@serve.zone/dcrouter 2.12.4

package/dist_ts/mail/delivery/smtpserver/connection-manager.js

@@ -0,0 +1,894 @@
+/**
+ * SMTP Connection Manager
+ * Responsible for managing socket connections to the SMTP server
+ */
+import * as plugins from '../../../plugins.js';
+import { SmtpResponseCode, SMTP_DEFAULTS, SmtpState } from './constants.js';
+import { SmtpLogger } from './utils/logging.js';
+import { adaptiveLogger } from './utils/adaptive-logging.js';
+import { getSocketDetails, formatMultilineResponse } from './utils/helpers.js';
+/**
+ * Manager for SMTP connections
+ * Handles connection setup, event listeners, and lifecycle management
+ * Provides resource management, connection tracking, and monitoring
+ */
+export class ConnectionManager {
+    /**
+     * Creates a new connection manager with enhanced resource management
+     * @param smtpServer - SMTP server instance
+     */
+    constructor(smtpServer) {
+        /**
+         * Set of active socket connections
+         */
+        this.activeConnections = new Set();
+        /**
+         * Connection tracking for resource management
+         */
+        this.connectionStats = {
+            totalConnections: 0,
+            activeConnections: 0,
+            peakConnections: 0,
+            rejectedConnections: 0,
+            closedConnections: 0,
+            erroredConnections: 0,
+            timedOutConnections: 0
+        };
+        /**
+         * Per-IP connection tracking for rate limiting
+         */
+        this.ipConnections = new Map();
+        /**
+         * Resource monitoring interval
+         */
+        this.resourceCheckInterval = null;
+        /**
+         * Track cleanup timers so we can clear them
+         */
+        this.cleanupTimers = new Set();
+        this.smtpServer = smtpServer;
+        // Get options from server
+        const serverOptions = this.smtpServer.getOptions();
+        // Default values for resource management - adjusted for production scalability
+        const DEFAULT_MAX_CONNECTIONS_PER_IP = 50; // Increased to support high-concurrency scenarios
+        const DEFAULT_CONNECTION_RATE_LIMIT = 200; // Increased for production load handling
+        const DEFAULT_CONNECTION_RATE_WINDOW = 60 * 1000; // 60 seconds window
+        const DEFAULT_BUFFER_SIZE_LIMIT = 10 * 1024 * 1024; // 10 MB
+        const DEFAULT_RESOURCE_CHECK_INTERVAL = 30 * 1000; // 30 seconds
+        this.options = {
+            hostname: serverOptions.hostname || SMTP_DEFAULTS.HOSTNAME,
+            maxConnections: serverOptions.maxConnections || SMTP_DEFAULTS.MAX_CONNECTIONS,
+            socketTimeout: serverOptions.socketTimeout || SMTP_DEFAULTS.SOCKET_TIMEOUT,
+            maxConnectionsPerIP: DEFAULT_MAX_CONNECTIONS_PER_IP,
+            connectionRateLimit: DEFAULT_CONNECTION_RATE_LIMIT,
+            connectionRateWindow: DEFAULT_CONNECTION_RATE_WINDOW,
+            bufferSizeLimit: DEFAULT_BUFFER_SIZE_LIMIT,
+            resourceCheckInterval: DEFAULT_RESOURCE_CHECK_INTERVAL
+        };
+        // Start resource monitoring
+        this.startResourceMonitoring();
+    }
+    /**
+     * Start resource monitoring interval to check resource usage
+     */
+    startResourceMonitoring() {
+        // Clear any existing interval
+        if (this.resourceCheckInterval) {
+            clearInterval(this.resourceCheckInterval);
+        }
+        // Set up new interval
+        this.resourceCheckInterval = setInterval(() => {
+            this.monitorResourceUsage();
+        }, this.options.resourceCheckInterval);
+    }
+    /**
+     * Monitor resource usage and log statistics
+     */
+    monitorResourceUsage() {
+        // Calculate memory usage
+        const memoryUsage = process.memoryUsage();
+        const memoryUsageMB = {
+            rss: Math.round(memoryUsage.rss / 1024 / 1024),
+            heapTotal: Math.round(memoryUsage.heapTotal / 1024 / 1024),
+            heapUsed: Math.round(memoryUsage.heapUsed / 1024 / 1024),
+            external: Math.round(memoryUsage.external / 1024 / 1024)
+        };
+        // Calculate connection rate metrics
+        const activeIPs = Array.from(this.ipConnections.entries())
+            .filter(([_, data]) => data.count > 0).length;
+        const highVolumeIPs = Array.from(this.ipConnections.entries())
+            .filter(([_, data]) => data.count > this.options.connectionRateLimit / 2).length;
+        // Log resource usage with more detailed metrics
+        SmtpLogger.info('Resource usage stats', {
+            connections: {
+                active: this.activeConnections.size,
+                total: this.connectionStats.totalConnections,
+                peak: this.connectionStats.peakConnections,
+                rejected: this.connectionStats.rejectedConnections,
+                closed: this.connectionStats.closedConnections,
+                errored: this.connectionStats.erroredConnections,
+                timedOut: this.connectionStats.timedOutConnections
+            },
+            memory: memoryUsageMB,
+            ipTracking: {
+                uniqueIPs: this.ipConnections.size,
+                activeIPs: activeIPs,
+                highVolumeIPs: highVolumeIPs
+            },
