We use cookies to ensure you get the best experience on our website
Startsida Utforska Hjälp
Registrera dig Logga in
0ct0pu5
/
squirrelmail
1
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: 137f07afc6
Grenar Taggar
squirrelmail
/
functions
/
mime.php

mime.php 41 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * mime.php
    5. 

  5.  *
    6. 

  6.  * Copyright (c) 1999-2002 The SquirrelMail Project Team
    7. 

  7.  * Licensed under the GNU GPL. For full terms see the file COPYING.
    8. 

  8.  *
    9. 

  9.  * This contains the functions necessary to detect and decode MIME
    10. 

  10.  * messages.
    11. 

  11.  *
    12. 

  12.  * $Id$
    13. 

  13.  */
    14. 

  14. 

  15. require_once('../functions/imap.php');
    16. 

  16. require_once('../functions/attachment_common.php');
    17. 

  17. 

  18. /** Setting up the objects that have the structure for the message **/
    19. 

  19. class msg_header {
    20. 

  20.     /** msg_header contains generic variables for values that **/
    21. 

  21.     /** could be in a header.                                 **/
    22. 

  22. 

  23.     var $type0 = '', $type1 = '', $boundary = '', $charset = '';
    24. 

  24.     var $encoding = '', $size = 0, $to = array(), $from = '', $date = '';
    25. 

  25.     var $cc = array(), $bcc = array(), $reply_to = '', $subject = '';
    26. 

  26.     var $id = 0, $mailbox = '', $description = '', $filename = '';
    27. 

  27.     var $entity_id = 0, $message_id = 0, $name = '';
    28. 

  28.     // var $priority = "";
    29. 

  29. }
    30. 

  30. 

  31. class message {
    32. 

  32.     /** message is the object that contains messages.  It is a recursive
    33. 

  33.       object in that through the $entities variable, it can contain
    34. 

  34.       more objects of type message.  See documentation in mime.txt for
    35. 

  35.       a better description of how this works.
    36. 

  36.     **/
    37. 

  37.     var $header = '';
    38. 

  38.     var $entities = array();
    39. 

  39.     
    40. 

  40.     function addEntity ($msg) {
    41. 

  41.         $this->entities[] = $msg;
    42. 

  42.     }
    43. 

  43. }
    44. 

  44. 

  45. /* --------------------------------------------------------------------------------- */
    46. 

  46. /* MIME DECODING                                                                     */
    47. 

  47. /* --------------------------------------------------------------------------------- */
    48. 

  48. 

  49. /* This function gets the structure of a message and stores it in the "message" class.
    50. 

  50.  * It will return this object for use with all relevant header information and
    51. 

  51.  * fully parsed into the standard "message" object format.
    52. 

  52.  */
    53. 

  53. function mime_structure ($imap_stream, $header) {
    54. 

  54. 

  55.     sqimap_messages_flag ($imap_stream, $header->id, $header->id, 'Seen');
    56. 

  56.     $ssid = sqimap_session_id();
    57. 

  57.     $lsid = strlen( $ssid );
    58. 

  58.     $id = $header->id;
    59. 

  59.     fputs ($imap_stream, "$ssid FETCH $id BODYSTRUCTURE\r\n");
    60. 

  60.     //
    61. 

  61.     // This should use sqimap_read_data instead of reading it itself
    62. 

  62.     //
    63. 

  63.     $read = fgets ($imap_stream, 10000);
    64. 

  64.     $bodystructure = '';
    65. 

  65.     while ( substr($read, 0, $lsid) <> $ssid &&
    66. 

  66.          !feof( $imap_stream ) ) {
    67. 

  67.         $bodystructure .= $read;
    68. 

  68.         $read = fgets ($imap_stream, 10000);
    69. 

  69.     }
    70. 

  70.     $read = $bodystructure;
    71. 

  71.     
    72. 

  72.     // isolate the body structure and remove beginning and end parenthesis
    73. 

  73.     $read = trim(substr ($read, strpos(strtolower($read), 'bodystructure') + 13));
    74. 

  74.     $read = trim(substr ($read, 0, -1));
    75. 

  75.     $end = mime_match_parenthesis(0, $read);
    76. 

  76.     while ($end == strlen($read)-1) {
    77. 

  77.         $read = trim(substr ($read, 0, -1));
    78. 

  78.         $read = trim(substr ($read, 1));
    79. 

  79.         $end = mime_match_parenthesis(0, $read);
    80. 

  80.     }
    81. 

  81.     
    82. 

  82.     $msg = mime_parse_structure ($read, 0);
    83. 

  83.     $msg->header = $header;
    84. 

  84.     
    85. 

  85.     return( $msg );
    86. 

  86. }
    87. 

  87. 

  88. /* this starts the parsing of a particular structure.  It is called recursively,
    89. 

  89.  * so it can be passed different structures.  It returns an object of type
    90. 

  90.  * $message.
    91. 

  91.  * First, it checks to see if it is a multipart message.  If it is, then it
    92. 

  92.  * handles that as it sees is necessary.  If it is just a regular entity,
    93. 

  93.  * then it parses it and adds the necessary header information (by calling out
    94. 

  94.  * to mime_get_elements()
    95. 

  95.  */
    96. 

  96. function mime_parse_structure ($structure, $ent_id) {
    97. 

  97. 

  98.   $msg = new message();
    99. 

  99.   if ($structure{0} == '(') {
    100. 

  100.      $ent_id = mime_new_element_level($ent_id);
    101. 

  101.      $start = $end = -1;
    102. 

  102.      do {
    103. 

  103.         $start = $end+1;
    104. 

  104.         $end = mime_match_parenthesis ($start, $structure);
    105. 

  105. 

  106.         $element = substr($structure, $start+1, ($end - $start)-1);
    107. 

  107.         $ent_id = mime_increment_id ($ent_id);
    108. 

  108.         $newmsg = mime_parse_structure ($element, $ent_id);
    109. 

  109.         $msg->addEntity ($newmsg);
    110. 

  110.      } while ($structure{$end+1} == '(');
    111. 

  111.   } else {
    112. 

  112.      // parse the elements
    113. 

  113.      $msg = mime_get_element ($structure, $msg, $ent_id);
    114. 

  114.   }
    115. 

  115.   return $msg;
    116. 

  116. }
    117. 

  117. 

  118. /* Increments the element ID.  An element id can look like any of
    119. 

  119.  * the following:  1, 1.2, 4.3.2.4.1, etc.  This function increments
    120. 

  120.  * the last number of the element id, changing 1.2 to 1.3.
    121. 

  121.  */
    122. 

  122. function mime_increment_id ($id) {
    123. 

  123. 

  124.     if (strpos($id, ".")) {
    125. 

  125.         $first = substr($id, 0, strrpos($id, "."));
    126. 

  126.         $last = substr($id, strrpos($id, ".")+1);
    127. 

  127.         $last++;
    128. 

  128.         $new = $first . "." .$last;
    129. 

  129.     } else {
    130. 

  130.         $new = $id + 1;
    131. 

  131.     }
    132. 

  132.     
    133. 

  133.     return $new;
    134. 

  134. }
    135. 

  135. 

  136. /*
    137. 

  137.  * See comment for mime_increment_id().
    138. 

  138.  * This adds another level on to the entity_id changing 1.3 to 1.3.0
    139. 

  139.  * NOTE:  1.3.0 is not a valid element ID.  It MUST be incremented
    140. 

  140.  *        before it can be used.  I left it this way so as not to have
    141. 

  141.  *        to make a special case if it is the first entity_id.  It
    142. 

  142.  *        always increments it, and that works fine.
    143. 

  143.  */
    144. 

  144. function mime_new_element_level ($id) {
    145. 

  145. 

  146.   if (!$id) {
    147. 

  147.       $id = 0;
    148. 

  148.   } else {
    149. 

  149.       $id = $id . '.0';
    150. 

  150.   }
    151. 

  151. 

  152.   return( $id );
    153. 

  153. }
    154. 

  154. 

  155. function mime_get_element (&$structure, $msg, $ent_id) {
    156. 

