HCoop / bpt / emacs.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge from emacs-24; up to 2012-05-07T14:57:18Z!michael.albinus@gmx.de
[bpt/emacs.git] / lib-src / movemail.c
CommitLineData
237e0016
RS		 1/* movemail foo bar -- move file foo to file bar,
2 locking file foo the way /bin/mail respects.
95df8112 3
acaf905b 4Copyright (C) 1986, 1992-1994, 1996, 1999, 2001-2012
95df8112 5 Free Software Foundation, Inc.
237e0016
RS		 6
7This file is part of GNU Emacs.
8
294981c7 9GNU Emacs is free software: you can redistribute it and/or modify
93320c23 10it under the terms of the GNU General Public License as published by
294981c7
GM		 11the Free Software Foundation, either version 3 of the License, or
12(at your option) any later version.
93320c23 13
237e0016 14GNU Emacs is distributed in the hope that it will be useful,
93320c23
JA		 15but WITHOUT ANY WARRANTY; without even the implied warranty of
16MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17GNU General Public License for more details.
237e0016 18
93320c23 19You should have received a copy of the GNU General Public License
294981c7
GM		 20along with GNU Emacs. If not, see <http://www.gnu.org/licenses/>. */
21
237e0016 22
63cf923d
RS		 23/* Important notice: defining MAIL_USE_FLOCK or MAIL_USE_LOCKF *will
24 cause loss of mail* if you do it on a system that does not normally
0aa8781f 25 use flock/lockf as its way of interlocking access to inbox files. The
63cf923d
RS		 26 setting of MAIL_USE_FLOCK and MAIL_USE_LOCKF *must agree* with the
27 system's own conventions. It is not a choice that is up to you.
08d0752f
RS		 28
29 So, if your system uses lock files rather than flock, then the only way
30 you can get proper operation is to enable movemail to write lockfiles there.
31 This means you must either give that directory access modes
32 that permit everyone to write lockfiles in it, or you must make movemail
33 a setuid or setgid program. */
34
237e0016
RS		 35/*
36 * Modified January, 1986 by Michael R. Gretzinger (Project Athena)
37 *
88c40feb 38 * Added POP (Post Office Protocol) service. When compiled -DMAIL_USE_POP
237e0016
RS		 39 * movemail will accept input filename arguments of the form
40 * "po:username". This will cause movemail to open a connection to
41 * a pop server running on $MAILHOST (environment variable). Movemail
42 * must be setuid to root in order to work with POP.
177c0ea7 43 *
237e0016
RS		 44 * New module: popmail.c
45 * Modified routines:
cfa191ff 46 * main - added code within #ifdef MAIL_USE_POP; added setuid (getuid ())
177c0ea7 47 * after POP code.
237e0016
RS		 48 * New routines in movemail.c:
49 * get_errmsg - return pointer to system error message
50 *
2e82e3c3
RS		 51 * Modified August, 1993 by Jonathan Kamens (OpenVision Technologies)
52 *
53 * Move all of the POP code into a separate file, "pop.c".
54 * Use strerror instead of get_errmsg.
55 *
237e0016
RS		 56 */
57
752fb472 58#include <config.h>
237e0016
RS		 59#include <sys/types.h>
60#include <sys/stat.h>
61#include <sys/file.h>
e2f9d9af 62#include <stdio.h>
237e0016 63#include <errno.h>
bd41a17d 64#include <time.h>
cc3b64e8 65
fea4325c 66#include <getopt.h>
f72adc12 67#include <unistd.h>
cc3b64e8
DL		 68#ifdef HAVE_FCNTL_H
69#include <fcntl.h>
70#endif
1725ae55 71#include <string.h>
f72adc12 72#include "syswait.h"
2e82e3c3
RS		 73#ifdef MAIL_USE_POP
74#include "pop.h"
75#endif
237e0016 76
91cf09ac
RS		 77#ifdef MSDOS
78#undef access
79#endif /* MSDOS */
80
7f75d5c6 81#ifdef WINDOWSNT
677a7bcf 82#include "ntlib.h"
7f75d5c6
RS		 83#undef access
84#undef unlink
85#define fork() 0
4822b2e5 86#define wait(var) (*(var) = 0)
7f75d5c6
RS		 87/* Unfortunately, Samba doesn't seem to properly lock Unix files even
88 though the locking call succeeds (and indeed blocks local access from
89 other NT programs). If you have direct file access using an NFS
90 client or something other than Samba, the locking call might work
677a7bcf
RS		 91 properly - make sure it does before you enable this!
