npm - Haraka - Versions diffs - 3.0.2 → 3.0.4 - Mend

Haraka 3.0.2 → 3.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (267) hide show

package/.eslintrc.yaml +5 -9
package/.prettierrc.yml +1 -0
package/CONTRIBUTORS.md +11 -0
package/Changes.md +1393 -1211
package/Dockerfile +3 -3
package/Plugins.md +119 -106
package/README.md +7 -16
package/TODO +1 -24
package/bin/haraka +197 -298
package/config/auth_flat_file.ini +2 -0
package/config/auth_vpopmaild.ini +4 -2
package/config/dhparams.pem +8 -0
package/config/mail_from.is_resolvable.ini +4 -2
package/config/me +1 -0
package/config/outbound.ini +0 -2
package/config/plugins +36 -35
package/config/rabbitmq_amqplib.ini +8 -1
package/config/smtp.ini +0 -1
package/config/smtp.json +17 -0
package/config/tls_cert.pem +23 -0
package/config/tls_key.pem +28 -0
package/connection.js +46 -73
package/contrib/bsd-rc.d/haraka +3 -1
package/contrib/plugin2npm.sh +6 -36
package/docs/Connection.md +1 -1
package/docs/CoreConfig.md +2 -2
package/docs/Logging.md +7 -21
package/docs/Outbound.md +104 -210
package/docs/Plugins.md +47 -40
package/docs/Transaction.md +59 -82
package/docs/{plugins → deprecated}/connect.rdns_access.md +1 -1
package/docs/{plugins → deprecated}/mail_from.access.md +1 -1
package/docs/{plugins → deprecated}/rcpt_to.access.md +1 -1
package/docs/plugins/auth/auth_vpopmaild.md +15 -19
package/docs/plugins/auth/flat_file.md +23 -30
package/docs/plugins/queue/rabbitmq_amqplib.md +7 -0
package/docs/plugins/queue/smtp_forward.md +1 -1
package/docs/plugins/queue/smtp_proxy.md +5 -10
package/docs/plugins/relay.md +2 -2
package/docs/plugins/tls.md +29 -9
package/endpoint.js +16 -13
package/haraka.js +10 -14
package/host_pool.js +5 -5
package/line_socket.js +3 -4
package/logger.js +44 -28
package/outbound/client_pool.js +27 -23
package/outbound/config.js +4 -6
package/outbound/fsync_writestream.js +1 -1
package/outbound/hmail.js +180 -220
package/outbound/index.js +86 -99
package/outbound/qfile.js +1 -1
package/outbound/queue.js +55 -43
package/outbound/timer_queue.js +3 -2
package/outbound/tls.js +19 -7
package/package.json +66 -55
package/plugins/.eslintrc.yaml +0 -6
package/plugins/auth/auth_base.js +30 -12
package/plugins/auth/auth_proxy.js +14 -12
package/plugins/auth/auth_vpopmaild.js +30 -20
package/plugins/auth/flat_file.js +17 -12
package/plugins/block_me.js +1 -1
package/plugins/data.signatures.js +2 -4
package/plugins/early_talker.js +2 -1
package/plugins/mail_from.is_resolvable.js +65 -135
package/plugins/queue/deliver.js +4 -5
package/plugins/queue/lmtp.js +11 -14
package/plugins/queue/qmail-queue.js +2 -2
package/plugins/queue/quarantine.js +2 -2
package/plugins/queue/rabbitmq.js +16 -17
package/plugins/queue/rabbitmq_amqplib.js +1 -1
package/plugins/queue/smtp_forward.js +6 -6
package/plugins/queue/smtp_proxy.js +10 -1
package/plugins/queue/test.js +2 -2
package/plugins/rcpt_to.host_list_base.js +5 -5
package/plugins/rcpt_to.in_host_list.js +2 -2
package/plugins/relay.js +6 -7
package/plugins/reseed_rng.js +1 -1
package/plugins/status.js +37 -33
package/plugins/tls.js +2 -2
package/plugins/xclient.js +3 -2
package/plugins.js +51 -54
package/run_tests +3 -30
package/server.js +190 -190
package/smtp_client.js +30 -23
package/{tests → test}/config/plugins +0 -2
package/{tests → test}/config/smtp.ini +1 -1
package/test/config/tls/example.com/_.example.com.key +28 -0
package/test/config/tls/example.com/example.com.crt +25 -0
package/test/connection.js +302 -0
package/test/endpoint.js +94 -0
package/{tests → test}/fixtures/line_socket.js +1 -1
package/{tests → test}/fixtures/util_hmailitem.js +19 -25
package/{tests → test}/host_pool.js +42 -57
package/test/logger.js +258 -0
package/test/outbound/hmail.js +141 -0
package/test/outbound/index.js +220 -0
package/test/outbound/qfile.js +126 -0
package/test/outbound_bounce_net_errors.js +142 -0
package/{tests → test}/outbound_bounce_rfc3464.js +110 -122
package/test/plugins/auth/auth_base.js +484 -0
package/test/plugins/auth/auth_vpopmaild.js +83 -0
package/test/plugins/early_talker.js +104 -0
package/test/plugins/mail_from.is_resolvable.js +35 -0
package/test/plugins/queue/smtp_forward.js +206 -0
package/test/plugins/rcpt_to.host_list_base.js +122 -0
package/test/plugins/rcpt_to.in_host_list.js +193 -0
package/test/plugins/relay.js +303 -0
package/test/plugins/status.js +130 -0
package/test/plugins/tls.js +70 -0
package/test/plugins.js +228 -0
package/{tests → test}/queue/multibyte +0 -0
package/{tests → test}/queue/plain +0 -0
package/test/rfc1869.js +73 -0
package/test/server.js +491 -0
