HCoop / bpt / emacs.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Convert function definitions to standard C.
[bpt/emacs.git] / lib-src / movemail.c
CommitLineData
237e0016
RS		 1/* movemail foo bar -- move file foo to file bar,
2 locking file foo the way /bin/mail respects.
b3d90e46 3 Copyright (C) 1986, 1992, 1993, 1994, 1996, 1999, 2001, 2002, 2003, 2004,
114f9c96 4 2005, 2006, 2007, 2008, 2009, 2010 Free Software Foundation, Inc.
237e0016
RS		 5
6This file is part of GNU Emacs.
7
294981c7 8GNU Emacs is free software: you can redistribute it and/or modify
93320c23 9it under the terms of the GNU General Public License as published by
294981c7
GM		 10the Free Software Foundation, either version 3 of the License, or
11(at your option) any later version.
93320c23 12
237e0016 13GNU Emacs is distributed in the hope that it will be useful,
93320c23
JA		 14but WITHOUT ANY WARRANTY; without even the implied warranty of
15MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16GNU General Public License for more details.
237e0016 17
93320c23 18You should have received a copy of the GNU General Public License
294981c7
GM		 19along with GNU Emacs. If not, see <http://www.gnu.org/licenses/>. */
20
237e0016 21
63cf923d
RS		 22/* Important notice: defining MAIL_USE_FLOCK or MAIL_USE_LOCKF *will
23 cause loss of mail* if you do it on a system that does not normally
24 use flock as its way of interlocking access to inbox files. The
25 setting of MAIL_USE_FLOCK and MAIL_USE_LOCKF *must agree* with the
26 system's own conventions. It is not a choice that is up to you.
08d0752f
RS		 27
28 So, if your system uses lock files rather than flock, then the only way
29 you can get proper operation is to enable movemail to write lockfiles there.
30 This means you must either give that directory access modes
31 that permit everyone to write lockfiles in it, or you must make movemail
32 a setuid or setgid program. */
33
237e0016
RS		 34/*
35 * Modified January, 1986 by Michael R. Gretzinger (Project Athena)
36 *
88c40feb 37 * Added POP (Post Office Protocol) service. When compiled -DMAIL_USE_POP
237e0016
RS		 38 * movemail will accept input filename arguments of the form
39 * "po:username". This will cause movemail to open a connection to
40 * a pop server running on $MAILHOST (environment variable). Movemail
41 * must be setuid to root in order to work with POP.
177c0ea7 42 *
237e0016
RS		 43 * New module: popmail.c
44 * Modified routines:
cfa191ff 45 * main - added code within #ifdef MAIL_USE_POP; added setuid (getuid ())
177c0ea7 46 * after POP code.
237e0016
RS		 47 * New routines in movemail.c:
48 * get_errmsg - return pointer to system error message
49 *
2e82e3c3
RS		 50 * Modified August, 1993 by Jonathan Kamens (OpenVision Technologies)
51 *
52 * Move all of the POP code into a separate file, "pop.c".
53 * Use strerror instead of get_errmsg.
54 *
237e0016
RS		 55 */
56
752fb472 57#include <config.h>
237e0016
RS		 58#include <sys/types.h>
59#include <sys/stat.h>
60#include <sys/file.h>
e2f9d9af 61#include <stdio.h>
237e0016 62#include <errno.h>
bd41a17d 63#include <time.h>
cc3b64e8 64
fea4325c 65#include <getopt.h>
f72adc12
EZ		 66#ifdef HAVE_UNISTD_H
67#include <unistd.h>
68#endif
cc3b64e8
DL		 69#ifdef HAVE_FCNTL_H
70#include <fcntl.h>
71#endif
f72adc12 72#include "syswait.h"
2e82e3c3
RS		 73#ifdef MAIL_USE_POP
74#include "pop.h"
75#endif
237e0016 76
91cf09ac
RS		 77#ifdef MSDOS
78#undef access
79#endif /* MSDOS */
80
61946d67
RS		 81#ifndef DIRECTORY_SEP
82#define DIRECTORY_SEP '/'
83#endif
84#ifndef IS_DIRECTORY_SEP
85#define IS_DIRECTORY_SEP(_c_) ((_c_) == DIRECTORY_SEP)
86#endif
87
7f75d5c6 88#ifdef WINDOWSNT
677a7bcf 89#include "ntlib.h"
7f75d5c6
RS		 90#undef access
91#undef unlink
92#define fork() 0
4822b2e5 93#define wait(var) (*(var) = 0)
7f75d5c6
RS		 94/* Unfortunately, Samba doesn't seem to properly lock Unix files even
95 though the locking call succeeds (and indeed blocks local access from
96 other NT programs). If you have direct file access using an NFS
97 client or something other than Samba, the locking call might work
677a7bcf
RS		 98 properly - make sure it does before you enable this!
