2023-01-30 16:27:06 +03:00
// Package smtpclient is an SMTP client, used by the queue for sending outgoing messages.
package smtpclient
import (
"bufio"
"context"
"crypto/tls"
"errors"
"fmt"
"io"
"net"
"strconv"
"strings"
"time"
"github.com/prometheus/client_golang/prometheus"
"github.com/prometheus/client_golang/prometheus/promauto"
"github.com/mjl-/mox/metrics"
"github.com/mjl-/mox/mlog"
"github.com/mjl-/mox/mox-"
"github.com/mjl-/mox/moxio"
"github.com/mjl-/mox/smtp"
)
// todo future: add function to deliver message to multiple recipients. requires more elaborate return value, indicating success per message: some recipients may succeed, others may fail, and we should still deliver. to prevent backscatter, we also sometimes don't allow multiple recipients. ../rfc/5321:1144
var (
metricCommands = promauto . NewHistogramVec (
prometheus . HistogramOpts {
Name : "mox_smtpclient_command_duration_seconds" ,
Help : "SMTP client command duration and result codes in seconds." ,
Buckets : [ ] float64 { 0.001 , 0.005 , 0.01 , 0.05 , 0.100 , 0.5 , 1 , 5 , 10 , 20 , 30 , 60 , 120 } ,
} ,
[ ] string {
"cmd" ,
"code" ,
"secode" ,
} ,
)
)
var (
ErrSize = errors . New ( "message too large for remote smtp server" ) // SMTP server announced a maximum message size and the message to be delivered exceeds it.
Err8bitmimeUnsupported = errors . New ( "remote smtp server does not implement 8bitmime extension, required by message" )
ErrSMTPUTF8Unsupported = errors . New ( "remote smtp server does not implement smtputf8 extension, required by message" )
ErrStatus = errors . New ( "remote smtp server sent unexpected response status code" ) // Relatively common, e.g. when a 250 OK was expected and server sent 451 temporary error.
ErrProtocol = errors . New ( "smtp protocol error" ) // After a malformed SMTP response or inconsistent multi-line response.
ErrTLS = errors . New ( "tls error" ) // E.g. handshake failure, or hostname validation was required and failed.
ErrBotched = errors . New ( "smtp connection is botched" ) // Set on a client, and returned for new operations, after an i/o error or malformed SMTP response.
ErrClosed = errors . New ( "client is closed" )
)
// TLSMode indicates if TLS must, should or must not be used.
type TLSMode string
const (
// TLS with validated certificate is required: matching name, not expired, trusted by CA.
TLSStrict TLSMode = "strict"
// Use TLS if remote claims to support it, but do not validate the certificate
// (not trusted by CA, different host name or expired certificate is accepted).
TLSOpportunistic TLSMode = "opportunistic"
// TLS must not be attempted, e.g. due to earlier TLS handshake error.
TLSSkip TLSMode = "skip"
)
// Client is an SMTP client that can deliver messages to a mail server.
//
// Use New to make a new client.
type Client struct {
// OrigConn is the original (TCP) connection. We'll read from/write to conn, which
// can be wrapped in a tls.Client. We close origConn instead of conn because
// closing the TLS connection would send a TLS close notification, which may block
// for 5s if the server isn't reading it (because it is also sending it).
origConn net . Conn
conn net . Conn
r * bufio . Reader
w * bufio . Writer
2023-02-03 22:33:19 +03:00
tr * moxio . TraceReader // Kept for changing trace levels between cmd/auth/data.
tw * moxio . TraceWriter
2023-01-30 16:27:06 +03:00
log * mlog . Log
lastlog time . Time // For adding delta timestamps between log lines.
cmds [ ] string // Last or active command, for generating errors and metrics.
cmdStart time . Time // Start of command.
botched bool // If set, protocol is out of sync and no further commands can be sent.
needRset bool // If set, a new delivery requires an RSET command.
extEcodes bool // Remote server supports sending extended error codes.
extStartTLS bool // Remote server supports STARTTLS.
ext8bitmime bool
extSize bool // Remote server supports SIZE parameter.
maxSize int64 // Max size of email message.
extPipelining bool // Remote server supports command pipelining.
extSMTPUTF8 bool // Remote server supports SMTPUTF8 extension.
}
// Error represents a failure to deliver a message.
