Merge branch 'jk/ewah-bounds-check'
[git] / imap-send.c
1 /*
2  * git-imap-send - drops patches into an imap Drafts folder
3  *                 derived from isync/mbsync - mailbox synchronizer
4  *
5  * Copyright (C) 2000-2002 Michael R. Elkins <me@mutt.org>
6  * Copyright (C) 2002-2004 Oswald Buddenhagen <ossi@users.sf.net>
7  * Copyright (C) 2004 Theodore Y. Ts'o <tytso@mit.edu>
8  * Copyright (C) 2006 Mike McCormack
9  *
10  *  This program is free software; you can redistribute it and/or modify
11  *  it under the terms of the GNU General Public License as published by
12  *  the Free Software Foundation; either version 2 of the License, or
13  *  (at your option) any later version.
14  *
15  *  This program is distributed in the hope that it will be useful,
16  *  but WITHOUT ANY WARRANTY; without even the implied warranty of
17  *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
18  *  GNU General Public License for more details.
19  *
20  *  You should have received a copy of the GNU General Public License
21  *  along with this program; if not, see <http://www.gnu.org/licenses/>.
22  */
23
24 #include "cache.h"
25 #include "config.h"
26 #include "credential.h"
27 #include "exec-cmd.h"
28 #include "run-command.h"
29 #include "parse-options.h"
30 #ifdef NO_OPENSSL
31 typedef void *SSL;
32 #endif
33 #ifdef USE_CURL_FOR_IMAP_SEND
34 #include "http.h"
35 #endif
36
37 #if defined(USE_CURL_FOR_IMAP_SEND)
38 /* Always default to curl if it's available. */
39 #define USE_CURL_DEFAULT 1
40 #else
41 /* We don't have curl, so continue to use the historical implementation */
42 #define USE_CURL_DEFAULT 0
43 #endif
44
45 static int verbosity;
46 static int use_curl = USE_CURL_DEFAULT;
47
48 static const char * const imap_send_usage[] = { "git imap-send [-v] [-q] [--[no-]curl] < <mbox>", NULL };
49
50 static struct option imap_send_options[] = {
51         OPT__VERBOSITY(&verbosity),
52         OPT_BOOL(0, "curl", &use_curl, "use libcurl to communicate with the IMAP server"),
53         OPT_END()
54 };
55
56 #undef DRV_OK
57 #define DRV_OK          0
58 #define DRV_MSG_BAD     -1
59 #define DRV_BOX_BAD     -2
60 #define DRV_STORE_BAD   -3
61
62 __attribute__((format (printf, 1, 2)))
63 static void imap_info(const char *, ...);
64 __attribute__((format (printf, 1, 2)))
65 static void imap_warn(const char *, ...);
66
67 static char *next_arg(char **);
68
69 __attribute__((format (printf, 3, 4)))
70 static int nfsnprintf(char *buf, int blen, const char *fmt, ...);
71
72 static int nfvasprintf(char **strp, const char *fmt, va_list ap)
73 {
74         int len;
75         char tmp[8192];
76
77         len = vsnprintf(tmp, sizeof(tmp), fmt, ap);
78         if (len < 0)
79                 die("Fatal: Out of memory");
80         if (len >= sizeof(tmp))
81                 die("imap command overflow!");
82         *strp = xmemdupz(tmp, len);
83         return len;
84 }
85
86 struct imap_server_conf {
87         char *name;
88         char *tunnel;
89         char *host;
90         int port;
91         char *folder;
92         char *user;
93         char *pass;
94         int use_ssl;
95         int ssl_verify;
96         int use_html;
97         char *auth_method;
98 };
99
100 static struct imap_server_conf server = {
101         NULL,   /* name */
102         NULL,   /* tunnel */
103         NULL,   /* host */
104         0,      /* port */
105         NULL,   /* folder */
106         NULL,   /* user */
107         NULL,   /* pass */
108         0,      /* use_ssl */
109         1,      /* ssl_verify */
110         0,      /* use_html */
111         NULL,   /* auth_method */
112 };
113
114 struct imap_socket {
115         int fd[2];
116         SSL *ssl;
117 };
118
119 struct imap_buffer {
120         struct imap_socket sock;
121         int bytes;
122         int offset;
123         char buf[1024];
124 };
125
126 struct imap_cmd;
127
128 struct imap {
129         int uidnext; /* from SELECT responses */
130         unsigned caps, rcaps; /* CAPABILITY results */
131         /* command queue */
132         int nexttag, num_in_progress, literal_pending;
133         struct imap_cmd *in_progress, **in_progress_append;
134         struct imap_buffer buf; /* this is BIG, so put it last */
135 };
136
137 struct imap_store {
138         /* currently open mailbox */
139         const char *name; /* foreign! maybe preset? */
140         int uidvalidity;
141         struct imap *imap;
142         const char *prefix;
143 };
144
145 struct imap_cmd_cb {
146         int (*cont)(struct imap_store *ctx, struct imap_cmd *cmd, const char *prompt);
147         void (*done)(struct imap_store *ctx, struct imap_cmd *cmd, int response);
148         void *ctx;
149         char *data;
150         int dlen;
151         int uid;
152 };
153
154 struct imap_cmd {
155         struct imap_cmd *next;
156         struct imap_cmd_cb cb;
157         char *cmd;
158         int tag;
159 };
160
161 #define CAP(cap) (imap->caps & (1 << (cap)))
162
163 enum CAPABILITY {
164         NOLOGIN = 0,
165         UIDPLUS,
166         LITERALPLUS,
167         NAMESPACE,
168         STARTTLS,
169         AUTH_CRAM_MD5
170 };
171
172 static const char *cap_list[] = {
173         "LOGINDISABLED",
174         "UIDPLUS",
175         "LITERAL+",
176         "NAMESPACE",
177         "STARTTLS",
178         "AUTH=CRAM-MD5",
179 };
180
181 #define RESP_OK    0
182 #define RESP_NO    1
183 #define RESP_BAD   2
184
185 static int get_cmd_result(struct imap_store *ctx, struct imap_cmd *tcmd);
186
187
188 #ifndef NO_OPENSSL
189 static void ssl_socket_perror(const char *func)
190 {
191         fprintf(stderr, "%s: %s\n", func, ERR_error_string(ERR_get_error(), NULL));
192 }
193 #endif
194
195 static void socket_perror(const char *func, struct imap_socket *sock, int ret)
196 {
197 #ifndef NO_OPENSSL
198         if (sock->ssl) {
199                 int sslerr = SSL_get_error(sock->ssl, ret);
200                 switch (sslerr) {
201                 case SSL_ERROR_NONE:
202                         break;
203                 case SSL_ERROR_SYSCALL:
204                         perror("SSL_connect");
205                         break;
206                 default:
207                         ssl_socket_perror("SSL_connect");
208                         break;
209                 }
210         } else
211 #endif
212         {
213                 if (ret < 0)
214                         perror(func);
215                 else
216                         fprintf(stderr, "%s: unexpected EOF\n", func);
217         }
218 }
219
220 #ifdef NO_OPENSSL
221 static int ssl_socket_connect(struct imap_socket *sock, int use_tls_only, int verify)
222 {
223         fprintf(stderr, "SSL requested but SSL support not compiled in\n");
224         return -1;
225 }
226
227 #else
228
229 static int host_matches(const char *host, const char *pattern)
230 {
231         if (pattern[0] == '*' && pattern[1] == '.') {
232                 pattern += 2;
233                 if (!(host = strchr(host, '.')))