  156. 

  157.   $elem_num = 1;
    158. 

  158.   $msg->header = new msg_header();
    159. 

  159.   $msg->header->entity_id = $ent_id;
    160. 

  160.   $properties = array();
    161. 

  161. 

  162.   while (strlen($structure) > 0) {
    163. 

  163.      $structure = trim($structure);
    164. 

  164.      $char = $structure{0};
    165. 

  165. 

  166.      if (strtolower(substr($structure, 0, 3)) == 'nil') {
    167. 

  167.         $text = '';
    168. 

  168.         $structure = substr($structure, 3);
    169. 

  169.      } else if ($char == '"') {
    170. 

  170.         // loop through until we find the matching quote, and return that as a string
    171. 

  171.         $pos = 1;
    172. 

  172.         $text = '';
    173. 

  173.         while ( ($char = $structure{$pos} ) <> '"' && $pos < strlen($structure)) {
    174. 

  174.            $text .= $char;
    175. 

  175.            $pos++;
    176. 

  176.         }
    177. 

  177.         $structure = substr($structure, strlen($text) + 2);
    178. 

  178.      } else if ($char == '(') {
    179. 

  179.         // comment me
    180. 

  180.         $end = mime_match_parenthesis (0, $structure);
    181. 

  181.         $sub = substr($structure, 1, $end-1);
    182. 

  182.         $properties = mime_get_props($properties, $sub);
    183. 

  183.         $structure = substr($structure, strlen($sub) + 2);
    184. 

  184.      } else {
    185. 

  185.         // loop through until we find a space or an end parenthesis
    186. 

  186.         $pos = 0;
    187. 

  187.         $char = $structure{$pos};
    188. 

  188.         $text = '';
    189. 

  189.         while ($char != ' ' && $char != ')' && $pos < strlen($structure)) {
    190. 

  190.            $text .= $char;
    191. 

  191.            $pos++;
    192. 

  192.            $char = $structure{$pos};
    193. 

  193.         }
    194. 

  194.         $structure = substr($structure, strlen($text));
    195. 

  195.      }
    196. 

  196. 

  197.      // This is where all the text parts get put into the header
    198. 

  198.      switch ($elem_num) {
    199. 

  199.         case 1:
    200. 

  200.            $msg->header->type0 = strtolower($text);
    201. 

  201.            break;
    202. 

  202.         case 2:
    203. 

  203.            $msg->header->type1 = strtolower($text);
    204. 

  204.            break;
    205. 

  205.         case 4: // Id
    206. 

  206.            // Invisimail enclose images with <>
    207. 

  207.            $msg->header->id = str_replace( '<', '', str_replace( '>', '', $text ) );
    208. 

  208.            break;
    209. 

  209.         case 5:
    210. 

  210.            $msg->header->description = $text;
    211. 

  211.            break;
    212. 

  212.         case 6:
    213. 

  213.            $msg->header->encoding = strtolower($text);
    214. 

  214.            break;
    215. 

  215.         case 7:
    216. 

  216.            $msg->header->size = $text;
    217. 

  217.            break;
    218. 

  218.         default:
    219. 

  219.            if ($msg->header->type0 == 'text' && $elem_num == 8) {
    220. 

  220.               // This is a plain text message, so lets get the number of lines
    221. 

  221.               // that it contains.
    222. 

  222.               $msg->header->num_lines = $text;
    223. 

  223. 

  224.            } else if ($msg->header->type0 == 'message' && $msg->header->type1 == 'rfc822' && $elem_num == 8) {
    225. 

  225.               // This is an encapsulated message, so lets start all over again and
    226. 

  226.               // parse this message adding it on to the existing one.
    227. 

  227.               $structure = trim($structure);
    228. 

  228.               if ( $structure{0} == '(' ) {
    229. 

  229.                  $e = mime_match_parenthesis (0, $structure);
    230. 

  230.                  $structure = substr($structure, 0, $e);
    231. 

  231.                  $structure = substr($structure, 1);
    232. 

  232.                  $m = mime_parse_structure($structure, $msg->header->entity_id);
    233. 

  233. 

  234.                  // the following conditional is there to correct a bug that wasn't
    235. 

  235.                  // incrementing the entity IDs correctly because of the special case
    236. 

  236.                  // that message/rfc822 is.  This fixes it fine.
    237. 

  237.                  if (substr($structure, 1, 1) != '(')
    238. 

  238.                     $m->header->entity_id = mime_increment_id(mime_new_element_level($ent_id));
    239. 

  239. 

  240.                  // Now we'll go through and reformat the results.
    241. 

  241.                  if ($m->entities) {
    242. 

  242.                     for ($i=0; $i < count($m->entities); $i++) {
    243. 

  243.                        $msg->addEntity($m->entities[$i]);
    244. 

  244.                     }
    245. 

  245.                  } else {
    246. 

  246.                     $msg->addEntity($m);
    247. 

  247.                  }
    248. 

  248.                  $structure = "";
    249. 

  249.               }
    250. 

  250.            }
    251. 

  251.            break;
    252. 

  252.      }
    253. 

  253.      $elem_num++;
    254. 

  254.      $text = "";
    255. 

  255.   }
    256. 

  256.   // loop through the additional properties and put those in the various headers
    257. 

  257.   if ($msg->header->type0 != 'message') {
    258. 

  258.      for ($i=0; $i < count($properties); $i++) {
    259. 

  259.         $msg->header->{$properties[$i]['name']} = $properties[$i]['value'];
    260. 

  260.      }
    261. 

  261.   }
    262. 

  262. 

  263.   return $msg;
    264. 

  264. }
    265. 

  265. 

  266. /*
    267. 

  267.  * I did most of the MIME stuff yesterday (June 20, 2000), but I couldn't
    268. 

  268.  * figure out how to do this part, so I decided to go to bed.  I woke up
    269. 

  269.  * in the morning and had a flash of insight.  I went to the white-board
    270. 

  270.  * and scribbled it out, then spent a bit programming it, and this is the
    271. 

  271.  * result.  Nothing complicated, but I think my brain was fried yesterday.
    272. 

  272.  * Funny how that happens some times.
    273. 

  273.  *
    274. 

  274.  * This gets properties in a nested parenthesisized list.  For example,
    275. 

  275.  * this would get passed something like:  ("attachment" ("filename" "luke.tar.gz"))
    276. 

  276.  * This returns an array called $props with all paired up properties.
    277. 

  277.  * It ignores the "attachment" for now, maybe that should change later
    278. 

  278.  * down the road.  In this case, what is returned is:
    279. 

  279.  *    $props[0]["name"] = "filename";
    280. 

  280.  *    $props[0]["value"] = "luke.tar.gz";
    281. 

  281.  */
    282. 

  282. function mime_get_props ($props, $structure) {
    283. 

  283. 

  284.   while (strlen($structure) > 0) {
    285. 

  285.      $structure = trim($structure);
    286. 

  286.      $char = $structure{0};
    287. 

  287. 

  288.      if ($char == '"') {
    289. 

  289.         $pos = 1;
    290. 

  290.         $tmp = '';
    291. 

  291.         while ( ( $char = $structure{$pos} ) != '"' &&
    292. 

  292.                 $pos < strlen($structure)) {
    293. 

  293.            $tmp .= $char;
    294. 

  294.            $pos++;
    295. 

  295.         }
    296. 

  296.         $structure = trim(substr($structure, strlen($tmp) + 2));
    297. 

  297.         $char = $structure{0};
    298. 

  298. 

  299.         if ($char == '"') {
    300. 

  300.            $pos = 1;
    301. 

  301.            $value = '';
    302. 

  302.            while ( ( $char = $structure{$pos} ) != '"' &&
    303. 

  303.                    $pos < strlen($structure) ) {
    304. 

  304.               $value .= $char;
    305. 

  305.               $pos++;
    306. 

  306.            }
    307. 

  307.            $structure = trim(substr($structure, strlen($tmp) + 2));
    308. 

  308. 

  309.            $k = count($props);
    310. 

