plugins/mail-crypt/test-mail-key.c

	test-mail-key.c revision bf2d54df4f5943ec0617aadb1900bb8f40b12150
02c335c23bf5fa225a467c19f2c063fb0dc7b8c3Timo Sirainen/* Copyright (c) 2015-2016 Dovecot authors, see the included COPYING file */
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "lib.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "test-common.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "ioloop.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "lib-signals.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "master-service.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "mail-storage.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "mail-storage-service.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "mailbox-list.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "settings-parser.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "mail-user.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "safe-mkstemp.h"
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen#include "safe-mkdir.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "str.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "unlink-directory.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "randgen.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "dcrypt.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "hex-binary.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "mail-crypt-common.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "mail-crypt-key.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch#include "mail-crypt-plugin.h"
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic const char *mcp_old_user_key = "1\t716\t0\t048FD04FD3612B22D32790C592CF21CEF417EFD2EA34AE5F688FA5B51BED29E05A308B68DA78E16E90B47A11E133BD9A208A2894FD01B0BEE865CE339EA3FB17AC\td0cfaca5d335f9edc41c84bb47465184cb0e2ec3931bebfcea4dd433615e77a0";
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic const char *mcp_old_user_key_id = "d0cfaca5d335f9edc41c84bb47465184cb0e2ec3931bebfcea4dd433615e77a0";
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic const char *mcp_old_box_key = "1\t716\t1\t0567e6bf9579813ae967314423b0fceb14bda24749303923de9a9bb9370e0026f995901a57e63113eeb2baf0c940e978d00686cbb52bd5014bc318563375876255\t0300E46DA2125427BE968EB3B649910CDC4C405E5FFDE18D433A97CABFEE28CEEFAE9EE356C792004FFB80981D67E741B8CC036A34235A8D2E1F98D1658CFC963D07EB\td0cfaca5d335f9edc41c84bb47465184cb0e2ec3931bebfcea4dd433615e77a0\t7c9a1039ea2e4fed73e81dd3ffc3fa22ea4a28352939adde7bf8ea858b00fa4f";
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic const char *mcp_old_box_key_id = "7c9a1039ea2e4fed73e81dd3ffc3fa22ea4a28352939adde7bf8ea858b00fa4f";
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic struct mail_storage_service_ctx *mail_storage_service = NULL;
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainenstatic struct mail_user *test_mail_user = NULL;
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainenstatic struct mail_storage_service_user *test_service_user = NULL;
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainenstatic struct ioloop *test_ioloop = NULL;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic const char *mail_home;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic const char *test_user_key_id;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic const char *test_box_key_id;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic pool_t test_pool;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic struct mail_crypt_user mail_crypt_user;
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstruct mail_crypt_user *mail_crypt_get_mail_crypt_user(struct mail_user *user ATTR_UNUSED)
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen{
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    return &mail_crypt_user;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch}
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschint test_mail_attribute_get(struct mailbox *box, bool user_key, bool shared,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                const char *pubid, const char **value_r, const char **error_r)
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch{
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    const char *attr_name;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    enum mail_attribute_type attr_type;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    if (strcmp(pubid, ACTIVE_KEY_NAME) == 0) {
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        attr_name = user_key ? USER_CRYPT_PREFIX ACTIVE_KEY_NAME :
d295cff1b640240cd198b9c8e963c9116ab95510Timo Sirainen                    BOX_CRYPT_PREFIX ACTIVE_KEY_NAME;
d295cff1b640240cd198b9c8e963c9116ab95510Timo Sirainen        attr_type = MAIL_ATTRIBUTE_TYPE_SHARED;
935a2434cd674e9cd17eabb296f84d1d891a23aeTimo Sirainen    } else {
935a2434cd674e9cd17eabb296f84d1d891a23aeTimo Sirainen        attr_name = t_strdup_printf("%s%s%s",
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                        user_key ? USER_CRYPT_PREFIX :
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                          BOX_CRYPT_PREFIX,
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainen                        shared ? PUBKEYS_PREFIX :
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainen                          PRIVKEYS_PREFIX,
9a5980c7bb836f69a63082f4699c30596ea4ee74Timo Sirainen                        pubid);
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainen        attr_type = shared ? MAIL_ATTRIBUTE_TYPE_SHARED : MAIL_ATTRIBUTE_TYPE_PRIVATE;
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainen    }
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainen    struct mail_attribute_value value;
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainen
9a5980c7bb836f69a63082f4699c30596ea4ee74Timo Sirainen    int ret;
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainen
a10ed8c47534b4c6b6bf2711ccfe577e720a47b4Timo Sirainen    if ((ret = mailbox_attribute_get(box, attr_type,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                     attr_name, &value)) <= 0) {
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        if (ret < 0) {
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch            *error_r = t_strdup_printf("mailbox_attribute_get(%s, %s) failed: %s",
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                           mailbox_get_vname(box),
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                           attr_name,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                           mailbox_get_last_error(box, NULL));
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        }
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    } else {
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        *value_r = t_strdup(value.value);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    }
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    return ret;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch}
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic int
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschtest_mail_attribute_set(struct mailbox_transaction_context *t,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch            bool user_key, bool shared, const char *pubid,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch            const char *value, const char **error_r)
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch{
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    const char *attr_name;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    enum mail_attribute_type attr_type;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    if (strcmp(pubid, ACTIVE_KEY_NAME) == 0) {
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        attr_name = user_key ? USER_CRYPT_PREFIX ACTIVE_KEY_NAME :