99
100 [18-Feb-97 andrewi] I now believe my comment above to be incorrect,
101 since it was based on a misunderstanding of how locking calls are
102 implemented and used on Unix. */
103//#define DISABLE_DIRECT_ACCESS
104
677a7bcf 105#include <fcntl.h>
7f75d5c6
RS		 106#endif /* WINDOWSNT */
107
4ec9a77a
RS		 108#ifndef F_OK
109#define F_OK 0
110#define X_OK 1
111#define W_OK 2
112#define R_OK 4
113#endif
237e0016 114
76ed5e01 115#ifdef WINDOWSNT
237e0016
RS		 116#include <sys/locking.h>
117#endif
118
63cf923d
RS		 119#ifdef MAIL_USE_LOCKF
120#define MAIL_USE_SYSTEM_LOCK
121#endif
122
123#ifdef MAIL_USE_FLOCK
124#define MAIL_USE_SYSTEM_LOCK
125#endif
126
4293ba7f
RS		 127#ifdef MAIL_USE_MMDF
128extern int lk_open (), lk_close ();
129#endif
130
a4deff3c 131#if !defined (MAIL_USE_SYSTEM_LOCK) && !defined (MAIL_USE_MMDF) && \
dd843b6a
DL		 132 (defined (HAVE_LIBMAIL) || defined (HAVE_LIBLOCKFILE)) && \
133 defined (HAVE_MAILLOCK_H)
a4deff3c
RS		 134#include <maillock.h>
135/* We can't use maillock unless we know what directory system mail
136 files appear in. */
137#ifdef MAILDIR
138#define MAIL_USE_MAILLOCK
139static char *mail_spool_name ();
140#endif
141#endif
142
873fbd0b 143char *strerror (int);
517699ca 144#ifdef HAVE_INDEX
f57e2426 145extern char *index (const char *, int);
517699ca
DL		 146#endif
147#ifdef HAVE_RINDEX
f57e2426 148extern char *rindex (const char *, int);
517699ca 149#endif
e2f9d9af 150
873fbd0b
DN		 151void fatal (char *s1, char *s2, char *s3);
152void error (char *s1, char *s2, char *s3);
153void pfatal_with_name (char *name);
154void pfatal_and_delete (char *name);
155char *concat (char *s1, char *s2, char *s3);
156long *xmalloc (unsigned int size);
157int popmail (char *mailbox, char *outfile, int preserve, char *password, int reverse_order);
158int pop_retr (popserver server, int msgno, FILE *arg);
159int mbx_write (char *line, int len, FILE *mbf);
160int mbx_delimit_begin (FILE *mbf);
161int mbx_delimit_end (FILE *mbf);
237e0016
RS		 162
163/* Nonzero means this is name of a lock file to delete on fatal error. */
164char *delete_lockname;
165
e2f9d9af 166int
873fbd0b 167main (int argc, char **argv)
237e0016
RS		 168{
169 char *inname, *outname;
170 int indesc, outdesc;
237e0016 171 int nread;
bba104c1 172 int status;
fea4325c 173 int c, preserve_mail = 0;
237e0016 174
63cf923d 175#ifndef MAIL_USE_SYSTEM_LOCK
237e0016
RS		 176 struct stat st;
177 long now;
178 int tem;
179 char *lockname, *p;
906ad89d 180 char *tempname;
237e0016 181 int desc;
63cf923d 182#endif /* not MAIL_USE_SYSTEM_LOCK */
237e0016 183
a4deff3c
RS		 184#ifdef MAIL_USE_MAILLOCK
185 char *spool_name;
186#endif
187
a2997b0f
KH		 188#ifdef MAIL_USE_POP
189 int pop_reverse_order = 0;
190# define ARGSTR "pr"
191#else /* ! MAIL_USE_POP */
192# define ARGSTR "p"
193#endif /* MAIL_USE_POP */
194
51a91f9d
CY		 195 uid_t real_gid = getgid();
196 uid_t priv_gid = getegid();
197
9112a2a9
AI		 198#ifdef WINDOWSNT
199 /* Ensure all file i/o is in binary mode. */
200 _fmode = _O_BINARY;
201#endif
202
237e0016
RS		 203 delete_lockname = 0;
204
a2997b0f 205 while ((c = getopt (argc, argv, ARGSTR)) != EOF)
e2f9d9af 206 {
fea4325c 207 switch (c) {
a2997b0f
KH		 208#ifdef MAIL_USE_POP
209 case 'r':
210 pop_reverse_order = 1;
211 break;
212#endif
fea4325c
RS		 213 case 'p':
214 preserve_mail++;
215 break;
216 default:
65396510 217 exit (EXIT_FAILURE);
fea4325c
RS		 218 }
219 }
220
221 if (
222#ifdef MAIL_USE_POP
223 (argc - optind < 2) || (argc - optind > 3)
224#else
225 (argc - optind != 2)
226#endif
227 )
228 {
