projects / exim.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
OpenSSL: Check return value from X509_NAME_oneline(). Bug 2316
[exim.git] / src / src / readconf.c
CommitLineData
059ec3d9
PH		 1/*************************************************
2* Exim - an Internet mail transport agent *
3*************************************************/
4
f9ba5e22 5/* Copyright (c) University of Cambridge 1995 - 2018 */
059ec3d9
PH		 6/* See the file NOTICE for conditions of use and distribution. */
7
8/* Functions for reading the configuration file, and for displaying
9overall configuration values. Thanks to Brian Candler for the original
10implementation of the conditional .ifdef etc. */
11
12#include "exim.h"
13
d185889f 14#ifdef MACRO_PREDEF
5f69a529 15# include "macro_predef.h"
d185889f 16#endif
059ec3d9 17
8442641e
JH		 18#define READCONF_DEBUG if (FALSE) /* Change to TRUE to enable */
19
20
d185889f
JH		 21static uschar * syslog_facility_str;
22static void fn_smtp_receive_timeout(const uschar *, const uschar *);
059ec3d9
PH		 23
24/*************************************************
25* Main configuration options *
26*************************************************/
27
28/* The list of options that can be set in the main configuration file. This
29must be in alphabetic order because it is searched by binary chop. */
30
31static optionlist optionlist_config[] = {
32 { "*set_exim_group", opt_bool|opt_hidden, &exim_gid_set },
33 { "*set_exim_user", opt_bool|opt_hidden, &exim_uid_set },
34 { "*set_system_filter_group", opt_bool|opt_hidden, &system_filter_gid_set },
35 { "*set_system_filter_user", opt_bool|opt_hidden, &system_filter_uid_set },
36 { "accept_8bitmime", opt_bool, &accept_8bitmime },
37 { "acl_not_smtp", opt_stringptr, &acl_not_smtp },
54cdb463
PH		 38#ifdef WITH_CONTENT_SCAN
39 { "acl_not_smtp_mime", opt_stringptr, &acl_not_smtp_mime },
40#endif
45b91596 41 { "acl_not_smtp_start", opt_stringptr, &acl_not_smtp_start },
059ec3d9
PH		 42 { "acl_smtp_auth", opt_stringptr, &acl_smtp_auth },
43 { "acl_smtp_connect", opt_stringptr, &acl_smtp_connect },
44 { "acl_smtp_data", opt_stringptr, &acl_smtp_data },
8ccd00b1 45#ifndef DISABLE_PRDR
fd98a5c6
JH		 46 { "acl_smtp_data_prdr", opt_stringptr, &acl_smtp_data_prdr },
47#endif
80a47a2c
TK		 48#ifndef DISABLE_DKIM
49 { "acl_smtp_dkim", opt_stringptr, &acl_smtp_dkim },
50#endif
059ec3d9
PH		 51 { "acl_smtp_etrn", opt_stringptr, &acl_smtp_etrn },
52 { "acl_smtp_expn", opt_stringptr, &acl_smtp_expn },
53 { "acl_smtp_helo", opt_stringptr, &acl_smtp_helo },
54 { "acl_smtp_mail", opt_stringptr, &acl_smtp_mail },
55 { "acl_smtp_mailauth", opt_stringptr, &acl_smtp_mailauth },
8523533c
TK		 56#ifdef WITH_CONTENT_SCAN
57 { "acl_smtp_mime", opt_stringptr, &acl_smtp_mime },
58#endif
8f128379 59 { "acl_smtp_notquit", opt_stringptr, &acl_smtp_notquit },
059ec3d9
PH		 60 { "acl_smtp_predata", opt_stringptr, &acl_smtp_predata },
61 { "acl_smtp_quit", opt_stringptr, &acl_smtp_quit },
62 { "acl_smtp_rcpt", opt_stringptr, &acl_smtp_rcpt },
63#ifdef SUPPORT_TLS
64 { "acl_smtp_starttls", opt_stringptr, &acl_smtp_starttls },
65#endif
66 { "acl_smtp_vrfy", opt_stringptr, &acl_smtp_vrfy },
bc3c7bb7 67 { "add_environment", opt_stringptr, &add_environment },
059ec3d9
PH		 68 { "admin_groups", opt_gidlist, &admin_groups },
69 { "allow_domain_literals", opt_bool, &allow_domain_literals },
70 { "allow_mx_to_ip", opt_bool, &allow_mx_to_ip },
71 { "allow_utf8_domains", opt_bool, &allow_utf8_domains },
72 { "auth_advertise_hosts", opt_stringptr, &auth_advertise_hosts },
73 { "auto_thaw", opt_time, &auto_thaw },
8523533c
TK		 74#ifdef WITH_CONTENT_SCAN
75 { "av_scanner", opt_stringptr, &av_scanner },
76#endif
059ec3d9 77 { "bi_command", opt_stringptr, &bi_command },
8523533c
TK		 78#ifdef EXPERIMENTAL_BRIGHTMAIL
79 { "bmi_config_file", opt_stringptr, &bmi_config_file },
80#endif
059ec3d9
PH		 81 { "bounce_message_file", opt_stringptr, &bounce_message_file },
82 { "bounce_message_text", opt_stringptr, &bounce_message_text },
83 { "bounce_return_body", opt_bool, &bounce_return_body },
62b7cd08 84 { "bounce_return_linesize_limit", opt_mkint, &bounce_return_linesize_limit },
059ec3d9
PH		 85 { "bounce_return_message", opt_bool, &bounce_return_message },
86 { "bounce_return_size_limit", opt_mkint, &bounce_return_size_limit },
87 { "bounce_sender_authentication",opt_stringptr,&bounce_sender_authentication },
88 { "callout_domain_negative_expire", opt_time, &callout_cache_domain_negative_expire },
89 { "callout_domain_positive_expire", opt_time, &callout_cache_domain_positive_expire },
90 { "callout_negative_expire", opt_time, &callout_cache_negative_expire },
91 { "callout_positive_expire", opt_time, &callout_cache_positive_expire },
92 { "callout_random_local_part",opt_stringptr, &callout_random_local_part },
93 { "check_log_inodes", opt_int, &check_log_inodes },
94 { "check_log_space", opt_Kint, &check_log_space },
a0d6ba8a 95 { "check_rfc2047_length", opt_bool, &check_rfc2047_length },
059ec3d9
PH		 96 { "check_spool_inodes", opt_int, &check_spool_inodes },
97 { "check_spool_space", opt_Kint, &check_spool_space },
aa368db3 98 { "chunking_advertise_hosts", opt_stringptr, &chunking_advertise_hosts },
f33875c3 99 { "commandline_checks_require_admin", opt_bool,&commandline_checks_require_admin },
059ec3d9
PH		 100 { "daemon_smtp_port", opt_stringptr|opt_hidden, &daemon_smtp_port },
101 { "daemon_smtp_ports", opt_stringptr, &daemon_smtp_port },
4aee0225
PH		 102 { "daemon_startup_retries", opt_int, &daemon_startup_retries },
103 { "daemon_startup_sleep", opt_time, &daemon_startup_sleep },
6a8f9482
TK		 104#ifdef EXPERIMENTAL_DCC
105 { "dcc_direct_add_header", opt_bool, &dcc_direct_add_header },
106 { "dccifd_address", opt_stringptr, &dccifd_address },
107 { "dccifd_options", opt_stringptr, &dccifd_options },
108#endif
64073d9c 109 { "debug_store", opt_bool, &debug_store },
059ec3d9
PH		 110 { "delay_warning", opt_timelist, &delay_warning },
111 { "delay_warning_condition", opt_stringptr, &delay_warning_condition },
112 { "deliver_drop_privilege", opt_bool, &deliver_drop_privilege },
113 { "deliver_queue_load_max", opt_fixed, &deliver_queue_load_max },
114 { "delivery_date_remove", opt_bool, &delivery_date_remove },
54fc8428
PH		 115#ifdef ENABLE_DISABLE_FSYNC
116 { "disable_fsync", opt_bool, &disable_fsync },
117#endif
7e66e54d 118 { "disable_ipv6", opt_bool, &disable_ipv6 },
80a47a2c
TK		 119#ifndef DISABLE_DKIM
120 { "dkim_verify_signers", opt_stringptr, &dkim_verify_signers },
4840604e
TL		 121#endif
122#ifdef EXPERIMENTAL_DMARC
123 { "dmarc_forensic_sender", opt_stringptr, &dmarc_forensic_sender },
124 { "dmarc_history_file", opt_stringptr, &dmarc_history_file },
125 { "dmarc_tld_file", opt_stringptr, &dmarc_tld_file },
80a47a2c 126#endif
059ec3d9
PH		 127 { "dns_again_means_nonexist", opt_stringptr, &dns_again_means_nonexist },
128 { "dns_check_names_pattern", opt_stringptr, &check_dns_names_pattern },
d8d9f930 129 { "dns_cname_loops", opt_int, &dns_cname_loops },
e5a9dba6
PH		 130 { "dns_csa_search_limit", opt_int, &dns_csa_search_limit },
131 { "dns_csa_use_reverse", opt_bool, &dns_csa_use_reverse },
83712b39 132 { "dns_dnssec_ok", opt_int, &dns_dnssec_ok },
059ec3d9
PH		 133 { "dns_ipv4_lookup", opt_stringptr, &dns_ipv4_lookup },
134 { "dns_retrans", opt_time, &dns_retrans },
135 { "dns_retry", opt_int, &dns_retry },
9820a77f 136 { "dns_trust_aa", opt_stringptr, &dns_trust_aa },
e97d1f08 137 { "dns_use_edns0", opt_int, &dns_use_edns0 },
4c04137d 138 /* This option is now a no-op, retained for compatibility */
059ec3d9
PH		 139 { "drop_cr", opt_bool, &drop_cr },
140/*********************************************************/
6c1c3d1d 141 { "dsn_advertise_hosts", opt_stringptr, &dsn_advertise_hosts },
0e22dfd1 142 { "dsn_from", opt_stringptr, &dsn_from },
059ec3d9
PH		 143 { "envelope_to_remove", opt_bool, &envelope_to_remove },
144 { "errors_copy", opt_stringptr, &errors_copy },
145 { "errors_reply_to", opt_stringptr, &errors_reply_to },
0cbf2b82 146#ifndef DISABLE_EVENT
774ef2d7
JH		 147 { "event_action", opt_stringptr, &event_action },
148#endif
059ec3d9
PH		 149 { "exim_group", opt_gid, &exim_gid },
150 { "exim_path", opt_stringptr, &exim_path },
151 { "exim_user", opt_uid, &exim_uid },
152 { "extra_local_interfaces", opt_stringptr, &extra_local_interfaces },
153 { "extract_addresses_remove_arguments", opt_bool, &extract_addresses_remove_arguments },
154 { "finduser_retries", opt_int, &finduser_retries },
155 { "freeze_tell", opt_stringptr, &freeze_tell },
156 { "gecos_name", opt_stringptr, &gecos_name },
157 { "gecos_pattern", opt_stringptr, &gecos_pattern },
83da1223 158#ifdef SUPPORT_TLS
2519e60d 159 { "gnutls_allow_auto_pkcs11", opt_bool, &gnutls_allow_auto_pkcs11 },
e6060e2c 160 { "gnutls_compat_mode", opt_bool, &gnutls_compat_mode },
83da1223 161#endif
059ec3d9
PH		 162 { "header_line_maxsize", opt_int, &header_line_maxsize },
163 { "header_maxsize", opt_int, &header_maxsize },
164 { "headers_charset", opt_stringptr, &headers_charset },
165 { "helo_accept_junk_hosts", opt_stringptr, &helo_accept_junk_hosts },
166 { "helo_allow_chars", opt_stringptr, &helo_allow_chars },
167 { "helo_lookup_domains", opt_stringptr, &helo_lookup_domains },
168 { "helo_try_verify_hosts", opt_stringptr, &helo_try_verify_hosts },
169 { "helo_verify_hosts", opt_stringptr, &helo_verify_hosts },
170 { "hold_domains", opt_stringptr, &hold_domains },
171 { "host_lookup", opt_stringptr, &host_lookup },
172 { "host_lookup_order", opt_stringptr, &host_lookup_order },
173 { "host_reject_connection", opt_stringptr, &host_reject_connection },
174 { "hosts_connection_nolog", opt_stringptr, &hosts_connection_nolog },
cee5f132 175#ifdef SUPPORT_PROXY
7a2fa0bc 176 { "hosts_proxy", opt_stringptr, &hosts_proxy },
cee5f132 177#endif
059ec3d9
PH		 178 { "hosts_treat_as_local", opt_stringptr, &hosts_treat_as_local },
179#ifdef LOOKUP_IBASE
180 { "ibase_servers", opt_stringptr, &ibase_servers },
181#endif
182 { "ignore_bounce_errors_after", opt_time, &ignore_bounce_errors_after },
183 { "ignore_fromline_hosts", opt_stringptr, &ignore_fromline_hosts },
184 { "ignore_fromline_local", opt_bool, &ignore_fromline_local },
bc3c7bb7 185 { "keep_environment", opt_stringptr, &keep_environment },
059ec3d9
PH		 186 { "keep_malformed", opt_time, &keep_malformed },
187#ifdef LOOKUP_LDAP
bc19a55b
PP		 188 { "ldap_ca_cert_dir", opt_stringptr, &eldap_ca_cert_dir },
189 { "ldap_ca_cert_file", opt_stringptr, &eldap_ca_cert_file },
190 { "ldap_cert_file", opt_stringptr, &eldap_cert_file },
191 { "ldap_cert_key", opt_stringptr, &eldap_cert_key },
192 { "ldap_cipher_suite", opt_stringptr, &eldap_cipher_suite },
059ec3d9 193 { "ldap_default_servers", opt_stringptr, &eldap_default_servers },
bc19a55b
PP		 194 { "ldap_require_cert", opt_stringptr, &eldap_require_cert },
195 { "ldap_start_tls", opt_bool, &eldap_start_tls },
059ec3d9
PH		 196 { "ldap_version", opt_int, &eldap_version },
197#endif
198 { "local_from_check", opt_bool, &local_from_check },
199 { "local_from_prefix", opt_stringptr, &local_from_prefix },
200 { "local_from_suffix", opt_stringptr, &local_from_suffix },
201 { "local_interfaces", opt_stringptr, &local_interfaces },
9723f966 202#ifdef HAVE_LOCAL_SCAN
059ec3d9 203 { "local_scan_timeout", opt_time, &local_scan_timeout },
9723f966 204#endif
059ec3d9
PH		 205 { "local_sender_retain", opt_bool, &local_sender_retain },
206 { "localhost_number", opt_stringptr, &host_number_string },
207 { "log_file_path", opt_stringptr, &log_file_path },
208 { "log_selector", opt_stringptr, &log_selector_string },
209 { "log_timezone", opt_bool, &log_timezone },
210 { "lookup_open_max", opt_int, &lookup_open_max },
211 { "max_username_length", opt_int, &max_username_length },
ddea74fa 212 { "message_body_newlines", opt_bool, &message_body_newlines },
059ec3d9
PH		 213 { "message_body_visible", opt_mkint, &message_body_visible },
214 { "message_id_header_domain", opt_stringptr, &message_id_domain },
215 { "message_id_header_text", opt_stringptr, &message_id_text },
216 { "message_logs", opt_bool, &message_logs },
217 { "message_size_limit", opt_stringptr, &message_size_limit },
218#ifdef SUPPORT_MOVE_FROZEN_MESSAGES
219 { "move_frozen_messages", opt_bool, &move_frozen_messages },
220#endif
221 { "mua_wrapper", opt_bool, &mua_wrapper },
222#ifdef LOOKUP_MYSQL
223 { "mysql_servers", opt_stringptr, &mysql_servers },
224#endif
225 { "never_users", opt_uidlist, &never_users },
77bb000f
PP		 226#ifdef SUPPORT_TLS
227 { "openssl_options", opt_stringptr, &openssl_options },
228#endif
059ec3d9
PH		 229#ifdef LOOKUP_ORACLE
230 { "oracle_servers", opt_stringptr, &oracle_servers },
231#endif
232 { "percent_hack_domains", opt_stringptr, &percent_hack_domains },
233#ifdef EXIM_PERL
234 { "perl_at_start", opt_bool, &opt_perl_at_start },
235 { "perl_startup", opt_stringptr, &opt_perl_startup },
2f680c0c 236 { "perl_taintmode", opt_bool, &opt_perl_taintmode },
059ec3d9
PH		 237#endif
238#ifdef LOOKUP_PGSQL
239 { "pgsql_servers", opt_stringptr, &pgsql_servers },
240#endif
241 { "pid_file_path", opt_stringptr, &pid_file_path },
242 { "pipelining_advertise_hosts", opt_stringptr, &pipelining_advertise_hosts },
8ccd00b1 243#ifndef DISABLE_PRDR
fd98a5c6
JH		 244 { "prdr_enable", opt_bool, &prdr_enable },
245#endif
059ec3d9
PH		 246 { "preserve_message_logs", opt_bool, &preserve_message_logs },
247 { "primary_hostname", opt_stringptr, &primary_hostname },
248 { "print_topbitchars", opt_bool, &print_topbitchars },
249 { "process_log_path", opt_stringptr, &process_log_path },
250 { "prod_requires_admin", opt_bool, &prod_requires_admin },
251 { "qualify_domain", opt_stringptr, &qualify_domain_sender },
252 { "qualify_recipient", opt_stringptr, &qualify_domain_recipient },
253 { "queue_domains", opt_stringptr, &queue_domains },
254 { "queue_list_requires_admin",opt_bool, &queue_list_requires_admin },
255 { "queue_only", opt_bool, &queue_only },
256 { "queue_only_file", opt_stringptr, &queue_only_file },
257 { "queue_only_load", opt_fixed, &queue_only_load },
8669f003 258 { "queue_only_load_latch", opt_bool, &queue_only_load_latch },
059ec3d9
PH		 259 { "queue_only_override", opt_bool, &queue_only_override },
260 { "queue_run_in_order", opt_bool, &queue_run_in_order },
0cd5fd23 261 { "queue_run_max", opt_stringptr, &queue_run_max },
059ec3d9
PH		 262 { "queue_smtp_domains", opt_stringptr, &queue_smtp_domains },
263 { "receive_timeout", opt_time, &receive_timeout },
264 { "received_header_text", opt_stringptr, &received_header_text },
265 { "received_headers_max", opt_int, &received_headers_max },
266 { "recipient_unqualified_hosts", opt_stringptr, &recipient_unqualified_hosts },
267 { "recipients_max", opt_int, &recipients_max },
268 { "recipients_max_reject", opt_bool, &recipients_max_reject },
de78e2d5 269#ifdef LOOKUP_REDIS
9bdd29ad
TL		 270 { "redis_servers", opt_stringptr, &redis_servers },
271#endif
059ec3d9
PH		 272 { "remote_max_parallel", opt_int, &remote_max_parallel },
273 { "remote_sort_domains", opt_stringptr, &remote_sort_domains },
274 { "retry_data_expire", opt_time, &retry_data_expire },
275 { "retry_interval_max", opt_time, &retry_interval_max },
276 { "return_path_remove", opt_bool, &return_path_remove },
277 { "return_size_limit", opt_mkint|opt_hidden, &bounce_return_size_limit },
278 { "rfc1413_hosts", opt_stringptr, &rfc1413_hosts },
279 { "rfc1413_query_timeout", opt_time, &rfc1413_query_timeout },
280 { "sender_unqualified_hosts", opt_stringptr, &sender_unqualified_hosts },
846430d9 281 { "slow_lookup_log", opt_int, &slow_lookup_log },
059ec3d9
PH		 282 { "smtp_accept_keepalive", opt_bool, &smtp_accept_keepalive },
283 { "smtp_accept_max", opt_int, &smtp_accept_max },
284 { "smtp_accept_max_nonmail", opt_int, &smtp_accept_max_nonmail },
285 { "smtp_accept_max_nonmail_hosts", opt_stringptr, &smtp_accept_max_nonmail_hosts },
286 { "smtp_accept_max_per_connection", opt_int, &smtp_accept_max_per_connection },
287 { "smtp_accept_max_per_host", opt_stringptr, &smtp_accept_max_per_host },
288 { "smtp_accept_queue", opt_int, &smtp_accept_queue },
289 { "smtp_accept_queue_per_connection", opt_int, &smtp_accept_queue_per_connection },
290 { "smtp_accept_reserve", opt_int, &smtp_accept_reserve },
291 { "smtp_active_hostname", opt_stringptr, &raw_active_hostname },
292 { "smtp_banner", opt_stringptr, &smtp_banner },
293 { "smtp_check_spool_space", opt_bool, &smtp_check_spool_space },
294 { "smtp_connect_backlog", opt_int, &smtp_connect_backlog },
295 { "smtp_enforce_sync", opt_bool, &smtp_enforce_sync },
296 { "smtp_etrn_command", opt_stringptr, &smtp_etrn_command },
297 { "smtp_etrn_serialize", opt_bool, &smtp_etrn_serialize },
298 { "smtp_load_reserve", opt_fixed, &smtp_load_reserve },
299 { "smtp_max_synprot_errors", opt_int, &smtp_max_synprot_errors },
300 { "smtp_max_unknown_commands",opt_int, &smtp_max_unknown_commands },
301 { "smtp_ratelimit_hosts", opt_stringptr, &smtp_ratelimit_hosts },
302 { "smtp_ratelimit_mail", opt_stringptr, &smtp_ratelimit_mail },
303 { "smtp_ratelimit_rcpt", opt_stringptr, &smtp_ratelimit_rcpt },
1ad6489e 304 { "smtp_receive_timeout", opt_func, &fn_smtp_receive_timeout },
059ec3d9
PH		 305 { "smtp_reserve_hosts", opt_stringptr, &smtp_reserve_hosts },
306 { "smtp_return_error_details",opt_bool, &smtp_return_error_details },
8c5d388a 307#ifdef SUPPORT_I18N
3d1451ea
JH		 308 { "smtputf8_advertise_hosts", opt_stringptr, &smtputf8_advertise_hosts },
309#endif
8523533c
TK		 310#ifdef WITH_CONTENT_SCAN
311 { "spamd_address", opt_stringptr, &spamd_address },
65a7d8c3 312#endif
7952eef9 313#ifdef SUPPORT_SPF
65a7d8c3 314 { "spf_guess", opt_stringptr, &spf_guess },
8523533c 315#endif
059ec3d9
PH		 316 { "split_spool_directory", opt_bool, &split_spool_directory },
317 { "spool_directory", opt_stringptr, &spool_directory },
328c5688 318 { "spool_wireformat", opt_bool, &spool_wireformat },
31480e42
PH		 319#ifdef LOOKUP_SQLITE
320 { "sqlite_lock_timeout", opt_int, &sqlite_lock_timeout },
321#endif
8523533c
TK		 322#ifdef EXPERIMENTAL_SRS
323 { "srs_config", opt_stringptr, &srs_config },
384152a6
TK		 324 { "srs_hashlength", opt_int, &srs_hashlength },
325 { "srs_hashmin", opt_int, &srs_hashmin },
326 { "srs_maxage", opt_int, &srs_maxage },
327 { "srs_secrets", opt_stringptr, &srs_secrets },
328 { "srs_usehash", opt_bool, &srs_usehash },
329 { "srs_usetimestamp", opt_bool, &srs_usetimestamp },
8523533c 330#endif
38a0a95f 331 { "strict_acl_vars", opt_bool, &strict_acl_vars },
059ec3d9