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                    BOX_CRYPT_PREFIX ACTIVE_KEY_NAME;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        attr_type = MAIL_ATTRIBUTE_TYPE_SHARED;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    } else {
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        attr_name = t_strdup_printf("%s%s%s",
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                        user_key ? USER_CRYPT_PREFIX :
5d3e31cae626840561c5313e97eef0272be26ae1Timo Sirainen                          BOX_CRYPT_PREFIX,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                        shared ? PUBKEYS_PREFIX :
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                          PRIVKEYS_PREFIX,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                        pubid);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        attr_type = shared ? MAIL_ATTRIBUTE_TYPE_SHARED : MAIL_ATTRIBUTE_TYPE_PRIVATE;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    }
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    struct mail_attribute_value attr_value;
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    int ret;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    memset(&attr_value, 0, sizeof(attr_value));
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    attr_value.value = value;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    if ((ret = mailbox_attribute_set(t, attr_type,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                     attr_name, &attr_value)) <= 0) {
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        if (ret < 0) {
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch            *error_r = t_strdup_printf("mailbox_attribute_set(%s, %s) failed: %s",
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                           mailbox_get_vname(mailbox_transaction_get_mailbox(t)),
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen                           attr_name,
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen                           mailbox_get_last_error(mailbox_transaction_get_mailbox(t), NULL));
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        }
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen    }
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    return ret;
1a3254b83ba00315cfc47d3c6e99e837914594cfTimo Sirainen}
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainenstatic
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainenint init_test_mail_user(void)
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen{
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen    struct setting_parser_context *set_parser;
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen    const char *error;
d730192e34fbedbc590a5abc7351e5af5e120c5fTimo Sirainen    char path_buf[4096];
d730192e34fbedbc590a5abc7351e5af5e120c5fTimo Sirainen
d730192e34fbedbc590a5abc7351e5af5e120c5fTimo Sirainen    if (getcwd(path_buf, sizeof(path_buf)) == NULL)
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen        i_fatal("getcwd() failed: %m");
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen    mail_home = p_strdup_printf(test_pool, "%s/mcp_user/", path_buf);
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen    struct mail_storage_service_input input = {
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen        .userdb_fields = (const char*const[]){
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen            t_strdup_printf("mail=maildir:~/"),
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen            t_strdup_printf("home=%s", mail_home),
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen            t_strdup_printf("mail_crypt_curve=prime256v1"),
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch            NULL
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen        },
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen        .username = "mcp_test",
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen        .no_userdb_lookup = TRUE,
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen        .debug = TRUE,
76f0cc074ea79151e968078906224d8b6a5806fdTimo Sirainen    };
1a3254b83ba00315cfc47d3c6e99e837914594cfTimo Sirainen
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    mail_storage_service = mail_storage_service_init(master_service, NULL,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        MAIL_STORAGE_SERVICE_FLAG_NO_LOG_INIT |
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        MAIL_STORAGE_SERVICE_FLAG_NO_PLUGINS);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    if (mail_storage_service_lookup(mail_storage_service, &input,
3ab672903a7ed98263b89180261079870c964831Timo Sirainen                     &test_service_user, &error) < 0)
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    {
3ab672903a7ed98263b89180261079870c964831Timo Sirainen        i_error("Cannot lookup test user: %s", error);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        return -1;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    }
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    set_parser =
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        mail_storage_service_user_get_settings_parser(test_service_user);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    if (settings_parse_line(set_parser,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        t_strdup_printf("mail_attribute_dict=file:%s/dovecot-attributes",
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                mail_home)) < 0) {
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        i_error("Cannot set mail_attribute_dict: %s",
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch            settings_parser_get_error(set_parser));
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        return -1;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    }
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    if (mail_storage_service_next(mail_storage_service, test_service_user,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                      &test_mail_user, &error) < 0)
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    {
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen         i_error("Cannot lookup test user: %s", error);
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen         return -1;
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    }
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    return 0;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch}
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
3ab672903a7ed98263b89180261079870c964831Timo Sirainenstatic
3ab672903a7ed98263b89180261079870c964831Timo Sirainenvoid deinit_test_mail_user()
3ab672903a7ed98263b89180261079870c964831Timo Sirainen{
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    const char *error;
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    mail_user_unref(&test_mail_user);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    mail_storage_service_user_free(&test_service_user);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    mail_storage_service_deinit(&mail_storage_service);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    if (unlink_directory(mail_home, UNLINK_DIRECTORY_FLAG_RMDIR,
3ab672903a7ed98263b89180261079870c964831Timo Sirainen                 &error) < 0)
3ab672903a7ed98263b89180261079870c964831Timo Sirainen        i_error("unlink_directory(%s) failed: %s", mail_home, error);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen}
3ab672903a7ed98263b89180261079870c964831Timo Sirainen
3ab672903a7ed98263b89180261079870c964831Timo Sirainenstatic void test_generate_user_key(void)
3ab672903a7ed98263b89180261079870c964831Timo Sirainen{
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    struct dcrypt_keypair pair;
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    const char *pubid;
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    const char *error = NULL;
3ab672903a7ed98263b89180261079870c964831Timo Sirainen