92
93 [18-Feb-97 andrewi] I now believe my comment above to be incorrect,
94 since it was based on a misunderstanding of how locking calls are
95 implemented and used on Unix. */
96//#define DISABLE_DIRECT_ACCESS
97
677a7bcf 98#include <fcntl.h>
7f75d5c6
RS		 99#endif /* WINDOWSNT */
100
4ec9a77a
RS		 101#ifndef F_OK
102#define F_OK 0
103#define X_OK 1
104#define W_OK 2
105#define R_OK 4
106#endif
237e0016 107
76ed5e01 108#ifdef WINDOWSNT
237e0016
RS		 109#include <sys/locking.h>
110#endif
111
0aa8781f
GM		 112/* If your system uses the `flock' or `lockf' system call for mail locking,
113 define MAIL_USE_SYSTEM_LOCK. If your system type should always define
114 MAIL_USE_LOCKF or MAIL_USE_FLOCK but configure does not do this,
115 please make a bug report. */
116
63cf923d
RS		 117#ifdef MAIL_USE_LOCKF
118#define MAIL_USE_SYSTEM_LOCK
119#endif
120
121#ifdef MAIL_USE_FLOCK
122#define MAIL_USE_SYSTEM_LOCK
123#endif
124
4293ba7f
RS		 125#ifdef MAIL_USE_MMDF
126extern int lk_open (), lk_close ();
127#endif
128
a4deff3c 129#if !defined (MAIL_USE_SYSTEM_LOCK) && !defined (MAIL_USE_MMDF) && \
dd843b6a
DL		 130 (defined (HAVE_LIBMAIL) || defined (HAVE_LIBLOCKFILE)) && \
131 defined (HAVE_MAILLOCK_H)
a4deff3c
RS		 132#include <maillock.h>
133/* We can't use maillock unless we know what directory system mail
134 files appear in. */
135#ifdef MAILDIR
136#define MAIL_USE_MAILLOCK
5a9c1e26 137static char *mail_spool_name (char *);
a4deff3c
RS		 138#endif
139#endif
140
845ca893 141static _Noreturn void fatal (const char *s1, const char *s2, const char *s3);
988e88ab 142static void error (const char *s1, const char *s2, const char *s3);
845ca893
PE		 143static _Noreturn void pfatal_with_name (char *name);
144static _Noreturn void pfatal_and_delete (char *name);
e2ad23ef 145#ifdef MAIL_USE_POP
1725ae55
AS		 146static int popmail (char *mailbox, char *outfile, int preserve, char *password, int reverse_order);
147static int pop_retr (popserver server, int msgno, FILE *arg);
148static int mbx_write (char *line, int len, FILE *mbf);
149static int mbx_delimit_begin (FILE *mbf);
150static int mbx_delimit_end (FILE *mbf);
e2ad23ef 151#endif
237e0016 152
debd9b27 153#if (defined MAIL_USE_MAILLOCK \
c214e35e
PE		 154 || (!defined DISABLE_DIRECT_ACCESS && !defined MAIL_USE_MMDF \
155 && !defined MAIL_USE_SYSTEM_LOCK))
156/* Like malloc but get fatal error if memory is exhausted. */
157
158static void *
159xmalloc (size_t size)
160{
161 void *result = malloc (size);
162 if (!result)
163 fatal ("virtual memory exhausted", 0, 0);
164 return result;
165}
166#endif
167
237e0016 168/* Nonzero means this is name of a lock file to delete on fatal error. */
b23b5a5b 169static char *delete_lockname;
237e0016 170
e2f9d9af 171int
873fbd0b 172main (int argc, char **argv)
237e0016
RS		 173{
174 char *inname, *outname;
175 int indesc, outdesc;
728a982d 176 ssize_t nread;
27d41fb4 177 int wait_status;
fea4325c 178 int c, preserve_mail = 0;
237e0016 179
63cf923d 180#ifndef MAIL_USE_SYSTEM_LOCK
237e0016 181 struct stat st;
237e0016 182 int tem;
529a133c 183 char *lockname;
906ad89d 184 char *tempname;
c214e35e 185 size_t inname_len, inname_dirlen;
237e0016 186 int desc;
63cf923d 187#endif /* not MAIL_USE_SYSTEM_LOCK */
237e0016 188
a4deff3c
RS		 189#ifdef MAIL_USE_MAILLOCK
190 char *spool_name;
191#endif
192
a2997b0f
KH		 193#ifdef MAIL_USE_POP
194 int pop_reverse_order = 0;
195# define ARGSTR "pr"
196#else /* ! MAIL_USE_POP */
197# define ARGSTR "p"
198#endif /* MAIL_USE_POP */
199
5e617bc2
JB		 200 uid_t real_gid = getgid ();
201 uid_t priv_gid = getegid ();
51a91f9d 202
9112a2a9
AI		 203#ifdef WINDOWSNT
204 /* Ensure all file i/o is in binary mode. */
205 _fmode = _O_BINARY;
206#endif
207
237e0016
RS		 208 delete_lockname = 0;
209
a2997b0f 210 while ((c = getopt (argc, argv, ARGSTR)) != EOF)
e2f9d9af 211 {
fea4325c 212 switch (c) {
a2997b0f
KH		 213#ifdef MAIL_USE_POP
214 case 'r':
215 pop_reverse_order = 1;
216 break;
217#endif
fea4325c
RS		 218 case 'p':
219 preserve_mail++;