PH		 332 { "strip_excess_angle_brackets", opt_bool, &strip_excess_angle_brackets },
333 { "strip_trailing_dot", opt_bool, &strip_trailing_dot },
334 { "syslog_duplication", opt_bool, &syslog_duplication },
335 { "syslog_facility", opt_stringptr, &syslog_facility_str },
2333e06f 336 { "syslog_pid", opt_bool, &syslog_pid },
059ec3d9
PH		 337 { "syslog_processname", opt_stringptr, &syslog_processname },
338 { "syslog_timestamp", opt_bool, &syslog_timestamp },
339 { "system_filter", opt_stringptr, &system_filter },
340 { "system_filter_directory_transport", opt_stringptr,&system_filter_directory_transport },
341 { "system_filter_file_transport",opt_stringptr,&system_filter_file_transport },
342 { "system_filter_group", opt_gid, &system_filter_gid },
343 { "system_filter_pipe_transport",opt_stringptr,&system_filter_pipe_transport },
344 { "system_filter_reply_transport",opt_stringptr,&system_filter_reply_transport },
345 { "system_filter_user", opt_uid, &system_filter_uid },
346 { "tcp_nodelay", opt_bool, &tcp_nodelay },
5dc43717
JJ		 347#ifdef USE_TCP_WRAPPERS
348 { "tcp_wrappers_daemon_name", opt_stringptr, &tcp_wrappers_daemon_name },
349#endif
059ec3d9
PH		 350 { "timeout_frozen_after", opt_time, &timeout_frozen_after },
351 { "timezone", opt_stringptr, &timezone_string },
059ec3d9 352 { "tls_advertise_hosts", opt_stringptr, &tls_advertise_hosts },
23f3dc67 353#ifdef SUPPORT_TLS
8ac90765
JH		 354# ifdef EXPERIMENTAL_REQUIRETLS
355 { "tls_advertise_requiretls", opt_stringptr, &tls_advertise_requiretls },
356# endif
059ec3d9
PH		 357 { "tls_certificate", opt_stringptr, &tls_certificate },
358 { "tls_crl", opt_stringptr, &tls_crl },
3375e053 359 { "tls_dh_max_bits", opt_int, &tls_dh_max_bits },
059ec3d9 360 { "tls_dhparam", opt_stringptr, &tls_dhparam },
10ca4f1c 361 { "tls_eccurve", opt_stringptr, &tls_eccurve },
f2de3a33 362# ifndef DISABLE_OCSP
3f7eeb86 363 { "tls_ocsp_file", opt_stringptr, &tls_ocsp_file },
817d9f57
JH		 364# endif
365 { "tls_on_connect_ports", opt_stringptr, &tls_in.on_connect_ports },
059ec3d9
PH		 366 { "tls_privatekey", opt_stringptr, &tls_privatekey },
367 { "tls_remember_esmtp", opt_bool, &tls_remember_esmtp },
368 { "tls_require_ciphers", opt_stringptr, &tls_require_ciphers },
369 { "tls_try_verify_hosts", opt_stringptr, &tls_try_verify_hosts },
370 { "tls_verify_certificates", opt_stringptr, &tls_verify_certificates },
371 { "tls_verify_hosts", opt_stringptr, &tls_verify_hosts },
372#endif
373 { "trusted_groups", opt_gidlist, &trusted_groups },
374 { "trusted_users", opt_uidlist, &trusted_users },
375 { "unknown_login", opt_stringptr, &unknown_login },
376 { "unknown_username", opt_stringptr, &unknown_username },
377 { "untrusted_set_sender", opt_stringptr, &untrusted_set_sender },
378 { "uucp_from_pattern", opt_stringptr, &uucp_from_pattern },
379 { "uucp_from_sender", opt_stringptr, &uucp_from_sender },
380 { "warn_message_file", opt_stringptr, &warn_message_file },
381 { "write_rejectlog", opt_bool, &write_rejectlog }
382};
383
cab0c277 384#ifndef MACRO_PREDEF
d7bed771 385static int optionlist_config_size = nelem(optionlist_config);
cab0c277 386#endif
059ec3d9
PH		 387
388
d185889f
JH		 389#ifdef MACRO_PREDEF
390
391static void fn_smtp_receive_timeout(const uschar * name, const uschar * str) {/*Dummy*/}
392
393void
394options_main(void)
395{
396options_from_list(optionlist_config, nelem(optionlist_config), US"MAIN", NULL);
397}
398
399void
400options_auths(void)
401{
402struct auth_info * ai;
403uschar buf[64];
404
405options_from_list(optionlist_auths, optionlist_auths_size, US"AUTHENTICATORS", NULL);
406
407for (ai = auths_available; ai->driver_name[0]; ai++)
408 {
cab0c277 409 spf(buf, sizeof(buf), US"_DRIVER_AUTHENTICATOR_%T", ai->driver_name);
d185889f
JH		 410 builtin_macro_create(buf);
411 options_from_list(ai->options, (unsigned)*ai->options_count, US"AUTHENTICATOR", ai->driver_name);
412 }
413}
414
12263aa8
JH		 415void
416options_logging(void)
417{
418bit_table * bp;
419uschar buf[64];
420
421for (bp = log_options; bp < log_options + log_options_count; bp++)
422 {
423 spf(buf, sizeof(buf), US"_LOG_%T", bp->name);
424 builtin_macro_create(buf);
425 }
426}
427
d185889f
JH		 428
429#else /*!MACRO_PREDEF*/
430
431extern char **environ;
432
433static void save_config_line(const uschar* line);
434static void save_config_position(const uschar *file, int line);
435static void print_config(BOOL admin, BOOL terse);
436
437
438#define CSTATE_STACK_SIZE 10
439
440const uschar *config_directory = NULL;
441
442
443/* Structure for chain (stack) of .included files */
444
445typedef struct config_file_item {
446 struct config_file_item *next;
447 const uschar *filename;
448 const uschar *directory;
449 FILE *file;
450 int lineno;
451} config_file_item;
452
453/* Structure for chain of configuration lines (-bP config) */
454
455typedef struct config_line_item {
456 struct config_line_item *next;
457 uschar *line;
458} config_line_item;
459
460static config_line_item* config_lines;
461
462/* Structure of table of conditional words and their state transitions */
463
464typedef struct cond_item {
465 uschar *name;
466 int namelen;
467 int action1;
468 int action2;
469 int pushpop;
470} cond_item;
471
472/* Structure of table of syslog facility names and values */
473
474typedef struct syslog_fac_item {
475 uschar *name;
476 int value;
477} syslog_fac_item;
478
479/* constants */
480static const char * const hidden = "<value not displayable>";
481
482/* Static variables */
483
484static config_file_item *config_file_stack = NULL; /* For includes */
485
486static uschar *syslog_facility_str = NULL;
487static uschar next_section[24];
488static uschar time_buffer[24];
489
490/* State variables for conditional loading (.ifdef / .else / .endif) */
491
492static int cstate = 0;
493static int cstate_stack_ptr = -1;
494static int cstate_stack[CSTATE_STACK_SIZE];
495
496/* Table of state transitions for handling conditional inclusions. There are
497four possible state transitions:
498
499 .ifdef true
500 .ifdef false
501 .elifdef true (or .else)
502 .elifdef false
503
504.endif just causes the previous cstate to be popped off the stack */
505
506static int next_cstate[3][4] =
507 {
508 /* State 0: reading from file, or reading until next .else or .endif */
509 { 0, 1, 2, 2 },
510 /* State 1: condition failed, skipping until next .else or .endif */
511 { 2, 2, 0, 1 },
512 /* State 2: skipping until .endif */
513 { 2, 2, 2, 2 },
514 };
515
516/* Table of conditionals and the states to set. For each name, there are four
517values: the length of the name (to save computing it each time), the state to
518set if a macro was found in the line, the state to set if a macro was not found
519in the line, and a stack manipulation setting which is:
520
521 -1 pull state value off the stack
522 0 don't alter the stack
523 +1 push value onto stack, before setting new state
524*/
525
526static cond_item cond_list[] = {
527 { US"ifdef", 5, 0, 1, 1 },
528 { US"ifndef", 6, 1, 0, 1 },
529 { US"elifdef", 7, 2, 3, 0 },
530 { US"elifndef", 8, 3, 2, 0 },
531 { US"else", 4, 2, 2, 0 },
532 { US"endif", 5, 0, 0, -1 }
533};
534
535static int cond_list_size = sizeof(cond_list)/sizeof(cond_item);
536
537/* Table of syslog facility names and their values */
538
539static syslog_fac_item syslog_list[] = {
540 { US"mail", LOG_MAIL },
541 { US"user", LOG_USER },
542 { US"news", LOG_NEWS },
543 { US"uucp", LOG_UUCP },
544 { US"local0", LOG_LOCAL0 },
545 { US"local1", LOG_LOCAL1 },
546 { US"local2", LOG_LOCAL2 },
547 { US"local3", LOG_LOCAL3 },
548 { US"local4", LOG_LOCAL4 },
549 { US"local5", LOG_LOCAL5 },
550 { US"local6", LOG_LOCAL6 },
551 { US"local7", LOG_LOCAL7 },
552 { US"daemon", LOG_DAEMON }
553};
554
555static int syslog_list_size = sizeof(syslog_list)/sizeof(syslog_fac_item);
556
557
558
059ec3d9
PH		 559
560/*************************************************
561* Find the name of an option *
562*************************************************/
563
564/* This function is to aid debugging. Various functions take arguments that are
565pointer variables in the options table or in option tables for various drivers.
566For debugging output, it is useful to be able to find the name of the option
567which is currently being processed. This function finds it, if it exists, by
568searching the table(s).
569
570Arguments: a value that is presumed to be in the table above
571Returns: the option name, or an empty string
572*/
573
574uschar *
575readconf_find_option(void *p)
576{
577int i;
578router_instance *r;
579transport_instance *t;
580
c0b9d3e8 581for (i = 0; i < nelem(optionlist_config); i++)
059ec3d9
PH		 582 if (p == optionlist_config[i].value) return US optionlist_config[i].name;
583
d7bed771 584for (r = routers; r; r = r->next)
059ec3d9
PH		 585 {
586 router_info *ri = r->info;
c4b738a9 587 for (i = 0; i < *ri->options_count; i++)
059ec3d9
PH		 588 {
589 if ((ri->options[i].type & opt_mask) != opt_stringptr) continue;
5903c6ff 590 if (p == CS (r->options_block) + (long int)(ri->options[i].value))
059ec3d9
PH		 591 return US ri->options[i].name;
592 }
593 }
594
d7bed771 595for (t = transports; t; t = t->next)
059ec3d9
PH		 596 {
597 transport_info *ti = t->info;
c4b738a9 598 for (i = 0; i < *ti->options_count; i++)
059ec3d9 599 {
c4b738a9
JH		 600 optionlist * op = &ti->options[i];
601 if ((op->type & opt_mask) != opt_stringptr) continue;
602 if (p == ( op->type & opt_public
5903c6ff
JH		 603 ? CS t
604 : CS t->options_block
c4b738a9
JH		 605 )
606 + (long int)op->value)
607 return US op->name;
059ec3d9
PH		 608 }
609 }
610
611return US"";
612}
613
614
615
616
1a7c9a48
JH		 617/*************************************************
618* Deal with an assignment to a macro *
619*************************************************/
620
621/* We have a new definition; append to the list.
622
623Args:
85e03244
JH		 624 name Name of the macro; will be copied
625 val Expansion result for the macro; will be copied
1a7c9a48
JH		 626*/
627
628macro_item *
629macro_create(const uschar * name, const uschar * val, BOOL command_line)
630{
631macro_item * m = store_get(sizeof(macro_item));
632
8442641e 633READCONF_DEBUG fprintf(stderr, "%s: '%s' '%s'\n", __FUNCTION__, name, val);
1a7c9a48
JH		 634m->next = NULL;
635m->command_line = command_line;
636m->namelen = Ustrlen(name);
637m->replen = Ustrlen(val);
85e03244
JH		 638m->name = string_copy(name);
639m->replacement = string_copy(val);
1a7c9a48
JH		 640if (mlast)
641 mlast->next = m;
642else
643 macros = m;
644mlast = m;
85e03244
JH		 645if (!macros_user)
646 macros_user = m;
1a7c9a48
JH		 647return m;
648}
649
650
cf00dad6
PH		 651/* This function is called when a line that starts with an upper case letter is
652encountered. The argument "line" should contain a complete logical line, and
653start with the first letter of the macro name. The macro name and the
654replacement text are extracted and stored. Redefinition of existing,
655non-command line, macros is permitted using '==' instead of '='.
656
657Arguments:
658 s points to the start of the logical line
659
9650d98a 660Returns: FALSE iff fatal error
cf00dad6
PH		 661*/
662
9650d98a
JH		 663BOOL
664macro_read_assignment(uschar *s)
cf00dad6
PH		 665{
666uschar name[64];
667int namelen = 0;
668BOOL redef = FALSE;
669macro_item *m;
cf00dad6
PH		 670
671while (isalnum(*s) || *s == '_')
672 {
673 if (namelen >= sizeof(name) - 1)
9650d98a
JH		 674 {
675 log_write(0, LOG_PANIC|LOG_CONFIG_IN,
ef840681 676 "macro name too long (maximum is " SIZE_T_FMT " characters)", sizeof(name) - 1);
9650d98a
JH		 677 return FALSE;
678 }
cf00dad6
PH		 679 name[namelen++] = *s++;
680 }
681name[namelen] = 0;
682
683while (isspace(*s)) s++;
684if (*s++ != '=')
9650d98a
JH		 685 {
686 log_write(0, LOG_PANIC|LOG_CONFIG_IN, "malformed macro definition");
687 return FALSE;
688 }
cf00dad6
PH		 689
690if (*s == '=')
691 {
692 redef = TRUE;
693 s++;
694 }
695while (isspace(*s)) s++;
696
697/* If an existing macro of the same name was defined on the command line, we
698just skip this definition. It's an error to attempt to redefine a macro without
699redef set to TRUE, or to redefine a macro when it hasn't been defined earlier.
700It is also an error to define a macro whose name begins with the name of a
1a7c9a48
JH		 701previously defined macro. This is the requirement that make using a tree
702for macros hard; we must check all macros for the substring. Perhaps a
703sorted list, and a bsearch, would work?
c193398d 704Note: it is documented that the other way round works. */
cf00dad6 705
1a7c9a48 706for (m = macros; m; m = m->next)
cf00dad6 707 {
1a7c9a48 708 if (Ustrcmp(m->name, name) == 0)
9650d98a 709 {
1a7c9a48
JH		 710 if (!m->command_line && !redef)
711 {
712 log_write(0, LOG_CONFIG|LOG_PANIC, "macro \"%s\" is already "
f04f9047 713 "defined (use \"==\" if you want to redefine it)", name);
1a7c9a48
JH		 714 return FALSE;
715 }
716 break;
165acdd1 717 }
1a7c9a48
JH		 718
719 if (m->namelen < namelen && Ustrstr(name, m->name) != NULL)
165acdd1 720 {
1a7c9a48
JH		 721 log_write(0, LOG_CONFIG|LOG_PANIC, "\"%s\" cannot be defined as "
722 "a macro because previously defined macro \"%s\" is a substring",
723 name, m->name);
9650d98a
JH		 724 return FALSE;
725 }
cf00dad6 726
1a7c9a48
JH		 727 /* We cannot have this test, because it is documented that a substring
728 macro is permitted (there is even an example).
729 *
730 * if (m->namelen > namelen && Ustrstr(m->name, name) != NULL)
731 * log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "\"%s\" cannot be defined as "
732 * "a macro because it is a substring of previously defined macro \"%s\"",
733 * name, m->name);
734 */
cf00dad6
PH		 735 }
736
1a7c9a48
JH		 737/* Check for an overriding command-line definition. */
738
739if (m && m->command_line) return TRUE;
740
cf00dad6
PH		 741/* Redefinition must refer to an existing macro. */
742
743if (redef)
c193398d 744 if (m)
b8f899cf
JH		 745 {
746 m->replen = Ustrlen(s);
1a7c9a48 747 m->replacement = string_copy(s);
b8f899cf 748 }
c193398d 749 else
9650d98a
JH		 750 {
751 log_write(0, LOG_CONFIG|LOG_PANIC, "can't redefine an undefined macro "
cf00dad6 752 "\"%s\"", name);
9650d98a
JH		 753 return FALSE;
754 }
cf00dad6 755
c193398d 756/* We have a new definition. */
cf00dad6 757else
85e03244 758 (void) macro_create(name, s, FALSE);
9650d98a 759return TRUE;
8e6c4db1
JH		 760}
761
762
cf00dad6
PH		 763
764
059ec3d9 765
9650d98a
JH		 766/* Process line for macros. The line is in big_buffer starting at offset len.
767Expand big_buffer if needed. Handle definitions of new macros, and
85e03244 768macro expansions, rewriting the line in the buffer.
9650d98a
JH		 769
770Arguments:
771 len Offset in buffer of start of line
772 newlen Pointer to offset of end of line, updated on return
773 macro_found Pointer to return that a macro was expanded
774
775Return: pointer to first nonblank char in line
776*/
777
778uschar *
779macros_expand(int len, int * newlen, BOOL * macro_found)
780{
781uschar * ss = big_buffer + len;
782uschar * s;
1a7c9a48 783macro_item * m;
9650d98a
JH		 784
785/* Find the true start of the physical line - leading spaces are always
786ignored. */
787
788while (isspace(*ss)) ss++;
789
790/* Process the physical line for macros. If this is the start of the logical
791line, skip over initial text at the start of the line if it starts with an
792upper case character followed by a sequence of name characters and an equals
793sign, because that is the definition of a new macro, and we don't do
794replacement therein. */
795
796s = ss;
797if (len == 0 && isupper(*s))
798 {
799 while (isalnum(*s) || *s == '_') s++;
800 while (isspace(*s)) s++;
801 if (*s != '=') s = ss; /* Not a macro definition */
802 }
803
1a7c9a48
JH		 804/* Skip leading chars which cannot start a macro name, to avoid multiple
805pointless rescans in Ustrstr calls. */
806
85e03244 807while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
1a7c9a48
JH		 808
809/* For each defined macro, scan the line (from after XXX= if present),
810replacing all occurrences of the macro. */
9650d98a
JH		 811
812*macro_found = FALSE;
85e03244 813if (*s) for (m = *s == '_' ? macros : macros_user; m; m = m->next)
9650d98a 814 {
1a7c9a48 815 uschar * p, *pp;
85e03244
JH		 816 uschar * t;
817
818 while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
819 if (!*s) break;
9650d98a 820
85e03244 821 t = s;
1a7c9a48
JH		 822 while ((p = Ustrstr(t, m->name)) != NULL)
823 {
824 int moveby;
9650d98a 825
8442641e 826 READCONF_DEBUG fprintf(stderr, "%s: matched '%s' in '%s'\n", __FUNCTION__, m->name, ss);
1a7c9a48 827 /* Expand the buffer if necessary */
9650d98a 828
1a7c9a48
JH		 829 while (*newlen - m->namelen + m->replen + 1 > big_buffer_size)
830 {
831 int newsize = big_buffer_size + BIG_BUFFER_SIZE;
832 uschar *newbuffer = store_malloc(newsize);
833 memcpy(newbuffer, big_buffer, *newlen + 1);
834 p = newbuffer + (p - big_buffer);
835 s = newbuffer + (s - big_buffer);
836 ss = newbuffer + (ss - big_buffer);
837 t = newbuffer + (t - big_buffer);
838 big_buffer_size = newsize;
839 store_free(big_buffer);
840 big_buffer = newbuffer;
841 }
165acdd1 842
1a7c9a48
JH		 843 /* Shuffle the remaining characters up or down in the buffer before
844 copying in the replacement text. Don't rescan the replacement for this
845 same macro. */
165acdd1 846
1a7c9a48
JH		 847 pp = p + m->namelen;
848 if ((moveby = m->replen - m->namelen) != 0)
849 {
850 memmove(p + m->replen, pp, (big_buffer + *newlen) - pp + 1);
851 *newlen += moveby;
9650d98a 852 }
1a7c9a48
JH		 853 Ustrncpy(p, m->replacement, m->replen);
854 t = p + m->replen;
85e03244 855 while (*t && !isupper(*t) && !(*t == '_' && isupper(t[1]))) t++;
1a7c9a48 856 *macro_found = TRUE;
9650d98a
JH		 857 }
858 }
859
860/* An empty macro replacement at the start of a line could mean that ss no
861longer points to the first non-blank character. */
862
863while (isspace(*ss)) ss++;
864return ss;
865}
866
059ec3d9
PH		 867/*************************************************
868* Read configuration line *
869*************************************************/
870
871/* A logical line of text is read from the configuration file into the big
872buffer, taking account of macros, .includes, and continuations. The size of
873big_buffer is increased if necessary. The count of configuration lines is
874maintained. Physical input lines starting with # (ignoring leading white space,
875and after macro replacement) and empty logical lines are always ignored.
876Leading and trailing spaces are removed.
