Stowage/tutanota
2
0
Fork 0
mirror of https://github.com/tutao/tutanota.git synced 2025-12-08 06:09:50 +00:00
Code Issues Projects Releases Packages Wiki Activity
tutanota/test/tests/api/worker/crypto/CryptoFacadeTest.ts

1958 lines
72 KiB
TypeScript
Raw Normal View History

Switch to @tutao/otest from ospec
2023-06-29 18:26:45 +02:00
import o from "@tutao/otest"
Log and throw authentication errors This is erroring silently and we don't get enough information to figure out what is happening. tuta#2676 Co-authored-by: mab <mab@tutao.de>
2025-11-13 17:35:16 +01:00
import { arrayEquals, assertNotNull, hexToUint8Array, KeyVersion, neverNull, noOp, utf8Uint8ArrayToString, Versioned } from "@tutao/tutanota-utils"
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
import { CryptoFacade } from "../../../../../src/common/api/worker/crypto/CryptoFacade.js"
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
import {
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
asCryptoProtoocolVersion,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
BucketPermissionType,
CryptoProtocolVersion,
EncryptionAuthStatus,
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
EncryptionKeyVerificationState,
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
GroupType,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
PermissionType,
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
PresentableKeyVerificationState,
improve inbox rule handling and run spam prediction after inbox rules Instead of applying inbox rules based on the unread mail state in the inbox folder, we introduce the new ProcessingState enum on the mail type. If a mail has been processed by the leader client, which is checking for matching inbox rules, the ProcessingState is updated. If there is a matching rule the flag is updated through the MoveMailService, if there is no matching rule, the flag is updated using the ClientClassifierResultService. Both requests are throttled / debounced. After processing inbox rules, spam prediction is conducted for mails that have not yet been moved by an inbox rule. The ProcessingState for not matching ham mails is also updated using the ClientClassifierResultService. This new inbox rule handing solves the following two problems: - when clicking on a notification it could still happen, that sometimes the inbox rules where not applied - when the inbox folder had a lot of unread mails, the loading time did massively increase, since inbox rules were re-applied on every load Co-authored-by: amm <amm@tutao.de> Co-authored-by: Nick <nif@tutao.de> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jhm <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-10-14 12:11:22 +02:00
ProcessingState,
Add user group key rotation tutadb#1844
2024-09-02 19:57:57 +02:00
PublicKeyIdentifierType,
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
} from "../../../../../src/common/api/common/TutanotaConstants.js"
Fix tests
2022-04-19 16:51:08 +02:00
import {
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
createMail,
createMailAddress,
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
FileTypeRef,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
InternalRecipientKeyData,
do not remove session key from session key cache for MailDetails and MailBody entities, fixes tutadb 1320
2023-01-17 15:42:18 +01:00
Mail,
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
MailAddressTypeRef,
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
MailDetailsBlobTypeRef,
fixes after Willow's review
2023-01-12 16:48:28 +01:00
MailTypeRef,
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
} from "../../../../../src/common/api/entities/tutanota/TypeRefs.js"
Fix tests
2022-04-19 16:51:08 +02:00
import {
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
BucketKey,
BucketKeyTypeRef,
Fix tests
2022-04-19 16:51:08 +02:00
BucketPermissionTypeRef,
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
BucketTypeRef,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
createBucket,
createBucketKey,
createBucketPermission,
createGroup,
createInstanceSessionKey,
createKeyPair,
createPermission,
createTypeInfo,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
CustomerAccountTerminationRequestTypeRef,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Group,
Change cardinality of keyRotations and formerKeysList to One We ran a migration batchjob to populate those fields, and they are also populated on account creation. tuta#2043
2025-04-10 13:44:34 +02:00
GroupKeysRefTypeRef,
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
GroupMembershipTypeRef,
Fix tests
2022-04-19 16:51:08 +02:00
GroupTypeRef,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
InstanceSessionKey,
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
InstanceSessionKeyTypeRef,
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
KeyPair,
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
KeyPairTypeRef,
Fix tests
2022-04-19 16:51:08 +02:00
PermissionTypeRef,
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
TypeInfoTypeRef,
Fix tests
2022-04-19 16:51:08 +02:00
UpdatePermissionKeyData,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
User,
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
UserTypeRef,
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
} from "../../../../../src/common/api/entities/sys/TypeRefs.js"
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
import { spy } from "@tutao/tutanota-test-utils"
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
import { RestClient } from "../../../../../src/common/api/worker/rest/RestClient.js"
import { EntityClient } from "../../../../../src/common/api/common/EntityClient.js"
Convert codebase to Typescript, close #3746 close #3594 Co-authored-by: jom <jom@tutao.de> Co-authored-by: thp <thp@tutao.de> Co-authored-by: vis <vis@tutao.de>
2022-01-07 15:58:30 +01:00
import {
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Aes256Key,
aes256RandomKey,
Introduce domain configs to support 2FA across domains #5638
2023-09-26 18:03:30 +02:00
aesDecrypt,
Add native AES-256 implementation to Android and iOS We need to start using AES-256 in order to be PQ-safe, and a native implementation should be used when possible. tutadb#1613
2023-09-13 11:42:57 +02:00
aesEncrypt,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
AesKey,
Convert codebase to Typescript, close #3746 close #3594 Co-authored-by: jom <jom@tutao.de> Co-authored-by: thp <thp@tutao.de> Co-authored-by: vis <vis@tutao.de>
2022-01-07 15:58:30 +01:00
bitArrayToUint8Array,
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
decryptKey,
Convert codebase to Typescript, close #3746 close #3594 Co-authored-by: jom <jom@tutao.de> Co-authored-by: thp <thp@tutao.de> Co-authored-by: vis <vis@tutao.de>
2022-01-07 15:58:30 +01:00
encryptKey,
encryptRsaKey,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
generateX25519KeyPair,
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
KeyPairType,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
kyberPrivateKeyToBytes,
kyberPublicKeyToBytes,
fix CryptoFacadeTest after removing UserIdReturnType UserIdReturnType is no longer needed as it is no longer used (except for in CryptoFacadeTest)
2024-01-30 18:18:19 +01:00
pqKeyPairsToPublicKeys,
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
PQPublicKeys,
RsaPublicKey,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
rsaPublicKeyToHex,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
X25519KeyPair,
X25519PublicKey,
Convert codebase to Typescript, close #3746 close #3594 Co-authored-by: jom <jom@tutao.de> Co-authored-by: thp <thp@tutao.de> Co-authored-by: vis <vis@tutao.de>
2022-01-07 15:58:30 +01:00
} from "@tutao/tutanota-crypto"
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
import { ServerModelUntypedInstance, TypeModel, UntypedInstance } from "../../../../../src/common/api/common/EntityTypes.js"
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
import { IServiceExecutor } from "../../../../../src/common/api/common/ServiceRequest.js"
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
import { matchers, object, verify, when } from "testdouble"
enforce constraint that the client only accepts rsa keys in version 0 make convertToVersionedPublicKeys part of PublicKeyProvider and private tutadb#1926
2025-01-22 15:19:22 +01:00
import { UpdatePermissionKeyService } from "../../../../../src/common/api/entities/sys/Services.js"
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
import { elementIdPart, getListId, isSameId, listIdPart } from "../../../../../src/common/api/common/utils/EntityUtils.js"
fix server model info not being initialized We observed clients that managed to get stuck with a missing server model, which made login from stored credentials impossible and required getting a new session. The reason was that only the service executor, rest client and event bus client cared to update the server model if they were missing. However, the offline database also stores data in the server's model and thus requires it to read any data. Since logging in will hit the cache before requesting the server, a corrupted or missing server model causes us to not be able to log in. This commit gives the responsibility of acquiring the models to ServerModelInfo.resolveServerTypeReference if they are missing or out of date to avoid situations where we call resolveServerTypeReference without first checking if the model is initialized. Additionally, we show a dialog to the user if the models cannot be initialized instead of an uncaught error. We considered having the error handler try to repeat model initialization, but since the original request already failed at that point, getting back to a normal state would require an extra manual retry. fix #9004 Co-authored-by: nig <nig@tutao.de> Co-authored-by: sug <sug@tutao.de> Co-authored-by: kib <104761667+kibibytium@users.noreply.github.com>
2025-05-19 16:11:26 +02:00
import { HttpMethod, TypeModelResolver } from "../../../../../src/common/api/common/EntityFunctions.js"
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
import { UserFacade } from "../../../../../src/common/api/worker/facades/UserFacade.js"
import { SessionKeyNotFoundError } from "../../../../../src/common/api/common/error/SessionKeyNotFoundError.js"
import { OwnerEncSessionKeysUpdateQueue } from "../../../../../src/common/api/worker/crypto/OwnerEncSessionKeysUpdateQueue.js"
import { WASMKyberFacade } from "../../../../../src/common/api/worker/facades/KyberFacade.js"
import { PQFacade } from "../../../../../src/common/api/worker/facades/PQFacade.js"
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
import { encodePQMessage, PQBucketKeyEncapsulation } from "../../../../../src/common/api/worker/facades/PQMessage.js"
fix server model info not being initialized We observed clients that managed to get stuck with a missing server model, which made login from stored credentials impossible and required getting a new session. The reason was that only the service executor, rest client and event bus client cared to update the server model if they were missing. However, the offline database also stores data in the server's model and thus requires it to read any data. Since logging in will hit the cache before requesting the server, a corrupted or missing server model causes us to not be able to log in. This commit gives the responsibility of acquiring the models to ServerModelInfo.resolveServerTypeReference if they are missing or out of date to avoid situations where we call resolveServerTypeReference without first checking if the model is initialized. Additionally, we show a dialog to the user if the models cannot be initialized instead of an uncaught error. We considered having the error handler try to repeat model initialization, but since the original request already failed at that point, getting back to a normal state would require an extra manual retry. fix #9004 Co-authored-by: nig <nig@tutao.de> Co-authored-by: sug <sug@tutao.de> Co-authored-by: kib <104761667+kibibytium@users.noreply.github.com>
2025-05-19 16:11:26 +02:00
import { clientInitializedTypeModelResolver, createTestEntity, instancePipelineFromTypeModelResolver } from "../../../TestUtils.js"
make PQKeyPairs a type, fix type checks
2023-12-18 17:30:21 +01:00
import { RSA_TEST_KEYPAIR } from "../facades/RsaPqPerformanceTest.js"
Move files to new folder structure Co-authored-by: @rih-tutao
2024-07-01 17:56:41 +02:00
import { DefaultEntityRestCache } from "../../../../../src/common/api/worker/rest/DefaultEntityRestCache.js"
Fix Tests for Fallback Adapt the tests to work with the new format of loading the fallback and the wasm files. This commit also fixes the ESBuild function to correctly resolve the fallback and generate it. Remove the hardcoded make command and add the option to use a provided command instead of make. Also adds the possibility to provide env vars and a working dir for Wasm generation.
2024-04-23 11:06:40 +02:00
import { loadLibOQSWASM } from "../WASMTestUtils.js"
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
import { AsymmetricCryptoFacade } from "../../../../../src/common/api/worker/crypto/AsymmetricCryptoFacade.js"
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
import { VerifiedPublicEncryptionKey } from "../../../../../src/common/api/worker/facades/lazy/KeyVerificationFacade"
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
import { KeyLoaderFacade, parseKeyVersion } from "../../../../../src/common/api/worker/facades/KeyLoaderFacade.js"
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
import { PublicEncryptionKeyProvider } from "../../../../../src/common/api/worker/facades/PublicEncryptionKeyProvider.js"
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
import { KeyRotationFacade } from "../../../../../src/common/api/worker/facades/KeyRotationFacade.js"
Mark suddenly unverified recipients after hitting "send" For recipients that have been displayed as verified in the mail editor and lose the status before sending, the verification shield icon will be replaced by a failure icon. Co-authored-by: mab <mab@tutao.de>
2025-03-25 15:35:51 +01:00
import { NotFoundError } from "../../../../../src/common/api/common/error/RestError"
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
import { AttributeModel } from "../../../../../src/common/api/common/AttributeModel"
import { EntityAdapter } from "../../../../../src/common/api/worker/crypto/EntityAdapter"
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
import { KeyVerificationMismatchError } from "../../../../../src/common/api/common/error/KeyVerificationMismatchError"
fixes after Willow's review
2023-01-12 16:48:28 +01:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const { captor, anything, argThat } = matchers
imported new tutanota client
2017-08-15 13:54:22 +02:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const kyberFacade = new WASMKyberFacade(await loadLibOQSWASM())
const pqFacade: PQFacade = new PQFacade(kyberFacade)
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
let publicEncryptionKeyProvider: PublicEncryptionKeyProvider
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
/**
* Helper to have all the mocked items available in the test case.
*/
type TestUser = {
user: User
name: string
userGroup: Group
mailGroup: Group
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
userGroupKey: AesKey
mailGroupKey: AesKey
}
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
const senderAddress = "hello@tutao.de"
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o.spec("CryptoFacadeTest", function () {
Introduce domain configs to support 2FA across domains #5638
2023-09-26 18:03:30 +02:00
let restClient: RestClient
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
Inject type model resolvers Passing instances explicitly avoids the situations where some of them might not be initialized. We also simplified the entity handling by converting entity updates to data with resolved types early so that the listening code doesn't have to deal with it. We did fix some of the bad test practices, e.g. setting/restoring env incorrectly. This matters now because accessors for type model initializers check env.mode. Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-16 16:03:24 +02:00
let instancePipeline
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
Use generated service interfaces
2022-03-09 17:43:29 +01:00
let serviceExecutor: IServiceExecutor
let entityClient: EntityClient
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
let ownerEncSessionKeysUpdateQueue: OwnerEncSessionKeysUpdateQueue
Use generated service interfaces
2022-03-09 17:43:29 +01:00
let crypto: CryptoFacade
Extract UserFacade from LoginFacade, #3888 LoginFacade had multiple responsibilities and thus was causing a lot of circular dependencies. We extracted all the user state into its own class which is then used from most places. LoginFacade now has only login-related functions. We kept entityEventsReceived() in LoginFacade to not introduce circular dependency between UserFacade and EntityClient. Co-authored-by: tih<tih@tutao.de>
2022-04-12 14:23:38 +02:00
let userFacade: UserFacade
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
let keyLoaderFacade: KeyLoaderFacade
enforce updating _ownerEncSessionKey for Files if needed #6275 We assumed that _ownerEncSessionKey is written for a File when we download it. This is not always the case as the UpdateSessionKeysService might not have been invoked or the invocation might have failed.
