added Certificate factory

Author: cosullivan

Examples/SampleApp/Program.cs

@@ -31,78 +31,7 @@ static void Main(string[] args)
             //ServerCancellingExample.Run();
             //SessionTracingExample.Run();
             //DependencyInjectionExample.Run();
-            //SecureServerExample.Run();
-
-            //_cancellationTokenSource = new CancellationTokenSource();
-
-            var options = new SmtpServerOptionsBuilder()
-                .ServerName("SmtpServer SampleApp")
-                .Port(9025)
-                .Build();
-
-            var serviceProvider = new ServiceProvider();
-            serviceProvider.Add(new SampleMessageStore(Console.Out));
-
-            var server = new SmtpServer.SmtpServer(options, serviceProvider);
-
-            server.SessionCreated += OnSessionCreated;
-            server.SessionCompleted += OnSessionCompleted;
-            server.SessionFaulted += OnSessionFaulted;
-            server.SessionCancelled += OnSessionCancelled;
-
-            var serverTask = server.StartAsync(CancellationToken.None);
-
-            serverTask.WaitWithoutException();
-        }
-
-        static void OnSessionFaulted(object sender, SessionFaultedEventArgs e)
-        {
-            Console.WriteLine("SessionFaulted: {0}", e.Exception);
-        }
-
-        static void OnSessionCancelled(object sender, SessionEventArgs e)
-        {
-            Console.WriteLine("SessionCancelled");
-        }
-
-        static void OnSessionCreated(object sender, SessionEventArgs e)
-        {
-            e.Context.Properties.Add("SessionID", Guid.NewGuid());
-
-            e.Context.CommandExecuting += OnCommandExecuting;
-            e.Context.CommandExecuted += OnCommandExecuted;
-            e.Context.ResponseException += OnResponseException;
-        }
-
-        private static void OnResponseException(object sender, SmtpResponseExceptionEventArgs e)
-        {
-            Console.WriteLine("Response Exception");
-            if (e.Exception.Properties.ContainsKey("SmtpSession:Buffer"))
-            {
-                var buffer = e.Exception.Properties["SmtpSession:Buffer"] as byte[];
-                Console.WriteLine("Unknown Line: {0}", Encoding.UTF8.GetString(buffer));
-            }
-        }
-
-        static void OnCommandExecuting(object sender, SmtpCommandEventArgs e)
-        {
-            //Console.WriteLine("Command Executing (SessionID={0})", e.Context.Properties["SessionID"]);
-            new TracingSmtpCommandVisitor(Console.Out).Visit(e.Command);
-        }
-
-        static void OnCommandExecuted(object sender, SmtpCommandEventArgs e)
-        {
-            //Console.WriteLine("Command Executed (SessionID={0})", e.Context.Properties["SessionID"]);
-            //new TracingSmtpCommandVisitor(Console.Out).Visit(e.Command);
-        }
-
-        static void OnSessionCompleted(object sender, SessionEventArgs e)
-        {
-            Console.WriteLine("SessionCompleted: {0}", e.Context.Properties[EndpointListener.RemoteEndPointKey]);
-
-            e.Context.CommandExecuting -= OnCommandExecuting;
-            e.Context.CommandExecuted -= OnCommandExecuted;
-            e.Context.ResponseException -= OnResponseException;
+            SecureServerExample.Run();
         }
 
         static bool IgnoreCertificateValidationFailureForTestingOnly(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors)

Examples/SampleApp/SampleMailboxFilter.cs

@@ -6,6 +6,7 @@
 using SmtpServer.Mail;
 using SmtpServer.Net;
 using SmtpServer.Storage;
+using SmtpServer.Protocol;
 
 namespace SampleApp
 {
@@ -26,8 +27,8 @@ public SampleMailboxFilter(TimeSpan delay)
         /// <param name="from">The mailbox to test.</param>
         /// <param name="size">The estimated message size to accept.</param>
         /// <param name="cancellationToken">The cancellation token.</param>
-        /// <returns>The acceptance state of the mailbox.</returns>
-        public override async Task<MailboxFilterResult> CanAcceptFromAsync(
+        /// <returns>Returns true if the mailbox is accepted, false if not.</returns>
+        public override async Task<bool> CanAcceptFromAsync(
             ISessionContext context, 
             IMailbox @from, 
             int size,
@@ -37,17 +38,17 @@ public override async Task<MailboxFilterResult> CanAcceptFromAsync(
 