877
878If we hit a line of the form "begin xxxx", the xxxx is placed in the
879next_section vector, and the function returns NULL, indicating the end of a
880configuration section. On end-of-file, NULL is returned with next_section
881empty.
882
883Arguments: none
884
885Returns: a pointer to the first non-blank in the line,
886 or NULL if eof or end of section is reached
887*/
888
889static uschar *
890get_config_line(void)
891{
892int startoffset = 0; /* To first non-blank char in logical line */
893int len = 0; /* Of logical line so far */
894int newlen;
895uschar *s, *ss;
059ec3d9
PH		 896BOOL macro_found;
897
898/* Loop for handling continuation lines, skipping comments, and dealing with
899.include files. */
900
901for (;;)
902 {
903 if (Ufgets(big_buffer+len, big_buffer_size-len, config_file) == NULL)
904 {
905 if (config_file_stack != NULL) /* EOF inside .include */
906 {
f1e894f3 907 (void)fclose(config_file);
059ec3d9
PH		 908 config_file = config_file_stack->file;
909 config_filename = config_file_stack->filename;
29f67888 910 config_directory = config_file_stack->directory;
059ec3d9
PH		 911 config_lineno = config_file_stack->lineno;
912 config_file_stack = config_file_stack->next;
bf3c2c6b
HSHR		 913 if (config_lines)
914 save_config_position(config_filename, config_lineno);
059ec3d9
PH		 915 continue;
916 }
917
918 /* EOF at top level */
919
920 if (cstate_stack_ptr >= 0)
921 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
922 "Unexpected end of configuration file: .endif missing");
923
924 if (len != 0) break; /* EOF after continuation */
925 next_section[0] = 0; /* EOF at start of logical line */
926 return NULL;
927 }
928
929 config_lineno++;
930 newlen = len + Ustrlen(big_buffer + len);
931
bf3c2c6b
HSHR		 932 if (config_lines && config_lineno == 1)
933 save_config_position(config_filename, config_lineno);
934
059ec3d9
PH		 935 /* Handle pathologically long physical lines - yes, it did happen - by
936 extending big_buffer at this point. The code also copes with very long
937 logical lines. */
938
939 while (newlen == big_buffer_size - 1 && big_buffer[newlen - 1] != '\n')
940 {
941 uschar *newbuffer;
942 big_buffer_size += BIG_BUFFER_SIZE;
943 newbuffer = store_malloc(big_buffer_size);
944
945 /* This use of strcpy is OK because we know that the string in the old
946 buffer is shorter than the new buffer. */
947
948 Ustrcpy(newbuffer, big_buffer);
949 store_free(big_buffer);
950 big_buffer = newbuffer;
951 if (Ufgets(big_buffer+newlen, big_buffer_size-newlen, config_file) == NULL)
952 break;
953 newlen += Ustrlen(big_buffer + newlen);
954 }
955
9650d98a 956 ss = macros_expand(len, &newlen, &macro_found);
059ec3d9
PH		 957
958 /* Check for comment lines - these are physical lines. */
959
960 if (*ss == '#') continue;
961
962 /* Handle conditionals, which are also applied to physical lines. Conditions
963 are of the form ".ifdef ANYTEXT" and are treated as true if any macro
964 expansion occured on the rest of the line. A preliminary test for the leading
965 '.' saves effort on most lines. */
966
967 if (*ss == '.')
968 {
969 int i;
970
971 /* Search the list of conditional directives */
972
973 for (i = 0; i < cond_list_size; i++)
974 {
975 int n;
976 cond_item *c = cond_list+i;
977 if (Ustrncmp(ss+1, c->name, c->namelen) != 0) continue;
978
979 /* The following character must be white space or end of string */
980
981 n = ss[1 + c->namelen];
982 if (n != ' ' && n != 't' && n != '\n' && n != 0) break;
983
984 /* .ifdef and .ifndef push the current state onto the stack, then set
985 a new one from the table. Stack overflow is an error */
986
987 if (c->pushpop > 0)
988 {
989 if (cstate_stack_ptr >= CSTATE_STACK_SIZE - 1)
990 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
991 ".%s nested too deeply", c->name);
992 cstate_stack[++cstate_stack_ptr] = cstate;
993 cstate = next_cstate[cstate][macro_found? c->action1 : c->action2];
994 }
995
996 /* For any of the others, stack underflow is an error. The next state
997 comes either from the stack (.endif) or from the table. */
998
999 else
1000 {
1001 if (cstate_stack_ptr < 0)
1002 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1003 ".%s without matching .ifdef", c->name);
1004 cstate = (c->pushpop < 0)? cstate_stack[cstate_stack_ptr--] :
1005 next_cstate[cstate][macro_found? c->action1 : c->action2];
1006 }
1007
1008 /* Having dealt with a directive, break the loop */
1009
1010 break;
1011 }
1012
1013 /* If we have handled a conditional directive, continue with the next
1014 physical line. Otherwise, fall through. */
1015
1016 if (i < cond_list_size) continue;
1017 }
1018
1019 /* If the conditional state is not 0 (actively using these lines), ignore
1020 this input line. */
1021
1022 if (cstate != 0) continue; /* Conditional skip */
1023
1024 /* Handle .include lines - these are also physical lines. */
1025
1026 if (Ustrncmp(ss, ".include", 8) == 0 &&
1027 (isspace(ss[8]) ||
1028 (Ustrncmp(ss+8, "_if_exists", 10) == 0 && isspace(ss[18]))))
1029 {
1030 uschar *t;
1031 int include_if_exists = isspace(ss[8])? 0 : 10;
1032 config_file_item *save;
1033 struct stat statbuf;
1034
1035 ss += 9 + include_if_exists;
1036 while (isspace(*ss)) ss++;
1037 t = ss + Ustrlen(ss);
1038 while (t > ss && isspace(t[-1])) t--;
1039 if (*ss == '\"' && t[-1] == '\"')
1040 {
1041 ss++;
1042 t--;
1043 }
1044 *t = 0;
1045
29f67888
HSHR		 1046 /* We allow relative file names. For security reasons currently
1047 relative names not allowed with .include_if_exists. For .include_if_exists
1048 we need to check the permissions/ownership of the containing folder */
145396a6 1049 if (*ss != '/')
29f67888
HSHR		 1050 if (include_if_exists) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, ".include specifies a non-"
1051 "absolute path \"%s\"", ss);
1052 else
1053 {
acec9514
JH		 1054 gstring * g = string_append(NULL, 3, config_directory, "/", ss);
1055 ss = string_from_gstring(g);
29f67888 1056 }
145396a6 1057
059ec3d9
PH		 1058 if (include_if_exists != 0 && (Ustat(ss, &statbuf) != 0)) continue;
1059
bf3c2c6b
HSHR		 1060 if (config_lines)
1061 save_config_position(config_filename, config_lineno);
059ec3d9
PH		 1062 save = store_get(sizeof(config_file_item));
1063 save->next = config_file_stack;
1064 config_file_stack = save;
1065 save->file = config_file;
1066 save->filename = config_filename;
29f67888 1067 save->directory = config_directory;
059ec3d9
PH		 1068 save->lineno = config_lineno;
1069
10c50704 1070 if (!(config_file = Ufopen(ss, "rb")))
059ec3d9
PH		 1071 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to open included "
1072 "configuration file %s", ss);
10c50704 1073
059ec3d9 1074 config_filename = string_copy(ss);
863bd541 1075 config_directory = string_copyn(ss, CUstrrchr(ss, '/') - ss);
059ec3d9
PH		 1076 config_lineno = 0;
1077 continue;
1078 }
1079
1080 /* If this is the start of the logical line, remember where the non-blank
1081 data starts. Otherwise shuffle down continuation lines to remove leading
1082 white space. */
1083
1084 if (len == 0)
1085 startoffset = ss - big_buffer;
1086 else
1087 {
1088 s = big_buffer + len;
1089 if (ss > s)
1090 {
1091 memmove(s, ss, (newlen - len) - (ss - s) + 1);
1092 newlen -= ss - s;
1093 }
1094 }
1095
1096 /* Accept the new addition to the line. Remove trailing white space. */
1097
1098 len = newlen;
1099 while (len > 0 && isspace(big_buffer[len-1])) len--;
1100 big_buffer[len] = 0;
1101
1102 /* We are done if the line does not end in backslash and contains some data.
1103 Empty logical lines are ignored. For continuations, remove the backslash and
1104 go round the loop to read the continuation line. */
1105
1106 if (len > 0)
1107 {
1108 if (big_buffer[len-1] != '\\') break; /* End of logical line */
1109 big_buffer[--len] = 0; /* Remove backslash */
1110 }
1111 } /* Loop for reading multiple physical lines */
1112
1113/* We now have a logical line. Test for the end of a configuration section (or,
1114more accurately, for the start of the next section). Place the name of the next
1115section in next_section, and return NULL. If the name given is longer than
1116next_section, truncate it. It will be unrecognized later, because all the known
1117section names do fit. Leave space for pluralizing. */
1118
1119s = big_buffer + startoffset; /* First non-space character */
bf3c2c6b
HSHR		 1120
1121if (config_lines)
1122 save_config_line(s);
1123
059ec3d9
PH		 1124if (strncmpic(s, US"begin ", 6) == 0)
1125 {
1126 s += 6;
1127 while (isspace(*s)) s++;
1128 if (big_buffer + len - s > sizeof(next_section) - 2)
1129 s[sizeof(next_section) - 2] = 0;
1130 Ustrcpy(next_section, s);
1131 return NULL;
1132 }
1133
1134/* Return the first non-blank character. */
1135
1136return s;
1137}
1138
1139
1140
1141/*************************************************
1142* Read a name *
1143*************************************************/
1144
1145/* The yield is the pointer to the next uschar. Names longer than the
1146output space are silently truncated. This function is also used from acl.c when
1147parsing ACLs.
1148
1149Arguments:
1150 name where to put the name
1151 len length of name
1152 s input pointer
1153
1154Returns: new input pointer
1155*/
1156
1157uschar *
1158readconf_readname(uschar *name, int len, uschar *s)
1159{
1160int p = 0;
1161while (isspace(*s)) s++;
1162if (isalpha(*s))
1163 {
1164 while (isalnum(*s) || *s == '_')
1165 {
1166 if (p < len-1) name[p++] = *s;
1167 s++;
1168 }
1169 }
1170name[p] = 0;
1171while (isspace(*s)) s++;
1172return s;
1173}
1174
1175
1176
1177
1178/*************************************************
1179* Read a time value *
1180*************************************************/
1181
1182/* This function is also called from outside, to read argument
1183time values. The format of a time value is:
1184
1185 [<n>w][<n>d][<n>h][<n>m][<n>s]
1186
1187as long as at least one is present. If a format error is encountered,
1188return a negative value. The value must be terminated by the given
1189terminator.
1190
1191Arguments:
1192 s input pointer
1193 terminator required terminating character
1194 return_msec if TRUE, allow fractional seconds and return milliseconds
1195
1196Returns: the time value, or -1 on syntax error
1197 value is seconds if return_msec is FALSE
1198 value is milliseconds if return_msec is TRUE
1199*/
1200
1201int
1ad6489e 1202readconf_readtime(const uschar *s, int terminator, BOOL return_msec)
059ec3d9
PH		 1203{
1204int yield = 0;
1205for (;;)
1206 {
1207 int value, count;
1208 double fraction;
1209
1210 if (!isdigit(*s)) return -1;
1ad6489e 1211 (void)sscanf(CCS s, "%d%n", &value, &count);
059ec3d9
PH		 1212 s += count;
1213
1214 switch (*s)
1215 {
1216 case 'w': value *= 7;
1217 case 'd': value *= 24;
1218 case 'h': value *= 60;
1219 case 'm': value *= 60;
1220 case 's': s++;
1221 break;
1222
1223 case '.':
1224 if (!return_msec) return -1;
1ad6489e 1225 (void)sscanf(CCS s, "%lf%n", &fraction, &count);
059ec3d9
PH		 1226 s += count;
1227 if (*s++ != 's') return -1;
1228 yield += (int)(fraction * 1000.0);
1229 break;
1230
1231 default: return -1;
1232 }
1233
1234 if (return_msec) value *= 1000;
1235 yield += value;
1236 if (*s == terminator) return yield;
1237 }
1238/* Control never reaches here. */
1239}
1240
1241
1242
1243/*************************************************
1244* Read a fixed point value *
1245*************************************************/
1246
1247/* The value is returned *1000
1248
1249Arguments:
1250 s input pointer
1251 terminator required terminator
1252
1253Returns: the value, or -1 on error
1254*/
1255
1256static int
55414b25 1257readconf_readfixed(const uschar *s, int terminator)
059ec3d9
PH		 1258{
1259int yield = 0;
1260int value, count;
1261if (!isdigit(*s)) return -1;
1262(void)sscanf(CS s, "%d%n", &value, &count);
1263s += count;
1264yield = value * 1000;
1265if (*s == '.')
1266 {
1267 int m = 100;
1268 while (isdigit((*(++s))))
1269 {
1270 yield += (*s - '0') * m;
1271 m /= 10;
1272 }
1273 }
1274
1275return (*s == terminator)? yield : (-1);
1276}
1277
1278
1279
1280/*************************************************
1281* Find option in list *
1282*************************************************/
1283
1284/* The lists are always in order, so binary chop can be used.
1285
1286Arguments:
1287 name the option name to search for
1288 ol the first entry in the option list
1289 last one more than the offset of the last entry in the option list
1290
1291Returns: pointer to an option entry, or NULL if not found
1292*/
1293
1294static optionlist *
1295find_option(uschar *name, optionlist *ol, int last)
1296{
1297int first = 0;
1298while (last > first)
1299 {
1300 int middle = (first + last)/2;
1301 int c = Ustrcmp(name, ol[middle].name);
d7bed771 1302
059ec3d9 1303 if (c == 0) return ol + middle;
d7bed771
JH		 1304 else if (c > 0) first = middle + 1;
1305 else last = middle;
059ec3d9
PH		 1306 }
1307return NULL;
1308}
1309
1310
1311
1312/*************************************************
1313* Find a set flag in option list *
1314*************************************************/
1315
1316/* Because some versions of Unix make no restrictions on the values of uids and
1317gids (even negative ones), we cannot represent "unset" by a special value.
1318There is therefore a separate boolean variable for each one indicating whether
1319a value is set or not. This function returns a pointer to the boolean, given
1320the original option name. It is a major disaster if the flag cannot be found.
1321
1322Arguments:
1323 name the name of the uid or gid option
1324 oltop points to the start of the relevant option list
1325 last one more than the offset of the last item in the option list
1326 data_block NULL when reading main options => data values in the option
1327 list are absolute addresses; otherwise they are byte offsets
1328 in data_block (used for driver options)
1329
1330Returns: a pointer to the boolean flag.
1331*/
1332
1333static BOOL *
1334get_set_flag(uschar *name, optionlist *oltop, int last, void *data_block)
1335{
1336optionlist *ol;
1337uschar name2[64];
1338sprintf(CS name2, "*set_%.50s", name);
1339ol = find_option(name2, oltop, last);
1340if (ol == NULL) log_write(0, LOG_MAIN|LOG_PANIC_DIE,
1341 "Exim internal error: missing set flag for %s", name);
1342return (data_block == NULL)? (BOOL *)(ol->value) :
5903c6ff 1343 (BOOL *)(US data_block + (long int)(ol->value));
059ec3d9
PH		 1344}
1345
1346
1347
1348
1349/*************************************************
1350* Output extra characters message and die *
1351*************************************************/
1352
1353/* Called when an option line has junk on the end. Sometimes this is because
1354the sysadmin thinks comments are permitted.
1355
1356Arguments:
1357 s points to the extra characters
1358 t1..t3 strings to insert in the log message
1359
1360Returns: doesn't return; dies
1361*/
1362
1363static void
55414b25 1364extra_chars_error(const uschar *s, const uschar *t1, const uschar *t2, const uschar *t3)
059ec3d9
PH		 1365{
1366uschar *comment = US"";
1367if (*s == '#') comment = US" (# is comment only at line start)";
1368log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1369 "extra characters follow %s%s%s%s", t1, t2, t3, comment);
1370}
1371
1372
1373
1374/*************************************************
1375* Read rewrite information *
1376*************************************************/
1377
1378/* Each line of rewrite information contains:
1379
1380. A complete address in the form user@domain, possibly with
1381 leading * for each part; or alternatively, a regex.
1382
1383. A replacement string (which will be expanded).
1384
1385. An optional sequence of one-letter flags, indicating which
1386 headers etc. to apply this rule to.
1387
1388All this is decoded and placed into a control block. The OR of the flags is
1389maintained in a common word.
1390
1391Arguments:
1392 p points to the string that makes up the rule
1393 existflags points to the overall flag word
1394 isglobal TRUE if reading global rewrite rules
1395
1396Returns: the control block for the parsed rule.
1397*/
1398
1399static rewrite_rule *
55414b25 1400readconf_one_rewrite(const uschar *p, int *existflags, BOOL isglobal)
059ec3d9
PH		 1401{
1402rewrite_rule *next = store_get(sizeof(rewrite_rule));
1403
1404next->next = NULL;
1405next->key = string_dequote(&p);
1406
1407while (isspace(*p)) p++;
1408if (*p == 0)
1409 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1410 "missing rewrite replacement string");
1411
1412next->flags = 0;
1413next->replacement = string_dequote(&p);
1414
1415while (*p != 0) switch (*p++)
1416 {
1417 case ' ': case '\t': break;
1418
1419 case 'q': next->flags |= rewrite_quit; break;
1420 case 'w': next->flags |= rewrite_whole; break;
1421
1422 case 'h': next->flags |= rewrite_all_headers; break;
1423 case 's': next->flags |= rewrite_sender; break;
1424 case 'f': next->flags |= rewrite_from; break;
1425 case 't': next->flags |= rewrite_to; break;
1426 case 'c': next->flags |= rewrite_cc; break;
1427 case 'b': next->flags |= rewrite_bcc; break;
1428 case 'r': next->flags |= rewrite_replyto; break;
1429
1430 case 'E': next->flags |= rewrite_all_envelope; break;
1431 case 'F': next->flags |= rewrite_envfrom; break;
1432 case 'T': next->flags |= rewrite_envto; break;
1433
1434 case 'Q': next->flags |= rewrite_qualify; break;
1435 case 'R': next->flags |= rewrite_repeat; break;
1436
1437 case 'S':
1438 next->flags |= rewrite_smtp;
1439 if (next->key[0] != '^' && Ustrncmp(next->key, "\\N^", 3) != 0)
1440 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1441 "rewrite rule has the S flag but is not a regular expression");
1442 break;
1443
1444 default:
1445 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1446 "unknown rewrite flag character '%c' "
1447 "(could be missing quotes round replacement item)", p[-1]);
1448 break;
1449 }
1450
1451/* If no action flags are set, set all the "normal" rewrites. */
1452
1453if ((next->flags & (rewrite_all | rewrite_smtp)) == 0)
1454 next->flags |= isglobal? rewrite_all : rewrite_all_headers;
1455
1456/* Remember which exist, for optimization, and return the rule */
1457
1458*existflags |= next->flags;
1459return next;
1460}
1461
1462
1463
1464
1465/*************************************************
1466* Read global rewrite information *
1467*************************************************/
1468
1469/* Each line is a single rewrite rule; it is parsed into a control block
1470by readconf_one_rewrite(), and its flags are ORed into the global flag
1471word rewrite_existflags. */
1472
1473void
1474readconf_rewrites(void)
1475{
1476rewrite_rule **chain = &global_rewrite_rules;
1477uschar *p;
1478
1479while ((p = get_config_line()) != NULL)
1480 {
1481 rewrite_rule *next = readconf_one_rewrite(p, &rewrite_existflags, TRUE);
1482 *chain = next;
1483 chain = &(next->next);
1484 }
1485}
1486
1487
1488
1489/*************************************************
1490* Read a string *
1491*************************************************/
1492
1493/* Strings are read into the normal store pool. As long we aren't too
1494near the end of the current block, the string will just use what is necessary
1495on the top of the stacking pool, because string_cat() uses the extension
1496mechanism.
1497
1498Argument:
1499 s the rest of the input line
1500 name the option name (for errors)
1501
1502Returns: pointer to the string
1503*/
1504
1505static uschar *
55414b25 1506read_string(const uschar *s, const uschar *name)
059ec3d9
PH		 1507{
1508uschar *yield;
55414b25 1509const uschar *ss;
059ec3d9
PH		 1510
1511if (*s != '\"') return string_copy(s);
1512
1513ss = s;
1514yield = string_dequote(&s);
1515
1516if (s == ss+1 || s[-1] != '\"')
1517 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1518 "missing quote at end of string value for %s", name);
1519
1520if (*s != 0) extra_chars_error(s, US"string value for ", name, US"");
1521
1522return yield;
1523}
1524
1525
1ad6489e
JH		 1526/*************************************************
1527* Custom-handler options *
1528*************************************************/
1529static void
1530fn_smtp_receive_timeout(const uschar * name, const uschar * str)
1531{
1ad6489e
JH		 1532if (*str == '$')
1533 smtp_receive_timeout_s = string_copy(str);
1534else
1535 {
1536 /* "smtp_receive_timeout", opt_time, &smtp_receive_timeout */
1537 smtp_receive_timeout = readconf_readtime(str, 0, FALSE);
1538 if (smtp_receive_timeout < 0)
1539 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
1540 name);
1541 }
1542}
1543
059ec3d9
PH		 1544/*************************************************
1545* Handle option line *
1546*************************************************/
1547
1548/* This function is called from several places to process a line containing the
1549setting of an option. The first argument is the line to be decoded; it has been
1550checked not to be empty and not to start with '#'. Trailing newlines and white
1551space have been removed. The second argument is a pointer to the list of
1552variable names that are to be recognized, together with their types and
1553locations, and the third argument gives the number of entries in the list.
1554
1555The fourth argument is a pointer to a data block. If it is NULL, then the data
1556values in the options list are absolute addresses. Otherwise, they are byte
1557offsets in the data block.
1558
1559String option data may continue onto several lines; this function reads further
1560data from config_file if necessary.
1561
1562The yield of this function is normally zero. If a string continues onto
1563multiple lines, then the data value is permitted to be followed by a comma
1564or a semicolon (for use in drivers) and the yield is that character.