fea4325c 229#ifdef MAIL_USE_POP
f213f2c0 230 fprintf (stderr, "Usage: movemail [-p] [-r] inbox destfile%s\n",
bb5618fe 231 " [POP-password]");
fea4325c 232#else
bb5618fe 233 fprintf (stderr, "Usage: movemail [-p] inbox destfile%s\n", "");
fea4325c 234#endif
65396510 235 exit (EXIT_FAILURE);
e2f9d9af 236 }
237e0016 237
fea4325c
RS		 238 inname = argv[optind];
239 outname = argv[optind+1];
237e0016 240
4293ba7f
RS		 241#ifdef MAIL_USE_MMDF
242 mmdf_init (argv[0]);
243#endif
244
af7bd34e 245 if (*outname == 0)
a9eedf40 246 fatal ("Destination file name is empty", 0, 0);
af7bd34e 247
237e0016 248#ifdef MAIL_USE_POP
12a0565a 249 if (!strncmp (inname, "po:", 3))
237e0016 250 {
b3112191 251 int status;
237e0016 252
fea4325c 253 status = popmail (inname + 3, outname, preserve_mail,
a2997b0f
KH		 254 (argc - optind == 3) ? argv[optind+2] : NULL,
255 pop_reverse_order);
237e0016
RS		 256 exit (status);
257 }
258
51a91f9d
CY		 259 if (setuid (getuid ()) < 0)
260 fatal ("Failed to drop privileges", 0, 0);
261
237e0016
RS		 262#endif /* MAIL_USE_POP */
263
7f75d5c6 264#ifndef DISABLE_DIRECT_ACCESS
4293ba7f 265#ifndef MAIL_USE_MMDF
63cf923d 266#ifndef MAIL_USE_SYSTEM_LOCK
a4deff3c
RS		 267#ifdef MAIL_USE_MAILLOCK
268 spool_name = mail_spool_name (inname);
269 if (! spool_name)
270#endif
237e0016 271 {
a4deff3c
RS		 272 /* Use a lock file named after our first argument with .lock appended:
273 If it exists, the mail file is locked. */
274 /* Note: this locking mechanism is *required* by the mailer
275 (on systems which use it) to prevent loss of mail.
276
277 On systems that use a lock file, extracting the mail without locking
278 WILL occasionally cause loss of mail due to timing errors!
279
280 So, if creation of the lock file fails
281 due to access permission on the mail spool directory,
282 you simply MUST change the permission
283 and/or make movemail a setgid program
284 so it can create lock files properly.
285
286 You might also wish to verify that your system is one
287 which uses lock files for this purpose. Some systems use other methods.
288
289 If your system uses the `flock' system call for mail locking,
290 define MAIL_USE_SYSTEM_LOCK in config.h or the s-*.h file
291 and recompile movemail. If the s- file for your system
292 should define MAIL_USE_SYSTEM_LOCK but does not, send a bug report
293 to bug-gnu-emacs@prep.ai.mit.edu so we can fix it. */
294
295 lockname = concat (inname, ".lock", "");
296 tempname = (char *) xmalloc (strlen (inname) + strlen ("EXXXXXX") + 1);
297 strcpy (tempname, inname);
298 p = tempname + strlen (tempname);
299 while (p != tempname && !IS_DIRECTORY_SEP (p[-1]))
300 p--;
301 *p = 0;
302 strcpy (p, "EXXXXXX");
303 mktemp (tempname);
cfa191ff 304 unlink (tempname);
237e0016 305
a4deff3c 306 while (1)
237e0016 307 {
a4deff3c
RS		 308 /* Create the lock file, but not under the lock file name. */
309 /* Give up if cannot do that. */
310 desc = open (tempname, O_WRONLY | O_CREAT | O_EXCL, 0666);
311 if (desc < 0)
312 {
313 char *message = (char *) xmalloc (strlen (tempname) + 50);
4b265472 314 sprintf (message, "creating %s, which would become the lock file",
a4deff3c
RS		 315 tempname);
316 pfatal_with_name (message);
317 }
318 close (desc);
319
320 tem = link (tempname, lockname);
097e9c90
CY		 321
322#ifdef EPERM
323 if (tem < 0 && errno == EPERM)
324 fatal ("Unable to create hard link between %s and %s",
325 tempname, lockname);
326#endif
327
a4deff3c
RS		 328 unlink (tempname);
329 if (tem >= 0)
330 break;
331 sleep (1);
332
333 /* If lock file is five minutes old, unlock it.
