2 * transact.c -- transaction primitives for the fetchmail driver loop
4 * Copyright 2001 by Eric S. Raymond
5 * For license terms, see the file COPYING in this directory.
13 #include <ctype.h> /* isspace() */
16 #endif /* HAVE_MEMORY_H */
17 #if defined(STDC_HEADERS)
20 #if defined(HAVE_UNISTD_H)
23 #if defined(HAVE_STDARG_H)
29 #ifdef HAVE_NET_SOCKET_H
30 #include <net/socket.h>
36 #include "fetchmail.h"
38 #ifndef strstr /* glibc-2.1 declares this as a macro */
39 extern char *strstr(const char *, const char *); /* needed on sysV68 R3V7.1. */
42 int mytimeout; /* value of nonreponse timeout */
43 int suppress_tags; /* emit tags? */
44 char shroud[PASSWORDLEN*2+3]; /* string to shroud in debug output */
49 #define GENSYM (sprintf(tag, "A%04d", ++tagnum % TAGMOD), tag)
51 static int accept_count, reject_count;
52 static struct method *protocol;
54 static void map_name(const char *name, struct query *ctl, struct idlist **xmit_names)
55 /* add given name to xmit_names if it matches declared localnames */
56 /* name: name to map */
57 /* ctl: list of permissible aliases */
58 /* xmit_names: list of recipient names parsed out */
63 lname = idpair_find(&ctl->localnames, name+off);
64 if (!lname && ctl->wildcard)
67 if (lname != (char *)NULL)
69 if (outlevel >= O_DEBUG)
70 report(stdout, GT_("mapped %s to local %s\n"), name, lname);
71 save_str(xmit_names, lname, XMIT_ACCEPT);
76 static void find_server_names(const char *hdr,
78 struct idlist **xmit_names)
79 /* parse names out of a RFC822 header into an ID list */
80 /* hdr: RFC822 header in question */
81 /* ctl: list of permissible aliases */
82 /* xmit_names: list of recipient names parsed out */
84 if (hdr == (char *)NULL)
90 for (cp = nxtaddr((const unsigned char *)hdr);
97 * Handle empty address from a To: header containing only
104 * If the name of the user begins with a qmail virtual
105 * domain prefix, ignore the prefix. Doing this here
106 * means qvirtual will work either with ordinary name
107 * mapping or with a localdomains option.
109 if (ctl->server.qvirtual)
111 int sl = strlen(ctl->server.qvirtual);
113 if (!strncasecmp((char *)cp, ctl->server.qvirtual, sl))
117 if ((atsign = strchr((char *)cp, '@'))) {
121 * Does a trailing segment of the hostname match something
122 * on the localdomains list? If so, save the whole name
125 for (idp = ctl->server.localdomains; idp; idp = idp->next) {
128 rhs = atsign + (strlen(atsign) - strlen((char *)idp->id));
130 (rhs[-1] == '.' || rhs[-1] == '@') &&
131 strcasecmp(rhs, (char *)idp->id) == 0)
133 if (outlevel >= O_DEBUG)
134 report(stdout, GT_("passed through %s matching %s\n"),
136 save_str(xmit_names, (const char *)cp, XMIT_ACCEPT);
142 /* if we matched a local domain, idp != NULL */
146 * Check to see if the right-hand part is an alias
147 * or MX equivalent of the mailserver. If it's
148 * not, skip this name. If it is, we'll keep
149 * going and try to find a mapping to a client name.
151 if (!is_host_alias(atsign+1, ctl))
153 save_str(xmit_names, cp, XMIT_REJECT);
159 map_name(cp, ctl, xmit_names);
167 * Return zero on a syntactically invalid address, nz on a valid one.
169 * This used to be strchr(a, '.'), but it turns out that lines like this
171 * Received: from punt-1.mail.demon.net by mailstore for markb@ordern.com
172 * id 938765929:10:27223:2; Fri, 01 Oct 99 08:18:49 GMT
174 * are not uncommon. So now we just check that the following token is
175 * not itself an email address.
177 #define VALID_ADDRESS(a) !strchr(a, '@')
179 static char *parse_received(struct query *ctl, char *bufp)
180 /* try to extract real address from the Received line */
181 /* If a valid Received: line is found, we return the full address in
182 * a buffer which can be parsed from nxtaddr(). This is to ansure that
183 * the local domain part of the address can be passed along in
184 * find_server_names() if it contains one.
185 * Note: We should return a dummy header containing the address
186 * which makes nxtaddr() behave correctly.
189 char *base, *ok = (char *)NULL;
190 static char rbuf[HOSTLEN + USERNAMELEN + 4];
192 #define RBUF_WRITE(value) if (tp < rbuf+sizeof(rbuf)-1) *tp++=value
195 * Try to extract the real envelope addressee. We look here
196 * specifically for the mailserver's Received line.
197 * Note: this will only work for sendmail, or an MTA that
198 * shares sendmail's convention for embedding the envelope
199 * address in the Received line. Sendmail itself only
200 * does this when the mail has a single recipient.
