@push.rocks/smartmta 5.1.3 → 5.2.1

package/dist_ts/mail/delivery/index.d.ts

@@ -0,0 +1,4 @@
+export * from './classes.delivery.queue.js';
+export * from './classes.delivery.system.js';
+export { DeliveryStatus } from './classes.delivery.system.js';
+export * from './classes.unified.rate.limiter.js';

package/dist_ts/mail/delivery/index.js

@@ -0,0 +1,6 @@
+// Email delivery components
+export * from './classes.delivery.queue.js';
+export * from './classes.delivery.system.js';
+export { DeliveryStatus } from './classes.delivery.system.js';
+export * from './classes.unified.rate.limiter.js';
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW5kZXguanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi90cy9tYWlsL2RlbGl2ZXJ5L2luZGV4LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiJBQUFBLDRCQUE0QjtBQUM1QixjQUFjLDZCQUE2QixDQUFDO0FBQzVDLGNBQWMsOEJBQThCLENBQUM7QUFDN0MsT0FBTyxFQUFFLGNBQWMsRUFBRSxNQUFNLDhCQUE4QixDQUFDO0FBQzlELGNBQWMsbUNBQW1DLENBQUMifQ==

package/dist_ts/mail/delivery/interfaces.d.ts

@@ -0,0 +1,140 @@
+/**
+ * SMTP and email delivery interface definitions
+ */
+/**
+ * SMTP session state enumeration
+ */
+export declare enum SmtpState {
+    GREETING = "GREETING",
+    AFTER_EHLO = "AFTER_EHLO",
+    MAIL_FROM = "MAIL_FROM",
+    RCPT_TO = "RCPT_TO",
+    DATA = "DATA",
+    DATA_RECEIVING = "DATA_RECEIVING",
+    FINISHED = "FINISHED"
+}
+/**
+ * Email processing mode type
+ */
+export type EmailProcessingMode = 'forward' | 'mta' | 'process';
+/**
+ * Envelope recipient information
+ */
+export interface IEnvelopeRecipient {
+    /**
+     * Email address of the recipient
+     */
+    address: string;
+    /**
+     * Additional SMTP command arguments
+     */
+    args: Record<string, string>;
+}
+/**
+ * SMTP session envelope information
+ */
+export interface ISmtpEnvelope {
+    /**
+     * Envelope sender (MAIL FROM) information
+     */
+    mailFrom: {
+        /**
+         * Email address of the sender
+         */
+        address: string;
+        /**
+         * Additional SMTP command arguments
+         */
+        args: Record<string, string>;
+    };
+    /**
+     * Envelope recipients (RCPT TO) information
+     */
+    rcptTo: IEnvelopeRecipient[];
+}
+/**
+ * SMTP Session interface - represents an active SMTP connection
+ */
+export interface ISmtpSession {
+    /**
+     * Unique session identifier
+     */
+    id: string;
+    /**
+     * Current session state in the SMTP conversation
+     */
+    state: SmtpState;
+    /**
+     * Hostname provided by the client in EHLO/HELO command
+     */
+    clientHostname: string;
+    /**
+     * MAIL FROM email address (legacy format)
+     */
+    mailFrom: string;
+    /**
+     * RCPT TO email addresses (legacy format)
+     */
+    rcptTo: string[];
+    /**
+     * Raw email data being received
+     */
+    emailData: string;
+    /**
+     * Chunks of email data for more efficient buffer management
+     */
+    emailDataChunks?: string[];
+    /**
+     * Whether the connection is using TLS
+     */
+    useTLS: boolean;
+    /**
+     * Whether the connection has ended
+     */
+    connectionEnded: boolean;
+    /**
+     * Remote IP address of the client
+     */
+    remoteAddress: string;
+    /**
+     * Whether the connection is secure (TLS)
+     */
+    secure: boolean;
+    /**
+     * Whether the client has been authenticated
+     */
+    authenticated: boolean;
+    /**
+     * SMTP envelope information (structured format)
+     */
+    envelope: ISmtpEnvelope;
+    /**
+     * Email processing mode to use for this session
+     */
+    processingMode?: EmailProcessingMode;
+    /**
+     * Timestamp of last activity for session timeout tracking
+     */
+    lastActivity?: number;
+    /**
+     * Timeout ID for DATA command timeout
+     */
+    dataTimeoutId?: NodeJS.Timeout;
+}
+/**
+ * SMTP authentication data
+ */
+export interface ISmtpAuth {
+    /**
+     * Authentication method used
+     */
+    method: 'PLAIN' | 'LOGIN' | 'OAUTH2' | string;
+    /**
+     * Username for authentication
+     */
+    username: string;
+    /**
+     * Password or token for authentication
+     */
+    password: string;
+}

