2 * git-imap-send - drops patches into an imap Drafts folder
3 * derived from isync/mbsync - mailbox synchronizer
5 * Copyright (C) 2000-2002 Michael R. Elkins <me@mutt.org>
6 * Copyright (C) 2002-2004 Oswald Buddenhagen <ossi@users.sf.net>
7 * Copyright (C) 2004 Theodore Y. Ts'o <tytso@mit.edu>
8 * Copyright (C) 2006 Mike McCormack
10 * This program is free software; you can redistribute it and/or modify
11 * it under the terms of the GNU General Public License as published by
12 * the Free Software Foundation; either version 2 of the License, or
13 * (at your option) any later version.
15 * This program is distributed in the hope that it will be useful,
16 * but WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 * GNU General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, see <https://www.gnu.org/licenses/>.
24 #define USE_THE_REPOSITORY_VARIABLE
26 #include "git-compat-util.h"
28 #include "credential.h"
30 #include "run-command.h"
31 #include "parse-options.h"
34 #if defined(NO_OPENSSL) && !defined(HAVE_OPENSSL_CSPRNG)
37 #ifdef USE_CURL_FOR_IMAP_SEND
41 #if defined(USE_CURL_FOR_IMAP_SEND)
42 /* Always default to curl if it's available. */
43 #define USE_CURL_DEFAULT 1
45 /* We don't have curl, so continue to use the historical implementation */
46 #define USE_CURL_DEFAULT 0
50 static int use_curl
= USE_CURL_DEFAULT
;
52 static const char * const imap_send_usage
[] = { "git imap-send [-v] [-q] [--[no-]curl] < <mbox>", NULL
};
54 static struct option imap_send_options
[] = {
55 OPT__VERBOSITY(&verbosity
),
56 OPT_BOOL(0, "curl", &use_curl
, "use libcurl to communicate with the IMAP server"),
62 #define DRV_MSG_BAD -1
63 #define DRV_BOX_BAD -2
64 #define DRV_STORE_BAD -3
66 __attribute__((format (printf
, 1, 2)))
67 static void imap_info(const char *, ...);
68 __attribute__((format (printf
, 1, 2)))
69 static void imap_warn(const char *, ...);
71 static char *next_arg(char **);
73 struct imap_server_conf
{
92 struct imap_socket sock
;
101 int uidnext
; /* from SELECT responses */
102 unsigned caps
, rcaps
; /* CAPABILITY results */
104 int nexttag
, num_in_progress
, literal_pending
;
105 struct imap_cmd
*in_progress
, **in_progress_append
;
106 struct imap_buffer buf
; /* this is BIG, so put it last */
110 const struct imap_server_conf
*cfg
;
111 /* currently open mailbox */
112 const char *name
; /* foreign! maybe preset? */
119 int (*cont
)(struct imap_store
*ctx
, const char *prompt
);
126 struct imap_cmd
*next
;
127 struct imap_cmd_cb cb
;
132 #define CAP(cap) (imap->caps & (1 << (cap)))
143 static const char *cap_list
[] = {
156 static int get_cmd_result(struct imap_store
*ctx
, struct imap_cmd
*tcmd
);
160 static void ssl_socket_perror(const char *func
)
162 fprintf(stderr
, "%s: %s\n", func
, ERR_error_string(ERR_get_error(), NULL
));
166 static void socket_perror(const char *func
, struct imap_socket
*sock
, int ret
)
170 int sslerr
= SSL_get_error(sock
->ssl
, ret
);
174 case SSL_ERROR_SYSCALL
:
175 perror("SSL_connect");
178 ssl_socket_perror("SSL_connect");
187 fprintf(stderr
, "%s: unexpected EOF\n", func
);
189 /* mark as used to appease -Wunused-parameter with NO_OPENSSL */
194 static int ssl_socket_connect(struct imap_socket
*sock UNUSED
,
195 const struct imap_server_conf
*cfg UNUSED
,
196 int use_tls_only UNUSED
)
198 fprintf(stderr
, "SSL requested but SSL support not compiled in\n");
204 static int host_matches(const char *host
, const char *pattern
)
206 if (pattern
[0] == '*' && pattern
[1] == '.') {
208 if (!(host
= strchr(host
, '.')))