202 if (outlevel >= O_DEBUG)
203 report(stdout, GT_("analyzing Received line:\n%s"), bufp);
205 /* search for whitepace-surrounded "by" followed by valid address */
206 for (base = bufp; ; base = ok + 2)
208 if (!(ok = strstr(base, "by")))
210 else if (!isspace((unsigned char)ok[-1]) || !isspace((unsigned char)ok[2]))
216 /* extract space-delimited token after "by" */
217 for (sp = ok + 2; isspace((unsigned char)*sp); sp++)
220 for (; !isspace((unsigned char)*sp); sp++)
224 /* look for valid address */
225 if (VALID_ADDRESS(rbuf))
228 ok = sp - 1; /* arrange to skip this token */
234 * If it's a DNS name of the mail server, look for the
235 * recipient name after a following "for". Otherwise
238 if (is_host_alias(rbuf, ctl))
240 if (outlevel >= O_DEBUG)
242 GT_("line accepted, %s is an alias of the mailserver\n"), rbuf);
246 if (outlevel >= O_DEBUG)
248 GT_("line rejected, %s is not an alias of the mailserver\n"),
253 /* search for whitepace-surrounded "for" followed by xxxx@yyyy */
254 for (base = ok + 4 + strlen(rbuf); ; base = ok + 2)
256 if (!(ok = strstr(base, "for")))
258 else if (!isspace((unsigned char)ok[-1]) || !isspace((unsigned char)ok[3]))
264 /* extract space-delimited token after "for" */
265 for (sp = ok + 3; isspace((unsigned char)*sp); sp++)
268 for (; !isspace((unsigned char)*sp); sp++)
272 if (strchr(rbuf, '@'))
275 ok = sp - 1; /* arrange to skip this token */
280 flag want_gt = FALSE;
283 /* char after "for" could be space or a continuation newline */
284 for (sp = ok + 4; isspace((unsigned char)*sp); sp++)
287 RBUF_WRITE(':'); /* Here is the hack. This is to be friends */
288 RBUF_WRITE(' '); /* with nxtaddr()... */
294 while (*sp == '@') /* skip routes */
295 while (*sp && *sp++ != ':')
298 && (want_gt ? (*sp != '>') : !isspace((unsigned char)*sp))
300 if (!isspace((unsigned char)*sp))
307 /* uh oh -- whitespace here can't be right! */
313 if (strlen(rbuf) <= 3) /* apparently nothing has been found */
321 if (outlevel >= O_DEBUG)
322 report(stdout, GT_("no Received address found\n"));
327 if (outlevel >= O_DEBUG) {
328 char *lf = rbuf + strlen(rbuf)-1;
330 if (outlevel >= O_DEBUG)
331 report(stdout, GT_("found Received address `%s'\n"), rbuf+2);
338 /* shared by readheaders and readbody */
339 static int sizeticker;
341 #define EMPTYLINE(s) (((s)[0] == '\r' && (s)[1] == '\n' && (s)[2] == '\0') \
342 || ((s)[0] == '\n' && (s)[1] == '\0'))
344 static int end_of_header (const char *s)
345 /* accept "\r*\n" as EOH in order to be bulletproof against broken survers */
349 return (s[0] == '\n' && s[1] == '\0');
352 int readheaders(int sock,
357 flag *suppress_readbody)
358 /* read message headers and ship to SMTP or MDA */
359 /* sock: to which the server is connected */
360 /* fetchlen: length of message according to fetch response */
361 /* reallen: length of message according to getsizes */
362 /* ctl: query control record */
363 /* num: index of message */
364 /* suppress_readbody: whether call to readbody() should be supressed */
369 struct addrblk *next;
371 struct addrblk *to_addrchain = NULL;
372 struct addrblk **to_chainptr = &to_addrchain;
373 struct addrblk *resent_to_addrchain = NULL;
374 struct addrblk **resent_to_chainptr = &resent_to_addrchain;
376 char buf[MSGBUFSIZE+1];
377 int from_offs, reply_to_offs, resent_from_offs;
378 int app_from_offs, sender_offs, resent_sender_offs;
380 char *received_for, *rcv, *cp;
381 static char *delivered_to = NULL;
382 int n, linelen, oldlen, ch, remaining, skipcount;
384 flag no_local_matches = FALSE;
386 int olderrs, good_addresses, bad_addresses;
387 int retain_mail = 0, refuse_mail = 0;
388 flag already_has_return_path = FALSE;
392 msgblk.return_path[0] = '\0';
393 olderrs = ctl->errcount;
395 /* read message headers */
396 msgblk.reallen = reallen;
399 * We used to free the header block unconditionally at the end of
400 * readheaders, but it turns out that if close_sink() hits an error
401 * condition the code for sending bouncemail will actually look
402 * at the freed storage and coredump...
405 free(msgblk.headers);
406 free_str_list(&msgblk.recipients);
410 /* initially, no message digest */
411 memset(ctl->digest, '\0', sizeof(ctl->digest));
413 msgblk.headers = received_for = delivered_to = NULL;
414 from_offs = reply_to_offs = resent_from_offs = app_from_offs =
415 sender_offs = resent_sender_offs = env_offs = -1;
421 for (remaining = fetchlen; remaining > 0 || protocol->delimited; )
424 int overlong = FALSE;
426 line = xmalloc(sizeof(buf));
433 set_timeout(mytimeout);
434 if ((n = SockRead(sock, buf, sizeof(buf)-1)) == -1) {
437 free(msgblk.headers);
438 msgblk.headers = NULL;
444 * Smash out any NULs, they could wreak havoc later on.
445 * Some network stacks seem to generate these at random,
446 * especially (according to reports) at the beginning of the
447 * first read. NULs are illegal in RFC822 format.
449 for (sp = tp = buf; sp < buf + n; sp++)
462 * Try to gracefully handle the case where the length of a
463 * line exceeds MSGBUFSIZE.
