Mercurial > hg > nginx-quic
annotate src/mail/ngx_mail_handler.c @ 1322:27f2299e0d80
SMTP STARTTLS
patch by Maxim Dounin
author | Igor Sysoev <igor@sysoev.ru> |
---|---|
date | Fri, 20 Jul 2007 18:36:04 +0000 |
parents | a9c361479430 |
children | c4b2c893989d |
rev | line source |
---|---|
441
da8c5707af39
nginx-0.1.0-2004-09-28-12:34:51 import; set copyright and remove unused files
Igor Sysoev <igor@sysoev.ru>
parents:
423
diff
changeset
|
1 |
da8c5707af39
nginx-0.1.0-2004-09-28-12:34:51 import; set copyright and remove unused files
Igor Sysoev <igor@sysoev.ru>
parents:
423
diff
changeset
|
2 /* |
444
42d11f017717
nginx-0.1.0-2004-09-29-20:00:49 import; remove years from copyright
Igor Sysoev <igor@sysoev.ru>
parents:
441
diff
changeset
|
3 * Copyright (C) Igor Sysoev |
441
da8c5707af39
nginx-0.1.0-2004-09-28-12:34:51 import; set copyright and remove unused files
Igor Sysoev <igor@sysoev.ru>
parents:
423
diff
changeset
|
4 */ |
da8c5707af39
nginx-0.1.0-2004-09-28-12:34:51 import; set copyright and remove unused files
Igor Sysoev <igor@sysoev.ru>
parents:
423
diff
changeset
|
5 |
413
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
6 |
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
7 #include <ngx_config.h> |
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
8 #include <ngx_core.h> |
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
9 #include <ngx_event.h> |
1136 | 10 #include <ngx_mail.h> |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
11 |
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
12 |
1136 | 13 static void ngx_mail_init_session(ngx_connection_t *c); |
14 static void ngx_mail_init_protocol(ngx_event_t *rev); | |
15 static ngx_int_t ngx_mail_decode_auth_plain(ngx_mail_session_t *s, | |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
16 ngx_str_t *encoded); |
1136 | 17 static void ngx_mail_do_auth(ngx_mail_session_t *s); |
18 static ngx_int_t ngx_mail_read_command(ngx_mail_session_t *s); | |
19 static u_char *ngx_mail_log_error(ngx_log_t *log, u_char *buf, size_t len); | |
413
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
20 |
1136 | 21 #if (NGX_MAIL_SSL) |
22 static void ngx_mail_ssl_init_connection(ngx_ssl_t *ssl, ngx_connection_t *c); | |
23 static void ngx_mail_ssl_handshake_handler(ngx_connection_t *c); | |
539 | 24 #endif |
25 | |
413
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
26 |
521 | 27 static ngx_str_t greetings[] = { |
527 | 28 ngx_string("+OK POP3 ready" CRLF), |
529 | 29 ngx_string("* OK IMAP4 ready" CRLF) |
1136 | 30 /* SMTP greeting */ |
521 | 31 }; |
32 | |
525 | 33 static ngx_str_t internal_server_errors[] = { |
34 ngx_string("-ERR internal server error" CRLF), | |
35 ngx_string("* BAD internal server error" CRLF), | |
1136 | 36 ngx_string("451 4.3.2 Internal server error" CRLF), |
525 | 37 }; |
38 | |
521 | 39 static u_char pop3_ok[] = "+OK" CRLF; |
809 | 40 static u_char pop3_next[] = "+ " CRLF; |
41 static u_char pop3_username[] = "+ VXNlcm5hbWU6" CRLF; | |
42 static u_char pop3_password[] = "+ UGFzc3dvcmQ6" CRLF; | |
521 | 43 static u_char pop3_invalid_command[] = "-ERR invalid command" CRLF; |
44 | |
543 | 45 static u_char imap_star[] = "* "; |
529 | 46 static u_char imap_ok[] = "OK completed" CRLF; |
527 | 47 static u_char imap_next[] = "+ OK" CRLF; |
48 static u_char imap_bye[] = "* BYE" CRLF; | |
49 static u_char imap_invalid_command[] = "BAD invalid command" CRLF; | |
50 | |
1136 | 51 static u_char smtp_ok[] = "250 2.0.0 OK" CRLF; |
52 static u_char smtp_bye[] = "221 2.0.0 Bye" CRLF; | |
53 static u_char smtp_next[] = "334 " CRLF; | |
54 static u_char smtp_username[] = "334 VXNlcm5hbWU6" CRLF; | |
55 static u_char smtp_password[] = "334 UGFzc3dvcmQ6" CRLF; | |
56 static u_char smtp_invalid_command[] = "500 5.5.1 Invalid command" CRLF; | |
57 static u_char smtp_invalid_argument[] = "501 5.5.4 Invalid argument" CRLF; | |
58 static u_char smtp_auth_required[] = "530 5.7.1 Authentication required" CRLF; | |
59 | |
521 | 60 |
61 void | |
1136 | 62 ngx_mail_init_connection(ngx_connection_t *c) |
413
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
63 { |
641 | 64 in_addr_t in_addr; |
65 socklen_t len; | |
66 ngx_uint_t i; | |
67 struct sockaddr_in sin; | |
1136 | 68 ngx_mail_log_ctx_t *ctx; |
69 ngx_mail_in_port_t *imip; | |
70 ngx_mail_in_addr_t *imia; | |
71 ngx_mail_session_t *s; | |
72 #if (NGX_MAIL_SSL) | |
73 ngx_mail_ssl_conf_t *sslcf; | |
543 | 74 #endif |
541 | 75 |
641 | 76 |
77 /* find the server configuration for the address:port */ | |
78 | |
79 /* AF_INET only */ | |
80 | |
81 imip = c->listening->servers; | |
82 imia = imip->addrs; | |
83 | |
84 i = 0; | |
85 | |
86 if (imip->naddrs > 1) { | |
87 | |
88 /* | |
89 * There are several addresses on this port and one of them | |
90 * is the "*:port" wildcard so getsockname() is needed to determine | |
91 * the server address. | |
92 * | |
93 * AcceptEx() already gave this address. | |
94 */ | |
95 | |
96 #if (NGX_WIN32) | |
97 if (c->local_sockaddr) { | |
98 in_addr = | |
99 ((struct sockaddr_in *) c->local_sockaddr)->sin_addr.s_addr; | |
541 | 100 |
641 | 101 } else |
102 #endif | |
103 { | |
104 len = sizeof(struct sockaddr_in); | |
105 if (getsockname(c->fd, (struct sockaddr *) &sin, &len) == -1) { | |
106 ngx_connection_error(c, ngx_socket_errno, | |
107 "getsockname() failed"); | |
1136 | 108 ngx_mail_close_connection(c); |
641 | 109 return; |
110 } | |
111 | |
112 in_addr = sin.sin_addr.s_addr; | |
113 } | |
114 | |
115 /* the last address is "*" */ | |
116 | |
117 for ( /* void */ ; i < imip->naddrs - 1; i++) { | |
118 if (in_addr == imia[i].addr) { | |
119 break; | |
120 } | |
121 } | |
122 } | |
123 | |
124 | |
1136 | 125 s = ngx_pcalloc(c->pool, sizeof(ngx_mail_session_t)); |
641 | 126 if (s == NULL) { |
1136 | 127 ngx_mail_close_connection(c); |
541 | 128 return; |
577 | 129 } |
541 | 130 |
641 | 131 s->main_conf = imia[i].ctx->main_conf; |
132 s->srv_conf = imia[i].ctx->srv_conf; | |
133 | |
134 s->addr_text = &imia[i].addr_text; | |
135 | |
136 c->data = s; | |
137 s->connection = c; | |
138 | |
139 ngx_log_error(NGX_LOG_INFO, c->log, 0, "*%ui client %V connected to %V", | |
140 c->number, &c->addr_text, s->addr_text); | |
141 | |
1136 | 142 ctx = ngx_palloc(c->pool, sizeof(ngx_mail_log_ctx_t)); |
641 | 143 if (ctx == NULL) { |
1136 | 144 ngx_mail_close_connection(c); |
641 | 145 return; |
146 } | |
147 | |
148 ctx->client = &c->addr_text; | |
149 ctx->session = s; | |
541 | 150 |
151 c->log->connection = c->number; | |
1136 | 152 c->log->handler = ngx_mail_log_error; |
641 | 153 c->log->data = ctx; |
541 | 154 c->log->action = "sending client greeting line"; |
155 | |
156 c->log_error = NGX_ERROR_INFO; | |
157 | |
1136 | 158 #if (NGX_MAIL_SSL) |
543 | 159 |
1136 | 160 sslcf = ngx_mail_get_module_srv_conf(s, ngx_mail_ssl_module); |
543 | 161 |
162 if (sslcf->enable) { | |
1136 | 163 ngx_mail_ssl_init_connection(&sslcf->ssl, c); |
547 | 164 return; |
543 | 165 } |
166 | |
167 #endif | |
168 | |
1136 | 169 ngx_mail_init_session(c); |
541 | 170 } |
171 | |
172 | |
1136 | 173 #if (NGX_MAIL_SSL) |
547 | 174 |
541 | 175 static void |
1136 | 176 ngx_mail_starttls_handler(ngx_event_t *rev) |
583 | 177 { |
178 ngx_connection_t *c; | |
1136 | 179 ngx_mail_session_t *s; |
180 ngx_mail_ssl_conf_t *sslcf; | |
583 | 181 |
182 c = rev->data; | |
183 s = c->data; | |
641 | 184 s->starttls = 1; |
583 | 185 |
186 c->log->action = "in starttls state"; | |
187 | |
1136 | 188 sslcf = ngx_mail_get_module_srv_conf(s, ngx_mail_ssl_module); |
583 | 189 |
1136 | 190 ngx_mail_ssl_init_connection(&sslcf->ssl, c); |
583 | 191 } |
192 | |
193 | |
194 static void | |
1136 | 195 ngx_mail_ssl_init_connection(ngx_ssl_t *ssl, ngx_connection_t *c) |
583 | 196 { |
1136 | 197 ngx_mail_session_t *s; |
198 ngx_mail_core_srv_conf_t *cscf; | |
583 | 199 |
200 if (ngx_ssl_create_connection(ssl, c, 0) == NGX_ERROR) { | |
1136 | 201 ngx_mail_close_connection(c); |
583 | 202 return; |
203 } | |
204 | |
205 if (ngx_ssl_handshake(c) == NGX_AGAIN) { | |
206 | |
641 | 207 s = c->data; |
208 | |
1136 | 209 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); |
583 | 210 |
211 ngx_add_timer(c->read, cscf->timeout); | |
212 | |
1136 | 213 c->ssl->handler = ngx_mail_ssl_handshake_handler; |
583 | 214 |
215 return; | |
216 } | |
217 | |
1136 | 218 ngx_mail_ssl_handshake_handler(c); |
583 | 219 } |
220 | |
221 | |
222 static void | |
1136 | 223 ngx_mail_ssl_handshake_handler(ngx_connection_t *c) |
577 | 224 { |
1136 | 225 ngx_mail_session_t *s; |
641 | 226 |