220 break;
221 default:
65396510 222 exit (EXIT_FAILURE);
fea4325c
RS		 223 }
224 }
225
226 if (
227#ifdef MAIL_USE_POP
228 (argc - optind < 2) || (argc - optind > 3)
229#else
230 (argc - optind != 2)
231#endif
232 )
233 {
fea4325c 234#ifdef MAIL_USE_POP
f213f2c0 235 fprintf (stderr, "Usage: movemail [-p] [-r] inbox destfile%s\n",
bb5618fe 236 " [POP-password]");
fea4325c 237#else
bb5618fe 238 fprintf (stderr, "Usage: movemail [-p] inbox destfile%s\n", "");
fea4325c 239#endif
65396510 240 exit (EXIT_FAILURE);
e2f9d9af 241 }
237e0016 242
fea4325c
RS		 243 inname = argv[optind];
244 outname = argv[optind+1];
237e0016 245
4293ba7f
RS		 246#ifdef MAIL_USE_MMDF
247 mmdf_init (argv[0]);
248#endif
249
af7bd34e 250 if (*outname == 0)
a9eedf40 251 fatal ("Destination file name is empty", 0, 0);
af7bd34e 252
237e0016 253#ifdef MAIL_USE_POP
12a0565a 254 if (!strncmp (inname, "po:", 3))
237e0016 255 {
b3112191 256 int status;
237e0016 257
fea4325c 258 status = popmail (inname + 3, outname, preserve_mail,
a2997b0f
KH		 259 (argc - optind == 3) ? argv[optind+2] : NULL,
260 pop_reverse_order);
237e0016
RS		 261 exit (status);
262 }
263
51a91f9d
CY		 264 if (setuid (getuid ()) < 0)
265 fatal ("Failed to drop privileges", 0, 0);
266
237e0016
RS		 267#endif /* MAIL_USE_POP */
268
7f75d5c6 269#ifndef DISABLE_DIRECT_ACCESS
4293ba7f 270#ifndef MAIL_USE_MMDF
63cf923d 271#ifndef MAIL_USE_SYSTEM_LOCK
a4deff3c
RS		 272#ifdef MAIL_USE_MAILLOCK
273 spool_name = mail_spool_name (inname);
5a9c1e26
PE		 274 if (spool_name)
275 {
276#ifdef lint
277 lockname = 0;
278#endif
279 }
280 else
a4deff3c 281#endif
237e0016 282 {
a4deff3c
RS		 283 /* Use a lock file named after our first argument with .lock appended:
284 If it exists, the mail file is locked. */
285 /* Note: this locking mechanism is *required* by the mailer
286 (on systems which use it) to prevent loss of mail.
287
288 On systems that use a lock file, extracting the mail without locking
289 WILL occasionally cause loss of mail due to timing errors!
290
7eaa9e44
GM		 291 So, if creation of the lock file fails due to access
292 permission on the mail spool directory, you simply MUST
293 change the permission and/or make movemail a setgid program
a4deff3c
RS		 294 so it can create lock files properly.
295
7eaa9e44 296 You might also wish to verify that your system is one which
0aa8781f 297 uses lock files for this purpose. Some systems use other methods. */
a4deff3c 298
c214e35e
PE		 299 inname_len = strlen (inname);
300 lockname = xmalloc (inname_len + sizeof ".lock");
301 strcpy (lockname, inname);
302 strcpy (lockname + inname_len, ".lock");
303 for (inname_dirlen = inname_len;
529a133c
PE		 304 inname_dirlen && !IS_DIRECTORY_SEP (inname[inname_dirlen - 1]);
305 inname_dirlen--)
306 continue;
e99a530f 307 tempname = xmalloc (inname_dirlen + sizeof "EXXXXXX");
237e0016 308
a4deff3c 309 while (1)
237e0016 310 {
a4deff3c
RS		 311 /* Create the lock file, but not under the lock file name. */
312 /* Give up if cannot do that. */
529a133c
PE		 313
314 memcpy (tempname, inname, inname_dirlen);
315 strcpy (tempname + inname_dirlen, "EXXXXXX");
316#ifdef HAVE_MKSTEMP
317 desc = mkstemp (tempname);
318#else
319 mktemp (tempname);
320 if (!*tempname)
321 desc = -1;
322 else
323 {
324 unlink (tempname);
325 desc = open (tempname, O_WRONLY | O_CREAT | O_EXCL, 0600);
326 }
327#endif
a4deff3c
RS		 328 if (desc < 0)
329 {
529a133c 330 int mkstemp_errno = errno;
644a0faa
PE		 331 error ("error while creating what would become the lock file",
332 0, 0);
529a133c 333 errno = mkstemp_errno;
644a0faa 334 pfatal_with_name (tempname);
a4deff3c
RS		 335 }
336 close (desc);
337
338 tem = link (tempname, lockname);
097e9c90
CY		 339
340#ifdef EPERM
341 if (tem < 0 && errno == EPERM)
342 fatal ("Unable to create hard link between %s and %s",
343 tempname, lockname);
344#endif
345
a4deff3c
RS		 346 unlink (tempname);
347 if (tem >= 0)
348 break;
349 sleep (1);
350
351 /* If lock file is five minutes old, unlock it.
