mirror of
https://github.com/curl/curl.git
synced 2024-12-21 06:50:10 +08:00
e52fc1e297
Tidied up result variables to be consistent in name, declaration order and default values.
1738 lines
48 KiB
C
1738 lines
48 KiB
C
/***************************************************************************
|
|
* _ _ ____ _
|
|
* Project ___| | | | _ \| |
|
|
* / __| | | | |_) | |
|
|
* | (__| |_| | _ <| |___
|
|
* \___|\___/|_| \_\_____|
|
|
*
|
|
* Copyright (C) 1998 - 2013, Daniel Stenberg, <daniel@haxx.se>, et al.
|
|
*
|
|
* This software is licensed as described in the file COPYING, which
|
|
* you should have received as part of this distribution. The terms
|
|
* are also available at http://curl.haxx.se/docs/copyright.html.
|
|
*
|
|
* You may opt to use, copy, modify, merge, publish, distribute and/or sell
|
|
* copies of the Software, and permit persons to whom the Software is
|
|
* furnished to do so, under the terms of the COPYING file.
|
|
*
|
|
* This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
|
|
* KIND, either express or implied.
|
|
*
|
|
* RFC2195 CRAM-MD5 authentication
|
|
* RFC2595 Using TLS with IMAP, POP3 and ACAP
|
|
* RFC2831 DIGEST-MD5 authentication
|
|
* RFC3501 IMAPv4 protocol
|
|
* RFC4422 Simple Authentication and Security Layer (SASL)
|
|
* RFC4616 PLAIN authentication
|
|
* RFC4959 IMAP Extension for SASL Initial Client Response
|
|
* RFC5092 IMAP URL Scheme
|
|
*
|
|
***************************************************************************/
|
|
|
|
#include "curl_setup.h"
|
|
|
|
#ifndef CURL_DISABLE_IMAP
|
|
|
|
#ifdef HAVE_NETINET_IN_H
|
|
#include <netinet/in.h>
|
|
#endif
|
|
#ifdef HAVE_ARPA_INET_H
|
|
#include <arpa/inet.h>
|
|
#endif
|
|
#ifdef HAVE_UTSNAME_H
|
|
#include <sys/utsname.h>
|
|
#endif
|
|
#ifdef HAVE_NETDB_H
|
|
#include <netdb.h>
|
|
#endif
|
|
#ifdef __VMS
|
|
#include <in.h>
|
|
#include <inet.h>
|
|
#endif
|
|
|
|
#if (defined(NETWARE) && defined(__NOVELL_LIBC__))
|
|
#undef in_addr_t
|
|
#define in_addr_t unsigned long
|
|
#endif
|
|
|
|
#include <curl/curl.h>
|
|
#include "urldata.h"
|
|
#include "sendf.h"
|
|
#include "if2ip.h"
|
|
#include "hostip.h"
|
|
#include "progress.h"
|
|
#include "transfer.h"
|
|
#include "escape.h"
|
|
#include "http.h" /* for HTTP proxy tunnel stuff */
|
|
#include "socks.h"
|
|
#include "imap.h"
|
|
|
|
#include "strtoofft.h"
|
|
#include "strequal.h"
|
|
#include "sslgen.h"
|
|
#include "connect.h"
|
|
#include "strerror.h"
|
|
#include "select.h"
|
|
#include "multiif.h"
|
|
#include "url.h"
|
|
#include "rawstr.h"
|
|
#include "curl_sasl.h"
|
|
|
|
#define _MPRINTF_REPLACE /* use our functions only */
|
|
#include <curl/mprintf.h>
|
|
|
|
#include "curl_memory.h"
|
|
/* The last #include file should be: */
|
|
#include "memdebug.h"
|
|
|
|
/* Local API functions */
|
|
static CURLcode imap_parse_url_path(struct connectdata *conn);
|
|
static CURLcode imap_regular_transfer(struct connectdata *conn, bool *done);
|
|
static CURLcode imap_do(struct connectdata *conn, bool *done);
|
|
static CURLcode imap_done(struct connectdata *conn, CURLcode status,
|
|
bool premature);
|
|
static CURLcode imap_connect(struct connectdata *conn, bool *done);
|
|
static CURLcode imap_disconnect(struct connectdata *conn, bool dead);
|
|
static CURLcode imap_multi_statemach(struct connectdata *conn, bool *done);
|
|
static int imap_getsock(struct connectdata *conn, curl_socket_t *socks,
|
|
int numsocks);
|
|
static CURLcode imap_doing(struct connectdata *conn, bool *dophase_done);
|
|
static CURLcode imap_setup_connection(struct connectdata *conn);
|
|
|
|
/*
|
|
* IMAP protocol handler.
|
|
*/
|
|
|
|
const struct Curl_handler Curl_handler_imap = {
|
|
"IMAP", /* scheme */
|
|
imap_setup_connection, /* setup_connection */
|
|
imap_do, /* do_it */
|
|
imap_done, /* done */
|
|
ZERO_NULL, /* do_more */
|
|
imap_connect, /* connect_it */
|
|
imap_multi_statemach, /* connecting */
|
|
imap_doing, /* doing */
|
|
imap_getsock, /* proto_getsock */
|
|
imap_getsock, /* doing_getsock */
|
|
ZERO_NULL, /* domore_getsock */
|
|
ZERO_NULL, /* perform_getsock */
|
|
imap_disconnect, /* disconnect */
|
|
ZERO_NULL, /* readwrite */
|
|
PORT_IMAP, /* defport */
|
|
CURLPROTO_IMAP, /* protocol */
|
|
PROTOPT_CLOSEACTION | PROTOPT_NEEDSPWD
|
|
| PROTOPT_NOURLQUERY /* flags */
|
|
};
|
|
|
|
#ifdef USE_SSL
|
|
/*
|
|
* IMAPS protocol handler.
|
|
*/
|
|
|
|
const struct Curl_handler Curl_handler_imaps = {
|
|
"IMAPS", /* scheme */
|
|
imap_setup_connection, /* setup_connection */
|
|
imap_do, /* do_it */
|
|
imap_done, /* done */
|
|
ZERO_NULL, /* do_more */
|
|
imap_connect, /* connect_it */
|
|
imap_multi_statemach, /* connecting */
|
|
imap_doing, /* doing */
|
|
imap_getsock, /* proto_getsock */
|
|
imap_getsock, /* doing_getsock */
|
|
ZERO_NULL, /* domore_getsock */
|
|
ZERO_NULL, /* perform_getsock */
|
|
imap_disconnect, /* disconnect */
|
|
ZERO_NULL, /* readwrite */
|
|
PORT_IMAPS, /* defport */
|
|
CURLPROTO_IMAP | CURLPROTO_IMAPS, /* protocol */
|
|
PROTOPT_CLOSEACTION | PROTOPT_SSL | PROTOPT_NEEDSPWD
|
|
| PROTOPT_NOURLQUERY /* flags */
|
|
};
|
|
#endif
|
|
|
|
#ifndef CURL_DISABLE_HTTP
|
|
/*
|
|
* HTTP-proxyed IMAP protocol handler.
