githubFork/roundcubemail.git

			@@ -5,7 +5,7 @@
			\| program/steps/mail/func.inc \|
			\| \|
			\| This file is part of the RoundCube Webmail client \|
			\| Copyright (C) 2005-2008, RoundCube Dev. - Switzerland \|
			\| Copyright (C) 2005-2009, RoundCube Dev. - Switzerland \|
			\| Licensed under the GNU GPL \|
			\| \|
			\| PURPOSE: \|
			@@ -19,11 +19,25 @@

			*/

			require_once('lib/enriched.inc');
			require_once('include/rcube_smtp.inc');

			$EMAIL_ADDRESS_PATTERN = '([a-z0-9][a-z0-9\-\.\+\_]@[a-z0-9]([a-z0-9\-][.]?)[a-z0-9]\\.[a-z]{2,5})';

			$EMAIL_ADDRESS_PATTERN = '/([a-z0-9][a-z0-9\-\.\+\_]@[a-z0-9]([a-z0-9\-][.]?)[a-z0-9]\\.[a-z]{2,5})/i';
			// actions that do not require imap connection
			$NOIMAP_ACTIONS = array('spell', 'addcontact', 'autocomplete', 'upload', 'display-attachment', 'remove-attachment');


			// log in to imap server
			if (!in_array($RCMAIL->action, $NOIMAP_ACTIONS) && !$RCMAIL->imap_connect()) {
			$RCMAIL->kill_session();

			if ($OUTPUT->ajax_call)
			$OUTPUT->redirect(array(), 2000);

			$OUTPUT->set_env('task', 'login');
			$OUTPUT->send('login');
			}


			// set imap properties and session vars
			if ($mbox = get_input_value('_mbox', RCUBE_INPUT_GPC))
			@@ -64,6 +78,10 @@
			$_SESSION['search'][$search_request] = $IMAP->get_search_set();
			$OUTPUT->set_env('search_request', $search_request);
			}

			$OUTPUT->set_env('search_mods', $_SESSION['search_mods'] ? $_SESSION['search_mods'] : array('subject'=>'subject'));
			// make sure the message count is refreshed (for default view)
			$IMAP->messagecount($mbox_name, 'ALL', true);
			}

			// set current mailbox in client environment
			@@ -71,6 +89,13 @@
			$OUTPUT->set_env('quota', $IMAP->get_capability('quota'));
			$OUTPUT->set_env('delimiter', $IMAP->get_hierarchy_delimiter());

			if ($CONFIG['flag_for_deletion'])
			$OUTPUT->set_env('flag_for_deletion', true);
			if ($CONFIG['read_when_deleted'])
			$OUTPUT->set_env('read_when_deleted', true);
			if ($CONFIG['skip_deleted'])
			$OUTPUT->set_env('skip_deleted', true);

			if ($CONFIG['trash_mbox'])
			$OUTPUT->set_env('trash_mailbox', $CONFIG['trash_mbox']);
			if ($CONFIG['drafts_mbox'])
			@@ -118,7 +143,7 @@
			if (empty($attrib['columns']))
			$a_show_cols = is_array($CONFIG['list_cols']) ? $CONFIG['list_cols'] : array('subject');
			else
			$a_show_cols = explode(',', strip_quotes($attrib['columns']));
			$a_show_cols = preg_split('/[\s,;]+/', strip_quotes($attrib['columns']));

			// store column list in a session-variable
			$_SESSION['list_columns'] = $a_show_cols;
			@@ -277,8 +302,7 @@
			$out .= sprintf("<td class=\"icon\">%s</td>\n", $message_icon ? sprintf($image_tag, $skin_path, $message_icon, '') : '');


			if (!empty($header->charset))
			$IMAP->set_charset($header->charset);
			$IMAP->set_charset(!empty($header->charset) ? $header->charset : $CONFIG['default_charset']);

			// format each col
			foreach ($a_show_cols as $col)
			@@ -305,7 +329,7 @@
			if ($col!='attachment')
			$out .= '<td class="'.$col.'">' . $cont . "</td>\n";
			else
			$out .= sprintf("<td class=\"icon\">%s</td>\n", $attach_icon ? sprintf($image_tag, $skin_path, $attach_icon, '') : '');
			$out .= sprintf("<td class=\"icon\">%s</td>\n", $attach_icon ? sprintf($image_tag, $skin_path, $attach_icon, '') : ' ');
			}