465 if (n && buf[n-1] != '\n')
468 rline = (char *) realloc(line, linelen + 1);
475 memcpy(line + linelen - n, buf, n);
476 line[linelen] = '\0';
477 ch = ' '; /* So the next iteration starts */
481 /* lines may not be properly CRLF terminated; fix this for qmail */
482 /* we don't want to overflow the buffer here */
483 if (ctl->forcecr && buf[n-1]=='\n' && (n==1 || buf[n-2]!='\r'))
486 rline = (char *) realloc(line, linelen + 2);
493 memcpy(line + linelen - n, buf, n - 1);
494 tcp = line + linelen - 1;
503 rline = (char *) realloc(line, linelen + 1);
510 memcpy(line + linelen - n, buf, n + 1);
513 /* check for end of headers */
514 if (end_of_header(line))
516 if (linelen != strlen (line))
519 goto process_headers;
523 * Check for end of message immediately. If one of your folders
524 * has been mangled, the delimiter may occur directly after the
527 if (protocol->delimited && line[0] == '.' && EMPTYLINE(line+1))
529 if (outlevel > O_SILENT)
531 GT_("message delimiter found while scanning headers\n"));
532 if (suppress_readbody)
533 *suppress_readbody = TRUE;
534 if (linelen != strlen (line))
537 goto process_headers;
541 * At least one brain-dead website (netmind.com) is known to
542 * send out robotmail that's missing the RFC822 delimiter blank
543 * line before the body! Without this check fetchmail segfaults.
544 * With it, we treat such messages as spam and refuse them.
546 if (!refuse_mail && !isspace((unsigned char)line[0]) && !strchr(line, ':'))
548 if (linelen != strlen (line))
550 if (outlevel > O_SILENT)
552 GT_("incorrect header line found while scanning headers\n"));
553 if (outlevel >= O_VERBOSE)
554 report (stdout, GT_("line: %s"), line);
558 /* check for RFC822 continuations */
559 set_timeout(mytimeout);
563 (ch == ' ' || ch == '\t'); /* continuation to next line? */
565 /* write the message size dots */
566 if ((outlevel > O_SILENT && outlevel < O_VERBOSE) && linelen > 0)
568 sizeticker += linelen;
569 while (sizeticker >= SIZETICKER)
571 if (outlevel > O_SILENT && run.showdots && !run.use_syslog)
576 sizeticker -= SIZETICKER;
580 * Decode MIME encoded headers. We MUST do this before
581 * looking at the Content-Type / Content-Transfer-Encoding
582 * headers (RFC 2046).
584 if ( ctl->mimedecode )
588 /* the line is now shorter. So we retrace back till we find our terminating
589 * combination \n\0, we move backwards to make sure that we don't catch som
590 * \n\0 stored in the decoded part of the message */
591 for(tcp = line + linelen - 1; tcp > line && (*tcp != 0 || tcp[-1] != '\n'); tcp--);
592 if(tcp > line) linelen = tcp - line;
596 /* skip processing if we are going to retain or refuse this mail */
597 if (retain_mail || refuse_mail)
603 /* we see an ordinary (non-header, non-message-delimiter line */
604 if (linelen != strlen (line))
608 * The University of Washington IMAP server (the reference
609 * implementation of IMAP4 written by Mark Crispin) relies
610 * on being able to keep base-UID information in a special
611 * message at the head of the mailbox. This message should
612 * neither be deleted nor forwarded.
616 * We disable this check under POP2 because there's no way to
617 * prevent deletion of the message. So at least we ought to
618 * forward it to the user so he or she will have some clue
619 * that things have gone awry.
622 if (strncmp(protocol->service, "pop2", 4))
623 #else /* INET6_ENABLE */
624 if (protocol->port != 109)
625 #endif /* INET6_ENABLE */
626 #endif /* POP2_ENABLE */
627 if (num == 1 && !strncasecmp(line, "X-IMAP:", 7)) {
634 * This code prevents fetchmail from becoming an accessory after
635 * the fact to upstream sendmails with the `E' option on. It also
636 * copes with certain brain-dead POP servers (like NT's) that pass
637 * through Unix from_ lines.
639 * Either of these bugs can result in a non-RFC822 line at the
640 * beginning of the headers. If fetchmail just passes it
641 * through, the client listener may think the message has *no*
642 * headers (since the first) line it sees doesn't look
643 * RFC822-conformant) and fake up a set.
645 * What the user would see in this case is bogus (synthesized)
646 * headers, followed by a blank line, followed by the >From,
647 * followed by the real headers, followed by a blank line,
650 * We forestall this lossage by tossing anything that looks
651 * like an escaped or passed-through From_ line in headers.
652 * These aren't RFC822 so our conscience is clear...
654 if (!strncasecmp(line, ">From ", 6) || !strncasecmp(line, "From ", 5))
661 * We remove all Delivered-To: headers.
663 * This is to avoid false mail loops messages when delivering
664 * local messages to and from a Postfix/qmail mailserver.
666 if (ctl->dropdelivered && !strncasecmp(line, "Delivered-To:", 13))
676 * If we see a Status line, it may have been inserted by an MUA
677 * on the mail host, or it may have been inserted by the server
678 * program after the headers in the transaction stream. This
679 * can actually hose some new-mail notifiers such as xbuffy,
680 * which assumes any Status line came from a *local* MDA and
681 * therefore indicates that the message has been seen.
