imapfilter/imapfilter/file.c

#include <stdio.h>
#include <unistd.h>
#include <errno.h>
#include <sys/types.h>
#include <regex.h>
#include <string.h>
#include <stdlib.h>
#include <limits.h>
#include <sys/stat.h>
#include <fcntl.h>
#include <time.h>

#include "config.h"
#include "imapfilter.h"
#include "data.h"


extern char logfile[PATH_MAX];
extern unsigned int options;
extern unsigned int flags;
extern unsigned int interval;
extern long timeout;
extern char *home;

#ifdef ENCRYPTED_PASSWORDS
char *passphr;                  /* Master password to access the passwords
                                   file. */
#endif


/*
 * Find the path to configuration file, open it and call parse_config().
 */
int read_config(char *cfg)
{
    int r;
    FILE *fd;
    char *c = NULL;

    if (!cfg) {
        cfg = c = (char *)xmalloc(PATH_MAX * sizeof(char));
        snprintf(cfg, PATH_MAX, "%s/%s", home, ".imapfilterrc");
    }
#ifdef DEBUG
    printf("debug: configuration file: '%s'\n", cfg);
#endif
#ifdef CHECK_PERMISSIONS
    check_file_perms(cfg, S_IRUSR | S_IWUSR);
#endif
    fd = fopen(cfg, "r");

    if (!fd)
        fatal(ERROR_FILE_OPEN, "imapfilter: opening config file %s; %s\n",
              cfg, strerror(errno));

    if (c)
        xfree(c);

    if ((r = parse_config(fd)))
        fatal(ERROR_CONFIG_PARSE,
              "imapfilter: parse error in config file at row %d\n", r);

    fclose(fd);

#ifdef DEBUG
    printf("debug: options: %0#10x\n", options);
#endif

    return 0;
}


/*
 * Parse configuration file.
 */
int parse_config(FILE * fd)
{
    int i, r = 0;
    unsigned int row = 0;
    char line[LINE_MAX];
    regex_t creg[13];
    regmatch_t match[11];
    const char *reg[13] = {
        "^([[:blank:]]*\n|#.*\n)$",

        "^[[:blank:]]*ACCOUNT[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]+"
        "(([[:graph:]]+):([[:graph:]]*)|([[:graph:]]+))@([[:alnum:].-]+)"
        "(:[[:digit:]]+)?[[:blank:]]*([[:blank:]]SSL|[[:blank:]]SSL2|"
        "[[:blank:]]SSL3|[[:blank:]]TLS1)?[[:blank:]]*\n$",

        "^[[:blank:]]*FOLDER[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]+"
        "([[:print:]]+)[[:blank:]]*\n$",

        "^[[:blank:]]*FILTER[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]*"
        "([[:blank:]]OR|[[:blank:]]AND)?[[:blank:]]*\n$",

        "^[[:blank:]]*ACTION[[:blank:]]+(DELETE|"
        "COPY[[:blank:]]+(\"[[:print:]]*\"|[[:graph:]]+)|"
        "MOVE[[:blank:]]+(\"[[:print:]]*\"|[[:graph:]]+)|"
        "RCOPY[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]+"
        "(\"[[:print:]]*\"|[[:graph:]]+)|"
        "RMOVE[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]+"
        "(\"[[:print:]]*\"|[[:graph:]]+)|"
        "FLAG[[:blank:]]+(REPLACE|ADD|REMOVE)[[:blank:]]+"
        "([[:alpha:],]+)|"
        "LIST)[[:blank:]]*([[:graph:]]*)[[:blank:]]*\n$",

        "^[[:blank:]]*(MASK[[:blank:]])?[[:blank:]]*(OR[[:blank:]]|"
        "AND[[:blank:]])?[[:blank:]]*(NOT[[:blank:]])?[[:blank:]]*"
        "(ANSWERED|DELETED|DRAFT|FLAGGED|NEW|OLD|RECENT|SEEN|UNANSWERED|"
        "UNDELETED|UNDRAFT|UNFLAGGED|UNSEEN)[[:blank:]]*\n$",

        "^[[:blank:]]*(MASK[[:blank:]])?[[:blank:]]*(OR[[:blank:]]|"
        "AND[[:blank:]])?[[:blank:]]*(NOT[[:blank:]])?[[:blank:]]*"
        "(BCC|BODY|CC|FROM|SUBJECT|TEXT|TO)[[:blank:]]+(\"[[:print:]]*\"|"
        "[[:graph:]]+)[[:blank:]]*\n$",

