2 * driver.c -- generic driver for mail fetch method protocols
4 * Copyright 1997 by Eric S. Raymond
5 * For license terms, see the file COPYING in this directory.
15 #endif /* HAVE_MEMORY_H */
16 #if defined(STDC_HEADERS)
20 #if defined(HAVE_UNISTD_H)
23 #if defined(HAVE_SYS_ITIMER_H)
24 #include <sys/itimer.h>
28 #ifdef HAVE_SYS_WAIT_H
32 #ifdef HAVE_NET_SOCKET_H
33 #include <net/socket.h>
39 #if defined(HAVE_RES_SEARCH) || defined(HAVE_GETHOSTBYNAME)
42 #endif /* defined(HAVE_RES_SEARCH) || defined(HAVE_GETHOSTBYNAME) */
46 #include <netinet/in.h>
47 #endif /* KERBEROS_V4 */
52 #include "fetchmail.h"
55 /* throw types for runtime errors */
56 #define THROW_TIMEOUT 1 /* server timed out */
57 #define THROW_SIGPIPE 2 /* SIGPIPE on stream socket */
59 /* magic values for the message length array */
60 #define MSGLEN_UNKNOWN 0 /* length unknown (0 is impossible) */
61 #define MSGLEN_INVALID -1 /* length passed back is invalid */
62 #define MSGLEN_TOOLARGE -2 /* message is too large */
63 #define MSGLEN_OLD -3 /* message is old */
65 int pass; /* how many times have we re-polled? */
66 int stage; /* where are we? */
67 int phase; /* where are we, for error-logging purposes? */
68 int batchcount; /* count of messages sent in current batch */
69 flag peek_capable; /* can we peek for better error recovery? */
70 int mailserver_socket_temp = -1; /* socket to free if connect timeout */
72 static int timeoutcount; /* count consecutive timeouts */
74 static jmp_buf restart;
76 void set_timeout(int timeleft)
77 /* reset the nonresponse-timeout */
79 #if !defined(__EMX__) && !defined(__BEOS__)
80 struct itimerval ntimeout;
85 ntimeout.it_interval.tv_sec = ntimeout.it_interval.tv_usec = 0;
86 ntimeout.it_value.tv_sec = timeleft;
87 ntimeout.it_value.tv_usec = 0;
88 setitimer(ITIMER_REAL, &ntimeout, (struct itimerval *)NULL);
92 static void timeout_handler (int signal)
93 /* handle SIGALRM signal indicating a server timeout */
96 longjmp(restart, THROW_TIMEOUT);
99 static void sigpipe_handler (int signal)
100 /* handle SIGPIPE signal indicating a broken stream socket */
102 longjmp(restart, THROW_SIGPIPE);
105 /* ignore SIGALRM signal indicating a timeout during cleanup */
106 static void cleanup_timeout_handler (int signal) { }
108 #define CLEANUP_TIMEOUT 60 /* maximum timeout during cleanup */
110 static int cleanupSockClose (int fd)
111 /* close sockets in maximum CLEANUP_TIMEOUT seconds during cleanup */
114 void (*alrmsave)(int);
115 alrmsave = signal(SIGALRM, cleanup_timeout_handler);
116 set_timeout(CLEANUP_TIMEOUT);
117 scerror = SockClose(fd);
119 signal(SIGALRM, alrmsave);
124 static int kerberos_auth(socket, canonical, principal)
125 /* authenticate to the server host using Kerberos V4 */
126 int socket; /* socket to server host */
127 char *canonical; /* server name */
134 Key_schedule schedule;
136 char * prin_copy = (char *) NULL;
137 char * prin = (char *) NULL;
138 char * inst = (char *) NULL;
139 char * realm = (char *) NULL;
141 if (principal != (char *)NULL && *principal)
144 prin = prin_copy = xstrdup(principal);
145 for (cp = prin_copy; *cp && *cp != '.'; ++cp)
151 while (*cp && *cp != '@')
161 xalloca(ticket, KTEXT, sizeof (KTEXT_ST));
162 rem = (krb_sendauth (0L, socket, ticket,
164 inst ? inst : canonical,
165 realm ? realm : ((char *) (krb_realmofhost (canonical))),
170 ((struct sockaddr_in *) 0),
171 ((struct sockaddr_in *) 0),
179 report(stderr, GT_("kerberos error %s\n"), (krb_get_err_text (rem)));
180 return (PS_AUTHFAIL);
184 #endif /* KERBEROS_V4 */
187 static int kerberos5_auth(socket, canonical)
188 /* authenticate to the server host using Kerberos V5 */
189 int socket; /* socket to server host */
190 const char *canonical; /* server name */
192 krb5_error_code retval;
193 krb5_context context;
195 krb5_principal client = NULL, server = NULL;
196 krb5_error *err_ret = NULL;
198 krb5_auth_context auth_context = NULL;
200 krb5_init_context(&context);
201 krb5_init_ets(context);
202 krb5_auth_con_init(context, &auth_context);
204 if (retval = krb5_cc_default(context, &ccdef)) {
205 report(stderr, "krb5_cc_default: %s\n", error_message(retval));
209 if (retval = krb5_cc_get_principal(context, ccdef, &client)) {
210 report(stderr, "krb5_cc_get_principal: %s\n", error_message(retval));
214 if (retval = krb5_sname_to_principal(context, canonical, "pop",
217 report(stderr, "krb5_sname_to_principal: %s\n", error_message(retval));
221 retval = krb5_sendauth(context, &auth_context, (krb5_pointer) &socket,
222 "KPOPV1.0", client, server,
223 AP_OPTS_MUTUAL_REQUIRED,
224 NULL, /* no data to checksum */
225 0, /* no creds, use ccache instead */
229 NULL); /* don't need reply */