234                         return 0;
235                 host++;
236         }
237
238         return *host && *pattern && !strcasecmp(host, pattern);
239 }
240
241 static int verify_hostname(X509 *cert, const char *hostname)
242 {
243         int len;
244         X509_NAME *subj;
245         char cname[1000];
246         int i, found;
247         STACK_OF(GENERAL_NAME) *subj_alt_names;
248
249         /* try the DNS subjectAltNames */
250         found = 0;
251         if ((subj_alt_names = X509_get_ext_d2i(cert, NID_subject_alt_name, NULL, NULL))) {
252                 int num_subj_alt_names = sk_GENERAL_NAME_num(subj_alt_names);
253                 for (i = 0; !found && i < num_subj_alt_names; i++) {
254                         GENERAL_NAME *subj_alt_name = sk_GENERAL_NAME_value(subj_alt_names, i);
255                         if (subj_alt_name->type == GEN_DNS &&
256                             strlen((const char *)subj_alt_name->d.ia5->data) == (size_t)subj_alt_name->d.ia5->length &&
257                             host_matches(hostname, (const char *)(subj_alt_name->d.ia5->data)))
258                                 found = 1;
259                 }
260                 sk_GENERAL_NAME_pop_free(subj_alt_names, GENERAL_NAME_free);
261         }
262         if (found)
263                 return 0;
264
265         /* try the common name */
266         if (!(subj = X509_get_subject_name(cert)))
267                 return error("cannot get certificate subject");
268         if ((len = X509_NAME_get_text_by_NID(subj, NID_commonName, cname, sizeof(cname))) < 0)
269                 return error("cannot get certificate common name");
270         if (strlen(cname) == (size_t)len && host_matches(hostname, cname))
271                 return 0;
272         return error("certificate owner '%s' does not match hostname '%s'",
273                      cname, hostname);
274 }
275
276 static int ssl_socket_connect(struct imap_socket *sock, int use_tls_only, int verify)
277 {
278 #if (OPENSSL_VERSION_NUMBER >= 0x10000000L)
279         const SSL_METHOD *meth;
280 #else
281         SSL_METHOD *meth;
282 #endif
283         SSL_CTX *ctx;
284         int ret;
285         X509 *cert;
286
287         SSL_library_init();
288         SSL_load_error_strings();
289
290         meth = SSLv23_method();
291         if (!meth) {
292                 ssl_socket_perror("SSLv23_method");
293                 return -1;
294         }
295
296         ctx = SSL_CTX_new(meth);
297         if (!ctx) {
298                 ssl_socket_perror("SSL_CTX_new");
299                 return -1;
300         }
301
302         if (use_tls_only)
303                 SSL_CTX_set_options(ctx, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3);
304
305         if (verify)
306                 SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER, NULL);
307
308         if (!SSL_CTX_set_default_verify_paths(ctx)) {
309                 ssl_socket_perror("SSL_CTX_set_default_verify_paths");
310                 return -1;
311         }
312         sock->ssl = SSL_new(ctx);
313         if (!sock->ssl) {
314                 ssl_socket_perror("SSL_new");
315                 return -1;
316         }
317         if (!SSL_set_rfd(sock->ssl, sock->fd[0])) {
318                 ssl_socket_perror("SSL_set_rfd");
319                 return -1;
320         }
321         if (!SSL_set_wfd(sock->ssl, sock->fd[1])) {
322                 ssl_socket_perror("SSL_set_wfd");
323                 return -1;
324         }
325
326 #ifdef SSL_CTRL_SET_TLSEXT_HOSTNAME
327         /*
328          * SNI (RFC4366)
329          * OpenSSL does not document this function, but the implementation
330          * returns 1 on success, 0 on failure after calling SSLerr().
331          */
332         ret = SSL_set_tlsext_host_name(sock->ssl, server.host);
333         if (ret != 1)
334                 warning("SSL_set_tlsext_host_name(%s) failed.", server.host);
335 #endif
336
337         ret = SSL_connect(sock->ssl);
338         if (ret <= 0) {
339                 socket_perror("SSL_connect", sock, ret);
340                 return -1;
341         }
342
343         if (verify) {
344                 /* make sure the hostname matches that of the certificate */
345                 cert = SSL_get_peer_certificate(sock->ssl);
346                 if (!cert)
347                         return error("unable to get peer certificate.");
348                 if (verify_hostname(cert, server.host) < 0)
349                         return -1;
350         }
351
352         return 0;
353 }
354 #endif
355
356 static int socket_read(struct imap_socket *sock, char *buf, int len)
357 {
358         ssize_t n;
359 #ifndef NO_OPENSSL
360         if (sock->ssl)
361                 n = SSL_read(sock->ssl, buf, len);
362         else
363 #endif
364                 n = xread(sock->fd[0], buf, len);
365         if (n <= 0) {
366                 socket_perror("read", sock, n);
367                 close(sock->fd[0]);
368                 close(sock->fd[1]);
369                 sock->fd[0] = sock->fd[1] = -1;
370         }
371         return n;
372 }
373
374 static int socket_write(struct imap_socket *sock, const char *buf, int len)
375 {
376         int n;
377 #ifndef NO_OPENSSL
378         if (sock->ssl)
379                 n = SSL_write(sock->ssl, buf, len);
380         else
381 #endif
382                 n = write_in_full(sock->fd[1], buf, len);
383         if (n != len) {
384                 socket_perror("write", sock, n);
385                 close(sock->fd[0]);
386                 close(sock->fd[1]);
387                 sock->fd[0] = sock->fd[1] = -1;
388         }
389         return n;
390 }
391
392 static void socket_shutdown(struct imap_socket *sock)
393 {
394 #ifndef NO_OPENSSL
395         if (sock->ssl) {
396                 SSL_shutdown(sock->ssl);
397                 SSL_free(sock->ssl);
398         }
399 #endif
400         close(sock->fd[0]);
401         close(sock->fd[1]);
402 }
403
404 /* simple line buffering */
405 static int buffer_gets(struct imap_buffer *b, char **s)
406 {
407         int n;
408         int start = b->offset;
409
410         *s = b->buf + start;
411
412         for (;;) {
413                 /* make sure we have enough data to read the \r\n sequence */
414                 if (b->offset + 1 >= b->bytes) {
415                         if (start) {
416                                 /* shift down used bytes */
417                                 *s = b->buf;
418
419                                 assert(start <= b->bytes);
420                                 n = b->bytes - start;
421
422                                 if (n)
423                                         memmove(b->buf, b->buf + start, n);
424                                 b->offset -= start;
425                                 b->bytes = n;
426                                 start = 0;
427                         }
428
429                         n = socket_read(&b->sock, b->buf + b->bytes,
430                                          sizeof(b->buf) - b->bytes);
431
432                         if (n <= 0)
433                                 return -1;
434
435                         b->bytes += n;
436                 }
437
438                 if (b->buf[b->offset] == '\r') {
439                         assert(b->offset + 1 < b->bytes);
440                         if (b->buf[b->offset + 1] == '\n') {
441                                 b->buf[b->offset] = 0;  /* terminate the string */
442                                 b->offset += 2; /* next line */
443                                 if (0 < verbosity)
444                                         puts(*s);
445                                 return 0;
446                         }
447                 }
448
449                 b->offset++;
450         }
451         /* not reached */
452 }
453
454 static void imap_info(const char *msg, ...)
