2 * git-imap-send - drops patches into an imap Drafts folder
3 * derived from isync/mbsync - mailbox synchronizer
5 * Copyright (C) 2000-2002 Michael R. Elkins <me@mutt.org>
6 * Copyright (C) 2002-2004 Oswald Buddenhagen <ossi@users.sf.net>
7 * Copyright (C) 2004 Theodore Y. Ts'o <tytso@mit.edu>
8 * Copyright (C) 2006 Mike McCormack
10 * This program is free software; you can redistribute it and/or modify
11 * it under the terms of the GNU General Public License as published by
12 * the Free Software Foundation; either version 2 of the License, or
13 * (at your option) any later version.
15 * This program is distributed in the hope that it will be useful,
16 * but WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 * GNU General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, see <http://www.gnu.org/licenses/>.
26 #include "credential.h"
28 #include "run-command.h"
29 #include "parse-options.h"
33 #ifdef USE_CURL_FOR_IMAP_SEND
37 #if defined(USE_CURL_FOR_IMAP_SEND)
38 /* Always default to curl if it's available. */
39 #define USE_CURL_DEFAULT 1
41 /* We don't have curl, so continue to use the historical implementation */
42 #define USE_CURL_DEFAULT 0
46 static int use_curl = USE_CURL_DEFAULT;
48 static const char * const imap_send_usage[] = { "git imap-send [-v] [-q] [--[no-]curl] < <mbox>", NULL };
50 static struct option imap_send_options[] = {
51 OPT__VERBOSITY(&verbosity),
52 OPT_BOOL(0, "curl", &use_curl, "use libcurl to communicate with the IMAP server"),
58 #define DRV_MSG_BAD -1
59 #define DRV_BOX_BAD -2
60 #define DRV_STORE_BAD -3
62 __attribute__((format (printf, 1, 2)))
63 static void imap_info(const char *, ...);
64 __attribute__((format (printf, 1, 2)))
65 static void imap_warn(const char *, ...);
67 static char *next_arg(char **);
69 __attribute__((format (printf, 3, 4)))
70 static int nfsnprintf(char *buf, int blen, const char *fmt, ...);
72 static int nfvasprintf(char **strp, const char *fmt, va_list ap)
77 len = vsnprintf(tmp, sizeof(tmp), fmt, ap);
79 die("Fatal: Out of memory");
80 if (len >= sizeof(tmp))
81 die("imap command overflow!");
82 *strp = xmemdupz(tmp, len);
86 struct imap_server_conf {
97 const char *auth_method;
100 static struct imap_server_conf server = {
111 NULL, /* auth_method */
120 struct imap_socket sock;
129 int uidnext; /* from SELECT responses */
130 unsigned caps, rcaps; /* CAPABILITY results */
132 int nexttag, num_in_progress, literal_pending;
133 struct imap_cmd *in_progress, **in_progress_append;
134 struct imap_buffer buf; /* this is BIG, so put it last */
138 /* currently open mailbox */
139 const char *name; /* foreign! maybe preset? */
146 int (*cont)(struct imap_store *ctx, struct imap_cmd *cmd, const char *prompt);
147 void (*done)(struct imap_store *ctx, struct imap_cmd *cmd, int response);
155 struct imap_cmd *next;
156 struct imap_cmd_cb cb;
161 #define CAP(cap) (imap->caps & (1 << (cap)))
172 static const char *cap_list[] = {
185 static int get_cmd_result(struct imap_store *ctx, struct imap_cmd *tcmd);
189 static void ssl_socket_perror(const char *func)
191 fprintf(stderr, "%s: %s\n", func, ERR_error_string(ERR_get_error(), NULL));
195 static void socket_perror(const char *func, struct imap_socket *sock, int ret)
199 int sslerr = SSL_get_error(sock->ssl, ret);
203 case SSL_ERROR_SYSCALL:
204 perror("SSL_connect");
207 ssl_socket_perror("SSL_connect");
216 fprintf(stderr, "%s: unexpected EOF\n", func);
221 static int ssl_socket_connect(struct imap_socket *sock, int use_tls_only, int verify)
223 fprintf(stderr, "SSL requested but SSL support not compiled in\n");
229 static int host_matches(const char *host, const char *pattern)
231 if (pattern[0] == '*' && pattern[1] == '.') {
233 if (!(host = strchr(host, '.')))