2024-01-31 18:55:21 +01:00
let cache: DefaultEntityRestCache
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
let asymmetricCryptoFacade: AsymmetricCryptoFacade
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
let keyRotationFacade: KeyRotationFacade
Inject type model resolvers Passing instances explicitly avoids the situations where some of them might not be initialized. We also simplified the entity handling by converting entity updates to data with resolved types early so that the listening code doesn't have to deal with it. We did fix some of the bad test practices, e.g. setting/restoring env incorrectly. This matters now because accessors for type model initializers check env.mode. Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-16 16:03:24 +02:00
let typeModelResolver: TypeModelResolver
async function prepareBucketKeyInstance(
bucketEncMailSessionKey: Uint8Array,
fileSessionKeys: Array<AesKey>,
bk: AesKey,
pubEncBucketKey: Uint8Array,
recipientUser: TestUser,
mail: Mail,
senderPubEccKey: Versioned<X25519PublicKey> | undefined,
recipientKeyVersion: NumberString,
protocolVersion: CryptoProtocolVersion,
asymmetricCryptoFacade: AsymmetricCryptoFacade,
) {
const MailTypeModel = await typeModelResolver.resolveClientTypeReference(MailTypeRef)
const mailInstanceSessionKey = createTestEntity(InstanceSessionKeyTypeRef, {
typeInfo: createTestEntity(TypeInfoTypeRef, {
application: MailTypeModel.app,
typeId: String(MailTypeModel.id),
}),
symEncSessionKey: bucketEncMailSessionKey,
instanceList: "mailListId",
instanceId: "mailId",
})
const FileTypeModel = await typeModelResolver.resolveClientTypeReference(FileTypeRef)
const bucketEncSessionKeys = fileSessionKeys.map((fileSessionKey, index) => {
return createTestEntity(InstanceSessionKeyTypeRef, {
typeInfo: createTestEntity(TypeInfoTypeRef, {
application: FileTypeModel.app,
typeId: String(FileTypeModel.id),
}),
symEncSessionKey: encryptKey(bk, fileSessionKey),
instanceList: "fileListId",
instanceId: "fileId" + (index + 1),
})
})
bucketEncSessionKeys.push(mailInstanceSessionKey)
const bucketKey = createTestEntity(BucketKeyTypeRef, {
pubEncBucketKey,
keyGroup: recipientUser.userGroup._id,
bucketEncSessionKeys: bucketEncSessionKeys,
recipientKeyVersion,
senderKeyVersion: senderPubEccKey != null ? senderPubEccKey.version.toString() : "0",
protocolVersion,
})
when(
asymmetricCryptoFacade.loadKeyPairAndDecryptSymKey(
assertNotNull(bucketKey.keyGroup),
parseKeyVersion(bucketKey.recipientKeyVersion),
asCryptoProtoocolVersion(bucketKey.protocolVersion),
pubEncBucketKey,
anything(),
),
).thenResolve({ decryptedAesKey: bk, senderIdentityPubKey: senderPubEccKey?.object ?? null })
mail.bucketKey = bucketKey
}
splitted SearchFacade and refactored worker to use locator
2017-11-23 13:30:17 +01:00
o.before(function () {
Introduce domain configs to support 2FA across domains #5638
2023-09-26 18:03:30 +02:00
restClient = object()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
when(restClient.request(anything(), anything(), anything())).thenResolve(undefined)
Extract UserFacade from LoginFacade, #3888 LoginFacade had multiple responsibilities and thus was causing a lot of circular dependencies. We extracted all the user state into its own class which is then used from most places. LoginFacade now has only login-related functions. We kept entityEventsReceived() in LoginFacade to not introduce circular dependency between UserFacade and EntityClient. Co-authored-by: tih<tih@tutao.de>
2022-04-12 14:23:38 +02:00
userFacade = object()
enforce updating _ownerEncSessionKey for Files if needed #6275 We assumed that _ownerEncSessionKey is written for a File when we download it. This is not always the case as the UpdateSessionKeysService might not have been invoked or the invocation might have failed.
2024-01-31 18:55:21 +01:00
cache = object()
splitted SearchFacade and refactored worker to use locator
2017-11-23 13:30:17 +01:00
})
Use generated service interfaces
2022-03-09 17:43:29 +01:00
o.beforeEach(function () {
serviceExecutor = object()
entityClient = object()
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
asymmetricCryptoFacade = object()
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
ownerEncSessionKeysUpdateQueue = object()
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider = object()
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
keyLoaderFacade = object()
keyRotationFacade = object()
Inject type model resolvers Passing instances explicitly avoids the situations where some of them might not be initialized. We also simplified the entity handling by converting entity updates to data with resolved types early so that the listening code doesn't have to deal with it. We did fix some of the bad test practices, e.g. setting/restoring env incorrectly. This matters now because accessors for type model initializers check env.mode. Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-16 16:03:24 +02:00
typeModelResolver = clientInitializedTypeModelResolver()
instancePipeline = instancePipelineFromTypeModelResolver(typeModelResolver)
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
crypto = new CryptoFacade(
userFacade,
entityClient,
restClient,
serviceExecutor,
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
instancePipeline,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
ownerEncSessionKeysUpdateQueue,
cache,
keyLoaderFacade,
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
asymmetricCryptoFacade,
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider,
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
() => keyRotationFacade,
Inject type model resolvers Passing instances explicitly avoids the situations where some of them might not be initialized. We also simplified the entity handling by converting entity updates to data with resolved types early so that the listening code doesn't have to deal with it. We did fix some of the bad test practices, e.g. setting/restoring env incorrectly. This matters now because accessors for type model initializers check env.mode. Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-16 16:03:24 +02:00
typeModelResolver,
Log and throw authentication errors This is erroring silently and we don't get enough information to figure out what is happening. tuta#2676 Co-authored-by: mab <mab@tutao.de>
2025-11-13 17:35:16 +01:00
async () => {
noOp()
},
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
)
Use generated service interfaces
2022-03-09 17:43:29 +01:00
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o("resolve session key: unencrypted instance", async function () {
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const customerAccountTerminationRequest = createTestEntity(CustomerAccountTerminationRequestTypeRef)
o(await crypto.resolveSessionKey(customerAccountTerminationRequest)).equals(null)
imported new tutanota client
2017-08-15 13:54:22 +02:00
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o("resolve session key: _ownerEncSessionKey instance.", async function () {
const recipientUser = createTestUser("Bob", entityClient)
configureLoggedInUser(recipientUser, userFacade, keyLoaderFacade)
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const sk = aes256RandomKey()
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mail = createTestEntity(MailTypeRef, {
_ownerEncSessionKey: recipientUser.mailGroupKey ? encryptKey(recipientUser.mailGroupKey, sk) : null,
_ownerGroup: recipientUser.mailGroup._id,
_ownerKeyVersion: recipientUser.mailGroup.groupKeyVersion,
})
const sessionKey: AesKey = neverNull(await crypto.resolveSessionKey(mail))
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o(sessionKey).deepEquals(sk)
imported new tutanota client
2017-08-15 13:54:22 +02:00
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o("resolve session key: _ownerEncSessionKey instance, fetches correct version.", async function () {
const recipientUser = createTestUser("Bob", entityClient)
configureLoggedInUser(recipientUser, userFacade, keyLoaderFacade)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sk = aes256RandomKey()
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const groupKey_v1 = aes256RandomKey()
when(keyLoaderFacade.loadSymGroupKey(recipientUser.mailGroup._id, 1)).thenResolve(groupKey_v1)
Use generated service interfaces
2022-03-09 17:43:29 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mail = createTestEntity(MailTypeRef, {
_ownerGroup: recipientUser.mailGroup._id,
_ownerEncSessionKey: encryptKey(groupKey_v1, sk),
_ownerKeyVersion: "1",
})
const sessionKey: AesKey = neverNull(await crypto.resolveSessionKey(mail))
Convert codebase to Typescript, close #3746 close #3594 Co-authored-by: jom <jom@tutao.de> Co-authored-by: thp <thp@tutao.de> Co-authored-by: vis <vis@tutao.de>
2022-01-07 15:58:30 +01:00
o(sessionKey).deepEquals(sk)
imported new tutanota client
2017-08-15 13:54:22 +02:00
})
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const protocolVersion = CryptoProtocolVersion.TUTA_CRYPT
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o("resolve session key: rsa public key decryption of session key.", async function () {
[test] Fix tests Fix time difference in test. Do not break process.env.TZ. Increase timeout for CryptoFacadeTest. Run integration tests only when -i is passed.
2021-01-25 12:50:28 +01:00
o.timeout(500) // in CI or with debugging it can take a while
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const recipientUser = createTestUser("Bob", entityClient)
configureLoggedInUser(recipientUser, userFacade, keyLoaderFacade)
[test] Fix tests Fix time difference in test. Do not break process.env.TZ. Increase timeout for CryptoFacadeTest. Run integration tests only when -i is passed.
2021-01-25 12:50:28 +01:00
imported new tutanota client
2017-08-15 13:54:22 +02:00
let confidential = true
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
let sk = aes256RandomKey()
let bk = aes256RandomKey()
make PQKeyPairs a type, fix type checks
2023-12-18 17:30:21 +01:00
let privateKey = RSA_TEST_KEYPAIR.privateKey
let publicKey = RSA_TEST_KEYPAIR.publicKey
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
const keyPair = createTestEntity(KeyPairTypeRef, {
Use generated service interfaces
2022-03-09 17:43:29 +01:00
_id: "keyPairId",
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
symEncPrivRsaKey: encryptRsaKey(recipientUser.userGroupKey, privateKey),
make PQKeyPairs a type, fix type checks
2023-12-18 17:30:21 +01:00
pubRsaKey: hexToUint8Array(rsaPublicKeyToHex(RSA_TEST_KEYPAIR.publicKey)),
Use generated service interfaces
2022-03-09 17:43:29 +01:00
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
recipientUser.userGroup.currentKeys = keyPair
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mail = createTestEntity(MailTypeRef, {
confidential,
_ownerGroup: recipientUser.mailGroup._id,
_permissions: "permissionListId",
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
const bucket = createTestEntity(BucketTypeRef, {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
bucketPermissions: "bucketPermissionListId",
Use generated service interfaces
2022-03-09 17:43:29 +01:00
})
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
const permission = createTestEntity(PermissionTypeRef, {
Use generated service interfaces
2022-03-09 17:43:29 +01:00
_id: ["permissionListId", "permissionId"],
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
_ownerGroup: recipientUser.userGroup._id,
Use generated service interfaces
2022-03-09 17:43:29 +01:00
bucketEncSessionKey: encryptKey(bk, sk),
bucket,
type: PermissionType.Public,
})
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const pubEncBucketKey = object<Uint8Array>()
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
const bucketPermission = createTestEntity(BucketPermissionTypeRef, {
Use generated service interfaces
2022-03-09 17:43:29 +01:00
_id: ["bucketPermissionListId", "bucketPermissionId"],
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
_ownerGroup: recipientUser.userGroup._id,
Use generated service interfaces
2022-03-09 17:43:29 +01:00
type: BucketPermissionType.Public,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
group: recipientUser.userGroup._id,
Use generated service interfaces
2022-03-09 17:43:29 +01:00
pubEncBucketKey,
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
protocolVersion: protocolVersion,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
pubKeyVersion: "0",
Use generated service interfaces
2022-03-09 17:43:29 +01:00
})
Extract UserFacade from LoginFacade, #3888 LoginFacade had multiple responsibilities and thus was causing a lot of circular dependencies. We extracted all the user state into its own class which is then used from most places. LoginFacade now has only login-related functions. We kept entityEventsReceived() in LoginFacade to not introduce circular dependency between UserFacade and EntityClient. Co-authored-by: tih<tih@tutao.de>
2022-04-12 14:23:38 +02:00
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
when(
asymmetricCryptoFacade.loadKeyPairAndDecryptSymKey(
assertNotNull(bucketPermission.group),
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
parseKeyVersion(bucketPermission.pubKeyVersion!),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
protocolVersion,
pubEncBucketKey,
extend logging for accessing the key pair
2025-03-28 16:56:47 +01:00
anything(),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
),
).thenResolve({ decryptedAesKey: bk, senderIdentityPubKey: null })
Use generated service interfaces
2022-03-09 17:43:29 +01:00
when(entityClient.loadAll(BucketPermissionTypeRef, getListId(bucketPermission))).thenResolve([bucketPermission])
when(entityClient.loadAll(PermissionTypeRef, getListId(permission))).thenResolve([permission])
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
when(
serviceExecutor.post(
UpdatePermissionKeyService,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
argThat((p: UpdatePermissionKeyData) => {
Run prettier on the whole project
2022-12-27 15:37:40 +01:00
return isSameId(p.permission, permission._id) && isSameId(p.bucketPermission, bucketPermission._id)
}),
),
).thenResolve(undefined)
Use generated service interfaces
2022-03-09 17:43:29 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(mail))
Use generated service interfaces
2022-03-09 17:43:29 +01:00
o(sessionKey).deepEquals(sk)
imported new tutanota client
2017-08-15 13:54:22 +02:00
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o("resolve session key: pq public key decryption of session key.", async function () {
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o.timeout(500) // in CI or with debugging it can take a while
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const recipientTestUser = createTestUser("Bob", entityClient)
configureLoggedInUser(recipientTestUser, userFacade, keyLoaderFacade)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
let pqKeyPairs = await pqFacade.generateKeyPairs()
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
const senderIdentityKeyPair = generateX25519KeyPair()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
// configure test mail
let sk = aes256RandomKey()
let bk = aes256RandomKey()
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mail = createTestEntity(MailTypeRef, {
_permissions: "permissionListId",
_ownerGroup: recipientTestUser.mailGroup._id,
confidential: true,
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const bucket = createBucket({
bucketPermissions: "bucketPermissionListId",
})
const permission = createPermission({
_format: "",
listElementApplication: null,
listElementTypeId: null,
ops: null,
symEncSessionKey: null,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
symKeyVersion: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
_id: ["permissionListId", "permissionId"],
_ownerGroup: recipientTestUser.mailGroup._id,
bucketEncSessionKey: encryptKey(bk, sk),
bucket,
type: PermissionType.Public,