455 {
456         va_list va;
457
458         if (0 <= verbosity) {
459                 va_start(va, msg);
460                 vprintf(msg, va);
461                 va_end(va);
462                 fflush(stdout);
463         }
464 }
465
466 static void imap_warn(const char *msg, ...)
467 {
468         va_list va;
469
470         if (-2 < verbosity) {
471                 va_start(va, msg);
472                 vfprintf(stderr, msg, va);
473                 va_end(va);
474         }
475 }
476
477 static char *next_arg(char **s)
478 {
479         char *ret;
480
481         if (!s || !*s)
482                 return NULL;
483         while (isspace((unsigned char) **s))
484                 (*s)++;
485         if (!**s) {
486                 *s = NULL;
487                 return NULL;
488         }
489         if (**s == '"') {
490                 ++*s;
491                 ret = *s;
492                 *s = strchr(*s, '"');
493         } else {
494                 ret = *s;
495                 while (**s && !isspace((unsigned char) **s))
496                         (*s)++;
497         }
498         if (*s) {
499                 if (**s)
500                         *(*s)++ = 0;
501                 if (!**s)
502                         *s = NULL;
503         }
504         return ret;
505 }
506
507 static int nfsnprintf(char *buf, int blen, const char *fmt, ...)
508 {
509         int ret;
510         va_list va;
511
512         va_start(va, fmt);
513         if (blen <= 0 || (unsigned)(ret = vsnprintf(buf, blen, fmt, va)) >= (unsigned)blen)
514                 BUG("buffer too small. Please report a bug.");
515         va_end(va);
516         return ret;
517 }
518
519 static struct imap_cmd *issue_imap_cmd(struct imap_store *ctx,
520                                        struct imap_cmd_cb *cb,
521                                        const char *fmt, va_list ap)
522 {
523         struct imap *imap = ctx->imap;
524         struct imap_cmd *cmd;
525         int n, bufl;
526         char buf[1024];
527
528         cmd = xmalloc(sizeof(struct imap_cmd));
529         nfvasprintf(&cmd->cmd, fmt, ap);
530         cmd->tag = ++imap->nexttag;
531
532         if (cb)
533                 cmd->cb = *cb;
534         else
535                 memset(&cmd->cb, 0, sizeof(cmd->cb));
536
537         while (imap->literal_pending)
538                 get_cmd_result(ctx, NULL);
539
540         if (!cmd->cb.data)
541                 bufl = nfsnprintf(buf, sizeof(buf), "%d %s\r\n", cmd->tag, cmd->cmd);
542         else
543                 bufl = nfsnprintf(buf, sizeof(buf), "%d %s{%d%s}\r\n",
544                                   cmd->tag, cmd->cmd, cmd->cb.dlen,
545                                   CAP(LITERALPLUS) ? "+" : "");
546
547         if (0 < verbosity) {
548                 if (imap->num_in_progress)
549                         printf("(%d in progress) ", imap->num_in_progress);
550                 if (!starts_with(cmd->cmd, "LOGIN"))
551                         printf(">>> %s", buf);
552                 else
553                         printf(">>> %d LOGIN <user> <pass>\n", cmd->tag);
554         }
555         if (socket_write(&imap->buf.sock, buf, bufl) != bufl) {
556                 free(cmd->cmd);
557                 free(cmd);
558                 if (cb)
559                         free(cb->data);
560                 return NULL;
561         }
562         if (cmd->cb.data) {
563                 if (CAP(LITERALPLUS)) {
564                         n = socket_write(&imap->buf.sock, cmd->cb.data, cmd->cb.dlen);
565                         free(cmd->cb.data);
566                         if (n != cmd->cb.dlen ||
567                             socket_write(&imap->buf.sock, "\r\n", 2) != 2) {
568                                 free(cmd->cmd);
569                                 free(cmd);
570                                 return NULL;
571                         }
572                         cmd->cb.data = NULL;
573                 } else
574                         imap->literal_pending = 1;
575         } else if (cmd->cb.cont)
576                 imap->literal_pending = 1;
577         cmd->next = NULL;
578         *imap->in_progress_append = cmd;
579         imap->in_progress_append = &cmd->next;
580         imap->num_in_progress++;
581         return cmd;
582 }
583
584 __attribute__((format (printf, 3, 4)))
585 static int imap_exec(struct imap_store *ctx, struct imap_cmd_cb *cb,
586                      const char *fmt, ...)
587 {
588         va_list ap;
589         struct imap_cmd *cmdp;
590
591         va_start(ap, fmt);
592         cmdp = issue_imap_cmd(ctx, cb, fmt, ap);
593         va_end(ap);
594         if (!cmdp)
595                 return RESP_BAD;
596
597         return get_cmd_result(ctx, cmdp);
598 }
599
600 __attribute__((format (printf, 3, 4)))
601 static int imap_exec_m(struct imap_store *ctx, struct imap_cmd_cb *cb,
602                        const char *fmt, ...)