352 Five minutes should be good enough to cope with crashes
353 and wedgitude, and long enough to avoid being fooled
354 by time differences between machines. */
355 if (stat (lockname, &st) >= 0)
356 {
5a9c1e26 357 time_t now = time (0);
a4deff3c
RS		 358 if (st.st_ctime < now - 300)
359 unlink (lockname);
360 }
237e0016 361 }
237e0016 362
a4deff3c
RS		 363 delete_lockname = lockname;
364 }
63cf923d
RS		 365#endif /* not MAIL_USE_SYSTEM_LOCK */
366#endif /* not MAIL_USE_MMDF */
237e0016 367
8ca83cfd
RS		 368 if (fork () == 0)
369 {
25025815 370 int lockcount = 0;
a4deff3c
RS		 371 int status = 0;
372#if defined (MAIL_USE_MAILLOCK) && defined (HAVE_TOUCHLOCK)
5a9c1e26
PE		 373 time_t touched_lock;
374# ifdef lint
375 touched_lock = 0;
376# endif
a4deff3c 377#endif
25025815 378
fbf4af3a 379 if (setuid (getuid ()) < 0 || setregid (-1, real_gid) < 0)
51a91f9d 380 fatal ("Failed to drop privileges", 0, 0);
8ca83cfd 381
63cf923d
RS		 382#ifndef MAIL_USE_MMDF
383#ifdef MAIL_USE_SYSTEM_LOCK
8ca83cfd 384 indesc = open (inname, O_RDWR);
63cf923d 385#else /* if not MAIL_USE_SYSTEM_LOCK */
8ca83cfd 386 indesc = open (inname, O_RDONLY);
63cf923d 387#endif /* not MAIL_USE_SYSTEM_LOCK */
8ca83cfd
RS		 388#else /* MAIL_USE_MMDF */
389 indesc = lk_open (inname, O_RDONLY, 0, 0, 10);
4293ba7f
RS		 390#endif /* MAIL_USE_MMDF */
391
8ca83cfd
RS		 392 if (indesc < 0)
393 pfatal_with_name (inname);
237e0016 394
76ed5e01 395#ifdef BSD_SYSTEM
8ca83cfd
RS		 396 /* In case movemail is setuid to root, make sure the user can
397 read the output file. */
398 /* This is desirable for all systems
399 but I don't want to assume all have the umask system call */
400 umask (umask (0) & 0333);
76ed5e01 401#endif /* BSD_SYSTEM */
8ca83cfd
RS		 402 outdesc = open (outname, O_WRONLY | O_CREAT | O_EXCL, 0666);
403 if (outdesc < 0)
404 pfatal_with_name (outname);
25025815 405
fbf4af3a 406 if (setregid (-1, priv_gid) < 0)
51a91f9d
CY		 407 fatal ("Failed to regain privileges", 0, 0);
408
25025815
RS		 409 /* This label exists so we can retry locking
410 after a delay, if it got EAGAIN or EBUSY. */
411 retry_lock:
412
413 /* Try to lock it. */
a4deff3c
RS		 414#ifdef MAIL_USE_MAILLOCK
415 if (spool_name)
416 {
417 /* The "0 - " is to make it a negative number if maillock returns
418 non-zero. */
419 status = 0 - maillock (spool_name, 1);
420#ifdef HAVE_TOUCHLOCK
421 touched_lock = time (0);
422#endif
423 lockcount = 5;
424 }
425 else
426#endif /* MAIL_USE_MAILLOCK */
427 {
63cf923d
RS		 428#ifdef MAIL_USE_SYSTEM_LOCK
429#ifdef MAIL_USE_LOCKF
a4deff3c 430 status = lockf (indesc, F_LOCK, 0);
63cf923d 431#else /* not MAIL_USE_LOCKF */
7f75d5c6 432#ifdef WINDOWSNT
a4deff3c 433 status = locking (indesc, LK_RLCK, -1L);
237e0016 434#else
a4deff3c 435 status = flock (indesc, LOCK_EX);
237e0016 436#endif
63cf923d
RS		 437#endif /* not MAIL_USE_LOCKF */
438#endif /* MAIL_USE_SYSTEM_LOCK */
a4deff3c 439 }
237e0016 440
25025815
RS		 441 /* If it fails, retry up to 5 times
442 for certain failure codes. */
443 if (status < 0)
444 {
445 if (++lockcount <= 5)
446 {
447#ifdef EAGAIN
448 if (errno == EAGAIN)
449 {
450 sleep (1);
451 goto retry_lock;
452 }
453#endif
454#ifdef EBUSY
455 if (errno == EBUSY)
456 {
457 sleep (1);