        "^[[:blank:]]*(MASK[[:blank:]])?[[:blank:]]*(OR[[:blank:]]|"
        "AND[[:blank:]])?[[:blank:]]*(NOT[[:blank:]])?[[:blank:]]*"
        "(HEADER)[[:blank:]]+(\"[[:print:]]*\"|[[:graph:]]+)[[:blank:]]+"
        "(\"[[:print:]]*\"|[[:graph:]]+)[[:blank:]]*\n$",

        "^[[:blank:]]*(MASK[[:blank:]])?[[:blank:]]*(OR[[:blank:]]|"
        "AND[[:blank:]])?[[:blank:]]*(NOT[[:blank:]])?[[:blank:]]*"
        "(LARGER|SMALLER|OLDER|NEWER)[[:blank:]]+([[:digit:]]+)"
        "[[:blank:]]*\n$",

        "^[[:blank:]]*JOB[[:blank:]]+([[:alnum:],_-]+)[[:blank:]]+"
        "([[:alnum:],_-]+)[[:blank:]]*\n$",

        "^[[:blank:]]*(SET[[:blank:]])?[[:blank:]]*(LOGFILE)"
        "[[:blank:]]*=[[:blank:]]*([[:print:]]+)\n$",

        "^[[:blank:]]*(SET[[:blank:]])?[[:blank:]]*(ERRORS|EXPUNGE|HEADERS|"
        "NAMESPACE|SUBSCRIBE|WARNING)[[:blank:]]*=[[:blank:]]*(YES|NO)"
        "[[:blank:]]*\n$",

        "^[[:blank:]]*(SET[[:blank:]])?[[:blank:]]*(DAEMON|TIMEOUT)"
        "[[:blank:]]*=[[:blank:]]*([[:digit:]]+)\n$"
    };

    for (i = 0; i < 13; i++)
        regcomp(&creg[i], reg[i], REG_EXTENDED | REG_ICASE);

    /* First process all the variables.  This is done because some variables'
       arguments are used before the other commands are processed. */
    while (fgets(line, LINE_MAX - 1, fd))
        if (!regexec(&creg[10], line, 4, match, 0) ||
            !regexec(&creg[11], line, 4, match, 0) ||
            !regexec(&creg[12], line, 4, match, 0))
            set_options(line, match);

    /* Then rewind and process everything else. */
    fseek(fd, 0L, SEEK_SET);
    while (fgets(line, LINE_MAX - 1, fd)) {
        row++;
        if (!regexec(&creg[0], line, 0, match, 0))
            continue;
        else if (!regexec(&creg[1], line, 9, match, 0))
            set_account(line, match);
        else if (!regexec(&creg[2], line, 3, match, 0))
            r = set_mboxgrp(line, match);
        else if (!regexec(&creg[3], line, 3, match, 0))
            r = set_filter(line, match);
        else if (!regexec(&creg[4], line, 11, match, 0))
            r = set_action(line, match);
        else if (!regexec(&creg[5], line, 5, match, 0))
            r = set_mask(line, match, MASK_MATCH_1);
        else if (!regexec(&creg[6], line, 6, match, 0))
            r = set_mask(line, match, MASK_MATCH_2);
        else if (!regexec(&creg[7], line, 7, match, 0))
            r = set_mask(line, match, MASK_MATCH_3);
        else if (!regexec(&creg[8], line, 6, match, 0))
            r = set_mask(line, match, MASK_MATCH_4);
        else if (!regexec(&creg[9], line, 3, match, 0))
            r = set_job(line, match);
        /* Skip variable processing. */
        else if (!regexec(&creg[10], line, 4, match, 0) ||
                 !regexec(&creg[11], line, 4, match, 0) ||
                 !regexec(&creg[12], line, 4, match, 0));
        else
            return row;

        if (r == ERROR_CONFIG_PARSE)
            return row;
    }

    for (i = 0; i < 13; i++)
        regfree(&creg[i]);

    destroy_data();