603 {
604         va_list ap;
605         struct imap_cmd *cmdp;
606
607         va_start(ap, fmt);
608         cmdp = issue_imap_cmd(ctx, cb, fmt, ap);
609         va_end(ap);
610         if (!cmdp)
611                 return DRV_STORE_BAD;
612
613         switch (get_cmd_result(ctx, cmdp)) {
614         case RESP_BAD: return DRV_STORE_BAD;
615         case RESP_NO: return DRV_MSG_BAD;
616         default: return DRV_OK;
617         }
618 }
619
620 static int skip_imap_list_l(char **sp, int level)
621 {
622         char *s = *sp;
623
624         for (;;) {
625                 while (isspace((unsigned char)*s))
626                         s++;
627                 if (level && *s == ')') {
628                         s++;
629                         break;
630                 }
631                 if (*s == '(') {
632                         /* sublist */
633                         s++;
634                         if (skip_imap_list_l(&s, level + 1))
635                                 goto bail;
636                 } else if (*s == '"') {
637                         /* quoted string */
638                         s++;
639                         for (; *s != '"'; s++)
640                                 if (!*s)
641                                         goto bail;
642                         s++;
643                 } else {
644                         /* atom */
645                         for (; *s && !isspace((unsigned char)*s); s++)
646                                 if (level && *s == ')')
647                                         break;
648                 }
649
650                 if (!level)
651                         break;
652                 if (!*s)
653                         goto bail;
654         }
655         *sp = s;
656         return 0;
657
658 bail:
659         return -1;
660 }
661
662 static void skip_list(char **sp)
663 {
664         skip_imap_list_l(sp, 0);
665 }
666
667 static void parse_capability(struct imap *imap, char *cmd)
668 {
669         char *arg;
670         unsigned i;
671
672         imap->caps = 0x80000000;
673         while ((arg = next_arg(&cmd)))
674                 for (i = 0; i < ARRAY_SIZE(cap_list); i++)
675                         if (!strcmp(cap_list[i], arg))
676                                 imap->caps |= 1 << i;
677         imap->rcaps = imap->caps;
678 }
679
680 static int parse_response_code(struct imap_store *ctx, struct imap_cmd_cb *cb,
681                                char *s)
682 {
683         struct imap *imap = ctx->imap;
684         char *arg, *p;
685
686         if (!s || *s != '[')
687                 return RESP_OK;         /* no response code */
688         s++;
689         if (!(p = strchr(s, ']'))) {
690                 fprintf(stderr, "IMAP error: malformed response code\n");
691                 return RESP_BAD;
692         }
693         *p++ = 0;
694         arg = next_arg(&s);
695         if (!arg) {
696                 fprintf(stderr, "IMAP error: empty response code\n");
697                 return RESP_BAD;
698         }
699         if (!strcmp("UIDVALIDITY", arg)) {
700                 if (!(arg = next_arg(&s)) || !(ctx->uidvalidity = atoi(arg))) {
701                         fprintf(stderr, "IMAP error: malformed UIDVALIDITY status\n");
702                         return RESP_BAD;
703                 }
704         } else if (!strcmp("UIDNEXT", arg)) {
705                 if (!(arg = next_arg(&s)) || !(imap->uidnext = atoi(arg))) {
706                         fprintf(stderr, "IMAP error: malformed NEXTUID status\n");
707                         return RESP_BAD;
708                 }
709         } else if (!strcmp("CAPABILITY", arg)) {
710                 parse_capability(imap, s);
711         } else if (!strcmp("ALERT", arg)) {
712                 /* RFC2060 says that these messages MUST be displayed
713                  * to the user
714                  */
715                 for (; isspace((unsigned char)*p); p++);
716                 fprintf(stderr, "*** IMAP ALERT *** %s\n", p);
717         } else if (cb && cb->ctx && !strcmp("APPENDUID", arg)) {
718                 if (!(arg = next_arg(&s)) || !(ctx->uidvalidity = atoi(arg)) ||
719                     !(arg = next_arg(&s)) || !(*(int *)cb->ctx = atoi(arg))) {
720                         fprintf(stderr, "IMAP error: malformed APPENDUID status\n");
721                         return RESP_BAD;
722                 }
723         }
724         return RESP_OK;
725 }
726
727 static int get_cmd_result(struct imap_store *ctx, struct imap_cmd *tcmd)
728 {
729         struct imap *imap = ctx->imap;
730         struct imap_cmd *cmdp, **pcmdp;
731         char *cmd;
732         const char *arg, *arg1;
733         int n, resp, resp2, tag;
734
735         for (;;) {
736                 if (buffer_gets(&imap->buf, &cmd))
737                         return RESP_BAD;
738
739                 arg = next_arg(&cmd);
740                 if (!arg) {
741                         fprintf(stderr, "IMAP error: empty response\n");
742                         return RESP_BAD;
743                 }
744                 if (*arg == '*') {
745                         arg = next_arg(&cmd);
746                         if (!arg) {
747                                 fprintf(stderr, "IMAP error: unable to parse untagged response\n");
748                                 return RESP_BAD;
749                         }
750
751                         if (!strcmp("NAMESPACE", arg)) {
752                                 /* rfc2342 NAMESPACE response. */
753                                 skip_list(&cmd); /* Personal mailboxes */
754                                 skip_list(&cmd); /* Others' mailboxes */
755                                 skip_list(&cmd); /* Shared mailboxes */
756                         } else if (!strcmp("OK", arg) || !strcmp("BAD", arg) ||
757                                    !strcmp("NO", arg) || !strcmp("BYE", arg)) {
758                                 if ((resp = parse_response_code(ctx, NULL, cmd)) != RESP_OK)
759                                         return resp;
760                         } else if (!strcmp("CAPABILITY", arg)) {
761                                 parse_capability(imap, cmd);
762                         } else if ((arg1 = next_arg(&cmd))) {
763                                 ; /*
764                                    * Unhandled response-data with at least two words.
765                                    * Ignore it.
766                                    *
767                                    * NEEDSWORK: Previously this case handled '<num> EXISTS'
768                                    * and '<num> RECENT' but as a probably-unintended side
769                                    * effect it ignores other unrecognized two-word
770                                    * responses.  imap-send doesn't ever try to read
771                                    * messages or mailboxes these days, so consider
772                                    * eliminating this case.
773                                    */
774                         } else {
775                                 fprintf(stderr, "IMAP error: unable to parse untagged response\n");
776                                 return RESP_BAD;
777                         }
778                 } else if (!imap->in_progress) {
779                         fprintf(stderr, "IMAP error: unexpected reply: %s %s\n", arg, cmd ? cmd : "");
780                         return RESP_BAD;
781                 } else if (*arg == '+') {
782                         /* This can happen only with the last command underway, as
783                            it enforces a round-trip. */
784                         cmdp = (struct imap_cmd *)((char *)imap->in_progress_append -
785                                offsetof(struct imap_cmd, next));
786                         if (cmdp->cb.data) {
787                                 n = socket_write(&imap->buf.sock, cmdp->cb.data, cmdp->cb.dlen);
788                                 FREE_AND_NULL(cmdp->cb.data);
789                                 if (n != (int)cmdp->cb.dlen)
790                                         return RESP_BAD;
791                         } else if (cmdp->cb.cont) {
792                                 if (cmdp->cb.cont(ctx, cmdp, cmd))
793                                         return RESP_BAD;
794                         } else {
795                                 fprintf(stderr, "IMAP error: unexpected command continuation request\n");
796                                 return RESP_BAD;
797                         }
798                         if (socket_write(&imap->buf.sock, "\r\n", 2) != 2)
799                                 return RESP_BAD;
800                         if (!cmdp->cb.cont)
801                                 imap->literal_pending = 0;
802                         if (!tcmd)
803                                 return DRV_OK;
804                 } else {
805                         tag = atoi(arg);
806                         for (pcmdp = &imap->in_progress; (cmdp = *pcmdp); pcmdp = &cmdp->next)
807                                 if (cmdp->tag == tag)
808                                         goto gottag;
809                         fprintf(stderr, "IMAP error: unexpected tag %s\n", arg);
810                         return RESP_BAD;
811                 gottag:
812                         if (!(*pcmdp = cmdp->next))
813                                 imap->in_progress_append = pcmdp;
814                         imap->num_in_progress--;
815                         if (cmdp->cb.cont || cmdp->cb.data)
816                                 imap->literal_pending = 0;
817                         arg = next_arg(&cmd);
818                         if (!arg)
819                                 arg = "";
820                         if (!strcmp("OK", arg))
821                                 resp = DRV_OK;
822                         else {
823                                 if (!strcmp("NO", arg))
824                                         resp = RESP_NO;
825                                 else /*if (!strcmp("BAD", arg))*/
826                                         resp = RESP_BAD;
827                                 fprintf(stderr, "IMAP command '%s' returned response (%s) - %s\n",
828                                         !starts_with(cmdp->cmd, "LOGIN") ?