  310.            $props[$k]['name'] = strtolower($tmp);
    311. 

  311.            $props[$k]['value'] = $value;
    312. 

  312.         } else if ($char == '(') {
    313. 

  313.            $end = mime_match_parenthesis (0, $structure);
    314. 

  314.            $sub = substr($structure, 1, $end-1);
    315. 

  315.        if (! isset($props))
    316. 

  316.            $props = array();
    317. 

  317.            $props = mime_get_props($props, $sub);
    318. 

  318.            $structure = substr($structure, strlen($sub) + 2);
    319. 

  319.         }
    320. 

  320.         return $props;
    321. 

  321.      } else if ($char == '(') {
    322. 

  322.         $end = mime_match_parenthesis (0, $structure);
    323. 

  323.         $sub = substr($structure, 1, $end-1);
    324. 

  324.         $props = mime_get_props($props, $sub);
    325. 

  325.         $structure = substr($structure, strlen($sub) + 2);
    326. 

  326.         return $props;
    327. 

  327.      } else {
    328. 

  328.         return $props;
    329. 

  329.      }
    330. 

  330.   }
    331. 

  331. }
    332. 

  332. 

  333. /*
    334. 

  334.  *  Matches parenthesis.  It will return the position of the matching
    335. 

  335.  *  parenthesis in $structure.  For instance, if $structure was:
    336. 

  336.  *     ("text" "plain" ("val1name", "1") nil ... )
    337. 

  337.  *     x                                         x
    338. 

  338.  *  then this would return 42 to match up those two.
    339. 

  339.  */
    340. 

  340. function mime_match_parenthesis ($pos, $structure) {
    341. 

  341. 

  342.     $j = strlen( $structure );
    343. 

  343.     
    344. 

  344.     // ignore all extra characters
    345. 

  345.     // If inside of a string, skip string -- Boundary IDs and other
    346. 

  346.     // things can have ) in them.
    347. 

  347.     if ( $structure{$pos} != '(' ) {
    348. 

  348.         return( $j );
    349. 

  349.     }
    350. 

  350.     
    351. 

  351.     while ( $pos < $j ) {
    352. 

  352.         $pos++;
    353. 

  353.         if ($structure{$pos} == ')') {
    354. 

  354.             return $pos;
    355. 

  355.         } elseif ($structure{$pos} == '"') {
    356. 

  356.             $pos++;
    357. 

  357.             while ( $structure{$pos} != '"' &&
    358. 

  358.                     $pos < $j ) {
    359. 

  359.                if (substr($structure, $pos, 2) == '\\"') {
    360. 

  360.                   $pos++;
    361. 

  361.                } elseif (substr($structure, $pos, 2) == '\\\\') {
    362. 

  362.                   $pos++;
    363. 

  363.                }
    364. 

  364.                $pos++;
    365. 

  365.             }
    366. 

  366.         } elseif ( $structure{$pos} == '(' ) {
    367. 

  367.             $pos = mime_match_parenthesis ($pos, $structure);
    368. 

  368.         }
    369. 

  369.     }
    370. 

  370.     echo _("Error decoding mime structure.  Report this as a bug!") . '<br>';
    371. 

  371.     return( $pos );
    372. 

  372. }
    373. 

  373. 

  374. function mime_fetch_body ($imap_stream, $id, $ent_id ) {
    375. 

  375.     // do a bit of error correction.  If we couldn't find the entity id, just guess
    376. 

  376.     // that it is the first one.  That is usually the case anyway.
    377. 

  377.     if (!$ent_id)
    378. 

  378.         $ent_id = 1;
    379. 

  379.     $data = sqimap_run_command ($imap_stream, "FETCH $id BODY[$ent_id]", true, $response, $message);
    380. 

  380.     $topline = array_shift($data);
    381. 

  381.     while (! ereg('\\* [0-9]+ FETCH ', $topline) && $data)
    382. 

  382.         $topline = array_shift($data);
    383. 

  383.     $wholemessage = implode('', $data);
    384. 

  384.     if (ereg('\\{([^\\}]*)\\}', $topline, $regs)) {
    385. 

  385.         $ret = substr( $wholemessage, 0, $regs[1] );
    386. 

  386.         /*
    387. 

  387.             There is some information in the content info header that could be important
    388. 

  388.             in order to parse html messages. Let's get them here.
    389. 

  389.         */
    390. 

  390.         if ( $ret{0} == '<' ) {
    391. 

  391.             $data = sqimap_run_command ($imap_stream, "FETCH $id BODY[$ent_id.MIME]", true, $response, $message);
    392. 

  392.             $base = '';
    393. 

  393.             $k = 10;
    394. 

  394.             foreach( $data as $d ) {
    395. 

  395.                 if ( substr( $d, 0, 13 ) == 'Content-Base:' ) {
    396. 

  396.                     $j = strlen( $d );
    397. 

  397.                     $i = 13;
    398. 

  398.                     $base = '';
    399. 

  399.                     while ( $i < $j &&
    400. 

  400.                            ( !isNoSep( $d{$i} ) || $d{$i} == '"' )  )
    401. 

  401.                         $i++;
    402. 

  402.                     while ( $i < $j ) {
    403. 

  403.                         if ( isNoSep( $d{$i} ) )
    404. 

  404.                             $base .= $d{$i};
    405. 

  405.                         $i++;
    406. 

  406.                     }
    407. 

  407.                     $k = 0;
    408. 

  408.                 } elseif ( $k == 1 && !isnosep( $d{0} ) ) {
    409. 

  409.                     $base .= substr( $d, 1 );
    410. 

  410.                 }
    411. 

  411.                 $k++;
    412. 

  412.             }
    413. 

  413.             if ( $base <> '' )
    414. 

  414.                 
    415. 

  415.                 $ret = "<base href=\"$base\">" . $ret;
    416. 

  416.         }
    417. 

  417.     } else if (ereg('"([^"]*)"', $topline, $regs)) {
    418. 

  418.         $ret = $regs[1];
    419. 

  419.     } else {
    420. 

  420.         global $where, $what, $mailbox, $passed_id, $startMessage;
    421. 

  421.         $par = "mailbox=".urlencode($mailbox)."&passed_id=$passed_id";
    422. 

  422.         if (isset($where) && isset($what)) {
    423. 

  423.             $par .= "&where=".urlencode($where)."&what=".urlencode($what);
    424. 

  424.         } else {
    425. 

  425.             $par .= "&startMessage=$startMessage&show_more=0";
    426. 

  426.         }
    427. 

  427.         $par .= '&response='.urlencode($response).'&message='.urlencode($message).
    428. 

  428.                 '&topline='.urlencode($topline);
    429. 

  429. 

  430.         echo   '<b><font color=$color[2]>' .
    431. 

  431.                _("Body retrieval error. The reason for this is most probably that the message is malformed. Please help us making future versions better by submitting this message to the developers knowledgebase!") .
    432. 

  432.                "<A HREF=\"../src/retrievalerror.php?$par\">Submit message</A><BR>" .
    433. 

  433.                '<tt>' . _("Response:") . "$response<BR>" .
    434. 

  434.                _("Message:") . " $message<BR>" .
    435. 

  435.                _("FETCH line:") . " $topline<BR></tt></font></b>";
    436. 

  436. 

  437.         $data = sqimap_run_command ($imap_stream, "FETCH $passed_id BODY[]", true, $response, $message);
    438. 

  438.         array_shift($data);
    439. 

  439.         $wholemessage = implode('', $data);
    440. 

  440. 

  441.         $ret = "---------------\n$wholemessage";
    442. 

  442. 

  443.     }
    444. 

  444.     return( $ret );
    445. 

  445. }
    446. 

  446. 

  447. function mime_print_body_lines ($imap_stream, $id, $ent_id, $encoding) {
    448. 

  448.     // do a bit of error correction.  If we couldn't find the entity id, just guess
    449. 

  449.     // that it is the first one.  That is usually the case anyway.
    450. 

  450.     if (!$ent_id) {
    451. 

