We use cookies to ensure you get the best experience on our website
ホーム エクスプローラ ヘルプ
登録 サインイン
0ct0pu5
/
squirrelmail
1
0
フォーク 0
ファイル 課題 0 プルリクエスト 0 Wiki
ツリー: ff01e901b2
ブランチ タグ
squirrelmail
/
class
/
deliver
/
Deliver_SMTP.class.php

Deliver_SMTP.class.php 12 KB
履歴 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350 
  1. <?php
    2. 

  2. /**
    3. 

  3. * Deliver_SMTP.class.php
    4. 

  4. *
    5. 

  5. * Copyright (c) 1999-2004 The SquirrelMail Project Team
    6. 

  6. * Licensed under the GNU GPL. For full terms see the file COPYING.
    7. 

  7. *
    8. 

  8. * Delivery backend for the Deliver class.
    9. 

  9. *
    10. 

  10. * @version $Id$
    11. 

  11. * @package squirrelmail
    12. 

  12. */
    13. 

  13. 

  14. /** This of course depends upon Deliver */
    15. 

  15. require_once(SM_PATH . 'class/deliver/Deliver.class.php');
    16. 

  16. 

  17. /**
    18. 

  18. * Deliver messages using SMTP
    19. 

  19. * @package squirrelmail
    20. 

  20. */
    21. 

  21. class Deliver_SMTP extends Deliver {
    22. 

  22. 

  23.     function preWriteToStream(&$s) {
    24. 

  24.         if ($s) {
    25. 

  25.             if ($s{0} == '.')   $s = '.' . $s;
    26. 

  26.             $s = str_replace("\n.","\n..",$s);
    27. 

  27.         }
    28. 

  28.     }
    29. 

  29.     
    30. 

  30.     function initStream($message, $domain, $length=0, $host='', $port='', $user='', $pass='', $authpop=false) {
    31. 

  31.         global $use_smtp_tls,$smtp_auth_mech;
    32. 

  32.     
    33. 

  33.         if ($authpop) {
    34. 

  34.             $this->authPop($host, '', $user, $pass);
    35. 

  35.         }
    36. 

  36.     
    37. 

  37.         $rfc822_header = $message->rfc822_header;
    38. 

  38.         
    39. 

  39.         $from = $rfc822_header->from[0];
    40. 

  40.         $to =   $rfc822_header->to;
    41. 

  41.         $cc =   $rfc822_header->cc;
    42. 

  42.         $bcc =  $rfc822_header->bcc;
    43. 

  43.         $content_type  = $rfc822_header->content_type;
    44. 

  44. 

  45.         // MAIL FROM: <from address> MUST be empty in cae of MDN (RFC2298)
    46. 

  46.         if ($content_type->type0 == 'multipart' && 
    47. 

  47.             $content_type->type1 == 'report' &&
    48. 

  48.             isset($content_type->properties['report-type']) &&
    49. 

  49.             $content_type->properties['report-type']=='disposition-notification') {
    50. 

  50.             $from->host = '';
    51. 

  51.             $from->mailbox = '';
    52. 

  52.         } 
    53. 

  53.             
    54. 

  54.         if (($use_smtp_tls == true) and (check_php_version(4,3)) and (extension_loaded('openssl'))) {
    55. 

  55.             $stream = fsockopen('tls://' . $host, $port, $errorNumber, $errorString);
    56. 

  56.         } else {
    57. 

  57.             $stream = fsockopen($host, $port, $errorNumber, $errorString);
    58. 

  58.         }
    59. 

  59.     
    60. 

  60.         if (!$stream) {
    61. 

  61.             $this->dlv_msg = $errorString;
    62. 

  62.             $this->dlv_ret_nr = $errorNumber;
    63. 

  63.             return(0);
    64. 

  64.         }
    65. 

  65.         $tmp = fgets($stream, 1024);
    66. 

  66.         if ($this->errorCheck($tmp, $stream)) {
    67. 

  67.             return(0);
    68. 

  68.         }
    69. 

