mirror of
https://github.com/foxcpp/maddy.git
synced 2025-04-05 05:57:39 +03:00
a4b4706dbb
This allows more readable configuration files without additional explanations in cases where a single module is used for multiple purposes. Also cleans up certain problems with modules that rely on block names having certain semantics (e.g. endpoint modules).
601 lines
16 KiB
Go
601 lines
16 KiB
Go
package maddy
|
|
|
|
import (
|
|
"bufio"
|
|
"encoding/json"
|
|
"errors"
|
|
"fmt"
|
|
"io"
|
|
"io/ioutil"
|
|
"math"
|
|
"net"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/emersion/go-message/textproto"
|
|
"github.com/emersion/go-smtp"
|
|
"github.com/foxcpp/maddy/buffer"
|
|
"github.com/foxcpp/maddy/config"
|
|
"github.com/foxcpp/maddy/log"
|
|
"github.com/foxcpp/maddy/module"
|
|
)
|
|
|
|
// PartialError describes state of partially successful message delivery.
|
|
type PartialError struct {
|
|
// Recipients for which delivery permanently failed.
|
|
Failed []string
|
|
// Recipients for which delivery temporary failed.
|
|
TemporaryFailed []string
|
|
|
|
// Underlying error objects.
|
|
Errs map[string]error
|
|
}
|
|
|
|
func (pe PartialError) Error() string {
|
|
return fmt.Sprintf("delivery failed for some recipients (permanently: %v, temporary: %v): %v", pe.Failed, pe.TemporaryFailed, pe.Errs)
|
|
}
|
|
|
|
type Queue struct {
|
|
name string
|
|
location string
|
|
wheel *TimeWheel
|
|
|
|
// Retry delay is calculated using the following formula:
|
|
// initialRetryTime * retryTimeScale ^ (TriesCount - 1)
|
|
|
|
initialRetryTime time.Duration
|
|
retryTimeScale float64
|
|
maxTries int
|
|
|
|
// If any delivery is scheduled in less than postInitDelay
|
|
// after Init, its delay will be increased by postInitDelay.
|
|
//
|
|
// Say, if postInitDelay is 10 secs.
|
|
// Then if some message is scheduled to delivered 5 seconds
|
|
// after init, it will be actually delivered 15 seconds
|
|
// after start-up.
|
|
//
|
|
// This delay is added to make that if maddy is killed shortly
|
|
// after start-up for whatever reason it will not affect the queue.
|
|
postInitDelay time.Duration
|
|
|
|
Log log.Logger
|
|
Target module.DeliveryTarget
|
|
|
|
workersWg sync.WaitGroup
|
|
// Closed from Queue.Close.
|
|
workersStop chan struct{}
|
|
}
|
|
|
|
type QueueMetadata struct {
|
|
MsgMeta *module.MsgMetadata
|
|
From string
|
|
|
|
// Recipients that should be tried next.
|
|
// May or may not be equal to PartialError.TemporaryFailed.
|
|
To []string
|
|
|
|
// Information about previous failures.
|
|
// Preserved to be included in a bounce message.
|
|
FailedRcpts []string
|
|
TemporaryFailedRcpts []string
|
|
// All errors are converted to SMTPError we can serialize and
|
|
// also it is directly usable for bounce messages.
|
|
RcptErrs map[string]*smtp.SMTPError
|
|
|
|
// Amount of times delivery *already tried*.
