githubFork/roundcubemail.git

			@@ -32,7 +32,6 @@

			public $decryptions = array();
			public $signatures = array();
			public $signed_parts = array();
			public $encrypted_parts = array();

			const SIGN_MODE_BODY = 1;
			@@ -146,7 +145,7 @@
			$key = $this->find_key($from, true);

			if (empty($key)) {
			return new enigma_error(enigma_error::E_KEYNOTFOUND);
			return new enigma_error(enigma_error::KEYNOTFOUND);
			}

			// check if we have password for this key
			@@ -156,7 +155,7 @@
			if ($pass === null) {
			// ask for password
			$error = array('missing' => array($key->id => $key->name));
			return new enigma_error(enigma_error::E_BADPASS, '', $error);
			return new enigma_error(enigma_error::BADPASS, '', $error);
			}

			// select mode
			@@ -187,6 +186,18 @@
			// in this mode we'll replace text part
			// with the one containing signature
			$body = $message->getTXTBody();

			$text_charset = $message->getParam('text_charset');
			$line_length = $this->rc->config->get('line_length', 72);

			// We can't use format=flowed for signed messages
			if (strpos($text_charset, 'format=flowed')) {
			list($charset, $params) = explode(';', $text_charset);
			$body = rcube_mime::unfold_flowed($body);
			$body = rcube_mime::wordwrap($body, $line_length, "\r\n", false, $charset);

			$text_charset = str_replace(";\r\n format=flowed", '', $text_charset);
			}
			}
			else {
			// here we'll build PGP/MIME message
			@@ -197,10 +208,10 @@
			$result = $this->pgp_sign($body, $key->id, $pass, $pgp_mode);

			if ($result !== true) {
			if ($result->getCode() == enigma_error::E_BADPASS) {
			if ($result->getCode() == enigma_error::BADPASS) {
			// ask for password
			$error = array('missing' => array($key->id => $key->name));
			return new enigma_error(enigma_error::E_BADPASS, '', $error);
			$error = array('bad' => array($key->id => $key->name));
			return new enigma_error(enigma_error::BADPASS, '', $error);
			}

			return $result;
			@@ -209,6 +220,7 @@
			// replace message body
			if ($pgp_mode == Crypt_GPG::SIGN_MODE_CLEAR) {
			$message->setTXTBody($body);
			$message->setParam('text_charset', $text_charset);
			}
			else {
			$mime->addPGPSignature($body);
			@@ -238,7 +250,7 @@
			}

			if (empty($recipients)) {
			return new enigma_error(enigma_error::E_KEYNOTFOUND);
			return new enigma_error(enigma_error::KEYNOTFOUND);
			}

			$recipients = array_unique($recipients);
			@@ -248,7 +260,7 @@
			$key = $this->find_key($email);

			if (empty($key)) {
			return new enigma_error(enigma_error::E_KEYNOTFOUND, '', array(
			return new enigma_error(enigma_error::KEYNOTFOUND, '', array(
			'missing' => $email
			));
			}
			@@ -302,17 +314,18 @@
			* Handler for message_part_structure hook.
			* Called for every part of the message.
			*
			* @param array Original parameters
			* @param array Original parameters
			* @param string Part body (will be set if used internally)
			*
			* @return array Modified parameters
			*/
			function part_structure($p)
			function part_structure($p, $body = null)
			{
			if ($p['mimetype'] == 'text/plain' \|\| $p['mimetype'] == 'application/pgp') {
			$this->parse_plain($p);
			$this->parse_plain($p, $body);
			}
			else if ($p['mimetype'] == 'multipart/signed') {
			$this->parse_signed($p);
			$this->parse_signed($p, $body);
			}
			else if ($p['mimetype'] == 'multipart/encrypted') {
			$this->parse_encrypted($p);
			@@ -355,9 +368,10 @@
			/**
			* Handler for plain/text message.
			*
			* @param array Reference to hook's parameters
			* @param array Reference to hook's parameters
			* @param string Part body (will be set if used internally)
			*/
			function parse_plain(&$p)
			function parse_plain(&$p, $body = null)
			{
			$part = $p['structure'];

			@@ -367,7 +381,9 @@
			}

			// Get message body from IMAP server
			$body = $this->get_part_body($p['object'], $part->mime_id);
			if ($body === null) {
			$body = $this->get_part_body($p['object'], $part);
			}