//
// Code, Secode, Command and Line are only set for SMTP-level errors, and are zero
// values otherwise.
type Error struct {
// Whether failure is permanent, typically because of 5xx response.
Permanent bool
// SMTP response status, e.g. 2xx for success, 4xx for transient error and 5xx for
// permanent failure.
Code int
// Short enhanced status, minus first digit and dot. Can be empty, e.g. for io
// errors or if remote does not send enhanced status codes. If remote responds with
// "550 5.7.1 ...", the Secode will be "7.1".
Secode string
// SMTP command causing failure.
Command string
// For errors due to SMTP responses, the full SMTP line excluding CRLF that caused
// the error. Typically the last line read.
Line string
// Underlying error, e.g. one of the Err variables in this package, or io errors.
Err error
}
// Unwrap returns the underlying Err.
func ( e Error ) Unwrap ( ) error {
return e . Err
}
// Error returns a readable error string.
func ( e Error ) Error ( ) string {
s := ""
if e . Err != nil {
s = e . Err . Error ( ) + ", "
}
if e . Permanent {
s += "permanent"
} else {
s += "transient"
}
if e . Line != "" {
s += ": " + e . Line
}
return s
}
// New initializes an SMTP session on the given connection, returning a client that
// can be used to deliver messages.
//
// New reads the server greeting, identifies itself with a HELO or EHLO command,
// initializes TLS if remote supports it and optionally authenticates. If
// successful, a client is returned on which eventually Close must be called.
// Otherwise an error is returned and the caller is responsible for closing the
// connection.
//
// Connecting to the correct host is outside the scope of the client. The queue
// managing outgoing messages decides which host to deliver to, taking multiple MX
// records with preferences, other DNS records, MTA-STS, retries and special
// cases into account.
//
// tlsMode indicates if TLS is required, optional or should not be used. A
// certificate is only validated (trusted, match remoteHostname and not expired)
// for tls mode "required". By default, SMTP does not verify TLS for interopability
// reasons, but MTA-STS or DANE can require it. If opportunistic TLS is used, and a
// TLS error is encountered, the caller may want to try again (on a new connection)
// without TLS.
//
// If auth is non-empty, it is executed as a command after SMTP greeting/EHLO
// initialization, before starting delivery. For authenticating to a submission
// service with AUTH PLAIN, only meant for testing.
func New ( ctx context . Context , log * mlog . Log , conn net . Conn , tlsMode TLSMode , remoteHostname , auth string ) ( * Client , error ) {
c := & Client {
origConn : conn ,
conn : conn ,
lastlog : time . Now ( ) ,
cmds : [ ] string { "(none)" } ,
}
c . log = log . Fields ( mlog . Field ( "smtpclient" , "" ) ) . MoreFields ( func ( ) [ ] mlog . Pair {
now := time . Now ( )
l := [ ] mlog . Pair {
mlog . Field ( "delta" , now . Sub ( c . lastlog ) ) ,
}
c . lastlog = now
return l
} )
// We don't wrap reads in a timeoutReader for fear of an optional TLS wrapper doing
// reads without the client asking for it. Such reads could result in a timeout
// error.
2023-02-03 22:33:19 +03:00
c . tr = moxio . NewTraceReader ( c . log , "RS: " , c . conn )
c . r = bufio . NewReader ( c . tr )
2023-01-30 16:27:06 +03:00
// We use a single write timeout of 30 seconds.
// todo future: use different timeouts ../rfc/5321:3610
2023-02-03 22:33:19 +03:00
c . tw = moxio . NewTraceWriter ( c . log , "LC: " , timeoutWriter { c . conn , 30 * time . Second , c . log } )
c . w = bufio . NewWriter ( c . tw )
2023-01-30 16:27:06 +03:00
if err := c . hello ( ctx , tlsMode , remoteHostname , auth ) ; err != nil {
return nil , err
}
return c , nil
}
// xbotchf generates a temporary error and marks the client as botched. e.g. for
// i/o errors or invalid protocol messages.
func ( c * Client ) xbotchf ( code int , secode string , lastLine , format string , args ... any ) {
2023-04-20 23:29:18 +03:00
panic ( c . botchf ( code , secode , lastLine , format , args ... ) )
}
// botchf generates a temporary error and marks the client as botched. e.g. for
// i/o errors or invalid protocol messages.