238 return *host && *pattern && !strcasecmp(host, pattern);
241 static int verify_hostname(X509 *cert, const char *hostname)
247 STACK_OF(GENERAL_NAME) *subj_alt_names;
249 /* try the DNS subjectAltNames */
251 if ((subj_alt_names = X509_get_ext_d2i(cert, NID_subject_alt_name, NULL, NULL))) {
252 int num_subj_alt_names = sk_GENERAL_NAME_num(subj_alt_names);
253 for (i = 0; !found && i < num_subj_alt_names; i++) {
254 GENERAL_NAME *subj_alt_name = sk_GENERAL_NAME_value(subj_alt_names, i);
255 if (subj_alt_name->type == GEN_DNS &&
256 strlen((const char *)subj_alt_name->d.ia5->data) == (size_t)subj_alt_name->d.ia5->length &&
257 host_matches(hostname, (const char *)(subj_alt_name->d.ia5->data)))
260 sk_GENERAL_NAME_pop_free(subj_alt_names, GENERAL_NAME_free);
265 /* try the common name */
266 if (!(subj = X509_get_subject_name(cert)))
267 return error("cannot get certificate subject");
268 if ((len = X509_NAME_get_text_by_NID(subj, NID_commonName, cname, sizeof(cname))) < 0)
269 return error("cannot get certificate common name");
270 if (strlen(cname) == (size_t)len && host_matches(hostname, cname))
272 return error("certificate owner '%s' does not match hostname '%s'",
276 static int ssl_socket_connect(struct imap_socket *sock, int use_tls_only, int verify)
278 #if (OPENSSL_VERSION_NUMBER >= 0x10000000L)
279 const SSL_METHOD *meth;
288 SSL_load_error_strings();
290 meth = SSLv23_method();
292 ssl_socket_perror("SSLv23_method");
296 ctx = SSL_CTX_new(meth);
298 ssl_socket_perror("SSL_CTX_new");
303 SSL_CTX_set_options(ctx, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3);
306 SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER, NULL);
308 if (!SSL_CTX_set_default_verify_paths(ctx)) {
309 ssl_socket_perror("SSL_CTX_set_default_verify_paths");
312 sock->ssl = SSL_new(ctx);
314 ssl_socket_perror("SSL_new");
317 if (!SSL_set_rfd(sock->ssl, sock->fd[0])) {
318 ssl_socket_perror("SSL_set_rfd");
321 if (!SSL_set_wfd(sock->ssl, sock->fd[1])) {
322 ssl_socket_perror("SSL_set_wfd");
326 #ifdef SSL_CTRL_SET_TLSEXT_HOSTNAME
329 * OpenSSL does not document this function, but the implementation
330 * returns 1 on success, 0 on failure after calling SSLerr().
332 ret = SSL_set_tlsext_host_name(sock->ssl, server.host);
334 warning("SSL_set_tlsext_host_name(%s) failed.", server.host);
337 ret = SSL_connect(sock->ssl);
339 socket_perror("SSL_connect", sock, ret);
344 /* make sure the hostname matches that of the certificate */
345 cert = SSL_get_peer_certificate(sock->ssl);
347 return error("unable to get peer certificate.");
348 if (verify_hostname(cert, server.host) < 0)
356 static int socket_read(struct imap_socket *sock, char *buf, int len)
361 n = SSL_read(sock->ssl, buf, len);
364 n = xread(sock->fd[0], buf, len);
366 socket_perror("read", sock, n);
369 sock->fd[0] = sock->fd[1] = -1;
374 static int socket_write(struct imap_socket *sock, const char *buf, int len)
379 n = SSL_write(sock->ssl, buf, len);
382 n = write_in_full(sock->fd[1], buf, len);
384 socket_perror("write", sock, n);
387 sock->fd[0] = sock->fd[1] = -1;
392 static void socket_shutdown(struct imap_socket *sock)
396 SSL_shutdown(sock->ssl);
404 /* simple line buffering */
405 static int buffer_gets(struct imap_buffer *b, char **s)
408 int start = b->offset;
413 /* make sure we have enough data to read the \r\n sequence */
414 if (b->offset + 1 >= b->bytes) {
416 /* shift down used bytes */
419 assert(start <= b->bytes);
420 n = b->bytes - start;
423 memmove(b->buf, b->buf + start, n);
429 n = socket_read(&b->sock, b->buf + b->bytes,
430 sizeof(b->buf) - b->bytes);
438 if (b->buf[b->offset] == '\r') {
439 assert(b->offset + 1 < b->bytes);
440 if (b->buf[b->offset + 1] == '\n') {
441 b->buf[b->offset] = 0; /* terminate the string */
442 b->offset += 2; /* next line */
454 static void imap_info(const char *msg, ...)
458 if (0 <= verbosity) {
466 static void imap_warn(const char *msg, ...)
470 if (-2 < verbosity) {
472 vfprintf(stderr, msg, va);
477 static char *next_arg(char **s)
483 while (isspace((unsigned char) **s))
492 *s = strchr(*s, '"');
495 while (**s && !isspace((unsigned char) **s))
507 static int nfsnprintf(char *buf, int blen, const char *fmt, ...)