package/dist_ts/mail/delivery/interfaces.js

@@ -0,0 +1,17 @@
+/**
+ * SMTP and email delivery interface definitions
+ */
+/**
+ * SMTP session state enumeration
+ */
+export var SmtpState;
+(function (SmtpState) {
+    SmtpState["GREETING"] = "GREETING";
+    SmtpState["AFTER_EHLO"] = "AFTER_EHLO";
+    SmtpState["MAIL_FROM"] = "MAIL_FROM";
+    SmtpState["RCPT_TO"] = "RCPT_TO";
+    SmtpState["DATA"] = "DATA";
+    SmtpState["DATA_RECEIVING"] = "DATA_RECEIVING";
+    SmtpState["FINISHED"] = "FINISHED";
+})(SmtpState || (SmtpState = {}));
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW50ZXJmYWNlcy5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uLy4uL3RzL21haWwvZGVsaXZlcnkvaW50ZXJmYWNlcy50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiQUFBQTs7R0FFRztBQUVIOztHQUVHO0FBQ0gsTUFBTSxDQUFOLElBQVksU0FRWDtBQVJELFdBQVksU0FBUztJQUNuQixrQ0FBcUIsQ0FBQTtJQUNyQixzQ0FBeUIsQ0FBQTtJQUN6QixvQ0FBdUIsQ0FBQTtJQUN2QixnQ0FBbUIsQ0FBQTtJQUNuQiwwQkFBYSxDQUFBO0lBQ2IsOENBQWlDLENBQUE7SUFDakMsa0NBQXFCLENBQUE7QUFDdkIsQ0FBQyxFQVJXLFNBQVMsS0FBVCxTQUFTLFFBUXBCIn0=

package/dist_ts/mail/index.d.ts

@@ -0,0 +1,7 @@
+export * from './routing/index.js';
+export * from './security/index.js';
+import * as Core from './core/index.js';
+import * as Delivery from './delivery/index.js';
+export { Core, Delivery };
+import { Email } from './core/classes.email.js';
+export { Email, };

package/dist_ts/mail/index.js

@@ -0,0 +1,12 @@
+// Export all mail modules for simplified imports
+export * from './routing/index.js';
+export * from './security/index.js';
+// Make the core and delivery modules accessible
+import * as Core from './core/index.js';
+import * as Delivery from './delivery/index.js';
+export { Core, Delivery };
+// For direct imports
+import { Email } from './core/classes.email.js';
+// Re-export commonly used classes
+export { Email, };
+//# sourceMappingURL=data:application/json;base64,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

package/dist_ts/mail/routing/classes.dkim.manager.d.ts

@@ -0,0 +1,25 @@
+import { DKIMCreator } from '../security/classes.dkimcreator.js';
+import { DomainRegistry } from './classes.domain.registry.js';
+import { RustSecurityBridge } from '../../security/classes.rustsecuritybridge.js';
+import { Email } from '../core/classes.email.js';
+/** External DcRouter interface shape used by DkimManager */
+interface DcRouter {
+    storageManager: any;
+    dnsServer?: any;
+}
+/**
+ * Manages DKIM key setup, rotation, and signing for all configured domains
+ */
+export declare class DkimManager {
+    private dkimCreator;
+    private domainRegistry;
+    private dcRouter;
+    private rustBridge;
+    private dkimKeys;
+    constructor(dkimCreator: DKIMCreator, domainRegistry: DomainRegistry, dcRouter: DcRouter, rustBridge: RustSecurityBridge);
+    setupDkimForDomains(): Promise<void>;
+    checkAndRotateDkimKeys(): Promise<void>;
+    handleDkimSigning(email: Email, domain: string, selector: string): Promise<void>;
+    getDkimKey(domain: string): string | undefined;
+}
+export {};