|
|
*/
|
|
|
|
static const struct Curl_handler Curl_handler_imap_proxy = {
|
|
"IMAP", /* scheme */
|
|
ZERO_NULL, /* setup_connection */
|
|
Curl_http, /* do_it */
|
|
Curl_http_done, /* done */
|
|
ZERO_NULL, /* do_more */
|
|
ZERO_NULL, /* connect_it */
|
|
ZERO_NULL, /* connecting */
|
|
ZERO_NULL, /* doing */
|
|
ZERO_NULL, /* proto_getsock */
|
|
ZERO_NULL, /* doing_getsock */
|
|
ZERO_NULL, /* domore_getsock */
|
|
ZERO_NULL, /* perform_getsock */
|
|
ZERO_NULL, /* disconnect */
|
|
ZERO_NULL, /* readwrite */
|
|
PORT_IMAP, /* defport */
|
|
CURLPROTO_HTTP, /* protocol */
|
|
PROTOPT_NONE /* flags */
|
|
};
|
|
|
|
#ifdef USE_SSL
|
|
/*
|
|
* HTTP-proxyed IMAPS protocol handler.
|
|
*/
|
|
|
|
static const struct Curl_handler Curl_handler_imaps_proxy = {
|
|
"IMAPS", /* scheme */
|
|
ZERO_NULL, /* setup_connection */
|
|
Curl_http, /* do_it */
|
|
Curl_http_done, /* done */
|
|
ZERO_NULL, /* do_more */
|
|
ZERO_NULL, /* connect_it */
|
|
ZERO_NULL, /* connecting */
|
|
ZERO_NULL, /* doing */
|
|
ZERO_NULL, /* proto_getsock */
|
|
ZERO_NULL, /* doing_getsock */
|
|
ZERO_NULL, /* domore_getsock */
|
|
ZERO_NULL, /* perform_getsock */
|
|
ZERO_NULL, /* disconnect */
|
|
ZERO_NULL, /* readwrite */
|
|
PORT_IMAPS, /* defport */
|
|
CURLPROTO_HTTP, /* protocol */
|
|
PROTOPT_NONE /* flags */
|
|
};
|
|
#endif
|
|
#endif
|
|
|
|
#ifdef USE_SSL
|
|
static void imap_to_imaps(struct connectdata *conn)
|
|
{
|
|
conn->handler = &Curl_handler_imaps;
|
|
}
|
|
#else
|
|
#define imap_to_imaps(x) Curl_nop_stmt
|
|
#endif
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_sendf()
|
|
*
|
|
* Sends the formated string as an IMAP command to the server.
|
|
*
|
|
* Designed to never block.
|
|
*/
|
|
static CURLcode imap_sendf(struct connectdata *conn, const char *fmt, ...)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
char *taggedfmt;
|
|
va_list ap;
|
|
va_start(ap, fmt);
|
|
|
|
/* Calculate the next command ID wrapping at 3 digits */
|
|
imapc->cmdid = (imapc->cmdid + 1) % 1000;
|
|
|
|
/* Calculate the tag based on the connection ID and command ID */
|
|
snprintf(imapc->resptag, sizeof(imapc->resptag), "%c%03d",
|
|
'A' + (conn->connection_id % 26), imapc->cmdid);
|
|
|
|
taggedfmt = aprintf("%s %s", imapc->resptag, fmt);
|
|
if(!taggedfmt)
|
|
return CURLE_OUT_OF_MEMORY;
|
|
|
|
result = Curl_pp_vsendf(&imapc->pp, taggedfmt, ap);
|
|
|
|
Curl_safefree(taggedfmt);
|
|
va_end(ap);
|
|
|
|
return result;
|
|
}
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_atom()
|
|
*
|
|
* Checks the input string for characters that need escaping and returns an
|
|
* atom ready for sending to the server.
|
|
*
|
|
* The returned string needs to be freed.
|
|
*
|
|
*/
|
|
static char* imap_atom(const char* str)
|
|
{
|
|
const char *p1;
|
|
char *p2;
|
|
size_t backsp_count = 0;
|
|
size_t quote_count = 0;
|
|
bool space_exists = FALSE;
|
|
size_t newlen = 0;
|
|
char *newstr = NULL;
|
|
|
|
if(!str)
|
|
return NULL;
|
|
|
|
/* Count any unescapped characters */
|
|
p1 = str;
|
|
while(*p1) {
|
|
if(*p1 == '\\')
|
|
backsp_count++;
|
|
else if(*p1 == '"')
|
|
quote_count++;
|
|
else if(*p1 == ' ')
|
|
space_exists = TRUE;
|
|
|
|
p1++;
|
|
}
|
|
|
|
/* Does the input contain any unescapped characters? */
|
|
if(!backsp_count && !quote_count && !space_exists)
|
|
return strdup(str);
|
|
|
|
/* Calculate the new string length */
|
|
newlen = strlen(str) + backsp_count + quote_count + (space_exists ? 2 : 0);
|
|
|
|
/* Allocate the new string */
|
|
newstr = (char *) malloc((newlen + 1) * sizeof(char));
|
|
if(!newstr)
|
|
return NULL;
|
|
|
|
/* Surround the string in quotes if necessary */
|
|
p2 = newstr;
|
|
if(space_exists) {
|
|
newstr[0] = '"';
|
|
newstr[newlen - 1] = '"';
|
|
p2++;
|
|
}
|
|
|
|
/* Copy the string, escaping backslash and quote characters along the way */
|
|
p1 = str;
|
|
while(*p1) {
|
|
if(*p1 == '\\' || *p1 == '"') {
|
|
*p2 = '\\';
|
|
p2++;
|
|
}
|
|
|
|
*p2 = *p1;
|
|
|
|
p1++;
|
|
p2++;
|
|
}
|
|
|
|
/* Terminate the string */
|
|
newstr[newlen] = '\0';
|
|
|
|
return newstr;
|
|
}
|
|
|
|
/* Function that checks for an ending IMAP status code at the start of the
|
|
given string but also detects various capabilities from the CAPABILITY
|
|
response including the supported authentication mechanisms. */
|
|
static bool imap_endofresp(struct connectdata *conn, char *line, size_t len,
|
|
int *resp)
|
|
{
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
const char *id = imapc->resptag;
|
|
size_t id_len = strlen(id);
|
|
size_t wordlen;
|
|
|
|
/* Do we have a command response? */
|
|
if(len >= id_len + 3) {
|
|
if(!memcmp(id, line, id_len) && line[id_len] == ' ') {
|
|
*resp = line[id_len + 1]; /* O, N or B */
|
|
|
|
return TRUE;
|
|
}
|
|
}
|
|
|
|
/* Do we have a continuation response? */
|
|
if((len == 3 && !memcmp("+", line, 1)) ||
|
|
(len >= 2 && !memcmp("+ ", line, 2))) {
|
|
*resp = '+';
|
|
|
|
return TRUE;
|
|
}
|
|
|
|
/* Are we processing CAPABILITY command data? */
|
|
if(imapc->state == IMAP_CAPABILITY) {
|
|
/* Do we have a valid response? */
|
|
if(len >= 2 && !memcmp("* ", line, 2)) {
|
|
line += 2;
|
|
len -= 2;
|
|
|
|
/* Loop through the data line */
|
|
for(;;) {
|
|
while(len &&
|
|
(*line == ' ' || *line == '\t' ||
|
|
*line == '\r' || *line == '\n')) {
|
|
|
|
line++;
|
|
len--;
|
|
}
|
|
|
|
if(!len)
|
|
break;
|
|
|
|
/* Extract the word */
|
|
for(wordlen = 0; wordlen < len && line[wordlen] != ' ' &&
|
|
line[wordlen] != '\t' && line[wordlen] != '\r' &&
|
|
line[wordlen] != '\n';)
|
|
wordlen++;
|
|
|
|
/* Does the server support the STARTTLS capability? */
|
|
if(len >= 8 && !memcmp(line, "STARTTLS", 8))
|
|
