All Downloads are FREE. Search and download functionalities are using the official Maven repository.

org.eclipse.angus.mail.pop3.Protocol Maven / Gradle / Ivy

The newest version!
/*
 * Copyright (c) 1997, 2023 Oracle and/or its affiliates. All rights reserved.
 *
 * This program and the accompanying materials are made available under the
 * terms of the Eclipse Public License v. 2.0, which is available at
 * http://www.eclipse.org/legal/epl-2.0.
 *
 * This Source Code may also be made available under the following Secondary
 * Licenses when the conditions for such availability set forth in the
 * Eclipse Public License v. 2.0 are satisfied: GNU General Public License,
 * version 2 with the GNU Classpath Exception, which is available at
 * https://www.gnu.org/software/classpath/license.html.
 *
 * SPDX-License-Identifier: EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0
 */

package org.eclipse.angus.mail.pop3;

import org.eclipse.angus.mail.auth.Ntlm;
import org.eclipse.angus.mail.util.ASCIIUtility;
import org.eclipse.angus.mail.util.BASE64EncoderStream;
import org.eclipse.angus.mail.util.LineInputStream;
import org.eclipse.angus.mail.util.MailLogger;
import org.eclipse.angus.mail.util.PropUtil;
import org.eclipse.angus.mail.util.SharedByteArrayOutputStream;
import org.eclipse.angus.mail.util.SocketFetcher;
import org.eclipse.angus.mail.util.TraceInputStream;
import org.eclipse.angus.mail.util.TraceOutputStream;

import javax.net.ssl.SSLSocket;
import java.io.BufferedReader;
import java.io.BufferedWriter;
import java.io.ByteArrayOutputStream;
import java.io.EOFException;
import java.io.IOException;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.io.InterruptedIOException;
import java.io.OutputStream;
import java.io.OutputStreamWriter;
import java.io.PrintWriter;
import java.net.InetAddress;
import java.net.Socket;
import java.net.SocketException;
import java.net.UnknownHostException;
import java.nio.charset.StandardCharsets;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.util.Base64;
import java.util.HashMap;
import java.util.Locale;
import java.util.Map;
import java.util.Properties;
import java.util.StringTokenizer;
import java.util.logging.Level;

class Response {
    boolean ok = false;        // true if "+OK"
    boolean cont = false;    // true if "+ " continuation line
    String data = null;        // rest of line after "+OK" or "-ERR"
    InputStream bytes = null;    // all the bytes from a multi-line response
}

/**
 * This class provides a POP3 connection and implements
 * the POP3 protocol requests.
 *
 * APOP support courtesy of "chamness".
 *
 * @author Bill Shannon
 */
class Protocol {
    private Socket socket;        // POP3 socket
    private String host;        // host we're connected to
    private Properties props;        // session properties
    private String prefix;        // protocol name prefix, for props
    private BufferedReader input;    // input buf
    private PrintWriter output;        // output buf
    private TraceInputStream traceInput;
    private TraceOutputStream traceOutput;
    private MailLogger logger;
    private MailLogger traceLogger;
    private String apopChallenge = null;
    private Map capabilities = null;
    private boolean pipelining;
    private boolean noauthdebug = true;    // hide auth info in debug output
    private boolean traceSuspended;    // temporarily suspend tracing
    private Map authenticators = new HashMap<>();
    private String defaultAuthenticationMechanisms;    // set in constructor
    private String localHostName;

    private static final int POP3_PORT = 110; // standard POP3 port
    private static final String CRLF = "\r\n";
    // sometimes the returned size isn't quite big enough
    private static final int SLOP = 128;

    /**
     * Open a connection to the POP3 server.
     */
    Protocol(String host, int port, MailLogger logger,
             Properties props, String prefix, boolean isSSL)
            throws IOException {
        this.host = host;
        this.props = props;
        this.prefix = prefix;
        this.logger = logger;
        traceLogger = logger.getSubLogger("protocol", null);
        noauthdebug = !PropUtil.getBooleanProperty(props,
                "mail.debug.auth", false);

        Response r;
        boolean enableAPOP = getBoolProp(props, prefix + ".apop.enable");
        boolean disableCapa = getBoolProp(props, prefix + ".disablecapa");
        try {
            if (port == -1)
                port = POP3_PORT;
            if (logger.isLoggable(Level.FINE))
                logger.fine("connecting to host \"" + host +
                        "\", port " + port + ", isSSL " + isSSL);

            socket = SocketFetcher.getSocket(host, port, props, prefix, isSSL);
            initStreams();
            r = simpleCommand(null);
        } catch (IOException ioe) {
            throw cleanupAndThrow(socket, ioe);
        }

        if (!r.ok) {
            throw cleanupAndThrow(socket, new IOException("Connect failed"));
        }
        if (enableAPOP && r.data != null) {
            int challStart = r.data.indexOf('<');    // start of challenge
            int challEnd = r.data.indexOf('>', challStart); // end of challenge
            if (challStart != -1 && challEnd != -1)
                apopChallenge = r.data.substring(challStart, challEnd + 1);
            logger.log(Level.FINE, "APOP challenge: {0}", apopChallenge);
        }