547 | 227 if (c->ssl->handshaked) { |
583 | 228 |
641 | 229 s = c->data; |
230 | |
231 if (s->starttls) { | |
1136 | 232 c->read->handler = ngx_mail_init_protocol; |
233 c->write->handler = ngx_mail_send; | |
583 | 234 |
1136 | 235 ngx_mail_init_protocol(c->read); |
583 | 236 |
237 return; | |
238 } | |
239 | |
1136 | 240 ngx_mail_init_session(c); |
547 | 241 return; |
242 } | |
243 | |
1136 | 244 ngx_mail_close_connection(c); |
547 | 245 } |
246 | |
247 #endif | |
248 | |
249 | |
250 static void | |
1136 | 251 ngx_mail_init_session(ngx_connection_t *c) |
541 | 252 { |
800 | 253 u_char *p; |
1136 | 254 ngx_mail_session_t *s; |
255 ngx_mail_core_srv_conf_t *cscf; | |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
256 |
1136 | 257 c->read->handler = ngx_mail_init_protocol; |
258 c->write->handler = ngx_mail_send; | |
539 | 259 |
641 | 260 s = c->data; |
413
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
261 |
1136 | 262 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); |
539 | 263 |
264 s->protocol = cscf->protocol; | |
265 | |
1136 | 266 s->ctx = ngx_pcalloc(c->pool, sizeof(void *) * ngx_mail_max_module); |
539 | 267 if (s->ctx == NULL) { |
1136 | 268 ngx_mail_session_internal_server_error(s); |
539 | 269 return; |
270 } | |
271 | |
1136 | 272 if (s->protocol == NGX_MAIL_SMTP_PROTOCOL) { |
273 s->out = cscf->smtp_greeting; | |
274 | |
275 } else { | |
276 s->out = greetings[s->protocol]; | |
277 } | |
539 | 278 |
1136 | 279 if ((s->protocol == NGX_MAIL_POP3_PROTOCOL |
280 && (cscf->pop3_auth_methods | |
281 & (NGX_MAIL_AUTH_APOP_ENABLED|NGX_MAIL_AUTH_CRAM_MD5_ENABLED))) | |
282 | |
283 || (s->protocol == NGX_MAIL_SMTP_PROTOCOL | |
284 && (cscf->smtp_auth_methods & NGX_MAIL_AUTH_CRAM_MD5_ENABLED))) | |
800 | 285 { |
286 s->salt.data = ngx_palloc(c->pool, | |
287 sizeof(" <18446744073709551616.@>" CRLF) - 1 | |
288 + NGX_TIME_T_LEN | |
289 + cscf->server_name.len); | |
290 if (s->salt.data == NULL) { | |
1136 | 291 ngx_mail_session_internal_server_error(s); |
800 | 292 return; |
293 } | |
294 | |
295 s->salt.len = ngx_sprintf(s->salt.data, "<%ul.%T@%V>" CRLF, | |
296 ngx_random(), ngx_time(), &cscf->server_name) | |
297 - s->salt.data; | |
298 | |
1136 | 299 if (s->protocol == NGX_MAIL_POP3_PROTOCOL) { |
1166 | 300 s->out.data = ngx_palloc(c->pool, |
1136 | 301 greetings[0].len + 1 + s->salt.len); |
1166 | 302 if (s->out.data == NULL) { |
303 ngx_mail_session_internal_server_error(s); | |
304 return; | |
305 } | |
800 | 306 |
1166 | 307 p = ngx_cpymem(s->out.data, |
1136 | 308 greetings[0].data, greetings[0].len - 2); |
1166 | 309 *p++ = ' '; |
310 p = ngx_cpymem(p, s->salt.data, s->salt.len); | |
800 | 311 |
1166 | 312 s->out.len = p - s->out.data; |
1136 | 313 } |
800 | 314 } |
315 | |
547 | 316 ngx_add_timer(c->read, cscf->timeout); |
419
47709bff4468
nginx-0.0.10-2004-09-09-19:40:48 import
Igor Sysoev <igor@sysoev.ru>
parents:
418
diff
changeset
|
317 |
547 | 318 if (ngx_handle_read_event(c->read, 0) == NGX_ERROR) { |
1136 | 319 ngx_mail_close_connection(c); |
413
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
320 } |
539 | 321 |
1136 | 322 ngx_mail_send(c->write); |
539 | 323 } |
324 | |
325 | |
326 void | |
1136 | 327 ngx_mail_send(ngx_event_t *wev) |
539 | 328 { |
541 | 329 ngx_int_t n; |
330 ngx_connection_t *c; | |
1136 | 331 ngx_mail_session_t *s; |
332 ngx_mail_core_srv_conf_t *cscf; | |
539 | 333 |
334 c = wev->data; | |
335 s = c->data; | |
336 | |
337 if (wev->timedout) { | |
338 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, "client timed out"); | |
577 | 339 c->timedout = 1; |
1136 | 340 ngx_mail_close_connection(c); |
539 | 341 return; |
342 } | |
343 | |
344 if (s->out.len == 0) { | |
345 if (ngx_handle_write_event(c->write, 0) == NGX_ERROR) { | |
1136 | 346 ngx_mail_close_connection(c); |
539 | 347 } |
348 | |
349 return; | |
350 } | |
351 | |
352 n = c->send(c, s->out.data, s->out.len); | |
353 | |
354 if (n > 0) { | |
355 s->out.len -= n; | |
356 | |
541 | 357 if (wev->timer_set) { |
358 ngx_del_timer(wev); | |
359 } | |
360 | |
539 | 361 if (s->quit) { |
1136 | 362 ngx_mail_close_connection(c); |
539 | 363 return; |
364 } | |
365 | |
366 if (s->blocked) { | |
367 c->read->handler(c->read); | |
368 } | |
369 | |
370 return; | |
371 } | |
372 | |
373 if (n == NGX_ERROR) { | |
1136 | 374 ngx_mail_close_connection(c); |
539 | 375 return; |
376 } | |
377 | |
378 /* n == NGX_AGAIN */ | |
379 | |
1136 | 380 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); |
541 | 381 |
382 ngx_add_timer(c->write, cscf->timeout); | |
383 | |
539 | 384 if (ngx_handle_write_event(c->write, 0) == NGX_ERROR) { |
1136 | 385 ngx_mail_close_connection(c); |
539 | 386 return; |
387 } | |
413
de9d4726e28a
nginx-0.0.10-2004-08-31-23:05:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
diff
changeset
|
388 } |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
389 |
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
390 |
521 | 391 static void |
1136 | 392 ngx_mail_init_protocol(ngx_event_t *rev) |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
393 { |
521 | 394 size_t size; |
395 ngx_connection_t *c; | |
1136 | 396 ngx_mail_session_t *s; |
397 ngx_mail_core_srv_conf_t *cscf; | |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
398 |
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
399 c = rev->data; |
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
400 |
541 | 401 c->log->action = "in auth state"; |
402 | |
423
fda5987b188d
nginx-0.0.10-2004-09-13-20:18:09 import
Igor Sysoev <igor@sysoev.ru>
parents:
422
diff
changeset
|
403 if (rev->timedout) { |
fda5987b188d
nginx-0.0.10-2004-09-13-20:18:09 import
Igor Sysoev <igor@sysoev.ru>
parents:
422
diff
changeset
|
404 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, "client timed out"); |
577 | 405 c->timedout = 1; |
1136 | 406 ngx_mail_close_connection(c); |
423
fda5987b188d
nginx-0.0.10-2004-09-13-20:18:09 import
Igor Sysoev <igor@sysoev.ru>
parents:
422
diff
changeset
|
407 return; |
fda5987b188d
nginx-0.0.10-2004-09-13-20:18:09 import
Igor Sysoev <igor@sysoev.ru>
parents:
422
diff
changeset
|
408 } |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
409 |
539 | 410 s = c->data; |
521 | 411 |
1136 | 412 switch (s->protocol) { |
413 | |
414 case NGX_MAIL_POP3_PROTOCOL: | |
521 | 415 size = 128; |
1136 | 416 s->mail_state = ngx_pop3_start; |
521 | 417 c->read->handler = ngx_pop3_auth_state; |
1136 | 418 break; |
521 | 419 |
1136 | 420 case NGX_MAIL_IMAP_PROTOCOL: |
421 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); | |
521 | 422 size = cscf->imap_client_buffer_size; |
1136 | 423 s->mail_state = ngx_imap_start; |
521 | 424 c->read->handler = ngx_imap_auth_state; |
1136 | 425 break; |
426 | |
427 default: /* NGX_MAIL_SMTP_PROTOCOL */ | |
428 size = 512; | |
429 s->mail_state = ngx_smtp_start; | |
430 c->read->handler = ngx_smtp_auth_state; | |
431 break; | |
521 | 432 } |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
433 |
419
47709bff4468
nginx-0.0.10-2004-09-09-19:40:48 import
Igor Sysoev <igor@sysoev.ru>
parents:
418
diff
changeset
|
434 if (s->buffer == NULL) { |
583 | 435 if (ngx_array_init(&s->args, c->pool, 2, sizeof(ngx_str_t)) |
436 == NGX_ERROR) | |
437 { | |
1136 | 438 ngx_mail_session_internal_server_error(s); |
583 | 439 return; |
440 } | |
441 | |
442 s->buffer = ngx_create_temp_buf(c->pool, size); | |
443 if (s->buffer == NULL) { | |
1136 | 444 ngx_mail_session_internal_server_error(s); |
583 | 445 return; |
446 } | |
419
47709bff4468
nginx-0.0.10-2004-09-09-19:40:48 import
Igor Sysoev <igor@sysoev.ru>
parents:
418
diff
changeset
|
447 } |
47709bff4468
nginx-0.0.10-2004-09-09-19:40:48 import
Igor Sysoev <igor@sysoev.ru>
parents:
418
diff
changeset
|
448 |
521 | 449 c->read->handler(rev); |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
450 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
451 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
452 |
527 | 453 void |
1136 | 454 ngx_pop3_auth_state(ngx_event_t *rev) |
521 | 455 { |
1136 | 456 u_char *p, *last, *text; |
457 ssize_t size; | |
527 | 458 ngx_int_t rc; |
1136 | 459 ngx_str_t *arg, salt; |
527 | 460 ngx_connection_t *c; |
1136 | 461 ngx_mail_session_t *s; |
462 ngx_mail_core_srv_conf_t *cscf; | |
463 #if (NGX_MAIL_SSL) | |
464 ngx_mail_ssl_conf_t *sslcf; | |
583 | 465 #endif |
521 | 466 |
467 c = rev->data; | |
527 | 468 s = c->data; |
521 | 469 |
1136 | 470 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, c->log, 0, "pop3 auth state"); |
527 | 471 |
472 if (rev->timedout) { | |