imapc->tls_supported = TRUE;
|
|
|
|
/* Has the server explicitly disabled clear text authentication? */
|
|
else if(wordlen == 13 && !memcmp(line, "LOGINDISABLED", 13))
|
|
imapc->login_disabled = TRUE;
|
|
|
|
/* Does the server support the SASL-IR capability? */
|
|
else if(wordlen == 7 && !memcmp(line, "SASL-IR", 7))
|
|
imapc->ir_supported = TRUE;
|
|
|
|
/* Do we have a SASL based authentication mechanism? */
|
|
else if(wordlen > 5 && !memcmp(line, "AUTH=", 5)) {
|
|
line += 5;
|
|
len -= 5;
|
|
wordlen -= 5;
|
|
|
|
/* Test the word for a matching authentication mechanism */
|
|
if(wordlen == 5 && !memcmp(line, "LOGIN", 5))
|
|
imapc->authmechs |= SASL_MECH_LOGIN;
|
|
if(wordlen == 5 && !memcmp(line, "PLAIN", 5))
|
|
imapc->authmechs |= SASL_MECH_PLAIN;
|
|
else if(wordlen == 8 && !memcmp(line, "CRAM-MD5", 8))
|
|
imapc->authmechs |= SASL_MECH_CRAM_MD5;
|
|
else if(wordlen == 10 && !memcmp(line, "DIGEST-MD5", 10))
|
|
imapc->authmechs |= SASL_MECH_DIGEST_MD5;
|
|
else if(wordlen == 6 && !memcmp(line, "GSSAPI", 6))
|
|
imapc->authmechs |= SASL_MECH_GSSAPI;
|
|
else if(wordlen == 8 && !memcmp(line, "EXTERNAL", 8))
|
|
imapc->authmechs |= SASL_MECH_EXTERNAL;
|
|
else if(wordlen == 4 && !memcmp(line, "NTLM", 4))
|
|
imapc->authmechs |= SASL_MECH_NTLM;
|
|
}
|
|
|
|
line += wordlen;
|
|
len -= wordlen;
|
|
}
|
|
}
|
|
}
|
|
/* Are we processing FETCH command responses? */
|
|
else if(imapc->state == IMAP_FETCH) {
|
|
/* Do we have a valid response? */
|
|
if(len >= 2 && !memcmp("* ", line, 2)) {
|
|
*resp = '*';
|
|
|
|
return TRUE;
|
|
}
|
|
}
|
|
|
|
return FALSE; /* Nothing for us */
|
|
}
|
|
|
|
/* This is the ONLY way to change IMAP state! */
|
|
static void state(struct connectdata *conn, imapstate newstate)
|
|
{
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
#if defined(DEBUGBUILD) && !defined(CURL_DISABLE_VERBOSE_STRINGS)
|
|
/* for debug purposes */
|
|
static const char * const names[]={
|
|
"STOP",
|
|
"SERVERGREET",
|
|
"CAPABILITY",
|
|
"STARTTLS",
|
|
"UPGRADETLS",
|
|
"AUTHENTICATE_PLAIN",
|
|
"AUTHENTICATE_LOGIN",
|
|
"AUTHENTICATE_LOGIN_PASSWD",
|
|
"AUTHENTICATE_CRAMMD5",
|
|
"AUTHENTICATE_DIGESTMD5",
|
|
"AUTHENTICATE_DIGESTMD5_RESP",
|
|
"AUTHENTICATE_NTLM",
|
|
"AUTHENTICATE_NTLM_TYPE2MSG",
|
|
"AUTHENTICATE",
|
|
"LOGIN",
|
|
"SELECT",
|
|
"FETCH",
|
|
"LOGOUT",
|
|
/* LAST */
|
|
};
|
|
|
|
if(imapc->state != newstate)
|
|
infof(conn->data, "IMAP %p state change from %s to %s\n",
|
|
imapc, names[imapc->state], names[newstate]);
|
|
#endif
|
|
|
|
imapc->state = newstate;
|
|
}
|
|
|
|
static CURLcode imap_state_capability(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
|
|
imapc->authmechs = 0; /* No known authentication mechanisms yet */
|
|
imapc->authused = 0; /* Clear the authentication mechanism used */
|
|
imapc->tls_supported = FALSE; /* Clear the TLS capability */
|
|
|
|
/* Send the CAPABILITY command */
|
|
result = imap_sendf(conn, "CAPABILITY");
|
|
|
|
if(result)
|
|
return result;
|
|
|
|
state(conn, IMAP_CAPABILITY);
|
|
|
|
return CURLE_OK;
|
|
}
|
|
|
|
static CURLcode imap_state_starttls(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
|
|
/* Send the STARTTLS command */
|
|
result = imap_sendf(conn, "STARTTLS");
|
|
|
|
if(!result)
|
|
state(conn, IMAP_STARTTLS);
|
|
|
|
return result;
|
|
}
|
|
|
|
static CURLcode imap_state_upgrade_tls(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
|
|
/* Start the SSL connection */
|
|
result = Curl_ssl_connect_nonblocking(conn, FIRSTSOCKET, &imapc->ssldone);
|
|
|
|
if(!result) {
|
|
if(imapc->state != IMAP_UPGRADETLS)
|
|
state(conn, IMAP_UPGRADETLS);
|
|
|
|
if(imapc->ssldone) {
|
|
imap_to_imaps(conn);
|
|
result = imap_state_capability(conn);
|
|
}
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
static CURLcode imap_state_login(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct FTP *imap = conn->data->state.proto.imap;
|
|
char *user;
|
|
char *passwd;
|
|
|
|
/* Check we have a username and password to authenticate with and end the
|
|
connect phase if we don't */
|
|
if(!conn->bits.user_passwd) {
|
|
state(conn, IMAP_STOP);
|
|
|
|
return result;
|
|
}
|
|
|
|
/* Make sure the username and password are in the correct atom format */
|
|
user = imap_atom(imap->user);
|
|
passwd = imap_atom(imap->passwd);
|
|
|
|
/* Send USER and password */
|
|
result = imap_sendf(conn, "LOGIN %s %s", user ? user : "",
|
|
passwd ? passwd : "");
|
|
|
|
Curl_safefree(user);
|
|
Curl_safefree(passwd);
|
|
|
|
if(result)
|
|
return result;
|
|
|
|
state(conn, IMAP_LOGIN);
|
|
|
|
return CURLE_OK;
|
|
}
|
|
|
|
static CURLcode imap_authenticate(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
const char *mech = NULL;
|
|
char *initresp = NULL;
|
|
size_t len = 0;
|
|
imapstate state1 = IMAP_STOP;
|
|
imapstate state2 = IMAP_STOP;
|
|
|
|
/* Check we have a username and password to authenticate with and end the
|
|
connect phase if we don't */
|
|
if(!conn->bits.user_passwd) {
|
|
state(conn, IMAP_STOP);
|
|
|
|
return result;
|
|
}
|
|
|
|
/* Calculate the supported authentication mechanism by decreasing order of
|
|
security */
|
|
#ifndef CURL_DISABLE_CRYPTO_AUTH
|
|
if(imapc->authmechs & SASL_MECH_DIGEST_MD5) {
|
|
mech = "DIGEST-MD5";
|
|
state1 = IMAP_AUTHENTICATE_DIGESTMD5;
|
|
imapc->authused = SASL_MECH_DIGEST_MD5;
|
|
}
|
|
else if(imapc->authmechs & SASL_MECH_CRAM_MD5) {
|
|
mech = "CRAM-MD5";
|
|
state1 = IMAP_AUTHENTICATE_CRAMMD5;
|
|
imapc->authused = SASL_MECH_CRAM_MD5;
|
|
}
|
|
else
|
|
#endif
|
|
#ifdef USE_NTLM
|
|
if(imapc->authmechs & SASL_MECH_NTLM) {
|
|
mech = "NTLM";
|
|
state1 = IMAP_AUTHENTICATE_NTLM;
|
|
state2 = IMAP_AUTHENTICATE_NTLM_TYPE2MSG;