        // if server supports RFC 2449, set capabilities
        if (!disableCapa)
            setCapabilities(capa());

        pipelining = hasCapability("PIPELINING") ||
                PropUtil.getBooleanProperty(props, prefix + ".pipelining", false);
        if (pipelining)
            logger.config("PIPELINING enabled");

        // created here, because they're inner classes that reference "this"
        Authenticator[] a = new Authenticator[]{
                new LoginAuthenticator(),
                new PlainAuthenticator(),
                //new DigestMD5Authenticator(),
                new NtlmAuthenticator(),
                new OAuth2Authenticator()
        };
        StringBuilder sb = new StringBuilder();
        for (int i = 0; i < a.length; i++) {
            authenticators.put(a[i].getMechanism(), a[i]);
            sb.append(a[i].getMechanism()).append(' ');
        }
        defaultAuthenticationMechanisms = sb.toString();
    }

    private static IOException cleanupAndThrow(Socket socket, IOException ife) {
        if (socket != null) {
            try {
                socket.close();
            } catch (Throwable thr) {
                if (isRecoverable(thr)) {
                    ife.addSuppressed(thr);
                } else {
                    thr.addSuppressed(ife);
                    if (thr instanceof Error) {
                        throw (Error) thr;
                    }
                    if (thr instanceof RuntimeException) {
                        throw (RuntimeException) thr;
                    }
                    throw new RuntimeException("unexpected exception", thr);
                }
            }
        }
        return ife;
    }

    private static boolean isRecoverable(Throwable t) {
        return (t instanceof Exception) || (t instanceof LinkageError);
    }

    /**
     * Get the value of a boolean property.
     * Print out the value if logging is enabled.
     */
    private final synchronized boolean getBoolProp(Properties props,
                                                   String prop) {
        boolean val = PropUtil.getBooleanProperty(props, prop, false);
        if (logger.isLoggable(Level.CONFIG))
            logger.config(prop + ": " + val);
        return val;
    }

    private void initStreams() throws IOException {
        boolean quote = PropUtil.getBooleanProperty(props,
                "mail.debug.quote", false);
        traceInput =
                new TraceInputStream(socket.getInputStream(), traceLogger);
        traceInput.setQuote(quote);

        traceOutput =
                new TraceOutputStream(socket.getOutputStream(), traceLogger);
        traceOutput.setQuote(quote);

        // should be US-ASCII, but not all JDK's support it so use iso-8859-1
        input = new BufferedReader(new InputStreamReader(traceInput,
                StandardCharsets.ISO_8859_1));
        output = new PrintWriter(
                new BufferedWriter(
                        new OutputStreamWriter(traceOutput, StandardCharsets.ISO_8859_1)));
    }

    @Override
    protected void finalize() throws Throwable {
        try {
            if (socket != null)    // Forgot to logout ?!
                quit();
        } finally {
            super.finalize();
        }
    }

    /**
     * Parse the capabilities from a CAPA response.
     */
    synchronized void setCapabilities(InputStream in) {
        if (in == null) {
            capabilities = null;
            return;
        }

        capabilities = new HashMap<>(10);
        BufferedReader r = null;
        r = new BufferedReader(new InputStreamReader(in, StandardCharsets.US_ASCII));
        String s;
        try {
            while ((s = r.readLine()) != null) {
                String cap = s;
                int i = cap.indexOf(' ');
                if (i > 0)
                    cap = cap.substring(0, i);
                capabilities.put(cap.toUpperCase(Locale.ENGLISH), s);
            }
        } catch (IOException ex) {
            // should never happen
        } finally {
            try {
                in.close();
            } catch (IOException ex) {
            }
        }
    }

    /**
     * Check whether the given capability is supported by
     * this server. Returns true if so, otherwise
     * returns false.
     */
    synchronized boolean hasCapability(String c) {
        return capabilities != null &&
                capabilities.containsKey(c.toUpperCase(Locale.ENGLISH));
    }

    /**
     * Return the map of capabilities returned by the server.
     */
    synchronized Map getCapabilities() {
        return capabilities;
    }

    /**
     * Does this Protocol object support the named authentication mechanism?
     *
     * @since Jakarta Mail 1.6.5
     */
    boolean supportsMechanism(String mech) {
        return authenticators.containsKey(mech.toUpperCase(Locale.ENGLISH));
    }

    /**
     * Return the whitespace separated string list of default authentication
     * mechanisms.
     *
     * @since Jakarta Mail 1.6.5
     */
    String getDefaultMechanisms() {
        return defaultAuthenticationMechanisms;
    }