334 Five minutes should be good enough to cope with crashes
335 and wedgitude, and long enough to avoid being fooled
336 by time differences between machines. */
337 if (stat (lockname, &st) >= 0)
338 {
339 now = time (0);
340 if (st.st_ctime < now - 300)
341 unlink (lockname);
342 }
237e0016 343 }
237e0016 344
a4deff3c
RS		 345 delete_lockname = lockname;
346 }
63cf923d
RS		 347#endif /* not MAIL_USE_SYSTEM_LOCK */
348#endif /* not MAIL_USE_MMDF */
237e0016 349
8ca83cfd
RS		 350 if (fork () == 0)
351 {
25025815 352 int lockcount = 0;
a4deff3c
RS		 353 int status = 0;
354#if defined (MAIL_USE_MAILLOCK) && defined (HAVE_TOUCHLOCK)
bd41a17d 355 time_t touched_lock, now;
a4deff3c 356#endif
25025815 357
51a91f9d
CY		 358 if (setuid (getuid ()) < 0 || setegid (real_gid) < 0)
359 fatal ("Failed to drop privileges", 0, 0);
8ca83cfd 360
63cf923d
RS		 361#ifndef MAIL_USE_MMDF
362#ifdef MAIL_USE_SYSTEM_LOCK
8ca83cfd 363 indesc = open (inname, O_RDWR);
63cf923d 364#else /* if not MAIL_USE_SYSTEM_LOCK */
8ca83cfd 365 indesc = open (inname, O_RDONLY);
63cf923d 366#endif /* not MAIL_USE_SYSTEM_LOCK */
8ca83cfd
RS		 367#else /* MAIL_USE_MMDF */
368 indesc = lk_open (inname, O_RDONLY, 0, 0, 10);
4293ba7f
RS		 369#endif /* MAIL_USE_MMDF */
370
8ca83cfd
RS		 371 if (indesc < 0)
372 pfatal_with_name (inname);
237e0016 373
76ed5e01 374#ifdef BSD_SYSTEM
8ca83cfd
RS		 375 /* In case movemail is setuid to root, make sure the user can
376 read the output file. */
377 /* This is desirable for all systems
378 but I don't want to assume all have the umask system call */
379 umask (umask (0) & 0333);
76ed5e01 380#endif /* BSD_SYSTEM */
8ca83cfd
RS		 381 outdesc = open (outname, O_WRONLY | O_CREAT | O_EXCL, 0666);
382 if (outdesc < 0)
383 pfatal_with_name (outname);
25025815 384
51a91f9d
CY		 385 if (setegid (priv_gid) < 0)
386 fatal ("Failed to regain privileges", 0, 0);
387
25025815
RS		 388 /* This label exists so we can retry locking
389 after a delay, if it got EAGAIN or EBUSY. */
390 retry_lock:
391
392 /* Try to lock it. */
a4deff3c
RS		 393#ifdef MAIL_USE_MAILLOCK
394 if (spool_name)
395 {
396 /* The "0 - " is to make it a negative number if maillock returns
397 non-zero. */
398 status = 0 - maillock (spool_name, 1);
399#ifdef HAVE_TOUCHLOCK
400 touched_lock = time (0);
401#endif
402 lockcount = 5;
403 }
404 else
405#endif /* MAIL_USE_MAILLOCK */
406 {
63cf923d
RS		 407#ifdef MAIL_USE_SYSTEM_LOCK
408#ifdef MAIL_USE_LOCKF
a4deff3c 409 status = lockf (indesc, F_LOCK, 0);
63cf923d 410#else /* not MAIL_USE_LOCKF */
7f75d5c6 411#ifdef WINDOWSNT
a4deff3c 412 status = locking (indesc, LK_RLCK, -1L);
237e0016 413#else
a4deff3c 414 status = flock (indesc, LOCK_EX);
237e0016 415#endif
63cf923d
RS		 416#endif /* not MAIL_USE_LOCKF */
417#endif /* MAIL_USE_SYSTEM_LOCK */
a4deff3c 418 }
237e0016 419
25025815
RS		 420 /* If it fails, retry up to 5 times
421 for certain failure codes. */
422 if (status < 0)
423 {
424 if (++lockcount <= 5)
425 {
426#ifdef EAGAIN
427 if (errno == EAGAIN)
428 {
429 sleep (1);
430 goto retry_lock;
431 }
432#endif
433#ifdef EBUSY
434 if (errno == EBUSY)
435 {
436 sleep (1);
437 goto retry_lock;
438 }
439#endif
440 }
441
442 pfatal_with_name (inname);
443 }
177c0ea7 444
08564963 445 {
8ca83cfd
RS		 446 char buf[1024];
447
448 while (1)
08564963 449 {
8ca83cfd 450 nread = read (indesc, buf, sizeof buf);
5e5b35c7
RS		 451 if (nread < 0)
452 pfatal_with_name (inname);
8ca83cfd
RS		 453 if (nread != write (outdesc, buf, nread))
