githubFork/roundcubemail.git

			@@ -5,7 +5,7 @@
			\| program/steps/mail/func.inc \|
			\| \|
			\| This file is part of the Roundcube Webmail client \|
			\| Copyright (C) 2005-2010, Roundcube Dev. - Switzerland \|
			\| Copyright (C) 2005-2010, The Roundcube Dev Team \|
			\| Licensed under the GNU GPL \|
			\| \|
			\| PURPOSE: \|
			@@ -22,11 +22,11 @@
			// setup some global vars used by mail steps
			$SENT_MBOX = $RCMAIL->config->get('sent_mbox');
			$DRAFTS_MBOX = $RCMAIL->config->get('drafts_mbox');
			$SEARCH_MODS_DEFAULT = array('*' => array('subject'=>1, 'from'=>1), $SENT_MBOX => array('subject'=>1, 'to'=>1), $DRAFTS_MBOX => array('subject'=>1, 'to'=>1));

			// Simplified for IDN in Unicode
			//$EMAIL_ADDRESS_PATTERN = '([a-z0-9][a-z0-9\-\.\+\_]@[a-z0-9][a-z0-9\-\.]\\.[a-z]{2,5})';
			$EMAIL_ADDRESS_PATTERN = '([a-z0-9][a-z0-9\-\.\+\_]@[^&@"\'.][^@&"\']\\.[a-z]{2,5})';
			$SEARCH_MODS_DEFAULT = array(
			'*' => array('subject'=>1, 'from'=>1),
			$SENT_MBOX => array('subject'=>1, 'to'=>1),
			$DRAFTS_MBOX => array('subject'=>1, 'to'=>1)
			);

			// actions that do not require imap connection here
			$NOIMAP_ACTIONS = array('addcontact', 'autocomplete', 'upload', 'display-attachment', 'remove-attachment', 'get');
			@@ -56,9 +56,9 @@

			// set default sort col/order to session
			if (!isset($_SESSION['sort_col']))
			$_SESSION['sort_col'] = $CONFIG['message_sort_col'];
			$_SESSION['sort_col'] = !empty($CONFIG['message_sort_col']) ? $CONFIG['message_sort_col'] : '';
			if (!isset($_SESSION['sort_order']))
			$_SESSION['sort_order'] = $CONFIG['message_sort_order'];
			$_SESSION['sort_order'] = strtoupper($CONFIG['message_sort_order']) == 'ASC' ? 'ASC' : 'DESC';

			// set threads mode
			$a_threading = $RCMAIL->config->get('message_threading', array());
			@@ -89,7 +89,7 @@
			if ($_SESSION['search_filter'] && $_SESSION['search_filter'] != 'ALL') {
			$search_request = md5($mbox_name.$_SESSION['search_filter']);

			$IMAP->search($mbox_name, $_SESSION['search_filter'], RCMAIL_CHARSET, $_SESSION['sort_col']);
			$IMAP->search($mbox_name, $_SESSION['search_filter'], RCMAIL_CHARSET, rcmail_sort_column());
			$_SESSION['search'] = $IMAP->get_search_set();
			$_SESSION['search_request'] = $search_request;
			$OUTPUT->set_env('search_request', $search_request);
			@@ -102,14 +102,11 @@
			// set current mailbox and some other vars in client environment
			$OUTPUT->set_env('mailbox', $mbox_name);
			$OUTPUT->set_env('pagesize', $IMAP->page_size);
			$OUTPUT->set_env('quota', $IMAP->get_capability('quota'));
			$OUTPUT->set_env('quota', $IMAP->get_capability('QUOTA'));
			$OUTPUT->set_env('delimiter', $IMAP->get_hierarchy_delimiter());
			$OUTPUT->set_env('threading', (bool) $IMAP->threading);
			$OUTPUT->set_env('threads', $IMAP->threading
			\|\| $IMAP->get_capability('thread=references')
			\|\| $IMAP->get_capability('thread=orderedsubject')
			\|\| $IMAP->get_capability('thread=refs')
			);
			$OUTPUT->set_env('threads', $IMAP->threading \|\| $IMAP->get_capability('THREAD'));
			$OUTPUT->set_env('preview_pane_mark_read', $RCMAIL->config->get('preview_pane_mark_read', 0));

			if ($CONFIG['flag_for_deletion'])
			$OUTPUT->set_env('flag_for_deletion', true);
			@@ -119,9 +116,8 @@
			$OUTPUT->set_env('skip_deleted', true);
			if ($CONFIG['display_next'])
			$OUTPUT->set_env('display_next', true);

			$OUTPUT->set_env('preview_pane_mark_read', $RCMAIL->config->get('preview_pane_mark_read', 0));

			if ($CONFIG['forward_attachment'])
			$OUTPUT->set_env('forward_attachment', true);
			if ($CONFIG['trash_mbox'])
			$OUTPUT->set_env('trash_mailbox', $CONFIG['trash_mbox']);
			if ($CONFIG['drafts_mbox'])
			@@ -134,16 +130,79 @@
			'movingmessage', 'copyingmessage', 'deletingmessage', 'markingmessage',
			'copy', 'move', 'quota');

			$OUTPUT->set_pagetitle(rcmail_localize_foldername($mbox_name));
			$OUTPUT->set_pagetitle(rcmail_localize_foldername($IMAP->mod_mailbox($mbox_name)));
			}

			/**
			* Returns 'to' if current folder is configured Sent or Drafts
			* or their subfolders, otherwise returns 'from'.
			*
			* @return string Column name
			*/
			function rcmail_message_list_smart_column_name()
			{
			global $RCMAIL;