    /**
     * Is the named authentication mechanism enabled?
     *
     * @since Jakarta Mail 1.6.5
     */
    boolean isMechanismEnabled(String mech) {
        Authenticator a = authenticators.get(mech.toUpperCase(Locale.ENGLISH));
        return a != null && a.enabled();
    }

    /**
     * Authenticate to the server using the named authentication mechanism
     * and the supplied credentials.
     *
     * @since Jakarta Mail 1.6.5
     */
    synchronized String authenticate(String mech,
                                     String host, String authzid,
                                     String user, String passwd) {
        Authenticator a = authenticators.get(mech.toUpperCase(Locale.ENGLISH));
        if (a == null)
            return "No such authentication mechanism: " + mech;
        try {
            if (!a.authenticate(host, authzid, user, passwd))
                return "login failed";
            return null;
        } catch (IOException ex) {
            return ex.getMessage();
        }
    }

    /**
     * Does the server we're connected to support the specified
     * authentication mechanism?  Uses the information
     * returned by the server from the CAPA command.
     *
     * @param    auth    the authentication mechanism
     * @return true if the authentication mechanism is supported
     * @since Jakarta Mail 1.6.5
     */
    synchronized boolean supportsAuthentication(String auth) {
        assert Thread.holdsLock(this);
        if (auth.equals("LOGIN"))
            return true;
        if (capabilities == null)
            return false;
        String a = capabilities.get("SASL");
        if (a == null)
            return false;
        StringTokenizer st = new StringTokenizer(a);
        while (st.hasMoreTokens()) {
            String tok = st.nextToken();
            if (tok.equalsIgnoreCase(auth))
                return true;
        }
        return false;
    }

    /**
     * Login to the server, using the USER and PASS commands.
     */
    synchronized String login(String user, String password)
            throws IOException {
        Response r;
        // only pipeline password if connection is secure
        boolean batch = pipelining && socket instanceof SSLSocket;

        try {

            if (noauthdebug && isTracing()) {
                logger.fine("authentication command trace suppressed");
                suspendTracing();
            }
            String dpw = null;
            if (apopChallenge != null)
                dpw = getDigest(password);
            if (apopChallenge != null && dpw != null) {
                r = simpleCommand("APOP " + user + " " + dpw);
            } else if (batch) {
                String cmd = "USER " + user;
                batchCommandStart(cmd);
                issueCommand(cmd);
                cmd = "PASS " + password;
                batchCommandContinue(cmd);
                issueCommand(cmd);
                r = readResponse();
                if (!r.ok) {
                    String err = r.data != null ? r.data : "USER command failed";
                    readResponse();    // read and ignore PASS response
                    batchCommandEnd();
                    return err;
                }
                r = readResponse();
                batchCommandEnd();
            } else {
                r = simpleCommand("USER " + user);
                if (!r.ok)
                    return r.data != null ? r.data : "USER command failed";
                r = simpleCommand("PASS " + password);
            }
            if (noauthdebug && isTracing())
                logger.log(Level.FINE, "authentication command {0}",
                        (r.ok ? "succeeded" : "failed"));
            if (!r.ok)
                return r.data != null ? r.data : "login failed";
            return null;

        } finally {
            resumeTracing();
        }
    }

    /**
     * Gets the APOP message digest.
     * From RFC 1939:
     *
     * The 'digest' parameter is calculated by applying the MD5
     * algorithm [RFC1321] to a string consisting of the timestamp
     * (including angle-brackets) followed by a shared secret.
     * The 'digest' parameter itself is a 16-octet value which is
     * sent in hexadecimal format, using lower-case ASCII characters.
     *
     * @param    password    The APOP password
     * @return The APOP digest or an empty string if an error occurs.
     */
    private String getDigest(String password) {
        String key = apopChallenge + password;
        byte[] digest;
        try {
            MessageDigest md = MessageDigest.getInstance("MD5");
            digest = md.digest(key.getBytes(StandardCharsets.ISO_8859_1));    // XXX
        } catch (NoSuchAlgorithmException nsae) {
            return null;
        }
        return toHex(digest);
    }

    /**
     * Abstract base class for POP3 authentication mechanism implementations.
     *
     * @since Jakarta Mail 1.6.5
     */
    private abstract class Authenticator {
        protected Response resp;    // the response, used by subclasses
        private final String mech; // the mechanism name, set in the constructor
        private final boolean enabled; // is this mechanism enabled by default?