231 krb5_free_principal(context, server);
232 krb5_free_principal(context, client);
233 krb5_auth_con_free(context, auth_context);
237 if (err_ret && err_ret->e_text) {
238 report(stderr, GT_("krb5_sendauth: %s [server says '%*s'] \n"),
239 error_message(retval),
242 if (err_ret && err_ret->text.length) {
243 report(stderr, GT_("krb5_sendauth: %s [server says '%*s'] \n"),
244 error_message(retval),
245 err_ret->text.length,
248 krb5_free_error(context, err_ret);
250 report(stderr, "krb5_sendauth: %s\n", error_message(retval));
256 #endif /* KERBEROS_V5 */
258 static void clean_skipped_list(struct idlist **skipped_list)
259 /* struct "idlist" contains no "prev" ptr; we must remove unused items first */
261 struct idlist *current=NULL, *prev=NULL, *tmp=NULL, *head=NULL;
262 prev = current = head = *skipped_list;
268 /* if item has no reference, remove it */
269 if (current && current->val.status.mark == 0)
271 if (current == head) /* remove first item (head) */
273 head = current->next;
274 if (current->id) free(current->id);
276 prev = current = head;
278 else /* remove middle/last item */
282 if (current->id) free(current->id);
287 else /* skip this item */
290 current = current->next;
294 *skipped_list = head;
297 static void send_size_warnings(struct query *ctl)
298 /* send warning mail with skipped msg; reset msg count when user notified */
301 int msg_to_send = FALSE;
302 struct idlist *head=NULL, *current=NULL;
303 int max_warning_poll_count;
309 /* don't start a notification message unless we need to */
310 for (current = head; current; current = current->next)
311 if (current->val.status.num == 0 && current->val.status.mark)
317 * There's no good way to recover if we can't send notification mail,
318 * but it's not a disaster, either, since the skipped mail will not
321 if (open_warning_by_mail(ctl, (struct msgblk *)NULL))
324 GT_("Subject: Fetchmail oversized-messages warning.\r\n"
326 "The following oversized messages remain on the mail server %s:"),
327 ctl->server.pollname);
329 if (run.poll_interval == 0)
330 max_warning_poll_count = 0;
332 max_warning_poll_count = ctl->warnings/run.poll_interval;
334 /* parse list of skipped msg, adding items to the mail */
335 for (current = head; current; current = current->next)
337 if (current->val.status.num == 0 && current->val.status.mark)
339 nbr = current->val.status.mark;
340 size = atoi(current->id);
342 GT_("\t%d msg %d octets long skipped by fetchmail.\r\n"),
345 current->val.status.num++;
346 current->val.status.mark = 0;
348 if (current->val.status.num >= max_warning_poll_count)
349 current->val.status.num = 0;
352 close_warning_by_mail(ctl, (struct msgblk *)NULL);
355 static void mark_oversized(struct query *ctl, int num, int size)
356 /* mark a message oversized */
358 struct idlist *current=NULL, *tmp=NULL;
362 /* convert size to string */
364 snprintf(sizestr, sizeof(sizestr),
367 #endif /* HAVE_SNPRINTF */
370 /* build a list of skipped messages
371 * val.id = size of msg (string cnvt)
372 * val.status.num = warning_poll_count
373 * val.status.mask = nbr of msg this size
376 current = ctl->skipped;
378 /* initialise warning_poll_count to the
379 * current value so that all new msg will
380 * be included in the next mail
382 cnt = current ? current->val.status.num : 0;
384 /* if entry exists, increment the count */
385 if (current && str_in_list(¤t, sizestr, FALSE))
387 for ( ; current; current = current->next)
389 if (strcmp(current->id, sizestr) == 0)
391 current->val.status.mark++;
396 /* otherwise, create a new entry */
397 /* initialise with current poll count */
400 tmp = save_str(&ctl->skipped, sizestr, 1);
401 tmp->val.status.num = cnt;
405 static int fetch_messages(int mailserver_socket, struct query *ctl,
406 int count, int *msgsizes, int *msgcodes, int maxfetch,
407 int *fetches, int *dispatches, int *deletions)
408 /* fetch messages in lockstep mode */
412 for (num = 1; num <= count; num++)
414 flag suppress_delete = FALSE;
415 flag suppress_forward = FALSE;
416 flag suppress_readbody = FALSE;
417 flag retained = FALSE;
419 if (msgcodes[num-1] < 0)
421 if ((msgcodes[num-1] == MSGLEN_TOOLARGE) && !check_only)
422 mark_oversized(ctl, num, msgsizes[num-1]);
423 if (outlevel > O_SILENT)
426 GT_("skipping message %s@%s:%d (%d octets)"),
427 ctl->remotename, ctl->server.truename, num,
429 switch (msgcodes[num-1])
433 * Invalid lengths are produced by Post Office/NT's
434 * annoying habit of randomly prepending bogus
435 * LIST items of length -1. Patrick Audley
436 * <paudley@pobox.com> tells us: LIST shows a
437 * size of -1, RETR and TOP return "-ERR
438 * System error - couldn't open message", and
439 * DELE succeeds but doesn't actually delete