             if (@from == Mailbox.Empty)
             {
-                return MailboxFilterResult.NoPermanently;
+                throw new SmtpResponseException(SmtpResponse.MailboxNameNotAllowed);
             }
 
             var endpoint = (IPEndPoint)context.Properties[EndpointListener.RemoteEndPointKey];
 
             if (endpoint.Address.Equals(IPAddress.Parse("127.0.0.1")))
             {
-                return MailboxFilterResult.Yes;
+                return true;
             }
 
-            return MailboxFilterResult.NoPermanently;
+            return false;
         }
 
         /// <summary>
@@ -57,16 +58,16 @@ public override async Task<MailboxFilterResult> CanAcceptFromAsync(
         /// <param name="to">The mailbox to test.</param>
         /// <param name="from">The sender's mailbox.</param>
         /// <param name="cancellationToken">The cancellation token.</param>
-        /// <returns>The acceptance state of the mailbox.</returns>
-        public override async Task<MailboxFilterResult> CanDeliverToAsync(
+        /// <returns>Returns true if the mailbox can be delivered to, false if not.</returns>
+        public override async Task<bool> CanDeliverToAsync(
             ISessionContext context, 
             IMailbox to, 
             IMailbox @from,
             CancellationToken cancellationToken)
         {
             await Task.Delay(_delay, cancellationToken);
 
-            return MailboxFilterResult.Yes;
+            return true;
         }
     }
 }

Src/SmtpServer.Tests/SmtpServerTests.cs

@@ -165,7 +165,7 @@ public void CanReturnSmtpResponseException_DoesNotQuit()
                 throw new SmtpResponseException(SmtpResponse.AuthenticationRequired);
 
 #pragma warning disable 162
-                return MailboxFilterResult.Yes;
+                return true;
 #pragma warning restore 162
             });
 

Src/SmtpServer/EndpointDefinitionBuilder.cs

@@ -118,7 +118,17 @@ public EndpointDefinitionBuilder ReadTimeout(TimeSpan value)
         /// <returns>A EndpointDefinitionBuilder to continue building on.</returns>
         public EndpointDefinitionBuilder Certificate(X509Certificate value)
         {
-            _setters.Add(options => options.ServerCertificate = value);
+            return Certificate(new StaticCertificateFactory(value));
+        }
+
+        /// <summary>
+        /// Sets the X509 certificate factory to use when starting a TLS session.
+        /// </summary>
+        /// <param name="certificateFactory">The certificate factory to use when creating TLS sessions.</param>
+        /// <returns>A EndpointDefinitionBuilder to continue building on.</returns>
+        public EndpointDefinitionBuilder Certificate(ICertificateFactory certificateFactory)
+        {
+            _setters.Add(options => options.CertificateFactory = certificateFactory);
 
             return this;
         }
@@ -165,16 +175,36 @@ internal sealed class EndpointDefinition : IEndpointDefinition
             public TimeSpan ReadTimeout { get; set; }
 
             /// <summary>
-            /// Gets the Server Certificate to use when starting a TLS session.
+            /// Gets the Server Certificate factory to use when starting a TLS session.
             /// </summary>
-            public X509Certificate ServerCertificate { get; set; }
+            public ICertificateFactory CertificateFactory { get; set; }
 
             /// <summary>
             /// The supported SSL protocols.
             /// </summary>
             public SslProtocols SupportedSslProtocols { get; set; }
         }
 
+        #endregion
+
+        #region StaticCertificateFactory 
+
+        internal sealed class StaticCertificateFactory : ICertificateFactory
+        {
+            readonly X509Certificate _serverCertificate;
+
+            public StaticCertificateFactory(X509Certificate serverCertificate)
+            {
+                _serverCertificate = serverCertificate;
+            }            
+
+            public X509Certificate GetServerCertificate(ISessionContext sessionContext)
+            {
+                return _serverCertificate;
+            }
+        }
+
+
         #endregion
     }
 }