473 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, "client timed out"); | |
577 | 474 c->timedout = 1; |
1136 | 475 ngx_mail_close_connection(c); |
527 | 476 return; |
477 } | |
478 | |
539 | 479 if (s->out.len) { |
1136 | 480 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, c->log, 0, "pop3 send handler busy"); |
539 | 481 s->blocked = 1; |
482 return; | |
483 } | |
484 | |
485 s->blocked = 0; | |
486 | |
1136 | 487 rc = ngx_mail_read_command(s); |
488 | |
489 if (rc == NGX_AGAIN || rc == NGX_ERROR) { | |
490 return; | |
491 } | |
492 | |
493 text = pop3_ok; | |
494 size = sizeof(pop3_ok) - 1; | |
495 | |
496 if (rc == NGX_OK) { | |
497 switch (s->mail_state) { | |
498 | |
499 case ngx_pop3_start: | |
500 | |
501 switch (s->command) { | |
502 | |
503 case NGX_POP3_USER: | |
504 | |
505 #if (NGX_MAIL_SSL) | |
506 | |
507 if (c->ssl == NULL) { | |
508 sslcf = ngx_mail_get_module_srv_conf(s, | |
509 ngx_mail_ssl_module); | |
510 | |
511 if (sslcf->starttls == NGX_MAIL_STARTTLS_ONLY) { | |
512 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
513 break; | |
514 } | |
515 } | |
516 #endif | |
517 | |
518 if (s->args.nelts == 1) { | |
519 s->mail_state = ngx_pop3_user; | |
520 | |
521 arg = s->args.elts; | |
522 s->login.len = arg[0].len; | |
523 s->login.data = ngx_palloc(c->pool, s->login.len); | |
524 if (s->login.data == NULL) { | |
525 ngx_mail_session_internal_server_error(s); | |
526 return; | |
527 } | |
528 | |
529 ngx_memcpy(s->login.data, arg[0].data, s->login.len); | |
530 | |
531 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
532 "pop3 login: \"%V\"", &s->login); | |
533 | |
534 break; | |
535 } | |
536 | |
537 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
538 break; | |
539 | |
540 case NGX_POP3_CAPA: | |
541 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); | |
542 | |
543 #if (NGX_MAIL_SSL) | |
544 | |
545 if (c->ssl == NULL) { | |
546 sslcf = ngx_mail_get_module_srv_conf(s, | |
547 ngx_mail_ssl_module); | |
548 | |
549 if (sslcf->starttls == NGX_MAIL_STARTTLS_ON) { | |
550 size = cscf->pop3_starttls_capability.len; | |
551 text = cscf->pop3_starttls_capability.data; | |
552 break; | |
553 } | |
554 | |
555 if (sslcf->starttls == NGX_MAIL_STARTTLS_ONLY) { | |
556 size = cscf->pop3_starttls_only_capability.len; | |
557 text = cscf->pop3_starttls_only_capability.data; | |
558 break; | |
559 } | |
560 } | |
561 #endif | |
562 | |
563 size = cscf->pop3_capability.len; | |
564 text = cscf->pop3_capability.data; | |
565 break; | |
566 | |
567 case NGX_POP3_APOP: | |
568 | |
569 #if (NGX_MAIL_SSL) | |
570 | |
571 if (c->ssl == NULL) { | |
572 sslcf = ngx_mail_get_module_srv_conf(s, | |
573 ngx_mail_ssl_module); | |
574 | |
575 if (sslcf->starttls == NGX_MAIL_STARTTLS_ONLY) { | |
576 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
577 break; | |
578 } | |
579 } | |
580 #endif | |
581 | |
582 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); | |
583 | |
584 if ((cscf->pop3_auth_methods & NGX_MAIL_AUTH_APOP_ENABLED) | |
585 && s->args.nelts == 2) | |
586 { | |
587 arg = s->args.elts; | |
588 | |
589 s->login.len = arg[0].len; | |
590 s->login.data = ngx_palloc(c->pool, s->login.len); | |
591 if (s->login.data == NULL) { | |
592 ngx_mail_session_internal_server_error(s); | |
593 return; | |
594 } | |
595 | |
596 ngx_memcpy(s->login.data, arg[0].data, s->login.len); | |
597 | |
598 s->passwd.len = arg[1].len; | |
599 s->passwd.data = ngx_palloc(c->pool, s->passwd.len); | |
600 if (s->passwd.data == NULL) { | |
601 ngx_mail_session_internal_server_error(s); | |
602 return; | |
603 } | |
604 | |
605 ngx_memcpy(s->passwd.data, arg[1].data, s->passwd.len); | |
606 | |
607 ngx_log_debug2(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
608 "pop3 apop: \"%V\" \"%V\"", | |
609 &s->login, &s->passwd); | |
610 | |
611 s->auth_method = NGX_MAIL_AUTH_APOP; | |
612 | |
613 ngx_mail_do_auth(s); | |
614 return; | |
615 } | |
616 | |
617 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
618 break; | |
619 | |
620 case NGX_POP3_AUTH: | |
621 | |
622 #if (NGX_MAIL_SSL) | |
623 | |
624 if (c->ssl == NULL) { | |
625 sslcf = ngx_mail_get_module_srv_conf(s, | |
626 ngx_mail_ssl_module); | |
627 | |
628 if (sslcf->starttls == NGX_MAIL_STARTTLS_ONLY) { | |
629 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
630 break; | |
631 } | |
632 } | |
633 #endif | |
634 | |
635 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); | |
636 | |
637 if (s->args.nelts == 0) { | |
638 size = cscf->pop3_auth_capability.len; | |
639 text = cscf->pop3_auth_capability.data; | |
640 s->state = 0; | |
641 break; | |
642 } | |
643 | |
644 arg = s->args.elts; | |
645 | |
646 if (arg[0].len == 5) { | |
647 | |
648 if (ngx_strncasecmp(arg[0].data, (u_char *) "LOGIN", 5) | |
649 == 0) | |
650 { | |
651 | |
652 if (s->args.nelts != 1) { | |
653 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
654 break; | |
655 } | |
656 | |
657 s->mail_state = ngx_pop3_auth_login_username; | |
658 | |
659 size = sizeof(pop3_username) - 1; | |
660 text = pop3_username; | |
661 | |
662 break; | |
663 | |
664 } else if (ngx_strncasecmp(arg[0].data, (u_char *) "PLAIN", | |
665 5) | |
666 == 0) | |
667 { | |
668 | |
669 if (s->args.nelts == 1) { | |
670 s->mail_state = ngx_pop3_auth_plain; | |
671 | |
672 size = sizeof(pop3_next) - 1; | |
673 text = pop3_next; | |
674 | |
675 break; | |
676 } | |
677 | |
678 if (s->args.nelts == 2) { | |
679 | |
680 /* | |
681 * workaround for Eudora for Mac: it sends | |
682 * AUTH PLAIN [base64 encoded] | |
683 */ | |
684 | |
685 rc = ngx_mail_decode_auth_plain(s, &arg[1]); | |
686 | |
687 if (rc == NGX_OK) { | |
688 ngx_mail_do_auth(s); | |
689 return; | |
690 } | |
691 | |
692 if (rc == NGX_ERROR) { | |
693 ngx_mail_session_internal_server_error(s); | |
694 return; | |
695 } | |
696 | |
697 /* rc == NGX_MAIL_PARSE_INVALID_COMMAND */ | |
698 | |
699 break; | |
700 } | |
701 | |
702 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
703 break; | |
704 } | |
705 | |
706 } else if (arg[0].len == 8 | |
707 && ngx_strncasecmp(arg[0].data, | |
708 (u_char *) "CRAM-MD5", 8) | |
709 == 0) | |
710 { | |
1286
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
711 if (!(cscf->pop3_auth_methods |
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
712 & NGX_MAIL_AUTH_CRAM_MD5_ENABLED) |
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
713 || s->args.nelts != 1) |
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
714 { |
1136 | 715 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
716 break; | |
717 } | |
718 | |
719 s->mail_state = ngx_pop3_auth_cram_md5; | |
720 | |
721 text = ngx_palloc(c->pool, | |
722 sizeof("+ " CRLF) - 1 | |
723 + ngx_base64_encoded_length(s->salt.len)); | |
724 if (text == NULL) { | |
725 ngx_mail_session_internal_server_error(s); | |
726 return; | |
727 } | |
728 | |
729 text[0] = '+'; text[1]= ' '; | |
730 salt.data = &text[2]; | |
731 s->salt.len -= 2; | |
732 | |
733 ngx_encode_base64(&salt, &s->salt); | |
734 | |
735 s->salt.len += 2; | |
736 size = 2 + salt.len; | |
737 text[size++] = CR; text[size++] = LF; | |
738 | |
739 break; | |
740 } | |
741 | |
742 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
743 break; | |
744 | |
745 case NGX_POP3_QUIT: | |
746 s->quit = 1; | |
747 break; | |
748 | |
749 case NGX_POP3_NOOP: | |
750 break; | |
751 | |
752 #if (NGX_MAIL_SSL) | |
527 | 753 |
1136 | 754 case NGX_POP3_STLS: |
755 if (c->ssl == NULL) { | |
756 sslcf = ngx_mail_get_module_srv_conf(s, | |
757 ngx_mail_ssl_module); | |
758 if (sslcf->starttls) { | |
759 c->read->handler = ngx_mail_starttls_handler; | |
760 break; | |
761 } | |
762 } | |
763 | |
764 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
765 break; | |
766 #endif | |
767 | |
768 default: | |
769 s->mail_state = ngx_pop3_start; | |
770 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
771 break; | |
772 } | |
773 | |
774 break; | |
775 | |
776 case ngx_pop3_user: | |
777 | |
778 switch (s->command) { | |
779 | |
780 case NGX_POP3_PASS: | |
781 if (s->args.nelts == 1) { | |
782 arg = s->args.elts; | |
783 s->passwd.len = arg[0].len; | |
784 s->passwd.data = ngx_palloc(c->pool, s->passwd.len); | |
785 if (s->passwd.data == NULL) { | |
786 ngx_mail_session_internal_server_error(s); | |
787 return; | |
788 } | |
789 | |
790 ngx_memcpy(s->passwd.data, arg[0].data, s->passwd.len); | |
791 | |
792 #if (NGX_DEBUG_MAIL_PASSWD) | |
793 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
794 "pop3 passwd: \"%V\"", &s->passwd); | |
795 #endif | |
796 | |