+            resourceLimits: {
+                maxConnections: this.options.maxConnections,
+                maxConnectionsPerIP: this.options.maxConnectionsPerIP,
+                connectionRateLimit: this.options.connectionRateLimit,
+                bufferSizeLimit: Math.round(this.options.bufferSizeLimit / 1024 / 1024) + 'MB'
+            }
+        });
+        // Check for potential DoS conditions
+        if (highVolumeIPs > 3) {
+            SmtpLogger.warn(`Potential DoS detected: ${highVolumeIPs} IPs with high connection rates`);
+        }
+        // Assess memory usage trends
+        if (memoryUsageMB.heapUsed > 500) { // Over 500MB heap used
+            SmtpLogger.warn(`High memory usage detected: ${memoryUsageMB.heapUsed}MB heap used`);
+        }
+        // Clean up expired IP rate limits and validate resource tracking
+        this.cleanupIpRateLimits();
+    }
+    /**
+     * Clean up expired IP rate limits and perform additional resource monitoring
+     */
+    cleanupIpRateLimits() {
+        const now = Date.now();
+        const windowThreshold = now - this.options.connectionRateWindow;
+        let activeIps = 0;
+        let removedEntries = 0;
+        // Iterate through IP connections and manage entries
+        for (const [ip, data] of this.ipConnections.entries()) {
+            // If the last connection was before the window threshold + one extra window, remove the entry
+            if (data.lastConnection < windowThreshold - this.options.connectionRateWindow) {
+                // Remove stale entries to prevent memory growth
+                this.ipConnections.delete(ip);
+                removedEntries++;
+            }
+            // If last connection was before the window threshold, reset the count
+            else if (data.lastConnection < windowThreshold) {
+                if (data.count > 0) {
+                    // Reset but keep the IP in the map with a zero count
+                    this.ipConnections.set(ip, {
+                        count: 0,
+                        firstConnection: now,
+                        lastConnection: now
+                    });
+                }
+            }
+            else {
+                // This IP is still active within the current window
+                activeIps++;
+            }
+        }
+        // Log cleanup activity if significant changes occurred
+        if (removedEntries > 0) {
+            SmtpLogger.debug(`IP rate limit cleanup: removed ${removedEntries} stale entries, ${this.ipConnections.size} remaining, ${activeIps} active in current window`);
+        }
+        // Check for memory leaks in connection tracking
+        if (this.activeConnections.size > 0 && this.connectionStats.activeConnections !== this.activeConnections.size) {
+            SmtpLogger.warn(`Connection tracking inconsistency detected: stats.active=${this.connectionStats.activeConnections}, actual=${this.activeConnections.size}`);
+            // Fix the inconsistency
+            this.connectionStats.activeConnections = this.activeConnections.size;
+        }
+        // Validate and clean leaked resources if needed
+        this.validateResourceTracking();
+    }
+    /**
+     * Validate and repair resource tracking to prevent leaks
+     */
+    validateResourceTracking() {
+        // Prepare a detailed report if inconsistencies are found
+        const inconsistenciesFound = [];
+        // 1. Check active connections count matches activeConnections set size
+        if (this.connectionStats.activeConnections !== this.activeConnections.size) {
+            inconsistenciesFound.push({
+                issue: 'Active connection count mismatch',
+                stats: this.connectionStats.activeConnections,
+                actual: this.activeConnections.size,
+                action: 'Auto-corrected'
+            });
+            this.connectionStats.activeConnections = this.activeConnections.size;
+        }
+        // 2. Check for destroyed sockets in active connections
+        let destroyedSocketsCount = 0;
+        for (const socket of this.activeConnections) {
+            if (socket.destroyed) {
+                destroyedSocketsCount++;
+                // This should not happen - remove destroyed sockets from tracking
+                this.activeConnections.delete(socket);
+            }
+        }
+        if (destroyedSocketsCount > 0) {
+            inconsistenciesFound.push({
+                issue: 'Destroyed sockets in active list',
+                count: destroyedSocketsCount,
+                action: 'Removed from tracking'
+            });
+            // Update active connections count after cleanup
+            this.connectionStats.activeConnections = this.activeConnections.size;
+        }
+        // 3. Check for sessions without corresponding active connections
+        const sessionCount = this.smtpServer.getSessionManager().getSessionCount();
+        if (sessionCount > this.activeConnections.size) {
+            inconsistenciesFound.push({
+                issue: 'Orphaned sessions',
+                sessions: sessionCount,
+                connections: this.activeConnections.size,
+                action: 'Session cleanup recommended'
