mirror of
https://github.com/foxcpp/maddy.git
synced 2025-04-04 13:37:41 +03:00
335 lines
6.9 KiB
Go
335 lines
6.9 KiB
Go
//+build integration
|
|
|
|
package tests_test
|
|
|
|
import (
|
|
"errors"
|
|
"io/ioutil"
|
|
"path/filepath"
|
|
"testing"
|
|
|
|
"github.com/foxcpp/go-mockdns"
|
|
"github.com/foxcpp/maddy/tests"
|
|
)
|
|
|
|
func TestCheckRequireTLS(tt *testing.T) {
|
|
tt.Parallel()
|
|
t := tests.NewT(tt)
|
|
t.DNS(nil)
|
|
t.Port("smtp")
|
|
t.Config(`
|
|
smtp tcp://127.0.0.1:{env:TEST_PORT_smtp} {
|
|
hostname mx.maddy.test
|
|
tls self_signed
|
|
|
|
defer_sender_reject no
|
|
|
|
check {
|
|
require_tls
|
|
}
|
|
deliver_to dummy
|
|
}
|
|
`)
|
|
t.Run(1)
|
|
defer t.Close()
|
|
|
|
conn := t.Conn("smtp")
|
|
defer conn.Close()
|
|
conn.SMTPNegotation("localhost", nil, nil)
|
|
conn.Writeln("MAIL FROM:<testing@two.maddy.test>")
|
|
conn.ExpectPattern("550 5.7.1 *")
|
|
conn.Writeln("STARTTLS")
|
|
conn.ExpectPattern("220 *")
|
|
conn.TLS()
|
|
conn.SMTPNegotation("localhost", nil, nil)
|
|
conn.Writeln("MAIL FROM:<testing@two.maddy.test>")
|
|
conn.ExpectPattern("250 *")
|
|
conn.Writeln("QUIT")
|
|
conn.ExpectPattern("221 *")
|
|
}
|
|
|
|
func TestCheckSPF(tt *testing.T) {
|
|
tt.Parallel()
|
|
t := tests.NewT(tt)
|
|
t.DNS(map[string]mockdns.Zone{
|
|
"none.maddy.test.": {
|
|
TXT: []string{},
|
|
},
|
|
"neutral.maddy.test.": {
|
|
TXT: []string{"v=spf1 ?all"},
|
|
},
|
|
"fail.maddy.test.": {
|
|
TXT: []string{"v=spf1 -all"},
|
|
},
|
|
"softfail.maddy.test.": {
|
|
TXT: []string{"v=spf1 ~all"},
|
|
},
|
|
"permerr.maddy.test.": {
|
|
TXT: []string{"v=spf1 something_clever"},
|
|
},
|
|
"temperr.maddy.test.": {
|
|
Err: errors.New("IANA forgot to resign the root zone"),
|
|
},
|
|
})
|
|
t.Port("smtp")
|
|
t.Config(`
|
|
smtp tcp://127.0.0.1:{env:TEST_PORT_smtp} {
|
|
hostname mx.maddy.test
|
|
tls off
|
|
|
|
defer_sender_reject no
|
|
|
|
check {
|
|
apply_spf {
|
|
enforce_early yes
|
|
|
|
none_action ignore
|
|
neutral_action reject
|
|
fail_action reject
|
|
softfail_action reject
|
|
permerr_action reject
|
|
temperr_action reject
|
|
}
|
|
}
|
|
deliver_to dummy
|
|
}
|
|
`)
|
|
t.Run(1)
|
|
defer t.Close()
|
|
|
|
conn := t.Conn("smtp")
|
|
defer conn.Close()
|
|
conn.SMTPNegotation("localhost", nil, nil)
|
|
|
|
conn.Writeln("MAIL FROM:<testing@none.maddy.test>")
|
|
conn.ExpectPattern("250 *")
|
|
conn.Writeln("RSET")
|
|
conn.ExpectPattern("250 *")
|
|
|
|
conn.Writeln("MAIL FROM:<testing@fail.maddy.test>")
|
|
conn.ExpectPattern("550 5.7.23 *")
|
|
|
|
conn.Writeln("MAIL FROM:<testing@softfail.maddy.test>")
|
|
conn.ExpectPattern("550 5.7.23 *")
|
|
|
|
conn.Writeln("MAIL FROM:<testing@permerr.maddy.test>")
|
|
conn.ExpectPattern("550 5.7.23 *")
|
|
|
|
