postfix_policy/

lib.rs

/*!
A Postfix SMTP access policy delegation handler. It handles protocol parsing and response sending to talk to Postfix
 */

use std::io::{BufRead, BufReader, Read, Write};

/// Errors that can occur in this Crate
#[derive(Debug)]
pub enum PostfixPolicyError<ErrorType> {
    /// An IO error occured while sending or receiving.
    IoError(std::io::Error),
    /// The request sent by the server contained an error.
    ProtocolError(Vec<u8>),
    /// one of the [`PolicyRequestHandler`] methods indicated an error.
    ///
    /// [`PolicyRequestHandler`]: trait.PolicyRequestHandler.html
    HandlerError(ErrorType),
}

impl<ErrorType> std::convert::From<std::io::Error> for PostfixPolicyError<ErrorType> {
    fn from(e: std::io::Error) -> Self {
        PostfixPolicyError::IoError(e)
    }
}

/// Encodes a response to the mail server.
///
/// For details see [`man 5 access`](http://www.postfix.org/access.5.html)
#[derive(Debug, PartialEq)]
pub enum PolicyResponse {
    Ok,
    Reject(Vec<u8>),
    Defer(Vec<u8>),
    DeferIfReject(Vec<u8>),
    DeferIfPermit(Vec<u8>),
    Bcc(Vec<u8>),
    Discard(Vec<u8>),
    Dunno,
    Hold(Vec<u8>),
    Redirect(Vec<u8>),
    Info(Vec<u8>),
    Warn(Vec<u8>),
}

/// Handler for policy requests.
///
/// Will be instanciated for every request by calling `new` with the `ctx` passed to [`handle_connection`].
/// [`handle_connection`] will then call `attribute` for every attribute in the policy request and then `response` to get the response.
///
/// [`handle_connection`]: fn.handle_connection.html
pub trait PolicyRequestHandler<'l, ContextType, ErrorType> {
    /// Creates a new instance and initalizes it with the context `ContextType`.
    fn new(ctx: &'l ContextType) -> Self;
    /// Attribute `name` with value `value` was part of the request. If this method returns `Some(error)`,
    /// handling of the request is cancelled immediately and [`handle_connection`] will return `Err(error)`.
    /// If this method returns `None`, request handling will continue normally.
    ///
    /// [`handle_connection`]: fn.handle_connection.html
    fn attribute(&mut self, name: &[u8], value: &[u8]) -> Option<ErrorType>;
    /// Returns the desired action after all attributes were processed. If this method returns `Err(error)`,
    /// handling of the request is cancelled immediately and [`handle_connection`] will return `Err(error)`.
    /// If this method returns `Ok(policy_response)`, the `policy_response` will be sent to the Server. This completes the request.
    ///
    /// [`handle_connection`]: fn.handle_connection.html
    fn response(self) -> Result<PolicyResponse, ErrorType>;
}

fn serialize_response(resp: PolicyResponse) -> Vec<u8> {
    let mut message = Vec::new();
    let action: &[u8] = match resp {
        PolicyResponse::Ok => b"OK",
        PolicyResponse::Reject(msg) => {
            message = msg;
            b"REJECT"
        }
        PolicyResponse::Defer(msg) => {
            message = msg;
            b"DEFER"
        }
        PolicyResponse::DeferIfReject(msg) => {
            message = msg;
            b"DEFER_IF_REJECT"
        }
        PolicyResponse::DeferIfPermit(msg) => {
            message = msg;
            b"DEFER_IF_PERMIT"
        }
        PolicyResponse::Bcc(email) => {
            message = email;
            b"BCC"
        }
        PolicyResponse::Discard(msg) => {
            message = msg;
            b"DISCARD"
        }
        PolicyResponse::Dunno => b"DUNNO",
        PolicyResponse::Hold(msg) => {
            message = msg;
            b"HOLD"
        }
        PolicyResponse::Redirect(dst) => {
            message = dst;
            b"REDIRECT"
        }
        PolicyResponse::Info(msg) => {
            message = msg;
            b"INFO"
        }
        PolicyResponse::Warn(msg) => {
            message = msg;
            b"WARN"
        }
    };
    let mut resp = Vec::from(action);
    if !message.is_empty() {
        resp.push(b' ');
        resp.extend_from_slice(&message);
    }
    resp
}