442 report_build(stdout, GT_(" (length -1)"));
444 case MSGLEN_TOOLARGE:
445 report_build(stdout, GT_(" (oversized)"));
452 flag wholesize = !ctl->server.base_protocol->fetch_body;
454 /* request a message */
455 err = (ctl->server.base_protocol->fetch_headers)(mailserver_socket,ctl,num, &len);
456 if (err == PS_TRANSIENT) /* server is probably Exchange */
459 GT_("couldn't fetch headers, message %s@%s:%d (%d octets)\n"),
460 ctl->remotename, ctl->server.truename, num,
467 /* -1 means we didn't see a size in the response */
470 len = msgsizes[num - 1];
474 if (outlevel > O_SILENT)
476 report_build(stdout, GT_("reading message %s@%s:%d of %d"),
477 ctl->remotename, ctl->server.truename,
481 report_build(stdout, GT_(" (%d %soctets)"),
482 len, wholesize ? "" : GT_("header "));
483 if (outlevel >= O_VERBOSE)
484 report_complete(stdout, "\n");
486 report_complete(stdout, " ");
490 * Read the message headers and ship them to the
493 err = readheaders(mailserver_socket, len, msgsizes[num-1],
495 if (err == PS_RETAINED)
496 suppress_readbody = suppress_forward = suppress_delete = retained = TRUE;
497 else if (err == PS_TRANSIENT)
498 suppress_delete = suppress_forward = TRUE;
499 else if (err == PS_REFUSED)
500 suppress_forward = TRUE;
503 * readheaders does not read the body when it
504 * hits a non-header. It has been recently
505 * fixed to return PS_TRUNCATED (properly) when
506 * that happens, but apparently fixing that bug
507 * opened this one here (which looks like an
508 * inproper fix from some ancient thinko)
510 else if (err == PS_TRUNCATED)
511 suppress_readbody = TRUE;
515 else if (err && err != PS_TRUNCATED)
520 * If we're using IMAP4 or something else that
521 * can fetch headers separately from bodies,
522 * it's time to request the body now. This
523 * fetch may be skipped if we got an anti-spam
524 * or other PS_REFUSED error response during
527 if (ctl->server.base_protocol->fetch_body && !suppress_readbody)
529 if (outlevel >= O_VERBOSE && !isafile(1))
535 if ((err = (ctl->server.base_protocol->trail)(mailserver_socket, ctl, num)))
538 if (!suppress_forward)
540 if ((err=(ctl->server.base_protocol->fetch_body)(mailserver_socket,ctl,num,&len)))
543 * Work around a bug in Novell's
544 * broken GroupWise IMAP server;
545 * its body FETCH response is missing
546 * the required length for the data
547 * string. This violates RFC2060.
550 len = msgsizes[num-1] - msgblk.msglen;
551 if (outlevel > O_SILENT && !wholesize)
552 report_complete(stdout,
553 GT_(" (%d body octets) "), len);
557 /* process the body now */
560 if (suppress_readbody)
566 err = readbody(mailserver_socket,
571 if (err == PS_TRANSIENT)
572 suppress_delete = suppress_forward = TRUE;
576 /* tell server we got it OK and resynchronize */
577 if (ctl->server.base_protocol->trail)
579 if (outlevel >= O_VERBOSE && !isafile(1))
585 err = (ctl->server.base_protocol->trail)(mailserver_socket, ctl, num);
591 /* count # messages forwarded on this pass */
592 if (!suppress_forward)
596 * Check to see if the numbers matched?
598 * Yes, some servers foo this up horribly.
599 * All IMAP servers seem to get it right, and
600 * so does Eudora QPOP at least in 2.xx
603 * Microsoft Exchange gets it completely
604 * wrong, reporting compressed rather than
605 * actual sizes (so the actual length of
606 * message is longer than the reported size).
607 * Another fine example of Microsoft brain death!
609 * Some older POP servers, like the old UCB
610 * POP server and the pre-QPOP QUALCOMM
611 * versions, report a longer size in the LIST
612 * response than actually gets shipped up.
613 * It's unclear what is going on here, as the
614 * QUALCOMM server (at least) seems to be
615 * reporting the on-disk size correctly.
617 if (msgblk.msglen != msgsizes[num-1])
619 if (outlevel >= O_DEBUG)
621 GT_("message %s@%s:%d was not the expected length (%d actual != %d expected)\n"),
622 ctl->remotename, ctl->server.truename, num,
623 msgblk.msglen, msgsizes[num-1]);
626 /* end-of-message processing starts here */
627 if (!close_sink(ctl, &msgblk, !suppress_forward))
630 suppress_delete = TRUE;
637 * At this point in flow of control, either
638 * we've bombed on a protocol error or had
639 * delivery refused by the SMTP server
640 * (unlikely -- I've never seen it) or we've
641 * seen `accepted for delivery' and the
642 * message is shipped. It's safe to mark the
643 * message seen and delete it on the server
648 * Tell the UID code we've seen this.
649 * Matthias Andree: only register the UID if we could actually
650 * forward this mail. If we omit this !suppress_delete check,
651 * fetchmail will never retry mail that the local listener
652 * refused temporarily.
