Add NOTIFY capability

Delta Chat does not use it now,
but should: <https://github.com/deltachat/deltachat-core-rust/issues/4983>
Having no capability will confuse whoever develops it.

README.md

@@ -81,11 +81,10 @@ comprised of minimal setups of
 
 as well as two custom services that are integrated with these two: 
 
-- `chatmaild/src/chatmaild/doveauth.py` implements
+- `chatmaild/src/chatmaild/dictproxy.py` implements 
   create-on-login account creation semantics and is used
   by Dovecot during login authentication and by Postfix
-  which in turn uses [Dovecot SASL](https://doc.dovecot.org/configuration_manual/authentication/dict/#complete-example-for-authenticating-via-a-unix-socket)
+  which in turn uses Dovecot SASL to authenticate users
-  to authenticate users
   to send mails for them. 
 
 - `chatmaild/src/chatmaild/filtermail.py` prevents 

chatmaild/pyproject.toml

@@ -10,14 +10,11 @@ dependencies = [
 ]
 
 [project.scripts]
-doveauth = "chatmaild.doveauth:main"
+doveauth-dictproxy = "chatmaild.dictproxy:main"
 filtermail = "chatmaild.filtermail:main"
 
 [tool.pytest.ini_options]
 addopts = "-v -ra --strict-markers"
-log_format = "%(asctime)s %(levelname)s %(message)s"
-log_date_format = "%Y-%m-%d %H:%M:%S"
-log_level = "INFO"
 
 [tool.tox]
 legacy_tox_ini = """

chatmaild/src/chatmaild/dictproxy.py

@@ -116,7 +116,7 @@ def handle_dovecot_request(msg, db, mail_domain):
 
 
 class ThreadedUnixStreamServer(ThreadingMixIn, UnixStreamServer):
-    request_queue_size = 100
+    pass
 
 
 def main():
@@ -128,20 +128,14 @@ def main():
 
     class Handler(StreamRequestHandler):
         def handle(self):
-            try:
+            while True:
-                while True:
+                msg = self.rfile.readline().strip().decode()
-                    msg = self.rfile.readline().strip().decode()
+                if not msg:
-                    if not msg:
+                    break
-                        break
+                res = handle_dovecot_request(msg, db, mail_domain)
-                    res = handle_dovecot_request(msg, db, mail_domain)
+                if res:
-                    if res:
+                    self.wfile.write(res.encode("ascii"))
-                        self.wfile.write(res.encode("ascii"))
+                    self.wfile.flush()
-                        self.wfile.flush()
-                    else:
-                        logging.warn("request had no answer: %r", msg)
-            except Exception:
-                logging.exception("Exception in the handler")
-                raise
 
     try:
         os.unlink(socket)

chatmaild/src/chatmaild/doveauth-dictproxy.service

@@ -2,7 +2,7 @@
 Description=Dict authentication proxy for dovecot
 
 [Service]
-ExecStart=/usr/local/bin/doveauth /run/dovecot/doveauth.socket vmail /home/vmail/passdb.sqlite
+ExecStart=/usr/local/bin/doveauth-dictproxy /run/dovecot/doveauth.socket vmail /home/vmail/passdb.sqlite
 Restart=always
 RestartSec=30
 

chatmaild/src/chatmaild/filtermail.py

@@ -149,7 +149,7 @@ class SendRateLimiter:
 def main():
     args = sys.argv[1:]
     assert len(args) == 1
-    logging.basicConfig(level=logging.WARN)
+    logging.basicConfig(level=logging.INFO)
     loop = asyncio.new_event_loop()
     asyncio.set_event_loop(loop)
     task = asyncmain_beforequeue(port=int(args[0]))

deploy-chatmail/src/deploy_chatmail/__init__.py

@@ -7,7 +7,6 @@ from pathlib import Path
 from pyinfra import host
 from pyinfra.operations import apt, files, server, systemd
 from pyinfra.facts.files import File
-from pyinfra.facts.systemd import SystemdEnabled
 from .acmetool import deploy_acmetool
 