+            });
+        }
+        // If any inconsistencies found, log a detailed report
+        if (inconsistenciesFound.length > 0) {
+            SmtpLogger.warn('Resource tracking inconsistencies detected and repaired', { inconsistencies: inconsistenciesFound });
+        }
+    }
+    /**
+     * Handle a new connection with resource management
+     * @param socket - Client socket
+     */
+    async handleNewConnection(socket) {
+        // Update connection stats
+        this.connectionStats.totalConnections++;
+        this.connectionStats.activeConnections = this.activeConnections.size + 1;
+        if (this.connectionStats.activeConnections > this.connectionStats.peakConnections) {
+            this.connectionStats.peakConnections = this.connectionStats.activeConnections;
+        }
+        // Get client IP
+        const remoteAddress = socket.remoteAddress || '0.0.0.0';
+        // Use UnifiedRateLimiter for connection rate limiting
+        const emailServer = this.smtpServer.getEmailServer();
+        const rateLimiter = emailServer.getRateLimiter();
+        // Check connection limit with UnifiedRateLimiter
+        const connectionResult = rateLimiter.recordConnection(remoteAddress);
+        if (!connectionResult.allowed) {
+            this.rejectConnection(socket, connectionResult.reason || 'Rate limit exceeded');
+            this.connectionStats.rejectedConnections++;
+            return;
+        }
+        // Still track IP connections locally for cleanup purposes
+        this.trackIPConnection(remoteAddress);
+        // Check if maximum global connections reached
+        if (this.hasReachedMaxConnections()) {
+            this.rejectConnection(socket, 'Too many connections');
+            this.connectionStats.rejectedConnections++;
+            return;
+        }
+        // Add socket to active connections
+        this.activeConnections.add(socket);
+        // Set up socket options
+        socket.setKeepAlive(true);
+        socket.setTimeout(this.options.socketTimeout);
+        // Explicitly set socket buffer sizes to prevent memory issues
+        socket.setNoDelay(true); // Disable Nagle's algorithm for better responsiveness
+        // Set limits on socket buffer size if supported by Node.js version
+        try {
+            // Here we set reasonable buffer limits to prevent memory exhaustion attacks
+            const highWaterMark = 64 * 1024; // 64 KB
+            // Note: Socket high water mark methods can't be set directly in newer Node.js versions
+            // These would need to be set during socket creation or with a different API
+        }
+        catch (error) {
+            // Ignore errors from older Node.js versions that don't support these methods
+            SmtpLogger.debug(`Could not set socket buffer limits: ${error instanceof Error ? error.message : String(error)}`);
+        }
+        // Track this IP connection
+        this.trackIPConnection(remoteAddress);
+        // Set up event handlers
+        this.setupSocketEventHandlers(socket);
+        // Create a session for this connection
+        this.smtpServer.getSessionManager().createSession(socket, false);
+        // Log the new connection using adaptive logger
+        const socketDetails = getSocketDetails(socket);
+        adaptiveLogger.logConnection(socket, 'connect');
+        // Update adaptive logger with current connection count
+        adaptiveLogger.updateConnectionCount(this.connectionStats.activeConnections);
+        // Send greeting
+        this.sendGreeting(socket);
+    }
+    /**
+     * Check if an IP has exceeded the rate limit
+     * @param ip - Client IP address
+     * @returns True if rate limited
+     */
+    isIPRateLimited(ip) {
+        const now = Date.now();
+        const ipData = this.ipConnections.get(ip);
+        if (!ipData) {
+            return false; // No previous connections
+        }
+        // Check if we're within the rate window
+        const isWithinWindow = now - ipData.firstConnection <= this.options.connectionRateWindow;
+        // If within window and count exceeds limit, rate limit is applied
+        if (isWithinWindow && ipData.count >= this.options.connectionRateLimit) {
+            SmtpLogger.warn(`Rate limit exceeded for IP ${ip}: ${ipData.count} connections in ${Math.round((now - ipData.firstConnection) / 1000)}s`);
+            return true;
+        }
+        return false;
+    }
+    /**
+     * Track a new connection from an IP
+     * @param ip - Client IP address
+     */
+    trackIPConnection(ip) {
+        const now = Date.now();
+        const ipData = this.ipConnections.get(ip);
+        if (!ipData) {
+            // First connection from this IP
+            this.ipConnections.set(ip, {
+                count: 1,
+                firstConnection: now,
+                lastConnection: now
+            });
+        }
+        else {
+            // Check if we need to reset the window
+            if (now - ipData.lastConnection > this.options.connectionRateWindow) {
+                // Reset the window
+                this.ipConnections.set(ip, {
+                    count: 1,
+                    firstConnection: now,
