From: Omar Polo <op@omarpolo.com>
Subject: Re: smtpd: table auth offloading
To: gilles@poolp.org
Cc: tech@openbsd.org
Date: Fri, 07 Jun 2024 16:31:39 +0200

On 2024/05/26 21:00:43 +0000, gilles@poolp.org wrote:
> updated, I decided to not be as verbose about auth tables since its a
> developer only feature, moved it to smtpd-tables.7, made >80 lines
> shorter.
> 
> if no objection, I'll commit tomorrow.

I've re-tested this now that we have fixed the handling of proc tables
supported services.  Works perfectly for me.

For the record, I've tested with the following custom table in
/usr/local/libexec/smtpd/my-table-auth, plus `listen ... auth <a>` in
smtpd.conf.  Then attempted to connect with

% smtp -Tnoverify -n -s smtps://op:123@localhost

and with a different password it failed.


#!/usr/bin/awk -f

BEGIN { FS = "|" }

$1 == "config" && $2 == "ready" {
	print "register|auth"
	print "register|ready"
	fflush
	next
}

$5 == "check" && $8 == "op:123" {
	printf("check-result|%s|found\n", $7);
	fflush()
	next
}

$5 == "check" {
	printf("check-result|%s|not-found\n", $7)
}

$5 == "lookup" {
	printf("lookup-result|%s|not-found\n", $7)
}

// { fflush }