683 * Some buggy POP servers (including at least the 3.3(20)
684 * version of the one distributed with IMAP) insert empty
685 * Status lines in the transaction stream; we'll chuck those
686 * unconditionally. Nonempty ones get chucked if the user
687 * turns on the dropstatus flag.
692 if (!strncasecmp(line, "Status:", 7))
694 else if (!strncasecmp(line, "X-Mozilla-Status:", 17))
699 while (*cp && isspace((unsigned char)*cp)) cp++;
700 if (!*cp || ctl->dropstatus)
709 line = reply_hack(line, ctl->server.truename, &linelen);
712 * OK, this is messy. If we're forwarding by SMTP, it's the
713 * SMTP-receiver's job (according to RFC821, page 22, section
714 * 4.1.1) to generate a Return-Path line on final delivery.
715 * The trouble is, we've already got one because the
716 * mailserver's SMTP thought *it* was responsible for final
719 * Stash away the contents of Return-Path (as modified by reply_hack)
720 * for use in generating MAIL FROM later on, then prevent the header
721 * from being saved with the others. In effect, we strip it off here.
723 * If the SMTP server conforms to the standards, and fetchmail gets the
724 * envelope sender from the Return-Path, the new Return-Path should be
725 * exactly the same as the original one.
727 * We do *not* want to ignore empty Return-Path headers. These should
728 * be passed through as a way of indicating that a message should
729 * not trigger bounces if delivery fails. What we *do* need to do is
730 * make sure we never try to rewrite such a blank Return-Path. We
731 * handle this with a check for <> in the rewrite logic above.
733 * Also, if an email has multiple Return-Path: headers, we only
734 * read the first occurance, as some spam email has more than one
738 if ((already_has_return_path==FALSE) && !strncasecmp("Return-Path:", line, 12) && (cp = nxtaddr(line)))
740 already_has_return_path = TRUE;
741 if (cp[0]=='\0') /* nxtaddr() strips the brackets... */
743 strncpy(msgblk.return_path, cp, sizeof(msgblk.return_path));
744 msgblk.return_path[sizeof(msgblk.return_path)-1] = '\0';
754 msgblk.headers = xmalloc(oldlen + 1);
755 (void) memcpy(msgblk.headers, line, linelen);
756 msgblk.headers[oldlen] = '\0';
758 line = msgblk.headers;
765 newlen = oldlen + linelen;
766 newhdrs = (char *) realloc(msgblk.headers, newlen + 1);
767 if (newhdrs == NULL) {
771 msgblk.headers = newhdrs;
772 memcpy(msgblk.headers + oldlen, line, linelen);
773 msgblk.headers[newlen] = '\0';
775 line = msgblk.headers + oldlen;
779 /* find offsets of various special headers */
780 if (!strncasecmp("From:", line, 5))
781 from_offs = (line - msgblk.headers);
782 else if (!strncasecmp("Reply-To:", line, 9))
783 reply_to_offs = (line - msgblk.headers);
784 else if (!strncasecmp("Resent-From:", line, 12))
785 resent_from_offs = (line - msgblk.headers);
786 else if (!strncasecmp("Apparently-From:", line, 16))
787 app_from_offs = (line - msgblk.headers);
789 * Netscape 4.7 puts "Sender: zap" in mail headers. Perverse...
791 * But a literal reading of RFC822 sec. 4.4.2 supports the idea
792 * that Sender: *doesn't* have to be a working email address.
794 * The definition of the Sender header in RFC822 says, in
795 * part, "The Sender mailbox specification includes a word
796 * sequence which must correspond to a specific agent (i.e., a
797 * human user or a computer program) rather than a standard
798 * address." That implies that the contents of the Sender
799 * field don't need to be a legal email address at all So
800 * ignore any Sender or Resent-Sender lines unless they
803 * (RFC2822 says the contents of Sender must be a valid mailbox
804 * address, which is also what RFC822 4.4.4 implies.)
806 else if (!strncasecmp("Sender:", line, 7) && (strchr(line, '@') || strchr(line, '!')))
807 sender_offs = (line - msgblk.headers);
808 else if (!strncasecmp("Resent-Sender:", line, 14) && (strchr(line, '@') || strchr(line, '!')))
809 resent_sender_offs = (line - msgblk.headers);
812 else if (!strncasecmp("Message-Id:", line, 11))
814 if (ctl->server.uidl)
818 line[IDLEN+12] = 0; /* prevent stack overflow */
819 sscanf(line+12, "%s", id);
820 if (!str_find( &ctl->newsaved, num))
822 struct idlist *new = save_str(&ctl->newsaved,id,UID_SEEN);
823 new->val.status.num = num;
827 #endif /* __UNUSED__ */
829 /* if multidrop is on, gather addressee headers */
832 if (!strncasecmp("To:", line, 3)
833 || !strncasecmp("Cc:", line, 3)
834 || !strncasecmp("Bcc:", line, 4)
835 || !strncasecmp("Apparently-To:", line, 14))
837 *to_chainptr = xmalloc(sizeof(struct addrblk));
838 (*to_chainptr)->offset = (line - msgblk.headers);
839 to_chainptr = &(*to_chainptr)->next;
843 else if (!strncasecmp("Resent-To:", line, 10)
844 || !strncasecmp("Resent-Cc:", line, 10)
845 || !strncasecmp("Resent-Bcc:", line, 11))
847 *resent_to_chainptr = xmalloc(sizeof(struct addrblk));
848 (*resent_to_chainptr)->offset = (line - msgblk.headers);
849 resent_to_chainptr = &(*resent_to_chainptr)->next;
850 *resent_to_chainptr = NULL;
853 else if (ctl->server.envelope != STRING_DISABLED)
855 if (ctl->server.envelope
856 && strcasecmp(ctl->server.envelope, "Received"))
858 if (env_offs == -1 && !strncasecmp(ctl->server.envelope,
860 strlen(ctl->server.envelope)))
862 if (skipcount++ < ctl->server.envskip)
864 env_offs = (line - msgblk.headers);
867 else if (!received_for && !strncasecmp("Received:", line, 9))
869 if (skipcount++ < ctl->server.envskip)
871 received_for = parse_received(ctl, line);
881 free(msgblk.headers);
882 msgblk.headers = NULL;
888 * This is the duplicate-message killer code.