654 if (ctl->newsaved && !suppress_delete)
658 for (sdp = ctl->newsaved; sdp; sdp = sdp->next)
659 if ((sdp->val.status.num == num) && (msgcodes[num-1] >= 0))
661 sdp->val.status.mark = UID_SEEN;
662 save_str(&ctl->oldsaved, sdp->id,UID_SEEN);
666 /* maybe we delete this message now? */
669 if (outlevel > O_SILENT)
670 report(stdout, GT_(" retained\n"));
672 else if (ctl->server.base_protocol->delete
674 && ((msgcodes[num-1] >= 0) ? !ctl->keep : ctl->flush))
677 if (outlevel > O_SILENT)
678 report_complete(stdout, GT_(" flushed\n"));
679 err = (ctl->server.base_protocol->delete)(mailserver_socket, ctl, num);
683 delete_str(&ctl->newsaved, num);
684 #endif /* POP3_ENABLE */
686 else if (outlevel > O_SILENT)
687 report_complete(stdout, GT_(" not flushed\n"));
689 /* perhaps this as many as we're ready to handle */
690 if (maxfetch && maxfetch <= *fetches && *fetches < count)
692 report(stdout, GT_("fetchlimit %d reached; %d messages left on server %s account %s\n"),
693 maxfetch, count - *fetches, ctl->server.truename, ctl->remotename);
701 static int do_session(ctl, proto, maxfetch)
702 /* retrieve messages from server using given protocol method table */
703 struct query *ctl; /* parsed options with merged-in defaults */
704 const struct method *proto; /* protocol method table */
705 const int maxfetch; /* maximum number of messages to fetch */
709 volatile int err, mailserver_socket = -1; /* pacifies -Wall */
711 int err, mailserver_socket = -1;
712 #endif /* HAVE_VOLATILE */
714 void (*pipesave)(int);
715 void (*alrmsave)(int);
717 ctl->server.base_protocol = proto;
721 init_transact(proto);
723 /* set up the server-nonresponse timeout */
724 alrmsave = signal(SIGALRM, timeout_handler);
725 mytimeout = ctl->server.timeout;
727 /* set up the broken-pipe timeout */
728 pipesave = signal(SIGPIPE, sigpipe_handler);
730 if ((js = setjmp(restart)))
732 #ifdef HAVE_SIGPROCMASK
734 * Don't rely on setjmp() to restore the blocked-signal mask.
735 * It does this under BSD but is required not to under POSIX.
737 * If your Unix doesn't have sigprocmask, better hope it has
738 * BSD-like behavior. Otherwise you may see fetchmail get
739 * permanently wedged after a second timeout on a bad read,
740 * because alarm signals were blocked after the first.
744 sigfillset(&allsigs);
745 sigprocmask(SIG_UNBLOCK, &allsigs, NULL);
746 #endif /* HAVE_SIGPROCMASK */
748 if (js == THROW_SIGPIPE)
750 signal(SIGPIPE, SIG_IGN);
752 GT_("SIGPIPE thrown from an MDA or a stream socket error\n"));
755 else if (js == THROW_TIMEOUT)
757 if (phase == OPEN_WAIT)
759 GT_("timeout after %d seconds waiting to connect to server %s.\n"),
760 ctl->server.timeout, ctl->server.pollname);
761 else if (phase == SERVER_WAIT)
763 GT_("timeout after %d seconds waiting for server %s.\n"),
764 ctl->server.timeout, ctl->server.pollname);
765 else if (phase == FORWARDING_WAIT)
767 GT_("timeout after %d seconds waiting for %s.\n"),
769 ctl->mda ? "MDA" : "SMTP");
770 else if (phase == LISTENER_WAIT)
772 GT_("timeout after %d seconds waiting for listener to respond.\n"), ctl->server.timeout);
775 GT_("timeout after %d seconds.\n"), ctl->server.timeout);
778 * If we've exceeded our threshold for consecutive timeouts,
779 * try to notify the user, then mark the connection wedged.
780 * Don't do this if the connection can idle, though; idle
781 * timeouts just mean the frequency of mail is low.
783 if (timeoutcount > MAX_TIMEOUTS
784 && !open_warning_by_mail(ctl, (struct msgblk *)NULL))
787 GT_("Subject: fetchmail sees repeated timeouts\r\n"));
789 GT_("Fetchmail saw more than %d timeouts while attempting to get mail from %s@%s.\r\n"),
792 ctl->server.truename);
794 GT_("This could mean that your mailserver is stuck, or that your SMTP\r\n" \
795 "server is wedged, or that your mailbox file on the server has been\r\n" \
796 "corrupted by a server error. You can run `fetchmail -v -v' to\r\n" \
797 "diagnose the problem.\r\n\r\n" \
798 "Fetchmail won't poll this mailbox again until you restart it.\r\n"));
799 close_warning_by_mail(ctl, (struct msgblk *)NULL);
809 char buf[MSGBUFSIZE+1], *realhost;
810 int count, new, bytes, deletions = 0;
811 int *msgsizes = (int *)NULL;
812 int *msgcodes = (int *)NULL;
814 int fetches, dispatches, oldphase;
815 #else /* INET6_ENABLE */
816 int port, fetches, dispatches, oldphase;
817 #endif /* INET6_ENABLE */
820 /* execute pre-initialization command, if any */
821 if (ctl->preconnect && (err = system(ctl->preconnect)))
824 GT_("pre-connection command failed with status %d\n"), err);
829 /* open a socket to the mail server */
832 set_timeout(mytimeout);
835 port = ctl->server.port ? ctl->server.port : ( ctl->use_ssl ? ctl->server.base_protocol->sslport : ctl->server.base_protocol->port );
837 port = ctl->server.port ? ctl->server.port : ctl->server.base_protocol->port;
839 #endif /* !INET6_ENABLE */
842 /* If either the pollname or vianame are "hesiod" we want to
843 lookup the user's hesiod pobox host */
844 if (!strcasecmp(ctl->server.queryname, "hesiod")) {
845 struct hes_postoffice *hes_p;
846 hes_p = hes_getmailhost(ctl->remotename);
847 if (hes_p != NULL && strcmp(hes_p->po_type, "POP") == 0) {
848 free(ctl->server.queryname);
849 ctl->server.queryname = xstrdup(hes_p->po_host);
851 free(ctl->server.via);
852 ctl->server.via = xstrdup(hes_p->po_host);
855 GT_("couldn't find HESIOD pobox for %s\n"),
861 #ifdef HAVE_GETHOSTBYNAME
863 * Canonicalize the server truename for later use. This also
864 * functions as a probe for whether the mailserver is accessible.
