Blame - mailutils/sendmail.c - codeaurora/busybox

blob: cd27d676ef2a4878c7466adf62e48ef25e09e776 [file] [log] [blame]

Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	1	/* vi: set sw=4 ts=4: */
				2	/*
				3	* bare bones sendmail
				4	*
				5	* Copyright (C) 2008 by Vladimir Dronnikov <dronnikov@gmail.com>
				6	*
Denys Vlasenko	0ef64bd	2010-08-16 20:14:46 +0200	[diff] [blame]	7	* Licensed under GPLv2, see file LICENSE in this source tree.
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	8	*/
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	9
Denys Vlasenko	d616ab6	2011-05-22 03:46:33 +0200	[diff] [blame]	10	//kbuild:lib-$(CONFIG_SENDMAIL) += sendmail.o mail.o
				11
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	12	//usage:#define sendmail_trivial_usage
Denys Vlasenko	9de7509	2016-07-14 19:14:54 +0200	[diff] [blame]	13	//usage: "[-tv] [-f SENDER] [-amLOGIN 4<user_pass.txt \| -auUSER -apPASS]"
Denys Vlasenko	2a4d7f4	2016-07-14 20:06:44 +0200	[diff] [blame]	14	//usage: "\n [-w SECS] [-H 'PROG ARGS' \| -S HOST] [RECIPIENT_EMAIL]..."
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	15	//usage:#define sendmail_full_usage "\n\n"
				16	//usage: "Read email from stdin and send it\n"
				17	//usage: "\nStandard options:"
				18	//usage: "\n -t Read additional recipients from message body"
Denys Vlasenko	07f417b	2014-02-05 15:01:39 +0100	[diff] [blame]	19	//usage: "\n -f SENDER For use in MAIL FROM:<sender>. Can be empty string"
				20	//usage: "\n Default: -auUSER, or username of current UID"
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	21	//usage: "\n -o OPTIONS Various options. -oi implied, others are ignored"
Denys Vlasenko	9de7509	2016-07-14 19:14:54 +0200	[diff] [blame]	22	//usage: "\n -i -oi synonym, implied and ignored"
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	23	//usage: "\n"
				24	//usage: "\nBusybox specific options:"
				25	//usage: "\n -v Verbose"
				26	//usage: "\n -w SECS Network timeout"
Denys Vlasenko	9de7509	2016-07-14 19:14:54 +0200	[diff] [blame]	27	//usage: "\n -H 'PROG ARGS' Run connection helper. Examples:"
				28	//usage: "\n openssl s_client -quiet -tls1 -starttls smtp -connect smtp.gmail.com:25"
				29	//usage: "\n openssl s_client -quiet -tls1 -connect smtp.gmail.com:465"
				30	//usage: "\n -S HOST[:PORT] Server (default $SMTPHOST or 127.0.0.1)"
				31	//usage: "\n -amLOGIN Log in using AUTH LOGIN (-amCRAM-MD5 not supported)"
				32	//usage: "\n -auUSER Username for AUTH"
				33	//usage: "\n -apPASS Password for AUTH"
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	34	//usage: "\n"
Denys Vlasenko	9de7509	2016-07-14 19:14:54 +0200	[diff] [blame]	35	//usage: "\nIf no -a options are given, authentication is not done."
				36	//usage: "\nIf -amLOGIN is given but no -au/-ap, user/password is read from fd #4."
				37	//usage: "\nOther options are silently ignored; -oi is implied."
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	38	//usage: IF_MAKEMIME(
Denys Vlasenko	9de7509	2016-07-14 19:14:54 +0200	[diff] [blame]	39	//usage: "\nUse makemime to create emails with attachments."
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	40	//usage: )
				41
Denys Vlasenko	07f417b	2014-02-05 15:01:39 +0100	[diff] [blame]	42	/* Currently we don't sanitize or escape user-supplied SENDER and RECIPIENT_EMAILs.
				43	* We may need to do so. For one, '.' in usernames seems to require escaping!
				44	*
				45	* From http://cr.yp.to/smtp/address.html:
				46	*
				47	* SMTP offers three ways to encode a character inside an address:
				48	*
				49	* "safe": the character, if it is not <>()[].,;:@, backslash,
				50	* double-quote, space, or an ASCII control character;
				51	* "quoted": the character, if it is not \012, \015, backslash,
				52	* or double-quote; or
				53	* "slashed": backslash followed by the character.
