Stowage/tutanota
2
0
Fork 0
mirror of https://github.com/tutao/tutanota.git synced 2025-12-08 06:09:50 +00:00
Code Issues Projects Releases Packages Wiki Activity
tutanota/test/tests/api/worker/facades/MailFacadeTest.ts

724 lines
26 KiB
TypeScript
Raw Normal View History

Switch to @tutao/otest from ospec
2023-06-29 18:26:45 +02:00
import o from "@tutao/otest"
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
import { MailFacade, phishingMarkerValue, validateMimeTypesForAttachments } from "../../../../../src/common/api/worker/facades/lazy/MailFacade.js"
Show pq padlock symbol for sent mail, tutadb 1788 (#6699) * Show pq padlock symbol for sent mail, tutadb 1788 To show the pq padlock symbol for the sender we introduced another enum value for the encryptionAuthStatus on Mail instances which is only set for the sent mail. It is only set in case the mail is confidential and all recipients support the TutaCrypt protocol. * clean up outdated invitations from offlince cache see the fix for tutadb#1800 --------- Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: vaf <vaf@tutao.de>
2024-05-06 11:08:05 +02:00
import {
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
FileTypeRef,
Show pq padlock symbol for sent mail, tutadb 1788 (#6699) * Show pq padlock symbol for sent mail, tutadb 1788 To show the pq padlock symbol for the sender we introduced another enum value for the encryptionAuthStatus on Mail instances which is only set for the sent mail. It is only set in case the mail is confidential and all recipients support the TutaCrypt protocol. * clean up outdated invitations from offlince cache see the fix for tutadb#1800 --------- Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: vaf <vaf@tutao.de>
2024-05-06 11:08:05 +02:00
InternalRecipientKeyDataTypeRef,
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
Mail,
Show pq padlock symbol for sent mail, tutadb 1788 (#6699) * Show pq padlock symbol for sent mail, tutadb 1788 To show the pq padlock symbol for the sender we introduced another enum value for the encryptionAuthStatus on Mail instances which is only set for the sent mail. It is only set in case the mail is confidential and all recipients support the TutaCrypt protocol. * clean up outdated invitations from offlince cache see the fix for tutadb#1800 --------- Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: vaf <vaf@tutao.de>
2024-05-06 11:08:05 +02:00
MailAddressTypeRef,
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
MailDetails,
MailDetailsBlobTypeRef,
MailDetailsTypeRef,
Show pq padlock symbol for sent mail, tutadb 1788 (#6699) * Show pq padlock symbol for sent mail, tutadb 1788 To show the pq padlock symbol for the sender we introduced another enum value for the encryptionAuthStatus on Mail instances which is only set for the sent mail. It is only set in case the mail is confidential and all recipients support the TutaCrypt protocol. * clean up outdated invitations from offlince cache see the fix for tutadb#1800 --------- Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: vaf <vaf@tutao.de>
2024-05-06 11:08:05 +02:00
MailTypeRef,
ReportedMailFieldMarkerTypeRef,
SecureExternalRecipientKeyDataTypeRef,
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
SendDraftData,
Show pq padlock symbol for sent mail, tutadb 1788 (#6699) * Show pq padlock symbol for sent mail, tutadb 1788 To show the pq padlock symbol for the sender we introduced another enum value for the encryptionAuthStatus on Mail instances which is only set for the sent mail. It is only set in case the mail is confidential and all recipients support the TutaCrypt protocol. * clean up outdated invitations from offlince cache see the fix for tutadb#1800 --------- Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: vaf <vaf@tutao.de>
2024-05-06 11:08:05 +02:00
SendDraftDataTypeRef,
SymEncInternalRecipientKeyDataTypeRef,
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
} from "../../../../../src/common/api/entities/tutanota/TypeRefs.js"
Use UnreadMailStateService for marking mails as read/unread This commit moves the service call to MailFacade and adds tests, too. Closes #8507
2025-02-10 15:59:28 +01:00
import {
CryptoProtocolVersion,
MailAuthenticationStatus,
MAX_NBR_MOVE_DELETE_MAIL_SERVICE,
ReportedMailFieldType,
} from "../../../../../src/common/api/common/TutanotaConstants.js"
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
import { matchers, object, when } from "testdouble"
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
import { CryptoFacade } from "../../../../../src/common/api/worker/crypto/CryptoFacade.js"
import { IServiceExecutor } from "../../../../../src/common/api/common/ServiceRequest.js"
import { EntityClient } from "../../../../../src/common/api/common/EntityClient.js"
import { BlobFacade } from "../../../../../src/common/api/worker/facades/lazy/BlobFacade.js"
import { UserFacade } from "../../../../../src/common/api/worker/facades/UserFacade"
import { NativeFileApp } from "../../../../../src/common/native/common/FileApp.js"
import { LoginFacade } from "../../../../../src/common/api/worker/facades/LoginFacade.js"
import { DataFile } from "../../../../../src/common/api/common/DataFile.js"
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
import { downcast, KeyVersion, lazyNumberRange } from "@tutao/tutanota-utils"
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
import { ProgrammingError } from "../../../../../src/common/api/common/error/ProgrammingError.js"
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