|
|
TriesCount int
|
|
LastAttempt time.Time
|
|
}
|
|
|
|
func NewQueue(_, instName string, _ []string) (module.Module, error) {
|
|
return &Queue{
|
|
name: instName,
|
|
initialRetryTime: 15 * time.Minute,
|
|
retryTimeScale: 2,
|
|
postInitDelay: 10 * time.Second,
|
|
Log: log.Logger{Name: "queue"},
|
|
workersStop: make(chan struct{}),
|
|
}, nil
|
|
}
|
|
|
|
func (q *Queue) Init(cfg *config.Map) error {
|
|
var workers int
|
|
cfg.Bool("debug", true, &q.Log.Debug)
|
|
cfg.Int("max_tries", false, false, 8, &q.maxTries)
|
|
cfg.Int("workers", false, false, 16, &workers)
|
|
cfg.String("location", false, false, "", &q.location)
|
|
cfg.Custom("target", false, true, nil, deliveryDirective, &q.Target)
|
|
if _, err := cfg.Process(); err != nil {
|
|
return err
|
|
}
|
|
|
|
if q.location == "" && q.name == "" {
|
|
return errors.New("queue: need explicit location directive or config block name if defined inline")
|
|
}
|
|
if q.location == "" {
|
|
q.location = filepath.Join(StateDirectory(cfg.Globals), q.name)
|
|
}
|
|
if !filepath.IsAbs(q.location) {
|
|
q.location = filepath.Join(StateDirectory(cfg.Globals), q.location)
|
|
}
|
|
|
|
// TODO: Check location write permissions.
|
|
if err := os.MkdirAll(q.location, os.ModePerm); err != nil {
|
|
return err
|
|
}
|
|
|
|
return q.start(workers)
|
|
}
|
|
|
|
func (q *Queue) start(workers int) error {
|
|
q.wheel = NewTimeWheel()
|
|
|
|
if err := q.readDiskQueue(); err != nil {
|
|
return err
|
|
}
|
|
|
|
q.Log.Debugf("delivery target: %T", q.Target)
|
|
|
|
for i := 0; i < workers; i++ {
|
|
q.workersWg.Add(1)
|
|
go q.worker()
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (q *Queue) Close() error {
|
|
// Make Close function idempotent. This makes it more
|
|
// convenient to use in certain situations (see queue tests).
|
|
if q.workersStop == nil {
|
|
return nil
|
|
}
|
|
close(q.workersStop)
|
|
q.workersWg.Wait()
|
|
q.workersStop = nil
|
|
q.wheel.Close()
|
|
return nil
|
|
}
|
|
|
|
func (q *Queue) worker() {
|
|
for {
|
|
select {
|
|
case <-q.workersStop:
|
|
q.workersWg.Done()
|
|
return
|
|
case slot := <-q.wheel.Dispatch():
|
|
q.Log.Debugln("worker woke up for", slot.Value)
|
|
id := slot.Value.(string)
|
|
|
|
meta, header, body, err := q.openMessage(id)
|
|
if err != nil {
|
|
q.Log.Printf("failed to read message: %v", err)
|
|
continue
|
|
}
|
|
|
|
q.tryDelivery(meta, header, body)
|
|
}
|
|
}
|
|
}
|
|
|
|
func (q *Queue) tryDelivery(meta *QueueMetadata, header textproto.Header, body buffer.Buffer) {
|
|
id := meta.MsgMeta.ID
|
|
q.Log.Debugf("delivery attempt #%d for msg ID = %s", meta.TriesCount+1, id)
|
|
|
|
partialErr := q.deliver(meta, header, body)
|
|
q.Log.Debugf("failures: permanently: %v, temporary: %v, errors: %v (msg ID = %s)", partialErr.Failed, partialErr.TemporaryFailed, partialErr.Errs, id)
|
|
|
|
// Save permanent errors information for reporting in bounce message.
|
|
meta.FailedRcpts = append(meta.FailedRcpts, partialErr.Failed...)
|
|
for rcpt, rcptErr := range partialErr.Errs {
|
|
var smtpErr *smtp.SMTPError
|
|
var ok bool
|
|
if smtpErr, ok = rcptErr.(*smtp.SMTPError); !ok {
|
|
smtpErr := &smtp.SMTPError{
|
|
Code: 554,
|
|
EnhancedCode: smtp.EnhancedCode{5, 0, 0},
|
|
Message: rcptErr.Error(),
|
|
}
|
|
if isTemporaryErr(rcptErr) {
|
|
smtpErr.Code = 451
|
|
smtpErr.EnhancedCode = smtp.EnhancedCode{4, 0, 0}
|
|
}
|
|
}
|
|
|
|
meta.RcptErrs[rcpt] = smtpErr
|
|
}
|
|
meta.To = partialErr.TemporaryFailed
|
|
|
|
meta.LastAttempt = time.Now()
|
|
if meta.TriesCount == q.maxTries || len(partialErr.TemporaryFailed) == 0 {
|
|
// Attempt either fully succeeded or completely failed.
