We use cookies to ensure you get the best experience on our website
Startseite Erkunden Hilfe
Registrieren Anmelden
0ct0pu5
/
squirrelmail
1
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: d25367056c
Branches Tags
squirrelmail
/
functions
/
mime.php

mime.php 44 KB
Verlauf Originalformat

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * mime.php
    5. 

  5.  *
    6. 

  6.  * Copyright (c) 1999-2001 The SquirrelMail Development Team
    7. 

  7.  * Licensed under the GNU GPL. For full terms see the file COPYING.
    8. 

  8.  *
    9. 

  9.  * This contains the functions necessary to detect and decode MIME
    10. 

  10.  * messages.
    11. 

  11.  *
    12. 

  12.  * $Id$
    13. 

  13.  */
    14. 

  14. 

  15. /*****************************************************************/
    16. 

  16. /*** THIS FILE NEEDS TO HAVE ITS FORMATTING FIXED!!!           ***/
    17. 

  17. /*** PLEASE DO SO AND REMOVE THIS COMMENT SECTION.             ***/
    18. 

  18. /***    + Base level indent should begin at left margin, as    ***/
    19. 

  19. /***      the require_once below.                              ***/
    20. 

  20. /***    + All identation should consist of four space blocks   ***/
    21. 

  21. /***    + Tab characters are evil.                             ***/
    22. 

  22. /***    + all comments should use "slash-star ... star-slash"  ***/
    23. 

  23. /***      style -- no pound characters, no slash-slash style   ***/
    24. 

  24. /***    + FLOW CONTROL STATEMENTS (if, while, etc) SHOULD      ***/
    25. 

  25. /***      ALWAYS USE { AND } CHARACTERS!!!                     ***/
    26. 

  26. /***    + Please use ' instead of ", when possible. Note "     ***/
    27. 

  27. /***      should always be used in _( ) function calls.        ***/
    28. 

  28. /*** Thank you for your help making the SM code more readable. ***/
    29. 

  29. /*****************************************************************/
    30. 

  30. 

  31. require_once('../functions/imap.php');
    32. 

  32. require_once('../functions/attachment_common.php');
    33. 

  33. 

  34. /** Setting up the objects that have the structure for the message **/
    35. 

  35. class msg_header {
    36. 

  36.     /** msg_header contains generic variables for values that **/
    37. 

  37.     /** could be in a header.                                 **/
    38. 

  38. 

  39.     var $type0 = '', $type1 = '', $boundary = '', $charset = '';
    40. 

  40.     var $encoding = '', $size = 0, $to = array(), $from = '', $date = '';
    41. 

  41.     var $cc = array(), $bcc = array(), $reply_to = '', $subject = '';
    42. 

  42.     var $id = 0, $mailbox = '', $description = '', $filename = '';
    43. 

  43.     var $entity_id = 0, $message_id = 0, $name = '';
    44. 

  44.     // var $priority = "";
    45. 

  45. }
    46. 

  46. 

  47.    class message {
    48. 

  48.       /** message is the object that contains messages.  It is a recursive
    49. 

  49.           object in that through the $entities variable, it can contain
    50. 

  50.           more objects of type message.  See documentation in mime.txt for
    51. 

  51.           a better description of how this works.
    52. 

  52.        **/
    53. 

  53.       var $header = '';
    54. 

  54.       var $entities = array();
    55. 

  55. 

  56.       function addEntity ($msg) {
    57. 

  57.          $this->entities[] = $msg;
    58. 

  58.       }
    59. 

  59.    }
    60. 

  60. 

  61.    /* --------------------------------------------------------------------------------- */
    62. 

  62.    /* MIME DECODING                                                                     */
    63. 

  63.    /* --------------------------------------------------------------------------------- */
    64. 

  64. 

  65.    // This function gets the structure of a message and stores it in the "message" class.
    66. 

  66.    // It will return this object for use with all relevant header information and
    67. 

  67.    // fully parsed into the standard "message" object format.
    68. 

  68.    function mime_structure ($imap_stream, $header) {
    69. 

  69. 

  70.       sqimap_messages_flag ($imap_stream, $header->id, $header->id, 'Seen');
    71. 

  71.       $ssid = sqimap_session_id();
    72. 

  72.       $lsid = strlen( $ssid );
    73. 

  73.       $id = $header->id;
    74. 

  74.       fputs ($imap_stream, "$ssid FETCH $id BODYSTRUCTURE\r\n");
    75. 

  75.       //
    76. 

  76.       // This should use sqimap_read_data instead of reading it itself
    77. 

  77.       //
    78. 

  78.       $read = fgets ($imap_stream, 10000);
    79. 

  79.       $bodystructure = '';
    80. 

  80.       while( substr($read, 0, $lsid) <> $ssid && 
    81. 

  81.              !feof( $imap_stream ) ) {
    82. 

  82.          $bodystructure .= $read;
    83. 

  83.          $read = fgets ($imap_stream, 10000);
    84. 

  84.       }
    85. 

  85.       $read = $bodystructure;
    86. 

  86. 

  87.       // isolate the body structure and remove beginning and end parenthesis
    88. 

  88.       $read = trim(substr ($read, strpos(strtolower($read), 'bodystructure') + 13));
    89. 

  89.       $read = trim(substr ($read, 0, -1));
    90. 

  90.       $end = mime_match_parenthesis(0, $read);
    91. 

  91.       while ($end == strlen($read)-1) {
    92. 

  92.          $read = trim(substr ($read, 0, -1));
    93. 

  93.          $read = trim(substr ($read, 1));
    94. 

  94.          $end = mime_match_parenthesis(0, $read);
    95. 

  95.       }
    96. 

  96. 

  97.       $msg = mime_parse_structure ($read, 0);
    98. 

  98.       $msg->header = $header;
    99. 

  99.       return $msg;
    100. 

  100.    }
    101. 

  101. 

  102.    // this starts the parsing of a particular structure.  It is called recursively,
    103. 

  103.    // so it can be passed different structures.  It returns an object of type
    104. 

  104.    // $message.
    105. 

  105.    // First, it checks to see if it is a multipart message.  If it is, then it
    106. 

  106.    // handles that as it sees is necessary.  If it is just a regular entity,
    107. 

  107.    // then it parses it and adds the necessary header information (by calling out
    108. 

  108.    // to mime_get_elements()
    109. 

  109.    function mime_parse_structure ($structure, $ent_id) {
    110. 

  110.    
    111. 

  111.       $msg = new message();
    112. 

  112.       if ($structure{0} == '(') {
    113. 

  113.          $ent_id = mime_new_element_level($ent_id);
    114. 

  114.          $start = $end = -1;
    115. 

  115.          do {
    116. 

  116.             $start = $end+1;
    117. 

  117.             $end = mime_match_parenthesis ($start, $structure);
    118. 

  118. 

  119.             $element = substr($structure, $start+1, ($end - $start)-1);
    120. 

  120.             $ent_id = mime_increment_id ($ent_id);
    121. 

  121.             $newmsg = mime_parse_structure ($element, $ent_id);
    122. 

  122.             $msg->addEntity ($newmsg);
    123. 

  123.          } while ($structure{$end+1} == '(');
    124. 

  124.       } else {
    125. 

  125.          // parse the elements
    126. 

  126.          $msg = mime_get_element ($structure, $msg, $ent_id);
    127. 

  127.       }
    128. 

  128.       return $msg;
    129. 

  129.    }
    130. 

  130. 

  131.    // Increments the element ID.  An element id can look like any of
    132. 

  132.    // the following:  1, 1.2, 4.3.2.4.1, etc.  This function increments
    133. 

  133.    // the last number of the element id, changing 1.2 to 1.3.
    134. 

  134.    function mime_increment_id ($id) {
    135. 

  135. 

  136.       if (strpos($id, ".")) {
    137. 