+                    lastConnection: now
+                });
+            }
+            else {
+                // Increment within the current window
+                this.ipConnections.set(ip, {
+                    count: ipData.count + 1,
+                    firstConnection: ipData.firstConnection,
+                    lastConnection: now
+                });
+            }
+        }
+    }
+    /**
+     * Check if an IP has reached its connection limit
+     * @param ip - Client IP address
+     * @returns True if limit reached
+     */
+    hasReachedIPConnectionLimit(ip) {
+        let ipConnectionCount = 0;
+        // Count active connections from this IP
+        for (const socket of this.activeConnections) {
+            if (socket.remoteAddress === ip) {
+                ipConnectionCount++;
+            }
+        }
+        return ipConnectionCount >= this.options.maxConnectionsPerIP;
+    }
+    /**
+     * Handle a new secure TLS connection with resource management
+     * @param socket - Client TLS socket
+     */
+    async handleNewSecureConnection(socket) {
+        // Update connection stats
+        this.connectionStats.totalConnections++;
+        this.connectionStats.activeConnections = this.activeConnections.size + 1;
+        if (this.connectionStats.activeConnections > this.connectionStats.peakConnections) {
+            this.connectionStats.peakConnections = this.connectionStats.activeConnections;
+        }
+        // Get client IP
+        const remoteAddress = socket.remoteAddress || '0.0.0.0';
+        // Use UnifiedRateLimiter for connection rate limiting
+        const emailServer = this.smtpServer.getEmailServer();
+        const rateLimiter = emailServer.getRateLimiter();
+        // Check connection limit with UnifiedRateLimiter
+        const connectionResult = rateLimiter.recordConnection(remoteAddress);
+        if (!connectionResult.allowed) {
+            this.rejectConnection(socket, connectionResult.reason || 'Rate limit exceeded');
+            this.connectionStats.rejectedConnections++;
+            return;
+        }
+        // Still track IP connections locally for cleanup purposes
+        this.trackIPConnection(remoteAddress);
+        // Check if maximum global connections reached
+        if (this.hasReachedMaxConnections()) {
+            this.rejectConnection(socket, 'Too many connections');
+            this.connectionStats.rejectedConnections++;
+            return;
+        }
+        // Add socket to active connections
+        this.activeConnections.add(socket);
+        // Set up socket options
+        socket.setKeepAlive(true);
+        socket.setTimeout(this.options.socketTimeout);
+        // Explicitly set socket buffer sizes to prevent memory issues
+        socket.setNoDelay(true); // Disable Nagle's algorithm for better responsiveness
+        // Set limits on socket buffer size if supported by Node.js version
+        try {
+            // Here we set reasonable buffer limits to prevent memory exhaustion attacks
+            const highWaterMark = 64 * 1024; // 64 KB
+            // Note: Socket high water mark methods can't be set directly in newer Node.js versions
+            // These would need to be set during socket creation or with a different API
+        }
+        catch (error) {
+            // Ignore errors from older Node.js versions that don't support these methods
+            SmtpLogger.debug(`Could not set socket buffer limits: ${error instanceof Error ? error.message : String(error)}`);
+        }
+        // Track this IP connection
+        this.trackIPConnection(remoteAddress);
+        // Set up event handlers
+        this.setupSocketEventHandlers(socket);
+        // Create a session for this connection
+        this.smtpServer.getSessionManager().createSession(socket, true);
+        // Log the new secure connection using adaptive logger
+        adaptiveLogger.logConnection(socket, 'connect');
+        // Update adaptive logger with current connection count
+        adaptiveLogger.updateConnectionCount(this.connectionStats.activeConnections);
+        // Send greeting
+        this.sendGreeting(socket);
+    }
+    /**
+     * Set up event handlers for a socket with enhanced resource management
+     * @param socket - Client socket
+     */
+    setupSocketEventHandlers(socket) {
+        // Store existing socket event handlers before adding new ones
+        const existingDataHandler = socket.listeners('data')[0];
+        const existingCloseHandler = socket.listeners('close')[0];
+        const existingErrorHandler = socket.listeners('error')[0];
+        const existingTimeoutHandler = socket.listeners('timeout')[0];
+        // Remove existing event handlers if they exist
+        if (existingDataHandler)
+            socket.removeListener('data', existingDataHandler);
+        if (existingCloseHandler)
+            socket.removeListener('close', existingCloseHandler);
+        if (existingErrorHandler)
+            socket.removeListener('error', existingErrorHandler);
+        if (existingTimeoutHandler)
+            socket.removeListener('timeout', existingTimeoutHandler);
+        // Data event - process incoming data from the client with resource limits