213 return *host
&& *pattern
&& !strcasecmp(host
, pattern
);
216 static int verify_hostname(X509
*cert
, const char *hostname
)
222 STACK_OF(GENERAL_NAME
) *subj_alt_names
;
224 /* try the DNS subjectAltNames */
226 if ((subj_alt_names
= X509_get_ext_d2i(cert
, NID_subject_alt_name
, NULL
, NULL
))) {
227 int num_subj_alt_names
= sk_GENERAL_NAME_num(subj_alt_names
);
228 for (i
= 0; !found
&& i
< num_subj_alt_names
; i
++) {
229 GENERAL_NAME
*subj_alt_name
= sk_GENERAL_NAME_value(subj_alt_names
, i
);
230 if (subj_alt_name
->type
== GEN_DNS
&&
231 strlen((const char *)subj_alt_name
->d
.ia5
->data
) == (size_t)subj_alt_name
->d
.ia5
->length
&&
232 host_matches(hostname
, (const char *)(subj_alt_name
->d
.ia5
->data
)))
235 sk_GENERAL_NAME_pop_free(subj_alt_names
, GENERAL_NAME_free
);
240 /* try the common name */
241 if (!(subj
= X509_get_subject_name(cert
)))
242 return error("cannot get certificate subject");
243 if ((len
= X509_NAME_get_text_by_NID(subj
, NID_commonName
, cname
, sizeof(cname
))) < 0)
244 return error("cannot get certificate common name");
245 if (strlen(cname
) == (size_t)len
&& host_matches(hostname
, cname
))
247 return error("certificate owner '%s' does not match hostname '%s'",
251 static int ssl_socket_connect(struct imap_socket
*sock
,
252 const struct imap_server_conf
*cfg
,
255 #if (OPENSSL_VERSION_NUMBER >= 0x10000000L)
256 const SSL_METHOD
*meth
;
265 SSL_load_error_strings();
267 meth
= SSLv23_method();
269 ssl_socket_perror("SSLv23_method");
273 ctx
= SSL_CTX_new(meth
);
275 ssl_socket_perror("SSL_CTX_new");
280 SSL_CTX_set_options(ctx
, SSL_OP_NO_SSLv2
| SSL_OP_NO_SSLv3
);
283 SSL_CTX_set_verify(ctx
, SSL_VERIFY_PEER
, NULL
);
285 if (!SSL_CTX_set_default_verify_paths(ctx
)) {
286 ssl_socket_perror("SSL_CTX_set_default_verify_paths");
289 sock
->ssl
= SSL_new(ctx
);
291 ssl_socket_perror("SSL_new");
294 if (!SSL_set_rfd(sock
->ssl
, sock
->fd
[0])) {
295 ssl_socket_perror("SSL_set_rfd");
298 if (!SSL_set_wfd(sock
->ssl
, sock
->fd
[1])) {
299 ssl_socket_perror("SSL_set_wfd");
303 #ifdef SSL_CTRL_SET_TLSEXT_HOSTNAME
306 * OpenSSL does not document this function, but the implementation
307 * returns 1 on success, 0 on failure after calling SSLerr().
309 ret
= SSL_set_tlsext_host_name(sock
->ssl
, cfg
->host
);
311 warning("SSL_set_tlsext_host_name(%s) failed.", cfg
->host
);
314 ret
= SSL_connect(sock
->ssl
);
316 socket_perror("SSL_connect", sock
, ret
);
320 if (cfg
->ssl_verify
) {
321 /* make sure the hostname matches that of the certificate */
322 cert
= SSL_get_peer_certificate(sock
->ssl
);
324 return error("unable to get peer certificate.");
325 if (verify_hostname(cert
, cfg
->host
) < 0)
333 static int socket_read(struct imap_socket
*sock
, char *buf
, int len
)
338 n
= SSL_read(sock
->ssl
, buf
, len
);
341 n
= xread(sock
->fd
[0], buf
, len
);
343 socket_perror("read", sock
, n
);
346 sock
->fd
[0] = sock
->fd
[1] = -1;
351 static int socket_write(struct imap_socket
*sock
, const char *buf
, int len
)
356 n
= SSL_write(sock
->ssl
, buf
, len
);
359 n
= write_in_full(sock
->fd
[1], buf
, len
);
361 socket_perror("write", sock
, n
);
364 sock
->fd
[0] = sock
->fd
[1] = -1;
369 static void socket_shutdown(struct imap_socket
*sock
)
373 SSL_shutdown(sock
->ssl
);
381 /* simple line buffering */
382 static int buffer_gets(struct imap_buffer
*b
, char **s
)
385 int start
= b
->offset
;
390 /* make sure we have enough data to read the \r\n sequence */
391 if (b
->offset
+ 1 >= b
->bytes
) {
393 /* shift down used bytes */
396 assert(start
<= b
->bytes
);
397 n
= b
->bytes
- start
;
400 memmove(b
->buf
, b
->buf
+ start
, n
);
406 n
= socket_read(&b
->sock
, b
->buf
+ b
->bytes
,
407 sizeof(b
->buf
) - b
->bytes
);
415 if (b
->buf
[b
->offset
] == '\r') {
416 assert(b
->offset
+ 1 < b
->bytes
);
417 if (b
->buf
[b
->offset
+ 1] == '\n') {
418 b
->buf
[b
->offset
] = 0; /* terminate the string */
419 b
->offset
+= 2; /* next line */
431 __attribute__((format (printf
, 1, 2)))
432 static void imap_info(const char *msg
, ...)
436 if (0 <= verbosity
) {
444 __attribute__((format (printf
, 1, 2)))
445 static void imap_warn(const char *msg
, ...)