513 if (blen <= 0 || (unsigned)(ret = vsnprintf(buf, blen, fmt, va)) >= (unsigned)blen)
514 BUG("buffer too small. Please report a bug.");
519 static struct imap_cmd *issue_imap_cmd(struct imap_store *ctx,
520 struct imap_cmd_cb *cb,
521 const char *fmt, va_list ap)
523 struct imap *imap = ctx->imap;
524 struct imap_cmd *cmd;
528 cmd = xmalloc(sizeof(struct imap_cmd));
529 nfvasprintf(&cmd->cmd, fmt, ap);
530 cmd->tag = ++imap->nexttag;
535 memset(&cmd->cb, 0, sizeof(cmd->cb));
537 while (imap->literal_pending)
538 get_cmd_result(ctx, NULL);
541 bufl = nfsnprintf(buf, sizeof(buf), "%d %s\r\n", cmd->tag, cmd->cmd);
543 bufl = nfsnprintf(buf, sizeof(buf), "%d %s{%d%s}\r\n",
544 cmd->tag, cmd->cmd, cmd->cb.dlen,
545 CAP(LITERALPLUS) ? "+" : "");
548 if (imap->num_in_progress)
549 printf("(%d in progress) ", imap->num_in_progress);
550 if (!starts_with(cmd->cmd, "LOGIN"))
551 printf(">>> %s", buf);
553 printf(">>> %d LOGIN <user> <pass>\n", cmd->tag);
555 if (socket_write(&imap->buf.sock, buf, bufl) != bufl) {
563 if (CAP(LITERALPLUS)) {
564 n = socket_write(&imap->buf.sock, cmd->cb.data, cmd->cb.dlen);
566 if (n != cmd->cb.dlen ||
567 socket_write(&imap->buf.sock, "\r\n", 2) != 2) {
574 imap->literal_pending = 1;
575 } else if (cmd->cb.cont)
576 imap->literal_pending = 1;
578 *imap->in_progress_append = cmd;
579 imap->in_progress_append = &cmd->next;
580 imap->num_in_progress++;
584 __attribute__((format (printf, 3, 4)))
585 static int imap_exec(struct imap_store *ctx, struct imap_cmd_cb *cb,
586 const char *fmt, ...)
589 struct imap_cmd *cmdp;
592 cmdp = issue_imap_cmd(ctx, cb, fmt, ap);
597 return get_cmd_result(ctx, cmdp);
600 __attribute__((format (printf, 3, 4)))
601 static int imap_exec_m(struct imap_store *ctx, struct imap_cmd_cb *cb,
602 const char *fmt, ...)
605 struct imap_cmd *cmdp;
608 cmdp = issue_imap_cmd(ctx, cb, fmt, ap);
611 return DRV_STORE_BAD;
613 switch (get_cmd_result(ctx, cmdp)) {
614 case RESP_BAD: return DRV_STORE_BAD;
615 case RESP_NO: return DRV_MSG_BAD;
616 default: return DRV_OK;
620 static int skip_imap_list_l(char **sp, int level)
625 while (isspace((unsigned char)*s))
627 if (level && *s == ')') {
634 if (skip_imap_list_l(&s, level + 1))
636 } else if (*s == '"') {
639 for (; *s != '"'; s++)
645 for (; *s && !isspace((unsigned char)*s); s++)
646 if (level && *s == ')')
662 static void skip_list(char **sp)
664 skip_imap_list_l(sp, 0);
667 static void parse_capability(struct imap *imap, char *cmd)
672 imap->caps = 0x80000000;
673 while ((arg = next_arg(&cmd)))
674 for (i = 0; i < ARRAY_SIZE(cap_list); i++)
675 if (!strcmp(cap_list[i], arg))
676 imap->caps |= 1 << i;
677 imap->rcaps = imap->caps;
680 static int parse_response_code(struct imap_store *ctx, struct imap_cmd_cb *cb,
683 struct imap *imap = ctx->imap;
687 return RESP_OK; /* no response code */
689 if (!(p = strchr(s, ']'))) {
690 fprintf(stderr, "IMAP error: malformed response code\n");
696 fprintf(stderr, "IMAP error: empty response code\n");
699 if (!strcmp("UIDVALIDITY", arg)) {
700 if (!(arg = next_arg(&s)) || !(ctx->uidvalidity = atoi(arg))) {
701 fprintf(stderr, "IMAP error: malformed UIDVALIDITY status\n");
704 } else if (!strcmp("UIDNEXT", arg)) {
705 if (!(arg = next_arg(&s)) || !(imap->uidnext = atoi(arg))) {
706 fprintf(stderr, "IMAP error: malformed NEXTUID status\n");
709 } else if (!strcmp("CAPABILITY", arg)) {
710 parse_capability(imap, s);
711 } else if (!strcmp("ALERT", arg)) {
712 /* RFC2060 says that these messages MUST be displayed
715 for (; isspace((unsigned char)*p); p++);
716 fprintf(stderr, "*** IMAP ALERT *** %s\n", p);
717 } else if (cb && cb->ctx && !strcmp("APPENDUID", arg)) {
718 if (!(arg = next_arg(&s)) || !(ctx->uidvalidity = atoi(arg)) ||
719 !(arg = next_arg(&s)) || !(*(int *)cb->ctx = atoi(arg))) {
720 fprintf(stderr, "IMAP error: malformed APPENDUID status\n");
727 static int get_cmd_result(struct imap_store *ctx, struct imap_cmd *tcmd)
729 struct imap *imap = ctx->imap;
730 struct imap_cmd *cmdp, **pcmdp;
732 const char *arg, *arg1;
733 int n, resp, resp2, tag;
736 if (buffer_gets(&imap->buf, &cmd))
739 arg = next_arg(&cmd);
741 fprintf(stderr, "IMAP error: empty response\n");
745 arg = next_arg(&cmd);
747 fprintf(stderr, "IMAP error: unable to parse untagged response\n");
751 if (!strcmp("NAMESPACE", arg)) {
752 /* rfc2342 NAMESPACE response. */
753 skip_list(&cmd); /* Personal mailboxes */
754 skip_list(&cmd); /* Others' mailboxes */
755 skip_list(&cmd); /* Shared mailboxes */
756 } else if (!strcmp("OK", arg) || !strcmp("BAD", arg) ||
757 !strcmp("NO", arg) || !strcmp("BYE", arg)) {
758 if ((resp = parse_response_code(ctx, NULL, cmd)) != RESP_OK)
760 } else if (!strcmp("CAPABILITY", arg)) {
761 parse_capability(imap, cmd);
762 } else if ((arg1 = next_arg(&cmd))) {
764 * Unhandled response-data with at least two words.
