
+			callbackURL, closeCallbackServer := NewCallbackServer(c.t, c.client.hostnameRunningComplement, pathConfig.listener)
+			defer closeCallbackServer()
+
+			body["callback"] = map[string]any{
+				"callback_url": callbackURL,
+				"filter":       pathConfig.filter(),
+			}
+		}
+		if pathConfig.blockRequest != nil {
+			body["statuscode"] = map[string]any{
+				"return_status": pathConfig.blockStatusCode,
+				"block_request": *pathConfig.blockRequest,
+				"count":         pathConfig.blockCount,
+				"filter":        pathConfig.filter(),
+			}
+		}
+	}
+	c.mu.Unlock()
+
+	lockID := c.client.lockOptions(c.t, body)
+	defer c.client.unlockOptions(c.t, lockID)
+	inner()
+
+}
+
+type MITMPathConfiguration struct {
+	t           *testing.T
+	path        string
+	accessToken string
+	method      string
+	listener    func(cd CallbackData)
+
+	blockCount      int
+	blockStatusCode int
+	blockRequest    *bool // nil means don't block
+}
+
+func (p *MITMPathConfiguration) filter() string {
+	// the filter is a python regexp
+	// "Regexes are Python-style" - https://docs.mitmproxy.org/stable/concepts-filters/
+	// re.escape() escapes very little:
+	// "Changed in version 3.7: Only characters that can have special meaning in a regular expression are escaped.
+	// As a result, '!', '"', '%', "'", ',', '/', ':', ';', '<', '=', '>', '@', and "`" are no longer escaped."
+	// https://docs.python.org/3/library/re.html#re.escape
+	//
+	// The majority of HTTP paths are just /foo/bar with % for path-encoding e.g @foo:bar=>%40foo%3Abar,
+	// so on balance we can probably just use the path directly.
+	var s strings.Builder
+	s.WriteString("~u .*" + p.path + ".*")
+	if p.method != "" {
+		s.WriteString(" ~m " + strings.ToUpper(p.method))
+	}
+	if p.accessToken != "" {
+		s.WriteString(" ~hq " + p.accessToken)
+	}
+	return s.String()
+}
+
+func (p *MITMPathConfiguration) Listen(cb func(cd CallbackData)) *MITMPathConfiguration {
+	p.listener = cb
+	return p
+}
+
+func (p *MITMPathConfiguration) AccessToken(accessToken string) *MITMPathConfiguration {
+	p.accessToken = accessToken
+	return p
+}
+
+func (p *MITMPathConfiguration) Method(method string) *MITMPathConfiguration {
+	p.method = method
+	return p
+}
+
+func (p *MITMPathConfiguration) BlockRequest(count, returnStatusCode int) *MITMPathConfiguration {
+	if p.blockRequest != nil {
+		// we can't express blocking requests and responses separately, it doesn't make sense.
+		ct.Fatalf(p.t, "BlockRequest or BlockResponse cannot be called multiple times for the same path")
+	}
+	p.blockCount = count
+	p.blockRequest = &boolTrue
+	p.blockStatusCode = returnStatusCode
+	return p
+}
+
+func (p *MITMPathConfiguration) BlockResponse(count, returnStatusCode int) *MITMPathConfiguration {
+	if p.blockRequest != nil {
+		ct.Fatalf(p.t, "BlockRequest or BlockResponse cannot be called multiple times for the same path")
+	}
+	p.blockCount = count
+	p.blockRequest = &boolFalse
+	p.blockStatusCode = returnStatusCode
+	return p
+}