1565
1566Arguments:
1567 buffer contains the configuration line to be handled
1568 oltop points to the start of the relevant option list
1569 last one more than the offset of the last item in the option list
1570 data_block NULL when reading main options => data values in the option
1571 list are absolute addresses; otherwise they are byte offsets
1572 in data_block when they have opt_public set; otherwise
1573 they are byte offsets in data_block->options_block.
1574 unknown_txt format string to use in panic message for unknown option;
1575 must contain %s for option name
1576 if given as NULL, don't panic on unknown option
1577
1578Returns: TRUE if an option was read successfully,
1579 FALSE false for an unknown option if unknown_txt == NULL,
1580 otherwise panic and die on an unknown option
1581*/
1582
1583static BOOL
1584readconf_handle_option(uschar *buffer, optionlist *oltop, int last,
1585 void *data_block, uschar *unknown_txt)
1586{
1587int ptr = 0;
1588int offset = 0;
1589int n, count, type, value;
1590int issecure = 0;
1591uid_t uid;
1592gid_t gid;
1593BOOL boolvalue = TRUE;
1594BOOL freesptr = TRUE;
1595optionlist *ol, *ol2;
1596struct passwd *pw;
1597void *reset_point;
1598int intbase = 0;
1599uschar *inttype = US"";
1600uschar *sptr;
1601uschar *s = buffer;
532be449 1602uschar **str_target;
059ec3d9
PH		 1603uschar name[64];
1604uschar name2[64];
1605
1606/* There may be leading spaces; thereafter, we expect an option name starting
1607with a letter. */
1608
1609while (isspace(*s)) s++;
1610if (!isalpha(*s))
1611 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option setting expected: %s", s);
1612
1613/* Read the name of the option, and skip any subsequent white space. If
1614it turns out that what we read was "hide", set the flag indicating that
1615this is a secure option, and loop to read the next word. */
1616
1617for (n = 0; n < 2; n++)
1618 {
1619 while (isalnum(*s) || *s == '_')
1620 {
1621 if (ptr < sizeof(name)-1) name[ptr++] = *s;
1622 s++;
1623 }
1624 name[ptr] = 0;
1625 while (isspace(*s)) s++;
1626 if (Ustrcmp(name, "hide") != 0) break;
1627 issecure = opt_secure;
1628 ptr = 0;
1629 }
1630
1631/* Deal with "no_" or "not_" here for booleans */
1632
1633if (Ustrncmp(name, "no_", 3) == 0)
1634 {
1635 boolvalue = FALSE;
1636 offset = 3;
1637 }
1638
1639if (Ustrncmp(name, "not_", 4) == 0)
1640 {
1641 boolvalue = FALSE;
1642 offset = 4;
1643 }
1644
1645/* Search the list for the given name. A non-existent name, or an option that
1646is set twice, is a disaster. */
1647
d7bed771 1648if (!(ol = find_option(name + offset, oltop, last)))
059ec3d9
PH		 1649 {
1650 if (unknown_txt == NULL) return FALSE;
1651 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, CS unknown_txt, name);
1652 }
1653
846726c5
JH		 1654if ((ol->type & opt_set) && !(ol->type & (opt_rep_con | opt_rep_str)))
1655 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1656 "\"%s\" option set for the second time", name);
059ec3d9
PH		 1657
1658ol->type |= opt_set | issecure;
1659type = ol->type & opt_mask;
1660
1661/* Types with data values must be followed by '='; the "no[t]_" prefix
1662applies only to boolean values. */
1663
1664if (type < opt_bool || type > opt_bool_last)
1665 {
1666 if (offset != 0)
1667 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1668 "negation prefix applied to a non-boolean option");
1669 if (*s == 0)
1670 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1671 "unexpected end of line (data missing) after %s", name);
1672 if (*s != '=')
1673 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing \"=\" after %s", name);
1674 }
1675
1676/* If a boolean wasn't preceded by "no[t]_" it can be followed by = and
9c695f6d 1677true/false/yes/no, or, in the case of opt_expand_bool, a general string that
059ec3d9
PH		 1678ultimately expands to one of those values. */
1679
1680else if (*s != 0 && (offset != 0 || *s != '='))
1681 extra_chars_error(s, US"boolean option ", name, US"");
1682
1683/* Skip white space after = */
1684
1685if (*s == '=') while (isspace((*(++s))));
1686
1687/* If there is a data block and the opt_public flag is not set, change
1688the data block pointer to the private options block. */
1689
1690if (data_block != NULL && (ol->type & opt_public) == 0)
1691 data_block = (void *)(((driver_instance *)data_block)->options_block);
1692
1693/* Now get the data according to the type. */
1694
1695switch (type)
1696 {
1697 /* If a string value is not enclosed in quotes, it consists of
1698 the rest of the current line, verbatim. Otherwise, string escapes
1699 are processed.
1700
1701 A transport is specified as a string, which is then looked up in the
1702 list of transports. A search type is specified as one of a number of
1703 known strings.
1704
1705 A set or rewrite rules for a driver is specified as a string, which is
1706 then parsed into a suitable chain of control blocks.
1707
1708 Uids and gids are specified as strings which are then looked up in the
1709 passwd file. Lists of uids and gids are similarly specified as colon-
1710 separated strings. */
1711
1712 case opt_stringptr:
1713 case opt_uid:
1714 case opt_gid:
1715 case opt_expand_uid:
1716 case opt_expand_gid:
1717 case opt_uidlist:
1718 case opt_gidlist:
1719 case opt_rewrite:
1720
1721 reset_point = sptr = read_string(s, name);
1722
1723 /* Having read a string, we now have several different ways of using it,
1724 depending on the data type, so do another switch. If keeping the actual
1725 string is not required (because it is interpreted), freesptr is set TRUE,
1726 and at the end we reset the pool. */
1727
1728 switch (type)
1729 {
1730 /* If this was a string, set the variable to point to the new string,
1731 and set the flag so its store isn't reclaimed. If it was a list of rewrite
1732 rules, we still keep the string (for printing), and parse the rules into a
1733 control block and flags word. */
1734
1735 case opt_stringptr:
adaa0e2c
JH		 1736 str_target = data_block ? USS (US data_block + (long int)(ol->value))
1737 : USS (ol->value);
846726c5 1738 if (ol->type & opt_rep_con)
532be449 1739 {
adaa0e2c 1740 uschar * saved_condition;
6a8de854
PP		 1741 /* We already have a condition, we're conducting a crude hack to let
1742 multiple condition rules be chained together, despite storing them in
1743 text form. */
adaa0e2c
JH		 1744 *str_target = string_copy_malloc( (saved_condition = *str_target)
1745 ? string_sprintf("${if and{{bool_lax{%s}}{bool_lax{%s}}}}",
1746 saved_condition, sptr)
1747 : sptr);
846726c5
JH		 1748 /* TODO(pdp): there is a memory leak here and just below
1749 when we set 3 or more conditions; I still don't
1750 understand the store mechanism enough to know
1751 what's the safe way to free content from an earlier store.
6a8de854
PP		 1752 AFAICT, stores stack, so freeing an early stored item also stores
1753 all data alloc'd after it. If we knew conditions were adjacent,
1754 we could survive that, but we don't. So I *think* we need to take
1755 another bit from opt_type to indicate "malloced"; this seems like
1756 quite a hack, especially for this one case. It also means that
1757 we can't ever reclaim the store from the *first* condition.
1758
1759 Because we only do this once, near process start-up, I'm prepared to
1760 let this slide for the time being, even though it rankles. */
532be449 1761 }
76146973
JH		 1762 else if (ol->type & opt_rep_str)
1763 {
2ad78978
JH		 1764 uschar sep_o = Ustrncmp(name, "headers_add", 11)==0 ? '\n' : ':';
1765 int sep_i = -(int)sep_o;
55414b25 1766 const uschar * list = sptr;
2ad78978 1767 uschar * s;
acec9514 1768 gstring * list_o = NULL;
4226691b 1769
acec9514
JH		 1770 if (*str_target)
1771 {
1772 list_o = string_get(Ustrlen(*str_target) + Ustrlen(sptr));
1773 list_o = string_cat(list_o, *str_target);
1774 }
2ad78978
JH		 1775
1776 while ((s = string_nextinlist(&list, &sep_i, NULL, 0)))
acec9514
JH		 1777 list_o = string_append_listele(list_o, sep_o, s);
1778
2ad78978 1779 if (list_o)
acec9514 1780 *str_target = string_copy_malloc(string_from_gstring(list_o));
76146973 1781 }
532be449
PP		 1782 else
1783 {
1784 *str_target = sptr;
1785 freesptr = FALSE;
1786 }
1787 break;
1788
059ec3d9 1789 case opt_rewrite:
adaa0e2c
JH		 1790 if (data_block)
1791 *USS (US data_block + (long int)(ol->value)) = sptr;
059ec3d9 1792 else
adaa0e2c 1793 *USS (ol->value) = sptr;
059ec3d9
PH		 1794 freesptr = FALSE;
1795 if (type == opt_rewrite)
1796 {
1797 int sep = 0;
1798 int *flagptr;
1799 uschar *p = sptr;
1800 rewrite_rule **chain;
1801 optionlist *ol3;
1802
1803 sprintf(CS name2, "*%.50s_rules", name);
1804 ol2 = find_option(name2, oltop, last);
1805 sprintf(CS name2, "*%.50s_flags", name);
1806 ol3 = find_option(name2, oltop, last);
1807
1808 if (ol2 == NULL || ol3 == NULL)
1809 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1810 "rewrite rules not available for driver");
1811
1812 if (data_block == NULL)
1813 {
1814 chain = (rewrite_rule **)(ol2->value);
1815 flagptr = (int *)(ol3->value);
1816 }
1817 else
1818 {
5903c6ff
JH		 1819 chain = (rewrite_rule **)(US data_block + (long int)(ol2->value));
1820 flagptr = (int *)(US data_block + (long int)(ol3->value));
059ec3d9
PH		 1821 }
1822
55414b25 1823 while ((p = string_nextinlist(CUSS &sptr, &sep, big_buffer, BIG_BUFFER_SIZE)))
059ec3d9
PH		 1824 {
1825 rewrite_rule *next = readconf_one_rewrite(p, flagptr, FALSE);
1826 *chain = next;
1827 chain = &(next->next);
1828 }
1829
1830 if ((*flagptr & (rewrite_all_envelope | rewrite_smtp)) != 0)
1831 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "rewrite rule specifies a "
1832 "non-header rewrite - not allowed at transport time -");
1833 }
1834 break;
1835
1836 /* If it was an expanded uid, see if there is any expansion to be
1837 done by checking for the presence of a $ character. If there is, save it
1838 in the corresponding *expand_user option field. Otherwise, fall through
1839 to treat it as a fixed uid. Ensure mutual exclusivity of the two kinds
1840 of data. */
1841
1842 case opt_expand_uid:
1843 sprintf(CS name2, "*expand_%.50s", name);
1844 ol2 = find_option(name2, oltop, last);
1845 if (ol2 != NULL)
1846 {
1847 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1848
1849 if (data_block == NULL)
1850 *((uschar **)(ol2->value)) = ss;
1851 else
5903c6ff 1852 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
059ec3d9
PH		 1853
1854 if (ss != NULL)
1855 {
1856 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1857 freesptr = FALSE;
1858 break;
1859 }
1860 }
1861
1862 /* Look up a fixed uid, and also make use of the corresponding gid
1863 if a passwd entry is returned and the gid has not been set. */
1864
1865 case opt_uid:
1866 if (!route_finduser(sptr, &pw, &uid))
1867 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found", sptr);
1868 if (data_block == NULL)
1869 *((uid_t *)(ol->value)) = uid;
1870 else
5903c6ff 1871 *((uid_t *)(US data_block + (long int)(ol->value))) = uid;
059ec3d9
PH		 1872
1873 /* Set the flag indicating a fixed value is set */
1874
1875 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1876
1877 /* Handle matching gid if we have a passwd entry: done by finding the
1878 same name with terminating "user" changed to "group"; if not found,
1879 ignore. Also ignore if the value is already set. */
1880
1881 if (pw == NULL) break;
1882 Ustrcpy(name+Ustrlen(name)-4, "group");
1883 ol2 = find_option(name, oltop, last);
1884 if (ol2 != NULL && ((ol2->type & opt_mask) == opt_gid ||
1885 (ol2->type & opt_mask) == opt_expand_gid))
1886 {
1887 BOOL *set_flag = get_set_flag(name, oltop, last, data_block);
1888 if (! *set_flag)
1889 {
1890 if (data_block == NULL)
1891 *((gid_t *)(ol2->value)) = pw->pw_gid;
1892 else
5903c6ff 1893 *((gid_t *)(US data_block + (long int)(ol2->value))) = pw->pw_gid;
059ec3d9
PH		 1894 *set_flag = TRUE;
1895 }
1896 }
1897 break;
1898
1899 /* If it was an expanded gid, see if there is any expansion to be
1900 done by checking for the presence of a $ character. If there is, save it
1901 in the corresponding *expand_user option field. Otherwise, fall through
1902 to treat it as a fixed gid. Ensure mutual exclusivity of the two kinds
1903 of data. */
1904
1905 case opt_expand_gid:
1906 sprintf(CS name2, "*expand_%.50s", name);
1907 ol2 = find_option(name2, oltop, last);
1908 if (ol2 != NULL)
1909 {
1910 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1911
1912 if (data_block == NULL)
1913 *((uschar **)(ol2->value)) = ss;
1914 else
5903c6ff 1915 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
059ec3d9
PH		 1916
1917 if (ss != NULL)
1918 {
1919 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1920 freesptr = FALSE;
1921 break;
1922 }
1923 }
1924
1925 /* Handle freestanding gid */
1926
1927 case opt_gid:
1928 if (!route_findgroup(sptr, &gid))
1929 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found", sptr);
1930 if (data_block == NULL)
1931 *((gid_t *)(ol->value)) = gid;
1932 else
5903c6ff 1933 *((gid_t *)(US data_block + (long int)(ol->value))) = gid;
059ec3d9
PH		 1934 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1935 break;
1936
1937 /* If it was a uid list, look up each individual entry, and build
1938 a vector of uids, with a count in the first element. Put the vector
1939 in malloc store so we can free the string. (We are reading into
1940 permanent store already.) */
1941
1942 case opt_uidlist:
1943 {
1944 int count = 1;
1945 uid_t *list;
1946 int ptr = 0;
55414b25
JH		 1947 const uschar *p;
1948 const uschar *op = expand_string (sptr);
0925ede6
PH		 1949
1950 if (op == NULL)
1951 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
1952 name, expand_string_message);
059ec3d9 1953
0925ede6 1954 p = op;
059ec3d9 1955 if (*p != 0) count++;
0925ede6 1956 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
059ec3d9
PH		 1957 list = store_malloc(count*sizeof(uid_t));
1958 list[ptr++] = (uid_t)(count - 1);
1959
1960 if (data_block == NULL)
1961 *((uid_t **)(ol->value)) = list;
1962 else
5903c6ff 1963 *((uid_t **)(US data_block + (long int)(ol->value))) = list;
059ec3d9 1964
0925ede6 1965 p = op;
059ec3d9
PH		 1966 while (count-- > 1)
1967 {
1968 int sep = 0;
1969 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
1970 if (!route_finduser(big_buffer, NULL, &uid))
1971 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found",
1972 big_buffer);
1973 list[ptr++] = uid;
1974 }
1975 }
1976 break;
1977
1978 /* If it was a gid list, look up each individual entry, and build
1979 a vector of gids, with a count in the first element. Put the vector
1980 in malloc store so we can free the string. (We are reading into permanent
1981 store already.) */
1982
1983 case opt_gidlist:
1984 {
1985 int count = 1;
1986 gid_t *list;
1987 int ptr = 0;
55414b25
JH		 1988 const uschar *p;
1989 const uschar *op = expand_string (sptr);
0925ede6
PH		 1990
1991 if (op == NULL)
1992 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
1993 name, expand_string_message);
059ec3d9 1994
0925ede6 1995 p = op;
059ec3d9 1996 if (*p != 0) count++;
0925ede6 1997 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
059ec3d9
PH		 1998 list = store_malloc(count*sizeof(gid_t));
1999 list[ptr++] = (gid_t)(count - 1);
2000
2001 if (data_block == NULL)
2002 *((gid_t **)(ol->value)) = list;
2003 else
5903c6ff 2004 *((gid_t **)(US data_block + (long int)(ol->value))) = list;
059ec3d9 2005
0925ede6 2006 p = op;
059ec3d9
PH		 2007 while (count-- > 1)
2008 {
2009 int sep = 0;
2010 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
2011 if (!route_findgroup(big_buffer, &gid))
2012 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found",
2013 big_buffer);
2014 list[ptr++] = gid;
2015 }
2016 }
2017 break;
2018 }
2019
2020 /* Release store if the value of the string doesn't need to be kept. */
2021
2022 if (freesptr) store_reset(reset_point);
2023 break;
2024
2025 /* Expanded boolean: if no characters follow, or if there are no dollar
2026 characters, this is a fixed-valued boolean, and we fall through. Otherwise,
2027 save the string for later expansion in the alternate place. */
2028
2029 case opt_expand_bool:
2030 if (*s != 0 && Ustrchr(s, '$') != 0)
2031 {
2032 sprintf(CS name2, "*expand_%.50s", name);
2033 ol2 = find_option(name2, oltop, last);
2034 if (ol2 != NULL)
2035 {
2036 reset_point = sptr = read_string(s, name);
2037 if (data_block == NULL)
2038 *((uschar **)(ol2->value)) = sptr;
2039 else
5903c6ff 2040 *((uschar **)(US data_block + (long int)(ol2->value))) = sptr;
059ec3d9
PH		 2041 freesptr = FALSE;
2042 break;
2043 }
2044 }
2045 /* Fall through */
2046
2047 /* Boolean: if no characters follow, the value is boolvalue. Otherwise
2048 look for yes/not/true/false. Some booleans are stored in a single bit in
2049 a single int. There's a special fudge for verify settings; without a suffix
2050 they set both xx_sender and xx_recipient. The table points to the sender
2051 value; search subsequently for the recipient. There's another special case:
2052 opt_bool_set also notes when a boolean has been set. */
2053
2054 case opt_bool:
2055 case opt_bit:
2056 case opt_bool_verify:
2057 case opt_bool_set:
2058 if (*s != 0)
2059 {
2060 s = readconf_readname(name2, 64, s);
2061 if (strcmpic(name2, US"true") == 0 || strcmpic(name2, US"yes") == 0)
2062 boolvalue = TRUE;
2063 else if (strcmpic(name2, US"false") == 0 || strcmpic(name2, US"no") == 0)
2064 boolvalue = FALSE;
2065 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2066 "\"%s\" is not a valid value for the \"%s\" option", name2, name);
2067 if (*s != 0) extra_chars_error(s, string_sprintf("\"%s\" ", name2),
2068 US"for boolean option ", name);
2069 }
2070
2071 /* Handle single-bit type. */
2072
2073 if (type == opt_bit)
2074 {
2075 int bit = 1 << ((ol->type >> 16) & 31);
2076 int *ptr = (data_block == NULL)?