package/test/smtp_client.js +299 -0
package/test/tls_socket.js +273 -0
package/test/transaction.js +270 -0
package/tls_socket.js +202 -252
package/transaction.js +9 -24
package/CONTRIBUTING.md +0 -1
package/bin/dkimverify +0 -40
package/config/access.domains +0 -13
package/config/attachment.ctype.regex +0 -2
package/config/attachment.filename.regex +0 -1
package/config/avg.ini +0 -5
package/config/bounce.ini +0 -15
package/config/data.headers.ini +0 -61
package/config/dkim/dkim_key_gen.sh +0 -78
package/config/dkim_sign.ini +0 -4
package/config/dkim_verify.ini +0 -7
package/config/dnsbl.ini +0 -23
package/config/greylist.ini +0 -43
package/config/helo.checks.ini +0 -52
package/config/lookup_rdns.strict.ini +0 -12
package/config/lookup_rdns.strict.timeout +0 -1
package/config/lookup_rdns.strict.whitelist +0 -1
package/config/lookup_rdns.strict.whitelist_regex +0 -5
package/config/messagesniffer.ini +0 -18
package/config/rcpt_to.blocklist +0 -1
package/config/rdns.allow_regexps +0 -0
package/config/rdns.deny_regexps +0 -0
package/config/spamassassin.ini +0 -56
package/config.js +0 -6
package/dkim.js +0 -614
package/docs/plugins/avg.md +0 -35
package/docs/plugins/bounce.md +0 -69
package/docs/plugins/clamd.md +0 -147
package/docs/plugins/esets.md +0 -8
package/docs/plugins/greylist.md +0 -90
package/docs/plugins/helo.checks.md +0 -135
package/docs/plugins/messagesniffer.md +0 -163
package/docs/plugins/relay_acl.md +0 -29
package/docs/plugins/relay_all.md +0 -15
package/docs/plugins/relay_force_routing.md +0 -33
package/docs/plugins/spamassassin.md +0 -180
package/outbound/mx_lookup.js +0 -70
package/plugins/auth/auth_ldap.js +0 -3
package/plugins/avg.js +0 -162
package/plugins/backscatterer.js +0 -25
package/plugins/bounce.js +0 -381
package/plugins/clamd.js +0 -381
package/plugins/data.headers.js +0 -4
package/plugins/data.uribl.js +0 -4
package/plugins/dkim_sign.js +0 -395
package/plugins/dkim_verify.js +0 -62
package/plugins/dns_list_base.js +0 -221
package/plugins/dnsbl.js +0 -146
package/plugins/dnswl.js +0 -58
package/plugins/esets.js +0 -71
package/plugins/graph.js +0 -5
package/plugins/greylist.js +0 -645
package/plugins/helo.checks.js +0 -533
package/plugins/messagesniffer.js +0 -381
package/plugins/rcpt_to.ldap.js +0 -3
package/plugins/rcpt_to.max_count.js +0 -24
package/plugins/relay_all.js +0 -13
package/plugins/spamassassin.js +0 -384
package/tests/config/dkim/example.com/dns +0 -29
package/tests/config/dkim/example.com/private +0 -6
package/tests/config/dkim/example.com/public +0 -4
package/tests/config/dkim/example.com/selector +0 -1
package/tests/config/dkim.private.key +0 -6
package/tests/config/dkim_sign.ini +0 -4
package/tests/config/helo.checks.ini +0 -52
package/tests/connection.js +0 -327
package/tests/endpoint.js +0 -128
package/tests/fixtures/vm_harness.js +0 -59
package/tests/logger.js +0 -327
package/tests/outbound/hmail.js +0 -112
package/tests/outbound/index.js +0 -324
package/tests/outbound/qfile.js +0 -67
package/tests/outbound_bounce_net_errors.js +0 -173
package/tests/plugins/auth/auth_base.js +0 -463
package/tests/plugins/auth/auth_vpopmaild.js +0 -91
package/tests/plugins/bounce.js +0 -307
package/tests/plugins/clamd.js +0 -224
package/tests/plugins/deprecated/relay_acl.js +0 -140
package/tests/plugins/deprecated/relay_all.js +0 -59
package/tests/plugins/dkim_sign.js +0 -315
package/tests/plugins/dkim_signer.js +0 -108
package/tests/plugins/dns_list_base.js +0 -259
package/tests/plugins/dnsbl.js +0 -101
package/tests/plugins/early_talker.js +0 -115
package/tests/plugins/greylist.js +0 -58
package/tests/plugins/helo.checks.js +0 -525
package/tests/plugins/mail_from.is_resolvable.js +0 -116
package/tests/plugins/queue/smtp_forward.js +0 -221
package/tests/plugins/rcpt_to.host_list_base.js +0 -132
package/tests/plugins/rcpt_to.in_host_list.js +0 -218
package/tests/plugins/relay.js +0 -339
package/tests/plugins/spamassassin.js +0 -171
package/tests/plugins/status.js +0 -138
package/tests/plugins/tls.js +0 -84
package/tests/plugins.js +0 -247
package/tests/rfc1869.js +0 -61
package/tests/server.js +0 -510
package/tests/smtp_client/auth.js +0 -105
package/tests/smtp_client/basic.js +0 -101
package/tests/smtp_client.js +0 -80
package/tests/tls_socket.js +0 -333
package/tests/transaction.js +0 -284
/package/docs/{plugins → deprecated}/dkim_sign.md +0 -0
/package/docs/{plugins → deprecated}/dkim_verify.md +0 -0
/package/docs/{plugins → deprecated}/dnsbl.md +0 -0
/package/docs/{plugins → deprecated}/dnswl.md +0 -0
/package/docs/{plugins → deprecated}/rcpt_to.routes.md +0 -0