        Authenticator(String mech) {
            this(mech, true);
        }

        Authenticator(String mech, boolean enabled) {
            this.mech = mech.toUpperCase(Locale.ENGLISH);
            this.enabled = enabled;
        }

        String getMechanism() {
            return mech;
        }

        boolean enabled() {
            return enabled;
        }

        /**
         * Run authentication query based on command and initial response
         *
         * @param command - command passed to server
         * @param ir      - initial response, part of the query
         */
        protected void runAuthenticationCommand(String command, String ir) throws IOException {
            if (logger.isLoggable(Level.FINE)) {
                logger.fine(command + " using one line authentication format");
            }

            if (ir != null) {
                resp = simpleCommand(command + " " + (ir.length() == 0 ? "=" : ir));
            } else {
                resp = simpleCommand(command);
            }
        }

        /**
         * Start the authentication handshake by issuing the AUTH command.
         * Delegate to the doAuth method to do the mechanism-specific
         * part of the handshake.
         */
        boolean authenticate(String host, String authzid,
                             String user, String passwd) throws IOException {
            Throwable thrown = null;
            try {
                // use "initial response" capability, if supported
                String ir = getInitialResponse(host, authzid, user, passwd);
                if (noauthdebug && isTracing()) {
                    logger.fine("AUTH " + mech + " command trace suppressed");
                    suspendTracing();
                }

                runAuthenticationCommand("AUTH " + mech, ir);

                if (resp.cont)
                    doAuth(host, authzid, user, passwd);
            } catch (IOException ex) {    // should never happen, ignore
                logger.log(Level.FINE, "AUTH " + mech + " failed", ex);
            } catch (Throwable t) {    // crypto can't be initialized?
                logger.log(Level.FINE, "AUTH " + mech + " failed", t);
                thrown = t;
            } finally {
                if (noauthdebug && isTracing())
                    logger.fine("AUTH " + mech + " " +
                            (resp.ok ? "succeeded" : "failed"));
                resumeTracing();
                if (!resp.ok) {
                    close();
                    if (thrown != null) {
                        if (thrown instanceof Error)
                            throw (Error) thrown;
                        if (thrown instanceof Exception) {
                            EOFException ex = new EOFException(
                                    resp.data != null ?
                                            resp.data : "authentication failed");
                            ex.initCause(thrown);
                            throw ex;
                        }
                        assert false : "unknown Throwable";    // can't happen
                    }
                    throw new EOFException(resp.data != null ?
                            resp.data : "authentication failed");
                }
            }
            return true;
        }

        /**
         * Provide the initial response to use in the AUTH command,
         * or null if not supported.  Subclasses that support the
         * initial response capability will override this method.
         */
        String getInitialResponse(String host, String authzid, String user,
                                  String passwd) throws IOException {
            return null;
        }

        abstract void doAuth(String host, String authzid, String user,
                             String passwd) throws IOException;
    }

    /**
     * Perform the authentication handshake for LOGIN authentication.
     *
     * @since Jakarta Mail 1.6.5
     */
    private class LoginAuthenticator extends Authenticator {
        LoginAuthenticator() {
            super("LOGIN");
        }

        @Override
        boolean authenticate(String host, String authzid,
                             String user, String passwd) throws IOException {
            String msg = null;
            if ((msg = login(user, passwd)) != null) {
                throw new EOFException(msg);
            }
            return true;
        }

        @Override
        void doAuth(String host, String authzid, String user, String passwd)
                throws IOException {
            // should never get here
            throw new EOFException("LOGIN asked for more");
        }
    }

    /**
     * Perform the authentication handshake for PLAIN authentication.
     *
     * @since Jakarta Mail 1.6.5
     */
    private class PlainAuthenticator extends Authenticator {
        PlainAuthenticator() {
            super("PLAIN");
        }

        @Override
        String getInitialResponse(String host, String authzid, String user,
                                  String passwd) throws IOException {
            // return "authziduserpasswd"
            ByteArrayOutputStream bos = new ByteArrayOutputStream();
            OutputStream b64os =
                    new BASE64EncoderStream(bos, Integer.MAX_VALUE);
            if (authzid != null)
                b64os.write(authzid.getBytes(StandardCharsets.UTF_8));
            b64os.write(0);
            b64os.write(user.getBytes(StandardCharsets.UTF_8));
            b64os.write(0);
            b64os.write(passwd.getBytes(StandardCharsets.UTF_8));
            b64os.flush();    // complete the encoding

            return ASCIIUtility.toString(bos.toByteArray());
        }

        @Override
        void doAuth(String host, String authzid, String user, String passwd)
                throws IOException {
            // should never get here
            throw new EOFException("PLAIN asked for more");
        }
    }

    /**
     * Perform the authentication handshake for DIGEST-MD5 authentication.
     *
     * @since Jakarta Mail 1.6.5
     */
    /*
     * XXX - Need to move DigestMD5 class to org.eclipse.angus.mail.auth
     *
    private class DigestMD5Authenticator extends Authenticator {
	private DigestMD5 md5support;	// only create if needed

	DigestMD5Authenticator() {
	    super("DIGEST-MD5");
	}

	private synchronized DigestMD5 getMD5() {
	    if (md5support == null)
		md5support = new DigestMD5(logger);
	    return md5support;
	}