_ownerEncSessionKey: null,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
_ownerKeyVersion: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
_permissions: "p_id",
group: null,
})
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const pubEncBucketKey = await pqFacade.encapsulateAndEncode(
senderIdentityKeyPair,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
generateX25519KeyPair(),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
pqKeyPairsToPublicKeys(pqKeyPairs),
bitArrayToUint8Array(bk),
)
const protocolVersion = CryptoProtocolVersion.RSA
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const bucketPermission = createBucketPermission({
_id: ["bucketPermissionListId", "bucketPermissionId"],
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
_format: "",
_permissions: "",
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
_ownerGroup: recipientTestUser.mailGroup._id,
type: BucketPermissionType.Public,
group: recipientTestUser.userGroup._id,
pubEncBucketKey,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
senderKeyVersion: "0",
ownerEncBucketKey: null,
ownerKeyVersion: null,
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
protocolVersion,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
pubKeyVersion: "0",
symEncBucketKey: null,
symKeyVersion: null,
})
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
when(
asymmetricCryptoFacade.loadKeyPairAndDecryptSymKey(
assertNotNull(bucketPermission.group),
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
parseKeyVersion(bucketPermission.pubKeyVersion!),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
protocolVersion,
pubEncBucketKey,
extend logging for accessing the key pair
2025-03-28 16:56:47 +01:00
anything(),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
),
).thenResolve({ decryptedAesKey: bk, senderIdentityPubKey: senderIdentityKeyPair.publicKey })
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
when(userFacade.createAuthHeaders()).thenReturn({})
Implement PATCH requests and JSON Patch for resources We implement three patch operation types (replace for values and One and ZeroOrOne associations, additem and removeitem for Any associations) on attributes to do PATCH requests instead of doing PUT requests to minimize the request payload by sending only the changed fields. The payload format is specified in the fast-sync design documentation. Co-authored-by: das <das@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: abp <abp@tutao.de>
2025-06-03 12:08:18 +02:00
when(restClient.request(anything(), HttpMethod.PATCH, anything())).thenResolve(undefined)
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
when(entityClient.loadAll(BucketPermissionTypeRef, getListId(bucketPermission))).thenResolve([bucketPermission])
when(entityClient.loadAll(PermissionTypeRef, getListId(permission))).thenResolve([permission])
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(mail))
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o(sessionKey).deepEquals(sk)
})
o("resolve session key: pq public key decryption of session key, fetches correct recipient key version", async function () {
o.timeout(500) // in CI or with debugging it can take a while
const recipientTestUser = createTestUser("Bob", entityClient)
configureLoggedInUser(recipientTestUser, userFacade, keyLoaderFacade)
const pqKeyPairs_v1 = await pqFacade.generateKeyPairs()
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
const senderIdentityKeyPair = generateX25519KeyPair()
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
// configure test mail
const sk = aes256RandomKey()
const bk = aes256RandomKey()
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mail = createTestEntity(MailTypeRef, {
_ownerGroup: recipientTestUser.mailGroup._id,
confidential: true,
_permissions: "permissionListId",
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const bucket = createBucket({
bucketPermissions: "bucketPermissionListId",
})
const permission = createPermission({
_format: "",
listElementApplication: null,
listElementTypeId: null,
ops: null,
symEncSessionKey: null,
symKeyVersion: null,
_id: ["permissionListId", "permissionId"],
_ownerGroup: recipientTestUser.mailGroup._id,
bucketEncSessionKey: encryptKey(bk, sk),
bucket,
type: PermissionType.Public,
_ownerEncSessionKey: null,
_ownerKeyVersion: null,
_permissions: "p_id",
group: null,
})
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const pubEncBucketKey = await pqFacade.encapsulateAndEncode(
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
senderIdentityKeyPair,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
generateX25519KeyPair(),
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
pqKeyPairsToPublicKeys(pqKeyPairs_v1),
bitArrayToUint8Array(bk),
)
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const protocolVersion = CryptoProtocolVersion.RSA
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const bucketPermission = createBucketPermission({
_id: ["bucketPermissionListId", "bucketPermissionId"],
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
_format: "",
_permissions: "",
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
_ownerGroup: recipientTestUser.mailGroup._id,
type: BucketPermissionType.Public,
group: recipientTestUser.userGroup._id,
pubEncBucketKey,
senderKeyVersion: "0",
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
ownerEncBucketKey: null,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
ownerKeyVersion: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
protocolVersion: "0",
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
pubKeyVersion: "1",
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
symEncBucketKey: null,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
symKeyVersion: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
when(
asymmetricCryptoFacade.loadKeyPairAndDecryptSymKey(
assertNotNull(bucketPermission.group),
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
parseKeyVersion(bucketPermission.pubKeyVersion!),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
protocolVersion,
pubEncBucketKey,
extend logging for accessing the key pair
2025-03-28 16:56:47 +01:00
anything(),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
),
).thenResolve({ decryptedAesKey: bk, senderIdentityPubKey: senderIdentityKeyPair.publicKey })
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
when(userFacade.createAuthHeaders()).thenReturn({})
Implement PATCH requests and JSON Patch for resources We implement three patch operation types (replace for values and One and ZeroOrOne associations, additem and removeitem for Any associations) on attributes to do PATCH requests instead of doing PUT requests to minimize the request payload by sending only the changed fields. The payload format is specified in the fast-sync design documentation. Co-authored-by: das <das@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: abp <abp@tutao.de>
2025-06-03 12:08:18 +02:00
when(restClient.request(anything(), HttpMethod.PATCH, anything())).thenResolve(undefined)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
when(entityClient.loadAll(BucketPermissionTypeRef, getListId(bucketPermission))).thenResolve([bucketPermission])
when(entityClient.loadAll(PermissionTypeRef, getListId(permission))).thenResolve([permission])
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(mail))
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o(sessionKey).deepEquals(sk)
})
o("resolve session key: pq public key decryption of session key using bucketKey", async function () {
o.timeout(500) // in CI or with debugging it can take a while
let confidential = true
const recipientTestUser = createTestUser("Bob", entityClient)
configureLoggedInUser(recipientTestUser, userFacade, keyLoaderFacade)
const pqKeyPairs_v1 = await pqFacade.generateKeyPairs()
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
const senderIdentityKeyPair = generateX25519KeyPair()
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
// configure test mail
const sk = aes256RandomKey()
const bk = aes256RandomKey()
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
let mail = createTestEntity(MailTypeRef, {
_id: ["mailListId", "mailId"],
_ownerGroup: recipientTestUser.mailGroup._id,
confidential,
mailDetails: ["mailDetailsArchiveId", "mailDetailsId"],
sender: createTestEntity(MailAddressTypeRef, {
address: senderAddress,
name: "sender name",
}),
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const bucketEncMailSessionKey = encryptKey(bk, sk)
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const pubEncBucketKey = await pqFacade.encapsulateAndEncode(
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
senderIdentityKeyPair,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
generateX25519KeyPair(),
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
pqKeyPairsToPublicKeys(pqKeyPairs_v1),
bitArrayToUint8Array(bk),
)
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
const senderKeyVersion = 1
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
await prepareBucketKeyInstance(
bucketEncMailSessionKey,
[],
bk,
pubEncBucketKey,
recipientTestUser,
mail,
{
object: senderIdentityKeyPair.publicKey,
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
version: senderKeyVersion,
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
},
"1",
protocolVersion,
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
asymmetricCryptoFacade,
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
)
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
when(
asymmetricCryptoFacade.decryptSymKeyWithKeyPair(
{
keyPairType: pqKeyPairs_v1.keyPairType,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
x25519KeyPair: pqKeyPairs_v1.x25519KeyPair,
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
kyberKeyPair: pqKeyPairs_v1.kyberKeyPair,
},
protocolVersion,
pubEncBucketKey,
),
).thenResolve({ decryptedAesKey: bk, senderIdentityPubKey: senderIdentityKeyPair.publicKey })
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
when(userFacade.createAuthHeaders()).thenReturn({})
Implement PATCH requests and JSON Patch for resources We implement three patch operation types (replace for values and One and ZeroOrOne associations, additem and removeitem for Any associations) on attributes to do PATCH requests instead of doing PUT requests to minimize the request payload by sending only the changed fields. The payload format is specified in the fast-sync design documentation. Co-authored-by: das <das@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: abp <abp@tutao.de>
2025-06-03 12:08:18 +02:00
when(restClient.request(anything(), HttpMethod.PATCH, anything())).thenResolve(undefined)
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
when(
asymmetricCryptoFacade.authenticateSender(
{
identifier: senderAddress,
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
},
senderIdentityKeyPair.publicKey,
senderKeyVersion,
),
Implement spam training data sync and add TutanotaModelV98 We sync the spam training data encrypted through our server to make sure that all clients for a specific user behave the same when classifying mails. Additionally, this enables the spam classification in the webApp. We compress the training data vectors (see clientSpamTrainingDatum) before uploading to our server using SparseVectorCompressor.ts. When a user has the ClientSpamClassification enabled, the spam training data sync will happen for every mail received. ClientSpamTrainingDatum are not stored in the CacheStorage. No entityEvents are emitted for this type. However, we retrieve creations and updates for ClientSpamTrainingData through the modifiedClientSpamTrainingDataIndex. We calculate a threshold per classifier based on the dataset ham to spam ratio, we also subsample our training data to cap the ham to spam ratio within a certain limit. Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com>
2025-11-03 18:01:36 +01:00
).thenResolve({
authStatus: EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_SUCCEEDED,
verificationState: PresentableKeyVerificationState.SECURE,
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(mail))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(sessionKey).deepEquals(sk)
})
enforce updating _ownerEncSessionKey for Files if needed #6275 We assumed that _ownerEncSessionKey is written for a File when we download it. This is not always the case as the UpdateSessionKeysService might not have been invoked or the invocation might have failed.
2024-01-31 18:55:21 +01:00
o("enforceSessionKeyUpdateIfNeeded: _ownerEncSessionKey already defined", async function () {
const files = [createTestEntity(FileTypeRef, { _ownerEncSessionKey: new Uint8Array() })]
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mail = createTestEntity(MailTypeRef, { bucketKey: null })
await crypto.enforceSessionKeyUpdateIfNeeded(mail, files)
enforce updating _ownerEncSessionKey for Files if needed #6275 We assumed that _ownerEncSessionKey is written for a File when we download it. This is not always the case as the UpdateSessionKeysService might not have been invoked or the invocation might have failed.
2024-01-31 18:55:21 +01:00
verify(ownerEncSessionKeysUpdateQueue.postUpdateSessionKeysService(anything()), { times: 0 })
verify(cache.deleteFromCacheIfExists(anything(), anything(), anything()), { times: 0 })
})
o("enforceSessionKeyUpdateIfNeeded: _ownerEncSessionKey missing", async function () {
o.timeout(500) // in CI or with debugging it can take a while
const files = [
createTestEntity(FileTypeRef, { _id: ["listId", "1"], _ownerEncSessionKey: new Uint8Array() }),
createTestEntity(FileTypeRef, { _id: ["listId", "2"], _ownerEncSessionKey: null }),
]
const testData = await preparePqPubEncBucketKeyResolveSessionKeyTest()
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const bucketKey = assertNotNull(testData.mail.bucketKey)
enforce updating _ownerEncSessionKey for Files if needed #6275 We assumed that _ownerEncSessionKey is written for a File when we download it. This is not always the case as the UpdateSessionKeysService might not have been invoked or the invocation might have failed.
2024-01-31 18:55:21 +01:00
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
when(
asymmetricCryptoFacade.authenticateSender(
{
identifier: senderAddress,
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
},
testData.senderIdentityKeyPair.publicKey,
anything(),
),
Implement spam training data sync and add TutanotaModelV98 We sync the spam training data encrypted through our server to make sure that all clients for a specific user behave the same when classifying mails. Additionally, this enables the spam classification in the webApp. We compress the training data vectors (see clientSpamTrainingDatum) before uploading to our server using SparseVectorCompressor.ts. When a user has the ClientSpamClassification enabled, the spam training data sync will happen for every mail received. ClientSpamTrainingDatum are not stored in the CacheStorage. No entityEvents are emitted for this type. However, we retrieve creations and updates for ClientSpamTrainingData through the modifiedClientSpamTrainingDataIndex. We calculate a threshold per classifier based on the dataset ham to spam ratio, we also subsample our training data to cap the ham to spam ratio within a certain limit. Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com>
2025-11-03 18:01:36 +01:00
).thenResolve({
authStatus: EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_SUCCEEDED,
verificationState: PresentableKeyVerificationState.SECURE,
})
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
await crypto.enforceSessionKeyUpdateIfNeeded(testData.mail, files)
enforce updating _ownerEncSessionKey for Files if needed #6275 We assumed that _ownerEncSessionKey is written for a File when we download it. This is not always the case as the UpdateSessionKeysService might not have been invoked or the invocation might have failed.