import { createTestEntity } from "../../../TestUtils.js"
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
import { KeyLoaderFacade } from "../../../../../src/common/api/worker/facades/KeyLoaderFacade.js"
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
import { PublicEncryptionKeyProvider } from "../../../../../src/common/api/worker/facades/PublicEncryptionKeyProvider.js"
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
import { assertThrows, verify } from "@tutao/tutanota-test-utils"
Use UnreadMailStateService for marking mails as read/unread This commit moves the service call to MailFacade and adds tests, too. Closes #8507
2025-02-10 15:59:28 +01:00
import { UnreadMailStateService } from "../../../../../src/common/api/entities/tutanota/Services"
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
import { BucketKeyTypeRef, InstanceSessionKey, InstanceSessionKeyTypeRef } from "../../../../../src/common/api/entities/sys/TypeRefs"
import { OwnerEncSessionKeyProvider } from "../../../../../src/common/api/worker/rest/EntityRestClient"
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
import { elementIdPart, getElementId } from "../../../../../src/common/api/common/utils/EntityUtils"
import { VersionedEncryptedKey } from "../../../../../src/common/api/worker/crypto/CryptoWrapper"
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
import { Recipient } from "../../../../../src/common/api/common/recipients/Recipient"
import { AesKey } from "@tutao/tutanota-crypto"
import { RecipientsNotFoundError } from "../../../../../src/common/api/common/error/RecipientsNotFoundError"
import { KeyVerificationMismatchError } from "../../../../../src/common/api/common/error/KeyVerificationMismatchError"
[antispam] Add client-side local spam filtering Implement a local machine learning model for client-side spam filtering. The local model is implemented using tensorflow "LayersModel" to train separate models in all available mailboxes, resulting in one model per ownerGroup (i.e. mailbox). Initially, the training data is aggregated from the last 30 days of received mails, and the data is stored in a separate offline database table named spam_classification_training_data. The trained model is stored in the table spam_classification_model. The initial training starts after indexing, with periodic training happening every 30 minutes and on each subsequent login. The model will predict on incoming mails once we have received the entity event for said mail, moving it to either inbox or spam folder. When users move mails, we update the training data labels accordingly, by adjusting the isSpam classification and isSpamConfidence values in the offline database. The MoveMailService now contains a moveReason, which indicates that the mail has been moved by our spam filter. Client-side spam filtering can be activated using the SpamClientClassification feature flag, and is for now only available on the desktop client. Co-authored-by: sug <sug@tutao.de> Co-authored-by: kib <104761667+kibibytium@users.noreply.github.com> Co-authored-by: abp <abp@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: jhm <17314077+jomapp@users.noreply.github.com> Co-authored-by: frm <frm@tutao.de> Co-authored-by: das <das@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: amm <amm@tutao.de>
2025-10-14 12:32:17 +02:00
import { SpamClassifier } from "../../../../../src/mail-app/workerUtils/spamClassification/SpamClassifier"
import { CacheStorage } from "../../../../../src/common/api/worker/rest/DefaultEntityRestCache"
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
o.spec("MailFacade test", function () {
let facade: MailFacade
Extract UserFacade from LoginFacade, #3888 LoginFacade had multiple responsibilities and thus was causing a lot of circular dependencies. We extracted all the user state into its own class which is then used from most places. LoginFacade now has only login-related functions. We kept entityEventsReceived() in LoginFacade to not introduce circular dependency between UserFacade and EntityClient. Co-authored-by: tih<tih@tutao.de>
2022-04-12 14:23:38 +02:00
let userFacade: UserFacade
Use generated service interfaces
2022-03-09 17:43:29 +01:00
let cryptoFacade: CryptoFacade
let serviceExecutor: IServiceExecutor
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
let entityClient: EntityClient
blob API and mail attachments as blobs
2022-03-16 10:14:53 +01:00
let blobFacade: BlobFacade
[ios] use uploadNative for blob attachments Problem: * the mailModel would decide which upload mthod to use according to the attachment type (DataFile -> normal, FileReference -> native) * getLogs returns DataFiles * blob access tokens reference https:// blobstore URLs * these shouldn't be used by the webview (only asset: and apis: URLs) Fix (has at least these possibilities): * rewrite blobstore URLs to apis: protocol before giving them to mail model. continue using the normal upload, the URL will be rewritten to https: on the native side again * write the data file to disk and upload the blob with the normal native method, which is allowed to use https: URLS. * add a method to blobFacade that allows natively uploading byte arrays * somehow get a FileRef from getLogs this commit uses the second method. it mirrors the way other attachments are uploaded in the app and doesn't complicate the IPC with additional params or methods. fix #4361
2022-08-09 15:04:15 +02:00
let fileApp: NativeFileApp
