Initial commit

zoni · zoni · commit 69828cf21099 · 2017-09-04T17:26:05.000+02:00
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,3 @@
+*.txz
+postforward
+usr/
diff --git a/LICENSE.txt b/LICENSE.txt
@@ -0,0 +1,22 @@
+Copyright 2017 Nick Groenen <nick@groenen.me>
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+1. Redistributions of source code must retain the above copyright notice, this
+list of conditions and the following disclaimer.
+
+2. Redistributions in binary form must reproduce the above copyright notice,
+this list of conditions and the following disclaimer in the documentation
+and/or other materials provided with the distribution.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff --git a/Makefile b/Makefile
@@ -0,0 +1,34 @@
+.PHONY: build clean freebsd
+
+VERSION := 1.0.0
+BUILDNUMBER := 1
+
+# fpm settings
+NAME := postforward
+ARCH := x86_64
+MAINTAINER := Nick Groenen <nick@groenen.me>
+DESCRIPTION := Postfix SRS forwarding agent
+EXTRA_ARGS :=
+
+
+.PHONY: build
+build:
+	go build -ldflags="-s -w" *.go
+
+.PHONY: freebsd
+freebsd:
+	mkdir -p usr/local/bin
+	GOOS=freebsd go build -ldflags="-s -w" -o usr/local/bin/postforward *.go
+
+	fpm -f -t freebsd -s dir \
+		--name "$(NAME)" \
+		--version "$(VERSION)-$(BUILDNUMBER)" \
+		--architecture "$(ARCH)" \
+		--maintainer "$(MAINTAINER)" \
+		--description "$(DESCRIPTION)" \
+		$(EXTRA_ARGS) \
+		usr/
+
+.PHONY: clean
+clean:
+	rm -rf postforward usr/
diff --git a/README.md b/README.md
@@ -0,0 +1,106 @@
+Postforward
+===========
+
+*Postfix SRS forwarding agent.*
+
+
+About
+-----
+
+Postforward is a mail forwarding utility which aims to compliment the
+[Postfix Sender Rewriting Scheme daemon (PostSRSd)](https://github.com/roehling/postsrsd).
+
+The downside of using PostSRSd is that all mail is naively rewritten, even
+when no forwarding is actually performed. Such rewritten Return-Path
+addresses may confuse sieve scripts and other mail filtering software.
+
+This is where Postforward comes in. Instead of rewriting all incoming mail
+regardless of final destination, mail systems may be configured to pipe
+mail into Postforward only when forwarding needs to happen, leaving
+non-forwarded mail unaltered by PostSRSd. Postforward will rewrite
+envelope addresses for piped mail using PostSRSd itself and re-inject
+these messages back into the queue, destined for the forwarding
+recipient(s).
+
+
+Project status
+--------------
+
+This software is actively maintained but considered feature-complete. No
+changes or new features are planned except as required to fix any
+potential issues that may come up in the future.
+
+
+Installation
+------------
+
+I no longer provide pre-compiled binaries for small-time projects of mine
+so you will have to build from sources yourself. If you have an up-to-date
+[Go toolchain](https://golang.org/dl/) installed on your system this is as
+simple as:
+
+```sh
+go get -d github.com/zoni/postforward
+cd ~/go/src/github.com/zoni/postforward
+make
+```
+
+
+Configuration
+-------------
+
+Postforward relies on mail being delivered via stdin so this implies
+delivery using Postfix's `local(8)` or `pipe(8)` delivery agents. One such
+method may be achieved by configuring a pipe forward in `/etc/aliases`:
+
+```
+forwarder: "|/usr/local/bin/postforward someuser@another.host.tld"
+```
+
+*(Note: when running PostSRSd on a different host or port, use the
+`--srs-addr` flag to set the correct address here.)*
+
+In `main.cf`, configure `recipient_canonical_maps` and
+`recipient_canonical_classes` as
+[recommended by PostSRSd](https://github.com/roehling/postsrsd#configuration)
+but *do not* set `sender_canonical_maps` or `sender_canonical_classes`.
+
+-----------------------------------------------------------------------------
+
+Note that in case of process errors, postfix bounces emails with the full
+process argument string in the DSN message which could leak internal
+information such as the forwarding address. This is default postfix
+behavior for the local and pipe delivery agents.
+
+If this is undesirable,
+[local_delivery_status_filter](http://www.postfix.org/postconf.5.html#local_delivery_status_filter)
+may be configured with a PCRE map such as the following to hide this
+information (omit the `$2` in the final entry to also strip command
+output):
+
+```
+/^(2\S+ deliver(s|ed) to file).+/    $1
+/^(2\S+ deliver(s|ed) to command).+/ $1
+/^(\S+ Command died with status \d+):.*(\. Command output:.*)/ $1$2
+```
+
+
+Performance
+-----------
+
+Using Postforward introduces additional overhead caused by forking of
+processes which wouldn't happen with direct use of PostSRSd. Unless you
+are forwarding very large volumes of mail this extra overhead is likely
+negligible in relation to the total processing cost of a complete email
+transaction.
+
+Postforward takes care not to buffer entire messages in memory and is
+therefor safe to use on very large emails.  Only message headers are
+buffered in memory for processing, body content is streamed directly into
+sendmail.
