dovecot-1.3: imap-proxy: Send backend's CAPABILITY if it's diffe...
dovecot at dovecot.org
dovecot at dovecot.org
Wed Apr 22 21:31:35 EEST 2009
details: http://hg.dovecot.org/dovecot-1.3/rev/3dae5834ded3
changeset: 9155:3dae5834ded3
user: Timo Sirainen <tss at iki.fi>
date: Wed Apr 22 14:27:46 2009 -0400
description:
imap-proxy: Send backend's CAPABILITY if it's different from what was sent to client before.
diffstat:
3 files changed, 89 insertions(+), 20 deletions(-)
src/imap-login/client.c | 2
src/imap-login/client.h | 2
src/imap-login/imap-proxy.c | 105 ++++++++++++++++++++++++++++++++++---------
diffs (218 lines):
diff -r 213c2f313bc1 -r 3dae5834ded3 src/imap-login/client.c
--- a/src/imap-login/client.c Wed Apr 22 14:27:33 2009 -0400
+++ b/src/imap-login/client.c Wed Apr 22 14:27:46 2009 -0400
@@ -107,6 +107,7 @@ static const char *get_capability(struct
static int cmd_capability(struct imap_client *client)
{
+ client->capability_command_used = TRUE;
client_send_line(client, t_strconcat(
"* CAPABILITY ", get_capability(client, TRUE), NULL));
client_send_tagline(client, "OK Capability completed.");
@@ -591,6 +592,7 @@ void client_destroy(struct imap_client *
i_free_and_null(client->proxy_user);
i_free_and_null(client->proxy_master_user);
+ i_free_and_null(client->proxy_backend_capability);
if (client->proxy != NULL)
login_proxy_free(&client->proxy);
diff -r 213c2f313bc1 -r 3dae5834ded3 src/imap-login/client.h
--- a/src/imap-login/client.h Wed Apr 22 14:27:33 2009 -0400
+++ b/src/imap-login/client.h Wed Apr 22 14:27:46 2009 -0400
@@ -22,6 +22,7 @@ struct imap_client {
struct login_proxy *proxy;
char *proxy_user, *proxy_master_user, *proxy_password;
+ char *proxy_backend_capability;
unsigned int bad_counter;
@@ -36,6 +37,7 @@ struct imap_client {
unsigned int greeting_sent:1;
unsigned int id_logged:1;
unsigned int auth_initializing:1;
+ unsigned int capability_command_used:1;
};
void client_destroy(struct imap_client *client, const char *reason);
diff -r 213c2f313bc1 -r 3dae5834ded3 src/imap-login/imap-proxy.c
--- a/src/imap-login/imap-proxy.c Wed Apr 22 14:27:33 2009 -0400
+++ b/src/imap-login/imap-proxy.c Wed Apr 22 14:27:46 2009 -0400
@@ -1,6 +1,7 @@
/* Copyright (c) 2004-2009 Dovecot authors, see the included COPYING file */
#include "common.h"
+#include "array.h"
#include "ioloop.h"
#include "istream.h"
#include "ostream.h"
@@ -14,26 +15,35 @@
#include "imap-quote.h"
#include "imap-proxy.h"
+#include <stdlib.h>
+
#define PROXY_FAILURE_MSG \
"NO ["IMAP_RESP_CODE_UNAVAILABLE"] "AUTH_TEMP_FAILED_MSG
-static bool imap_banner_has_capability(const char *line, const char *capability)
-{
- unsigned int capability_len = strlen(capability);
-
- while (strncasecmp(line, capability, capability_len) != 0 ||
- (line[capability_len] != ' ' &&
- line[capability_len] != '\0' &&
- line[capability_len] != ']')) {
- /* skip over the capability */
- while (*line != ' ') {
- if (*line == '\0')
- return FALSE;
- line++;
- }
- line++;
- }
- return TRUE;
+static const char *const *
+capabilities_strip_prelogin(const char *const *capabilities)
+{
+ ARRAY_TYPE(const_string) new_caps_arr;
+ const char **new_caps, *str;
+ unsigned int count;
+
+ t_array_init(&new_caps_arr, 64);
+ for (; *capabilities != NULL; capabilities++) {
+ if (strncasecmp(*capabilities, "AUTH=", 5) == 0 ||
+ strcasecmp(*capabilities, "STARTTLS") == 0 ||
+ strcasecmp(*capabilities, "SASL-IR") == 0 ||
+ strcasecmp(*capabilities, "LOGINDISABLED") == 0 ||
+ strcasecmp(*capabilities, "LOGIN-REFERRALS") == 0)
+ continue;
+
+ str = *capabilities;
+ array_append(&new_caps_arr, &str, 1);
+ }
+ new_caps = array_get_modifiable(&new_caps_arr, &count);
+ qsort(new_caps, count, sizeof(*new_caps), i_strcasecmp_p);
+
+ (void)array_append_space(&new_caps_arr);
+ return array_idx(&new_caps_arr, 0);
}
static void proxy_write_id(struct imap_client *client, string_t *str)
@@ -85,9 +95,51 @@ static void get_plain_auth(struct imap_c
base64_encode(str_data(str), str_len(str), dest);
}
+static bool str_array_icmp(const char *const *arr1, const char *const *arr2)
+{
+ unsigned int i;
+
+ for (i = 0; arr1[i] != NULL; i++) {
+ if (arr2[i] == NULL || strcasecmp(arr1[i], arr2[i]) != 0)
+ return FALSE;
+ }
+ return TRUE;
+}
+
+static void
+client_send_capability_if_needed(struct imap_client *client, string_t *str,
+ const char *capability)
+{
+ const char *const *backend_capabilities;
+ const char *const *proxy_capabilities;
+
+ if (!client->capability_command_used || capability == NULL)
+ return;
+
+ /* reset this so that we don't re-send the CAPABILITY in case server
+ sends it multiple times */
+ client->capability_command_used = FALSE;
+
+ /* client has used CAPABILITY command, so it didn't understand the
+ capabilities in the banner. if backend server has different
+ capabilities than we advertised already, there's a problem.