890 * When mail delivered to a multidrop mailbox on the server is
891 * addressed to multiple people on the client machine, there will
892 * be one copy left in the box for each recipient. This is not a
893 * problem if we have the actual recipient address to dispatch on
894 * (e.g. because we've mined it out of sendmail trace headers, or
895 * a qmail Delivered-To line, or a declared sender envelope line).
897 * But if we're mining addressees out of the To/Cc/Bcc fields, and
898 * if the mail is addressed to N people, each recipient will
899 * get N copies. This is bad when N > 1.
901 * Foil this by suppressing all but one copy of a message with a
902 * given set of headers.
904 * Note: This implementation only catches runs of successive
905 * messages with the same ID, but that should be good
906 * enough. A more general implementation would have to store
907 * ever-growing lists of seen message-IDs; in a long-running
908 * daemon this would turn into a memory leak even if the
909 * implementation were perfect.
911 * Don't mess with this code casually. It would be way too easy
912 * to break it in a way that blackholed mail. Better to pass
913 * the occasional duplicate than to do that...
920 MD5Update(&context, msgblk.headers, strlen(msgblk.headers));
921 MD5Final(ctl->digest, &context);
923 if (!received_for && env_offs == -1 && !delivered_to)
926 * Hmmm...can MD5 ever yield all zeroes as a hash value?
927 * If so there is a one in 18-quadrillion chance this
928 * code will incorrectly nuke the first message.
930 if (!memcmp(ctl->lastdigest, ctl->digest, DIGESTLEN))
933 memcpy(ctl->lastdigest, ctl->digest, DIGESTLEN);
937 * Hack time. If the first line of the message was blank, with no headers
938 * (this happens occasionally due to bad gatewaying software) cons up
939 * a set of fake headers.
941 * If you modify the fake header template below, be sure you don't
942 * make either From or To address @-less, otherwise the reply_hack
943 * logic will do bad things.
945 if (msgblk.headers == (char *)NULL)
948 snprintf(buf, sizeof(buf),
951 #endif /* HAVE_SNPRINTF */
952 "From: FETCHMAIL-DAEMON\r\nTo: %s@%s\r\nSubject: Headerless mail from %s's mailbox on %s\r\n",
953 user, fetchmailhost, ctl->remotename, ctl->server.truename);
954 msgblk.headers = xstrdup(buf);
958 * We can now process message headers before reading the text.
959 * In fact we have to, as this will tell us where to forward to.
962 /* Check for MIME headers indicating possible 8-bit data */
963 ctl->mimemsg = MimeBodyType(msgblk.headers, ctl->mimedecode);
966 if (ctl->server.sdps && sdps_envfrom)
968 /* We have the real envelope return-path, stored out of band by
969 * SDPS - that's more accurate than any header is going to be.
971 strcpy(msgblk.return_path, sdps_envfrom);
974 #endif /* SDPS_ENABLE */
976 * If there is a Return-Path address on the message, this was
977 * almost certainly the MAIL FROM address given the originating
978 * sendmail. This is the best thing to use for logging the
979 * message origin (it sets up the right behavior for bounces and
980 * mailing lists). Otherwise, fall down to the next available
981 * envelope address (which is the most probable real sender).
982 * *** The order is important! ***
983 * This is especially useful when receiving mailing list
984 * messages in multidrop mode. if a local address doesn't
985 * exist, the bounce message won't be returned blindly to the
986 * author or to the list itself but rather to the list manager
987 * (ex: specified by "Sender:") which is much less annoying. This
988 * is true for most mailing list packages.
990 if( !msgblk.return_path[0] ){
992 if (resent_sender_offs >= 0 && (ap = nxtaddr(msgblk.headers + resent_sender_offs)));
993 else if (sender_offs >= 0 && (ap = nxtaddr(msgblk.headers + sender_offs)));
994 else if (resent_from_offs >= 0 && (ap = nxtaddr(msgblk.headers + resent_from_offs)));
995 else if (from_offs >= 0 && (ap = nxtaddr(msgblk.headers + from_offs)));
996 else if (reply_to_offs >= 0 && (ap = nxtaddr(msgblk.headers + reply_to_offs)));
997 else if (app_from_offs >= 0 && (ap = nxtaddr(msgblk.headers + app_from_offs)));
998 /* multi-line MAIL FROM addresses confuse SMTP terribly */
999 if (ap && !strchr(ap, '\n')) {
1000 strncpy(msgblk.return_path, ap, sizeof(msgblk.return_path));
1001 msgblk.return_path[sizeof(msgblk.return_path)-1] = '\0';
1005 /* cons up a list of local recipients */
1006 msgblk.recipients = (struct idlist *)NULL;
1007 accept_count = reject_count = 0;
1008 /* is this a multidrop box? */
1012 if (ctl->server.sdps && sdps_envto)
1014 /* We have the real envelope recipient, stored out of band by
1015 * SDPS - that's more accurate than any header is going to be.