458 goto retry_lock;
459 }
460#endif
461 }
462
463 pfatal_with_name (inname);
464 }
177c0ea7 465
08564963 466 {
8ca83cfd
RS		 467 char buf[1024];
468
469 while (1)
08564963 470 {
8ca83cfd 471 nread = read (indesc, buf, sizeof buf);
5e5b35c7
RS		 472 if (nread < 0)
473 pfatal_with_name (inname);
8ca83cfd
RS		 474 if (nread != write (outdesc, buf, nread))
475 {
476 int saved_errno = errno;
477 unlink (outname);
478 errno = saved_errno;
479 pfatal_with_name (outname);
480 }
481 if (nread < sizeof buf)
482 break;
a4deff3c
RS		 483#if defined (MAIL_USE_MAILLOCK) && defined (HAVE_TOUCHLOCK)
484 if (spool_name)
485 {
5a9c1e26 486 time_t now = time (0);
a4deff3c
RS		 487 if (now - touched_lock > 60)
488 {
489 touchlock ();
490 touched_lock = now;
491 }
492 }
493#endif /* MAIL_USE_MAILLOCK */
08564963 494 }
08564963 495 }
237e0016 496
e397a017 497#ifdef BSD_SYSTEM
8ca83cfd
RS		 498 if (fsync (outdesc) < 0)
499 pfatal_and_delete (outname);
237e0016
RS		 500#endif
501
51a91f9d 502 /* Prevent symlink attacks truncating other users' mailboxes */
fbf4af3a 503 if (setregid (-1, real_gid) < 0)
51a91f9d
CY		 504 fatal ("Failed to drop privileges", 0, 0);
505
8ca83cfd
RS		 506 /* Check to make sure no errors before we zap the inbox. */
507 if (close (outdesc) != 0)
508 pfatal_and_delete (outname);
237e0016 509
63cf923d 510#ifdef MAIL_USE_SYSTEM_LOCK
fea4325c
RS		 511 if (! preserve_mail)
512 {
9055082e
PE		 513 if (ftruncate (indesc, 0L) != 0)
514 pfatal_with_name (inname);
b1cb2966 515 }
63cf923d 516#endif /* MAIL_USE_SYSTEM_LOCK */
4293ba7f
RS		 517
518#ifdef MAIL_USE_MMDF
8ca83cfd 519 lk_close (indesc, 0, 0, 0);
4293ba7f 520#else
8ca83cfd 521 close (indesc);
4293ba7f 522#endif
237e0016 523
63cf923d 524#ifndef MAIL_USE_SYSTEM_LOCK
fea4325c
RS		 525 if (! preserve_mail)
526 {
527 /* Delete the input file; if we can't, at least get rid of its
528 contents. */
e97dd183 529#ifdef MAIL_UNLINK_SPOOL
fea4325c
RS		 530 /* This is generally bad to do, because it destroys the permissions
531 that were set on the file. Better to just empty the file. */
532 if (unlink (inname) < 0 && errno != ENOENT)
e97dd183 533#endif /* MAIL_UNLINK_SPOOL */
fea4325c
RS		 534 creat (inname, 0600);
535 }
63cf923d 536#endif /* not MAIL_USE_SYSTEM_LOCK */
8ca83cfd 537
51a91f9d 538 /* End of mailbox truncation */
fbf4af3a 539 if (setregid (-1, priv_gid) < 0)
51a91f9d
CY		 540 fatal ("Failed to regain privileges", 0, 0);
541
a4deff3c
RS		 542#ifdef MAIL_USE_MAILLOCK
543 /* This has to occur in the child, i.e., in the process that
544 acquired the lock! */
545 if (spool_name)
546 mailunlock ();
547#endif
65396510 548 exit (EXIT_SUCCESS);
8ca83cfd
RS		 549 }
550
27d41fb4
PE		 551 wait (&wait_status);
552 if (!WIFEXITED (wait_status))
65396510 553 exit (EXIT_FAILURE);
13294f95
PE		 554 else if (WEXITSTATUS (wait_status) != 0)
555 exit (WEXITSTATUS (wait_status));
8ca83cfd 556
63cf923d 557#if !defined (MAIL_USE_MMDF) && !defined (MAIL_USE_SYSTEM_LOCK)
a4deff3c
RS		 558#ifdef MAIL_USE_MAILLOCK
559 if (! spool_name)
560#endif /* MAIL_USE_MAILLOCK */
561 unlink (lockname);
63cf923d 562#endif /* not MAIL_USE_MMDF and not MAIL_USE_SYSTEM_LOCK */
7f75d5c6
RS		 563
564#endif /* ! DISABLE_DIRECT_ACCESS */
565
65396510 566 return EXIT_SUCCESS;
