postcrate-core 0.1.1

Embeddable SMTP capture engine: server, multi-mailbox lifecycle, chaos simulation, SQLite persistence, HTTP API.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93

//! Chaos injection. Drives all controlled failures from a single
//! deterministic PRNG seeded per session (so a `seed` in the config
//! yields reproducible test runs).

use std::time::Duration;

use parking_lot::Mutex;
use rand::{Rng, SeedableRng};
use rand_chacha::ChaCha8Rng;

use crate::db::chaos_configs::ChaosConfig;
use crate::smtp::response::SmtpReply;

#[derive(Clone)]
pub struct ChaosInjector {
    cfg: ChaosConfig,
    rng: std::sync::Arc<Mutex<ChaCha8Rng>>,
}

impl std::fmt::Debug for ChaosInjector {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.debug_struct("ChaosInjector").field("cfg", &self.cfg).finish()
    }
}

impl ChaosInjector {
    pub fn new(cfg: ChaosConfig, fallback_seed: u64) -> Self {
        let seed = cfg.seed.unwrap_or(fallback_seed);
        Self {
            cfg,
            rng: std::sync::Arc::new(Mutex::new(ChaCha8Rng::seed_from_u64(seed))),
        }
    }

    pub fn enabled(&self) -> bool {
        self.cfg.enabled
    }

    pub fn delay(&self) -> Option<Duration> {
        if !self.cfg.enabled {
            return None;
        }
        if self.cfg.delay_ms_max == 0 {
            return None;
        }
        let mut rng = self.rng.lock();
        let lo = self.cfg.delay_ms_min;
        let hi = self.cfg.delay_ms_max.max(lo);
        if hi == 0 {
            return None;
        }
        let pick = rng.gen_range(lo..=hi);
        Some(Duration::from_millis(u64::from(pick)))
    }

    /// Roll for an unconditional rejection (regardless of command).
    pub fn maybe_reject(&self) -> Option<SmtpReply> {
        if !self.cfg.enabled {
            return None;
        }
        let mut rng = self.rng.lock();
        if rng.gen::<f32>() < self.cfg.reject_5xx_prob {
            return Some(SmtpReply::custom(550, "Chaos: rejected"));
        }
        if rng.gen::<f32>() < self.cfg.reject_4xx_prob {
            return Some(SmtpReply::custom(451, "Chaos: try again later"));
        }
        None
    }

    /// Roll for a malformed response (byte-level garbage instead of the
    /// real reply). Returns Some(bytes) when the chaos PRNG fires.
    pub fn maybe_malformed_bytes(&self) -> Option<Vec<u8>> {
        if !self.cfg.enabled || self.cfg.malformed_resp_prob == 0.0 {
            return None;
        }
        let mut rng = self.rng.lock();
        if rng.gen::<f32>() < self.cfg.malformed_resp_prob {
            // A code-less, partial line — well-behaved clients abort.
            return Some(b"x99 garbled response\r\n".to_vec());
        }
        None
    }

    /// Roll for a mid-DATA drop. Caller closes the socket on `true`.
    pub fn should_drop_during_data(&self) -> bool {
        if !self.cfg.enabled || self.cfg.drop_during_data_prob == 0.0 {
            return false;
        }
        let mut rng = self.rng.lock();
        rng.gen::<f32>() < self.cfg.drop_during_data_prob
    }
}