454 {
455 int saved_errno = errno;
456 unlink (outname);
457 errno = saved_errno;
458 pfatal_with_name (outname);
459 }
460 if (nread < sizeof buf)
461 break;
a4deff3c
RS		 462#if defined (MAIL_USE_MAILLOCK) && defined (HAVE_TOUCHLOCK)
463 if (spool_name)
464 {
465 now = time (0);
466 if (now - touched_lock > 60)
467 {
468 touchlock ();
469 touched_lock = now;
470 }
471 }
472#endif /* MAIL_USE_MAILLOCK */
08564963 473 }
08564963 474 }
237e0016 475
e397a017 476#ifdef BSD_SYSTEM
8ca83cfd
RS		 477 if (fsync (outdesc) < 0)
478 pfatal_and_delete (outname);
237e0016
RS		 479#endif
480
51a91f9d
CY		 481 /* Prevent symlink attacks truncating other users' mailboxes */
482 if (setegid (real_gid) < 0)
483 fatal ("Failed to drop privileges", 0, 0);
484
8ca83cfd
RS		 485 /* Check to make sure no errors before we zap the inbox. */
486 if (close (outdesc) != 0)
487 pfatal_and_delete (outname);
237e0016 488
63cf923d 489#ifdef MAIL_USE_SYSTEM_LOCK
fea4325c
RS		 490 if (! preserve_mail)
491 {
fea4325c 492 ftruncate (indesc, 0L);
b1cb2966 493 }
63cf923d 494#endif /* MAIL_USE_SYSTEM_LOCK */
4293ba7f
RS		 495
496#ifdef MAIL_USE_MMDF
8ca83cfd 497 lk_close (indesc, 0, 0, 0);
4293ba7f 498#else
8ca83cfd 499 close (indesc);
4293ba7f 500#endif
237e0016 501
63cf923d 502#ifndef MAIL_USE_SYSTEM_LOCK
fea4325c
RS		 503 if (! preserve_mail)
504 {
505 /* Delete the input file; if we can't, at least get rid of its
506 contents. */
e97dd183 507#ifdef MAIL_UNLINK_SPOOL
fea4325c
RS		 508 /* This is generally bad to do, because it destroys the permissions
509 that were set on the file. Better to just empty the file. */
510 if (unlink (inname) < 0 && errno != ENOENT)
e97dd183 511#endif /* MAIL_UNLINK_SPOOL */
fea4325c
RS		 512 creat (inname, 0600);
513 }
63cf923d 514#endif /* not MAIL_USE_SYSTEM_LOCK */
8ca83cfd 515
51a91f9d
CY		 516 /* End of mailbox truncation */
517 if (setegid (priv_gid) < 0)
518 fatal ("Failed to regain privileges", 0, 0);
519
a4deff3c
RS		 520#ifdef MAIL_USE_MAILLOCK
521 /* This has to occur in the child, i.e., in the process that
522 acquired the lock! */
523 if (spool_name)
524 mailunlock ();
525#endif
65396510 526 exit (EXIT_SUCCESS);
8ca83cfd
RS		 527 }
528
529 wait (&status);
530 if (!WIFEXITED (status))
65396510 531 exit (EXIT_FAILURE);
8ca83cfd
RS		 532 else if (WRETCODE (status) != 0)
533 exit (WRETCODE (status));
534
63cf923d 535#if !defined (MAIL_USE_MMDF) && !defined (MAIL_USE_SYSTEM_LOCK)
a4deff3c
RS		 536#ifdef MAIL_USE_MAILLOCK
537 if (! spool_name)
538#endif /* MAIL_USE_MAILLOCK */
539 unlink (lockname);
63cf923d 540#endif /* not MAIL_USE_MMDF and not MAIL_USE_SYSTEM_LOCK */
7f75d5c6
RS		 541
542#endif /* ! DISABLE_DIRECT_ACCESS */
543
65396510 544 return EXIT_SUCCESS;
237e0016 545}
a4deff3c
RS		 546
547#ifdef MAIL_USE_MAILLOCK
548/* This function uses stat to confirm that the mail directory is
549 identical to the directory of the input file, rather than just
550 string-comparing the two paths, because one or both of them might
551 be symbolic links pointing to some other directory. */
552static char *
553mail_spool_name (inname)
554 char *inname;
555{
556 struct stat stat1, stat2;
557 char *indir, *fname;
558 int status;
559
560 if (! (fname = rindex (inname, '/')))
561 return NULL;
562
563 fname++;
564
565 if (stat (MAILDIR, &stat1) < 0)
566 return NULL;
567
568 indir = (char *) xmalloc (fname - inname + 1);
569 strncpy (indir, inname, fname - inname);
570 indir[fname-inname] = '\0';
571
572
573 status = stat (indir, &stat2);
