wildduck/lmtp.js

'use strict';

// Simple LMTP server that accepts all messages for valid recipients

const config = require('wild-config');
const log = require('npmlog');
const ObjectId = require('mongodb').ObjectId;
const SMTPServer = require('smtp-server').SMTPServer;
const tools = require('./lib/tools');
const MessageHandler = require('./lib/message-handler');
const UserHandler = require('./lib/user-handler');
const FilterHandler = require('./lib/filter-handler');
const db = require('./lib/db');
const certs = require('./lib/certs');
const Gelf = require('gelf');
const os = require('os');

let messageHandler;
let userHandler;
let filterHandler;
let loggelf;

config.on('reload', () => {
    log.info('LMTP', 'Configuration reloaded');
});

const serverOptions = {
    lmtp: true,

    secure: config.lmtp.secure,
    secured: config.lmtp.secured,

    // log to console
    logger: {
        info(...args) {
            args.shift();
            log.info('LMTP', ...args);
        },
        debug(...args) {
            args.shift();
            log.silly('LMTP', ...args);
        },
        error(...args) {
            args.shift();
            log.error('LMTP', ...args);
        }
    },

    name: config.lmtp.name || false,

    // not required but nice-to-have
    banner: config.lmtp.banner || 'Welcome to WildDuck Mail Server',

    disabledCommands: ['AUTH'].concat(config.lmtp.disableSTARTTLS ? 'STARTTLS' : []),

    onMailFrom(address, session, callback) {
        // reset session entries
        session.users = [];

        // accept alls sender addresses
        return callback();
    },

    // Validate RCPT TO envelope address. Example allows all addresses that do not start with 'deny'
    // If this method is not set, all addresses are allowed
    onRcptTo(rcpt, session, callback) {
        let originalRecipient = tools.normalizeAddress(rcpt.address);
        userHandler.get(
            originalRecipient,
            {
                name: true,
                forwards: true,
                targets: true,
                autoreply: true,
                encryptMessages: true,
                encryptForwarded: true,
                pubKey: true,
                spamLevel: true
            },
            (err, userData) => {
                if (err) {
                    log.error('LMTP', err);
                    return callback(new Error('Database error'));
                }
                if (!userData) {
                    return callback(new Error('Unknown recipient'));
                }

                if (!session.users) {
                    session.users = [];
                }

                session.users.push({
                    recipient: originalRecipient,
                    user: userData
                });

                callback();
            }
        );
    },

    // Handle message stream
    onData(stream, session, callback) {
        let chunks = [];
        let chunklen = 0;

        stream.on('readable', () => {
            let chunk;
            while ((chunk = stream.read()) !== null) {
                chunks.push(chunk);
                chunklen += chunk.length;
            }
        });

        stream.once('error', err => {
            log.error('LMTP', err);
            callback(new Error('Error reading from stream'));
        });

        stream.once('end', () => {
            let sender = tools.normalizeAddress((session.envelope.mailFrom && session.envelope.mailFrom.address) || '');
            let responses = [];
            let users = session.users;
            let stored = 0;

            let transactionId = new ObjectId();
            let prepared = false;

            let storeNext = () => {
                if (stored >= users.length) {
                    return callback(
                        null,
                        responses.map(r => r.response)
                    );
                }

                let rcptData = users[stored++];
                let recipient = rcptData.recipient;
                let userData = rcptData.user;

                let response = responses.filter(r => r.userData === userData);
                if (response.length) {
                    responses.push(response[0]);
                    return storeNext();
                }

                filterHandler.process(
                    {
                        mimeTree: prepared && prepared.mimeTree,
                        maildata: prepared && prepared.maildata,
                        user: userData,
                        sender,
                        recipient,
                        chunks,
                        chunklen,
                        meta: {
                            transactionId,
                            source: 'MX',
                            from: sender,
                            to: [recipient],
                            origin: session.remoteAddress,
                            originhost: session.clientHostname,
                            transhost: session.hostNameAppearsAs,
                            transtype: session.transmissionType,
                            time: new Date()
                        }
                    },
                    (err, response, preparedResponse) => {
                        if (err) {
                            // ???
                        }