|
|
imapc->authused = SASL_MECH_NTLM;
|
|
|
|
if(imapc->ir_supported)
|
|
result = Curl_sasl_create_login_message(conn->data, conn->user,
|
|
&initresp, &len);
|
|
}
|
|
else
|
|
#endif
|
|
if(imapc->authmechs & SASL_MECH_LOGIN) {
|
|
mech = "LOGIN";
|
|
state1 = IMAP_AUTHENTICATE_LOGIN;
|
|
state2 = IMAP_AUTHENTICATE_LOGIN_PASSWD;
|
|
imapc->authused = SASL_MECH_LOGIN;
|
|
|
|
if(imapc->ir_supported)
|
|
result = Curl_sasl_create_plain_message(conn->data, conn->user,
|
|
conn->passwd, &initresp, &len);
|
|
}
|
|
else if(imapc->authmechs & SASL_MECH_PLAIN) {
|
|
mech = "PLAIN";
|
|
state1 = IMAP_AUTHENTICATE_PLAIN;
|
|
state2 = IMAP_AUTHENTICATE;
|
|
imapc->authused = SASL_MECH_PLAIN;
|
|
|
|
if(imapc->ir_supported)
|
|
result = Curl_sasl_create_plain_message(conn->data, conn->user,
|
|
conn->passwd, &initresp, &len);
|
|
}
|
|
|
|
if(result)
|
|
return result;
|
|
|
|
if(mech) {
|
|
if(initresp) {
|
|
/* Perform SASL based authentication */
|
|
result = imap_sendf(conn, "AUTHENTICATE %s %s", mech, initresp);
|
|
|
|
if(!result)
|
|
state(conn, state2);
|
|
}
|
|
else {
|
|
result = imap_sendf(conn, "AUTHENTICATE %s", mech);
|
|
|
|
if(!result)
|
|
state(conn, state1);
|
|
}
|
|
|
|
Curl_safefree(initresp);
|
|
}
|
|
else if(!imapc->login_disabled)
|
|
/* Perform clear text authentication */
|
|
result = imap_state_login(conn);
|
|
else {
|
|
/* Other mechanisms not supported */
|
|
infof(conn->data, "No known authentication mechanisms supported!\n");
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For the initial server greeting */
|
|
static CURLcode imap_state_servergreet_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != 'O') {
|
|
failf(data, "Got unexpected imap-server response");
|
|
return CURLE_FTP_WEIRD_SERVER_REPLY;
|
|
}
|
|
|
|
result = imap_state_capability(conn);
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For CAPABILITY responses */
|
|
static CURLcode imap_state_capability_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != 'O')
|
|
result = imap_state_login(conn);
|
|
else if(data->set.use_ssl && !conn->ssl[FIRSTSOCKET].use) {
|
|
/* We don't have a SSL/TLS connection yet, but SSL is requested */
|
|
if(imapc->tls_supported)
|
|
/* Switch to TLS connection now */
|
|
result = imap_state_starttls(conn);
|
|
else if(data->set.use_ssl == CURLUSESSL_TRY)
|
|
/* Fallback and carry on with authentication */
|
|
result = imap_authenticate(conn);
|
|
else {
|
|
failf(data, "STARTTLS not supported.");
|
|
result = CURLE_USE_SSL_FAILED;
|
|
}
|
|
}
|
|
else
|
|
result = imap_authenticate(conn);
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For STARTTLS responses */
|
|
static CURLcode imap_state_starttls_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != 'O') {
|
|
if(data->set.use_ssl != CURLUSESSL_TRY) {
|
|
failf(data, "STARTTLS denied. %c", imapcode);
|
|
result = CURLE_USE_SSL_FAILED;
|
|
}
|
|
else
|
|
result = imap_authenticate(conn);
|
|
}
|
|
else
|
|
result = imap_state_upgrade_tls(conn);
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For AUTHENTICATE PLAIN (without initial response) responses */
|
|
static CURLcode imap_state_auth_plain_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
size_t len = 0;
|
|
char *plainauth = NULL;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != '+') {
|
|
failf(data, "Access denied. %c", imapcode);
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
else {
|
|
/* Create the authorisation message */
|
|
result = Curl_sasl_create_plain_message(data, conn->user, conn->passwd,
|
|
&plainauth, &len);
|
|
|
|
/* Send the message */
|
|
if(!result) {
|
|
if(plainauth) {
|
|
result = Curl_pp_sendf(&conn->proto.imapc.pp, "%s", plainauth);
|
|
|
|
if(!result)
|
|
state(conn, IMAP_AUTHENTICATE);
|
|
}
|
|
|
|
Curl_safefree(plainauth);
|
|
}
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For AUTHENTICATE LOGIN (without initial response) responses */
|
|
static CURLcode imap_state_auth_login_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
size_t len = 0;
|
|
char *authuser = NULL;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != '+') {
|
|
failf(data, "Access denied: %d", imapcode);
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
else {
|
|
/* Create the user message */
|
|
result = Curl_sasl_create_login_message(data, conn->user,
|
|
&authuser, &len);
|
|
|
|
/* Send the user */
|
|
if(!result) {
|
|
if(authuser) {
|
|
result = Curl_pp_sendf(&conn->proto.imapc.pp, "%s", authuser);
|
|
|
|
if(!result)
|
|
state(conn, IMAP_AUTHENTICATE_LOGIN_PASSWD);
|
|
}
|
|
|
|
Curl_safefree(authuser);
|
|
}
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For AUTHENTICATE LOGIN user entry responses */
|
|
static CURLcode imap_state_auth_login_password_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
size_t len = 0;
|
|
char *authpasswd = NULL;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != '+') {
|
|
failf(data, "Access denied: %d", imapcode);
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
else {
|
|
/* Create the password message */
|
|
result = Curl_sasl_create_login_message(data, conn->passwd,
|
|
&authpasswd, &len);
|
|
|
|
/* Send the password */
|
|
if(!result) {
|
|
if(authpasswd) {
|
|
result = Curl_pp_sendf(&conn->proto.imapc.pp, "%s", authpasswd);
|
|
|
|
if(!result)
|
|
state(conn, IMAP_AUTHENTICATE);
|
|
}
|
|
|
|
Curl_safefree(authpasswd);
|
|
}
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
#ifndef CURL_DISABLE_CRYPTO_AUTH
|
|
/* For AUTHENTICATE CRAM-MD5 responses */
|
|
static CURLcode imap_state_auth_cram_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
char *chlg64 = data->state.buffer;
|
|
size_t len = 0;
|
|
