[FIX] refactor error messages and FQDN regex usage

valentin-kaiser · valentin-kaiser · commit 749991056d2b · 2025-09-10T12:58:14.000+02:00
diff --git a/mail/internal/email/email.go b/mail/internal/email/email.go
@@ -127,13 +127,13 @@ func NewFromReader(r io.Reader) (*Email, error) {
 
 		contentType, _, err = mime.ParseMediaType(p.header.Get("Content-Type"))
 		if err != nil {
-			return msg, apperror.NewErrorf("Could not parse Content-Type header with value %q", p.header.Get("Content-Type")).AddError(err)
+			return msg, apperror.NewErrorf("could not parse Content-Type header with value %q", p.header.Get("Content-Type")).AddError(err)
 		}
 
 		if cd := p.header.Get("Content-Disposition"); cd != "" {
 			cd, params, err := mime.ParseMediaType(p.header.Get("Content-Disposition"))
 			if err != nil {
-				return msg, apperror.NewErrorf("Could not parse Content-Disposition header with value %q", p.header.Get("Content-Disposition")).AddError(err)
+				return msg, apperror.NewErrorf("could not parse Content-Disposition header with value %q", p.header.Get("Content-Disposition")).AddError(err)
 			}
 			filename, filenameDefined := params["filename"]
 			if cd == "attachment" || (cd == "inline" && filenameDefined) {
@@ -728,7 +728,7 @@ func parseMIMEParts(hs textproto.MIMEHeader, b io.Reader) ([]*part, error) {
 	}
 	ct, params, err := mime.ParseMediaType(hs.Get("Content-Type"))
 	if err != nil {
-		return ps, apperror.NewErrorf("Could not parse Content-Type header with value %q", hs.Get("Content-Type")).AddError(err)
+		return ps, apperror.NewErrorf("could not parse Content-Type header with value %q", hs.Get("Content-Type")).AddError(err)
 	}
 	if strings.HasPrefix(ct, "multipart/") {
 		if _, ok := params["boundary"]; !ok {
@@ -749,7 +749,7 @@ func parseMIMEParts(hs textproto.MIMEHeader, b io.Reader) ([]*part, error) {
 			}
 			subct, _, err := mime.ParseMediaType(p.Header.Get("Content-Type"))
 			if err != nil {
-				return ps, apperror.NewErrorf("Could not parse Content-Type header with value %q", p.Header.Get("Content-Type")).AddError(err)
+				return ps, apperror.NewErrorf("could not parse Content-Type header with value %q", p.Header.Get("Content-Type")).AddError(err)
 			}
 			if strings.HasPrefix(subct, "multipart/") {
 				sps, err := parseMIMEParts(p.Header, p)
diff --git a/mail/security.go b/mail/security.go
@@ -12,7 +12,11 @@ import (
 	"golang.org/x/time/rate"
 )
 
-var fqdnPattern = regexp.MustCompile(`^([a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]{1,}$`)
+// FQDNPattern validates a fully qualified domain name (FQDN) with the following rules:
+// - One or more labels separated by dots.
+// - Each label is 1-63 characters: alphanumeric and hyphens, but cannot start or end with a hyphen.
+// - The final label (TLD) must be alphabetic and at least one character.
+var FQDNPattern = regexp.MustCompile(`^([a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]{1,}$`)
 
 // SecurityManager handles security validations and tracking for both SMTP client and server
 type SecurityManager struct {
@@ -368,7 +372,7 @@ func (sm *SecurityManager) isValidFQDN(hostname string) bool {
 	}
 
 	// Validate format using regex
-	return fqdnPattern.MatchString(hostname)
+	return FQDNPattern.MatchString(hostname)
 }
 