func ( c * Client ) botchf ( code int , secode string , lastLine , format string , args ... any ) error {
2023-01-30 16:27:06 +03:00
c . botched = true
2023-04-20 23:29:18 +03:00
return c . errorf ( false , code , secode , lastLine , format , args ... )
2023-01-30 16:27:06 +03:00
}
2023-04-20 23:29:18 +03:00
func ( c * Client ) errorf ( permanent bool , code int , secode , lastLine , format string , args ... any ) error {
2023-01-30 16:27:06 +03:00
var cmd string
if len ( c . cmds ) > 0 {
cmd = c . cmds [ 0 ]
}
2023-04-20 23:29:18 +03:00
return Error { permanent , code , secode , cmd , lastLine , fmt . Errorf ( format , args ... ) }
}
func ( c * Client ) xerrorf ( permanent bool , code int , secode , lastLine , format string , args ... any ) {
panic ( c . errorf ( permanent , code , secode , lastLine , format , args ... ) )
2023-01-30 16:27:06 +03:00
}
// timeoutWriter passes each Write on to conn after setting a write deadline on conn based on
// timeout.
type timeoutWriter struct {
conn net . Conn
timeout time . Duration
log * mlog . Log
}
func ( w timeoutWriter ) Write ( buf [ ] byte ) ( int , error ) {
if err := w . conn . SetWriteDeadline ( time . Now ( ) . Add ( w . timeout ) ) ; err != nil {
w . log . Errorx ( "setting write deadline" , err )
}
return w . conn . Write ( buf )
}
var bufs = moxio . NewBufpool ( 8 , 2 * 1024 )
2023-04-20 23:29:18 +03:00
func ( c * Client ) readline ( ) ( string , error ) {
2023-01-30 16:27:06 +03:00
// todo: could have per-operation timeouts. and rfc suggests higher minimum timeouts. ../rfc/5321:3610
if err := c . conn . SetReadDeadline ( time . Now ( ) . Add ( 30 * time . Second ) ) ; err != nil {
c . log . Errorx ( "setting read deadline" , err )
}
line , err := bufs . Readline ( c . r )
if err != nil {
2023-04-20 23:29:18 +03:00
return line , c . botchf ( 0 , "" , "" , "%s: %w" , strings . Join ( c . cmds , "," ) , err )
2023-01-30 16:27:06 +03:00
}
2023-04-20 23:29:18 +03:00
return line , nil
2023-01-30 16:27:06 +03:00
}
2023-02-03 22:33:19 +03:00
func ( c * Client ) xtrace ( level mlog . Level ) func ( ) {
c . xflush ( )
c . tr . SetTrace ( level )
c . tw . SetTrace ( level )
return func ( ) {
c . xflush ( )
c . tr . SetTrace ( mlog . LevelTrace )
c . tw . SetTrace ( mlog . LevelTrace )
}
}
2023-01-30 16:27:06 +03:00
func ( c * Client ) xwritelinef ( format string , args ... any ) {
c . xbwritelinef ( format , args ... )
c . xflush ( )
}
func ( c * Client ) xwriteline ( line string ) {
c . xbwriteline ( line )
c . xflush ( )
}
func ( c * Client ) xbwritelinef ( format string , args ... any ) {
c . xbwriteline ( fmt . Sprintf ( format , args ... ) )
}
func ( c * Client ) xbwriteline ( line string ) {
_ , err := fmt . Fprintf ( c . w , "%s\r\n" , line )
if err != nil {
c . xbotchf ( 0 , "" , "" , "write: %w" , err )
}
}
func ( c * Client ) xflush ( ) {
err := c . w . Flush ( )
if err != nil {
c . xbotchf ( 0 , "" , "" , "writes: %w" , err )
}
}
// read response, possibly multiline, with supporting extended codes based on configuration in client.
func ( c * Client ) xread ( ) ( code int , secode , lastLine string , texts [ ] string ) {
2023-04-20 23:29:18 +03:00
var err error
code , secode , lastLine , texts , err = c . read ( )
if err != nil {
panic ( err )
}
return
}
func ( c * Client ) read ( ) ( code int , secode , lastLine string , texts [ ] string , rerr error ) {
return c . readecode ( c . extEcodes )
2023-01-30 16:27:06 +03:00
}
// read response, possibly multiline.
// if ecodes, extended codes are parsed.
