--- /dev/null
+// ***** TEST HARNESS *****
+// This contains a private key that, at the time of writing, matches the DKIM public key for dev.citadel.org
+// We can use the attached test message to validate a signature against that.
+
+#include <stdlib.h>
+#include <unistd.h>
+#include <stdio.h>
+#include <ctype.h>
+#include <string.h>
+#include <time.h>
+#include <assert.h>
+#include <syslog.h>
+#include <libcitadel.h>
+
+// oof, a prototype where one does not belong hehe
+void dkim_sign(StrBuf *email, char *pkey_in, char *domain, char *selector);
+
+int main(int argc, char *argv[]) {
+
+ openlog("dkim", LOG_PERROR, LOG_USER);
+
+ char *private_key =
+ "-----BEGIN PRIVATE KEY-----\n"
+ "MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQDfuefcepokRrnp\n"
+ "SSDsxu+QDqeD8GL9QnZz/N6IxTdBv6Wc10ExBe2IjS5dKI7AvhSSEK0zGE8Hkpmw\n"
+ "eccbiepQqeueteWzAMZ1uT43bD3k7eye7vWobiOP9QtoYGR6sG25h2W5Tbc91W4f\n"
+ "dvYnxYVJjx8wIVF0f3o25v+rQueoo0HlvGyA9/xi9GAaJL05OmK1xnMJgSvW/Q8Q\n"
+ "zq7apf1D6XPXHuhv5tevElkZ5jlvM2w0cTVyAzMrUh6Rkcn9xM4/NPWYghBc3jO4\n"
+ "TrPnSrobQGrX0fcizE/FN6I0in0Ke8Z+gMM8NeFcsjvLZe9MpY9i0pw/ygLIh5t3\n"
+ "O4qpwC1JAgMBAAECggEAIwiTCMEAGzciDKhhagJ66BWLYMtHTP5X2zDZThSH4xlW\n"
+ "HznL4RfbCtuEy5y6we7h/L90x8ACPB7WRz7CkYrmsMvy9A7q0b2I1k10MyyVgqBJ\n"
+ "QdgMitv4YKYQK7+QbG/tNrS/lqVXUOz3iiDQSgkRpqOtUBWfkj0WD7vbhF99NDhV\n"
+ "dxaehFkKv3yNy0bXJlHJBJ6KtOUnDwub8TExh8dyj3kB8Qzj4I98shaXPNUSSaOw\n"
+ "zG6QG72yrxlMs495jkIPbF2JDidmLrX+oVISwKyaBWx+BkFV/KFAEKgaB5/nCw7+\n"
+ "qq/jxsmXim3HuQ3MIAjq1yw9aGRH1HMi8Gn7tYlNGwKBgQDy6EEKpuEiW9wwlI2+\n"
+ "GVuSkhSTTX1h6qK/ay8Jtyb8yJM/BxogAQlfjdgFixiZHy5MaomTbfeT2GDji553\n"
+ "+RsnZ60+g7FI9nHwabSxtuCQ+vjbFqCsdMPAiSeG0bEzo0zf5TjASdUtuZL0vXjl\n"
+ "yMZWDEuESoVNlYlvCOVkw2nvIwKBgQDryPuSq6PNVHRWsKRRs5ju4wKs/1ucBOg5\n"
+ "gCcN8lE03mFCWAlZhypE4/fAhTQ/a5KQoAzc0QZcXRueDyNsnc+QWw3/QWf8/fkV\n"
+ "HPfTWS3Dcuj+4RnWUucaZ/mKFlTC3+eNSlpyaPIMlCjXGsJ9GlPrsaAi9KPbD2v/\n"
+ "XcMq/PMOowKBgHVf7S3sfZVQthFzdxqIvksQ84hKRW/vJT1B2bTkH56+fQhTsjgM\n"
+ "yC64J85l7DjxbDnYsSngVWXHhOnvKV/nq0tbOcefcydCjsQREBNfvxvPajjTskgj\n"
+ "FAQRQlxPL0U4f4khBk9EXhJ+PZithaHjZpNl1YfTSp62x3Yz4kTSeHnpAoGAGn5m\n"
+ "5kArE7NdrzACBrwrfww7DL1Uyd8zSOLBgKutvEcQnqfNxSWO9la3TAarrESmH2Ic\n"
+ "j+Nc15wOsl/5FwdUf1/73qa2zJKtHlY28qSeo8uRqrIYeSCvnyP3wjBoLc2C8zlb\n"
+ "mGd6azdqr2DuYahHrcAzwjnC/6Zn+DXM7FOn7AkCgYBp1xxY88cCoF24yffkD3MC\n"
+ "ACUury4qRSDTGx6/qCCkIyWxg1vuiDrlPWhSwQznxHvovcfpdjdbWcFY87IK6mpG\n"
+ "aJHwMJ7Kw+baoxGPZWHwdg6BgvUCihe3xlcaq6rOBoLviD6FOzbogg++Tvi0LemG\n"
+ "y/wEs/mZkaRzW4n41ir0Xw==\n"
+ "-----END PRIVATE KEY-----\n"
+ ;
+
+ // These elements are identical to the ones from previous revisions. Don't change them; we need to compare.