574
575 free (indir);
576
577 if (status < 0)
578 return NULL;
579
c4009c1f
RS		 580 if (stat1.st_dev == stat2.st_dev
581 && stat1.st_ino == stat2.st_ino)
a4deff3c
RS		 582 return fname;
583
584 return NULL;
585}
586#endif /* MAIL_USE_MAILLOCK */
237e0016
RS		 587\f
588/* Print error message and exit. */
589
e2f9d9af 590void
873fbd0b 591fatal (char *s1, char *s2, char *s3)
237e0016
RS		 592{
593 if (delete_lockname)
594 unlink (delete_lockname);
a9eedf40 595 error (s1, s2, s3);
65396510 596 exit (EXIT_FAILURE);
237e0016
RS		 597}
598
cc3b64e8
DL		 599/* Print error message. `s1' is printf control string, `s2' and `s3'
600 are args for it or null. */
237e0016 601
e2f9d9af 602void
873fbd0b 603error (char *s1, char *s2, char *s3)
237e0016 604{
e2f9d9af 605 fprintf (stderr, "movemail: ");
cc3b64e8
DL		 606 if (s3)
607 fprintf (stderr, s1, s2, s3);
608 else if (s2)
609 fprintf (stderr, s1, s2);
610 else
3b3807f8 611 fprintf (stderr, "%s", s1);
e2f9d9af 612 fprintf (stderr, "\n");
237e0016
RS		 613}
614
e2f9d9af 615void
873fbd0b 616pfatal_with_name (char *name)
237e0016 617{
a9eedf40 618 fatal ("%s for %s", strerror (errno), name);
237e0016
RS		 619}
620
e2f9d9af 621void
873fbd0b 622pfatal_and_delete (char *name)
cfa191ff 623{
a9eedf40 624 char *s = strerror (errno);
cfa191ff 625 unlink (name);
a9eedf40 626 fatal ("%s for %s", s, name);
cfa191ff
RS		 627}
628
237e0016
RS		 629/* Return a newly-allocated string whose contents concatenate those of s1, s2, s3. */
630
631char *
873fbd0b 632concat (char *s1, char *s2, char *s3)
237e0016
RS		 633{
634 int len1 = strlen (s1), len2 = strlen (s2), len3 = strlen (s3);
635 char *result = (char *) xmalloc (len1 + len2 + len3 + 1);
636
637 strcpy (result, s1);
638 strcpy (result + len1, s2);
639 strcpy (result + len1 + len2, s3);
640 *(result + len1 + len2 + len3) = 0;
641
642 return result;
643}
644
645/* Like malloc but get fatal error if memory is exhausted. */
646
2583d6d7 647long *
873fbd0b 648xmalloc (unsigned int size)
237e0016 649{
2583d6d7 650 long *result = (long *) malloc (size);
237e0016 651 if (!result)
a9eedf40 652 fatal ("virtual memory exhausted", 0, 0);
237e0016
RS		 653 return result;
654}
655\f
656/* This is the guts of the interface to the Post Office Protocol. */
657
658#ifdef MAIL_USE_POP
659
7f75d5c6 660#ifndef WINDOWSNT
237e0016
RS		 661#include <sys/socket.h>
662#include <netinet/in.h>
663#include <netdb.h>
7f75d5c6
RS		 664#else
665#undef _WINSOCKAPI_
666#include <winsock.h>
667#endif
cecf0f21 668#include <pwd.h>
d228a23c 669#include <string.h>
237e0016 670
237e0016
RS		 671#define NOTOK (-1)
672#define OK 0
673#define DONE 1
674
675char *progname;
676FILE *sfi;
677FILE *sfo;
2e82e3c3
RS		 678char ibuffer[BUFSIZ];
679char obuffer[BUFSIZ];
752fb472
DL		 680char Errmsg[200]; /* POP errors, at least, can exceed
681 the original length of 80. */
237e0016 682
476b2799 683/*
4d90eee4 684 * The full valid syntax for a POP mailbox specification for movemail
476b2799
GM		 685 * is "po:username:hostname". The ":hostname" is optional; if it is
686 * omitted, the MAILHOST environment variable will be consulted. Note
687 * that by the time popmail() is called the "po:" has been stripped
688 * off of the front of the mailbox name.
689 *
690 * If the mailbox is in the form "po:username:hostname", then it is
691 * modified by this function -- the second colon is replaced by a
692 * null.
65396510
TTN		 693 *
694 * Return a value suitable for passing to `exit'.