2023-04-20 23:29:18 +03:00
func ( c * Client ) readecode ( ecodes bool ) ( code int , secode , lastLine string , texts [ ] string , rerr error ) {
2023-01-30 16:27:06 +03:00
for {
2023-04-20 23:29:18 +03:00
co , sec , text , line , last , err := c . read1 ( ecodes )
if err != nil {
rerr = err
return
}
2023-01-30 16:27:06 +03:00
texts = append ( texts , text )
if code != 0 && co != code {
// ../rfc/5321:2771
2023-04-20 23:29:18 +03:00
err := c . botchf ( 0 , "" , line , "%w: multiline response with different codes, previous %d, last %d" , ErrProtocol , code , co )
return 0 , "" , "" , nil , err
2023-01-30 16:27:06 +03:00
}
code = co
if last {
cmd := ""
if len ( c . cmds ) > 0 {
cmd = c . cmds [ 0 ]
// We only keep the last, so we're not creating new slices all the time.
if len ( c . cmds ) > 1 {
c . cmds = c . cmds [ 1 : ]
}
}
metricCommands . WithLabelValues ( cmd , fmt . Sprintf ( "%d" , co ) , sec ) . Observe ( float64 ( time . Since ( c . cmdStart ) ) / float64 ( time . Second ) )
c . log . Debug ( "smtpclient command result" , mlog . Field ( "cmd" , cmd ) , mlog . Field ( "code" , co ) , mlog . Field ( "secode" , sec ) , mlog . Field ( "duration" , time . Since ( c . cmdStart ) ) )
2023-04-20 23:29:18 +03:00
return co , sec , line , texts , nil
2023-01-30 16:27:06 +03:00
}
}
}
2023-04-20 23:29:18 +03:00
func ( c * Client ) xreadecode ( ecodes bool ) ( code int , secode , lastLine string , texts [ ] string ) {
var err error
code , secode , lastLine , texts , err = c . readecode ( ecodes )
if err != nil {
panic ( err )
}
return
}
2023-01-30 16:27:06 +03:00
// read single response line.
// if ecodes, extended codes are parsed.
2023-04-20 23:29:18 +03:00
func ( c * Client ) read1 ( ecodes bool ) ( code int , secode , text , line string , last bool , rerr error ) {
line , rerr = c . readline ( )
if rerr != nil {
return
}
2023-01-30 16:27:06 +03:00
i := 0
for ; i < len ( line ) && line [ i ] >= '0' && line [ i ] <= '9' ; i ++ {
}
if i != 3 {
2023-04-20 23:29:18 +03:00
rerr = c . botchf ( 0 , "" , line , "%w: expected response code: %s" , ErrProtocol , line )
return
2023-01-30 16:27:06 +03:00
}
v , err := strconv . ParseInt ( line [ : i ] , 10 , 32 )
if err != nil {
2023-04-20 23:29:18 +03:00
rerr = c . botchf ( 0 , "" , line , "%w: bad response code (%s): %s" , ErrProtocol , err , line )
return
2023-01-30 16:27:06 +03:00
}
code = int ( v )
major := code / 100
s := line [ 3 : ]
if strings . HasPrefix ( s , "-" ) || strings . HasPrefix ( s , " " ) {
last = s [ 0 ] == ' '
s = s [ 1 : ]
} else if s == "" {
// Allow missing space. ../rfc/5321:2570 ../rfc/5321:2612
last = true
} else {
2023-04-20 23:29:18 +03:00
rerr = c . botchf ( 0 , "" , line , "%w: expected space or dash after response code: %s" , ErrProtocol , line )
return
2023-01-30 16:27:06 +03:00
}
if ecodes {
secode , s = parseEcode ( major , s )
}
2023-04-20 23:29:18 +03:00
return code , secode , s , line , last , nil
2023-01-30 16:27:06 +03:00
}
func parseEcode ( major int , s string ) ( secode string , remain string ) {
o := 0
bad := false
take := func ( need bool , a , b byte ) bool {
if ! bad && o < len ( s ) && s [ o ] >= a && s [ o ] <= b {
o ++
return true
}
bad = bad || need
return false
}
digit := func ( need bool ) bool {
return take ( need , '0' , '9' )
}
dot := func ( ) bool {
return take ( true , '.' , '.' )
}
digit ( true )
dot ( )
xo := o
digit ( true )
for digit ( false ) {
}
dot ( )
digit ( true )
for digit ( false ) {
}
secode = s [ xo : o ]
take ( false , ' ' , ' ' )
if bad || int ( s [ 0 ] ) - int ( '0' ) != major {
return "" , s
}
return secode , s [ o : ]
}
func ( c * Client ) recover ( rerr * error ) {
x := recover ( )
if x == nil {
return
}
cerr , ok := x . ( Error )
if ! ok {
metrics . PanicInc ( "smtpclient" )
panic ( x )
}
* rerr = cerr
}
func ( c * Client ) hello ( ctx context . Context , tlsMode TLSMode , remoteHostname , auth string ) ( rerr error ) {
defer c . recover ( & rerr )
// perform EHLO handshake, falling back to HELO if server does not appear to
// implement EHLO.