2024-01-31 18:55:21 +01:00
verify(ownerEncSessionKeysUpdateQueue.postUpdateSessionKeysService(anything()), { times: 1 })
verify(cache.deleteFromCacheIfExists(FileTypeRef, "listId", "2"))
})
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
o("encryptBucketKeyForInternalRecipient with existing PQKeys for sender and recipient", async function () {
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
let recipientMailAddress = "bob@tutanota.com"
let senderGroupKey = aes256RandomKey()
let bk = aes256RandomKey()
const recipientKeyPairs = await pqFacade.generateKeyPairs()
const recipientKeyPair = createKeyPair({
_id: "recipientKeyPairId",
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
pubEccKey: recipientKeyPairs.x25519KeyPair.publicKey,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
symEncPrivEccKey: null,
pubKyberKey: kyberPublicKeyToBytes(recipientKeyPairs.kyberKeyPair.publicKey),
symEncPrivKyberKey: null,
pubRsaKey: null,
symEncPrivRsaKey: null,
Adapt to key verification model changes
2025-06-17 14:14:52 +02:00
signature: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
const senderKeyPairs = await pqFacade.generateKeyPairs()
const senderKeyPair = createKeyPair({
_id: "senderKeyPairId",
pubRsaKey: null,
symEncPrivRsaKey: null,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
pubEccKey: senderKeyPairs.x25519KeyPair.publicKey,
symEncPrivEccKey: aesEncrypt(senderGroupKey, senderKeyPairs.x25519KeyPair.privateKey),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
pubKyberKey: kyberPublicKeyToBytes(senderKeyPairs.kyberKeyPair.publicKey),
symEncPrivKyberKey: aesEncrypt(senderGroupKey, kyberPrivateKeyToBytes(senderKeyPairs.kyberKeyPair.privateKey)),
Adapt to key verification model changes
2025-06-17 14:14:52 +02:00
signature: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
const senderUserGroup = createGroup({
_format: "",
_ownerGroup: "",
_permissions: "",
admin: "admin1",
adminGroupEncGKey: null,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
adminGroupKeyVersion: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
archives: [],
customer: "customer1",
enabled: false,
external: false,
groupInfo: ["", ""],
invitations: "",
members: "",
storageCounter: "counter1",
type: "",
user: "user1",
_id: "userGroupId",
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
currentKeys: senderKeyPair,
groupKeyVersion: "0",
Change cardinality of keyRotations and formerKeysList to One We ran a migration batchjob to populate those fields, and they are also populated on account creation. tuta#2043
2025-04-10 13:44:34 +02:00
formerGroupKeys: createTestEntity(GroupKeysRefTypeRef),
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
pubAdminGroupEncGKey: null,
Adapt to key verification model changes
2025-06-17 14:14:52 +02:00
identityKeyPair: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const notFoundRecipients = []
Mark suddenly unverified recipients after hitting "send" For recipients that have been displayed as verified in the mail editor and lose the status before sending, the verification shield icon will be replaced by a failure icon. Co-authored-by: mab <mab@tutao.de>
2025-03-25 15:35:51 +01:00
const keyVerificationMismatchRecipients = []
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const pqEncapsulation: PQBucketKeyEncapsulation = {
kyberCipherText: new Uint8Array([1]),
kekEncBucketKey: new Uint8Array([2]),
}
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const encodedPqMessage: Uint8Array = encodePQMessage({
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
senderIdentityPubKey: senderKeyPair.pubEccKey!,
ephemeralPubKey: senderKeyPair.pubEccKey!,
encapsulation: pqEncapsulation,
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
const recipientPublicKeys: Versioned<PQPublicKeys> = {
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
version: 0,
object: {
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
keyPairType: KeyPairType.TUTA_CRYPT,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
x25519PublicKey: recipientKeyPair.pubEccKey!,
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
kyberPublicKey: {
raw: recipientKeyPair.pubKyberKey!,
},
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
},
}
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
const loadedPublicKey: VerifiedPublicEncryptionKey = {
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
publicEncryptionKey: recipientPublicKeys,
verificationState: EncryptionKeyVerificationState.NO_ENTRY,
}
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
when(publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey(anything())).thenResolve(loadedPublicKey)
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
when(asymmetricCryptoFacade.asymEncryptSymKey(bk, recipientPublicKeys, senderUserGroup._id)).thenResolve({
recipientKeyVersion: recipientPublicKeys.version,
senderKeyVersion: parseKeyVersion(senderUserGroup.groupKeyVersion),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
pubEncSymKeyBytes: encodedPqMessage,
cryptoProtocolVersion: CryptoProtocolVersion.TUTA_CRYPT,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
const internalRecipientKeyData = (await crypto.encryptBucketKeyForInternalRecipient(
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
senderUserGroup._id,
bk,
recipientMailAddress,
notFoundRecipients,
Mark suddenly unverified recipients after hitting "send" For recipients that have been displayed as verified in the mail editor and lose the status before sending, the verification shield icon will be replaced by a failure icon. Co-authored-by: mab <mab@tutao.de>
2025-03-25 15:35:51 +01:00
keyVerificationMismatchRecipients,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
)) as InternalRecipientKeyData
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o(internalRecipientKeyData!.recipientKeyVersion).equals("0")
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
o(internalRecipientKeyData.protocolVersion).equals(CryptoProtocolVersion.TUTA_CRYPT)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(internalRecipientKeyData!.mailAddress).equals(recipientMailAddress)
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
o(internalRecipientKeyData!.pubEncBucketKey).deepEquals(encodedPqMessage)
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
verify(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: recipientMailAddress,
}),
{ times: 1 },
)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
o("encryptBucketKeyForInternalRecipient with existing PQKeys for sender", async () => {
let recipientMailAddress = "bob@tutanota.com"
let bk = aes256RandomKey()
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
let senderMailAddress = "alice@tutanota.com"
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
const senderKeyPair: KeyPair = object()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const senderUserGroup = createGroup({
_id: "userGroupId",
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
currentKeys: senderKeyPair,
groupKeyVersion: "0",
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
_permissions: "",
admin: null,
adminGroupEncGKey: null,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
adminGroupKeyVersion: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
archives: [],
customer: null,
enabled: false,
external: false,
groupInfo: ["", ""],
invitations: "",
members: "",
storageCounter: null,
type: "",
user: null,
Change cardinality of keyRotations and formerKeysList to One We ran a migration batchjob to populate those fields, and they are also populated on account creation. tuta#2043
2025-04-10 13:44:34 +02:00
formerGroupKeys: createTestEntity(GroupKeysRefTypeRef),
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
pubAdminGroupEncGKey: null,
Adapt to key verification model changes
2025-06-17 14:14:52 +02:00
identityKeyPair: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const notFoundRecipients = []
Mark suddenly unverified recipients after hitting "send" For recipients that have been displayed as verified in the mail editor and lose the status before sending, the verification shield icon will be replaced by a failure icon. Co-authored-by: mab <mab@tutao.de>
2025-03-25 15:35:51 +01:00
const keyVerificationMismatchRecipients = []
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
const recipientPublicKeys: Versioned<RsaPublicKey> = {
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
version: 0,
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
object: object(),
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
}
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
const loadedRecipientPublicKey: VerifiedPublicEncryptionKey = {
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
publicEncryptionKey: recipientPublicKeys,
verificationState: EncryptionKeyVerificationState.NO_ENTRY,
}
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
when(publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey(anything())).thenResolve(loadedRecipientPublicKey)
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
const senderPublicKeys: Versioned<PQPublicKeys> = {
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
version: 0,
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
object: object(),
}
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
const loadedSenderPublicKey: VerifiedPublicEncryptionKey = {
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
publicEncryptionKey: senderPublicKeys,
verificationState: EncryptionKeyVerificationState.NO_ENTRY,
}
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
when(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: senderMailAddress,
}),
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
).thenResolve(loadedSenderPublicKey)
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const pubEncBucketKey = object<Uint8Array>()
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
when(asymmetricCryptoFacade.asymEncryptSymKey(bk, recipientPublicKeys, senderUserGroup._id)).thenResolve({
recipientKeyVersion: recipientPublicKeys.version,
senderKeyVersion: parseKeyVersion(senderUserGroup.groupKeyVersion),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
pubEncSymKeyBytes: pubEncBucketKey,
cryptoProtocolVersion: CryptoProtocolVersion.RSA,
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
const internalRecipientKeyData = (await crypto.encryptBucketKeyForInternalRecipient(
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
senderUserGroup._id,
bk,
recipientMailAddress,
notFoundRecipients,
Mark suddenly unverified recipients after hitting "send" For recipients that have been displayed as verified in the mail editor and lose the status before sending, the verification shield icon will be replaced by a failure icon. Co-authored-by: mab <mab@tutao.de>
2025-03-25 15:35:51 +01:00
keyVerificationMismatchRecipients,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
)) as InternalRecipientKeyData
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
o(internalRecipientKeyData!.recipientKeyVersion).equals("0")
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(internalRecipientKeyData!.mailAddress).equals(recipientMailAddress)
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
o(internalRecipientKeyData.protocolVersion).equals(CryptoProtocolVersion.RSA)
o(internalRecipientKeyData.pubEncBucketKey).deepEquals(pubEncBucketKey)
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
verify(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: recipientMailAddress,
}),
{ times: 1 },
)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
Mark suddenly unverified recipients after hitting "send" For recipients that have been displayed as verified in the mail editor and lose the status before sending, the verification shield icon will be replaced by a failure icon. Co-authored-by: mab <mab@tutao.de>
2025-03-25 15:35:51 +01:00
o("encryptBucketKeyForInternalRecipient for non-existing recipients", async function () {
let notFoundRecipientMailAddress = "notfound@tutanota.com"
let bk = aes256RandomKey()
const notFoundRecipients: string[] = []
const keyVerificationMismatchRecipients: string[] = []
when(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Mark suddenly unverified recipients after hitting "send" For recipients that have been displayed as verified in the mail editor and lose the status before sending, the verification shield icon will be replaced by a failure icon. Co-authored-by: mab <mab@tutao.de>
2025-03-25 15:35:51 +01:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: notFoundRecipientMailAddress,
}),
).thenReject(new NotFoundError(""))
await crypto.encryptBucketKeyForInternalRecipient(
"senderGroupId",
bk,
notFoundRecipientMailAddress,
notFoundRecipients,
keyVerificationMismatchRecipients,
)
o(notFoundRecipients).deepEquals(["notfound@tutanota.com"])
o(keyVerificationMismatchRecipients).deepEquals([])
verify(userFacade.getUser(), { times: 0 })
})
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
o("encryptBucketKeyForInternalRecipient with non-existing recipients", async function () {
let notFoundRecipient1MailAddress = "notfound1@tutanota.com"
let notFoundRecipient2MailAddress = "notfound2@tutanota.com"
const validRecipientMailAddress = "alice@tuta.com"
let bk = aes256RandomKey()
const notFoundRecipients: string[] = []
const mismatchRecipients: string[] = []
const recipientPublicKey: Versioned<PQPublicKeys> = {
version: 0,
object: object(),
}
recipientPublicKey.object.keyPairType = KeyPairType.TUTA_CRYPT
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
const loadedRecipientPublicKey: VerifiedPublicEncryptionKey = {
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
publicEncryptionKey: recipientPublicKey,
verificationState: EncryptionKeyVerificationState.NO_ENTRY,
}
when(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: validRecipientMailAddress,
}),
).thenResolve(loadedRecipientPublicKey)
when(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: notFoundRecipient1MailAddress,
}),
).thenReject(new NotFoundError(""))
when(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: notFoundRecipient2MailAddress,
}),
).thenReject(new NotFoundError(""))
await crypto.encryptBucketKeyForInternalRecipient("senderGroupId", bk, notFoundRecipient1MailAddress, notFoundRecipients, mismatchRecipients)
await crypto.encryptBucketKeyForInternalRecipient("senderGroupId", bk, validRecipientMailAddress, notFoundRecipients, mismatchRecipients)
await crypto.encryptBucketKeyForInternalRecipient("senderGroupId", bk, notFoundRecipient2MailAddress, notFoundRecipients, mismatchRecipients)
o(notFoundRecipients).deepEquals([notFoundRecipient1MailAddress, notFoundRecipient2MailAddress])
o(mismatchRecipients).deepEquals([])
verify(userFacade.getUser(), { times: 0 })
})
Mark suddenly unverified recipients after hitting "send" For recipients that have been displayed as verified in the mail editor and lose the status before sending, the verification shield icon will be replaced by a failure icon. Co-authored-by: mab <mab@tutao.de>
2025-03-25 15:35:51 +01:00
o("encryptBucketKeyForInternalRecipient for verification-failing recipients", async function () {
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
let mismatchRecipient1MailAddress = "mismatch1@tutanota.com"
let mismatchRecipient2MailAddress = "mismatch2@tutanota.com"
const validRecipientMailAddress = "alice@tuta.com"
let bk = aes256RandomKey()
const notFoundRecipients: string[] = []
const mismatchRecipients: string[] = []
const recipientPublicKey: Versioned<PQPublicKeys> = {
version: 0,
object: object(),
}
recipientPublicKey.object.keyPairType = KeyPairType.TUTA_CRYPT
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
const loadedRecipientPublicKey: VerifiedPublicEncryptionKey = {
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
publicEncryptionKey: recipientPublicKey,
verificationState: EncryptionKeyVerificationState.NO_ENTRY,
}
when(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: validRecipientMailAddress,
}),
).thenResolve(loadedRecipientPublicKey)
when(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: mismatchRecipient1MailAddress,
}),
).thenReject(new KeyVerificationMismatchError(""))
when(
Refactor key verification * split PublicKeyProvider into PublicIdentityKeyProvider and PublicEncryptionKeyProvider * move database queries to new IdentityKeyTrustDatabase * only have one function loading public identity key and directly load from server if not in trust db (and add to trust db in this case) in PublicIdentityKeyProvider * KeyVerificationFacade.verify() only needs to be called once to get a valid verification state * introduce Not_Supported as source of trust (for web client) * introduce Not_Supported verification state (e.g. for web client and when loading via group id) * and handle Not_Supported verification state in the RecipientsModel (presentable state is none because verification was not available)
2025-06-05 17:07:31 +02:00
publicEncryptionKeyProvider.loadCurrentPublicEncryptionKey({
Run key verification when loading public keys, including TOFU Whenever we request a public encryption key from the server we now verify them with trusted identity keys. Co-authored-by: mab <mab@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com>
2025-05-23 16:45:41 +02:00
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
identifier: mismatchRecipient2MailAddress,
}),
).thenReject(new KeyVerificationMismatchError(""))
await crypto.encryptBucketKeyForInternalRecipient("senderGroupId", bk, mismatchRecipient1MailAddress, notFoundRecipients, mismatchRecipients)
await crypto.encryptBucketKeyForInternalRecipient("senderGroupId", bk, validRecipientMailAddress, notFoundRecipients, mismatchRecipients)
await crypto.encryptBucketKeyForInternalRecipient("senderGroupId", bk, mismatchRecipient2MailAddress, notFoundRecipients, mismatchRecipients)
o(notFoundRecipients).deepEquals([])
o(mismatchRecipients).deepEquals([mismatchRecipient1MailAddress, mismatchRecipient2MailAddress])
verify(userFacade.getUser(), { times: 0 })
Mark suddenly unverified recipients after hitting "send" For recipients that have been displayed as verified in the mail editor and lose the status before sending, the verification shield icon will be replaced by a failure icon. Co-authored-by: mab <mab@tutao.de>
2025-03-25 15:35:51 +01:00
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o("authenticateSender | sender is authenticated for correct SenderIdentityKey", async function () {
o.timeout(500) // in CI or with debugging it can take a while
const testData = await preparePqPubEncBucketKeyResolveSessionKeyTest()
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
const senderKeyVersion = "0"
when(
asymmetricCryptoFacade.authenticateSender(
{
identifier: senderAddress,
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
},
testData.senderIdentityKeyPair.publicKey,
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
parseKeyVersion(senderKeyVersion),
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
),
Implement spam training data sync and add TutanotaModelV98 We sync the spam training data encrypted through our server to make sure that all clients for a specific user behave the same when classifying mails. Additionally, this enables the spam classification in the webApp. We compress the training data vectors (see clientSpamTrainingDatum) before uploading to our server using SparseVectorCompressor.ts. When a user has the ClientSpamClassification enabled, the spam training data sync will happen for every mail received. ClientSpamTrainingDatum are not stored in the CacheStorage. No entityEvents are emitted for this type. However, we retrieve creations and updates for ClientSpamTrainingData through the modifiedClientSpamTrainingDataIndex. We calculate a threshold per classifier based on the dataset ham to spam ratio, we also subsample our training data to cap the ham to spam ratio within a certain limit. Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com>
2025-11-03 18:01:36 +01:00
).thenResolve({
authStatus: EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_SUCCEEDED,
verificationState: PresentableKeyVerificationState.SECURE,
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey: AesKey = neverNull(await crypto.resolveSessionKey(testData.mail))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(sessionKey).deepEquals(testData.sk)
const updatedInstanceSessionKeysCaptor = captor()
process shared group key rotation, handle group key updates as member of a shared group rotated by the owner, tutadb#1793
2024-06-10 14:05:35 +02:00
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value as Array<InstanceSessionKey>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o(updatedInstanceSessionKeys.length).equals(testData.mail.bucketKey!.bucketEncSessionKeys.length)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const mailInstanceSessionKey = updatedInstanceSessionKeys.find((instanceSessionKey) =>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
isSameId([instanceSessionKey.instanceList, instanceSessionKey.instanceId], testData.mail._id),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
)
const actualAutStatus = utf8Uint8ArrayToString(aesDecrypt(testData.sk, neverNull(mailInstanceSessionKey).encryptionAuthStatus!))