476b2799
GM		 695 */
696
cc3b64e8 697int
873fbd0b 698popmail (char *mailbox, char *outfile, int preserve, char *password, int reverse_order)
237e0016 699{
b1ce62a8 700 int nmsgs, nbytes;
b1ce62a8
RS		 701 register int i;
702 int mbfi;
703 FILE *mbf;
873fbd0b 704 char *getenv (const char *);
b32701a7 705 popserver server;
a2997b0f 706 int start, end, increment;
476b2799
GM		 707 char *user, *hostname;
708
709 user = mailbox;
710 if ((hostname = index(mailbox, ':')))
711 *hostname++ = '\0';
237e0016 712
476b2799 713 server = pop_open (hostname, user, password, POP_NO_GETPASS);
2e82e3c3 714 if (! server)
b1ce62a8 715 {
cc3b64e8 716 error ("Error connecting to POP server: %s", pop_error, 0);
65396510 717 return EXIT_FAILURE;
237e0016
RS		 718 }
719
2e82e3c3 720 if (pop_stat (server, &nmsgs, &nbytes))
b1ce62a8 721 {
cc3b64e8 722 error ("Error getting message count from POP server: %s", pop_error, 0);
65396510 723 return EXIT_FAILURE;
237e0016
RS		 724 }
725
b1ce62a8
RS		 726 if (!nmsgs)
727 {
2e82e3c3 728 pop_close (server);
65396510 729 return EXIT_SUCCESS;
b1ce62a8
RS		 730 }
731
732 mbfi = open (outfile, O_WRONLY | O_CREAT | O_EXCL, 0666);
733 if (mbfi < 0)
734 {
2e82e3c3
RS		 735 pop_close (server);
736 error ("Error in open: %s, %s", strerror (errno), outfile);
65396510 737 return EXIT_FAILURE;
b1ce62a8
RS		 738 }
739 fchown (mbfi, getuid (), -1);
740
7f75d5c6 741 if ((mbf = fdopen (mbfi, "wb")) == NULL)
b1ce62a8 742 {
2e82e3c3 743 pop_close (server);
cc3b64e8 744 error ("Error in fdopen: %s", strerror (errno), 0);
2e82e3c3
RS		 745 close (mbfi);
746 unlink (outfile);
65396510 747 return EXIT_FAILURE;
b1ce62a8
RS		 748 }
749
a2997b0f
KH		 750 if (reverse_order)
751 {
752 start = nmsgs;
753 end = 1;
754 increment = -1;
755 }
756 else
757 {
758 start = 1;
759 end = nmsgs;
760 increment = 1;
761 }
762
763 for (i = start; i * increment <= end * increment; i += increment)
b1ce62a8
RS		 764 {
765 mbx_delimit_begin (mbf);
ff804ff5 766 if (pop_retr (server, i, mbf) != OK)
b1ce62a8 767 {
17a60964 768 error ("%s", Errmsg, 0);
b1ce62a8 769 close (mbfi);
65396510 770 return EXIT_FAILURE;
237e0016 771 }
b1ce62a8
RS		 772 mbx_delimit_end (mbf);
773 fflush (mbf);
2e82e3c3
RS		 774 if (ferror (mbf))
775 {
cc3b64e8 776 error ("Error in fflush: %s", strerror (errno), 0);
2e82e3c3
RS		 777 pop_close (server);
778 close (mbfi);
65396510 779 return EXIT_FAILURE;
2e82e3c3 780 }
237e0016
RS		 781 }
782
2e82e3c3
RS		 783 /* On AFS, a call to write only modifies the file in the local
784 * workstation's AFS cache. The changes are not written to the server
785 * until a call to fsync or close is made. Users with AFS home
786 * directories have lost mail when over quota because these checks were
787 * not made in previous versions of movemail. */
788
e397a017 789#ifdef BSD_SYSTEM
cfa191ff
RS		 790 if (fsync (mbfi) < 0)
791 {
08fa58c9 792 error ("Error in fsync: %s", strerror (errno), 0);
65396510 793 return EXIT_FAILURE;
cfa191ff 794 }
340ff9de 795#endif
cfa191ff
RS		 796
797 if (close (mbfi) == -1)
798 {
cc3b64e8 799 error ("Error in close: %s", strerror (errno), 0);
65396510 800 return EXIT_FAILURE;
cfa191ff
RS		 801 }
802
fea4325c
RS		 803 if (! preserve)
804 for (i = 1; i <= nmsgs; i++)
805 {
806 if (pop_delete (server, i))
807 {
cc3b64e8 808 error ("Error from POP server: %s", pop_error, 0);
fea4325c 809 pop_close (server);
65396510 810 return EXIT_FAILURE;