hello := func ( heloOK bool ) {
// Write EHLO and parse the supported extensions.
// ../rfc/5321:987
c . cmds [ 0 ] = "ehlo"
c . cmdStart = time . Now ( )
// Syntax: ../rfc/5321:1827
c . xwritelinef ( "EHLO %s" , mox . Conf . Static . HostnameDomain . ASCII )
code , _ , lastLine , remains := c . xreadecode ( false )
switch code {
// ../rfc/5321:997
// ../rfc/5321:3098
case smtp . C500BadSyntax , smtp . C501BadParamSyntax , smtp . C502CmdNotImpl , smtp . C503BadCmdSeq , smtp . C504ParamNotImpl :
if ! heloOK {
c . xerrorf ( true , code , "" , lastLine , "%w: remote claims ehlo is not supported" , ErrProtocol )
}
// ../rfc/5321:996
c . cmds [ 0 ] = "helo"
c . cmdStart = time . Now ( )
c . xwritelinef ( "HELO %s" , mox . Conf . Static . HostnameDomain . ASCII )
code , _ , lastLine , _ = c . xreadecode ( false )
if code != smtp . C250Completed {
c . xerrorf ( code / 100 == 5 , code , "" , lastLine , "%w: expected 250 to HELO, got %d" , ErrStatus , code )
}
return
case smtp . C250Completed :
default :
c . xerrorf ( code / 100 == 5 , code , "" , lastLine , "%w: expected 250, got %d" , ErrStatus , code )
}
for _ , s := range remains [ 1 : ] {
// ../rfc/5321:1869
s = strings . ToUpper ( strings . TrimSpace ( s ) )
switch s {
case "STARTTLS" :
c . extStartTLS = true
case "ENHANCEDSTATUSCODES" :
c . extEcodes = true
case "8BITMIME" :
c . ext8bitmime = true
case "PIPELINING" :
c . extPipelining = true
default :
// For SMTPUTF8 we must ignore any parameter. ../rfc/6531:207
if s == "SMTPUTF8" || strings . HasPrefix ( s , "SMTPUTF8 " ) {
c . extSMTPUTF8 = true
} else if strings . HasPrefix ( s , "SIZE " ) {
c . extSize = true
if v , err := strconv . ParseInt ( s [ len ( "SIZE " ) : ] , 10 , 64 ) ; err == nil {
c . maxSize = v
}
}
}
}
}
// Read greeting.
c . cmds = [ ] string { "(greeting)" }
c . cmdStart = time . Now ( )
code , _ , lastLine , _ := c . xreadecode ( false )
if code != smtp . C220ServiceReady {
c . xerrorf ( code / 100 == 5 , code , "" , lastLine , "%w: expected 220, got %d" , ErrStatus , code )
}
// Write EHLO, falling back to HELO if server doesn't appear to support it.
hello ( true )
// Attempt TLS if remote understands STARTTLS or if caller requires it.
if c . extStartTLS && tlsMode != TLSSkip || tlsMode == TLSStrict {
2023-06-04 18:55:55 +03:00
c . log . Debug ( "starting tls client" , mlog . Field ( "tlsmode" , tlsMode ) , mlog . Field ( "servername" , remoteHostname ) )
2023-01-30 16:27:06 +03:00
c . cmds [ 0 ] = "starttls"
c . cmdStart = time . Now ( )
c . xwritelinef ( "STARTTLS" )
code , secode , lastLine , _ := c . xread ( )
// ../rfc/3207:107
if code != smtp . C220ServiceReady {
c . xerrorf ( code / 100 == 5 , code , secode , lastLine , "%w: STARTTLS: got %d, expected 220" , ErrTLS , code )
}
// We don't want to do TLS on top of c.r because it also prints protocol traces: We
// don't want to log the TLS stream. So we'll do TLS on the underlying connection,
// but make sure any bytes already read and in the buffer are used for the TLS
// handshake.
conn := c . conn
if n := c . r . Buffered ( ) ; n > 0 {
conn = & moxio . PrefixConn {
PrefixReader : io . LimitReader ( c . r , int64 ( n ) ) ,
Conn : conn ,
}
}
// For TLSStrict, the Go TLS library performs the checks needed for MTA-STS.