			$delim = $RCMAIL->imap->get_hierarchy_delimiter();
			$mbox = $RCMAIL->imap->get_mailbox_name();
			$sent_mbox = $RCMAIL->config->get('sent_mbox');
			$drafts_mbox = $RCMAIL->config->get('drafts_mbox');

			if (strpos($mbox.$delim, $sent_mbox.$delim) === 0 \|\| strpos($mbox.$delim, $drafts_mbox.$delim) === 0) {
			return 'to';
			}

			return 'from';
			}

			/**
			* Returns configured messages list sorting column name
			* The name is context-sensitive, which means if sorting is set to 'fromto'
			* it will return 'from' or 'to' according to current folder type.
			*
			* @return string Column name
			*/
			function rcmail_sort_column()
			{
			global $RCMAIL;

			if (isset($_SESSION['sort_col'])) {
			$column = $_SESSION['sort_col'];
			}
			else {
			$column = $RCMAIL->config->get('message_sort_col');
			}

			// get name of smart From/To column in folder context
			if ($column == 'fromto') {
			$column = rcmail_message_list_smart_column_name();
			}

			return $column;
			}

			/**
			* Returns configured message list sorting order
			*
			* @return string Sorting order (ASC\|DESC)
			*/
			function rcmail_sort_order()
			{
			global $RCMAIL;

			if (isset($_SESSION['sort_order'])) {
			return $_SESSION['sort_order'];
			}

			return $RCMAIL->config->get('message_sort_order');
			}

			/**
			* return the message list as HTML table
			*/
			function rcmail_message_list($attrib)
			{
			global $IMAP, $CONFIG, $OUTPUT;
			global $CONFIG, $OUTPUT;

			// add some labels to client
			$OUTPUT->add_label('from', 'to');
			@@ -164,14 +223,6 @@

			// save some variables for use in ajax list
			$_SESSION['list_attrib'] = $attrib;

			$mbox = $IMAP->get_mailbox_name();
			$delim = $IMAP->get_hierarchy_delimiter();

			// show 'to' instead of 'from' in sent/draft messages
			if ((strpos($mbox.$delim, $CONFIG['sent_mbox'].$delim)===0 \|\| strpos($mbox.$delim, $CONFIG['drafts_mbox'].$delim)===0)
			&& (($f = array_search('from', $a_show_cols)) !== false) && array_search('to', $a_show_cols) === false)
			$a_show_cols[$f] = 'to';

			// make sure 'threads' and 'subject' columns are present
			if (!in_array('subject', $a_show_cols))
			@@ -223,7 +274,6 @@
			}

			$mbox = $IMAP->get_mailbox_name();
			$delim = $IMAP->get_hierarchy_delimiter();

			// make sure 'threads' and 'subject' columns are present
			if (!in_array('subject', $a_show_cols))
			@@ -232,11 +282,6 @@
			array_unshift($a_show_cols, 'threads');

			$_SESSION['list_attrib']['columns'] = $a_show_cols;

			// show 'to' instead of 'from' in sent/draft messages
			if ((strpos($mbox.$delim, $CONFIG['sent_mbox'].$delim)===0 \|\| strpos($mbox.$delim, $CONFIG['drafts_mbox'].$delim)===0)
			&& (($f = array_search('from', $a_show_cols)) !== false) && array_search('to', $a_show_cols) === false)
			$a_show_cols[$f] = 'to';

			// Make sure there are no duplicated columns (#1486999)
			$a_show_cols = array_unique($a_show_cols);
			@@ -251,13 +296,18 @@

			$thead = $head_replace ? rcmail_message_list_head($_SESSION['list_attrib'], $a_show_cols) : NULL;

			$OUTPUT->command('set_message_coltypes', $a_show_cols, $thead);
			// get name of smart From/To column in folder context
			if (($f = array_search('fromto', $a_show_cols)) !== false) {
			$smart_col = rcmail_message_list_smart_column_name();
			}

			$OUTPUT->command('set_message_coltypes', $a_show_cols, $thead, $smart_col);

			if (empty($a_headers))
			return;

			// remove 'threads', 'attachment', 'flag', 'status' columns, we don't need them here
			foreach (array('threads', 'attachment', 'flag', 'status') as $col) {
			foreach (array('threads', 'attachment', 'flag', 'status', 'priority') as $col) {
			if (($key = array_search($col, $a_show_cols)) !== FALSE)
			unset($a_show_cols[$key]);
			}
			@@ -274,16 +324,18 @@

			// format each col; similar as in rcmail_message_list()
			foreach ($a_show_cols as $col) {
			if (in_array($col, array('from', 'to', 'cc', 'replyto')))
			$cont = Q(rcmail_address_string($header->$col, 3), 'show');
			$col_name = $col == 'fromto' ? $smart_col : $col;

			if (in_array($col_name, array('from', 'to', 'cc', 'replyto')))
			$cont = Q(rcmail_address_string($header->$col_name, 3), 'show');
			else if ($col=='subject') {
			$cont = abbreviate_string(trim($IMAP->decode_header($header->$col)), 160);
			$cont = trim($IMAP->decode_header($header->$col));
			if (!$cont) $cont = rcube_label('nosubject');
			$cont = Q($cont);
			}
			else if ($col=='size')
			else if ($col == 'size')
			$cont = show_bytes($header->$col);
			else if ($col=='date')
			else if ($col == 'date')
			$cont = format_date($header->date);
			else
			$cont = Q($header->$col);
			@@ -291,6 +343,7 @@
			$a_msg_cols[$col] = $cont;
			}

			$a_msg_flags = array_change_key_case(array_map('intval', (array) $header->flags));
			if ($header->depth)
			$a_msg_flags['depth'] = $header->depth;
			else if ($header->has_children)
			@@ -301,23 +354,15 @@
			$a_msg_flags['has_children'] = $header->has_children;
			if ($header->unread_children)
			$a_msg_flags['unread_children'] = $header->unread_children;
			if ($header->deleted)
			$a_msg_flags['deleted'] = 1;
			if (!$header->seen)
			$a_msg_flags['unread'] = 1;
			if ($header->answered)
			$a_msg_flags['replied'] = 1;
			if ($header->forwarded)
			$a_msg_flags['forwarded'] = 1;
			if ($header->flagged)
			$a_msg_flags['flagged'] = 1;
			if ($header->others['list-post'])
			$a_msg_flags['ml'] = 1;
			if ($header->priority)
			$a_msg_flags['prio'] = (int) $header->priority;