/package/{tests → test}/.eslintrc.yaml +0 -0
/package/{tests → test}/config/auth_flat_file.ini +0 -0
/package/{tests → test}/config/dhparams.pem +0 -0
/package/{tests → test}/config/host_list +0 -0
/package/{tests → test}/config/outbound_tls_cert.pem +0 -0
/package/{tests → test}/config/outbound_tls_key.pem +0 -0
/package/{tests → test}/config/smtp_forward.ini +0 -0
/package/{tests → test}/config/tls/ec.pem +0 -0
/package/{tests → test}/config/tls/haraka.local.pem +0 -0
/package/{tests → test}/config/tls/mismatched.pem +0 -0
/package/{tests → test}/config/tls.ini +0 -0
/package/{tests → test}/config/tls_cert.pem +0 -0
/package/{tests → test}/config/tls_key.pem +0 -0
/package/{tests → test}/fixtures/todo_qfile.txt +0 -0
/package/{tests → test}/installation/config/test-plugin-flat +0 -0
/package/{tests → test}/installation/config/test-plugin.ini +0 -0
/package/{tests → test}/installation/config/tls.ini +0 -0
/package/{tests → test}/installation/node_modules/load_first/index.js +0 -0
/package/{tests → test}/installation/node_modules/load_first/package.json +0 -0
/package/{tests → test}/installation/node_modules/test-plugin/config/test-plugin-flat +0 -0
/package/{tests → test}/installation/node_modules/test-plugin/config/test-plugin.ini +0 -0
/package/{tests → test}/installation/node_modules/test-plugin/package.json +0 -0
/package/{tests → test}/installation/node_modules/test-plugin/test-plugin.js +0 -0
/package/{tests → test}/installation/plugins/base_plugin.js +0 -0
/package/{tests → test}/installation/plugins/folder_plugin/index.js +0 -0
/package/{tests → test}/installation/plugins/folder_plugin/package.json +0 -0
/package/{tests → test}/installation/plugins/inherits.js +0 -0
/package/{tests → test}/installation/plugins/load_first.js +0 -0
/package/{tests → test}/installation/plugins/plugin.js +0 -0
/package/{tests → test}/installation/plugins/tls.js +0 -0
/package/{tests → test}/loud/config/dhparams.pem +0 -0
/package/{tests → test}/loud/config/tls/goobered.pem +0 -0
/package/{tests → test}/loud/config/tls.ini +0 -0
/package/{tests → test}/mail_specimen/base64-root-part.txt +0 -0
/package/{tests → test}/mail_specimen/varied-fold-lengths-preserve-data.txt +0 -0
/package/{tests → test}/queue/1507509981169_1507509981169_0_61403_e0Y0Ym_1_fixed +0 -0
/package/{tests → test}/queue/1507509981169_1507509981169_0_61403_e0Y0Ym_1_haraka +0 -0
/package/{tests → test}/queue/1508269674999_1508269674999_0_34002_socVUF_1_haraka +0 -0
/package/{tests → test}/queue/1508455115683_1508455115683_0_90253_9Q4o4V_1_haraka +0 -0
/package/{tests → test}/queue/zero-length +0 -0
/package/{tests → test}/test-queue/delete-me +0 -0

package/test/plugins/auth/auth_base.js ADDED Viewed

@@ -0,0 +1,484 @@
+'use strict';
+const assert = require('node:assert')
+const { Address } = require('address-rfc2821');
+const fixtures = require('haraka-test-fixtures');
+const utils = require('haraka-utils');
+const _set_up = (done) => {
+    this.plugin = new fixtures.plugin('auth/auth_base');
+    this.plugin.get_plain_passwd = (user, cb) => {
+        if (user === 'test') return cb('testpass');
+        return cb(null);
+    };
+    this.connection = fixtures.connection.createConnection();
+    this.connection.capabilities=null;
+    done();
+}
+const _set_up_2 = (done) => {
+    this.plugin = new fixtures.plugin('auth/auth_base');
+    this.plugin.get_plain_passwd = (user, connection, cb) => {
+        connection.notes.auth_custom_note = 'custom_note';
+        if (user === 'test') return cb('testpass');
+        return cb(null);
+    };
+    this.connection = fixtures.connection.createConnection();
+    this.connection.capabilities=null;
+    done();
+}
+const _set_up_custom_pwcb_opts = (done) => {
+    this.plugin = new fixtures.plugin('auth/auth_base');
+    this.plugin.check_plain_passwd = (connection, user, passwd, pwok_cb) => {
+        switch (user) {
+            case 'legacyok_nomessage':      return pwok_cb(true);
+            case 'legacyfail_nomessage':    return pwok_cb(false);
+            case 'legacyok_message':        return pwok_cb(true, 'GREAT SUCCESS');
+            case 'legacyfail_message':      return pwok_cb(false, 'FAIL 123');
+            case 'newok':                   return pwok_cb(true, {message: 'KOKOKO', code: 215});
+            case 'newfail':                 return pwok_cb(false, {message: 'OHOHOH', code: 555});
+            default: throw 'what?!';
+        }
+    };
+    this.connection = fixtures.connection.createConnection();
+    this.connection.capabilities=null;