237e0016 567}
a4deff3c
RS		 568
569#ifdef MAIL_USE_MAILLOCK
570/* This function uses stat to confirm that the mail directory is
571 identical to the directory of the input file, rather than just
572 string-comparing the two paths, because one or both of them might
573 be symbolic links pointing to some other directory. */
574static char *
728a982d 575mail_spool_name (char *inname)
a4deff3c
RS		 576{
577 struct stat stat1, stat2;
578 char *indir, *fname;
579 int status;
580
8966b757 581 if (! (fname = strrchr (inname, '/')))
a4deff3c
RS		 582 return NULL;
583
584 fname++;
585
586 if (stat (MAILDIR, &stat1) < 0)
587 return NULL;
588
e99a530f
PE		 589 indir = xmalloc (fname - inname + 1);
590 memcpy (indir, inname, fname - inname);
a4deff3c
RS		 591 indir[fname-inname] = '\0';
592
593
594 status = stat (indir, &stat2);
595
596 free (indir);
597
598 if (status < 0)
599 return NULL;
600
c4009c1f
RS		 601 if (stat1.st_dev == stat2.st_dev
602 && stat1.st_ino == stat2.st_ino)
a4deff3c
RS		 603 return fname;
604
605 return NULL;
606}
607#endif /* MAIL_USE_MAILLOCK */
237e0016
RS		 608\f
609/* Print error message and exit. */
610
1725ae55 611static void
988e88ab 612fatal (const char *s1, const char *s2, const char *s3)
237e0016
RS		 613{
614 if (delete_lockname)
615 unlink (delete_lockname);
a9eedf40 616 error (s1, s2, s3);
65396510 617 exit (EXIT_FAILURE);
237e0016
RS		 618}
619
cc3b64e8
DL		 620/* Print error message. `s1' is printf control string, `s2' and `s3'
621 are args for it or null. */
237e0016 622
1725ae55 623static void
988e88ab 624error (const char *s1, const char *s2, const char *s3)
237e0016 625{
e2f9d9af 626 fprintf (stderr, "movemail: ");
cc3b64e8
DL		 627 if (s3)
628 fprintf (stderr, s1, s2, s3);
629 else if (s2)
630 fprintf (stderr, s1, s2);
631 else
3b3807f8 632 fprintf (stderr, "%s", s1);
e2f9d9af 633 fprintf (stderr, "\n");
237e0016
RS		 634}
635
1725ae55 636static void
873fbd0b 637pfatal_with_name (char *name)
237e0016 638{
a9eedf40 639 fatal ("%s for %s", strerror (errno), name);
237e0016
RS		 640}
641
1725ae55 642static void
873fbd0b 643pfatal_and_delete (char *name)
cfa191ff 644{
a9eedf40 645 char *s = strerror (errno);
cfa191ff 646 unlink (name);
a9eedf40 647 fatal ("%s for %s", s, name);
cfa191ff 648}
237e0016
RS		 649\f
650/* This is the guts of the interface to the Post Office Protocol. */
651
652#ifdef MAIL_USE_POP
653
7f75d5c6 654#ifndef WINDOWSNT
237e0016
RS		 655#include <sys/socket.h>
656#include <netinet/in.h>
657#include <netdb.h>
7f75d5c6
RS		 658#else
659#undef _WINSOCKAPI_
660#include <winsock.h>
661#endif
cecf0f21 662#include <pwd.h>
d228a23c 663#include <string.h>
237e0016 664
237e0016
RS		 665#define NOTOK (-1)
666#define OK 0
237e0016 667
b23b5a5b 668static char Errmsg[200]; /* POP errors, at least, can exceed
752fb472 669 the original length of 80. */
237e0016 670
476b2799 671/*
4d90eee4 672 * The full valid syntax for a POP mailbox specification for movemail
476b2799
GM		 673 * is "po:username:hostname". The ":hostname" is optional; if it is
674 * omitted, the MAILHOST environment variable will be consulted. Note
675 * that by the time popmail() is called the "po:" has been stripped
676 * off of the front of the mailbox name.