#[test]
fn test_serialize_response() {
    assert_eq!(b"OK"[..], serialize_response(PolicyResponse::Ok)[..]);
    assert_eq!(
        b"REJECT"[..],
        serialize_response(PolicyResponse::Reject(Vec::new()))[..]
    );
    assert_eq!(
        b"REJECT asdf"[..],
        serialize_response(PolicyResponse::Reject(b"asdf".to_vec()))[..]
    );
    assert_eq!(b"DEFER"[..], serialize_response(PolicyResponse::Defer(Vec::new()))[..]);
    assert_eq!(
        b"DEFER fdas"[..],
        serialize_response(PolicyResponse::Defer(b"fdas".to_vec()))[..]
    );
    assert_eq!(
        b"DEFER_IF_REJECT"[..],
        serialize_response(PolicyResponse::DeferIfReject(Vec::new()))[..]
    );
    assert_eq!(
        b"DEFER_IF_REJECT blblblbl"[..],
        serialize_response(PolicyResponse::DeferIfReject(b"blblblbl".to_vec()))[..]
    );
    assert_eq!(
        b"DEFER_IF_PERMIT"[..],
        serialize_response(PolicyResponse::DeferIfPermit(Vec::new()))[..]
    );
    assert_eq!(
        b"DEFER_IF_PERMIT gsdk jf"[..],
        serialize_response(PolicyResponse::DeferIfPermit(b"gsdk jf".to_vec()))[..]
    );
    assert_eq!(
        b"BCC a@b.c"[..],
        serialize_response(PolicyResponse::Bcc(b"a@b.c".to_vec()))[..]
    );
    assert_eq!(
        b"DISCARD"[..],
        serialize_response(PolicyResponse::Discard(Vec::new()))[..]
    );
    assert_eq!(
        b"DISCARD asdffdas"[..],
        serialize_response(PolicyResponse::Discard(b"asdffdas".to_vec()))[..]
    );
    assert_eq!(b"DUNNO"[..], serialize_response(PolicyResponse::Dunno)[..]);
    assert_eq!(b"HOLD"[..], serialize_response(PolicyResponse::Hold(Vec::new()))[..]);
    assert_eq!(
        b"HOLD cmn,sd"[..],
        serialize_response(PolicyResponse::Hold(b"cmn,sd".to_vec()))[..]
    );
    assert_eq!(
        b"REDIRECT a@b.c"[..],
        serialize_response(PolicyResponse::Redirect(b"a@b.c".to_vec()))[..]
    );
    assert_eq!(
        b"INFO some message trololol"[..],
        serialize_response(PolicyResponse::Info(b"some message trololol".to_vec()))[..]
    );
    assert_eq!(
        b"WARN writing something to logs because logging is great and everyone should log everything"[..],
        serialize_response(PolicyResponse::Warn(
            b"writing something to logs because logging is great and everyone should log everything".to_vec()
        ))[..]
    );
}

/**
 Handles a connection to the mail server.

 `socket` is the connection to the mail server and `ctx` is the Context, passed through each time `PolicyRequestHandler::new` is called.\
 It will create a new instance of the given [`PolicyRequestHandler`] for every request.\
 Might handle multiple policy requests before returning.
 ## Example
 ```norun
     let listener = UnixListener::bind(socket_path).expect("Could not bind UNIX socket");
     for conn in listener.incoming() {
         let mut conn = conn?;
         let cfg_ref = &config;
         thread::spawn(move || {
             if let Err(e) = handle_connection::<MyHandlerType, _, _, _>(&mut conn, cfg_ref) {
                 println!("handle_connection failed: {:?}", e);
             };
         });
     }
 ```
 [`PolicyRequestHandler`]: trait.PolicyRequestHandler.html
*/
pub fn handle_connection<'socket, 'ctx, HandlerType, ContextType, ErrorType, SocketType>(
    mut socket: &'socket SocketType,
    ctx: &'ctx ContextType,
) -> Result<(), PostfixPolicyError<ErrorType>>
where
    HandlerType: PolicyRequestHandler<'ctx, ContextType, ErrorType>,
    &'socket SocketType: Read + Write,
{
    let mut handler: HandlerType = HandlerType::new(ctx);
    let mut reader = BufReader::new(socket);

    loop {
        let mut buf: Vec<u8> = vec![];
        if reader.read_until(b'\n', &mut buf)? == 0 {
            return Ok(());
        }

        if buf == b"\n" {
            let result = match handler.response() {
                Ok(result) => result,
                Err(e) => return Err(PostfixPolicyError::HandlerError(e)),
            };
            socket.write_all(b"action=")?;
            socket.write_all(&serialize_response(result))?;
            socket.write_all(b"\n\n")?;
            socket.flush()?;
            handler = HandlerType::new(ctx);
            continue;
        }

        match buf.iter().position(|&c| c == b'=') {
            None => return Err(PostfixPolicyError::ProtocolError(buf)),
            Some(pos) => {
                let (left, mut right) = buf.split_at(pos);
                if left.is_empty() || right.len() < 2 {
                    return Err(PostfixPolicyError::ProtocolError(buf));
                }
                right = &right[1..right.len() - 1];
                if let Some(error) = handler.attribute(left, right) {
                    return Err(PostfixPolicyError::HandlerError(error));
                }
            }
        }
    }
}

/// provides helpers for testing
pub mod test_helper {
    use super::{handle_connection, PolicyRequestHandler, PostfixPolicyError};
    use std::cell::RefCell;
    use std::io::Cursor;
    use std::io::{Read, Write};

