2 * git-imap-send - drops patches into an imap Drafts folder
3 * derived from isync/mbsync - mailbox synchronizer
5 * Copyright (C) 2000-2002 Michael R. Elkins <me@mutt.org>
6 * Copyright (C) 2002-2004 Oswald Buddenhagen <ossi@users.sf.net>
7 * Copyright (C) 2004 Theodore Y. Ts'o <tytso@mit.edu>
8 * Copyright (C) 2006 Mike McCormack
10 * This program is free software; you can redistribute it and/or modify
11 * it under the terms of the GNU General Public License as published by
12 * the Free Software Foundation; either version 2 of the License, or
13 * (at your option) any later version.
15 * This program is distributed in the hope that it will be useful,
16 * but WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 * GNU General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, see <https://www.gnu.org/licenses/>.
24 #include "git-compat-util.h"
26 #include "credential.h"
29 #include "run-command.h"
30 #include "parse-options.h"
33 #if defined(NO_OPENSSL) && !defined(HAVE_OPENSSL_CSPRNG)
36 #ifdef USE_CURL_FOR_IMAP_SEND
40 #if defined(USE_CURL_FOR_IMAP_SEND)
41 /* Always default to curl if it's available. */
42 #define USE_CURL_DEFAULT 1
44 /* We don't have curl, so continue to use the historical implementation */
45 #define USE_CURL_DEFAULT 0
49 static int use_curl
= USE_CURL_DEFAULT
;
51 static const char * const imap_send_usage
[] = { "git imap-send [-v] [-q] [--[no-]curl] < <mbox>", NULL
};
53 static struct option imap_send_options
[] = {
54 OPT__VERBOSITY(&verbosity
),
55 OPT_BOOL(0, "curl", &use_curl
, "use libcurl to communicate with the IMAP server"),
61 #define DRV_MSG_BAD -1
62 #define DRV_BOX_BAD -2
63 #define DRV_STORE_BAD -3
65 __attribute__((format (printf
, 1, 2)))
66 static void imap_info(const char *, ...);
67 __attribute__((format (printf
, 1, 2)))
68 static void imap_warn(const char *, ...);
70 static char *next_arg(char **);
72 __attribute__((format (printf
, 3, 4)))
73 static int nfsnprintf(char *buf
, int blen
, const char *fmt
, ...);
75 static int nfvasprintf(char **strp
, const char *fmt
, va_list ap
)
80 len
= vsnprintf(tmp
, sizeof(tmp
), fmt
, ap
);
82 die("Fatal: Out of memory");
83 if (len
>= sizeof(tmp
))
84 die("imap command overflow!");
85 *strp
= xmemdupz(tmp
, len
);
89 struct imap_server_conf
{
100 const char *auth_method
;
103 static struct imap_server_conf server
= {
113 struct imap_socket sock
;
122 int uidnext
; /* from SELECT responses */
123 unsigned caps
, rcaps
; /* CAPABILITY results */
125 int nexttag
, num_in_progress
, literal_pending
;
126 struct imap_cmd
*in_progress
, **in_progress_append
;
127 struct imap_buffer buf
; /* this is BIG, so put it last */
131 /* currently open mailbox */
132 const char *name
; /* foreign! maybe preset? */
139 int (*cont
)(struct imap_store
*ctx
, const char *prompt
);
146 struct imap_cmd
*next
;
147 struct imap_cmd_cb cb
;
152 #define CAP(cap) (imap->caps & (1 << (cap)))
163 static const char *cap_list
[] = {
176 static int get_cmd_result(struct imap_store
*ctx
, struct imap_cmd
*tcmd
);
180 static void ssl_socket_perror(const char *func
)
182 fprintf(stderr
, "%s: %s\n", func
, ERR_error_string(ERR_get_error(), NULL
));
186 static void socket_perror(const char *func
, struct imap_socket
*sock
, int ret
)
190 int sslerr
= SSL_get_error(sock
->ssl
, ret
);
194 case SSL_ERROR_SYSCALL
:
195 perror("SSL_connect");
198 ssl_socket_perror("SSL_connect");
207 fprintf(stderr
, "%s: unexpected EOF\n", func
);
209 /* mark as used to appease -Wunused-parameter with NO_OPENSSL */
214 static int ssl_socket_connect(struct imap_socket
*sock UNUSED
,
215 int use_tls_only UNUSED
,
218 fprintf(stderr
, "SSL requested but SSL support not compiled in\n");
224 static int host_matches(const char *host
, const char *pattern
)
226 if (pattern
[0] == '*' && pattern
[1] == '.') {
228 if (!(host
= strchr(host
, '.')))