			$out .= "</tr>\n";
			@@ -358,8 +382,9 @@

			/**
			* return javascript commands to add rows to the message list
			* or to replace the whole list (IE only)
			*/
			function rcmail_js_message_list($a_headers, $insert_top=FALSE)
			function rcmail_js_message_list($a_headers, $insert_top=FALSE, $replace=TRUE)
			{
			global $CONFIG, $IMAP, $OUTPUT;

			@@ -375,7 +400,11 @@
			&& (($f = array_search('from', $a_show_cols)) !== false) && array_search('to', $a_show_cols) === false)
			$a_show_cols[$f] = 'to';

			$browser = new rcube_browser;

			$OUTPUT->command('set_message_coltypes', $a_show_cols);
			if ($browser->ie && $replace)
			$OUTPUT->command('offline_message_list', true);

			// loop through message headers
			foreach ($a_headers as $n => $header)
			@@ -386,8 +415,7 @@
			if (empty($header))
			continue;

			if (!empty($header->charset))
			$IMAP->set_charset($header->charset);
			$IMAP->set_charset(!empty($header->charset) ? $header->charset : $CONFIG['default_charset']);

			// remove 'attachment' and 'flag' columns, we don't need them here
			if(($key = array_search('attachment', $a_show_cols)) !== FALSE)
			@@ -418,11 +446,16 @@
			$a_msg_cols[$col] = $cont;
			}

			$a_msg_flags['deleted'] = $header->deleted ? 1 : 0;
			$a_msg_flags['unread'] = $header->seen ? 0 : 1;
			$a_msg_flags['replied'] = $header->answered ? 1 : 0;
			$a_msg_flags['forwarded'] = $header->forwarded ? 1 : 0;
			$a_msg_flags['flagged'] = $header->flagged ? 1 : 0;
			if ($header->deleted)
			$a_msg_flags['deleted'] = 1;
			if (!$header->seen)
			$a_msg_flags['unread'] = 1;
			if ($header->answered)
			$a_msg_flags['replied'] = 1;
			if ($header->forwarded)
			$a_msg_flags['forwarded'] = 1;
			if ($header->flagged)
			$a_msg_flags['flagged'] = 1;

			$OUTPUT->command('add_message_row',
			$header->uid,
			@@ -431,6 +464,9 @@
			preg_match("/multipart\/m/i", $header->ctype),
			$insert_top);
			}

			if ($browser->ie && $replace)
			$OUTPUT->command('offline_message_list', false);
			}


			@@ -595,149 +631,212 @@
			return rcmail_localize_foldername($RCMAIL->imap->get_mailbox_name());
			}

			/**
			* Sets message is_safe flag according to 'show_images' option value
			*
			* @param object rcube_message Message
			*/
			function rcmail_check_safe(&$message)
			{
			global $RCMAIL;

			$show_images = $RCMAIL->config->get('show_images');
			if (!$message->is_safe
			&& !empty($show_images)
			&& $message->has_html_part())
			{
			switch($show_images) {
			case '1': // known senders only
			$CONTACTS = new rcube_contacts($RCMAIL->db, $_SESSION['user_id']);
			if ($CONTACTS->search('email', $message->sender['mailto'], true, false)->count) {
			$message->set_safe(true);
			}
			break;
			case '2': // always
			$message->set_safe(true);
			break;
			}
			}
			}

			/**
			* Cleans up the given message HTML Body (for displaying)
			*
			* @param string HTML
			* @param array Display parameters
			* @param array CID map replaces (inline images)
			* @return string Clean HTML
			*/
			function rcmail_wash_html($html, $p = array(), $cid_replaces)
			{
			global $REMOTE_OBJECTS;

			$p += array('safe' => false, 'inline_html' => true);

			// special replacements (not properly handled by washtml class)
			$html_search = array(
			'/(<\/nobr>)(\s+)(<nobr>)/i', // space(s) between <NOBR>
			'/(<[\/]*st1:[^>]+>)/i', // Microsoft's Smart Tags <ST1>
			'/<\/?rte_text>/i', // Rich Text Editor tags (#1485647)
			'/<title>.*<\/title>/i', // PHP bug #32547 workaround: remove title tag
			'/<html[^>]*>/im', // malformed html: remove html tags (#1485139)
			'/<\/html>/i', // malformed html: remove html tags (#1485139)
			'/^(\0\0\xFE\xFF\|\xFF\xFE\0\0\|\xFE\xFF\|\xFF\xFE\|\xEF\xBB\xBF)/', // byte-order mark (only outlook?)
			);
			$html_replace = array(
			'\\1'.'   '.'\\3',
			'',
			'',
			'',
			'',
			'',
			'',
			);
			$html = preg_replace($html_search, $html_replace, $html);

