Skip to content

Add Drop Updates button to simulate transport failing to deliver messages #85

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
jackaperkins wants to merge 6 commits into
base: main
Choose a base branch
from
Open

Add Drop Updates button to simulate transport failing to deliver messages #85

jackaperkins wants to merge 6 commits into from

Conversation

@jackaperkins
Copy link

@jackaperkins jackaperkins commented Dec 4, 2025

image

This toggles a dropUpdates value inside of the webxdc shim for a particular instance. When new updates come in they will be 'dropped' and not passed into the application. This lets you test what happens when certain devices miss a message!

This doesn't permanently modify the set of updates, so any app the replays them starting from the beginning will see the 'dropped' updates after being restarted. Doing this would require a refactor where we keep track of each instance's update set independently and to properly enumerate them over the websocket connection, probably not worth it for now.

hpk42
hpk42 approved these changes Dec 7, 2025
View reviewed changes
Copy link
Contributor

@hpk42 hpk42 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

Simon-Laux
Simon-Laux reviewed Dec 11, 2025
View reviewed changes
Simon-Laux
Simon-Laux reviewed Dec 12, 2025
View reviewed changes
README.md Outdated
Comment on lines 101 to 104
on a specific instance. While enabled the instance will not recieve any updates
as if the transport has failed to deliver them. On
later reloads of the page the instance will load all updates as this state is
shared identically between all insances.
Copy link
Contributor

@Simon-Laux Simon-Laux Dec 12, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think it is not clear enough that this is just a quirk of the current simulator implementation.

and some typos:

Suggested change
on a specific instance. While enabled the instance will not recieve any updates
as if the transport has failed to deliver them. On
later reloads of the page the instance will load all updates as this state is
shared identically between all insances.
on a specific instance. While enabled the instance will not receive any updates
as if the transport has failed to deliver them. On
later reloads of the page the instance will load all updates as this state is
shared identically between all instances.

WofWca
WofWca reviewed Dec 13, 2025
View reviewed changes
Copy link
Member

@WofWca WofWca left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks quite simple overall, and I like the idea. It's an important thing.

sim/webxdc.ts Outdated
Comment on lines 28 to 34
const isAllowed =
event.origin.includes("localhost:") ||
(location.host.endsWith(".webcontainer.io") &&
event.origin.includes(".webcontainer.io"));
if (!isAllowed) {
return;
}
Copy link
Member

@WofWca WofWca Dec 13, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It would be nice not to copy-paste this code, especially if it's security-related

webxdc-dev/sim/webxdc.ts

Lines 136 to 147 in f2d1f43

window.addEventListener("message", (event) => {
const isAllowed =
event.origin.includes("localhost:") ||
(location.host.endsWith(".webcontainer.io") &&
event.origin.includes(".webcontainer.io"));
if (!isAllowed) {
return;
}
if (event.data === "reload") {
window.location.reload();
}
});

@hpk42
Copy link
Contributor

hpk42 commented Dec 17, 2025 via email

@jackaperkins
Copy link
Author

jackaperkins commented Jan 8, 2026

Welcome into the new year 😁 I've updated the PR.
I've improved the language in the readme slightly, but it is a complex thing to explain relative to how the backend works. Also factored the duplicated code into a function.

@WofWca
Copy link
Member

WofWca commented Jan 8, 2026

What do you have in mind here when you say "security-related"?

The code I'm talking about is about security, protecting against unauthorized access. Any website can win = window.open('http://localhost:7000') and then win.postMessage. We must check whether the message is trusted.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Simon-Laux Simon-Laux Simon-Laux left review comments

@WofWca WofWca WofWca left review comments

@hpk42 hpk42 hpk42 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@jackaperkins @hpk42 @WofWca @Simon-Laux