conn.Writeln("MAIL FROM:<testing@temperr.maddy.test>")
|
|
conn.ExpectPattern("451 4.7.23 *")
|
|
|
|
conn.Writeln("QUIT")
|
|
conn.ExpectPattern("221 *")
|
|
}
|
|
|
|
func TestDNSBLConfig(tt *testing.T) {
|
|
tt.Parallel()
|
|
t := tests.NewT(tt)
|
|
t.DNS(map[string]mockdns.Zone{
|
|
"1.0.0.127.dnsbl.test.": {
|
|
A: []string{"127.0.0.127"},
|
|
},
|
|
"sender.test.dnsbl.test.": {
|
|
A: []string{"127.0.0.127"},
|
|
},
|
|
})
|
|
t.Port("smtp")
|
|
t.Config(`
|
|
smtp tcp://127.0.0.1:{env:TEST_PORT_smtp} {
|
|
hostname mx.maddy.test
|
|
tls off
|
|
|
|
defer_sender_reject no
|
|
|
|
check {
|
|
dnsbl {
|
|
reject_threshold 1
|
|
|
|
dnsbl.test {
|
|
client_ipv4
|
|
mailfrom
|
|
}
|
|
}
|
|
}
|
|
deliver_to dummy
|
|
}
|
|
`)
|
|
t.Run(1)
|
|
defer t.Close()
|
|
|
|
conn := t.Conn("smtp")
|
|
defer conn.Close()
|
|
conn.SMTPNegotation("localhost", nil, nil)
|
|
|
|
conn.Writeln("MAIL FROM:<testing@sender.test>")
|
|
conn.ExpectPattern("554 5.7.0 Client identity is listed in the used DNSBL *")
|
|
|
|
conn.Writeln("MAIL FROM:<testing@misc.test>")
|
|
conn.ExpectPattern("554 5.7.0 Client identity is listed in the used DNSBL *")
|
|
|
|
conn.Writeln("QUIT")
|
|
conn.ExpectPattern("221 *")
|
|
}
|
|
|
|
func TestDNSBLConfig2(tt *testing.T) {
|
|
tt.Parallel()
|
|
t := tests.NewT(tt)
|
|
t.DNS(map[string]mockdns.Zone{
|
|
"1.0.0.127.dnsbl2.test.": {
|
|
A: []string{"127.0.0.127"},
|
|
},
|
|
"sender.test.dnsbl.test.": {
|
|
A: []string{"127.0.0.127"},
|
|
},
|
|
})
|
|
t.Port("smtp")
|
|
t.Config(`
|
|
smtp tcp://127.0.0.1:{env:TEST_PORT_smtp} {
|
|
hostname mx.maddy.test
|
|
tls off
|
|
|
|
defer_sender_reject no
|
|
|
|
check {
|
|
dnsbl {
|
|
reject_threshold 1
|
|
|
|
dnsbl.test {
|
|
mailfrom
|
|
}
|
|
dnsbl2.test {
|
|
client_ipv4
|
|
score -1
|
|
}
|
|
}
|
|
}
|
|
deliver_to dummy
|
|
}
|
|
`)
|
|
t.Run(1)
|
|
defer t.Close()
|
|
|
|
conn := t.Conn("smtp")
|
|
defer conn.Close()
|
|
conn.SMTPNegotation("localhost", nil, nil)
|
|
|
|
conn.Writeln("MAIL FROM:<testing@sender.test>")
|
|
conn.ExpectPattern("250 *")
|
|
|
|
conn.Writeln("QUIT")
|
|
conn.ExpectPattern("221 *")
|
|
}
|
|
|
|
func TestCheckCommand(tt *testing.T) {
|
|
tt.Parallel()
|
|
t := tests.NewT(tt)
|
|
t.DNS(nil)
|
|
t.Port("smtp")
|
|
t.Config(`
|
|
smtp tcp://127.0.0.1:{env:TEST_PORT_smtp} {
|
|
hostname mx.maddy.test
|
|
tls off
|
|
|
|
check {
|
|
command {env:TEST_PWD}/testdata/check_command.sh {sender} {
|
|
code 12 reject
|
|
}
|
|
}
|
|
deliver_to dummy
|
|
}
|
|
`)
|
|
t.Run(1)
|
|
defer t.Close()
|
|
|
|
conn := t.Conn("smtp")
|
|
defer conn.Close()
|
|
conn.SMTPNegotation("localhost", nil, nil)
|
|
|
|
// Note: Internally, messages are handled using LF line endings, being
|
|
// converted CRLF only when transfered over Internet protocols.