			// charset was converted to UTF-8 in rcube_imap::get_message_part() -> change charset specification in HTML accordingly
			$charset_pattern = '/(\s+content=[\'"]?\w+\/\w+;\s*charset)=([a-z0-9-_]+)/i';
			if (preg_match($charset_pattern, $html)) {
			$html = preg_replace($charset_pattern, '\\1='.RCMAIL_CHARSET, $html);
			}
			else {
			// add head for malformed messages, washtml cannot work without that
			if (!preg_match('/<head[^>]>(.)<\/head>/Uims', $html))
			$html = '<head></head>'. $html;
			$html = substr_replace($html, '<meta http-equiv="content-type" content="text/html; charset='.RCMAIL_CHARSET.'" />', intval(stripos($html, '<head>')+6), 0);
			}

			// turn relative into absolute urls
			$html = rcmail_resolve_base($html);

			// clean HTML with washhtml by Frederic Motte
			$wash_opts = array(
			'show_washed' => false,
			'allow_remote' => $p['safe'],
			'blocked_src' => "./program/blocked.gif",
			'charset' => RCMAIL_CHARSET,
			'cid_map' => $cid_replaces,
			'html_elements' => array('body'),
			);

			if (!$p['inline_html']) {
			$wash_opts['html_elements'] = array('html','head','title','body');
			}
			if ($p['safe']) {
			$wash_opts['html_elements'][] = 'link';
			$wash_opts['html_attribs'] = array('rel','type');
			}

			$washer = new washtml($wash_opts);
			$washer->add_callback('form', 'rcmail_washtml_callback');

			if ($p['safe']) { // allow CSS styles, will be sanitized by rcmail_washtml_callback()
			$washer->add_callback('style', 'rcmail_washtml_callback');
			}

			$html = $washer->wash($html);
			$REMOTE_OBJECTS = $washer->extlinks;

			return $html;
			}


			/**
			* Convert the given message part to proper HTML
			* which can be displayed the message view
			*
			* @param object rcube_message_part Message part
			* @param bool True if external objects (ie. images ) are allowed
			* @param bool True if part should be converted to plaintext
			* @param array Display parameters array
			* @return string Formatted HTML string
			*/
			function rcmail_print_body($part, $p = array())
			{
			global $REMOTE_OBJECTS;
			global $RCMAIL;

			$p += array('safe' => false, 'plain' => false, 'inline_html' => true);

			// trigger plugin hook
			$data = $RCMAIL->plugins->exec_hook('message_part_before',
			array('type' => $part->ctype_secondary, 'body' => $part->body) + $p + array('safe' => false, 'plain' => false, 'inline_html' => true));

			// convert html to text/plain
			if ($part->ctype_secondary == 'html' && $p['plain']) {
			$txt = new html2text($part->body, false, true);
			if ($data['type'] == 'html' && $data['plain']) {
			$txt = new html2text($data['body'], false, true);
			$body = $txt->get_text();
			$part->ctype_secondary = 'plain';
			}
			// text/html
			else if ($part->ctype_secondary == 'html') {
			$html = $part->body;

			// special replacements (not properly handled by washtml class)
			$html_search = array(
			'/(<\/nobr>)(\s+)(<nobr>)/i', // space(s) between <NOBR>
			'/(<[\/]*st1:[^>]+>)/i', // Microsoft's Smart Tags <ST1>
			'/<title>.*<\/title>/i', // PHP bug #32547 workaround: remove title tag
			'/<html[^>]*>/im', // malformed html: remove html tags (#1485139)
			'/<\/html>/i', // malformed html: remove html tags (#1485139)
			'/^[\xFE\xFF\xBB\xBF\x00]+((?:<\!doctype\|\<html))/im', // remove byte-order mark (only outlook?)
			);
			$html_replace = array(
			'\\1'.'   '.'\\3',
			'',
			'',
			'',
			'\\1',
			'',
			);
			$html = preg_replace($html_search, $html_replace, $html);

			// charset was converted to UTF-8 in rcube_imap::get_message_part() -> change charset specification in HTML accordingly
			$charset_pattern = '/(\s+content=[\'"]?\w+\/\w+;\s*charset)=([a-z0-9-_]+)/i';
			if (preg_match($charset_pattern, $html)) {
			$html = preg_replace($charset_pattern, '\\1='.RCMAIL_CHARSET, $html);
			}
			else {
			// add head for malformed messages, washtml cannot work without that
			if (!preg_match('/<head[^>]>(.)<\/head>/Uims', $html))
			$html = '<head></head>'. $html;
			$html = substr_replace($html, '<meta http-equiv="content-type" content="text/html; charset='.RCMAIL_CHARSET.'" />', intval(stripos($html, '<head>')+6), 0);
			}