char *rplyb64 = NULL;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != '+') {
|
|
failf(data, "Access denied: %d", imapcode);
|
|
return CURLE_LOGIN_DENIED;
|
|
}
|
|
|
|
/* Get the challenge */
|
|
for(chlg64 += 2; *chlg64 == ' ' || *chlg64 == '\t'; chlg64++)
|
|
;
|
|
|
|
/* Terminate the challenge */
|
|
if(*chlg64 != '=') {
|
|
for(len = strlen(chlg64); len--;)
|
|
if(chlg64[len] != '\r' && chlg64[len] != '\n' && chlg64[len] != ' ' &&
|
|
chlg64[len] != '\t')
|
|
break;
|
|
|
|
if(++len) {
|
|
chlg64[len] = '\0';
|
|
}
|
|
}
|
|
|
|
/* Create the response message */
|
|
result = Curl_sasl_create_cram_md5_message(data, chlg64, conn->user,
|
|
conn->passwd, &rplyb64, &len);
|
|
|
|
/* Send the response */
|
|
if(!result) {
|
|
if(rplyb64) {
|
|
result = Curl_pp_sendf(&conn->proto.imapc.pp, "%s", rplyb64);
|
|
|
|
if(!result)
|
|
state(conn, IMAP_AUTHENTICATE);
|
|
}
|
|
|
|
Curl_safefree(rplyb64);
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For AUTHENTICATE DIGEST-MD5 challenge responses */
|
|
static CURLcode imap_state_auth_digest_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
char *chlg64 = data->state.buffer;
|
|
size_t len = 0;
|
|
char *rplyb64 = NULL;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != '+') {
|
|
failf(data, "Access denied: %d", imapcode);
|
|
return CURLE_LOGIN_DENIED;
|
|
}
|
|
|
|
/* Get the challenge */
|
|
for(chlg64 += 2; *chlg64 == ' ' || *chlg64 == '\t'; chlg64++)
|
|
;
|
|
|
|
/* Create the response message */
|
|
result = Curl_sasl_create_digest_md5_message(data, chlg64, conn->user,
|
|
conn->passwd, "imap",
|
|
&rplyb64, &len);
|
|
|
|
/* Send the response */
|
|
if(!result) {
|
|
if(rplyb64) {
|
|
result = Curl_pp_sendf(&conn->proto.imapc.pp, "%s", rplyb64);
|
|
|
|
if(!result)
|
|
state(conn, IMAP_AUTHENTICATE_DIGESTMD5_RESP);
|
|
}
|
|
|
|
Curl_safefree(rplyb64);
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For AUTHENTICATE DIGEST-MD5 challenge-response responses */
|
|
static CURLcode imap_state_auth_digest_resp_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != '+') {
|
|
failf(data, "Authentication failed: %d", imapcode);
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
else {
|
|
/* Send an empty response */
|
|
result = Curl_pp_sendf(&conn->proto.imapc.pp, "");
|
|
|
|
if(!result)
|
|
state(conn, IMAP_AUTHENTICATE);
|
|
}
|
|
|
|
return result;
|
|
}
|
|
#endif
|
|
|
|
#ifdef USE_NTLM
|
|
/* For AUTHENTICATE NTLM (without initial response) responses */
|
|
static CURLcode imap_state_auth_ntlm_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
size_t len = 0;
|
|
char *type1msg = NULL;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != '+') {
|
|
failf(data, "Access denied: %d", imapcode);
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
else {
|
|
/* Create the type-1 message */
|
|
result = Curl_sasl_create_ntlm_type1_message(conn->user, conn->passwd,
|
|
&conn->ntlm,
|
|
&type1msg, &len);
|
|
|
|
/* Send the message */
|
|
if(!result) {
|
|
if(type1msg) {
|
|
result = Curl_pp_sendf(&conn->proto.imapc.pp, "%s", type1msg);
|
|
|
|
if(!result)
|
|
state(conn, IMAP_AUTHENTICATE_NTLM_TYPE2MSG);
|
|
}
|
|
|
|
Curl_safefree(type1msg);
|
|
}
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For NTLM type-2 responses (sent in reponse to our type-1 message) */
|
|
static CURLcode imap_state_auth_ntlm_type2msg_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
size_t len = 0;
|
|
char *type3msg = NULL;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != '+') {
|
|
failf(data, "Access denied: %d", imapcode);
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
else {
|
|
/* Create the type-3 message */
|
|
result = Curl_sasl_create_ntlm_type3_message(data,
|
|
data->state.buffer + 2,
|
|
conn->user, conn->passwd,
|
|
&conn->ntlm,
|
|
&type3msg, &len);
|
|
|
|
/* Send the message */
|
|
if(!result) {
|
|
if(type3msg) {
|
|
result = Curl_pp_sendf(&conn->proto.imapc.pp, "%s", type3msg);
|
|
|
|
if(!result)
|
|
state(conn, IMAP_AUTHENTICATE);
|
|
}
|
|
|
|
Curl_safefree(type3msg);
|
|
}
|
|
}
|
|
|
|
return result;
|
|
}
|
|
#endif
|
|
|
|
/* For final responses to the AUTHENTICATE sequence */
|
|
static CURLcode imap_state_auth_final_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != 'O') {
|
|
failf(data, "Authentication failed: %d", imapcode);
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
else
|
|
/* End of connect phase */
|
|
state(conn, IMAP_STOP);
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For LOGIN responses */
|
|
static CURLcode imap_state_login_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != 'O') {
|
|
failf(data, "Access denied. %c", imapcode);
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
else
|
|
/* End of connect phase */
|
|
state(conn, IMAP_STOP);
|
|
|
|
return result;
|
|
}
|
|
|
|
/* Start the DO phase */
|
|
static CURLcode imap_select(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
|
|
result = imap_sendf(conn, "SELECT %s",
|
|
imapc->mailbox ? imapc->mailbox : "");
|
|
if(result)
|
|
return result;
|
|
|
|
state(conn, IMAP_SELECT);
|
|
|
|
return result;
|
|
}
|
|
|
|
static CURLcode imap_fetch(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
|
|
/* TODO: make this select the correct mail
|
|
* Use "1 body[text]" to get the full mail body of mail 1
|
|
*/
|
|
result = imap_sendf(conn, "FETCH 1 BODY[TEXT]");
|
|
if(result)
|
|
return result;
|
|
|
|
/*
|
|
* When issued, the server will respond with a single line similar to
|
|
* '* 1 FETCH (BODY[TEXT] {2021}'
|
|
*
|
|
* Identifying the fetch and how many bytes of contents we can expect. We
|
|
* must extract that number before continuing to "download as usual".