677 *
678 * If the mailbox is in the form "po:username:hostname", then it is
679 * modified by this function -- the second colon is replaced by a
680 * null.
65396510
TTN		 681 *
682 * Return a value suitable for passing to `exit'.
476b2799
GM		 683 */
684
1725ae55 685static int
873fbd0b 686popmail (char *mailbox, char *outfile, int preserve, char *password, int reverse_order)
237e0016 687{
b1ce62a8 688 int nmsgs, nbytes;
b1ce62a8
RS		 689 register int i;
690 int mbfi;
691 FILE *mbf;
873fbd0b 692 char *getenv (const char *);
b32701a7 693 popserver server;
a2997b0f 694 int start, end, increment;
476b2799
GM		 695 char *user, *hostname;
696
697 user = mailbox;
8966b757 698 if ((hostname = strchr (mailbox, ':')))
476b2799 699 *hostname++ = '\0';
237e0016 700
476b2799 701 server = pop_open (hostname, user, password, POP_NO_GETPASS);
2e82e3c3 702 if (! server)
b1ce62a8 703 {
cc3b64e8 704 error ("Error connecting to POP server: %s", pop_error, 0);
65396510 705 return EXIT_FAILURE;
237e0016
RS		 706 }
707
2e82e3c3 708 if (pop_stat (server, &nmsgs, &nbytes))
b1ce62a8 709 {
cc3b64e8 710 error ("Error getting message count from POP server: %s", pop_error, 0);
65396510 711 return EXIT_FAILURE;
237e0016
RS		 712 }
713
b1ce62a8
RS		 714 if (!nmsgs)
715 {
2e82e3c3 716 pop_close (server);
65396510 717 return EXIT_SUCCESS;
b1ce62a8
RS		 718 }
719
720 mbfi = open (outfile, O_WRONLY | O_CREAT | O_EXCL, 0666);
721 if (mbfi < 0)
722 {
2e82e3c3
RS		 723 pop_close (server);
724 error ("Error in open: %s, %s", strerror (errno), outfile);
65396510 725 return EXIT_FAILURE;
b1ce62a8 726 }
f0939c31
PE		 727
728 if (fchown (mbfi, getuid (), -1) != 0)
729 {
730 int fchown_errno = errno;
731 struct stat st;
732 if (fstat (mbfi, &st) != 0 || st.st_uid != getuid ())
733 {
734 pop_close (server);
735 error ("Error in fchown: %s, %s", strerror (fchown_errno), outfile);
736 return EXIT_FAILURE;
737 }
738 }
b1ce62a8 739
7f75d5c6 740 if ((mbf = fdopen (mbfi, "wb")) == NULL)
b1ce62a8 741 {
2e82e3c3 742 pop_close (server);
cc3b64e8 743 error ("Error in fdopen: %s", strerror (errno), 0);
2e82e3c3
RS		 744 close (mbfi);
745 unlink (outfile);
65396510 746 return EXIT_FAILURE;
b1ce62a8
RS		 747 }
748
a2997b0f
KH		 749 if (reverse_order)
750 {
751 start = nmsgs;
752 end = 1;
753 increment = -1;
754 }
755 else
756 {
757 start = 1;
758 end = nmsgs;
759 increment = 1;
760 }
761
762 for (i = start; i * increment <= end * increment; i += increment)
b1ce62a8
RS		 763 {
764 mbx_delimit_begin (mbf);
ff804ff5 765 if (pop_retr (server, i, mbf) != OK)
b1ce62a8 766 {
17a60964 767 error ("%s", Errmsg, 0);
b1ce62a8 768 close (mbfi);
65396510 769 return EXIT_FAILURE;
237e0016 770 }
b1ce62a8
RS		 771 mbx_delimit_end (mbf);
772 fflush (mbf);
2e82e3c3
RS		 773 if (ferror (mbf))
774 {
cc3b64e8 775 error ("Error in fflush: %s", strerror (errno), 0);
2e82e3c3
RS		 776 pop_close (server);
777 close (mbfi);
65396510 778 return EXIT_FAILURE;
2e82e3c3 779 }
237e0016
RS		 780 }
781
2e82e3c3
RS		 782 /* On AFS, a call to write only modifies the file in the local
783 * workstation's AFS cache. The changes are not written to the server
784 * until a call to fsync or close is made. Users with AFS home
785 * directories have lost mail when over quota because these checks were
786 * not made in previous versions of movemail. */