			// clean HTML with washhtml by Frederic Motte
			$wash_opts = array(
			'show_washed' => false,
			'allow_remote' => $p['safe'],
			'blocked_src' => "./program/blocked.gif",
			'charset' => RCMAIL_CHARSET,
			'cid_map' => $part->replaces,
			'html_elements' => array('body'),
			);

			if (!$p['inline_html']) {
			$wash_opts['html_elements'] = array('html','head','title','body');
			}

			$washer = new washtml($wash_opts);
			$washer->add_callback('form', 'rcmail_washtml_callback');

			if ($p['safe']) { // allow CSS styles, will be sanitized by rcmail_washtml_callback()
			$washer->add_callback('style', 'rcmail_washtml_callback');
			}

			$body = $washer->wash($html);
			$REMOTE_OBJECTS = $washer->extlinks;

			return $body;
			else if ($data['type'] == 'html') {
			$body = rcmail_wash_html($data['body'], $data, $part->replaces);
			$part->ctype_secondary = $data['type'];
			}
			// text/enriched
			else if ($part->ctype_secondary=='enriched') {
			else if ($data['type'] == 'enriched') {
			$part->ctype_secondary = 'html';
			return Q(enriched_to_html($part->body), 'show');
			require_once('lib/enriched.inc');
			$body = Q(enriched_to_html($data['body']), 'show');
			}
			else
			else {
			// assert plaintext
			$body = $part->body;


			/** assert plaintext **/

			// make links and email-addresses clickable
			$convert_patterns = $convert_replaces = $replace_strings = array();
			$part->ctype_secondary = $data['type'] = 'plain';
			}

			$url_chars = 'a-z0-9_\-\+\*\$\/&%=@#:;';
			$url_chars_within = '\?\.~,!';
			// free some memory (hopefully)
			unset($data['body']);

			$convert_patterns[] = "/([\w]+):\/\/([a-z0-9\-\.]+[a-z]{2,4}([$url_chars$url_chars_within]*[$url_chars])?)/ie";
			$convert_replaces[] = "rcmail_str_replacement('<a href=\"\\1://\\2\" target=\"_blank\">\\1://\\2</a>', \$replace_strings)";

			$convert_patterns[] = "/([^\/:]\|\s)(www\.)([a-z0-9\-]{2,}[a-z]{2,4}([$url_chars$url_chars_within]*[$url_chars])?)/ie";
			$convert_replaces[] = "rcmail_str_replacement('\\1<a href=\"http://\\2\\3\" target=\"_blank\">\\2\\3</a>', \$replace_strings)";

			$convert_patterns[] = '/([a-z0-9][a-z0-9\-\.\+\_]@[a-z0-9]([a-z0-9\-][.]?)[a-z0-9]\\.[a-z]{2,5})/ie';
			$convert_replaces[] = "rcmail_str_replacement('<a href=\"mailto:\\1\" onclick=\"return ".JS_OBJECT_NAME.".command(\'compose\',\'\\1\',this)\">\\1</a>', \$replace_strings)";

			// search for patterns like links and e-mail addresses
			$body = preg_replace($convert_patterns, $convert_replaces, $body);

			// split body into single lines
			$a_lines = preg_split('/\r?\n/', $body);
			$quote_level = 0;

			// colorize quoted parts
			for ($n=0; $n < sizeof($a_lines); $n++) {
			$line = $a_lines[$n];
			$quotation = '';
			$q = 0;
			// plaintext postprocessing
			if ($part->ctype_secondary == 'plain') {
			// make links and email-addresses clickable
			$replacements = new rcube_string_replacer;

			if (preg_match('/^(>+\s*)+/', $line, $regs)) {
			$q = strlen(preg_replace('/\s/', '', $regs[0]));
			$line = substr($line, strlen($regs[0]));
			// search for patterns like links and e-mail addresses
			$body = preg_replace_callback($replacements->link_pattern, array($replacements, 'link_callback'), $body);
			$body = preg_replace_callback($replacements->mailto_pattern, array($replacements, 'mailto_callback'), $body);

			if ($q > $quote_level)
			$quotation = str_repeat('<blockquote>', $q - $quote_level);
			else if ($q < $quote_level)
			$quotation = str_repeat("</blockquote>", $quote_level - $q);
			// split body into single lines
			$a_lines = preg_split('/\r?\n/', $body);
			$q_lines = array();
			$quote_level = 0;

