wildduck/imap-core/lib/imap-command.js

362 lines
14 KiB
JavaScript
Raw Normal View History

2017-03-06 05:45:50 +08:00
'use strict';
2017-06-03 14:51:58 +08:00
const imapHandler = require('./handler/imap-handler');
const errors = require('../../lib/errors.js');
2017-03-06 05:45:50 +08:00
const MAX_MESSAGE_SIZE = 1 * 1024 * 1024;
2017-06-03 14:51:58 +08:00
const commands = new Map([
2017-03-06 05:45:50 +08:00
/*eslint-disable global-require*/
// require must normally be on top of the module
['NOOP', require('./commands/noop')],
['CAPABILITY', require('./commands/capability')],
['LOGOUT', require('./commands/logout')],
['ID', require('./commands/id')],
['STARTTLS', require('./commands/starttls')],
['LOGIN', require('./commands/login')],
['AUTHENTICATE PLAIN', require('./commands/authenticate-plain')],
['AUTHENTICATE PLAIN-CLIENTTOKEN', require('./commands/authenticate-plain')],
2017-03-06 05:45:50 +08:00
['NAMESPACE', require('./commands/namespace')],
['LIST', require('./commands/list')],
2018-06-22 00:41:31 +08:00
['XLIST', require('./commands/list')],
2017-03-06 05:45:50 +08:00
['LSUB', require('./commands/lsub')],
['SUBSCRIBE', require('./commands/subscribe')],
['UNSUBSCRIBE', require('./commands/unsubscribe')],
['CREATE', require('./commands/create')],
['DELETE', require('./commands/delete')],
['RENAME', require('./commands/rename')],
['SELECT', require('./commands/select')],
['EXAMINE', require('./commands/select')],
['IDLE', require('./commands/idle')],
['CHECK', require('./commands/check')],
['STATUS', require('./commands/status')],
['APPEND', require('./commands/append')],
['STORE', require('./commands/store')],
['UID STORE', require('./commands/uid-store')],
['EXPUNGE', require('./commands/expunge')],
['UID EXPUNGE', require('./commands/uid-expunge')],
['CLOSE', require('./commands/close')],
['UNSELECT', require('./commands/unselect')],
['COPY', require('./commands/copy')],
['UID COPY', require('./commands/copy')],
2017-03-30 01:06:09 +08:00
['MOVE', require('./commands/move')],
['UID MOVE', require('./commands/move')],
2017-03-06 05:45:50 +08:00
['FETCH', require('./commands/fetch')],
['UID FETCH', require('./commands/fetch')],
['SEARCH', require('./commands/search')],
['UID SEARCH', require('./commands/search')],
['ENABLE', require('./commands/enable')],
['GETQUOTAROOT', require('./commands/getquotaroot')],
['SETQUOTA', require('./commands/setquota')],
2017-04-04 21:35:56 +08:00
['GETQUOTA', require('./commands/getquota')],
['COMPRESS', require('./commands/compress')]
2017-03-06 05:45:50 +08:00
/*eslint-enable global-require*/
]);
class IMAPCommand {
constructor(connection) {
this.connection = connection;
this.payload = '';
this.literals = [];
2017-03-06 05:45:50 +08:00
this.first = true;
}
append(command, callback) {
let chunks = [];
let chunklen = 0;
this.payload += command.value;
if (this.first) {
// fetch tag and command name
this.first = false;
// only check payload if it is a regular command, not input for something else
if (typeof this.connection._nextHandler !== 'function') {
let match = /^([^\s]+)(?:\s+((?:AUTHENTICATE |UID )?[^\s]+)|$)/i.exec(command.value) || [];
this.tag = match[1];
this.command = (match[2] || '').trim().toUpperCase();
if (!this.command || !this.tag) {
2017-10-02 19:42:39 +08:00
let err = new Error('Invalid tag');
2018-11-14 16:02:53 +08:00
err.code = 'InvalidTag';
2017-10-08 05:17:13 +08:00
if (this.payload) {
// no payload means empty line
errors.notifyConnection(this.connection, err, {
payload: this.payload.length < 256 ? this.payload : this.payload.toString().substr(0, 150) + '...'