|
|
expectedMsg := "From: <testing@sender.test>\n" +
|
|
"To: <testing@maddy.test>\n" +
|
|
"Subject: Hi there!\n" +
|
|
"\n" +
|
|
"Nice to meet you!\n"
|
|
submitMsg := func(conn *tests.Conn, from string) {
|
|
// Fairly trivial SMTP transaction.
|
|
conn.Writeln("MAIL FROM:<" + from + ">")
|
|
conn.ExpectPattern("250 *")
|
|
conn.Writeln("RCPT TO:<testing@maddy.test>")
|
|
conn.ExpectPattern("250 *")
|
|
conn.Writeln("DATA")
|
|
conn.ExpectPattern("354 *")
|
|
conn.Writeln("From: <testing@sender.test>")
|
|
conn.Writeln("To: <testing@maddy.test>")
|
|
conn.Writeln("Subject: Hi there!")
|
|
conn.Writeln("")
|
|
conn.Writeln("Nice to meet you!")
|
|
conn.Writeln(".")
|
|
}
|
|
|
|
t.Subtest("Message dump", func(t *tests.T) {
|
|
conn := conn.Rebind(t)
|
|
|
|
submitMsg(conn, "testing@maddy.test")
|
|
conn.ExpectPattern("250 *")
|
|
|
|
msgPath := filepath.Join(t.StateDir(), "msg")
|
|
msgContents, err := ioutil.ReadFile(msgPath)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if string(msgContents) != expectedMsg {
|
|
t.Log("Wrong message contents received by check script!")
|
|
t.Log("Actual:")
|
|
t.Log(msgContents)
|
|
t.Log("Expected:")
|
|
t.Log(expectedMsg)
|
|
}
|
|
})
|
|
t.Subtest("Message dump + Add header", func(t *tests.T) {
|
|
conn := conn.Rebind(t)
|
|
|
|
submitMsg(conn, "testing+addHeader@maddy.test")
|
|
conn.ExpectPattern("250 *")
|
|
|
|
msgPath := filepath.Join(t.StateDir(), "msg")
|
|
msgContents, err := ioutil.ReadFile(msgPath)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
expectedMsg := "X-Added-Header: 1\n" + expectedMsg
|
|
if string(msgContents) != expectedMsg {
|
|
t.Log("Wrong message contents received by check script!")
|
|
t.Log("Actual:")
|
|
t.Log(msgContents)
|
|
t.Log("Expected:")
|
|
t.Log(expectedMsg)
|
|
}
|
|
})
|
|
t.Subtest("Body reject", func(t *tests.T) {
|
|
conn := conn.Rebind(t)
|
|
|
|
submitMsg(conn, "testing+reject@maddy.test")
|
|
conn.ExpectPattern("550 *")
|
|
|
|
msgPath := filepath.Join(t.StateDir(), "msg")
|
|
msgContents, err := ioutil.ReadFile(msgPath)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if string(msgContents) != expectedMsg {
|
|
t.Log("Wrong message contents received by check script!")
|
|
t.Log("Actual:")
|
|
t.Log(msgContents)
|
|
t.Log("Expected:")
|
|
t.Log([]byte(expectedMsg))
|
|
}
|
|
})
|
|
|
|
conn.Writeln("QUIT")
|
|
conn.ExpectPattern("221 *")
|
|
}
|