233 return *host
&& *pattern
&& !strcasecmp(host
, pattern
);
236 static int verify_hostname(X509
*cert
, const char *hostname
)
242 STACK_OF(GENERAL_NAME
) *subj_alt_names
;
244 /* try the DNS subjectAltNames */
246 if ((subj_alt_names
= X509_get_ext_d2i(cert
, NID_subject_alt_name
, NULL
, NULL
))) {
247 int num_subj_alt_names
= sk_GENERAL_NAME_num(subj_alt_names
);
248 for (i
= 0; !found
&& i
< num_subj_alt_names
; i
++) {
249 GENERAL_NAME
*subj_alt_name
= sk_GENERAL_NAME_value(subj_alt_names
, i
);
250 if (subj_alt_name
->type
== GEN_DNS
&&
251 strlen((const char *)subj_alt_name
->d
.ia5
->data
) == (size_t)subj_alt_name
->d
.ia5
->length
&&
252 host_matches(hostname
, (const char *)(subj_alt_name
->d
.ia5
->data
)))
255 sk_GENERAL_NAME_pop_free(subj_alt_names
, GENERAL_NAME_free
);
260 /* try the common name */
261 if (!(subj
= X509_get_subject_name(cert
)))
262 return error("cannot get certificate subject");
263 if ((len
= X509_NAME_get_text_by_NID(subj
, NID_commonName
, cname
, sizeof(cname
))) < 0)
264 return error("cannot get certificate common name");
265 if (strlen(cname
) == (size_t)len
&& host_matches(hostname
, cname
))
267 return error("certificate owner '%s' does not match hostname '%s'",
271 static int ssl_socket_connect(struct imap_socket
*sock
, int use_tls_only
, int verify
)
273 #if (OPENSSL_VERSION_NUMBER >= 0x10000000L)
274 const SSL_METHOD
*meth
;
283 SSL_load_error_strings();
285 meth
= SSLv23_method();
287 ssl_socket_perror("SSLv23_method");
291 ctx
= SSL_CTX_new(meth
);
293 ssl_socket_perror("SSL_CTX_new");
298 SSL_CTX_set_options(ctx
, SSL_OP_NO_SSLv2
| SSL_OP_NO_SSLv3
);
301 SSL_CTX_set_verify(ctx
, SSL_VERIFY_PEER
, NULL
);
303 if (!SSL_CTX_set_default_verify_paths(ctx
)) {
304 ssl_socket_perror("SSL_CTX_set_default_verify_paths");
307 sock
->ssl
= SSL_new(ctx
);
309 ssl_socket_perror("SSL_new");
312 if (!SSL_set_rfd(sock
->ssl
, sock
->fd
[0])) {
313 ssl_socket_perror("SSL_set_rfd");
316 if (!SSL_set_wfd(sock
->ssl
, sock
->fd
[1])) {
317 ssl_socket_perror("SSL_set_wfd");
321 #ifdef SSL_CTRL_SET_TLSEXT_HOSTNAME
324 * OpenSSL does not document this function, but the implementation
325 * returns 1 on success, 0 on failure after calling SSLerr().
327 ret
= SSL_set_tlsext_host_name(sock
->ssl
, server
.host
);
329 warning("SSL_set_tlsext_host_name(%s) failed.", server
.host
);
332 ret
= SSL_connect(sock
->ssl
);
334 socket_perror("SSL_connect", sock
, ret
);
339 /* make sure the hostname matches that of the certificate */
340 cert
= SSL_get_peer_certificate(sock
->ssl
);
342 return error("unable to get peer certificate.");
343 if (verify_hostname(cert
, server
.host
) < 0)
351 static int socket_read(struct imap_socket
*sock
, char *buf
, int len
)
356 n
= SSL_read(sock
->ssl
, buf
, len
);
359 n
= xread(sock
->fd
[0], buf
, len
);
361 socket_perror("read", sock
, n
);
364 sock
->fd
[0] = sock
->fd
[1] = -1;
369 static int socket_write(struct imap_socket
*sock
, const char *buf
, int len
)
374 n
= SSL_write(sock
->ssl
, buf
, len
);
377 n
= write_in_full(sock
->fd
[1], buf
, len
);
379 socket_perror("write", sock
, n
);
382 sock
->fd
[0] = sock
->fd
[1] = -1;
387 static void socket_shutdown(struct imap_socket
*sock
)
391 SSL_shutdown(sock
->ssl
);
399 /* simple line buffering */
400 static int buffer_gets(struct imap_buffer
*b
, char **s
)
403 int start
= b
->offset
;
408 /* make sure we have enough data to read the \r\n sequence */
409 if (b
->offset
+ 1 >= b
->bytes
) {
411 /* shift down used bytes */
414 assert(start
<= b
->bytes
);
415 n
= b
->bytes
- start
;
418 memmove(b
->buf
, b
->buf
+ start
, n
);
424 n
= socket_read(&b
->sock
, b
->buf
+ b
->bytes
,
425 sizeof(b
->buf
) - b
->bytes
);
433 if (b
->buf
[b
->offset
] == '\r') {
434 assert(b
->offset
+ 1 < b
->bytes
);
435 if (b
->buf
[b
->offset
+ 1] == '\n') {
436 b
->buf
[b
->offset
] = 0; /* terminate the string */
437 b
->offset
+= 2; /* next line */
449 __attribute__((format (printf
, 1, 2)))
450 static void imap_info(const char *msg
, ...)
454 if (0 <= verbosity
) {
462 __attribute__((format (printf
, 1, 2)))
463 static void imap_warn(const char *msg
, ...)
467 if (-2 < verbosity
) {
469 vfprintf(stderr
, msg
, va
);
474 static char *next_arg(char **s
)
480 while (isspace((unsigned char) **s
))
489 *s
= strchr(*s
, '"');
492 while (**s
&& !isspace((unsigned char) **s
))
504 __attribute__((format (printf
, 3, 4)))
505 static int nfsnprintf(char *buf
, int blen
, const char *fmt
, ...)