  69.     
    70. 

  70.         /* 
    71. 

  71.         * If $_SERVER['HTTP_HOST'] is set, use that in our HELO to the SMTP
    72. 

  72.         * server.  This should fix the DNS issues some people have had 
    73. 

  73.         */
    74. 

  74.         if (sqgetGlobalVar('HTTP_HOST', $HTTP_HOST, SQ_SERVER)) { // HTTP_HOST is set
    75. 

  75.             // optionally trim off port number
    76. 

  76.             if($p = strrpos($HTTP_HOST, ':')) {
    77. 

  77.                 $HTTP_HOST = substr($HTTP_HOST, 0, $p);
    78. 

  78.             }
    79. 

  79.             $helohost = $HTTP_HOST;
    80. 

  80.         } else { // For some reason, HTTP_HOST is not set - revert to old behavior
    81. 

  81.             $helohost = $domain;
    82. 

  82.         }
    83. 

  83.         
    84. 

  84.         /* Lets introduce ourselves */
    85. 

  85.         fputs($stream, "EHLO $helohost\r\n");
    86. 

  86.         $tmp = fgets($stream,1024);
    87. 

  87.         if ($this->errorCheck($tmp,$stream)) {
    88. 

  88.             // fall back to HELO if EHLO is not supported
    89. 

  89.             if ($this->dlv_ret_nr == '500') {
    90. 

  90.                 fputs($stream, "HELO $helohost\r\n");
    91. 

  91.                 $tmp = fgets($stream,1024);
    92. 

  92.                 if ($this->errorCheck($tmp,$stream)) {
    93. 

  93.                     return(0);
    94. 

  94.                 }
    95. 

  95.             } else {
    96. 

  96.                 return(0);
    97. 

  97.             }
    98. 

  98.         }
    99. 

  99.     
    100. 

  100.         if (( $smtp_auth_mech == 'cram-md5') or ( $smtp_auth_mech == 'digest-md5' )) {
    101. 

  101.             // Doing some form of non-plain auth
    102. 

  102.             if ($smtp_auth_mech == 'cram-md5') {
    103. 

  103.                 fputs($stream, "AUTH CRAM-MD5\r\n");
    104. 

  104.             } elseif ($smtp_auth_mech == 'digest-md5') {
    105. 

  105.                 fputs($stream, "AUTH DIGEST-MD5\r\n");
    106. 

  106.             }
    107. 

  107.         
    108. 

  108.             $tmp = fgets($stream,1024);
    109. 

  109.             
    110. 

  110.             if ($this->errorCheck($tmp,$stream)) {
    111. 

  111.                 return(0);
    112. 

  112.             }
    113. 

  113.             
    114. 

  114.             // At this point, $tmp should hold "334 <challenge string>"
    115. 

  115.             $chall = substr($tmp,4);
    116. 

  116.             // Depending on mechanism, generate response string 
    117. 

  117.             if ($smtp_auth_mech == 'cram-md5') {
    118. 

  118.                 $response = cram_md5_response($user,$pass,$chall);
    119. 

  119.             } elseif ($smtp_auth_mech == 'digest-md5') {
    120. 

  120.                 $response = digest_md5_response($user,$pass,$chall,'smtp',$host);
    121. 

  121.             }
    122. 

  122.             fputs($stream, $response);
    123. 

  123.             
    124. 

  124.             // Let's see what the server had to say about that
    125. 

  125.             $tmp = fgets($stream,1024);
    126. 

  126.             if ($this->errorCheck($tmp,$stream)) {
    127. 

  127.                 return(0);
    128. 

  128.             }
    129. 

  129.             
    130. 

  130.             // CRAM-MD5 is done at this point.  If DIGEST-MD5, there's a bit more to go
    131. 

  131.             if ($smtp_auth_mech == 'digest-md5') {
    132. 

  132.                 // $tmp contains rspauth, but I don't store that yet. (No need yet)
    133. 

  133.                 fputs($stream,"\r\n");
    134. 