Support Argon2id Allow deriving keys with it if the server requests it, but do not use it by default to create new keys. tutadb#1559 Co-authored-by: @vitoreiji, @paw-hub, @charlag
2023-07-17 11:42:02 +02:00
let loginFacade: LoginFacade
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
let keyLoaderFacade: KeyLoaderFacade
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
let publicEncryptionKeyProvider: PublicEncryptionKeyProvider
[antispam] Add client-side local spam filtering Implement a local machine learning model for client-side spam filtering. The local model is implemented using tensorflow "LayersModel" to train separate models in all available mailboxes, resulting in one model per ownerGroup (i.e. mailbox). Initially, the training data is aggregated from the last 30 days of received mails, and the data is stored in a separate offline database table named spam_classification_training_data. The trained model is stored in the table spam_classification_model. The initial training starts after indexing, with periodic training happening every 30 minutes and on each subsequent login. The model will predict on incoming mails once we have received the entity event for said mail, moving it to either inbox or spam folder. When users move mails, we update the training data labels accordingly, by adjusting the isSpam classification and isSpamConfidence values in the offline database. The MoveMailService now contains a moveReason, which indicates that the mail has been moved by our spam filter. Client-side spam filtering can be activated using the SpamClientClassification feature flag, and is for now only available on the desktop client. Co-authored-by: sug <sug@tutao.de> Co-authored-by: kib <104761667+kibibytium@users.noreply.github.com> Co-authored-by: abp <abp@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: jhm <17314077+jomapp@users.noreply.github.com> Co-authored-by: frm <frm@tutao.de> Co-authored-by: das <das@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: amm <amm@tutao.de>
2025-10-14 12:32:17 +02:00
let cacheStorage: CacheStorage
let spamClassifier: SpamClassifier
Use generated service interfaces
2022-03-09 17:43:29 +01:00
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
o.beforeEach(function () {
Extract UserFacade from LoginFacade, #3888 LoginFacade had multiple responsibilities and thus was causing a lot of circular dependencies. We extracted all the user state into its own class which is then used from most places. LoginFacade now has only login-related functions. We kept entityEventsReceived() in LoginFacade to not introduce circular dependency between UserFacade and EntityClient. Co-authored-by: tih<tih@tutao.de>
2022-04-12 14:23:38 +02:00
userFacade = object()
blob API and mail attachments as blobs
2022-03-16 10:14:53 +01:00
blobFacade = object()
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
entityClient = object()
Use generated service interfaces
2022-03-09 17:43:29 +01:00
cryptoFacade = object()
serviceExecutor = object()
[ios] use uploadNative for blob attachments Problem: * the mailModel would decide which upload mthod to use according to the attachment type (DataFile -> normal, FileReference -> native) * getLogs returns DataFiles * blob access tokens reference https:// blobstore URLs * these shouldn't be used by the webview (only asset: and apis: URLs) Fix (has at least these possibilities): * rewrite blobstore URLs to apis: protocol before giving them to mail model. continue using the normal upload, the URL will be rewritten to https: on the native side again * write the data file to disk and upload the blob with the normal native method, which is allowed to use https: URLS. * add a method to blobFacade that allows natively uploading byte arrays * somehow get a FileRef from getLogs this commit uses the second method. it mirrors the way other attachments are uploaded in the app and doesn't complicate the IPC with additional params or methods. fix #4361
2022-08-09 15:04:15 +02:00
fileApp = object()
Support Argon2id Allow deriving keys with it if the server requests it, but do not use it by default to create new keys. tutadb#1559 Co-authored-by: @vitoreiji, @paw-hub, @charlag
2023-07-17 11:42:02 +02:00
loginFacade = object()
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
keyLoaderFacade = object()
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider = object()
[antispam] Add client-side local spam filtering Implement a local machine learning model for client-side spam filtering. The local model is implemented using tensorflow "LayersModel" to train separate models in all available mailboxes, resulting in one model per ownerGroup (i.e. mailbox). Initially, the training data is aggregated from the last 30 days of received mails, and the data is stored in a separate offline database table named spam_classification_training_data. The trained model is stored in the table spam_classification_model. The initial training starts after indexing, with periodic training happening every 30 minutes and on each subsequent login. The model will predict on incoming mails once we have received the entity event for said mail, moving it to either inbox or spam folder. When users move mails, we update the training data labels accordingly, by adjusting the isSpam classification and isSpamConfidence values in the offline database. The MoveMailService now contains a moveReason, which indicates that the mail has been moved by our spam filter. Client-side spam filtering can be activated using the SpamClientClassification feature flag, and is for now only available on the desktop client. Co-authored-by: sug <sug@tutao.de> Co-authored-by: kib <104761667+kibibytium@users.noreply.github.com> Co-authored-by: abp <abp@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: jhm <17314077+jomapp@users.noreply.github.com> Co-authored-by: frm <frm@tutao.de> Co-authored-by: das <das@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: amm <amm@tutao.de>