  137.          $first = substr($id, 0, strrpos($id, "."));
    138. 

  138.          $last = substr($id, strrpos($id, ".")+1);
    139. 

  139.          $last++;
    140. 

  140.          $new = $first . "." .$last;
    141. 

  141.       } else {
    142. 

  142.          $new = $id + 1;
    143. 

  143.       }
    144. 

  144. 

  145.       return $new;
    146. 

  146.    }
    147. 

  147. 

  148.    // See comment for mime_increment_id().
    149. 

  149.    // This adds another level on to the entity_id changing 1.3 to 1.3.0
    150. 

  150.    // NOTE:  1.3.0 is not a valid element ID.  It MUST be incremented
    151. 

  151.    //        before it can be used.  I left it this way so as not to have
    152. 

  152.    //        to make a special case if it is the first entity_id.  It
    153. 

  153.    //        always increments it, and that works fine.
    154. 

  154.    function mime_new_element_level ($id) {
    155. 

  155. 

  156.       if (!$id) {
    157. 

  157.           $id = 0;
    158. 

  158.       } else {
    159. 

  159.           $id = $id . '.0';
    160. 

  160.       }
    161. 

  161. 

  162.       return( $id );
    163. 

  163.    }
    164. 

  164. 

  165.    function mime_get_element (&$structure, $msg, $ent_id) {
    166. 

  166. 

  167.       $elem_num = 1;
    168. 

  168.       $msg->header = new msg_header();
    169. 

  169.       $msg->header->entity_id = $ent_id;
    170. 

  170.       $properties = array();
    171. 

  171. 

  172.       while (strlen($structure) > 0) {
    173. 

  173.          $structure = trim($structure);
    174. 

  174.          $char = $structure{0};
    175. 

  175. 

  176.          if (strtolower(substr($structure, 0, 3)) == 'nil') {
    177. 

  177.             $text = '';
    178. 

  178.             $structure = substr($structure, 3);
    179. 

  179.          } else if ($char == '"') {
    180. 

  180.             // loop through until we find the matching quote, and return that as a string
    181. 

  181.             $pos = 1;
    182. 

  182.             $text = '';
    183. 

  183.             while ( ($char = $structure{$pos} ) <> '"' && $pos < strlen($structure)) {
    184. 

  184.                $text .= $char;
    185. 

  185.                $pos++;
    186. 

  186.             }
    187. 

  187.             $structure = substr($structure, strlen($text) + 2);
    188. 

  188.          } else if ($char == '(') {
    189. 

  189.             // comment me
    190. 

  190.             $end = mime_match_parenthesis (0, $structure);
    191. 

  191.             $sub = substr($structure, 1, $end-1);
    192. 

  192.             $properties = mime_get_props($properties, $sub);
    193. 

  193.             $structure = substr($structure, strlen($sub) + 2);
    194. 

  194.          } else {
    195. 

  195.             // loop through until we find a space or an end parenthesis
    196. 

  196.             $pos = 0;
    197. 

  197.             $char = $structure{$pos};
    198. 

  198.             $text = '';
    199. 

  199.             while ($char != ' ' && $char != ')' && $pos < strlen($structure)) {
    200. 

  200.                $text .= $char;
    201. 

  201.                $pos++;
    202. 

  202.                $char = $structure{$pos};
    203. 

  203.             }
    204. 

  204.             $structure = substr($structure, strlen($text));
    205. 

  205.          }
    206. 

  206. 

  207.          // This is where all the text parts get put into the header
    208. 

  208.          switch ($elem_num) {
    209. 

  209.             case 1:
    210. 

  210.                $msg->header->type0 = strtolower($text);
    211. 

  211.                break;
    212. 

  212.             case 2:
    213. 

  213.                $msg->header->type1 = strtolower($text);
    214. 

  214.                break;
    215. 

  215.             case 4: // Id
    216. 

  216.                // Invisimail enclose images with <>
    217. 

  217.                $msg->header->id = str_replace( '<', '', str_replace( '>', '', $text ) );
    218. 

  218.                break;               
    219. 

  219.             case 5:
    220. 

  220.                $msg->header->description = $text;
    221. 

  221.                break;
    222. 

  222.             case 6:
    223. 

  223.                $msg->header->encoding = strtolower($text);
    224. 

  224.                break;
    225. 

  225.             case 7:
    226. 

  226.                $msg->header->size = $text;
    227. 

  227.                break;
    228. 

  228.             default:
    229. 

  229.                if ($msg->header->type0 == 'text' && $elem_num == 8) {
    230. 

  230.                   // This is a plain text message, so lets get the number of lines
    231. 

  231.                   // that it contains.
    232. 

  232.                   $msg->header->num_lines = $text;
    233. 

  233. 

  234.                } else if ($msg->header->type0 == 'message' && $msg->header->type1 == 'rfc822' && $elem_num == 8) {
    235. 

  235.                   // This is an encapsulated message, so lets start all over again and
    236. 

  236.                   // parse this message adding it on to the existing one.
    237. 

  237.                   $structure = trim($structure);
    238. 

  238.                   if ( $structure{0} == '(' ) {
    239. 

  239.                      $e = mime_match_parenthesis (0, $structure);
    240. 

  240.                      $structure = substr($structure, 0, $e);
    241. 

  241.                      $structure = substr($structure, 1);
    242. 

  242.                      $m = mime_parse_structure($structure, $msg->header->entity_id);
    243. 

  243. 

  244.                      // the following conditional is there to correct a bug that wasn't
    245. 

  245.                      // incrementing the entity IDs correctly because of the special case
    246. 

  246.                      // that message/rfc822 is.  This fixes it fine.
    247. 

  247.                      if (substr($structure, 1, 1) != '(')
    248. 

  248.                         $m->header->entity_id = mime_increment_id(mime_new_element_level($ent_id));
    249. 

  249. 

  250.                      // Now we'll go through and reformat the results.
    251. 

  251.                      if ($m->entities) {
    252. 

  252.                         for ($i=0; $i < count($m->entities); $i++) {
    253. 

  253.                            $msg->addEntity($m->entities[$i]);
    254. 

  254.                         }
    255. 

  255.                      } else {
    256. 

  256.                         $msg->addEntity($m);
    257. 

  257.                      }
    258. 

  258.                      $structure = "";
    259. 

  259.                   }
    260. 

  260.                }
    261. 

  261.                break;
    262. 

  262.          }
    263. 

  263.          $elem_num++;
    264. 

  264.          $text = "";
    265. 

  265.       }
    266. 

  266.       // loop through the additional properties and put those in the various headers
    267. 

  267.       if ($msg->header->type0 != 'message') {
    268. 

  268.          for ($i=0; $i < count($properties); $i++) {
    269. 

  269.             $msg->header->{$properties[$i]['name']} = $properties[$i]['value'];
    270. 

  270.          }
    271. 

  271.       }
    272. 

  272. 

  273.       return $msg;
    274. 

  274.    }
    275. 

  275. 

  276.    // I did most of the MIME stuff yesterday (June 20, 2000), but I couldn't
    277. 

  277.    // figure out how to do this part, so I decided to go to bed.  I woke up
    278. 

  278.    // in the morning and had a flash of insight.  I went to the white-board
    279. 

  279.    // and scribbled it out, then spent a bit programming it, and this is the
    280. 

  280.    // result.  Nothing complicated, but I think my brain was fried yesterday.
    281. 

  281.    // Funny how that happens some times.
    282. 

  282.    //
    283. 

  283.    // This gets properties in a nested parenthesisized list.  For example,
    284. 

  284.    // this would get passed something like:  ("attachment" ("filename" "luke.tar.gz"))
    285. 

  285.    // This returns an array called $props with all paired up properties.
    286. 

  286.    // It ignores the "attachment" for now, maybe that should change later
    287. 