fea4325c
RS		 811 }
812 }
237e0016 813
2e82e3c3 814 if (pop_quit (server))
b1ce62a8 815 {
cc3b64e8 816 error ("Error from POP server: %s", pop_error, 0);
65396510 817 return EXIT_FAILURE;
237e0016 818 }
177c0ea7 819
65396510 820 return EXIT_SUCCESS;
237e0016
RS		 821}
822
ff804ff5 823int
873fbd0b 824pop_retr (popserver server, int msgno, FILE *arg)
237e0016 825{
873fbd0b 826 extern char *strerror (int);
2e82e3c3
RS		 827 char *line;
828 int ret;
237e0016 829
2e82e3c3 830 if (pop_retrieve_first (server, msgno, &line))
b1ce62a8 831 {
9b956af2
KH		 832 char *error = concat ("Error from POP server: ", pop_error, "");
833 strncpy (Errmsg, error, sizeof (Errmsg));
2e82e3c3 834 Errmsg[sizeof (Errmsg)-1] = '\0';
9b956af2 835 free(error);
2e82e3c3 836 return (NOTOK);
237e0016
RS		 837 }
838
d89d0243 839 while ((ret = pop_retrieve_next (server, &line)) >= 0)
b1ce62a8 840 {
2e82e3c3
RS		 841 if (! line)
842 break;
843
d89d0243 844 if (mbx_write (line, ret, arg) != OK)
b1ce62a8 845 {
2e82e3c3
RS		 846 strcpy (Errmsg, strerror (errno));
847 pop_close (server);
848 return (NOTOK);
237e0016
RS		 849 }
850 }
237e0016 851
2e82e3c3 852 if (ret)
b1ce62a8 853 {
9b956af2
KH		 854 char *error = concat ("Error from POP server: ", pop_error, "");
855 strncpy (Errmsg, error, sizeof (Errmsg));
2e82e3c3 856 Errmsg[sizeof (Errmsg)-1] = '\0';
9b956af2 857 free(error);
2e82e3c3 858 return (NOTOK);
237e0016
RS		 859 }
860
2e82e3c3 861 return (OK);
237e0016
RS		 862}
863
2e82e3c3
RS		 864/* Do this as a macro instead of using strcmp to save on execution time. */
865#define IS_FROM_LINE(a) ((a[0] == 'F') \
866 && (a[1] == 'r') \
867 && (a[2] == 'o') \
868 && (a[3] == 'm') \
869 && (a[4] == ' '))
237e0016 870
2e82e3c3 871int
873fbd0b 872mbx_write (char *line, int len, FILE *mbf)
237e0016 873{
d04f5031 874#ifdef MOVEMAIL_QUOTE_POP_FROM_LINES
2e82e3c3
RS		 875 if (IS_FROM_LINE (line))
876 {
877 if (fputc ('>', mbf) == EOF)
878 return (NOTOK);
879 }
d04f5031
PE		 880#endif
881 if (line[0] == '\037')
882 {
883 if (fputs ("^_", mbf) == EOF)
884 return (NOTOK);
885 line++;
886 len--;
887 }
177c0ea7 888 if (fwrite (line, 1, len, mbf) != len)
2e82e3c3
RS		 889 return (NOTOK);
890 if (fputc (0x0a, mbf) == EOF)
891 return (NOTOK);
892 return (OK);
237e0016
RS		 893}
894
2e82e3c3 895int
873fbd0b 896mbx_delimit_begin (FILE *mbf)
237e0016 897{
d228a23c
GM		 898 time_t now;
899 struct tm *ltime;
900 char fromline[40] = "From movemail ";
901
902 now = time (NULL);
903 ltime = localtime (&now);
904
905 strcat (fromline, asctime (ltime));
906
907 if (fputs (fromline, mbf) == EOF)
2e82e3c3
RS		 908 return (NOTOK);
909 return (OK);
237e0016
RS		 910}
911
cc3b64e8 912int
873fbd0b 913mbx_delimit_end (FILE *mbf)
237e0016 914{
3f32be22 915 if (putc ('\n', mbf) == EOF)
2e82e3c3
RS		 916 return (NOTOK);
917 return (OK);
237e0016
RS		 918}
919
920#endif /* MAIL_USE_POP */
e5f7ea68
RM		 921\f
922#ifndef HAVE_STRERROR
923char *
924strerror (errnum)
925 int errnum;
926{
927 extern char *sys_errlist[];
928 extern int sys_nerr;
929
930 if (errnum >= 0 && errnum < sys_nerr)
931 return sys_errlist[errnum];
932 return (char *) "Unknown error";
933}
934
935#endif /* ! HAVE_STRERROR */
ab5796a9
MB		 936
937/* arch-tag: 1c323112-41fe-4fe5-8de9-494de631f73f
938 (do not change this comment) */
65396510
TTN		 939
940/* movemail.c ends here */
Unnamed repository; edit this file 'description' to name the repository.