449 if (-2 < verbosity
) {
451 vfprintf(stderr
, msg
, va
);
456 static char *next_arg(char **s
)
462 while (isspace((unsigned char) **s
))
471 *s
= strchr(*s
, '"');
474 while (**s
&& !isspace((unsigned char) **s
))
486 static struct imap_cmd
*issue_imap_cmd(struct imap_store
*ctx
,
487 struct imap_cmd_cb
*cb
,
488 const char *fmt
, va_list ap
)
490 struct imap
*imap
= ctx
->imap
;
491 struct imap_cmd
*cmd
;
493 struct strbuf buf
= STRBUF_INIT
;
495 cmd
= xmalloc(sizeof(struct imap_cmd
));
496 cmd
->cmd
= xstrvfmt(fmt
, ap
);
497 cmd
->tag
= ++imap
->nexttag
;
502 memset(&cmd
->cb
, 0, sizeof(cmd
->cb
));
504 while (imap
->literal_pending
)
505 get_cmd_result(ctx
, NULL
);
508 strbuf_addf(&buf
, "%d %s\r\n", cmd
->tag
, cmd
->cmd
);
510 strbuf_addf(&buf
, "%d %s{%d%s}\r\n", cmd
->tag
, cmd
->cmd
,
511 cmd
->cb
.dlen
, CAP(LITERALPLUS
) ? "+" : "");
512 if (buf
.len
> INT_MAX
)
513 die("imap command overflow!");
516 if (imap
->num_in_progress
)
517 printf("(%d in progress) ", imap
->num_in_progress
);
518 if (!starts_with(cmd
->cmd
, "LOGIN"))
519 printf(">>> %s", buf
.buf
);
521 printf(">>> %d LOGIN <user> <pass>\n", cmd
->tag
);
523 if (socket_write(&imap
->buf
.sock
, buf
.buf
, buf
.len
) != buf
.len
) {
528 strbuf_release(&buf
);
531 strbuf_release(&buf
);
533 if (CAP(LITERALPLUS
)) {
534 n
= socket_write(&imap
->buf
.sock
, cmd
->cb
.data
, cmd
->cb
.dlen
);
536 if (n
!= cmd
->cb
.dlen
||
537 socket_write(&imap
->buf
.sock
, "\r\n", 2) != 2) {
544 imap
->literal_pending
= 1;
545 } else if (cmd
->cb
.cont
)
546 imap
->literal_pending
= 1;
548 *imap
->in_progress_append
= cmd
;
549 imap
->in_progress_append
= &cmd
->next
;
550 imap
->num_in_progress
++;
554 __attribute__((format (printf
, 3, 4)))
555 static int imap_exec(struct imap_store
*ctx
, struct imap_cmd_cb
*cb
,
556 const char *fmt
, ...)
559 struct imap_cmd
*cmdp
;
562 cmdp
= issue_imap_cmd(ctx
, cb
, fmt
, ap
);
567 return get_cmd_result(ctx
, cmdp
);
570 __attribute__((format (printf
, 3, 4)))
571 static int imap_exec_m(struct imap_store
*ctx
, struct imap_cmd_cb
*cb
,
572 const char *fmt
, ...)
575 struct imap_cmd
*cmdp
;
578 cmdp
= issue_imap_cmd(ctx
, cb
, fmt
, ap
);
581 return DRV_STORE_BAD
;
583 switch (get_cmd_result(ctx
, cmdp
)) {
584 case RESP_BAD
: return DRV_STORE_BAD
;
585 case RESP_NO
: return DRV_MSG_BAD
;
586 default: return DRV_OK
;
590 static int skip_imap_list_l(char **sp
, int level
)
595 while (isspace((unsigned char)*s
))
597 if (level
&& *s
== ')') {
604 if (skip_imap_list_l(&s
, level
+ 1))
606 } else if (*s
== '"') {
609 for (; *s
!= '"'; s
++)
615 for (; *s
&& !isspace((unsigned char)*s
); s
++)
616 if (level
&& *s
== ')')
632 static void skip_list(char **sp
)
634 skip_imap_list_l(sp
, 0);
637 static void parse_capability(struct imap
*imap
, char *cmd
)
642 imap
->caps
= 0x80000000;
643 while ((arg
= next_arg(&cmd
)))
644 for (i
= 0; i
< ARRAY_SIZE(cap_list
); i
++)
645 if (!strcmp(cap_list
[i
], arg
))
646 imap
->caps
|= 1 << i
;
647 imap
->rcaps
= imap
->caps
;
650 static int parse_response_code(struct imap_store
*ctx
, struct imap_cmd_cb
*cb
,
653 struct imap
*imap
= ctx
->imap
;
657 return RESP_OK
; /* no response code */
659 if (!(p
= strchr(s
, ']'))) {
660 fprintf(stderr
, "IMAP error: malformed response code\n");
666 fprintf(stderr
, "IMAP error: empty response code\n");
669 if (!strcmp("UIDVALIDITY", arg
)) {
670 if (!(arg
= next_arg(&s
)) || !(ctx
->uidvalidity
= atoi(arg
))) {
671 fprintf(stderr
, "IMAP error: malformed UIDVALIDITY status\n");
674 } else if (!strcmp("UIDNEXT", arg
)) {
675 if (!(arg
= next_arg(&s
)) || !(imap
->uidnext
= atoi(arg
))) {
676 fprintf(stderr
, "IMAP error: malformed NEXTUID status\n");
679 } else if (!strcmp("CAPABILITY", arg
)) {
680 parse_capability(imap
, s
);
681 } else if (!strcmp("ALERT", arg
)) {
682 /* RFC2060 says that these messages MUST be displayed
685 for (; isspace((unsigned char)*p
); p
++);
686 fprintf(stderr
, "*** IMAP ALERT *** %s\n", p
);
687 } else if (cb
&& cb
->ctx
&& !strcmp("APPENDUID", arg
)) {
688 if (!(arg
= next_arg(&s
)) || !(ctx
->uidvalidity
= atoi(arg
)) ||
689 !(arg
= next_arg(&s
)) || !(*(int *)cb
->ctx
= atoi(arg
))) {
690 fprintf(stderr
, "IMAP error: malformed APPENDUID status\n");
697 static int get_cmd_result(struct imap_store
*ctx
, struct imap_cmd
*tcmd
)
699 struct imap
*imap
= ctx
->imap
;
700 struct imap_cmd
*cmdp
, **pcmdp
;
702 const char *arg
, *arg1
;
703 int n
, resp
, resp2
, tag
;
706 if (buffer_gets(&imap
->buf
, &cmd
))
709 arg
= next_arg(&cmd
);
711 fprintf(stderr
, "IMAP error: empty response\n");
715 arg
= next_arg(&cmd
);
717 fprintf(stderr
, "IMAP error: unable to parse untagged response\n");
721 if (!strcmp("NAMESPACE", arg
)) {
722 /* rfc2342 NAMESPACE response. */
723 skip_list(&cmd
); /* Personal mailboxes */
724 skip_list(&cmd
); /* Others' mailboxes */
725 skip_list(&cmd
); /* Shared mailboxes */
726 } else if (!strcmp("OK", arg
) || !strcmp("BAD", arg
) ||
727 !strcmp("NO", arg
) || !strcmp("BYE", arg
)) {
728 if ((resp
= parse_response_code(ctx
, NULL
, cmd
)) != RESP_OK
)
730 } else if (!strcmp("CAPABILITY", arg
)) {
731 parse_capability(imap
, cmd
);
732 } else if ((arg1
= next_arg(&cmd
))) {
734 * Unhandled response-data with at least two words.