2025-10-14 12:32:17 +02:00
spamClassifier = object()
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
facade = new MailFacade(
userFacade,
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
entityClient,
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
cryptoFacade,
serviceExecutor,
blobFacade,
fileApp,
loginFacade,
keyLoaderFacade,
publicEncryptionKeyProvider,
[antispam] Add client-side local spam filtering Implement a local machine learning model for client-side spam filtering. The local model is implemented using tensorflow "LayersModel" to train separate models in all available mailboxes, resulting in one model per ownerGroup (i.e. mailbox). Initially, the training data is aggregated from the last 30 days of received mails, and the data is stored in a separate offline database table named spam_classification_training_data. The trained model is stored in the table spam_classification_model. The initial training starts after indexing, with periodic training happening every 30 minutes and on each subsequent login. The model will predict on incoming mails once we have received the entity event for said mail, moving it to either inbox or spam folder. When users move mails, we update the training data labels accordingly, by adjusting the isSpam classification and isSpamConfidence values in the offline database. The MoveMailService now contains a moveReason, which indicates that the mail has been moved by our spam filter. Client-side spam filtering can be activated using the SpamClientClassification feature flag, and is for now only available on the desktop client. Co-authored-by: sug <sug@tutao.de> Co-authored-by: kib <104761667+kibibytium@users.noreply.github.com> Co-authored-by: abp <abp@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: jhm <17314077+jomapp@users.noreply.github.com> Co-authored-by: frm <frm@tutao.de> Co-authored-by: das <das@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: amm <amm@tutao.de>
2025-10-14 12:32:17 +02:00
spamClassifier,
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o.spec("checkMailForPhishing", function () {
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
let mailDetails: MailDetails
let mail: Mail
o.beforeEach(function () {
const mailDetailsListId = "mailDetailsListId"
const mailDetailsElementId = "mailDetailsElementId"
mailDetails = createTestEntity(MailDetailsTypeRef, { authStatus: MailAuthenticationStatus.AUTHENTICATED })
mail = createTestEntity(MailTypeRef, {
mailDetails: [mailDetailsListId, mailDetailsElementId],
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
subject: "Test",
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
sender: createTestEntity(MailAddressTypeRef, {
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
name: "a",
address: "test@example.com",
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
}),
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
when(entityClient.loadMultiple(MailDetailsBlobTypeRef, mailDetailsListId, [mailDetailsElementId], matchers.anything())).thenResolve([
createTestEntity(MailDetailsBlobTypeRef, { details: mailDetails }),
])
})
o("not phishing if no markers", async function () {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(false)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("not phishing if no matching markers", async function () {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test 2"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_DOMAIN, "example2.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(false)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("not phishing if only from domain matches", async function () {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test 2"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_DOMAIN, "example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(false)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("not phishing if only subject matches", async function () {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_DOMAIN, "example2.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(false)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is phishing if subject and sender domain matches", async function () {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_DOMAIN, "example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(true)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is phishing if subject with whitespaces and sender domain matches", async function () {
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
mail.subject = "\tTest spaces \n"
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Testspaces"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_DOMAIN, "example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(true)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is not phishing if subject and sender domain matches but not authenticated", async function () {
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
mailDetails.authStatus = MailAuthenticationStatus.SOFT_FAIL