  451.         $ent_id = 1;
    452. 

  452.     }
    453. 

  453.     $sid = sqimap_session_id();
    454. 

  454.     // Don't kill the connection if the browser is over a dialup
    455. 

  455.     // and it would take over 30 seconds to download it.
    456. 

  456.     set_time_limit(0);
    457. 

  457.     
    458. 

  458.     fputs ($imap_stream, "$sid FETCH $id BODY[$ent_id]\r\n");
    459. 

  459.     $cnt = 0;
    460. 

  460.     $continue = true;
    461. 

  461.     $read = fgets ($imap_stream,4096);
    462. 

  462.     // This could be bad -- if the section has sqimap_session_id() . ' OK'
    463. 

  463.     // or similar, it will kill the download.
    464. 

  464.     while (!ereg("^".$sid." (OK|BAD|NO)(.*)$", $read, $regs)) {
    465. 

  465.       if (trim($read) == ')==') {
    466. 

  466.           $read1 = $read;
    467. 

  467.           $read = fgets ($imap_stream,4096);
    468. 

  468.           if (ereg("^".$sid." (OK|BAD|NO)(.*)$", $read, $regs)) {
    469. 

  469.               return;
    470. 

  470.           } else {
    471. 

  471.               echo decodeBody($read1, $encoding) .
    472. 

  472.                    decodeBody($read, $encoding);
    473. 

  473.           }
    474. 

  474.       } else if ($cnt) {
    475. 

  475.           echo decodeBody($read, $encoding);
    476. 

  476.       }
    477. 

  477.       $read = fgets ($imap_stream,4096);
    478. 

  478.       $cnt++;
    479. 

  479.     }
    480. 

  480. }
    481. 

  481. 

  482. /* -[ END MIME DECODING ]----------------------------------------------------------- */
    483. 

  483. 

  484. 

  485. 

  486. /* This is the first function called.  It decides if this is a multipart
    487. 

  487.    message or if it should be handled as a single entity
    488. 

  488.  */
    489. 

  489. function decodeMime ($imap_stream, &$header) {
    490. 

  490.     global $username, $key, $imapServerAddress, $imapPort;
    491. 

  491.     return mime_structure ($imap_stream, $header);
    492. 

  492. }
    493. 

  493. 

  494. // This is here for debugging purposese.  It will print out a list
    495. 

  495. // of all the entity IDs that are in the $message object.
    496. 

  496. /*
    497. 

  497. function listEntities ($message) {
    498. 

  498. if ($message) {
    499. 

  499.  if ($message->header->entity_id)
    500. 

  500.  echo "<tt>" . $message->header->entity_id . ' : ' . $message->header->type0 . '/' . $message->header->type1 . '<br>';
    501. 

  501.  for ($i = 0; $message->entities[$i]; $i++) {
    502. 

  502.     $msg = listEntities($message->entities[$i], $ent_id);
    503. 

  503.     if ($msg)
    504. 

  504.        return $msg;
    505. 

  505.  }
    506. 

  506. }
    507. 

  507. }
    508. 

  508. */
    509. 

  509. 

  510. /* returns a $message object for a particular entity id */
    511. 

  511. function getEntity ($message, $ent_id) {
    512. 

  512.     if ($message) {
    513. 

  513.         if ($message->header->entity_id == $ent_id && strlen($ent_id) == strlen($message->header->entity_id)) {
    514. 

  514.             return $message;
    515. 

  515.         } else {
    516. 

  516.             for ($i = 0; isset($message->entities[$i]); $i++) {
    517. 

  517.                 $msg = getEntity ($message->entities[$i], $ent_id);
    518. 

  518.                 if ($msg) {
    519. 

  519.                     return $msg;
    520. 

  520.                 }
    521. 

  521.             }
    522. 

  522.         }
    523. 

  523.     }
    524. 

  524. }
    525. 

  525. 

  526. /*
    527. 

  527.  * figures out what entity to display and returns the $message object
    528. 

  528.  * for that entity.
    529. 

  529.  */
    530. 

  530. function findDisplayEntity ($message, $textOnly = 1)   {
    531. 

  531.     global $show_html_default;
    532. 

  532.     
    533. 

  533.     $entity = 0;
    534. 

  534.     
    535. 

  535.     if ($message) {
    536. 

  536.         if ( $message->header->type0 == 'multipart' &&
    537. 

  537.              ( $message->header->type1 == 'alternative' ||
    538. 

  538.                $message->header->type1 == 'related' ) &&
    539. 

  539.              $show_html_default && ! $textOnly ) {
    540. 

  540.             $entity = findDisplayEntityHTML($message);
    541. 

  541.         }
    542. 

  542.     
    543. 

  543.         // Show text/plain or text/html -- the first one we find.
    544. 

  544.         if ( $entity == 0 &&
    545. 

  545.              $message->header->type0 == 'text' &&
    546. 

  546.              ( $message->header->type1 == 'plain' ||
    547. 

  547.                $message->header->type1 == 'html' ) &&
    548. 

  548.              isset($message->header->entity_id) ) {
    549. 

  549.             $entity = $message->header->entity_id;
    550. 

  550.         }
    551. 

  551.     
    552. 

  552.         $i = 0;
    553. 

  553.         while ($entity == 0 && isset($message->entities[$i]) ) {
    554. 

  554.             $entity = findDisplayEntity($message->entities[$i], $textOnly);
    555. 

  555.             $i++;
    556. 

  556.         }
    557. 

  557.     }
    558. 

  558.     
    559. 

  559.     return( $entity );
    560. 

  560. }
    561. 

  561. 

  562. /* Shows the HTML version */
    563. 

  563. function findDisplayEntityHTML ($message) {
    564. 

  564. 

  565.     if ( $message->header->type0 == 'text' &&
    566. 

  566.          $message->header->type1 == 'html' &&
    567. 

  567.          isset($message->header->entity_id)) {
    568. 

  568.         return $message->header->entity_id;
    569. 

  569.     }
    570. 

  570.     for ($i = 0; isset($message->entities[$i]); $i ++) {
    571. 

  571.         $entity = findDisplayEntityHTML($message->entities[$i]);
    572. 

  572.         if ($entity != 0) {
    573. 

  573.             return $entity;
    574. 

  574.         }
    575. 

  575.     }
    576. 

  576.     
    577. 

  577.     return 0;
    578. 

  578. }
    579. 

  579. 

  580. /* This returns a parsed string called $body. That string can then
    581. 

  581. be displayed as the actual message in the HTML. It contains
    582. 

  582. everything needed, including HTML Tags, Attachments at the
    583. 

  583. bottom, etc.
    584. 

  584. */
    585. 

  585. function formatBody($imap_stream, $message, $color, $wrap_at) {
    586. 

  586.     // this if statement checks for the entity to show as the
    587. 

  587.     // primary message. To add more of them, just put them in the
    588. 

  588.     // order that is their priority.
    589. 

  589.     global $startMessage, $username, $key, $imapServerAddress, $imapPort,
    590. 

  590.            $show_html_default;
    591. 

  591.     
    592. 

  592.     $id = $message->header->id;
    593. 

  593.     $urlmailbox = urlencode($message->header->mailbox);
    594. 

  594.     
    595. 

  595.     // Get the right entity and redefine message to be this entity
    596. 

  596.     // Pass the 0 to mean that we want the 'best' viewable one
    597. 

  597.     $ent_num = findDisplayEntity ($message, 0);
    598. 

  598.     $body_message = getEntity($message, $ent_num);
    599. 

  599.     if (($body_message->header->type0 == 'text') ||
    600. 

  600.         ($body_message->header->type0 == 'rfc822')) {
    601. 

  601.     
    602. 

  602.         $body = mime_fetch_body ($imap_stream, $id, $ent_num);
    603. 

  603.         $body = decodeBody($body, $body_message->header->encoding);
    604. 

  604.         $hookResults = do_hook("message_body", $body);
    605. 

  605.         $body = $hookResults[1];
    606. 

  606.         
    607. 

  607.         // If there are other types that shouldn't be formatted, add
    608. 