2077 (int *)(ol->value) :
5903c6ff 2078 (int *)(US data_block + (long int)ol->value);
059ec3d9
PH		 2079 if (boolvalue) *ptr |= bit; else *ptr &= ~bit;
2080 break;
2081 }
2082
2083 /* Handle full BOOL types */
2084
2085 if (data_block == NULL)
2086 *((BOOL *)(ol->value)) = boolvalue;
2087 else
5903c6ff 2088 *((BOOL *)(US data_block + (long int)(ol->value))) = boolvalue;
059ec3d9
PH		 2089
2090 /* Verify fudge */
2091
2092 if (type == opt_bool_verify)
2093 {
2094 sprintf(CS name2, "%.50s_recipient", name + offset);
2095 ol2 = find_option(name2, oltop, last);
2096 if (ol2 != NULL)
2097 {
2098 if (data_block == NULL)
2099 *((BOOL *)(ol2->value)) = boolvalue;
2100 else
5903c6ff 2101 *((BOOL *)(US data_block + (long int)(ol2->value))) = boolvalue;
059ec3d9
PH		 2102 }
2103 }
2104
2105 /* Note that opt_bool_set type is set, if there is somewhere to do so */
2106
2107 else if (type == opt_bool_set)
2108 {
2109 sprintf(CS name2, "*set_%.50s", name + offset);
2110 ol2 = find_option(name2, oltop, last);
2111 if (ol2 != NULL)
2112 {
2113 if (data_block == NULL)
2114 *((BOOL *)(ol2->value)) = TRUE;
2115 else
5903c6ff 2116 *((BOOL *)(US data_block + (long int)(ol2->value))) = TRUE;
059ec3d9
PH		 2117 }
2118 }
2119 break;
2120
2121 /* Octal integer */
2122
2123 case opt_octint:
2124 intbase = 8;
2125 inttype = US"octal ";
2126
2127 /* Integer: a simple(ish) case; allow octal and hex formats, and
dcb72db9 2128 suffixes K, M and G. The different types affect output, not input. */
059ec3d9
PH		 2129
2130 case opt_mkint:
2131 case opt_int:
2132 {
2133 uschar *endptr;
7e8d92ba
PH		 2134 long int lvalue;
2135
059ec3d9 2136 errno = 0;
7e8d92ba 2137 lvalue = strtol(CS s, CSS &endptr, intbase);
059ec3d9
PH		 2138
2139 if (endptr == s)
2140 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2141 inttype, name);
2142
2143 if (errno != ERANGE)
059ec3d9
PH		 2144 if (tolower(*endptr) == 'k')
2145 {
7e8d92ba
PH		 2146 if (lvalue > INT_MAX/1024 || lvalue < INT_MIN/1024) errno = ERANGE;
2147 else lvalue *= 1024;
059ec3d9
PH		 2148 endptr++;
2149 }
2150 else if (tolower(*endptr) == 'm')
2151 {
7e8d92ba 2152 if (lvalue > INT_MAX/(1024*1024) || lvalue < INT_MIN/(1024*1024))
059ec3d9 2153 errno = ERANGE;
7e8d92ba 2154 else lvalue *= 1024*1024;
059ec3d9
PH		 2155 endptr++;
2156 }
dcb72db9
JH		 2157 else if (tolower(*endptr) == 'g')
2158 {
2159 if (lvalue > INT_MAX/(1024*1024*1024) || lvalue < INT_MIN/(1024*1024*1024))
2160 errno = ERANGE;
2161 else lvalue *= 1024*1024*1024;
2162 endptr++;
2163 }
059ec3d9 2164
7e8d92ba
PH		 2165 if (errno == ERANGE || lvalue > INT_MAX || lvalue < INT_MIN)
2166 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2167 "absolute value of integer \"%s\" is too large (overflow)", s);
059ec3d9
PH		 2168
2169 while (isspace(*endptr)) endptr++;
2170 if (*endptr != 0)
2171 extra_chars_error(endptr, inttype, US"integer value for ", name);
7e8d92ba
PH		 2172
2173 value = (int)lvalue;
059ec3d9
PH		 2174 }
2175
2176 if (data_block == NULL)
2177 *((int *)(ol->value)) = value;
2178 else
5903c6ff 2179 *((int *)(US data_block + (long int)(ol->value))) = value;
059ec3d9
PH		 2180 break;
2181
dcb72db9
JH		 2182 /* Integer held in K: again, allow octal and hex formats, and suffixes K, M
2183 and G. */
13559da6 2184 /*XXX consider moving to int_eximarith_t (but mind the overflow test 0415) */
059ec3d9
PH		 2185
2186 case opt_Kint:
2187 {
2188 uschar *endptr;
2189 errno = 0;
2190 value = strtol(CS s, CSS &endptr, intbase);
2191
2192 if (endptr == s)
2193 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2194 inttype, name);
2195
2196 if (errno != ERANGE)
dcb72db9 2197 if (tolower(*endptr) == 'g')
059ec3d9 2198 {
dcb72db9
JH		 2199 if (value > INT_MAX/(1024*1024) || value < INT_MIN/(1024*1024))
2200 errno = ERANGE;
2201 else
2202 value *= 1024*1024;
059ec3d9
PH		 2203 endptr++;
2204 }
dcb72db9 2205 else if (tolower(*endptr) == 'm')
059ec3d9 2206 {
dcb72db9
JH		 2207 if (value > INT_MAX/1024 || value < INT_MIN/1024)
2208 errno = ERANGE;
2209 else
2210 value *= 1024;
059ec3d9
PH		 2211 endptr++;
2212 }
dcb72db9
JH		 2213 else if (tolower(*endptr) == 'k')
2214 endptr++;
059ec3d9 2215 else
059ec3d9 2216 value = (value + 512)/1024;
059ec3d9
PH		 2217
2218 if (errno == ERANGE) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2219 "absolute value of integer \"%s\" is too large (overflow)", s);
2220
2221 while (isspace(*endptr)) endptr++;
2222 if (*endptr != 0)
2223 extra_chars_error(endptr, inttype, US"integer value for ", name);
2224 }
2225
2226 if (data_block == NULL)
2227 *((int *)(ol->value)) = value;
2228 else
5903c6ff 2229 *((int *)(US data_block + (long int)(ol->value))) = value;
059ec3d9
PH		 2230 break;
2231
2232 /* Fixed-point number: held to 3 decimal places. */
2233
2234 case opt_fixed:
2235 if (sscanf(CS s, "%d%n", &value, &count) != 1)
2236 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2237 "fixed-point number expected for %s", name);
2238
2239 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2240 "integer \"%s\" is too large (overflow)", s);
2241
2242 value *= 1000;
2243
2244 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2245 "integer \"%s\" is too large (overflow)", s);
2246
76ac1b5b
JH		 2247 /* We get a coverity error here for using count, as it derived
2248 from the tainted buffer pointed to by s, as parsed by sscanf().
4c04137d 2249 By the definition of sscanf we must be accessing between start
76ac1b5b
JH		 2250 and end of s (assuming it is nul-terminated...) so ignore the error. */
2251 /* coverity[tainted_data] */
059ec3d9
PH		 2252 if (s[count] == '.')
2253 {
2254 int d = 100;
2255 while (isdigit(s[++count]))
2256 {
2257 value += (s[count] - '0') * d;
2258 d /= 10;
2259 }
2260 }
2261
2262 while (isspace(s[count])) count++;
2263
2264 if (s[count] != 0)
2265 extra_chars_error(s+count, US"fixed-point value for ", name, US"");
2266
2267 if (data_block == NULL)
2268 *((int *)(ol->value)) = value;
2269 else
5903c6ff 2270 *((int *)(US data_block + (long int)(ol->value))) = value;
059ec3d9
PH		 2271 break;
2272
2273 /* There's a special routine to read time values. */
2274
2275 case opt_time:
2276 value = readconf_readtime(s, 0, FALSE);
2277 if (value < 0)
2278 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2279 name);
2280 if (data_block == NULL)
2281 *((int *)(ol->value)) = value;
2282 else
5903c6ff 2283 *((int *)(US data_block + (long int)(ol->value))) = value;
059ec3d9
PH		 2284 break;
2285
2286 /* A time list is a list of colon-separated times, with the first
2287 element holding the size of the list and the second the number of
2288 entries used. */
2289
2290 case opt_timelist:
2291 {
2292 int count = 0;
2293 int *list = (data_block == NULL)?
2294 (int *)(ol->value) :
5903c6ff 2295 (int *)(US data_block + (long int)(ol->value));
059ec3d9
PH		 2296
2297 if (*s != 0) for (count = 1; count <= list[0] - 2; count++)
2298 {
2299 int terminator = 0;
2300 uschar *snext = Ustrchr(s, ':');
2301 if (snext != NULL)
2302 {
2303 uschar *ss = snext;
2304 while (ss > s && isspace(ss[-1])) ss--;
2305 terminator = *ss;
2306 }
2307 value = readconf_readtime(s, terminator, FALSE);
2308 if (value < 0)
2309 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2310 name);
2311 if (count > 1 && value <= list[count])
2312 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2313 "time value out of order for %s", name);
2314 list[count+1] = value;
2315 if (snext == NULL) break;
2316 s = snext + 1;
2317 while (isspace(*s)) s++;
2318 }
2319
2320 if (count > list[0] - 2)
2321 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many time values for %s",
2322 name);
2323 if (count > 0 && list[2] == 0) count = 0;
2324 list[1] = count;
1ad6489e 2325 break;
059ec3d9
PH		 2326 }
2327
1ad6489e
JH		 2328 case opt_func:
2329 {
2330 void (*fn)() = ol->value;
2331 fn(name, s);
2332 break;
2333 }
059ec3d9
PH		 2334 }
2335
2336return TRUE;
2337}
2338
2339
2340
2341/*************************************************
2342* Print a time value *
2343*************************************************/
2344
2345/*
2346Argument: a time value in seconds
2347Returns: pointer to a fixed buffer containing the time as a string,
2348 in readconf_readtime() format
2349*/
2350
2351uschar *
2352readconf_printtime(int t)
2353{
2354int s, m, h, d, w;
2355uschar *p = time_buffer;
2356
ea49d0e1
PH		 2357if (t < 0)
2358 {
2359 *p++ = '-';
2360 t = -t;
2361 }
2362
059ec3d9
PH		 2363s = t % 60;
2364t /= 60;
2365m = t % 60;
2366t /= 60;
2367h = t % 24;
2368t /= 24;
2369d = t % 7;
2370w = t/7;
2371
32dfdf8b
JH		 2372if (w > 0) p += sprintf(CS p, "%dw", w);
2373if (d > 0) p += sprintf(CS p, "%dd", d);
2374if (h > 0) p += sprintf(CS p, "%dh", h);
2375if (m > 0) p += sprintf(CS p, "%dm", m);
059ec3d9
PH		 2376if (s > 0 || p == time_buffer) sprintf(CS p, "%ds", s);
2377
2378return time_buffer;
2379}
2380
2381
2382
2383/*************************************************
2384* Print an individual option value *
2385*************************************************/
2386
2387/* This is used by the -bP option, so prints to the standard output.
2388The entire options list is passed in as an argument, because some options come
2389in pairs - typically uid/gid settings, which can either be explicit numerical
2390values, or strings to be expanded later. If the numerical value is unset,
2391search for "*expand_<name>" to see if there is a string equivalent.
2392
2393Arguments:
2394 ol option entry, or NULL for an unknown option
2395 name option name
2396 options_block NULL for main configuration options; otherwise points to
2397 a driver block; if the option doesn't have opt_public
2398 set, then options_block->options_block is where the item
2399 resides.
2400 oltop points to the option list in which ol exists
2401 last one more than the offset of the last entry in optop
12f69989 2402 no_labels do not show "foo = " at the start.
059ec3d9 2403
2be324ee 2404Returns: boolean success
059ec3d9
PH		 2405*/
2406
2be324ee 2407static BOOL
059ec3d9 2408print_ol(optionlist *ol, uschar *name, void *options_block,
12f69989 2409 optionlist *oltop, int last, BOOL no_labels)
059ec3d9
PH		 2410{
2411struct passwd *pw;
2412struct group *gr;
2413optionlist *ol2;
2414void *value;
2415uid_t *uidlist;
2416gid_t *gidlist;
2417uschar *s;
2418uschar name2[64];
2419
2be324ee 2420if (!ol)
059ec3d9
PH		 2421 {
2422 printf("%s is not a known option\n", name);
2be324ee 2423 return FALSE;
059ec3d9
PH		 2424 }
2425
2426/* Non-admin callers cannot see options that have been flagged secure by the
2427"hide" prefix. */
2428
8768d548 2429if (!f.admin_user && ol->type & opt_secure)
059ec3d9 2430 {
12f69989
PP		 2431 if (no_labels)
2432 printf("%s\n", hidden);
2433 else
2434 printf("%s = %s\n", name, hidden);
2be324ee 2435 return TRUE;
059ec3d9
PH		 2436 }
2437
2438/* Else show the value of the option */
2439
2440value = ol->value;
2be324ee 2441if (options_block)
059ec3d9 2442 {
2be324ee 2443 if (!(ol->type & opt_public))
059ec3d9 2444 options_block = (void *)(((driver_instance *)options_block)->options_block);
5903c6ff 2445 value = (void *)(US options_block + (long int)value);
059ec3d9
PH		 2446 }
2447
2448switch(ol->type & opt_mask)
2449 {
2450 case opt_stringptr:
2451 case opt_rewrite: /* Show the text value */
2be324ee
JH		 2452 s = *(USS value);
2453 if (!no_labels) printf("%s = ", name);
2454 printf("%s\n", s ? string_printing2(s, FALSE) : US"");
2455 break;
059ec3d9
PH		 2456
2457 case opt_int:
2be324ee
JH		 2458 if (!no_labels) printf("%s = ", name);
2459 printf("%d\n", *((int *)value));
2460 break;
059ec3d9
PH		 2461
2462 case opt_mkint:
2463 {
2464 int x = *((int *)value);
2465 if (x != 0 && (x & 1023) == 0)
2466 {
2467 int c = 'K';
2468 x >>= 10;
2469 if ((x & 1023) == 0)
2470 {
2471 c = 'M';
2472 x >>= 10;
2473 }
12f69989
PP		 2474 if (!no_labels) printf("%s = ", name);
2475 printf("%d%c\n", x, c);
2476 }
2477 else
2478 {
2479 if (!no_labels) printf("%s = ", name);
2480 printf("%d\n", x);
059ec3d9 2481 }
059ec3d9 2482 }
2be324ee 2483 break;
059ec3d9
PH		 2484
2485 case opt_Kint:
2486 {
2487 int x = *((int *)value);
12f69989
PP		 2488 if (!no_labels) printf("%s = ", name);
2489 if (x == 0) printf("0\n");
2be324ee
JH		 2490 else if ((x & 1023) == 0) printf("%dM\n", x >> 10);
2491 else printf("%dK\n", x);
059ec3d9 2492 }
2be324ee 2493 break;
059ec3d9
PH		 2494
2495 case opt_octint:
2be324ee
JH		 2496 if (!no_labels) printf("%s = ", name);
2497 printf("%#o\n", *((int *)value));
2498 break;
059ec3d9
PH		 2499
2500 /* Can be negative only when "unset", in which case integer */
2501
2502 case opt_fixed:
2503 {
2504 int x = *((int *)value);
2505 int f = x % 1000;
2506 int d = 100;
2507 if (x < 0) printf("%s =\n", name); else
2508 {
12f69989
PP		 2509 if (!no_labels) printf("%s = ", name);
2510 printf("%d.", x/1000);
059ec3d9
PH		 2511 do
2512 {
2513 printf("%d", f/d);
2514 f %= d;
2515 d /= 10;
2516 }
2517 while (f != 0);
2518 printf("\n");
2519 }
2520 }
2be324ee 2521 break;
059ec3d9
PH		 2522
2523 /* If the numerical value is unset, try for the string value */
2524
2525 case opt_expand_uid:
2be324ee 2526 if (! *get_set_flag(name, oltop, last, options_block))
059ec3d9 2527 {
2be324ee
JH		 2528 sprintf(CS name2, "*expand_%.50s", name);
2529 if ((ol2 = find_option(name2, oltop, last)))
2530 {
2531 void *value2 = ol2->value;
2532 if (options_block)
2533 value2 = (void *)(US options_block + (long int)value2);
2534 s = *(USS value2);
2535 if (!no_labels) printf("%s = ", name);
2536 printf("%s\n", s ? string_printing(s) : US"");
2537 break;
2538 }
059ec3d9 2539 }
059ec3d9 2540
2be324ee 2541 /* Else fall through */
059ec3d9
PH		 2542
2543 case opt_uid:
2be324ee
JH		 2544 if (!no_labels) printf("%s = ", name);
2545 if (! *get_set_flag(name, oltop, last, options_block))
2546 printf("\n");
2547 else
2548 if ((pw = getpwuid(*((uid_t *)value))))
2549 printf("%s\n", pw->pw_name);
2550 else
2551 printf("%ld\n", (long int)(*((uid_t *)value)));
2552 break;
059ec3d9
PH		 2553
2554 /* If the numerical value is unset, try for the string value */
2555
2556 case opt_expand_gid:
2be324ee 2557 if (! *get_set_flag(name, oltop, last, options_block))
059ec3d9 2558 {
2be324ee
JH		 2559 sprintf(CS name2, "*expand_%.50s", name);
2560 if ( (ol2 = find_option(name2, oltop, last))
2561 && (ol2->type & opt_mask) == opt_stringptr)
2562 {
2563 void *value2 = ol2->value;
2564 if (options_block)
2565 value2 = (void *)(US options_block + (long int)value2);
2566 s = *(USS value2);
2567 if (!no_labels) printf("%s = ", name);
2568 printf("%s\n", s ? string_printing(s) : US"");
2569 break;
2570 }
059ec3d9 2571 }
059ec3d9 2572
2be324ee 2573 /* Else fall through */
059ec3d9
PH		 2574
2575 case opt_gid:
2be324ee
JH		 2576 if (!no_labels) printf("%s = ", name);
2577 if (! *get_set_flag(name, oltop, last, options_block))
2578 printf("\n");
2579 else
2580 if ((gr = getgrgid(*((int *)value))))
2581 printf("%s\n", gr->gr_name);
2582 else
2583 printf("%ld\n", (long int)(*((int *)value)));
2584 break;
059ec3d9
PH		 2585
2586 case opt_uidlist:
2be324ee
JH		 2587 uidlist = *((uid_t **)value);
2588 if (!no_labels) printf("%s =", name);
2589 if (uidlist)
059ec3d9 2590 {
2be324ee
JH		 2591 int i;
2592 uschar sep = no_labels ? '\0' : ' ';
2593 for (i = 1; i <= (int)(uidlist[0]); i++)
2594 {
2595 uschar *name = NULL;
2596 if ((pw = getpwuid(uidlist[i]))) name = US pw->pw_name;
2597 if (sep != '\0') printf("%c", sep);
2598 if (name) printf("%s", name);
2599 else printf("%ld", (long int)(uidlist[i]));
2600 sep = ':';
2601 }
059ec3d9 2602 }
2be324ee
JH		 2603 printf("\n");
2604 break;
059ec3d9
PH		 2605
2606 case opt_gidlist:
2be324ee
JH		 2607 gidlist = *((gid_t **)value);
2608 if (!no_labels) printf("%s =", name);
2609 if (gidlist)
059ec3d9 2610 {
2be324ee
JH		 2611 int i;
2612 uschar sep = no_labels ? '\0' : ' ';
2613 for (i = 1; i <= (int)(gidlist[0]); i++)
2614 {
2615 uschar *name = NULL;
2616 if ((gr = getgrgid(gidlist[i]))) name = US gr->gr_name;
2617 if (sep != '\0') printf("%c", sep);
2618 if (name) printf("%s", name);
2619 else printf("%ld", (long int)(gidlist[i]));
2620 sep = ':';
2621 }
059ec3d9 2622 }
2be324ee
JH		 2623 printf("\n");
2624 break;
059ec3d9
PH		 2625
2626 case opt_time:
2be324ee
JH		 2627 if (!no_labels) printf("%s = ", name);
2628 printf("%s\n", readconf_printtime(*((int *)value)));
2629 break;
059ec3d9
PH		 2630
2631 case opt_timelist:
2632 {
2633 int i;
2634 int *list = (int *)value;
12f69989 2635 if (!no_labels) printf("%s = ", name);
059ec3d9 2636 for (i = 0; i < list[1]; i++)
2be324ee 2637 printf("%s%s", i == 0 ? "" : ":", readconf_printtime(list[i+2]));
059ec3d9
PH		 2638 printf("\n");
2639 }
2be324ee 2640 break;
059ec3d9
PH		 2641
2642 case opt_bit:
2be324ee
JH		 2643 printf("%s%s\n", ((*((int *)value)) & (1 << ((ol->type >> 16) & 31)))?
2644 "" : "no_", name);
2645 break;
059ec3d9
PH		 2646
2647 case opt_expand_bool:
2be324ee
JH		 2648 sprintf(CS name2, "*expand_%.50s", name);
2649 if ((ol2 = find_option(name2, oltop, last)) && ol2->value)
059ec3d9 2650 {
2be324ee
JH		 2651 void *value2 = ol2->value;
2652 if (options_block)
2653 value2 = (void *)(US options_block + (long int)value2);
2654 s = *(USS value2);
2655 if (s)
2656 {
2657 if (!no_labels) printf("%s = ", name);
2658 printf("%s\n", string_printing(s));
2659 break;
2660 }
2661 /* s == NULL => string not set; fall through */
059ec3d9 2662 }
059ec3d9 2663
2be324ee 2664 /* Fall through */
059ec3d9
PH		 2665
2666 case opt_bool:
2667 case opt_bool_verify:
2668 case opt_bool_set:
2be324ee
JH		 2669 printf("%s%s\n", (*((BOOL *)value))? "" : "no_", name);
2670 break;
059ec3d9 2671 }
2be324ee 2672return TRUE;
059ec3d9
PH		 2673}
2674
2675
2676
2677/*************************************************
2678* Print value from main configuration *
2679*************************************************/
2680
2681/* This function, called as a result of encountering the -bP option,
2682causes the value of any main configuration variable to be output if the
2683second argument is NULL. There are some special values:
2684
2685 all print all main configuration options
44f6c01d
HSHR		 2686 config_file print the name of the configuration file
2687 (configure_file will still work, for backward
2688 compatibility)
059ec3d9
PH		 2689 routers print the routers' configurations
2690 transports print the transports' configuration
2691 authenticators print the authenticators' configuration
5d9c27ec 2692 macros print the macros' configuration
059ec3d9
PH		 2693 router_list print a list of router names
2694 transport_list print a list of transport names
2695 authenticator_list print a list of authentication mechanism names
5d9c27ec 2696 macro_list print a list of macro names
059ec3d9
PH		 2697 +name print a named list item
2698 local_scan print the local_scan options
bf3c2c6b 2699 config print the configuration as it is parsed
bc3c7bb7 2700 environment print the used execution environment
059ec3d9 2701
5d9c27ec
TK		 2702If the second argument is not NULL, it must be one of "router", "transport",
2703"authenticator" or "macro" in which case the first argument identifies the
2704driver whose options are to be printed.