|
|
// TODO: Send a bounce message.
|
|
if meta.TriesCount == q.maxTries {
|
|
q.Log.Printf("gave up trying to deliver to %v, errors: %v (msg ID = %s)", meta.TemporaryFailedRcpts, meta.RcptErrs, id)
|
|
}
|
|
if len(meta.FailedRcpts) != 0 {
|
|
q.Log.Printf("permanently failed to deliver to %v, errors: %v (msg ID = %s)", meta.FailedRcpts, meta.RcptErrs, id)
|
|
}
|
|
q.removeFromDisk(id)
|
|
return
|
|
}
|
|
|
|
meta.TriesCount++
|
|
|
|
if err := q.updateMetadataOnDisk(meta); err != nil {
|
|
q.Log.Printf("failed to update meta-data: %v", err)
|
|
}
|
|
|
|
nextTryTime := time.Now()
|
|
nextTryTime = nextTryTime.Add(q.initialRetryTime * time.Duration(math.Pow(q.retryTimeScale, float64(meta.TriesCount-1))))
|
|
q.Log.Printf("%d attempt failed for (msg ID = %s), will retry in %v (at %v)", meta.TriesCount, id, time.Until(nextTryTime), nextTryTime)
|
|
|
|
q.wheel.Add(nextTryTime, id)
|
|
}
|
|
|
|
func (q *Queue) deliver(meta *QueueMetadata, header textproto.Header, body buffer.Buffer) PartialError {
|
|
perr := PartialError{
|
|
Errs: map[string]error{},
|
|
}
|
|
|
|
delivery, err := q.Target.Start(meta.MsgMeta, meta.From)
|
|
if err != nil {
|
|
perr.Failed = append(perr.Failed, meta.To...)
|
|
for _, rcpt := range meta.To {
|
|
perr.Errs[rcpt] = err
|
|
}
|
|
return perr
|
|
}
|
|
|
|
var acceptedRcpts []string
|
|
for _, rcpt := range meta.To {
|
|
if err := delivery.AddRcpt(rcpt); err != nil {
|
|
if isTemporaryErr(err) {
|
|
perr.TemporaryFailed = append(perr.TemporaryFailed, rcpt)
|
|
} else {
|
|
perr.Failed = append(perr.Failed, rcpt)
|
|
}
|
|
perr.Errs[rcpt] = err
|
|
} else {
|
|
acceptedRcpts = append(acceptedRcpts, rcpt)
|
|
}
|
|
}
|
|
|
|
if len(acceptedRcpts) == 0 {
|
|
if err := delivery.Abort(); err != nil {
|
|
q.Log.Printf("delivery.Abort failed: %v (msg ID = %s)", err, meta.MsgMeta.ID)
|
|
}
|
|
return perr
|
|
}
|
|
|
|
expandToPartialErr := func(err error) {
|
|
if expandedPerr, ok := err.(PartialError); ok {
|
|
perr.TemporaryFailed = append(perr.TemporaryFailed, expandedPerr.TemporaryFailed...)
|
|
perr.Failed = append(perr.Failed, expandedPerr.Failed...)
|
|
for rcpt, rcptErr := range expandedPerr.Errs {
|
|
perr.Errs[rcpt] = rcptErr
|
|
}
|
|
} else {
|
|
if isTemporaryErr(err) {
|
|
perr.TemporaryFailed = append(perr.TemporaryFailed, acceptedRcpts...)
|
|
} else {
|
|
perr.Failed = append(perr.Failed, acceptedRcpts...)
|
|
}
|
|
for _, rcpt := range acceptedRcpts {
|
|
perr.Errs[rcpt] = err
|
|
}
|
|
}
|
|
}
|
|
|
|
if err := delivery.Body(header, body); err != nil {
|
|
expandToPartialErr(err)
|
|
// No recipients succeeded.
