/*
This file is part of GNU Taler
(C) 2020 Taler Systems S.A.
GNU Taler is free software; you can redistribute it and/or modify it under the
terms of the GNU General Public License as published by the Free Software
Foundation; either version 3, or (at your option) any later version.
GNU Taler is distributed in the hope that it will be useful, but WITHOUT ANY
WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with
GNU Taler; see the file COPYING. If not, see
*/
/**
* Imports.
*/
import {
ExchangesListResponse,
TalerCorebankApiClient,
TalerErrorCode,
URL,
j2s,
} from "@gnu-taler/taler-util";
import { WalletApiOperation } from "@gnu-taler/taler-wallet-core";
import { defaultCoinConfig } from "../harness/denomStructures.js";
import {
FaultInjectedExchangeService,
FaultInjectionResponseContext,
} from "../harness/faultInjection.js";
import {
BankService,
ExchangeService,
GlobalTestState,
MerchantService,
WalletCli,
getTestHarnessPaytoForLabel,
setupDb,
} from "../harness/harness.js";
/**
* Test if the wallet handles outdated exchange versions correctly.
*/
export async function runExchangeManagementFaultTest(
t: GlobalTestState,
): Promise {
// Set up test environment
const db = await setupDb(t);
const bank = await BankService.create(t, {
allowRegistrations: true,
currency: "TESTKUDOS",
database: db.connStr,
httpPort: 8082,
});
const exchange = ExchangeService.create(t, {
name: "testexchange-1",
currency: "TESTKUDOS",
httpPort: 8081,
database: db.connStr,
});
const merchant = await MerchantService.create(t, {
name: "testmerchant-1",
currency: "TESTKUDOS",
httpPort: 8083,
database: db.connStr,
});
let receiverName = "Exchange";
let exchangeBankUsername = "exchange";
let exchangeBankPassword = "mypw";
let exchangePaytoUri = getTestHarnessPaytoForLabel(exchangeBankUsername);
await exchange.addBankAccount("1", {
accountName: exchangeBankUsername,
accountPassword: exchangeBankPassword,
wireGatewayApiBaseUrl: new URL("accounts/exchange/taler-wire-gateway/", bank.baseUrl).href,
accountPaytoUri: exchangePaytoUri,
});
const faultyExchange = new FaultInjectedExchangeService(t, exchange, 8091);
// Base URL must contain port that the proxy is listening on.
await exchange.modifyConfig(async (config) => {
config.setString("exchange", "base_url", "http://localhost:8091/");
});
bank.setSuggestedExchange(
faultyExchange,
exchangePaytoUri,
);
await bank.start();
await bank.pingUntilAvailable();
exchange.addOfferedCoins(defaultCoinConfig);
await exchange.start();
await exchange.pingUntilAvailable();
merchant.addExchange(exchange);
await merchant.start();
await merchant.pingUntilAvailable();
await merchant.addInstanceWithWireAccount({
id: "default",
name: "Default Instance",
paytoUris: [getTestHarnessPaytoForLabel("merchant-default")],
});
await merchant.addInstanceWithWireAccount({
id: "minst1",
name: "minst1",
paytoUris: [getTestHarnessPaytoForLabel("minst1")],
});
console.log("setup done!");
/*
* =========================================================================
* Check that the exchange can be added to the wallet
* (without any faults active).
* =========================================================================
*/
const wallet = new WalletCli(t);
let exchangesList: ExchangesListResponse;
exchangesList = await wallet.client.call(
WalletApiOperation.ListExchanges,
{},
);
console.log("exchanges list:", j2s(exchangesList));
t.assertTrue(exchangesList.exchanges.length === 0);
// Try before fault is injected
await wallet.client.call(WalletApiOperation.AddExchange, {
exchangeBaseUrl: faultyExchange.baseUrl,
});
exchangesList = await wallet.client.call(
WalletApiOperation.ListExchanges,
{},
);
t.assertTrue(exchangesList.exchanges.length === 1);
await wallet.client.call(WalletApiOperation.ListExchanges, {});
console.log("listing exchanges");
exchangesList = await wallet.client.call(
WalletApiOperation.ListExchanges,
{},
);
t.assertTrue(exchangesList.exchanges.length === 1);
console.log("got list", exchangesList);
/*
* =========================================================================
* Check what happens if the exchange returns something totally
* bogus for /keys.
