162 lines
5.4 KiB
TypeScript
162 lines
5.4 KiB
TypeScript
import test from "node:test";
|
|
import assert from "node:assert/strict";
|
|
import type { IncomingMessage, ServerResponse } from "node:http";
|
|
import type { AgentId } from "../../src/mitm/types.ts";
|
|
import { MitmHandlerBase } from "../../src/mitm/handlers/base.ts";
|
|
|
|
// Concrete subclass exposing the protected helpers for testing.
|
|
class TestHandler extends MitmHandlerBase {
|
|
readonly agentId: AgentId = "antigravity";
|
|
|
|
async intercept(): Promise<void> {
|
|
// Not exercised in this suite.
|
|
}
|
|
|
|
publicExtract(buf: Buffer): string | null {
|
|
return this.extractSourceModel(buf);
|
|
}
|
|
|
|
async publicHookStart(
|
|
req: IncomingMessage,
|
|
body: Buffer,
|
|
mapped: string
|
|
): Promise<ReturnType<MitmHandlerBase["hookBufferStart"]>> {
|
|
return this.hookBufferStart(req, body, mapped);
|
|
}
|
|
|
|
publicHookUpdate(
|
|
intercepted: Parameters<MitmHandlerBase["hookBufferUpdate"]>[0],
|
|
opts?: Parameters<MitmHandlerBase["hookBufferUpdate"]>[1]
|
|
): void {
|
|
return this.hookBufferUpdate(intercepted, opts);
|
|
}
|
|
}
|
|
|
|
function fakeReq(headers: Record<string, string> = {}): IncomingMessage {
|
|
return {
|
|
method: "POST",
|
|
url: "/v1/chat/completions",
|
|
headers: {
|
|
host: "api.example.com",
|
|
"user-agent": "ut",
|
|
// 50-char opaque token — long enough to be masked by LONG_TOKEN rule.
|
|
authorization: "Bearer abcdefghijklmnopqrstuvwxyz0123456789ABCDEFGHIJKL",
|
|
...headers,
|
|
},
|
|
} as unknown as IncomingMessage;
|
|
}
|
|
|
|
test("base.extractSourceModel — reads body.model from JSON", () => {
|
|
const h = new TestHandler();
|
|
const buf = Buffer.from(JSON.stringify({ model: "gpt-4o", messages: [] }));
|
|
assert.equal(h.publicExtract(buf), "gpt-4o");
|
|
});
|
|
|
|
test("base.extractSourceModel — non-JSON body returns null", () => {
|
|
const h = new TestHandler();
|
|
assert.equal(h.publicExtract(Buffer.from("not json")), null);
|
|
});
|
|
|
|
test("base.extractSourceModel — missing model field returns null", () => {
|
|
const h = new TestHandler();
|
|
const buf = Buffer.from(JSON.stringify({ messages: [] }));
|
|
assert.equal(h.publicExtract(buf), null);
|
|
});
|
|
|
|
test("base.hookBufferStart — local stub returns InterceptedRequest with sanitized headers", async () => {
|
|
const h = new TestHandler();
|
|
const req = fakeReq();
|
|
const body = Buffer.from(JSON.stringify({ model: "gpt-4o" }));
|
|
const r = await h.publicHookStart(req, body, "claude-3.5-sonnet");
|
|
|
|
assert.equal(r.agent, "antigravity");
|
|
assert.equal(r.source, "agent-bridge");
|
|
assert.equal(r.mappedModel, "claude-3.5-sonnet");
|
|
assert.equal(r.sourceModel, "gpt-4o");
|
|
assert.equal(r.host, "api.example.com");
|
|
assert.equal(r.status, "in-flight");
|
|
// sanitizeHeaders should mask the long opaque token in `authorization`.
|
|
const auth = r.requestHeaders["authorization"];
|
|
assert.ok(
|
|
!auth ||
|
|
(typeof auth === "string" &&
|
|
!auth.includes("abcdefghijklmnopqrstuvwxyz0123456789ABCDEFGHIJKL")),
|
|
`sanitizeHeaders failed to mask authorization: ${JSON.stringify(auth)}`
|
|
);
|
|
});
|
|
|
|
test("base.hookBufferStart — body is captured (default shouldCaptureBody=true)", async () => {
|
|
const h = new TestHandler();
|
|
const req = fakeReq();
|
|
const body = Buffer.from(JSON.stringify({ model: "gpt-4o" }));
|
|
const r = await h.publicHookStart(req, body, "x");
|
|
assert.equal(r.requestSize, body.length);
|
|
assert.ok(typeof r.requestBody === "string");
|
|
});
|
|
|
|
test("base.hookBufferUpdate — no-arg form (per spec §3.5) derives completion data from intercepted", async () => {
|
|
const h = new TestHandler();
|
|
const req = fakeReq();
|
|
const body = Buffer.from(JSON.stringify({ model: "gpt-4o", messages: [] }));
|
|
const intercepted = await h.publicHookStart(req, body, "gpt-4o-mapped");
|
|
|
|
// Mutate the completion fields on `intercepted` to simulate a finished request.
|
|
intercepted.status = 200;
|
|
intercepted.responseHeaders = { "content-type": "application/json" };
|
|
intercepted.responseBody = JSON.stringify({ ok: true });
|
|
intercepted.responseSize = 12;
|
|
intercepted.proxyLatencyMs = 5;
|
|
intercepted.upstreamLatencyMs = 120;
|
|
|
|
// Per master-plan §3.5, hookBufferUpdate(intercepted) without opts must
|
|
// succeed and update the buffer using fields already on `intercepted`.
|
|
// The local stub treats hook as absent, so this is effectively a no-op
|
|
// but must NOT throw.
|
|
assert.doesNotThrow(() => h.publicHookUpdate(intercepted));
|
|
});
|
|
|
|
test("base.hookBufferUpdate — extended opts form still works", async () => {
|
|
const h = new TestHandler();
|
|
const req = fakeReq();
|
|
const body = Buffer.from(JSON.stringify({ messages: [] }));
|
|
const intercepted = await h.publicHookStart(req, body, "mapped");
|
|
|
|
assert.doesNotThrow(() =>
|
|
h.publicHookUpdate(intercepted, {
|
|
status: 200,
|
|
responseHeaders: {},
|
|
responseBody: null,
|
|
responseSize: 0,
|
|
proxyLatencyMs: 1,
|
|
upstreamLatencyMs: 2,
|
|
})
|
|
);
|
|
});
|
|
|
|
test("base.writeError — writes sanitized JSON error body", async () => {
|
|
const h = new TestHandler();
|
|
let status = 0;
|
|
let payload = "";
|
|
const res = {
|
|
headersSent: false,
|
|
writeHead(s: number) {
|
|
status = s;
|
|
},
|
|
end(p: string) {
|
|
payload = p;
|
|
},
|
|
} as unknown as ServerResponse;
|
|
|
|
// Calling a protected method through `any` to avoid leaking it on
|
|
// the production surface area.
|
|
await (h as unknown as { writeError: MitmHandlerBase["writeError"] }).writeError(
|
|
res,
|
|
new Error("boom"),
|
|
502
|
|
);
|
|
assert.equal(status, 502);
|
|
const obj = JSON.parse(payload);
|
|
assert.equal(obj.error.type, "mitm_error");
|
|
assert.ok(typeof obj.error.message === "string");
|
|
});
|