			// find/mark quoted lines...
			for ($n=0, $cnt=count($a_lines); $n < $cnt; $n++) {
			$q = 0;

			if ($a_lines[$n][0] == '>' && preg_match('/^(>+\s*)+/', $a_lines[$n], $regs)) {
			$q = strlen(preg_replace('/\s/', '', $regs[0]));
			$a_lines[$n] = substr($a_lines[$n], strlen($regs[0]));

			if ($q > $quote_level)
			$q_lines[$n]['quote'] = $q - $quote_level;
			else if ($q < $quote_level)
			$eq_lines[$n]['endquote'] = $quote_level - $q;
			}
			else if ($quote_level > 0)
			$q_lines[$n]['endquote'] = $quote_level;

			$quote_level = $q;
			}
			else if ($quote_level > 0)
			$quotation = str_repeat("</blockquote>", $quote_level);

			$quote_level = $q;
			$a_lines[$n] = $quotation . Q($line, 'replace', false); // htmlquote plaintext
			// quote plain text
			$body = Q(join("\n", $a_lines), 'replace', false);

			// ... colorize quoted lines
			$a_lines = preg_split('/\n/', $body);
			foreach ($q_lines as $i => $q)
			if ($q['quote'])
			$a_lines[$i] = str_repeat('<blockquote>', $q['quote']) . $a_lines[$i];
			else if ($q['endquote'])
			$a_lines[$i] = str_repeat('</blockquote>', $q['endquote']) . $a_lines[$i];

			// insert the links for urls and mailtos
			$body = $replacements->resolve(join("\n", $a_lines));
			}

			// insert the links for urls and mailtos
			$body = preg_replace("/##string_replacement\{([0-9]+)\}##/e", "\$replace_strings[\\1]", join("\n", $a_lines));

			return "<div class=\"pre\">".$body."\n</div>";
			// allow post-processing of the message body
			$data = $RCMAIL->plugins->exec_hook('message_part_after', array('type' => $part->ctype_secondary, 'body' => $body) + $data);

			return $data['type'] == 'html' ? $data['body'] : html::tag('pre', array(), $data['body']);
			}


			/**
			* add a string to the replacement array and return a replacement string
			@@ -762,7 +861,7 @@

			case 'style':
			// decode all escaped entities and reduce to ascii strings
			$stripped = preg_replace('/[^a-zA-Z\(:]/', '', rcmail_xss_entitiy_decode($content));
			$stripped = preg_replace('/[^a-zA-Z\(:]/', '', rcmail_xss_entity_decode($content));

			// now check for evil strings like expression, behavior or url()
			if (!preg_match('/expression\|behavior\|url\(\|import/', $stripped)) {
			@@ -783,7 +882,7 @@
			*/
			function rcmail_message_headers($attrib, $headers=NULL)
			{
			global $IMAP, $OUTPUT, $MESSAGE, $PRINT_MODE, $CONFIG;
			global $IMAP, $OUTPUT, $MESSAGE, $PRINT_MODE, $RCMAIL;
			static $sa_attrib;

			// keep header table attrib
			@@ -792,7 +891,6 @@
			else if (!is_array($attrib) && is_array($sa_attrib))
			$attrib = $sa_attrib;


			if (!isset($MESSAGE))
			return FALSE;

			@@ -800,58 +898,55 @@
			if (!$headers)
			$headers = is_object($MESSAGE->headers) ? get_object_vars($MESSAGE->headers) : $MESSAGE->headers;

			$header_count = 0;

			// allow the following attributes to be added to the <table> tag
			$attrib_str = create_attrib_string($attrib, array('style', 'class', 'id', 'cellpadding', 'cellspacing', 'border', 'summary'));
			$out = '<table' . $attrib_str . ">\n";

			// show these headers
			$standard_headers = array('subject', 'from', 'organization', 'to', 'cc', 'bcc', 'replyto', 'date');
			$standard_headers = array('subject', 'from', 'to', 'cc', 'bcc', 'replyto', 'date');
			$output_headers = array();

			foreach ($standard_headers as $hkey)
			{
			foreach ($standard_headers as $hkey) {
			if (!$headers[$hkey])
			continue;