});
}
2017-03-06 05:45:50 +08:00
this.connection.send('* BAD Invalid tag');
2017-10-02 19:42:39 +08:00
return callback(err);
2017-03-06 05:45:50 +08:00
}
if (!commands.has(this.command)) {
2017-10-02 19:42:39 +08:00
let err = new Error('Unknown command');
2018-11-14 16:02:53 +08:00
err.code = 'UnknownCommand';
2017-10-02 19:42:39 +08:00
errors.notifyConnection(this.connection, err, {
payload: this.payload ? (this.payload.length < 256 ? this.payload : this.payload.toString().substr(0, 150) + '...') : false
});
2017-03-06 05:45:50 +08:00
this.connection.send(this.tag + ' BAD Unknown command: ' + this.command);
2017-10-02 19:42:39 +08:00
return callback(err);
2017-03-06 05:45:50 +08:00
}
}
}
if (command.literal) {
// check if the literal size is in acceptable bounds
if (isNaN(command.expecting) || isNaN(command.expecting) < 0 || command.expecting > Number.MAX_SAFE_INTEGER) {
2018-11-14 16:02:53 +08:00
let err = new Error('Invalid literal size');
err.code = 'InvalidLiteralSize';
errors.notifyConnection(this.connection, err, {
command: {
expecting: command.expecting
}
});
this.connection.send(this.tag + ' BAD Invalid literal size');
this.payload = '';
this.literals = [];
this.first = true;
2018-11-14 16:02:53 +08:00
return callback(err);
}
let maxAllowed = Math.max(Number(this.connection._server.options.maxMessage) || 0, MAX_MESSAGE_SIZE);
2017-03-06 05:45:50 +08:00
if (
// Allow large literals for selected commands only
(!['APPEND'].includes(this.command) && command.expecting > 1024) ||
2017-03-06 05:45:50 +08:00
// Deny all literals bigger than maxMessage
2017-06-03 14:51:58 +08:00
command.expecting > maxAllowed
) {
this.connection.logger.debug(
2017-06-03 14:51:58 +08:00
{
tnx: 'client',
cid: this.connection.id
},
'[%s] C:',
this.connection.id,
this.payload
);
2017-03-12 06:31:56 +08:00
this.payload = ''; // reset payload
this.literals = [];
if (command.expecting > maxAllowed) {
// APPENDLIMIT response for too large messages
2018-12-27 23:04:05 +08:00
// TOOBIG: https://tools.ietf.org/html/rfc4469#section-4.2
this.connection.send(this.tag + ' NO [TOOBIG] Literal too large');
} else {
this.connection.send(this.tag + ' NO Literal too large');
}
2018-11-14 16:02:53 +08:00
let err = new Error('Literal too large');
err.code = 'InvalidLiteralSize';
return callback(err);
2017-03-06 05:45:50 +08:00
}
// Accept literal input
this.connection.send('+ Go ahead');
// currently the stream is buffered into a large string and thats it.
// in the future we might consider some kind of actual stream usage
command.literal.on('data', chunk => {
chunks.push(chunk);
chunklen += chunk.length;
});
command.literal.on('end', () => {
this.payload += '\r\n'; // + Buffer.concat(chunks, chunklen).toString('binary');
this.literals.push(Buffer.concat(chunks, chunklen));
2017-03-06 05:45:50 +08:00
command.readyCallback(); // call this once stream is fully processed and ready to accept next data
});
}
callback();
}
end(command, callback) {
let callbackSent = false;
let next = err => {
if (!callbackSent) {
callbackSent = true;
return callback(err);
}
};
this.append(command, err => {
if (err) {
this.connection.logger.debug(
2017-10-08 03:37:35 +08:00
{
err,
tnx: 'client',
cid: this.connection.id
},
'[%s] C: %s',
this.connection.id,
this.payload || ''
);
2017-03-06 05:45:50 +08:00
return next(err);
}
2017-10-02 19:42:39 +08:00
// check if the payload needs to be directed to a preset handler
2017-03-06 05:45:50 +08:00
if (typeof this.connection._nextHandler === 'function') {
this.connection.logger.debug(
2017-06-03 14:51:58 +08:00
{
tnx: 'client',
cid: this.connection.id
},
'[%s] C: <%s bytes of data>',
this.connection.id,
(this.payload && this.payload.length) || 0
);
2017-03-06 05:45:50 +08:00
return this.connection._nextHandler(this.payload, next);
}
try {
this.parsed = imapHandler.parser(this.payload, { literals: this.literals });
2017-03-06 05:45:50 +08:00
} catch (E) {
2017-10-02 19:42:39 +08:00