                        if (response) {
                            responses.push(response);
                        }

                        if (!prepared && preparedResponse) {
                            prepared = preparedResponse;
                        }

                        setImmediate(storeNext);
                    }
                );
            };

            storeNext();
        });
    }
};

certs.loadTLSOptions(serverOptions, 'lmtp');

const server = new SMTPServer(serverOptions);

certs.registerReload(server, 'lmtp');

module.exports = done => {
    if (!config.lmtp.enabled) {
        return setImmediate(() => done(null, false));
    }

    const component = config.log.gelf.component || 'wildduck';
    const hostname = config.log.gelf.hostname || os.hostname();
    const gelf =
        config.log.gelf && config.log.gelf.enabled
            ? new Gelf(config.log.gelf.options)
            : {
                  // placeholder
                  emit: (key, message) => log.info('Gelf', JSON.stringify(message))
              };

    loggelf = message => {
        if (typeof message === 'string') {
            message = {
                short_message: message
            };
        }
        message = message || {};

        if (!message.short_message || message.short_message.indexOf(component.toUpperCase()) !== 0) {
            message.short_message = component.toUpperCase() + ' ' + (message.short_message || '');
        }

        message.facility = component; // facility is deprecated but set by the driver if not provided
        message.host = hostname;
        message.timestamp = Date.now() / 1000;
        message._component = component;
        Object.keys(message).forEach(key => {
            if (!message[key]) {
                delete message[key];
            }
        });
        gelf.emit('gelf.log', message);
    };

    messageHandler = new MessageHandler({
        database: db.database,
        users: db.users,
        redis: db.redis,
        gridfs: db.gridfs,
        attachments: config.attachments,
        loggelf: message => loggelf(message)
    });

    userHandler = new UserHandler({
        database: db.database,
        users: db.users,
        redis: db.redis,
        loggelf: message => loggelf(message)
    });

    filterHandler = new FilterHandler({
        db,
        sender: config.sender,
        messageHandler,
        loggelf: message => loggelf(message)
    });

    let started = false;

    server.on('error', err => {
        if (!started) {
            started = true;
            return done(err);
        }
        log.error('LMTP', err);
    });

    server.listen(config.lmtp.port, config.lmtp.host, () => {
        if (started) {
            return server.close();
        }
        started = true;
        done(null, server);
    });
};
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`'use strict';`

Refactored journal updates 2017-04-13 02:59:30 +08:00			`// Simple LMTP server that accepts all messages for valid recipients`

Changed configuration manager 2017-07-16 19:37:33 +08:00			`const config = require('wild-config');`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`const log = require('npmlog');`
Upgrade Mongodb library from 3 to 4 update 2021-08-30 16:18:42 +08:00			`const ObjectId = require('mongodb').ObjectId;`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`const SMTPServer = require('smtp-server').SMTPServer;`
Slight refactoring to separate imap server context from other parts Re-added UTF8=ACCESS 2017-03-21 06:07:23 +08:00			`const tools = require('./lib/tools');`
			`const MessageHandler = require('./lib/message-handler');`
Updated address resolving 2017-12-01 21:04:32 +08:00			`const UserHandler = require('./lib/user-handler');`
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`const FilterHandler = require('./lib/filter-handler');`
Added support for QUOTA extension, all users have a maximum quota set 2017-03-27 15:36:45 +08:00			`const db = require('./lib/db');`
Allow reloading TLS certs by SIGHUP to master 2017-10-05 20:14:43 +08:00			`const certs = require('./lib/certs');`
added initial support for gelf logs 2018-10-18 15:37:32 +08:00			`const Gelf = require('gelf');`
			`const os = require('os');`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
Slight refactoring to separate imap server context from other parts Re-added UTF8=ACCESS 2017-03-21 06:07:23 +08:00			`let messageHandler;`
Updated address resolving 2017-12-01 21:04:32 +08:00			`let userHandler;`
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`let filterHandler;`
added initial support for gelf logs 2018-10-18 15:37:32 +08:00			`let loggelf;`
Allow configuring more than one spam headers 2017-09-04 18:19:52 +08:00
			`config.on('reload', () => {`
			`log.info('LMTP', 'Configuration reloaded');`
			`});`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`const serverOptions = {`
			`lmtp: true,`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
Allow TLS to be handled upstream 2017-12-01 16:02:40 +08:00			`secure: config.lmtp.secure,`
			`secured: config.lmtp.secured,`