511 if (blen
<= 0 || (unsigned)(ret
= vsnprintf(buf
, blen
, fmt
, va
)) >= (unsigned)blen
)
512 BUG("buffer too small. Please report a bug.");
517 static struct imap_cmd
*issue_imap_cmd(struct imap_store
*ctx
,
518 struct imap_cmd_cb
*cb
,
519 const char *fmt
, va_list ap
)
521 struct imap
*imap
= ctx
->imap
;
522 struct imap_cmd
*cmd
;
526 cmd
= xmalloc(sizeof(struct imap_cmd
));
527 nfvasprintf(&cmd
->cmd
, fmt
, ap
);
528 cmd
->tag
= ++imap
->nexttag
;
533 memset(&cmd
->cb
, 0, sizeof(cmd
->cb
));
535 while (imap
->literal_pending
)
536 get_cmd_result(ctx
, NULL
);
539 bufl
= nfsnprintf(buf
, sizeof(buf
), "%d %s\r\n", cmd
->tag
, cmd
->cmd
);
541 bufl
= nfsnprintf(buf
, sizeof(buf
), "%d %s{%d%s}\r\n",
542 cmd
->tag
, cmd
->cmd
, cmd
->cb
.dlen
,
543 CAP(LITERALPLUS
) ? "+" : "");
546 if (imap
->num_in_progress
)
547 printf("(%d in progress) ", imap
->num_in_progress
);
548 if (!starts_with(cmd
->cmd
, "LOGIN"))
549 printf(">>> %s", buf
);
551 printf(">>> %d LOGIN <user> <pass>\n", cmd
->tag
);
553 if (socket_write(&imap
->buf
.sock
, buf
, bufl
) != bufl
) {
561 if (CAP(LITERALPLUS
)) {
562 n
= socket_write(&imap
->buf
.sock
, cmd
->cb
.data
, cmd
->cb
.dlen
);
564 if (n
!= cmd
->cb
.dlen
||
565 socket_write(&imap
->buf
.sock
, "\r\n", 2) != 2) {
572 imap
->literal_pending
= 1;
573 } else if (cmd
->cb
.cont
)
574 imap
->literal_pending
= 1;
576 *imap
->in_progress_append
= cmd
;
577 imap
->in_progress_append
= &cmd
->next
;
578 imap
->num_in_progress
++;
582 __attribute__((format (printf
, 3, 4)))
583 static int imap_exec(struct imap_store
*ctx
, struct imap_cmd_cb
*cb
,
584 const char *fmt
, ...)
587 struct imap_cmd
*cmdp
;
590 cmdp
= issue_imap_cmd(ctx
, cb
, fmt
, ap
);
595 return get_cmd_result(ctx
, cmdp
);
598 __attribute__((format (printf
, 3, 4)))
599 static int imap_exec_m(struct imap_store
*ctx
, struct imap_cmd_cb
*cb
,
600 const char *fmt
, ...)
603 struct imap_cmd
*cmdp
;
606 cmdp
= issue_imap_cmd(ctx
, cb
, fmt
, ap
);
609 return DRV_STORE_BAD
;
611 switch (get_cmd_result(ctx
, cmdp
)) {
612 case RESP_BAD
: return DRV_STORE_BAD
;
613 case RESP_NO
: return DRV_MSG_BAD
;
614 default: return DRV_OK
;
618 static int skip_imap_list_l(char **sp
, int level
)
623 while (isspace((unsigned char)*s
))
625 if (level
&& *s
== ')') {
632 if (skip_imap_list_l(&s
, level
+ 1))
634 } else if (*s
== '"') {
637 for (; *s
!= '"'; s
++)
643 for (; *s
&& !isspace((unsigned char)*s
); s
++)
644 if (level
&& *s
== ')')
660 static void skip_list(char **sp
)
662 skip_imap_list_l(sp
, 0);
665 static void parse_capability(struct imap
*imap
, char *cmd
)
670 imap
->caps
= 0x80000000;
671 while ((arg
= next_arg(&cmd
)))
672 for (i
= 0; i
< ARRAY_SIZE(cap_list
); i
++)
673 if (!strcmp(cap_list
[i
], arg
))
674 imap
->caps
|= 1 << i
;
675 imap
->rcaps
= imap
->caps
;
678 static int parse_response_code(struct imap_store
*ctx
, struct imap_cmd_cb
*cb
,
681 struct imap
*imap
= ctx
->imap
;
685 return RESP_OK
; /* no response code */
687 if (!(p
= strchr(s
, ']'))) {
688 fprintf(stderr
, "IMAP error: malformed response code\n");
694 fprintf(stderr
, "IMAP error: empty response code\n");
697 if (!strcmp("UIDVALIDITY", arg
)) {
698 if (!(arg
= next_arg(&s
)) || !(ctx
->uidvalidity
= atoi(arg
))) {
699 fprintf(stderr
, "IMAP error: malformed UIDVALIDITY status\n");
702 } else if (!strcmp("UIDNEXT", arg
)) {
703 if (!(arg
= next_arg(&s
)) || !(imap
->uidnext
= atoi(arg
))) {
704 fprintf(stderr
, "IMAP error: malformed NEXTUID status\n");
707 } else if (!strcmp("CAPABILITY", arg
)) {
708 parse_capability(imap
, s
);
709 } else if (!strcmp("ALERT", arg
)) {
710 /* RFC2060 says that these messages MUST be displayed
713 for (; isspace((unsigned char)*p
); p
++);
714 fprintf(stderr
, "*** IMAP ALERT *** %s\n", p
);
715 } else if (cb
&& cb
->ctx
&& !strcmp("APPENDUID", arg
)) {
716 if (!(arg
= next_arg(&s
)) || !(ctx
->uidvalidity
= atoi(arg
)) ||
717 !(arg
= next_arg(&s