    return 0;
}


/*
 * Set other options found in config file.
 */
void set_options(char *line, regmatch_t * match)
{
    if (!strncasecmp(line + match[2].rm_so, "logfile", 7)) {
        if (!*logfile)
            strncat(logfile, line + match[3].rm_so,
                    min((match[3].rm_eo - match[3].rm_so), PATH_MAX - 1));
    } else if (!strncasecmp(line + match[2].rm_so, "errors", 6)) {
        if (!strncasecmp(line + match[3].rm_so, "yes", 3))
            options |= OPTION_ERRORS;
        else
            options &= ~(OPTION_ERRORS);
    } else if (!strncasecmp(line + match[2].rm_so, "expunge", 7)) {
        if (!strncasecmp(line + match[3].rm_so, "yes", 3))
            options |= OPTION_EXPUNGE;
        else
            options &= ~(OPTION_EXPUNGE);
    } else if (!strncasecmp(line + match[2].rm_so, "header", 6)) {
        if (!strncasecmp(line + match[3].rm_so, "yes", 3))
            options |= OPTION_HEADERS;
        else
            options &= ~(OPTION_HEADERS);
    } else if (!strncasecmp(line + match[2].rm_so, "namespace", 9)) {
        if (!strncasecmp(line + match[3].rm_so, "yes", 3))
            options |= OPTION_NAMESPACE;
        else
            options &= ~(OPTION_NAMESPACE);
    } else if (!strncasecmp(line + match[2].rm_so, "subscribe", 9)) {
        if (!strncasecmp(line + match[3].rm_so, "yes", 3))
            options |= OPTION_SUBSCRIBE;
        else
            options &= ~(OPTION_SUBSCRIBE);
    } else if (!strncasecmp(line + match[2].rm_so, "warning", 7)) {
        if (!strncasecmp(line + match[3].rm_so, "yes", 3))
            options |= OPTION_WARNING;
        else
            options &= ~(OPTION_WARNING);
    } else if (!strncasecmp(line + match[2].rm_so, "timeout", 7)) {
        errno = 0;
        timeout = strtol(line + match[3].rm_so, NULL, 10);
        if (errno)
            timeout = 0;
    } else if (!strncasecmp(line + match[2].rm_so, "daemon", 6) &&
               !(options & OPTION_DAEMON_MODE)) {
        options |= OPTION_DAEMON_MODE;
        errno = 0;
        interval = strtoul(line + match[3].rm_so, NULL, 10);
        if (errno)
            interval = 0;
    }
}


#ifdef ENCRYPTED_PASSWORDS
/*
 * Open password file and call parse_passwords().
 */
int read_passwords(void)
{
    FILE *fd;
    char pwfile[PATH_MAX];

    if (!(flags & FLAG_BLANK_PASSWORD))
        return ERROR_CONFIG_PARSE;

    passphr = (char *)smalloc(PASSPHRASE_LEN);
    *passphr = 0;

    snprintf(pwfile, PATH_MAX, "%s/%s", home, ".imapfilter/passwords");
#ifdef DEBUG
    printf("debug: passwords file: '%s'\n", pwfile);
#endif

    if (!exists_file(pwfile))
        return ERROR_FILE_OPEN;

#ifdef CHECK_PERMISSIONS
    check_file_perms(pwfile, S_IRUSR | S_IWUSR);
#endif

    fd = fopen(pwfile, "r");

    if (!fd)
        fatal(ERROR_FILE_OPEN, "imapfilter: opening passwords file %s; %s\n",
              pwfile, strerror(errno));

    parse_passwords(fd);

    fclose(fd);

    return 0;
}


/*
 *  Parse unencrypted password file.
 */
int parse_passwords(FILE * fd)
{
    int t = 3;
    char *pe = NULL;
    char user[USERNAME_LEN], serv[SERVER_LEN];
    unsigned char *buf;
    char *c, *cp, *line;
    regex_t creg;
    regmatch_t match[4];
    const char *reg = "([[:alnum:].-]+) ([[:graph:]]+) ([[:graph:]]+)";
    int r;

    do {
        fseek(fd, 0L, SEEK_SET);
        printf("Enter master passphrase: ");
        get_password(passphr, PASSPHRASE_LEN);
    } while ((r = decrypt_passwords(&buf, fd)) && --t);

    if (!t)
        return ERROR_PASSPHRASE;

    c = cp = sstrdup(buf);

    regcomp(&creg, reg, REG_EXTENDED | REG_ICASE);

    while ((line = strsep(&c, "\n")) &&
           !regexec(&creg, line, 4, match, 0)) {
        user[0] = serv[0] = 0;

        strncat(serv, line + match[1].rm_so,
                min(match[1].rm_eo - match[1].rm_so, SERVER_LEN - 1));
        strncat(user, line + match[2].rm_so,
                min(match[2].rm_eo - match[2].rm_so, USERNAME_LEN - 1));

        if ((pe = (char *)find_password(user, serv)))
            strncat(pe, line + match[3].rm_so,
                    min(match[3].rm_eo - match[3].rm_so, PASSWORD_LEN - 1));
    }

    regfree(&creg);
    sfree(cp);
    sfree(buf);

    return 0;
}


/*
 * Store encrypted passwords to file.
 */
int store_passwords(account_t * accts[])
{
    char pwfile[PATH_MAX];
    FILE *fd;