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    test_begin("generate user key");
c67f6d09c1aa9d8bfdce4167da8ac009fd2917ceTimo Sirainen
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    /* try to generate a keypair for user */
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    if (mail_crypt_user_generate_keypair(test_mail_user, &pair,
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen                         &pubid, &error) < 0) {
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen        i_error("generate_keypair failed: %s", error);
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen        test_exit(1);
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    }
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    test_assert(pubid != NULL);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    test_user_key_id = p_strdup(test_pool, pubid);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen    dcrypt_keypair_unref(&pair);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    error = NULL;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen    /* keys ought to be in cache or somewhere...*/
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen    if (mail_crypt_user_get_private_key(test_mail_user, NULL, &pair.priv, &error) <= 0)
2c42748505ef4aed83ff59b34e50ed5606900c86Timo Sirainen    {
2c42748505ef4aed83ff59b34e50ed5606900c86Timo Sirainen        i_error("Cannot get user private key: %s", error);
2c42748505ef4aed83ff59b34e50ed5606900c86Timo Sirainen    }
2c42748505ef4aed83ff59b34e50ed5606900c86Timo Sirainen
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen    test_assert(pair.priv != NULL);
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen    if (pair.priv != NULL)
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen        dcrypt_key_unref_private(&pair.priv);
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    test_end();
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch}
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic void test_generate_inbox_key(void)
5afe997e79978b7e989aa3b0bfdf4a813ecdc6f6Timo Sirainen{
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    struct dcrypt_public_key *user_key;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    struct dcrypt_keypair pair;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    const char *error = NULL, *pubid = NULL;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    test_begin("generate inbox key");
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    if (mail_crypt_user_get_public_key(test_mail_user, &user_key,
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                        &error) <= 0) {
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen        i_error("Cannot get user private key: %s", error);
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    }
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    struct mail_namespace *ns =
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen        mail_namespace_find_inbox(test_mail_user->namespaces);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    struct mailbox *box = mailbox_alloc(ns->list, "INBOX",
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen                        MAILBOX_FLAG_READONLY);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    if (mailbox_open(box) < 0)
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen        i_fatal("mailbox_open(INBOX) failed: %s",
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen            mailbox_get_last_error(box, NULL));
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    if (mail_crypt_box_generate_keypair(box, &pair, user_key, &pubid,
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen                        &error) < 0) {
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen        i_error("generate_keypair failed: %s", error);
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen        test_exit(1);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    }
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    i_assert(pubid != NULL);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    dcrypt_keypair_unref(&pair);
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    dcrypt_key_unref_public(&user_key);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    mailbox_free(&box);
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen    test_box_key_id = p_strdup(test_pool, pubid);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    test_end();
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainen}
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
4afd5082f38342fd688acb5796912329f57dd02cTimo Sirainenstatic void test_cache_reset(void)
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch{
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    struct dcrypt_keypair pair;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    const char *error = NULL;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    test_begin("cache reset");
3ab672903a7ed98263b89180261079870c964831Timo Sirainen
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    struct mail_crypt_user *muser = mail_crypt_get_mail_crypt_user(test_mail_user);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    mail_crypt_key_cache_destroy(&muser->key_cache);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    test_assert(mail_crypt_user_get_private_key(test_mail_user, NULL,
3ab672903a7ed98263b89180261079870c964831Timo Sirainen                                &pair.priv, &error) > 0);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    if (error != NULL)
3ab672903a7ed98263b89180261079870c964831Timo Sirainen        i_error("mail_crypt_user_get_private_key() failed: %s", error);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    error = NULL;
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    test_assert(mail_crypt_user_get_public_key(test_mail_user,
3ab672903a7ed98263b89180261079870c964831Timo Sirainen                            &pair.pub, &error) > 0);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    if (error != NULL)
3ab672903a7ed98263b89180261079870c964831Timo Sirainen        i_error("mail_crypt_user_get_public_key() failed: %s", error);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    dcrypt_keypair_unref(&pair);
3ab672903a7ed98263b89180261079870c964831Timo Sirainen
3ab672903a7ed98263b89180261079870c964831Timo Sirainen    test_end();
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch}
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Boschstatic void test_verify_keys(void)
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch{
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    const char *value, *error = NULL;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    const char *enc_id;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    enum dcrypt_key_encryption_type enc_type;
3ab672903a7ed98263b89180261079870c964831Timo Sirainen
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    test_begin("verify keys");
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    struct dcrypt_private_key *privkey = NULL, *user_key = NULL;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    struct dcrypt_public_key *pubkey = NULL;
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    struct mail_namespace *ns =
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        mail_namespace_find_inbox(test_mail_user->namespaces);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    struct mailbox *box = mailbox_alloc(ns->list, "INBOX",
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch                        MAILBOX_FLAG_READONLY);
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    if (mailbox_open(box) < 0)
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch        i_fatal("mailbox_open(INBOX) failed: %s",
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch            mailbox_get_last_error(box, NULL));
0fe2992e4d09f3ae4cceea88c9871c832d67b461Stephan Bosch    /* verify links */