			$a_msg_flags['ctype'] = Q($header->ctype);
			$a_msg_flags['mbox'] = $mbox;

			// merge with plugin result
			// merge with plugin result (Deprecated, use $header->flags)
			if (!empty($header->list_flags) && is_array($header->list_flags))
			$a_msg_flags = array_merge($a_msg_flags, $header->list_flags);
			if (!empty($header->list_cols) && is_array($header->list_cols))
			@@ -331,7 +376,7 @@
			}

			if ($IMAP->threading) {
			$OUTPUT->command('init_threads', (array) $roots);
			$OUTPUT->command('init_threads', (array) $roots, $mbox);
			}
			}

			@@ -341,8 +386,6 @@
			*/
			function rcmail_message_list_head($attrib, $a_show_cols)
			{
			global $CONFIG;

			$skin_path = $_SESSION['skin_path'];
			$image_tag = html::img(array('src' => "%s%s", 'alt' => "%s"));

			@@ -351,7 +394,7 @@
			$sort_order = $_SESSION['sort_order'];

			// define sortable columns
			$a_sort_cols = array('subject', 'date', 'from', 'to', 'size', 'cc');
			$a_sort_cols = array('subject', 'date', 'from', 'to', 'fromto', 'size', 'cc');

			if (!empty($attrib['optionsmenuicon'])) {
			$onclick = 'return ' . JS_OBJECT_NAME . ".command('menu-open', 'messagelistmenu')";
			@@ -369,6 +412,11 @@

			$cells = array();

			// get name of smart From/To column in folder context
			if (($f = array_search('fromto', $a_show_cols)) !== false) {
			$smart_col = rcmail_message_list_smart_column_name();
			}

			foreach ($a_show_cols as $col) {
			// get column name
			switch ($col) {
			@@ -376,11 +424,15 @@
			$col_name = '<span class="flagged"> </span>';
			break;
			case 'attachment':
			case 'priority':
			case 'status':
			$col_name = '<span class="' . $col .'"> </span>';
			break;
			case 'threads':
			$col_name = $list_menu;
			break;
			case 'fromto':
			$col_name = Q(rcube_label($smart_col));
			break;
			default:
			$col_name = Q(rcube_label($col));
			@@ -560,7 +612,7 @@
			* @param array CID map replaces (inline images)
			* @return string Clean HTML
			*/
			function rcmail_wash_html($html, $p = array(), $cid_replaces)
			function rcmail_wash_html($html, $p, $cid_replaces)
			{
			global $REMOTE_OBJECTS;

			@@ -569,7 +621,7 @@
			// special replacements (not properly handled by washtml class)
			$html_search = array(
			'/(<\/nobr>)(\s+)(<nobr>)/i', // space(s) between <NOBR>
			'/<title[^>]>.<\/title>/i', // PHP bug #32547 workaround: remove title tag
			'/<title[^>]>[^<]<\/title>/i', // PHP bug #32547 workaround: remove title tag
			'/^(\0\0\xFE\xFF\|\xFF\xFE\0\0\|\xFE\xFF\|\xFF\xFE\|\xEF\xBB\xBF)/', // byte-order mark (only outlook?)
			'/<html\s[^>]+>/i', // washtml/DOMDocument cannot handle xml namespaces
			);
			@@ -579,7 +631,7 @@
			'',
			'<html>',
			);
			$html = preg_replace($html_search, $html_replace, $html);
			$html = preg_replace($html_search, $html_replace, trim($html));

			// PCRE errors handling (#1486856), should we use something like for every preg_* use?
			if ($html === null && ($preg_error = preg_last_error()) != PREG_NO_ERROR) {
			@@ -590,7 +642,7 @@
			if ($preg_error == PREG_RECURSION_LIMIT_ERROR)
			$errstr .= " Consider raising pcre.recursion_limit!";

			raise_error(array('code' => 600, 'type' => 'php',
			raise_error(array('code' => 620, 'type' => 'php',
			'line' => __LINE__, 'file' => __FILE__,
			'message' => $errstr), true, false);
			return '';
			@@ -600,17 +652,18 @@
			$html = preg_replace_callback('/(<[\/]*)([^\s>]+)/', 'rcmail_html_tag_callback', $html);

			// charset was converted to UTF-8 in rcube_imap::get_message_part(),
			// -> change charset specification in HTML accordingly
			$charset_pattern = '(<meta\s+[^>]content=)[\'"]?(\w+\/\w+;\scharset=)([a-z0-9-_]+[\'"]?)';
			if (preg_match("/$charset_pattern/Ui", $html)) {
			$html = preg_replace("/$charset_pattern/i", '\\1"\\2'.RCMAIL_CHARSET.'"', $html);
			// change/add charset specification in HTML accordingly,
			// washtml cannot work without that
			$meta = '<meta http-equiv="Content-Type" content="text/html; charset='.RCMAIL_CHARSET.'" />';

			// remove old meta tag and add the new one, making sure
			// that it is placed in the head (#1488093)
			$html = preg_replace('/<meta[^>]+charset=[a-z0-9-_]+[^>]*>/Ui', '', $html);
			$html = preg_replace('/(<head[^>]*>)/Ui', '\\1'.$meta, $html, -1, $rcount);
			if (!$rcount) {
			$html = '<head>' . $meta . '</head>' . $html;
			}
			else {
			// add meta content-type to malformed messages, washtml cannot work without that
			if (!preg_match('/<head[^>]>(.)<\/head>/Uims', $html))
			$html = '<head></head>'. $html;
			$html = substr_replace($html, '<meta http-equiv="Content-Type" content="text/html; charset='.RCMAIL_CHARSET.'" />', intval(stripos($html, '<head>')+6), 0);
			}