errors.notifyConnection(this.connection, E, {
payload: this.payload ? (this.payload.length < 256 ? this.payload : this.payload.toString().substr(0, 150) + '...') : false
});
this.connection.logger.debug(
2017-06-03 14:51:58 +08:00
{
err: E,
tnx: 'client',
cid: this.connection.id
},
'[%s] C:',
this.connection.id,
this.payload
);
2017-03-06 05:45:50 +08:00
this.connection.send(this.tag + ' BAD ' + E.message);
return next();
}
let handler = commands.get(this.command);
if (/^(AUTHENTICATE|LOGIN)/.test(this.command) && Array.isArray(this.parsed.attributes)) {
this.parsed.attributes.forEach(attr => {
if (attr && typeof attr === 'object' && attr.value) {
attr.sensitive = true;
}
});
}
this.connection.logger.debug(
2017-06-03 14:51:58 +08:00
{
tnx: 'client',
cid: this.connection.id
},
'[%s] C:',
this.connection.id,
imapHandler.compiler(this.parsed, false, true)
);
2017-03-06 05:45:50 +08:00
this.validateCommand(this.parsed, handler, err => {
if (err) {
2017-10-02 19:42:39 +08:00
let payload = imapHandler.compiler(this.parsed, false, true);
errors.notifyConnection(this.connection, err, {
payload: payload ? (payload.length < 256 ? payload : payload.toString().substr(0, 150) + '...') : false
});
2017-03-06 05:45:50 +08:00
this.connection.send(this.tag + ' ' + (err.response || 'BAD') + ' ' + err.message);
return next(err);
}
if (typeof handler.handler === 'function') {
2017-06-03 14:51:58 +08:00
handler.handler.call(
this.connection,
this.parsed,
(err, response) => {
if (err) {
2017-10-02 19:42:39 +08:00
let payload = imapHandler.compiler(this.parsed, false, true);
errors.notifyConnection(this.connection, err, {
payload: payload ? (payload.length < 256 ? payload : payload.toString().substr(0, 150) + '...') : false
});
2017-06-03 14:51:58 +08:00
this.connection.send(this.tag + ' ' + (err.response || 'BAD') + ' ' + err.message);
return next(err);
}
// send EXPUNGE, EXISTS etc queued notices
this.sendNotifications(handler, () => {
// send command ready response
this.connection.writeStream.write({
tag: this.tag,
command: response.response,
attributes: []
.concat(
response.code
? {
2018-06-22 00:41:31 +08:00
type: 'SECTION',
section: [
{
type: 'TEXT',
value: response.code
}
]
}
2017-06-03 14:51:58 +08:00
: []
)
.concat({
type: 'TEXT',
value: response.message || this.command + ' completed'
})
});
next();
2017-03-06 05:45:50 +08:00
});
2017-06-03 14:51:58 +08:00
},
next
);
2017-03-06 05:45:50 +08:00
} else {
this.connection.send(this.tag + ' NO Not implemented: ' + this.command);
return next();
}
});
});
}
sendNotifications(handler, callback) {
if (this.connection.state !== 'Selected' || !!handler.disableNotifications) {
// nothing to advertise if not in Selected state
return callback();
}
this.connection.emitNotifications();
return callback();
}
validateCommand(parsed, handler, callback) {
let schema = handler.schema || [];
let maxArgs = schema.length;
let minArgs = schema.filter(item => !item.optional).length;
// Check if the command can be run in current state
if (handler.state && [].concat(handler.state || []).indexOf(this.connection.state) < 0) {
2018-11-14 16:02:53 +08:00
let err = new Error(parsed.command.toUpperCase() + ' not allowed now');
err.code = 'InvalidState';
return callback(err);
2017-03-06 05:45:50 +08:00
}
if (handler.schema === false) {
//schema check is disabled
return callback();
}
// Deny commands with too many arguments
if (parsed.attributes && parsed.attributes.length > maxArgs) {
2018-11-14 16:02:53 +08:00
let err = new Error('Too many arguments provided');
err.code = 'InvalidArguments';
return callback(err);
2017-03-06 05:45:50 +08:00
}
// Deny commands with too little arguments
2017-06-03 14:51:58 +08:00
if (((parsed.attributes && parsed.attributes.length) || 0) < minArgs) {
2018-11-14 16:02:53 +08:00
let err = new Error('Not enough arguments provided');
err.code = 'InvalidArguments';
return callback(err);
2017-03-06 05:45:50 +08:00
}
callback();
}
}
module.exports.IMAPCommand = IMAPCommand;