+
+
+License
+-------
+
+2-Clause BSD. See [LICENSE.txt](LICENSE.txt) for the full license text.
diff --git a/postforward.go b/postforward.go
@@ -0,0 +1,142 @@
+package main
+
+import (
+	"bufio"
+	"bytes"
+	"flag"
+	"fmt"
+	"io"
+	"net/mail"
+	"net/textproto"
+	"os"
+	"os/exec"
+	"time"
+)
+
+// Exit codes as defined in <sysexits.h>
+const (
+	// The input data was incorrect in some way.  This
+	// should only be used for user's data and not system
+	// files.
+	ExDataErr = 65
+	// Temporary failure, indicating something that is not
+	// really an error.  In sendmail, this means that a
+	// mailer (e.g.) could not create a connection, and
+	// the request should be reattempted later.
+	ExTempFail = 75
+)
+
+var srsAddr = flag.String("srs-addr", "localhost:10001", "TCP address for SRS lookups")
+var rpHeader = flag.String("rp-header", "Return-Path", "header name containing the return-path (MAIL FROM) value")
+var sendmailPath = flag.String("sendmail-path", "sendmail", "path to the sendmail binary")
+var dryRun = flag.Bool("dry-run", false, "show what would be done, don't actually forward mail")
+
+// lookupTCP performs a TCP table lookup for the specified key against the
+// given address.
+func lookupTCP(addr, key string) (string, error) {
+	c, err := textproto.Dial("tcp", addr)
+	if err != nil {
+		return "", err
+	}
+
+	id, err := c.Cmd("get " + key)
+	if err != nil {
+		return "", err
+	}
+	c.StartResponse(id)
+	defer c.EndResponse(id)
+
+	code, msg, err := c.ReadCodeLine(-1)
+	if err != nil {
+		return "", err
+	}
+	switch code {
+	case 200:
+		return msg, nil
+	case 500:
+		fmt.Fprintf(os.Stderr, "warning: srs: returncode 500 (%v)\n", msg)
+		return key, nil
+	default:
+		return "", fmt.Errorf("srs: unexpected returncode %d (%v)", code, msg)
+	}
+}
+
+// die writes msg to stderr and aborts the program with the given status code.
+func die(msg string, code int) {
+	fmt.Fprintln(os.Stderr, msg)
+	os.Exit(code)
+}
+
+// headerRewriter wraps the given reader and performs header rewriting on read
+// data. Specifically, this strips the "From sender time_stamp" envelope header
+// inserted by Postfix and adds supplied headers.
+//
+// Note that the Return-Path header is left intact. Postfix (specifically,
+// the cleanup daemon) will replace this header automatically.
+func headerRewriter(in io.Reader, headers []string) io.Reader {
+	buffer := bytes.Buffer{}
+	scanner := bufio.NewScanner(in)
+	linenum := 0
+	for scanner.Scan() {
+		linenum++
+		line := scanner.Bytes()
+		if linenum == 1 {
+			for _, header := range headers {
+				buffer.WriteString(header + "\r\n")
+			}
+
+			if bytes.HasPrefix(line, []byte("From ")) {
+				continue
+			}
+		}
+		buffer.Write(line)
+		buffer.Write([]byte("\r\n"))
+	}
+	return &buffer
+}
+
+func main() {
+	flag.Parse()
+	hostname, _ := os.Hostname()
+
+	buffer := bytes.Buffer{}
+	message, err := mail.ReadMessage(io.TeeReader(os.Stdin, &buffer))
+	if err != nil {
+		die(fmt.Sprintf("Parse error: %s", err), ExDataErr)
+	}
+
+	returnPath := message.Header.Get(*rpHeader)
+	if returnPath == "" {
+		die("Parse error: Missing return-path header in message", ExDataErr)
+	}
+
+	extraHeaders := []string{
+		fmt.Sprintf("Received: by %s (Postforward); %s",
+			hostname, time.Now().Format("Mon, 2 Jan 2006 15:04:05 -0700")),
+		fmt.Sprintf("X-Original-Return-Path: %s", returnPath)}
+
+	returnPath = returnPath[1 : len(returnPath)-1] // Remove <> brackets
+	returnPath, err = lookupTCP(*srsAddr, returnPath)
+	if err != nil {
+		die(fmt.Sprintf("SRS lookup error: %s", err), ExTempFail)
+	}
+
+	mailreader := io.MultiReader(headerRewriter(&buffer, extraHeaders), os.Stdin)
+	args := append([]string{"-f", returnPath}, flag.Args()...)
+	sendmail := exec.Command(*sendmailPath, args...)
+	sendmail.Stdin = mailreader
+	sendmail.Stdout = os.Stdout
+	sendmail.Stderr = os.Stderr
+
+	if *dryRun {
+		fmt.Printf("Would call sendmail with args: %v\n", args)
+		fmt.Print("Would pipe the following data into sendmail:\n\n")
+		io.Copy(os.Stdout, mailreader)
+		os.Exit(0)
+	}
+
+	if err = sendmail.Run(); err != nil {
+		die(fmt.Sprintf("Error delivering message to sendmail: %s", err), ExTempFail)
+	}
+
+}