)) || !(*(int *)cb
->ctx
= atoi(arg
))) {
718 fprintf(stderr
, "IMAP error: malformed APPENDUID status\n");
725 static int get_cmd_result(struct imap_store
*ctx
, struct imap_cmd
*tcmd
)
727 struct imap
*imap
= ctx
->imap
;
728 struct imap_cmd
*cmdp
, **pcmdp
;
730 const char *arg
, *arg1
;
731 int n
, resp
, resp2
, tag
;
734 if (buffer_gets(&imap
->buf
, &cmd
))
737 arg
= next_arg(&cmd
);
739 fprintf(stderr
, "IMAP error: empty response\n");
743 arg
= next_arg(&cmd
);
745 fprintf(stderr
, "IMAP error: unable to parse untagged response\n");
749 if (!strcmp("NAMESPACE", arg
)) {
750 /* rfc2342 NAMESPACE response. */
751 skip_list(&cmd
); /* Personal mailboxes */
752 skip_list(&cmd
); /* Others' mailboxes */
753 skip_list(&cmd
); /* Shared mailboxes */
754 } else if (!strcmp("OK", arg
) || !strcmp("BAD", arg
) ||
755 !strcmp("NO", arg
) || !strcmp("BYE", arg
)) {
756 if ((resp
= parse_response_code(ctx
, NULL
, cmd
)) != RESP_OK
)
758 } else if (!strcmp("CAPABILITY", arg
)) {
759 parse_capability(imap
, cmd
);
760 } else if ((arg1
= next_arg(&cmd
))) {
762 * Unhandled response-data with at least two words.
765 * NEEDSWORK: Previously this case handled '<num> EXISTS'
766 * and '<num> RECENT' but as a probably-unintended side
767 * effect it ignores other unrecognized two-word
768 * responses. imap-send doesn't ever try to read
769 * messages or mailboxes these days, so consider
770 * eliminating this case.
773 fprintf(stderr
, "IMAP error: unable to parse untagged response\n");
776 } else if (!imap
->in_progress
) {
777 fprintf(stderr
, "IMAP error: unexpected reply: %s %s\n", arg
, cmd
? cmd
: "");
779 } else if (*arg
== '+') {
780 /* This can happen only with the last command underway, as
781 it enforces a round-trip. */
782 cmdp
= (struct imap_cmd
*)((char *)imap
->in_progress_append
-
783 offsetof(struct imap_cmd
, next
));
785 n
= socket_write(&imap
->buf
.sock
, cmdp
->cb
.data
, cmdp
->cb
.dlen
);
786 FREE_AND_NULL(cmdp
->cb
.data
);
787 if (n
!= (int)cmdp
->cb
.dlen
)
789 } else if (cmdp
->cb
.cont
) {
790 if (cmdp
->cb
.cont(ctx
, cmd
))
793 fprintf(stderr
, "IMAP error: unexpected command continuation request\n");
796 if (socket_write(&imap
->buf
.sock
, "\r\n", 2) != 2)
799 imap
->literal_pending
= 0;
804 for (pcmdp
= &imap
->in_progress
; (cmdp
= *pcmdp
); pcmdp
= &cmdp
->next
)
805 if (cmdp
->tag
== tag
)
807 fprintf(stderr
, "IMAP error: unexpected tag %s\n", arg
);
810 if (!(*pcmdp
= cmdp
->next
))
811 imap
->in_progress_append
= pcmdp
;
812 imap
->num_in_progress
--;
813 if (cmdp
->cb
.cont
|| cmdp
->cb
.data
)
814 imap
->literal_pending
= 0;
815 arg
= next_arg(&cmd
);
818 if (!strcmp("OK", arg
))
821 if (!strcmp("NO", arg
))
823 else /*if (!strcmp("BAD", arg))*/
825 fprintf(stderr
, "IMAP command '%s' returned response (%s) - %s\n",
826 !starts_with(cmdp
->cmd
, "LOGIN") ?
827 cmdp
->cmd
: "LOGIN <user> <pass>",
828 arg
, cmd
? cmd
: "");
830 if ((resp2
= parse_response_code(ctx
, &cmdp
->cb
, cmd
)) > resp
)
835 if (!tcmd
|| tcmd
== cmdp
)
842 static void imap_close_server(struct imap_store
*ictx
)
844 struct imap
*imap
= ictx
->imap
;
846 if (imap
->buf
.sock
.fd
[0] != -1) {
847 imap_exec(ictx
, NULL
, "LOGOUT");
848 socket_shutdown(&imap
->buf
.sock
);
853 static void imap_close_store(struct imap_store
*ctx
)
855 imap_close_server(ctx
);
862 * hexchar() and cram() functions are based on the code from the isync
863 * project (https://isync.sourceforge.io/).
865 static char hexchar(unsigned int b
)
867 return b
< 10 ? '0' + b
: 'a' + (b
- 10);
870 #define ENCODED_SIZE(n) (4 * DIV_ROUND_UP((n), 3))
871 static char *cram(const char *challenge_64
, const char *user
, const char *pass
)
873 int i
, resp_len
, encoded_len
, decoded_len
;
874 unsigned char hash
[16];
876 char *response
, *response_64
, *challenge
;
879 * length of challenge_64 (i.e. base-64 encoded string) is a good
880 * enough upper bound for challenge (decoded result).