  287.    // down the road.  In this case, what is returned is:
    288. 

  288.    //    $props[0]["name"] = "filename";
    289. 

  289.    //    $props[0]["value"] = "luke.tar.gz";
    290. 

  290.    function mime_get_props ($props, $structure) {
    291. 

  291.    
    292. 

  292.       while (strlen($structure) > 0) {
    293. 

  293.          $structure = trim($structure);
    294. 

  294.          $char = $structure{0};
    295. 

  295. 

  296.          if ($char == '"') {
    297. 

  297.             $pos = 1;
    298. 

  298.             $tmp = '';
    299. 

  299.             while ( ( $char = $structure{$pos} ) != '"' && 
    300. 

  300.                     $pos < strlen($structure)) {
    301. 

  301.                $tmp .= $char;
    302. 

  302.                $pos++;
    303. 

  303.             }
    304. 

  304.             $structure = trim(substr($structure, strlen($tmp) + 2));
    305. 

  305.             $char = $structure{0};
    306. 

  306. 

  307.             if ($char == '"') {
    308. 

  308.                $pos = 1;
    309. 

  309.                $value = '';
    310. 

  310.                while ( ( $char = $structure{$pos} ) != '"' &&
    311. 

  311.                        $pos < strlen($structure) ) {
    312. 

  312.                   $value .= $char;
    313. 

  313.                   $pos++;
    314. 

  314.                }
    315. 

  315.                $structure = trim(substr($structure, strlen($tmp) + 2));
    316. 

  316. 

  317.                $k = count($props);
    318. 

  318.                $props[$k]['name'] = strtolower($tmp);
    319. 

  319.                $props[$k]['value'] = $value;
    320. 

  320.             } else if ($char == '(') {
    321. 

  321.                $end = mime_match_parenthesis (0, $structure);
    322. 

  322.                $sub = substr($structure, 1, $end-1);
    323. 

  323.            if (! isset($props))
    324. 

  324.                $props = array();
    325. 

  325.                $props = mime_get_props($props, $sub);
    326. 

  326.                $structure = substr($structure, strlen($sub) + 2);
    327. 

  327.             }
    328. 

  328.             return $props;
    329. 

  329.          } else if ($char == '(') {
    330. 

  330.             $end = mime_match_parenthesis (0, $structure);
    331. 

  331.             $sub = substr($structure, 1, $end-1);
    332. 

  332.             $props = mime_get_props($props, $sub);
    333. 

  333.             $structure = substr($structure, strlen($sub) + 2);
    334. 

  334.             return $props;
    335. 

  335.          } else {
    336. 

  336.             return $props;
    337. 

  337.          }
    338. 

  338.       }
    339. 

  339.    }
    340. 

  340. 

  341.    //  Matches parenthesis.  It will return the position of the matching
    342. 

  342.    //  parenthesis in $structure.  For instance, if $structure was:
    343. 

  343.    //     ("text" "plain" ("val1name", "1") nil ... )
    344. 

  344.    //     x                                         x
    345. 

  345.    //  then this would return 42 to match up those two.
    346. 

  346.    function mime_match_parenthesis ($pos, $structure) {
    347. 

  347. 

  348.       $j = strlen( $structure );
    349. 

  349. 

  350.       // ignore all extra characters
    351. 

  351.       // If inside of a string, skip string -- Boundary IDs and other
    352. 

  352.       // things can have ) in them.
    353. 

  353.       if( $structure{$pos} != '(' )
    354. 

  354.          return( $j );
    355. 

  355. 

  356.       while( $pos < $j ) {
    357. 

  357.          $pos++;
    358. 

  358.          if ($structure{$pos} == ')') {
    359. 

  359.             return $pos;
    360. 

  360.          } elseif ($structure{$pos} == '"') {
    361. 

  361.             $pos++;
    362. 

  362.             while( $structure{$pos} != '"' &&
    363. 

  363.                $pos < $j ) {
    364. 

  364.                if (substr($structure, $pos, 2) == '\\"')
    365. 

  365.                   $pos++;
    366. 

  366.                elseif (substr($structure, $pos, 2) == '\\\\')
    367. 

  367.                   $pos++;
    368. 

  368.                $pos++;
    369. 

  369.             }
    370. 

  370.          } elseif ( $structure{$pos} == '(' ) {
    371. 

  371.             $pos = mime_match_parenthesis ($pos, $structure);
    372. 

  372.          }
    373. 

  373.       }
    374. 

  374.       echo "Error decoding mime structure.  Report this as a bug!<br>\n";
    375. 

  375.       return( $pos );
    376. 

  376.    }
    377. 

  377. 

  378.     function mime_fetch_body ($imap_stream, $id, $ent_id ) {
    379. 

  379.         // do a bit of error correction.  If we couldn't find the entity id, just guess
    380. 

  380.         // that it is the first one.  That is usually the case anyway.
    381. 

  381.         if (!$ent_id) 
    382. 

  382.             $ent_id = 1;
    383. 

  383.         $sid = sqimap_session_id();
    384. 

  384.         fputs ($imap_stream, "$sid FETCH $id BODY[$ent_id]\r\n");
    385. 

  385.         $data = sqimap_read_data ($imap_stream, $sid, true, $response, $message);
    386. 

  386.         $topline = array_shift($data);
    387. 

  387.         while (! ereg('\\* [0-9]+ FETCH ', $topline) && $data)
    388. 

  388.             $topline = array_shift($data);
    389. 

  389.         $wholemessage = implode('', $data);
    390. 

  390.         if (ereg('\\{([^\\}]*)\\}', $topline, $regs)) {
    391. 

  391.             $ret = substr( $wholemessage, 0, $regs[1] );
    392. 

  392.             /*
    393. 

  393.                 There is some information in the content info header that could be important
    394. 

  394.                 in order to parse html messages. Let's get them here.
    395. 

  395.             */
    396. 

  396.             if( $ret{0} == '<' ) {
    397. 

  397.                 fputs ($imap_stream, "$sid FETCH $id BODY[$ent_id.MIME]\r\n");
    398. 

  398.                 $data = sqimap_read_data ($imap_stream, $sid, true, $response, $message);
    399. 

  399.                 $base = '';
    400. 

  400.                 $k = 10;
    401. 

  401.                 foreach( $data as $d ) {
    402. 

  402.                     if( substr( $d, 0, 13 ) == 'Content-Base:' ) {
    403. 

  403.                         $j = strlen( $d );
    404. 

  404.                         $i = 13;
    405. 

  405.                         $base = '';
    406. 

  406.                         while( $i < $j &&
    407. 

  407.                                ( !isNoSep( $d{$i} ) || $d{$i} == '"' )  )
    408. 

  408.                             $i++;
    409. 

  409.                         while( $i < $j ) {
    410. 

  410.                             if( isNoSep( $d{$i} ) )
    411. 

  411.                                 $base .= $d{$i};
    412. 

  412.                             $i++;
    413. 

  413.                         }
    414. 

  414.                         $k = 0;
    415. 

  415.                     } elseif( $k == 1 && !isnosep( $d{0} ) ) {
    416. 

  416.                         $base .= substr( $d, 1 );
    417. 

  417.                     }
    418. 

  418.                     $k++;
    419. 

  419.                 }
    420. 

  420.                 if( $base <> '' )
    421. 

  421.                     $ret = "<base href=\"$base\">" . $ret;
    422. 

  422.             }
    423. 

  423.         } else if (ereg('"([^"]*)"', $topline, $regs)) {
    424. 

  424.             $ret = $regs[1];
    425. 

  425.         } else {
    426. 

  426.             global $where, $what, $mailbox, $passed_id, $startMessage;
    427. 

  427.             $par = "mailbox=".urlencode($mailbox)."&passed_id=$passed_id";
    428. 

  428.             if (isset($where) && isset($what)) {
    429. 