  608.         // them here
    609. 

  609.         if ($body_message->header->type1 == 'html') {
    610. 

  610.             if ( $show_html_default <> 1 ) {
    611. 

  611.                 $body = strip_tags( $body );
    612. 

  612.                 translateText($body, $wrap_at, $body_message->header->charset);
    613. 

  613.             } else {
    614. 

  614.                 $body = MagicHTML( $body, $id );
    615. 

  615.             }
    616. 

  616.         } else {
    617. 

  617.             translateText($body, $wrap_at, $body_message->header->charset);
    618. 

  618.         }
    619. 

  619.         
    620. 

  620.         $body .= "<SMALL><CENTER><A HREF=\"../src/download.php?absolute_dl=true&passed_id=$id&passed_ent_id=$ent_num&mailbox=$urlmailbox&showHeaders=1\">". _("Download this as a file") ."</A></CENTER><BR></SMALL>";
    621. 

  621.         
    622. 

  622.         /** Display the ATTACHMENTS: message if there's more than one part **/
    623. 

  623.         $body .= "</TD></TR></TABLE>";
    624. 

  624.         if (isset($message->entities[0])) {
    625. 

  625.             $body .= formatAttachments ($message, $ent_num, $message->header->mailbox, $id);
    626. 

  626.         }
    627. 

  627.         $body .= "</TD></TR></TABLE>";
    628. 

  628.     } else {
    629. 

  629.         $body = formatAttachments ($message, -1, $message->header->mailbox, $id);
    630. 

  630.     }
    631. 

  631.     return ($body);
    632. 

  632. }
    633. 

  633. 

  634. /*
    635. 

  635.  * A recursive function that returns a list of attachments with links
    636. 

  636.  * to where to download these attachments
    637. 

  637.  */
    638. 

  638. function formatAttachments ($message, $ent_id, $mailbox, $id) {
    639. 

  639.   global $where, $what;
    640. 

  640.   global $startMessage, $color;
    641. 

  641.   static $ShownHTML = 0;
    642. 

  642. 

  643.   $body = "";
    644. 

  644.   if ($ShownHTML == 0) {
    645. 

  645.         $ShownHTML = 1;
    646. 

  646. 

  647.         $body .= "<TABLE WIDTH=\"100%\" CELLSPACING=0 CELLPADDING=2 BORDER=0 BGCOLOR=\"$color[0]\"><TR>\n" .
    648. 

  648.                  "<TH ALIGN=\"left\" BGCOLOR=\"$color[9]\"><B>\n" .
    649. 

  649.                  _("Attachments") . ':' .
    650. 

  650.                  "</B></TH></TR><TR><TD>\n" .
    651. 

  651.                  "<TABLE CELLSPACING=0 CELLPADDING=1 BORDER=0>\n" .
    652. 

  652.                  formatAttachments ($message, $ent_id, $mailbox, $id) .
    653. 

  653.                  "</TABLE></TD></TR></TABLE>";
    654. 

  654. 

  655.         return( $body );
    656. 

  656.   }
    657. 

  657. 

  658.   if ($message) {
    659. 

  659.      if (!$message->entities) {
    660. 

  660.         $type0 = strtolower($message->header->type0);
    661. 

  661.         $type1 = strtolower($message->header->type1);
    662. 

  662.         $name = decodeHeader($message->header->name);
    663. 

  663. 

  664.         if ($message->header->entity_id != $ent_id) {
    665. 

  665.            $filename = decodeHeader($message->header->filename);
    666. 

  666.            if (trim($filename) == '') {
    667. 

  667.               if (trim($name) == '') {
    668. 

  668.                  if ( trim( $message->header->id ) == '' )
    669. 

  669.                     $display_filename = 'untitled-[' . $message->header->entity_id . ']' ;
    670. 

  670.                  else
    671. 

  671.                     $display_filename = 'cid: ' . $message->header->id;
    672. 

  672.                  // $display_filename = 'untitled-[' . $message->header->entity_id . ']' ;
    673. 

  673.               } else {
    674. 

  674.                  $display_filename = $name;
    675. 

  675.                  $filename = $name;
    676. 

  676.               }
    677. 

  677.            } else {
    678. 

  678.               $display_filename = $filename;
    679. 

  679.            }
    680. 

  680. 

  681.            $urlMailbox = urlencode($mailbox);
    682. 

  682.            $ent = urlencode($message->header->entity_id);
    683. 

  683. 

  684.            $DefaultLink =
    685. 

  685.               "../src/download.php?startMessage=$startMessage&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
    686. 

  686.            if ($where && $what)
    687. 

  687.               $DefaultLink .= '&where=' . urlencode($where) . '&what=' . urlencode($what);
    688. 

  688.            $Links['download link']['text'] = _("download");
    689. 

  689.            $Links['download link']['href'] =
    690. 

  690.                "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
    691. 

  691.            $ImageURL = '';
    692. 

  692. 

  693.            $HookResults = do_hook("attachment $type0/$type1", $Links,
    694. 

  694.                $startMessage, $id, $urlMailbox, $ent, $DefaultLink,
    695. 

  695.                $display_filename, $where, $what);
    696. 

  696. 

  697.            $Links = $HookResults[1];
    698. 

  698.            $DefaultLink = $HookResults[6];
    699. 

  699. 

  700.            $body .= '<TR><TD>&nbsp;&nbsp;</TD><TD>' .
    701. 

  701.                     "<A HREF=\"$DefaultLink\">$display_filename</A>&nbsp;</TD>" .
    702. 

  702.                     '<TD><SMALL><b>' . show_readable_size($message->header->size) .
    703. 

  703.                     '</b>&nbsp;&nbsp;</small></TD>' .
    704. 

  704.                     "<TD><SMALL>[ $type0/$type1 ]&nbsp;</SMALL></TD>" .
    705. 

  705.                     '<TD><SMALL>';
    706. 

  706.            if ($message->header->description)
    707. 

  707.               $body .= '<b>' . htmlspecialchars($message->header->description) . '</b>';
    708. 

  708.            $body .= '</SMALL></TD><TD><SMALL>&nbsp;';
    709. 

  709. 

  710. 

  711.            $SkipSpaces = 1;
    712. 

  712.            foreach ($Links as $Val) {
    713. 

  713.               if ($SkipSpaces) {
    714. 

  714.                  $SkipSpaces = 0;
    715. 

  715.               } else {
    716. 

  716.                  $body .= '&nbsp;&nbsp;|&nbsp;&nbsp;';
    717. 

  717.               }
    718. 

  718.               $body .= '<a href="' . $Val['href'] . '">' .  $Val['text'] . '</a>';
    719. 

  719.            }
    720. 

  720. 

  721.            unset($Links);
    722. 

  722. 

  723.            $body .= "</SMALL></TD></TR>\n";
    724. 

  724.         }
    725. 

  725.      } else {
    726. 

  726.         for ($i = 0; $i < count($message->entities); $i++) {
    727. 

  727.            $body .= formatAttachments ($message->entities[$i], $ent_id, $mailbox, $id);
    728. 

  728.         }
    729. 

  729.      }
    730. 

  730.      return( $body );
    731. 

  731.   }
    732. 

  732. }
    733. 

  733. 

  734. 

  735. /** this function decodes the body depending on the encoding type. **/
    736. 

  736. function decodeBody($body, $encoding) {
    737. 

  737.   $body = str_replace("\r\n", "\n", $body);
    738. 

  738.   $encoding = strtolower($encoding);
    739. 

  739. 

  740.   global $show_html_default;
    741. 

  741. 

  742.   if ($encoding == 'quoted-printable') {
    743. 

  743.      $body = quoted_printable_decode($body);
    744. 

  744. 

  745. 

  746.      while (ereg("=\n", $body))
    747. 

  747.         $body = ereg_replace ("=\n", "", $body);
    748. 

  748. 

  749.   } else if ($encoding == 'base64') {
    750. 

  750.      $body = base64_decode($body);
    751. 

  751.   }
    752. 

  752. 