829                                                         cmdp->cmd : "LOGIN <user> <pass>",
830                                                         arg, cmd ? cmd : "");
831                         }
832                         if ((resp2 = parse_response_code(ctx, &cmdp->cb, cmd)) > resp)
833                                 resp = resp2;
834                         if (cmdp->cb.done)
835                                 cmdp->cb.done(ctx, cmdp, resp);
836                         free(cmdp->cb.data);
837                         free(cmdp->cmd);
838                         free(cmdp);
839                         if (!tcmd || tcmd == cmdp)
840                                 return resp;
841                 }
842         }
843         /* not reached */
844 }
845
846 static void imap_close_server(struct imap_store *ictx)
847 {
848         struct imap *imap = ictx->imap;
849
850         if (imap->buf.sock.fd[0] != -1) {
851                 imap_exec(ictx, NULL, "LOGOUT");
852                 socket_shutdown(&imap->buf.sock);
853         }
854         free(imap);
855 }
856
857 static void imap_close_store(struct imap_store *ctx)
858 {
859         imap_close_server(ctx);
860         free(ctx);
861 }
862
863 #ifndef NO_OPENSSL
864
865 /*
866  * hexchar() and cram() functions are based on the code from the isync
867  * project (http://isync.sf.net/).
868  */
869 static char hexchar(unsigned int b)
870 {
871         return b < 10 ? '0' + b : 'a' + (b - 10);
872 }
873
874 #define ENCODED_SIZE(n) (4 * DIV_ROUND_UP((n), 3))
875 static char *cram(const char *challenge_64, const char *user, const char *pass)
876 {
877         int i, resp_len, encoded_len, decoded_len;
878         unsigned char hash[16];
879         char hex[33];
880         char *response, *response_64, *challenge;
881
882         /*
883          * length of challenge_64 (i.e. base-64 encoded string) is a good
884          * enough upper bound for challenge (decoded result).
885          */
886         encoded_len = strlen(challenge_64);
887         challenge = xmalloc(encoded_len);
888         decoded_len = EVP_DecodeBlock((unsigned char *)challenge,
889                                       (unsigned char *)challenge_64, encoded_len);
890         if (decoded_len < 0)
891                 die("invalid challenge %s", challenge_64);
892         if (!HMAC(EVP_md5(), pass, strlen(pass), (unsigned char *)challenge, decoded_len, hash, NULL))
893                 die("HMAC error");
894
895         hex[32] = 0;
896         for (i = 0; i < 16; i++) {
897                 hex[2 * i] = hexchar((hash[i] >> 4) & 0xf);
898                 hex[2 * i + 1] = hexchar(hash[i] & 0xf);
899         }
900
901         /* response: "<user> <digest in hex>" */
902         response = xstrfmt("%s %s", user, hex);
903         resp_len = strlen(response);
904
905         response_64 = xmallocz(ENCODED_SIZE(resp_len));
906         encoded_len = EVP_EncodeBlock((unsigned char *)response_64,
907                                       (unsigned char *)response, resp_len);
908         if (encoded_len < 0)
909                 die("EVP_EncodeBlock error");
910         return (char *)response_64;
911 }
912
913 #else
914
915 static char *cram(const char *challenge_64, const char *user, const char *pass)
916 {
917         die("If you want to use CRAM-MD5 authenticate method, "
918             "you have to build git-imap-send with OpenSSL library.");
919 }
920
921 #endif
922
923 static int auth_cram_md5(struct imap_store *ctx, struct imap_cmd *cmd, const char *prompt)
924 {
925         int ret;
926         char *response;
927
928         response = cram(prompt, server.user, server.pass);
929
930         ret = socket_write(&ctx->imap->buf.sock, response, strlen(response));
931         if (ret != strlen(response))
932                 return error("IMAP error: sending response failed");
933
934         free(response);
935
936         return 0;
937 }
938
939 static void server_fill_credential(struct imap_server_conf *srvc, struct credential *cred)
940 {
941         if (srvc->user && srvc->pass)
942                 return;
943
944         cred->protocol = xstrdup(srvc->use_ssl ? "imaps" : "imap");
945         cred->host = xstrdup(srvc->host);
946
947         cred->username = xstrdup_or_null(srvc->user);
948         cred->password = xstrdup_or_null(srvc->pass);
949
950         credential_fill(cred);
951
952         if (!srvc->user)
953                 srvc->user = xstrdup(cred->username);
954         if (!srvc->pass)
955                 srvc->pass = xstrdup(cred->password);
956 }
957
958 static struct imap_store *imap_open_store(struct imap_server_conf *srvc, char *folder)
959 {
960         struct credential cred = CREDENTIAL_INIT;
961         struct imap_store *ctx;
962         struct imap *imap;
963         char *arg, *rsp;
964         int s = -1, preauth;
965
966         ctx = xcalloc(1, sizeof(*ctx));
967
968         ctx->imap = imap = xcalloc(1, sizeof(*imap));
969         imap->buf.sock.fd[0] = imap->buf.sock.fd[1] = -1;
970         imap->in_progress_append = &imap->in_progress;
971
972         /* open connection to IMAP server */
973
974         if (srvc->tunnel) {
975                 struct child_process tunnel = CHILD_PROCESS_INIT;
976
977                 imap_info("Starting tunnel '%s'... ", srvc->tunnel);
978
979                 argv_array_push(&tunnel.args, srvc->tunnel);
980                 tunnel.use_shell = 1;
981                 tunnel.in = -1;
982                 tunnel.out = -1;
983                 if (start_command(&tunnel))
984                         die("cannot start proxy %s", srvc->tunnel);
985
986                 imap->buf.sock.fd[0] = tunnel.out;
987                 imap->buf.sock.fd[1] = tunnel.in;
988
989                 imap_info("ok\n");
990         } else {
991 #ifndef NO_IPV6
992                 struct addrinfo hints, *ai0, *ai;
993                 int gai;
994                 char portstr[6];
995
996                 xsnprintf(portstr, sizeof(portstr), "%d", srvc->port);
997
998                 memset(&hints, 0, sizeof(hints));
999                 hints.ai_socktype = SOCK_STREAM;
1000                 hints.ai_protocol = IPPROTO_TCP;
1001
1002                 imap_info("Resolving %s... ", srvc->host);
1003                 gai = getaddrinfo(srvc->host, portstr, &hints, &ai);
1004                 if (gai) {
1005                         fprintf(stderr, "getaddrinfo: %s\n", gai_strerror(gai));
1006                         goto bail;
1007                 }
1008                 imap_info("ok\n");
1009
1010                 for (ai0 = ai; ai; ai = ai->ai_next) {
1011                         char addr[NI_MAXHOST];
1012
1013                         s = socket(ai->ai_family, ai->ai_socktype,
1014                                    ai->ai_protocol);
1015                         if (s < 0)
1016                                 continue;
1017
1018                         getnameinfo(ai->ai_addr, ai->ai_addrlen, addr,
1019                                     sizeof(addr), NULL, 0, NI_NUMERICHOST);
1020                         imap_info("Connecting to [%s]:%s... ", addr, portstr);
1021
1022                         if (connect(s, ai->ai_addr, ai->ai_addrlen) < 0) {
1023                                 close(s);
1024                                 s = -1;
1025                                 perror("connect");
1026                                 continue;
1027                         }
1028
1029                         break;
1030                 }
1031                 freeaddrinfo(ai0);
1032 #else /* NO_IPV6 */