  429.                 $par .= "&where=".urlencode($where)."&what=".urlencode($what);
    430. 

  430.             } else {
    431. 

  431.                 $par .= "&startMessage=$startMessage&show_more=0";
    432. 

  432.             }
    433. 

  433.             $par .= '&response='.urlencode($response).'&message='.urlencode($message).
    434. 

  434.                     '&topline='.urlencode($topline);
    435. 

  435. 

  436.             echo   '<b><font color=$color[2]>Body retrieval error. The reason for this is most probably that<BR> ' .
    437. 

  437.                    'the message is malformed. Please help us making future versions<BR> ' .
    438. 

  438.                    "better by submitting this message to the developers knowledgebase!<BR>\n" .
    439. 

  439.                    "<A HREF=\"../src/retrievalerror.php?$par\">Submit message</A><BR>" .
    440. 

  440. 

  441.                    "<tt>Response:  $response<BR>" .
    442. 

  442.                    "Message:  $message<BR>" .
    443. 

  443.                    "FETCH line:  $topline<BR></tt></font></b>";
    444. 

  444. 

  445.             fputs ($imap_stream, "$sid FETCH $passed_id BODY[]\r\n");
    446. 

  446.             $data = sqimap_read_data ($imap_stream, $sid, true, $response, $message);
    447. 

  447.             array_shift($data);
    448. 

  448.             $wholemessage = implode('', $data);
    449. 

  449. 

  450.             $ret = "---------------\n$wholemessage";
    451. 

  451.     
    452. 

  452.         }
    453. 

  453.         return( $ret );
    454. 

  454.     }
    455. 

  455. 

  456.    function mime_print_body_lines ($imap_stream, $id, $ent_id, $encoding) {
    457. 

  457.       // do a bit of error correction.  If we couldn't find the entity id, just guess
    458. 

  458.       // that it is the first one.  That is usually the case anyway.
    459. 

  459.       if (!$ent_id) $ent_id = 1;
    460. 

  460.       $sid = sqimap_session_id();
    461. 

  461.       // Don't kill the connection if the browser is over a dialup
    462. 

  462.       // and it would take over 30 seconds to download it.
    463. 

  463.       set_time_limit(0);
    464. 

  464.       
    465. 

  465.       fputs ($imap_stream, "$sid FETCH $id BODY[$ent_id]\r\n");
    466. 

  466.       $cnt = 0;
    467. 

  467.       $continue = true;
    468. 

  468.       $read = fgets ($imap_stream,4096);
    469. 

  469.       // This could be bad -- if the section has sqimap_session_id() . ' OK'
    470. 

  470.       // or similar, it will kill the download.
    471. 

  471.       while (!ereg("^".$sid." (OK|BAD|NO)(.*)$", $read, $regs)) {
    472. 

  472.           if (trim($read) == ')==') {
    473. 

  473.               $read1 = $read;
    474. 

  474.               $read = fgets ($imap_stream,4096);
    475. 

  475.               if (ereg("^".$sid." (OK|BAD|NO)(.*)$", $read, $regs)) {
    476. 

  476.                   return;
    477. 

  477.               } else {
    478. 

  478.                   echo decodeBody($read1, $encoding) .
    479. 

  479.                        decodeBody($read, $encoding);
    480. 

  480.               }
    481. 

  481.           } else if ($cnt) {
    482. 

  482.               echo decodeBody($read, $encoding);
    483. 

  483.           }
    484. 

  484.           $read = fgets ($imap_stream,4096);
    485. 

  485.           $cnt++;
    486. 

  486.       }
    487. 

  487.    }
    488. 

  488. 

  489.    /* -[ END MIME DECODING ]----------------------------------------------------------- */
    490. 

  490. 

  491. 

  492. 

  493.    /** This is the first function called.  It decides if this is a multipart
    494. 

  494.        message or if it should be handled as a single entity
    495. 

  495.     **/
    496. 

  496.    function decodeMime ($imap_stream, &$header) {
    497. 

  497.       global $username, $key, $imapServerAddress, $imapPort;
    498. 

  498.       return mime_structure ($imap_stream, $header);
    499. 

  499.    }
    500. 

  500. 

  501.    // This is here for debugging purposese.  It will print out a list
    502. 

  502.    // of all the entity IDs that are in the $message object.
    503. 

  503.    /*
    504. 

  504.    function listEntities ($message) {
    505. 

  505.       if ($message) {
    506. 

  506.          if ($message->header->entity_id)
    507. 

  507.          echo "<tt>" . $message->header->entity_id . ' : ' . $message->header->type0 . '/' . $message->header->type1 . '<br>';
    508. 

  508.          for ($i = 0; $message->entities[$i]; $i++) {
    509. 

  509.             $msg = listEntities($message->entities[$i], $ent_id);
    510. 

  510.             if ($msg)
    511. 

  511.                return $msg;
    512. 

  512.          }
    513. 

  513.       }
    514. 

  514.    }
    515. 

  515.    */
    516. 

  516. 

  517.    // returns a $message object for a particular entity id
    518. 

  518.    function getEntity ($message, $ent_id) {
    519. 

  519.       if ($message) {
    520. 

  520.          if ($message->header->entity_id == $ent_id && strlen($ent_id) == strlen($message->header->entity_id)) {
    521. 

  521.             return $message;
    522. 

  522.          } else {
    523. 

  523.             for ($i = 0; isset($message->entities[$i]); $i++) {
    524. 

  524.                $msg = getEntity ($message->entities[$i], $ent_id);
    525. 

  525.                if ($msg)
    526. 

  526.                   return $msg;
    527. 

  527.             }
    528. 

  528.          }
    529. 

  529.       }
    530. 

  530.    }
    531. 

  531. 

  532.     // figures out what entity to display and returns the $message object
    533. 

  533.     // for that entity.
    534. 

  534.     function findDisplayEntity ($message, $textOnly = 1)   {
    535. 

  535.         global $show_html_default;
    536. 

  536.         
    537. 

  537.         $entity = 0;
    538. 

  538.         
    539. 

  539.         if ($message) {
    540. 

  540.             if ( $message->header->type0 == 'multipart' &&
    541. 

  541.                  ( $message->header->type1 == 'alternative' ||
    542. 

  542.                    $message->header->type1 == 'related' ) &&
    543. 

  543.                  $show_html_default && ! $textOnly ) {
    544. 

  544.                 $entity = findDisplayEntityHTML($message);
    545. 

  545.             }
    546. 

  546.             
    547. 

  547.             // Show text/plain or text/html -- the first one we find.
    548. 

  548.             if ( $entity == 0 &&
    549. 

  549.                  $message->header->type0 == 'text' &&
    550. 

  550.                  ( $message->header->type1 == 'plain' ||
    551. 

  551.                    $message->header->type1 == 'html' ) &&
    552. 

  552.                  isset($message->header->entity_id) ) {
    553. 

  553.                 $entity = $message->header->entity_id;
    554. 

  554.             }
    555. 

  555.             
    556. 

  556.             $i = 0;
    557. 

  557.             while ($entity == 0 && isset($message->entities[$i]) ) {
    558. 

  558.                 $entity = findDisplayEntity($message->entities[$i], $textOnly);
    559. 

  559.                 $i++;
    560. 

  560.             }
    561. 

  561.         }
    562. 

  562.       
    563. 

  563.         return( $entity );
    564. 

  564.     }
    565. 

  565. 

  566.    // Shows the HTML version
    567. 

  567.    function findDisplayEntityHTML ($message) {
    568. 

  568.       if ($message->header->type0 == 'text' &&
    569. 

  569.           $message->header->type1 == 'html' &&
    570. 

  570.       isset($message->header->entity_id))
    571. 

  571.      return $message->header->entity_id;
    572. 

  572.       for ($i = 0; isset($message->entities[$i]); $i ++) {
    573. 