  753.   // All other encodings are returned raw.
    754. 

  754.   return $body;
    755. 

  755. }
    756. 

  756. 

  757. /*
    758. 

  758.  * This functions decode strings that is encoded according to
    759. 

  759.  * RFC1522 (MIME Part Two: Message Header Extensions for Non-ASCII Text).
    760. 

  760.  */
    761. 

  761. function decodeHeader ($string, $utfencode=true) {
    762. 

  762.   if (eregi('=\\?([^?]+)\\?(q|b)\\?([^?]+)\\?=',
    763. 

  763.             $string, $res)) {
    764. 

  764.      if (ucfirst($res[2]) == "B") {
    765. 

  765.         $replace = base64_decode($res[3]);
    766. 

  766.      } else {
    767. 

  767.         $replace = ereg_replace("_", " ", $res[3]);
    768. 

  768.     // Convert lowercase Quoted Printable to uppercase for
    769. 

  769.     // quoted_printable_decode to understand it.
    770. 

  770.     while (ereg("(=(([0-9][abcdef])|([abcdef][0-9])|([abcdef][abcdef])))", $replace, $res)) {
    771. 

  771.        $replace = str_replace($res[1], strtoupper($res[1]), $replace);
    772. 

  772.     }
    773. 

  773.         $replace = quoted_printable_decode($replace);
    774. 

  774.      }
    775. 

  775.      /* Only encode into entities by default. Some places
    776. 

  776.         don't need the encoding, like the compose form. */
    777. 

  777.      if ($utfencode){
    778. 

  778.          $replace = charset_decode ($res[1], $replace);
    779. 

  779.      }
    780. 

  780. 

  781.      // Remove the name of the character set.
    782. 

  782.      $string = eregi_replace ('=\\?([^?]+)\\?(q|b)\\?([^?]+)\\?=',
    783. 

  783.          $replace, $string);
    784. 

  784. 

  785.      // In case there should be more encoding in the string: recurse
    786. 

  786.      return (decodeHeader($string));
    787. 

  787.   } else
    788. 

  788.      return ($string);
    789. 

  789. }
    790. 

  790. 

  791. /*
    792. 

  792.  * Encode a string according to RFC 1522 for use in headers if it
    793. 

  793.  * contains 8-bit characters or anything that looks like it should
    794. 

  794.  * be encoded.
    795. 

  795.  */
    796. 

  796. function encodeHeader ($string) {
    797. 

  797.     global $default_charset;
    798. 

  798.     
    799. 

  799.     // Encode only if the string contains 8-bit characters or =?
    800. 

  800.     $j = strlen( $string  );
    801. 

  801.     $l = strstr($string, '=?');         // Must be encoded ?
    802. 

  802.     $ret = '';
    803. 

  803.     for( $i=0; $i < $j; ++$i) {
    804. 

  804.         switch( $string{$i} ) {
    805. 

  805.            case '=':
    806. 

  806.           $ret .= '=3D';
    807. 

  807.           break;
    808. 

  808.         case '?':
    809. 

  809.           $ret .= '=3F';
    810. 

  810.           break;
    811. 

  811.         case '_':
    812. 

  812.           $ret .= '=5F';
    813. 

  813.           break;
    814. 

  814.         case ' ':
    815. 

  815.           $ret .= '_';
    816. 

  816.           break;
    817. 

  817.         default:
    818. 

  818.           $k = ord( $string{$i} );
    819. 

  819.           if ( $k > 126 ) {
    820. 

  820.              $ret .= sprintf("=%02X", $k);
    821. 

  821.              $l = TRUE;
    822. 

  822.           } else
    823. 

  823.              $ret .= $string{$i};
    824. 

  824.         }
    825. 

  825.     }
    826. 

  826.     
    827. 

  827.     if ( $l ) {
    828. 

  828.         $string = "=?$default_charset?Q?$ret?=";
    829. 

  829.     }
    830. 

  830.     
    831. 

  831.     return( $string );
    832. 

  832. }
    833. 

  833. 

  834. /*
    835. 

  835.     Strips dangerous tags from html messages.
    836. 

  836. */
    837. 

  837. function MagicHTML( $body, $id ) {
    838. 

  838. 

  839.     global $message, $PHP_SELF, $HTTP_SERVER_VARS, 
    840. 

  840.            $attachment_common_show_images;
    841. 

  841. 

  842.     $attachment_common_show_images =
    843. 

  843.                      FALSE; // Don't display attached images in HTML mode
    844. 

  844.     $j = strlen( $body );   // Legnth of the HTML
    845. 

  845.     $ret = '';              // Returned string
    846. 

  846.     $bgcolor = '#ffffff';   // Background style color (defaults to white)
    847. 

  847.     $textcolor = '#000000'; // Foreground style color (defaults to black)
    848. 

  848.     $leftmargin = '';       // Left margin style
    849. 

  849.     $title = '';            // HTML title if any
    850. 

  850. 

  851.     $i = 0;
    852. 

  852.     while ( $i < $j ) {
    853. 

  853.         if ( $body{$i} == '<' ) {
    854. 

  854.             $pos = $i + 1;
    855. 

  855.             $tag = '';
    856. 

  856.             while ($body{$pos} == ' ' || $body{$pos} == "\t" ||
    857. 

  857.                    $body{$pos} == "\n") {
    858. 

  858.                 $pos ++;
    859. 

  859.             }
    860. 

  860.             while (strlen($tag) < 4 && $body{$pos} != ' ' &&
    861. 

  861.                    $body{$pos} != "\t" && $body{$pos} != "\n") {
    862. 

  862.                 $tag .= $body{$pos};
    863. 

  863.                 $pos ++;
    864. 

  864.             }
    865. 

  865.             switch( strtoupper( $tag ) ) {
    866. 

  866.             // Strips the entire tag and contents
    867. 

  867.             case 'APPL':
    868. 

  868.             case 'EMBB':
    869. 

  869.             case 'FRAM':
    870. 

  870.             case 'SCRI':
    871. 

  871.             case 'OBJE':
    872. 

  872.                 $etg = '/' . $tag;
    873. 

  873.                 while ( $body{$i+1}.$body{$i+2}.$body{$i+3}.$body{$i+4}.$body{$i+5} <> $etg  &&
    874. 

  874.                        $i < $j  ) $i++;
    875. 

  875.                 while ( $i < $j && $body{++$i} <> '>' );
    876. 

  876.                 // $ret .= "<!-- $tag removed -->";
    877. 

  877.                 break;
    878. 

  878.             // Substitute Title
    879. 

  879.             case 'TITL':
    880. 

  880.                 $i += 5;
    881. 

  881.                 while ( $body{$i} <> '>' &&  // </title>
    882. 

  882.                        $i < $j )
    883. 

  883.                         $i++;
    884. 

  884.                 $i++;
    885. 

  885.                 $title = '';
    886. 

  886.                 while ( $body{$i} <> '<' &&  // </title>
    887. 

  887.                        $i < $j ) {
    888. 

  888.                     $title .= $body{$i};
    889. 

  889.                     $i++;
    890. 

  890.                 }
    891. 

  891.                 $i += 7;
    892. 

  892.                 break;
    893. 

  893.             // Destroy these tags
    894. 

  894.             case 'HTML':
    895. 

  895.             case 'HEAD':
    896. 

  896.             case '/HTM':
    897. 

  897.             case '/HEA':
    898. 

  898.             case '!DOC':
    899. 

  899.             case 'META':
    900. 

  900.             case 'DIV ':
    901. 

  901.             case '/DIV':
    902. 

  902.             case '!-- ':
    903. 

  903.                 $i += 4;
    904. 

  904.                 while ( $body{$i}  <> '>' &&
    905. 

  905.                        $i < $j )
    906. 

  906.                     $i++;
    907. 

  907.                 // $i++;
    908. 

  908.                 break;
    909. 

  909.             case 'STYL':
    910. 

  910.                 $i += 5;
    911. 

  911.                 while ( $body{$i} <> '>' &&  // </title>
    912. 