 
@@ -35,17 +34,8 @@ def _install_chatmaild() -> None:
             commands=[f"pip install --break-system-packages {remote_path}"],
         )
 
-        # disable legacy doveauth-dictproxy.service
-        if host.get_fact(SystemdEnabled).get("doveauth-dictproxy.service"):
-            systemd.service(
-                name="Disable legacy doveauth-dictproxy.service",
-                service="doveauth-dictproxy.service",
-                running=False,
-                enabled=False,
-            )
-
         for fn in (
-            "doveauth",
+            "doveauth-dictproxy",
             "filtermail",
         ):
             files.put(

deploy-chatmail/src/deploy_chatmail/postfix/master.cf.j2

@@ -32,7 +32,6 @@ submission inet n       -       y       -       -       smtpd
   -o smtpd_recipient_restrictions=
   -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
   -o milter_macro_daemon_name=ORIGINATING
-  -o smtpd_client_connection_count_limit=1000
   -o smtpd_proxy_filter=127.0.0.1:10080
 smtps     inet  n       -       y       -       -       smtpd
   -o syslog_name=postfix/smtps
@@ -47,7 +46,6 @@ smtps     inet  n       -       y       -       -       smtpd
   -o smtpd_sender_restrictions=$mua_sender_restrictions
   -o smtpd_recipient_restrictions=
   -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-  -o smtpd_client_connection_count_limit=1000
   -o milter_macro_daemon_name=ORIGINATING
   -o smtpd_proxy_filter=127.0.0.1:10080
 #628       inet  n       -       y       -       -       qmqpd

scripts/generate-dns-zone.sh

@@ -15,6 +15,6 @@ _submission._tcp.$CHATMAIL_DOMAIN.  SRV 0 1 587 $CHATMAIL_DOMAIN.
 _submissions._tcp.$CHATMAIL_DOMAIN. SRV 0 1 465 $CHATMAIL_DOMAIN.
 _imap._tcp.$CHATMAIL_DOMAIN.        SRV 0 1 143 $CHATMAIL_DOMAIN.
 _imaps._tcp.$CHATMAIL_DOMAIN.       SRV 0 1 993 $CHATMAIL_DOMAIN.
-$CHATMAIL_DOMAIN. IN CAA 128 issue "letsencrypt.org; accounturi=$ACME_ACCOUNT_URL"
+$CHATMAIL_DOMAIN. IN CAA 0 issue "letsencrypt.org; accounturi=$ACME_ACCOUNT_URL"
 EOF
 $SSH opendkim-genzone -F | sed 's/^;.*$//;/^$/d'

tests/chatmaild/test_dictproxy.py

@@ -1,12 +1,12 @@
 import json
-import sys
+
 import pytest
 import threading
 import queue
 import traceback
 
-import chatmaild.doveauth
+import chatmaild.dictproxy
-from chatmaild.doveauth import get_user_data, lookup_passdb, handle_dovecot_request
+from chatmaild.dictproxy import get_user_data, lookup_passdb, handle_dovecot_request
 from chatmaild.database import Database, DBError
 
 
@@ -30,7 +30,7 @@ def test_dont_overwrite_password_on_wrong_login(db):
 def test_nocreate_file(db, monkeypatch, tmpdir):
     p = tmpdir.join("nocreate")
     p.write("")
-    monkeypatch.setattr(chatmaild.doveauth, "NOCREATE_FILE", str(p))
+    monkeypatch.setattr(chatmaild.dictproxy, "NOCREATE_FILE", str(p))
     lookup_passdb(db, "newuser1@something.org", "zequ0Aimuchoodaechik")
     assert not get_user_data(db, "newuser1@something.org")
 
@@ -60,31 +60,27 @@ def test_handle_dovecot_request(db):
     assert userdata["password"].startswith("{SHA512-CRYPT}")
 