Show pq padlock symbol for sent mail, tutadb 1788 (#6699) * Show pq padlock symbol for sent mail, tutadb 1788 To show the pq padlock symbol for the sender we introduced another enum value for the encryptionAuthStatus on Mail instances which is only set for the sent mail. It is only set in case the mail is confidential and all recipients support the TutaCrypt protocol. * clean up outdated invitations from offlince cache see the fix for tutadb#1800 --------- Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: vaf <vaf@tutao.de>
2024-05-06 11:08:05 +02:00
o(actualAutStatus).deepEquals(EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_SUCCEEDED)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
o("authenticateSender | sender is authenticated for correct SenderIdentityKey from system@tutanota.de", async function () {
o.timeout(500) // in CI or with debugging it can take a while
const testData = await preparePqPubEncBucketKeyResolveSessionKeyTest([], false)
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
const senderKeyVersion = "0"
const senderIdentifier = "system@tutanota.de"
when(
asymmetricCryptoFacade.authenticateSender(
{
identifier: senderIdentifier,
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
},
testData.senderIdentityKeyPair.publicKey,
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
parseKeyVersion(senderKeyVersion),
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
),
Implement spam training data sync and add TutanotaModelV98 We sync the spam training data encrypted through our server to make sure that all clients for a specific user behave the same when classifying mails. Additionally, this enables the spam classification in the webApp. We compress the training data vectors (see clientSpamTrainingDatum) before uploading to our server using SparseVectorCompressor.ts. When a user has the ClientSpamClassification enabled, the spam training data sync will happen for every mail received. ClientSpamTrainingDatum are not stored in the CacheStorage. No entityEvents are emitted for this type. However, we retrieve creations and updates for ClientSpamTrainingData through the modifiedClientSpamTrainingDataIndex. We calculate a threshold per classifier based on the dataset ham to spam ratio, we also subsample our training data to cap the ham to spam ratio within a certain limit. Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com>
2025-11-03 18:01:36 +01:00
).thenResolve({
authStatus: EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_SUCCEEDED,
verificationState: PresentableKeyVerificationState.SECURE,
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey: AesKey = neverNull(await crypto.resolveSessionKey(testData.mail))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(sessionKey).deepEquals(testData.sk)
const updatedInstanceSessionKeysCaptor = captor()
process shared group key rotation, handle group key updates as member of a shared group rotated by the owner, tutadb#1793
2024-06-10 14:05:35 +02:00
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value as Array<InstanceSessionKey>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o(updatedInstanceSessionKeys.length).equals(testData.mail.bucketKey!.bucketEncSessionKeys.length)
const mailInstanceSessionKey = assertNotNull(
updatedInstanceSessionKeys.find((instanceSessionKey) =>
isSameId([instanceSessionKey.instanceList, instanceSessionKey.instanceId], testData.mail._id),
),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
)
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const actualAutStatus = utf8Uint8ArrayToString(aesDecrypt(testData.sk, mailInstanceSessionKey.encryptionAuthStatus!))
Show pq padlock symbol for sent mail, tutadb 1788 (#6699) * Show pq padlock symbol for sent mail, tutadb 1788 To show the pq padlock symbol for the sender we introduced another enum value for the encryptionAuthStatus on Mail instances which is only set for the sent mail. It is only set in case the mail is confidential and all recipients support the TutaCrypt protocol. * clean up outdated invitations from offlince cache see the fix for tutadb#1800 --------- Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: vaf <vaf@tutao.de>
2024-05-06 11:08:05 +02:00
o(actualAutStatus).deepEquals(EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_SUCCEEDED)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
o("authenticateSender | sender is not authenticated for incorrect SenderIdentityKey", async function () {
o.timeout(500) // in CI or with debugging it can take a while
const testData = await preparePqPubEncBucketKeyResolveSessionKeyTest()
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
const senderKeyVersion = "0"
when(
asymmetricCryptoFacade.authenticateSender(
{
identifier: senderAddress,
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
},
testData.senderIdentityKeyPair.publicKey,
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
parseKeyVersion(senderKeyVersion),
Add authentication when decrypting group key via pubAdminEncGKey
2024-09-16 11:21:45 +02:00
),
Implement spam training data sync and add TutanotaModelV98 We sync the spam training data encrypted through our server to make sure that all clients for a specific user behave the same when classifying mails. Additionally, this enables the spam classification in the webApp. We compress the training data vectors (see clientSpamTrainingDatum) before uploading to our server using SparseVectorCompressor.ts. When a user has the ClientSpamClassification enabled, the spam training data sync will happen for every mail received. ClientSpamTrainingDatum are not stored in the CacheStorage. No entityEvents are emitted for this type. However, we retrieve creations and updates for ClientSpamTrainingData through the modifiedClientSpamTrainingDataIndex. We calculate a threshold per classifier based on the dataset ham to spam ratio, we also subsample our training data to cap the ham to spam ratio within a certain limit. Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com>
2025-11-03 18:01:36 +01:00
).thenResolve({
authStatus: EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_FAILED,
verificationState: PresentableKeyVerificationState.ALERT,
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(testData.mail))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(sessionKey).deepEquals(testData.sk)
const updatedInstanceSessionKeysCaptor = captor()
process shared group key rotation, handle group key updates as member of a shared group rotated by the owner, tutadb#1793
2024-06-10 14:05:35 +02:00
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value as Array<InstanceSessionKey>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o(updatedInstanceSessionKeys.length).equals(testData.mail.bucketKey!.bucketEncSessionKeys.length)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const mailInstanceSessionKey = updatedInstanceSessionKeys.find((instanceSessionKey) =>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
isSameId([instanceSessionKey.instanceList, instanceSessionKey.instanceId], testData.mail._id),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
)
const actualAutStatus = utf8Uint8ArrayToString(aesDecrypt(testData.sk, neverNull(mailInstanceSessionKey).encryptionAuthStatus!))
Show pq padlock symbol for sent mail, tutadb 1788 (#6699) * Show pq padlock symbol for sent mail, tutadb 1788 To show the pq padlock symbol for the sender we introduced another enum value for the encryptionAuthStatus on Mail instances which is only set for the sent mail. It is only set in case the mail is confidential and all recipients support the TutaCrypt protocol. * clean up outdated invitations from offlince cache see the fix for tutadb#1800 --------- Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: vaf <vaf@tutao.de>
2024-05-06 11:08:05 +02:00
o(actualAutStatus).deepEquals(EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_FAILED)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
o("authenticateSender | no authentication needed for sender with RSAKeypair", async function () {
o.timeout(500) // in CI or with debugging it can take a while
const testData = await prepareRsaPubEncBucketKeyResolveSessionKeyTest()
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = assertNotNull(await crypto.resolveSessionKey(testData.mail))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(sessionKey).deepEquals(testData.sk)
const updatedInstanceSessionKeysCaptor = captor()
process shared group key rotation, handle group key updates as member of a shared group rotated by the owner, tutadb#1793
2024-06-10 14:05:35 +02:00
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()), { times: 1 })
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value as Array<InstanceSessionKey>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o(updatedInstanceSessionKeys.length).equals(testData.mail.bucketKey!.bucketEncSessionKeys.length)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const mailInstanceSessionKey = updatedInstanceSessionKeys.find((instanceSessionKey) =>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
isSameId([instanceSessionKey.instanceList, instanceSessionKey.instanceId], testData.mail._id),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
)
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const actualAuthStatus = utf8Uint8ArrayToString(aesDecrypt(testData.sk, assertNotNull(mailInstanceSessionKey).encryptionAuthStatus!))
o(actualAuthStatus).deepEquals(EncryptionAuthStatus.RSA_NO_AUTHENTICATION)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
o("authenticateSender | RSA was used despite recipient having tutacrypt", async function () {
o.timeout(500) // in CI or with debugging it can take a while
const testData = await prepareRsaPubEncBucketKeyResolveSessionKeyTest()
when(keyLoaderFacade.loadCurrentKeyPair(anything())).thenResolve({
version: 1,
object: {
keyPairType: KeyPairType.TUTA_CRYPT,
kyberKeyPair: object(),
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
x25519KeyPair: object(),
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
},
})
when(keyRotationFacade.getGroupIdsThatPerformedKeyRotations()).thenResolve([])
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(testData.mail))
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
o(sessionKey).deepEquals(testData.sk)
const updatedInstanceSessionKeysCaptor = captor()
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()), { times: 1 })
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value as Array<InstanceSessionKey>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o(updatedInstanceSessionKeys.length).equals(testData.mail.bucketKey!.bucketEncSessionKeys.length)
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
const mailInstanceSessionKey = updatedInstanceSessionKeys.find((instanceSessionKey) =>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
isSameId([instanceSessionKey.instanceList, instanceSessionKey.instanceId], testData.mail._id),
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
)
const actualAutStatus = utf8Uint8ArrayToString(aesDecrypt(testData.sk, neverNull(mailInstanceSessionKey).encryptionAuthStatus!))
o(actualAutStatus).deepEquals(EncryptionAuthStatus.RSA_DESPITE_TUTACRYPT)
})
o("authenticateSender | RSA was used right after a key rotation", async function () {
o.timeout(500) // in CI or with debugging it can take a while
const testData = await prepareRsaPubEncBucketKeyResolveSessionKeyTest()
when(keyLoaderFacade.loadCurrentKeyPair(anything())).thenResolve({
version: 1,
object: {
keyPairType: KeyPairType.TUTA_CRYPT,
kyberKeyPair: object(),
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
x25519KeyPair: object(),
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
},
})
when(keyRotationFacade.getGroupIdsThatPerformedKeyRotations()).thenResolve([testData.userGroupId])
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(testData.mail))
const bucketKey = assertNotNull(testData.mail.bucketKey)
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
o(sessionKey).deepEquals(testData.sk)
const updatedInstanceSessionKeysCaptor = captor()
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()), { times: 1 })
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value as Array<InstanceSessionKey>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o(updatedInstanceSessionKeys.length).equals(bucketKey.bucketEncSessionKeys.length)
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
const mailInstanceSessionKey = updatedInstanceSessionKeys.find((instanceSessionKey) =>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
isSameId([instanceSessionKey.instanceList, instanceSessionKey.instanceId], testData.mail._id),
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
)
const actualAutStatus = utf8Uint8ArrayToString(aesDecrypt(testData.sk, neverNull(mailInstanceSessionKey).encryptionAuthStatus!))
o(actualAutStatus).deepEquals(EncryptionAuthStatus.RSA_NO_AUTHENTICATION)
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o("authenticateSender | no authentication needed for secure external recipient", async function () {
o.timeout(500) // in CI or with debugging it can take a while
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const file1SessionKey = aes256RandomKey()
const file2SessionKey = aes256RandomKey()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const testData = await prepareConfidentialMailToExternalRecipient([file1SessionKey, file2SessionKey])
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailSessionKey = neverNull(await crypto.resolveSessionKey(testData.entityAdapter))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(mailSessionKey).deepEquals(testData.sk)
const updatedInstanceSessionKeysCaptor = captor()
process shared group key rotation, handle group key updates as member of a shared group rotated by the owner, tutadb#1793
2024-06-10 14:05:35 +02:00
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()), { times: 1 })
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value as Array<InstanceSessionKey>
o(updatedInstanceSessionKeys.length).equals(testData.bucketKey.bucketEncSessionKeys.length)
const mailInstanceSessionKey = updatedInstanceSessionKeys.find((instanceSessionKey) =>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
isSameId([instanceSessionKey.instanceList, instanceSessionKey.instanceId], testData.entityAdapter._id),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
)
const actualAutStatus = utf8Uint8ArrayToString(aesDecrypt(testData.sk, neverNull(mailInstanceSessionKey).encryptionAuthStatus!))
o(actualAutStatus).deepEquals(EncryptionAuthStatus.AES_NO_AUTHENTICATION)
})
o("authenticateSender | no authentication needed for secure external sender", async function () {
//o.timeout(500) // in CI or with debugging it can take a while
const testData = await prepareConfidentialReplyFromExternalUser()
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const externalUser = testData.externalUser
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailSessionKey = neverNull(await crypto.resolveSessionKey(testData.entityAdapter))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(mailSessionKey).deepEquals(testData.sk)
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const mailCaptor = matchers.captor()
const userCaptor = matchers.captor()
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
verify(keyLoaderFacade.loadSymGroupKey(externalUser.userGroup._id, parseKeyVersion(externalUser.mailGroup.adminGroupKeyVersion!), userCaptor.capture()))
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
verify(keyLoaderFacade.loadSymGroupKey(externalUser.mailGroup._id, testData.recipientKeyVersion, mailCaptor.capture()))
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
o(userCaptor.value.version).equals(parseKeyVersion(externalUser.userGroup.groupKeyVersion))
o(mailCaptor.value.version).equals(parseKeyVersion(externalUser.mailGroup.groupKeyVersion))
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeysCaptor = captor()
process shared group key rotation, handle group key updates as member of a shared group rotated by the owner, tutadb#1793
2024-06-10 14:05:35 +02:00
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()), { times: 1 })
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value as Array<InstanceSessionKey>
o(updatedInstanceSessionKeys.length).equals(testData.bucketKey.bucketEncSessionKeys.length)
const mailInstanceSessionKey = updatedInstanceSessionKeys.find((instanceSessionKey) =>
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
isSameId([instanceSessionKey.instanceList, instanceSessionKey.instanceId], testData.entityAdapter._id),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
)
const actualAutStatus = utf8Uint8ArrayToString(aesDecrypt(testData.sk, neverNull(mailInstanceSessionKey).encryptionAuthStatus!))