added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`// log to console`
			`logger: {`
			`info(...args) {`
			`args.shift();`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`log.info('LMTP', ...args);`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`},`
			`debug(...args) {`
			`args.shift();`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`log.silly('LMTP', ...args);`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`},`
			`error(...args) {`
			`args.shift();`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`log.error('LMTP', ...args);`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`}`
			`},`

Allow disabling STARTTLS 2017-09-11 03:53:12 +08:00			`name: config.lmtp.name \|\| false,`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
			`// not required but nice-to-have`
Rename Wild Duck to WildDuck 2018-01-02 21:04:01 +08:00			`banner: config.lmtp.banner \|\| 'Welcome to WildDuck Mail Server',`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
Allow disabling STARTTLS 2017-09-11 03:53:12 +08:00			`disabledCommands: ['AUTH'].concat(config.lmtp.disableSTARTTLS ? 'STARTTLS' : []),`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
Changed quota handling 2017-03-30 01:06:09 +08:00			`onMailFrom(address, session, callback) {`
			`// reset session entries`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`session.users = [];`
Changed quota handling 2017-03-30 01:06:09 +08:00
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`// accept alls sender addresses`
Changed quota handling 2017-03-30 01:06:09 +08:00			`return callback();`
			`},`

added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`// Validate RCPT TO envelope address. Example allows all addresses that do not start with 'deny'`
			`// If this method is not set, all addresses are allowed`
use userid instead of username for references in db Fixed Delivered-To added Received header Added alias API method 2017-03-22 16:30:10 +08:00			`onRcptTo(rcpt, session, callback) {`
			`let originalRecipient = tools.normalizeAddress(rcpt.address);`
Updated address resolving 2017-12-01 21:04:32 +08:00			`userHandler.get(`
			`originalRecipient,`
			`{`
			`name: true,`
			`forwards: true,`
use targets 2018-01-21 03:38:56 +08:00			`targets: true,`
Updated address resolving 2017-12-01 21:04:32 +08:00			`autoreply: true,`
			`encryptMessages: true,`
			`encryptForwarded: true,`
v1.0.113 2018-01-30 22:14:15 +08:00			`pubKey: true,`
			`spamLevel: true`
Updated address resolving 2017-12-01 21:04:32 +08:00			`},`
			`(err, userData) => {`
			`if (err) {`
			`log.error('LMTP', err);`
			`return callback(new Error('Database error'));`
			`}`
			`if (!userData) {`
			`return callback(new Error('Unknown recipient'));`
v1.0.92 2017-11-28 19:57:38 +08:00			`}`

Updated address resolving 2017-12-01 21:04:32 +08:00			`if (!session.users) {`
			`session.users = [];`
			`}`
v1.0.92 2017-11-28 19:57:38 +08:00
Updated address resolving 2017-12-01 21:04:32 +08:00			`session.users.push({`
			`recipient: originalRecipient,`
			`user: userData`
			`});`
v1.0.92 2017-11-28 19:57:38 +08:00
Updated address resolving 2017-12-01 21:04:32 +08:00			`callback();`
			`}`
			`);`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`},`

			`// Handle message stream`
			`onData(stream, session, callback) {`
			`let chunks = [];`
			`let chunklen = 0;`
Added support for QUOTA extension, all users have a maximum quota set 2017-03-27 15:36:45 +08:00
Preprocess message in LMTP 2017-04-13 16:35:39 +08:00			`stream.on('readable', () => {`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`let chunk;`
Preprocess message in LMTP 2017-04-13 16:35:39 +08:00			`while ((chunk = stream.read()) !== null) {`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`chunks.push(chunk);`
			`chunklen += chunk.length;`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`}`
			`});`