+    this.connection.notes.resp_strings = [];
+    this.connection.respond = (code, msg, cb) => {
+        this.connection.notes.resp_strings.push([code, msg]);
+        return cb();
+    }
+    done();
+}
+describe('auth_base', () => {
+    describe('hook_capabilities', () => {
+        beforeEach(_set_up)
+        it('no TLS, no auth', (done) => {
+            this.plugin.hook_capabilities((rc, msg) => {
+                assert.equal(undefined, rc);
+                assert.equal(undefined, msg);
+                assert.equal(null, this.connection.capabilities);
+                done();
+            }, this.connection);
+        })
+        it('with TLS, auth is offered', (done) => {
+            this.connection.tls.enabled=true;
+            this.connection.capabilities=[];
+            this.plugin.hook_capabilities((rc, msg) => {
+                assert.equal(undefined, rc);
+                assert.equal(undefined, msg);
+                assert.ok(this.connection.capabilities.length);
+                assert.ok(this.connection.capabilities[0] === 'AUTH PLAIN LOGIN CRAM-MD5');
+                // console.log(this.connection.capabilities);
+                done();
+            }, this.connection);
+        })
+    })
+    describe('get_plain_passwd', () => {
+        beforeEach(_set_up)
+        it('get_plain_passwd, no result', (done) => {
+            this.plugin.get_plain_passwd('user', pass => {
+                assert.equal(pass, null);
+                done();
+            });
+        })
+        it('get_plain_passwd, test user', (done) => {
+            this.plugin.get_plain_passwd('test', pass => {
+                assert.equal(pass, 'testpass');
+                done();
+            });
+        })
+    })
+    describe('check_plain_passwd', () => {
+        beforeEach(_set_up)
+        it('valid password', (done) => {
+            this.plugin.check_plain_passwd(this.connection, 'test', 'testpass', pass => {
+                assert.equal(pass, true);
+                done();
+            });
+        })
+        it('wrong password', (done) => {
+            this.plugin.check_plain_passwd(this.connection, 'test', 'test1pass', pass => {
+                assert.equal(pass, false);
+                done();
+            });
+        })
+        it('null password', (done) => {
+            this.plugin.check_plain_passwd(this.connection, 'test', null, pass => {
+                assert.equal(pass, false);
+                done();
+            });
+        })
+    })
+    describe('select_auth_method', () => {
+        beforeEach(_set_up)
+        it('no auth methods yield no result', (done) => {
+            this.plugin.select_auth_method((code) => {
+                assert.equal(code, null);
+                assert.equal(false, this.connection.relaying);
+                done();
+            }, this.connection, 'AUTH PLAIN');
+        })
+        it('invalid AUTH method, no result', (done) => {
+            this.connection.notes.allowed_auth_methods = ['PLAIN','LOGIN','CRAM-MD5'];
+            this.plugin.select_auth_method((code) => {
+                assert.equal(code, null);
+                assert.equal(false, this.connection.relaying);
+                done();
+            }, this.connection, 'AUTH FOO');
+        })
+        it('valid AUTH method, valid attempt', (done) => {
+            const method = `PLAIN ${utils.base64('discard\0test\0testpass')}`;
+            this.connection.notes.allowed_auth_methods = ['PLAIN','LOGIN'];
+            this.plugin.select_auth_method((code) => {
+                assert.equal(code, OK);
+                assert.ok(this.connection.relaying);
+                done();
+            }, this.connection, method);
+        })
+    })
+    describe('auth_plain', () => {
+        beforeEach(_set_up)
+        it('params type=string returns OK', (done) => {
+            this.plugin.auth_plain((rc) => {
+                assert.equal(rc, OK);
+                assert.equal(false, this.connection.relaying);
+                done();
+            }, this.connection, 'AUTH FOO');
+        })
+        it('params type=empty array, returns OK', (done) => {
+            this.plugin.auth_plain((rc) => {
+                assert.equal(rc, OK);
+                assert.equal(false, this.connection.relaying);
+                done();
+            }, this.connection, []);
+        })
+        it('params type=array, successful auth', (done) => {
+            const method = utils.base64('discard\0test\0testpass');
+            this.plugin.auth_plain((rc) => {