			// turn relative into absolute urls
			$html = rcmail_resolve_base($html);

			@@ -648,6 +701,9 @@
			if (!$p['skip_washer_style_callback'])
			$washer->add_callback('style', 'rcmail_washtml_callback');

			// Remove non-UTF8 characters (#1487813)
			$html = rc_utf8_clean($html);

			$html = $washer->wash($html);
			$REMOTE_OBJECTS = $washer->extlinks;

			@@ -669,7 +725,8 @@

			// trigger plugin hook
			$data = $RCMAIL->plugins->exec_hook('message_part_before',
			array('type' => $part->ctype_secondary, 'body' => $part->body) + $p + array('safe' => false, 'plain' => false, 'inline_html' => true));
			array('type' => $part->ctype_secondary, 'body' => $part->body, 'id' => $part->mime_id)
			+ $p + array('safe' => false, 'plain' => false, 'inline_html' => true));

			// convert html to text/plain
			if ($data['type'] == 'html' && $data['plain']) {
			@@ -685,8 +742,10 @@
			// text/enriched
			else if ($data['type'] == 'enriched') {
			$part->ctype_secondary = 'html';
			require_once('lib/enriched.inc');
			$body = Q(enriched_to_html($data['body']), 'show');
			require_once(INSTALL_PATH . 'program/lib/enriched.inc');
			$body = enriched_to_html($data['body']);
			$body = rcmail_wash_html($body, $data, $part->replaces);
			$part->ctype_secondary = 'html';
			}
			else {
			// assert plaintext
			@@ -702,7 +761,8 @@
			$body = rcmail_plain_body($body, $part->ctype_parameters['format'] == 'flowed');

			// allow post-processing of the message body
			$data = $RCMAIL->plugins->exec_hook('message_part_after', array('type' => $part->ctype_secondary, 'body' => $body) + $data);
			$data = $RCMAIL->plugins->exec_hook('message_part_after',
			array('type' => $part->ctype_secondary, 'body' => $body, 'id' => $part->mime_id) + $data);

			return $data['type'] == 'html' ? $data['body'] : html::tag('pre', array(), $data['body']);
			}
			@@ -728,71 +788,74 @@
			$body = preg_replace_callback($replacer->mailto_pattern, array($replacer, 'mailto_callback'), $body);

			// split body into single lines
			$a_lines = preg_split('/\r?\n/', $body);
			$body = preg_split('/\r?\n/', $body);
			$quote_level = 0;
			$last = -1;

			// find/mark quoted lines...
			for ($n=0, $cnt=count($a_lines); $n < $cnt; $n++) {
			if ($a_lines[$n][0] == '>' && preg_match('/^(>+\s*)+/', $a_lines[$n], $regs)) {
			$q = strlen(rtrim($regs[0]));
			$a_lines[$n] = substr($a_lines[$n], strlen($regs[0]));
			for ($n=0, $cnt=count($body); $n < $cnt; $n++) {
			if ($body[$n][0] == '>' && preg_match('/^(>+\s*)+/', $body[$n], $regs)) {
			$q = strlen(preg_replace('/\s/', '', $regs[0]));
			$body[$n] = substr($body[$n], strlen($regs[0]));

			if ($q > $quote_level)
			$a_lines[$n] = $replacer->get_replacement($replacer->add(
			str_repeat('<blockquote>', $q - $quote_level))) . $a_lines[$n];
			else if ($q < $quote_level)
			$a_lines[$n] = $replacer->get_replacement($replacer->add(
			str_repeat('</blockquote>', $quote_level - $q))) . $a_lines[$n];
			if ($q > $quote_level) {
			$body[$n] = $replacer->get_replacement($replacer->add(
			str_repeat('<blockquote>', $q - $quote_level))) . $body[$n];
			}
			else if ($q < $quote_level) {
			$body[$n] = $replacer->get_replacement($replacer->add(
			str_repeat('</blockquote>', $quote_level - $q))) . $body[$n];
			}
			else if ($flowed) {
			// previous line is flowed
			if (isset($a_lines[$last]) && $a_lines[$n]
			&& $a_lines[$last][strlen($a_lines[$last])-1] == ' ') {
			if (isset($body[$last]) && $body[$n]
			&& $body[$last][strlen($body[$last])-1] == ' ') {
			// merge lines
			$a_lines[$last] .= $a_lines[$n];
			unset($a_lines[$n]);
			$body[$last] .= $body[$n];
			unset($body[$n]);
			}
			else
			else {
			$last = $n;
			}
			}
			}
			else {
			$q = 0;
			if ($flowed) {
			// sig separator - line is fixed
			if ($a_lines[$n] == '-- ') {
			$last = $n;
			if ($body[$n] == '-- ') {
			$last = $last_sig = $n;
			}
			else {
			// remove space-stuffing
			if ($a_lines[$n][0] == ' ')
			$a_lines[$n] = substr($a_lines[$n], 1);
			if ($body[$n][0] == ' ')
			$body[$n] = substr($body[$n], 1);

			// previous line is flowed?
			if (isset($a_lines[$last]) && $a_lines[$n]
			&& $a_lines[$last] != '-- '
			&& $a_lines[$last][strlen($a_lines[$last])-1] == ' '
			if (isset($body[$last]) && $body[$n]
			&& $last !== $last_sig
			&& $body[$last][strlen($body[$last])-1] == ' '
			) {
			$a_lines[$last] .= $a_lines[$n];
			unset($a_lines[$n]);
			$body[$last] .= $body[$n];
			unset($body[$n]);
			}
			else {
			$last = $n;
			}
			}
			if ($quote_level > 0)
			$a_lines[$last] = $replacer->get_replacement($replacer->add(
			str_repeat('</blockquote>', $quote_level))) . $a_lines[$last];
			$body[$last] = $replacer->get_replacement($replacer->add(
			str_repeat('</blockquote>', $quote_level))) . $body[$last];
			}
			else if ($quote_level > 0)
			$a_lines[$n] = $replacer->get_replacement($replacer->add(
			str_repeat('</blockquote>', $quote_level))) . $a_lines[$n];
			$body[$n] = $replacer->get_replacement($replacer->add(
			str_repeat('</blockquote>', $quote_level))) . $body[$n];
			}

