Upgrade to Pro — share decks privately, control downloads, hide ads and more …

How to code a SMTP service in Go

Frédéric G. MARAND
April 13, 2023
Programming
0
230

How to code a SMTP service in Go

Sometimes it is useful to receive data in the form of e-mails instead of having traditional HTTP(S) APIs.

A traditional case for it is handling customer replies to incident tickets, for which it is much easier for them to reply to an e-mail notification from their mailbox than it would be for them to access the ticketing system to reply.

Fortunately, Go makes it easy to write such SMTP servers, in a way which even resembles HTTP server. See how it is done.

Frédéric G. MARAND

April 13, 2023
Tweet

More Decks by Frédéric G. MARAND

See All by Frédéric G. MARAND
The end of_execution in Go code (DevoxxFR 2023)
fgm
0
100
Interfaces texte plein écran en Go
fgm
0
390
A full-screen text UI in Go
fgm
0
1.4k
Gestion des erreurs en Go 1.14
fgm
0
1.4k
Scaling up and accelerating Drupal with NoSQL
fgm
0
860
FranceTV Sport de Drupal 7 à 8
fgm
0
730
So you've been hacked. Now what?
fgm
0
80
So you've been hacked. Now what?
fgm
0
310
Mon site est hacké! Que faire ?
fgm
0
620

Other Decks in Programming

See All in Programming
ruby.wasmでブラウザを酷使してみよう / 2023-MatsueRubyKaigi
lnit
0
140
Chatwork プロダクト本部 紹介資料(エンジニア向け)
chatwork_hr
1
2.6k
Context Window のお話
schroneko
1
130
Migrating From Spring Boot 2 To Spring Boot 3 - What's Jakarta EE Got To Do with It?
ivargrimstad
0
520
純SPAでNext.jsに対抗する 〜ページによってmetaタグを切り替える編〜
kiyoshiro
0
220
メタバースプラットフォーム 「INSPIX WORLD」はPHPもC++もまとめてC#に統一! ~MagicOnionが支えるバックエンド最適化手法~
pulse1923
0
150
Compose Multiplatform 101
dalinaum
2
380
Build Backwards-Compatible REST APIs with Rolling Versions
subomi
0
140
Dagger Hilt로 의존성 주입부터 멀티모듈화까지
fornewid
0
250
ユニットテスト並行化の導入と運用:Goでの事例紹介
shohata
1
450
Flutter CustomPaint @Flutter MeetUp(In Songdo) - 박제창
itsmedreamwalker
0
170
Re:Android Studio 설정 살펴보기 및 생산성 올리기
pluu
0
620

Featured

See All Featured
Art Directing for the Web. Five minutes with CSS Template Areas
malarkey
197
11k
What’s in a name? Adding method to the madness
productmarketing
PRO
14
2.2k
Building Better People: How to give real-time feedback that sticks.
wjessup
349
18k
Product Roadmaps are Hard
iamctodd
42
8.7k
Debugging Ruby Performance
tmm1
68
11k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
239
20k
YesSQL, Process and Tooling at Scale
rocio
159
13k
Embracing the Ebb and Flow
colly
77
3.8k
GraphQLの誤解/rethinking-graphql
sonatard
44
8.5k
Optimizing for Happiness
mojombo
368
67k
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
6
7.1k
The Pragmatic Product Professional
lauravandoore
23
4k

Transcript

  1. Frédéric G. MARAND - 23 avril 2023
    A Go SMTP service
    Devoxx FR 2023
    1

    View Slide

  2. © 2023 OSInet
    The problem to solve
    2

    View Slide

  3. © 2023 OSInet
    How to automate inbound emails handling
    Use case for the idea: a business
    partner that does only exposes issues
    using emails instead of APIs.


    Other use case: handling ticket
    responses by email instead of forcing
    customers to go to the ticketing tool.


    Also, intellectual curiosity 👻


    The problem to solve
    3

    View Slide

  4. © 2023 OSInet 4
    Solutions
    • Pull


    • POP3


    • IMAP4


    • Custom APIs (e.g. CDO, MAPI)
    • Push


    • (E)SMTP


    • Homegrown (this presentation)