			// @TODO: big message body could be a file resource
			// PGP signed message
			@@ -383,15 +399,16 @@
			/**
			* Handler for multipart/signed message.
			*
			* @param array Reference to hook's parameters
			* @param array Reference to hook's parameters
			* @param string Part body (will be set if used internally)
			*/
			function parse_signed(&$p)
			function parse_signed(&$p, $body = null)
			{
			$struct = $p['structure'];

			// S/MIME
			if ($struct->parts[1] && $struct->parts[1]->mimetype == 'application/pkcs7-signature') {
			$this->parse_smime_signed($p);
			$this->parse_smime_signed($p, $body);
			}
			// PGP/MIME: RFC3156
			// The multipart/signed body MUST consist of exactly two parts.
			@@ -399,11 +416,10 @@
			// including a set of appropriate content headers describing the data.
			// The second body MUST contain the PGP digital signature. It MUST be
			// labeled with a content type of "application/pgp-signature".
			else if ($struct->ctype_parameters['protocol'] == 'application/pgp-signature'
			&& count($struct->parts) == 2
			else if (count($struct->parts) == 2
			&& $struct->parts[1] && $struct->parts[1]->mimetype == 'application/pgp-signature'
			) {
			$this->parse_pgp_signed($p);
			$this->parse_pgp_signed($p, $body);
			}
			}

			@@ -417,7 +433,7 @@
			$struct = $p['structure'];

			// S/MIME
			if ($struct->mimetype == 'application/pkcs7-mime') {
			if ($p['mimetype'] == 'application/pkcs7-mime') {
			$this->parse_smime_encrypted($p);
			}
			// PGP/MIME: RFC3156
			@@ -426,8 +442,7 @@
			// This body contains the control information.
			// The second MIME body part MUST contain the actual encrypted data. It
			// must be labeled with a content type of "application/octet-stream".
			else if ($struct->ctype_parameters['protocol'] == 'application/pgp-encrypted'
			&& count($struct->parts) == 2
			else if (count($struct->parts) == 2
			&& $struct->parts[0] && $struct->parts[0]->mimetype == 'application/pgp-encrypted'
			&& $struct->parts[1] && $struct->parts[1]->mimetype == 'application/octet-stream'
			) {
			@@ -444,14 +459,16 @@
			*/
			private function parse_plain_signed(&$p, $body)
			{
			if (!$this->rc->config->get('enigma_signatures', true)) {
			return;
			}

			$this->load_pgp_driver();
			$part = $p['structure'];

			// Verify signature
			if ($this->rc->action == 'show' \|\| $this->rc->action == 'preview') {
			if ($this->rc->config->get('enigma_signatures', true)) {
			$sig = $this->pgp_verify($body);
			}
			if ($this->rc->action == 'show' \|\| $this->rc->action == 'preview' \|\| $this->rc->action == 'print') {
			$sig = $this->pgp_verify($body);
			}

			// @TODO: Handle big bodies using (temp) files
			@@ -486,8 +503,7 @@

			// Store signature data for display
			if (!empty($sig)) {
			$this->signed_parts[$part->mime_id] = $part->mime_id;
			$this->signatures[$part->mime_id] = $sig;
			$this->signatures[$part->mime_id] = $sig;
			}

			fclose($fh);
			@@ -497,15 +513,16 @@
			* Handler for PGP/MIME signed message.
			* Verifies signature.
			*
			* @param array Reference to hook's parameters
			* @param array Reference to hook's parameters
			* @param string Part body (will be set if used internally)
			*/
			private function parse_pgp_signed(&$p)
			private function parse_pgp_signed(&$p, $body = null)
			{
			if (!$this->rc->config->get('enigma_signatures', true)) {
			return;
			}

			if ($this->rc->action != 'show' && $this->rc->action != 'preview') {
			if ($this->rc->action != 'show' && $this->rc->action != 'preview' && $this->rc->action != 'print') {
			return;
			}