			$quote_level = $q;
			}

			$body = join("\n", $a_lines);
			$body = join("\n", $body);

			// quote plain text (don't use Q() here, to display entities "as is")
			$table = get_html_translation_table(HTML_SPECIALCHARS);
			@@ -822,7 +885,7 @@
			/**
			* Callback function for washtml cleaning class
			*/
			function rcmail_washtml_callback($tagname, $attrib, $content)
			function rcmail_washtml_callback($tagname, $attrib, $content, $washtml)
			{
			switch ($tagname) {
			case 'form':
			@@ -831,11 +894,14 @@

			case 'style':
			// decode all escaped entities and reduce to ascii strings
			$stripped = preg_replace('/[^a-zA-Z\(:]/', '', rcmail_xss_entity_decode($content));
			$stripped = preg_replace('/[^a-zA-Z\(:;]/', '', rcmail_xss_entity_decode($content));

			// now check for evil strings like expression, behavior or url()
			if (!preg_match('/expression\|behavior\|url\(\|import/', $stripped)) {
			$out = html::tag('style', array('type' => 'text/css'), $content);
			if (!preg_match('/expression\|behavior\|javascript:\|import[^a]/i', $stripped)) {
			if (!$washtml->get_config('allow_remote') && stripos($stripped, 'url('))
			$washtml->extlinks = true;
			else
			$out = html::tag('style', array('type' => 'text/css'), $content);
			break;
			}

			@@ -944,16 +1010,25 @@
			$table->add(array('class' => 'header '.$hkey), Q($row['value'], ($hkey == 'subject' ? 'strict' : 'show')));
			}

			// all headers division
			$table->add(array('colspan' => 2, 'class' => "more-headers show-headers", 'onclick' => "return ".JS_OBJECT_NAME.".command('load-headers','',this)"), '');
			$table->add_row(array('id' => "all-headers"));
			$table->add(array('colspan' => 2, 'class' => "all"), html::div(array('id' => 'headers-source'), ''));

			return $table->show($attrib);
			}


			/**
			* return block to show full message headers
			*/
			function rcmail_message_full_headers($attrib, $headers=NULL)
			{
			global $OUTPUT;

			$html = html::div(array('class' => "more-headers show-headers", 'onclick' => "return ".JS_OBJECT_NAME.".command('load-headers','',this)"), '');
			$html .= html::div(array('id' => "all-headers", 'class' => "all", 'style' => 'display:none'), html::div(array('id' => 'headers-source'), ''));

			$OUTPUT->add_gui_object('all_headers_row', 'all-headers');
			$OUTPUT->add_gui_object('all_headers_box', 'headers-source');

			return $table->show($attrib);
			}
			return html::div($attrib, $html);
			}


			/**
			@@ -1006,7 +1081,7 @@
			$body = rcmail_print_body($part, array('safe' => $safe_mode, 'plain' => !$CONFIG['prefer_html']));

			if ($part->ctype_secondary == 'html') {
			$body = rcmail_html4inline($body, $attrib['id'], 'rcmBody', $attrs);
			$body = rcmail_html4inline($body, $attrib['id'], 'rcmBody', $attrs, $safe_mode);
			$div_attr = array('class' => 'message-htmlpart');
			$style = array();

			@@ -1032,15 +1107,14 @@
			rcmail_plain_body(Q($MESSAGE->body, 'strict', false))));
			}

			$ctype_primary = strtolower($MESSAGE->structure->ctype_primary);
			$ctype_secondary = strtolower($MESSAGE->structure->ctype_secondary);

			// list images after mail body
			if ($CONFIG['inline_images']
			&& $ctype_primary == 'multipart'
			&& !empty($MESSAGE->attachments))
			{
			if ($CONFIG['inline_images'] && !empty($MESSAGE->attachments)) {
			foreach ($MESSAGE->attachments as $attach_prop) {
			// skip inline images
			if ($attach_prop->content_id && $attach_prop->disposition == 'inline') {
			continue;
			}

			// Content-Type: image/*...
			if (preg_match('/^image\//i', $attach_prop->mimetype) \|\|
			// ...or known file extension: many clients are using application/octet-stream
			@@ -1050,7 +1124,7 @@
			) {
			$out .= html::tag('hr') . html::p(array('align' => "center"),
			html::img(array(
			'src' => $MESSAGE->get_part_url($attach_prop->mime_id),
			'src' => $MESSAGE->get_part_url($attach_prop->mime_id, true),
			'title' => $attach_prop->filename,
			'alt' => $attach_prop->filename,
			)));
			@@ -1074,19 +1148,17 @@
			// check for <base href=...>
			if (preg_match('!(<base.*href=["\']?)([hftps]{3,5}://[a-z0-9/.%-]+)!i', $body, $regs)) {
			$replacer = new rcube_base_replacer($regs[2]);

			// replace all relative paths
			$body = preg_replace_callback('/(src\|background\|href)=(["\']?)([\.\/]+[^"\'\s]+)(\2\|\s\|>)/Ui', array($replacer, 'callback'), $body);
			$body = preg_replace_callback('/(url\s*$)(["\']?)([\.\/]+[^"\'$\s]+)(\2)\)/Ui', array($replacer, 'callback'), $body);
			$body = $replacer->replace($body);
			}

			return $body;
			}


			/**
			* modify a HTML message that it can be displayed inside a HTML page
			*/
			function rcmail_html4inline($body, $container_id, $body_id='', &$attributes=null)
			function rcmail_html4inline($body, $container_id, $body_id='', &$attributes=null, $allow_remote=false)
			{
			$last_style_pos = 0;
			$body_lc = strtolower($body);
			@@ -1099,7 +1171,7 @@

