int main(void) {
random_init();
dcrypt_initialize("openssl", NULL, NULL);
static void (*test_functions[])(void) = {
test_cipher_test_vectors,
test_cipher_aead_test_vectors,
test_hmac_test_vectors,
test_load_v1_keys,
test_load_v1_key,
test_load_v1_public_key,
test_load_v2_key,
test_load_v2_public_key,
test_get_info_v2_key,
test_gen_and_get_info_rsa_pem,
test_get_info_rsa_private_key,
NULL
};
int ret = test_run(test_functions);
dcrypt_deinitialize();
random_deinit();
return ret;
}
void mail_crypt_plugin_init(struct module *module)
{
const char* error;
random_init();
if (!dcrypt_initialize("openssl", NULL, &error))
i_fatal("dcrypt_initialize(): %s", error);
mail_storage_hooks_add(module, &mail_crypt_mail_storage_hooks);
/* rather kludgy. we need to hook into mail reading as early as
possible, but we need to hook into mail writing as late as
possible. we could create just two real plugins, but that's a bit
annoying to configure. */
mail_storage_hooks_add_forced(&crypto_post_module,
&mail_crypt_mail_storage_hooks_post);
mail_crypt_key_register_mailbox_internal_attributes();
}
static int
fs_crypt_init(struct fs *_fs, const char *args, const
struct fs_settings *set)
{
struct crypt_fs *fs = (struct crypt_fs *)_fs;
const char *enc_algo, *set_prefix;
const char *p, *arg, *value, *error, *parent_name, *parent_args;
const char *public_key_path = "", *private_key_path = "", *password = "";
random_init();
if (!dcrypt_initialize("openssl", NULL, &error))
i_fatal("dcrypt_initialize(): %s", error);
/* [algo=<s>:][set_prefix=<n>:][public_key_path=<s>:]
[private_key_path=<s>:[password=<s>:]]<parent fs> */
set_prefix = "mail_crypt_global";
enc_algo = "aes-256-gcm-sha256";
for (;;) {
p = strchr(args, ':');
if (p == NULL) {
fs_set_error(_fs, "Missing parameters");
return -1;
}
arg = t_strdup_until(args, p);
if ((value = strchr(arg, '=')) == NULL)
break;
arg = t_strdup_until(arg, value++);
args = p+1;
if (strcmp(arg, "algo") == 0)
enc_algo = value;
else if (strcmp(arg, "set_prefix") == 0)
set_prefix = value;
else if (strcmp(arg, "public_key_path") == 0)
public_key_path = value;
else if (strcmp(arg, "private_key_path") == 0)
private_key_path = value;
else if (strcmp(arg, "password") == 0)
password = value;
else {
fs_set_error(_fs, "Invalid parameter '%s'", arg);
return -1;
}
}
parent_args = strchr(args, ':');
if (parent_args == NULL) {
parent_name = args;
parent_args = "";
} else {
parent_name = t_strdup_until(args, parent_args);
parent_args++;
}
if (fs_init(parent_name, parent_args, set, &_fs->parent, &error) < 0) {
fs_set_error(_fs, "%s: %s", parent_name, error);
return -1;
}
fs->enc_algo = i_strdup(enc_algo);
fs->set_prefix = i_strdup(set_prefix);
fs->public_key_path = i_strdup_empty(public_key_path);
fs->private_key_path = i_strdup_empty(private_key_path);
fs->password = i_strdup_empty(password);
return 0;
}