				54	*
				55	* An encoded box part is either (1) a sequence of one or more slashed
				56	* or safe characters or (2) a double quote, a sequence of zero or more
				57	* slashed or quoted characters, and a double quote. It represents
				58	* the concatenation of the characters encoded inside it.
				59	*
				60	* For example, the encoded box parts
				61	* angels
				62	* \a\n\g\e\l\s
				63	* "\a\n\g\e\l\s"
				64	* "angels"
				65	* "ang\els"
				66	* all represent the 6-byte string "angels", and the encoded box parts
				67	* a\,comma
				68	* \a\,\c\o\m\m\a
				69	* "a,comma"
				70	* all represent the 7-byte string "a,comma".
				71	*
				72	* An encoded address contains
				73	* the byte <;
				74	* optionally, a route followed by a colon;
				75	* an encoded box part, the byte @, and a domain; and
				76	* the byte >.
				77	*
				78	* It represents an Internet mail address, given by concatenating
				79	* the string represented by the encoded box part, the byte @,
				80	* and the domain. For example, the encoded addresses
				81	* <God@heaven.af.mil>
				82	* <\God@heaven.af.mil>
				83	* <"God"@heaven.af.mil>
				84	* <@gateway.af.mil,@uucp.local:"\G\o\d"@heaven.af.mil>
				85	* all represent the Internet mail address "God@heaven.af.mil".
				86	*/
				87
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	88	#include "libbb.h"
				89	#include "mail.h"
				90
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	91	// limit maximum allowed number of headers to prevent overflows.
				92	// set to 0 to not limit
				93	#define MAX_HEADERS 256
				94
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	95	static void send_r_n(const char *s)
				96	{
				97	if (verbose)
				98	bb_error_msg("send:'%s'", s);
				99	printf("%s\r\n", s);
				100	}
				101
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	102	static int smtp_checkp(const char fmt, const char param, int code)
				103	{
				104	char *answer;
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	105	char *msg = send_mail_command(fmt, param);
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	106	// read stdin
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	107	// if the string has a form NNN- -- read next string. E.g. EHLO response
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	108	// parse first bytes to a number
				109	// if code = -1 then just return this number
				110	// if code != -1 then checks whether the number equals the code
				111	// if not equal -> die saying msg
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	112	while ((answer = xmalloc_fgetline(stdin)) != NULL) {
Denys Vlasenko	51d714c	2010-12-20 12:19:46 +0100	[diff] [blame]	113	if (verbose)
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	114	bb_error_msg("recv:'%.*s'", (int)(strchrnul(answer, '\r') - answer), answer);
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	115	if (strlen(answer) <= 3 \|\| '-' != answer[3])
				116	break;
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	117	free(answer);
				118	}
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	119	if (answer) {
				120	int n = atoi(answer);
				121	if (timeout)
				122	alarm(0);
				123	free(answer);
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	124	if (-1 == code \|\| n == code) {
				125	free(msg);
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	126	return n;
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	127	}
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	128	}
				129	bb_error_msg_and_die("%s failed", msg);
				130	}
				131
				132	static int smtp_check(const char *fmt, int code)
				133	{
				134	return smtp_checkp(fmt, NULL, code);
				135	}
				136
				137	// strip argument of bad chars
				138	static char sane_address(char str)
				139	{
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	140	char *s;
Aaro Koskinen	14285d1	2013-02-25 00:45:06 +0200	[diff] [blame]	141
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	142	trim(str);
				143	s = str;
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	144	while (*s) {
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	145	if (!isalnum(s) && !strchr("_-.@", s)) {
				146	bb_error_msg("bad address '%s'", str);
				147	/* returning "": */
				148	str[0] = '\0';
				149	return str;
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	150	}
				151	s++;
				152	}
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	153	return str;
				154	}
				155
Aaro Koskinen	06ad964	2013-02-25 00:45:08 +0200	[diff] [blame]	156	// check for an address inside angle brackets, if not found fall back to normal
				157	static char angle_address(char str)
				158	{
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	159	char s, e;
Aaro Koskinen	06ad964	2013-02-25 00:45:08 +0200	[diff] [blame]	160
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	161	trim(str);
				162	e = last_char_is(str, '>');