 // cleanup periodically cleans up old entries

Original file line number	Diff line number	Diff line change
`@@ -127,13 +127,13 @@ func NewFromReader(r io.Reader) (*Email, error) {`
`127`	`127`
`128`	`128`	`contentType, _, err = mime.ParseMediaType(p.header.Get("Content-Type"))`
`129`	`129`	`if err != nil {`
`130`		`- return msg, apperror.NewErrorf("Could not parse Content-Type header with value %q", p.header.Get("Content-Type")).AddError(err)`
	`130`	`+ return msg, apperror.NewErrorf("could not parse Content-Type header with value %q", p.header.Get("Content-Type")).AddError(err)`
`131`	`131`	`}`
`132`	`132`
`133`	`133`	`if cd := p.header.Get("Content-Disposition"); cd != "" {`
`134`	`134`	`cd, params, err := mime.ParseMediaType(p.header.Get("Content-Disposition"))`
`135`	`135`	`if err != nil {`
`136`		`- return msg, apperror.NewErrorf("Could not parse Content-Disposition header with value %q", p.header.Get("Content-Disposition")).AddError(err)`
	`136`	`+ return msg, apperror.NewErrorf("could not parse Content-Disposition header with value %q", p.header.Get("Content-Disposition")).AddError(err)`
`137`	`137`	`}`
`138`	`138`	`filename, filenameDefined := params["filename"]`
`139`	`139`	`if cd == "attachment" \|\| (cd == "inline" && filenameDefined) {`
`@@ -728,7 +728,7 @@ func parseMIMEParts(hs textproto.MIMEHeader, b io.Reader) ([]*part, error) {`
`728`	`728`	`}`
`729`	`729`	`ct, params, err := mime.ParseMediaType(hs.Get("Content-Type"))`
`730`	`730`	`if err != nil {`
`731`		`- return ps, apperror.NewErrorf("Could not parse Content-Type header with value %q", hs.Get("Content-Type")).AddError(err)`
	`731`	`+ return ps, apperror.NewErrorf("could not parse Content-Type header with value %q", hs.Get("Content-Type")).AddError(err)`
`732`	`732`	`}`
`733`	`733`	`if strings.HasPrefix(ct, "multipart/") {`
`734`	`734`	`if _, ok := params["boundary"]; !ok {`
`@@ -749,7 +749,7 @@ func parseMIMEParts(hs textproto.MIMEHeader, b io.Reader) ([]*part, error) {`
`749`	`749`	`}`
`750`	`750`	`subct, _, err := mime.ParseMediaType(p.Header.Get("Content-Type"))`
`751`	`751`	`if err != nil {`
`752`		`- return ps, apperror.NewErrorf("Could not parse Content-Type header with value %q", p.Header.Get("Content-Type")).AddError(err)`
	`752`	`+ return ps, apperror.NewErrorf("could not parse Content-Type header with value %q", p.Header.Get("Content-Type")).AddError(err)`
`753`	`753`	`}`
`754`	`754`	`if strings.HasPrefix(subct, "multipart/") {`
`755`	`755`	`sps, err := parseMIMEParts(p.Header, p)`
Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,11 @@ import (`
`12`	`12`	`"golang.org/x/time/rate"`
`13`	`13`	`)`
`14`	`14`
`15`		-var fqdnPattern = regexp.MustCompile(`^([a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]{1,}$`)
	`15`	`+// FQDNPattern validates a fully qualified domain name (FQDN) with the following rules:`
	`16`	`+// - One or more labels separated by dots.`
	`17`	`+// - Each label is 1-63 characters: alphanumeric and hyphens, but cannot start or end with a hyphen.`
	`18`	`+// - The final label (TLD) must be alphabetic and at least one character.`
	`19`	+var FQDNPattern = regexp.MustCompile(`^([a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]{1,}$`)
`16`	`20`
`17`	`21`	`// SecurityManager handles security validations and tracking for both SMTP client and server`
`18`	`22`	`type SecurityManager struct {`
`@@ -368,7 +372,7 @@ func (sm *SecurityManager) isValidFQDN(hostname string) bool {`
`368`	`372`	`}`
`369`	`373`
`370`	`374`	`// Validate format using regex`
`371`		`- return fqdnPattern.MatchString(hostname)`
	`375`	`+ return FQDNPattern.MatchString(hostname)`
`372`	`376`	`}`
`373`	`377`
`374`	`378`	`// cleanup periodically cleans up old entries`