o(actualAutStatus).deepEquals(EncryptionAuthStatus.AES_NO_AUTHENTICATION)
})
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o("resolve session key: rsa public key decryption of session key using BucketKey aggregated type", async function () {
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o.timeout(500) // in CI or with debugging it can take a while
const testData = await prepareRsaPubEncBucketKeyResolveSessionKeyTest()
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(testData.mail))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(sessionKey).deepEquals(testData.sk)
})
o(
"resolve session key: rsa public key decryption of mail session key using BucketKey aggregated type - already decoded/decrypted Mail referencing MailDetailsDraft",
async function () {
fixes after Willow's review
2023-01-12 16:48:28 +01:00
o.timeout(500) // in CI or with debugging it can take a while
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const testData = await prepareRsaPubEncBucketKeyResolveSessionKeyTest()
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
// do not use testdouble here because it's hard to not break the function itself and then verify invocations
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const decryptAndMapToInstance = (instancePipeline.cryptoMapper.decryptParsedInstance = spy(instancePipeline.cryptoMapper.decryptParsedInstance))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(testData.mail))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(decryptAndMapToInstance.invocations.length).equals(0)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
fixes after Willow's review
2023-01-12 16:48:28 +01:00
o(sessionKey).deepEquals(testData.sk)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
},
)
o("resolve session key: rsa public key decryption of session key using BucketKey aggregated type - Mail referencing MailDetailsBlob", async function () {
o.timeout(500) // in CI or with debugging it can take a while
const testData = await prepareRsaPubEncBucketKeyResolveSessionKeyTest()
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(testData.mail))
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(sessionKey).deepEquals(testData.sk)
})
o(
"resolve session key: rsa public key decryption of session key using BucketKey aggregated type - Mail referencing MailDetailsBlob with attachments",
async function () {
fixes after Willow's review
2023-01-12 16:48:28 +01:00
o.timeout(500) // in CI or with debugging it can take a while
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const file1SessionKey = aes256RandomKey()
const file2SessionKey = aes256RandomKey()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const testData = await prepareRsaPubEncBucketKeyResolveSessionKeyTest([file1SessionKey, file2SessionKey])
fixes after Willow's review
2023-01-12 16:48:28 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailSessionKey = assertNotNull(await crypto.resolveSessionKey(testData.mail))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(mailSessionKey).deepEquals(testData.sk)
fixes after Willow's review
2023-01-12 16:48:28 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const bucketKey = assertNotNull(testData.mail.bucketKey)
o(bucketKey.bucketEncSessionKeys.length).equals(3) //mail, file1, file2
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeysCaptor = captor()
process shared group key rotation, handle group key updates as member of a shared group rotated by the owner, tutadb#1793
2024-06-10 14:05:35 +02:00
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o(updatedInstanceSessionKeys.length).equals(bucketKey.bucketEncSessionKeys.length)
for (const isk of bucketKey.bucketEncSessionKeys) {
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const expectedSessionKey = decryptKey(testData.bk, isk.symEncSessionKey)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
updatedInstanceSessionKeys.some((updatedKey) => {
let updatedSessionKey = decryptKey(testData.mailGroupKey, updatedKey.symEncSessionKey)
return (
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
updatedKey.instanceId === isk.instanceId &&
updatedKey.instanceList === isk.instanceList &&
updatedKey.typeInfo.application === isk.typeInfo.application &&
updatedKey.typeInfo.typeId === isk.typeInfo.typeId &&
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
arrayEquals(updatedSessionKey, expectedSessionKey)
)
}),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
).equals(true)
}
},
)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
// ------------
fixes after Willow's review
2023-01-12 16:48:28 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o("resolve session key: pq public key decryption of mail session key using BucketKey aggregated type - Mail", async function () {
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o.timeout(500) // in CI or with debugging it can take a while
const testData = await preparePqPubEncBucketKeyResolveSessionKeyTest()
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
when(
asymmetricCryptoFacade.authenticateSender(
{
identifier: senderAddress,
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
},
anything(),
anything(),
),
Implement spam training data sync and add TutanotaModelV98 We sync the spam training data encrypted through our server to make sure that all clients for a specific user behave the same when classifying mails. Additionally, this enables the spam classification in the webApp. We compress the training data vectors (see clientSpamTrainingDatum) before uploading to our server using SparseVectorCompressor.ts. When a user has the ClientSpamClassification enabled, the spam training data sync will happen for every mail received. ClientSpamTrainingDatum are not stored in the CacheStorage. No entityEvents are emitted for this type. However, we retrieve creations and updates for ClientSpamTrainingData through the modifiedClientSpamTrainingDataIndex. We calculate a threshold per classifier based on the dataset ham to spam ratio, we also subsample our training data to cap the ham to spam ratio within a certain limit. Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com>
2025-11-03 18:01:36 +01:00
).thenResolve({
authStatus: EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_SUCCEEDED,
verificationState: PresentableKeyVerificationState.SECURE,
})
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(testData.mail))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(sessionKey).deepEquals(testData.sk)
})
o(
"resolve session key: pq public key decryption of mail session key using BucketKey aggregated type - already decoded/decrypted Mail referencing MailDetailsDraft",
async function () {
fixes after Willow's review
2023-01-12 16:48:28 +01:00
o.timeout(500) // in CI or with debugging it can take a while
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const testData = await preparePqPubEncBucketKeyResolveSessionKeyTest()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
when(
asymmetricCryptoFacade.authenticateSender(
{
identifier: senderAddress,
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
},
anything(),
anything(),
),
Implement spam training data sync and add TutanotaModelV98 We sync the spam training data encrypted through our server to make sure that all clients for a specific user behave the same when classifying mails. Additionally, this enables the spam classification in the webApp. We compress the training data vectors (see clientSpamTrainingDatum) before uploading to our server using SparseVectorCompressor.ts. When a user has the ClientSpamClassification enabled, the spam training data sync will happen for every mail received. ClientSpamTrainingDatum are not stored in the CacheStorage. No entityEvents are emitted for this type. However, we retrieve creations and updates for ClientSpamTrainingData through the modifiedClientSpamTrainingDataIndex. We calculate a threshold per classifier based on the dataset ham to spam ratio, we also subsample our training data to cap the ham to spam ratio within a certain limit. Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com>
2025-11-03 18:01:36 +01:00
).thenResolve({
authStatus: EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_SUCCEEDED,
verificationState: PresentableKeyVerificationState.SECURE,
})
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
// do not use testdouble here because it's hard to not break the function itself and then verify invocations
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const decryptAndMapToInstance = (instancePipeline.cryptoMapper.decryptParsedInstance = spy(instancePipeline.cryptoMapper.decryptParsedInstance))
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const sessionKey = neverNull(await crypto.resolveSessionKey(testData.mail))
o(decryptAndMapToInstance.invocations.length).equals(0)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
fixes after Willow's review
2023-01-12 16:48:28 +01:00
o(sessionKey).deepEquals(testData.sk)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
},
)
Use generated service interfaces
2022-03-09 17:43:29 +01:00
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
o(
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
"resolve session key: pq public key decryption of session key using BucketKey aggregated type - Mail referencing MailDetailsBlob with attachments",
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
async function () {
o.timeout(500) // in CI or with debugging it can take a while
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const file1SessionKey = aes256RandomKey()
const file2SessionKey = aes256RandomKey()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const testData = await preparePqPubEncBucketKeyResolveSessionKeyTest([file1SessionKey, file2SessionKey])
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
when(
asymmetricCryptoFacade.authenticateSender(
{
identifier: senderAddress,
identifierType: PublicKeyIdentifierType.MAIL_ADDRESS,
},
anything(),
anything(),
),
Implement spam training data sync and add TutanotaModelV98 We sync the spam training data encrypted through our server to make sure that all clients for a specific user behave the same when classifying mails. Additionally, this enables the spam classification in the webApp. We compress the training data vectors (see clientSpamTrainingDatum) before uploading to our server using SparseVectorCompressor.ts. When a user has the ClientSpamClassification enabled, the spam training data sync will happen for every mail received. ClientSpamTrainingDatum are not stored in the CacheStorage. No entityEvents are emitted for this type. However, we retrieve creations and updates for ClientSpamTrainingData through the modifiedClientSpamTrainingDataIndex. We calculate a threshold per classifier based on the dataset ham to spam ratio, we also subsample our training data to cap the ham to spam ratio within a certain limit. Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com>
2025-11-03 18:01:36 +01:00
).thenResolve({
authStatus: EncryptionAuthStatus.TUTACRYPT_AUTHENTICATION_SUCCEEDED,
verificationState: PresentableKeyVerificationState.SECURE,
})
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailSessionKey = neverNull(await crypto.resolveSessionKey(testData.mail))
const bucketKey = assertNotNull(testData.mail.bucketKey)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
o(mailSessionKey).deepEquals(testData.sk)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o(bucketKey.bucketEncSessionKeys.length).equals(3) //mail, file1, file2
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeysCaptor = captor()
process shared group key rotation, handle group key updates as member of a shared group rotated by the owner, tutadb#1793
2024-06-10 14:05:35 +02:00
verify(ownerEncSessionKeysUpdateQueue.updateInstanceSessionKeys(updatedInstanceSessionKeysCaptor.capture(), anything()))
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const updatedInstanceSessionKeys = updatedInstanceSessionKeysCaptor.value
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
o(updatedInstanceSessionKeys.length).equals(bucketKey.bucketEncSessionKeys.length)
for (const isk of bucketKey.bucketEncSessionKeys) {
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const expectedSessionKey = decryptKey(testData.bk, isk.symEncSessionKey)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
if (
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
!updatedInstanceSessionKeys.some((updatedKey) => {
const updatedSessionKey = decryptKey(testData.mailGroupKey, updatedKey.symEncSessionKey)
return (
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
updatedKey.instanceId === isk.instanceId &&
updatedKey.instanceList === isk.instanceList &&
updatedKey.typeInfo.application === isk.typeInfo.application &&
updatedKey.typeInfo.typeId === isk.typeInfo.typeId &&
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
arrayEquals(updatedSessionKey, expectedSessionKey)
)
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
) {
console.log("===============================")
updatedInstanceSessionKeys.some((updatedKey) => {
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const updatedSessionKey = decryptKey(testData.mailGroupKey, updatedKey.symEncSessionKey)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
console.log(">>>>>>>>>>>>>>>>>>>>>>>")
console.log("1 ", updatedKey.instanceId, isk.instanceId)
console.log("2 ", updatedKey.instanceList, isk.instanceList)
console.log("3 ", updatedKey.typeInfo.application, isk.typeInfo.application)
console.log("4 ", updatedKey.typeInfo.typeId, isk.typeInfo.typeId)
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
console.log("5 ", updatedSessionKey, expectedSessionKey)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
}
o(
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
updatedInstanceSessionKeys.some((updatedKey) => {
const updatedSessionKey = decryptKey(testData.mailGroupKey, updatedKey.symEncSessionKey)
return (
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
updatedKey.instanceId === isk.instanceId &&
updatedKey.instanceList === isk.instanceList &&
updatedKey.typeInfo.application === isk.typeInfo.application &&
updatedKey.typeInfo.typeId === isk.typeInfo.typeId &&
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
arrayEquals(updatedSessionKey, expectedSessionKey)
)
}),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
).equals(true)
}
},
)
o(
"resolve session key: external user key decryption of session key using BucketKey aggregated type encrypted with MailGroupKey - Mail referencing MailDetailsBlob with attachments",
async function () {
o.timeout(500) // in CI or with debugging it can take a while
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const file1SessionKey = aes256RandomKey()
const file2SessionKey = aes256RandomKey()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const testData = await prepareConfidentialMailToExternalRecipient([file1SessionKey, file2SessionKey])
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailSessionKey = neverNull(await crypto.resolveSessionKey(testData.entityAdapter))
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
o(mailSessionKey).deepEquals(testData.sk)
},
)
handle userGroupEncBucketKey for external users in CryptoFacade, see server issue 1313
2023-01-26 16:34:37 +01:00
o(
"resolve session key: external user key decryption of session key using BucketKey aggregated type encrypted with UserGroupKey - Mail referencing MailDetailsBlob with attachments",
async function () {
o.timeout(500) // in CI or with debugging it can take a while
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const file1SessionKey = aes256RandomKey()
const file2SessionKey = aes256RandomKey()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const testData = await prepareConfidentialMailToExternalRecipient([file1SessionKey, file2SessionKey], true)
handle userGroupEncBucketKey for external users in CryptoFacade, see server issue 1313
2023-01-26 16:34:37 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailSessionKey = neverNull(await crypto.resolveSessionKey(testData.entityAdapter))
handle userGroupEncBucketKey for external users in CryptoFacade, see server issue 1313
2023-01-26 16:34:37 +01:00
o(mailSessionKey).deepEquals(testData.sk)
},
)
remove CryptoFacade.sessionKeyCache tutadb#1571
2023-08-08 14:52:14 +02:00
o("resolve session key: MailDetailsBlob", async function () {
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
const gk = aes256RandomKey()
const sk = aes256RandomKey()
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const ownerGroup = "mailGroupId"
when(keyLoaderFacade.getCurrentSymGroupKey(ownerGroup)).thenResolve({ object: gk, version: 0 })
when(userFacade.hasGroup(ownerGroup)).thenReturn(true)
remove CryptoFacade.sessionKeyCache tutadb#1571
2023-08-08 14:52:14 +02:00
when(userFacade.isFullyLoggedIn()).thenReturn(true)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailDetailsBlob = createTestEntity(MailDetailsBlobTypeRef, {
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
_id: ["mailDetailsArchiveId", "mailDetailsId"],
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
_ownerGroup: ownerGroup,
remove CryptoFacade.sessionKeyCache tutadb#1571
2023-08-08 14:52:14 +02:00
_ownerEncSessionKey: encryptKey(gk, sk),
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
when(keyLoaderFacade.loadSymGroupKey(ownerGroup, 0)).thenResolve(gk)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailDetailsBlobSessionKey = neverNull(await crypto.resolveSessionKey(mailDetailsBlob))
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
o(mailDetailsBlobSessionKey).deepEquals(sk)
})
remove CryptoFacade.sessionKeyCache tutadb#1571
2023-08-08 14:52:14 +02:00
o("resolve session key: MailDetailsBlob - session key not found", async function () {
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailDetailsBlob = createTestEntity(MailDetailsBlobTypeRef, {
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
_id: ["mailDetailsArchiveId", "mailDetailsId"],
_permissions: "permissionListId",
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
})
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
when(entityClient.loadAll(PermissionTypeRef, "permissionListId")).thenResolve([])
try {
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
await crypto.resolveSessionKey(mailDetailsBlob)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
o(true).equals(false) // let the test fails if there is no exception
} catch (error) {
o(error.constructor).equals(SessionKeyNotFoundError)
}
})
/**
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
* Prepares the environment to test receiving rsa asymmetric encrypted emails that have been sent with the simplified permission system.