    snprintf(pwfile, PATH_MAX, "%s/%s", home, ".imapfilter/passwords");

    create_file(pwfile, S_IRUSR | S_IWUSR);

    fd = fopen(pwfile, "w");

    if (!fd)
        fatal(ERROR_FILE_OPEN, "imapfilter: opening passwords file %s; %s\n",
              pwfile, strerror(errno));

    encrypt_passwords(fd, accts);

    fclose(fd);

    return 0;
}

#endif


/*
 * Create $HOME/.imapfilter directory.
 */
int create_homedir(void)
{
    char *hdn = ".imapfilter";

    if (home)
        if (chdir(home))
            error("imapfilter: could not change directory; %s\n",
                  strerror(errno));

    if (!exists_dir(hdn))
        if (mkdir(hdn, S_IRUSR | S_IWUSR | S_IXUSR))
            error("imapfilter: could not create directory %s; %s\n", hdn,
                  strerror(errno));

    return 0;
}


/*
 * Check if a file exists.
 */
int exists_file(char *fname)
{
    struct stat fs;

    if (access(fname, F_OK))
        return 0;

    stat(fname, &fs);
    if (!S_ISREG(fs.st_mode)) {
        error("imapfilter: file %s not a regular file\n", fname);
        return ERROR_FILE_OPEN;
    }
    return 1;
}


/*
 * Check if a directory exists.
 */
int exists_dir(char *dname)
{
    struct stat ds;

    if (access(dname, F_OK))
        return 0;

    stat(dname, &ds);
    if (!S_ISDIR(ds.st_mode)) {
        error("imapfilter: file %s not a directory\n", dname);
        return ERROR_FILE_OPEN;
    }
    return 1;
}


/*
 * Create a file with the specified permissions.
 */
int create_file(char *fname, mode_t mode)
{
    int fd = 0;

    if (!exists_file(fname)) {
        fd = open(fname, O_CREAT | O_WRONLY | O_TRUNC, mode);
        if (fd == -1) {
            error("imapfilter: could not create file %s; %s\n", fname,
                  strerror(errno));
            return ERROR_FILE_OPEN;
        }
        close(fd);
    }
    return 0;
}


#ifdef CHECK_PERMISSIONS
/*
 * Check the permissions of a file.
 */
int check_file_perms(char *fname, mode_t mode)
{
    struct stat fs;

    if (stat(fname, &fs)) {
        error("imapfilter: getting file %s status; %s\n", fname,
              strerror(errno));
        return ERROR_TRIVIAL;
    }
    if (!S_ISREG(fs.st_mode)) {
        error("imapfilter: file %s not a regular file\n", fname);
        return ERROR_TRIVIAL;
    }
    if ((fs.st_mode & 00777) != mode) {
        error("imapfilter: warning: improper file %s permissions\n"
              "imapfilter: warning: file's mode should be %o not %o\n",
              fname, mode, fs.st_mode & 00777);
        return ERROR_TRIVIAL;
    }
    return 0;
}


/*
 * Check the permissions of a directory.
 */
int check_dir_perms(char *dname, mode_t mode)
{
    struct stat ds;

    if (stat(dname, &ds)) {
        error("imapfilter: getting file %s status; %s\n", dname,
              strerror(errno));
        return ERROR_TRIVIAL;
    }
    if (!S_ISDIR(ds.st_mode)) {
        error("imapfilter: file %s not a directory\n", dname);
        return ERROR_TRIVIAL;
    }
    if ((ds.st_mode & 00777) != mode) {
        error("imapfilter: warning: improper dir %s permissions\n"
              "imapfilter: warning: file's mode should be %o not %o\n",
              dname, mode, ds.st_mode & 00777);
        return ERROR_TRIVIAL;
    }
    return 0;
}