    /* user's public key */
    test_assert(test_mail_attribute_get(box, TRUE, TRUE, ACTIVE_KEY_NAME,
           &value, &error) > 0);
    test_assert(strcmp(value, test_user_key_id) == 0);

    test_assert(test_mail_attribute_get(box, TRUE, TRUE, value, &value,
            &error) > 0);

    /* load key */
    test_assert(dcrypt_key_load_public(&pubkey, value, &error) == TRUE);

    /* see if it matches */
    test_assert(mail_crypt_public_key_id_match(pubkey, test_user_key_id,
                           &error) > 0);
    dcrypt_key_unref_public(&pubkey);

    /* user's private key */
    test_assert(test_mail_attribute_get(box, TRUE, FALSE, ACTIVE_KEY_NAME,
           &value, &error) > 0);
    test_assert(strcmp(value, test_user_key_id) == 0);

    test_assert(test_mail_attribute_get(box, TRUE, FALSE, value, &value,
            &error) > 0);

    /* load key */
    test_assert(dcrypt_key_load_private(&user_key, value, NULL, NULL,
                        &error) == TRUE);

    /* see if it matches */
    test_assert(mail_crypt_private_key_id_match(user_key, test_user_key_id,
                            &error) > 0);


    /* inbox's public key */
    test_assert(test_mail_attribute_get(box, FALSE, TRUE, ACTIVE_KEY_NAME,
           &value, &error) > 0);
    test_assert(strcmp(value, test_box_key_id) == 0);

    test_assert(test_mail_attribute_get(box, FALSE, TRUE, value, &value,
            &error) > 0);

    /* load key */
    test_assert(dcrypt_key_load_public(&pubkey, value, &error) == TRUE);

    /* see if it matches */
    test_assert(mail_crypt_public_key_id_match(pubkey, test_box_key_id,
                           &error) > 0);
    dcrypt_key_unref_public(&pubkey);