865 * We try it on each poll cycle until we get a result. This way,
866 * fetchmail won't fail if started up when the network is inaccessible.
868 if (ctl->server.dns && !ctl->server.trueaddr)
870 if (ctl->server.lead_server)
872 char *leadname = ctl->server.lead_server->truename;
874 /* prevent core dump from ill-formed or duplicate entry */
877 report(stderr, GT_("Lead server has no name.\n"));
884 ctl->server.truename = xstrdup(leadname);
888 struct hostent *namerec;
891 * Get the host's IP, so we can report it like this:
893 * Received: from hostname [10.0.0.1]
896 namerec = gethostbyname(ctl->server.queryname);
897 if (namerec == (struct hostent *)NULL)
900 GT_("couldn't find canonical DNS name of %s\n"),
901 ctl->server.pollname);
909 ctl->server.truename=xstrdup((char *)namerec->h_name);
910 ctl->server.trueaddr=xmalloc(namerec->h_length);
911 memcpy(ctl->server.trueaddr,
912 namerec->h_addr_list[0],
917 #endif /* HAVE_GETHOSTBYNAME */
919 realhost = ctl->server.via ? ctl->server.via : ctl->server.pollname;
921 /* allow time for the port to be set up if we have a plugin */
922 if (ctl->server.plugin)
925 if ((mailserver_socket = SockOpen(realhost,
926 ctl->server.service ? ctl->server.service : ( ctl->use_ssl ? ctl->server.base_protocol->sslservice : ctl->server.base_protocol->service ),
927 ctl->server.netsec, ctl->server.plugin)) == -1)
928 #else /* INET6_ENABLE */
929 if ((mailserver_socket = SockOpen(realhost, port, NULL, ctl->server.plugin)) == -1)
930 #endif /* INET6_ENABLE */
935 #ifdef HAVE_RES_SEARCH
936 if (err_no != 0 && h_errno != 0)
937 report(stderr, GT_("internal inconsistency\n"));
940 * Avoid generating a bogus error every poll cycle when we're
941 * in daemon mode but the connection to the outside world
944 if (!((err_no == EHOSTUNREACH || err_no == ENETUNREACH)
945 && run.poll_interval))
947 report_build(stderr, GT_("%s connection to %s failed"),
948 ctl->server.base_protocol->name, ctl->server.pollname);
949 #ifdef HAVE_RES_SEARCH
952 if (h_errno == HOST_NOT_FOUND)
953 strcpy(errbuf, GT_("host is unknown."));
955 else if (h_errno == NO_ADDRESS)
956 strcpy(errbuf, GT_("name is valid but has no IP address."));
958 else if (h_errno == NO_RECOVERY)
959 strcpy(errbuf, GT_("unrecoverable name server error."));
960 else if (h_errno == TRY_AGAIN)
961 strcpy(errbuf, GT_("temporary name server error."));
964 snprintf(errbuf, sizeof(errbuf),
967 #endif /* HAVE_SNPRINTF */
968 GT_("unknown DNS error %d."), h_errno);
971 #endif /* HAVE_RES_SEARCH */
972 strcpy(errbuf, strerror(err_no));
973 report_complete(stderr, ": %s\n", errbuf);
977 * Don't use this. It was an attempt to address Debian bug
978 * #47143 (Notify user by mail when pop server nonexistent).
979 * Trouble is, that doesn't work; you trip over the case
980 * where your SLIP or PPP link is down...
982 /* warn the system administrator */
983 if (open_warning_by_mail(ctl, (struct msgblk *)NULL) == 0)
986 GT_("Subject: Fetchmail unreachable-server warning.\r\n"
988 "Fetchmail could not reach the mail server %s:")
989 ctl->server.pollname);
990 stuff_warning(ctl, errbuf, ctl->server.pollname);
991 close_warning_by_mail(ctl, (struct msgblk *)NULL);
995 #endif /* INET6_ENABLE */
1003 /* Save the socket opened. Usefull if Fetchmail hangs on SSLOpen
1004 * because the socket can be closed
1006 mailserver_socket_temp = mailserver_socket;
1007 set_timeout(mytimeout);
1009 /* perform initial SSL handshake on open connection */
1010 /* Note: We pass the realhost name over for certificate
1011 verification. We may want to make this configurable */
1012 if (ctl->use_ssl && SSLOpen(mailserver_socket,ctl->sslcert,ctl->sslkey,ctl->sslproto,ctl->sslcertck,
1013 ctl->sslcertpath,ctl->sslfingerprint,realhost,ctl->server.pollname) == -1)
1015 report(stderr, GT_("SSL connection failed.\n"));
1019 /* Fetchmail didn't hang on SSLOpen,
1020 * then no need to set mailserver_socket_temp
1022 mailserver_socket_temp = -1;
1025 /* A timeout is still defined before SSLOpen,
1026 * then Fetchmail hanging on SSLOpen is handled.