737 * NEEDSWORK: Previously this case handled '<num> EXISTS'
738 * and '<num> RECENT' but as a probably-unintended side
739 * effect it ignores other unrecognized two-word
740 * responses. imap-send doesn't ever try to read
741 * messages or mailboxes these days, so consider
742 * eliminating this case.
745 fprintf(stderr
, "IMAP error: unable to parse untagged response\n");
748 } else if (!imap
->in_progress
) {
749 fprintf(stderr
, "IMAP error: unexpected reply: %s %s\n", arg
, cmd
? cmd
: "");
751 } else if (*arg
== '+') {
752 /* This can happen only with the last command underway, as
753 it enforces a round-trip. */
754 cmdp
= (struct imap_cmd
*)((char *)imap
->in_progress_append
-
755 offsetof(struct imap_cmd
, next
));
757 n
= socket_write(&imap
->buf
.sock
, cmdp
->cb
.data
, cmdp
->cb
.dlen
);
758 FREE_AND_NULL(cmdp
->cb
.data
);
759 if (n
!= (int)cmdp
->cb
.dlen
)
761 } else if (cmdp
->cb
.cont
) {
762 if (cmdp
->cb
.cont(ctx
, cmd
))
765 fprintf(stderr
, "IMAP error: unexpected command continuation request\n");
768 if (socket_write(&imap
->buf
.sock
, "\r\n", 2) != 2)
771 imap
->literal_pending
= 0;
776 for (pcmdp
= &imap
->in_progress
; (cmdp
= *pcmdp
); pcmdp
= &cmdp
->next
)
777 if (cmdp
->tag
== tag
)
779 fprintf(stderr
, "IMAP error: unexpected tag %s\n", arg
);
782 if (!(*pcmdp
= cmdp
->next
))
783 imap
->in_progress_append
= pcmdp
;
784 imap
->num_in_progress
--;
785 if (cmdp
->cb
.cont
|| cmdp
->cb
.data
)
786 imap
->literal_pending
= 0;
787 arg
= next_arg(&cmd
);
790 if (!strcmp("OK", arg
))
793 if (!strcmp("NO", arg
))
795 else /*if (!strcmp("BAD", arg))*/
797 fprintf(stderr
, "IMAP command '%s' returned response (%s) - %s\n",
798 !starts_with(cmdp
->cmd
, "LOGIN") ?
799 cmdp
->cmd
: "LOGIN <user> <pass>",
800 arg
, cmd
? cmd
: "");
802 if ((resp2
= parse_response_code(ctx
, &cmdp
->cb
, cmd
)) > resp
)
807 if (!tcmd
|| tcmd
== cmdp
)
814 static void imap_close_server(struct imap_store
*ictx
)
816 struct imap
*imap
= ictx
->imap
;
818 if (imap
->buf
.sock
.fd
[0] != -1) {
819 imap_exec(ictx
, NULL
, "LOGOUT");
820 socket_shutdown(&imap
->buf
.sock
);
825 static void imap_close_store(struct imap_store
*ctx
)
827 imap_close_server(ctx
);
834 * hexchar() and cram() functions are based on the code from the isync
835 * project (https://isync.sourceforge.io/).
837 static char hexchar(unsigned int b
)
839 return b
< 10 ? '0' + b
: 'a' + (b
- 10);
842 #define ENCODED_SIZE(n) (4 * DIV_ROUND_UP((n), 3))
843 static char *cram(const char *challenge_64
, const char *user
, const char *pass
)
845 int i
, resp_len
, encoded_len
, decoded_len
;
846 unsigned char hash
[16];
848 char *response
, *response_64
, *challenge
;
851 * length of challenge_64 (i.e. base-64 encoded string) is a good
852 * enough upper bound for challenge (decoded result).
