113498266Sopenharmony_ci/***************************************************************************
213498266Sopenharmony_ci *                                  _   _ ____  _
313498266Sopenharmony_ci *  Project                     ___| | | |  _ \| |
413498266Sopenharmony_ci *                             / __| | | | |_) | |
513498266Sopenharmony_ci *                            | (__| |_| |  _ <| |___
613498266Sopenharmony_ci *                             \___|\___/|_| \_\_____|
713498266Sopenharmony_ci *
813498266Sopenharmony_ci * Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
913498266Sopenharmony_ci *
1013498266Sopenharmony_ci * This software is licensed as described in the file COPYING, which
1113498266Sopenharmony_ci * you should have received as part of this distribution. The terms
1213498266Sopenharmony_ci * are also available at https://curl.se/docs/copyright.html.
1313498266Sopenharmony_ci *
1413498266Sopenharmony_ci * You may opt to use, copy, modify, merge, publish, distribute and/or sell
1513498266Sopenharmony_ci * copies of the Software, and permit persons to whom the Software is
1613498266Sopenharmony_ci * furnished to do so, under the terms of the COPYING file.
1713498266Sopenharmony_ci *
1813498266Sopenharmony_ci * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
1913498266Sopenharmony_ci * KIND, either express or implied.
2013498266Sopenharmony_ci *
2113498266Sopenharmony_ci * SPDX-License-Identifier: curl
2213498266Sopenharmony_ci *
2313498266Sopenharmony_ci ***************************************************************************/
2413498266Sopenharmony_ci
2513498266Sopenharmony_ci/* <DESC>
2613498266Sopenharmony_ci * IMAP using TLS
2713498266Sopenharmony_ci * </DESC>
2813498266Sopenharmony_ci */
2913498266Sopenharmony_ci
3013498266Sopenharmony_ci#include <stdio.h>
3113498266Sopenharmony_ci#include <curl/curl.h>
3213498266Sopenharmony_ci
3313498266Sopenharmony_ci/* This is a simple example showing how to fetch mail using libcurl's IMAP
3413498266Sopenharmony_ci * capabilities. It builds on the imap-fetch.c example adding transport
3513498266Sopenharmony_ci * security to protect the authentication details from being snooped.
3613498266Sopenharmony_ci *
3713498266Sopenharmony_ci * Note that this example requires libcurl 7.30.0 or above.
3813498266Sopenharmony_ci */
3913498266Sopenharmony_ci
4013498266Sopenharmony_ciint main(void)
4113498266Sopenharmony_ci{
4213498266Sopenharmony_ci  CURL *curl;
4313498266Sopenharmony_ci  CURLcode res = CURLE_OK;
4413498266Sopenharmony_ci
4513498266Sopenharmony_ci  curl = curl_easy_init();
4613498266Sopenharmony_ci  if(curl) {
4713498266Sopenharmony_ci    /* Set username and password */
4813498266Sopenharmony_ci    curl_easy_setopt(curl, CURLOPT_USERNAME, "user");
4913498266Sopenharmony_ci    curl_easy_setopt(curl, CURLOPT_PASSWORD, "secret");
5013498266Sopenharmony_ci
5113498266Sopenharmony_ci    /* This will fetch message 1 from the user's inbox */
5213498266Sopenharmony_ci    curl_easy_setopt(curl, CURLOPT_URL,
5313498266Sopenharmony_ci                     "imap://imap.example.com/INBOX/;UID=1");
5413498266Sopenharmony_ci
5513498266Sopenharmony_ci    /* In this example, we will start with a plain text connection, and upgrade
5613498266Sopenharmony_ci     * to Transport Layer Security (TLS) using the STARTTLS command. Be careful
5713498266Sopenharmony_ci     * of using CURLUSESSL_TRY here, because if TLS upgrade fails, the transfer
5813498266Sopenharmony_ci     * will continue anyway - see the security discussion in the libcurl
5913498266Sopenharmony_ci     * tutorial for more details. */
6013498266Sopenharmony_ci    curl_easy_setopt(curl, CURLOPT_USE_SSL, (long)CURLUSESSL_ALL);
6113498266Sopenharmony_ci
6213498266Sopenharmony_ci    /* If your server does not have a valid certificate, then you can disable
6313498266Sopenharmony_ci     * part of the Transport Layer Security protection by setting the
6413498266Sopenharmony_ci     * CURLOPT_SSL_VERIFYPEER and CURLOPT_SSL_VERIFYHOST options to 0 (false).
6513498266Sopenharmony_ci     *   curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 0L);
6613498266Sopenharmony_ci     *   curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L);
6713498266Sopenharmony_ci     *
6813498266Sopenharmony_ci     * That is, in general, a bad idea. It is still better than sending your
6913498266Sopenharmony_ci     * authentication details in plain text though.  Instead, you should get
7013498266Sopenharmony_ci     * the issuer certificate (or the host certificate if the certificate is
7113498266Sopenharmony_ci     * self-signed) and add it to the set of certificates that are known to
7213498266Sopenharmony_ci     * libcurl using CURLOPT_CAINFO and/or CURLOPT_CAPATH. See docs/SSLCERTS
7313498266Sopenharmony_ci     * for more information. */
7413498266Sopenharmony_ci    curl_easy_setopt(curl, CURLOPT_CAINFO, "/path/to/certificate.pem");
7513498266Sopenharmony_ci
7613498266Sopenharmony_ci    /* Since the traffic will be encrypted, it is useful to turn on debug
7713498266Sopenharmony_ci     * information within libcurl to see what is happening during the
7813498266Sopenharmony_ci     * transfer */
7913498266Sopenharmony_ci    curl_easy_setopt(curl, CURLOPT_VERBOSE, 1L);
8013498266Sopenharmony_ci
8113498266Sopenharmony_ci    /* Perform the fetch */
8213498266Sopenharmony_ci    res = curl_easy_perform(curl);
8313498266Sopenharmony_ci
8413498266Sopenharmony_ci    /* Check for errors */
8513498266Sopenharmony_ci    if(res != CURLE_OK)
8613498266Sopenharmony_ci      fprintf(stderr, "curl_easy_perform() failed: %s\n",
8713498266Sopenharmony_ci              curl_easy_strerror(res));
8813498266Sopenharmony_ci
8913498266Sopenharmony_ci    /* Always cleanup */
9013498266Sopenharmony_ci    curl_easy_cleanup(curl);
9113498266Sopenharmony_ci  }
9213498266Sopenharmony_ci
9313498266Sopenharmony_ci  return (int)res;
9413498266Sopenharmony_ci}
95