787
e397a017 788#ifdef BSD_SYSTEM
cfa191ff
RS		 789 if (fsync (mbfi) < 0)
790 {
08fa58c9 791 error ("Error in fsync: %s", strerror (errno), 0);
65396510 792 return EXIT_FAILURE;
cfa191ff 793 }
340ff9de 794#endif
cfa191ff
RS		 795
796 if (close (mbfi) == -1)
797 {
cc3b64e8 798 error ("Error in close: %s", strerror (errno), 0);
65396510 799 return EXIT_FAILURE;
cfa191ff
RS		 800 }
801
fea4325c
RS		 802 if (! preserve)
803 for (i = 1; i <= nmsgs; i++)
804 {
805 if (pop_delete (server, i))
806 {
cc3b64e8 807 error ("Error from POP server: %s", pop_error, 0);
fea4325c 808 pop_close (server);
65396510 809 return EXIT_FAILURE;
fea4325c
RS		 810 }
811 }
237e0016 812
2e82e3c3 813 if (pop_quit (server))
b1ce62a8 814 {
cc3b64e8 815 error ("Error from POP server: %s", pop_error, 0);
65396510 816 return EXIT_FAILURE;
237e0016 817 }
177c0ea7 818
65396510 819 return EXIT_SUCCESS;
237e0016
RS		 820}
821
1725ae55 822static int
873fbd0b 823pop_retr (popserver server, int msgno, FILE *arg)
237e0016 824{
2e82e3c3
RS		 825 char *line;
826 int ret;
237e0016 827
2e82e3c3 828 if (pop_retrieve_first (server, msgno, &line))
b1ce62a8 829 {
e99a530f 830 snprintf (Errmsg, sizeof Errmsg, "Error from POP server: %s", pop_error);
2e82e3c3 831 return (NOTOK);
237e0016
RS		 832 }
833
d89d0243 834 while ((ret = pop_retrieve_next (server, &line)) >= 0)
b1ce62a8 835 {
2e82e3c3
RS		 836 if (! line)
837 break;
838
d89d0243 839 if (mbx_write (line, ret, arg) != OK)
b1ce62a8 840 {
2e82e3c3
RS		 841 strcpy (Errmsg, strerror (errno));
842 pop_close (server);
843 return (NOTOK);
237e0016
RS		 844 }
845 }
237e0016 846
2e82e3c3 847 if (ret)
b1ce62a8 848 {
e99a530f 849 snprintf (Errmsg, sizeof Errmsg, "Error from POP server: %s", pop_error);
2e82e3c3 850 return (NOTOK);
237e0016
RS		 851 }
852
2e82e3c3 853 return (OK);
237e0016
RS		 854}
855
1725ae55 856static int
873fbd0b 857mbx_write (char *line, int len, FILE *mbf)
237e0016 858{
d04f5031 859#ifdef MOVEMAIL_QUOTE_POP_FROM_LINES
5ecec6a7
PE		 860 /* Do this as a macro instead of using strcmp to save on execution time. */
861 # define IS_FROM_LINE(a) ((a[0] == 'F') \
862 && (a[1] == 'r') \
863 && (a[2] == 'o') \
864 && (a[3] == 'm') \
865 && (a[4] == ' '))
2e82e3c3
RS		 866 if (IS_FROM_LINE (line))
867 {
868 if (fputc ('>', mbf) == EOF)
869 return (NOTOK);
870 }
d04f5031
PE		 871#endif
872 if (line[0] == '\037')
873 {
874 if (fputs ("^_", mbf) == EOF)
875 return (NOTOK);
876 line++;
877 len--;
878 }
177c0ea7 879 if (fwrite (line, 1, len, mbf) != len)
2e82e3c3
RS		 880 return (NOTOK);
881 if (fputc (0x0a, mbf) == EOF)
882 return (NOTOK);
883 return (OK);
237e0016
RS		 884}
885
1725ae55 886static int
873fbd0b 887mbx_delimit_begin (FILE *mbf)
237e0016 888{
d228a23c
GM		 889 time_t now;
890 struct tm *ltime;
891 char fromline[40] = "From movemail ";
892
893 now = time (NULL);
894 ltime = localtime (&now);
895
896 strcat (fromline, asctime (ltime));
897
898 if (fputs (fromline, mbf) == EOF)
2e82e3c3
RS		 899 return (NOTOK);
900 return (OK);
237e0016
RS		 901}
902
1725ae55 903static int
873fbd0b 904mbx_delimit_end (FILE *mbf)
237e0016 905{
3f32be22 906 if (putc ('\n', mbf) == EOF)
2e82e3c3
RS		 907 return (NOTOK);
908 return (OK);
237e0016
RS		 909}
910
911#endif /* MAIL_USE_POP */
Unnamed repository; edit this file 'description' to name the repository.