  573.          $entity = findDisplayEntityHTML($message->entities[$i]);
    574. 

  574.      if ($entity != 0)
    575. 

  575.         return $entity;
    576. 

  576.       }
    577. 

  577.       return 0;
    578. 

  578.    }
    579. 

  579. 

  580.    /** This returns a parsed string called $body. That string can then
    581. 

  581.        be displayed as the actual message in the HTML. It contains
    582. 

  582.        everything needed, including HTML Tags, Attachments at the
    583. 

  583.        bottom, etc.
    584. 

  584.     **/
    585. 

  585.    function formatBody($imap_stream, $message, $color, $wrap_at) {
    586. 

  586.       // this if statement checks for the entity to show as the
    587. 

  587.       // primary message. To add more of them, just put them in the
    588. 

  588.       // order that is their priority.
    589. 

  589.       global $startMessage, $username, $key, $imapServerAddress, $imapPort,
    590. 

  590.           $show_html_default;
    591. 

  591. 

  592.       $id = $message->header->id;
    593. 

  593.       $urlmailbox = urlencode($message->header->mailbox);
    594. 

  594. 

  595.       // Get the right entity and redefine message to be this entity
    596. 

  596.       // Pass the 0 to mean that we want the 'best' viewable one
    597. 

  597.       $ent_num = findDisplayEntity ($message, 0);
    598. 

  598.       $body_message = getEntity($message, $ent_num);
    599. 

  599.       if (($body_message->header->type0 == 'text') ||
    600. 

  600.           ($body_message->header->type0 == 'rfc822')) {
    601. 

  601. 

  602.          $body = mime_fetch_body ($imap_stream, $id, $ent_num);
    603. 

  603.          $body = decodeBody($body, $body_message->header->encoding);
    604. 

  604.          $hookResults = do_hook("message_body", $body);
    605. 

  605.          $body = $hookResults[1];
    606. 

  606. 

  607.          // If there are other types that shouldn't be formatted, add
    608. 

  608.          // them here
    609. 

  609.          if ($body_message->header->type1 == 'html') {
    610. 

  610.             if( $show_html_default <> 1 ) {
    611. 

  611.                 $body = strip_tags( $body );
    612. 

  612.                 translateText($body, $wrap_at, $body_message->header->charset);
    613. 

  613.             } else {
    614. 

  614.                 $body = MagicHTML( $body, $id );
    615. 

  615.             }
    616. 

  616.          } else {
    617. 

  617.             translateText($body, $wrap_at, $body_message->header->charset);
    618. 

  618.          }
    619. 

  619. 

  620.          $body .= "<SMALL><CENTER><A HREF=\"../src/download.php?absolute_dl=true&passed_id=$id&passed_ent_id=$ent_num&mailbox=$urlmailbox&showHeaders=1\">". _("Download this as a file") ."</A></CENTER><BR></SMALL>";
    621. 

  621. 

  622.          /** Display the ATTACHMENTS: message if there's more than one part **/
    623. 

  623.          $body .= "</TD></TR></TABLE>";
    624. 

  624.          if (isset($message->entities[0])) {
    625. 

  625.             $body .= formatAttachments ($message, $ent_num, $message->header->mailbox, $id);
    626. 

  626.          }
    627. 

  627.          $body .= "</TD></TR></TABLE>";
    628. 

  628.       } else {
    629. 

  629.          $body = formatAttachments ($message, -1, $message->header->mailbox, $id);
    630. 

  630.       }
    631. 

  631.       return( $body );
    632. 

  632.    }
    633. 

  633. 

  634.    // A recursive function that returns a list of attachments with links
    635. 

  635.    // to where to download these attachments
    636. 

  636.    function formatAttachments ($message, $ent_id, $mailbox, $id) {
    637. 

  637.       global $where, $what;
    638. 

  638.       global $startMessage, $color;
    639. 

  639.       static $ShownHTML = 0;
    640. 

  640. 

  641.       $body = "";
    642. 

  642.       if ($ShownHTML == 0) {
    643. 

  643.             $ShownHTML = 1;
    644. 

  644. 

  645.             $body .= "<TABLE WIDTH=100% CELLSPACING=0 CELLPADDING=2 BORDER=0 BGCOLOR=\"$color[0]\"><TR>\n" .
    646. 

  646.                      "<TH ALIGN=\"left\" BGCOLOR=\"$color[9]\"><B>\n" .
    647. 

  647.                      _("Attachments") . ':' .
    648. 

  648.                      "</B></TH></TR><TR><TD>\n" .
    649. 

  649.                      "<TABLE CELLSPACING=0 CELLPADDING=1 BORDER=0>\n" .
    650. 

  650.                      formatAttachments ($message, $ent_id, $mailbox, $id) .
    651. 

  651.                      "</TABLE></TD></TR></TABLE>";
    652. 

  652. 

  653.             return( $body );
    654. 

  654.       }
    655. 

  655. 

  656.       if ($message) {
    657. 

  657.          if (!$message->entities) {
    658. 

  658.             $type0 = strtolower($message->header->type0);
    659. 

  659.             $type1 = strtolower($message->header->type1);
    660. 

  660.             $name = decodeHeader($message->header->name);
    661. 

  661. 

  662.             if ($message->header->entity_id != $ent_id) {
    663. 

  663.                $filename = decodeHeader($message->header->filename);
    664. 

  664.                if (trim($filename) == '') {
    665. 

  665.                   if (trim($name) == '') {
    666. 

  666.                      if( trim( $message->header->id ) == '' )
    667. 

  667.                         $display_filename = 'untitled-[' . $message->header->entity_id . ']' ;
    668. 

  668.                      else
    669. 

  669.                         $display_filename = 'cid: ' . $message->header->id;
    670. 

  670.                      // $display_filename = 'untitled-[' . $message->header->entity_id . ']' ;
    671. 

  671.                   } else {
    672. 

  672.                      $display_filename = $name;
    673. 

  673.                      $filename = $name;
    674. 

  674.                   }
    675. 

  675.                } else {
    676. 

  676.                   $display_filename = $filename;
    677. 

  677.                }
    678. 

  678. 

  679.                $urlMailbox = urlencode($mailbox);
    680. 

  680.                $ent = urlencode($message->header->entity_id);
    681. 

  681. 

  682.                $DefaultLink =
    683. 

  683.                   "../src/download.php?startMessage=$startMessage&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
    684. 

  684.                if ($where && $what)
    685. 

  685.                   $DefaultLink .= '&where=' . urlencode($where) . '&what=' . urlencode($what);
    686. 

  686.                $Links['download link']['text'] = _("download");
    687. 

  687.                $Links['download link']['href'] =
    688. 

  688.                    "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=$urlMailbox&passed_ent_id=$ent";
    689. 

  689.                $ImageURL = '';
    690. 

  690. 

  691.                $HookResults = do_hook("attachment $type0/$type1", $Links,
    692. 

  692.                    $startMessage, $id, $urlMailbox, $ent, $DefaultLink,
    693. 

  693.                    $display_filename, $where, $what);
    694. 

  694. 

  695.                $Links = $HookResults[1];
    696. 

  696.                $DefaultLink = $HookResults[6];
    697. 

  697. 

  698.                $body .= '<TR><TD>&nbsp;&nbsp;</TD><TD>' .
    699. 

  699.                         "<A HREF=\"$DefaultLink\">$display_filename</A>&nbsp;</TD>" .
    700. 

  700.                         '<TD><SMALL><b>' . show_readable_size($message->header->size) .
    701. 

  701.                         '</b>&nbsp;&nbsp;</small></TD>' .
    702. 

  702.                         "<TD><SMALL>[ $type0/$type1 ]&nbsp;</SMALL></TD>" .
    703. 

  703.                         '<TD><SMALL>';
    704. 

  704.                if ($message->header->description)
    705. 