#endif
1	#include <stdio.h>
2	#include <unistd.h>
3	#include <errno.h>
4	#include <sys/types.h>
5	#include <regex.h>
6	#include <string.h>
7	#include <stdlib.h>
8	#include <limits.h>
9	#include <sys/stat.h>
10	#include <fcntl.h>
11	#include <time.h>
12
13	#include "config.h"
14	#include "imapfilter.h"
15	#include "data.h"
16
17
18	extern char logfile[PATH_MAX];
19	extern unsigned int options;
20	extern unsigned int flags;
21	extern unsigned int interval;
22	extern long timeout;
23	extern char *home;
24
25	#ifdef ENCRYPTED_PASSWORDS
26	char passphr; / Master password to access the passwords
27	file. */
28	#endif
29
30
31	/*
32	* Find the path to configuration file, open it and call parse_config().
33	*/
34	int read_config(char *cfg)
35	{
36	int r;
37	FILE *fd;
38	char *c = NULL;
39
40	if (!cfg) {
41	cfg = c = (char )xmalloc(PATH_MAX sizeof(char));
42	snprintf(cfg, PATH_MAX, "%s/%s", home, ".imapfilterrc");
43	}
44	#ifdef DEBUG
45	printf("debug: configuration file: '%s'\n", cfg);
46	#endif
47	#ifdef CHECK_PERMISSIONS
48	check_file_perms(cfg, S_IRUSR \| S_IWUSR);
49	#endif
50	fd = fopen(cfg, "r");
51
52	if (!fd)
53	fatal(ERROR_FILE_OPEN, "imapfilter: opening config file %s; %s\n",
54	cfg, strerror(errno));
55
56	if (c)
57	xfree(c);
58
59	if ((r = parse_config(fd)))
60	fatal(ERROR_CONFIG_PARSE,
61	"imapfilter: parse error in config file at row %d\n", r);
62
63	fclose(fd);
64
65	#ifdef DEBUG
66	printf("debug: options: %0#10x\n", options);
67	#endif
68
69	return 0;
70	}
71
72
73	/*
74	* Parse configuration file.
75	*/
76	int parse_config(FILE * fd)
77	{
78	int i, r = 0;
79	unsigned int row = 0;
80	char line[LINE_MAX];
81	regex_t creg[13];
82	regmatch_t match[11];
83	const char *reg[13] = {
84	"^([[:blank:]]\n\|#.\n)$",
85
86	"^[[:blank:]]*ACCOUNT[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]+"
87	"(([[:graph:]]+):([[:graph:]]*)\|([[:graph:]]+))@([[:alnum:].-]+)"
88	"(:[[:digit:]]+)?[[:blank:]]*([[:blank:]]SSL\|[[:blank:]]SSL2\|"
89	"[[:blank:]]SSL3\|[[:blank:]]TLS1)?[[:blank:]]*\n$",
90
91	"^[[:blank:]]*FOLDER[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]+"
92	"([[:print:]]+)[[:blank:]]*\n$",
93
94	"^[[:blank:]]FILTER[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]"
95	"([[:blank:]]OR\|[[:blank:]]AND)?[[:blank:]]*\n$",
96
97	"^[[:blank:]]*ACTION[[:blank:]]+(DELETE\|"
98	"COPY[[:blank:]]+(\"[[:print:]]*\"\|[[:graph:]]+)\|"
99	"MOVE[[:blank:]]+(\"[[:print:]]*\"\|[[:graph:]]+)\|"
100	"RCOPY[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]+"
101	"(\"[[:print:]]*\"\|[[:graph:]]+)\|"
102	"RMOVE[[:blank:]]+([[:alnum:]_-]+)[[:blank:]]+"
103	"(\"[[:print:]]*\"\|[[:graph:]]+)\|"
104	"FLAG[[:blank:]]+(REPLACE\|ADD\|REMOVE)[[:blank:]]+"
105	"([[:alpha:],]+)\|"
106	"LIST)[[:blank:]]([[:graph:]])[[:blank:]]*\n$",
107
108	"^[[:blank:]](MASK[[:blank:]])?[[:blank:]](OR[[:blank:]]\|"
109	"AND[[:blank:]])?[[:blank:]](NOT[[:blank:]])?[[:blank:]]"
110	"(ANSWERED\|DELETED\|DRAFT\|FLAGGED\|NEW\|OLD\|RECENT\|SEEN\|UNANSWERED\|"
111	"UNDELETED\|UNDRAFT\|UNFLAGGED\|UNSEEN)[[:blank:]]*\n$",
112
113	"^[[:blank:]](MASK[[:blank:]])?[[:blank:]](OR[[:blank:]]\|"
114	"AND[[:blank:]])?[[:blank:]](NOT[[:blank:]])?[[:blank:]]"
115	"(BCC\|BODY\|CC\|FROM\|SUBJECT\|TEXT\|TO)[[:blank:]]+(\"[[:print:]]*\"\|"
116	"[[:graph:]]+)[[:blank:]]*\n$",
117
118	"^[[:blank:]](MASK[[:blank:]])?[[:blank:]](OR[[:blank:]]\|"
119	"AND[[:blank:]])?[[:blank:]](NOT[[:blank:]])?[[:blank:]]"
