Skip to content

SAM-Research/denim-on-sam

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

43 Commits
.github
.github
 
 
client
client
 
 
common
common
 
 
e2e
e2e
 
 
proxy
proxy
 
 
scripts
scripts
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
Cargo.toml
Cargo.toml
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 

Repository files navigation

Denim on SAM

Rust codecov

Usage

$ denim-sam-proxy --help
Usage: denim-sam-proxy [OPTIONS]

Options:
  -d, --database-url <database_url>
          PostgreSQL connection url
  -s, --sam-address <sam_address>
          Address to run sam server on [default: 127.0.0.1:8080]
  -p, --proxy-address <proxy_address>
          Address to run proxy on [default: 127.0.0.1:8081]
  -q, --deniable-ratio <deniable_ratio>
          Deniable to regular payload ratio (q) [default: 1]
  -b, --buffer-size <buffer_size>
          How many messages can be in a buffer channel before blocking behaviour [default: 10]
  -c, --config <config>
          JSON Config path
  -h, --help
          Print help

JSON Configuration

You can configure the proxy with TLS and mTLS for communication with SAM Server and with denim clients by doing:

denim-sam-proxy --config ./config.json

where the looks like this:

{
  "databaseUrl": "postgres://admin:admin@127.0.0.1:5432/samdb", // Address to postgres db
  "samAddress": "127.0.0.1:8080", // Address to sam (optional)
  "denimProxyAddress": "127.0.0.1:8081", // Address to run DenIM Proxy on (optional)
  "deniableRatio": 1.0, // Deniable ratio (q) (optional)
  "channelBufferSize": 10, // Internal message communication, might affect performance of proxy (optional)
  "logging": "info", // enable logging, uses the same syntax as RUST_LOG (optional)

  "tls": {
    // Tls config (optional)
    "caCertPath": "./e2e/cert/rootCA.crt", // Certificate Authority certificate path
    "proxyCertPath": "./e2e/cert/proxy.crt", // Cerficate for proxy
    "proxyKeyPath": "./e2e/cert/proxy.key", // Certificate Key for proxy
    "proxyMtls": false, // set to true if denim clients need to communicate with the proxy over mTLS instead of TLS
    "proxyClient": {
      // mTLS Proxy Connection to SAM Server (optional)
      "certPath": "./e2e/cert/client.crt", // Proxys Client Cert
      "keyPath": "./e2e/cert/client.key" // Proxys Client Cert
    }
  }
}

Docker

Building the denim-sam-proxy docker image:

docker build -t denim-sam-proxy .

SAM Dependencies

to update sam dependencies just do:

cargo update -p sam-server

you might need to change sam-server to either one of the other sam projects

End-To-End tests

In order to run the end-to-end tests, you need to generate certificates.

  1. Go into scripts
  2. Generate certificates by running the following
./generate_cert.sh ../e2e/cert

About

Deniable Instant Messenger built on top of sam-instant-messenger using the DenIM protocol

Topics

messenger signal deniability end-to-end-encryption

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 1

0.1.0 Latest
May 5, 2025

Packages

 
 
 

Contributors

Languages