  705.                   $body .= '<b>' . htmlspecialchars($message->header->description) . '</b>';
    706. 

  706.                $body .= '</SMALL></TD><TD><SMALL>&nbsp;';
    707. 

  707. 

  708. 

  709.                $SkipSpaces = 1;
    710. 

  710.                foreach ($Links as $Val) {
    711. 

  711.                   if ($SkipSpaces) {
    712. 

  712.                      $SkipSpaces = 0;
    713. 

  713.                   } else {
    714. 

  714.                      $body .= '&nbsp;&nbsp;|&nbsp;&nbsp;';
    715. 

  715.                   }
    716. 

  716.                   $body .= '<a href="' . $Val['href'] . '">' .  $Val['text'] . '</a>';
    717. 

  717.                }
    718. 

  718. 

  719.                unset($Links);
    720. 

  720. 

  721.                $body .= "</SMALL></TD></TR>\n";
    722. 

  722.             }
    723. 

  723.          } else {
    724. 

  724.             for ($i = 0; $i < count($message->entities); $i++) {
    725. 

  725.                $body .= formatAttachments ($message->entities[$i], $ent_id, $mailbox, $id);
    726. 

  726.             }
    727. 

  727.          }
    728. 

  728.          return( $body );
    729. 

  729.       }
    730. 

  730.    }
    731. 

  731. 

  732. 

  733.    /** this function decodes the body depending on the encoding type. **/
    734. 

  734.    function decodeBody($body, $encoding) {
    735. 

  735.       $body = str_replace("\r\n", "\n", $body);
    736. 

  736.       $encoding = strtolower($encoding);
    737. 

  737. 

  738.       global $show_html_default;
    739. 

  739. 

  740.       if ($encoding == 'quoted-printable') {
    741. 

  741.          $body = quoted_printable_decode($body);
    742. 

  742.          
    743. 

  743.          
    744. 

  744.          while (ereg("=\n", $body))
    745. 

  745.             $body = ereg_replace ("=\n", "", $body);
    746. 

  746. 	    
    747. 

  747.       } else if ($encoding == 'base64') {
    748. 

  748.          $body = base64_decode($body);
    749. 

  749.       }
    750. 

  750. 

  751.       // All other encodings are returned raw.
    752. 

  752.       return $body;
    753. 

  753.    }
    754. 

  754. 

  755. 

  756.    // This functions decode strings that is encoded according to
    757. 

  757.    // RFC1522 (MIME Part Two: Message Header Extensions for Non-ASCII Text).
    758. 

  758.    function decodeHeader ($string) {
    759. 

  759.       if (eregi('=\\?([^?]+)\\?(q|b)\\?([^?]+)\\?=',
    760. 

  760.                 $string, $res)) {
    761. 

  761.          if (ucfirst($res[2]) == "B") {
    762. 

  762.             $replace = base64_decode($res[3]);
    763. 

  763.          } else {
    764. 

  764.             $replace = ereg_replace("_", " ", $res[3]);
    765. 

  765.         // Convert lowercase Quoted Printable to uppercase for
    766. 

  766.         // quoted_printable_decode to understand it.
    767. 

  767.         while (ereg("(=(([0-9][abcdef])|([abcdef][0-9])|([abcdef][abcdef])))", $replace, $res)) {
    768. 

  768.            $replace = str_replace($res[1], strtoupper($res[1]), $replace);
    769. 

  769.         }
    770. 

  770.             $replace = quoted_printable_decode($replace);
    771. 

  771.          }
    772. 

  772. 

  773.          $replace = charset_decode ($res[1], $replace);
    774. 

  774. 

  775.          // Remove the name of the character set.
    776. 

  776.          $string = eregi_replace ('=\\?([^?]+)\\?(q|b)\\?([^?]+)\\?=',
    777. 

  777.              $replace, $string);
    778. 

  778. 

  779.          // In case there should be more encoding in the string: recurse
    780. 

  780.          return (decodeHeader($string));
    781. 

  781.       } else
    782. 

  782.          return ($string);
    783. 

  783.    }
    784. 

  784. 

  785.    // Encode a string according to RFC 1522 for use in headers if it
    786. 

  786.    // contains 8-bit characters or anything that looks like it should
    787. 

  787.    // be encoded.
    788. 

  788.    function encodeHeader ($string) {
    789. 

  789.       global $default_charset;
    790. 

  790. 

  791.      // Encode only if the string contains 8-bit characters or =?
    792. 

  792.      $j = strlen( $string  );
    793. 

  793.      $l = FALSE;                             // Must be encoded ?
    794. 

  794.      $ret = '';
    795. 

  795.      for( $i=0; $i < $j; ++$i) {
    796. 

  796.         switch( $string{$i} ) {
    797. 

  797.            case '=':
    798. 

  798.           $ret .= '=3D';
    799. 

  799.           break;
    800. 

  800.        case '?':
    801. 

  801.           $l = TRUE;
    802. 

  802.           $ret .= '=3F';
    803. 

  803.           break;
    804. 

  804.        case '_':
    805. 

  805.           $ret .= '=5F';
    806. 

  806.           break;
    807. 

  807.        case ' ':
    808. 

  808.           $ret .= '_';
    809. 

  809.           break;
    810. 

  810.       default:
    811. 

  811.           $k = ord( $string{$i} );
    812. 

  812.           if( $k > 126 ) {
    813. 

  813.              $ret .= sprintf("=%02X", $k);
    814. 

  814.              $l = TRUE;
    815. 

  815.           } else
    816. 

  816.              $ret .= $string{$i};
    817. 

  817.         }
    818. 

  818.      }
    819. 

  819. 

  820.      if( $l )
    821. 

  821.         $string = "=?$default_charset?Q?$ret?=";
    822. 

  822. 

  823.      return( $string );
    824. 

  824.  }
    825. 

  825. 

  826.    /*
    827. 

  827.     Strips dangerous tags from html messages.
    828. 

  828.    */
    829. 

  829. 

  830.    function MagicHTML( $body, $id ) {
    831. 

  831. 

  832.         global $message, $PHP_SELF, $HTTP_SERVER_VARS;
    833. 

  833. 

  834.         $j = strlen( $body );   // Legnth of the HTML
    835. 

  835.         $ret = '';              // Returned string
    836. 

  836.         $bgcolor = '#ffffff';   // Background style color (defaults to white)
    837. 

  837. 	$textcolor = '#000000'; // Foreground style color (defaults to black)
    838. 

  838.         $leftmargin = '';       // Left margin style
    839. 

  839.         $title = '';            // HTML title if any
    840. 

  840. 

  841.         $i = 0;
    842. 

  842.         while( $i < $j ) {
    843. 

  843.             if( $body{$i} == '<' ) {
    844. 

  844. 	        $pos = $i + 1;
    845. 

  845. 		$tag = '';
    846. 

  846. 		while ($body{$pos} == ' ' || $body{$pos} == "\t" ||
    847. 

  847. 		       $body{$pos} == "\n")
    848. 

  848. 	            $pos ++;
    849. 

  849. 		while (strlen($tag) < 4 && $body{$pos} != ' ' && 
    850. 

  850. 		       $body{$pos} != "\t" && $body{$pos} != "\n") {
    851. 

  851. 		    $tag .= $body{$pos};
    852. 

  852. 		    $pos ++;
    853. 

  853. 		}
    854. 

  854.                 switch( strtoupper( $tag ) ) {
    855. 

  855.                     // Strips the entire tag and contents
    856. 

  856.                     case 'APPL':
    857. 

  857.                     case 'EMBB':
    858. 

  858.                     case 'FRAM':
    859. 

  859.                     case 'SCRI':
    860. 

  860.                     case 'OBJE':
    861. 

  861.                         $etg = '/' . $tag;
    862. 