|
|
if len(perr.TemporaryFailed)+len(perr.Failed) == len(acceptedRcpts) {
|
|
if err := delivery.Abort(); err != nil {
|
|
q.Log.Printf("delivery.Abort failed: %v (msg ID = %s)", err, meta.MsgMeta.ID)
|
|
}
|
|
return perr
|
|
}
|
|
}
|
|
if err := delivery.Commit(); err != nil {
|
|
expandToPartialErr(err)
|
|
}
|
|
|
|
return perr
|
|
}
|
|
|
|
type queueDelivery struct {
|
|
q *Queue
|
|
meta *QueueMetadata
|
|
|
|
header textproto.Header
|
|
body buffer.Buffer
|
|
}
|
|
|
|
func (qd *queueDelivery) AddRcpt(rcptTo string) error {
|
|
qd.meta.To = append(qd.meta.To, rcptTo)
|
|
return nil
|
|
}
|
|
|
|
func (qd *queueDelivery) Body(header textproto.Header, body buffer.Buffer) error {
|
|
// Body buffer initially passed to us may not be valid after "delivery" to queue completes.
|
|
// storeNewMessage returns a new buffer object created from message blob stored on disk.
|
|
storedBody, err := qd.q.storeNewMessage(qd.meta, header, body)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
qd.body = storedBody
|
|
qd.header = header
|
|
return nil
|
|
}
|
|
|
|
func (qd *queueDelivery) Abort() error {
|
|
if qd.body != nil {
|
|
qd.q.removeFromDisk(qd.meta.MsgMeta.ID)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (qd *queueDelivery) Commit() error {
|
|
// workersWg counter in incremented to make sure there will be no race with Close.
|
|
// e.g. it will not close the wheel before we complete first attempt.
|
|
// Also the first attempt is not scheduled using time wheel because
|
|
// the "normal" code path requires re-reading and re-parsing of header
|
|
// which is kinda expensive.
|
|
// FIXME: Though this is temporary solution, the correct fix
|
|
// would be to ditch "worker goroutines" altogether and enforce
|
|
// concurrent deliveries limit using a semaphore.
|
|
qd.q.workersWg.Add(1)
|
|
go func() {
|
|
qd.q.tryDelivery(qd.meta, qd.header, qd.body)
|
|
qd.q.workersWg.Done()
|
|
}()
|
|
return nil
|
|
}
|
|
|
|
func (q *Queue) Start(msgMeta *module.MsgMetadata, mailFrom string) (module.Delivery, error) {
|
|
meta := &QueueMetadata{
|
|
MsgMeta: msgMeta,
|
|
From: mailFrom,
|
|
RcptErrs: map[string]*smtp.SMTPError{},
|
|
LastAttempt: time.Now(),
|
|
}
|
|
return &queueDelivery{q: q, meta: meta}, nil
|
|
}
|
|
|
|
func (q *Queue) removeFromDisk(id string) {
|
|
// Order is important.
|
|
// If we remove header and body but can't remove meta now - readDiskQueue
|
|
// will detect and report it.
|
|
headerPath := filepath.Join(q.location, id+".header")
|
|
if err := os.Remove(headerPath); err != nil {
|
|
q.Log.Printf("failed to remove header from disk: %v (msg ID = %s)", err, id)
|
|
}
|
|
bodyPath := filepath.Join(q.location, id+".body")
|
|
if err := os.Remove(bodyPath); err != nil {
|
|
q.Log.Printf("failed to remove body from disk: %v (msg ID = %s)", err, id)
|
|
}
|
|
metaPath := filepath.Join(q.location, id+".meta")
|
|
if err := os.Remove(metaPath); err != nil {
|
|
q.Log.Printf("failed to remove meta-data from disk: %v (msg ID = %s)", err, id)
|
|
}
|
|
q.Log.Debugf("removed message from disk (msg ID = %s)", id)
|
|
}
|
|
|
|
func (q *Queue) readDiskQueue() error {
|
|
dirInfo, err := ioutil.ReadDir(q.location)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// TODO: Rewrite this function to pass all sub-tests in TestQueueDelivery_DeserializationCleanUp/NoMeta.