+ to solve that we'll send the backend's untagged CAPABILITY reply
+ and hope that the client understands it */
+ backend_capabilities =
+ capabilities_strip_prelogin(t_strsplit(capability, " "));
+ proxy_capabilities =
+ capabilities_strip_prelogin(t_strsplit(login_settings->capability_string, " "));
+
+ if (str_array_icmp(backend_capabilities, proxy_capabilities))
+ return;
+
+ str_printfa(str, "* CAPABILITY %s\r\n", capability);
+}
+
static int proxy_input_banner(struct imap_client *client,
struct ostream *output, const char *line)
{
+ const char *const *capabilities = NULL;
string_t *str;
if (strncmp(line, "* OK ", 5) != 0) {
@@ -99,9 +151,12 @@ static int proxy_input_banner(struct ima
str = t_str_new(128);
if (strncmp(line + 5, "[CAPABILITY ", 12) == 0) {
- if (imap_banner_has_capability(line + 5 + 12, "ID"))
+ capabilities = t_strsplit(t_strcut(line + 5 + 12, ']'), " ");
+ if (str_array_icase_find(capabilities, "ID"))
proxy_write_id(client, str);
}
+ if (client->capability_command_used)
+ str_append(str, "C CAPABILITY\r\n");
if (client->proxy_master_user == NULL) {
/* logging in normally - use LOGIN command */
@@ -111,7 +166,8 @@ static int proxy_input_banner(struct ima
imap_quote_append_string(str, client->proxy_password, FALSE);
proxy_free_password(client);
- } else if (imap_banner_has_capability(line + 5, "SASL-IR")) {
+ } else if (capabilities != NULL &&
+ str_array_icase_find(capabilities, "SASL-IR")) {
/* master user login with SASL initial response support */
str_append(str, "L AUTHENTICATE PLAIN ");
get_plain_auth(client, str);
@@ -120,7 +176,6 @@ static int proxy_input_banner(struct ima
/* master user login without SASL initial response */
str_append(str, "L AUTHENTICATE PLAIN");
}
-
str_append(str, "\r\n");
(void)o_stream_send(output, str_data(str), str_len(str));
client->proxy_login_sent = TRUE;
@@ -130,6 +185,7 @@ static int proxy_input_line(struct imap_
static int proxy_input_line(struct imap_client *client,
struct ostream *output, const char *line)
{
+ const char *capability;
string_t *str;
i_assert(!client->destroyed);
@@ -152,7 +208,12 @@ static int proxy_input_line(struct imap_
return 0;
} else if (strncmp(line, "L OK ", 5) == 0) {
/* Login successful. Send this line to client. */
+ capability = client->proxy_backend_capability;
+ if (strncmp(line + 5, "[CAPABILITY ", 12) == 0)
+ capability = t_strcut(line + 5 + 12, ']');
+
str = t_str_new(128);
+ client_send_capability_if_needed(client, str, capability);
str_append(str, client->cmd_tag);
str_append(str, line + 1);
str_append(str, "\r\n");
@@ -235,6 +296,10 @@ static int proxy_input_line(struct imap_
proxy_failed(client, FALSE);
return -1;
+ } else if (strncasecmp(line, "* CAPABILITY ", 13) == 0) {
+ i_free(client->proxy_backend_capability);
+ client->proxy_backend_capability = i_strdup(line + 13);
+ return 0;
} else {
/* probably some untagged reply */
return 0;
More information about the dovecot-cvs
mailing list