				163	if (e) {
				164	s = strrchr(str, '<');
				165	if (s) {
				166	*e = '\0';
				167	str = s + 1;
				168	}
				169	}
				170	return sane_address(str);
Aaro Koskinen	06ad964	2013-02-25 00:45:08 +0200	[diff] [blame]	171	}
				172
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	173	static void rcptto(const char *s)
				174	{
Aaro Koskinen	14285d1	2013-02-25 00:45:06 +0200	[diff] [blame]	175	if (!*s)
				176	return;
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	177	// N.B. we don't die if recipient is rejected, for the other recipients may be accepted
				178	if (250 != smtp_checkp("RCPT TO:<%s>", s, -1))
				179	bb_error_msg("Bad recipient: <%s>", s);
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	180	}
				181
Aaro Koskinen	a8ba0a0	2013-02-25 00:45:09 +0200	[diff] [blame]	182	// send to a list of comma separated addresses
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	183	static void rcptto_list(const char *list)
Aaro Koskinen	a8ba0a0	2013-02-25 00:45:09 +0200	[diff] [blame]	184	{
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	185	char *str = xstrdup(list);
Aaro Koskinen	a8ba0a0	2013-02-25 00:45:09 +0200	[diff] [blame]	186	char *s = str;
				187	char prev = 0;
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	188	int in_quote = 0;
Aaro Koskinen	a8ba0a0	2013-02-25 00:45:09 +0200	[diff] [blame]	189
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	190	while (*s) {
				191	char ch = *s++;
Aaro Koskinen	a8ba0a0	2013-02-25 00:45:09 +0200	[diff] [blame]	192
				193	if (ch == '"' && prev != '\\') {
				194	in_quote = !in_quote;
				195	} else if (!in_quote && ch == ',') {
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	196	s[-1] = '\0';
				197	rcptto(angle_address(str));
				198	str = s;
Aaro Koskinen	a8ba0a0	2013-02-25 00:45:09 +0200	[diff] [blame]	199	}
				200	prev = ch;
				201	}
				202	if (prev != ',')
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	203	rcptto(angle_address(str));
Aaro Koskinen	a8ba0a0	2013-02-25 00:45:09 +0200	[diff] [blame]	204	free(str);
				205	}
				206
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	207	int sendmail_main(int argc, char **argv) MAIN_EXTERNALLY_VISIBLE;
				208	int sendmail_main(int argc UNUSED_PARAM, char **argv)
				209	{
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	210	char *opt_connect = opt_connect;
Denys Vlasenko	07f417b	2014-02-05 15:01:39 +0100	[diff] [blame]	211	char *opt_from = NULL;
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	212	char *s;
				213	llist_t *list = NULL;
Ron Yorston	576b1d3	2012-04-28 17:04:19 +0200	[diff] [blame]	214	char *host = sane_address(safe_gethostname());
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	215	unsigned nheaders = 0;
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	216	int code;
Aaro Koskinen	236f222	2013-02-25 00:45:10 +0200	[diff] [blame]	217	enum {
				218	HDR_OTHER = 0,
				219	HDR_TOCC,
				220	HDR_BCC,
				221	} last_hdr = 0;
				222	int check_hdr;
Aaro Koskinen	4a73222	2013-02-25 00:45:11 +0200	[diff] [blame]	223	int has_to = 0;
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	224
				225	enum {
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	226	//--- standard options
				227	OPT_t = 1 << 0, // read message for recipients, append them to those on cmdline
				228	OPT_f = 1 << 1, // sender address
				229	OPT_o = 1 << 2, // various options. -oi IMPLIED! others are IGNORED!
Vladimir Dronnikov	b618dba	2009-10-04 01:34:54 +0200	[diff] [blame]	230	OPT_i = 1 << 3, // IMPLIED!
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	231	//--- BB specific options
Vladimir Dronnikov	b618dba	2009-10-04 01:34:54 +0200	[diff] [blame]	232	OPT_w = 1 << 4, // network timeout
				233	OPT_H = 1 << 5, // use external connection helper
				234	OPT_S = 1 << 6, // specify connection string
				235	OPT_a = 1 << 7, // authentication tokens
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	236	OPT_v = 1 << 8, // verbosity
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	237	};
				238
				239	// init global variables
				240	INIT_G();
				241
				242	// save initial stdin since body is piped!
				243	xdup2(STDIN_FILENO, 3);
Denys Vlasenko	a7ccdee	2009-11-15 23:28:11 +0100	[diff] [blame]	244	G.fp0 = xfdopen_for_read(3);
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	245
				246	// parse options
Denys Vlasenko	07f417b	2014-02-05 15:01:39 +0100	[diff] [blame]	247	// -v is a counter, -H and -S are mutually exclusive, -a is a list
Denys Vlasenko	237bedd	2016-07-06 21:58:02 +0200	[diff] [blame]	248	opt_complementary = "vv:H--S:S--H";
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	249	// N.B. since -H and -S are mutually exclusive they do not interfere in opt_connect
				250	// -a is for ssmtp (http://downloads.openwrt.org/people/nico/man/man8/ssmtp.8.html) compatibility,
				251	// it is still under development.