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_DOMAIN, "example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(false)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is phishing if subject and sender address matches", async function () {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_ADDRESS, "test@example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(true)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is not phishing if subject and sender address matches but not authenticated", async function () {
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
mailDetails.authStatus = MailAuthenticationStatus.SOFT_FAIL
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_ADDRESS, "test@example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(false)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is phishing if subject and non auth sender domain matches", async function () {
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
mailDetails.authStatus = MailAuthenticationStatus.SOFT_FAIL
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_DOMAIN_NON_AUTH, "example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(true)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is phishing if subject and non auth sender address matches", async function () {
test authStatus from mailDetails instead of deprecated status from mail refactor the checkMailForPhishing test
2025-10-16 13:12:04 +02:00
mailDetails.authStatus = MailAuthenticationStatus.SOFT_FAIL
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.FROM_ADDRESS_NON_AUTH, "test@example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(true)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is phishing if subject and link matches", async function () {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.LINK, "https://example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(true)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is not phishing if just two links match", async function () {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.LINK, "https://example.com"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.LINK, "https://example2.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(
await facade.checkMailForPhishing(mail, [
{ href: "https://example.com", innerHTML: "link1" },
{ href: "https://example2.com", innerHTML: "link2" },
]),
).equals(false)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
o("is phishing if subject and link domain matches", async function () {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.LINK_DOMAIN, "example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(await facade.checkMailForPhishing(mail, [{ href: "https://example.com", innerHTML: "link" }])).equals(true)
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
Handle invalid links in antiphishing check, fix #1065
2020-04-14 15:28:24 +02:00
o("does not throw on invalid link", async function () {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.LINK_DOMAIN, "example.com"),
}),
Do not send phishing worker to the main thread, fix #2086 It breaks down IE as Set cannot be sent properly
2020-06-02 13:39:22 +02:00
])
Handle invalid links in antiphishing check, fix #1065
2020-04-14 15:28:24 +02:00
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
o(
await facade.checkMailForPhishing(mail, [
{ href: "/example1", innerHTML: "link1" },
{ href: "example2", innerHTML: "link2" },
{ href: "http:/", innerHTML: "link3" },
]),
).equals(false)
Consider links with different domain suspicious
2021-01-28 12:15:10 +01:00
})
o("is phishing if subject and suspicious link", async function () {
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Consider links with different domain suspicious
2021-01-28 12:15:10 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
])
Use UnreadMailStateService for marking mails as read/unread This commit moves the service call to MailFacade and adds tests, too. Closes #8507
2025-02-10 15:59:28 +01:00
o(
await facade.checkMailForPhishing(mail, [
{
href: "https://example.com",
innerHTML: "https://evil-domain.com",
},
]),
).equals(true)
Consider links with different domain suspicious
2021-01-28 12:15:10 +01:00
})
o("link is not suspicious if on the same domain", async function () {
facade.phishingMarkersUpdateReceived([
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
createTestEntity(ReportedMailFieldMarkerTypeRef, {
Consider links with different domain suspicious
2021-01-28 12:15:10 +01:00
marker: phishingMarkerValue(ReportedMailFieldType.SUBJECT, "Test"),
}),
])
Use UnreadMailStateService for marking mails as read/unread This commit moves the service call to MailFacade and adds tests, too. Closes #8507
2025-02-10 15:59:28 +01:00
o(
await facade.checkMailForPhishing(mail, [
{
href: "https://example.com",
innerHTML: "https://example.com/test",
},
]),
).equals(false)
Handle invalid links in antiphishing check, fix #1065
2020-04-14 15:28:24 +02:00
})
Antiphishing system Includes: [desktop] Prevent "cycle of death" when web contents are crashing In some cases when app is killed web contents have been crashing. We tried to re-create the window and set bounds after the small delay. By the time we tried to set bounds the window has already crashed. We showed dialog and tried to create window again and like that untill we crash the system. This commit stop automatic window recreation because it's tricky to get right and recover from invalid state
2020-03-16 17:37:50 +01:00
})
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
o.spec("verifyMimeTypesForAttachments", () => {
function attach(mimeType, name): DataFile {
return downcast({