1031 if (ctl->server.authenticate == A_KERBEROS_V4 && (strcasecmp(proto->name,"IMAP") != 0))
1033 set_timeout(mytimeout);
1034 err = kerberos_auth(mailserver_socket, ctl->server.truename,
1035 ctl->server.principal);
1040 #endif /* KERBEROS_V4 */
1043 if (ctl->server.authenticate == A_KERBEROS_V5)
1045 set_timeout(mytimeout);
1046 err = kerberos5_auth(mailserver_socket, ctl->server.truename);
1051 #endif /* KERBEROS_V5 */
1053 /* accept greeting message from mail server */
1054 err = (ctl->server.base_protocol->parse_response)(mailserver_socket, buf);
1058 /* try to get authorized to fetch mail */
1059 stage = STAGE_GETAUTH;
1060 if (ctl->server.base_protocol->getauth)
1062 err = (ctl->server.base_protocol->getauth)(mailserver_socket, ctl, buf);
1066 if (err == PS_LOCKBUSY)
1067 report(stderr, GT_("Lock-busy error on %s@%s\n"),
1069 ctl->server.truename);
1070 else if (err == PS_SERVBUSY)
1071 report(stderr, GT_("Server busy error on %s@%s\n"),
1073 ctl->server.truename);
1074 else if (err == PS_AUTHFAIL)
1076 report(stderr, GT_("Authorization failure on %s@%s%s\n"),
1078 ctl->server.truename,
1079 (ctl->wehaveauthed ? GT_(" (previously authorized)") : "")
1083 * If we're running in background, try to mail the
1084 * calling user a heads-up about the authentication
1085 * failure once it looks like this isn't a fluke
1086 * due to the server being temporarily inaccessible.
1087 * When we get third succesive failure, we notify the user
1088 * but only if we haven't already managed to get
1089 * authorization. After that, once we get authorization
1090 * we let the user know service is restored.
1092 if (run.poll_interval
1093 && ctl->wehavesentauthnote
1094 && ((ctl->wehaveauthed && ++ctl->authfailcount == 10)
1095 || ++ctl->authfailcount == 3)
1096 && !open_warning_by_mail(ctl, (struct msgblk *)NULL))
1098 ctl->wehavesentauthnote = 1;
1100 GT_("Subject: fetchmail authentication failed on %s@%s\r\n"),
1101 ctl->remotename, ctl->server.truename);
1103 GT_("Fetchmail could not get mail from %s@%s.\r\n"),
1105 ctl->server.truename);
1106 if (ctl->wehaveauthed)
1107 stuff_warning(ctl, GT_("\
1108 The attempt to get authorization failed.\r\n\
1109 Since we have already succeeded in getting authorization for this\r\n\
1110 connection, this is probably another failure mode (such as busy server)\r\n\
1111 that fetchmail cannot distinguish because the server didn't send a useful\r\n\
1114 However, if you HAVE changed you account details since starting the\r\n\
1115 fetchmail daemon, you need to stop the daemon, change your configuration\r\n\
1116 of fetchmail, and then restart the daemon.\r\n\
1118 The fetchmail daemon will continue running and attempt to connect\r\n\
1119 at each cycle. No future notifications will be sent until service\r\n\
1122 stuff_warning(ctl, GT_("\
1123 The attempt to get authorization failed.\r\n\
1124 This probably means your password is invalid, but some servers have\r\n\
1125 other failure modes that fetchmail cannot distinguish from this\r\n\
1126 because they don't send useful error messages on login failure.\r\n\
1128 The fetchmail daemon will continue running and attempt to connect\r\n\
1129 at each cycle. No future notifications will be sent until service\r\n\
1131 close_warning_by_mail(ctl, (struct msgblk *)NULL);
1134 else if (err == PS_REPOLL)
1136 if (outlevel >= O_VERBOSE)
1137 report(stderr, GT_("Repoll immediately on %s@%s\n"),
1139 ctl->server.truename);
1142 report(stderr, GT_("Unknown login or authentication error on %s@%s\n"),
1144 ctl->server.truename);
1151 * This connection has given us authorization at least once.
1153 * There are dodgy server (clubinternet.fr for example) that
1154 * give spurious authorization failures on patently good
1155 * account/password details, then 5 minutes later let you in!