    • AWS SES


    • Lambda


    • SNS topic


    • S3


    • Autres : header, bounce, stop


    • Google AppEngine SMTP ➢ HTTP


    • inbound_services.mail in app.yaml


    View Slide

  5. © 2023 OSInet 5
    Pros
    • Pull


    • Fully capable and secure SMTP
    server upstream
    • Push


    • SMTPD server code is incredibly
    simple


    • SES for push is also fully capable and
    secure


    • SES ➢ Lambda is simple and cheap at
    that scale


    • SES output is simpler than MIME


    • GAE Inbound mail is HTTP

    View Slide

  6. © 2023 OSInet 6
    Cons
    • Pull


    • POP3/IMAP APIs are complex
    and brittle


    • CDO is limited to MS Exchange


    • MAPI is…. Better forgotten


    • Maintenance on mail servers
    actually requires work
    • Push


    • Needs dedicated subdomain with MX
    record. Even for SES


    • Homegrown code needs and FW/
    WAF rules to allow inbound SMTP


    • Homegrown microservice will have to
    be strictly delimited to remain sage


    • SES API is proprietary


    • GAE does not parse like SES

    View Slide

  7. © 2023 OSInet
    • At demo/PoC scale, or if vendor lock-in is a real issue, a homegrown very limited server is better


    • Otherwise SES → Lambda is probably


    • Not much more complex


    • Very reliable


    • Observable


    • Still very cheap


    • GAE SMTP ➢ HTTP is a legacy service


    • Pull is more for personal, one-off or management actions (e.g. export, backup of existing service)
    7
    Choosing

    View Slide

  8. © 2023 OSInet
    Let’s do it
    8

    View Slide

  9. © 2023 OSInet
    SMTP push means :


    • Messages routed by an MX, so…


    • Need one or more MX records…


    • In a specific subdomain


    Inbound SMTP on platform (not SES/GAE) means:


    • Open flow to port 25, 587, 465, or 2525


    • Configure firewall / WAF
    9
    Infra setup

    View Slide

  10. © 2023 OSInet 10
    SMTP (very) simplified steps
    •HELO / EHLO


    •MAIL FROM:


    •RCPT TO:


    •DATA


    •Headers: From,To,Subject,others


    •Body


    •“.”


    •QUIT


    Note: no whitespace after “.” In MAIL FROM / RCPT TO.

    View Slide

  11. © 2023 OSInet 11
    Bradfitz/go-smtpd
    •smtpd.Connection : actual TCP connection


    •smtpd.Server


    •Addr: listen


    •Hostname: announce


    •(Read|Write)Timeout: DoS defense


    •PlainAuth: for SSL connections


    •.OnNewConnection


    •.OnNewMail


    •smtpd.Envelope

    View Slide

  12. © 2023 OSInet 12
    Smtp.Envelope contents
    • Unreliable network info


    • SmtpRemote


    • SmtpNetwork


    • Unreliable protocol addresses


    • MailFrom


    • RcptTo


    • Lines (data)


    • Headers


    • Body

    View Slide

  13. © 2023 OSInet 13
    Hooking Envelope events


    Library emits events while parsing the inbound message


    • AddRecipient: check recipients existence/interest


    • BeginData: set up write destination


    • Write: write parsed body


    • Close: finish writes

    View Slide

  14. © 2023 OSInet 14
    Handling headers


    All processing is provided by the Go stdlib:


    • Headers :

    net/mail.Message.Header


    • Email address parsing :

    net/mail.AddressParser


    • Reading body : net/mail.Message.Body

    is an io.Reader

    View Slide

  15. © 2023 OSInet 15
    In practice


    • Define an Envelope implementation


    • Suggestion: parse body on close


    • doesn't scale but enough for these needs


    • at that point, header and body are already parsed and ready


    • write them to a net/mail.Message


    • Add custom logic as needed

    View Slide

  16. © 2023 OSInet
    Sample code
    16

    View Slide

  17. © 2023 OSInet 17
    Sample inbound data

    View Slide

  18. © 2023 OSInet 18
    Sample Server events listening

    View Slide

  19. © 2023 OSInet 19
    Sample Envelope events handling

    View Slide

  20. © 2023 OSInet 20
    Sample main parsing

    View Slide

  21. © 2023 OSInet
    The complete code
    21
    https://code.osinet.fr/fgm/smtpd

    View Slide

  22. © 2023 OSInet
    Demo time
    22

    View Slide

  23. © 2023 OSInet 23
    How to run the demo


    • git clone https://code.osinet.fr/fgml/smtpd


    • cd smtp


    • In one terminal tab:


    • go run ./cmd


    • In another terminal tab:


    • nc localhost 25 < fixture/simple.eml

    View Slide

  24. © 2023 OSInet 24
    Results


    View Slide

  25. © OSInet
    Thanks for
    watching
    Questions ?
    [email protected]

    View Slide