767 * NEEDSWORK: Previously this case handled '<num> EXISTS'
768 * and '<num> RECENT' but as a probably-unintended side
769 * effect it ignores other unrecognized two-word
770 * responses. imap-send doesn't ever try to read
771 * messages or mailboxes these days, so consider
772 * eliminating this case.
775 fprintf(stderr, "IMAP error: unable to parse untagged response\n");
778 } else if (!imap->in_progress) {
779 fprintf(stderr, "IMAP error: unexpected reply: %s %s\n", arg, cmd ? cmd : "");
781 } else if (*arg == '+') {
782 /* This can happen only with the last command underway, as
783 it enforces a round-trip. */
784 cmdp = (struct imap_cmd *)((char *)imap->in_progress_append -
785 offsetof(struct imap_cmd, next));
787 n = socket_write(&imap->buf.sock, cmdp->cb.data, cmdp->cb.dlen);
788 FREE_AND_NULL(cmdp->cb.data);
789 if (n != (int)cmdp->cb.dlen)
791 } else if (cmdp->cb.cont) {
792 if (cmdp->cb.cont(ctx, cmdp, cmd))
795 fprintf(stderr, "IMAP error: unexpected command continuation request\n");
798 if (socket_write(&imap->buf.sock, "\r\n", 2) != 2)
801 imap->literal_pending = 0;
806 for (pcmdp = &imap->in_progress; (cmdp = *pcmdp); pcmdp = &cmdp->next)
807 if (cmdp->tag == tag)
809 fprintf(stderr, "IMAP error: unexpected tag %s\n", arg);
812 if (!(*pcmdp = cmdp->next))
813 imap->in_progress_append = pcmdp;
814 imap->num_in_progress--;
815 if (cmdp->cb.cont || cmdp->cb.data)
816 imap->literal_pending = 0;
817 arg = next_arg(&cmd);
820 if (!strcmp("OK", arg))
823 if (!strcmp("NO", arg))
825 else /*if (!strcmp("BAD", arg))*/
827 fprintf(stderr, "IMAP command '%s' returned response (%s) - %s\n",
828 !starts_with(cmdp->cmd, "LOGIN") ?
829 cmdp->cmd : "LOGIN <user> <pass>",
830 arg, cmd ? cmd : "");
832 if ((resp2 = parse_response_code(ctx, &cmdp->cb, cmd)) > resp)
835 cmdp->cb.done(ctx, cmdp, resp);
839 if (!tcmd || tcmd == cmdp)
846 static void imap_close_server(struct imap_store *ictx)
848 struct imap *imap = ictx->imap;
850 if (imap->buf.sock.fd[0] != -1) {
851 imap_exec(ictx, NULL, "LOGOUT");
852 socket_shutdown(&imap->buf.sock);
857 static void imap_close_store(struct imap_store *ctx)
859 imap_close_server(ctx);
866 * hexchar() and cram() functions are based on the code from the isync
867 * project (http://isync.sf.net/).
869 static char hexchar(unsigned int b)
871 return b < 10 ? '0' + b : 'a' + (b - 10);
874 #define ENCODED_SIZE(n) (4 * DIV_ROUND_UP((n), 3))
875 static char *cram(const char *challenge_64, const char *user, const char *pass)
877 int i, resp_len, encoded_len, decoded_len;
878 unsigned char hash[16];
880 char *response, *response_64, *challenge;
883 * length of challenge_64 (i.e. base-64 encoded string) is a good
884 * enough upper bound for challenge (decoded result).
