aerc/worker/imap/worker.go

package imap

import (
	"crypto/tls"
	"crypto/x509"
	"fmt"
	"net/url"
	"strings"

	"github.com/emersion/go-imap"
	"github.com/emersion/go-imap-idle"
	"github.com/emersion/go-imap/client"

	"git.sr.ht/~sircmpwn/aerc2/worker/types"
)

var errUnsupported = fmt.Errorf("unsupported command")

type imapClient struct {
	*client.Client
	*idle.IdleClient
}

type IMAPWorker struct {
	config struct {
		scheme   string
		insecure bool
		addr     string
		user     *url.Userinfo
	}

	worker  *types.Worker
	client  *imapClient
	updates chan client.Update
}

func NewIMAPWorker(worker *types.Worker) *IMAPWorker {
	return &IMAPWorker{
		worker:  worker,
		updates: make(chan client.Update, 50),
	}
}

func (w *IMAPWorker) verifyPeerCert(msg types.WorkerMessage) func(
	rawCerts [][]byte, _ [][]*x509.Certificate) error {

	return func(rawCerts [][]byte, _ [][]*x509.Certificate) error {
		pool := x509.NewCertPool()
		for _, rawCert := range rawCerts {
			cert, err := x509.ParseCertificate(rawCert)
			if err != nil {
				return err
			}
			pool.AddCert(cert)
		}

		request := types.ApproveCertificate{
			Message:  types.RespondTo(msg),
			CertPool: pool,
		}
		w.worker.PostMessage(request, nil)

		response := <-w.worker.Actions
		if response.InResponseTo() != request {
			return fmt.Errorf("Expected UI to answer cert request")
		}
		switch response.(type) {
		case types.Ack:
			return nil
		case types.Disconnect:
			return fmt.Errorf("UI rejected certificate")
		default:
			return fmt.Errorf("Expected UI to answer cert request")
		}
	}
}

func (w *IMAPWorker) handleMessage(msg types.WorkerMessage) error {
	switch msg := msg.(type) {
	case types.Ping:
	case types.Unsupported:
		// No-op
	case types.Configure:
		u, err := url.Parse(msg.Config.Source)
		if err != nil {
			return err
		}

		w.config.scheme = u.Scheme
		if strings.HasSuffix(w.config.scheme, "+insecure") {
			w.config.scheme = strings.TrimSuffix(w.config.scheme, "+insecure")
			w.config.insecure = true
		}

		w.config.addr = u.Host
		if !strings.ContainsRune(w.config.addr, ':') {
			w.config.addr += ":" + u.Scheme
		}

		w.config.scheme = u.Scheme
		w.config.user = u.User
	case types.Connect:
		var (
			c   *client.Client
			err error
		)
		tlsConfig := &tls.Config{
			InsecureSkipVerify:    true,
			VerifyPeerCertificate: w.verifyPeerCert(&msg),
		}
		switch w.config.scheme {
		case "imap":
			c, err = client.Dial(w.config.addr)
			if err != nil {
				return err
			}

			if !w.config.insecure {
				if err := c.StartTLS(tlsConfig); err != nil {
					return err
				}
			}
		case "imaps":
			c, err = client.DialTLS(w.config.addr, tlsConfig)
			if err != nil {
				return err
			}
		default:
			return fmt.Errorf("Unknown IMAP scheme %s", w.config.scheme)
		}

		if w.config.user != nil {
			username := w.config.user.Username()
			password, hasPassword := w.config.user.Password()
			if !hasPassword {
				// TODO: ask password
			}
			if err := c.Login(username, password); err != nil {
				return err
			}
		}

		if _, err := c.Select(imap.InboxName, false); err != nil {
			return err
		}

		c.Updates = w.updates
		w.client = &imapClient{c, idle.NewClient(c)}
	case types.ListDirectories:
		w.handleListDirectories(msg)
	default:
		return errUnsupported
	}
	return nil
}

func (w *IMAPWorker) Run() {
	for {
		select {
		case msg := <-w.worker.Actions:
			msg = w.worker.ProcessAction(msg)
			if err := w.handleMessage(msg); err == errUnsupported {
				w.worker.PostMessage(types.Unsupported{
					Message: types.RespondTo(msg),
				}, nil)
			} else if err != nil {
				w.worker.PostMessage(types.Error{
					Message: types.RespondTo(msg),
					Error:   err,
				}, nil)
			} else {
				w.worker.PostMessage(types.Ack{
					Message: types.RespondTo(msg),
				}, nil)
			}
		case update := <-w.updates:
			w.worker.Logger.Printf("(= %T", update)
		}
	}
}
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`package imap`

			`import (`
Add certificate approval flow 2018-02-01 03:54:52 +01:00			`"crypto/tls"`
			`"crypto/x509"`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`"fmt"`
			`"net/url"`
			`"strings"`
Misc idiomatic fixes 2018-01-10 17:19:45 +01:00
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`"github.com/emersion/go-imap"`
			`"github.com/emersion/go-imap-idle"`
Improve logging 2018-02-01 03:18:21 +01:00			`"github.com/emersion/go-imap/client"`

			`"git.sr.ht/~sircmpwn/aerc2/worker/types"`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`)`

Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`var errUnsupported = fmt.Errorf("unsupported command")`

			`type imapClient struct {`
			`*client.Client`
			`*idle.IdleClient`
			`}`

Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`type IMAPWorker struct {`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`config struct {`
			`scheme string`
			`insecure bool`
			`addr string`
			`user *url.Userinfo`
			`}`

Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`worker *types.Worker`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`client *imapClient`
			`updates chan client.Update`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`}`

Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`func NewIMAPWorker(worker types.Worker) IMAPWorker {`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`return &IMAPWorker{`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`worker: worker,`
			`updates: make(chan client.Update, 50),`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`}`
			`}`

Add certificate approval flow 2018-02-01 03:54:52 +01:00			`func (w *IMAPWorker) verifyPeerCert(msg types.WorkerMessage) func(`
			`rawCerts [][]byte, _ [][]*x509.Certificate) error {`

			`return func(rawCerts [][]byte, _ [][]*x509.Certificate) error {`
			`pool := x509.NewCertPool()`
			`for _, rawCert := range rawCerts {`
			`cert, err := x509.ParseCertificate(rawCert)`
			`if err != nil {`
			`return err`
			`}`
			`pool.AddCert(cert)`
			`}`

			`request := types.ApproveCertificate{`
			`Message: types.RespondTo(msg),`
			`CertPool: pool,`
			`}`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`w.worker.PostMessage(request, nil)`
Add certificate approval flow 2018-02-01 03:54:52 +01:00
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`response := <-w.worker.Actions`
Add certificate approval flow 2018-02-01 03:54:52 +01:00			`if response.InResponseTo() != request {`
			`return fmt.Errorf("Expected UI to answer cert request")`
			`}`
			`switch response.(type) {`
			`case types.Ack:`
			`return nil`
			`case types.Disconnect:`
			`return fmt.Errorf("UI rejected certificate")`
			`default:`
			`return fmt.Errorf("Expected UI to answer cert request")`
			`}`
			`}`
			`}`

Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`func (w *IMAPWorker) handleMessage(msg types.WorkerMessage) error {`
Misc idiomatic fixes 2018-01-10 17:19:45 +01:00			`switch msg := msg.(type) {`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`case types.Ping:`
Implement (most of) mailbox listing 2018-02-02 01:34:08 +01:00			`case types.Unsupported:`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`// No-op`
			`case types.Configure:`
			`u, err := url.Parse(msg.Config.Source)`
			`if err != nil {`
			`return err`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`}`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00
			`w.config.scheme = u.Scheme`
			`if strings.HasSuffix(w.config.scheme, "+insecure") {`
			`w.config.scheme = strings.TrimSuffix(w.config.scheme, "+insecure")`
			`w.config.insecure = true`
			`}`

			`w.config.addr = u.Host`
			`if !strings.ContainsRune(w.config.addr, ':') {`
			`w.config.addr += ":" + u.Scheme`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`}`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00
			`w.config.scheme = u.Scheme`
			`w.config.user = u.User`
			`case types.Connect:`
			`var (`
			`c *client.Client`
			`err error`
			`)`
Add certificate approval flow 2018-02-01 03:54:52 +01:00			`tlsConfig := &tls.Config{`
			`InsecureSkipVerify: true,`
			`VerifyPeerCertificate: w.verifyPeerCert(&msg),`
			`}`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`switch w.config.scheme {`
			`case "imap":`
			`c, err = client.Dial(w.config.addr)`
			`if err != nil {`
			`return err`
			`}`

			`if !w.config.insecure {`
Add certificate approval flow 2018-02-01 03:54:52 +01:00			`if err := c.StartTLS(tlsConfig); err != nil {`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`return err`
			`}`
			`}`
			`case "imaps":`
Add certificate approval flow 2018-02-01 03:54:52 +01:00			`c, err = client.DialTLS(w.config.addr, tlsConfig)`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`if err != nil {`
			`return err`
			`}`
			`default:`
			`return fmt.Errorf("Unknown IMAP scheme %s", w.config.scheme)`
			`}`

			`if w.config.user != nil {`
			`username := w.config.user.Username()`
			`password, hasPassword := w.config.user.Password()`
			`if !hasPassword {`
			`// TODO: ask password`
			`}`
			`if err := c.Login(username, password); err != nil {`
			`return err`
			`}`
			`}`

			`if _, err := c.Select(imap.InboxName, false); err != nil {`
			`return err`
			`}`

			`c.Updates = w.updates`
			`w.client = &imapClient{c, idle.NewClient(c)}`
Implement (most of) mailbox listing 2018-02-02 01:34:08 +01:00			`case types.ListDirectories:`
			`w.handleListDirectories(msg)`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`default:`
			`return errUnsupported`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`}`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`return nil`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`}`

			`func (w *IMAPWorker) Run() {`
			`for {`
			`select {`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`case msg := <-w.worker.Actions:`
			`msg = w.worker.ProcessAction(msg)`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`if err := w.handleMessage(msg); err == errUnsupported {`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`w.worker.PostMessage(types.Unsupported{`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`Message: types.RespondTo(msg),`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`}, nil)`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`} else if err != nil {`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`w.worker.PostMessage(types.Error{`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`Message: types.RespondTo(msg),`
			`Error: err,`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`}, nil)`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`} else {`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`w.worker.PostMessage(types.Ack{`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`Message: types.RespondTo(msg),`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`}, nil)`
Connect to IMAP server, login and idle 2018-01-14 11:30:11 +01:00			`}`
			`case update := <-w.updates:`
Reduce boilerplate in worker/UI 2018-02-02 00:42:03 +01:00			`w.worker.Logger.Printf("(= %T", update)`
Initial pass on worker/UI message passing 2018-01-10 02:39:00 +01:00			`}`
			`}`
			`}`