+        let buffer = '';
+        let totalBytesReceived = 0;
+        socket.on('data', async (data) => {
+            try {
+                // Get current session and update activity timestamp
+                const session = this.smtpServer.getSessionManager().getSession(socket);
+                if (session) {
+                    this.smtpServer.getSessionManager().updateSessionActivity(session);
+                }
+                // Check if we're in DATA receiving mode - handle differently
+                if (session && session.state === SmtpState.DATA_RECEIVING) {
+                    // In DATA mode, pass raw chunks directly to command handler with special marker
+                    // Don't line-buffer large email content
+                    try {
+                        const dataString = data.toString('utf8');
+                        // Use a special prefix to indicate this is raw data, not a command line
+                        // CRITICAL FIX: Must await to prevent async pile-up
+                        await this.smtpServer.getCommandHandler().processCommand(socket, `__RAW_DATA__${dataString}`);
+                        return;
+                    }
+                    catch (dataError) {
+                        SmtpLogger.error(`Data handler error during DATA mode: ${dataError instanceof Error ? dataError.message : String(dataError)}`);
+                        socket.destroy();
+                        return;
+                    }
+                }
+                // For command mode, continue with line-buffered processing
+                // Check buffer size limits to prevent memory attacks
+                totalBytesReceived += data.length;
+                if (buffer.length > this.options.bufferSizeLimit) {
+                    // Buffer is too large, reject the connection
+                    SmtpLogger.warn(`Buffer size limit exceeded: ${buffer.length} bytes for ${socket.remoteAddress}`);
+                    this.sendResponse(socket, `${SmtpResponseCode.EXCEEDED_STORAGE} Message too large, disconnecting`);
+                    socket.destroy();
+                    return;
+                }
+                // Impose a total transfer limit to prevent DoS
+                if (totalBytesReceived > this.options.bufferSizeLimit * 2) {
+                    SmtpLogger.warn(`Total transfer limit exceeded: ${totalBytesReceived} bytes for ${socket.remoteAddress}`);
+                    this.sendResponse(socket, `${SmtpResponseCode.EXCEEDED_STORAGE} Transfer limit exceeded, disconnecting`);
+                    socket.destroy();
+                    return;
+                }
+                // Convert buffer to string safely with explicit encoding
+                const dataString = data.toString('utf8');
+                // Buffer incoming data
+                buffer += dataString;
+                // Process complete lines
+                let lineEndPos;
+                while ((lineEndPos = buffer.indexOf(SMTP_DEFAULTS.CRLF)) !== -1) {
+                    // Extract a complete line
+                    const line = buffer.substring(0, lineEndPos);
+                    buffer = buffer.substring(lineEndPos + 2); // +2 to skip CRLF
+                    // Check line length to prevent extremely long lines
+                    if (line.length > 4096) { // 4KB line limit is reasonable for SMTP
+                        SmtpLogger.warn(`Line length limit exceeded: ${line.length} bytes for ${socket.remoteAddress}`);
+                        this.sendResponse(socket, `${SmtpResponseCode.SYNTAX_ERROR} Line too long, disconnecting`);
+                        socket.destroy();
+                        return;
+                    }
+                    // Process non-empty lines
+                    if (line.length > 0) {
+                        try {
+                            // CRITICAL FIX: Must await processCommand to prevent async pile-up
+                            // This was causing the busy loop with high CPU usage when many empty lines were processed
+                            await this.smtpServer.getCommandHandler().processCommand(socket, line);
+                        }
+                        catch (error) {
+                            // Handle any errors in command processing
+                            SmtpLogger.error(`Command handler error: ${error instanceof Error ? error.message : String(error)}`);
+                            this.sendResponse(socket, `${SmtpResponseCode.LOCAL_ERROR} Internal server error`);
+                            // If there's a severe error, close the connection
+                            if (error instanceof Error &&
+                                (error.message.includes('fatal') || error.message.includes('critical'))) {
+                                socket.destroy();
+                                return;
+                            }
+                        }
+                    }
+                }
+                // If buffer is getting too large without CRLF, it might be a DoS attempt
+                if (buffer.length > 10240) { // 10KB is a reasonable limit for a line without CRLF