	@Override
	void doAuth(Protocol p, String host, String authzid,
					String user, String passwd)
				    throws IOException {
	    DigestMD5 md5 = getMD5();
	    assert md5 != null;

	    byte[] b = md5.authClient(host, user, passwd, getSASLRealm(),
					resp.data);
	    resp = p.simpleCommand(b);
	    if (resp.cont) { // client authenticated by server
		if (!md5.authServer(resp.data)) {
		    // server NOT authenticated by client !!!
		    resp.ok = false;
		} else {
		    // send null response
		    resp = simpleCommand(new byte[0]);
		}
	    }
	}
    }
     */

    /**
     * Perform the authentication handshake for NTLM authentication.
     *
     * @since Jakarta Mail 1.6.5
     */
    private class NtlmAuthenticator extends Authenticator {
        private Ntlm ntlm;

        NtlmAuthenticator() {
            super("NTLM");
        }

        @Override
        String getInitialResponse(String host, String authzid, String user,
                                  String passwd) throws IOException {
            ntlm = new Ntlm(props.getProperty(prefix + ".auth.ntlm.domain"),
                    getLocalHost(), user, passwd, logger);

            int flags = PropUtil.getIntProperty(
                    props, prefix + ".auth.ntlm.flags", 0);
            boolean v2 = PropUtil.getBooleanProperty(
                    props, prefix + ".auth.ntlm.v2", true);

            String type1 = ntlm.generateType1Msg(flags, v2);
            return type1;
        }

        @Override
        void doAuth(String host, String authzid, String user, String passwd)
                throws IOException {
            assert ntlm != null;
            String type3 = ntlm.generateType3Msg(
                    resp.data.substring(4).trim());

            resp = simpleCommand(type3);
        }
    }

    /**
     * Perform the authentication handshake for XOAUTH2 authentication.
     *
     * @since Jakarta Mail 1.6.5
     */
    private class OAuth2Authenticator extends Authenticator {

        OAuth2Authenticator() {
            super("XOAUTH2", false);    // disabled by default
        }

        @Override
        String getInitialResponse(String host, String authzid, String user,
                                  String passwd) throws IOException {
            String resp = "user=" + user + "\001auth=Bearer " +
                    passwd + "\001\001";
            byte[] b = Base64.getEncoder().encode(
                    resp.getBytes(StandardCharsets.UTF_8));
            return ASCIIUtility.toString(b);
        }

        @Override
        protected void runAuthenticationCommand(String command, String ir) throws IOException {
            Boolean isTwoLineAuthenticationFormat = getBoolProp(
                    props,
                    prefix + ".auth.xoauth2.two.line.authentication.format");

            if (isTwoLineAuthenticationFormat) {
                if (logger.isLoggable(Level.FINE)) {
                    logger.fine(command + " using two line authentication format");
                }

                resp = twoLinesCommand(
                        command,
                        (ir.length() == 0 ? "=" : ir)
                );
            } else {
                super.runAuthenticationCommand(command, ir);
            }
        }

        @Override
        void doAuth(String host, String authzid, String user, String passwd)
                throws IOException {
            // OAuth2 failure returns a JSON error code,
            // which looks like a "please continue" to the authenticate()
            // code, so we turn that into a clean failure here.
            String err = "";
            if (resp.data != null) {
                byte[] b = resp.data.getBytes(StandardCharsets.UTF_8);
                b = Base64.getDecoder().decode(b);
                err = new String(b, StandardCharsets.UTF_8);
            }
            throw new EOFException("OAUTH2 authentication failed: " + err);
        }
    }

    /**
     * Get the name of the local host.
     *
     * @return the local host name
     * @since Jakarta Mail 1.6.5
     */
    private synchronized String getLocalHost() {
        // get our hostname and cache it for future use
        try {
            if (localHostName == null || localHostName.length() == 0) {
                InetAddress localHost = InetAddress.getLocalHost();
                localHostName = localHost.getCanonicalHostName();
                // if we can't get our name, use local address literal
                if (localHostName == null)
                    // XXX - not correct for IPv6
                    localHostName = "[" + localHost.getHostAddress() + "]";
            }
        } catch (UnknownHostException uhex) {
        }

        // last chance, try to get our address from our socket
        if (localHostName == null || localHostName.length() <= 0) {
            if (socket != null && socket.isBound()) {
                InetAddress localHost = socket.getLocalAddress();
                localHostName = localHost.getCanonicalHostName();
                // if we can't get our name, use local address literal
                if (localHostName == null)
                    // XXX - not correct for IPv6
                    localHostName = "[" + localHost.getHostAddress() + "]";
            }
        }
        return localHostName;
    }

    private static char[] digits = {
            '0', '1', '2', '3', '4', '5', '6', '7',
            '8', '9', 'a', 'b', 'c', 'd', 'e', 'f'
    };

    /**
     * Convert a byte array to a string of hex digits representing the bytes.
     */
    private static String toHex(byte[] bytes) {
        char[] result = new char[bytes.length * 2];

        for (int index = 0, i = 0; index < bytes.length; index++) {
            int temp = bytes[index] & 0xFF;
            result[i++] = digits[temp >> 4];
            result[i++] = digits[temp & 0xF];
        }
        return new String(result);
    }