    /// A Dummy Socket, implementing `Read` and `Write`. It is give an `&[u8]` input which will be returned by `read` calls. After using it, the complete written output can be obtained by calling `get_output`.
    pub struct DummySocket<'lt> {
        input: RefCell<Cursor<&'lt [u8]>>,
        output: RefCell<Vec<u8>>,
    }

    impl<'lt> DummySocket<'lt> {
        /// creates a new `DummySocket` instance. The data given as `input` can be read by calling `read`.
        pub fn new(input: &'lt [u8]) -> Self {
            DummySocket {
                input: RefCell::new(Cursor::new(input)),
                output: RefCell::new(vec![]),
            }
        }

        /// returns the output written into this `DummySocket`.
        pub fn get_output(self) -> Vec<u8> {
            self.output.into_inner()
        }
    }

    impl<'lt> Read for &DummySocket<'lt> {
        fn read(&mut self, buf: &mut [u8]) -> std::io::Result<usize> {
            self.input.borrow_mut().read(buf)
        }
    }

    impl<'lt> Write for &DummySocket<'lt> {
        fn write(&mut self, buf: &[u8]) -> std::result::Result<usize, std::io::Error> {
            self.output.borrow_mut().write(buf)
        }
        fn flush(&mut self) -> std::result::Result<(), std::io::Error> {
            self.output.borrow_mut().flush()
        }
    }

    /// Helper function to test [`PolicyRequestHandler`] implementations using the line format.
    /// Expects `input` to contain one (or more) policy requests. \
    /// Will use `ctx` as context parameter in `handle_connection`. \
    /// If `handle_connection` returns successfully, it returns `Ok(..)` containing the complete response(s) that would be sent to the mail server. \
    /// If `handle_connection` fails, the Error response will be passed through and the response(s) up to that point are discarded.
    /// ## Example
    /// ```norun
    /// let input = b"request=smtpd_access_policy\nprotocol_state=RCPT\n...\n\n";
    /// assert_eq!(
    ///     handle_connection_response::<MyRequestHandler, _, _>(input, &()).unwrap(),
    ///     b"action=DEFER some_message\n\n"
    /// );
    /// ```
    ///
    /// [`PolicyRequestHandler`]: ../trait.PolicyRequestHandler.html
    pub fn handle_connection_response<'l, HandlerType, ContextType, ErrorType>(
        input: &'l [u8],
        ctx: &'l ContextType,
    ) -> Result<Vec<u8>, PostfixPolicyError<ErrorType>>
    where
        HandlerType: PolicyRequestHandler<'l, ContextType, ErrorType>,
    {
        let socket = DummySocket::new(input);
        handle_connection::<HandlerType, ContextType, ErrorType, _>(&socket, ctx)?;
        Ok(socket.get_output())
    }
}

#[cfg(test)]
mod tests {

    use super::test_helper::handle_connection_response;
    use super::{PolicyRequestHandler, PolicyResponse, PostfixPolicyError};

    struct DummyRequestHandler {
        found_request: bool,
        client_address: Vec<u8>,
    }
    impl<'l> PolicyRequestHandler<'l, (), ()> for DummyRequestHandler {
        fn new(_: &()) -> Self {
            Self {
                found_request: false,
                client_address: vec![],
            }
        }
        fn attribute(&mut self, name: &[u8], value: &[u8]) -> Option<()> {
            match name {
                b"request" => self.found_request = true,
                b"client_address" => self.client_address = value.to_vec(),
                _ => {}
            }
            None
        }

        fn response(self) -> Result<PolicyResponse, ()> {
            if !self.found_request {
                return Ok(PolicyResponse::Reject(Vec::new()));
            }
            Ok(PolicyResponse::Defer(self.client_address.clone()))
        }
    }

    #[test]
    fn test_handle_connection_valid() {
        let input =
            b"request=smtpd_access_policy\nprotocol_state=RCPT\nprotocol_name=ESMTP\nclient_address=131.234.189.14\n\n";
        assert_eq!(
            handle_connection_response::<DummyRequestHandler, _, _>(input, &()).unwrap(),
            b"action=DEFER 131.234.189.14\n\n"
        );
    }

    #[test]
    fn test_handle_connection_empty() {
        let input = b"\n";
        assert_eq!(
            handle_connection_response::<DummyRequestHandler, _, _>(input, &()).unwrap(),
            b"action=REJECT\n\n"
        );
    }

    #[test]
    fn test_handle_connection_line_without_eq() {
        let input = b"asdf\n\n";

        assert!(
            match handle_connection_response::<DummyRequestHandler, _, _>(input, &()) {
                Err(PostfixPolicyError::ProtocolError(l)) => {
                    assert_eq!(&l, b"asdf\n");
                    true
                }
                _ => false,
            }
        );
    }

    #[test]
    fn test_handle_connection_line_empty_name() {
        let input = b"=a\n\n";

        assert!(
            match handle_connection_response::<DummyRequestHandler, _, _>(input, &()) {
                Err(PostfixPolicyError::ProtocolError(l)) => {
                    assert_eq!(&l, b"=a\n");
                    true
                }
                _ => false,
            }
        );
    }
}