			// replace all css definitions with #container [def]
			$styles = rcmail_mod_css_styles(
			substr($body, $pos, $pos2-$pos), $cont_id);
			substr($body, $pos, $pos2-$pos), $cont_id, $allow_remote);

			$body = substr($body, 0, $pos) . $styles . substr($body, $pos2);
			$body_lc = strtolower($body);
			@@ -1143,20 +1215,22 @@
			$attributes = array();

			// Handle body attributes that doesn't play nicely with div elements
			if (preg_match('/<div class="' . preg_quote($body_id, '/') . '" ([^>]+)/', $body, $m)) {
			$regexp = '/<div class="' . preg_quote($body_id, '/') . '"([^>]*)/';
			if (preg_match($regexp, $body, $m)) {
			$attrs = $m[0];
			// Get bgcolor, we'll set it as background-color of the message container
			if (preg_match('/bgcolor=["\']([a-z0-9#]+)["\']/', $attrs, $mb)) {
			if ($m[1] && preg_match('/bgcolor=["\']([a-z0-9#]+)["\']/', $attrs, $mb)) {
			$attributes['background-color'] = $mb[1];
			$attrs = preg_replace('/bgcolor=["\']([a-z0-9#]+)["\']/', '', $attrs);
			}
			// Get background, we'll set it as background-image of the message container
			if (preg_match('/background=["\']([^"\'>\s]+)["\']/', $attrs, $mb)) {
			if ($m[1] && preg_match('/background=["\']([^"\'>\s]+)["\']/', $attrs, $mb)) {
			$attributes['background-image'] = 'url('.$mb[1].')';
			$attrs = preg_replace('/background=["\']([^"\'>\s]+)["\']/', '', $attrs);
			}
			if (!empty($attributes))
			$body = preg_replace('/<div class="' . preg_quote($body_id, '/') . '" [^>]+/', rtrim($attrs), $body, 1);
			if (!empty($attributes)) {
			$body = preg_replace($regexp, rtrim($attrs), $body, 1);
			}

			// handle body styles related to background image
			if ($attributes['background-image']) {
			@@ -1172,8 +1246,9 @@
			}
			// make sure there's 'rcmBody' div, we need it for proper css modification
			// its name is hardcoded in rcmail_message_body() also
			else
			else {
			$body = '<div class="' . $body_id . '">' . $body . '</div>';
			}

			return $body;
			}
			@@ -1184,23 +1259,30 @@
			*/
			function rcmail_alter_html_link($matches)
			{
			global $EMAIL_ADDRESS_PATTERN;
			global $RCMAIL;

			// Support unicode/punycode in top-level domain part
			$EMAIL_PATTERN = '([a-z0-9][a-z0-9\-\.\+\_]@[^&@"\'.][^@&"\']\\.([^\\x00-\\x40\\x5b-\\x60\\x7b-\\x7f]{2,}\|xn--[a-z0-9]{2,}))';

			$tag = $matches[1];
			$attrib = parse_attrib_string($matches[2]);
			$end = '>';

			// Remove non-printable characters in URL (#1487805)
			$attrib['href'] = preg_replace('/[\x00-\x1F]/', '', $attrib['href']);

			if ($tag == 'link' && preg_match('/^https?:\/\//i', $attrib['href'])) {
			$attrib['href'] = "?_task=utils&_action=modcss&u=" . urlencode($attrib['href'])
			. "&c=" . urlencode($GLOBALS['rcmail_html_container_id']);
			$tempurl = 'tmp-' . md5($attrib['href']) . '.css';
			$_SESSION['modcssurls'][$tempurl] = $attrib['href'];
			$attrib['href'] = $RCMAIL->url(array('task' => 'utils', 'action' => 'modcss', 'u' => $tempurl, 'c' => $GLOBALS['rcmail_html_container_id']));
			$end = ' />';
			}
			else if (preg_match('/^mailto:'.$EMAIL_ADDRESS_PATTERN.'(\?[^"\'>]+)?/i', $attrib['href'], $mailto)) {
			else if (preg_match('/^mailto:'.$EMAIL_PATTERN.'(\?[^"\'>]+)?/i', $attrib['href'], $mailto)) {
			$attrib['href'] = $mailto[0];
			$attrib['onclick'] = sprintf(
			"return %s.command('compose','%s',this)",
			JS_OBJECT_NAME,
			JQ($mailto[1].$mailto[2]));
			JQ($mailto[1].$mailto[3]));
			}
			else if (!empty($attrib['href']) && $attrib['href'][0] != '#') {
			$attrib['target'] = '_blank';
			@@ -1216,7 +1298,6 @@
			function rcmail_address_string($input, $max=null, $linked=false, $addicon=null)
			{
			global $IMAP, $RCMAIL, $PRINT_MODE, $CONFIG;
			static $got_writable_abook = null;

			$a_parts = $IMAP->decode_address_list($input);