854 encoded_len
= strlen(challenge_64
);
855 challenge
= xmalloc(encoded_len
);
856 decoded_len
= EVP_DecodeBlock((unsigned char *)challenge
,
857 (unsigned char *)challenge_64
, encoded_len
);
859 die("invalid challenge %s", challenge_64
);
860 if (!HMAC(EVP_md5(), pass
, strlen(pass
), (unsigned char *)challenge
, decoded_len
, hash
, NULL
))
864 for (i
= 0; i
< 16; i
++) {
865 hex
[2 * i
] = hexchar((hash
[i
] >> 4) & 0xf);
866 hex
[2 * i
+ 1] = hexchar(hash
[i
] & 0xf);
869 /* response: "<user> <digest in hex>" */
870 response
= xstrfmt("%s %s", user
, hex
);
871 resp_len
= strlen(response
);
873 response_64
= xmallocz(ENCODED_SIZE(resp_len
));
874 encoded_len
= EVP_EncodeBlock((unsigned char *)response_64
,
875 (unsigned char *)response
, resp_len
);
877 die("EVP_EncodeBlock error");
878 return (char *)response_64
;
883 static char *cram(const char *challenge_64 UNUSED
,
884 const char *user UNUSED
,
885 const char *pass UNUSED
)
887 die("If you want to use CRAM-MD5 authenticate method, "
888 "you have to build git-imap-send with OpenSSL library.");
893 static int auth_cram_md5(struct imap_store
*ctx
, const char *prompt
)
898 response
= cram(prompt
, ctx
->cfg
->user
, ctx
->cfg
->pass
);
900 ret
= socket_write(&ctx
->imap
->buf
.sock
, response
, strlen(response
));
901 if (ret
!= strlen(response
))
902 return error("IMAP error: sending response failed");
909 static void server_fill_credential(struct imap_server_conf
*srvc
, struct credential
*cred
)
911 if (srvc
->user
&& srvc
->pass
)
914 cred
->protocol
= xstrdup(srvc
->use_ssl
? "imaps" : "imap");
915 cred
->host
= xstrdup(srvc
->host
);
917 cred
->username
= xstrdup_or_null(srvc
->user
);
918 cred
->password
= xstrdup_or_null(srvc
->pass
);
920 credential_fill(cred
, 1);
923 srvc
->user
= xstrdup(cred
->username
);
925 srvc
->pass
= xstrdup(cred
->password
);
928 static struct imap_store
*imap_open_store(struct imap_server_conf
*srvc
, const char *folder
)
930 struct credential cred
= CREDENTIAL_INIT
;
931 struct imap_store
*ctx
;
936 CALLOC_ARRAY(ctx
, 1);
939 ctx
->imap
= CALLOC_ARRAY(imap
, 1);
940 imap
->buf
.sock
.fd
[0] = imap
->buf
.sock
.fd
[1] = -1;
941 imap
->in_progress_append
= &imap
->in_progress
;
943 /* open connection to IMAP server */
946 struct child_process tunnel
= CHILD_PROCESS_INIT
;
948 imap_info("Starting tunnel '%s'... ", srvc
->tunnel
);
950 strvec_push(&tunnel
.args
, srvc
->tunnel
);
951 tunnel
.use_shell
= 1;
954 if (start_command(&tunnel
))
955 die("cannot start proxy %s", srvc
->tunnel
);
957 imap
->buf
.sock
.fd
[0] = tunnel
.out
;
958 imap
->buf
.sock
.fd
[1] = tunnel
.in
;
963 struct addrinfo hints
, *ai0
, *ai
;
967 xsnprintf(portstr
, sizeof(portstr
), "%d", srvc
->port
);
969 memset(&hints
, 0, sizeof(hints
));
970 hints
.ai_socktype
= SOCK_STREAM
;
971 hints
.ai_protocol
= IPPROTO_TCP
;
973 imap_info("Resolving %s... ", srvc
->host
);
974 gai
= getaddrinfo(srvc
->host
, portstr
, &hints
, &ai
);
976 fprintf(stderr
, "getaddrinfo: %s\n", gai_strerror(gai
));
981 for (ai0
= ai
; ai
; ai
= ai
->ai_next
) {
982 char addr
[NI_MAXHOST
];
984 s
= socket(ai
->ai_family
, ai
->ai_socktype
,
989 getnameinfo(ai
->ai_addr
, ai
->ai_addrlen
, addr
,
990 sizeof(addr
), NULL
, 0, NI_NUMERICHOST
);
991 imap_info("Connecting to [%s]:%s... ", addr
, portstr
);
993 if (connect(s
, ai
->ai_addr
, ai
->ai_addrlen
) < 0) {
1005 struct sockaddr_in addr
;
1007 memset(&addr
, 0, sizeof(addr
));
1008 addr
.sin_port
= htons(srvc
->port
);
1009 addr
.sin_family
= AF_INET
;
1011 imap_info("Resolving %s... ", srvc
->host
);
1012 he
= gethostbyname(srvc
->host
);
1014 perror("gethostbyname");
1019 addr
.sin_addr
.s_addr
= *((int *) he
->h_addr_list
[0]);
1021 s
= socket(PF_INET
, SOCK_STREAM
, 0);
1023 imap_info("Connecting to %s:%hu... ", inet_ntoa(addr
.sin_addr
), ntohs(addr
.sin_port
));
1024 if (connect(s
, (struct sockaddr
*)&addr
, sizeof(addr
))) {
1031 fputs("Error: unable to connect to server.\n", stderr
);
1035 imap
->buf
.sock
.fd
[0] = s
;
1036 imap
->buf
.sock
.fd
[1] = dup(s
);
1038 if (srvc
->use_ssl
&&
1039 ssl_socket_connect(&imap
->buf
.sock
, srvc
, 0)) {
1046 /* read the greeting string */
1047 if (buffer_gets(&imap
->buf
, &rsp
)) {
1048 fprintf(stderr
, "IMAP error: no greeting response\n");
1051 arg
= next_arg(&rsp
);
1052 if (!arg
|| *arg
!= '*' || (arg
= next_arg(&rsp
)) == NULL
) {
1053 fprintf(stderr
, "IMAP error: invalid greeting response\n");
1057 if (!strcmp("PREAUTH", arg
))
1059 else if (strcmp("OK", arg