Denys Vlasenko	237bedd	2016-07-06 21:58:02 +0200	[diff] [blame]	252	opts = getopt32(argv, "tf:o:iw:+H:S:a:*:v", &opt_from, NULL,
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	253	&timeout, &opt_connect, &opt_connect, &list, &verbose);
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	254	//argc -= optind;
				255	argv += optind;
				256
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	257	// process -a[upm]<token> options
				258	if ((opts & OPT_a) && !list)
				259	bb_show_usage();
				260	while (list) {
				261	char a = (char ) llist_pop(&list);
				262	if ('u' == a[0])
				263	G.user = xstrdup(a+1);
				264	if ('p' == a[0])
				265	G.pass = xstrdup(a+1);
				266	// N.B. we support only AUTH LOGIN so far
				267	//if ('m' == a[0])
				268	// G.method = xstrdup(a+1);
				269	}
				270	// N.B. list == NULL here
Denys Vlasenko	76b680c	2016-03-30 16:04:37 +0200	[diff] [blame]	271	//bb_error_msg("OPT[%x] AU[%s], AP[%s], AM[%s], ARGV[%s]", opts, au, ap, am, *argv);
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	272
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	273	// connect to server
				274
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	275	// connection helper ordered? ->
				276	if (opts & OPT_H) {
				277	const char *args[] = { "sh", "-c", opt_connect, NULL };
				278	// plug it in
				279	launch_helper(args);
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	280	// Now:
				281	// our stdout will go to helper's stdin,
				282	// helper's stdout will be available on our stdin.
				283
				284	// Wait for initial server message.
				285	// If helper (such as openssl) invokes STARTTLS, the initial 220
				286	// is swallowed by helper (and not repeated after TLS is initiated).
				287	// We will send NOOP cmd to server and check the response.
				288	// We should get 220+250 on plain connection, 250 on STARTTLSed session.
				289	//
				290	// The problem here is some servers delay initial 220 message,
				291	// and consider client to be a spammer if it starts sending cmds
				292	// before 220 reached it. The code below is unsafe in this regard:
				293	// in non-STARTTLSed case, we potentially send NOOP before 220
				294	// is sent by server.
				295	// Ideas? (--delay SECS opt? --assume-starttls-helper opt?)
				296	code = smtp_check("NOOP", -1);
				297	if (code == 220)
				298	// we got 220 - this is not STARTTLSed connection,
				299	// eat 250 response to our NOOP
				300	smtp_check(NULL, 250);
				301	else
				302	if (code != 250)
				303	bb_error_msg_and_die("SMTP init failed");
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	304	} else {
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	305	// vanilla connection
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	306	int fd;
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	307	// host[:port] not explicitly specified? -> use $SMTPHOST
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	308	// no $SMTPHOST? -> use localhost
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	309	if (!(opts & OPT_S)) {
				310	opt_connect = getenv("SMTPHOST");
				311	if (!opt_connect)
				312	opt_connect = (char *)"127.0.0.1";
				313	}
				314	// do connect
				315	fd = create_and_connect_stream_or_die(opt_connect, 25);
				316	// and make ourselves a simple IO filter
				317	xmove_fd(fd, STDIN_FILENO);
				318	xdup2(STDIN_FILENO, STDOUT_FILENO);
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	319
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	320	// Wait for initial server 220 message
				321	smtp_check(NULL, 220);
				322	}
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	323
				324	// we should start with modern EHLO
Ron Yorston	576b1d3	2012-04-28 17:04:19 +0200	[diff] [blame]	325	if (250 != smtp_checkp("EHLO %s", host, -1))
				326	smtp_checkp("HELO %s", host, 250);
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	327
				328	// perform authentication
				329	if (opts & OPT_a) {
				330	smtp_check("AUTH LOGIN", 334);
				331	// we must read credentials unless they are given via -a[up] options
				332	if (!G.user \|\| !G.pass)
				333	get_cred_or_die(4);
				334	encode_base64(NULL, G.user, NULL);
				335	smtp_check("", 334);
				336	encode_base64(NULL, G.pass, NULL);
				337	smtp_check("", 235);
				338	}
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	339
				340	// set sender
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	341	// N.B. we have here a very loosely defined algorythm
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	342	// since sendmail historically offers no means to specify secrets on cmdline.