1033                 struct hostent *he;
1034                 struct sockaddr_in addr;
1035
1036                 memset(&addr, 0, sizeof(addr));
1037                 addr.sin_port = htons(srvc->port);
1038                 addr.sin_family = AF_INET;
1039
1040                 imap_info("Resolving %s... ", srvc->host);
1041                 he = gethostbyname(srvc->host);
1042                 if (!he) {
1043                         perror("gethostbyname");
1044                         goto bail;
1045                 }
1046                 imap_info("ok\n");
1047
1048                 addr.sin_addr.s_addr = *((int *) he->h_addr_list[0]);
1049
1050                 s = socket(PF_INET, SOCK_STREAM, 0);
1051
1052                 imap_info("Connecting to %s:%hu... ", inet_ntoa(addr.sin_addr), ntohs(addr.sin_port));
1053                 if (connect(s, (struct sockaddr *)&addr, sizeof(addr))) {
1054                         close(s);
1055                         s = -1;
1056                         perror("connect");
1057                 }
1058 #endif
1059                 if (s < 0) {
1060                         fputs("Error: unable to connect to server.\n", stderr);
1061                         goto bail;
1062                 }
1063
1064                 imap->buf.sock.fd[0] = s;
1065                 imap->buf.sock.fd[1] = dup(s);
1066
1067                 if (srvc->use_ssl &&
1068                     ssl_socket_connect(&imap->buf.sock, 0, srvc->ssl_verify)) {
1069                         close(s);
1070                         goto bail;
1071                 }
1072                 imap_info("ok\n");
1073         }
1074
1075         /* read the greeting string */
1076         if (buffer_gets(&imap->buf, &rsp)) {
1077                 fprintf(stderr, "IMAP error: no greeting response\n");
1078                 goto bail;
1079         }
1080         arg = next_arg(&rsp);
1081         if (!arg || *arg != '*' || (arg = next_arg(&rsp)) == NULL) {
1082                 fprintf(stderr, "IMAP error: invalid greeting response\n");
1083                 goto bail;
1084         }
1085         preauth = 0;
1086         if (!strcmp("PREAUTH", arg))
1087                 preauth = 1;
1088         else if (strcmp("OK", arg) != 0) {
1089                 fprintf(stderr, "IMAP error: unknown greeting response\n");
1090                 goto bail;
1091         }
1092         parse_response_code(ctx, NULL, rsp);
1093         if (!imap->caps && imap_exec(ctx, NULL, "CAPABILITY") != RESP_OK)
1094                 goto bail;
1095
1096         if (!preauth) {
1097 #ifndef NO_OPENSSL
1098                 if (!srvc->use_ssl && CAP(STARTTLS)) {
1099                         if (imap_exec(ctx, NULL, "STARTTLS") != RESP_OK)
1100                                 goto bail;
1101                         if (ssl_socket_connect(&imap->buf.sock, 1,
1102                                                srvc->ssl_verify))
1103                                 goto bail;
1104                         /* capabilities may have changed, so get the new capabilities */
1105                         if (imap_exec(ctx, NULL, "CAPABILITY") != RESP_OK)
1106                                 goto bail;
1107                 }
1108 #endif
1109                 imap_info("Logging in...\n");
1110                 server_fill_credential(srvc, &cred);
1111
1112                 if (srvc->auth_method) {
1113                         struct imap_cmd_cb cb;
1114
1115                         if (!strcmp(srvc->auth_method, "CRAM-MD5")) {
1116                                 if (!CAP(AUTH_CRAM_MD5)) {
1117                                         fprintf(stderr, "You specified"
1118                                                 "CRAM-MD5 as authentication method, "
1119                                                 "but %s doesn't support it.\n", srvc->host);
1120                                         goto bail;
1121                                 }
1122                                 /* CRAM-MD5 */
1123
1124                                 memset(&cb, 0, sizeof(cb));
1125                                 cb.cont = auth_cram_md5;
1126                                 if (imap_exec(ctx, &cb, "AUTHENTICATE CRAM-MD5") != RESP_OK) {
1127                                         fprintf(stderr, "IMAP error: AUTHENTICATE CRAM-MD5 failed\n");
1128                                         goto bail;
1129                                 }
1130                         } else {
1131                                 fprintf(stderr, "Unknown authentication method:%s\n", srvc->host);
1132                                 goto bail;
1133                         }
1134                 } else {
1135                         if (CAP(NOLOGIN)) {
1136                                 fprintf(stderr, "Skipping account %s@%s, server forbids LOGIN\n",
1137                                         srvc->user, srvc->host);
1138                                 goto bail;
1139                         }
1140                         if (!imap->buf.sock.ssl)
1141                                 imap_warn("*** IMAP Warning *** Password is being "
1142                                           "sent in the clear\n");
1143                         if (imap_exec(ctx, NULL, "LOGIN \"%s\" \"%s\"", srvc->user, srvc->pass) != RESP_OK) {
1144                                 fprintf(stderr, "IMAP error: LOGIN failed\n");
1145                                 goto bail;
1146                         }
1147                 }
1148         } /* !preauth */
1149
1150         if (cred.username)
1151                 credential_approve(&cred);
1152         credential_clear(&cred);
1153
1154         /* check the target mailbox exists */
1155         ctx->name = folder;
1156         switch (imap_exec(ctx, NULL, "EXAMINE \"%s\"", ctx->name)) {
1157         case RESP_OK:
1158                 /* ok */
1159                 break;
1160         case RESP_BAD:
1161                 fprintf(stderr, "IMAP error: could not check mailbox\n");
1162                 goto out;
1163         case RESP_NO:
1164                 if (imap_exec(ctx, NULL, "CREATE \"%s\"", ctx->name) == RESP_OK) {
1165                         imap_info("Created missing mailbox\n");
1166                 } else {
1167                         fprintf(stderr, "IMAP error: could not create missing mailbox\n");
1168                         goto out;
1169                 }
1170                 break;
1171         }
1172
1173         ctx->prefix = "";
1174         return ctx;
1175
1176 bail:
1177         if (cred.username)
1178                 credential_reject(&cred);
1179         credential_clear(&cred);
1180
1181  out:
1182         imap_close_store(ctx);
1183         return NULL;
1184 }
1185
1186 /*
1187  * Insert CR characters as necessary in *msg to ensure that every LF
1188  * character in *msg is preceded by a CR.
1189  */
1190 static void lf_to_crlf(struct strbuf *msg)
1191 {
1192         char *new_msg;
1193         size_t i, j;
1194         char lastc;
1195
1196         /* First pass: tally, in j, the size of the new_msg string: */
1197         for (i = j = 0, lastc = '\0'; i < msg->len; i++) {
1198                 if (msg->buf[i] == '\n' && lastc != '\r')
1199                         j++; /* a CR will need to be added here */
1200                 lastc = msg->buf[i];
1201                 j++;
1202         }
1203
1204         new_msg = xmallocz(j);
1205
1206         /*
1207          * Second pass: write the new_msg string.  Note that this loop is
1208          * otherwise identical to the first pass.
