mirror of
https://github.com/foxcpp/maddy.git
synced 2025-04-04 21:47:40 +03:00
0ddf540d35
It is correct fix for initialization order issue introduced in https://github.com/emersion/maddy/pull/24.
287 lines
6.4 KiB
Go
287 lines
6.4 KiB
Go
package maddy
|
|
|
|
import (
|
|
"bytes"
|
|
"errors"
|
|
"fmt"
|
|
"io"
|
|
"net"
|
|
"regexp"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/emersion/go-smtp"
|
|
"github.com/emersion/maddy/config"
|
|
"github.com/emersion/maddy/module"
|
|
)
|
|
|
|
type SMTPPipelineStep interface {
|
|
Pass(ctx *module.DeliveryContext, msg io.Reader) (io.Reader, bool, error)
|
|
}
|
|
|
|
type requireAuthStep struct{}
|
|
|
|
func (requireAuthStep) Pass(ctx *module.DeliveryContext, _ io.Reader) (io.Reader, bool, error) {
|
|
if ctx.AuthUser != "" {
|
|
return nil, true, nil
|
|
}
|
|
return nil, false, &smtp.SMTPError{
|
|
Code: 550,
|
|
Message: "Authentication is required",
|
|
}
|
|
}
|
|
|
|
type filterStep struct {
|
|
f module.Filter
|
|
opts map[string]string
|
|
}
|
|
|
|
func (step filterStep) Pass(ctx *module.DeliveryContext, msg io.Reader) (io.Reader, bool, error) {
|
|
ctx.Opts = step.opts
|
|
r, err := step.f.Apply(ctx, msg)
|
|
if err == module.ErrSilentDrop {
|
|
return nil, false, nil
|
|
}
|
|
if err != nil {
|
|
return nil, false, err
|
|
}
|
|
return r, true, nil
|
|
}
|
|
|
|
type deliveryStep struct {
|
|
t module.DeliveryTarget
|
|
opts map[string]string
|
|
}
|
|
|
|
func LookupAddr(ip net.IP) (string, error) {
|
|
names, err := net.LookupAddr(ip.String())
|
|
if err != nil || len(names) == 0 {
|
|
return "", err
|
|
}
|
|
return strings.TrimRight(names[0], "."), nil
|
|
}
|
|
|
|
func (step deliveryStep) Pass(ctx *module.DeliveryContext, msg io.Reader) (io.Reader, bool, error) {
|
|
// We can safetly assume at least one recipient.
|
|
to := sanitizeString(ctx.To[0])
|
|
|
|
// TODO: Include reverse DNS information.
|
|
received := "Received: from " + ctx.SrcHostname
|
|
if tcpAddr, ok := ctx.SrcAddr.(*net.TCPAddr); ok {
|
|
domain, err := LookupAddr(tcpAddr.IP)
|
|
if err != nil {
|
|
received += fmt.Sprintf(" ([%v])", tcpAddr.IP)
|
|
} else {
|
|
received += fmt.Sprintf(" (%s [%v])", domain, tcpAddr.IP)
|
|
}
|
|
}
|
|
// TODO: Include our public IP address.
|
|
received += fmt.Sprintf("\r\n\tby %s with %s", sanitizeString(ctx.OurHostname), ctx.SrcProto)
|
|
received += fmt.Sprintf("\r\n\tfor %s; %s\r\n", to, time.Now().Format(time.RFC1123Z))
|
|
|
|
msg = io.MultiReader(strings.NewReader(received), msg)
|
|
|
|
ctx.Opts = step.opts
|
|
err := step.t.Deliver(*ctx, msg)
|
|
return nil, err == nil, err
|
|
}
|
|
|
|
type matchStep struct {
|
|
field string
|
|
pattern string
|
|
inverted bool
|
|
regexp *regexp.Regexp
|
|
substeps []SMTPPipelineStep
|
|
}
|
|
|
|
func (step matchStep) Pass(ctx *module.DeliveryContext, msg io.Reader) (io.Reader, bool, error) {
|
|
match := false
|
|
switch step.field {
|
|
case "rcpt":
|
|
for _, rcpt := range ctx.To {
|
|
if step.matches(rcpt) {
|
|
match = true
|
|
break
|
|
}
|
|
}
|
|
case "rcpt_domain":
|
|
for _, rcpt := range ctx.To {
|
|
parts := strings.Split(rcpt, "@")
|
|
if len(parts) != 2 {
|
|
return nil, false, errors.New("invalid address")
|
|
}
|
|
if step.matches(parts[1]) {
|
|
match = true
|
|
break
|
|
}
|
|
}
|
|
case "from":
|
|
match = step.matches(ctx.From)
|
|
case "from_domain":
|
|
parts := strings.Split(ctx.From, "@")
|
|
if len(parts) != 2 {
|
|
return nil, false, errors.New("invalid address")
|
|
}
|
|
match = step.matches(parts[1])
|
|
case "src_addr":
|
|
match = step.matches(ctx.SrcAddr.String())
|
|
case "src_hostname":
|
|
match = step.matches(ctx.SrcHostname)
|
|
}
|
|
|
|
if !match {
|
|
return nil, true, nil
|
|
}
|
|
|
|
currentMsg := msg
|
|
var buf bytes.Buffer
|
|
for _, substep := range step.substeps {
