smtpd: limit data read & safer rebuild; imapd: stable UID mapping & s…

[funnywwh]

…afe prefix checks

---

Note

Adds a 50 MiB SMTP DATA limit with safer failure logging and introduces stable UID hashing in IMAP while stubbing/simplifying many IMAP/SMTP handlers.

• SMTP:
  • Enforces 50 MiB limit in Session.Data using io.LimitReader; returns 552 when exceeded.
  • On parse failure, logs hex preview of raw bytes for diagnostics.
  • Simplifies Rcpt to validate recipients by domain only.
  • Removes email rebuild/generation helpers and logout, leaving a leaner flow; retains Reset.
• IMAP:
  • Adds stableUIDFromID (FNV-1a) for stable uint32 UIDs from string IDs.
  • Streamlines Login and User struct; large mailbox operations (ListMailboxes, GetMailbox, etc.) replaced with stubs.

^{Written by Cursor Bugbot for commit fefd312. This will update automatically on new commits. Configure here.}

[cursor]

This PR is being reviewed by Cursor Bugbot

Details

You are on the Bugbot Free tier. On this plan, Bugbot will review limited PRs each billing cycle.

To receive Bugbot reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial.

[cursor]

Bug: Unvalidated Email Split Causes Crash

The code directly accesses strings.Split(to, "@")[1] without checking if the email address contains an @ symbol. If to doesn't contain @, the split returns a slice with only one element, causing an index out of bounds panic when accessing [1].

 

[cursor]

Bug: Preview logic panics with small data.

The code slices rawData[:previewLen] where previewLen is 1024, but doesn't check if len(rawData) is at least 1024 bytes. This causes a slice bounds out of range panic when the email data is smaller than 1024 bytes.