1209          */
1210         for (i = j = 0, lastc = '\0'; i < msg->len; i++) {
1211                 if (msg->buf[i] == '\n' && lastc != '\r')
1212                         new_msg[j++] = '\r';
1213                 lastc = new_msg[j++] = msg->buf[i];
1214         }
1215         strbuf_attach(msg, new_msg, j, j + 1);
1216 }
1217
1218 /*
1219  * Store msg to IMAP.  Also detach and free the data from msg->data,
1220  * leaving msg->data empty.
1221  */
1222 static int imap_store_msg(struct imap_store *ctx, struct strbuf *msg)
1223 {
1224         struct imap *imap = ctx->imap;
1225         struct imap_cmd_cb cb;
1226         const char *prefix, *box;
1227         int ret;
1228
1229         lf_to_crlf(msg);
1230         memset(&cb, 0, sizeof(cb));
1231
1232         cb.dlen = msg->len;
1233         cb.data = strbuf_detach(msg, NULL);
1234
1235         box = ctx->name;
1236         prefix = !strcmp(box, "INBOX") ? "" : ctx->prefix;
1237         ret = imap_exec_m(ctx, &cb, "APPEND \"%s%s\" ", prefix, box);
1238         imap->caps = imap->rcaps;
1239         if (ret != DRV_OK)
1240                 return ret;
1241
1242         return DRV_OK;
1243 }
1244
1245 static void wrap_in_html(struct strbuf *msg)
1246 {
1247         struct strbuf buf = STRBUF_INIT;
1248         static char *content_type = "Content-Type: text/html;\n";
1249         static char *pre_open = "<pre>\n";
1250         static char *pre_close = "</pre>\n";
1251         const char *body = strstr(msg->buf, "\n\n");
1252
1253         if (!body)
1254                 return; /* Headers but no body; no wrapping needed */
1255
1256         body += 2;
1257
1258         strbuf_add(&buf, msg->buf, body - msg->buf - 1);
1259         strbuf_addstr(&buf, content_type);
1260         strbuf_addch(&buf, '\n');
1261         strbuf_addstr(&buf, pre_open);
1262         strbuf_addstr_xml_quoted(&buf, body);
1263         strbuf_addstr(&buf, pre_close);
1264
1265         strbuf_release(msg);
1266         *msg = buf;
1267 }
1268
1269 #define CHUNKSIZE 0x1000
1270
1271 static int read_message(FILE *f, struct strbuf *all_msgs)
1272 {
1273         do {
1274                 if (strbuf_fread(all_msgs, CHUNKSIZE, f) <= 0)
1275                         break;
1276         } while (!feof(f));
1277
1278         return ferror(f) ? -1 : 0;
1279 }
1280
1281 static int count_messages(struct strbuf *all_msgs)
1282 {
1283         int count = 0;
1284         char *p = all_msgs->buf;
1285
1286         while (1) {
1287                 if (starts_with(p, "From ")) {
1288                         p = strstr(p+5, "\nFrom: ");
1289                         if (!p) break;
1290                         p = strstr(p+7, "\nDate: ");
1291                         if (!p) break;
1292                         p = strstr(p+7, "\nSubject: ");
1293                         if (!p) break;
1294                         p += 10;
1295                         count++;
1296                 }
1297                 p = strstr(p+5, "\nFrom ");
1298                 if (!p)
1299                         break;
1300                 p++;
1301         }
1302         return count;
1303 }
1304
1305 /*
1306  * Copy the next message from all_msgs, starting at offset *ofs, to
1307  * msg.  Update *ofs to the start of the following message.  Return
1308  * true iff a message was successfully copied.
1309  */
1310 static int split_msg(struct strbuf *all_msgs, struct strbuf *msg, int *ofs)
1311 {
1312         char *p, *data;
1313         size_t len;
1314
1315         if (*ofs >= all_msgs->len)
1316                 return 0;
1317
1318         data = &all_msgs->buf[*ofs];
1319         len = all_msgs->len - *ofs;
1320
1321         if (len < 5 || !starts_with(data, "From "))
1322                 return 0;
1323
1324         p = strchr(data, '\n');
1325         if (p) {
1326                 p++;
1327                 len -= p - data;
1328                 *ofs += p - data;
1329                 data = p;
1330         }
1331
1332         p = strstr(data, "\nFrom ");
1333         if (p)
1334                 len = &p[1] - data;
1335
1336         strbuf_add(msg, data, len);
1337         *ofs += len;
1338         return 1;
1339 }
1340
1341 static void git_imap_config(void)
1342 {
1343         const char *val = NULL;
1344
1345         git_config_get_bool("imap.sslverify", &server.ssl_verify);
1346         git_config_get_bool("imap.preformattedhtml", &server.use_html);
1347         git_config_get_string("imap.folder", &server.folder);
1348
1349         if (!git_config_get_value("imap.host", &val)) {
1350                 if (!val) {
1351                         git_die_config("imap.host", "Missing value for 'imap.host'");
1352                 } else {
1353                         if (starts_with(val, "imap:"))
1354                                 val += 5;
1355                         else if (starts_with(val, "imaps:")) {
1356                                 val += 6;
1357                                 server.use_ssl = 1;
1358                         }
1359                         if (starts_with(val, "//"))
1360                                 val += 2;
1361                         server.host = xstrdup(val);
1362                 }
1363         }
1364
1365         git_config_get_string("imap.user", &server.user);
1366         git_config_get_string("imap.pass", &server.pass);
1367         git_config_get_int("imap.port", &server.port);
1368         git_config_get_string("imap.tunnel", &server.tunnel);
1369         git_config_get_string("imap.authmethod", &server.auth_method);
1370 }
1371
1372 static int append_msgs_to_imap(struct imap_server_conf *server,
1373                                struct strbuf* all_msgs, int total)
1374 {
1375         struct strbuf msg = STRBUF_INIT;
1376         struct imap_store *ctx = NULL;
1377         int ofs = 0;
1378         int r;
1379         int n = 0;
1380
1381         ctx = imap_open_store(server, server->folder);
1382         if (!ctx) {
1383                 fprintf(stderr, "failed to open store\n");
1384                 return 1;
1385         }
1386         ctx->name = server->folder;
1387
1388         fprintf(stderr, "sending %d message%s\n", total, (total != 1) ? "s" : "");
1389         while (1) {
1390                 unsigned percent = n * 100 / total;
1391
1392                 fprintf(stderr, "%4u%% (%d/%d) done\r", percent, n, total);
1393
1394                 if (!split_msg(all_msgs, &msg, &ofs))
1395                         break;
1396                 if (server->use_html)
1397                         wrap_in_html(&msg);
1398                 r = imap_store_msg(ctx, &msg);
1399                 if (r != DRV_OK)
1400                         break;
1401                 n++;
1402         }
1403         fprintf(stderr, "\n");
1404
1405         imap_close_store(ctx);
1406
1407         return 0;
1408 }
1409
1410 #ifdef USE_CURL_FOR_IMAP_SEND
1411 static CURL *setup_curl(struct imap_server_conf *srvc, struct credential *cred)