797 ngx_mail_do_auth(s); | |
798 return; | |
799 } | |
800 | |
801 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
802 break; | |
803 | |
804 case NGX_POP3_CAPA: | |
805 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); | |
806 size = cscf->pop3_capability.len; | |
807 text = cscf->pop3_capability.data; | |
808 break; | |
809 | |
810 case NGX_POP3_QUIT: | |
811 s->quit = 1; | |
812 break; | |
813 | |
814 case NGX_POP3_NOOP: | |
815 break; | |
816 | |
817 default: | |
818 s->mail_state = ngx_pop3_start; | |
819 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
820 break; | |
821 } | |
822 | |
823 break; | |
824 | |
825 /* suppress warinings */ | |
826 case ngx_pop3_passwd: | |
827 break; | |
828 | |
829 case ngx_pop3_auth_login_username: | |
830 arg = s->args.elts; | |
831 s->mail_state = ngx_pop3_auth_login_password; | |
832 | |
833 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
834 "pop3 auth login username: \"%V\"", &arg[0]); | |
835 | |
836 s->login.data = ngx_palloc(c->pool, | |
837 ngx_base64_decoded_length(arg[0].len)); | |
838 if (s->login.data == NULL){ | |
839 ngx_mail_session_internal_server_error(s); | |
840 return; | |
841 } | |
842 | |
843 if (ngx_decode_base64(&s->login, &arg[0]) != NGX_OK) { | |
844 ngx_log_error(NGX_LOG_INFO, c->log, 0, | |
845 "client sent invalid base64 encoding " | |
846 "in AUTH LOGIN command"); | |
847 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
848 break; | |
849 } | |
850 | |
851 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
852 "pop3 auth login username: \"%V\"", &s->login); | |
853 | |
854 size = sizeof(pop3_password) - 1; | |
855 text = pop3_password; | |
856 | |
857 break; | |
858 | |
859 case ngx_pop3_auth_login_password: | |
860 arg = s->args.elts; | |
861 | |
862 #if (NGX_DEBUG_MAIL_PASSWD) | |
863 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
864 "pop3 auth login password: \"%V\"", &arg[0]); | |
865 #endif | |
866 | |
867 s->passwd.data = ngx_palloc(c->pool, | |
868 ngx_base64_decoded_length(arg[0].len)); | |
869 if (s->passwd.data == NULL){ | |
870 ngx_mail_session_internal_server_error(s); | |
871 return; | |
872 } | |
873 | |
874 if (ngx_decode_base64(&s->passwd, &arg[0]) != NGX_OK) { | |
875 ngx_log_error(NGX_LOG_INFO, c->log, 0, | |
876 "client sent invalid base64 encoding " | |
877 "in AUTH LOGIN command"); | |
878 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
879 break; | |
880 } | |
881 | |
882 #if (NGX_DEBUG_MAIL_PASSWD) | |
883 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
884 "pop3 auth login password: \"%V\"", &s->passwd); | |
885 #endif | |
886 | |
887 ngx_mail_do_auth(s); | |
888 return; | |
889 | |
890 case ngx_pop3_auth_plain: | |
891 arg = s->args.elts; | |
892 | |
893 rc = ngx_mail_decode_auth_plain(s, &arg[0]); | |
894 | |
895 if (rc == NGX_OK) { | |
896 ngx_mail_do_auth(s); | |
897 return; | |
898 } | |
899 | |
900 if (rc == NGX_ERROR) { | |
901 ngx_mail_session_internal_server_error(s); | |
902 return; | |
903 } | |
904 | |
905 /* rc == NGX_MAIL_PARSE_INVALID_COMMAND */ | |
906 | |
907 break; | |
908 | |
909 case ngx_pop3_auth_cram_md5: | |
910 arg = s->args.elts; | |
911 | |
912 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
913 "pop3 auth cram-md5: \"%V\"", &arg[0]); | |
914 | |
915 s->login.data = ngx_palloc(c->pool, | |
916 ngx_base64_decoded_length(arg[0].len)); | |
917 if (s->login.data == NULL){ | |
918 ngx_mail_session_internal_server_error(s); | |
919 return; | |
920 } | |
921 | |
922 if (ngx_decode_base64(&s->login, &arg[0]) != NGX_OK) { | |
923 ngx_log_error(NGX_LOG_INFO, c->log, 0, | |
924 "client sent invalid base64 encoding " | |
925 "in AUTH CRAM-MD5 command"); | |
926 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
927 break; | |
928 } | |
929 | |
930 p = s->login.data; | |
931 last = p + s->login.len; | |
932 | |
933 while (p < last) { | |
934 if (*p++ == ' ') { | |
935 s->login.len = p - s->login.data - 1; | |
936 s->passwd.len = last - p; | |
937 s->passwd.data = p; | |
938 break; | |
939 } | |
940 } | |
941 | |
942 if (s->passwd.len != 32) { | |
943 ngx_log_error(NGX_LOG_INFO, c->log, 0, | |
944 "client sent invalid CRAM-MD5 hash " | |
945 "in AUTH CRAM-MD5 command"); | |
946 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
947 break; | |
948 } | |
949 | |
950 ngx_log_debug2(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
951 "pop3 auth cram-md5: \"%V\" \"%V\"", | |
952 &s->login, &s->passwd); | |
953 | |
954 s->auth_method = NGX_MAIL_AUTH_CRAM_MD5; | |
955 | |
956 ngx_mail_do_auth(s); | |
957 return; | |
958 } | |
959 } | |
960 | |
961 if (rc == NGX_MAIL_PARSE_INVALID_COMMAND) { | |
962 s->mail_state = ngx_pop3_start; | |
963 s->state = 0; | |
964 text = pop3_invalid_command; | |
965 size = sizeof(pop3_invalid_command) - 1; | |
966 } | |
967 | |
968 s->args.nelts = 0; | |
969 s->buffer->pos = s->buffer->start; | |
970 s->buffer->last = s->buffer->start; | |
971 | |
972 if (s->state) { | |
973 s->arg_start = s->buffer->start; | |
974 } | |
975 | |
976 s->out.data = text; | |
977 s->out.len = size; | |
978 | |
979 ngx_mail_send(c->write); | |
980 } | |
981 | |
982 | |
983 void | |
984 ngx_imap_auth_state(ngx_event_t *rev) | |
985 { | |
986 u_char *p, *last, *text, *dst, *src, *end; | |
987 ssize_t text_len, last_len; | |
988 ngx_str_t *arg; | |
989 ngx_int_t rc; | |
990 ngx_uint_t tag, i; | |
991 ngx_connection_t *c; | |
992 ngx_mail_session_t *s; | |
993 ngx_mail_core_srv_conf_t *cscf; | |
994 #if (NGX_MAIL_SSL) | |
995 ngx_mail_ssl_conf_t *sslcf; | |
996 #endif | |
997 | |
998 c = rev->data; | |
999 s = c->data; | |
1000 | |
1001 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, c->log, 0, "imap auth state"); | |
1002 | |
1003 if (rev->timedout) { | |
1004 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, "client timed out"); | |
1005 c->timedout = 1; | |
1006 ngx_mail_close_connection(c); | |
1007 return; | |
1008 } | |
1009 | |
1010 if (s->out.len) { | |
1011 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, c->log, 0, "imap send handler busy"); | |
1012 s->blocked = 1; | |
1013 return; | |
1014 } | |
1015 | |
1016 s->blocked = 0; | |
1017 | |
1018 rc = ngx_mail_read_command(s); | |
527 | 1019 |
1020 if (rc == NGX_AGAIN || rc == NGX_ERROR) { | |
1021 return; | |
1022 } | |
1023 | |
1024 tag = 1; | |
1025 | |
1026 text = NULL; | |
1027 text_len = 0; | |
1028 | |
1029 last = imap_ok; | |
1030 last_len = sizeof(imap_ok) - 1; | |
1031 | |
1032 if (rc == NGX_OK) { | |
1033 | |
1136 | 1034 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, "imap auth command: %i", |
527 | 1035 s->command); |
1036 | |
543 | 1037 if (s->backslash) { |
1038 | |
1039 arg = s->args.elts; | |
1040 | |
1041 for (i = 0; i < s->args.nelts; i++) { | |
1042 dst = arg[i].data; | |
1043 end = dst + arg[i].len; | |
1044 | |
1045 for (src = dst; src < end; dst++) { | |
1046 *dst = *src; | |
1047 if (*src++ == '\\') { | |
1048 *dst = *src++; | |
1049 } | |
1050 } | |
1051 | |
1052 arg[i].len = dst - arg[i].data; | |
1053 } | |
1054 | |
1055 s->backslash = 0; | |
1056 } | |
1057 | |
527 | 1058 switch (s->command) { |
1059 | |
1060 case NGX_IMAP_LOGIN: | |
583 | 1061 |
1136 | 1062 #if (NGX_MAIL_SSL) |
583 | 1063 |
1064 if (c->ssl == NULL) { | |
1136 | 1065 sslcf = ngx_mail_get_module_srv_conf(s, ngx_mail_ssl_module); |
583 | 1066 |
1136 | 1067 if (sslcf->starttls == NGX_MAIL_STARTTLS_ONLY) { |
1068 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
583 | 1069 break; |
1070 } | |
1071 } | |
1072 #endif | |
1073 | |
569 | 1074 arg = s->args.elts; |
527 | 1075 |
569 | 1076 if (s->args.nelts == 2 && arg[0].len) { |
527 | 1077 |
1078 s->login.len = arg[0].len; | |
1079 s->login.data = ngx_palloc(c->pool, s->login.len); | |
1080 if (s->login.data == NULL) { | |
1136 | 1081 ngx_mail_session_internal_server_error(s); |
527 | 1082 return; |
1083 } | |
1084 | |
1085 ngx_memcpy(s->login.data, arg[0].data, s->login.len); | |
1086 | |
1087 s->passwd.len = arg[1].len; | |
1088 s->passwd.data = ngx_palloc(c->pool, s->passwd.len); | |
1089 if (s->passwd.data == NULL) { | |
1136 | 1090 ngx_mail_session_internal_server_error(s); |
527 | 1091 return; |
1092 } | |
1093 | |
1094 ngx_memcpy(s->passwd.data, arg[1].data, s->passwd.len); | |
1095 | |
1136 | 1096 #if (NGX_DEBUG_MAIL_PASSWD) |
1097 ngx_log_debug2(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
527 | 1098 "imap login:\"%V\" passwd:\"%V\"", |
1099 &s->login, &s->passwd); | |
547 | 1100 #else |
1136 | 1101 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, |