			@@ -1227,8 +1308,8 @@
			$j = 0;
			$out = '';

			if ($got_writable_abook === null && $books = $RCMAIL->get_address_sources(true)) {
			$got_writable_abook = true;
			if ($addicon && !isset($_SESSION['writeable_abook'])) {
			$_SESSION['writeable_abook'] = $RCMAIL->get_address_sources(true) ? true : false;
			}

			foreach ($a_parts as $part) {
			@@ -1240,17 +1321,17 @@

			// IDNA ASCII to Unicode
			if ($name == $mailto)
			$name = idn_to_utf8($name);
			$name = rcube_idn_to_utf8($name);
			if ($string == $mailto)
			$string = idn_to_utf8($string);
			$mailto = idn_to_utf8($mailto);
			$string = rcube_idn_to_utf8($string);
			$mailto = rcube_idn_to_utf8($mailto);

			if ($PRINT_MODE) {
			$out .= sprintf('%s <%s>', Q($name), $mailto);
			}
			else if (check_email($part['mailto'], false)) {
			if ($linked) {
			$out .= html::a(array(
			$address = html::a(array(
			'href' => 'mailto:'.$mailto,
			'onclick' => sprintf("return %s.command('compose','%s',this)", JS_OBJECT_NAME, JQ($mailto)),
			'title' => $mailto,
			@@ -1259,21 +1340,23 @@
			Q($name ? $name : $mailto));
			}
			else {
			$out .= html::span(array('title' => $mailto, 'class' => "rcmContactAddress"),
			$address = html::span(array('title' => $mailto, 'class' => "rcmContactAddress"),
			Q($name ? $name : $mailto));
			}

			if ($addicon && $got_writable_abook) {
			$out .= ' ' . html::a(array(
			if ($addicon && $_SESSION['writeable_abook']) {
			$address = html::span(null, $address . html::a(array(
			'href' => "#add",
			'onclick' => sprintf("return %s.command('add-contact','%s',this)", JS_OBJECT_NAME, urlencode($string)),
			'title' => rcube_label('addtoaddressbook'),
			'class' => 'rcmaddcontact',
			),
			html::img(array(
			'src' => $CONFIG['skin_path'] . $addicon,
			'alt' => "Add contact",
			)));
			))));
			}
			$out .= $address;
			}
			else {
			if ($name)
			@@ -1404,159 +1487,16 @@
			/**
			* clear message composing settings
			*/
			function rcmail_compose_cleanup()
			function rcmail_compose_cleanup($id)
			{
			if (!isset($_SESSION['compose']))
			if (!isset($_SESSION['compose_data_'.$id]))
			return;

			$rcmail = rcmail::get_instance();
			$rcmail->plugins->exec_hook('attachments_cleanup', array());
			$rcmail->session->remove('compose');
			$rcmail->plugins->exec_hook('attachments_cleanup', array('group' => $id));
			$rcmail->session->remove('compose_data_'.$id);
			}


			/**
			* Send the given message using the configured method
			*
			* @param object $message Reference to Mail_MIME object
			* @param string $from Sender address string
			* @param array $mailto Array of recipient address strings
			* @param array $smtp_error SMTP error array (reference)
			* @param string $body_file Location of file with saved message body (reference)
			* @param array $smtp_opts SMTP options (e.g. DSN request)
			*
			* @return boolean Send status.
			*/
			function rcmail_deliver_message(&$message, $from, $mailto, &$smtp_error, &$body_file, $smtp_opts=null)
			{
			global $CONFIG, $RCMAIL;

			$headers = $message->headers();

			// send thru SMTP server using custom SMTP library
			if ($CONFIG['smtp_server']) {
			// generate list of recipients
			$a_recipients = array($mailto);

			if (strlen($headers['Cc']))
			$a_recipients[] = $headers['Cc'];
			if (strlen($headers['Bcc']))
			$a_recipients[] = $headers['Bcc'];

			// clean Bcc from header for recipients
			$send_headers = $headers;
			unset($send_headers['Bcc']);
			// here too, it because txtHeaders() below use $message->_headers not only $send_headers
			unset($message->_headers['Bcc']);

			$smtp_headers = $message->txtHeaders($send_headers, true);

			if ($message->getParam('delay_file_io')) {
			// use common temp dir
			$temp_dir = $RCMAIL->config->get('temp_dir');
			$body_file = tempnam($temp_dir, 'rcmMsg');
			if (PEAR::isError($mime_result = $message->saveMessageBody($body_file))) {
			raise_error(array('code' => 600, 'type' => 'php',
			'file' => __FILE__, 'line' => __LINE__,
			'message' => "Could not create message: ".$mime_result->getMessage()),
			TRUE, FALSE);
			return false;
			}
			$msg_body = fopen($body_file, 'r');
			} else {
			$msg_body = $message->get();
			}

			// send message
			if (!is_object($RCMAIL->smtp))
			$RCMAIL->smtp_init(true);

			$sent = $RCMAIL->smtp->send_mail($from, $a_recipients, $smtp_headers, $msg_body, $smtp_opts);
			$smtp_response = $RCMAIL->smtp->get_response();
			$smtp_error = $RCMAIL->smtp->get_error();

			// log error
			if (!$sent)
			raise_error(array('code' => 800, 'type' => 'smtp', 'line' => __LINE__, 'file' => __FILE__,
			'message' => "SMTP error: ".join("\n", $smtp_response)), TRUE, FALSE);
			}
			// send mail using PHP's mail() function
			else {
			// unset some headers because they will be added by the mail() function
			$headers_enc = $message->headers($headers);
			$headers_php = $message->_headers;
			unset($headers_php['To'], $headers_php['Subject']);

			// reset stored headers and overwrite
			$message->_headers = array();
			$header_str = $message->txtHeaders($headers_php);

			// #1485779
			if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
			if (preg_match_all('/<([^@]+@[^>]+)>/', $headers_enc['To'], $m)) {
			$headers_enc['To'] = implode(', ', $m[1]);
			}
			}

			$msg_body = $message->get();

			if (PEAR::isError($msg_body))
			raise_error(array('code' => 600, 'type' => 'php',
			'file' => __FILE__, 'line' => __LINE__,
			'message' => "Could not create message: ".$msg_body->getMessage()),
			TRUE, FALSE);
			else {
			$delim = $RCMAIL->config->header_delimiter();
			$to = $headers_enc['To'];
			$subject = $headers_enc['Subject'];
			$header_str = rtrim($header_str);

			if ($delim != "\r\n") {
			$header_str = str_replace("\r\n", $delim, $header_str);
			$msg_body = str_replace("\r\n", $delim, $msg_body);
			$to = str_replace("\r\n", $delim, $to);
			$subject = str_replace("\r\n", $delim, $subject);
			}

			if (ini_get('safe_mode'))
			$sent = mail($to, $subject, $msg_body, $header_str);
			else
			$sent = mail($to, $subject, $msg_body, $header_str, "-f$from");
			}
			}

			if ($sent) {
			$RCMAIL->plugins->exec_hook('message_sent', array('headers' => $headers, 'body' => $msg_body));

