#!/usr/bin/env python3 import time import os from pathlib import Path from pwd import getpwnam import tempfile import shlex import subprocess import re import requests from socrate import system import sys import traceback FETCHMAIL = """ fetchmail -N \ --idfile /data/fetchids --uidl \ --pidfile /dev/shm/fetchmail.pid \ --sslcertck --sslcertpath /etc/ssl/certs \ -f {} """ RC_LINE = """ poll "{host}" proto {protocol} port {port} user "{username}" password "{password}" is "{user_email}" smtphost "{smtphost}" {folders} {options} {lmtp} """ def escape_rc_string(arg): return "".join("\\x%2x" % ord(char) for char in arg) def fetchmail(fetchmailrc): with tempfile.NamedTemporaryFile() as handler: handler.write(fetchmailrc.encode("utf8")) handler.flush() command = FETCHMAIL.format(shlex.quote(handler.name)) output = subprocess.check_output(command, shell=True) return output def run(debug): try: fetches = requests.get(f"http://{os.environ['ADMIN_ADDRESS']}/internal/fetch").json() for fetch in fetches: fetchmailrc = "" options = "options antispam 501, 504, 550, 553, 554" options += " ssl" if fetch["tls"] else "" options += " keep" if fetch["keep"] else " fetchall" folders = "folders %s" % ((','.join('"' + item + '"' for item in fetch['folders'])) if fetch['folders'] else '"INBOX"') fetchmailrc += RC_LINE.format( user_email=escape_rc_string(fetch["user_email"]), protocol=fetch["protocol"], host=escape_rc_string(fetch["host"]), port=fetch["port"], smtphost=f'{os.environ["FRONT_ADDRESS"]}:25' if fetch['scan'] else f'{os.environ["IMAP_ADDRESS"]}:2525', username=escape_rc_string(fetch["username"]), password=escape_rc_string(fetch["password"]), options=options, folders=folders, lmtp='' if fetch['scan'] else 'lmtp', ) if debug: print(fetchmailrc) try: print(fetchmail(fetchmailrc)) error_message = "" except subprocess.CalledProcessError as error: error_message = error.output.decode("utf8") # No mail is not an error if not error_message.startswith("fetchmail: No mail"): print(error_message) user_info = "for %s at %s" % (fetch["user_email"], fetch["host"]) # Number of messages seen is not a error as well if ("messages" in error_message and "(seen " in error_message and user_info in error_message): print(error_message) finally: requests.post("http://{}/internal/fetch/{}".format(os.environ['ADMIN_ADDRESS'],fetch['id']), json=error_message.split('\n')[0] ) except Exception: traceback.print_exc() if __name__ == "__main__": id_fetchmail = getpwnam('fetchmail') Path('/data/fetchids').touch() os.chown("/data/fetchids", id_fetchmail.pw_uid, id_fetchmail.pw_gid) os.chown("/data/", id_fetchmail.pw_uid, id_fetchmail.pw_gid) os.chmod("/data/fetchids", 0o700) os.setgid(id_fetchmail.pw_gid) os.setuid(id_fetchmail.pw_uid) system.set_env() while True: delay = int(os.environ.get("FETCHMAIL_DELAY", 900)) print("Sleeping for {} seconds".format(delay)) time.sleep(delay) if not os.environ.get("FETCHMAIL_ENABLED", 'True') in ('True', 'true'): print("Fetchmail disabled, skipping...") continue run(os.environ.get("DEBUG", None) == "True") sys.stdout.flush()