+                assert.equal(rc, OK);
+                assert.ok(this.connection.relaying);
+                done();
+            }, this.connection, [method]);
+        })
+        it('params type=with two line login', (done) => {
+            this.plugin.auth_plain((rc) => {
+                assert.equal(this.connection.notes.auth_plain_asked_login, true);
+                assert.equal(rc, OK);
+                done();
+            }, this.connection, '');
+        })
+    })
+    describe('check_user', () => {
+        beforeEach(_set_up_2)
+        it('bad auth', (done) => {
+            const credentials = ['matt','ttam'];
+            this.plugin.check_user((code) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, false);
+                assert.equal(this.connection.notes.auth_custom_note, 'custom_note');
+                done();
+            }, this.connection, credentials, 'PLAIN');
+        })
+        it('good auth', (done) => {
+            const credentials = ['test','testpass'];
+            this.plugin.check_user((code) => {
+                assert.equal(code, OK);
+                assert.ok(this.connection.relaying);
+                assert.equal(this.connection.notes.auth_custom_note, 'custom_note');
+                done();
+            }, this.connection, credentials, 'PLAIN');
+        })
+    })
+    describe('check_user_custom_opts', () => {
+        beforeEach(_set_up_custom_pwcb_opts)
+        it('legacyok_nomessage', (done) => {
+            this.plugin.check_user((code, msg) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, true);
+                assert.deepEqual(this.connection.notes.resp_strings, [[ 235, '2.7.0 Authentication successful' ]]);
+                done();
+            }, this.connection, ['legacyok_nomessage', 'any'], 'PLAIN');
+        })
+        it('legacyfail_nomessage', (done) => {
+            this.plugin.check_user((code, msg) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, false);
+                assert.deepEqual(this.connection.notes.resp_strings, [ [ 535, '5.7.8 Authentication failed' ] ]);
+                done();
+            }, this.connection, ['legacyfail_nomessage', 'any'], 'PLAIN');
+        })
+        it('legacyok_message', (done) => {
+            this.plugin.check_user((code, msg) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, true);
+                assert.deepEqual(this.connection.notes.resp_strings, [[ 235, 'GREAT SUCCESS' ]]);
+                done();
+            }, this.connection, ['legacyok_message', 'any'], 'PLAIN');
+        })
+        it('legacyfail_message', (done) => {
+            this.plugin.check_user((code, msg) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, false);
+                assert.deepEqual(this.connection.notes.resp_strings, [[ 535, 'FAIL 123' ]]);
+                done();
+            }, this.connection, ['legacyfail_message', 'any'], 'PLAIN');
+        })
+        it('newok', (done) => {
+            this.plugin.check_user((code, msg) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, true);
+                assert.deepEqual(this.connection.notes.resp_strings, [[ 215, 'KOKOKO' ]]);
+                done();
+            }, this.connection, ['newok', 'any'], 'PLAIN');
+        })
+        it('newfail', (done) => {
+            this.plugin.check_user((code, msg) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, false);
+                assert.deepEqual(this.connection.notes.resp_strings, [[ 555, 'OHOHOH' ]]);
+                done();
+            }, this.connection, ['newfail', 'any'], 'PLAIN');
+        })
+    })
+    describe('auth_notes_are_set', () => {
+        beforeEach(_set_up_2)
+        it('bad auth: no notes should be set', (done) => {
+            const credentials = ['matt','ttam'];
+            this.plugin.check_user((code) => {
+                assert.equal(this.connection.notes.auth_user, undefined);
+                assert.equal(this.connection.notes.auth_passwd, undefined);
+                done();
+            }, this.connection, credentials, 'PLAIN');
+        })
+        it('good auth: dont store password', (done) => {
+            const creds = ['test','testpass'];
+            this.plugin.blankout_password = true;
+            this.plugin.check_user((code) => {
+                assert.equal(this.connection.notes.auth_user, creds[0]);
+                assert.equal(this.connection.notes.auth_passwd, undefined);
+                done();
+            }, this.connection, creds, 'PLAIN');
+        })