  134.                 $tmp = fgets($stream,1024);
    135. 

  135.                 
    136. 

  136.                 if ($this->errorCheck($tmp,$stream)) {
    137. 

  137.                 return(0);
    138. 

  138.                 }
    139. 

  139.             }
    140. 

  140.         // CRAM-MD5 and DIGEST-MD5 code ends here
    141. 

  141.         } elseif ($smtp_auth_mech == 'none') {
    142. 

  142.         // No auth at all, just send helo and then send the mail
    143. 

  143.         // We already said hi earlier, nothing more is needed.
    144. 

  144.         } elseif ($smtp_auth_mech == 'login') {
    145. 

  145.             // The LOGIN method
    146. 

  146.             fputs($stream, "AUTH LOGIN\r\n");
    147. 

  147.             $tmp = fgets($stream, 1024);
    148. 

  148.         
    149. 

  149.             if ($this->errorCheck($tmp, $stream)) {
    150. 

  150.                 return(0);
    151. 

  151.             }
    152. 

  152.             fputs($stream, base64_encode ($user) . "\r\n");
    153. 

  153.             $tmp = fgets($stream, 1024);
    154. 

  154.             if ($this->errorCheck($tmp, $stream)) {
    155. 

  155.                 return(0);
    156. 

  156.             }
    157. 

  157.         
    158. 

  158.             fputs($stream, base64_encode($pass) . "\r\n");
    159. 

  159.             $tmp = fgets($stream, 1024);
    160. 

  160.             if ($this->errorCheck($tmp, $stream)) {
    161. 

  161.                 return(0);
    162. 

  162.             }
    163. 

  163.         } elseif ($smtp_auth_mech == "plain") {
    164. 

  164.             /* SASL Plain */
    165. 

  165.             $auth = base64_encode("$user\0$user\0$pass");
    166. 

  166.                         
    167. 

  167.             $query = "AUTH PLAIN\r\n";
    168. 

  168.             fputs($stream, $query);
    169. 

  169.             $read=fgets($stream, 1024);
    170. 

  170.         
    171. 

  171.             if (substr($read,0,3) == '334') { // OK so far..
    172. 

  172.                 fputs($stream, "$auth\r\n");
    173. 

  173.                 $read = fgets($stream, 1024);
    174. 

  174.             }
    175. 

  175.                         
    176. 

  176.             $results=explode(" ",$read,3);
    177. 

  177.             $response=$results[1];
    178. 

  178.             $message=$results[2];
    179. 

  179.         } else {
    180. 

  180.             /* Right here, they've reached an unsupported auth mechanism.
    181. 

  181.             This is the ugliest hack I've ever done, but it'll do till I can fix
    182. 

  182.             things up better tomorrow.  So tired... */
    183. 

  183.             if ($this->errorCheck("535 Unable to use this auth type",$stream)) {
    184. 

  184.                 return(0);
    185. 

  185.             }
    186. 

  186.         }
    187. 

  187.         
    188. 

  188.         /* Ok, who is sending the message? */
    189. 

  189.         $fromaddress = ($from->mailbox && $from->host) ? 
    190. 

  190.             $from->mailbox.'@'.$from->host : '';
    191. 

  191.         fputs($stream, 'MAIL FROM:<'.$fromaddress.">\r\n");
    192. 

  192.         $tmp = fgets($stream, 1024);
    193. 

  193.         if ($this->errorCheck($tmp, $stream)) {
    194. 

  194.             return(0);
    195. 

  195.         }
    196. 

  196.     
    197. 

  197.         /* send who the recipients are */
    198. 

  198.         for ($i = 0, $cnt = count($to); $i < $cnt; $i++) {
    199. 

  199.             if (!$to[$i]->host) $to[$i]->host = $domain;
    200. 

  200.             if ($to[$i]->mailbox) {
    201. 

  201.                 fputs($stream, 'RCPT TO:<'.$to[$i]->mailbox.'@'.$to[$i]->host.">\r\n");
    202. 