1157 * This is meant to build in some tolerance of such nasty bits
1160 ctl->wehaveauthed = 1;
1161 /*if (ctl->authfailcount >= 3)*/
1162 if (ctl->wehavesentauthnote)
1164 ctl->wehavesentauthnote = 0;
1166 GT_("Authorization OK on %s@%s\n"),
1168 ctl->server.truename);
1169 if (!open_warning_by_mail(ctl, (struct msgblk *)NULL))
1172 GT_("Subject: fetchmail authentication OK on %s@%s\r\n"),
1173 ctl->remotename, ctl->server.truename);
1175 GT_("Fetchmail was able to log into %s@%s.\r\n"),
1177 ctl->server.truename);
1179 GT_("Service has been restored.\r\n"));
1180 close_warning_by_mail(ctl, (struct msgblk *)NULL);
1185 * Reporting only after the first three
1186 * consecutive failures, or ten consecutive
1187 * failures after we have managed to get
1190 ctl->authfailcount = 0;
1194 ctl->errcount = fetches = 0;
1196 /* now iterate over each folder selected */
1197 for (idp = ctl->mailboxes; idp; idp = idp->next)
1204 /* reset timeout, in case we did an IDLE */
1205 mytimeout = ctl->server.timeout;
1207 if (outlevel >= O_DEBUG)
1210 report(stdout, GT_("selecting or re-polling folder %s\n"), idp->id);
1212 report(stdout, GT_("selecting or re-polling default folder\n"));
1215 /* compute # of messages and number of new messages waiting */
1216 stage = STAGE_GETRANGE;
1217 err = (ctl->server.base_protocol->getrange)(mailserver_socket, ctl, idp->id, &count, &new, &bytes);
1221 /* show user how many messages we downloaded */
1223 #ifdef HAVE_SNPRINTF
1224 (void) snprintf(buf, sizeof(buf),
1227 #endif /* HAVE_SNPRINTF */
1228 GT_("%s at %s (folder %s)"),
1229 ctl->remotename, ctl->server.truename, idp->id);
1231 #ifdef HAVE_SNPRINTF
1232 (void) snprintf(buf, sizeof(buf),
1235 #endif /* HAVE_SNPRINTF */
1237 ctl->remotename, ctl->server.truename);
1238 if (outlevel > O_SILENT)
1240 if (count == -1) /* only used for ETRN */
1241 report(stdout, GT_("Polling %s\n"), ctl->server.truename);
1242 else if (count != 0)
1244 if (new != -1 && (count - new) > 0)
1245 report_build(stdout, GT_("%d %s (%d seen) for %s"),
1246 count, count > 1 ? GT_("messages") :
1250 report_build(stdout, GT_("%d %s for %s"),
1251 count, count > 1 ? GT_("messages") :
1252 GT_("message"), buf);
1254 report_complete(stdout, ".\n");
1256 report_complete(stdout, GT_(" (%d octets).\n"), bytes);
1260 /* these are pointless in normal daemon mode */
1261 if (pass == 1 && (run.poll_interval == 0 || outlevel >= O_VERBOSE))
1262 report(stdout, GT_("No mail for %s\n"), buf);
1266 /* very important, this is where we leave the do loop */
1272 if (new == -1 || ctl->fetchall)
1274 fetches = new; /* set error status correctly */
1276 * There used to be a `goto noerror' here, but this
1277 * prevented checking of multiple folders. This
1278 * comment is a reminder in case I introduced some
1279 * subtle bug by removing it...
1284 flag force_retrieval;
1288 * What forces this code is that in POP2 and
1289 * IMAP2bis you can't fetch a message without
1290 * having it marked `seen'. In POP3 and IMAP4, on the
1291 * other hand, you can (peek_capable is set by
1292 * each driver module to convey this; it's not a
1293 * method constant because of the difference between
1294 * IMAP2bis and IMAP4, and because POP3 doesn't peek
1295 * if fetchall is on).
1297 * The result of being unable to peek is that if there's
1298 * any kind of transient error (DNS lookup failure, or
1299 * sendmail refusing delivery due to process-table limits)
1300 * the message will be marked "seen" on the server without
1301 * having been delivered. This is not a big problem if
1302 * fetchmail is running in foreground, because the user
1303 * will see a "skipped" message when it next runs and get
1306 * But in daemon mode this leads to the message
1307 * being silently ignored forever. This is not
1310 * We compensate for this by checking the error
1311 * count from the previous pass and forcing all
1312 * messages to be considered new if it's nonzero.
1314 force_retrieval = !peek_capable && (ctl->errcount > 0);
1317 * Don't trust the message count passed by the server.
1318 * Without this check, it might be possible to do a
1319 * DNS-spoofing attack that would pass back a ridiculous
1320 * count, and allocate a malloc area that would overlap
1321 * a portion of the stack.
1323 if (count > INT_MAX/sizeof(int))
1325 report(stderr, GT_("bogus message count!"));
1326 return(PS_PROTOCOL);
1329 /* OK, we're going to gather size info next */
1330 xalloca(msgsizes, int *, sizeof(int) * count);
1331 xalloca(msgcodes, int *, sizeof(int) * count);
1332 for (i = 0; i < count; i++) {
1334 msgcodes[i] = MSGLEN_UNKNOWN;
1338 * We need the size of each message before it's
1339 * loaded in order to pass it to the ESMTP SIZE
1340 * option. If the protocol has a getsizes method,
1341 * we presume this means it doesn't get reliable
1342 * sizes from message fetch responses.
1344 if (proto->getsizes)
1346 stage = STAGE_GETSIZES;
1347 err = (proto->getsizes)(mailserver_socket, count, msgsizes);
1354 for (i = 0; i < count; i++)
1355 bytes += msgsizes[i];
1359 /* mark some messages not to be retrieved */
1360 for (num = 1; num <= count; num++)
1362 if (NUM_NONZERO(ctl->limit) && (msgsizes[num-1] > ctl->limit))
1363 msgcodes[num-1] = MSGLEN_TOOLARGE;
1364 else if (ctl->fetchall || force_retrieval)
1366 else if (ctl->server.base_protocol->is_old && (ctl->server.base_protocol->is_old)(mailserver_socket,ctl,num))
1367 msgcodes[num-1] = MSGLEN_OLD;
1368 /* else if (msgsizes[num-1] == 512)
1369 msgcodes[num-1] = MSGLEN_OLD; (hmh) sample code to skip message */
1372 /* read, forward, and delete messages */
1373 stage = STAGE_FETCH;
1375 /* fetch in lockstep mode */
1376 err = fetch_messages(mailserver_socket, ctl,
1377 count, msgsizes, msgcodes,
1379 &fetches, &dispatches, &deletions);
1383 if (!check_only && ctl->skipped
1384 && run.poll_interval > 0 && !nodetach)
1386 clean_skipped_list(&ctl->skipped);
1387 send_size_warnings(ctl);
1392 * Only re-poll if we either had some actual forwards and
1393 * either allowed deletions and had no errors.