// ../rfc/8461:646
// todo: possibly accept older TLS versions for TLSOpportunistic?
tlsConfig := & tls . Config {
ServerName : remoteHostname ,
RootCAs : mox . Conf . Static . TLS . CertPool ,
InsecureSkipVerify : tlsMode != TLSStrict ,
MinVersion : tls . VersionTLS12 , // ../rfc/8996:31 ../rfc/8997:66
}
nconn := tls . Client ( conn , tlsConfig )
c . conn = nconn
nctx , cancel := context . WithTimeout ( ctx , time . Minute )
defer cancel ( )
err := nconn . HandshakeContext ( nctx )
if err != nil {
c . xerrorf ( false , 0 , "" , "" , "%w: STARTTLS TLS handshake: %s" , ErrTLS , err )
}
cancel ( )
2023-02-03 22:33:19 +03:00
c . tr = moxio . NewTraceReader ( c . log , "RS: " , c . conn )
c . tw = moxio . NewTraceWriter ( c . log , "LC: " , c . conn ) // No need to wrap in timeoutWriter, it would just set the timeout on the underlying connection, which is still active.
c . r = bufio . NewReader ( c . tr )
c . w = bufio . NewWriter ( c . tw )
2023-01-30 16:27:06 +03:00
tlsversion , ciphersuite := mox . TLSInfo ( nconn )
2023-06-04 18:55:55 +03:00
c . log . Debug ( "tls client handshake done" , mlog . Field ( "tls" , tlsversion ) , mlog . Field ( "ciphersuite" , ciphersuite ) , mlog . Field ( "servername" , remoteHostname ) , mlog . Field ( "insecureskipverify" , tlsConfig . InsecureSkipVerify ) )
2023-01-30 16:27:06 +03:00
hello ( false )
}
if auth != "" {
// No metrics, only used for tests.
c . cmds [ 0 ] = "auth"
c . cmdStart = time . Now ( )
2023-02-03 22:33:19 +03:00
defer c . xtrace ( mlog . LevelTraceauth ) ( )
2023-01-30 16:27:06 +03:00
c . xwriteline ( auth )
2023-02-03 22:33:19 +03:00
c . xtrace ( mlog . LevelTrace ) // Restore.
2023-01-30 16:27:06 +03:00
code , secode , lastLine , _ := c . xread ( )
if code != smtp . C235AuthSuccess {
c . xerrorf ( code / 100 == 5 , code , secode , lastLine , "%w: auth: got %d, expected 2xx" , ErrStatus , code )
}
}
return
}
// Supports8BITMIME returns whether the SMTP server supports the 8BITMIME
// extension, needed for sending data with non-ASCII bytes.
func ( c * Client ) Supports8BITMIME ( ) bool {
return c . ext8bitmime
}
// SupportsSMTPUTF8 returns whether the SMTP server supports the SMTPUTF8
// extension, needed for sending messages with UTF-8 in headers or in an (SMTP)
// address.
func ( c * Client ) SupportsSMTPUTF8 ( ) bool {
return c . extSMTPUTF8
}
// Deliver attempts to deliver a message to a mail server.
//
// mailFrom must be an email address, or empty in case of a DSN. rcptTo must be
// an email address.
//
// If the message contains bytes with the high bit set, req8bitmime must be true. If
// set, the remote server must support the 8BITMIME extension or delivery will
// fail.
//
// If the message is internationalized, e.g. when headers contain non-ASCII
// character, or when UTF-8 is used in a localpart, reqSMTPUTF8 must be true. If set,
// the remote server must support the SMTPUTF8 extension or delivery will fail.
//
// Deliver uses the following SMTP extensions if the remote server supports them:
// 8BITMIME, SMTPUTF8, SIZE, PIPELINING, ENHANCEDSTATUSCODES, STARTTLS.