  202.                 $tmp = fgets($stream, 1024);
    203. 

  203.                 if ($this->errorCheck($tmp, $stream)) {
    204. 

  204.                     return(0);
    205. 

  205.                 }
    206. 

  206.             }
    207. 

  207.         }
    208. 

  208.         
    209. 

  209.         for ($i = 0, $cnt = count($cc); $i < $cnt; $i++) {	
    210. 

  210.             if (!$cc[$i]->host) $cc[$i]->host = $domain;
    211. 

  211.             if ($cc[$i]->mailbox) {
    212. 

  212.                 fputs($stream, 'RCPT TO:<'.$cc[$i]->mailbox.'@'.$cc[$i]->host.">\r\n");
    213. 

  213.                 $tmp = fgets($stream, 1024);
    214. 

  214.                 if ($this->errorCheck($tmp, $stream)) {
    215. 

  215.                     return(0);
    216. 

  216.                 }
    217. 

  217.             }
    218. 

  218.         }
    219. 

  219.     
    220. 

  220.         for ($i = 0, $cnt = count($bcc); $i < $cnt; $i++) {
    221. 

  221.             if (!$bcc[$i]->host) $bcc[$i]->host = $domain;
    222. 

  222.             if ($bcc[$i]->mailbox) {
    223. 

  223.                 fputs($stream, 'RCPT TO:<'.$bcc[$i]->mailbox.'@'.$bcc[$i]->host.">\r\n");
    224. 

  224.                 $tmp = fgets($stream, 1024);
    225. 

  225.                 if ($this->errorCheck($tmp, $stream)) {
    226. 

  226.                     return(0);
    227. 

  227.                 }
    228. 

  228.             }
    229. 

  229.         }
    230. 

  230.         /* Lets start sending the actual message */
    231. 

  231.         fputs($stream, "DATA\r\n");
    232. 

  232.         $tmp = fgets($stream, 1024);
    233. 

  233.         if ($this->errorCheck($tmp, $stream)) {
    234. 

  234.                 return(0);
    235. 

  235.         }
    236. 

  236.         return $stream;
    237. 

  237.     }
    238. 

  238.     
    239. 

  239.     function finalizeStream($stream) {
    240. 

  240.         fputs($stream, "\r\n.\r\n"); /* end the DATA part */
    241. 

  241.         $tmp = fgets($stream, 1024);
    242. 

  242.         $this->errorCheck($tmp, $stream);
    243. 

  243.         if ($this->dlv_ret_nr != 250) {
    244. 

  244.                 return(0);
    245. 

  245.         }
    246. 

  246.         fputs($stream, "QUIT\r\n"); /* log off */
    247. 

  247.         fclose($stream);
    248. 

  248.         return true;
    249. 

  249.     }
    250. 

  250.     
    251. 

  251.     /* check if an SMTP reply is an error and set an error message) */
    252. 

  252.     function errorCheck($line, $smtpConnection) {
    253. 

  253. 

  254.         $err_num = substr($line, 0, 3);
    255. 

  255.         $this->dlv_ret_nr = $err_num;
    256. 

  256.         $server_msg = substr($line, 4);
    257. 

  257. 

  258.         while(substr($line, 0, 4) == ($err_num.'-')) {
    259. 

  259.             $line = fgets($smtpConnection, 1024);
    260. 

  260.             $server_msg .= substr($line, 4);
    261. 

  261.         }
    262. 

  262. 

  263.         if ( ((int) $err_num{0}) < 4) {
    264. 

  264.             return false;
    265. 

  265.         }
    266. 

  266. 

  267.         switch ($err_num) {
    268. 

  268.         case '421': $message = _("Service not available, closing channel");
    269. 

  269.             break;
    270. 

  270.         case '432': $message = _("A password transition is needed");
    271. 

  271.             break;
    272. 

  272.         case '450': $message = _("Requested mail action not taken: mailbox unavailable");
    273. 

  273.             break;
    274. 

  274.         case '451': $message = _("Requested action aborted: error in processing");
    275. 