886 encoded_len = strlen(challenge_64);
887 challenge = xmalloc(encoded_len);
888 decoded_len = EVP_DecodeBlock((unsigned char *)challenge,
889 (unsigned char *)challenge_64, encoded_len);
891 die("invalid challenge %s", challenge_64);
892 if (!HMAC(EVP_md5(), pass, strlen(pass), (unsigned char *)challenge, decoded_len, hash, NULL))
896 for (i = 0; i < 16; i++) {
897 hex[2 * i] = hexchar((hash[i] >> 4) & 0xf);
898 hex[2 * i + 1] = hexchar(hash[i] & 0xf);
901 /* response: "<user> <digest in hex>" */
902 response = xstrfmt("%s %s", user, hex);
903 resp_len = strlen(response);
905 response_64 = xmallocz(ENCODED_SIZE(resp_len));
906 encoded_len = EVP_EncodeBlock((unsigned char *)response_64,
907 (unsigned char *)response, resp_len);
909 die("EVP_EncodeBlock error");
910 return (char *)response_64;
915 static char *cram(const char *challenge_64, const char *user, const char *pass)
917 die("If you want to use CRAM-MD5 authenticate method, "
918 "you have to build git-imap-send with OpenSSL library.");
923 static int auth_cram_md5(struct imap_store *ctx, struct imap_cmd *cmd, const char *prompt)
928 response = cram(prompt, server.user, server.pass);
930 ret = socket_write(&ctx->imap->buf.sock, response, strlen(response));
931 if (ret != strlen(response))
932 return error("IMAP error: sending response failed");
939 static void server_fill_credential(struct imap_server_conf *srvc, struct credential *cred)
941 if (srvc->user && srvc->pass)
944 cred->protocol = xstrdup(srvc->use_ssl ? "imaps" : "imap");
945 cred->host = xstrdup(srvc->host);
947 cred->username = xstrdup_or_null(srvc->user);
948 cred->password = xstrdup_or_null(srvc->pass);
950 credential_fill(cred);
953 srvc->user = xstrdup(cred->username);
955 srvc->pass = xstrdup(cred->password);
958 static struct imap_store *imap_open_store(struct imap_server_conf *srvc, const char *folder)
960 struct credential cred = CREDENTIAL_INIT;
961 struct imap_store *ctx;
966 ctx = xcalloc(1, sizeof(*ctx));
968 ctx->imap = imap = xcalloc(1, sizeof(*imap));
969 imap->buf.sock.fd[0] = imap->buf.sock.fd[1] = -1;
970 imap->in_progress_append = &imap->in_progress;
972 /* open connection to IMAP server */
975 struct child_process tunnel = CHILD_PROCESS_INIT;
977 imap_info("Starting tunnel '%s'... ", srvc->tunnel);
979 strvec_push(&tunnel.args, srvc->tunnel);
980 tunnel.use_shell = 1;
983 if (start_command(&tunnel))
984 die("cannot start proxy %s", srvc->tunnel);
986 imap->buf.sock.fd[0] = tunnel.out;
987 imap->buf.sock.fd[1] = tunnel.in;
992 struct addrinfo hints, *ai0, *ai;
996 xsnprintf(portstr, sizeof(portstr), "%d", srvc->port);
998 memset(&hints, 0, sizeof(hints));
999 hints.ai_socktype = SOCK_STREAM;
1000 hints.ai_protocol = IPPROTO_TCP;
1002 imap_info("Resolving %s... ", srvc->host);
1003 gai = getaddrinfo(srvc->host, portstr, &hints, &ai);
1005 fprintf(stderr, "getaddrinfo: %s\n", gai_strerror(gai));
1010 for (ai0 = ai; ai; ai = ai->ai_next) {
1011 char addr[NI_MAXHOST];
1013 s = socket(ai->ai_family, ai->ai_socktype,
1018 getnameinfo(ai->ai_addr, ai->ai_addrlen, addr,
1019 sizeof(addr), NULL, 0, NI_NUMERICHOST);
1020 imap_info("Connecting to [%s]:%s... ", addr, portstr);
1022 if (connect(s, ai->ai_addr, ai->ai_addrlen) < 0) {
1034 struct sockaddr_in addr;
1036 memset(&addr, 0, sizeof(addr));
1037 addr.sin_port = htons(srvc->port);
1038 addr.sin_family = AF_INET;
1040 imap_info("Resolving %s... ", srvc->host);
1041 he = gethostbyname(srvc->host);
1043 perror("gethostbyname");
1048 addr.sin_addr.s_addr = *((int *) he->h_addr_list[0]);
1050 s = socket(PF_INET, SOCK_STREAM, 0);