882 encoded_len
= strlen(challenge_64
);
883 challenge
= xmalloc(encoded_len
);
884 decoded_len
= EVP_DecodeBlock((unsigned char *)challenge
,
885 (unsigned char *)challenge_64
, encoded_len
);
887 die("invalid challenge %s", challenge_64
);
888 if (!HMAC(EVP_md5(), pass
, strlen(pass
), (unsigned char *)challenge
, decoded_len
, hash
, NULL
))
892 for (i
= 0; i
< 16; i
++) {
893 hex
[2 * i
] = hexchar((hash
[i
] >> 4) & 0xf);
894 hex
[2 * i
+ 1] = hexchar(hash
[i
] & 0xf);
897 /* response: "<user> <digest in hex>" */
898 response
= xstrfmt("%s %s", user
, hex
);
899 resp_len
= strlen(response
);
901 response_64
= xmallocz(ENCODED_SIZE(resp_len
));
902 encoded_len
= EVP_EncodeBlock((unsigned char *)response_64
,
903 (unsigned char *)response
, resp_len
);
905 die("EVP_EncodeBlock error");
906 return (char *)response_64
;
911 static char *cram(const char *challenge_64 UNUSED
,
912 const char *user UNUSED
,
913 const char *pass UNUSED
)
915 die("If you want to use CRAM-MD5 authenticate method, "
916 "you have to build git-imap-send with OpenSSL library.");
921 static int auth_cram_md5(struct imap_store
*ctx
, const char *prompt
)
926 response
= cram(prompt
, server
.user
, server
.pass
);
928 ret
= socket_write(&ctx
->imap
->buf
.sock
, response
, strlen(response
));
929 if (ret
!= strlen(response
))
930 return error("IMAP error: sending response failed");
937 static void server_fill_credential(struct imap_server_conf
*srvc
, struct credential
*cred
)
939 if (srvc
->user
&& srvc
->pass
)
942 cred
->protocol
= xstrdup(srvc
->use_ssl
? "imaps" : "imap");
943 cred
->host
= xstrdup(srvc
->host
);
945 cred
->username
= xstrdup_or_null(srvc
->user
);
946 cred
->password
= xstrdup_or_null(srvc
->pass
);
948 credential_fill(cred
);
951 srvc
->user
= xstrdup(cred
->username
);
953 srvc
->pass
= xstrdup(cred
->password
);
956 static struct imap_store
*imap_open_store(struct imap_server_conf
*srvc
, const char *folder
)
958 struct credential cred
= CREDENTIAL_INIT
;
959 struct imap_store
*ctx
;
964 CALLOC_ARRAY(ctx
, 1);
966 ctx
->imap
= CALLOC_ARRAY(imap
, 1);
967 imap
->buf
.sock
.fd
[0] = imap
->buf
.sock
.fd
[1] = -1;
968 imap
->in_progress_append
= &imap
->in_progress
;
970 /* open connection to IMAP server */
973 struct child_process tunnel
= CHILD_PROCESS_INIT
;
975 imap_info("Starting tunnel '%s'... ", srvc
->tunnel
);
977 strvec_push(&tunnel
.args
, srvc
->tunnel
);
978 tunnel
.use_shell
= 1;
981 if (start_command(&tunnel
))
982 die("cannot start proxy %s", srvc
->tunnel
);
984 imap
->buf
.sock
.fd
[0] = tunnel
.out
;
985 imap
->buf
.sock
.fd
[1] = tunnel
.in
;
990 struct addrinfo hints
, *ai0
, *ai
;
994 xsnprintf(portstr
, sizeof(portstr
), "%d", srvc
->port
);
996 memset(&hints
, 0, sizeof(hints
));
997 hints
.ai_socktype
= SOCK_STREAM
;
998 hints
.ai_protocol
= IPPROTO_TCP
;
1000 imap_info("Resolving %s... ", srvc
->host
);
1001 gai
= getaddrinfo(srvc
->host
, portstr
, &hints
, &ai
);
1003 fprintf(stderr
, "getaddrinfo: %s\n", gai_strerror(gai
));
1008 for (ai0
= ai
; ai
; ai
= ai
->ai_next
) {
1009 char addr
[NI_MAXHOST
];
1011 s
= socket(ai
->ai_family
, ai
->ai_socktype
,
1016 getnameinfo(ai
->ai_addr
, ai
->ai_addrlen
, addr
,
1017 sizeof(addr
), NULL
, 0, NI_NUMERICHOST
);
1018 imap_info("Connecting to [%s]:%s... ", addr
, portstr
);
1020 if (connect(s
, ai
->ai_addr
, ai
->ai_addrlen
) < 0) {
1032 struct sockaddr_in addr
;
1034 memset(&addr
, 0, sizeof(addr
));
1035 addr
.sin_port
= htons(srvc
->port
);
1036 addr
.sin_family
= AF_INET
;
1038 imap_info("Resolving %s... ", srvc
->host
);
1039 he
= gethostbyname(srvc
->host
);
1041 perror("gethostbyname");
1046 addr
.sin_addr
.s_addr
= *((int *) he
->h_addr_list
[0]);
1048 s
= socket(PF_INET