Src/SmtpServer/ICertificateFactory.cs

@@ -0,0 +1,14 @@
+using System.Security.Cryptography.X509Certificates;
+
+namespace SmtpServer
+{
+    public interface ICertificateFactory
+    {
+        /// <summary>
+        /// Returns the certificate to use for the session.
+        /// </summary>
+        /// <param name="sessionContext">The session context.</param>
+        /// <returns>The certificate to use when starting a TLS session.</returns>
+        X509Certificate GetServerCertificate(ISessionContext sessionContext);
+    }
+}

Src/SmtpServer/IEndpointDefinition.cs

@@ -33,9 +33,9 @@ public interface IEndpointDefinition
         TimeSpan ReadTimeout { get; }
 
         /// <summary>
-        /// Gets the Server Certificate to use when starting a TLS session.
+        /// Gets the Server Certificate factory to use when starting a TLS session.
         /// </summary>
-        X509Certificate ServerCertificate { get; }
+        ICertificateFactory CertificateFactory { get; }
 
         /// <summary>
         /// The supported SSL protocols.

Src/SmtpServer/Protocol/EhloCommand.cs

@@ -64,7 +64,7 @@ protected virtual IEnumerable<string> GetExtensions(ISessionContext context)
             yield return "8BITMIME";
             yield return "SMTPUTF8";
 
-            if (context.Pipe.IsSecure == false && context.EndpointDefinition.ServerCertificate != null)
+            if (context.Pipe.IsSecure == false && context.EndpointDefinition.CertificateFactory != null)
             {
                 yield return "STARTTLS";
             }

Src/SmtpServer/Protocol/MailCommand.cs

@@ -1,5 +1,4 @@
-using System;
-using System.Collections.Generic;
+using System.Collections.Generic;
 using System.Threading;
 using System.Threading.Tasks;
 using SmtpServer.ComponentModel;
@@ -58,22 +57,14 @@ internal override async Task<bool> ExecuteAsync(SmtpSessionContext context, Canc
 
             switch (await container.Instance.CanAcceptFromAsync(context, Address, size, cancellationToken).ConfigureAwait(false))
             {
-                case MailboxFilterResult.Yes:
+                case true:
                     context.Transaction.From = Address;
                     await context.Pipe.Output.WriteReplyAsync(SmtpResponse.Ok, cancellationToken).ConfigureAwait(false);
                     return true;
 
-                case MailboxFilterResult.NoTemporarily:
+                case false:
                     await context.Pipe.Output.WriteReplyAsync(SmtpResponse.MailboxUnavailable, cancellationToken).ConfigureAwait(false);
                     return false;
-
-                case MailboxFilterResult.NoPermanently:
-                    await context.Pipe.Output.WriteReplyAsync(SmtpResponse.MailboxNameNotAllowed, cancellationToken).ConfigureAwait(false);
-                    return false;
-
-                case MailboxFilterResult.SizeLimitExceeded:
-                    await context.Pipe.Output.WriteReplyAsync(SmtpResponse.SizeLimitExceeded, cancellationToken).ConfigureAwait(false);
-                    return false;
             }
 
             throw new SmtpResponseException(SmtpResponse.TransactionFailed);

Src/SmtpServer/Protocol/RcptCommand.cs

@@ -36,18 +36,14 @@ internal override async Task<bool> ExecuteAsync(SmtpSessionContext context, Canc
 
             switch (await container.Instance.CanDeliverToAsync(context, Address, context.Transaction.From, cancellationToken).ConfigureAwait(false))
             {
-                case MailboxFilterResult.Yes:
+                case true:
                     context.Transaction.To.Add(Address);
                     await context.Pipe.Output.WriteReplyAsync(SmtpResponse.Ok, cancellationToken).ConfigureAwait(false);
                     return true;
 
-                case MailboxFilterResult.NoTemporarily:
+                case false:
                     await context.Pipe.Output.WriteReplyAsync(SmtpResponse.MailboxUnavailable, cancellationToken).ConfigureAwait(false);
                     return false;
-
-                case MailboxFilterResult.NoPermanently:
-                    await context.Pipe.Output.WriteReplyAsync(SmtpResponse.MailboxNameNotAllowed, cancellationToken).ConfigureAwait(false);
-                    return false;
             }
 
             throw new NotSupportedException("The Acceptance state is not supported.");