 
-def test_100_concurrent_lookups_different_accounts(db, gencreds):
+def test_100_concurrent_lookups(db):
-    num_threads = 100
+    num = 100
-    req_per_thread = 5
+    dbs = [Database(db.path) for i in range(num)]
+    print(f"created {num} databases")
     results = queue.Queue()
 
     def lookup(db):
-        for i in range(req_per_thread):
+        try:
-            addr, password = gencreds()
+            lookup_passdb(db, "something@c1.testrun.org", "Pieg9aeToe3eghuthe5u")
-            try:
+        except Exception:
-                lookup_passdb(db, addr, password)
+            results.put(traceback.format_exc())
-            except Exception:
+        else:
-                results.put(traceback.format_exc())
+            results.put(None)
-            else:
-                results.put(None)
 
-    threads = []
+    threads = [threading.Thread(target=lookup, args=(db,), daemon=True) for db in dbs]
-    for i in range(num_threads):
-        thread = threading.Thread(target=lookup, args=(db,), daemon=True)
-        threads.append(thread)
 
-    print(f"created {num_threads} threads, starting them and waiting for results")
+    print(f"created {num} threads, starting them and waiting for results")
     for thread in threads:
         thread.start()
 
-    for i in range(num_threads * req_per_thread):
+    for _ in dbs:
         res = results.get()
         if res is not None:
             pytest.fail(f"concurrent lookup failed\n{res}")

www/nine.testrun.org/index.html

@@ -20,14 +20,15 @@
             box-sizing: border-box;
             padding: 9px;
             font-size: 18px;
-            font-family: "Swansea", "Helvetica", sans-serif;
+            font-family: "Courier New", monospace;
-            color: black;
+            color: white;
-        }
+            background-position: left top;
-        a {
+            background-image: url(collage-bg.png);
-            color: black;
+            background-repeat: no-repeat;
+            background-size: 100% 100%;
         }
         h1, h2, h3 {
-            font-size: 18px;
+            font-size: 16px;
             font-weight: bold;
         }
     </style>
@@ -36,39 +37,24 @@
     <div class="wrapper">
         <img class="section" src="collage-top.png" />
         <div class="section text">
-            <h1>Dear Delta Chat users and newcomers,</h1>
+            <h1>welcome  to nine.testrun.org</h1>
             <p>
-                welcome to the first public "chat-mail instance",
+                to get an account,
-                a small and lean e-mail provider for smooth chatting.
+                invent a word with <i>exactly</i> nine characters
-                Install Delta Chat or add an account:
+                and append @nine.testrun.org to it.
-            <ul>
+                eg. <b>hellofits@nine.testrun.org</b>
-                <li>Tap "LOG INTO YOUR E-MAIL ACCOUNT".</li>
-                <li>Address: invent a word with <i>exactly</i> nine characters
-                and append @nine.testrun.org to it.</li>
-                <li>Password: invent at least 10 characters. The first login sets your password.</li>
-            </ul>
-                If the e-mail address is not yet taken, you'll get that account.
             </p>
             <p>
-            <img class="section" src="collage-down.png" />
+                if the email address is not yet taken, you'll get that account.
-
+                the first login sets your password.
-            <h2>What's behind it, how does it operate?</h2>
+                that's it.
-            <p>nine.testrun.org is run
+            </p>
-                by a small group of devs and sysadmins, reachable via root@.
+        </div>
-                They want to keep this instance running at least until end 2024.
+        <img class="section" src="collage-down.png" />
-                Current limits:
+        <div class="section text">
-            <ul>
+            <h1>faq</h1>
-            <li>Un-encrypted mails can not leave the chat-mail instance.</li>
+            <p><i>why are other email providers 1000 times more complicated?</i></p>
-            <li>Use <a href="https://delta.chat/en/help#howtoe2ee">
+            <p>because they want to for $reasons</p>
-                guaranteed end-to-end encryption via QR code scans</a>
-                to setup contact with users outside of the chat-mail instance.
-            </li>
-            <li>You may send up to 60 messages per minute.</li>
-            <li>Messages are unconditionally removed 40 days after arrival.</li>
-            <li>Max storage per user is 100MB.</li>
-            </ul>
-            <h2>Why are other email providers 1000 times more complicated?</h2>
-            <p>¯\_(ツ)_/¯</p>
         </div>
     </div>
 </body>