//
// Returned errors can be of type Error, one of the Err-variables in this package
// or other underlying errors, e.g. for i/o. Use errors.Is to check.
func ( c * Client ) Deliver ( ctx context . Context , mailFrom string , rcptTo string , msgSize int64 , msg io . Reader , req8bitmime , reqSMTPUTF8 bool ) ( rerr error ) {
defer c . recover ( & rerr )
if c . origConn == nil {
return ErrClosed
} else if c . botched {
return ErrBotched
} else if c . needRset {
if err := c . Reset ( ) ; err != nil {
return err
}
}
if ! c . ext8bitmime && req8bitmime {
2023-02-17 23:58:05 +03:00
// Temporary error, e.g. OpenBSD spamd does not announce 8bitmime support, but once
// you get through, the mail server behind it probably does. Just needs a few
// retries.
c . xerrorf ( false , 0 , "" , "" , "%w" , Err8bitmimeUnsupported )
2023-01-30 16:27:06 +03:00
}
if ! c . extSMTPUTF8 && reqSMTPUTF8 {
// ../rfc/6531:313
2023-02-17 23:58:05 +03:00
c . xerrorf ( false , 0 , "" , "" , "%w" , ErrSMTPUTF8Unsupported )
2023-01-30 16:27:06 +03:00
}
if c . extSize && msgSize > c . maxSize {
c . xerrorf ( true , 0 , "" , "" , "%w: message is %d bytes, remote has a %d bytes maximum size" , ErrSize , msgSize , c . maxSize )
}
var mailSize , bodyType string
if c . extSize {
mailSize = fmt . Sprintf ( " SIZE=%d" , msgSize )
}
if c . ext8bitmime {
if req8bitmime {
bodyType = " BODY=8BITMIME"
} else {
bodyType = " BODY=7BIT"
}
}
var smtputf8Arg string
if reqSMTPUTF8 {
// ../rfc/6531:213
smtputf8Arg = " SMTPUTF8"
}
// Transaction overview: ../rfc/5321:1015
// MAIL FROM: ../rfc/5321:1879
// RCPT TO: ../rfc/5321:1916
// DATA: ../rfc/5321:1992
lineMailFrom := fmt . Sprintf ( "MAIL FROM:<%s>%s%s%s" , mailFrom , mailSize , bodyType , smtputf8Arg )
lineRcptTo := fmt . Sprintf ( "RCPT TO:<%s>" , rcptTo )
// We are going into a transaction. We'll clear this when done.
c . needRset = true
if c . extPipelining {
c . cmds = [ ] string { "mailfrom" , "rcptto" , "data" }
c . cmdStart = time . Now ( )
// todo future: write in a goroutine to prevent potential deadlock if remote does not consume our writes before expecting us to read. could potentially happen with greylisting and a small tcp send window?
c . xbwriteline ( lineMailFrom )
c . xbwriteline ( lineRcptTo )
c . xbwriteline ( "DATA" )
c . xflush ( )
2023-04-20 23:29:18 +03:00
// We read the response to RCPT TO and DATA without panic on read error. Servers
// may be aborting the connection after a failed MAIL FROM, e.g. outlook when it
// has blocklisted your IP. We don't want the read for the response to RCPT TO to
// cause a read error as it would result in an unhelpful error message and a
// temporary instead of permanent error code.