+        it('good auth: store password (default)', (done) => {
+            const creds = ['test','testpass'];
+            this.plugin.check_user((code) => {
+                assert.equal(this.connection.notes.auth_user, creds[0]);
+                assert.equal(this.connection.notes.auth_passwd, creds[1]);
+                done();
+            }, this.connection, creds, 'PLAIN');
+        })
+    })
+    describe('hook_unrecognized_command', () => {
+        beforeEach(_set_up)
+        it('AUTH type FOO', (done) => {
+            const params = ['AUTH','FOO'];
+            this.connection.notes.allowed_auth_methods = ['PLAIN','LOGIN'];
+            this.plugin.hook_unrecognized_command((code) => {
+                assert.equal(code, null);
+                assert.equal(this.connection.relaying, false);
+                done();
+            }, this.connection, params);
+        })
+        it('AUTH PLAIN', (done) => {
+            const params = ['AUTH','PLAIN', utils.base64('discard\0test\0testpass')];
+            this.connection.notes.allowed_auth_methods = ['PLAIN','LOGIN'];
+            this.plugin.hook_unrecognized_command((code) => {
+                assert.equal(code, OK);
+                assert.ok(this.connection.relaying);
+                done();
+            }, this.connection, params);
+        })
+        it('AUTH PLAIN, authenticating', (done) => {
+            this.connection.notes.allowed_auth_methods = ['PLAIN','LOGIN'];
+            this.connection.notes.authenticating=true;
+            this.connection.notes.auth_method='PLAIN';
+            this.plugin.hook_unrecognized_command((code) => {
+                assert.equal(code, OK);
+                assert.ok(this.connection.relaying);
+                done();
+            }, this.connection, [utils.base64('discard\0test\0testpass')]);
+        })
+    })
+    describe('auth_login', () => {
+        beforeEach(_set_up)
+        it('AUTH LOGIN', (done) => {
+            const params = ['AUTH','LOGIN'];
+            this.connection.notes.allowed_auth_methods = ['PLAIN','LOGIN'];
+            this.plugin.hook_unrecognized_command((code) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, false);
+                assert.equal(this.connection.notes.auth_login_asked_login , true);
+                this.plugin.hook_unrecognized_command((code) => {
+                    assert.equal(code, OK);
+                    assert.equal(this.connection.notes.auth_login_userlogin, 'test');
+                    assert.equal(this.connection.relaying, false);
+                    this.plugin.hook_unrecognized_command((code) => {
+                        assert.equal(code, OK);
+                        assert.equal(this.connection.relaying, true);
+                        done();
+                    }, this.connection, [utils.base64('testpass')]);
+                }, this.connection, [utils.base64('test')]);
+            }, this.connection, params);
+        })
+        it('AUTH LOGIN <username>', (done) => {
+            const params = ['AUTH','LOGIN', utils.base64('test')];
+            this.connection.notes.allowed_auth_methods = ['PLAIN','LOGIN'];
+            this.plugin.hook_unrecognized_command((code) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, false);
+                assert.equal(this.connection.notes.auth_login_userlogin, 'test');
+                assert.equal(this.connection.notes.auth_login_asked_login , true);
+                this.plugin.hook_unrecognized_command((code2) => {
+                    assert.equal(code2, OK);
+                    assert.equal(this.connection.relaying, true);
+                    done();
+                }, this.connection, [utils.base64('testpass')]);
+            }, this.connection, params);
+        })
+        it('AUTH LOGIN <username>, bad protocol', (done) => {
+            const params = ['AUTH','LOGIN', utils.base64('test')];
+            this.connection.notes.allowed_auth_methods = ['PLAIN','LOGIN'];
+            this.plugin.hook_unrecognized_command((code) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, false);
+                assert.equal(this.connection.notes.auth_login_userlogin, 'test');
+                assert.equal(this.connection.notes.auth_login_asked_login , true);
+                this.plugin.hook_unrecognized_command((code, msg) => {
+                    assert.equal(code, DENYDISCONNECT);
+                    assert.equal(msg, 'bad protocol');
+                    assert.equal(this.connection.relaying, false);
+                    done();
+                }, this.connection, ['AUTH', 'LOGIN']);