|
|
*/
|
|
|
|
state(conn, IMAP_FETCH);
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For SELECT responses */
|
|
static CURLcode imap_state_select_resp(struct connectdata *conn,
|
|
int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if(imapcode != 'O') {
|
|
failf(data, "Select failed");
|
|
result = CURLE_LOGIN_DENIED;
|
|
}
|
|
else
|
|
result = imap_fetch(conn);
|
|
|
|
return result;
|
|
}
|
|
|
|
/* For the (first line of) FETCH BODY[TEXT] response */
|
|
static CURLcode imap_state_fetch_resp(struct connectdata *conn, int imapcode,
|
|
imapstate instate)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
struct FTP *imap = data->state.proto.imap;
|
|
struct pingpong *pp = &imapc->pp;
|
|
const char *ptr = data->state.buffer;
|
|
|
|
(void)instate; /* no use for this yet */
|
|
|
|
if('*' != imapcode) {
|
|
Curl_pgrsSetDownloadSize(data, 0);
|
|
state(conn, IMAP_STOP);
|
|
return CURLE_OK;
|
|
}
|
|
|
|
/* Something like this comes "* 1 FETCH (BODY[TEXT] {2021}\r" */
|
|
while(*ptr && (*ptr != '{'))
|
|
ptr++;
|
|
|
|
if(*ptr == '{') {
|
|
curl_off_t filesize = curlx_strtoofft(ptr + 1, NULL, 10);
|
|
if(filesize)
|
|
Curl_pgrsSetDownloadSize(data, filesize);
|
|
|
|
infof(data, "Found %" FORMAT_OFF_TU " bytes to download\n", filesize);
|
|
|
|
if(pp->cache) {
|
|
/* At this point there is a bunch of data in the header "cache" that is
|
|
actually body content, send it as body and then skip it. Do note
|
|
that there may even be additional "headers" after the body. */
|
|
size_t chunk = pp->cache_size;
|
|
|
|
if(chunk > (size_t)filesize)
|
|
/* the conversion from curl_off_t to size_t is always fine here */
|
|
chunk = (size_t)filesize;
|
|
|
|
result = Curl_client_write(conn, CLIENTWRITE_BODY, pp->cache, chunk);
|
|
if(result)
|
|
return result;
|
|
|
|
filesize -= chunk;
|
|
|
|
/* we've now used parts of or the entire cache */
|
|
if(pp->cache_size > chunk) {
|
|
/* part of, move the trailing data to the start and reduce the size */
|
|
memmove(pp->cache, pp->cache+chunk,
|
|
pp->cache_size - chunk);
|
|
pp->cache_size -= chunk;
|
|
}
|
|
else {
|
|
/* cache is drained */
|
|
Curl_safefree(pp->cache);
|
|
pp->cache = NULL;
|
|
pp->cache_size = 0;
|
|
}
|
|
}
|
|
|
|
infof(data, "Filesize left: %" FORMAT_OFF_T "\n", filesize);
|
|
|
|
if(!filesize)
|
|
/* the entire data is already transferred! */
|
|
Curl_setup_transfer(conn, -1, -1, FALSE, NULL, -1, NULL);
|
|
else
|
|
/* IMAP download */
|
|
Curl_setup_transfer(conn, FIRSTSOCKET, filesize, FALSE,
|
|
imap->bytecountp, -1, NULL); /* no upload here */
|
|
|
|
data->req.maxdownload = filesize;
|
|
}
|
|
else
|
|
/* We don't know how to parse this line */
|
|
result = CURLE_FTP_WEIRD_SERVER_REPLY; /* TODO: fix this code */
|
|
|
|
/* End of do phase */
|
|
state(conn, IMAP_STOP);
|
|
|
|
return result;
|
|
}
|
|
|
|
static CURLcode imap_statemach_act(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
curl_socket_t sock = conn->sock[FIRSTSOCKET];
|
|
int imapcode;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
struct pingpong *pp = &imapc->pp;
|
|
size_t nread = 0;
|
|
|
|
/* Busy upgrading the connection; right now all I/O is SSL/TLS, not IMAP */
|
|
if(imapc->state == IMAP_UPGRADETLS)
|
|
return imap_state_upgrade_tls(conn);
|
|
|
|
/* Flush any data that needs to be sent */
|
|
if(pp->sendleft)
|
|
return Curl_pp_flushsend(pp);
|
|
|
|
/* Read the response from the server */
|
|
result = Curl_pp_readresp(sock, pp, &imapcode, &nread);
|
|
if(result)
|
|
return result;
|
|
|
|
if(imapcode) {
|
|
/* We have now received a full IMAP server response */
|
|
switch(imapc->state) {
|
|
case IMAP_SERVERGREET:
|
|
result = imap_state_servergreet_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_CAPABILITY:
|
|
result = imap_state_capability_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_STARTTLS:
|
|
result = imap_state_starttls_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_AUTHENTICATE_PLAIN:
|
|
result = imap_state_auth_plain_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_AUTHENTICATE_LOGIN:
|
|
result = imap_state_auth_login_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_AUTHENTICATE_LOGIN_PASSWD:
|
|
result = imap_state_auth_login_password_resp(conn, imapcode,
|
|
imapc->state);
|
|
break;
|
|
|
|
#ifndef CURL_DISABLE_CRYPTO_AUTH
|
|
case IMAP_AUTHENTICATE_CRAMMD5:
|
|
result = imap_state_auth_cram_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_AUTHENTICATE_DIGESTMD5:
|
|
result = imap_state_auth_digest_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_AUTHENTICATE_DIGESTMD5_RESP:
|
|
result = imap_state_auth_digest_resp_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
#endif
|
|
|
|
#ifdef USE_NTLM
|
|
case IMAP_AUTHENTICATE_NTLM:
|
|
result = imap_state_auth_ntlm_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_AUTHENTICATE_NTLM_TYPE2MSG:
|
|
result = imap_state_auth_ntlm_type2msg_resp(conn, imapcode,
|
|
imapc->state);
|
|
break;
|
|
#endif
|
|
|
|
case IMAP_AUTHENTICATE:
|
|
result = imap_state_auth_final_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_LOGIN:
|
|
result = imap_state_login_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_FETCH:
|
|
result = imap_state_fetch_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_SELECT:
|
|
result = imap_state_select_resp(conn, imapcode, imapc->state);
|
|
break;
|
|
|
|
case IMAP_LOGOUT:
|
|
/* fallthrough, just stop! */
|
|
default:
|
|
/* internal error */
|
|
state(conn, IMAP_STOP);
|
|
break;
|
|
}
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
/* Called repeatedly until done from multi.c */
|
|