, SOCK_STREAM
, 0);
1050 imap_info("Connecting to %s:%hu... ", inet_ntoa(addr
.sin_addr
), ntohs(addr
.sin_port
));
1051 if (connect(s
, (struct sockaddr
*)&addr
, sizeof(addr
))) {
1058 fputs("Error: unable to connect to server.\n", stderr
);
1062 imap
->buf
.sock
.fd
[0] = s
;
1063 imap
->buf
.sock
.fd
[1] = dup(s
);
1065 if (srvc
->use_ssl
&&
1066 ssl_socket_connect(&imap
->buf
.sock
, 0, srvc
->ssl_verify
)) {
1073 /* read the greeting string */
1074 if (buffer_gets(&imap
->buf
, &rsp
)) {
1075 fprintf(stderr
, "IMAP error: no greeting response\n");
1078 arg
= next_arg(&rsp
);
1079 if (!arg
|| *arg
!= '*' || (arg
= next_arg(&rsp
)) == NULL
) {
1080 fprintf(stderr
, "IMAP error: invalid greeting response\n");
1084 if (!strcmp("PREAUTH", arg
))
1086 else if (strcmp("OK", arg
) != 0) {
1087 fprintf(stderr
, "IMAP error: unknown greeting response\n");
1090 parse_response_code(ctx
, NULL
, rsp
);
1091 if (!imap
->caps
&& imap_exec(ctx
, NULL
, "CAPABILITY") != RESP_OK
)
1096 if (!srvc
->use_ssl
&& CAP(STARTTLS
)) {
1097 if (imap_exec(ctx
, NULL
, "STARTTLS") != RESP_OK
)
1099 if (ssl_socket_connect(&imap
->buf
.sock
, 1,
1102 /* capabilities may have changed, so get the new capabilities */
1103 if (imap_exec(ctx
, NULL
, "CAPABILITY") != RESP_OK
)
1107 imap_info("Logging in...\n");
1108 server_fill_credential(srvc
, &cred
);
1110 if (srvc
->auth_method
) {
1111 struct imap_cmd_cb cb
;
1113 if (!strcmp(srvc
->auth_method
, "CRAM-MD5")) {
1114 if (!CAP(AUTH_CRAM_MD5
)) {
1115 fprintf(stderr
, "You specified "
1116 "CRAM-MD5 as authentication method, "
1117 "but %s doesn't support it.\n", srvc
->host
);
1122 memset(&cb
, 0, sizeof(cb
));
1123 cb
.cont
= auth_cram_md5
;
1124 if (imap_exec(ctx
, &cb
, "AUTHENTICATE CRAM-MD5") != RESP_OK
) {
1125 fprintf(stderr
, "IMAP error: AUTHENTICATE CRAM-MD5 failed\n");
1129 fprintf(stderr
, "Unknown authentication method:%s\n", srvc
->host
);
1134 fprintf(stderr
, "Skipping account %s@%s, server forbids LOGIN\n",
1135 srvc
->user
, srvc
->host
);
1138 if (!imap
->buf
.sock
.ssl
)
1139 imap_warn("*** IMAP Warning *** Password is being "
1140 "sent in the clear\n");
1141 if (imap_exec(ctx
, NULL
, "LOGIN \"%s\" \"%s\"", srvc
->user
, srvc
->pass
) != RESP_OK
) {
1142 fprintf(stderr
, "IMAP error: LOGIN failed\n");
1149 credential_approve(&cred
);
1150 credential_clear(&cred
);
1152 /* check the target mailbox exists */
1154 switch (imap_exec(ctx
, NULL
, "EXAMINE \"%s\"", ctx
->name
)) {
1159 fprintf(stderr
, "IMAP error: could not check mailbox\n");
1162 if (imap_exec(ctx
, NULL
, "CREATE \"%s\"", ctx
->name
) == RESP_OK
) {
1163 imap_info("Created missing mailbox\n");
1165 fprintf(stderr
, "IMAP error: could not create missing mailbox\n");
1176 credential_reject(&cred
);
1177 credential_clear(&cred
);
1180 imap_close_store(ctx
);
1185 * Insert CR characters as necessary in *msg to ensure that every LF
1186 * character in *msg is preceded by a CR.
1188 static void lf_to_crlf(struct strbuf
*msg
)
1194 /* First pass: tally, in j, the size of the new_msg string: */
1195 for (i
= j
= 0, lastc
= '\0'; i
< msg
->len
; i
++) {
1196 if (msg
->buf
[i
] == '\n' && lastc
!= '\r')
1197 j
++; /* a CR will need to be added here */
1198 lastc
= msg
->buf
[i
];
1202 new_msg
= xmallocz(j
);
1205 * Second pass: write the new_msg string. Note that this loop is
1206 * otherwise identical to the first pass.
1208 for (i
= j
= 0, lastc
= '\0'; i
< msg
->len
; i
++) {
1209 if (msg
->buf
[i
] == '\n' && lastc
!= '\r')
1210 new_msg
[j
++] = '\r';
1211 lastc
= new_msg
[j
++] = msg
->buf
[i
];
1213 strbuf_attach(msg
, new_msg
, j
, j
+ 1);
1217 * Store msg to IMAP. Also detach and free the data from msg->data,
1218 * leaving msg->data empty.