			if ($hkey == 'date')
			{
			if ($hkey == 'date') {
			if ($PRINT_MODE)
			$header_value = format_date($headers[$hkey], $CONFIG['date_long'] ? $CONFIG['date_long'] : 'x');
			$header_value = format_date($headers[$hkey], $RCMAIL->config->get('date_long', 'x'));
			else
			$header_value = format_date($headers[$hkey]);
			}
			else if ($hkey == 'replyto')
			{
			}
			else if ($hkey == 'replyto') {
			if ($headers['replyto'] != $headers['from'])
			$header_value = Q(rcmail_address_string($headers['replyto'], null, true, $attrib['addicon']), 'show');
			$header_value = rcmail_address_string($headers['replyto'], null, true, $attrib['addicon']);
			else
			continue;
			}
			else if (in_array($hkey, array('from', 'to', 'cc', 'bcc')))
			$header_value = Q(rcmail_address_string($headers[$hkey], null, true, $attrib['addicon']), 'show');
			else if ($hkey == 'subject' && empty($headers[$hkey]))
			$header_value = Q(rcube_label('nosubject'));
			else
			$header_value = Q(trim($IMAP->decode_header($headers[$hkey])));

			$out .= "\n<tr>\n";
			$out .= '<td class="header-title">'.Q(rcube_label($hkey)).": </td>\n";
			$out .= '<td class="'.$hkey.'" width="90%">'.$header_value."</td>\n</tr>";
			$header_count++;
			}
			else if (in_array($hkey, array('from', 'to', 'cc', 'bcc')))
			$header_value = rcmail_address_string($headers[$hkey], null, true, $attrib['addicon']);
			else if ($hkey == 'subject' && empty($headers[$hkey]))
			$header_value = rcube_label('nosubject');
			else
			$header_value = trim($IMAP->decode_header($headers[$hkey]));

			$output_headers[$hkey] = array('title' => rcube_label($hkey), 'value' => $header_value, 'raw' => $headers[$hkey]);
			}

			$plugin = $RCMAIL->plugins->exec_hook('message_headers_output', array('output' => $output_headers, 'headers' => $MESSAGE->headers));

			// compose html table
			$table = new html_table(array('cols' => 2));

			foreach ($plugin['output'] as $hkey => $row) {
			$table->add(array('class' => 'header-title'), Q($row['title']));
			$table->add(array('class' => $hkey, 'width' => "90%"), Q($row['value'], ($hkey == 'subject' ? 'strict' : 'show')));
			}

			// all headers division
			$out .= "\n".'<tr><td colspan="2" class="more-headers show-headers"
			onclick="return '.JS_OBJECT_NAME.'.command(\'load-headers\', \'\', this)"></td></tr>';
			$out .= "\n".'<tr id="all-headers"><td colspan="2" class="all"><div id="headers-source"></div></td></tr>';

			$table->add(array('colspan' => 2, 'class' => "more-headers show-headers", 'onclick' => "return ".JS_OBJECT_NAME.".command('load-headers','',this)"), '');
			$table->add_row(array('id' => "all-headers"));
			$table->add(array('colspan' => 2, 'class' => "all"), html::div(array('id' => 'headers-source'), ''));

			$OUTPUT->add_gui_object('all_headers_row', 'all-headers');
			$OUTPUT->add_gui_object('all_headers_box', 'headers-source');

			$out .= "\n</table>\n\n";

			return $header_count ? $out : '';
			return $table->show($attrib);
			}


			@@ -904,8 +999,7 @@
			}
			}
			else
			$out .= html::div('message-part', html::div('pre', Q($MESSAGE->body)));

			$out .= html::div('message-part', html::tag('pre', array(), Q($MESSAGE->body)));

			$ctype_primary = strtolower($MESSAGE->structure->ctype_primary);
			$ctype_secondary = strtolower($MESSAGE->structure->ctype_secondary);
			@@ -936,19 +1030,30 @@
			}


			/**
			* Convert all relative URLs according to a <base> in HTML
			*/
			function rcmail_resolve_base($body)
			{
			// check for <base href=...>
			if (preg_match('!(<base.*href=["\']?)([hftps]{3,5}://[a-z0-9/.%-]+)!i', $body, $regs)) {
			$replacer = new rcube_base_replacer($regs[2]);

			// replace all relative paths
			$body = preg_replace_callback('/(src\|background\|href)=(["\']?)([\.\/]+[^"\'\s]+)(\2\|\s\|>)/Ui', array($replacer, 'callback'), $body);
			$body = preg_replace_callback('/(url\s*$)(["\']?)([\.\/]+[^"\'$\s]+)(\2)\)/Ui', array($replacer, 'callback'), $body);
			}

			return $body;
			}

			/**
			* modify a HTML message that it can be displayed inside a HTML page
			*/
			function rcmail_html4inline($body, $container_id)
			{
			$base_url = "";
			$last_style_pos = 0;
			$body_lc = strtolower($body);