+            }, this.connection, params);
+        })
+        it('AUTH LOGIN, reauthentication', (done) => {
+            const params = ['AUTH','LOGIN', utils.base64('test')];
+            this.connection.notes.allowed_auth_methods = ['PLAIN','LOGIN'];
+            this.plugin.hook_unrecognized_command((code) => {
+                assert.equal(code, OK);
+                assert.equal(this.connection.relaying, false);
+                assert.equal(this.connection.notes.auth_login_userlogin, 'test');
+                assert.equal(this.connection.notes.auth_login_asked_login , true);
+                this.plugin.hook_unrecognized_command((code) => {
+                    assert.equal(code, OK);
+                    assert.equal(this.connection.relaying, true);
+                    assert.equal(this.connection.notes.auth_login_userlogin, null);
+                    assert.equal(this.connection.notes.auth_login_asked_login , false);
+                    this.plugin.hook_unrecognized_command((code) => {
+                        assert.equal(code, OK);
+                        done();
+                    }, this.connection, ['AUTH','LOGIN']);
+                }, this.connection, [utils.base64('testpass')]);
+            }, this.connection, params);
+        })
+    })
+    describe('hexi', () => {
+        beforeEach(_set_up)
+        it('hexi', () => {
+            assert.equal(this.plugin.hexi(512), 200);
+            assert.equal(this.plugin.hexi(8), 8);
+        })
+    })
+    describe('constrain_sender', () => {
+        beforeEach(_set_up)
+        it('constrain_sender, domain match', (done) => {
+            this.mfrom = new Address('user@example.com')
+            this.connection.results.add({name: 'auth'}, { user: 'user@example.com' })
+            this.plugin.constrain_sender((resCode) => {
+                    assert.equal(resCode, undefined)
+                    done();
+                },
+                this.connection,
+                [this.mfrom],
+            )
+        })
+        it('constrain_sender, domain mismatch', (done) => {
+            this.mfrom = new Address('user@example.net')
+            this.connection.results.add({name: 'auth'}, { user: 'user@example.com' })
+            this.plugin.constrain_sender((resCode, denyMsg) => {
+                    assert.equal(resCode, DENY)
+                    assert.ok(denyMsg)
+                    done();
+                },
+                this.connection,
+                [this.mfrom],
+            )
+        })
+        it('constrain_sender, no domain', (done) => {
+            this.mfrom = new Address('user@example.com')
+            this.connection.results.add({name: 'auth'}, { user: 'user' })
+            this.plugin.constrain_sender((resCode) => {
+                    assert.equal(resCode, undefined)
+                    done();
+                },
+                this.connection,
+                [this.mfrom],
+            )
+        })
+    })
+})

package/test/plugins/auth/auth_vpopmaild.js ADDED Viewed

@@ -0,0 +1,83 @@
+'use strict';
+const assert = require('node:assert')
+const path = require('node:path');
+const fixtures = require('haraka-test-fixtures');
+const _set_up = (done) => {
+    this.backup = {};
+    this.plugin = new fixtures.plugin('auth/auth_vpopmaild');
+    this.plugin.inherits('auth/auth_base');
+    // reset the config/root_path
+    this.plugin.config.root_path = path.resolve(__dirname, '../../../config');
+    this.plugin.cfg = this.plugin.config.get('auth_vpopmaild.ini');
+    this.connection = fixtures.connection.createConnection();
+    this.connection.capabilities=null;
+    done();
+}
+describe('hook_capabilities', () => {
+    beforeEach(_set_up)
+    it('no TLS', (done) => {
+        this.plugin.hook_capabilities((rc, msg) => {
+            assert.equal(undefined, rc);
+            assert.equal(undefined, msg);
+            assert.equal(null, this.connection.capabilities);
+            done();
+        }, this.connection);
+    })
+    it('with TLS', (done) => {
+        this.connection.tls.enabled=true;
+        this.connection.capabilities=[];
+        this.plugin.hook_capabilities((rc, msg) => {
+            assert.equal(undefined, rc);
+            assert.equal(undefined, msg);
+            assert.ok(this.connection.capabilities.length);
+            done();
+        }, this.connection);
+    })
+    it('with TLS, sysadmin', (done) => {
+        this.connection.tls.enabled=true;
+        this.connection.capabilities=[];