059ec3d9
PH		 2705
2706Arguments:
2707 name option name if type == NULL; else driver name
2708 type NULL or driver type name, as described above
12f69989 2709 no_labels avoid the "foo = " at the start of an item
059ec3d9 2710
2be324ee 2711Returns: Boolean success
059ec3d9
PH		 2712*/
2713
2be324ee 2714BOOL
12f69989 2715readconf_print(uschar *name, uschar *type, BOOL no_labels)
059ec3d9
PH		 2716{
2717BOOL names_only = FALSE;
2718optionlist *ol;
2719optionlist *ol2 = NULL;
2720driver_instance *d = NULL;
5d9c27ec 2721macro_item *m;
059ec3d9
PH		 2722int size = 0;
2723
2be324ee 2724if (!type)
059ec3d9
PH		 2725 {
2726 if (*name == '+')
2727 {
2728 int i;
2729 tree_node *t;
2730 BOOL found = FALSE;
2731 static uschar *types[] = { US"address", US"domain", US"host",
2732 US"localpart" };
2733 static tree_node **anchors[] = { &addresslist_anchor, &domainlist_anchor,
2734 &hostlist_anchor, &localpartlist_anchor };
2735
2736 for (i = 0; i < 4; i++)
2be324ee 2737 if ((t = tree_search(*(anchors[i]), name+1)))
059ec3d9
PH		 2738 {
2739 found = TRUE;
12f69989
PP		 2740 if (no_labels)
2741 printf("%s\n", ((namedlist_block *)(t->data.ptr))->string);
2742 else
2743 printf("%slist %s = %s\n", types[i], name+1,
2744 ((namedlist_block *)(t->data.ptr))->string);
059ec3d9 2745 }
059ec3d9
PH		 2746
2747 if (!found)
2748 printf("no address, domain, host, or local part list called \"%s\" "
2749 "exists\n", name+1);
2750
2be324ee 2751 return found;
059ec3d9
PH		 2752 }
2753
d7bed771
JH		 2754 if ( Ustrcmp(name, "configure_file") == 0
2755 || Ustrcmp(name, "config_file") == 0)
059ec3d9
PH		 2756 {
2757 printf("%s\n", CS config_main_filename);
2be324ee 2758 return TRUE;
059ec3d9
PH		 2759 }
2760
2761 if (Ustrcmp(name, "all") == 0)
2762 {
2763 for (ol = optionlist_config;
c0b9d3e8 2764 ol < optionlist_config + nelem(optionlist_config); ol++)
2be324ee
JH		 2765 if (!(ol->type & opt_hidden))
2766 (void) print_ol(ol, US ol->name, NULL,
2767 optionlist_config, nelem(optionlist_config),
2768 no_labels);
2769 return TRUE;
059ec3d9
PH		 2770 }
2771
2772 if (Ustrcmp(name, "local_scan") == 0)
2773 {
2be324ee 2774#ifndef LOCAL_SCAN_HAS_OPTIONS
059ec3d9 2775 printf("local_scan() options are not supported\n");
2be324ee
JH		 2776 return FALSE;
2777#else
059ec3d9
PH		 2778 for (ol = local_scan_options;
2779 ol < local_scan_options + local_scan_options_count; ol++)
2be324ee
JH		 2780 (void) print_ol(ol, US ol->name, NULL, local_scan_options,
2781 local_scan_options_count, no_labels);
2782 return TRUE;
2783#endif
059ec3d9
PH		 2784 }
2785
bf3c2c6b
HSHR		 2786 if (Ustrcmp(name, "config") == 0)
2787 {
8768d548 2788 print_config(f.admin_user, no_labels);
2be324ee 2789 return TRUE;
bf3c2c6b
HSHR		 2790 }
2791
059ec3d9
PH		 2792 if (Ustrcmp(name, "routers") == 0)
2793 {
2794 type = US"router";
2795 name = NULL;
2796 }
2797 else if (Ustrcmp(name, "transports") == 0)
2798 {
2799 type = US"transport";
2800 name = NULL;
2801 }
059ec3d9
PH		 2802 else if (Ustrcmp(name, "authenticators") == 0)
2803 {
2804 type = US"authenticator";
2805 name = NULL;
2806 }
5d9c27ec 2807 else if (Ustrcmp(name, "macros") == 0)
059ec3d9 2808 {
5d9c27ec 2809 type = US"macro";
059ec3d9 2810 name = NULL;
059ec3d9 2811 }
059ec3d9
PH		 2812 else if (Ustrcmp(name, "router_list") == 0)
2813 {
2814 type = US"router";
2815 name = NULL;
2816 names_only = TRUE;
2817 }
2818 else if (Ustrcmp(name, "transport_list") == 0)
2819 {
2820 type = US"transport";
2821 name = NULL;
2822 names_only = TRUE;
2823 }
5d9c27ec
TK		 2824 else if (Ustrcmp(name, "authenticator_list") == 0)
2825 {
2826 type = US"authenticator";
2827 name = NULL;
2828 names_only = TRUE;
2829 }
5d9c27ec
TK		 2830 else if (Ustrcmp(name, "macro_list") == 0)
2831 {
2832 type = US"macro";
2833 name = NULL;
2834 names_only = TRUE;
2835 }
bc3c7bb7
HSHR		 2836 else if (Ustrcmp(name, "environment") == 0)
2837 {
2838 if (environ)
2839 {
77560253 2840 uschar ** p;
bc3c7bb7 2841 for (p = USS environ; *p; p++) ;
84bbb4d8 2842 qsort(environ, p - USS environ, sizeof(*p), string_compare_by_pointer);
bc3c7bb7
HSHR		 2843
2844 for (p = USS environ; *p; p++)
2845 {
77560253
JH		 2846 uschar * q;
2847 if (no_labels && (q = Ustrchr(*p, '='))) *q = '\0';
f2cb6292 2848 puts(CS *p);
bc3c7bb7
HSHR		 2849 }
2850 }
2be324ee 2851 return TRUE;
bc3c7bb7
HSHR		 2852 }
2853
059ec3d9 2854 else
2be324ee
JH		 2855 return print_ol(find_option(name,
2856 optionlist_config, nelem(optionlist_config)),
c0b9d3e8 2857 name, NULL, optionlist_config, nelem(optionlist_config), no_labels);
059ec3d9
PH		 2858 }
2859
2860/* Handle the options for a router or transport. Skip options that are flagged
2861as hidden. Some of these are options with names starting with '*', used for
2862internal alternative representations of other options (which the printing
2863function will sort out). Others are synonyms kept for backward compatibility.
2864*/
2865
2866if (Ustrcmp(type, "router") == 0)
2867 {
2868 d = (driver_instance *)routers;
2869 ol2 = optionlist_routers;
2870 size = optionlist_routers_size;
2871 }
2872else if (Ustrcmp(type, "transport") == 0)
2873 {
2874 d = (driver_instance *)transports;
2875 ol2 = optionlist_transports;
2876 size = optionlist_transports_size;
2877 }
2878else if (Ustrcmp(type, "authenticator") == 0)
2879 {
2880 d = (driver_instance *)auths;
2881 ol2 = optionlist_auths;
2882 size = optionlist_auths_size;
2883 }
2884
5d9c27ec
TK		 2885else if (Ustrcmp(type, "macro") == 0)
2886 {
2887 /* People store passwords in macros and they were previously not available
2888 for printing. So we have an admin_users restriction. */
8768d548 2889 if (!f.admin_user)
5d9c27ec
TK		 2890 {
2891 fprintf(stderr, "exim: permission denied\n");
2be324ee 2892 return FALSE;
5d9c27ec 2893 }
1a7c9a48
JH		 2894 for (m = macros; m; m = m->next)
2895 if (!name || Ustrcmp(name, m->name) == 0)
2be324ee 2896 {
1a7c9a48
JH		 2897 if (names_only)
2898 printf("%s\n", CS m->name);
1bca4f5f
PP		 2899 else if (no_labels)
2900 printf("%s\n", CS m->replacement);
1a7c9a48
JH		 2901 else
2902 printf("%s=%s\n", CS m->name, CS m->replacement);
2903 if (name)
2904 return TRUE;
2be324ee 2905 }
1a7c9a48 2906 if (!name) return TRUE;
165acdd1 2907
1a7c9a48
JH		 2908 printf("%s %s not found\n", type, name);
2909 return FALSE;
5d9c27ec
TK		 2910 }
2911
059ec3d9
PH		 2912if (names_only)
2913 {
165acdd1 2914 for (; d; d = d->next) printf("%s\n", CS d->name);
1a7c9a48 2915 return TRUE;
059ec3d9
PH		 2916 }
2917
2918/* Either search for a given driver, or print all of them */
2919
165acdd1 2920for (; d; d = d->next)
059ec3d9 2921 {
2be324ee 2922 BOOL rc = FALSE;
165acdd1 2923 if (!name)
059ec3d9 2924 printf("\n%s %s:\n", d->name, type);
1a7c9a48 2925 else if (Ustrcmp(d->name, name) != 0) continue;
059ec3d9
PH		 2926
2927 for (ol = ol2; ol < ol2 + size; ol++)
2be324ee
JH		 2928 if (!(ol->type & opt_hidden))
2929 rc |= print_ol(ol, US ol->name, d, ol2, size, no_labels);
059ec3d9
PH		 2930
2931 for (ol = d->info->options;
2932 ol < d->info->options + *(d->info->options_count); ol++)
2be324ee
JH		 2933 if (!(ol->type & opt_hidden))
2934 rc |= print_ol(ol, US ol->name, d, d->info->options,
2935 *d->info->options_count, no_labels);
165acdd1 2936
2be324ee 2937 if (name) return rc;
059ec3d9 2938 }
2be324ee
JH		 2939if (!name) return TRUE;
2940
2941printf("%s %s not found\n", type, name);
2942return FALSE;
059ec3d9
PH		 2943}
2944
2945
2946
2947/*************************************************
2948* Read a named list item *
2949*************************************************/
2950
2951/* This function reads a name and a list (i.e. string). The name is used to
2952save the list in a tree, sorted by its name. Each entry also has a number,
2953which can be used for caching tests, but if the string contains any expansion
2954items other than $key, the number is set negative to inhibit caching. This
2955mechanism is used for domain, host, and address lists that are referenced by
2956the "+name" syntax.
2957
2958Arguments:
2959 anchorp points to the tree anchor
2960 numberp points to the current number for this tree
2961 max the maximum number permitted
2962 s the text of the option line, starting immediately after the name
2963 of the list type
2964 tname the name of the list type, for messages
2965
2966Returns: nothing
2967*/
2968
2969static void
2970read_named_list(tree_node **anchorp, int *numberp, int max, uschar *s,
2971 uschar *tname)
2972{
2973BOOL forcecache = FALSE;
2974uschar *ss;
2975tree_node *t;
2976namedlist_block *nb = store_get(sizeof(namedlist_block));
2977
2978if (Ustrncmp(s, "_cache", 6) == 0)
2979 {
2980 forcecache = TRUE;
2981 s += 6;
2982 }
2983
2984if (!isspace(*s))
2985 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unrecognized configuration line");
2986
2987if (*numberp >= max)
2988 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many named %ss (max is %d)\n",
2989 tname, max);
2990
2991while (isspace(*s)) s++;
2992ss = s;
2993while (isalnum(*s) || *s == '_') s++;
2994t = store_get(sizeof(tree_node) + s-ss);
2995Ustrncpy(t->name, ss, s-ss);
2996t->name[s-ss] = 0;
2997while (isspace(*s)) s++;
2998
2999if (!tree_insertnode(anchorp, t))
3000 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3001 "duplicate name \"%s\" for a named %s", t->name, tname);
3002
3003t->data.ptr = nb;
3004nb->number = *numberp;
3005*numberp += 1;
3006
3007if (*s++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3008 "missing '=' after \"%s\"", t->name);
3009while (isspace(*s)) s++;
3010nb->string = read_string(s, t->name);
3011nb->cache_data = NULL;
3012
3013/* Check the string for any expansions; if any are found, mark this list
3014uncacheable unless the user has explicited forced caching. */
3015
3016if (!forcecache && Ustrchr(nb->string, '$') != NULL) nb->number = -1;
3017}
3018
3019
3020
3021
3022/*************************************************
3023* Unpick data for a rate limit *
3024*************************************************/
3025
3026/* This function is called to unpick smtp_ratelimit_{mail,rcpt} into four
3027separate values.
3028
3029Arguments:
3030 s string, in the form t,b,f,l
3031 where t is the threshold (integer)
3032 b is the initial delay (time)
3033 f is the multiplicative factor (fixed point)
3034 k is the maximum time (time)
3035 threshold where to store threshold
3036 base where to store base in milliseconds
3037 factor where to store factor in milliseconds
3038 limit where to store limit
3039
3040Returns: nothing (panics on error)
3041*/
3042
3043static void
3044unpick_ratelimit(uschar *s, int *threshold, int *base, double *factor,
3045 int *limit)
3046{
3047uschar bstring[16], lstring[16];
3048
3049if (sscanf(CS s, "%d, %15[0123456789smhdw.], %lf, %15s", threshold, bstring,
3050 factor, lstring) == 4)
3051 {
3052 *base = readconf_readtime(bstring, 0, TRUE);
3053 *limit = readconf_readtime(lstring, 0, TRUE);
3054 if (*base >= 0 && *limit >= 0) return;
3055 }
3056log_write(0, LOG_MAIN|LOG_PANIC_DIE, "malformed ratelimit data: %s", s);
3057}
3058
3059
3060
3061
3375e053
PP		 3062/*************************************************
3063* Drop privs for checking TLS config *
3064*************************************************/
3065
3066/* We want to validate TLS options during readconf, but do not want to be
3067root when we call into the TLS library, in case of library linkage errors
3068which cause segfaults; before this check, those were always done as the Exim
3069runtime user and it makes sense to continue with that.
3070
3071Assumes: tls_require_ciphers has been set, if it will be
3072 exim_user has been set, if it will be
3073 exim_group has been set, if it will be
3074
3075Returns: bool for "okay"; false will cause caller to immediately exit.
3076*/
3077
3078#ifdef SUPPORT_TLS
3079static BOOL
34e86e20 3080tls_dropprivs_validate_require_cipher(BOOL nowarn)
3375e053
PP		 3081{
3082const uschar *errmsg;
3083pid_t pid;
3084int rc, status;
3085void (*oldsignal)(int);
3086
23f3dc67
JH		 3087/* If TLS will never be used, no point checking ciphers */
3088
3089if ( !tls_advertise_hosts
3090 || !*tls_advertise_hosts
3091 || Ustrcmp(tls_advertise_hosts, ":") == 0
3092 )
3093 return TRUE;
34e86e20 3094else if (!nowarn && !tls_certificate)
23bb6982
JH		 3095 log_write(0, LOG_MAIN,
3096 "Warning: No server certificate defined; will use a selfsigned one.\n"
23f3dc67
JH		 3097 " Suggested action: either install a certificate or change tls_advertise_hosts option");
3098
3375e053
PP		 3099oldsignal = signal(SIGCHLD, SIG_DFL);
3100
3101fflush(NULL);
3102if ((pid = fork()) < 0)
3103 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "fork failed for TLS check");
3104
3105if (pid == 0)
3106 {
1d7a353e
PP		 3107 /* in some modes, will have dropped privilege already */
3108 if (!geteuid())
3109 exim_setugid(exim_uid, exim_gid, FALSE,
3110 US"calling tls_validate_require_cipher");
3375e053 3111
cf0c6164 3112 if ((errmsg = tls_validate_require_cipher()))
3375e053
PP		 3113 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3114 "tls_require_ciphers invalid: %s", errmsg);
3375e053
PP		 3115 fflush(NULL);
3116 _exit(0);
3117 }
3118
3119do {
3120 rc = waitpid(pid, &status, 0);
3121} while (rc < 0 && errno == EINTR);
3122
9d26b8c0 3123DEBUG(D_tls)
3375e053
PP		 3124 debug_printf("tls_validate_require_cipher child %d ended: status=0x%x\n",
3125 (int)pid, status);
3126
3127signal(SIGCHLD, oldsignal);
3128
3129return status == 0;
3130}
3131#endif /* SUPPORT_TLS */
3132
3133
3134
3135
059ec3d9
PH		 3136/*************************************************
3137* Read main configuration options *
3138*************************************************/
3139
3140/* This function is the first to be called for configuration reading. It
3141opens the configuration file and reads general configuration settings until
3142it reaches the end of the configuration section. The file is then left open so
3143that the remaining configuration data can subsequently be read if needed for
3144this run of Exim.
3145
3146The configuration file must be owned either by root or exim, and be writeable
3147only by root or uid/gid exim. The values for Exim's uid and gid can be changed
3148in the config file, so the test is done on the compiled in values. A slight
3149anomaly, to be carefully documented.
3150
3151The name of the configuration file is taken from a list that is included in the
3152binary of Exim. It can be altered from the command line, but if that is done,
3153root privilege is immediately withdrawn unless the caller is root or exim.
3154The first file on the list that exists is used.
3155
3156For use on multiple systems that share file systems, first look for a
3157configuration file whose name has the current node name on the end. If that is
3158not found, try the generic name. For really contorted configurations, that run
3159multiple Exims with different uid settings, first try adding the effective uid
3160before the node name. These complications are going to waste resources on most
3161systems. Therefore they are available only when requested by compile-time
3162options. */
3163
3164void
34e86e20 3165readconf_main(BOOL nowarn)
059ec3d9
PH		 3166{
3167int sep = 0;
3168struct stat statbuf;
3169uschar *s, *filename;
55414b25 3170const uschar *list = config_main_filelist;
059ec3d9
PH		 3171
3172/* Loop through the possible file names */
3173
8e6c4db1 3174while((filename = string_nextinlist(&list, &sep, big_buffer, big_buffer_size)))
059ec3d9 3175 {
bc3c7bb7 3176
059ec3d9
PH		 3177 /* Cut out all the fancy processing unless specifically wanted */
3178
3179 #if defined(CONFIGURE_FILE_USE_NODE) || defined(CONFIGURE_FILE_USE_EUID)
3180 uschar *suffix = filename + Ustrlen(filename);
3181
3182 /* Try for the node-specific file if a node name exists */
3183
3184 #ifdef CONFIGURE_FILE_USE_NODE
3185 struct utsname uts;
3186 if (uname(&uts) >= 0)
3187 {
3188 #ifdef CONFIGURE_FILE_USE_EUID
3189 sprintf(CS suffix, ".%ld.%.256s", (long int)original_euid, uts.nodename);
3190 config_file = Ufopen(filename, "rb");
3191 if (config_file == NULL)
3192 #endif /* CONFIGURE_FILE_USE_EUID */
3193 {
3194 sprintf(CS suffix, ".%.256s", uts.nodename);
3195 config_file = Ufopen(filename, "rb");
3196 }
3197 }
3198 #endif /* CONFIGURE_FILE_USE_NODE */
3199
3200 /* Otherwise, try the generic name, possibly with the euid added */
3201
3202 #ifdef CONFIGURE_FILE_USE_EUID
3203 if (config_file == NULL)
3204 {
3205 sprintf(CS suffix, ".%ld", (long int)original_euid);
3206 config_file = Ufopen(filename, "rb");
3207 }
3208 #endif /* CONFIGURE_FILE_USE_EUID */
3209
3210 /* Finally, try the unadorned name */
3211
3212 if (config_file == NULL)
3213 {
3214 *suffix = 0;
3215 config_file = Ufopen(filename, "rb");
3216 }
3217 #else /* if neither defined */
3218
3219 /* This is the common case when the fancy processing is not included. */
3220
3221 config_file = Ufopen(filename, "rb");
3222 #endif
3223
3224 /* If the file does not exist, continue to try any others. For any other
3225 error, break out (and die). */
3226
3227 if (config_file != NULL || errno != ENOENT) break;
3228 }
3229
3230/* On success, save the name for verification; config_filename is used when
3231logging configuration errors (it changes for .included files) whereas
3232config_main_filename is the name shown by -bP. Failure to open a configuration
3233file is a serious disaster. */
3234
8e7e1357 3235if (config_file)
059ec3d9 3236 {
8e7e1357 3237 uschar *last_slash = Ustrrchr(filename, '/');
059ec3d9 3238 config_filename = config_main_filename = string_copy(filename);
98b8312f 3239
8e7e1357
HSHR		 3240 /* The config_main_directory we need for the $config_dir expansion.
3241 config_main_filename we need for $config_file expansion.