			// check for <base href>
			if (preg_match(($base_reg = '/(<base.href=["\']?)([hftps]{3,5}:\/{2}[^"\'\s]+)([^<]>)/i'), $body, $base_regs))
			$base_url = $base_regs[2];

			// find STYLE tags
			while (($pos = strpos($body_lc, '<style', $last_style_pos)) && ($pos2 = strpos($body_lc, '</style>', $pos)))
			@@ -956,23 +1061,17 @@
			$pos = strpos($body_lc, '>', $pos)+1;

			// replace all css definitions with #container [def]
			$styles = rcmail_mod_css_styles(substr($body, $pos, $pos2-$pos), $container_id, $base_url);
			$styles = rcmail_mod_css_styles(substr($body, $pos, $pos2-$pos), $container_id);

			$body = substr($body, 0, $pos) . $styles . substr($body, $pos2);
			$body_lc = strtolower($body);
			$last_style_pos = $pos2;
			}

			// resolve <base href>
			if ($base_url)
			{
			$body = preg_replace('/(src\|background\|href)=(["\']?)([\.\/]+[^"\'\s]+)(\2\|\s\|>)/Uie', "'\\1=\"'.make_absolute_url('\\3', '$base_url').'\"'", $body);
			$body = preg_replace('/(url\s*$)(["\']?)([\.\/]+[^"\'$\s]+)(\2)\)/Uie', "'\\1\''.make_absolute_url('\\3', '$base_url').'\')'", $body);
			$body = preg_replace($base_reg, '', $body);
			}

			// modify HTML links to open a new window if clicked
			$body = preg_replace('/<(a\|link)\s+([^>]+)>/Uie', "rcmail_alter_html_link('\\1','\\2', '$container_id');", $body);
			$GLOBALS['rcmail_html_container_id'] = $container_id;
			$body = preg_replace_callback('/<(a\|link)\s+([^>]+)>/Ui', 'rcmail_alter_html_link', $body);
			unset($GLOBALS['rcmail_html_container_id']);

			// add comments arround html and other tags
			$out = preg_replace(array(
			@@ -1000,20 +1099,24 @@
			/**
			* parse link attributes and set correct target
			*/
			function rcmail_alter_html_link($tag, $attrs, $container_id)
			function rcmail_alter_html_link($matches)
			{
			$attrib = parse_attrib_string($attrs);
			global $EMAIL_ADDRESS_PATTERN;

			$tag = $matches[1];
			$attrib = parse_attrib_string($matches[2]);
			$end = '>';

			if ($tag == 'link' && preg_match('/^https?:\/\//i', $attrib['href'])) {
			$attrib['href'] = "./bin/modcss.php?u=" . urlencode($attrib['href']) . "&c=" . urlencode($container_id);
			$attrib['href'] = "./bin/modcss.php?u=" . urlencode($attrib['href']) . "&c=" . urlencode($GLOBALS['rcmail_html_container_id']);
			$end = ' />';
			}
			else if (stristr((string)$attrib['href'], 'mailto:')) {
			else if (preg_match("/^mailto:$EMAIL_ADDRESS_PATTERN/i", $attrib['href'], $mailto)) {
			$attrib['href'] = $mailto[0];
			$attrib['onclick'] = sprintf(
			"return %s.command('compose','%s',this)",
			JS_OBJECT_NAME,
			JQ(substr($attrib['href'], 7)));
			JQ($mailto[1]));
			}
			else if (!empty($attrib['href']) && $attrib['href'][0] != '#') {
			$attrib['target'] = '_blank';
			@@ -1044,7 +1147,7 @@
			if ($PRINT_MODE) {
			$out .= sprintf('%s <%s>', Q($part['name']), $part['mailto']);
			}
			else if (preg_match($EMAIL_ADDRESS_PATTERN, $part['mailto'])) {
			else if (preg_match("/$EMAIL_ADDRESS_PATTERN/i", $part['mailto'])) {
			if ($linked) {
			$out .= html::a(array(
			'href' => 'mailto:'.$part['mailto'],
			@@ -1111,7 +1214,7 @@
			$prefix = substr($line, 0, $length);

			// Remove '> ' from the line, then wordwrap() the line
			$line = wordwrap(substr($line, $length), $max - $length);
			$line = rc_wordwrap(substr($line, $length), $max - $length);

			// Rebuild the line with '> ' at the beginning of each 'subline'
			$newline = '';
			@@ -1123,7 +1226,7 @@
			$line = rtrim($newline);
			}
			else {
			$line = wordwrap($line, $max);
			$line = rc_wordwrap($line, $max);
			}
			}