* =========================================================================
*/
wallet.deleteDatabase();
exchangesList = await wallet.client.call(
WalletApiOperation.ListExchanges,
{},
);
t.assertTrue(exchangesList.exchanges.length === 0);
faultyExchange.faultProxy.addFault({
async modifyResponse(ctx: FaultInjectionResponseContext) {
const url = new URL(ctx.request.requestUrl);
if (url.pathname === "/keys") {
const body = {
version: "whaaat",
};
ctx.responseBody = Buffer.from(JSON.stringify(body), "utf-8");
}
},
});
const err1 = await t.assertThrowsTalerErrorAsync(async () => {
await wallet.client.call(WalletApiOperation.AddExchange, {
exchangeBaseUrl: faultyExchange.baseUrl,
});
});
console.log("got error", err1);
// Response is malformed, since it didn't even contain a version code
// in a format the wallet can understand.
t.assertTrue(
err1.errorDetail.code === TalerErrorCode.WALLET_EXCHANGE_UNAVAILABLE,
);
exchangesList = await wallet.client.call(
WalletApiOperation.ListExchanges,
{},
);
console.log("exchanges list", j2s(exchangesList));
t.assertTrue(exchangesList.exchanges.length === 1);
t.assertTrue(
exchangesList.exchanges[0].lastUpdateErrorInfo?.error.code ===
TalerErrorCode.WALLET_RECEIVED_MALFORMED_RESPONSE,
);
/*
* =========================================================================
* Check what happens if the exchange returns an old, unsupported
* version for /keys
* =========================================================================
*/
wallet.deleteDatabase();
faultyExchange.faultProxy.clearAllFaults();
faultyExchange.faultProxy.addFault({
async modifyResponse(ctx: FaultInjectionResponseContext) {
const url = new URL(ctx.request.requestUrl);
if (url.pathname === "/keys") {
const keys = ctx.responseBody?.toString("utf-8");
t.assertTrue(keys != null);
const keysJson = JSON.parse(keys);
keysJson["version"] = "2:0:0";
ctx.responseBody = Buffer.from(JSON.stringify(keysJson), "utf-8");
}
},
});
const err2 = await t.assertThrowsTalerErrorAsync(async () => {
await wallet.client.call(WalletApiOperation.AddExchange, {
exchangeBaseUrl: faultyExchange.baseUrl,
});
});
t.assertTrue(err2.hasErrorCode(TalerErrorCode.WALLET_EXCHANGE_UNAVAILABLE));
exchangesList = await wallet.client.call(
WalletApiOperation.ListExchanges,
{},
);
t.assertTrue(exchangesList.exchanges.length === 1);
t.assertTrue(
exchangesList.exchanges[0].lastUpdateErrorInfo?.error.code ===
TalerErrorCode.WALLET_EXCHANGE_PROTOCOL_VERSION_INCOMPATIBLE,
);
/*
* =========================================================================
* Check that the exchange version is also checked when
* the exchange is implicitly added via the suggested
* exchange of a bank-integrated withdrawal.
* =========================================================================
*/
// Fault from above is still active!
// Create withdrawal operation
const bankClient = new TalerCorebankApiClient(bank.corebankApiBaseUrl, {
auth: {
username: "admin",
password: "adminpw",
},
});
const user = await bankClient.createRandomBankUser();
bankClient.setAuth({
username: user.username,
password: user.password,
});
const wop = await bankClient.createWithdrawalOperation(
user.username,
"TESTKUDOS:10",
);
// Hand it to the wallet
const wd = await wallet.client.call(
WalletApiOperation.GetWithdrawalDetailsForUri,
{
talerWithdrawUri: wop.taler_withdraw_uri,
},
);
// Make sure the faulty exchange isn't used for the suggestion.
t.assertTrue(wd.possibleExchanges.length === 0);
}
runExchangeManagementFaultTest.suites = ["wallet", "exchange"];