+ char *domain = "dev.citadel.org";
+ char *selector = "foo";
+
+ // Sample message
+ StrBuf *email = NewStrBufPlain(HKEY(
+ "From: Fred Bloggs <bloggs@dev.citadel.org>\r\n"
+ "X-irrelevant-header: wow mom 303\r\n"
+ "To: Bread Floggs <bf@example.com>\r\n"
+ "Subject: The ultimate test message!\r\n"
+ "Message-ID: <73294856-8726543-473298@dev.citadel.org>\r\n"
+ "\r\n"
+ "Hi.\r\n"
+ "\r\n"
+ "Bhille Disassemble. Highly recommend.\r\n"
+ "\r\n"
+ "--Fred\r\n"
+ ));
+
+ // create signature
+ dkim_sign(email, private_key, domain, selector);
+
+ // Show the user what we did
+ printf("%s", (char *)ChrPtr(email));
+
+ FILE *fp;
+ printf("\033[34m-----\033[0m\n");
+ printf("Piping original version to test program...\n");
+ fp = popen("./tester.pl | sed s/pass/\033[32mpass\033[0m/g | sed s/fail/\033[31mfail\033[0m/g", "w");
+ fwrite((char *)ChrPtr(email), StrLength(email), 1, fp);
+ pclose(fp);
+ printf("\033[34m-----\033[0m\n");
+ printf("Piping altered version to test program...\n");
+ fp = popen("sed s/oggs/argh/g | ./tester.pl | sed s/pass/\033[32mpass\033[0m/g | sed s/fail/\033[31mfail\033[0m/g", "w");
+ fwrite((char *)ChrPtr(email), StrLength(email), 1, fp);
+ pclose(fp);
+ printf("\033[34m-----\033[0m\n");
+
+ // free some memory
+ FreeStrBuf(&email);
+
+ // exit the test program
+ return(0);
+}
--- /dev/null
+#!/usr/bin/perl
+
+use Mail::DKIM::Verifier;
+
+# create a verifier object
+my $dkim = Mail::DKIM::Verifier->new();
+
+# read an email from a file handle
+while (<STDIN>)
+{
+ # remove local line terminators
+ chomp;
+ s/\015$//;
+ # use SMTP line terminators
+ $dkim->PRINT("$_\015\012");
+}
+$dkim->CLOSE;
+
+# what is the result of the verify?
+my $result = $dkim->result;
+
+# there might be multiple signatures, what is the result per signature?
+foreach my $signature ($dkim->signatures)
+{
+ print 'signature identity: ' . $signature->identity . "\n";
+ print ' verify result: ' . $signature->result_detail . "\n";
+}
+
+# the alleged author of the email may specify how to handle email
+foreach my $policy ($dkim->policies)
+{
+ die 'fraudulent message' if ($policy->apply($dkim) eq 'reject');
+}