static CURLcode imap_multi_statemach(struct connectdata *conn, bool *done)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
|
|
if((conn->handler->flags & PROTOPT_SSL) && !imapc->ssldone)
|
|
result = Curl_ssl_connect_nonblocking(conn, FIRSTSOCKET, &imapc->ssldone);
|
|
else
|
|
result = Curl_pp_statemach(&imapc->pp, FALSE);
|
|
|
|
*done = (imapc->state == IMAP_STOP) ? TRUE : FALSE;
|
|
|
|
return result;
|
|
}
|
|
|
|
static CURLcode imap_block_statemach(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
|
|
while(imapc->state != IMAP_STOP) {
|
|
result = Curl_pp_statemach(&imapc->pp, TRUE);
|
|
if(result)
|
|
break;
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
/* Allocate and initialize the struct IMAP for the current SessionHandle if
|
|
required */
|
|
static CURLcode imap_init(struct connectdata *conn)
|
|
{
|
|
struct SessionHandle *data = conn->data;
|
|
struct FTP *imap = data->state.proto.imap;
|
|
|
|
if(!imap) {
|
|
imap = data->state.proto.imap = calloc(sizeof(struct FTP), 1);
|
|
if(!imap)
|
|
return CURLE_OUT_OF_MEMORY;
|
|
}
|
|
|
|
/* Get some initial data into the imap struct */
|
|
imap->bytecountp = &data->req.bytecount;
|
|
|
|
/* No need to duplicate user+password, the connectdata struct won't change
|
|
during a session, but we re-init them here since on subsequent inits
|
|
since the conn struct may have changed or been replaced.
|
|
*/
|
|
imap->user = conn->user;
|
|
imap->passwd = conn->passwd;
|
|
|
|
return CURLE_OK;
|
|
}
|
|
|
|
/* For the IMAP "protocol connect" and "doing" phases only */
|
|
static int imap_getsock(struct connectdata *conn, curl_socket_t *socks,
|
|
int numsocks)
|
|
{
|
|
return Curl_pp_getsock(&conn->proto.imapc.pp, socks, numsocks);
|
|
}
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_connect() should do everything that is to be considered a part of
|
|
* the connection phase.
|
|
*
|
|
* The variable 'done' points to will be TRUE if the protocol-layer connect
|
|
* phase is done when this function returns, or FALSE is not. When called as
|
|
* a part of the easy interface, it will always be TRUE.
|
|
*/
|
|
static CURLcode imap_connect(struct connectdata *conn, bool *done)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
struct pingpong *pp = &imapc->pp;
|
|
|
|
*done = FALSE; /* default to not done yet */
|
|
|
|
/* If there already is a protocol-specific struct allocated for this
|
|
sessionhandle, deal with it */
|
|
Curl_reset_reqproto(conn);
|
|
|
|
/* Initialise the IMAP layer */
|
|
result = imap_init(conn);
|
|
if(result)
|
|
return result;
|
|
|
|
/* We always support persistent connections in IMAP */
|
|
conn->bits.close = FALSE;
|
|
|
|
/* Set the default response time-out */
|
|
pp->response_time = RESP_TIMEOUT;
|
|
pp->statemach_act = imap_statemach_act;
|
|
pp->endofresp = imap_endofresp;
|
|
pp->conn = conn;
|
|
|
|
/* Initialise the pingpong layer */
|
|
Curl_pp_init(pp);
|
|
|
|
/* Start off waiting for the server greeting response */
|
|
state(conn, IMAP_SERVERGREET);
|
|
|
|
/* Start off with an response id of '*' */
|
|
strcpy(imapc->resptag, "*");
|
|
|
|
result = imap_multi_statemach(conn, done);
|
|
|
|
return result;
|
|
}
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_done()
|
|
*
|
|
* The DONE function. This does what needs to be done after a single DO has
|
|
* performed.
|
|
*
|
|
* Input argument is already checked for validity.
|
|
*/
|
|
static CURLcode imap_done(struct connectdata *conn, CURLcode status,
|
|
bool premature)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
struct SessionHandle *data = conn->data;
|
|
struct FTP *imap = data->state.proto.imap;
|
|
|
|
(void)premature;
|
|
|
|
if(!imap)
|
|
/* When the easy handle is removed from the multi while libcurl is still
|
|
* trying to resolve the host name, it seems that the IMAP struct is not
|
|
* yet initialized, but the removal action calls Curl_done() which calls
|
|
* this function. So we simply return success if no IMAP pointer is set.
|
|
*/
|
|
return CURLE_OK;
|
|
|
|
if(status) {
|
|
conn->bits.close = TRUE; /* marked for closure */
|
|
result = status; /* use the already set error code */
|
|
}
|
|
|
|
/* Clear the transfer mode for the next connection */
|
|
imap->transfer = FTPTRANSFER_BODY;
|
|
|
|
return result;
|
|
}
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_perform()
|
|
*
|
|
* This is the actual DO function for IMAP. Get a file/directory according to
|
|
* the options previously setup.
|
|
*/
|
|
static CURLcode imap_perform(struct connectdata *conn, bool *connected,
|
|
bool *dophase_done)
|
|
{
|
|
/* This is IMAP and no proxy */
|
|
CURLcode result = CURLE_OK;
|
|
|
|
DEBUGF(infof(conn->data, "DO phase starts\n"));
|
|
|
|
if(conn->data->set.opt_no_body) {
|
|
/* Requested no body means no transfer */
|
|
struct FTP *imap = conn->data->state.proto.imap;
|
|
imap->transfer = FTPTRANSFER_INFO;
|
|
}
|
|
|
|
*dophase_done = FALSE; /* not done yet */
|
|
|
|
/* Start the first command in the DO phase */
|
|
result = imap_select(conn);
|
|
if(result)
|
|
return result;
|
|
|
|
/* run the state-machine */
|
|
result = imap_multi_statemach(conn, dophase_done);
|
|
|
|
*connected = conn->bits.tcpconnect[FIRSTSOCKET];
|
|
|
|
if(*dophase_done)
|
|
DEBUGF(infof(conn->data, "DO phase is complete\n"));
|
|
|
|
return result;
|
|
}
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_do()
|
|
*
|
|
* This function is registered as 'curl_do' function. It decodes the path
|
|
* parts etc as a wrapper to the actual DO function (imap_perform).
|
|
*
|
|
* The input argument is already checked for validity.