547 | 1102 "imap login:\"%V\"", &s->login); |
1103 #endif | |
527 | 1104 |
1136 | 1105 ngx_mail_do_auth(s); |
527 | 1106 return; |
1107 } | |
1108 | |
1136 | 1109 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
527 | 1110 break; |
1111 | |
1112 case NGX_IMAP_CAPABILITY: | |
1136 | 1113 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); |
583 | 1114 |
1136 | 1115 #if (NGX_MAIL_SSL) |
583 | 1116 |
1117 if (c->ssl == NULL) { | |
1136 | 1118 sslcf = ngx_mail_get_module_srv_conf(s, ngx_mail_ssl_module); |
583 | 1119 |
1136 | 1120 if (sslcf->starttls == NGX_MAIL_STARTTLS_ON) { |
583 | 1121 text_len = cscf->imap_starttls_capability.len; |
1122 text = cscf->imap_starttls_capability.data; | |
1123 break; | |
1124 } | |
1125 | |
1136 | 1126 if (sslcf->starttls == NGX_MAIL_STARTTLS_ONLY) { |
583 | 1127 text_len = cscf->imap_starttls_only_capability.len; |
1128 text = cscf->imap_starttls_only_capability.data; | |
1129 break; | |
1130 } | |
1131 } | |
1132 #endif | |
1133 | |
1134 text_len = cscf->imap_capability.len; | |
1135 text = cscf->imap_capability.data; | |
527 | 1136 break; |
1137 | |
1138 case NGX_IMAP_LOGOUT: | |
539 | 1139 s->quit = 1; |
527 | 1140 text = imap_bye; |
1141 text_len = sizeof(imap_bye) - 1; | |
1142 break; | |
1143 | |
1144 case NGX_IMAP_NOOP: | |
1145 break; | |
1146 | |
1136 | 1147 #if (NGX_MAIL_SSL) |
583 | 1148 |
1149 case NGX_IMAP_STARTTLS: | |
1150 if (c->ssl == NULL) { | |
1136 | 1151 sslcf = ngx_mail_get_module_srv_conf(s, ngx_mail_ssl_module); |
583 | 1152 if (sslcf->starttls) { |
1136 | 1153 c->read->handler = ngx_mail_starttls_handler; |
583 | 1154 break; |
1155 } | |
1156 } | |
1157 | |
1136 | 1158 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
583 | 1159 break; |
1160 #endif | |
1161 | |
527 | 1162 default: |
1136 | 1163 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
527 | 1164 break; |
1165 } | |
1166 | |
1167 } else if (rc == NGX_IMAP_NEXT) { | |
1168 last = imap_next; | |
1169 last_len = sizeof(imap_next) - 1; | |
1170 tag = 0; | |
1171 } | |
1172 | |
1136 | 1173 if (rc == NGX_MAIL_PARSE_INVALID_COMMAND) { |
527 | 1174 last = imap_invalid_command; |
1175 last_len = sizeof(imap_invalid_command) - 1; | |
1176 } | |
1177 | |
1178 if (tag) { | |
543 | 1179 if (s->tag.len == 0) { |
1180 s->tag.len = sizeof(imap_star) - 1; | |
1181 s->tag.data = (u_char *) imap_star; | |
1182 } | |
1183 | |
539 | 1184 if (s->tagged_line.len < s->tag.len + text_len + last_len) { |
1185 s->tagged_line.len = s->tag.len + text_len + last_len; | |
1186 s->tagged_line.data = ngx_palloc(c->pool, s->tagged_line.len); | |
1187 if (s->tagged_line.data == NULL) { | |
1136 | 1188 ngx_mail_close_connection(c); |
527 | 1189 return; |
1190 } | |
1191 } | |
1192 | |
539 | 1193 s->out.data = s->tagged_line.data; |
1194 s->out.len = s->tag.len + text_len + last_len; | |
1195 | |
1196 p = s->out.data; | |
527 | 1197 |
1198 if (text) { | |
1199 p = ngx_cpymem(p, text, text_len); | |
1200 } | |
1201 p = ngx_cpymem(p, s->tag.data, s->tag.len); | |
1202 ngx_memcpy(p, last, last_len); | |
1203 | |
1204 | |
1205 } else { | |
539 | 1206 s->out.data = last; |
1207 s->out.len = last_len; | |
527 | 1208 } |
1209 | |
539 | 1210 if (rc != NGX_IMAP_NEXT) { |
1211 s->args.nelts = 0; | |
1212 s->buffer->pos = s->buffer->start; | |
1213 s->buffer->last = s->buffer->start; | |
1214 s->tag.len = 0; | |
527 | 1215 } |
1216 | |
1136 | 1217 ngx_mail_send(c->write); |
521 | 1218 } |
1219 | |
1220 | |
527 | 1221 void |
1136 | 1222 ngx_smtp_auth_state(ngx_event_t *rev) |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1223 { |
1136 | 1224 u_char *p, *last, *text, ch; |
527 | 1225 ssize_t size; |
1226 ngx_int_t rc; | |
1136 | 1227 ngx_str_t *arg, salt, l; |
1228 ngx_uint_t i; | |
527 | 1229 ngx_connection_t *c; |
1136 | 1230 ngx_mail_session_t *s; |
1231 ngx_mail_core_srv_conf_t *cscf; | |
1322 | 1232 #if (NGX_MAIL_SSL) |
1233 ngx_mail_ssl_conf_t *sslcf; | |
1234 #endif | |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1235 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1236 c = rev->data; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1237 s = c->data; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1238 |
1136 | 1239 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, c->log, 0, "smtp auth state"); |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1240 |
423
fda5987b188d
nginx-0.0.10-2004-09-13-20:18:09 import
Igor Sysoev <igor@sysoev.ru>
parents:
422
diff
changeset
|
1241 if (rev->timedout) { |
fda5987b188d
nginx-0.0.10-2004-09-13-20:18:09 import
Igor Sysoev <igor@sysoev.ru>
parents:
422
diff
changeset
|
1242 ngx_log_error(NGX_LOG_INFO, c->log, NGX_ETIMEDOUT, "client timed out"); |
577 | 1243 c->timedout = 1; |
1136 | 1244 ngx_mail_close_connection(c); |
423
fda5987b188d
nginx-0.0.10-2004-09-13-20:18:09 import
Igor Sysoev <igor@sysoev.ru>
parents:
422
diff
changeset
|
1245 return; |
fda5987b188d
nginx-0.0.10-2004-09-13-20:18:09 import
Igor Sysoev <igor@sysoev.ru>
parents:
422
diff
changeset
|
1246 } |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1247 |
539 | 1248 if (s->out.len) { |
1136 | 1249 ngx_log_debug0(NGX_LOG_DEBUG_MAIL, c->log, 0, "smtp send handler busy"); |
539 | 1250 s->blocked = 1; |
1251 return; | |
1252 } | |
1253 | |
1254 s->blocked = 0; | |
1255 | |
1136 | 1256 rc = ngx_mail_read_command(s); |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1257 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1258 if (rc == NGX_AGAIN || rc == NGX_ERROR) { |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1259 return; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1260 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1261 |
1136 | 1262 text = NULL; |
1263 size = 0; | |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1264 |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1265 if (rc == NGX_OK) { |
1136 | 1266 switch (s->mail_state) { |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1267 |
1136 | 1268 case ngx_smtp_start: |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1269 |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1270 switch (s->command) { |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1271 |
1136 | 1272 case NGX_SMTP_HELO: |
1273 case NGX_SMTP_EHLO: | |
1274 cscf = ngx_mail_get_module_srv_conf(s, ngx_mail_core_module); | |
422
edaefb2a20fc
nginx-0.0.10-2004-09-12-00:22:11 import
Igor Sysoev <igor@sysoev.ru>
parents:
421
diff
changeset
|
1275 |
1136 | 1276 if (s->args.nelts != 1) { |
1277 text = smtp_invalid_argument; | |
1278 size = sizeof(smtp_invalid_argument) - 1; | |
1279 s->state = 0; | |
809 | 1280 break; |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1281 } |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1282 |
1136 | 1283 arg = s->args.elts; |
583 | 1284 |
1136 | 1285 s->smtp_helo.len = arg[0].len; |
800 | 1286 |
1136 | 1287 s->smtp_helo.data = ngx_palloc(c->pool, arg[0].len); |
1288 if (s->smtp_helo.data == NULL) { | |
1289 ngx_mail_session_internal_server_error(s); | |
800 | 1290 return; |
809 | 1291 } |
800 | 1292 |
1136 | 1293 ngx_memcpy(s->smtp_helo.data, arg[0].data, arg[0].len); |
1294 | |
1295 if (s->command == NGX_SMTP_HELO) { | |
1296 size = cscf->smtp_server_name.len; | |
1297 text = cscf->smtp_server_name.data; | |
1298 | |
1299 } else { | |
1300 s->esmtp = 1; | |
1322 | 1301 |
1302 #if (NGX_MAIL_SSL) | |
1303 | |
1304 if (c->ssl == NULL) { | |
1305 sslcf = ngx_mail_get_module_srv_conf(s, ngx_mail_ssl_module); | |
1306 | |
1307 if (sslcf->starttls == NGX_MAIL_STARTTLS_ON) { | |
1308 size = cscf->smtp_starttls_capability.len; | |
1309 text = cscf->smtp_starttls_capability.data; | |
1310 break; | |
1311 } | |
1312 | |
1313 if (sslcf->starttls == NGX_MAIL_STARTTLS_ONLY) { | |
1314 size = cscf->smtp_starttls_only_capability.len; | |
1315 text = cscf->smtp_starttls_only_capability.data; | |
1316 break; | |
1317 } | |
1318 } | |
1319 #endif | |
1320 | |
1136 | 1321 size = cscf->smtp_capability.len; |
1322 text = cscf->smtp_capability.data; | |
1323 } | |
1324 | |
809 | 1325 break; |
1326 | |
1136 | 1327 case NGX_SMTP_AUTH: |
809 | 1328 |
1322 | 1329 #if (NGX_MAIL_SSL) |
1330 | |
1331 if (c->ssl == NULL) { | |
1332 sslcf = ngx_mail_get_module_srv_conf(s, ngx_mail_ssl_module); | |
1333 | |
1334 if (sslcf->starttls == NGX_MAIL_STARTTLS_ONLY) { | |
1335 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
1336 break; | |
1337 } | |
1338 } | |
1339 #endif | |
1340 | |
809 | 1341 if (s->args.nelts == 0) { |
1136 | 1342 text = smtp_invalid_argument; |
1343 size = sizeof(smtp_invalid_argument) - 1; | |