29f67888
HSHR		 3242 And config_dir is the directory of the current configuration, used for
3243 relative .includes. We do need to know it's name, as we change our working
3244 directory later. */
3245
3246 if (filename[0] == '/')
8e7e1357 3247 config_main_directory = last_slash == filename ? US"/" : string_copyn(filename, last_slash - filename);
29f67888
HSHR		 3248 else
3249 {
3250 /* relative configuration file name: working dir + / + basename(filename) */
3251
863bd541 3252 uschar buf[PATH_MAX];
acec9514 3253 gstring * g;
29f67888 3254
863bd541 3255 if (os_getcwd(buf, PATH_MAX) == NULL)
29f67888
HSHR		 3256 {
3257 perror("exim: getcwd");
3258 exit(EXIT_FAILURE);
3259 }
acec9514 3260 g = string_cat(NULL, buf);
29f67888
HSHR		 3261
3262 /* If the dir does not end with a "/", append one */
acec9514
JH		 3263 if (g->s[g->ptr-1] != '/')
3264 g = string_catn(g, US"/", 1);
29f67888
HSHR		 3265
3266 /* If the config file contains a "/", extract the directory part */
8e7e1357 3267 if (last_slash)
acec9514 3268 g = string_catn(g, filename, last_slash - filename);
8e7e1357 3269
acec9514 3270 config_main_directory = string_from_gstring(g);
29f67888
HSHR		 3271 }
3272 config_directory = config_main_directory;
059ec3d9
PH		 3273 }
3274else
3275 {
3276 if (filename == NULL)
3277 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "non-existent configuration file(s): "
3278 "%s", config_main_filelist);
3279 else
3280 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "%s", string_open_failed(errno,
3281 "configuration file %s", filename));
3282 }
3283
29f67888
HSHR		 3284/* Now, once we found and opened our configuration file, we change the directory
3285to a safe place. Later we change to $spool_directory. */
3286
3287if (Uchdir("/") < 0)
3288 {
3289 perror("exim: chdir `/': ");
3290 exit(EXIT_FAILURE);
3291 }
3292
e2f5dc15 3293/* Check the status of the file we have opened, if we have retained root
fea24b2e 3294privileges and the file isn't /dev/null (which *should* be 0666). */
059ec3d9 3295
8768d548 3296if (f.trusted_config && Ustrcmp(filename, US"/dev/null"))
059ec3d9
PH		 3297 {
3298 if (fstat(fileno(config_file), &statbuf) != 0)
3299 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to stat configuration file %s",
3300 big_buffer);
3301
c1d94452 3302 if ((statbuf.st_uid != root_uid /* owner not root */
059ec3d9
PH		 3303 #ifdef CONFIGURE_OWNER
3304 && statbuf.st_uid != config_uid /* owner not the special one */
3305 #endif
3306 ) || /* or */
c1d94452 3307 (statbuf.st_gid != root_gid /* group not root & */
35edf2ff
PH		 3308 #ifdef CONFIGURE_GROUP
3309 && statbuf.st_gid != config_gid /* group not the special one */
8e669ac1 3310 #endif
35edf2ff 3311 && (statbuf.st_mode & 020) != 0) || /* group writeable */
059ec3d9
PH		 3312 /* or */
3313 ((statbuf.st_mode & 2) != 0)) /* world writeable */
3314
3315 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Exim configuration file %s has the "
3316 "wrong owner, group, or mode", big_buffer);
3317 }
3318
3319/* Process the main configuration settings. They all begin with a lower case
3320letter. If we see something starting with an upper case letter, it is taken as
3321a macro definition. */
3322
5bfe3b35 3323while ((s = get_config_line()))
059ec3d9 3324 {
af542dcf
HSHR		 3325 if (config_lineno == 1 && Ustrstr(s, "\xef\xbb\xbf") == s)
3326 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3327 "found unexpected BOM (Byte Order Mark)");
3328
9650d98a
JH		 3329 if (isupper(s[0]))
3330 { if (!macro_read_assignment(s)) exim_exit(EXIT_FAILURE, US""); }
059ec3d9
PH		 3331
3332 else if (Ustrncmp(s, "domainlist", 10) == 0)
3333 read_named_list(&domainlist_anchor, &domainlist_count,
3334 MAX_NAMED_LIST, s+10, US"domain list");
3335
3336 else if (Ustrncmp(s, "hostlist", 8) == 0)
3337 read_named_list(&hostlist_anchor, &hostlist_count,
3338 MAX_NAMED_LIST, s+8, US"host list");
3339
3340 else if (Ustrncmp(s, US"addresslist", 11) == 0)
3341 read_named_list(&addresslist_anchor, &addresslist_count,
3342 MAX_NAMED_LIST, s+11, US"address list");
3343
3344 else if (Ustrncmp(s, US"localpartlist", 13) == 0)
3345 read_named_list(&localpartlist_anchor, &localpartlist_count,
3346 MAX_NAMED_LIST, s+13, US"local part list");
3347
3348 else
3349 (void) readconf_handle_option(s, optionlist_config, optionlist_config_size,
3350 NULL, US"main option \"%s\" unknown");
3351 }
3352
3353
3354/* If local_sender_retain is set, local_from_check must be unset. */
3355
3356if (local_sender_retain && local_from_check)
3357 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "both local_from_check and "
3358 "local_sender_retain are set; this combination is not allowed");
3359
3360/* If the timezone string is empty, set it to NULL, implying no TZ variable
3361wanted. */
3362
3363if (timezone_string != NULL && *timezone_string == 0) timezone_string = NULL;
3364
944a9c55
PH		 3365/* The max retry interval must not be greater than 24 hours. */
3366
3367if (retry_interval_max > 24*60*60) retry_interval_max = 24*60*60;
3368
059ec3d9
PH		 3369/* remote_max_parallel must be > 0 */
3370
3371if (remote_max_parallel <= 0) remote_max_parallel = 1;
3372
6a3f1455
PH		 3373/* Save the configured setting of freeze_tell, so we can re-instate it at the
3374start of a new SMTP message. */
3375
3376freeze_tell_config = freeze_tell;
3377
059ec3d9
PH		 3378/* The primary host name may be required for expansion of spool_directory
3379and log_file_path, so make sure it is set asap. It is obtained from uname(),
3380but if that yields an unqualified value, make a FQDN by using gethostbyname to
3381canonize it. Some people like upper case letters in their host names, so we
3382don't force the case. */
3383
3384if (primary_hostname == NULL)
3385 {
55414b25 3386 const uschar *hostname;
059ec3d9
PH		 3387 struct utsname uts;
3388 if (uname(&uts) < 0)
3389 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "uname() failed to yield host name");
3390 hostname = US uts.nodename;
3391
3392 if (Ustrchr(hostname, '.') == NULL)
3393 {
3394 int af = AF_INET;
3395 struct hostent *hostdata;
3396
3397 #if HAVE_IPV6
7e66e54d 3398 if (!disable_ipv6 && (dns_ipv4_lookup == NULL ||
55414b25
JH		 3399 match_isinlist(hostname, CUSS &dns_ipv4_lookup, 0, NULL, NULL,
3400 MCL_DOMAIN, TRUE, NULL) != OK))
059ec3d9
PH		 3401 af = AF_INET6;
3402 #else
3403 af = AF_INET;
3404 #endif
3405
3406 for (;;)
3407 {
3408 #if HAVE_IPV6
3409 #if HAVE_GETIPNODEBYNAME
3410 int error_num;
3411 hostdata = getipnodebyname(CS hostname, af, 0, &error_num);
3412 #else
3413 hostdata = gethostbyname2(CS hostname, af);
3414 #endif
3415 #else
3416 hostdata = gethostbyname(CS hostname);
3417 #endif
3418
3419 if (hostdata != NULL)
3420 {
3421 hostname = US hostdata->h_name;
3422 break;
3423 }
3424
3425 if (af == AF_INET) break;
3426 af = AF_INET;
3427 }
3428 }
3429
3430 primary_hostname = string_copy(hostname);
3431 }
3432
3433/* Set up default value for smtp_active_hostname */
3434
3435smtp_active_hostname = primary_hostname;
3436
3437/* If spool_directory wasn't set in the build-time configuration, it must have
3438got set above. Of course, writing to the log may not work if log_file_path is
3439not set, but it will at least get to syslog or somewhere, with any luck. */
3440
3441if (*spool_directory == 0)
3442 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "spool_directory undefined: cannot "
3443 "proceed");
3444
3445/* Expand the spool directory name; it may, for example, contain the primary
3446host name. Same comment about failure. */
3447
3448s = expand_string(spool_directory);
3449if (s == NULL)
3450 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand spool_directory "
3451 "\"%s\": %s", spool_directory, expand_string_message);
3452spool_directory = s;
3453
3454/* Expand log_file_path, which must contain "%s" in any component that isn't
f1e5fef5
PP		 3455the null string or "syslog". It is also allowed to contain one instance of %D
3456or %M. However, it must NOT contain % followed by anything else. */
059ec3d9
PH		 3457
3458if (*log_file_path != 0)
3459 {
55414b25 3460 const uschar *ss, *sss;
059ec3d9
PH		 3461 int sep = ':'; /* Fixed for log file path */
3462 s = expand_string(log_file_path);
3463 if (s == NULL)
3464 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand log_file_path "
3465 "\"%s\": %s", log_file_path, expand_string_message);
3466
3467 ss = s;
3468 while ((sss = string_nextinlist(&ss,&sep,big_buffer,big_buffer_size)) != NULL)
3469 {
3470 uschar *t;
3471 if (sss[0] == 0 || Ustrcmp(sss, "syslog") == 0) continue;
3472 t = Ustrstr(sss, "%s");
3473 if (t == NULL)
3474 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" does not "
3475 "contain \"%%s\"", sss);
3476 *t = 'X';
3477 t = Ustrchr(sss, '%');
3478 if (t != NULL)
3479 {
f1e5fef5 3480 if ((t[1] != 'D' && t[1] != 'M') || Ustrchr(t+2, '%') != NULL)
059ec3d9
PH		 3481 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" contains "
3482 "unexpected \"%%\" character", s);
3483 }
3484 }
3485
3486 log_file_path = s;
3487 }
3488
3489/* Interpret syslog_facility into an integer argument for 'ident' param to
3490openlog(). Default is LOG_MAIL set in globals.c. Allow the user to omit the
3491leading "log_". */
3492
5bfe3b35 3493if (syslog_facility_str)
059ec3d9
PH		 3494 {
3495 int i;
3496 uschar *s = syslog_facility_str;
3497
3498 if ((Ustrlen(syslog_facility_str) >= 4) &&
3499 (strncmpic(syslog_facility_str, US"log_", 4) == 0))
3500 s += 4;
3501
3502 for (i = 0; i < syslog_list_size; i++)
059ec3d9
PH		 3503 if (strcmpic(s, syslog_list[i].name) == 0)
3504 {
3505 syslog_facility = syslog_list[i].value;
3506 break;
3507 }
059ec3d9
PH		 3508
3509 if (i >= syslog_list_size)
059ec3d9
PH		 3510 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3511 "failed to interpret syslog_facility \"%s\"", syslog_facility_str);
059ec3d9
PH		 3512 }
3513
3514/* Expand pid_file_path */
3515
3516if (*pid_file_path != 0)
3517 {
5bfe3b35 3518 if (!(s = expand_string(pid_file_path)))
059ec3d9
PH		 3519 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand pid_file_path "
3520 "\"%s\": %s", pid_file_path, expand_string_message);
3521 pid_file_path = s;
3522 }
3523
921b12ca
TF		 3524/* Set default value of process_log_path */
3525
5bfe3b35 3526if (!process_log_path || *process_log_path =='\0')
921b12ca
TF		 3527 process_log_path = string_sprintf("%s/exim-process.info", spool_directory);
3528
059ec3d9
PH		 3529/* Compile the regex for matching a UUCP-style "From_" line in an incoming
3530message. */
3531
3532regex_From = regex_must_compile(uucp_from_pattern, FALSE, TRUE);
3533
3534/* Unpick the SMTP rate limiting options, if set */
3535
5bfe3b35 3536if (smtp_ratelimit_mail)
059ec3d9
PH		 3537 unpick_ratelimit(smtp_ratelimit_mail, &smtp_rlm_threshold,
3538 &smtp_rlm_base, &smtp_rlm_factor, &smtp_rlm_limit);
059ec3d9 3539
5bfe3b35 3540if (smtp_ratelimit_rcpt)
059ec3d9
PH		 3541 unpick_ratelimit(smtp_ratelimit_rcpt, &smtp_rlr_threshold,
3542 &smtp_rlr_base, &smtp_rlr_factor, &smtp_rlr_limit);
059ec3d9
PH		 3543
3544/* The qualify domains default to the primary host name */
3545
5bfe3b35 3546if (!qualify_domain_sender)
059ec3d9 3547 qualify_domain_sender = primary_hostname;
5bfe3b35 3548if (!qualify_domain_recipient)
059ec3d9
PH		 3549 qualify_domain_recipient = qualify_domain_sender;
3550
3551/* Setting system_filter_user in the configuration sets the gid as well if a
3552name is given, but a numerical value does not. */
3553
3554if (system_filter_uid_set && !system_filter_gid_set)
3555 {
3556 struct passwd *pw = getpwuid(system_filter_uid);
5bfe3b35 3557 if (!pw)
059ec3d9
PH		 3558 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Failed to look up uid %ld",
3559 (long int)system_filter_uid);
3560 system_filter_gid = pw->pw_gid;
3561 system_filter_gid_set = TRUE;
3562 }
3563
3564/* If the errors_reply_to field is set, check that it is syntactically valid
3565and ensure it contains a domain. */
3566
5bfe3b35 3567if (errors_reply_to)
059ec3d9
PH		 3568 {
3569 uschar *errmess;
3570 int start, end, domain;
3571 uschar *recipient = parse_extract_address(errors_reply_to, &errmess,
3572 &start, &end, &domain, FALSE);
3573
5bfe3b35 3574 if (!recipient)
059ec3d9
PH		 3575 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3576 "error in errors_reply_to (%s): %s", errors_reply_to, errmess);
3577
3578 if (domain == 0)
3579 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3580 "errors_reply_to (%s) does not contain a domain", errors_reply_to);
3581 }
3582
3583/* If smtp_accept_queue or smtp_accept_max_per_host is set, then
3584smtp_accept_max must also be set. */
3585
3586if (smtp_accept_max == 0 &&
3587 (smtp_accept_queue > 0 || smtp_accept_max_per_host != NULL))
3588 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3589 "smtp_accept_max must be set if smtp_accept_queue or "
3590 "smtp_accept_max_per_host is set");
3591
3592/* Set up the host number if anything is specified. It is an expanded string
3593so that it can be computed from the host name, for example. We do this last
3594so as to ensure that everything else is set up before the expansion. */
3595
5bfe3b35 3596if (host_number_string)
059ec3d9 3597 {
ef840681 3598 long int n;
059ec3d9
PH		 3599 uschar *end;
3600 uschar *s = expand_string(host_number_string);
5bfe3b35
JH		 3601
3602 if (!s)
ef840681
PP		 3603 log_write(0, LOG_MAIN|LOG_PANIC_DIE,
3604 "failed to expand localhost_number \"%s\": %s",
3605 host_number_string, expand_string_message);
3606 n = Ustrtol(s, &end, 0);
059ec3d9
PH		 3607 while (isspace(*end)) end++;
3608 if (*end != 0)
3609 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3610 "localhost_number value is not a number: %s", s);
3611 if (n > LOCALHOST_MAX)
3612 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3613 "localhost_number is greater than the maximum allowed value (%d)",
3614 LOCALHOST_MAX);
3615 host_number = n;
3616 }
3617
3618#ifdef SUPPORT_TLS
3619/* If tls_verify_hosts is set, tls_verify_certificates must also be set */
3620
5bfe3b35 3621if ((tls_verify_hosts || tls_try_verify_hosts) && !tls_verify_certificates)
059ec3d9
PH		 3622 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3623 "tls_%sverify_hosts is set, but tls_verify_certificates is not set",
5bfe3b35 3624 tls_verify_hosts ? "" : "try_");
77bb000f 3625
3375e053
PP		 3626/* This also checks that the library linkage is working and we can call
3627routines in it, so call even if tls_require_ciphers is unset */
34e86e20 3628if (!tls_dropprivs_validate_require_cipher(nowarn))
3375e053
PP		 3629 exit(1);
3630
3631/* Magic number: at time of writing, 1024 has been the long-standing value
3632used by so many clients, and what Exim used to use always, that it makes
3633sense to just min-clamp this max-clamp at that. */
3634if (tls_dh_max_bits < 1024)
3635 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3636 "tls_dh_max_bits is too small, must be at least 1024 for interop");
3637
77bb000f 3638/* If openssl_options is set, validate it */
7006ee24 3639if (openssl_options)
77bb000f
PP		 3640 {
3641# ifdef USE_GNUTLS
3642 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
a053d125 3643 "openssl_options is set but we're using GnuTLS");
77bb000f
PP		 3644# else
3645 long dummy;
7006ee24 3646 if (!tls_openssl_options_parse(openssl_options, &dummy))
77bb000f 3647 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
a053d125 3648 "openssl_options parse error: %s", openssl_options);
77bb000f
PP		 3649# endif
3650 }
32d07012 3651#endif /*SUPPORT_TLS*/
bc3c7bb7 3652
34e86e20 3653if (!nowarn && !keep_environment && environ && *environ)
bc3c7bb7 3654 log_write(0, LOG_MAIN,
8e58ed80
HSHR		 3655 "Warning: purging the environment.\n"
3656 " Suggested action: use keep_environment.");
059ec3d9
PH		 3657}
3658
3659
3660
3661/*************************************************
3662* Initialize one driver *
3663*************************************************/
3664
3665/* This is called once the driver's generic options, if any, have been read.
3666We can now find the driver, set up defaults for the private options, and
3667unset any "set" bits in the private options table (which might have been
3668set by another incarnation of the same driver).
3669
3670Arguments:
3671 d pointer to driver instance block, with generic
3672 options filled in
3673 drivers_available vector of available drivers
3674 size_of_info size of each block in drivers_available
3675 class class of driver, for error message
3676
3677Returns: pointer to the driver info block
3678*/
3679
3680static driver_info *
3681init_driver(driver_instance *d, driver_info *drivers_available,
3682 int size_of_info, uschar *class)
3683{
3684driver_info *dd;
3685
3686for (dd = drivers_available; dd->driver_name[0] != 0;
5903c6ff 3687 dd = (driver_info *)((US dd) + size_of_info))
059ec3d9
PH		 3688 {
3689 if (Ustrcmp(d->driver_name, dd->driver_name) == 0)
3690 {
3691 int i;
3692 int len = dd->options_len;
3693 d->info = dd;
3694 d->options_block = store_get(len);
3695 memcpy(d->options_block, dd->options_block, len);
3696 for (i = 0; i < *(dd->options_count); i++)
3697 dd->options[i].type &= ~opt_set;
3698 return dd;
3699 }
3700 }
3701
3702log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3703 "%s %s: cannot find %s driver \"%s\"", class, d->name, class, d->driver_name);
3704
3705return NULL; /* never obeyed */
3706}
3707
3708
3709
3710
3711/*************************************************
3712* Initialize driver list *
3713*************************************************/
3714
3715/* This function is called for routers, transports, and authentication
3716mechanisms. It reads the data from the current point in the configuration file
3717up to the end of the section, and sets up a chain of instance blocks according
3718to the file's contents. The file will already have been opened by a call to
3719readconf_main, and must be left open for subsequent reading of further data.
3720
3721Any errors cause a panic crash. Note that the blocks with names driver_info and
3722driver_instance must map the first portions of all the _info and _instance
3723blocks for this shared code to work.
3724
3725Arguments:
3726 class "router", "transport", or "authenticator"
3727 anchor &routers, &transports, &auths
3728 drivers_available available drivers
3729 size_of_info size of each info block
3730 instance_default points to default data for an instance
3731 instance_size size of instance block
3732 driver_optionlist generic option list
3733 driver_optionlist_count count of generic option list
3734
3735Returns: nothing
3736*/
3737
3738void
3739readconf_driver_init(
3740 uschar *class,
3741 driver_instance **anchor,
3742 driver_info *drivers_available,
3743 int size_of_info,
3744 void *instance_default,
3745 int instance_size,
3746 optionlist *driver_optionlist,
3747 int driver_optionlist_count)
3748{
3749driver_instance **p = anchor;
3750driver_instance *d = NULL;
3751uschar *buffer;
3752
059ec3d9
PH		 3753while ((buffer = get_config_line()) != NULL)
3754 {
3755 uschar name[64];
cf00dad6 3756 uschar *s;
059ec3d9 3757
cf00dad6
PH		 3758 /* Read the first name on the line and test for the start of a new driver. A
3759 macro definition indicates the end of the previous driver. If this isn't the
3760 start of a new driver, the line will be re-read. */
059ec3d9 3761
cf00dad6
PH		 3762 s = readconf_readname(name, sizeof(name), buffer);
3763
3764 /* Handle macro definition, first finishing off the initialization of the
3765 previous driver, if any. */
3766
3767 if (isupper(*name) && *s == '=')
3768 {
d4ff61d1 3769 if (d)
cf00dad6 3770 {
d4ff61d1 3771 if (!d->driver_name)
cf00dad6
PH		 3772 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3773 "no driver defined for %s \"%s\"", class, d->name);
3774 (d->info->init)(d);
3775 d = NULL;
3776 }
9650d98a 3777 if (!macro_read_assignment(buffer)) exim_exit(EXIT_FAILURE, US"");
cf00dad6
PH		 3778 continue;
3779 }
059ec3d9
PH		 3780
3781 /* If the line starts with a name terminated by a colon, we are at the
3782 start of the definition of a new driver. The rest of the line must be
3783 blank. */
3784
3785 if (*s++ == ':')
3786 {
3787 int i;
3788
3789 /* Finish off initializing the previous driver. */
3790
d4ff61d1 3791 if (d)
059ec3d9 3792 {
d4ff61d1 3793 if (!d->driver_name)
059ec3d9
PH		 3794 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3795 "no driver defined for %s \"%s\"", class, d->name);
3796 (d->info->init)(d);
3797 }
3798
3799 /* Check that we haven't already got a driver of this name */
3800
d4ff61d1 3801 for (d = *anchor; d; d = d->next)
059ec3d9
PH		 3802 if (Ustrcmp(name, d->name) == 0)
3803 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3804 "there are two %ss called \"%s\"", class, name);
3805
3806 /* Set up a new driver instance data block on the chain, with
3807 its default values installed. */
3808
3809 d = store_get(instance_size);
3810 memcpy(d, instance_default, instance_size);
3811 *p = d;
d4ff61d1 3812 p = &d->next;
059ec3d9
PH		 3813 d->name = string_copy(name);
3814
3815 /* Clear out the "set" bits in the generic options */
3816
3817 for (i = 0; i < driver_optionlist_count; i++)
3818 driver_optionlist[i].type &= ~opt_set;
3819
3820 /* Check nothing more on this line, then do the next loop iteration. */
3821
3822 while (isspace(*s)) s++;
3823 if (*s != 0) extra_chars_error(s, US"driver name ", name, US"");
3824 continue;
3825 }
3826
cf00dad6
PH		 3827 /* Not the start of a new driver. Give an error if we have not set up a
3828 current driver yet. */
059ec3d9 3829
d4ff61d1
JH		 3830 if (!d)
3831 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s name missing", class);
059ec3d9
PH		 3832
3833 /* First look to see if this is a generic option; if it is "driver",
3834 initialize the driver. If is it not a generic option, we can look for a
3835 private option provided that the driver has been previously set up. */
3836
3837 if (readconf_handle_option(buffer, driver_optionlist,
3838 driver_optionlist_count, d, NULL))
3839 {
d4ff61d1 3840 if (!d->info && d->driver_name)
059ec3d9
PH		 3841 init_driver(d, drivers_available, size_of_info, class);
3842 }
3843
3844 /* Handle private options - pass the generic block because some may
3845 live therein. A flag with each option indicates if it is in the public
3846 block. */
3847
d4ff61d1 3848 else if (d->info)
059ec3d9
PH		 3849 readconf_handle_option(buffer, d->info->options,
3850 *(d->info->options_count), d, US"option \"%s\" unknown");
059ec3d9
PH		 3851
3852 /* The option is not generic and the driver name has not yet been given. */
3853
3854 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option \"%s\" unknown "
3855 "(\"driver\" must be specified before any private options)", name);
3856 }
3857
3858/* Run the initialization function for the final driver. */
3859
d4ff61d1 3860if (d)
059ec3d9 3861 {
d4ff61d1 3862 if (!d->driver_name)
059ec3d9
PH		 3863 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3864 "no driver defined for %s \"%s\"", class, d->name);
3865 (d->info->init)(d);
3866 }
3867}
3868
3869
3870
3871/*************************************************
3872* Check driver dependency *
3873*************************************************/
3874
3875/* This function is passed a driver instance and a string. It checks whether
3876any of the string options for the driver contains the given string as an
3877expansion variable.
3878
3879Arguments:
3880 d points to a driver instance block
3881 s the string to search for
3882
3883Returns: TRUE if a dependency is found
3884*/
3885
3886BOOL
3887readconf_depends(driver_instance *d, uschar *s)
3888{
3889int count = *(d->info->options_count);
3890optionlist *ol;
3891uschar *ss;
3892
3893for (ol = d->info->options; ol < d->info->options + count; ol++)
3894 {
3895 void *options_block;
3896 uschar *value;
3897 int type = ol->type & opt_mask;
3898 if (type != opt_stringptr) continue;
3899 options_block = ((ol->type & opt_public) == 0)? d->options_block : (void *)d;
5903c6ff 3900 value = *(uschar **)(US options_block + (long int)(ol->value));
059ec3d9
PH		 3901 if (value != NULL && (ss = Ustrstr(value, s)) != NULL)
3902 {
3903 if (ss <= value || (ss[-1] != '$' && ss[-1] != '{') ||
3904 isalnum(ss[Ustrlen(s)])) continue;
3905 DEBUG(D_transport) debug_printf("driver %s: \"%s\" option depends on %s\n",
3906 d->name, ol->name, s);
3907 return TRUE;
3908 }
3909 }
3910
3911DEBUG(D_transport) debug_printf("driver %s does not depend on %s\n", d->name, s);
3912return FALSE;
3913}
3914
3915
3916
3917
3918/*************************************************
3919* Decode an error type for retries *
3920*************************************************/
3921
3922/* This function is global because it is also called from the main
3923program when testing retry information. It decodes strings such as "quota_7d"
3924into numerical error codes.