1017 find_server_names(sdps_envto, ctl, &msgblk.recipients);
1020 #endif /* SDPS_ENABLE */
1021 if (env_offs > -1) /* We have the actual envelope addressee */
1022 find_server_names(msgblk.headers + env_offs, ctl, &msgblk.recipients);
1023 else if (delivered_to && ctl->server.envelope != STRING_DISABLED &&
1024 ctl->server.envelope && !strcasecmp(ctl->server.envelope, "Delivered-To"))
1026 find_server_names(delivered_to, ctl, &msgblk.recipients);
1028 delivered_to = NULL;
1030 else if (received_for)
1032 * We have the Received for addressee.
1033 * It has to be a mailserver address, or we
1034 * wouldn't have got here.
1035 * We use find_server_names() to let local
1036 * hostnames go through.
1038 find_server_names(received_for, ctl, &msgblk.recipients);
1042 * We haven't extracted the envelope address.
1043 * So check all the "Resent-To" header addresses if
1044 * they exist. If and only if they don't, consider
1045 * the "To" addresses.
1047 register struct addrblk *nextptr;
1048 if (resent_to_addrchain) {
1049 /* delete the "To" chain and substitute it
1050 * with the "Resent-To" list
1052 while (to_addrchain) {
1053 nextptr = to_addrchain->next;
1055 to_addrchain = nextptr;
1057 to_addrchain = resent_to_addrchain;
1058 resent_to_addrchain = NULL;
1060 /* now look for remaining adresses */
1061 while (to_addrchain) {
1062 find_server_names(msgblk.headers+to_addrchain->offset, ctl, &msgblk.recipients);
1063 nextptr = to_addrchain->next;
1065 to_addrchain = nextptr;
1070 no_local_matches = TRUE;
1071 save_str(&msgblk.recipients, run.postmaster, XMIT_ACCEPT);
1072 if (outlevel >= O_DEBUG)
1074 GT_("no local matches, forwarding to %s\n"),
1078 else /* it's a single-drop box, use first localname */
1079 save_str(&msgblk.recipients, ctl->localnames->id, XMIT_ACCEPT);
1083 * Time to either address the message or decide we can't deliver it yet.
1085 if (ctl->errcount > olderrs) /* there were DNS errors above */
1087 if (outlevel >= O_DEBUG)
1089 GT_("forwarding and deletion suppressed due to DNS errors\n"));
1090 free(msgblk.headers);
1091 msgblk.headers = NULL;
1092 free_str_list(&msgblk.recipients);
1093 return(PS_TRANSIENT);
1097 /* set up stuffline() so we can deliver the message body through it */
1098 if ((n = open_sink(ctl, &msgblk,
1099 &good_addresses, &bad_addresses)) != PS_SUCCESS)
1101 free(msgblk.headers);
1102 msgblk.headers = NULL;
1103 free_str_list(&msgblk.recipients);
1110 * Some server/sendmail combinations cause problems when our
1111 * synthetic Received line is before the From header. Cope
1114 if ((rcv = strstr(msgblk.headers, "Received:")) == (char *)NULL)
1115 rcv = msgblk.headers;
1116 /* handle ">Received:" lines too */
1117 while (rcv > msgblk.headers && rcv[-1] != '\n')
1119 if (rcv > msgblk.headers)
1124 n = stuffline(ctl, msgblk.headers);
1127 if (!run.invisible && n != -1)
1129 /* utter any per-message Received information we need here */
1130 if (ctl->server.trueaddr) {
1131 #ifdef HAVE_SNPRINTF
1132 snprintf(buf, sizeof(buf),
1135 #endif /* HAVE_SNPRINTF */
1136 "Received: from %s [%u.%u.%u.%u]\r\n",
1137 ctl->server.truename,
1138 (unsigned int)(unsigned char)ctl->server.trueaddr[0],
1139 (unsigned int)(unsigned char)ctl->server.trueaddr[1],
1140 (unsigned int)(unsigned char)ctl->server.trueaddr[2],
1141 (unsigned int)(unsigned char)ctl->server.trueaddr[3]);
1143 #ifdef HAVE_SNPRINTF
1144 snprintf(buf, sizeof(buf),
1147 #endif /* HAVE_SNPRINTF */
1148 "Received: from %s\r\n", ctl->server.truename);
1150 n = stuffline(ctl, buf);
1154 * This header is technically invalid under RFC822.
1155 * POP3, IMAP, etc. are not legal mail-parameter values.
