1 package org.cacert.gigi.email;
3 import java.io.BufferedReader;
4 import java.io.IOException;
5 import java.io.InputStreamReader;
6 import java.io.OutputStreamWriter;
7 import java.io.PrintWriter;
8 import java.net.Socket;
9 import java.security.GeneralSecurityException;
10 import java.security.Key;
11 import java.security.PrivateKey;
12 import java.security.cert.Certificate;
13 import java.security.cert.X509Certificate;
14 import java.util.Arrays;
15 import java.util.Comparator;
16 import java.util.Properties;
17 import java.util.regex.Pattern;
19 import javax.naming.NamingException;
20 import javax.net.ssl.SSLSocketFactory;
22 import org.cacert.gigi.crypto.SMIME;
23 import org.cacert.gigi.database.GigiPreparedStatement;
24 import org.cacert.gigi.util.DNSUtil;
25 import org.cacert.gigi.util.DomainAssessment;
26 import org.cacert.gigi.util.SystemKeywords;
28 public abstract class EmailProvider {
30 public abstract void sendMail(String to, String subject, String message, String replyto, String toname, String fromname, String errorsto, boolean extra) throws IOException;
32 private static EmailProvider instance;
34 private X509Certificate c;
38 protected void init(Certificate c, Key k) {
39 this.c = (X509Certificate) c;
40 this.k = (PrivateKey) k;
43 protected final void sendSigned(String contents, PrintWriter output) throws IOException, GeneralSecurityException {
44 if (k == null || c == null) {
45 output.print(contents);
47 SMIME.smime(contents, k, c, output);
51 public static EmailProvider getInstance() {
55 protected static void setInstance(EmailProvider instance) {
56 EmailProvider.instance = instance;
59 public static void initSystem(Properties conf, Certificate cert, Key pk) {
61 Class<?> c = Class.forName(conf.getProperty("emailProvider"));
62 EmailProvider ep = (EmailProvider) c.getDeclaredConstructor(Properties.class).newInstance(conf);
65 } catch (ReflectiveOperationException e) {
70 public static final String OK = "OK";
72 public static final String FAIL = "FAIL";
74 private static final String MAIL_P_RFC_WORD = "[A-Za-z0-9\\+\\.!#$%&'*/=?^_`|~{}-]+";
76 private static final String MAIL_P_RFC_LOCAL = MAIL_P_RFC_WORD + "(?:\\." + MAIL_P_RFC_WORD + ")*";
78 private static final String MAIL_P_RFC_LABEL = "(?!(?!xn)..--|-)(?:[A-Za-z0-9-]+)(?<!-)";
80 private static final String MAIL_P_RFC_ADDRESS = MAIL_P_RFC_LOCAL + "@(?:" + MAIL_P_RFC_LABEL + "\\.)+" + MAIL_P_RFC_LABEL + "\\.?";
82 private static final Pattern MAIL_LOCAL = Pattern.compile("^" + MAIL_P_RFC_LOCAL + "$");
84 private static final Pattern MAIL_ADDRESS = Pattern.compile("^" + MAIL_P_RFC_ADDRESS + "$");
86 public String checkEmailServer(int forUid, String address) throws IOException {
87 if (isValidMailAddress(address)) {
88 String[] parts = address.split("@", 2);
89 String domain = parts[1];
93 mxhosts = DNSUtil.getMXEntries(domain);
94 } catch (NamingException e1) {
95 return "MX lookup for your hostname failed.";
99 for (String host : mxhosts) {
100 host = host.split(" ", 2)[1];
101 if (host.endsWith(".")) {
102 host = host.substring(0, host.length() - 1);
104 return "Strange MX records.";
106 try (Socket s = new Socket(host, 25);
107 BufferedReader br0 = new BufferedReader(new InputStreamReader(s.getInputStream(), "UTF-8"));//
108 PrintWriter pw0 = new PrintWriter(new OutputStreamWriter(s.getOutputStream(), "UTF-8"))) {
109 BufferedReader br = br0;
110 PrintWriter pw = pw0;
112 if ( !SendMail.readSMTPResponse(br, 220)) {
116 pw.print("EHLO " + SystemKeywords.SMTP_NAME + "\r\n");
118 boolean starttls = false;
120 line = br.readLine();
124 starttls |= line.substring(4).equals("STARTTLS");
125 } while (line.startsWith("250-"));
126 if (line == null || !line.startsWith("250 ")) {
131 pw.print("STARTTLS\r\n");
133 if ( !SendMail.readSMTPResponse(br, 220)) {
136 Socket s1 = ((SSLSocketFactory) SSLSocketFactory.getDefault()).createSocket(s, host, 25, true);
137 br = new BufferedReader(new InputStreamReader(s1.getInputStream(), "UTF-8"));
138 pw = new PrintWriter(new OutputStreamWriter(s1.getOutputStream(), "UTF-8"));
139 pw.print("EHLO " + SystemKeywords.SMTP_NAME + "\r\n");
141 if ( !SendMail.readSMTPResponse(br, 250)) {
146 pw.print("MAIL FROM: <" + SystemKeywords.SMTP_PSEUDO_FROM + ">\r\n");
149 if ( !SendMail.readSMTPResponse(br, 250)) {
152 pw.print("RCPT TO: <" + address + ">\r\n");
155 if ( !SendMail.readSMTPResponse(br, 250)) {
158 pw.print("QUIT\r\n");
160 if ( !SendMail.readSMTPResponse(br, 221)) {
164 try (GigiPreparedStatement statmt = new GigiPreparedStatement("INSERT INTO `emailPinglog` SET `when`=NOW(), `email`=?, `result`=?, `uid`=?, `type`='fast', `status`='success'::`pingState`")) {
165 statmt.setString(1, address);
166 statmt.setString(2, line);
167 statmt.setInt(3, forUid);
171 if (line == null || !line.startsWith("250")) {
180 try (GigiPreparedStatement statmt = new GigiPreparedStatement("INSERT INTO `emailPinglog` SET `when`=NOW(), `email`=?, `result`=?, `uid`=?, `type`='fast'::`emailPingType`, `status`='failed'::`pingState`")) {
181 statmt.setString(1, address);
182 statmt.setString(2, "Failed to make a connection to the mail server");
183 statmt.setInt(3, forUid);
189 private static void sortMX(String[] mxhosts) {
190 Arrays.sort(mxhosts, new Comparator<String>() {
193 public int compare(String o1, String o2) {
194 int i1 = Integer.parseInt(o1.split(" ")[0]);
195 int i2 = Integer.parseInt(o2.split(" ")[0]);
196 return Integer.compare(i1, i2);
201 public static boolean isValidMailAddress(String address) {
202 if ( !MAIL_ADDRESS.matcher(address).matches()) {
206 String[] parts = address.split("@", 2);
208 String local = parts[0];
209 String domain = parts[1];
211 if ( !MAIL_LOCAL.matcher(local).matches()) {
215 for (String domainPart : domain.split("\\.", -1)) {
216 if ( !DomainAssessment.isValidDomainPart(domainPart)) {
projects / gigi.git / blob