1052 imap_info("Connecting to %s:%hu... ", inet_ntoa(addr.sin_addr), ntohs(addr.sin_port));
1053 if (connect(s, (struct sockaddr *)&addr, sizeof(addr))) {
1060 fputs("Error: unable to connect to server.\n", stderr);
1064 imap->buf.sock.fd[0] = s;
1065 imap->buf.sock.fd[1] = dup(s);
1067 if (srvc->use_ssl &&
1068 ssl_socket_connect(&imap->buf.sock, 0, srvc->ssl_verify)) {
1075 /* read the greeting string */
1076 if (buffer_gets(&imap->buf, &rsp)) {
1077 fprintf(stderr, "IMAP error: no greeting response\n");
1080 arg = next_arg(&rsp);
1081 if (!arg || *arg != '*' || (arg = next_arg(&rsp)) == NULL) {
1082 fprintf(stderr, "IMAP error: invalid greeting response\n");
1086 if (!strcmp("PREAUTH", arg))
1088 else if (strcmp("OK", arg) != 0) {
1089 fprintf(stderr, "IMAP error: unknown greeting response\n");
1092 parse_response_code(ctx, NULL, rsp);
1093 if (!imap->caps && imap_exec(ctx, NULL, "CAPABILITY") != RESP_OK)
1098 if (!srvc->use_ssl && CAP(STARTTLS)) {
1099 if (imap_exec(ctx, NULL, "STARTTLS") != RESP_OK)
1101 if (ssl_socket_connect(&imap->buf.sock, 1,
1104 /* capabilities may have changed, so get the new capabilities */
1105 if (imap_exec(ctx, NULL, "CAPABILITY") != RESP_OK)
1109 imap_info("Logging in...\n");
1110 server_fill_credential(srvc, &cred);
1112 if (srvc->auth_method) {
1113 struct imap_cmd_cb cb;
1115 if (!strcmp(srvc->auth_method, "CRAM-MD5")) {
1116 if (!CAP(AUTH_CRAM_MD5)) {
1117 fprintf(stderr, "You specified "
1118 "CRAM-MD5 as authentication method, "
1119 "but %s doesn't support it.\n", srvc->host);
1124 memset(&cb, 0, sizeof(cb));
1125 cb.cont = auth_cram_md5;
1126 if (imap_exec(ctx, &cb, "AUTHENTICATE CRAM-MD5") != RESP_OK) {
1127 fprintf(stderr, "IMAP error: AUTHENTICATE CRAM-MD5 failed\n");
1131 fprintf(stderr, "Unknown authentication method:%s\n", srvc->host);
1136 fprintf(stderr, "Skipping account %s@%s, server forbids LOGIN\n",
1137 srvc->user, srvc->host);
1140 if (!imap->buf.sock.ssl)
1141 imap_warn("*** IMAP Warning *** Password is being "
1142 "sent in the clear\n");
1143 if (imap_exec(ctx, NULL, "LOGIN \"%s\" \"%s\"", srvc->user, srvc->pass) != RESP_OK) {
1144 fprintf(stderr, "IMAP error: LOGIN failed\n");
1151 credential_approve(&cred);
1152 credential_clear(&cred);
1154 /* check the target mailbox exists */
1156 switch (imap_exec(ctx, NULL, "EXAMINE \"%s\"", ctx->name)) {
1161 fprintf(stderr, "IMAP error: could not check mailbox\n");
1164 if (imap_exec(ctx, NULL, "CREATE \"%s\"", ctx->name) == RESP_OK) {
1165 imap_info("Created missing mailbox\n");
1167 fprintf(stderr, "IMAP error: could not create missing mailbox\n");
1178 credential_reject(&cred);
1179 credential_clear(&cred);
1182 imap_close_store(ctx);
1187 * Insert CR characters as necessary in *msg to ensure that every LF
1188 * character in *msg is preceded by a CR.
1190 static void lf_to_crlf(struct strbuf *msg)
1196 /* First pass: tally, in j, the size of the new_msg string: */
1197 for (i = j = 0, lastc = '\0'; i < msg->len; i++) {
1198 if (msg->buf[i] == '\n' && lastc != '\r')
1199 j++; /* a CR will need to be added here */
1200 lastc = msg->buf[i];
1204 new_msg = xmallocz(j);
1207 * Second pass: write the new_msg string. Note that this loop is
1208 * otherwise identical to the first pass.
1210 for (i = j = 0, lastc = '\0'; i < msg->len; i++) {
1211 if (msg->buf[i] == '\n' && lastc != '\r')
1212 new_msg[j++] = '\r';
1213 lastc = new_msg[j++] = msg->buf[i];
1215 strbuf_attach(msg, new_msg, j, j + 1);
1219 * Store msg to IMAP. Also detach and free the data from msg->data,
1220 * leaving msg->data empty.