				343	// 1) server can require no authentication ->
				344	// we must just provide a (possibly fake) reply address.
				345	// 2) server can require AUTH ->
				346	// we must provide valid username and password along with a (possibly fake) reply address.
				347	// For the sake of security username and password are to be read either from console or from a secured file.
				348	// Since reading from console may defeat usability, the solution is either to read from a predefined
				349	// file descriptor (e.g. 4), or again from a secured file.
				350
Denys Vlasenko	07f417b	2014-02-05 15:01:39 +0100	[diff] [blame]	351	// got no sender address? use auth name, then UID username as a last resort
				352	if (!opt_from) {
Kaarle Ritvanen	4e03d41	2014-02-09 09:49:36 +0100	[diff] [blame]	353	opt_from = xasprintf("%s@%s",
				354	G.user ? G.user : xuid2uname(getuid()),
				355	xgethostbyname(host)->h_name);
Denys Vlasenko	07f417b	2014-02-05 15:01:39 +0100	[diff] [blame]	356	}
Kaarle Ritvanen	4e03d41	2014-02-09 09:49:36 +0100	[diff] [blame]	357	free(host);
Denys Vlasenko	07f417b	2014-02-05 15:01:39 +0100	[diff] [blame]	358
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	359	smtp_checkp("MAIL FROM:<%s>", opt_from, 250);
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	360
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	361	// process message
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	362
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	363	// read recipients from message and add them to those given on cmdline.
				364	// this means we scan stdin for To:, Cc:, Bcc: lines until an empty line
				365	// and then use the rest of stdin as message body
				366	code = 0; // set "analyze headers" mode
				367	while ((s = xmalloc_fgetline(G.fp0)) != NULL) {
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	368	dump:
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	369	// put message lines doubling leading dots
				370	if (code) {
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	371	// escape leading dots
				372	// N.B. this feature is implied even if no -i (-oi) switch given
				373	// N.B. we need to escape the leading dot regardless of
				374	// whether it is single or not character on the line
				375	if ('.' == s[0] /&& '\0' == s[1] /)
Denys Vlasenko	d60752f	2015-10-07 22:42:45 +0200	[diff] [blame]	376	bb_putchar('.');
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	377	// dump read line
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	378	send_r_n(s);
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	379	free(s);
				380	continue;
				381	}
				382
				383	// analyze headers
				384	// To: or Cc: headers add recipients
Denys Vlasenko	a42f530	2013-03-18 18:47:16 +0100	[diff] [blame]	385	check_hdr = (0 == strncasecmp("To:", s, 3));
Aaro Koskinen	4a73222	2013-02-25 00:45:11 +0200	[diff] [blame]	386	has_to \|= check_hdr;
Denys Vlasenko	41fea01	2011-11-18 22:25:35 +0100	[diff] [blame]	387	if (opts & OPT_t) {
Aaro Koskinen	4a73222	2013-02-25 00:45:11 +0200	[diff] [blame]	388	if (check_hdr \|\| 0 == strncasecmp("Bcc:" + 1, s, 3)) {
Aaro Koskinen	a8ba0a0	2013-02-25 00:45:09 +0200	[diff] [blame]	389	rcptto_list(s+3);
Aaro Koskinen	236f222	2013-02-25 00:45:10 +0200	[diff] [blame]	390	last_hdr = HDR_TOCC;
Denys Vlasenko	41fea01	2011-11-18 22:25:35 +0100	[diff] [blame]	391	goto addheader;
				392	}
				393	// Bcc: header adds blind copy (hidden) recipient
				394	if (0 == strncasecmp("Bcc:", s, 4)) {
Aaro Koskinen	a8ba0a0	2013-02-25 00:45:09 +0200	[diff] [blame]	395	rcptto_list(s+4);
Denys Vlasenko	41fea01	2011-11-18 22:25:35 +0100	[diff] [blame]	396	free(s);
Aaro Koskinen	236f222	2013-02-25 00:45:10 +0200	[diff] [blame]	397	last_hdr = HDR_BCC;
Denys Vlasenko	41fea01	2011-11-18 22:25:35 +0100	[diff] [blame]	398	continue; // N.B. Bcc: vanishes from headers!