  912.                        $i < $j )
    913. 

  913.                         $i++;
    914. 

  914.                 $i++;
    915. 

  915.                 // We parse the style to look for interesting stuff
    916. 

  916.                 $styleblk = '';
    917. 

  917.                 while ( $body{$i} <> '>' &&
    918. 

  918.                        $i < $j ) {
    919. 

  919.                     // First we get the name of the style
    920. 

  920.                     $style = '';
    921. 

  921.                     while ( $body{$i} <> '>' &&
    922. 

  922.                            $body{$i} <> '<' &&
    923. 

  923.                            $body{$i} <> '{' &&
    924. 

  924.                            $i < $j ) {
    925. 

  925.                        if ( isnoSep( $body{$i} ) )
    926. 

  926.                            $style .= $body{$i};
    927. 

  927.                        $i++;
    928. 

  928.                     }
    929. 

  929.                     stripComments( $i, $j, $body );
    930. 

  930.                     $style = strtoupper( trim( $style ) );
    931. 

  931.                     if ( $style == 'BODY' ) {
    932. 

  932.                         // Next we look into the definitions of the body style
    933. 

  933.                         while ( $body{$i} <> '>' &&
    934. 

  934.                                $body{$i} <> '}' &&
    935. 

  935.                                $i < $j ) {
    936. 

  936.                             // We look for the background color if any.
    937. 

  937.                             if ( substr( $body, $i, 17 ) == 'BACKGROUND-COLOR:' ) {
    938. 

  938.                                 $i += 17;
    939. 

  939.                                 $bgcolor = getStyleData( $i, $j, $body );
    940. 

  940.                             } elseif ( substr( $body, $i, 12 ) == 'MARGIN-LEFT:' ) {
    941. 

  941.                                 $i += 12;
    942. 

  942.                                 $leftmargin = getStyleData( $i, $j, $body );
    943. 

  943.                             }
    944. 

  944.                             $i++;
    945. 

  945.                         }
    946. 

  946.                     } else {
    947. 

  947.                         // Other style are mantained
    948. 

  948.                         $styleblk .= "$style ";
    949. 

  949.                         while ( $body{$i} <> '>' &&
    950. 

  950.                                $body{$i} <> '<' &&
    951. 

  951.                                $body{$i} <> '}' &&
    952. 

  952.                                $i < $j ) {
    953. 

  953.                             $styleblk .= $body{$i};
    954. 

  954.                             $i++;
    955. 

  955.                         }
    956. 

  956.                         $styleblk .= $body{$i};
    957. 

  957.                     }
    958. 

  958.                     stripComments( $i, $j, $body );
    959. 

  959.                     if ( $body{$i} <> '>' )
    960. 

  960.                         $i++;
    961. 

  961.                 }
    962. 

  962.                 if ( $styleblk <> '' )
    963. 

  963.                     $ret .= "<style>$styleblk";
    964. 

  964.                 break;
    965. 

  965.             case 'BODY':
    966. 

  966.                 if ( $title <> '' )
    967. 

  967.                     $ret .= '<b>' . _("Title:") . " </b>$title<br>\n";
    968. 

  968.                 $ret .= "<TABLE";
    969. 

  969.                 $i += 5;
    970. 

  970.                 if (! isset($base)) {
    971. 

  971.                     $base = '';
    972. 

  972.                 }
    973. 

  973.                 $ret .= stripEvent( $i, $j, $body, $id, $base );
    974. 

  974.                 $ret .= " bgcolor=$bgcolor width=\"100%\"><tr>";
    975. 

  975.                 if ( $leftmargin <> '' )
    976. 

  976.                     $ret .= "<td width=$leftmargin>&nbsp;</td>";
    977. 

  977.                 $ret .= '<td>';
    978. 

  978.                 if (strtolower($bgcolor) == 'ffffff' ||
    979. 

  979.                     strtolower($bgcolor) == '#ffffff')
    980. 

  980.                     $ret .= '<font color=#000000>';
    981. 

  981.                 break;
    982. 

  982.             case 'BASE':
    983. 

  983.                 $i += 5;
    984. 

  984.                 $base = '';
    985. 

  985.                 while ( !isNoSep( $body{$i} ) &&
    986. 

  986.                        $i < $j ) {
    987. 

  987.                         $i++;
    988. 

  988.                 }
    989. 

  989.                 if ( strcasecmp( substr( $base, 0, 4 ), 'href'  ) ) {
    990. 

  990.                         $i += 5;
    991. 

  991.                         while ( !isNoSep( $body{$i} ) &&
    992. 

  992.                                $i < $j ) {
    993. 

  993.                                 $i++;
    994. 

  994.                         }
    995. 

  995.                         while ( $body{$i} <> '>' &&
    996. 

  996.                                $i < $j ) {
    997. 

  997.                             if ( $body{$i} <> '"' ) {
    998. 

  998.                                 $base .= $body{$i};
    999. 

  999.                             }
    1000. 

  1000.                             $i++;
    1001. 

  1001.                         }
    1002. 

  1002.                         // Debuging $ret .= "<!-- base == $base -->";
    1003. 

  1003.                         if ( strcasecmp( substr( $base, 0, 4 ), 'file' ) <> 0 ) {
    1004. 

  1004.                             $ret .= "\n<BASE HREF=\"$base\">\n";
    1005. 

  1005.                         }
    1006. 

  1006.                 }
    1007. 

  1007.                 break;
    1008. 

  1008.             case '/BOD':
    1009. 

  1009.                 $ret .= '</font></td></tr></TABLE>';
    1010. 

  1010.                 $i += 6;
    1011. 

  1011.                 break;
    1012. 

  1012.             default:
    1013. 

  1013.                 // Following tags can contain some event handler, lets search it
    1014. 

  1014.                 stripComments( $i, $j, $body );
    1015. 

  1015.                 if (! isset($base)) {
    1016. 

  1016.                    $base = '';
    1017. 

  1017.                 }
    1018. 

  1018.                 $ret .= stripEvent( $i, $j, $body, $id, $base ) . '>';
    1019. 

  1019.                         // $ret .= "<!-- $tag detected -->";
    1020. 

  1020.             }
    1021. 

  1021.         } else {
    1022. 

  1022.             $ret .= $body{$i};
    1023. 

  1023.         }
    1024. 

  1024.     $i++;
    1025. 

  1025.     }
    1026. 

  1026. 

  1027. return( "\n\n<!-- HTML Output ahead -->\n" .
    1028. 

  1028.         $ret .
    1029. 

  1029.         "\n<!-- END of HTML Output --><base href=\"".
    1030. 

  1030.         get_location() . '/'.
    1031. 

  1031.         "\">\n\n" );
    1032. 

  1032. }
    1033. 

  1033. 

  1034. function isNoSep( $char ) {
    1035. 

  1035. 

  1036.     switch( $char ) {
    1037. 

  1037.     case ' ':
    1038. 

  1038.     case "\n":
    1039. 

  1039.     case "\t":
    1040. 

  1040.     case "\r":
    1041. 

  1041.     case '>':
    1042. 

  1042.     case '"':
    1043. 

  1043.         return( FALSE );
    1044. 

  1044.         break;
    1045. 

  1045.     default:
    1046. 

  1046.         return( TRUE );
    1047. 

  1047.     }
    1048. 

  1048. 

  1049. }
    1050. 

  1050. 

  1051. /*
    1052. 

  1052.   The following function is usefull to remove extra data that can cause
    1053. 

  1053.   html not to display properly. Especialy with MS stuff.
    1054. 

  1054. */
    1055. 

  1055. 

  1056. function stripComments( &$i, $j, &$body ) {
    1057. 

  1057. 

  1058.     while ( $body{$i}.$body{$i+1}.$body{$i+2}.$body{$i+3} == '<!--' &&
    1059. 

  1059.            $i < $j ) {
    1060. 

  1060.         $i += 5;
    1061. 

  1061.         while ( $body{$i-2}.$body{$i-1}.$body{$i} <> '-->' &&
    1062. 

  1062.                $i < $j )
    1063. 