1220 static int imap_store_msg(struct imap_store
*ctx
, struct strbuf
*msg
)
1222 struct imap
*imap
= ctx
->imap
;
1223 struct imap_cmd_cb cb
;
1224 const char *prefix
, *box
;
1228 memset(&cb
, 0, sizeof(cb
));
1231 cb
.data
= strbuf_detach(msg
, NULL
);
1234 prefix
= !strcmp(box
, "INBOX") ? "" : ctx
->prefix
;
1235 ret
= imap_exec_m(ctx
, &cb
, "APPEND \"%s%s\" ", prefix
, box
);
1236 imap
->caps
= imap
->rcaps
;
1243 static void wrap_in_html(struct strbuf
*msg
)
1245 struct strbuf buf
= STRBUF_INIT
;
1246 static char *content_type
= "Content-Type: text/html;\n";
1247 static char *pre_open
= "<pre>\n";
1248 static char *pre_close
= "</pre>\n";
1249 const char *body
= strstr(msg
->buf
, "\n\n");
1252 return; /* Headers but no body; no wrapping needed */
1256 strbuf_add(&buf
, msg
->buf
, body
- msg
->buf
- 1);
1257 strbuf_addstr(&buf
, content_type
);
1258 strbuf_addch(&buf
, '\n');
1259 strbuf_addstr(&buf
, pre_open
);
1260 strbuf_addstr_xml_quoted(&buf
, body
);
1261 strbuf_addstr(&buf
, pre_close
);
1263 strbuf_release(msg
);
1267 static int count_messages(struct strbuf
*all_msgs
)
1270 char *p
= all_msgs
->buf
;
1273 if (starts_with(p
, "From ")) {
1274 p
= strstr(p
+5, "\nFrom: ");
1276 p
= strstr(p
+7, "\nDate: ");
1278 p
= strstr(p
+7, "\nSubject: ");
1283 p
= strstr(p
+5, "\nFrom ");
1292 * Copy the next message from all_msgs, starting at offset *ofs, to
1293 * msg. Update *ofs to the start of the following message. Return
1294 * true iff a message was successfully copied.
1296 static int split_msg(struct strbuf
*all_msgs
, struct strbuf
*msg
, int *ofs
)
1301 if (*ofs
>= all_msgs
->len
)
1304 data
= &all_msgs
->buf
[*ofs
];
1305 len
= all_msgs
->len
- *ofs
;
1307 if (len
< 5 || !starts_with(data
, "From "))
1310 p
= strchr(data
, '\n');
1318 p
= strstr(data
, "\nFrom ");
1322 strbuf_add(msg
, data
, len
);
1327 static int git_imap_config(const char *var
, const char *val
,
1328 const struct config_context
*ctx
, void *cb
)
1331 if (!strcmp("imap.sslverify", var
))
1332 server
.ssl_verify
= git_config_bool(var
, val
);
1333 else if (!strcmp("imap.preformattedhtml", var
))
1334 server
.use_html
= git_config_bool(var
, val
);
1335 else if (!strcmp("imap.folder", var
))
1336 return git_config_string(&server
.folder
, var
, val
);
1337 else if (!strcmp("imap.user", var
))
1338 return git_config_string(&server
.user
, var
, val
);
1339 else if (!strcmp("imap.pass", var
))
1340 return git_config_string(&server
.pass
, var
, val
);
1341 else if (!strcmp("imap.tunnel", var
))
1342 return git_config_string(&server
.tunnel
, var
, val
);
1343 else if (!strcmp("imap.authmethod", var
))
1344 return git_config_string(&server
.auth_method
, var
, val
);
1345 else if (!strcmp("imap.port", var
))
1346 server
.port
= git_config_int(var
, val
, ctx
->kvi
);
1347 else if (!strcmp("imap.host", var
)) {
1349 return config_error_nonbool(var
);
1351 if (starts_with(val
, "imap:"))
1353 else if (starts_with(val
, "imaps:")) {
1357 if (starts_with(val
, "//"))
1359 server
.host
= xstrdup(val
);
1362 return git_default_config(var
, val
, ctx
, cb
);
1367 static int append_msgs_to_imap(struct imap_server_conf
*server
,
1368 struct strbuf
* all_msgs
, int total
)
1370 struct strbuf msg
= STRBUF_INIT
;
1371 struct imap_store
*ctx
= NULL
;
1376 ctx
= imap_open_store(server
, server
->folder
);
1378 fprintf(stderr
, "failed to open store\n");
1381 ctx
->name
= server
->folder
;
1383 fprintf(stderr
, "sending %d message%s\n", total
, (total
!= 1) ? "s" : "");
1385 unsigned percent
= n
* 100 / total
;
1387 fprintf(stderr
, "%4u%% (%d/%d) done\r", percent
, n
, total
);
1389 if (!split_msg(all_msgs
, &msg
, &ofs
))
1391 if (server
->use_html
)
1393 r
= imap_store_msg(ctx
, &msg
);
1398 fprintf(stderr
, "\n");
1400 imap_close_store(ctx
);
1405 #ifdef USE_CURL_FOR_IMAP_SEND
1406 static CURL
*setup_curl(struct imap_server_conf
*srvc
, struct credential
*cred
)
1409 struct strbuf path
= STRBUF_INIT
;
1410 char *uri_encoded_folder
;
1412 if (curl_global_init(CURL_GLOBAL_ALL
) != CURLE_OK
)
1413 die("curl_global_init failed");
1415 curl
= curl_easy_init();
1418 die("curl_easy_init failed");
1420 server_fill_credential(srvc