			@@ -1183,12 +1286,9 @@
			if (!isset($_SESSION['compose']))
			return;

			// remove attachment files from temp dir
			if (is_array($_SESSION['compose']['attachments']))
			foreach ($_SESSION['compose']['attachments'] as $attachment)
			@unlink($attachment['path']);
			rcmail::get_instance()->plugins->exec_hook('cleanup_attachments',array());

			unset($_SESSION['compose']);
			rcube_sess_unset('compose');
			}


			@@ -1203,8 +1303,7 @@
			$headers = $message->headers();

			// send thru SMTP server using custom SMTP library
			if ($CONFIG['smtp_server'])
			{
			if ($CONFIG['smtp_server']) {
			// generate list of recipients
			$a_recipients = array($mailto);

			@@ -1227,11 +1326,9 @@
			if (!$sent)
			raise_error(array('code' => 800, 'type' => 'smtp', 'line' => __LINE__, 'file' => __FILE__,
			'message' => "SMTP error: ".join("\n", $smtp_response)), TRUE, FALSE);
			}

			}
			// send mail using PHP's mail() function
			else
			{
			else {
			// unset some headers because they will be added by the mail() function
			$headers_enc = $message->headers($headers);
			$headers_php = $message->_headers;
			@@ -1240,24 +1337,33 @@
			// reset stored headers and overwrite
			$message->_headers = array();
			$header_str = $message->txtHeaders($headers_php);


			// #1485779
			if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
			if (preg_match_all('/<([^@]+@[^>]+)>/', $headers_enc['To'], $m)) {
			$headers_enc['To'] = implode(', ', $m[1]);
			}
			}

			if (ini_get('safe_mode'))
			$sent = mail($headers_enc['To'], $headers_enc['Subject'], $msg_body, $header_str);
			else
			$sent = mail($headers_enc['To'], $headers_enc['Subject'], $msg_body, $header_str, "-f$from");
			}
			}

			if ($sent)
			{
			if ($sent) {
			$RCMAIL->plugins->exec_hook('message_sent', array('headers' => $headers, 'body' => $msg_body));

			// remove MDN headers after sending
			unset($headers['Return-Receipt-To'], $headers['Disposition-Notification-To']);

			if ($CONFIG['smtp_log'])
			if ($CONFIG['smtp_log']) {
			write_log('sendmail', sprintf("User %s [%s]; Message for %s; %s",
			$RCMAIL->user->get_username(),
			$_SERVER['REMOTE_ADDR'],
			$mailto,
			!empty($smtp_response) ? join('; ', $smtp_response) : ''));
			$RCMAIL->user->get_username(),
			$_SERVER['REMOTE_ADDR'],
			$mailto,
			!empty($smtp_response) ? join('; ', $smtp_response) : ''));
			}
			}

			$message->_headers = array();
			@@ -1273,7 +1379,8 @@

			$message = new rcube_message($uid);

			if ($message->headers->mdn_to && !$message->headers->mdn_sent && $IMAP->check_permflag('MDNSENT'))
			if ($message->headers->mdn_to && !$message->headers->mdn_sent &&
			($IMAP->check_permflag('MDNSENT') \|\| $IMAP->check_permflag('*')))
			{
			$identity = $RCMAIL->user->get_identity();
			$sender = format_email_recipient($identity['email'], $identity['name']);
			@@ -1321,7 +1428,7 @@
			"Disposition: manual-action/MDN-sent-manually; displayed\r\n";

			$compose->headers($headers);
			$compose->setTXTBody(wordwrap($body, 75, "\r\n"));
			$compose->setTXTBody(rc_wordwrap($body, 75, "\r\n"));
			$compose->addAttachment($report, 'message/disposition-notification', 'MDNPart2.txt', false, '7bit', 'inline');

			$sent = rcmail_deliver_message($compose, $identity['email'], $mailto);
			@@ -1339,7 +1446,7 @@

			function rcmail_search_filter($attrib)
			{
			global $OUTPUT;
			global $OUTPUT, $CONFIG;

			if (!strlen($attrib['id']))
			$attrib['id'] = 'rcmlistfilter';
			@@ -1359,6 +1466,8 @@
			$select_filter->add(rcube_label('unread'), 'UNSEEN');
			$select_filter->add(rcube_label('flagged'), 'FLAGGED');
			$select_filter->add(rcube_label('unanswered'), 'UNANSWERED');
			if (!$CONFIG['skip_deleted'])
			$select_filter->add(rcube_label('deleted'), 'DELETED');

			$out = $select_filter->show($_SESSION['search_filter']);