2023-01-30 16:27:06 +03:00
mfcode , mfsecode , mflastline , _ := c . xread ( )
2023-04-20 23:29:18 +03:00
rtcode , rtsecode , rtlastline , _ , rterr := c . read ( )
datacode , datasecode , datalastline , _ , dataerr := c . read ( )
2023-01-30 16:27:06 +03:00
if mfcode != smtp . C250Completed {
c . xerrorf ( mfcode / 100 == 5 , mfcode , mfsecode , mflastline , "%w: got %d, expected 2xx" , ErrStatus , mfcode )
}
2023-04-20 23:29:18 +03:00
if rterr != nil {
panic ( rterr )
}
2023-01-30 16:27:06 +03:00
if rtcode != smtp . C250Completed {
c . xerrorf ( rtcode / 100 == 5 , rtcode , rtsecode , rtlastline , "%w: got %d, expected 2xx" , ErrStatus , rtcode )
}
2023-04-20 23:29:18 +03:00
if dataerr != nil {
panic ( dataerr )
}
2023-01-30 16:27:06 +03:00
if datacode != smtp . C354Continue {
c . xerrorf ( datacode / 100 == 5 , datacode , datasecode , datalastline , "%w: got %d, expected 354" , ErrStatus , datacode )
}
} else {
c . cmds [ 0 ] = "mailfrom"
c . cmdStart = time . Now ( )
c . xwriteline ( lineMailFrom )
code , secode , lastline , _ := c . xread ( )
if code != smtp . C250Completed {
c . xerrorf ( code / 100 == 5 , code , secode , lastline , "%w: got %d, expected 2xx" , ErrStatus , code )
}
c . cmds [ 0 ] = "rcptto"
c . cmdStart = time . Now ( )
c . xwriteline ( lineRcptTo )
code , secode , lastline , _ = c . xread ( )
if code != smtp . C250Completed {
c . xerrorf ( code / 100 == 5 , code , secode , lastline , "%w: got %d, expected 2xx" , ErrStatus , code )
}
c . cmds [ 0 ] = "data"
c . cmdStart = time . Now ( )
c . xwriteline ( "DATA" )
code , secode , lastline , _ = c . xread ( )
if code != smtp . C354Continue {
c . xerrorf ( code / 100 == 5 , code , secode , lastline , "%w: got %d, expected 354" , ErrStatus , code )
}
}
// For a DATA write, the suggested timeout is 3 minutes, we use 30 seconds for all
// writes through timeoutWriter. ../rfc/5321:3651
2023-02-03 22:33:19 +03:00
defer c . xtrace ( mlog . LevelTracedata ) ( )
2023-01-30 16:27:06 +03:00
err := smtp . DataWrite ( c . w , msg )
if err != nil {
c . xbotchf ( 0 , "" , "" , "writing message as smtp data: %w" , err )
}
c . xflush ( )
2023-02-03 22:33:19 +03:00
c . xtrace ( mlog . LevelTrace ) // Restore.
2023-01-30 16:27:06 +03:00
code , secode , lastline , _ := c . xread ( )
if code != smtp . C250Completed {
c . xerrorf ( code / 100 == 5 , code , secode , lastline , "%w: got %d, expected 2xx" , ErrStatus , code )
}
c . needRset = false
return
}
// Reset sends an SMTP RSET command to reset the message transaction state. Deliver
// automatically sends it if needed.
func ( c * Client ) Reset ( ) ( rerr error ) {
if c . origConn == nil {
return ErrClosed
} else if c . botched {
return ErrBotched
}
defer c . recover ( & rerr )
// ../rfc/5321:2079
c . cmds [ 0 ] = "rset"
c . cmdStart = time . Now ( )
c . xwriteline ( "RSET" )
code , secode , lastline , _ := c . xread ( )
if code != smtp . C250Completed {
c . xerrorf ( code / 100 == 5 , code , secode , lastline , "%w: got %d, expected 2xx" , ErrStatus , code )
}
c . needRset = false
return
}
// Botched returns whether this connection is botched, e.g. a protocol error
// occurred and the connection is in unknown state, and cannot be used for message
// delivery.
func ( c * Client ) Botched ( ) bool {
return c . botched || c . origConn == nil
}
// Close cleans up the client, closing the underlying connection.
//
// If the connection is in initialized and not botched, a QUIT command is sent and
// the response read with a short timeout before closing the underlying connection.
//
// Close returns any error encountered during QUIT and closing.
func ( c * Client ) Close ( ) ( rerr error ) {
if c . origConn == nil {
return ErrClosed
}
defer c . recover ( & rerr )
if ! c . botched {
// ../rfc/5321:2205
c . cmds [ 0 ] = "quit"
c . cmdStart = time . Now ( )
c . xwriteline ( "QUIT" )
if err := c . conn . SetReadDeadline ( time . Now ( ) . Add ( 5 * time . Second ) ) ; err != nil {
c . log . Infox ( "setting read deadline for reading quit response" , err )
} else if _ , err := bufs . Readline ( c . r ) ; err != nil {
rerr = fmt . Errorf ( "reading response to quit command: %v" , err )
c . log . Debugx ( "reading quit response" , err )
}
}
err := c . origConn . Close ( )
if c . conn != c . origConn {
// This is the TLS connection. Close will attempt to write a close notification.
// But it will fail quickly because the underlying socket was closed.
c . conn . Close ( )
}
c . origConn = nil
c . conn = nil
if rerr != nil {
rerr = err
}
return
}