				399	}
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	400	}
Aaro Koskinen	e82bfef	2013-02-25 00:45:12 +0200	[diff] [blame]	401	check_hdr = (list && isspace(s[0]));
Aaro Koskinen	236f222	2013-02-25 00:45:10 +0200	[diff] [blame]	402	if (strchr(s, ':') \|\| check_hdr) {
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	403	// other headers go verbatim
				404	// N.B. RFC2822 2.2.3 "Long Header Fields" allows for headers to occupy several lines.
				405	// Continuation is denoted by prefixing additional lines with whitespace(s).
				406	// Thanks (stefan.seyfried at googlemail.com) for pointing this out.
Aaro Koskinen	236f222	2013-02-25 00:45:10 +0200	[diff] [blame]	407	if (check_hdr && last_hdr != HDR_OTHER) {
				408	rcptto_list(s+1);
				409	if (last_hdr == HDR_BCC)
				410	continue;
				411	// N.B. Bcc: vanishes from headers!
				412	} else {
				413	last_hdr = HDR_OTHER;
				414	}
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	415	addheader:
Vladimir Dronnikov	8dbe9bb	2009-10-17 03:35:10 +0200	[diff] [blame]	416	// N.B. we allow MAX_HEADERS generic headers at most to prevent attacks
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	417	if (MAX_HEADERS && ++nheaders >= MAX_HEADERS)
				418	goto bail;
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	419	llist_add_to_end(&list, s);
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	420	} else {
Denys Vlasenko	34c469a	2011-09-18 03:01:49 +0200	[diff] [blame]	421	// a line without ":" (an empty line too, by definition) doesn't look like a valid header
				422	// so stop "analyze headers" mode
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	423	reenter:
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	424	// put recipients specified on cmdline
Aaro Koskinen	e82bfef	2013-02-25 00:45:12 +0200	[diff] [blame]	425	check_hdr = 1;
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	426	while (*argv) {
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	427	char t = sane_address(argv);
				428	rcptto(t);
				429	//if (MAX_HEADERS && ++nheaders >= MAX_HEADERS)
				430	// goto bail;
Aaro Koskinen	e82bfef	2013-02-25 00:45:12 +0200	[diff] [blame]	431	if (!has_to) {
				432	const char *hdr;
				433
				434	if (check_hdr && argv[1])
				435	hdr = "To: %s,";
				436	else if (check_hdr)
				437	hdr = "To: %s";
				438	else if (argv[1])
				439	hdr = "To: %s," + 3;
				440	else
				441	hdr = "To: %s" + 3;
Aaro Koskinen	4a73222	2013-02-25 00:45:11 +0200	[diff] [blame]	442	llist_add_to_end(&list,
Aaro Koskinen	e82bfef	2013-02-25 00:45:12 +0200	[diff] [blame]	443	xasprintf(hdr, t));
				444	check_hdr = 0;
				445	}
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	446	argv++;
				447	}
				448	// enter "put message" mode
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	449	// N.B. DATA fails iff no recipients were accepted (or even provided)
				450	// in this case just bail out gracefully
				451	if (354 != smtp_check("DATA", -1))
				452	goto bail;
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	453	// dump the headers
				454	while (list) {
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	455	send_r_n((char *) llist_pop(&list));
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	456	}
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	457	// stop analyzing headers
				458	code++;
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	459	// N.B. !s means: we read nothing, and nothing to be read in the future.
				460	// just dump empty line and break the loop
				461	if (!s) {
Denys Vlasenko	5707b52	2010-12-20 05:12:39 +0100	[diff] [blame]	462	send_r_n("");
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	463	break;
				464	}
				465	// go dump message body
				466	// N.B. "s" already contains the first non-header line, so pretend we read it from input
				467	goto dump;
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	468	}
				469	}
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	470	// odd case: we didn't stop "analyze headers" mode -> message body is empty. Reenter the loop
				471	// N.B. after reenter code will be > 0
				472	if (!code)
				473	goto reenter;
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	474
Denis Vlasenko	88b8f0a	2009-03-31 23:41:53 +0000	[diff] [blame]	475	// finalize the message
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	476	smtp_check(".", 250);
Vladimir Dronnikov	944d275	2009-10-15 23:50:48 +0200	[diff] [blame]	477	bail:
Denis Vlasenko	239d06b	2008-11-06 23:42:42 +0000	[diff] [blame]	478	// ... and say goodbye
				479	smtp_check("QUIT", 221);
				480	// cleanup
				481	if (ENABLE_FEATURE_CLEAN_UP)
				482	fclose(G.fp0);
				483
				484	return EXIT_SUCCESS;
				485	}