package courier import ( "crypto/tls" "flag" "net" "os" "time" "github.com/golang/glog" "golang.org/x/net/idna" "blitiri.com.ar/go/chasquid/internal/envelope" "blitiri.com.ar/go/chasquid/internal/smtp" "blitiri.com.ar/go/chasquid/internal/trace" ) var ( // Timeouts for SMTP delivery. smtpDialTimeout = 1 * time.Minute smtpTotalTimeout = 10 * time.Minute // Port for outgoing SMTP. // Tests can override this. smtpPort = flag.String("testing__outgoing_smtp_port", "25", "port to use for outgoing SMTP connections, ONLY FOR TESTING") // Fake MX records, used for testing only. fakeMX = map[string]string{} ) // SMTP delivers remote mail via outgoing SMTP. type SMTP struct { } func (s *SMTP) Deliver(from string, to string, data []byte) (error, bool) { tr := trace.New("SMTP.Courier", to) defer tr.Finish() tr.Debugf("%s -> %s", from, to) mx, err := lookupMX(envelope.DomainOf(to)) if err != nil { // Note this is considered a permanent error. // This is in line with what other servers (Exim) do. However, the // downside is that temporary DNS issues can affect delivery, so we // have to make sure we try hard enough on the lookup above. return tr.Errorf("Could not find mail server: %v", err), true } tr.Debugf("MX: %s", mx) // Do we use insecure TLS? // Set as fallback when retrying. insecure := false retry: conn, err := net.DialTimeout("tcp", mx+":"+*smtpPort, smtpDialTimeout) if err != nil { return tr.Errorf("Could not dial: %v", err), false } conn.SetDeadline(time.Now().Add(smtpTotalTimeout)) c, err := smtp.NewClient(conn, mx) if err != nil { return tr.Errorf("Error creating client: %v", err), false } // Issue an EHLO with a valid domain; otherwise, some servers like postfix // will complain. fromDomain, err := idna.ToASCII(envelope.DomainOf(from)) if err != nil { return tr.Errorf("Sender domain not IDNA compliant: %v", err), true } if fromDomain == "" { // This can happen when sending bounces. Last resort. fromDomain, _ = os.Hostname() } if err = c.Hello(fromDomain); err != nil { return tr.Errorf("Error saying hello: %v", err), false } // TODO: Keep track of hosts and MXs that we've successfully done TLS // against, and enforce it. if ok, _ := c.Extension("STARTTLS"); ok { config := &tls.Config{ ServerName: mx, InsecureSkipVerify: insecure, } err = c.StartTLS(config) if err != nil { // Unfortunately, many servers use self-signed certs, so if we // fail verification we just try again without validating. if insecure { return tr.Errorf("TLS error: %v", err), false } insecure = true tr.Debugf("TLS error, retrying insecurely") goto retry } if config.InsecureSkipVerify { tr.Debugf("Insecure - using TLS, but cert does not match %s", mx) } else { tr.Debugf("Secure - using TLS") } } else { tr.Debugf("Insecure - NOT using TLS") } // c.Mail will add the <> for us when the address is empty. if from == "<>" { from = "" } if err = c.MailAndRcpt(from, to); err != nil { return tr.Errorf("MAIL+RCPT %v", err), smtp.IsPermanent(err) } w, err := c.Data() if err != nil { return tr.Errorf("DATA %v", err), smtp.IsPermanent(err) } _, err = w.Write(data) if err != nil { return tr.Errorf("DATA writing: %v", err), smtp.IsPermanent(err) } err = w.Close() if err != nil { return tr.Errorf("DATA closing %v", err), smtp.IsPermanent(err) } c.Quit() tr.Debugf("done") return nil, false } func lookupMX(domain string) (string, error) { if v, ok := fakeMX[domain]; ok { return v, nil } domain, err := idna.ToASCII(domain) if err != nil { return "", err } mxs, err := net.LookupMX(domain) if err == nil { if len(mxs) == 0 { glog.Infof("domain %q has no MX, falling back to A", domain) return domain, nil } return mxs[0].Host, nil } // There was an error. It could be that the domain has no MX, in which // case we have to fall back to A, or a bigger problem. // Unfortunately, go's API doesn't let us easily distinguish between them. // For now, if the error is permanent, we assume it's because there was no // MX and fall back, otherwise we return. // TODO: Find a better way to do this. dnsErr, ok := err.(*net.DNSError) if !ok { return "", err } else if dnsErr.Temporary() { return "", err } // Permanent error, we assume MX does not exist and fall back to A. return domain, nil }