120	"(HEADER)[[:blank:]]+(\"[[:print:]]*\"\|[[:graph:]]+)[[:blank:]]+"
121	"(\"[[:print:]]\"\|[[:graph:]]+)[[:blank:]]\n$",
122
123	"^[[:blank:]](MASK[[:blank:]])?[[:blank:]](OR[[:blank:]]\|"
124	"AND[[:blank:]])?[[:blank:]](NOT[[:blank:]])?[[:blank:]]"
125	"(LARGER\|SMALLER\|OLDER\|NEWER)[[:blank:]]+([[:digit:]]+)"
126	"[[:blank:]]*\n$",
127
128	"^[[:blank:]]*JOB[[:blank:]]+([[:alnum:],_-]+)[[:blank:]]+"
129	"([[:alnum:],_-]+)[[:blank:]]*\n$",
130
131	"^[[:blank:]](SET[[:blank:]])?[[:blank:]](LOGFILE)"
132	"[[:blank:]]=[[:blank:]]([[:print:]]+)\n$",
133
134	"^[[:blank:]](SET[[:blank:]])?[[:blank:]](ERRORS\|EXPUNGE\|HEADERS\|"
135	"NAMESPACE\|SUBSCRIBE\|WARNING)[[:blank:]]=[[:blank:]](YES\|NO)"
136	"[[:blank:]]*\n$",
137
138	"^[[:blank:]](SET[[:blank:]])?[[:blank:]](DAEMON\|TIMEOUT)"
139	"[[:blank:]]=[[:blank:]]([[:digit:]]+)\n$"
140	};
141
142	for (i = 0; i < 13; i++)
143	regcomp(&creg[i], reg[i], REG_EXTENDED \| REG_ICASE);
144
145	/* First process all the variables. This is done because some variables'
146	arguments are used before the other commands are processed. */
147	while (fgets(line, LINE_MAX - 1, fd))
148	if (!regexec(&creg[10], line, 4, match, 0) \|\|
149	!regexec(&creg[11], line, 4, match, 0) \|\|
150	!regexec(&creg[12], line, 4, match, 0))
151	set_options(line, match);
152
153	/* Then rewind and process everything else. */
154	fseek(fd, 0L, SEEK_SET);
155	while (fgets(line, LINE_MAX - 1, fd)) {
156	row++;
157	if (!regexec(&creg[0], line, 0, match, 0))
158	continue;
159	else if (!regexec(&creg[1], line, 9, match, 0))
160	set_account(line, match);
161	else if (!regexec(&creg[2], line, 3, match, 0))
162	r = set_mboxgrp(line, match);
163	else if (!regexec(&creg[3], line, 3, match, 0))
164	r = set_filter(line, match);
165	else if (!regexec(&creg[4], line, 11, match, 0))
166	r = set_action(line, match);
167	else if (!regexec(&creg[5], line, 5, match, 0))
168	r = set_mask(line, match, MASK_MATCH_1);
169	else if (!regexec(&creg[6], line, 6, match, 0))
170	r = set_mask(line, match, MASK_MATCH_2);
171	else if (!regexec(&creg[7], line, 7, match, 0))
172	r = set_mask(line, match, MASK_MATCH_3);
173	else if (!regexec(&creg[8], line, 6, match, 0))
174	r = set_mask(line, match, MASK_MATCH_4);
175	else if (!regexec(&creg[9], line, 3, match, 0))
176	r = set_job(line, match);
177	/* Skip variable processing. */
178	else if (!regexec(&creg[10], line, 4, match, 0) \|\|
179	!regexec(&creg[11], line, 4, match, 0) \|\|
180	!regexec(&creg[12], line, 4, match, 0));
181	else
182	return row;
183
184	if (r == ERROR_CONFIG_PARSE)
185	return row;
186	}
187
188	for (i = 0; i < 13; i++)
189	regfree(&creg[i]);
190
191	destroy_data();
192
193	return 0;
194	}
195
196
197	/*
198	* Set other options found in config file.
199	*/
200	void set_options(char line, regmatch_t match)
201	{
202	if (!strncasecmp(line + match[2].rm_so, "logfile", 7)) {
203	if (!*logfile)
204	strncat(logfile, line + match[3].rm_so,
205	min((match[3].rm_eo - match[3].rm_so), PATH_MAX - 1));
206	} else if (!strncasecmp(line + match[2].rm_so, "errors", 6)) {
207	if (!strncasecmp(line + match[3].rm_so, "yes", 3))
208	options \|= OPTION_ERRORS;
209	else
210	options &= ~(OPTION_ERRORS);
211	} else if (!strncasecmp(line + match[2].rm_so, "expunge", 7)) {
212	if (!strncasecmp(line + match[3].rm_so, "yes", 3))
213	options \|= OPTION_EXPUNGE;
214	else