    /**
     * Close down the connection, sending the QUIT command.
     */
    synchronized boolean quit() throws IOException {
        boolean ok = false;
        try {
            Response r = simpleCommand("QUIT");
            ok = r.ok;
        } finally {
            close();
        }
        return ok;
    }

    /**
     * Close the connection without sending any commands.
     */
    void close() {
        try {
            if (socket != null)
                socket.close();
        } catch (IOException ex) {
            // ignore it
        } finally {
            socket = null;
            input = null;
            output = null;
        }
    }

    /**
     * Return the total number of messages and mailbox size,
     * using the STAT command.
     */
    synchronized Status stat() throws IOException {
        Response r = simpleCommand("STAT");
        Status s = new Status();

        /*
         * Normally the STAT command shouldn't fail but apparently it
         * does when accessing Hotmail too often, returning:
         * -ERR login allowed only every 15 minutes
         * (Why it doesn't just fail the login, I don't know.)
         * This is a serious failure that we don't want to hide
         * from the user.
         */
        if (!r.ok)
            throw new IOException("STAT command failed: " + r.data);

        if (r.data != null) {
            try {
                StringTokenizer st = new StringTokenizer(r.data);
                s.total = Integer.parseInt(st.nextToken());
                s.size = Integer.parseInt(st.nextToken());
            } catch (RuntimeException e) {
            }
        }
        return s;
    }

    /**
     * Return the size of the message using the LIST command.
     */
    synchronized int list(int msg) throws IOException {
        Response r = simpleCommand("LIST " + msg);
        int size = -1;
        if (r.ok && r.data != null) {
            try {
                StringTokenizer st = new StringTokenizer(r.data);
                st.nextToken();    // skip message number
                size = Integer.parseInt(st.nextToken());
            } catch (RuntimeException e) {
                // ignore it
            }
        }
        return size;
    }

    /**
     * Return the size of all messages using the LIST command.
     */
    synchronized InputStream list() throws IOException {
        Response r = multilineCommand("LIST", 128); // 128 == output size est
        return r.bytes;
    }

    /**
     * Retrieve the specified message.
     * Given an estimate of the message's size we can be more efficient,
     * preallocating the array and returning a SharedInputStream to allow
     * us to share the array.
     */
    synchronized InputStream retr(int msg, int size) throws IOException {
        Response r;
        String cmd;
        boolean batch = size == 0 && pipelining;
        if (batch) {
            cmd = "LIST " + msg;
            batchCommandStart(cmd);
            issueCommand(cmd);
            cmd = "RETR " + msg;
            batchCommandContinue(cmd);
            issueCommand(cmd);
            r = readResponse();
            if (r.ok && r.data != null) {
                // parse the LIST response to get the message size
                try {
                    StringTokenizer st = new StringTokenizer(r.data);
                    st.nextToken();    // skip message number
                    size = Integer.parseInt(st.nextToken());
                    // don't allow ridiculous sizes
                    if (size > 1024 * 1024 * 1024 || size < 0)
                        size = 0;
                    else {
                        if (logger.isLoggable(Level.FINE))
                            logger.fine("pipeline message size " + size);
                        size += SLOP;
                    }
                } catch (RuntimeException e) {
                }
            }
            r = readResponse();
            if (r.ok)
                r.bytes = readMultilineResponse(size + SLOP);
            batchCommandEnd();
        } else {
            cmd = "RETR " + msg;
            multilineCommandStart(cmd);
            issueCommand(cmd);
            r = readResponse();
            if (!r.ok) {
                multilineCommandEnd();
                return null;
            }

            /*
             * Many servers return a response to the RETR command of the form:
             * +OK 832 octets
             * If we don't have a size guess already, try to parse the response
             * for data in that format and use it if found.  It's only a guess,
             * but it might be a good guess.
             */
            if (size <= 0 && r.data != null) {
                try {
                    StringTokenizer st = new StringTokenizer(r.data);
                    String s = st.nextToken();
                    String octets = st.nextToken();
                    if (octets.equals("octets")) {
                        size = Integer.parseInt(s);
                        // don't allow ridiculous sizes
                        if (size > 1024 * 1024 * 1024 || size < 0)
                            size = 0;
                        else {
                            if (logger.isLoggable(Level.FINE))
                                logger.fine("guessing message size: " + size);
                            size += SLOP;
                        }
                    }
                } catch (RuntimeException e) {
                }
            }
            r.bytes = readMultilineResponse(size);
            multilineCommandEnd();
        }
        if (r.ok) {
            if (size > 0 && logger.isLoggable(Level.FINE))
                logger.fine("got message size " + r.bytes.available());
        }
        return r.bytes;
    }