  1063.             $i++;
    1064. 

  1064.         $i++;
    1065. 

  1065.     }
    1066. 

  1066. 

  1067.     return;
    1068. 

  1068. 

  1069. }
    1070. 

  1070. 

  1071. /* Gets the style data of a specific style */
    1072. 

  1072. 

  1073. function getStyleData( &$i, $j, &$body ) {
    1074. 

  1074. 

  1075.     // We skip spaces
    1076. 

  1076.     while ( $body{$i} <> '>' && !isNoSep( $body{$i} ) &&
    1077. 

  1077.            $i < $j ) {
    1078. 

  1078.         $i++;
    1079. 

  1079.     }
    1080. 

  1080.     // And get the color
    1081. 

  1081.     $ret = '';
    1082. 

  1082.     while ( isNoSep( $body{$i} ) &&
    1083. 

  1083.            $i < $j ) {
    1084. 

  1084.         $ret .= $body{$i};
    1085. 

  1085.         $i++;
    1086. 

  1086.     }
    1087. 

  1087. 

  1088.     return( $ret );
    1089. 

  1089. }
    1090. 

  1090. 

  1091. /*
    1092. 

  1092. Private function for strip_dangerous_tag. Look for event based coded and "remove" it
    1093. 

  1093. change on with no (onload -> noload)
    1094. 

  1094. */
    1095. 

  1095. 

  1096. function stripEvent( &$i, $j, &$body, $id, $base ) {
    1097. 

  1097. 

  1098.     global $message, $base_uri;
    1099. 

  1099. 

  1100.     $ret = '';
    1101. 

  1101. 

  1102.     while ( $body{$i} <> '>' &&
    1103. 

  1103.            $i < $j ) {
    1104. 

  1104.         $etg = strtolower($body{$i}.$body{$i+1}.$body{$i+2});
    1105. 

  1105.         switch( $etg ) {
    1106. 

  1106.         case 'src':
    1107. 

  1107.             // This is probably a src specification
    1108. 

  1108.             $k = $i + 3;
    1109. 

  1109.             while( !isNoSep( $body{$k} )) {
    1110. 

  1110.                 $k++;
    1111. 

  1111.             }
    1112. 

  1112.             if ( $body{$k} == '=' ) {
    1113. 

  1113.                 /* It is indeed */
    1114. 

  1114.                 $k++;
    1115. 

  1115.                 while( !isNoSep( $body{$k} ) &&
    1116. 

  1116.                        $k < $j ) {
    1117. 

  1117.                     $k++;
    1118. 

  1118.                 }
    1119. 

  1119.                 $src = '';
    1120. 

  1120.                 while ( $body{$k} <> '>' && isNoSep( $body{$k} ) &&
    1121. 

  1121.                        $k < $j ) {
    1122. 

  1122.                     $src .= $body{$k};
    1123. 

  1123.                     $k++;
    1124. 

  1124.                 }
    1125. 

  1125.                 while( !isNoSep( $body{$k} ) &&
    1126. 

  1126.                        $k < $j ) {
    1127. 

  1127.                     $k++;
    1128. 

  1128.                 }
    1129. 

  1129.                 if ( strtolower( substr( $src, 0, 4 ) ) == 'cid:' ) {
    1130. 

  1130.                     $src = substr( $src, 4 );
    1131. 

  1131.                     $src = "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=" .
    1132. 

  1132.                            urlencode( $message->header->mailbox ) .
    1133. 

  1133.                            "&passed_ent_id=" . find_ent_id( $src, $message );                       
    1134. 

  1134.                 } else if ( strtolower( substr( $src, 0, 4 ) ) <> 'http' || 
    1135. 

  1135.                             stristr( $src, $base_uri ) ) {
    1136. 

  1136.                     /* Javascript and local urls goes out */
    1137. 

  1137.                     $src = '../images/' . _("sec_remove_eng.png");
    1138. 

  1138.                 }
    1139. 

  1139.                 $ret .= 'src="' . $src . '" ';
    1140. 

  1140.                 $i = $k - 3;
    1141. 

  1141.             } else {
    1142. 

  1142.                 $ret .= 'src';
    1143. 

  1143.                 $i = $i + 3;
    1144. 

  1144.             }
    1145. 

  1145.             
    1146. 

  1146.             break;
    1147. 

  1147.         case '../':
    1148. 

  1148.             // Retrolinks are not allowed without a base because they mess with SM security
    1149. 

  1149.             if ( $base == '' ) {
    1150. 

  1150.                     $i += 2;
    1151. 

  1151.             } else {
    1152. 

  1152.                     $ret .= '.';
    1153. 

  1153.             }
    1154. 

  1154.             break; 
    1155. 

  1155.         case 'cid':
    1156. 

  1156.             // Internal link
    1157. 

  1157.             $k = $i-1;
    1158. 

  1158.             if ( $body{$i+3} == ':') {
    1159. 

  1159.                 $i +=4;
    1160. 

  1160.                 $name = '';
    1161. 

  1161.                 while ( isNoSep( $body{$i} ) &&
    1162. 

  1162.                        $i < $j  ) {
    1163. 

  1163.                     $name .= $body{$i++};
    1164. 

  1164.                 }
    1165. 

  1165.                 if ( $name <> '' ) {
    1166. 

  1166.                     $ret .= "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=" .
    1167. 

  1167.                                 urlencode( $message->header->mailbox ) .
    1168. 

  1168.                                 "&passed_ent_id=" . find_ent_id( $name, $message );
    1169. 

  1169.                     if ( $body{$k} == '"' )
    1170. 

  1170.                         $ret .= '" ';
    1171. 

  1171.                     else
    1172. 

  1172.                         $ret .= ' ';
    1173. 

  1173.                 }
    1174. 

  1174.                 if ( $body{$i} == '>' )
    1175. 

  1175.                     $i -= 1;
    1176. 

  1176.             }
    1177. 

  1177.             break;
    1178. 

  1178.         case ' on':
    1179. 

  1179.         case "\non":
    1180. 

  1180.         case "\ron":
    1181. 

  1181.         case "\ton":
    1182. 

  1182.             $ret .= ' no';
    1183. 

  1183.             $i += 2;
    1184. 

  1184.             break;
    1185. 

  1185.         case 'pt:':
    1186. 

  1186.             if ( strcasecmp( $body{$i-4}.$body{$i-3}.$body{$i-2}.$body{$i-1}.$body{$i}.$body{$i+1}.$body{$i+2}, 'script:') == 0 ) {
    1187. 

  1187.                 $ret .= '_no/';
    1188. 

  1188.             } else {
    1189. 

  1189.                 $ret .= $etg;
    1190. 

  1190.             }
    1191. 

  1191.             $i += 2;
    1192. 

  1192.             break;
    1193. 

  1193.         default:
    1194. 

  1194.             $ret .= $body{$i};
    1195. 

  1195.         }
    1196. 

  1196.         $i++;
    1197. 

  1197.     }
    1198. 

  1198.     return( $ret );
    1199. 

  1199. }
    1200. 

  1200. 

  1201. 

  1202. /* This function trys to locate the entity_id of a specific mime element */
    1203. 

  1203. 

  1204. function find_ent_id( $id, $message ) {
    1205. 

  1205. 

  1206.     $ret = '';
    1207. 

  1207.     for ($i=0; $ret == '' && $i < count($message->entities); $i++) {
    1208. 

  1208. 

  1209.         if ( $message->entities[$i]->header->entity_id == '' ) {
    1210. 

  1210.             $ret = find_ent_id( $id, $message->entities[$i] );
    1211. 

  1211.         } else {
    1212. 

  1212.             if ( strcasecmp( $message->entities[$i]->header->id, $id ) == 0 )
    1213. 

  1213.                 $ret = $message->entities[$i]->header->entity_id;
    1214. 

  1214.         }
    1215. 

  1215. 

  1216.     }
    1217. 

  1217. 

  1218.     return( $ret );
    1219. 

  1219. 

  1220. }
    1221. 

  1221. ?>
    1222.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5