810 | 1344 s->state = 0; |
809 | 1345 break; |
1346 } | |
1347 | |
1348 arg = s->args.elts; | |
1349 | |
1350 if (arg[0].len == 5) { | |
1351 | |
1107
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1352 if (ngx_strncasecmp(arg[0].data, (u_char *) "LOGIN", 5) |
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1353 == 0) |
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1354 { |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1355 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1356 if (s->args.nelts != 1) { |
1136 | 1357 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1358 break; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1359 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1360 |
1136 | 1361 s->mail_state = ngx_smtp_auth_login_username; |
809 | 1362 |
1136 | 1363 size = sizeof(smtp_username) - 1; |
1364 text = smtp_username; | |
809 | 1365 |
1366 break; | |
1367 | |
1107
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1368 } else if (ngx_strncasecmp(arg[0].data, (u_char *) "PLAIN", |
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1369 5) |
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1370 == 0) |
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1371 { |
1136 | 1372 if (s->args.nelts == 1) { |
1373 s->mail_state = ngx_smtp_auth_plain; | |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1374 |
1136 | 1375 size = sizeof(smtp_next) - 1; |
1376 text = smtp_next; | |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1377 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1378 break; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1379 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1380 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1381 if (s->args.nelts == 2) { |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1382 |
1136 | 1383 rc = ngx_mail_decode_auth_plain(s, &arg[1]); |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1384 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1385 if (rc == NGX_OK) { |
1136 | 1386 ngx_mail_do_auth(s); |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1387 return; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1388 } |
809 | 1389 |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1390 if (rc == NGX_ERROR) { |
1136 | 1391 ngx_mail_session_internal_server_error(s); |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1392 return; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1393 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1394 |
1136 | 1395 /* rc == NGX_MAIL_PARSE_INVALID_COMMAND */ |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1396 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1397 break; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1398 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1399 |
1136 | 1400 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
809 | 1401 break; |
1402 } | |
1403 | |
1404 } else if (arg[0].len == 8 | |
1107
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1405 && ngx_strncasecmp(arg[0].data, |
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1406 (u_char *) "CRAM-MD5", 8) |
db7c468c447d
ngx_strcasecmp()/ngx_strncasecmp()
Igor Sysoev <igor@sysoev.ru>
parents:
1025
diff
changeset
|
1407 == 0) |
809 | 1408 { |
1286
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
1409 cscf = ngx_mail_get_module_srv_conf(s, |
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
1410 ngx_mail_core_module); |
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
1411 |
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
1412 if (!(cscf->smtp_auth_methods |
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
1413 & NGX_MAIL_AUTH_CRAM_MD5_ENABLED) |
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
1414 || s->args.nelts != 1) |
a9c361479430
fix segfault when CRAM-MD5 is not enabled but client tries it
Igor Sysoev <igor@sysoev.ru>
parents:
1166
diff
changeset
|
1415 { |
1136 | 1416 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
1417 break; | |
1418 } | |
1419 | |
1420 s->mail_state = ngx_smtp_auth_cram_md5; | |
809 | 1421 |
1422 text = ngx_palloc(c->pool, | |
1136 | 1423 sizeof("334 " CRLF) - 1 |
1424 + ngx_base64_encoded_length(s->salt.len)); | |
809 | 1425 if (text == NULL) { |
1136 | 1426 ngx_mail_session_internal_server_error(s); |
809 | 1427 return; |
1428 } | |
1429 | |
1136 | 1430 text[0] = '3'; text[1]= '3'; text[2] = '4'; text[3]= ' '; |
1431 salt.data = &text[4]; | |
809 | 1432 s->salt.len -= 2; |
1433 | |
1434 ngx_encode_base64(&salt, &s->salt); | |
1435 | |
1436 s->salt.len += 2; | |
1136 | 1437 size = 4 + salt.len; |
809 | 1438 text[size++] = CR; text[size++] = LF; |
1439 | |
1440 break; | |
1441 } | |
1442 | |
1136 | 1443 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
800 | 1444 break; |
1445 | |
1136 | 1446 case NGX_SMTP_QUIT: |
539 | 1447 s->quit = 1; |
1136 | 1448 text = smtp_bye; |
1449 size = sizeof(smtp_bye) - 1; | |
527 | 1450 break; |
1451 | |
1136 | 1452 case NGX_SMTP_MAIL: |
1453 | |
1454 if (s->connection->log->log_level >= NGX_LOG_INFO) { | |
1166 | 1455 l.len = s->buffer->last - s->buffer->start; |
1456 l.data = s->buffer->start; | |
1136 | 1457 |
1166 | 1458 for (i = 0; i < l.len; i++) { |
1459 ch = l.data[i]; | |
1136 | 1460 |
1166 | 1461 if (ch != CR && ch != LF) { |
1462 continue; | |
1463 } | |
583 | 1464 |
1166 | 1465 l.data[i] = ' '; |
1466 } | |
1136 | 1467 |
1166 | 1468 while (i) { |
1469 if (l.data[i - 1] != ' ') { | |
1470 break; | |
1471 } | |
1136 | 1472 |
1166 | 1473 i--; |
1474 } | |
1136 | 1475 |
1166 | 1476 l.len = i; |
1136 | 1477 |
1166 | 1478 ngx_log_error(NGX_LOG_INFO, s->connection->log, 0, |
1479 "client was rejected: \"%V\"", &l); | |
583 | 1480 } |
1481 | |
1136 | 1482 text = smtp_auth_required; |
1483 size = sizeof(smtp_auth_required) - 1; | |
583 | 1484 break; |
1485 | |
1136 | 1486 case NGX_SMTP_NOOP: |
1487 case NGX_SMTP_RSET: | |
1488 text = smtp_ok; | |
1489 size = sizeof(smtp_ok) - 1; | |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1490 break; |
1322 | 1491 |
1492 #if (NGX_MAIL_SSL) | |
1493 | |
1494 case NGX_SMTP_STARTTLS: | |
1495 if (c->ssl == NULL) { | |
1496 sslcf = ngx_mail_get_module_srv_conf(s, | |
1497 ngx_mail_ssl_module); | |
1498 if (sslcf->starttls) { | |
1499 c->read->handler = ngx_mail_starttls_handler; | |
1500 | |
1501 /* | |
1502 * RFC3207 requires us to discard any knowledge | |
1503 * obtained from client before STARTTLS. | |
1504 */ | |
1505 | |
1506 s->smtp_helo.len = 0; | |
1507 s->smtp_helo.data = NULL; | |
1508 | |
1509 text = smtp_ok; | |
1510 size = sizeof(smtp_ok) - 1; | |
1511 | |
1512 break; | |
1513 } | |
1514 } | |
1515 | |
1516 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
1517 break; | |
1518 #endif | |
1519 | |
1520 default: | |
1521 rc = NGX_MAIL_PARSE_INVALID_COMMAND; | |
1522 break; | |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1523 } |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1524 |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1525 break; |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1526 |
1136 | 1527 case ngx_smtp_auth_login_username: |
1528 arg = s->args.elts; | |
1529 s->mail_state = ngx_smtp_auth_login_password; | |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1530 |
1136 | 1531 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, |
1532 "smtp auth login username: \"%V\"", &arg[0]); | |
809 | 1533 |
1534 s->login.data = ngx_palloc(c->pool, | |
1535 ngx_base64_decoded_length(arg[0].len)); | |
1536 if (s->login.data == NULL){ | |
1136 | 1537 ngx_mail_session_internal_server_error(s); |
809 | 1538 return; |
1539 } | |
1540 | |
1541 if (ngx_decode_base64(&s->login, &arg[0]) != NGX_OK) { | |
1542 ngx_log_error(NGX_LOG_INFO, c->log, 0, | |
1543 "client sent invalid base64 encoding " | |
1544 "in AUTH LOGIN command"); | |
1136 | 1545 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
810 | 1546 break; |
809 | 1547 } |
1548 | |
1136 | 1549 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, |
1550 "smtp auth login username: \"%V\"", &s->login); | |
809 | 1551 |
1136 | 1552 size = sizeof(smtp_password) - 1; |
1553 text = smtp_password; | |
809 | 1554 |
1555 break; | |
1556 | |
1136 | 1557 case ngx_smtp_auth_login_password: |
809 | 1558 arg = s->args.elts; |
1559 | |
1136 | 1560 #if (NGX_DEBUG_MAIL_PASSWD) |
1561 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
1562 "smtp auth login password: \"%V\"", &arg[0]); | |
809 | 1563 #endif |
1564 | |
1565 s->passwd.data = ngx_palloc(c->pool, | |