			`stream.once('error', err => {`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`log.error('LMTP', err);`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`callback(new Error('Error reading from stream'));`
			`});`

Preprocess message in LMTP 2017-04-13 16:35:39 +08:00			`stream.once('end', () => {`
Use prettier for formatting 2017-06-03 14:51:58 +08:00			`let sender = tools.normalizeAddress((session.envelope.mailFrom && session.envelope.mailFrom.address) \|\| '');`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`let responses = [];`
			`let users = session.users;`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`let stored = 0;`
Preprocess message in LMTP 2017-04-13 16:35:39 +08:00
Upgrade Mongodb library from 3 to 4 update 2021-08-30 16:18:42 +08:00			`let transactionId = new ObjectId();`
Parse message just once for multiple deliveries 2017-10-18 21:32:01 +08:00			`let prepared = false;`

added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`let storeNext = () => {`
			`if (stored >= users.length) {`
Fix issue where POP3 did not mark messages as seen 2020-03-15 19:25:17 +08:00			`return callback(`
			`null,`
			`responses.map(r => r.response)`
			`);`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`}`

Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`let rcptData = users[stored++];`
			`let recipient = rcptData.recipient;`
started with decoded attachments 2017-09-16 00:11:42 +08:00			`let userData = rcptData.user;`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00
started with decoded attachments 2017-09-16 00:11:42 +08:00			`let response = responses.filter(r => r.userData === userData);`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`if (response.length) {`
			`responses.push(response[0]);`
			`return storeNext();`
			`}`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`filterHandler.process(`
			`{`
Parse message just once for multiple deliveries 2017-10-18 21:32:01 +08:00			`mimeTree: prepared && prepared.mimeTree,`
			`maildata: prepared && prepared.maildata,`
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`user: userData,`
			`sender,`
			`recipient,`
			`chunks,`
			`chunklen,`
			`meta: {`
			`transactionId,`
Updated LMTP log entry from newest Received header 2017-10-20 19:39:20 +08:00			`source: 'MX',`
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`from: sender,`
messagelog 2017-10-20 18:43:44 +08:00			`to: [recipient],`
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`origin: session.remoteAddress,`
			`originhost: session.clientHostname,`
			`transhost: session.hostNameAppearsAs,`
			`transtype: session.transmissionType,`
messagelog 2017-10-20 18:43:44 +08:00			`time: new Date()`
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`}`
			`},`
Parse message just once for multiple deliveries 2017-10-18 21:32:01 +08:00			`(err, response, preparedResponse) => {`
Allow configuring more than one spam headers 2017-09-04 18:19:52 +08:00			`if (err) {`
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`// ???`
Allow configuring more than one spam headers 2017-09-04 18:19:52 +08:00			`}`
Parse message just once for multiple deliveries 2017-10-18 21:32:01 +08:00
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`if (response) {`
			`responses.push(response);`
			`}`
Parse message just once for multiple deliveries 2017-10-18 21:32:01 +08:00
			`if (!prepared && preparedResponse) {`
			`prepared = preparedResponse;`
			`}`

use filtering handler for filters 2017-10-18 17:42:51 +08:00			`setImmediate(storeNext);`
			`}`
			`);`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`};`

			`storeNext();`
			`});`
			`}`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`};`

Allow reloading TLS certs by SIGHUP to master 2017-10-05 20:14:43 +08:00			`certs.loadTLSOptions(serverOptions, 'lmtp');`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00
			`const server = new SMTPServer(serverOptions);`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
Allow reloading TLS certs by SIGHUP to master 2017-10-05 20:14:43 +08:00			`certs.registerReload(server, 'lmtp');`