    /* user's private key */
        test_assert(test_mail_attribute_get(box, FALSE, FALSE, ACTIVE_KEY_NAME,
           &value, &error) > 0);
    test_assert(strcmp(value, test_box_key_id) == 0);

    test_assert(test_mail_attribute_get(box, FALSE, FALSE, value, &value,
            &error) > 0);

    test_assert(dcrypt_key_string_get_info(value, NULL, NULL, NULL,
                        &enc_type, &enc_id, NULL,
                        &error) == TRUE);

    test_assert(enc_type == DCRYPT_KEY_ENCRYPTION_TYPE_KEY);
    test_assert(strcmp(enc_id, test_user_key_id) == 0);

    /* load key */
    test_assert(dcrypt_key_load_private(&privkey, value, NULL, user_key,
                        &error) == TRUE);

    /* see if it matches */
    test_assert(mail_crypt_private_key_id_match(privkey, test_box_key_id,
                            &error) > 0);
    dcrypt_key_unref_private(&privkey);
    dcrypt_key_unref_private(&user_key);

    mailbox_free(&box);

    test_end();
}

static void test_old_key(void)
{
    test_begin("old keys");

    const char *error = NULL;
    struct dcrypt_private_key *privkey = NULL;

    struct mail_namespace *ns =
        mail_namespace_find_inbox(test_mail_user->namespaces);
    struct mailbox *box = mailbox_alloc(ns->list, "INBOX",
                        MAILBOX_FLAG_READONLY);
    if (mailbox_open(box) < 0)
        i_fatal("mailbox_open(INBOX) failed: %s",
            mailbox_get_last_error(box, NULL));

    struct mailbox_transaction_context *t = mailbox_transaction_begin(box, 0);

    test_mail_attribute_set(t, TRUE, FALSE, mcp_old_user_key_id,
                mcp_old_user_key, &error);
    test_mail_attribute_set(t, FALSE, FALSE, mcp_old_box_key_id,
                mcp_old_box_key, &error);

    (void)mailbox_transaction_commit(&t);

    error = NULL;

    /* try to load old key */
    test_assert(mail_crypt_get_private_key(box, mcp_old_box_key_id, FALSE, FALSE,
                        &privkey, &error) > 0);

    if (error != NULL)
        i_error("mail_crypt_get_private_key(%s) failed: %s",
            mcp_old_box_key_id,
            error);

    test_assert(privkey != NULL);

    if (privkey != NULL) {
        buffer_t *key_id = buffer_create_dynamic(pool_datastack_create(), 32);
        dcrypt_key_id_private_old(privkey, key_id, &error);
        test_assert(strcmp(binary_to_hex(key_id->data, key_id->used), mcp_old_box_key_id) == 0);
        dcrypt_key_unref_private(&privkey);
    }

    mailbox_free(&box);

    test_end();
}

static void test_setup(void)
{
    struct dcrypt_settings set = {
        .module_dir = top_builddir "/src/lib-dcrypt/.libs"
    };
    test_pool = pool_alloconly_create(MEMPOOL_GROWING "mcp test pool", 128);
    test_ioloop = io_loop_create();
    dcrypt_initialize(NULL, &set, NULL);
    /* allocate a user */
    if (init_test_mail_user() < 0) {
        test_exit(1);
    }
    mail_crypt_key_register_mailbox_internal_attributes();
}

static void test_teardown(void)
{
    deinit_test_mail_user();
    struct mail_crypt_user *muser = mail_crypt_get_mail_crypt_user(test_mail_user);
    mail_crypt_key_cache_destroy(&muser->key_cache);
    dcrypt_deinitialize();
    io_loop_destroy(&test_ioloop);
    pool_unref(&test_pool);
}

int main(int argc, char **argv)
{
    void (*tests[])(void)  = {
        test_setup,
        test_generate_user_key,
        test_generate_inbox_key,
        test_cache_reset,
        test_verify_keys,
        test_old_key,
        test_teardown,
        NULL
    };


    master_service = master_service_init("test-mail-key",
                         MASTER_SERVICE_FLAG_STANDALONE |
                         MASTER_SERVICE_FLAG_NO_CONFIG_SETTINGS |
                         MASTER_SERVICE_FLAG_NO_SSL_INIT |
                         MASTER_SERVICE_FLAG_NO_INIT_DATASTACK_FRAME,
                         &argc, &argv, "");
    random_init();
    int ret = test_run(tests);
    master_service_deinit(&master_service);
    return ret;
}