1157 #ifdef HAVE_SNPRINTF
1158 snprintf(buf, sizeof(buf),
1161 #endif /* HAVE_SNPRINTF */
1162 "\tby %s with %s (fetchmail-%s",
1166 if (ctl->tracepolls)
1168 sprintf(buf + strlen(buf), " polling %s account %s",
1169 ctl->server.pollname,
1172 #ifdef HAVE_SNPRINTF
1173 snprintf(buf+strlen(buf), sizeof(buf)-strlen(buf), ")\r\n");
1175 strcat(buf, ")\r\n");
1176 #endif /* HAVE_SNPRINTF */
1177 n = stuffline(ctl, buf);
1181 if (good_addresses == 0)
1183 #ifdef HAVE_SNPRINTF
1184 snprintf(buf+1, sizeof(buf)-1,
1187 #endif /* HAVE_SNPRINTF */
1188 "for %s (by default); ",
1189 rcpt_address (ctl, run.postmaster, 0));
1191 else if (good_addresses == 1)
1193 for (idp = msgblk.recipients; idp; idp = idp->next)
1194 if (idp->val.status.mark == XMIT_ACCEPT)
1195 break; /* only report first address */
1196 #ifdef HAVE_SNPRINTF
1197 snprintf(buf+1, sizeof(buf)-1,
1200 #endif /* HAVE_SNPRINTF */
1201 "for %s", rcpt_address (ctl, idp->id, 1));
1202 sprintf(buf+strlen(buf), " (%s); ",
1203 MULTIDROP(ctl) ? "multi-drop" : "single-drop");
1208 #ifdef HAVE_SNPRINTF
1209 snprintf(buf+strlen(buf), sizeof(buf)-strlen(buf), "%s\r\n",
1212 strcat(buf, rfc822timestamp());
1213 strcat(buf, "\r\n");
1214 #endif /* HAVE_SNPRINTF */
1215 n = stuffline(ctl, buf);
1221 n = stuffline(ctl, rcv); /* ship out rest of msgblk.headers */
1225 report(stdout, GT_("writing RFC822 msgblk.headers\n"));
1227 free(msgblk.headers);
1228 msgblk.headers = NULL;
1229 free_str_list(&msgblk.recipients);
1232 else if ((run.poll_interval == 0 || nodetach) && outlevel >= O_VERBOSE && !isafile(2))
1235 /* write error notifications */
1236 if (no_local_matches || has_nuls || bad_addresses)
1239 char errhd[USERNAMELEN + POPBUFSIZE], *errmsg;
1242 (void) strcpy(errhd, "X-Fetchmail-Warning: ");
1243 if (no_local_matches)
1245 if (reject_count != 1)
1246 strcat(errhd, GT_("no recipient addresses matched declared local names"));
1249 for (idp = msgblk.recipients; idp; idp = idp->next)
1250 if (idp->val.status.mark == XMIT_REJECT)
1252 #ifdef HAVE_SNPRINTF
1253 snprintf(errhd+strlen(errhd), sizeof(errhd)-strlen(errhd),
1255 sprintf(errhd+strlen(errhd),
1256 #endif /* HAVE_SNPRINTF */
1257 GT_("recipient address %s didn't match any local name"), idp->id);
1263 if (errhd[sizeof("X-Fetchmail-Warning: ")])
1264 #ifdef HAVE_SNPRINTF
1265 snprintf(errhd+strlen(errhd), sizeof(errhd)-strlen(errhd), "; ");
1266 snprintf(errhd+strlen(errhd), sizeof(errhd)-strlen(errhd),
1268 strcat(errhd, "; ");
1270 #endif /* HAVE_SNPRINTF */
1271 GT_("message has embedded NULs"));
1276 if (errhd[sizeof("X-Fetchmail-Warning: ")])
1277 #ifdef HAVE_SNPRINTF
1278 snprintf(errhd+strlen(errhd), sizeof(errhd)-strlen(errhd), "; ");
1279 snprintf(errhd+strlen(errhd), sizeof(errhd)-strlen(errhd),
1281 strcat(errhd, "; ");
1283 #endif /* HAVE_SNPRINTF */
1284 GT_("SMTP listener rejected local recipient addresses: "));
1285 errlen = strlen(errhd);
1286 for (idp = msgblk.recipients; idp; idp = idp->next)
1287 if (idp->val.status.mark == XMIT_RCPTBAD)
1288 errlen += strlen(idp->id) + 2;
1290 xalloca(errmsg, char *, errlen+3);
1291 (void) strcpy(errmsg, errhd);
1292 for (idp = msgblk.recipients; idp; idp = idp->next)
1293 if (idp->val.status.mark == XMIT_RCPTBAD)
1295 strcat(errmsg, idp->id);
1297 strcat(errmsg, ", ");
1302 strcat(errmsg, "\r\n");
1304 /* ship out the error line */
1305 stuffline(ctl, errmsg);
1308 /* issue the delimiter line */
1313 stuffline(ctl, buf);
1318 int readbody(int sock, struct query *ctl, flag forward, int len)
1319 /* read and dispose of a message body presented on sock */
1320 /* ctl: query control record */
1321 /* sock: to which the server is connected */
1322 /* len: length of message */
1323 /* forward: TRUE to forward */
1326 unsigned char buf[MSGBUFSIZE+4];
1327 unsigned char *inbufp = buf;
1328 flag issoftline = FALSE;
1331 * Pass through the text lines in the body.
1333 * Yes, this wants to be ||, not &&. The problem is that in the most
1334 * important delimited protocol, POP3, the length is not reliable.
1335 * As usual, the problem is Microsoft brain damage; see FAQ item S2.
1336 * So, for delimited protocols we need to ignore the length here and
1337 * instead drop out of the loop with a break statement when we see
1338 * the message delimiter.
1340 while (protocol->delimited || len > 0)
1342 set_timeout(mytimeout);
1343 if ((linelen = SockRead(sock, inbufp, sizeof(buf)-4-(inbufp-buf)))==-1)
1351 /* write the message size dots */
1354 sizeticker += linelen;
1355 while (sizeticker >= SIZETICKER)
1357 if (outlevel > O_SILENT && run.showdots && !run.use_syslog)
1362 sizeticker -= SIZETICKER;
1367 /* check for end of message */
1368 if (protocol->delimited && *inbufp == '.')