+                    SmtpLogger.warn(`Incomplete line too large: ${buffer.length} bytes for ${socket.remoteAddress}`);
+                    this.sendResponse(socket, `${SmtpResponseCode.SYNTAX_ERROR} Incomplete line too large, disconnecting`);
+                    socket.destroy();
+                }
+            }
+            catch (error) {
+                // Handle any unexpected errors during data processing
+                SmtpLogger.error(`Data handler error: ${error instanceof Error ? error.message : String(error)}`);
+                socket.destroy();
+            }
+        });
+        // Add drain event handler to manage flow control
+        socket.on('drain', () => {
+            // Socket buffer has been emptied, resume data flow if needed
+            if (socket.isPaused()) {
+                socket.resume();
+                SmtpLogger.debug(`Resumed socket for ${socket.remoteAddress} after drain`);
+            }
+        });
+        // Close event - clean up when connection is closed
+        socket.on('close', (hadError) => {
+            this.handleSocketClose(socket, hadError);
+        });
+        // Error event - handle socket errors
+        socket.on('error', (err) => {
+            this.handleSocketError(socket, err);
+        });
+        // Timeout event - handle socket timeouts
+        socket.on('timeout', () => {
+            this.handleSocketTimeout(socket);
+        });
+    }
+    /**
+     * Get the current connection count
+     * @returns Number of active connections
+     */
+    getConnectionCount() {
+        return this.activeConnections.size;
+    }
+    /**
+     * Check if the server has reached the maximum number of connections
+     * @returns True if max connections reached
+     */
+    hasReachedMaxConnections() {
+        return this.activeConnections.size >= this.options.maxConnections;
+    }
+    /**
+     * Close all active connections
+     */
+    closeAllConnections() {
+        const connectionCount = this.activeConnections.size;
+        if (connectionCount === 0) {
+            return;
+        }
+        SmtpLogger.info(`Closing all connections (count: ${connectionCount})`);
+        for (const socket of this.activeConnections) {
+            try {
+                // Send service closing notification
+                this.sendServiceClosing(socket);
+                // End the socket gracefully
+                socket.end();
+                // Force destroy after a short delay if not already destroyed
+                const destroyTimer = setTimeout(() => {
+                    if (!socket.destroyed) {
+                        socket.destroy();
+                    }
+                    this.cleanupTimers.delete(destroyTimer);
+                }, 100);
+                this.cleanupTimers.add(destroyTimer);
+            }
+            catch (error) {
+                SmtpLogger.error(`Error closing connection: ${error instanceof Error ? error.message : String(error)}`);
+                // Force destroy on error
+                try {
+                    socket.destroy();
+                }
+                catch (e) {
+                    // Ignore destroy errors
+                }
+            }
+        }
+        // Clear active connections
+        this.activeConnections.clear();
+        // Stop resource monitoring to prevent hanging timers
+        if (this.resourceCheckInterval) {
+            clearInterval(this.resourceCheckInterval);
+            this.resourceCheckInterval = null;
+        }
+    }
+    /**
+     * Handle socket close event
+     * @param socket - Client socket
+     * @param hadError - Whether the socket was closed due to error
+     */
+    handleSocketClose(socket, hadError) {
+        try {
+            // Update connection statistics
+            this.connectionStats.closedConnections++;
+            this.connectionStats.activeConnections = this.activeConnections.size - 1;
+            // Get socket details for logging
+            const socketDetails = getSocketDetails(socket);
+            const socketId = `${socketDetails.remoteAddress}:${socketDetails.remotePort}`;
+            // Log with appropriate level based on whether there was an error
+            if (hadError) {
+                SmtpLogger.warn(`Socket closed with error: ${socketId}`);
+            }
+            else {
+                SmtpLogger.debug(`Socket closed normally: ${socketId}`);
+            }
+            // Get the session before removing it
+            const session = this.smtpServer.getSessionManager().getSession(socket);
+            // Remove from active connections
+            this.activeConnections.delete(socket);
+            // Remove from session manager
+            this.smtpServer.getSessionManager().removeSession(socket);
+            // Cancel any timeout ID stored in the session
+            if (session?.dataTimeoutId) {
+                clearTimeout(session.dataTimeoutId);
+            }
+            // Log connection close with session details if available
+            adaptiveLogger.logConnection(socket, 'close', session);
+            // Update adaptive logger with new connection count
+            adaptiveLogger.updateConnectionCount(this.connectionStats.activeConnections);
+        }