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
* - Creates key pair for the recipient user
* - Creates group, bucket and session keys
* - Creates mail literal and encrypts all encrypted attributes of the mail
* - Create BucketKey object on the mail
*
* @param fileSessionKeys List of session keys for the attachments. When the list is empty there are no attachments
*/
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
async function prepareRsaPubEncBucketKeyResolveSessionKeyTest(fileSessionKeys: Array<Aes256Key> = []): Promise<{
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
mail: Mail
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
sk: Aes256Key
bk: Aes256Key
mailGroupKey: Aes256Key
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
userGroupId: Id
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
}> {
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
// configure test user
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const recipientUser = createTestUser("Bob", entityClient)
configureLoggedInUser(recipientUser, userFacade, keyLoaderFacade)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
make PQKeyPairs a type, fix type checks
2023-12-18 17:30:21 +01:00
let privateKey = RSA_TEST_KEYPAIR.privateKey
let publicKey = RSA_TEST_KEYPAIR.publicKey
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const keyPair = createTestEntity(KeyPairTypeRef, {
_id: "keyPairId",
symEncPrivRsaKey: encryptRsaKey(recipientUser.userGroupKey, privateKey),
make PQKeyPairs a type, fix type checks
2023-12-18 17:30:21 +01:00
pubRsaKey: hexToUint8Array(rsaPublicKeyToHex(publicKey)),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
recipientUser.userGroup.currentKeys = keyPair
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
let sk = aes256RandomKey()
let bk = aes256RandomKey()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mail = createTestEntity(MailTypeRef, {
_id: ["mailListId", "mailId"],
_permissions: "permissionListId",
_ownerGroup: recipientUser.mailGroup._id,
confidential: true,
subject: "oh no is this a subject",
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const pubEncBucketKey = new Uint8Array([1, 2, 3, 4])
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const bucketEncMailSessionKey = encryptKey(bk, sk)
const mailInstanceSessionKey = createInstanceSessionKey({
typeInfo: createTypeInfo({
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
application: MailTypeRef.app,
typeId: MailTypeRef.typeId.toString(),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
}),
symEncSessionKey: bucketEncMailSessionKey,
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
instanceList: listIdPart(mail._id),
instanceId: elementIdPart(mail._id),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
encryptionAuthStatus: null,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
symKeyVersion: "0",
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
keyVerificationState: null,
fixes after review with armhub, test cases for instance migration #2015
2020-04-29 15:55:56 +02:00
})
Inject type model resolvers Passing instances explicitly avoids the situations where some of them might not be initialized. We also simplified the entity handling by converting entity updates to data with resolved types early so that the listening code doesn't have to deal with it. We did fix some of the bad test practices, e.g. setting/restoring env incorrectly. This matters now because accessors for type model initializers check env.mode. Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-16 16:03:24 +02:00
const FileTypeModel = await typeModelResolver.resolveClientTypeReference(FileTypeRef)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const bucketEncSessionKeys = fileSessionKeys.map((fileSessionKey, index) => {
return createInstanceSessionKey({
typeInfo: createTypeInfo({
application: FileTypeModel.app,
typeId: String(FileTypeModel.id),
}),
symEncSessionKey: encryptKey(bk, fileSessionKey),
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
symKeyVersion: "0",
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
instanceList: "fileListId",
instanceId: "fileId" + (index + 1),
encryptionAuthStatus: null,
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
keyVerificationState: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
bucketEncSessionKeys.push(mailInstanceSessionKey)
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const protocolVersion = CryptoProtocolVersion.RSA
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const bucketKey = createBucketKey({
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
pubEncBucketKey,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
keyGroup: recipientUser.userGroup._id,
bucketEncSessionKeys: bucketEncSessionKeys,
groupEncBucketKey: null,
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
protocolVersion,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
senderKeyVersion: null,
recipientKeyVersion: "0",
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
when(keyLoaderFacade.loadCurrentKeyPair(recipientUser.userGroup._id)).thenResolve({
object: {
keyPairType: KeyPairType.RSA,
publicKey: RSA_TEST_KEYPAIR.publicKey,
privateKey: RSA_TEST_KEYPAIR.privateKey,
},
version: 0,
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
when(
asymmetricCryptoFacade.loadKeyPairAndDecryptSymKey(
assertNotNull(bucketKey.keyGroup),
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
parseKeyVersion(bucketKey.recipientKeyVersion),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
asCryptoProtoocolVersion(bucketKey.protocolVersion),
pubEncBucketKey,
extend logging for accessing the key pair
2025-03-28 16:56:47 +01:00
anything(),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
),
).thenResolve({ decryptedAesKey: bk, senderIdentityPubKey: null })
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
mail.bucketKey = bucketKey
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
return {
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
mail,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
sk,
bk,
mailGroupKey: recipientUser.mailGroupKey,
Deprecate RSA encryption for mails We still use the keys, but we show a warning if we detect that TutaCrypt keys should have been used instead. In practice, this means that if we have TutaCrypt keys at all, the sender should have used those. However, in order to prevent unnecessary warnings when doing a key rotation, we consider it normal to receive RSA encrypted mails in the same session where we did the key rotation. There is a corner case when we show a warning even though the RSA encryption was legitimate, and that is if we decrypt an old RSA mail after rotating to TutaCrypt keys. We don't expect this to occur very often. Co-authored-by: hec <hec@tutao.de> Co-authored-by: mab <mab@tutao.de> tutadb#1932
2025-01-28 18:46:02 +01:00
userGroupId: recipientUser.userGroup._id,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
}
}
/**
* Prepares the environment to test receiving pq asymmetric encrypted emails that have been sent with the simplified permission system.
* - Creates key pair for the recipient user
* - Creates group, bucket and session keys
* - Creates mail literal and encrypts all encrypted attributes of the mail
* - Create BucketKey object on the mail
*
* @param fileSessionKeys List of session keys for the attachments. When the list is empty there are no attachments
*/
async function preparePqPubEncBucketKeyResolveSessionKeyTest(
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
fileSessionKeys: Array<AesKey> = [],
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
confidential: boolean = true,
): Promise<{
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
mail: Mail
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
sk: AesKey
bk: AesKey
mailGroupKey: AesKey
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
senderIdentityKeyPair: X25519KeyPair
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
}> {
// create test user
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const recipientUser = createTestUser("Bob", entityClient)
configureLoggedInUser(recipientUser, userFacade, keyLoaderFacade)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
let pqKeyPairs = await pqFacade.generateKeyPairs()
const recipientKeyPair = createKeyPair({
_id: "keyPairId",
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
pubEccKey: pqKeyPairs.x25519KeyPair.publicKey,
symEncPrivEccKey: aesEncrypt(recipientUser.userGroupKey, pqKeyPairs.x25519KeyPair.privateKey),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
pubKyberKey: kyberPublicKeyToBytes(pqKeyPairs.kyberKeyPair.publicKey),
symEncPrivKyberKey: aesEncrypt(recipientUser.userGroupKey, kyberPrivateKeyToBytes(pqKeyPairs.kyberKeyPair.privateKey)),
pubRsaKey: null,
symEncPrivRsaKey: null,
Adapt to key verification model changes
2025-06-17 14:14:52 +02:00
signature: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
recipientUser.userGroup.currentKeys = recipientKeyPair
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
const senderIdentityKeyPair = generateX25519KeyPair()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
let sk = aes256RandomKey()
let bk = aes256RandomKey()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mail = createTestEntity(MailTypeRef, {
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
confidential,
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
_ownerGroup: recipientUser.mailGroup._id,
_ownerEncSessionKey: null, // enforce asymmetric crypto to resolve session key
_id: ["mailListId", "mailId"],
_permissions: "permissionListId",
sender: createTestEntity(MailAddressTypeRef, {
address: senderAddress,
name: "sender name",
}),
})
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
const pubEncBucketKey = await pqFacade.encapsulateAndEncode(
senderIdentityKeyPair,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
generateX25519KeyPair(),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
pqKeyPairsToPublicKeys(pqKeyPairs),
bitArrayToUint8Array(bk),
)
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
const bucketEncMailSessionKey = encryptKey(bk, sk)
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
await prepareBucketKeyInstance(
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
bucketEncMailSessionKey,
fileSessionKeys,
bk,
pubEncBucketKey,
recipientUser,
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
mail,
Introduce key verification (squash)
2025-02-10 13:15:28 +01:00
undefined,
"0",
CryptoProtocolVersion.TUTA_CRYPT,
asymmetricCryptoFacade,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
)
Use generated service interfaces
2022-03-09 17:43:29 +01:00
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
when(
asymmetricCryptoFacade.decryptSymKeyWithKeyPair(
{
keyPairType: pqKeyPairs.keyPairType,
Rename ECC keys and functions to X25519
2025-04-02 13:46:11 +02:00
x25519KeyPair: pqKeyPairs.x25519KeyPair,
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
kyberKeyPair: pqKeyPairs.kyberKeyPair,
},
CryptoProtocolVersion.TUTA_CRYPT,
pubEncBucketKey,
),
).thenResolve({ decryptedAesKey: bk, senderIdentityPubKey: senderIdentityKeyPair.publicKey })
when(
asymmetricCryptoFacade.loadKeyPairAndDecryptSymKey(
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
assertNotNull(mail.bucketKey?.keyGroup),
parseKeyVersion(assertNotNull(mail.bucketKey?.recipientKeyVersion)),
asCryptoProtoocolVersion(assertNotNull(mail.bucketKey?.protocolVersion)),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
pubEncBucketKey,
extend logging for accessing the key pair
2025-03-28 16:56:47 +01:00
anything(),
Allow admin to decrypt user group key via pubAdminEncGKey Extract AsymmetricCryptoFacade to encapsulate choice of encryption algorithm. Remove unauthenticated asymmetric decryption because it was only used in a deprecated case and is the same implementation as with authentication. Enforce the correct protocol version and that it matches the algorithm of recipient's key pair. Use existing method to decrypt via adminEncGKey when changing the admin flag. Add cryptoWrapper dependency to make testing easier. Minimize what re need to expose from PqFacade. Enforce PqKeyPairs type in key rotation facade.
2024-09-05 13:11:59 +02:00
),
).thenResolve({ decryptedAesKey: bk, senderIdentityPubKey: senderIdentityKeyPair.publicKey })
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
return {
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
mail,
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
sk,
bk,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
mailGroupKey: recipientUser.mailGroupKey,
senderIdentityKeyPair,
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
}
}
Use generated service interfaces
2022-03-09 17:43:29 +01:00
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
/**
* Prepares the environment to test receiving symmetric encrypted emails (mails sent from internal to external user) that have been sent with the simplified permission system.
* - Creates group, bucket and session keys
* - Creates mail literal and encrypts all encrypted attributes of the mail
* - Create BucketKey object on the mail
*
* @param fileSessionKeys List of session keys for the attachments. When the list is empty there are no attachments
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
* @param externalUserGroupEncBucketKey for legacy external user group to encrypt bucket key
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
*/
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
async function prepareConfidentialMailToExternalRecipient(
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
fileSessionKeys: Array<AesKey> = [],
handle userGroupEncBucketKey for external users in CryptoFacade, see server issue 1313
2023-01-26 16:34:37 +01:00
externalUserGroupEncBucketKey = false,
): Promise<{
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
entityAdapter: EntityAdapter
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
bucketKey: BucketKey
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
sk: AesKey
bk: AesKey
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
MailTypeModel: TypeModel
}> {
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
// create user
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const externalUser = createTestUser("Bob", entityClient)
configureLoggedInUser(externalUser, userFacade, keyLoaderFacade)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
// create test mail
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
let confidential = true
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
let sk = aes256RandomKey()
let bk = aes256RandomKey()
handle userGroupEncBucketKey for external users in CryptoFacade, see server issue 1313
2023-01-26 16:34:37 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const mailUntypedInstance = await createUntypedMailInstance(null, sk, confidential, externalUser.mailGroup._id)
fixes after review with armhub, test cases for instance migration #2015
2020-04-29 15:55:56 +02:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const groupKeyToEncryptBucketKey = externalUserGroupEncBucketKey ? externalUser.userGroupKey : externalUser.mailGroupKey
handle userGroupEncBucketKey for external users in CryptoFacade, see server issue 1313
2023-01-26 16:34:37 +01:00
const groupEncBucketKey = encryptKey(groupKeyToEncryptBucketKey, bk)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
const bucketEncMailSessionKey = encryptKey(bk, sk)
Inject type model resolvers Passing instances explicitly avoids the situations where some of them might not be initialized. We also simplified the entity handling by converting entity updates to data with resolved types early so that the listening code doesn't have to deal with it. We did fix some of the bad test practices, e.g. setting/restoring env incorrectly. This matters now because accessors for type model initializers check env.mode. Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-16 16:03:24 +02:00
const MailTypeModel = await typeModelResolver.resolveServerTypeReference(MailTypeRef)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
const mailInstanceSessionKey = createTestEntity(InstanceSessionKeyTypeRef, {
typeInfo: createTestEntity(TypeInfoTypeRef, {
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
application: MailTypeModel.app,
typeId: String(MailTypeModel.id),
}),
symEncSessionKey: bucketEncMailSessionKey,
instanceList: "mailListId",
instanceId: "mailId",
})
Inject type model resolvers Passing instances explicitly avoids the situations where some of them might not be initialized. We also simplified the entity handling by converting entity updates to data with resolved types early so that the listening code doesn't have to deal with it. We did fix some of the bad test practices, e.g. setting/restoring env incorrectly. This matters now because accessors for type model initializers check env.mode. Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-16 16:03:24 +02:00
const FileTypeModel = await typeModelResolver.resolveServerTypeReference(FileTypeRef)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
const bucketEncSessionKeys = fileSessionKeys.map((fileSessionKey, index) => {
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
return createTestEntity(InstanceSessionKeyTypeRef, {
typeInfo: createTestEntity(TypeInfoTypeRef, {
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
application: FileTypeModel.app,
typeId: String(FileTypeModel.id),
Use generated service interfaces
2022-03-09 17:43:29 +01:00
}),
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
symEncSessionKey: encryptKey(bk, fileSessionKey),
instanceList: "fileListId",
instanceId: "fileId" + (index + 1),
Use generated service interfaces
2022-03-09 17:43:29 +01:00
})
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
})
bucketEncSessionKeys.push(mailInstanceSessionKey)
Use generated service interfaces
2022-03-09 17:43:29 +01:00
Disallow `Partial` instance initializers Co-authored-by: @paw-hub, @mpfau, @vaf-hub tutanota#6118
2023-11-10 16:59:39 +01:00
const bucketKey = createTestEntity(BucketKeyTypeRef, {
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
pubEncBucketKey: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
keyGroup: externalUserGroupEncBucketKey ? externalUser.userGroup._id : null,
handle userGroupEncBucketKey for external users in CryptoFacade, see server issue 1313
2023-01-26 16:34:37 +01:00
groupEncBucketKey: groupEncBucketKey,
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
bucketEncSessionKeys: bucketEncSessionKeys,
})
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const bucketKeyUntypedInstance: UntypedInstance = await instancePipeline.mapAndEncrypt(BucketKeyTypeRef, bucketKey, null)
mailUntypedInstance[assertNotNull(AttributeModel.getAttributeId(MailTypeModel, "bucketKey"))] = [bucketKeyUntypedInstance]
const mailEncryptedParsedInstance = await instancePipeline.typeMapper.applyJsTypes(MailTypeModel, mailUntypedInstance)
Use generated service interfaces
2022-03-09 17:43:29 +01:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
return {
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
entityAdapter: await EntityAdapter.from(MailTypeModel, mailEncryptedParsedInstance, instancePipeline),
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
bucketKey,
sk,
bk,
MailTypeModel,
}
}
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
/**
* Prepares the environment to test receiving symmetric encrypted emails from an external sender(mails sent from external to internal user) that have been sent with the simplified permission system.