|
|
|
|
loadedCount := 0
|
|
for _, entry := range dirInfo {
|
|
// We start loading from meta-data files and then check whether ID.header and ID.body exist.
|
|
// This allows us to properly detect dangling body files.
|
|
if entry.IsDir() || !strings.HasSuffix(entry.Name(), ".meta") {
|
|
continue
|
|
}
|
|
id := entry.Name()[:len(entry.Name())-5]
|
|
|
|
meta, err := q.readMessageMeta(id)
|
|
if err != nil {
|
|
q.Log.Printf("failed to read meta-data, skipping: %v (msg ID = %s)", err, id)
|
|
continue
|
|
}
|
|
|
|
// Check header file existence.
|
|
if _, err := os.Stat(filepath.Join(q.location, id+".header")); err != nil {
|
|
if os.IsNotExist(err) {
|
|
q.Log.Printf("header file doesn't exist for msg ID = %s", id)
|
|
q.tryRemoveDanglingFile(id + ".meta")
|
|
q.tryRemoveDanglingFile(id + ".body")
|
|
} else {
|
|
q.Log.Printf("skipping nonstat'able header file: %v (msg ID = %s)", err, id)
|
|
}
|
|
continue
|
|
}
|
|
|
|
// Check body file existence.
|
|
if _, err := os.Stat(filepath.Join(q.location, id+".body")); err != nil {
|
|
if os.IsNotExist(err) {
|
|
q.Log.Printf("body file doesn't exist for msg ID = %s", id)
|
|
q.tryRemoveDanglingFile(id + ".meta")
|
|
q.tryRemoveDanglingFile(id + ".header")
|
|
} else {
|
|
q.Log.Printf("skipping nonstat'able body file: %v (msg ID = %s)", err, id)
|
|
}
|
|
continue
|
|
}
|
|
|
|
nextTryTime := meta.LastAttempt
|
|
nextTryTime = nextTryTime.Add(q.initialRetryTime * time.Duration(math.Pow(q.retryTimeScale, float64(meta.TriesCount-1))))
|
|
|
|
if time.Until(nextTryTime) < q.postInitDelay {
|
|
nextTryTime = time.Now().Add(q.postInitDelay)
|
|
}
|
|
|
|
q.Log.Debugf("will try to deliver (msg ID = %s) in %v (%v)", id, time.Until(nextTryTime), nextTryTime)
|
|
q.wheel.Add(nextTryTime, id)
|
|
loadedCount++
|
|
}
|
|
|
|
if loadedCount != 0 {
|
|
q.Log.Printf("loaded %d saved queue entries", loadedCount)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (q *Queue) storeNewMessage(meta *QueueMetadata, header textproto.Header, body buffer.Buffer) (buffer.Buffer, error) {
|
|
id := meta.MsgMeta.ID
|
|
|
|
headerPath := filepath.Join(q.location, id+".header")
|
|
headerFile, err := os.Create(headerPath)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer headerFile.Close()
|
|
|
|
if err := textproto.WriteHeader(headerFile, header); err != nil {
|
|
q.tryRemoveDanglingFile(id + ".header")
|
|
return nil, err
|
|
}
|
|
|
|
bodyReader, err := body.Open()
|
|
if err != nil {
|
|
q.tryRemoveDanglingFile(id + ".header")
|
|
return nil, err
|
|
}
|
|
defer bodyReader.Close()
|
|
|
|
bodyPath := filepath.Join(q.location, id+".body")
|
|
bodyFile, err := os.Create(bodyPath)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer bodyFile.Close()
|
|
|
|
if _, err := io.Copy(bodyFile, bodyReader); err != nil {
|
|
q.tryRemoveDanglingFile(id + ".body")
|
|
q.tryRemoveDanglingFile(id + ".header")
|
|
return nil, err
|
|
}
|
|
|
|
if err := q.updateMetadataOnDisk(meta); err != nil {