+        catch (error) {
+            // Handle any unexpected errors during cleanup
+            SmtpLogger.error(`Error in handleSocketClose: ${error instanceof Error ? error.message : String(error)}`);
+            // Ensure socket is removed from active connections even if an error occurs
+            this.activeConnections.delete(socket);
+        }
+    }
+    /**
+     * Handle socket error event
+     * @param socket - Client socket
+     * @param error - Error object
+     */
+    handleSocketError(socket, error) {
+        try {
+            // Update connection statistics
+            this.connectionStats.erroredConnections++;
+            // Get socket details for context
+            const socketDetails = getSocketDetails(socket);
+            const socketId = `${socketDetails.remoteAddress}:${socketDetails.remotePort}`;
+            // Get the session
+            const session = this.smtpServer.getSessionManager().getSession(socket);
+            // Detailed error logging with context information
+            SmtpLogger.error(`Socket error for ${socketId}: ${error.message}`, {
+                errorCode: error.code,
+                errorStack: error.stack,
+                sessionId: session?.id,
+                sessionState: session?.state,
+                remoteAddress: socketDetails.remoteAddress,
+                remotePort: socketDetails.remotePort
+            });
+            // Log the error for connection tracking using adaptive logger
+            adaptiveLogger.logConnection(socket, 'error', session, error);
+            // Cancel any timeout ID stored in the session
+            if (session?.dataTimeoutId) {
+                clearTimeout(session.dataTimeoutId);
+            }
+            // Close the socket if not already closed
+            if (!socket.destroyed) {
+                socket.destroy();
+            }
+            // Remove from active connections (cleanup after error)
+            this.activeConnections.delete(socket);
+            // Remove from session manager
+            this.smtpServer.getSessionManager().removeSession(socket);
+        }
+        catch (handlerError) {
+            // Meta-error handling (errors in the error handler)
+            SmtpLogger.error(`Error in handleSocketError: ${handlerError instanceof Error ? handlerError.message : String(handlerError)}`);
+            // Ensure socket is destroyed and removed from active connections
+            if (!socket.destroyed) {
+                socket.destroy();
+            }
+            this.activeConnections.delete(socket);
+        }
+    }
+    /**
+     * Handle socket timeout event
+     * @param socket - Client socket
+     */
+    handleSocketTimeout(socket) {
+        try {
+            // Update connection statistics
+            this.connectionStats.timedOutConnections++;
+            // Get socket details for context
+            const socketDetails = getSocketDetails(socket);
+            const socketId = `${socketDetails.remoteAddress}:${socketDetails.remotePort}`;
+            // Get the session
+            const session = this.smtpServer.getSessionManager().getSession(socket);
+            // Get timing information for better debugging
+            const now = Date.now();
+            const idleTime = session?.lastActivity ? now - session.lastActivity : 'unknown';
+            if (session) {
+                // Log the timeout with extended details
+                SmtpLogger.warn(`Socket timeout from ${session.remoteAddress}`, {
+                    sessionId: session.id,
+                    remoteAddress: session.remoteAddress,
+                    state: session.state,
+                    timeout: this.options.socketTimeout,
+                    idleTime: idleTime,
+                    emailState: session.envelope?.mailFrom ? 'has-sender' : 'no-sender',
+                    recipientCount: session.envelope?.rcptTo?.length || 0
+                });
+                // Cancel any timeout ID stored in the session
+                if (session.dataTimeoutId) {
+                    clearTimeout(session.dataTimeoutId);
+                }
+                // Send timeout notification to client
+                this.sendResponse(socket, `${SmtpResponseCode.SERVICE_NOT_AVAILABLE} Connection timeout - closing connection`);
+            }
+            else {
+                // Log timeout without session context
+                SmtpLogger.warn(`Socket timeout without session from ${socketId}`);
+            }
+            // Close the socket gracefully
+            try {
+                socket.end();
+                // Set a forced close timeout in case socket.end() doesn't close the connection
+                const timeoutDestroyTimer = setTimeout(() => {
+                    if (!socket.destroyed) {
+                        SmtpLogger.warn(`Forcing destroy of timed out socket: ${socketId}`);
+                        socket.destroy();
+                    }
+                    this.cleanupTimers.delete(timeoutDestroyTimer);
+                }, 5000); // 5 second grace period for socket to end properly
+                this.cleanupTimers.add(timeoutDestroyTimer);
+            }
+            catch (error) {