1412 {
1413         CURL *curl;
1414         struct strbuf path = STRBUF_INIT;
1415         char *uri_encoded_folder;
1416
1417         if (curl_global_init(CURL_GLOBAL_ALL) != CURLE_OK)
1418                 die("curl_global_init failed");
1419
1420         curl = curl_easy_init();
1421
1422         if (!curl)
1423                 die("curl_easy_init failed");
1424
1425         server_fill_credential(&server, cred);
1426         curl_easy_setopt(curl, CURLOPT_USERNAME, server.user);
1427         curl_easy_setopt(curl, CURLOPT_PASSWORD, server.pass);
1428
1429         strbuf_addstr(&path, server.use_ssl ? "imaps://" : "imap://");
1430         strbuf_addstr(&path, server.host);
1431         if (!path.len || path.buf[path.len - 1] != '/')
1432                 strbuf_addch(&path, '/');
1433
1434         uri_encoded_folder = curl_easy_escape(curl, server.folder, 0);
1435         if (!uri_encoded_folder)
1436                 die("failed to encode server folder");
1437         strbuf_addstr(&path, uri_encoded_folder);
1438         curl_free(uri_encoded_folder);
1439
1440         curl_easy_setopt(curl, CURLOPT_URL, path.buf);
1441         strbuf_release(&path);
1442         curl_easy_setopt(curl, CURLOPT_PORT, server.port);
1443
1444         if (server.auth_method) {
1445 #if LIBCURL_VERSION_NUM < 0x072200
1446                 warning("No LOGIN_OPTIONS support in this cURL version");
1447 #else
1448                 struct strbuf auth = STRBUF_INIT;
1449                 strbuf_addstr(&auth, "AUTH=");
1450                 strbuf_addstr(&auth, server.auth_method);
1451                 curl_easy_setopt(curl, CURLOPT_LOGIN_OPTIONS, auth.buf);
1452                 strbuf_release(&auth);
1453 #endif
1454         }
1455
1456         if (!server.use_ssl)
1457                 curl_easy_setopt(curl, CURLOPT_USE_SSL, (long)CURLUSESSL_TRY);
1458
1459         curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, server.ssl_verify);
1460         curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, server.ssl_verify);
1461
1462         curl_easy_setopt(curl, CURLOPT_READFUNCTION, fread_buffer);
1463
1464         curl_easy_setopt(curl, CURLOPT_UPLOAD, 1L);
1465
1466         if (0 < verbosity || getenv("GIT_CURL_VERBOSE"))
1467                 curl_easy_setopt(curl, CURLOPT_VERBOSE, 1L);
1468         setup_curl_trace(curl);
1469
1470         return curl;
1471 }
1472
1473 static int curl_append_msgs_to_imap(struct imap_server_conf *server,
1474                                     struct strbuf* all_msgs, int total) {
1475         int ofs = 0;
1476         int n = 0;
1477         struct buffer msgbuf = { STRBUF_INIT, 0 };
1478         CURL *curl;
1479         CURLcode res = CURLE_OK;
1480         struct credential cred = CREDENTIAL_INIT;
1481
1482         curl = setup_curl(server, &cred);
1483         curl_easy_setopt(curl, CURLOPT_READDATA, &msgbuf);
1484
1485         fprintf(stderr, "sending %d message%s\n", total, (total != 1) ? "s" : "");
1486         while (1) {
1487                 unsigned percent = n * 100 / total;
1488                 int prev_len;
1489
1490                 fprintf(stderr, "%4u%% (%d/%d) done\r", percent, n, total);
1491
1492                 prev_len = msgbuf.buf.len;
1493                 if (!split_msg(all_msgs, &msgbuf.buf, &ofs))
1494                         break;
1495                 if (server->use_html)
1496                         wrap_in_html(&msgbuf.buf);
1497                 lf_to_crlf(&msgbuf.buf);
1498
1499                 curl_easy_setopt(curl, CURLOPT_INFILESIZE_LARGE,
1500                                  (curl_off_t)(msgbuf.buf.len-prev_len));
1501
1502                 res = curl_easy_perform(curl);
1503
1504                 if(res != CURLE_OK) {
1505                         fprintf(stderr, "curl_easy_perform() failed: %s\n",
1506                                         curl_easy_strerror(res));
1507                         break;
1508                 }
1509
1510                 n++;
1511         }
1512         fprintf(stderr, "\n");
1513
1514         curl_easy_cleanup(curl);
1515         curl_global_cleanup();
1516
1517         if (cred.username) {
1518                 if (res == CURLE_OK)
1519                         credential_approve(&cred);
1520 #if LIBCURL_VERSION_NUM >= 0x070d01
1521                 else if (res == CURLE_LOGIN_DENIED)
1522 #else
1523                 else
1524 #endif
1525                         credential_reject(&cred);
1526         }
1527
1528         credential_clear(&cred);
1529
1530         return res != CURLE_OK;
1531 }
1532 #endif
1533
1534 int cmd_main(int argc, const char **argv)
1535 {
1536         struct strbuf all_msgs = STRBUF_INIT;
1537         int total;
1538         int nongit_ok;
1539
1540         setup_git_directory_gently(&nongit_ok);
1541         git_imap_config();
1542
1543         argc = parse_options(argc, (const char **)argv, "", imap_send_options, imap_send_usage, 0);
1544
1545         if (argc)
1546                 usage_with_options(imap_send_usage, imap_send_options);
1547
1548 #ifndef USE_CURL_FOR_IMAP_SEND
1549         if (use_curl) {
1550                 warning("--curl not supported in this build");
1551                 use_curl = 0;
1552         }
1553 #elif defined(NO_OPENSSL)
1554         if (!use_curl) {
1555                 warning("--no-curl not supported in this build");
1556                 use_curl = 1;
1557         }
1558 #endif
1559
1560         if (!server.port)
1561                 server.port = server.use_ssl ? 993 : 143;
1562
1563         if (!server.folder) {
1564                 fprintf(stderr, "no imap store specified\n");
1565                 return 1;
1566         }
1567         if (!server.host) {
1568                 if (!server.tunnel) {
1569                         fprintf(stderr, "no imap host specified\n");
1570                         return 1;
1571                 }
1572                 server.host = "tunnel";
1573         }
1574
1575         /* read the messages */
1576         if (read_message(stdin, &all_msgs)) {
1577                 fprintf(stderr, "error reading input\n");
1578                 return 1;
1579         }
1580
1581         if (all_msgs.len == 0) {
1582                 fprintf(stderr, "nothing to send\n");
1583                 return 1;
1584         }
1585
1586         total = count_messages(&all_msgs);
1587         if (!total) {
1588                 fprintf(stderr, "no messages to send\n");
1589                 return 1;
1590         }
1591
1592         /* write it to the imap server */
1593
1594         if (server.tunnel)
1595                 return append_msgs_to_imap(&server, &all_msgs, total);
1596
1597 #ifdef USE_CURL_FOR_IMAP_SEND
1598         if (use_curl)
1599                 return curl_append_msgs_to_imap(&server, &all_msgs, total);
1600 #endif
1601
1602         return append_msgs_to_imap(&server, &all_msgs, total);
1603 }