package/dist_ts/mail/routing/classes.dkim.manager.js

@@ -0,0 +1,127 @@
+import { logger } from '../../logger.js';
+import { DKIMCreator } from '../security/classes.dkimcreator.js';
+import { DomainRegistry } from './classes.domain.registry.js';
+import { RustSecurityBridge } from '../../security/classes.rustsecuritybridge.js';
+import { Email } from '../core/classes.email.js';
+/**
+ * Manages DKIM key setup, rotation, and signing for all configured domains
+ */
+export class DkimManager {
+    dkimCreator;
+    domainRegistry;
+    dcRouter;
+    rustBridge;
+    dkimKeys = new Map();
+    constructor(dkimCreator, domainRegistry, dcRouter, rustBridge) {
+        this.dkimCreator = dkimCreator;
+        this.domainRegistry = domainRegistry;
+        this.dcRouter = dcRouter;
+        this.rustBridge = rustBridge;
+    }
+    async setupDkimForDomains() {
+        const domainConfigs = this.domainRegistry.getAllConfigs();
+        if (domainConfigs.length === 0) {
+            logger.log('warn', 'No domains configured for DKIM');
+            return;
+        }
+        for (const domainConfig of domainConfigs) {
+            const domain = domainConfig.domain;
+            const selector = domainConfig.dkim?.selector || 'default';
+            try {
+                let keyPair;
+                try {
+                    keyPair = await this.dkimCreator.readDKIMKeys(domain);
+                    logger.log('info', `Using existing DKIM keys for domain: ${domain}`);
+                }
+                catch (error) {
+                    keyPair = await this.dkimCreator.createDKIMKeys();
+                    await this.dkimCreator.createAndStoreDKIMKeys(domain);
+                    logger.log('info', `Generated new DKIM keys for domain: ${domain}`);
+                }
+                this.dkimKeys.set(domain, keyPair.privateKey);
+                logger.log('info', `DKIM keys loaded for domain: ${domain} with selector: ${selector}`);
+            }
+            catch (error) {
+                logger.log('error', `Failed to set up DKIM for domain ${domain}: ${error.message}`);
+            }
+        }
+    }
+    async checkAndRotateDkimKeys() {
+        const domainConfigs = this.domainRegistry.getAllConfigs();
+        for (const domainConfig of domainConfigs) {
+            const domain = domainConfig.domain;
+            const selector = domainConfig.dkim?.selector || 'default';
+            const rotateKeys = domainConfig.dkim?.rotateKeys || false;
+            const rotationInterval = domainConfig.dkim?.rotationInterval || 90;
+            const keySize = domainConfig.dkim?.keySize || 2048;
+            if (!rotateKeys) {
+                logger.log('debug', `DKIM key rotation disabled for ${domain}`);
+                continue;
+            }
+            try {
+                const needsRotation = await this.dkimCreator.needsRotation(domain, selector, rotationInterval);
+                if (needsRotation) {
+                    logger.log('info', `DKIM keys need rotation for ${domain} (selector: ${selector})`);
+                    const newSelector = await this.dkimCreator.rotateDkimKeys(domain, selector, keySize);
+                    domainConfig.dkim = {
+                        ...domainConfig.dkim,
+                        selector: newSelector
+                    };
+                    if (domainConfig.dnsMode === 'internal-dns' && this.dcRouter.dnsServer) {
+                        const keyPair = await this.dkimCreator.readDKIMKeysForSelector(domain, newSelector);
+                        const publicKeyBase64 = keyPair.publicKey
+                            .replace(/-----BEGIN PUBLIC KEY-----/g, '')
+                            .replace(/-----END PUBLIC KEY-----/g, '')
+                            .replace(/\s/g, '');
+                        const ttl = domainConfig.dns?.internal?.ttl || 3600;
+                        this.dcRouter.dnsServer.registerHandler(`${newSelector}._domainkey.${domain}`, ['TXT'], () => ({
+                            name: `${newSelector}._domainkey.${domain}`,
+                            type: 'TXT',
+                            class: 'IN',
+                            ttl: ttl,
+                            data: `v=DKIM1; k=rsa; p=${publicKeyBase64}`
+                        }));
+                        logger.log('info', `DKIM DNS handler registered for new selector: ${newSelector}._domainkey.${domain}`);
+                        await this.dcRouter.storageManager.set(`/email/dkim/${domain}/public.key`, keyPair.publicKey);
+                    }
+                    this.dkimCreator.cleanupOldKeys(domain, 30).catch(error => {
+                        logger.log('warn', `Failed to cleanup old DKIM keys for ${domain}: ${error.message}`);
+                    });
+                }
+                else {
+                    logger.log('debug', `DKIM keys for ${domain} are up to date`);
+                }
+            }
+            catch (error) {
+                logger.log('error', `Failed to check/rotate DKIM keys for ${domain}: ${error.message}`);
+            }
+        }
+    }
+    async handleDkimSigning(email, domain, selector) {
+        try {
+            await this.dkimCreator.handleDKIMKeysForDomain(domain);
+            const { privateKey } = await this.dkimCreator.readDKIMKeys(domain);
+            const rawEmail = email.toRFC822String();
+            // Detect key type from PEM header
+            const keyType = privateKey.includes('ED25519') ? 'ed25519' : 'rsa';
+            const signResult = await this.rustBridge.signDkim({
+                rawMessage: rawEmail,
+                domain,
+                selector,
+                privateKey,
+                keyType,
+            });
+            if (signResult.header) {
+                email.addHeader('DKIM-Signature', signResult.header);
+                logger.log('info', `Successfully added DKIM signature for ${domain}`);
+            }
+        }
+        catch (error) {
+            logger.log('error', `Failed to sign email with DKIM: ${error.message}`);
+        }
+    }
+    getDkimKey(domain) {
+        return this.dkimKeys.get(domain);
+    }
+}
+//# sourceMappingURL=data:application/json;base64,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