1222 static int imap_store_msg(struct imap_store *ctx, struct strbuf *msg)
1224 struct imap *imap = ctx->imap;
1225 struct imap_cmd_cb cb;
1226 const char *prefix, *box;
1230 memset(&cb, 0, sizeof(cb));
1233 cb.data = strbuf_detach(msg, NULL);
1236 prefix = !strcmp(box, "INBOX") ? "" : ctx->prefix;
1237 ret = imap_exec_m(ctx, &cb, "APPEND \"%s%s\" ", prefix, box);
1238 imap->caps = imap->rcaps;
1245 static void wrap_in_html(struct strbuf *msg)
1247 struct strbuf buf = STRBUF_INIT;
1248 static char *content_type = "Content-Type: text/html;\n";
1249 static char *pre_open = "<pre>\n";
1250 static char *pre_close = "</pre>\n";
1251 const char *body = strstr(msg->buf, "\n\n");
1254 return; /* Headers but no body; no wrapping needed */
1258 strbuf_add(&buf, msg->buf, body - msg->buf - 1);
1259 strbuf_addstr(&buf, content_type);
1260 strbuf_addch(&buf, '\n');
1261 strbuf_addstr(&buf, pre_open);
1262 strbuf_addstr_xml_quoted(&buf, body);
1263 strbuf_addstr(&buf, pre_close);
1265 strbuf_release(msg);
1269 #define CHUNKSIZE 0x1000
1271 static int read_message(FILE *f, struct strbuf *all_msgs)
1274 if (strbuf_fread(all_msgs, CHUNKSIZE, f) <= 0)
1278 return ferror(f) ? -1 : 0;
1281 static int count_messages(struct strbuf *all_msgs)
1284 char *p = all_msgs->buf;
1287 if (starts_with(p, "From ")) {
1288 p = strstr(p+5, "\nFrom: ");
1290 p = strstr(p+7, "\nDate: ");
1292 p = strstr(p+7, "\nSubject: ");
1297 p = strstr(p+5, "\nFrom ");
1306 * Copy the next message from all_msgs, starting at offset *ofs, to
1307 * msg. Update *ofs to the start of the following message. Return
1308 * true iff a message was successfully copied.
1310 static int split_msg(struct strbuf *all_msgs, struct strbuf *msg, int *ofs)
1315 if (*ofs >= all_msgs->len)
1318 data = &all_msgs->buf[*ofs];
1319 len = all_msgs->len - *ofs;
1321 if (len < 5 || !starts_with(data, "From "))
1324 p = strchr(data, '\n');
1332 p = strstr(data, "\nFrom ");
1336 strbuf_add(msg, data, len);
1341 static int git_imap_config(const char *var, const char *val, void *cb)
1344 if (!strcmp("imap.sslverify", var))
1345 server.ssl_verify = git_config_bool(var, val);
1346 else if (!strcmp("imap.preformattedhtml", var))
1347 server.use_html = git_config_bool(var, val);
1348 else if (!strcmp("imap.folder", var))
1349 return git_config_string(&server.folder, var, val);
1350 else if (!strcmp("imap.user", var))
1351 return git_config_string(&server.user, var, val);
1352 else if (!strcmp("imap.pass", var))
1353 return git_config_string(&server.pass, var, val);
1354 else if (!strcmp("imap.tunnel", var))
1355 return git_config_string(&server.tunnel, var, val);
1356 else if (!strcmp("imap.authmethod", var))
1357 return git_config_string(&server.auth_method, var, val);
1358 else if (!strcmp("imap.port", var))
1359 server.port = git_config_int(var, val);
1360 else if (!strcmp("imap.host", var)) {
1362 git_die_config("imap.host", "Missing value for 'imap.host'");
1364 if (starts_with(val, "imap:"))
1366 else if (starts_with(val, "imaps:")) {
1370 if (starts_with(val, "//"))
1372 server.host = xstrdup(val);
1375 return git_default_config(var, val, cb);
1380 static int append_msgs_to_imap(struct imap_server_conf *server,
1381 struct strbuf* all_msgs, int total)
1383 struct strbuf msg = STRBUF_INIT;
1384 struct imap_store *ctx = NULL;
1389 ctx = imap_open_store(server, server->folder);
1391 fprintf(stderr, "failed to open store\n");
1394 ctx->name = server->folder;
1396 fprintf(stderr, "sending %d message%s\n", total, (total != 1) ? "s" : "");
1398 unsigned percent = n * 100 / total;
1400 fprintf(stderr, "%4u%% (%d/%d) done\r", percent, n, total);
1402 if (!split_msg(all_msgs, &msg, &ofs))
1404 if (server->use_html)
1406 r = imap_store_msg(ctx, &msg);
1411 fprintf(stderr, "\n");
1413 imap_close_store(ctx);
1418 #ifdef USE_CURL_FOR_IMAP_SEND
1419 static CURL *setup_curl(struct imap_server_conf *srvc, struct credential *cred)
1422 struct strbuf path = STRBUF_INIT;
1423 char *uri_encoded_folder;
1425 if (curl_global_init(CURL_GLOBAL_ALL) != CURLE_OK)
1426 die("curl_global_init failed");
1428 curl = curl_easy_init();
1431 die("curl_easy_init failed");