+        this.plugin.hook_capabilities((rc, msg) => {
+            assert.equal(undefined, rc);
+            assert.equal(undefined, msg);
+            assert.ok(this.connection.capabilities.length);
+            done();
+        }, this.connection);
+    })
+})
+describe('get_vpopmaild_socket', () => {
+    beforeEach(_set_up)
+    it('any', () => {
+        const socket = this.plugin.get_vpopmaild_socket('foo@localhost.com');
+        assert.ok(socket);
+        socket.end();
+    })
+})
+describe('get_plain_passwd', () => {
+    beforeEach(_set_up)
+    it('matt@example.com', (done) => {
+        if (this.plugin.cfg['example.com'].sysadmin) {
+            this.plugin.get_plain_passwd('matt@example.com', (pass) => {
+                assert.ok(pass);
+                done();
+            });
+        }
+        else {
+            done();
+        }
+    })
+})

package/test/plugins/early_talker.js ADDED Viewed

@@ -0,0 +1,104 @@
+'use strict';
+const assert = require('node:assert')
+const fixtures     = require('haraka-test-fixtures');
+const _set_up = (done) => {
+    this.plugin = new fixtures.plugin('early_talker');
+    this.plugin.cfg = { main: { reject: true } };
+    this.connection = fixtures.connection.createConnection();
+    done();
+}
+describe('early_talker', () => {
+    beforeEach(_set_up)
+    it('no config', (done) => {
+        this.plugin.early_talker((rc, msg) => {
+            assert.equal(rc, undefined);
+            assert.equal(msg, undefined);
+            done();
+        }, this.connection);
+    })
+    it('relaying', (done) => {
+        this.plugin.pause = 1;
+        this.connection.relaying = true;
+        this.plugin.early_talker((rc, msg) => {
+            assert.equal(rc, undefined);
+            assert.equal(msg, undefined);
+            done();
+        }, this.connection);
+    })
+    it('is an early talker', (done) => {
+        const before = Date.now();
+        this.plugin.pause = 1001;
+        this.connection.early_talker = true;
+        this.plugin.early_talker((rc, msg) => {
+            assert.ok(Date.now() >= before + 1000);
+            assert.equal(rc, DENYDISCONNECT);
+            assert.equal(msg, 'You talk too soon');
+            done();
+        }, this.connection);
+    })
+    it('is an early talker, reject=false', (done) => {
+        const before = Date.now();
+        this.plugin.pause = 1001;
+        this.plugin.cfg.main.reject = false;
+        this.connection.early_talker = true;
+        this.plugin.early_talker((rc, msg) => {
+            assert.ok(Date.now() >= before + 1000);
+            assert.equal(undefined, rc);
+            assert.equal(undefined, msg);
+            assert.ok(this.connection.results.has('early_talker', 'fail', 'early'));
+            done();
+        }, this.connection);
+    })
+    it('relay whitelisted ip', (done) => {
+        this.plugin.pause = 1000;
+        this.plugin.whitelist = this.plugin.load_ip_list(['127.0.0.1']);
+        this.connection.remote.ip = '127.0.0.1';
+        this.connection.early_talker = true;
+        this.plugin.early_talker((rc, msg) => {
+            assert.equal(undefined, rc);
+            assert.equal(undefined, msg);
+            assert.ok(this.connection.results.has('early_talker', 'skip', 'whitelist'));
+            done();
+        }, this.connection);
+    })
+    it('relay whitelisted subnet', (done) => {
+        this.plugin.pause = 1000;
+        this.plugin.whitelist = this.plugin.load_ip_list(['127.0.0.0/16']);
+        this.connection.remote.ip = '127.0.0.88';
+        this.connection.early_talker = true;
+        this.plugin.early_talker((rc, msg) => {
+            assert.equal(undefined, rc);
+            assert.equal(undefined, msg);
+            assert.ok(this.connection.results.has('early_talker', 'skip', 'whitelist'));
+            done();
+        }, this.connection);
+    })
+    it('relay good senders', (done) => {
+        this.plugin.pause = 1000;
+        this.connection.results.add('karma', {good: 10});
+        this.connection.early_talker = true;
+        this.plugin.early_talker((rc, msg) => {
+            assert.equal(undefined, rc);
+            assert.equal(undefined, msg);
+            assert.ok(this.connection.results.has('early_talker', 'skip', '+karma'));
+            done();
+        }, this.connection);
+    })
+    it('test loading ip list', () => {
+        const whitelist = this.plugin.load_ip_list(['123.123.123.123', '127.0.0.0/16']);
+        assert.equal(whitelist[0][1], 32);
+        assert.equal(whitelist[1][1], 16);
+    })
+})