1370 if (EMPTYLINE(inbufp+1))
1373 msgblk.msglen--; /* subtract the size of the dot escape */
1376 msgblk.msglen += linelen;
1378 if (ctl->mimedecode && (ctl->mimemsg & MSG_NEEDS_DECODE)) {
1379 issoftline = UnMimeBodyline(&inbufp, protocol->delimited, issoftline);
1380 if (issoftline && (sizeof(buf)-1-(inbufp-buf) < 200))
1383 * Soft linebreak, but less than 200 bytes left in
1384 * input buffer. Rather than doing a buffer overrun,
1385 * ignore the soft linebreak, NL-terminate data and
1386 * deliver what we have now.
1387 * (Who writes lines longer than 2K anyway?)
1389 *inbufp = '\n'; *(inbufp+1) = '\0';
1394 /* ship out the text line */
1395 if (forward && (!issoftline))
1400 /* guard against very long lines */
1401 buf[MSGBUFSIZE+1] = '\r';
1402 buf[MSGBUFSIZE+2] = '\n';
1403 buf[MSGBUFSIZE+3] = '\0';
1405 n = stuffline(ctl, buf);
1409 report(stdout, GT_("writing message text\n"));
1413 else if (outlevel >= O_VERBOSE && !isafile(1))
1424 void init_transact(const struct method *proto)
1425 /* initialize state for the send and receive functions */
1428 tag[0] = '\0'; /* nuke any tag hanging out from previous query */
1429 protocol = (struct method *)proto;
1432 static void enshroud(char *buf)
1433 /* shroud a password in the given buffer */
1437 if (shroud[0] && (cp = strstr(buf, shroud)))
1441 sp = cp + strlen(shroud);
1449 #if defined(HAVE_STDARG_H)
1450 void gen_send(int sock, const char *fmt, ... )
1452 void gen_send(sock, fmt, va_alist)
1453 int sock; /* socket to which server is connected */
1454 const char *fmt; /* printf-style format */
1457 /* assemble command in printf(3) style and send to the server */
1459 char buf [MSGBUFSIZE+1];
1462 if (protocol->tagged && !suppress_tags)
1463 (void) sprintf(buf, "%s ", GENSYM);
1467 #if defined(HAVE_STDARG_H)
1472 #ifdef HAVE_VSNPRINTF
1473 vsnprintf(buf + strlen(buf), sizeof(buf)-strlen(buf), fmt, ap);
1475 vsprintf(buf + strlen(buf), fmt, ap);
1479 #ifdef HAVE_SNPRINTF
1480 snprintf(buf+strlen(buf), sizeof(buf)-strlen(buf), "\r\n");
1482 strcat(buf, "\r\n");
1483 #endif /* HAVE_SNPRINTF */
1484 SockWrite(sock, buf, strlen(buf));
1486 if (outlevel >= O_MONITOR)
1489 buf[strlen(buf)-2] = '\0';
1490 report(stdout, "%s> %s\n", protocol->name, buf);
1494 int gen_recv(sock, buf, size)
1495 /* get one line of input from the server */
1496 int sock; /* socket to which server is connected */
1497 char *buf; /* buffer to receive input */
1498 int size; /* length of buffer */
1500 int oldphase = phase; /* we don't have to be re-entrant */
1502 phase = SERVER_WAIT;
1503 set_timeout(mytimeout);
1504 if (SockRead(sock, buf, size) == -1)
1511 return(PS_IDLETIMEOUT);
1519 if (buf[strlen(buf)-1] == '\n')
1520 buf[strlen(buf)-1] = '\0';
1521 if (buf[strlen(buf)-1] == '\r')
1522 buf[strlen(buf)-1] = '\0';
1523 if (outlevel >= O_MONITOR)
1524 report(stdout, "%s< %s\n", protocol->name, buf);
1530 #if defined(HAVE_STDARG_H)
1531 int gen_transact(int sock, const char *fmt, ... )
1533 int gen_transact(int sock, fmt, va_alist)
1534 int sock; /* socket to which server is connected */
1535 const char *fmt; /* printf-style format */
1538 /* assemble command in printf(3) style, send to server, accept a response */
1541 char buf [MSGBUFSIZE+1];
1543 int oldphase = phase; /* we don't have to be re-entrant */
1545 phase = SERVER_WAIT;
1547 if (protocol->tagged && !suppress_tags)
1548 (void) sprintf(buf, "%s ", GENSYM);
1552 #if defined(HAVE_STDARG_H)
1557 #ifdef HAVE_VSNPRINTF
1558 vsnprintf(buf + strlen(buf), sizeof(buf)-strlen(buf), fmt, ap);
1560 vsprintf(buf + strlen(buf), fmt, ap);
1564 #ifdef HAVE_SNPRINTF
1565 snprintf(buf+strlen(buf), sizeof(buf)-strlen(buf), "\r\n");
1567 strcat(buf, "\r\n");
1568 #endif /* HAVE_SNPRINTF */
1569 SockWrite(sock, buf, strlen(buf));
1571 if (outlevel >= O_MONITOR)
1574 buf[strlen(buf)-2] = '\0';
1575 report(stdout, "%s> %s\n", protocol->name, buf);
1578 /* we presume this does its own response echoing */
1579 ok = (protocol->parse_response)(sock, buf);
1585 /* transact.c ends here */