1566 ngx_base64_decoded_length(arg[0].len)); | |
1567 if (s->passwd.data == NULL){ | |
1136 | 1568 ngx_mail_session_internal_server_error(s); |
809 | 1569 return; |
1570 } | |
1571 | |
1572 if (ngx_decode_base64(&s->passwd, &arg[0]) != NGX_OK) { | |
1573 ngx_log_error(NGX_LOG_INFO, c->log, 0, | |
1574 "client sent invalid base64 encoding " | |
1575 "in AUTH LOGIN command"); | |
1136 | 1576 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
810 | 1577 break; |
809 | 1578 } |
1579 | |
1136 | 1580 #if (NGX_DEBUG_MAIL_PASSWD) |
1581 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, | |
1582 "smtp auth login password: \"%V\"", &s->passwd); | |
809 | 1583 #endif |
1584 | |
1136 | 1585 ngx_mail_do_auth(s); |
809 | 1586 return; |
1587 | |
1136 | 1588 case ngx_smtp_auth_plain: |
809 | 1589 arg = s->args.elts; |
1590 | |
1136 | 1591 rc = ngx_mail_decode_auth_plain(s, &arg[0]); |
809 | 1592 |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1593 if (rc == NGX_OK) { |
1136 | 1594 ngx_mail_do_auth(s); |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1595 return; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1596 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1597 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1598 if (rc == NGX_ERROR) { |
1136 | 1599 ngx_mail_session_internal_server_error(s); |
809 | 1600 return; |
1601 } | |
1602 | |
1136 | 1603 /* rc == NGX_MAIL_PARSE_INVALID_COMMAND */ |
809 | 1604 |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1605 break; |
809 | 1606 |
1136 | 1607 case ngx_smtp_auth_cram_md5: |
809 | 1608 arg = s->args.elts; |
1609 | |
1136 | 1610 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, |
1611 "smtp auth cram-md5: \"%V\"", &arg[0]); | |
809 | 1612 |
1613 s->login.data = ngx_palloc(c->pool, | |
1614 ngx_base64_decoded_length(arg[0].len)); | |
1615 if (s->login.data == NULL){ | |
1136 | 1616 ngx_mail_session_internal_server_error(s); |
809 | 1617 return; |
1618 } | |
1619 | |
1620 if (ngx_decode_base64(&s->login, &arg[0]) != NGX_OK) { | |
1621 ngx_log_error(NGX_LOG_INFO, c->log, 0, | |
1622 "client sent invalid base64 encoding " | |
810 | 1623 "in AUTH CRAM-MD5 command"); |
1136 | 1624 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
810 | 1625 break; |
809 | 1626 } |
1627 | |
1628 p = s->login.data; | |
1629 last = p + s->login.len; | |
1630 | |
1631 while (p < last) { | |
1632 if (*p++ == ' ') { | |
1633 s->login.len = p - s->login.data - 1; | |
1634 s->passwd.len = last - p; | |
1635 s->passwd.data = p; | |
1636 break; | |
1637 } | |
1638 } | |
1639 | |
810 | 1640 if (s->passwd.len != 32) { |
1641 ngx_log_error(NGX_LOG_INFO, c->log, 0, | |
1642 "client sent invalid CRAM-MD5 hash " | |
1643 "in AUTH CRAM-MD5 command"); | |
1136 | 1644 rc = NGX_MAIL_PARSE_INVALID_COMMAND; |
810 | 1645 break; |
1646 } | |
1647 | |
1136 | 1648 ngx_log_debug2(NGX_LOG_DEBUG_MAIL, c->log, 0, |
1649 "smtp auth cram-md5: \"%V\" \"%V\"", | |
809 | 1650 &s->login, &s->passwd); |
1651 | |
1136 | 1652 s->auth_method = NGX_MAIL_AUTH_CRAM_MD5; |
809 | 1653 |
1136 | 1654 ngx_mail_do_auth(s); |
809 | 1655 return; |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1656 } |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1657 } |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1658 |
1136 | 1659 if (rc == NGX_MAIL_PARSE_INVALID_COMMAND) { |
1660 s->mail_state = ngx_smtp_start; | |
810 | 1661 s->state = 0; |
1136 | 1662 text = smtp_invalid_command; |
1663 size = sizeof(smtp_invalid_command) - 1; | |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1664 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1665 |
421
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1666 s->args.nelts = 0; |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1667 s->buffer->pos = s->buffer->start; |
01456a419cf9
nginx-0.0.10-2004-09-10-18:32:02 import
Igor Sysoev <igor@sysoev.ru>
parents:
420
diff
changeset
|
1668 s->buffer->last = s->buffer->start; |
539 | 1669 |
810 | 1670 if (s->state) { |
1671 s->arg_start = s->buffer->start; | |
1672 } | |
1673 | |
539 | 1674 s->out.data = text; |
1675 s->out.len = size; | |
1676 | |
1136 | 1677 ngx_mail_send(c->write); |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
1678 } |
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
1679 |
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
1680 |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1681 static ngx_int_t |
1136 | 1682 ngx_mail_decode_auth_plain(ngx_mail_session_t *s, ngx_str_t *encoded) |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1683 { |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1684 u_char *p, *last; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1685 ngx_str_t plain; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1686 |
1136 | 1687 #if (NGX_DEBUG_MAIL_PASSWD) |
1688 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, s->connection->log, 0, | |
1689 "mail auth plain: \"%V\"", encoded); | |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1690 #endif |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1691 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1692 plain.data = ngx_palloc(s->connection->pool, |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1693 ngx_base64_decoded_length(encoded->len)); |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1694 if (plain.data == NULL){ |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1695 return NGX_ERROR; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1696 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1697 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1698 if (ngx_decode_base64(&plain, encoded) != NGX_OK) { |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1699 ngx_log_error(NGX_LOG_INFO, s->connection->log, 0, |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1700 "client sent invalid base64 encoding " |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1701 "in AUTH PLAIN command"); |
1136 | 1702 return NGX_MAIL_PARSE_INVALID_COMMAND; |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1703 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1704 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1705 p = plain.data; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1706 last = p + plain.len; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1707 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1708 while (p < last && *p++) { /* void */ } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1709 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1710 if (p == last) { |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1711 ngx_log_error(NGX_LOG_INFO, s->connection->log, 0, |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1712 "client sent invalid login in AUTH PLAIN command"); |
1136 | 1713 return NGX_MAIL_PARSE_INVALID_COMMAND; |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1714 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1715 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1716 s->login.data = p; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1717 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1718 while (p < last && *p) { p++; } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1719 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1720 if (p == last) { |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1721 ngx_log_error(NGX_LOG_INFO, s->connection->log, 0, |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1722 "client sent invalid password in AUTH PLAIN command"); |
1136 | 1723 return NGX_MAIL_PARSE_INVALID_COMMAND; |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1724 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1725 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1726 s->login.len = p++ - s->login.data; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1727 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1728 s->passwd.len = last - p; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1729 s->passwd.data = p; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1730 |
1136 | 1731 #if (NGX_DEBUG_MAIL_PASSWD) |
1732 ngx_log_debug2(NGX_LOG_DEBUG_MAIL, s->connection->log, 0, | |
1733 "mail auth plain: \"%V\" \"%V\"", | |
894
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1734 &s->login, &s->passwd); |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1735 #endif |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1736 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1737 return NGX_OK; |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1738 } |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1739 |