  275.             break;
    276. 

  276.         case '452': $message = _("Requested action not taken: insufficient system storage");
    277. 

  277.             break;
    278. 

  278.         case '454': $message = _("Temporary authentication failure");
    279. 

  279.             break;
    280. 

  280.         case '500': $message = _("Syntax error; command not recognized");
    281. 

  281.             break;
    282. 

  282.         case '501': $message = _("Syntax error in parameters or arguments");
    283. 

  283.             break;
    284. 

  284.         case '502': $message = _("Command not implemented");
    285. 

  285.             break;
    286. 

  286.         case '503': $message = _("Bad sequence of commands");
    287. 

  287.             break;
    288. 

  288.         case '504': $message = _("Command parameter not implemented");
    289. 

  289.             break;    
    290. 

  290.         case '530': $message = _("Authentication required");
    291. 

  291.             break;
    292. 

  292.         case '534': $message = _("Authentication mechanism is too weak");
    293. 

  293.             break;
    294. 

  294.         case '535': $message = _("Authentication failed");
    295. 

  295.             break;
    296. 

  296.         case '538': $message = _("Encryption required for requested authentication mechanism");
    297. 

  297.             break;
    298. 

  298.         case '550': $message = _("Requested action not taken: mailbox unavailable");
    299. 

  299.             break;
    300. 

  300.         case '551': $message = _("User not local; please try forwarding");
    301. 

  301.             break;
    302. 

  302.         case '552': $message = _("Requested mail action aborted: exceeding storage allocation");
    303. 

  303.             break;
    304. 

  304.         case '553': $message = _("Requested action not taken: mailbox name not allowed");
    305. 

  305.             break;
    306. 

  306.         case '554': $message = _("Transaction failed");
    307. 

  307.             break;
    308. 

  308.         default:    $message = _("Unknown response");
    309. 

  309.             break;
    310. 

  310.         }
    311. 

  311. 

  312.         $this->dlv_msg = $message;
    313. 

  313.         $this->dlv_server_msg = nl2br(htmlspecialchars($server_msg));
    314. 

  314. 

  315.         return true;
    316. 

  316.     }
    317. 

  317.     
    318. 

  318.     function authPop($pop_server='', $pop_port='', $user, $pass) {
    319. 

  319.         if (!$pop_port) {
    320. 

  320.             $pop_port = 110;
    321. 

  321.         }
    322. 

  322.         if (!$pop_server) {
    323. 

  323.             $pop_server = 'localhost';
    324. 

  324.         }
    325. 

  325.         $popConnection = fsockopen($pop_server, $pop_port, $err_no, $err_str);
    326. 

  326.         if (!$popConnection) {
    327. 

  327.             error_log("Error connecting to POP Server ($pop_server:$pop_port)"
    328. 

  328.                 . " $err_no : $err_str");
    329. 

  329.         } else {
    330. 

  330.             $tmp = fgets($popConnection, 1024); /* banner */
    331. 

  331.             if (substr($tmp, 0, 3) != '+OK') {
    332. 

  332.                 return(0);
    333. 

  333.             }
    334. 

  334.             fputs($popConnection, "USER $user\r\n");
    335. 

  335.             $tmp = fgets($popConnection, 1024);
    336. 

  336.             if (substr($tmp, 0, 3) != '+OK') {
    337. 

  337.                 return(0);
    338. 

  338.             }
    339. 

  339.             fputs($popConnection, 'PASS ' . $pass . "\r\n");
    340. 

  340.             $tmp = fgets($popConnection, 1024);
    341. 

  341.             if (substr($tmp, 0, 3) != '+OK') {
    342. 

  342.                 return(0);
    343. 

  343.             }
    344. 

  344.             fputs($popConnection, "QUIT\r\n"); /* log off */
    345. 

  345.             fclose($popConnection);
    346. 

  346.         }
    347. 

  347.     }
    348. 

  348. }
    349. 

  349. 

  350. ?>
    351.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5