mimeType,
name,
_type: "DataFile",
})
}
o("valid mimetypes", () => {
validateMimeTypesForAttachments([attach("application/json", "something.json")])
Account for mime type parameters when validating mime types Some formats, such as Opus when used in an Ogg container, will have a parameter set. We do not want to error on these. tutadb#1676
2023-11-16 14:55:52 +01:00
validateMimeTypesForAttachments([attach("audio/ogg; codec=opus", "something.opus")])
validateMimeTypesForAttachments([attach('video/webm; codecs="vp8, opus"', "something.webm")])
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
validateMimeTypesForAttachments([attach("something/orrather", "something.somethingorrather")])
validateMimeTypesForAttachments([attach("thisisvalid/technically+this_is-ok_even-if-YOU-dont-like-it", "something.valid")])
Account for mime type parameters when validating mime types Some formats, such as Opus when used in an Ogg container, will have a parameter set. We do not want to error on these. tutadb#1676
2023-11-16 14:55:52 +01:00
validateMimeTypesForAttachments([attach("anotherthing/youcando;ishave=multiple;parameters=in;a=mimetype", "something.technicallyvalidaswell")])
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
})
Account for mime type parameters when validating mime types Some formats, such as Opus when used in an Ogg container, will have a parameter set. We do not want to error on these. tutadb#1676
2023-11-16 14:55:52 +01:00
o("invalid mimetypes", () => {
o(() => {
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
validateMimeTypesForAttachments([attach("applicationjson", "something.json")])
Account for mime type parameters when validating mime types Some formats, such as Opus when used in an Ogg container, will have a parameter set. We do not want to error on these. tutadb#1676
2023-11-16 14:55:52 +01:00
}).throws(ProgrammingError)
o(() => {
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
validateMimeTypesForAttachments([attach("application/json", "something.json"), attach("applicationjson", "something.json")])
Account for mime type parameters when validating mime types Some formats, such as Opus when used in an Ogg container, will have a parameter set. We do not want to error on these. tutadb#1676
2023-11-16 14:55:52 +01:00
}).throws(ProgrammingError)
o(() => {
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
validateMimeTypesForAttachments([attach("applicationjson", "something.json"), attach("application/json", "something.json")])
Account for mime type parameters when validating mime types Some formats, such as Opus when used in an Ogg container, will have a parameter set. We do not want to error on these. tutadb#1676
2023-11-16 14:55:52 +01:00
}).throws(ProgrammingError)
o(() => {
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
validateMimeTypesForAttachments([attach("", "bad.json")])
Account for mime type parameters when validating mime types Some formats, such as Opus when used in an Ogg container, will have a parameter set. We do not want to error on these. tutadb#1676
2023-11-16 14:55:52 +01:00
}).throws(ProgrammingError)
o(() => {
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
validateMimeTypesForAttachments([attach("a/b/c", "no.json")])
Account for mime type parameters when validating mime types Some formats, such as Opus when used in an Ogg container, will have a parameter set. We do not want to error on these. tutadb#1676
2023-11-16 14:55:52 +01:00
}).throws(ProgrammingError)
o(() => {
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
validateMimeTypesForAttachments([attach("a/b?c", "please stop.json")])
Account for mime type parameters when validating mime types Some formats, such as Opus when used in an Ogg container, will have a parameter set. We do not want to error on these. tutadb#1676
2023-11-16 14:55:52 +01:00
}).throws(ProgrammingError)
o(() => {
validateMimeTypesForAttachments([attach('video/webm; codecs="vp8, opus oh no i forgot the quote; oops=mybad', "why.webm")])
}).throws(ProgrammingError)
o(() => {
validateMimeTypesForAttachments([attach("video/webm; parameterwithoutavalue", "bad.webm")])
}).throws(ProgrammingError)
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
})
Show pq padlock symbol for sent mail, tutadb 1788 (#6699) * Show pq padlock symbol for sent mail, tutadb 1788 To show the pq padlock symbol for the sender we introduced another enum value for the encryptionAuthStatus on Mail instances which is only set for the sent mail. It is only set in case the mail is confidential and all recipients support the TutaCrypt protocol. * clean up outdated invitations from offlince cache see the fix for tutadb#1800 --------- Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: vaf <vaf@tutao.de>
2024-05-06 11:08:05 +02:00
o("isTutaCryptMail", () => {
const pqRecipient = createTestEntity(InternalRecipientKeyDataTypeRef, { protocolVersion: CryptoProtocolVersion.TUTA_CRYPT })
const rsaRecipient = createTestEntity(InternalRecipientKeyDataTypeRef, { protocolVersion: CryptoProtocolVersion.RSA })
const secureExternalRecipient = createTestEntity(SecureExternalRecipientKeyDataTypeRef, {})
const symEncInternalRecipient = createTestEntity(SymEncInternalRecipientKeyDataTypeRef, {})
o(
facade.isTutaCryptMail(
createTestEntity(SendDraftDataTypeRef, {
internalRecipientKeyData: [pqRecipient],
secureExternalRecipientKeyData: [],
symEncInternalRecipientKeyData: [],
}),
),
).equals(true)
o(
facade.isTutaCryptMail(
createTestEntity(SendDraftDataTypeRef, {
internalRecipientKeyData: [pqRecipient, pqRecipient],