Slight refactoring to separate imap server context from other parts Re-added UTF8=ACCESS 2017-03-21 06:07:23 +08:00			`module.exports = done => {`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`if (!config.lmtp.enabled) {`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`return setImmediate(() => done(null, false));`
			`}`

added initial support for gelf logs 2018-10-18 15:37:32 +08:00			`const component = config.log.gelf.component \|\| 'wildduck';`
			`const hostname = config.log.gelf.hostname \|\| os.hostname();`
			`const gelf =`
			`config.log.gelf && config.log.gelf.enabled`
			`? new Gelf(config.log.gelf.options)`
			`: {`
			`// placeholder`
Fix issue where POP3 did not mark messages as seen 2020-03-15 19:25:17 +08:00			`emit: (key, message) => log.info('Gelf', JSON.stringify(message))`
added initial support for gelf logs 2018-10-18 15:37:32 +08:00			`};`

			`loggelf = message => {`
			`if (typeof message === 'string') {`
			`message = {`
			`short_message: message`
			`};`
			`}`
			`message = message \|\| {};`
update 2018-10-18 16:53:14 +08:00
			`if (!message.short_message \|\| message.short_message.indexOf(component.toUpperCase()) !== 0) {`
			`message.short_message = component.toUpperCase() + ' ' + (message.short_message \|\| '');`
			`}`

added initial support for gelf logs 2018-10-18 15:37:32 +08:00			`message.facility = component; // facility is deprecated but set by the driver if not provided`
			`message.host = hostname;`
			`message.timestamp = Date.now() / 1000;`
			`message._component = component;`
			`Object.keys(message).forEach(key => {`
			`if (!message[key]) {`
			`delete message[key];`
			`}`
			`});`
			`gelf.emit('gelf.log', message);`
			`};`

refactor attachment storage 2017-08-07 02:25:10 +08:00			`messageHandler = new MessageHandler({`
			`database: db.database,`
			`users: db.users,`
allow using other storage mechanisms for attachments than gridstore 2017-08-07 16:29:29 +08:00			`redis: db.redis,`
			`gridfs: db.gridfs,`
added initial support for gelf logs 2018-10-18 15:37:32 +08:00			`attachments: config.attachments,`
			`loggelf: message => loggelf(message)`
refactor attachment storage 2017-08-07 02:25:10 +08:00			`});`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
Updated address resolving 2017-12-01 21:04:32 +08:00			`userHandler = new UserHandler({`
			`database: db.database,`
			`users: db.users,`
			`redis: db.redis,`
added initial support for gelf logs 2018-10-18 15:37:32 +08:00			`loggelf: message => loggelf(message)`
Updated address resolving 2017-12-01 21:04:32 +08:00			`});`

use filtering handler for filters 2017-10-18 17:42:51 +08:00			`filterHandler = new FilterHandler({`
update filter handling 2017-12-21 20:24:28 +08:00			`db,`
			`sender: config.sender,`
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`messageHandler,`
added initial support for gelf logs 2018-10-18 15:37:32 +08:00			`loggelf: message => loggelf(message)`
use filtering handler for filters 2017-10-18 17:42:51 +08:00			`});`

Added support for QUOTA extension, all users have a maximum quota set 2017-03-27 15:36:45 +08:00			`let started = false;`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00
Added support for QUOTA extension, all users have a maximum quota set 2017-03-27 15:36:45 +08:00			`server.on('error', err => {`
			`if (!started) {`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`started = true;`
Added support for QUOTA extension, all users have a maximum quota set 2017-03-27 15:36:45 +08:00			`return done(err);`
			`}`
Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`log.error('LMTP', err);`
Added support for QUOTA extension, all users have a maximum quota set 2017-03-27 15:36:45 +08:00			`});`

Replaced SMTP with LMTP 2017-04-12 19:52:29 +08:00			`server.listen(config.lmtp.port, config.lmtp.host, () => {`
Added support for QUOTA extension, all users have a maximum quota set 2017-03-27 15:36:45 +08:00			`if (started) {`
			`return server.close();`
			`}`
			`started = true;`
			`done(null, server);`
added example to push messages to INBOX 2017-03-07 00:27:04 +08:00			`});`
			`};`