package/dist_ts/mail/routing/classes.dns.manager.d.ts

@@ -0,0 +1,79 @@
+import type { IEmailDomainConfig } from './interfaces.js';
+/** External DcRouter interface shape used by DnsManager */
+interface IDcRouterLike {
+    storageManager: IStorageManagerLike;
+    dnsServer?: any;
+    options?: {
+        dnsNsDomains?: string[];
+        dnsScopes?: string[];
+    };
+}
+/** External StorageManager interface shape used by DnsManager */
+interface IStorageManagerLike {
+    get(key: string): Promise<string | null>;
+    set(key: string, value: string): Promise<void>;
+}
+/**
+ * DNS validation result
+ */
+export interface IDnsValidationResult {
+    valid: boolean;
+    errors: string[];
+    warnings: string[];
+    requiredChanges: string[];
+}
+/**
+ * Manages DNS configuration for email domains
+ * Handles both validation and creation of DNS records
+ */
+export declare class DnsManager {
+    private dcRouter;
+    private storageManager;
+    constructor(dcRouter: IDcRouterLike);
+    /**
+     * Validate all domain configurations
+     */
+    validateAllDomains(domainConfigs: IEmailDomainConfig[]): Promise<Map<string, IDnsValidationResult>>;
+    /**
+     * Validate a single domain configuration
+     */
+    validateDomain(config: IEmailDomainConfig): Promise<IDnsValidationResult>;
+    /**
+     * Validate forward mode configuration
+     */
+    private validateForwardMode;
+    /**
+     * Validate internal DNS mode configuration
+     */
+    private validateInternalDnsMode;
+    /**
+     * Validate external DNS mode configuration
+     */
+    private validateExternalDnsMode;
+    /**
+     * Check DNS records for a domain
+     */
+    private checkDnsRecords;
+    /**
+     * Resolve NS records for a domain
+     */
+    private resolveNs;
+    /**
+     * Get base domain from email domain (e.g., mail.example.com -> example.com)
+     */
+    private getBaseDomain;
+    /**
+     * Ensure all DNS records are created for configured domains
+     * This is the main entry point for DNS record management
+     */
+    ensureDnsRecords(domainConfigs: IEmailDomainConfig[], dkimCreator?: any): Promise<void>;
+    /**
+     * Create DNS records for internal-dns mode domains
+     */
+    private createInternalDnsRecords;
+    /**
+     * Create DKIM DNS records for all domains
+     */
+    private createDkimRecords;
+}
+export {};