README
¶
Failmail
Failmail is an SMTP proxy server that deduplicates and summarizes the emails it receives. It typically sits between an application and the SMTP server that application would use to send alerts or exception emails, and prevents the application from overwhelming its operators with a flood of email.
Its primary goals are:
- to help the human operators of an application or system under observation to understand the errors and notifications that come from the system
- to prevent an upstream SMTP server from throttling or dropping messages under a high volume of errors/alerts
- to be easier to set up and use than its predecessor, failnozzle, which had strict assumptions about the nature and format of incoming messages
Failmail is language/framework/tool-agnostic, and usually only requires a small configuration change in your application.
Installation
To download and build from source:
$ export GOPATH=...
$ go get -u github.com/mpapi/failmail
$ $GOPATH/bin/failmail
Or, for 64-bit Linux, you can grab a binary of the latest release.
Usage
See failmail --help for a full listing of supported options.
By default, failmail listens on the local port 2525
(--bind="localhost:2525"), and relays mail to another SMTP server (e.g.
Postfix) running on the local default SMTP port (--relay="localhost:25"). It
receives messages and rolls them into summaries based on their subjects,
sending a summary email out 30 seconds (--wait=30s) after it stops receiving
messages with those subjects, delaying no more than a total of 5 minutes
(--max-wait=5m). Each summary is sent to the union of all of the recipients
of the messages in the summary.
Any summary emails that it can't send via the server on port 25, it writes to a
maildir (--fail-dir="failed"; readable by e.g. mutt, or any text editor).
If the --all-dir option is given, failmail will write any email it gets to
a maildir for inspection, debugging, or archival.
Configuration options
The value of a failmail setting is determined as follows:
- If a config flag is given on the command line for that option, the value of
that flag is used. Flags may be given with one hyphen or two (
-flagor--flag) and with an equals sign before the value or not (-flag=valueor-flag value). - Otherwise, if a config file is given (via the
--configflag on the command line), and the setting is present in the file, its value from the file is used. - Finally, the
failmaildefault is used. (The values of these defaults are shown when runningfailmail --help.)
In general, the command-line flag spells the setting name with hyphens, and the
config file uses underscores. For instance, --max-wait=5m is specified in a
config file as max_wait = 5m.
The settings are described below:
-
--all-dir(default: none)write all sends to this maildir
-
--batch-expr(default:"{{.Header.Get \"X-Failmail-Split\"}}")an expression used to determine how messages are batched into summary emails
(See "Configuring message batching" below.)
-
--bind-addr(default:"localhost:2525")local bind address
-
--bind-http(default:"localhost:8025")local bind address for the HTTP server
-
--config(default: none)path to a config file
-
--credentials(default: none)username:password for authenticating to failmail
-
--fail-dir(default:"failed")write failed sends to this maildir
-
--from(default:"failmail@$(hostname)")from address
-
--group-expr(default:"{{.Header.Get \"Subject\"}}")an expression used to determine how messages are grouped within summary emails
(See "Configuring message batching" below.)
-
--max-wait(default:5m0s)wait at most this long from first message to send summary
-
--pidfile(default: none)write a pidfile to this path
-
--relay-addr(default:"localhost:25")relay server address
-
--relay-allrelay all messages to the upstream server
-
--relay-password(default: none)password for auth to relay server
-
--relay-user(default: none)username for auth to relay server
-
--shutdown-timeout(default:5s)wait this long for open connections to finish when shutting down or reloading
-
--socket-fd(default:0)file descriptor of socket to listen on
-
--tls-cert(default: none)PEM certificate file for TLS
-
--tls-key(default: none)PEM key file for TLS
-
--versionshow the version number and exit
-
--wait-period(default:30s)wait this long for more batchable messages
-
--write-config(default: none)path to output a config file
Configuring message batching
The --batch-expr and --group-expr options are template strings used to
determine the way that messages are batched into summary emails and grouped
within those summary emails. They are Go
templates evaluated in the context of a
Go mail.Message. Two messages
whose expressions evaluate to the same string are treated as belonging to the
same group or batch.
Two functions are available in addition to the usual template functions:
-
match, which takes a regular expression and a string and returns the leftmost match of the pattern, e.g:{{match "\[\w+\]" (.Header.Get "Subject")}}will batch messages like "[bos] error in db" and "[bos] error in web" together, but "[nyc] error in db" separately.
-
replace, which takes a regular expression, a string, and a replacement, and returns the string with matches of the regular expression replaced by the replacement string, e.g.:{{replace "\[\w+\]" (.Header.Get "Subject") "*"}}will batch messages like "[bos] error in db" and "[nyc] error in db" together (treating them both as "[***] error in db"), but "[bos] error in web" separately.
Configuration examples
See the examples directory for code snippets for your favorite programming
language/logging framework. (If there's one that you'd like to see, feel free
to open an issue or submit a pull request.)
Deploying
For now, the best way to run failmail in production is via a tool like
supervisord, runit, or daemontools. Here's an example supervisord
configuration:
[program:failmail]
command=/usr/local/bin/failmail --relay="smtp.mycompany.example.com:25"
autorestart=true
autostart=true
stderr_logfile=/var/log/failmail.err
stdout_logfile=/var/log/failmail.out
Development
$ export GOPATH=...
$ go get -d github.com/mpapi/failmail
$ cd $GOPATH/src/github.com/mpapi/failmail
$ ...
$ go fmt
$ go build
$ go test
$ git commit && git push ...
Other helpful testing tools include the smtp-source and smtp-sink commands,
which are part of Postfix (and are in the Debian postfix package):
$ smtp-source -v -m 50 127.0.0.1:2525 # send 50 messages to failmail
The Python debugging SMTP server is also useful as an upstream server:
python -m smtpd -n -c DebuggingServer localhost:3025
Documentation
¶
Overview ¶
Implementations for receiving incoming email messages and placing them them on a sendable channel for batching/summarizing/processing.
Support for zero-downtime reloading.
A zero-downtime reload occurs roughly as follows:
- On receipt of SIGUSR1 or SIGTERM, the signal handler triggers graceful shutdown of message handling goroutines (waiting until messages in flight are committed to storage or summarized and sent).
- On shutdown, the listener returns file descriptor that should be passed to a new failmail process so that it can continue listening on the socket. Some system calls are made to ensure that that file descriptor (and no others) are in the right state for seamless inheritance by the child process.
- If necessary, `TryReload` is called with the file descriptor returned by the listener, which executes a new failmail process, passing it the same arguments it was invoked with, plus the file descriptor it got from the listener.
- The parent process exits, but the now detached child process continues, inheriting the listening socket and opening it using the file descriptor number passed on the command line.
Implementations for sending/relaying email messages, based around the `OutgoingMessage` interface.
Source Files
Directories