215	options &= ~(OPTION_EXPUNGE);
216	} else if (!strncasecmp(line + match[2].rm_so, "header", 6)) {
217	if (!strncasecmp(line + match[3].rm_so, "yes", 3))
218	options \|= OPTION_HEADERS;
219	else
220	options &= ~(OPTION_HEADERS);
221	} else if (!strncasecmp(line + match[2].rm_so, "namespace", 9)) {
222	if (!strncasecmp(line + match[3].rm_so, "yes", 3))
223	options \|= OPTION_NAMESPACE;
224	else
225	options &= ~(OPTION_NAMESPACE);
226	} else if (!strncasecmp(line + match[2].rm_so, "subscribe", 9)) {
227	if (!strncasecmp(line + match[3].rm_so, "yes", 3))
228	options \|= OPTION_SUBSCRIBE;
229	else
230	options &= ~(OPTION_SUBSCRIBE);
231	} else if (!strncasecmp(line + match[2].rm_so, "warning", 7)) {
232	if (!strncasecmp(line + match[3].rm_so, "yes", 3))
233	options \|= OPTION_WARNING;
234	else
235	options &= ~(OPTION_WARNING);
236	} else if (!strncasecmp(line + match[2].rm_so, "timeout", 7)) {
237	errno = 0;
238	timeout = strtol(line + match[3].rm_so, NULL, 10);
239	if (errno)
240	timeout = 0;
241	} else if (!strncasecmp(line + match[2].rm_so, "daemon", 6) &&
242	!(options & OPTION_DAEMON_MODE)) {
243	options \|= OPTION_DAEMON_MODE;
244	errno = 0;
245	interval = strtoul(line + match[3].rm_so, NULL, 10);
246	if (errno)
247	interval = 0;
248	}
249	}
250
251
252	#ifdef ENCRYPTED_PASSWORDS
253	/*
254	* Open password file and call parse_passwords().
255	*/
256	int read_passwords(void)
257	{
258	FILE *fd;
259	char pwfile[PATH_MAX];
260
261	if (!(flags & FLAG_BLANK_PASSWORD))
262	return ERROR_CONFIG_PARSE;
263
264	passphr = (char *)smalloc(PASSPHRASE_LEN);
265	*passphr = 0;
266
267	snprintf(pwfile, PATH_MAX, "%s/%s", home, ".imapfilter/passwords");
268	#ifdef DEBUG
269	printf("debug: passwords file: '%s'\n", pwfile);
270	#endif
271
272	if (!exists_file(pwfile))
273	return ERROR_FILE_OPEN;
274
275	#ifdef CHECK_PERMISSIONS
276	check_file_perms(pwfile, S_IRUSR \| S_IWUSR);
277	#endif
278
279	fd = fopen(pwfile, "r");
280
281	if (!fd)
282	fatal(ERROR_FILE_OPEN, "imapfilter: opening passwords file %s; %s\n",
283	pwfile, strerror(errno));
284
285	parse_passwords(fd);
286
287	fclose(fd);
288
289	return 0;
290	}
291
292
293	/*
294	* Parse unencrypted password file.
295	*/
296	int parse_passwords(FILE * fd)
297	{
298	int t = 3;
299	char *pe = NULL;
300	char user[USERNAME_LEN], serv[SERVER_LEN];
301	unsigned char *buf;
302	char c, cp, *line;
303	regex_t creg;
304	regmatch_t match[4];
305	const char *reg = "([[:alnum:].-]+) ([[:graph:]]+) ([[:graph:]]+)";
306	int r;
307
308	do {
309	fseek(fd, 0L, SEEK_SET);
310	printf("Enter master passphrase: ");
311	get_password(passphr, PASSPHRASE_LEN);
312	} while ((r = decrypt_passwords(&buf, fd)) && --t);
313
314	if (!t)
315	return ERROR_PASSPHRASE;
316
317	c = cp = sstrdup(buf);
318
319	regcomp(&creg, reg, REG_EXTENDED \| REG_ICASE);
320
321	while ((line = strsep(&c, "\n")) &&
322	!regexec(&creg, line, 4, match, 0)) {
323	user[0] = serv[0] = 0;
324
325	strncat(serv, line + match[1].rm_so,
326	min(match[1].rm_eo - match[1].rm_so, SERVER_LEN - 1));
327	strncat(user, line + match[2].rm_so,
328	min(match[2].rm_eo - match[2].rm_so, USERNAME_LEN - 1));
329
330	if ((pe = (char *)find_password(user, serv)))
331	strncat(pe, line + match[3].rm_so,
332	min(match[3].rm_eo - match[3].rm_so, PASSWORD_LEN - 1));
333	}
334
335	regfree(&creg);
336	sfree(cp);
337	sfree(buf);
338
339	return 0;
340	}
341
342
343	/*
344	* Store encrypted passwords to file.