) != 0) {
1060 fprintf(stderr
, "IMAP error: unknown greeting response\n");
1063 parse_response_code(ctx
, NULL
, rsp
);
1064 if (!imap
->caps
&& imap_exec(ctx
, NULL
, "CAPABILITY") != RESP_OK
)
1069 if (!srvc
->use_ssl
&& CAP(STARTTLS
)) {
1070 if (imap_exec(ctx
, NULL
, "STARTTLS") != RESP_OK
)
1072 if (ssl_socket_connect(&imap
->buf
.sock
, srvc
, 1))
1074 /* capabilities may have changed, so get the new capabilities */
1075 if (imap_exec(ctx
, NULL
, "CAPABILITY") != RESP_OK
)
1079 imap_info("Logging in...\n");
1080 server_fill_credential(srvc
, &cred
);
1082 if (srvc
->auth_method
) {
1083 struct imap_cmd_cb cb
;
1085 if (!strcmp(srvc
->auth_method
, "CRAM-MD5")) {
1086 if (!CAP(AUTH_CRAM_MD5
)) {
1087 fprintf(stderr
, "You specified "
1088 "CRAM-MD5 as authentication method, "
1089 "but %s doesn't support it.\n", srvc
->host
);
1094 memset(&cb
, 0, sizeof(cb
));
1095 cb
.cont
= auth_cram_md5
;
1096 if (imap_exec(ctx
, &cb
, "AUTHENTICATE CRAM-MD5") != RESP_OK
) {
1097 fprintf(stderr
, "IMAP error: AUTHENTICATE CRAM-MD5 failed\n");
1101 fprintf(stderr
, "Unknown authentication method:%s\n", srvc
->host
);
1106 fprintf(stderr
, "Skipping account %s@%s, server forbids LOGIN\n",
1107 srvc
->user
, srvc
->host
);
1110 if (!imap
->buf
.sock
.ssl
)
1111 imap_warn("*** IMAP Warning *** Password is being "
1112 "sent in the clear\n");
1113 if (imap_exec(ctx
, NULL
, "LOGIN \"%s\" \"%s\"", srvc
->user
, srvc
->pass
) != RESP_OK
) {
1114 fprintf(stderr
, "IMAP error: LOGIN failed\n");
1121 credential_approve(&cred
);
1122 credential_clear(&cred
);
1124 /* check the target mailbox exists */
1126 switch (imap_exec(ctx
, NULL
, "EXAMINE \"%s\"", ctx
->name
)) {
1131 fprintf(stderr
, "IMAP error: could not check mailbox\n");
1134 if (imap_exec(ctx
, NULL
, "CREATE \"%s\"", ctx
->name
) == RESP_OK
) {
1135 imap_info("Created missing mailbox\n");
1137 fprintf(stderr
, "IMAP error: could not create missing mailbox\n");
1148 credential_reject(&cred
);
1149 credential_clear(&cred
);
1152 imap_close_store(ctx
);
1157 * Insert CR characters as necessary in *msg to ensure that every LF
1158 * character in *msg is preceded by a CR.
1160 static void lf_to_crlf(struct strbuf
*msg
)
1166 /* First pass: tally, in j, the size of the new_msg string: */
1167 for (i
= j
= 0, lastc
= '\0'; i
< msg
->len
; i
++) {
1168 if (msg
->buf
[i
] == '\n' && lastc
!= '\r')
1169 j
++; /* a CR will need to be added here */
1170 lastc
= msg
->buf
[i
];
1174 new_msg
= xmallocz(j
);
1177 * Second pass: write the new_msg string. Note that this loop is
1178 * otherwise identical to the first pass.
1180 for (i
= j
= 0, lastc
= '\0'; i
< msg
->len
; i
++) {
1181 if (msg
->buf
[i
] == '\n' && lastc
!= '\r')
1182 new_msg
[j
++] = '\r';
1183 lastc
= new_msg
[j
++] = msg
->buf
[i
];
1185 strbuf_attach(msg
, new_msg
, j
, j
+ 1);
1189 * Store msg to IMAP. Also detach and free the data from msg->data,
1190 * leaving msg->data empty.
1192 static int imap_store_msg(struct imap_store
*ctx
, struct strbuf
*msg
)
1194 struct imap
*imap
= ctx
->imap
;
1195 struct imap_cmd_cb cb
;
1196 const char *prefix
, *box
;
1200 memset(&cb
, 0, sizeof(cb
));
1203 cb
.data
= strbuf_detach(msg
, NULL
);
1206 prefix
= !strcmp(box
, "INBOX") ? "" : ctx
->prefix
;
1207 ret
= imap_exec_m(ctx
, &cb
, "APPEND \"%s%s\" ", prefix
, box
);
1208 imap
->caps
= imap
->rcaps
;
1215 static void wrap_in_html(struct strbuf
*msg
)
1217 struct strbuf buf
= STRBUF_INIT
;
1218 static const char *content_type
= "Content-Type: text/html;\n";
1219 static const char *pre_open
= "<pre>\n";
1220 static const char *pre_close
= "</pre>\n";
1221 const char *body
= strstr(msg
->buf
, "\n\n");
1224 return; /* Headers but no body; no wrapping needed */
1228 strbuf_add(&buf
, msg
->buf
, body
- msg
->buf
- 1);
1229 strbuf_addstr(&buf
, content_type
);
1230 strbuf_addch(&buf
, '\n');
1231 strbuf_addstr(&buf
, pre_open
);
1232 strbuf_addstr_xml_quoted(&buf
, body
);
1233 strbuf_addstr(&buf
, pre_close
);
1235 strbuf_release(msg
);
1239 static int count_messages(struct strbuf
*all_msgs
)
1242 char *p
= all_msgs
->buf
;
1245 if (starts_with(p
, "From ")) {
1246 p
= strstr(p
+5, "\nFrom: ");
1248 p
= strstr(p
+7, "\nDate: ");
1250 p
= strstr(p
+7, "\nSubject: ");
1255 p
= strstr(p
+5, "\nFrom ");
1264 * Copy the next message from all_msgs, starting at offset *ofs, to
1265 * msg. Update *ofs to the start of the following message. Return
1266 * true iff a message was successfully copied.