secureExternalRecipientKeyData: [],
symEncInternalRecipientKeyData: [],
}),
),
).equals(true)
o(
facade.isTutaCryptMail(
createTestEntity(SendDraftDataTypeRef, {
internalRecipientKeyData: [],
secureExternalRecipientKeyData: [],
symEncInternalRecipientKeyData: [],
}),
),
).equals(false)
o(
facade.isTutaCryptMail(
createTestEntity(SendDraftDataTypeRef, {
internalRecipientKeyData: [pqRecipient, rsaRecipient],
secureExternalRecipientKeyData: [],
symEncInternalRecipientKeyData: [],
}),
),
).equals(false)
o(
facade.isTutaCryptMail(
createTestEntity(SendDraftDataTypeRef, {
internalRecipientKeyData: [pqRecipient],
secureExternalRecipientKeyData: [secureExternalRecipient],
symEncInternalRecipientKeyData: [],
}),
),
).equals(false)
o(
facade.isTutaCryptMail(
createTestEntity(SendDraftDataTypeRef, {
internalRecipientKeyData: [pqRecipient],
secureExternalRecipientKeyData: [],
symEncInternalRecipientKeyData: [symEncInternalRecipient],
}),
),
).equals(false)
})
Validate that mime types are validly formatted when sent Verify that the mime type is correctly formatted so that it will not be rejected when sent. tutadb#831
2023-09-01 11:03:46 +02:00
})
Use UnreadMailStateService for marking mails as read/unread This commit moves the service call to MailFacade and adds tests, too. Closes #8507
2025-02-10 15:59:28 +01:00
o.spec("markMails", () => {
o.test("test with single mail", async () => {
const testIds: IdTuple[] = [["a", "b"]]
await facade.markMails(testIds, true)
verify(
serviceExecutor.post(
UnreadMailStateService,
matchers.contains({
mails: testIds,
unread: true,
}),
),
)
})
o.test("test with a few mails", async () => {
const testIds: IdTuple[] = [
["a", "b"],
["c", "d"],
]
await facade.markMails(testIds, true)
verify(
serviceExecutor.post(
UnreadMailStateService,
matchers.contains({
mails: testIds,
unread: true,
}),
),
)
})
o.test("batches large amounts of mails", async () => {
const expectedBatches = 4
const testIds: IdTuple[] = []
for (let i = 0; i < MAX_NBR_MOVE_DELETE_MAIL_SERVICE * expectedBatches; i++) {
testIds.push([`${i}`, `${i}`])
}
await facade.markMails(testIds, true)
for (let i = 0; i < expectedBatches; i++) {
verify(
serviceExecutor.post(
UnreadMailStateService,
matchers.contains({
mails: testIds.slice(i * MAX_NBR_MOVE_DELETE_MAIL_SERVICE, (i + 1) * MAX_NBR_MOVE_DELETE_MAIL_SERVICE),
unread: true,
}),
),
)
}
verify(serviceExecutor.post(UnreadMailStateService, matchers.anything()), { times: expectedBatches })
})
})
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
o.spec("createOwnerEncSessionKeyProviderForAttachments", () => {
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
function sessionKeyId(mailIndex: number, attachmentIndex: number) {
return `attachmentId_mail_${mailIndex}_attachment_${attachmentIndex}`
}
function setUpMail(mailIndex: number, attachmentCount: number): Mail {
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
const mail = createTestEntity(MailTypeRef, {
bucketKey: createTestEntity(BucketKeyTypeRef, {
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
_id: `hey I'm an ID for bucket key #${mailIndex}`,
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
}),
})
const instanceSessionKeys: InstanceSessionKey[] = []
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
for (const attachmentIndex of lazyNumberRange(0, attachmentCount)) {
const attachmentId = sessionKeyId(mailIndex, attachmentIndex)
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
const instanceSessionKey = createTestEntity(InstanceSessionKeyTypeRef, {
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
instanceId: attachmentId,
symEncSessionKey: new Uint8Array([mailIndex, attachmentIndex, 3, 4]),
symKeyVersion: `${mailIndex}`,
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
})
instanceSessionKeys.push(instanceSessionKey)
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
mail.attachments.push(["someListId", attachmentId])
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
}
when(cryptoFacade.resolveWithBucketKey(mail)).thenResolve({
resolvedSessionKeyForInstance: [],
instanceSessionKeys,
})
return mail
}
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
async function checkMail(resolver: OwnerEncSessionKeyProvider, fileCount: number, mails: readonly Mail[]) {
for (const [mailIndex, mail] of mails.entries()) {
for (const [attachmentIndex, attachmentId] of mail.attachments.entries()) {
const attachment = createTestEntity(FileTypeRef, {
_id: attachmentId,
name: `file_${attachmentIndex}`,
})
o.check(await resolver(elementIdPart(attachmentId), attachment)).deepEquals({
key: new Uint8Array([mailIndex, attachmentIndex, 3, 4]),
encryptingKeyVersion: mailIndex as KeyVersion,
})(`hellooooo I'm an ID for some file instance #${attachmentId} for mail #${mailIndex}`)
}
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
}
}
o.test("one mail with no bucket key", async () => {
const mail = createTestEntity(MailTypeRef)
await facade.createOwnerEncSessionKeyProviderForAttachments([mail])
// since our resolver will do nothing, we just need to ensure that cryptoFacade was never called in the first place
verify(cryptoFacade.resolveWithBucketKey(matchers.anything()), { times: 0 })
})
o.test("one mail with one file instance", async () => {
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
const mails = [setUpMail(0, 1)]
const resolver = await facade.createOwnerEncSessionKeyProviderForAttachments(mails)
await checkMail(resolver, 1, mails)
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
})