345	*/
346	int store_passwords(account_t * accts[])
347	{
348	char pwfile[PATH_MAX];
349	FILE *fd;
350
351	snprintf(pwfile, PATH_MAX, "%s/%s", home, ".imapfilter/passwords");
352
353	create_file(pwfile, S_IRUSR \| S_IWUSR);
354
355	fd = fopen(pwfile, "w");
356
357	if (!fd)
358	fatal(ERROR_FILE_OPEN, "imapfilter: opening passwords file %s; %s\n",
359	pwfile, strerror(errno));
360
361	encrypt_passwords(fd, accts);
362
363	fclose(fd);
364
365	return 0;
366	}
367
368	#endif
369
370
371	/*
372	* Create $HOME/.imapfilter directory.
373	*/
374	int create_homedir(void)
375	{
376	char *hdn = ".imapfilter";
377
378	if (home)
379	if (chdir(home))
380	error("imapfilter: could not change directory; %s\n",
381	strerror(errno));
382
383	if (!exists_dir(hdn))
384	if (mkdir(hdn, S_IRUSR \| S_IWUSR \| S_IXUSR))
385	error("imapfilter: could not create directory %s; %s\n", hdn,
386	strerror(errno));
387
388	return 0;
389	}
390
391
392	/*
393	* Check if a file exists.
394	*/
395	int exists_file(char *fname)
396	{
397	struct stat fs;
398
399	if (access(fname, F_OK))
400	return 0;
401
402	stat(fname, &fs);
403	if (!S_ISREG(fs.st_mode)) {
404	error("imapfilter: file %s not a regular file\n", fname);
405	return ERROR_FILE_OPEN;
406	}
407	return 1;
408	}
409
410
411	/*
412	* Check if a directory exists.
413	*/
414	int exists_dir(char *dname)
415	{
416	struct stat ds;
417
418	if (access(dname, F_OK))
419	return 0;
420
421	stat(dname, &ds);
422	if (!S_ISDIR(ds.st_mode)) {
423	error("imapfilter: file %s not a directory\n", dname);
424	return ERROR_FILE_OPEN;
425	}
426	return 1;
427	}
428
429
430	/*
431	* Create a file with the specified permissions.
432	*/
433	int create_file(char *fname, mode_t mode)
434	{
435	int fd = 0;
436
437	if (!exists_file(fname)) {
438	fd = open(fname, O_CREAT \| O_WRONLY \| O_TRUNC, mode);
439	if (fd == -1) {
440	error("imapfilter: could not create file %s; %s\n", fname,
441	strerror(errno));
442	return ERROR_FILE_OPEN;
443	}
444	close(fd);
445	}
446	return 0;
447	}
448
449
450	#ifdef CHECK_PERMISSIONS
451	/*
452	* Check the permissions of a file.
453	*/
454	int check_file_perms(char *fname, mode_t mode)
455	{
456	struct stat fs;
457
458	if (stat(fname, &fs)) {
459	error("imapfilter: getting file %s status; %s\n", fname,
460	strerror(errno));
461	return ERROR_TRIVIAL;
462	}
463	if (!S_ISREG(fs.st_mode)) {
464	error("imapfilter: file %s not a regular file\n", fname);
465	return ERROR_TRIVIAL;
466	}
467	if ((fs.st_mode & 00777) != mode) {
468	error("imapfilter: warning: improper file %s permissions\n"
469	"imapfilter: warning: file's mode should be %o not %o\n",
470	fname, mode, fs.st_mode & 00777);
471	return ERROR_TRIVIAL;
472	}
473	return 0;
474	}
475
476
477	/*
478	* Check the permissions of a directory.
479	*/
480	int check_dir_perms(char *dname, mode_t mode)
481	{
482	struct stat ds;
483
484	if (stat(dname, &ds)) {
485	error("imapfilter: getting file %s status; %s\n", dname,
486	strerror(errno));
487	return ERROR_TRIVIAL;
488	}
489	if (!S_ISDIR(ds.st_mode)) {
490	error("imapfilter: file %s not a directory\n", dname);
491	return ERROR_TRIVIAL;
492	}
493	if ((ds.st_mode & 00777) != mode) {
494	error("imapfilter: warning: improper dir %s permissions\n"
495	"imapfilter: warning: file's mode should be %o not %o\n",
496	dname, mode, ds.st_mode & 00777);
497	return ERROR_TRIVIAL;
498	}
499	return 0;
500	}
501
502	#endif