|
|
*/
|
|
static CURLcode imap_do(struct connectdata *conn, bool *done)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
|
|
*done = FALSE; /* default to false */
|
|
|
|
/*
|
|
Since connections can be re-used between SessionHandles, this might be a
|
|
connection already existing but on a fresh SessionHandle struct so we must
|
|
make sure we have a good 'struct IMAP' to play with. For new connections,
|
|
the struct IMAP is allocated and setup in the imap_connect() function.
|
|
*/
|
|
Curl_reset_reqproto(conn);
|
|
result = imap_init(conn);
|
|
if(result)
|
|
return result;
|
|
|
|
/* Parse the URL path */
|
|
result = imap_parse_url_path(conn);
|
|
if(result)
|
|
return result;
|
|
|
|
result = imap_regular_transfer(conn, done);
|
|
|
|
return result;
|
|
}
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_logout()
|
|
*
|
|
* This should be called before calling sclose(). We should then wait for the
|
|
* response from the server before returning. The calling code should then try
|
|
* to close the connection.
|
|
*
|
|
*/
|
|
static CURLcode imap_logout(struct connectdata *conn)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
|
|
result = imap_sendf(conn, "LOGOUT", NULL);
|
|
if(result)
|
|
return result;
|
|
|
|
state(conn, IMAP_LOGOUT);
|
|
|
|
result = imap_block_statemach(conn);
|
|
|
|
return result;
|
|
}
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_disconnect()
|
|
*
|
|
* Disconnect from an IMAP server. Cleanup protocol-specific per-connection
|
|
* resources. BLOCKING.
|
|
*/
|
|
static CURLcode imap_disconnect(struct connectdata *conn, bool dead_connection)
|
|
{
|
|
struct imap_conn *imapc= &conn->proto.imapc;
|
|
|
|
/* We cannot send quit unconditionally. If this connection is stale or
|
|
bad in any way, sending quit and waiting around here will make the
|
|
disconnect wait in vain and cause more problems than we need to */
|
|
|
|
/* The IMAP session may or may not have been allocated/setup at this
|
|
point! */
|
|
if(!dead_connection && imapc->pp.conn)
|
|
(void)imap_logout(conn); /* ignore errors on the LOGOUT */
|
|
|
|
/* Disconnect from the server */
|
|
Curl_pp_disconnect(&imapc->pp);
|
|
|
|
/* Cleanup the SASL module */
|
|
Curl_sasl_cleanup(conn, imapc->authused);
|
|
|
|
/* Cleanup our connection based variables */
|
|
Curl_safefree(imapc->mailbox);
|
|
|
|
return CURLE_OK;
|
|
}
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_parse_url_path()
|
|
*
|
|
* Parse the URL path into separate path components.
|
|
*
|
|
*/
|
|
static CURLcode imap_parse_url_path(struct connectdata *conn)
|
|
{
|
|
/* The imap struct is already inited in imap_connect() */
|
|
struct imap_conn *imapc = &conn->proto.imapc;
|
|
struct SessionHandle *data = conn->data;
|
|
const char *path = data->state.path;
|
|
|
|
if(!*path)
|
|
path = "INBOX";
|
|
|
|
/* URL decode the path and use this mailbox */
|
|
return Curl_urldecode(data, path, 0, &imapc->mailbox, NULL, TRUE);
|
|
}
|
|
|
|
/* Call this when the DO phase has completed */
|
|
static CURLcode imap_dophase_done(struct connectdata *conn, bool connected)
|
|
{
|
|
struct FTP *imap = conn->data->state.proto.imap;
|
|
|
|
(void)connected;
|
|
|
|
if(imap->transfer != FTPTRANSFER_BODY)
|
|
/* no data to transfer */
|
|
Curl_setup_transfer(conn, -1, -1, FALSE, NULL, -1, NULL);
|
|
|
|
return CURLE_OK;
|
|
}
|
|
|
|
/* Called from multi.c while DOing */
|
|
static CURLcode imap_doing(struct connectdata *conn, bool *dophase_done)
|
|
{
|
|
CURLcode result = imap_multi_statemach(conn, dophase_done);
|
|
|
|
if(result)
|
|
DEBUGF(infof(conn->data, "DO phase failed\n"));
|
|
else {
|
|
if(*dophase_done) {
|
|
result = imap_dophase_done(conn, FALSE /* not connected */);
|
|
|
|
DEBUGF(infof(conn->data, "DO phase is complete\n"));
|
|
}
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
/***********************************************************************
|
|
*
|
|
* imap_regular_transfer()
|
|
*
|
|
* The input argument is already checked for validity.
|
|
*
|
|
* Performs all commands done before a regular transfer between a local and a
|
|
* remote host.
|
|
*/
|
|
static CURLcode imap_regular_transfer(struct connectdata *conn,
|
|
bool *dophase_done)
|
|
{
|
|
CURLcode result = CURLE_OK;
|
|
bool connected = FALSE;
|
|
struct SessionHandle *data = conn->data;
|
|
|
|
/* Make sure size is unknown at this point */
|
|
data->req.size = -1;
|
|
|
|
Curl_pgrsSetUploadCounter(data, 0);
|
|
Curl_pgrsSetDownloadCounter(data, 0);
|
|
Curl_pgrsSetUploadSize(data, 0);
|
|
Curl_pgrsSetDownloadSize(data, 0);
|
|
|
|
result = imap_perform(conn, &connected, dophase_done);
|
|
|
|
if(!result) {
|
|
if(!*dophase_done)
|
|
/* The DO phase has not completed yet */
|
|
return CURLE_OK;
|
|
|
|
result = imap_dophase_done(conn, connected);
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
static CURLcode imap_setup_connection(struct connectdata * conn)
|
|
{
|
|
struct SessionHandle *data = conn->data;
|
|
|
|
if(conn->bits.httpproxy && !data->set.tunnel_thru_httpproxy) {
|
|
/* Unless we have asked to tunnel IMAP operations through the proxy, we
|
|
switch and use HTTP operations only */
|
|
#ifndef CURL_DISABLE_HTTP
|
|
if(conn->handler == &Curl_handler_imap)
|
|
conn->handler = &Curl_handler_imap_proxy;
|
|
else {
|
|
#ifdef USE_SSL
|
|
conn->handler = &Curl_handler_imaps_proxy;
|
|
#else
|
|
failf(data, "IMAPS not supported!");
|
|
return CURLE_UNSUPPORTED_PROTOCOL;
|
|
#endif
|
|
}
|
|
|
|
/* We explicitly mark this connection as persistent here as we're doing
|
|
IMAP over HTTP and thus we accidentally avoid setting this value
|
|
otherwise */
|
|
conn->bits.close = FALSE;
|
|
#else
|
|
failf(data, "IMAP over http proxy requires HTTP support built-in!");
|
|
return CURLE_UNSUPPORTED_PROTOCOL;
|
|
#endif
|
|
}
|
|
|
|
data->state.path++; /* don't include the initial slash */
|
|
|
|
return CURLE_OK;
|
|
}
|
|
|
|
#endif /* CURL_DISABLE_IMAP */
|