1268 static int split_msg(struct strbuf
*all_msgs
, struct strbuf
*msg
, int *ofs
)
1273 if (*ofs
>= all_msgs
->len
)
1276 data
= &all_msgs
->buf
[*ofs
];
1277 len
= all_msgs
->len
- *ofs
;
1279 if (len
< 5 || !starts_with(data
, "From "))
1282 p
= strchr(data
, '\n');
1290 p
= strstr(data
, "\nFrom ");
1294 strbuf_add(msg
, data
, len
);
1299 static int git_imap_config(const char *var
, const char *val
,
1300 const struct config_context
*ctx
, void *cb
)
1302 struct imap_server_conf
*cfg
= cb
;
1304 if (!strcmp("imap.sslverify", var
)) {
1305 cfg
->ssl_verify
= git_config_bool(var
, val
);
1306 } else if (!strcmp("imap.preformattedhtml", var
)) {
1307 cfg
->use_html
= git_config_bool(var
, val
);
1308 } else if (!strcmp("imap.folder", var
)) {
1309 FREE_AND_NULL(cfg
->folder
);
1310 return git_config_string(&cfg
->folder
, var
, val
);
1311 } else if (!strcmp("imap.user", var
)) {
1312 FREE_AND_NULL(cfg
->folder
);
1313 return git_config_string(&cfg
->user
, var
, val
);
1314 } else if (!strcmp("imap.pass", var
)) {
1315 FREE_AND_NULL(cfg
->folder
);
1316 return git_config_string(&cfg
->pass
, var
, val
);
1317 } else if (!strcmp("imap.tunnel", var
)) {
1318 FREE_AND_NULL(cfg
->folder
);
1319 return git_config_string(&cfg
->tunnel
, var
, val
);
1320 } else if (!strcmp("imap.authmethod", var
)) {
1321 FREE_AND_NULL(cfg
->folder
);
1322 return git_config_string(&cfg
->auth_method
, var
, val
);
1323 } else if (!strcmp("imap.port", var
)) {
1324 cfg
->port
= git_config_int(var
, val
, ctx
->kvi
);
1325 } else if (!strcmp("imap.host", var
)) {
1327 return config_error_nonbool(var
);
1329 if (starts_with(val
, "imap:"))
1331 else if (starts_with(val
, "imaps:")) {
1335 if (starts_with(val
, "//"))
1337 cfg
->host
= xstrdup(val
);
1340 return git_default_config(var
, val
, ctx
, cb
);
1346 static int append_msgs_to_imap(struct imap_server_conf
*server
,
1347 struct strbuf
* all_msgs
, int total
)
1349 struct strbuf msg
= STRBUF_INIT
;
1350 struct imap_store
*ctx
= NULL
;
1355 ctx
= imap_open_store(server
, server
->folder
);
1357 fprintf(stderr
, "failed to open store\n");
1360 ctx
->name
= server
->folder
;
1362 fprintf(stderr
, "sending %d message%s\n", total
, (total
!= 1) ? "s" : "");
1364 unsigned percent
= n
* 100 / total
;
1366 fprintf(stderr
, "%4u%% (%d/%d) done\r", percent
, n
, total
);
1368 if (!split_msg(all_msgs
, &msg
, &ofs
))
1370 if (server
->use_html
)
1372 r
= imap_store_msg(ctx
, &msg
);
1377 fprintf(stderr
, "\n");
1379 imap_close_store(ctx
);
1384 #ifdef USE_CURL_FOR_IMAP_SEND
1385 static CURL
*setup_curl(struct imap_server_conf
*srvc
, struct credential
*cred
)
1388 struct strbuf path
= STRBUF_INIT
;
1389 char *uri_encoded_folder
;
1391 if (curl_global_init(CURL_GLOBAL_ALL
) != CURLE_OK
)
1392 die("curl_global_init failed");
1394 curl
= curl_easy_init();
1397 die("curl_easy_init failed");
1399 server_fill_credential(srvc
, cred
);
1400 curl_easy_setopt(curl
, CURLOPT_USERNAME
, srvc
->user
);
1401 curl_easy_setopt(curl
, CURLOPT_PASSWORD
, srvc
->pass
);
1403 strbuf_addstr(&path
, srvc
->use_ssl
? "imaps://" : "imap://");
1404 strbuf_addstr(&path
, srvc
->host
);
1405 if (!path
.len
|| path
.buf
[path
.len
- 1] != '/')
1406 strbuf_addch(&path
, '/');
1408 uri_encoded_folder
= curl_easy_escape(curl
, srvc
->folder
, 0);
1409 if (!uri_encoded_folder
)
1410 die("failed to encode server folder");
1411 strbuf_addstr(&path
, uri_encoded_folder
);
1412 curl_free(uri_encoded_folder
);
1414 curl_easy_setopt(curl
, CURLOPT_URL
, path
.buf
);
1415 strbuf_release(&path
);
1416 curl_easy_setopt(curl
, CURLOPT_PORT
, srvc
->port
);