    /**
     * Retrieve the specified message and stream the content to the
     * specified OutputStream.  Return true on success.
     */
    synchronized boolean retr(int msg, OutputStream os) throws IOException {
        String cmd = "RETR " + msg;
        multilineCommandStart(cmd);
        issueCommand(cmd);
        Response r = readResponse();
        if (!r.ok) {
            multilineCommandEnd();
            return false;
        }

        Throwable terr = null;
        int b, lastb = '\n';
        try {
            while ((b = input.read()) >= 0) {
                if (lastb == '\n' && b == '.') {
                    b = input.read();
                    if (b == '\r') {
                        // end of response, consume LF as well
                        b = input.read();
                        break;
                    }
                }

                /*
                 * Keep writing unless we get an error while writing,
                 * which we defer until all of the data has been read.
                 */
                if (terr == null) {
                    try {
                        os.write(b);
                    } catch (IOException | RuntimeException ex) {
                        logger.log(Level.FINE, "exception while streaming", ex);
                        terr = ex;
                    }
                }
                lastb = b;
            }
        } catch (InterruptedIOException iioex) {
            /*
             * As above in simpleCommand, close the socket to recover.
             */
            try {
                socket.close();
            } catch (IOException cex) {
            }
            throw iioex;
        }
        if (b < 0)
            throw new EOFException("EOF on socket");

        // was there a deferred error?
        if (terr != null) {
            if (terr instanceof IOException)
                throw (IOException) terr;
            if (terr instanceof RuntimeException)
                throw (RuntimeException) terr;
            assert false;    // can't get here
        }
        multilineCommandEnd();
        return true;
    }

    /**
     * Return the message header and the first n lines of the message.
     */
    synchronized InputStream top(int msg, int n) throws IOException {
        Response r = multilineCommand("TOP " + msg + " " + n, 0);
        return r.bytes;
    }

    /**
     * Delete (permanently) the specified message.
     */
    synchronized boolean dele(int msg) throws IOException {
        Response r = simpleCommand("DELE " + msg);
        return r.ok;
    }

    /**
     * Return the UIDL string for the message.
     */
    synchronized String uidl(int msg) throws IOException {
        Response r = simpleCommand("UIDL " + msg);
        if (!r.ok)
            return null;
        int i = r.data.indexOf(' ');
        if (i > 0)
            return r.data.substring(i + 1);
        else
            return null;
    }

    /**
     * Return the UIDL strings for all messages.
     * The UID for msg #N is returned in uids[N-1].
     */
    synchronized boolean uidl(String[] uids) throws IOException {
        Response r = multilineCommand("UIDL", 15 * uids.length);
        if (!r.ok)
            return false;
        LineInputStream lis = new LineInputStream(r.bytes);
        String line = null;
        while ((line = lis.readLine()) != null) {
            int i = line.indexOf(' ');
            if (i < 1 || i >= line.length())
                continue;
            int n = Integer.parseInt(line.substring(0, i));
            if (n > 0 && n <= uids.length)
                uids[n - 1] = line.substring(i + 1);
        }
        try {
            r.bytes.close();
        } catch (IOException ex) {
            // ignore it
        }
        return true;
    }

    /**
     * Do a NOOP.
     */
    synchronized boolean noop() throws IOException {
        Response r = simpleCommand("NOOP");
        return r.ok;
    }

    /**
     * Do an RSET.
     */
    synchronized boolean rset() throws IOException {
        Response r = simpleCommand("RSET");
        return r.ok;
    }

    /**
     * Start TLS using STLS command specified by RFC 2595.
     * If already using SSL, this is a nop and the STLS command is not issued.
     */
    synchronized boolean stls() throws IOException {
        if (socket instanceof SSLSocket)
            return true;    // nothing to do
        Response r = simpleCommand("STLS");
        if (r.ok) {
            // it worked, now switch the socket into TLS mode
            try {
                socket = SocketFetcher.startTLS(socket, host, props, prefix);
                initStreams();
            } catch (IOException ioex) {
                try {
                    socket.close();
                } finally {
                    socket = null;
                    input = null;
                    output = null;
                }
                IOException sioex =
                        new IOException("Could not convert socket to TLS");
                sioex.initCause(ioex);
                throw sioex;
            }
        }
        return r.ok;
    }

    /**
     * Is this connection using SSL?
     */
    synchronized boolean isSSL() {
        return socket instanceof SSLSocket;
    }

    /**
     * Get server capabilities using CAPA command specified by RFC 2449.
     * Returns null if not supported.
     */
    synchronized InputStream capa() throws IOException {
        Response r = multilineCommand("CAPA", 128); // 128 == output size est
        if (!r.ok)
            return null;
        return r.bytes;
    }

    /**
     * Issue a simple POP3 command and return the response.
     */
    private Response simpleCommand(String cmd) throws IOException {
        simpleCommandStart(cmd);
        issueCommand(cmd);
        Response r = readResponse();
        simpleCommandEnd();
        return r;
    }