1433 server_fill_credential(&server, cred);
1434 curl_easy_setopt(curl, CURLOPT_USERNAME, server.user);
1435 curl_easy_setopt(curl, CURLOPT_PASSWORD, server.pass);
1437 strbuf_addstr(&path, server.use_ssl ? "imaps://" : "imap://");
1438 strbuf_addstr(&path, server.host);
1439 if (!path.len || path.buf[path.len - 1] != '/')
1440 strbuf_addch(&path, '/');
1442 uri_encoded_folder = curl_easy_escape(curl, server.folder, 0);
1443 if (!uri_encoded_folder)
1444 die("failed to encode server folder");
1445 strbuf_addstr(&path, uri_encoded_folder);
1446 curl_free(uri_encoded_folder);
1448 curl_easy_setopt(curl, CURLOPT_URL, path.buf);
1449 strbuf_release(&path);
1450 curl_easy_setopt(curl, CURLOPT_PORT, server.port);
1452 if (server.auth_method) {
1453 #if LIBCURL_VERSION_NUM < 0x072200
1454 warning("No LOGIN_OPTIONS support in this cURL version");
1456 struct strbuf auth = STRBUF_INIT;
1457 strbuf_addstr(&auth, "AUTH=");
1458 strbuf_addstr(&auth, server.auth_method);
1459 curl_easy_setopt(curl, CURLOPT_LOGIN_OPTIONS, auth.buf);
1460 strbuf_release(&auth);
1464 if (!server.use_ssl)
1465 curl_easy_setopt(curl, CURLOPT_USE_SSL, (long)CURLUSESSL_TRY);
1467 curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, server.ssl_verify);
1468 curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, server.ssl_verify);
1470 curl_easy_setopt(curl, CURLOPT_READFUNCTION, fread_buffer);
1472 curl_easy_setopt(curl, CURLOPT_UPLOAD, 1L);
1474 if (0 < verbosity || getenv("GIT_CURL_VERBOSE"))
1475 http_trace_curl_no_data();
1476 setup_curl_trace(curl);
1481 static int curl_append_msgs_to_imap(struct imap_server_conf *server,
1482 struct strbuf* all_msgs, int total)
1486 struct buffer msgbuf = { STRBUF_INIT, 0 };
1488 CURLcode res = CURLE_OK;
1489 struct credential cred = CREDENTIAL_INIT;
1491 curl = setup_curl(server, &cred);
1492 curl_easy_setopt(curl, CURLOPT_READDATA, &msgbuf);
1494 fprintf(stderr, "sending %d message%s\n", total, (total != 1) ? "s" : "");
1496 unsigned percent = n * 100 / total;
1499 fprintf(stderr, "%4u%% (%d/%d) done\r", percent, n, total);
1501 prev_len = msgbuf.buf.len;
1502 if (!split_msg(all_msgs, &msgbuf.buf, &ofs))
1504 if (server->use_html)
1505 wrap_in_html(&msgbuf.buf);
1506 lf_to_crlf(&msgbuf.buf);
1508 curl_easy_setopt(curl, CURLOPT_INFILESIZE_LARGE,
1509 (curl_off_t)(msgbuf.buf.len-prev_len));
1511 res = curl_easy_perform(curl);
1513 if(res != CURLE_OK) {
1514 fprintf(stderr, "curl_easy_perform() failed: %s\n",
1515 curl_easy_strerror(res));
1521 fprintf(stderr, "\n");
1523 curl_easy_cleanup(curl);
1524 curl_global_cleanup();
1526 if (cred.username) {
1527 if (res == CURLE_OK)
1528 credential_approve(&cred);
1529 #if LIBCURL_VERSION_NUM >= 0x070d01
1530 else if (res == CURLE_LOGIN_DENIED)
1534 credential_reject(&cred);
1537 credential_clear(&cred);
1539 return res != CURLE_OK;
1543 int cmd_main(int argc, const char **argv)
1545 struct strbuf all_msgs = STRBUF_INIT;
1549 setup_git_directory_gently(&nongit_ok);
1550 git_config(git_imap_config, NULL);
1552 argc = parse_options(argc, (const char **)argv, "", imap_send_options, imap_send_usage, 0);
1555 usage_with_options(imap_send_usage, imap_send_options);
1557 #ifndef USE_CURL_FOR_IMAP_SEND
1559 warning("--curl not supported in this build");
1562 #elif defined(NO_OPENSSL)
1564 warning("--no-curl not supported in this build");
1570 server.port = server.use_ssl ? 993 : 143;
1572 if (!server.folder) {
1573 fprintf(stderr, "no imap store specified\n");
1577 if (!server.tunnel) {
1578 fprintf(stderr, "no imap host specified\n");
1581 server.host = "tunnel";
1584 /* read the messages */
1585 if (read_message(stdin, &all_msgs)) {
1586 fprintf(stderr, "error reading input\n");
1590 if (all_msgs.len == 0) {
1591 fprintf(stderr, "nothing to send\n");
1595 total = count_messages(&all_msgs);
1597 fprintf(stderr, "no messages to send\n");
1601 /* write it to the imap server */
1604 return append_msgs_to_imap(&server, &all_msgs, total);
1606 #ifdef USE_CURL_FOR_IMAP_SEND
1608 return curl_append_msgs_to_imap(&server, &all_msgs, total);
1611 return append_msgs_to_imap(&server, &all_msgs, total);