, cred
);
1421 curl_easy_setopt(curl
, CURLOPT_USERNAME
, srvc
->user
);
1422 curl_easy_setopt(curl
, CURLOPT_PASSWORD
, srvc
->pass
);
1424 strbuf_addstr(&path
, srvc
->use_ssl
? "imaps://" : "imap://");
1425 strbuf_addstr(&path
, srvc
->host
);
1426 if (!path
.len
|| path
.buf
[path
.len
- 1] != '/')
1427 strbuf_addch(&path
, '/');
1429 uri_encoded_folder
= curl_easy_escape(curl
, srvc
->folder
, 0);
1430 if (!uri_encoded_folder
)
1431 die("failed to encode server folder");
1432 strbuf_addstr(&path
, uri_encoded_folder
);
1433 curl_free(uri_encoded_folder
);
1435 curl_easy_setopt(curl
, CURLOPT_URL
, path
.buf
);
1436 strbuf_release(&path
);
1437 curl_easy_setopt(curl
, CURLOPT_PORT
, srvc
->port
);
1439 if (srvc
->auth_method
) {
1440 #ifndef GIT_CURL_HAVE_CURLOPT_LOGIN_OPTIONS
1441 warning("No LOGIN_OPTIONS support in this cURL version");
1443 struct strbuf auth
= STRBUF_INIT
;
1444 strbuf_addstr(&auth
, "AUTH=");
1445 strbuf_addstr(&auth
, srvc
->auth_method
);
1446 curl_easy_setopt(curl
, CURLOPT_LOGIN_OPTIONS
, auth
.buf
);
1447 strbuf_release(&auth
);
1452 curl_easy_setopt(curl
, CURLOPT_USE_SSL
, (long)CURLUSESSL_TRY
);
1454 curl_easy_setopt(curl
, CURLOPT_SSL_VERIFYPEER
, srvc
->ssl_verify
);
1455 curl_easy_setopt(curl
, CURLOPT_SSL_VERIFYHOST
, srvc
->ssl_verify
);
1457 curl_easy_setopt(curl
, CURLOPT_READFUNCTION
, fread_buffer
);
1459 curl_easy_setopt(curl
, CURLOPT_UPLOAD
, 1L);
1461 if (0 < verbosity
|| getenv("GIT_CURL_VERBOSE"))
1462 http_trace_curl_no_data();
1463 setup_curl_trace(curl
);
1468 static int curl_append_msgs_to_imap(struct imap_server_conf
*server
,
1469 struct strbuf
* all_msgs
, int total
)
1473 struct buffer msgbuf
= { STRBUF_INIT
, 0 };
1475 CURLcode res
= CURLE_OK
;
1476 struct credential cred
= CREDENTIAL_INIT
;
1478 curl
= setup_curl(server
, &cred
);
1479 curl_easy_setopt(curl
, CURLOPT_READDATA
, &msgbuf
);
1481 fprintf(stderr
, "sending %d message%s\n", total
, (total
!= 1) ? "s" : "");
1483 unsigned percent
= n
* 100 / total
;
1486 fprintf(stderr
, "%4u%% (%d/%d) done\r", percent
, n
, total
);
1488 prev_len
= msgbuf
.buf
.len
;
1489 if (!split_msg(all_msgs
, &msgbuf
.buf
, &ofs
))
1491 if (server
->use_html
)
1492 wrap_in_html(&msgbuf
.buf
);
1493 lf_to_crlf(&msgbuf
.buf
);
1495 curl_easy_setopt(curl
, CURLOPT_INFILESIZE_LARGE
,
1496 (curl_off_t
)(msgbuf
.buf
.len
-prev_len
));
1498 res
= curl_easy_perform(curl
);
1500 if(res
!= CURLE_OK
) {
1501 fprintf(stderr
, "curl_easy_perform() failed: %s\n",
1502 curl_easy_strerror(res
));
1508 fprintf(stderr
, "\n");
1510 curl_easy_cleanup(curl
);
1511 curl_global_cleanup();
1513 if (cred
.username
) {
1514 if (res
== CURLE_OK
)
1515 credential_approve(&cred
);
1516 else if (res
== CURLE_LOGIN_DENIED
)
1517 credential_reject(&cred
);
1520 credential_clear(&cred
);
1522 return res
!= CURLE_OK
;
1526 int cmd_main(int argc
, const char **argv
)
1528 struct strbuf all_msgs
= STRBUF_INIT
;
1532 setup_git_directory_gently(&nongit_ok
);
1533 git_config(git_imap_config
, NULL
);
1535 argc
= parse_options(argc
, (const char **)argv
, "", imap_send_options
, imap_send_usage
, 0);
1538 usage_with_options(imap_send_usage
, imap_send_options
);
1540 #ifndef USE_CURL_FOR_IMAP_SEND
1542 warning("--curl not supported in this build");
1545 #elif defined(NO_OPENSSL)
1547 warning("--no-curl not supported in this build");
1553 server
.port
= server
.use_ssl
? 993 : 143;
1555 if (!server
.folder
) {
1556 fprintf(stderr
, "no imap store specified\n");
1560 if (!server
.tunnel
) {
1561 fprintf(stderr
, "no imap host specified\n");
1564 server
.host
= "tunnel";
1567 /* read the messages */
1568 if (strbuf_read(&all_msgs
, 0, 0) < 0) {
1569 error_errno(_("could not read from stdin"));
1573 if (all_msgs
.len
== 0) {
1574 fprintf(stderr
, "nothing to send\n");
1578 total
= count_messages(&all_msgs
);
1580 fprintf(stderr
, "no messages to send\n");
1584 /* write it to the imap server */
1587 return append_msgs_to_imap(&server
, &all_msgs
, total
);
1589 #ifdef USE_CURL_FOR_IMAP_SEND
1591 return curl_append_msgs_to_imap(&server
, &all_msgs
, total
);
1594 return append_msgs_to_imap(&server
, &all_msgs
, total
);