4f7dca9c37f0
workaround for Eudora for Mac: it sends
Igor Sysoev <igor@sysoev.ru>
parents:
884
diff
changeset
|
1740 |
855
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1741 static void |
1136 | 1742 ngx_mail_do_auth(ngx_mail_session_t *s) |
855
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1743 { |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1744 s->args.nelts = 0; |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1745 s->buffer->pos = s->buffer->start; |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1746 s->buffer->last = s->buffer->start; |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1747 s->state = 0; |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1748 |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1749 if (s->connection->read->timer_set) { |
1025 | 1750 ngx_del_timer(s->connection->read); |
855
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1751 } |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1752 |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1753 s->login_attempt++; |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1754 |
1136 | 1755 ngx_mail_auth_http_init(s); |
855
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1756 } |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1757 |
b006f30d6a2f
count s->login_attempt for POP3, minimize code
Igor Sysoev <igor@sysoev.ru>
parents:
851
diff
changeset
|
1758 |
521 | 1759 static ngx_int_t |
1136 | 1760 ngx_mail_read_command(ngx_mail_session_t *s) |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1761 { |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1762 ssize_t n; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1763 ngx_int_t rc; |
1108
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1764 ngx_str_t l; |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1765 |
539 | 1766 n = s->connection->recv(s->connection, s->buffer->last, |
1767 s->buffer->end - s->buffer->last); | |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1768 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1769 if (n == NGX_ERROR || n == 0) { |
1136 | 1770 ngx_mail_close_connection(s->connection); |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1771 return NGX_ERROR; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1772 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1773 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1774 if (n > 0) { |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1775 s->buffer->last += n; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1776 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1777 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1778 if (n == NGX_AGAIN) { |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1779 if (ngx_handle_read_event(s->connection->read, 0) == NGX_ERROR) { |
1136 | 1780 ngx_mail_session_internal_server_error(s); |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1781 return NGX_ERROR; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1782 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1783 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1784 return NGX_AGAIN; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1785 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1786 |
1136 | 1787 switch (s->protocol) { |
1788 case NGX_MAIL_POP3_PROTOCOL: | |
527 | 1789 rc = ngx_pop3_parse_command(s); |
1136 | 1790 break; |
1791 | |
1792 case NGX_MAIL_IMAP_PROTOCOL: | |
527 | 1793 rc = ngx_imap_parse_command(s); |
1136 | 1794 break; |
1795 | |
1796 default: /* NGX_MAIL_SMTP_PROTOCOL */ | |
1797 rc = ngx_smtp_parse_command(s); | |
1798 break; | |
527 | 1799 } |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1800 |
1108
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1801 if (rc == NGX_AGAIN) { |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1802 |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1803 if (s->buffer->last < s->buffer->end) { |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1804 return rc; |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1805 } |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1806 |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1807 l.len = s->buffer->last - s->buffer->start; |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1808 l.data = s->buffer->start; |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1809 |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1810 ngx_log_error(NGX_LOG_INFO, s->connection->log, 0, |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1811 "client sent too long command \"%V\"", &l); |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1812 |
1111
b0fc4af1f196
close connection for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1108
diff
changeset
|
1813 s->quit = 1; |
b0fc4af1f196
close connection for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1108
diff
changeset
|
1814 |
1136 | 1815 return NGX_MAIL_PARSE_INVALID_COMMAND; |
1108
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1816 } |
109e8c7d7cc1
return error for too long commands
Igor Sysoev <igor@sysoev.ru>
parents:
1107
diff
changeset
|
1817 |
1136 | 1818 if (rc == NGX_IMAP_NEXT || rc == NGX_MAIL_PARSE_INVALID_COMMAND) { |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1819 return rc; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1820 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1821 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1822 if (rc == NGX_ERROR) { |
1136 | 1823 ngx_mail_close_connection(s->connection); |
420
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1824 return NGX_ERROR; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1825 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1826 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1827 return NGX_OK; |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1828 } |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1829 |
33a8253115b4
nginx-0.0.10-2004-09-09-22:55:39 import
Igor Sysoev <igor@sysoev.ru>
parents:
419
diff
changeset
|
1830 |
521 | 1831 void |
1136 | 1832 ngx_mail_session_internal_server_error(ngx_mail_session_t *s) |
525 | 1833 { |
539 | 1834 s->out = internal_server_errors[s->protocol]; |
1835 s->quit = 1; | |
525 | 1836 |
1136 | 1837 ngx_mail_send(s->connection->write); |
525 | 1838 } |
1839 | |
1840 | |
1841 void | |
1136 | 1842 ngx_mail_close_connection(ngx_connection_t *c) |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
1843 { |
479 | 1844 ngx_pool_t *pool; |
1845 | |
1136 | 1846 ngx_log_debug1(NGX_LOG_DEBUG_MAIL, c->log, 0, |
1847 "close mail connection: %d", c->fd); | |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
1848 |
1136 | 1849 #if (NGX_MAIL_SSL) |
539 | 1850 |
1851 if (c->ssl) { | |
1852 if (ngx_ssl_shutdown(c) == NGX_AGAIN) { | |
1136 | 1853 c->ssl->handler = ngx_mail_close_connection; |
539 | 1854 return; |
1855 } | |
1856 } | |
1857 | |
1858 #endif | |
1859 | |
583 | 1860 c->destroyed = 1; |
543 | 1861 |
479 | 1862 pool = c->pool; |
1863 | |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
1864 ngx_close_connection(c); |
479 | 1865 |
501 | 1866 ngx_destroy_pool(pool); |
417
0526206251f6
nginx-0.0.10-2004-09-07-19:29:22 import
Igor Sysoev <igor@sysoev.ru>
parents:
415
diff
changeset
|
1867 } |
539 | 1868 |
1869 | |
541 | 1870 static u_char * |
1136 | 1871 ngx_mail_log_error(ngx_log_t *log, u_char *buf, size_t len) |
541 | 1872 { |
567 | 1873 u_char *p; |
1136 | 1874 ngx_mail_session_t *s; |
1875 ngx_mail_log_ctx_t *ctx; | |
541 | 1876 |
1877 if (log->action) { | |
1878 p = ngx_snprintf(buf, len, " while %s", log->action); | |
1879 len -= p - buf; | |
1880 buf = p; | |
1881 } | |
577 | 1882 |
541 | 1883 ctx = log->data; |
1884 | |
1885 p = ngx_snprintf(buf, len, ", client: %V", ctx->client); | |
1886 len -= p - buf; | |
1887 buf = p; | |
1888 | |
1889 s = ctx->session; | |
1890 | |
1891 if (s == NULL) { | |
1892 return p; | |
1893 } | |
1894 | |
641 | 1895 p = ngx_snprintf(buf, len, ", server: %V", s->addr_text); |
541 | 1896 len -= p - buf; |
1897 buf = p; | |
1898 | |
1899 if (s->login.len == 0) { | |
1900 return p; | |
1901 } | |
1902 | |
1903 p = ngx_snprintf(buf, len, ", login: \"%V\"", &s->login); | |
1904 len -= p - buf; | |
1905 buf = p; | |
1906 | |
1907 if (s->proxy == NULL) { | |
1908 return p; | |
1909 } | |
1910 | |
884 | 1911 p = ngx_snprintf(buf, len, ", upstream: %V", s->proxy->upstream.name); |
541 | 1912 |
1913 return p; | |
1914 } |