1394 * Otherwise it is far too easy to get into infinite loops.
1396 (dispatches && ctl->server.base_protocol->retry && !ctl->keep && !ctl->errcount);
1400 /* ordinary termination with no errors -- officially log out */
1401 err = (ctl->server.base_protocol->logout_cmd)(mailserver_socket, ctl);
1403 * Hmmmm...arguably this would be incorrect if we had fetches but
1404 * no dispatches (due to oversized messages, etc.)
1407 err = (fetches > 0) ? PS_SUCCESS : PS_NOMAIL;
1408 cleanupSockClose(mailserver_socket);
1412 /* we only get here on error */
1413 if (err != 0 && err != PS_SOCKET && err != PS_REPOLL)
1415 stage = STAGE_LOGOUT;
1416 (ctl->server.base_protocol->logout_cmd)(mailserver_socket, ctl);
1419 /* try to clean up all streams */
1422 if (mailserver_socket != -1) {
1423 cleanupSockClose(mailserver_socket);
1424 mailserver_socket = -1;
1426 /* If there was a connect timeout, the socket should be closed.
1427 * mailserver_socket_temp contains the socket to close.
1429 if (mailserver_socket_temp != -1) {
1430 cleanupSockClose(mailserver_socket_temp);
1431 mailserver_socket_temp = -1;
1435 msg = (const char *)NULL; /* sacrifice to -Wall */
1439 msg = GT_("socket");
1442 msg = GT_("missing or bad RFC822 header");
1448 msg = GT_("client/server synchronization");
1451 msg = GT_("client/server protocol");
1454 msg = GT_("lock busy on server");
1457 msg = GT_("SMTP transaction");
1460 msg = GT_("DNS lookup");
1463 report(stderr, GT_("undefined error\n"));
1466 /* no report on PS_MAXFETCH or PS_UNDEFINED or PS_AUTHFAIL */
1467 if (err==PS_SOCKET || err==PS_SYNTAX
1468 || err==PS_IOERR || err==PS_ERROR || err==PS_PROTOCOL
1469 || err==PS_LOCKBUSY || err==PS_SMTP || err==PS_DNS)
1473 if (phase == FORWARDING_WAIT || phase == LISTENER_WAIT)
1474 stem = GT_("%s error while delivering to SMTP host %s\n");
1476 stem = GT_("%s error while fetching from %s\n");
1477 report(stderr, stem, msg, ctl->server.pollname);
1481 /* execute wrapup command, if any */
1482 if (ctl->postconnect && (err = system(ctl->postconnect)))
1484 report(stderr, GT_("post-connection command failed with status %d\n"), err);
1485 if (err == PS_SUCCESS)
1489 signal(SIGALRM, alrmsave);
1490 signal(SIGPIPE, pipesave);
1494 int do_protocol(ctl, proto)
1495 /* retrieve messages from server using given protocol method table */
1496 struct query *ctl; /* parsed options with merged-in defaults */
1497 const struct method *proto; /* protocol method table */
1502 if (ctl->server.authenticate == A_KERBEROS_V4)
1504 report(stderr, GT_("Kerberos V4 support not linked.\n"));
1507 #endif /* KERBEROS_V4 */
1510 if (ctl->server.authenticate == A_KERBEROS_V5)
1512 report(stderr, GT_("Kerberos V5 support not linked.\n"));
1515 #endif /* KERBEROS_V5 */
1517 /* lacking methods, there are some options that may fail */
1520 /* check for unsupported options */
1523 GT_("Option --flush is not supported with %s\n"),
1527 else if (ctl->fetchall) {
1529 GT_("Option --all is not supported with %s\n"),
1534 if (!proto->getsizes && NUM_SPECIFIED(ctl->limit))
1537 GT_("Option --limit is not supported with %s\n"),
1543 * If no expunge limit or we do expunges within the driver,
1544 * then just do one session, passing in any fetchlimit.
1546 if (proto->retry || !NUM_SPECIFIED(ctl->expunge))
1547 return(do_session(ctl, proto, NUM_VALUE_OUT(ctl->fetchlimit)));
1549 * There's an expunge limit, and it isn't handled in the driver itself.
1550 * OK; do multiple sessions, each fetching a limited # of messages.
1551 * Stop if the total count of retrieved messages exceeds ctl->fetchlimit
1552 * (if it was nonzero).
1558 int expunge = NUM_VALUE_OUT(ctl->expunge);
1559 int fetchlimit = NUM_VALUE_OUT(ctl->fetchlimit);
1562 if (fetchlimit > 0 && (expunge == 0 || expunge > fetchlimit - totalcount))
1563 expunge = fetchlimit - totalcount;
1564 err = do_session(ctl, proto, expunge);
1565 totalcount += expunge;
1566 if (NUM_SPECIFIED(ctl->fetchlimit) && totalcount >= fetchlimit)
1568 if (err != PS_LOCKBUSY)
1570 else if (lockouts >= MAX_LOCKOUTS)
1572 else /* err == PS_LOCKBUSY */
1575 * Allow time for the server lock to release. if we
1576 * don't do this, we'll often hit a locked-mailbox
1577 * condition and fail.
1583 (err == PS_MAXFETCH || err == PS_LOCKBUSY);
1590 /* driver.c ends here */