  862.                         while( $body{$i+1}.$body{$i+2}.$body{$i+3}.$body{$i+4}.$body{$i+5} <> $etg  &&
    863. 

  863.                                $i < $j  ) $i++;
    864. 

  864.                         while( $i < $j && $body{++$i} <> '>' );
    865. 

  865.                         // $ret .= "<!-- $tag removed -->";
    866. 

  866.                         break;
    867. 

  867.                     // Substitute Title
    868. 

  868.                     case 'TITL':
    869. 

  869.                         $i += 5;
    870. 

  870.                         while( $body{$i} <> '>' &&  // </title>
    871. 

  871.                                $i < $j )
    872. 

  872.                                 $i++;
    873. 

  873.                         $i++;
    874. 

  874.                         $title = '';
    875. 

  875.                         while( $body{$i} <> '<' &&  // </title>
    876. 

  876.                                $i < $j ) {
    877. 

  877.                             $title .= $body{$i};
    878. 

  878.                             $i++;
    879. 

  879.                         }
    880. 

  880.                         $i += 7;
    881. 

  881.                         break;
    882. 

  882.                     // Destroy these tags
    883. 

  883.                     case 'HTML':
    884. 

  884.                     case 'HEAD':
    885. 

  885.                     case '/HTM':
    886. 

  886.                     case '/HEA':
    887. 

  887.                     case '!DOC':
    888. 

  888.                     case 'META':
    889. 

  889.                     case 'DIV ':
    890. 

  890.                     case '/DIV':
    891. 

  891.                     case '!-- ':
    892. 

  892.                         $i += 4;
    893. 

  893.                         while( $body{$i}  <> '>' &&
    894. 

  894.                                $i < $j )
    895. 

  895.                             $i++;
    896. 

  896.                         // $i++;
    897. 

  897.                         break;
    898. 

  898.                     case 'STYL':
    899. 

  899.                         $i += 5;
    900. 

  900.                         while( $body{$i} <> '>' &&  // </title>
    901. 

  901.                                $i < $j )
    902. 

  902.                                 $i++;
    903. 

  903.                         $i++;
    904. 

  904.                         // We parse the style to look for interesting stuff
    905. 

  905.                         $styleblk = '';
    906. 

  906.                         while( $body{$i} <> '>' &&
    907. 

  907.                                $i < $j ) {
    908. 

  908.                             // First we get the name of the style
    909. 

  909.                             $style = '';
    910. 

  910.                             while( $body{$i} <> '>' &&
    911. 

  911.                                    $body{$i} <> '<' &&
    912. 

  912.                                    $body{$i} <> '{' &&
    913. 

  913.                                    $i < $j ) {
    914. 

  914.                                if( isnoSep( $body{$i} ) )
    915. 

  915.                                    $style .= $body{$i};
    916. 

  916.                                $i++;
    917. 

  917.                             }
    918. 

  918.                             stripComments( $i, $j, $body );
    919. 

  919.                             $style = strtoupper( trim( $style ) );
    920. 

  920.                             if( $style == 'BODY' ) {
    921. 

  921.                                 // Next we look into the definitions of the body style
    922. 

  922.                                 while( $body{$i} <> '>' &&
    923. 

  923.                                        $body{$i} <> '}' &&
    924. 

  924.                                        $i < $j ) {
    925. 

  925.                                     // We look for the background color if any.
    926. 

  926.                                     if( substr( $body, $i, 17 ) == 'BACKGROUND-COLOR:' ) {
    927. 

  927.                                         $i += 17;
    928. 

  928.                                         $bgcolor = getStyleData( $i, $j, $body );
    929. 

  929.                                     } elseif ( substr( $body, $i, 12 ) == 'MARGIN-LEFT:' ) {
    930. 

  930.                                         $i += 12;
    931. 

  931.                                         $leftmargin = getStyleData( $i, $j, $body );
    932. 

  932.                                     }
    933. 

  933.                                     $i++;
    934. 

  934.                                 }
    935. 

  935.                             } else {
    936. 

  936.                                 // Other style are mantained
    937. 

  937.                                 $styleblk .= "$style ";
    938. 

  938.                                 while( $body{$i} <> '>' &&
    939. 

  939.                                        $body{$i} <> '<' &&
    940. 

  940.                                        $body{$i} <> '}' &&
    941. 

  941.                                        $i < $j ) {
    942. 

  942.                                     $styleblk .= $body{$i};
    943. 

  943.                                     $i++;
    944. 

  944.                                 }
    945. 

  945.                                 $styleblk .= $body{$i};
    946. 

  946.                             }
    947. 

  947.                             stripComments( $i, $j, $body );
    948. 

  948.                             if( $body{$i} <> '>' )
    949. 

  949.                                 $i++;
    950. 

  950.                         }
    951. 

  951.                         if( $styleblk <> '' )
    952. 

  952.                             $ret .= "<style>$styleblk";
    953. 

  953.                         break;
    954. 

  954.                     case 'BODY':
    955. 

  955.                         if( $title <> '' )
    956. 

  956.                             $ret .= '<b>' . _("Title:") . " </b>$title<br>\n";
    957. 

  957.                         $ret .= "<TABLE";
    958. 

  958.                         $i += 5;
    959. 

  959.                         if (! isset($base))
    960. 

  960.                             $base = '';
    961. 

  961.                         $ret .= stripEvent( $i, $j, $body, $id, $base );
    962. 

  962.                         $ret .= " bgcolor=$bgcolor width=\"100%\"><tr>";
    963. 

  963.                         if( $leftmargin <> '' )
    964. 

  964.                             $ret .= "<td width=$leftmargin>&nbsp;</td>";
    965. 

  965.                         $ret .= '<td>';
    966. 

  966.                         if (strtolower($bgcolor) == 'ffffff' ||
    967. 

  967.                             strtolower($bgcolor) == '#ffffff')
    968. 

  968.                             $ret .= '<font color=#000000>';
    969. 

  969.                         break;
    970. 

  970.                     case 'BASE':
    971. 

  971.                         $i += 5;
    972. 

  972.                         $base = '';
    973. 

  973.                         while( !isNoSep( $body{$i} ) &&
    974. 

  974.                                $i < $j )
    975. 

  975.                                 $i++;
    976. 

  976.                         if( strcasecmp( substr( $base, 0, 4 ), 'href'  ) ) {
    977. 

  977.                                 $i += 5;
    978. 

  978.                                 while( !isNoSep( $body{$i} ) &&
    979. 

  979.                                        $i < $j )
    980. 

  980.                                         $i++;
    981. 

  981.                                 while( $body{$i} <> '>' &&
    982. 

  982.                                        $i < $j ) {
    983. 

  983.                                     if( $body{$i} <> '"' )
    984. 

  984.                                         $base .= $body{$i};
    985. 

  985.                                         $i++;
    986. 

  986.                                 }
    987. 

  987.                                 // Debuging $ret .= "<!-- base == $base -->";
    988. 

  988.                                 if( strcasecmp( substr( $base, 0, 4 ), 'file' ) <> 0 )
    989. 

  989.                                         $ret .= "\n<BASE HREF=\"$base\">\n";
    990. 

  990.                         }
    991. 

  991.                         break;
    992. 

  992.                     case '/BOD':
    993. 

  993.                         $ret .= '</font></td></tr></TABLE>';
    994. 

  994.                         $i += 6;
    995. 

  995.                         break;
    996. 

  996.                     default:
    997. 

  997.                         // Following tags can contain some event handler, lets search it
    998. 

  998.                         stripComments( $i, $j, $body );
    999. 

  999. 			if (! isset($base))
    1000. 

  1000. 			   $base = '';
    1001. 

  1001.                         $ret .= stripEvent( $i, $j, $body, $id, $base ) . '>';
    1002. 

  1002.                         // $ret .= "<!-- $tag detected -->";
    1003. 

  1003.                 }
    1004. 