* - Creates group, bucket and session keys
* - Creates mail literal and encrypts all encrypted attributes of the mail
* - Create BucketKey object on the mail
*
* @param fileSessionKeys List of session keys for the attachments. When the list is empty there are no attachments
*/
async function prepareConfidentialReplyFromExternalUser(): Promise<{
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
entityAdapter: EntityAdapter
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
bucketKey: BucketKey
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
sk: AesKey
bk: AesKey
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
MailTypeModel: TypeModel
internalUser: TestUser
externalUser: TestUser
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
recipientKeyVersion: KeyVersion
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
}> {
// Setup test users and groups
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const internalUser = createTestUser("Alice", entityClient)
const externalUser = createTestUser("Bob", entityClient)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
// Setup relationship between internal and external user
externalUser.userGroup.admin = internalUser.userGroup._id
externalUser.userGroup.adminGroupEncGKey = encryptKey(internalUser.userGroupKey, externalUser.userGroupKey)
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
externalUser.userGroup.adminGroupKeyVersion = "0"
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
externalUser.mailGroup.admin = externalUser.userGroup._id
externalUser.mailGroup.adminGroupEncGKey = encryptKey(externalUser.userGroupKey, externalUser.mailGroupKey)
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
externalUser.mailGroup.adminGroupKeyVersion = "4"
const recipientKeyVersion = "5"
externalUser.userGroup.groupKeyVersion = "7"
externalUser.mailGroup.groupKeyVersion = "8"
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
configureLoggedInUser(internalUser, userFacade, keyLoaderFacade)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
when(keyLoaderFacade.loadSymGroupKey(externalUser.mailGroup._id, parseKeyVersion(recipientKeyVersion), anything())).thenResolve(
externalUser.mailGroupKey,
)
when(keyLoaderFacade.loadSymGroupKey(externalUser.userGroup._id, parseKeyVersion(externalUser.mailGroup.adminGroupKeyVersion), anything())).thenResolve(
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
externalUser.userGroupKey,
)
// setup test mail (confidential reply from external)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
let confidential = true
make aes256 the default tutadb#1566
2023-12-05 14:03:33 +01:00
let sk = aes256RandomKey()
let bk = aes256RandomKey()
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const untypedMailInstance = await createUntypedMailInstance(null, sk, confidential, internalUser.mailGroup._id)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const keyGroup = externalUser.mailGroup._id
const groupEncBucketKey = encryptKey(externalUser.mailGroupKey, bk)
const bucketEncMailSessionKey = encryptKey(bk, sk)
Inject type model resolvers Passing instances explicitly avoids the situations where some of them might not be initialized. We also simplified the entity handling by converting entity updates to data with resolved types early so that the listening code doesn't have to deal with it. We did fix some of the bad test practices, e.g. setting/restoring env incorrectly. This matters now because accessors for type model initializers check env.mode. Co-authored-by: paw <paw-hub@users.noreply.github.com>
2025-05-16 16:03:24 +02:00
const MailTypeModel = await typeModelResolver.resolveServerTypeReference(MailTypeRef)
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const mailInstanceSessionKey = createTestEntity(InstanceSessionKeyTypeRef, {
typeInfo: createTestEntity(TypeInfoTypeRef, {
application: MailTypeModel.app,
typeId: String(MailTypeModel.id),
}),
symEncSessionKey: bucketEncMailSessionKey,
instanceList: "mailListId",
instanceId: "mailId",
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const bucketEncSessionKeys = new Array<InstanceSessionKey>()
bucketEncSessionKeys.push(mailInstanceSessionKey)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
const bucketKey = createTestEntity(BucketKeyTypeRef, {
pubEncBucketKey: null,
keyGroup: keyGroup,
groupEncBucketKey: groupEncBucketKey,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
recipientKeyVersion,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
bucketEncSessionKeys: bucketEncSessionKeys,
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
protocolVersion: CryptoProtocolVersion.SYMMETRIC_ENCRYPTION,
senderKeyVersion: null,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
})
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
const bucketKeyUntypedInstance: UntypedInstance = await instancePipeline.mapAndEncrypt(BucketKeyTypeRef, bucketKey, null)
untypedMailInstance[assertNotNull(AttributeModel.getAttributeId(MailTypeModel, "bucketKey"))] = [bucketKeyUntypedInstance]
const encryptedMailParsedInstance = await instancePipeline.typeMapper.applyJsTypes(MailTypeModel, untypedMailInstance)
const entityAdapter = await EntityAdapter.from(MailTypeModel, encryptedMailParsedInstance, instancePipeline)
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
return {
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
entityAdapter: entityAdapter,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
bucketKey,
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
sk,
bk,
MailTypeModel,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
internalUser,
externalUser,
add constraints for key versions only accepting non-negative integers extract PublicKeyProvider to enforce constraints in a central place use type system and checkKeyVersionConstraints function to enforce constraints everywhere tutadb#1933
2025-01-20 13:40:57 +01:00
recipientKeyVersion: parseKeyVersion(recipientKeyVersion),
add MailDetails feature, #4719 server issues: 1276, 1271, 1279, 1272, 1270, 1258, 1254, 1253, 1242, 1241
2022-11-03 19:03:54 +01:00
}
}
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
async function createUntypedMailInstance(
ownerGroupKey: AesKey | null,
sessionKey: AesKey,
confidential: boolean,
ownerGroupId: string,
): Promise<ServerModelUntypedInstance> {
const mail = createMail({
_format: "0",
_ownerGroup: ownerGroupId,
_ownerEncSessionKey: ownerGroupKey ? encryptKey(ownerGroupKey, sessionKey) : null,
_permissions: "permissionListId",
_id: ["mailListId", "mailId"],
receivedDate: new Date(1470039025474),
state: "",
unread: true,
subject: "any subject",
replyType: "",
confidential: confidential,
sender: createMailAddress({
address: senderAddress,
name: "any sender",
contact: null,
}),
bucketKey: null,
do not set deprecated authStatus on mail in CryptoFacadeTest
2025-10-16 13:16:42 +02:00
authStatus: null,
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
listUnsubscribe: false,
method: "",
phishingStatus: "0",
recipientCount: "0",
differentEnvelopeSender: null,
movedTime: null,
encryptionAuthStatus: null,
_ownerKeyVersion: null,
attachments: [],
conversationEntry: ["entryListId", "entryId"],
firstRecipient: null,
mailDetails: null,
mailDetailsDraft: null,
sets: [],
store key verification state on mail and display it in the viewer Co-authored-by: hec <hec@tutao.de> tuta#2217
2025-07-09 17:17:35 +02:00
keyVerificationState: null,
improve inbox rule handling and run spam prediction after inbox rules Instead of applying inbox rules based on the unread mail state in the inbox folder, we introduce the new ProcessingState enum on the mail type. If a mail has been processed by the leader client, which is checking for matching inbox rules, the ProcessingState is updated. If there is a matching rule the flag is updated through the MoveMailService, if there is no matching rule, the flag is updated using the ClientClassifierResultService. Both requests are throttled / debounced. After processing inbox rules, spam prediction is conducted for mails that have not yet been moved by an inbox rule. The ProcessingState for not matching ham mails is also updated using the ClientClassifierResultService. This new inbox rule handing solves the following two problems: - when clicking on a notification it could still happen, that sometimes the inbox rules where not applied - when the inbox folder had a lot of unread mails, the loading time did massively increase, since inbox rules were re-applied on every load Co-authored-by: amm <amm@tutao.de> Co-authored-by: Nick <nif@tutao.de> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jhm <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-10-14 12:11:22 +02:00
processingState: ProcessingState.INBOX_RULE_APPLIED,
clientSpamClassifierResult: null,
Implement spam training data sync and add TutanotaModelV98 We sync the spam training data encrypted through our server to make sure that all clients for a specific user behave the same when classifying mails. Additionally, this enables the spam classification in the webApp. We compress the training data vectors (see clientSpamTrainingDatum) before uploading to our server using SparseVectorCompressor.ts. When a user has the ClientSpamClassification enabled, the spam training data sync will happen for every mail received. ClientSpamTrainingDatum are not stored in the CacheStorage. No entityEvents are emitted for this type. However, we retrieve creations and updates for ClientSpamTrainingData through the modifiedClientSpamTrainingDataIndex. We calculate a threshold per classifier based on the dataset ham to spam ratio, we also subsample our training data to cap the ham to spam ratio within a certain limit. Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: das <das@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: nif <nif@tutao.de> Co-authored-by: map <mpfau@users.noreply.github.com>
2025-11-03 18:01:36 +01:00
processNeeded: false,
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
})
// casting here is fine, since we just want to mimic server response data
return (await instancePipeline.mapAndEncrypt(MailTypeRef, mail, sessionKey)) as unknown as ServerModelUntypedInstance
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
}
switch to typeIds and attrIds, add SystemMV126, TutanotaMV86, BaseMV2 Refactor our instance deserialization/serialization pipeline, both on TypeScript and on Rust [sdk] to use typeId and attributeIds instead of typeNames and attributeNames. We furthermore ignore cardinalities on associations until the instance layer and always store associations as arrays. This commit introduces **eventual consistency** on the client, i.e. we are from now on always storing data in the newest schema format (activeApplicationVersionsForWritingSum) which ensures that all data is already available on the client after updating the client to a newer version. This removes the need for offline migrations on the client and also removes backward migrations on the server. Furthermore, the server model types are now available on the client, retrievable through the ApplicationTypesFacade. This is our first step towards FastSync. Co-authored-by: nig <nig@tutao.de> Co-authored-by: abp <abp@tutao.de> Co-authored-by: jomapp <17314077+jomapp@users.noreply.github.com> Co-authored-by: map <mpfau@users.noreply.github.com> Co-authored-by: sug <sug@tutao.de> Co-authored-by: Kinan <104761667+kibibytium@users.noreply.github.com>
2025-03-10 16:19:11 +01:00
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
export function createTestUser(name: string, entityClient: EntityClient): TestUser {
const userGroupKey = aes256RandomKey()
const mailGroupKey = aes256RandomKey()
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const userGroup = createTestEntity(GroupTypeRef, {
_id: "userGroup" + name,
type: GroupType.User,
currentKeys: null,
groupKeyVersion: "0",
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const mailGroup = createTestEntity(GroupTypeRef, {
_id: "mailGroup" + name,
type: GroupType.Mail,
currentKeys: null,
groupKeyVersion: "0",
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const userGroupMembership = createTestEntity(GroupMembershipTypeRef, {
group: userGroup._id,
})
const mailGroupMembership = createTestEntity(GroupMembershipTypeRef, {
group: mailGroup._id,
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
const user = createTestEntity(UserTypeRef, {
userGroup: userGroupMembership,
memberships: [mailGroupMembership],
})
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
when(entityClient.load(GroupTypeRef, userGroup._id)).thenResolve(userGroup)
when(entityClient.load(GroupTypeRef, mailGroup._id)).thenResolve(mailGroup)
return {
user,
userGroup,
mailGroup,
userGroupKey,
mailGroupKey,
name,
add tuta-crypt hybrid post-quantum encryption support tutadb#1639
2023-12-18 11:36:38 +01:00
}
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
}
/**
* Helper function to mock the user facade so that the given test user is considered as logged in user.
*/
export function configureLoggedInUser(testUser: TestUser, userFacade: UserFacade, keyLoaderFacade: KeyLoaderFacade) {
when(userFacade.getLoggedInUser()).thenReturn(testUser.user)
Cleanup after reviewing key verification branch Co-authored-by: mab <mab@tutao.de>
2025-03-13 17:00:34 +01:00
when(keyLoaderFacade.getCurrentSymGroupKey(testUser.mailGroup._id)).thenResolve({
object: testUser.mailGroupKey,
version: 0,
})
when(keyLoaderFacade.getCurrentSymGroupKey(testUser.userGroup._id)).thenResolve({
object: testUser.userGroupKey,
version: 0,
})
Support group key rotation (#6588) * Allow groups to have multiple key versions tutadb#1628 * Adapt to model changes * Fix CommonMailUtilsTest * Remove symEncBucketKey from SecureExternalRecipientKeyData * Remove deprecated types Also fix tests that relied on them as dummy types * Add userKeyVersion to RecoverCode * Remove clientKey Seems to be unused. * Remove CreateFolderService Unused. * Remove symEncSessionKey from DraftCreateData Unused. * Remove symEncShareBucketKey from MailBox Unused. * Add userKeyVersion to TutanotaProperties * Remove PasswordRetrievalService type The service itself had been long gone. * Remove userKeyVersion from CustomerAccountCreateData CreateMailGroupData * Fix customer account creation Set the key version that we actually need there: the *system* admin pub key version. The sender key version is not needed, because the system admin only has RSA keys. Also, this is a new customer, so that would be version zero anyway. * Fix resolving bucket key with group reference Get the right versions along the way. * Use current group key when encrypting instance session keys * Remove left-over key getting Also document a couple of current key usages * Pass group key providers to EntityClient instead of group key * Fix types and do not provide sender key version for rsa Fix resolveServiceSessionKey * Rename constant to avoid confusion There is another constant with the same name. * Use TutanotaModelV69 * Introduce client side mechanism to handle key rotation requests see tutadb 1771 * Do not export 128-bit key generator It is only needed for tests within the package. * Remove group key version when creating user area groups Plus some minor clarity improvements. * Fix version handling when updating drafts and sending to secure external * Remove versions when creating external users They are zero. * Fix changing the admin flag * Remove (almost) all local admin related code * Improve readability * Default to user key version zero when loading entropy * Decrypt current groupKey with correct userGroupKey version * Fix system application offline migrations * Fix tutanota application offline migrations * Improve offline migration functions * Use AesKey type * Minor improvements from review * Use AesKey type instead of Aes128Key where possible * Model update after rebase * Fix getting user group key Should never try to get from the cache like a normal group key. * Fix getting former group key Start ID was off-by-one. * Minor changes from review. We just checked all usages of all public methods of KeyLoaderFacade to make sure we're using the correct versions where we need them. * More minor changes from review. * Pass ownerKeyProvider instead of ownerKey when updating with the EntityClient * Pass ownerKeyProvider only when necessary * Document ownerKeyProvider parameter * Fix offline database migration * Fix unlocking the indexer data --------- Co-authored-by: vaf <vaf@tutao.de> Co-authored-by: bedhub <bedhub@users.noreply.github.com> Co-authored-by: bed <bed@tutao.de>
2024-04-17 10:34:33 +02:00
when(userFacade.hasGroup(testUser.userGroup._id)).thenReturn(true)
when(userFacade.hasGroup(testUser.mailGroup._id)).thenReturn(true)
when(userFacade.getCurrentUserGroupKey()).thenReturn({ object: testUser.userGroupKey, version: 0 })
when(userFacade.isLeader()).thenReturn(true)
when(userFacade.isFullyLoggedIn()).thenReturn(true)
when(keyLoaderFacade.loadSymGroupKey(testUser.mailGroup._id, 0)).thenResolve(testUser.mailGroupKey)
when(keyLoaderFacade.loadSymGroupKey(testUser.userGroup._id, 0)).thenResolve(testUser.userGroupKey)
}
Reference in a new issue Copy permalink