			@@ -518,61 +535,37 @@
			// Get bodies
			// Note: The first part body need to be full part body with headers
			// it also cannot be decoded
			$msg_body = $this->get_part_body($p['object'], $msg_part->mime_id, true);
			$sig_body = $this->get_part_body($p['object'], $sig_part->mime_id);
			if ($body !== null) {
			// set signed part body
			list($msg_body, $sig_body) = $this->explode_signed_body($body, $struct->ctype_parameters['boundary']);
			}
			else {
			$msg_body = $this->get_part_body($p['object'], $msg_part, true);
			$sig_body = $this->get_part_body($p['object'], $sig_part);
			}

			// Verify
			$sig = $this->pgp_verify($msg_body, $sig_body);

			// Store signature data for display
			$this->signatures[$struct->mime_id] = $sig;

			// Message can be multipart (assign signature to each subpart)
			if (!empty($msg_part->parts)) {
			foreach ($msg_part->parts as $part)
			$this->signed_parts[$part->mime_id] = $struct->mime_id;
			}
			else {
			$this->signed_parts[$msg_part->mime_id] = $struct->mime_id;
			}
			$this->signatures[$msg_part->mime_id] = $sig;
			}

			/**
			* Handler for S/MIME signed message.
			* Verifies signature.
			*
			* @param array Reference to hook's parameters
			* @param array Reference to hook's parameters
			* @param string Part body (will be set if used internally)
			*/
			private function parse_smime_signed(&$p)
			private function parse_smime_signed(&$p, $body = null)
			{
			return; // @TODO

			if (!$this->rc->config->get('enigma_signatures', true)) {
			return;
			}

			// Verify signature
			if ($this->rc->action == 'show' \|\| $this->rc->action == 'preview') {
			$this->load_smime_driver();

			$struct = $p['structure'];
			$msg_part = $struct->parts[0];

			// Verify
			$sig = $this->smime_driver->verify($struct, $p['object']);

			// Store signature data for display
			$this->signatures[$struct->mime_id] = $sig;

			// Message can be multipart (assign signature to each subpart)
			if (!empty($msg_part->parts)) {
			foreach ($msg_part->parts as $part)
			$this->signed_parts[$part->mime_id] = $struct->mime_id;
			}
			else {
			$this->signed_parts[$msg_part->mime_id] = $struct->mime_id;
			}
			}
			// @TODO
			}

			/**
			@@ -671,7 +664,7 @@
			$part = $struct->parts[1];

			// Get body
			$body = $this->get_part_body($p['object'], $part->mime_id);
			$body = $this->get_part_body($p['object'], $part);

			// Decrypt
			$result = $this->pgp_decrypt($body);
			@@ -681,7 +674,14 @@
			$struct = $this->parse_body($body);

			// Modify original message structure
			$this->modify_structure($p, $struct);
			$this->modify_structure($p, $struct, strlen($body));

			// Parse the structure (there may be encrypted/signed parts inside
			$this->part_structure(array(
			'object' => $p['object'],
			'structure' => $struct,
			'mimetype' => $struct->mimetype
			), $body);

			// Attach the decryption message to all parts
			$this->decryptions[$struct->mime_id] = $result;
			@@ -713,7 +713,7 @@
			return;
			}

			// $this->load_smime_driver();
			// @TODO
			}

			/**
			@@ -729,7 +729,7 @@
			// @TODO: Handle big bodies using (temp) files
			$sig = $this->pgp_driver->verify($msg_body, $sig_body);

			if (($sig instanceof enigma_error) && $sig->getCode() != enigma_error::E_KEYNOTFOUND)
			if (($sig instanceof enigma_error) && $sig->getCode() != enigma_error::KEYNOTFOUND)
			rcube::raise_error(array(
			'code' => 600, 'type' => 'php',
			'file' => __FILE__, 'line' => __LINE__,
			@@ -754,7 +754,7 @@

			if ($result instanceof enigma_error) {
			$err_code = $result->getCode();
			if (!in_array($err_code, array(enigma_error::E_KEYNOTFOUND, enigma_error::E_BADPASS)))
			if (!in_array($err_code, array(enigma_error::KEYNOTFOUND, enigma_error::BADPASS)))
			rcube::raise_error(array(
			'code' => 600, 'type' => 'php',
			'file' => __FILE__, 'line' => __LINE__,
			@@ -785,7 +785,7 @@