o.test("a lot of mails with one file instance", async () => {
const count = 100
const instanceCount = 1
const mails: Mail[] = []
for (let i = 0; i < count; i++) {
mails.push(setUpMail(i, instanceCount))
}
const resolver = await facade.createOwnerEncSessionKeyProviderForAttachments(mails)
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
await checkMail(resolver, instanceCount, mails)
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
})
o.test("one mail with many file instances", async () => {
const instanceCount = 256
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
const mails = [setUpMail(0, instanceCount)]
const resolver = await facade.createOwnerEncSessionKeyProviderForAttachments(mails)
await checkMail(resolver, instanceCount, mails)
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
})
o.test("a lot of mails with many file instances", async () => {
const count = 100
const instanceCount = 64
const mails: Mail[] = []
for (let i = 0; i < count; i++) {
mails.push(setUpMail(i, instanceCount))
}
const resolver = await facade.createOwnerEncSessionKeyProviderForAttachments(mails)
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
await checkMail(resolver, instanceCount, mails)
})
o.test("when already decrypted it just returns the key", async () => {
const mail = setUpMail(0, 1)
mail.bucketKey = null
const resolver = await facade.createOwnerEncSessionKeyProviderForAttachments([mail])
const expectedSK: VersionedEncryptedKey = {
key: new Uint8Array([1, 2, 3, 4]),
encryptingKeyVersion: 10,
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
}
Fix resolving session keys for attachments that were already decrypted Close #9027 Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-22 14:36:58 +02:00
const attachment = createTestEntity(FileTypeRef, {
_id: mail.attachments[0],
_ownerEncSessionKey: expectedSK.key,
_ownerKeyVersion: String(expectedSK.encryptingKeyVersion),
name: `file_${0}`,
})
o.check(await resolver(getElementId(attachment), attachment)).deepEquals(expectedSK)
Fix BulkMailLoader not resolving session keys for attachments Add a createOwnerEncSessionKeyProviderForAttachments to MailFacade that is also used for BulkMailLoader so that mail attachments are resolved the same way in both cases. Add tests for this function, as it did not seem to be tested in loadAttachments. Closes #8816
2025-05-02 17:38:27 +02:00
})
})
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
o.spec("addRecipientKeyData", function () {
o("correctly throws RecipientsNotFoundError", async function () {
const bucketKey: AesKey = object()
const sendDraftData: SendDraftData = object()
const senderMailGroupId: Id = object()
const notFoundRecipient1: Recipient = object()
// @ts-ignore
notFoundRecipient1.address = "one@tuta.com"
const notFoundRecipient2: Recipient = object()
// @ts-ignore
notFoundRecipient2.address = "two@tuta.com"
const someRecipient1: Recipient = object()
const someRecipient2: Recipient = object()
const recipients: Array<Recipient> = [someRecipient1, notFoundRecipient1, someRecipient2, notFoundRecipient2]
const captor = matchers.captor()
when(
cryptoFacade.encryptBucketKeyForInternalRecipient(
matchers.anything(),
matchers.anything(),
notFoundRecipient1.address,
captor.capture(),
matchers.anything(),
),
).thenDo(() => {
const notFoundRecipients: string[] = captor.value
notFoundRecipients.push(notFoundRecipient1.address)
})
when(
cryptoFacade.encryptBucketKeyForInternalRecipient(
matchers.anything(),
matchers.anything(),
notFoundRecipient2.address,
captor.capture(),
matchers.anything(),
),
).thenDo(() => {
const notFoundRecipients: string[] = captor.value
notFoundRecipients.push(notFoundRecipient2.address)
})
const err = await assertThrows(RecipientsNotFoundError, async () => {
// @ts-ignore
await facade.addRecipientKeyData(bucketKey, sendDraftData, recipients, senderMailGroupId)
})
o(err.message).equals(`${notFoundRecipient1.address}\n${notFoundRecipient2.address}`)
})
o("correctly throws KeyVerificationMismatchError", async function () {
const bucketKey: AesKey = object()
const sendDraftData: SendDraftData = object()
const senderMailGroupId: Id = object()
const unverifiedRecipient1: Recipient = object()
// @ts-ignore
unverifiedRecipient1.address = "one@tuta.com"
const unverifiedRecipient2: Recipient = object()
// @ts-ignore
unverifiedRecipient2.address = "two@tuta.com"
const someRecipient1: Recipient = object()
const someRecipient2: Recipient = object()
const recipients: Array<Recipient> = [someRecipient1, unverifiedRecipient1, someRecipient2, unverifiedRecipient2]
const captor = matchers.captor()
when(
cryptoFacade.encryptBucketKeyForInternalRecipient(
matchers.anything(),
matchers.anything(),
unverifiedRecipient1.address,
matchers.anything(),
captor.capture(),
),
).thenDo(() => {
const mismatchRecipients: string[] = captor.value
mismatchRecipients.push(unverifiedRecipient1.address)
})
when(
cryptoFacade.encryptBucketKeyForInternalRecipient(
matchers.anything(),
matchers.anything(),
unverifiedRecipient2.address,
matchers.anything(),
captor.capture(),
),
).thenDo(() => {
const mismatchRecipients: string[] = captor.value
mismatchRecipients.push(unverifiedRecipient2.address)
})
const err = await assertThrows(KeyVerificationMismatchError, async () => {
// @ts-ignore
await facade.addRecipientKeyData(bucketKey, sendDraftData, recipients, senderMailGroupId)
})
o(err.data).deepEquals([unverifiedRecipient1.address, unverifiedRecipient2.address])
})
})
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
})
Reference in a new issue Copy permalink