|
|
q.tryRemoveDanglingFile(id + ".body")
|
|
q.tryRemoveDanglingFile(id + ".header")
|
|
return nil, err
|
|
}
|
|
|
|
return buffer.FileBuffer{Path: bodyPath}, nil
|
|
}
|
|
|
|
func (q *Queue) updateMetadataOnDisk(meta *QueueMetadata) error {
|
|
metaPath := filepath.Join(q.location, meta.MsgMeta.ID+".meta")
|
|
file, err := os.Create(metaPath)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer file.Close()
|
|
|
|
metaCopy := *meta
|
|
metaCopy.MsgMeta = meta.MsgMeta.DeepCopy()
|
|
|
|
if _, ok := metaCopy.MsgMeta.SrcAddr.(*net.TCPAddr); !ok {
|
|
meta.MsgMeta.SrcAddr = nil
|
|
}
|
|
|
|
if err := json.NewEncoder(file).Encode(metaCopy); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (q *Queue) readMessageMeta(id string) (*QueueMetadata, error) {
|
|
metaPath := filepath.Join(q.location, id+".meta")
|
|
file, err := os.Open(metaPath)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer file.Close()
|
|
|
|
meta := &QueueMetadata{}
|
|
|
|
// net.Addr can't be deserialized because we don't know concrete type. For
|
|
// this reason we assume that SrcAddr is TCPAddr, if it is not - we drop it
|
|
// during serialization (see updateMetadataOnDisk).
|
|
meta.MsgMeta = &module.MsgMetadata{}
|
|
meta.MsgMeta.SrcAddr = &net.TCPAddr{}
|
|
|
|
if err := json.NewDecoder(file).Decode(meta); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return meta, nil
|
|
}
|
|
|
|
type BufferedReadCloser struct {
|
|
*bufio.Reader
|
|
io.Closer
|
|
}
|
|
|
|
func (q *Queue) tryRemoveDanglingFile(name string) {
|
|
if err := os.Remove(filepath.Join(q.location, name)); err != nil {
|
|
q.Log.Println(err)
|
|
return
|
|
}
|
|
q.Log.Printf("removed dangling file %s", name)
|
|
}
|
|
|
|
func (q *Queue) openMessage(id string) (*QueueMetadata, textproto.Header, buffer.Buffer, error) {
|
|
meta, err := q.readMessageMeta(id)
|
|
if err != nil {
|
|
return nil, textproto.Header{}, nil, err
|
|
}
|
|
|
|
bodyPath := filepath.Join(q.location, id+".body")
|
|
_, err = os.Stat(bodyPath)
|
|
if err != nil {
|
|
if os.IsNotExist(err) {
|
|
q.tryRemoveDanglingFile(id + ".meta")
|
|
}
|
|
return nil, textproto.Header{}, nil, nil
|
|
}
|
|
body := buffer.FileBuffer{Path: bodyPath}
|
|
|
|
headerPath := filepath.Join(q.location, id+".header")
|
|
headerFile, err := os.Open(headerPath)
|
|
if err != nil {
|
|
if os.IsNotExist(err) {
|
|
q.tryRemoveDanglingFile(id + ".meta")
|
|
q.tryRemoveDanglingFile(id + ".body")
|
|
}
|
|
return nil, textproto.Header{}, nil, nil
|
|
}
|
|
|
|
bufferedHeader := bufio.NewReader(headerFile)
|
|
header, err := textproto.ReadHeader(bufferedHeader)
|
|
if err != nil {
|
|
return nil, textproto.Header{}, nil, nil
|
|
}
|
|
|
|
return meta, header, body, nil
|
|
}
|
|
|
|
func (q *Queue) InstanceName() string {
|
|
return q.name
|
|
}
|
|
|
|
func (q *Queue) Name() string {
|
|
return "queue"
|
|
}
|
|
|
|
func init() {
|
|
module.Register("queue", NewQueue)
|
|
}
|