use Email::Filter;
use IPC::Run;
our $VERSION = '0.0.1';
+use constant NO_HTML => '*** We only accept plain-text email, no HTML ***';
# start with the same defaults as mailman
our $BAD_EXT = qr/\.(?:exe|bat|cmd|com|pif|scr|vbs|cpl)\z/i;
# this is highly opinionated delivery
# returns 0 only if there is nothing to deliver
sub run {
- my ($class, $mime) = @_;
+ my ($class, $mime, $filter) = @_;
my $content_type = $mime->header('Content-Type') || 'text/plain';
if ($content_type =~ m!\btext/plain\b!i) {
return 1; # yay, nothing to do
} elsif ($content_type =~ $MIME_HTML) {
+ $filter->reject(NO_HTML) if $filter;
# HTML-only, non-multipart
my $body = $mime->body;
my $ct_parsed = parse_content_type($content_type);
replace_body($mime, $body);
return 1;
} elsif ($content_type =~ m!\bmultipart/!i) {
- return strip_multipart($mime, $content_type);
+ return strip_multipart($mime, $content_type, $filter);
} else {
replace_body($mime, "$content_type message scrubbed");
return 0;
# this is to correct user errors and not expected to cover all corner cases
# if users don't want to hit this, they should be sending text/plain messages
# unfortunately, too many people send HTML mail and we'll attempt to convert
-# it to something safer, smaller and harder-to-track.
+# it to something safer, smaller and harder-to-spy-on-users-with.
sub strip_multipart {
- my ($mime, $content_type) = @_;
+ my ($mime, $content_type, $filter) = @_;
my (@html, @keep);
my $rejected = 0;
if ($part_type =~ m!\btext/plain\b!i) {
push @keep, $part;
} elsif ($part_type =~ $MIME_HTML) {
+ $filter->reject(NO_HTML) if $filter;
push @html, $part;
} elsif ($part_type =~ $MIME_TEXT_ANY) {
# Give other text attachments the benefit of the doubt,
$filtered = undef;
$filter->simple($msg);
- if (PublicInbox::Filter->run($msg)) {
+ if (PublicInbox::Filter->run($msg, $filter)) {
# run spamc again on the HTML-free message
if (do_spamc($msg, \$filtered)) {
$msg = Email::MIME->new(\$filtered);
my $addr = 'test-public@example.com';
my $cfgpfx = "publicinbox.test";
my $failbox = "$home/fail.mbox";
+my $mime;
{
ok(-x "$main_bin/spamc",
)
];
$mid = 'multipart-html-sucks@11';
- my $mime = Email::MIME->create(
+ $mime = Email::MIME->create(
header_str => [
From => 'a@example.com',
Subject => 'blah',
ok(-d $faildir, "emergency exists");
my @new = glob("$faildir/new/*");
is(scalar(@new), 1, "message delivered");
+ is(unlink(@new), 1, "removed emergency message");
+
+ local $ENV{PATH} = $main_path;
+ $in = <<EOF;
+From: Faildir <faildir\@example.com>
+To: $addr
+Content-Type: text/html
+Message-ID: <faildir\@example.com>
+Subject: faildir subject
+Date: Thu, 01 Jan 1970 00:00:00 +0000
+
+<html><body>bad</body></html>
+EOF
+ my $out = '';
+ my $err = '';
+ run([$mda], \$in, \$out, \$err);
+ isnt($?, 0, "mda exited with failure");
+ is(length $out, 0, 'nothing in stdout');
+ isnt(length $err, 0, 'error message in stderr');
+
+ @new = glob("$faildir/new/*");
+ is(scalar(@new), 0, "new message did not show up");
+
+ # reject multipart again
+ $in = $mime->as_string;
+ $err = '';
+ run([$mda], \$in, \$out, \$err);
+ isnt($?, 0, "mda exited with failure");
+ is(length $out, 0, 'nothing in stdout');
+ isnt(length $err, 0, 'error message in stderr');
+ @new = glob("$faildir/new/*");
+ is(scalar(@new), 0, "new message did not show up");
}
done_testing();