			if ($result instanceof enigma_error) {
			$err_code = $result->getCode();
			if (!in_array($err_code, array(enigma_error::E_KEYNOTFOUND, enigma_error::E_BADPASS)))
			if (!in_array($err_code, array(enigma_error::KEYNOTFOUND, enigma_error::BADPASS)))
			rcube::raise_error(array(
			'code' => 600, 'type' => 'php',
			'file' => __FILE__, 'line' => __LINE__,
			@@ -814,7 +814,7 @@

			if ($result instanceof enigma_error) {
			$err_code = $result->getCode();
			if (!in_array($err_code, array(enigma_error::E_KEYNOTFOUND, enigma_error::E_BADPASS)))
			if (!in_array($err_code, array(enigma_error::KEYNOTFOUND, enigma_error::BADPASS)))
			rcube::raise_error(array(
			'code' => 600, 'type' => 'php',
			'file' => __FILE__, 'line' => __LINE__,
			@@ -1075,10 +1075,8 @@
			$config = $this->rc->decrypt($config);
			$config = @unserialize($config);
			}

			if($this->password_time) {
			$threshold = time() - $this->password_time;
			}

			$threshold = $this->password_time ? time() - $this->password_time : 0;
			$keys = array();

			// delete expired passwords
			@@ -1102,20 +1100,21 @@
			/**
			* Get message part body.
			*
			* @param rcube_message Message object
			* @param string Message part ID
			* @param bool Return raw body with headers
			* @param rcube_message Message object
			* @param rcube_message_part Message part
			* @param bool Return raw body with headers
			*/
			private function get_part_body($msg, $part_id, $full = false)
			private function get_part_body($msg, $part, $full = false)
			{
			// @TODO: Handle big bodies using file handles

			if ($full) {
			$storage = $this->rc->get_storage();
			$body = $storage->get_raw_headers($msg->uid, $part_id);
			$body .= $storage->get_raw_body($msg->uid, null, $part_id);
			$body = $storage->get_raw_headers($msg->uid, $part->mime_id);
			$body .= $storage->get_raw_body($msg->uid, null, $part->mime_id);
			}
			else {
			$body = $msg->get_part_body($part_id, false);
			$body = $msg->get_part_body($part->mime_id, false);
			}

			return $body;
			@@ -1142,18 +1141,25 @@
			/**
			* Replace message encrypted structure with decrypted message structure
			*
			* @param array
			* @param rcube_message_part
			* @param array Hook arguments
			* @param rcube_message_part Part structure
			* @param int Part size
			*/
			private function modify_structure(&$p, $struct)
			private function modify_structure(&$p, $struct, $size = 0)
			{
			// modify mime_parts property of the message object
			$old_id = $p['structure']->mime_id;

			foreach (array_keys($p['object']->mime_parts) as $idx) {
			if (!$old_id \|\| $idx == $old_id \|\| strpos($idx, $old_id . '.') === 0) {
			unset($p['object']->mime_parts[$idx]);
			}
			}

			// set some part params used by Roundcube core
			$struct->headers = array_merge($p['structure']->headers, $struct->headers);
			$struct->size = $size;
			$struct->filename = $p['structure']->filename;

			// modify the new structure to be correctly handled by Roundcube
			$this->modify_structure_part($struct, $p['object'], $old_id);
			@@ -1182,7 +1188,6 @@

			// Cache the fact it was decrypted
			$this->encrypted_parts[] = $part->mime_id;

			$msg->mime_parts[$part->mime_id] = $part;

			// modify sub-parts
			@@ -1192,6 +1197,33 @@
			}

			/**
			* Extracts body and signature of multipart/signed message body
			*/
			private function explode_signed_body($body, $boundary)
			{
			if (!$body) {
			return array();
			}

			$boundary = '--' . $boundary;
			$boundary_len = strlen($boundary) + 2;

			// Find boundaries
			$start = strpos($body, $boundary) + $boundary_len;
			$end = strpos($body, $boundary, $start);

			// Get signed body and signature
			$sig = substr($body, $end + $boundary_len);
			$body = substr($body, $start, $end - $start - 2);

			// Cleanup signature
			$sig = substr($sig, strpos($sig, "\r\n\r\n") + 4);
			$sig = substr($sig, 0, strpos($sig, $boundary));

			return array($body, $sig);
			}

			/**
			* Checks if specified message part is a PGP-key or S/MIME cert data
			*
			* @param rcube_message_part Part object