    /**
     * Issue a two line POP3 command and return the response
     * Refer to {@link #simpleCommand(String)} for a single line command
     *
     * @param firstCommand  first command we want to pass to server e.g AUTH XOAUTH2
     * @param secondCommand second command e.g Base64 encoded authorization string
     * @return Response
     */
    private Response twoLinesCommand(String firstCommand, String secondCommand) throws IOException {
        String cmd = firstCommand + " " + secondCommand;

        batchCommandStart(cmd);
        simpleCommand(firstCommand);
        batchCommandContinue(cmd);

        Response r = simpleCommand(secondCommand);

        batchCommandEnd();

        return r;
    }

    /**
     * Send the specified command.
     */
    private void issueCommand(String cmd) throws IOException {
        if (socket == null)
            throw new IOException("Folder is closed");    // XXX

        if (cmd != null) {
            cmd += CRLF;
            output.print(cmd);    // do it in one write
            output.flush();
        }
    }

    /**
     * Read the response to a command.
     */
    private Response readResponse() throws IOException {
        String line = null;
        try {
            line = input.readLine();
        } catch (InterruptedIOException iioex) {
            /*
             * If we get a timeout while using the socket, we have no idea
             * what state the connection is in.  The server could still be
             * alive, but slow, and could still be sending data.  The only
             * safe way to recover is to drop the connection.
             */
            try {
                socket.close();
            } catch (IOException cex) {
            }
            throw new EOFException(iioex.getMessage());
        } catch (SocketException ex) {
            /*
             * If we get an error while using the socket, we have no idea
             * what state the connection is in.  The server could still be
             * alive, but slow, and could still be sending data.  The only
             * safe way to recover is to drop the connection.
             */
            try {
                socket.close();
            } catch (IOException cex) {
            }
            throw new EOFException(ex.getMessage());
        }

        if (line == null) {
            traceLogger.finest("");
            throw new EOFException("EOF on socket");
        }
        Response r = new Response();
        if (line.startsWith("+OK"))
            r.ok = true;
        else if (line.startsWith("+ ")) {
            r.ok = true;
            r.cont = true;
        } else if (line.startsWith("-ERR"))
            r.ok = false;
        else
            throw new IOException("Unexpected response: " + line);
        int i;
        if ((i = line.indexOf(' ')) >= 0)
            r.data = line.substring(i + 1);
        return r;
    }

    /**
     * Issue a POP3 command that expects a multi-line response.
     * size is an estimate of the response size.
     */
    private Response multilineCommand(String cmd, int size) throws IOException {
        multilineCommandStart(cmd);
        issueCommand(cmd);
        Response r = readResponse();
        if (!r.ok) {
            multilineCommandEnd();
            return r;
        }
        r.bytes = readMultilineResponse(size);
        multilineCommandEnd();
        return r;
    }

    /**
     * Read the response to a multiline command after the command response.
     * The size parameter indicates the expected size of the response;
     * the actual size can be different.  Returns an InputStream to the
     * response bytes.
     */
    private InputStream readMultilineResponse(int size) throws IOException {
        SharedByteArrayOutputStream buf = new SharedByteArrayOutputStream(size);
        int b, lastb = '\n';
        try {
            while ((b = input.read()) >= 0) {
                if (lastb == '\n' && b == '.') {
                    b = input.read();
                    if (b == '\r') {
                        // end of response, consume LF as well
                        b = input.read();
                        break;
                    }
                }
                buf.write(b);
                lastb = b;
            }
        } catch (InterruptedIOException iioex) {
            /*
             * As above in readResponse, close the socket to recover.
             */
            try {
                socket.close();
            } catch (IOException cex) {
            }
            throw iioex;
        }
        if (b < 0)
            throw new EOFException("EOF on socket");
        return buf.toStream();
    }

    /**
     * Is protocol tracing enabled?
     */
    protected boolean isTracing() {
        return traceLogger.isLoggable(Level.FINEST);
    }

    /**
     * Temporarily turn off protocol tracing, e.g., to prevent
     * tracing the authentication sequence, including the password.
     */
    private void suspendTracing() {
        if (traceLogger.isLoggable(Level.FINEST)) {
            traceInput.setTrace(false);
            traceOutput.setTrace(false);
        }
    }

    /**
     * Resume protocol tracing, if it was enabled to begin with.
     */
    private void resumeTracing() {
        if (traceLogger.isLoggable(Level.FINEST)) {
            traceInput.setTrace(true);
            traceOutput.setTrace(true);
        }
    }

    /*
     * Probe points for GlassFish monitoring.
     */
    private void simpleCommandStart(String command) {
    }

    private void simpleCommandEnd() {
    }

    private void multilineCommandStart(String command) {
    }

    private void multilineCommandEnd() {
    }

    private void batchCommandStart(String command) {
    }

    private void batchCommandContinue(String command) {
    }

    private void batchCommandEnd() {
    }
}




© 2015 - 2024 Weber Informatics LLC | Privacy Policy