+                SmtpLogger.error(`Error ending timed out socket: ${error instanceof Error ? error.message : String(error)}`);
+                // Ensure socket is destroyed even if end() fails
+                if (!socket.destroyed) {
+                    socket.destroy();
+                }
+            }
+            // Clean up resources
+            this.activeConnections.delete(socket);
+            this.smtpServer.getSessionManager().removeSession(socket);
+        }
+        catch (handlerError) {
+            // Handle any unexpected errors during timeout handling
+            SmtpLogger.error(`Error in handleSocketTimeout: ${handlerError instanceof Error ? handlerError.message : String(handlerError)}`);
+            // Ensure socket is destroyed and removed from tracking
+            if (!socket.destroyed) {
+                socket.destroy();
+            }
+            this.activeConnections.delete(socket);
+        }
+    }
+    /**
+     * Reject a connection
+     * @param socket - Client socket
+     * @param reason - Reason for rejection
+     */
+    rejectConnection(socket, reason) {
+        // Log the rejection
+        const socketDetails = getSocketDetails(socket);
+        SmtpLogger.warn(`Connection rejected from ${socketDetails.remoteAddress}:${socketDetails.remotePort}: ${reason}`);
+        // Send rejection message
+        this.sendResponse(socket, `${SmtpResponseCode.SERVICE_NOT_AVAILABLE} ${this.options.hostname} Service temporarily unavailable - ${reason}`);
+        // Close the socket
+        try {
+            socket.end();
+        }
+        catch (error) {
+            SmtpLogger.error(`Error ending rejected socket: ${error instanceof Error ? error.message : String(error)}`);
+        }
+    }
+    /**
+     * Send greeting message
+     * @param socket - Client socket
+     */
+    sendGreeting(socket) {
+        const greeting = `${SmtpResponseCode.SERVICE_READY} ${this.options.hostname} ESMTP service ready`;
+        this.sendResponse(socket, greeting);
+    }
+    /**
+     * Send service closing notification
+     * @param socket - Client socket
+     */
+    sendServiceClosing(socket) {
+        const message = `${SmtpResponseCode.SERVICE_CLOSING} ${this.options.hostname} Service closing transmission channel`;
+        this.sendResponse(socket, message);
+    }
+    /**
+     * Send response to client
+     * @param socket - Client socket
+     * @param response - Response to send
+     */
+    sendResponse(socket, response) {
+        // Check if socket is still writable before attempting to write
+        if (socket.destroyed || socket.readyState !== 'open' || !socket.writable) {
+            SmtpLogger.debug(`Skipping response to closed/destroyed socket: ${response}`, {
+                remoteAddress: socket.remoteAddress,
+                remotePort: socket.remotePort,
+                destroyed: socket.destroyed,
+                readyState: socket.readyState,
+                writable: socket.writable
+            });
+            return;
+        }
+        try {
+            socket.write(`${response}${SMTP_DEFAULTS.CRLF}`);
+            adaptiveLogger.logResponse(response, socket);
+        }
+        catch (error) {
+            // Log error and destroy socket
+            SmtpLogger.error(`Error sending response: ${error instanceof Error ? error.message : String(error)}`, {
+                response,
+                remoteAddress: socket.remoteAddress,
+                remotePort: socket.remotePort,
+                error: error instanceof Error ? error : new Error(String(error))
+            });
+            socket.destroy();
+        }
+    }
+    /**
+     * Handle a new connection (interface requirement)
+     */
+    async handleConnection(socket, secure) {
+        if (secure) {
+            this.handleNewSecureConnection(socket);
+        }
+        else {
+            this.handleNewConnection(socket);
+        }
+    }
+    /**
+     * Check if accepting new connections (interface requirement)
+     */
+    canAcceptConnection() {
+        return !this.hasReachedMaxConnections();
+    }
+    /**
+     * Clean up resources
+     */
+    destroy() {
+        // Clear resource monitoring interval
+        if (this.resourceCheckInterval) {
+            clearInterval(this.resourceCheckInterval);
+            this.resourceCheckInterval = null;
+        }
+        // Clear all cleanup timers
+        for (const timer of this.cleanupTimers) {
+            clearTimeout(timer);
+        }
+        this.cleanupTimers.clear();
+        // Close all active connections
+        this.closeAllConnections();
+        // Clear maps
+        this.activeConnections.clear();
+        this.ipConnections.clear();
+        // Reset connection stats
+        this.connectionStats = {
+            totalConnections: 0,
+            activeConnections: 0,
+            peakConnections: 0,
+            rejectedConnections: 0,
+            closedConnections: 0,
+            erroredConnections: 0,
+            timedOutConnections: 0
+        };
+        SmtpLogger.debug('ConnectionManager destroyed');
+    }
+}
+//# sourceMappingURL=data:application/json;base64,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