|
|
r, cont, err := substep.Pass(ctx, currentMsg)
|
|
if !cont {
|
|
return nil, cont, err
|
|
}
|
|
|
|
if r != nil {
|
|
if _, err := io.Copy(&buf, r); err != nil {
|
|
return nil, false, err
|
|
}
|
|
currentMsg = &buf
|
|
}
|
|
}
|
|
|
|
if currentMsg != msg {
|
|
return currentMsg, true, nil
|
|
}
|
|
return msg, true, nil
|
|
}
|
|
|
|
func (step matchStep) matches(s string) bool {
|
|
var match bool
|
|
if step.regexp != nil {
|
|
match = step.regexp.MatchString(s)
|
|
} else {
|
|
match = strings.Contains(s, step.pattern)
|
|
}
|
|
|
|
if step.inverted {
|
|
return !match
|
|
} else {
|
|
return match
|
|
}
|
|
}
|
|
|
|
type stopStep struct{}
|
|
|
|
func (stopStep) Pass(_ *module.DeliveryContext, _ io.Reader) (io.Reader, bool, error) {
|
|
return nil, false, nil
|
|
}
|
|
|
|
func filterStepFromCfg(node config.Node) (SMTPPipelineStep, error) {
|
|
if len(node.Args) == 0 {
|
|
return nil, errors.New("filter: expected at least one argument")
|
|
}
|
|
|
|
modInst, err := module.GetInstance(node.Args[0])
|
|
if err != nil {
|
|
return nil, fmt.Errorf("filter: unknown module instance: %s", node.Args[0])
|
|
}
|
|
|
|
filterInst, ok := modInst.(module.Filter)
|
|
if !ok {
|
|
return nil, fmt.Errorf("filter: module %s (%s) doesn't implements Filter", modInst.Name(), modInst.InstanceName())
|
|
}
|
|
|
|
return filterStep{
|
|
f: filterInst,
|
|
opts: readOpts(node.Args[1:]),
|
|
}, nil
|
|
}
|
|
|
|
func deliveryStepFromCfg(node config.Node) (SMTPPipelineStep, error) {
|
|
if len(node.Args) == 0 {
|
|
return nil, errors.New("delivery: expected at least one argument")
|
|
}
|
|
|
|
modInst, err := module.GetInstance(node.Args[0])
|
|
if err != nil {
|
|
return nil, fmt.Errorf("delivery: unknown module instance: %s", node.Args[0])
|
|
}
|
|
|
|
deliveryInst, ok := modInst.(module.DeliveryTarget)
|
|
if !ok {
|
|
return nil, fmt.Errorf("delivery: module %s (%s) doesn't implements DeliveryTarget", modInst.Name(), modInst.InstanceName())
|
|
}
|
|
|
|
return deliveryStep{
|
|
t: deliveryInst,
|
|
opts: readOpts(node.Args[1:]),
|
|
}, nil
|
|
}
|
|
|
|
func readOpts(args []string) (res map[string]string) {
|
|
res = make(map[string]string)
|
|
for _, arg := range args {
|
|
parts := strings.SplitN(arg, "=", 1)
|
|
if len(parts) == 1 {
|
|
res[parts[0]] = ""
|
|
} else {
|
|
res[parts[0]] = parts[1]
|
|
}
|
|
|
|
}
|
|
return
|
|
}
|
|
|
|
func matchStepFromCfg(node config.Node) (SMTPPipelineStep, error) {
|
|
if len(node.Args) != 3 && len(node.Args) != 2 {
|
|
return nil, errors.New("match: expected 3 or 2 arguments")
|
|
}
|
|
|
|
res := matchStep{}
|
|
|
|
if len(node.Args) == 3 {
|
|
if node.Args[0] != "no" {
|
|
return nil, errors.New("expected 'no' after match")
|
|
}
|
|
res.inverted = true
|
|
node.Args = node.Args[1:]
|
|
}
|
|
|
|
res.field = node.Args[0]
|
|
res.pattern = node.Args[1]
|
|
if strings.HasPrefix(res.pattern, "/") && strings.HasSuffix(res.pattern, "/") {
|
|
res.pattern = res.pattern[1 : len(res.pattern)-1]
|
|
var err error
|
|
res.regexp, err = regexp.Compile(res.pattern)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
}
|
|
|
|
for _, child := range node.Children {
|
|
step, err := StepFromCfg(child)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
res.substeps = append(res.substeps, step)
|
|
}
|
|
|
|
return res, nil
|
|
}
|
|
|
|
func StepFromCfg(node config.Node) (SMTPPipelineStep, error) {
|
|
switch node.Name {
|
|
case "filter":
|
|
return filterStepFromCfg(node)
|
|
case "delivery":
|
|
return deliveryStepFromCfg(node)
|
|
case "match":
|
|
return matchStepFromCfg(node)
|
|
case "stop":
|
|
return stopStep{}, nil
|
|
case "require_auth":
|
|
return requireAuthStep{}, nil
|
|
default:
|
|
return nil, fmt.Errorf("unknown pipeline step: %s", node.Name)
|
|
}
|
|
}
|