			// remove MDN headers after sending
			unset($headers['Return-Receipt-To'], $headers['Disposition-Notification-To']);

			// get all recipients
			if ($headers['Cc'])
			$mailto .= $headers['Cc'];
			if ($headers['Bcc'])
			$mailto .= $headers['Bcc'];
			if (preg_match_all('/<([^@]+@[^>]+)>/', $mailto, $m))
			$mailto = implode(', ', array_unique($m[1]));

			if ($CONFIG['smtp_log']) {
			write_log('sendmail', sprintf("User %s [%s]; Message for %s; %s",
			$RCMAIL->user->get_username(),
			$_SERVER['REMOTE_ADDR'],
			$mailto,
			!empty($smtp_response) ? join('; ', $smtp_response) : ''));
			}
			}

			if (is_resource($msg_body)) {
			fclose($msg_body);
			}

			$message->_headers = array();
			$message->headers($headers);

			return $sent;
			}

			/**
			* Send the MDN response
			@@ -1570,10 +1510,10 @@
			{
			global $RCMAIL, $IMAP;

			if (!is_a($message, rcube_message))
			if (!is_object($message) \|\| !is_a($message, 'rcube_message'))
			$message = new rcube_message($message);

			if ($message->headers->mdn_to && !$message->headers->mdn_sent &&
			if ($message->headers->mdn_to && empty($message->headers->flags['MDNSENT']) &&
			($IMAP->check_permflag('MDNSENT') \|\| $IMAP->check_permflag('*')))
			{
			$identity = $RCMAIL->user->get_identity();
			@@ -1637,51 +1577,6 @@
			return false;
			}

			// Returns unique Message-ID
			function rcmail_gen_message_id()
			{
			global $RCMAIL;

			$local_part = md5(uniqid('rcmail'.mt_rand(),true));
			$domain_part = $RCMAIL->user->get_username('domain');

			// Try to find FQDN, some spamfilters doesn't like 'localhost' (#1486924)
			if (!preg_match('/\.[a-z]+$/i', $domain_part)) {
			if (($host = preg_replace('/:[0-9]+$/', '', $_SERVER['HTTP_HOST']))
			&& preg_match('/\.[a-z]+$/i', $host)) {
			$domain_part = $host;
			}
			else if (($host = preg_replace('/:[0-9]+$/', '', $_SERVER['SERVER_NAME']))
			&& preg_match('/\.[a-z]+$/i', $host)) {
			$domain_part = $host;
			}
			}

			return sprintf('<%s@%s>', $local_part, $domain_part);
			}

			// Returns RFC2822 formatted current date in user's timezone
			function rcmail_user_date()
			{
			global $CONFIG;

			// get user's timezone
			if ($CONFIG['timezone'] === 'auto') {
			$tz = isset($_SESSION['timezone']) ? $_SESSION['timezone'] : date('Z')/3600;
			}
			else {
			$tz = $CONFIG['timezone'];
			if ($CONFIG['dst_active'])
			$tz++;
			}

			$date = time() + $tz * 60 * 60;
			$date = gmdate('r', $date);
			$tz = sprintf('%+05d', intval($tz) * 100 + ($tz - intval($tz)) * 60);
			$date = preg_replace('/[+-][0-9]{4}$/', $tz, $date);

			return $date;
			}

			// Fixes some content-type names
			function rcmail_fix_mimetype($name)
			@@ -1718,6 +1613,11 @@
			$select_filter->add(rcube_label('unanswered'), 'UNANSWERED');
			if (!$CONFIG['skip_deleted'])
			$select_filter->add(rcube_label('deleted'), 'DELETED');
			$select_filter->add(rcube_label('priority').': '.rcube_label('highest'), 'HEADER X-PRIORITY 1');
			$select_filter->add(rcube_label('priority').': '.rcube_label('high'), 'HEADER X-PRIORITY 2');
			$select_filter->add(rcube_label('priority').': '.rcube_label('normal'), 'NOT HEADER X-PRIORITY 1 NOT HEADER X-PRIORITY 2 NOT HEADER X-PRIORITY 4 NOT HEADER X-PRIORITY 5');
			$select_filter->add(rcube_label('priority').': '.rcube_label('low'), 'HEADER X-PRIORITY 4');
			$select_filter->add(rcube_label('priority').': '.rcube_label('lowest'), 'HEADER X-PRIORITY 5');

			$out = $select_filter->show($_SESSION['search_filter']);

			@@ -1750,6 +1650,7 @@
			'quotadisplay' => 'rcmail_quota_display',
			'mailboxname' => 'rcmail_mailbox_name_display',
			'messageheaders' => 'rcmail_message_headers',
			'messagefullheaders' => 'rcmail_message_full_headers',
			'messagebody' => 'rcmail_message_body',
			'messagecontentframe' => 'rcmail_messagecontent_frame',
			'messagepartframe' => 'rcmail_message_part_frame',
			@@ -1758,4 +1659,17 @@
			'searchform' => array($OUTPUT, 'search_form'),
			));


			// register action aliases
			$RCMAIL->register_action_map(array(
			'preview' => 'show.inc',
			'print' => 'show.inc',
			'moveto' => 'move_del.inc',
			'delete' => 'move_del.inc',
			'send' => 'sendmail.inc',
			'expunge' => 'folders.inc',
			'purge' => 'folders.inc',
			'remove-attachment' => 'attachments.inc',
			'display-attachment' => 'attachments.inc',
			'upload' => 'attachments.inc',
			'group-expand' => 'autocomplete.inc',
			));