  1004.             } else {
    1005. 

  1005.                 $ret .= $body{$i};
    1006. 

  1006.             }
    1007. 

  1007.             $i++;
    1008. 

  1008.         }
    1009. 

  1009. 

  1010.         return( "\n\n<!-- HTML Output ahead -->\n" .
    1011. 

  1011.                 $ret .
    1012. 

  1012.                 "\n<!-- END of HTML Output --><base href=\"".
    1013. 

  1013.                 $HTTP_SERVER_VARS["SERVER_NAME"] . substr( $PHP_SELF, 0, strlen( $PHP_SELF ) - 13 ) .
    1014. 

  1014.                 "\">\n\n" );
    1015. 

  1015.    }
    1016. 

  1016. 

  1017.    function isNoSep( $char ) {
    1018. 

  1018. 

  1019.         switch( $char ) {
    1020. 

  1020.             case ' ':
    1021. 

  1021.             case "\n":
    1022. 

  1022.             case "\t":
    1023. 

  1023.             case "\r":
    1024. 

  1024.             case '>':
    1025. 

  1025.             case '"':
    1026. 

  1026.                 return( FALSE );
    1027. 

  1027.                 break;
    1028. 

  1028.             default:
    1029. 

  1029.                 return( TRUE );
    1030. 

  1030.         }
    1031. 

  1031. 

  1032.    }
    1033. 

  1033. 

  1034.    /*
    1035. 

  1035.       The following function is usefull to remove extra data that can cause
    1036. 

  1036.       html not to display properly. Especialy with MS stuff.
    1037. 

  1037.    */
    1038. 

  1038. 

  1039.    function stripComments( &$i, $j, &$body ) {
    1040. 

  1040. 

  1041.         while( $body{$i}.$body{$i+1}.$body{$i+2}.$body{$i+3} == '<!--' &&
    1042. 

  1042.                $i < $j ) {
    1043. 

  1043.             $i += 5;
    1044. 

  1044.             while( $body{$i-2}.$body{$i-1}.$body{$i} <> '-->' &&
    1045. 

  1045.                    $i < $j )
    1046. 

  1046.                 $i++;
    1047. 

  1047.             $i++;
    1048. 

  1048.         }
    1049. 

  1049. 

  1050.         return;
    1051. 

  1051. 

  1052.    }
    1053. 

  1053. 

  1054.    /* Gets the style data of a specific style */
    1055. 

  1055. 

  1056.    function getStyleData( &$i, $j, &$body ) {
    1057. 

  1057. 

  1058.         // We skip spaces
    1059. 

  1059.         while( $body{$i} <> '>' && !isNoSep( $body{$i} ) &&
    1060. 

  1060.                $i < $j ) {
    1061. 

  1061.             $i++;
    1062. 

  1062.         }
    1063. 

  1063.         // And get the color
    1064. 

  1064.         $ret = '';
    1065. 

  1065.         while( isNoSep( $body{$i} ) &&
    1066. 

  1066.                $i < $j ) {
    1067. 

  1067.             $ret .= $body{$i};
    1068. 

  1068.             $i++;
    1069. 

  1069.         }
    1070. 

  1070. 

  1071.         return( $ret );
    1072. 

  1072.    }
    1073. 

  1073. 

  1074.    /*
    1075. 

  1075.    Private function for strip_dangerous_tag. Look for event based coded and "remove" it
    1076. 

  1076.    change on with no (onload -> noload)
    1077. 

  1077.    */
    1078. 

  1078. 

  1079.    function stripEvent( &$i, $j, &$body, $id, $base ) {
    1080. 

  1080. 

  1081.         global $message;
    1082. 

  1082. 

  1083.         $ret = '';
    1084. 

  1084. 

  1085.         while( $body{$i} <> '>' &&
    1086. 

  1086.                $i < $j ) {
    1087. 

  1087.             $etg = strtolower($body{$i}.$body{$i+1}.$body{$i+2});
    1088. 

  1088.             switch( $etg ) {
    1089. 

  1089.                 case '../':
    1090. 

  1090.                         // Retrolinks are not allowed without a base because they mess with SM security
    1091. 

  1091.                         if( $base == '' ) {
    1092. 

  1092.                                 $i += 2;
    1093. 

  1093.                         } else {
    1094. 

  1094.                                 $ret .= '.';
    1095. 

  1095.                         }
    1096. 

  1096.                         break;
    1097. 

  1097.                 case 'cid':
    1098. 

  1098.                     // Internal link
    1099. 

  1099.                     $k = $i-1;
    1100. 

  1100.                     if( $body{$i+3} == ':') {
    1101. 

  1101.                         $i +=4;
    1102. 

  1102.                         $name = '';
    1103. 

  1103.                         while( isNoSep( $body{$i} ) &&
    1104. 

  1104.                                $i < $j  )
    1105. 

  1105.                             $name .= $body{$i++};
    1106. 

  1106.                         if( $name <> '' ) {
    1107. 

  1107.                             $ret .= "../src/download.php?absolute_dl=true&passed_id=$id&mailbox=" .
    1108. 

  1108.                                         urlencode( $message->header->mailbox ) .
    1109. 

  1109.                                         "&passed_ent_id=" . find_ent_id( $name, $message );
    1110. 

  1110.                             if( $body{$k} == '"' )
    1111. 

  1111.                                 $ret .= '" ';
    1112. 

  1112.                             else
    1113. 

  1113.                                 $ret .= ' ';
    1114. 

  1114.                         }
    1115. 

  1115.                         if( $body{$i} == '>' )
    1116. 

  1116.                             $i -= 1;
    1117. 

  1117.                     }
    1118. 

  1118.                     break;
    1119. 

  1119.                 case ' on':
    1120. 

  1120.                 case "\non":
    1121. 

  1121.                 case "\ron":
    1122. 

  1122.                 case "\ton":
    1123. 

  1123.                     $ret .= ' no';
    1124. 

  1124.                     $i += 2;
    1125. 

  1125.                     break;
    1126. 

  1126.                 case 'pt:':
    1127. 

  1127.                     if( strcasecmp( $body{$i-4}.$body{$i-3}.$body{$i-2}.$body{$i-1}.$body{$i}.$body{$i+1}.$body{$i+2}, 'script:') == 0 ) {
    1128. 

  1128.                         $ret .= '_no/';
    1129. 

  1129.                     } else {
    1130. 

  1130.                         $ret .= $etg;
    1131. 

  1131.                     }
    1132. 

  1132.                     $i += 2;
    1133. 

  1133.                     break;
    1134. 

  1134.                 default:
    1135. 

  1135.                     $ret .= $body{$i};
    1136. 

  1136.             }
    1137. 

  1137.             $i++;
    1138. 

  1138.         }
    1139. 

  1139.         return( $ret );
    1140. 

  1140.     }
    1141. 

  1141. 

  1142. 

  1143.     /* This function trys to locate the entity_id of a specific mime element */
    1144. 

  1144. 

  1145.     function find_ent_id( $id, $message ) {
    1146. 

  1146. 

  1147.         $ret = '';
    1148. 

  1148.         for ($i=0; $ret == '' && $i < count($message->entities); $i++) {
    1149. 

  1149. 

  1150.             if( $message->entities[$i]->header->entity_id == '' ) {
    1151. 

  1151.                 $ret = find_ent_id( $id, $message->entities[$i] );
    1152. 

  1152.             } else {
    1153. 

  1153.                 if( strcasecmp( $message->entities[$i]->header->id, $id ) == 0 )
    1154. 

  1154.                     $ret = $message->entities[$i]->header->entity_id;
    1155. 

  1155.             }
    1156. 

  1156. 

  1157.         }
    1158. 

  1158. 

  1159.         return( $ret );
    1160. 

  1160. 

  1161.     }
    1162. 

  1162. ?>
    1163.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5