1418 if (srvc
->auth_method
) {
1419 #ifndef GIT_CURL_HAVE_CURLOPT_LOGIN_OPTIONS
1420 warning("No LOGIN_OPTIONS support in this cURL version");
1422 struct strbuf auth
= STRBUF_INIT
;
1423 strbuf_addstr(&auth
, "AUTH=");
1424 strbuf_addstr(&auth
, srvc
->auth_method
);
1425 curl_easy_setopt(curl
, CURLOPT_LOGIN_OPTIONS
, auth
.buf
);
1426 strbuf_release(&auth
);
1431 curl_easy_setopt(curl
, CURLOPT_USE_SSL
, (long)CURLUSESSL_TRY
);
1433 curl_easy_setopt(curl
, CURLOPT_SSL_VERIFYPEER
, srvc
->ssl_verify
);
1434 curl_easy_setopt(curl
, CURLOPT_SSL_VERIFYHOST
, srvc
->ssl_verify
);
1436 curl_easy_setopt(curl
, CURLOPT_READFUNCTION
, fread_buffer
);
1438 curl_easy_setopt(curl
, CURLOPT_UPLOAD
, 1L);
1440 if (0 < verbosity
|| getenv("GIT_CURL_VERBOSE"))
1441 http_trace_curl_no_data();
1442 setup_curl_trace(curl
);
1447 static int curl_append_msgs_to_imap(struct imap_server_conf
*server
,
1448 struct strbuf
* all_msgs
, int total
)
1452 struct buffer msgbuf
= { STRBUF_INIT
, 0 };
1454 CURLcode res
= CURLE_OK
;
1455 struct credential cred
= CREDENTIAL_INIT
;
1457 curl
= setup_curl(server
, &cred
);
1458 curl_easy_setopt(curl
, CURLOPT_READDATA
, &msgbuf
);
1460 fprintf(stderr
, "sending %d message%s\n", total
, (total
!= 1) ? "s" : "");
1462 unsigned percent
= n
* 100 / total
;
1465 fprintf(stderr
, "%4u%% (%d/%d) done\r", percent
, n
, total
);
1467 prev_len
= msgbuf
.buf
.len
;
1468 if (!split_msg(all_msgs
, &msgbuf
.buf
, &ofs
))
1470 if (server
->use_html
)
1471 wrap_in_html(&msgbuf
.buf
);
1472 lf_to_crlf(&msgbuf
.buf
);
1474 curl_easy_setopt(curl
, CURLOPT_INFILESIZE_LARGE
,
1475 (curl_off_t
)(msgbuf
.buf
.len
-prev_len
));
1477 res
= curl_easy_perform(curl
);
1479 if(res
!= CURLE_OK
) {
1480 fprintf(stderr
, "curl_easy_perform() failed: %s\n",
1481 curl_easy_strerror(res
));
1487 fprintf(stderr
, "\n");
1489 curl_easy_cleanup(curl
);
1490 curl_global_cleanup();
1492 if (cred
.username
) {
1493 if (res
== CURLE_OK
)
1494 credential_approve(&cred
);
1495 else if (res
== CURLE_LOGIN_DENIED
)
1496 credential_reject(&cred
);
1499 credential_clear(&cred
);
1501 return res
!= CURLE_OK
;
1505 int cmd_main(int argc
, const char **argv
)
1507 struct imap_server_conf server
= {
1510 struct strbuf all_msgs
= STRBUF_INIT
;
1515 setup_git_directory_gently(&nongit_ok
);
1516 git_config(git_imap_config
, &server
);
1518 argc
= parse_options(argc
, (const char **)argv
, "", imap_send_options
, imap_send_usage
, 0);
1521 usage_with_options(imap_send_usage
, imap_send_options
);
1523 #ifndef USE_CURL_FOR_IMAP_SEND
1525 warning("--curl not supported in this build");
1528 #elif defined(NO_OPENSSL)
1530 warning("--no-curl not supported in this build");
1536 server
.port
= server
.use_ssl
? 993 : 143;
1538 if (!server
.folder
) {
1539 fprintf(stderr
, "no imap store specified\n");
1544 if (!server
.tunnel
) {
1545 fprintf(stderr
, "no imap host specified\n");
1549 server
.host
= xstrdup("tunnel");
1552 /* read the messages */
1553 if (strbuf_read(&all_msgs
, 0, 0) < 0) {
1554 error_errno(_("could not read from stdin"));
1559 if (all_msgs
.len
== 0) {
1560 fprintf(stderr
, "nothing to send\n");
1565 total
= count_messages(&all_msgs
);
1567 fprintf(stderr
, "no messages to send\n");
1572 /* write it to the imap server */
1575 ret
= append_msgs_to_imap(&server
, &all_msgs
, total
);
1576 #ifdef USE_CURL_FOR_IMAP_SEND
1578 ret
= curl_append_msgs_to_imap(&server
, &all_msgs
, total
);
1581 ret
= append_msgs_to_imap(&server
, &all_msgs
, total
);
1584 free(server
.tunnel
);
1586 free(server
.folder
);
1589 free(server
.auth_method
);
1590 strbuf_release(&all_msgs
);