Src/SmtpServer/Protocol/StartTlsCommand.cs

@@ -24,7 +24,8 @@ internal override async Task<bool> ExecuteAsync(SmtpSessionContext context, Canc
         {
             await context.Pipe.Output.WriteReplyAsync(SmtpResponse.ServiceReady, cancellationToken).ConfigureAwait(false);
 
-            var certificate = context.EndpointDefinition.ServerCertificate;
+            var certificate = context.EndpointDefinition.CertificateFactory.GetServerCertificate(context);
+
             var protocols = context.EndpointDefinition.SupportedSslProtocols;
 
             await context.Pipe.UpgradeAsync(certificate, protocols, cancellationToken).ConfigureAwait(false);

Src/SmtpServer/SmtpServer.csproj

@@ -5,7 +5,7 @@
     <LangVersion>8.0</LangVersion>
     <AssemblyName>SmtpServer</AssemblyName>
     <RootNamespace>SmtpServer</RootNamespace>
-    <Version>9.0.3</Version>
+    <Version>10.0.0-beta1</Version>
     <Description>.NET SmtpServer</Description>
     <Authors>Cain O'Sullivan</Authors>
     <Company />
@@ -15,10 +15,12 @@
     <PackageTags>smtp smtpserver smtp server</PackageTags>
     <PackageLicenseUrl></PackageLicenseUrl>
     <PackageRequireLicenseAcceptance>True</PackageRequireLicenseAcceptance>
-    <AssemblyVersion>9.1.0.0</AssemblyVersion>
-    <FileVersion>9.1.0.0</FileVersion>
-    <PackageReleaseNotes>Version 9.1.0
-Fixed a bug with the session not closing when the cancellation token was cancelled.
+    <AssemblyVersion>10.0.0</AssemblyVersion>
+    <FileVersion>10.0.0</FileVersion>
+    <PackageReleaseNotes>Version 10.0.0
+- Removed MailboxFilterResult in favor of bool result. Impementations can throw SmtpResponseException for more control.
+- Handled servers that send the QUIT command and immediately close the connection.
+- Added an ICertificateFactory on the Endpoint that allows a new certificate to be created when required without having to restart the server.
 </PackageReleaseNotes>
     <GeneratePackageOnBuild>true</GeneratePackageOnBuild>
     <PackageLicenseFile>LICENSE</PackageLicenseFile>

Src/SmtpServer/SmtpSessionManager.cs

@@ -66,9 +66,11 @@ async Task UpgradeAsync(SmtpSessionHandle handle, CancellationToken cancellation
         {
             var endpoint = handle.SessionContext.EndpointDefinition;
 
-            if (endpoint.IsSecure && endpoint.ServerCertificate != null)
+            if (endpoint.IsSecure && endpoint.CertificateFactory != null)
             {
-                await handle.SessionContext.Pipe.UpgradeAsync(endpoint.ServerCertificate, endpoint.SupportedSslProtocols, cancellationToken).ConfigureAwait(false);
+                var serverCertificate = endpoint.CertificateFactory.GetServerCertificate(handle.SessionContext);
+
+                await handle.SessionContext.Pipe.UpgradeAsync(serverCertificate, endpoint.SupportedSslProtocols, cancellationToken).ConfigureAwait(false);
             }
         }
 

Src/SmtpServer/StateMachine/SmtpStateTable.cs

@@ -63,7 +63,7 @@ static SmtpStateId WaitingForMailSecureWhenSecure(SmtpSessionContext context)
 
         static bool CanAcceptStartTls(SmtpSessionContext context)
         {
-            return context.EndpointDefinition.ServerCertificate != null && context.Pipe.IsSecure == false;
+            return context.EndpointDefinition.CertificateFactory != null && context.Pipe.IsSecure == false;
         }
 
         readonly IDictionary<SmtpStateId, SmtpState> _states = new Dictionary<SmtpStateId, SmtpState>();