3925
3926Arguments:
3927 pp points to start of text
3928 p points past end of text
3929 basic_errno points to an int to receive the main error number
3930 more_errno points to an int to receive the secondary error data
3931
3932Returns: NULL if decoded correctly; else points to error text
3933*/
3934
3935uschar *
bd4ece7d
JH		 3936readconf_retry_error(const uschar *pp, const uschar *p,
3937 int *basic_errno, int *more_errno)
059ec3d9
PH		 3938{
3939int len;
55414b25 3940const uschar *q = pp;
059ec3d9
PH		 3941while (q < p && *q != '_') q++;
3942len = q - pp;
3943
3944if (len == 5 && strncmpic(pp, US"quota", len) == 0)
3945 {
3946 *basic_errno = ERRNO_EXIMQUOTA;
3947 if (q != p && (*more_errno = readconf_readtime(q+1, *p, FALSE)) < 0)
3948 return US"bad time value";
3949 }
3950
3951else if (len == 7 && strncmpic(pp, US"refused", len) == 0)
3952 {
3953 *basic_errno = ECONNREFUSED;
3954 if (q != p)
3955 {
3956 if (strncmpic(q+1, US"MX", p-q-1) == 0) *more_errno = 'M';
3957 else if (strncmpic(q+1, US"A", p-q-1) == 0) *more_errno = 'A';
3958 else return US"A or MX expected after \"refused\"";
3959 }
3960 }
3961
3962else if (len == 7 && strncmpic(pp, US"timeout", len) == 0)
3963 {
3964 *basic_errno = ETIMEDOUT;
3965 if (q != p)
3966 {
3967 int i;
3968 int xlen = p - q - 1;
55414b25 3969 const uschar *x = q + 1;
059ec3d9
PH		 3970
3971 static uschar *extras[] =
3972 { US"A", US"MX", US"connect", US"connect_A", US"connect_MX" };
3973 static int values[] =
3974 { 'A', 'M', RTEF_CTOUT, RTEF_CTOUT|'A', RTEF_CTOUT|'M' };
3975
5903c6ff 3976 for (i = 0; i < nelem(extras); i++)
059ec3d9
PH		 3977 if (strncmpic(x, extras[i], xlen) == 0)
3978 {
3979 *more_errno = values[i];
3980 break;
3981 }
059ec3d9 3982
5903c6ff 3983 if (i >= nelem(extras))
059ec3d9 3984 if (strncmpic(x, US"DNS", xlen) == 0)
059ec3d9
PH		 3985 log_write(0, LOG_MAIN|LOG_PANIC, "\"timeout_dns\" is no longer "
3986 "available in retry rules (it has never worked) - treated as "
3987 "\"timeout\"");
bd4ece7d
JH		 3988 else
3989 return US"\"A\", \"MX\", or \"connect\" expected after \"timeout\"";
059ec3d9
PH		 3990 }
3991 }
3992
e97957bc
PH		 3993else if (strncmpic(pp, US"mail_4", 6) == 0 ||
3994 strncmpic(pp, US"rcpt_4", 6) == 0 ||
3995 strncmpic(pp, US"data_4", 6) == 0)
059ec3d9
PH		 3996 {
3997 BOOL bad = FALSE;
3998 int x = 255; /* means "any 4xx code" */
3999 if (p != pp + 8) bad = TRUE; else
4000 {
4001 int a = pp[6], b = pp[7];
4002 if (isdigit(a))
4003 {
4004 x = (a - '0') * 10;
4005 if (isdigit(b)) x += b - '0';
4006 else if (b == 'x') x += 100;
4007 else bad = TRUE;
4008 }
4009 else if (a != 'x' || b != 'x') bad = TRUE;
4010 }
4011
e97957bc
PH		 4012 if (bad)
4013 return string_sprintf("%.4s_4 must be followed by xx, dx, or dd, where "
4014 "x is literal and d is any digit", pp);
059ec3d9 4015
bd4ece7d
JH		 4016 *basic_errno = *pp == 'm' ? ERRNO_MAIL4XX :
4017 *pp == 'r' ? ERRNO_RCPT4XX : ERRNO_DATA4XX;
059ec3d9
PH		 4018 *more_errno = x << 8;
4019 }
4020
4021else if (len == 4 && strncmpic(pp, US"auth", len) == 0 &&
4022 strncmpic(q+1, US"failed", p-q-1) == 0)
059ec3d9 4023 *basic_errno = ERRNO_AUTHFAIL;
e97957bc 4024
48da4259 4025else if (strncmpic(pp, US"lost_connection", p - pp) == 0)
e97957bc
PH		 4026 *basic_errno = ERRNO_SMTPCLOSED;
4027
48da4259 4028else if (strncmpic(pp, US"tls_required", p - pp) == 0)
e97957bc 4029 *basic_errno = ERRNO_TLSREQUIRED;
059ec3d9 4030
bd4ece7d
JH		 4031else if (strncmpic(pp, US"lookup", p - pp) == 0)
4032 *basic_errno = ERRNO_UNKNOWNHOST;
4033
059ec3d9 4034else if (len != 1 || Ustrncmp(pp, "*", 1) != 0)
ef840681 4035 return string_sprintf("unknown or malformed retry error \"%.*s\"", (int) (p-pp), pp);
059ec3d9
PH		 4036
4037return NULL;
4038}
4039
4040
4041
4042
4043/*************************************************
4044* Read retry information *
4045*************************************************/
4046
4047/* Each line of retry information contains:
4048
4049. A domain name pattern or an address pattern;
4050
4051. An error name, possibly with additional data, or *;
4052
4053. An optional sequence of retry items, each consisting of an identifying
4054 letter, a cutoff time, and optional parameters.
4055
4056All this is decoded and placed into a control block. */
4057
4058
4059/* Subroutine to read an argument, preceded by a comma and terminated
4060by comma, semicolon, whitespace, or newline. The types are: 0 = time value,
40611 = fixed point number (returned *1000).
4062
4063Arguments:
4064 paddr pointer to pointer to current character; updated
4065 type 0 => read a time; 1 => read a fixed point number
4066
4067Returns: time in seconds or fixed point number * 1000
4068*/
4069
4070static int
55414b25 4071retry_arg(const uschar **paddr, int type)
059ec3d9 4072{
55414b25
JH		 4073const uschar *p = *paddr;
4074const uschar *pp;
059ec3d9
PH		 4075
4076if (*p++ != ',') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma expected");
4077
4078while (isspace(*p)) p++;
4079pp = p;
4080while (isalnum(*p) || (type == 1 && *p == '.')) p++;
4081
4082if (*p != 0 && !isspace(*p) && *p != ',' && *p != ';')
4083 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma or semicolon expected");
4084
4085*paddr = p;
4086switch (type)
4087 {
bd4ece7d
JH		 4088 case 0: return readconf_readtime(pp, *p, FALSE);
4089 case 1: return readconf_readfixed(pp, *p);
059ec3d9
PH		 4090 }
4091return 0; /* Keep picky compilers happy */
4092}
4093
4094/* The function proper */
4095
4096void
4097readconf_retries(void)
4098{
4099retry_config **chain = &retries;
4100retry_config *next;
55414b25 4101const uschar *p;
059ec3d9 4102
bd4ece7d 4103while ((p = get_config_line()))
059ec3d9
PH		 4104 {
4105 retry_rule **rchain;
55414b25
JH		 4106 const uschar *pp;
4107 uschar *error;
059ec3d9
PH		 4108
4109 next = store_get(sizeof(retry_config));
4110 next->next = NULL;
4111 *chain = next;
4112 chain = &(next->next);
4113 next->basic_errno = next->more_errno = 0;
4114 next->senders = NULL;
4115 next->rules = NULL;
4116 rchain = &(next->rules);
4117
4118 next->pattern = string_dequote(&p);
4119 while (isspace(*p)) p++;
4120 pp = p;
4121 while (mac_isgraph(*p)) p++;
4122 if (p - pp <= 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
41eff010 4123 "missing error type in retry rule");
059ec3d9
PH		 4124
4125 /* Test error names for things we understand. */
4126
bd4ece7d
JH		 4127 if ((error = readconf_retry_error(pp, p, &next->basic_errno,
4128 &next->more_errno)))
059ec3d9
PH		 4129 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s", error);
4130
4131 /* There may be an optional address list of senders to be used as another
4132 constraint on the rule. This was added later, so the syntax is a bit of a
4133 fudge. Anything that is not a retry rule starting "F," or "G," is treated as
4134 an address list. */
4135
4136 while (isspace(*p)) p++;
4137 if (Ustrncmp(p, "senders", 7) == 0)
4138 {
4139 p += 7;
4140 while (isspace(*p)) p++;
4141 if (*p++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4142 "\"=\" expected after \"senders\" in retry rule");
4143 while (isspace(*p)) p++;
4144 next->senders = string_dequote(&p);
4145 }
4146
4147 /* Now the retry rules. Keep the maximum timeout encountered. */
4148
4149 while (isspace(*p)) p++;
4150
4151 while (*p != 0)
4152 {
4153 retry_rule *rule = store_get(sizeof(retry_rule));
4154 *rchain = rule;
4155 rchain = &(rule->next);
4156 rule->next = NULL;
4157 rule->rule = toupper(*p++);
4158 rule->timeout = retry_arg(&p, 0);
4159 if (rule->timeout > retry_maximum_timeout)
4160 retry_maximum_timeout = rule->timeout;
4161
4162 switch (rule->rule)
4163 {
4164 case 'F': /* Fixed interval */
bd4ece7d
JH		 4165 rule->p1 = retry_arg(&p, 0);
4166 break;
059ec3d9
PH		 4167
4168 case 'G': /* Geometrically increasing intervals */
6af56900 4169 case 'H': /* Ditto, but with randomness */
bd4ece7d
JH		 4170 rule->p1 = retry_arg(&p, 0);
4171 rule->p2 = retry_arg(&p, 1);
4172 break;
059ec3d9
PH		 4173
4174 default:
bd4ece7d
JH		 4175 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unknown retry rule letter");
4176 break;
059ec3d9
PH		 4177 }
4178
4179 if (rule->timeout <= 0 || rule->p1 <= 0 ||
6af56900 4180 (rule->rule != 'F' && rule->p2 < 1000))
059ec3d9
PH		 4181 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4182 "bad parameters for retry rule");
4183
4184 while (isspace(*p)) p++;
4185 if (*p == ';')
4186 {
4187 p++;
4188 while (isspace(*p)) p++;
4189 }
4190 else if (*p != 0)
4191 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "semicolon expected");
4192 }
4193 }
4194}
4195
4196
4197
4198/*************************************************
4199* Initialize authenticators *
4200*************************************************/
4201
4202/* Read the authenticators section of the configuration file.
4203
4204Arguments: none
4205Returns: nothing
4206*/
4207
4208static void
4209auths_init(void)
4210{
4211auth_instance *au, *bu;
c0b9d3e8 4212
059ec3d9
PH		 4213readconf_driver_init(US"authenticator",
4214 (driver_instance **)(&auths), /* chain anchor */
4215 (driver_info *)auths_available, /* available drivers */
4216 sizeof(auth_info), /* size of info block */
4217 &auth_defaults, /* default values for generic options */
4218 sizeof(auth_instance), /* size of instance block */
4219 optionlist_auths, /* generic options */
4220 optionlist_auths_size);
4221
d4ff61d1 4222for (au = auths; au; au = au->next)
059ec3d9 4223 {
d4ff61d1 4224 if (!au->public_name)
059ec3d9
PH		 4225 log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "no public name specified for "
4226 "the %s authenticator", au->name);
d4ff61d1
JH		 4227
4228 for (bu = au->next; bu; bu = bu->next)
059ec3d9 4229 if (strcmpic(au->public_name, bu->public_name) == 0)
059ec3d9
PH		 4230 if ((au->client && bu->client) || (au->server && bu->server))
4231 log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "two %s authenticators "
4232 "(%s and %s) have the same public name (%s)",
d4ff61d1 4233 au->client ? US"client" : US"server", au->name, bu->name,
059ec3d9 4234 au->public_name);
059ec3d9
PH		 4235 }
4236}
4237
4238
4239
4240
4241/*************************************************
4242* Read ACL information *
4243*************************************************/
4244
4245/* If this run of Exim is not doing something that involves receiving a
4246message, we can just skip over the ACL information. No need to parse it.
4247
4248First, we have a function for acl_read() to call back to get the next line. We
4249need to remember the line we passed, because at the end it will contain the
4250name of the next ACL. */
4251
4252static uschar *acl_line;
4253
4254static uschar *
4255acl_callback(void)
4256{
4257acl_line = get_config_line();
4258return acl_line;
4259}
4260
4261
4262/* Now the main function:
4263
cb46fd2b 4264Arguments: none
059ec3d9
PH		 4265Returns: nothing
4266*/
4267
4268static void
cb46fd2b 4269readconf_acl(void)
059ec3d9
PH		 4270{
4271uschar *p;
4272
cf00dad6
PH		 4273/* Read each ACL and add it into the tree. Macro (re)definitions are allowed
4274between ACLs. */
059ec3d9
PH		 4275
4276acl_line = get_config_line();
4277
9650d98a 4278while(acl_line)
059ec3d9
PH		 4279 {
4280 uschar name[64];
4281 tree_node *node;
4282 uschar *error;
4283
4284 p = readconf_readname(name, sizeof(name), acl_line);
cf00dad6
PH		 4285 if (isupper(*name) && *p == '=')
4286 {
9650d98a 4287 if (!macro_read_assignment(acl_line)) exim_exit(EXIT_FAILURE, US"");
cf00dad6
PH		 4288 acl_line = get_config_line();
4289 continue;
4290 }
4291
4292 if (*p != ':' || name[0] == 0)
4293 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing or malformed ACL name");
059ec3d9
PH		 4294
4295 node = store_get(sizeof(tree_node) + Ustrlen(name));
4296 Ustrcpy(node->name, name);
4297 if (!tree_insertnode(&acl_anchor, node))
4298 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4299 "there are two ACLs called \"%s\"", name);
4300
4301 node->data.ptr = acl_read(acl_callback, &error);
4302
4303 if (node->data.ptr == NULL && error != NULL)
4304 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "error in ACL: %s", error);
4305 }
4306}
4307
4308
4309
4310/*************************************************
4311* Read configuration for local_scan() *
4312*************************************************/
4313
4314/* This function is called after "begin local_scan" is encountered in the
4315configuration file. If the local_scan() function allows for configuration
4316options, we can process them. Otherwise, we expire in a panic.
4317
4318Arguments: none
4319Returns: nothing
4320*/
4321
4322static void
4323local_scan_init(void)
4324{
4325#ifndef LOCAL_SCAN_HAS_OPTIONS
4326log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "local_scan() options not supported: "
4327 "(LOCAL_SCAN_HAS_OPTIONS not defined in Local/Makefile)");
4328#else
4329
4330uschar *p;
9650d98a 4331while ((p = get_config_line()))
059ec3d9
PH		 4332 {
4333 (void) readconf_handle_option(p, local_scan_options, local_scan_options_count,
4334 NULL, US"local_scan option \"%s\" unknown");
4335 }
4336#endif
4337}
4338
4339
4340
4341/*************************************************
4342* Read rest of configuration (after main) *
4343*************************************************/
4344
4345/* This function reads the rest of the runtime configuration, after the main
4346configuration. It is called only when actually needed. Each subsequent section
4347of the configuration starts with a line of the form
4348
4349 begin name
4350
4351where the name is "routers", "transports", etc. A section is terminated by
4352hitting the next "begin" line, and the next name is left in next_section.
4353Because it may confuse people as to whether the names are singular or plural,
4354we add "s" if it's missing. There is always enough room in next_section for
4355this. This function is basically just a switch.
4356
351a5bc8 4357Arguments: none
059ec3d9
PH		 4358Returns: nothing
4359*/
4360
4361static uschar *section_list[] = {
4362 US"acls",
4363 US"authenticators",
4364 US"local_scans",
4365 US"retrys",
4366 US"rewrites",
4367 US"routers",
4368 US"transports"};
4369
4370void
351a5bc8 4371readconf_rest(void)
059ec3d9
PH		 4372{
4373int had = 0;
4374
4375while(next_section[0] != 0)
4376 {
4377 int bit;
4378 int first = 0;
5903c6ff 4379 int last = nelem(section_list);
059ec3d9
PH		 4380 int mid = last/2;
4381 int n = Ustrlen(next_section);
4382
4383 if (tolower(next_section[n-1]) != 's') Ustrcpy(next_section+n, "s");
4384
4385 for (;;)
4386 {
4387 int c = strcmpic(next_section, section_list[mid]);
4388 if (c == 0) break;
4389 if (c > 0) first = mid + 1; else last = mid;
4390 if (first >= last)
4391 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4392 "\"%.*s\" is not a known configuration section name", n, next_section);
4393 mid = (last + first)/2;
4394 }
4395
4396 bit = 1 << mid;
4397 if (((had ^= bit) & bit) == 0)
4398 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4399 "\"%.*s\" section is repeated in the configuration file", n,
4400 next_section);
4401
4402 switch(mid)
4403 {
cb46fd2b 4404 case 0: readconf_acl(); break;
059ec3d9
PH		 4405 case 1: auths_init(); break;
4406 case 2: local_scan_init(); break;
4407 case 3: readconf_retries(); break;
4408 case 4: readconf_rewrites(); break;
4409 case 5: route_init(); break;
4410 case 6: transport_init(); break;
4411 }
4412 }
4413
f1e894f3 4414(void)fclose(config_file);
059ec3d9
PH		 4415}
4416
bf3c2c6b
HSHR		 4417/* Init the storage for the pre-parsed config lines */
4418void
4419readconf_save_config(const uschar *s)
4420{
9650d98a 4421save_config_line(string_sprintf("# Exim Configuration (%s)",
8768d548 4422 f.running_in_test_harness ? US"X" : s));
bf3c2c6b
HSHR		 4423}
4424
4425static void
4426save_config_position(const uschar *file, int line)
4427{
9650d98a 4428save_config_line(string_sprintf("# %d \"%s\"", line, file));
bf3c2c6b
HSHR		 4429}
4430
4431/* Append a pre-parsed logical line to the config lines store,
4432this operates on a global (static) list that holds all the pre-parsed
ce133ea6
HSHR		 4433config lines, we do no further processing here, output formatting and
4434honouring of <hide> or macros will be done during output */
cab0c277 4435
bf3c2c6b
HSHR		 4436static void
4437save_config_line(const uschar* line)
4438{
4439static config_line_item *current;
4440config_line_item *next;
4441
4442next = (config_line_item*) store_get(sizeof(config_line_item));
4443next->line = string_copy(line);
4444next->next = NULL;
4445
4446if (!config_lines) config_lines = next;
4447else current->next = next;
4448
4449current = next;
4450}
4451
4452/* List the parsed config lines, care about nice formatting and
4453hide the <hide> values unless we're the admin user */
4454void
3257ed4b 4455print_config(BOOL admin, BOOL terse)
bf3c2c6b
HSHR		 4456{
4457config_line_item *i;
3257ed4b 4458const int TS = terse ? 0 : 2;
bf3c2c6b
HSHR		 4459int indent = 0;
4460
4461for (i = config_lines; i; i = i->next)
4462 {
30ef6099 4463 uschar *current;
bf3c2c6b
HSHR		 4464 uschar *p;
4465
4466 /* skip over to the first non-space */
4467 for (current = i->line; *current && isspace(*current); ++current)
4468 ;
4469
4470 if (*current == '\0')
4471 continue;
4472
30ef6099
HSHR		 4473 /* Collapse runs of spaces. We stop this if we encounter one of the
4474 * following characters: "'$, as this may indicate careful formatting */
4475 for (p = current; *p; ++p)
4476 {
4477 uschar *next;
4478 if (!isspace(*p)) continue;
4479 if (*p != ' ') *p = ' ';
4480
4481 for (next = p; isspace(*next); ++next)
4482 ;
4483
4484 if (next - p > 1)
3c51463e 4485 memmove(p+1, next, Ustrlen(next)+1);
30ef6099
HSHR		 4486
4487 if (*next == '"' || *next == '\'' || *next == '$')
4488 break;
4489 }
bf3c2c6b
HSHR		 4490
4491 /* # lines */
4492 if (current[0] == '#')
39755c16 4493 puts(CCS current);
bf3c2c6b
HSHR		 4494
4495 /* begin lines are left aligned */
39755c16 4496 else if (Ustrncmp(current, "begin", 5) == 0 && isspace(current[5]))
bf3c2c6b 4497 {
3257ed4b 4498 if (!terse) puts("");
39755c16 4499 puts(CCS current);
bf3c2c6b 4500 indent = TS;
bf3c2c6b
HSHR		 4501 }
4502
4503 /* router/acl/transport block names */
f40d5be3 4504 else if (current[Ustrlen(current)-1] == ':' && !Ustrchr(current, '='))
bf3c2c6b 4505 {
3257ed4b
HSHR		 4506 if (!terse) puts("");
4507 printf("%*s%s\n", TS, "", current);
bf3c2c6b 4508 indent = 2 * TS;
bf3c2c6b
HSHR		 4509 }
4510
30ef6099 4511 /* hidden lines (all MACROS or lines prefixed with "hide") */
39755c16
JH		 4512 else if ( !admin
4513 && ( isupper(*current)
4514 || Ustrncmp(current, "hide", 4) == 0 && isspace(current[4])
4515 )
4516 )
bf3c2c6b 4517 {
f40d5be3 4518 if ((p = Ustrchr(current, '=')))
ce133ea6
HSHR		 4519 {
4520 *p = '\0';
30ef6099 4521 printf("%*s%s= %s\n", indent, "", current, hidden);
ce133ea6
HSHR		 4522 }
4523 /* e.g.: hide split_spool_directory */
39755c16
JH		 4524 else
4525 printf("%*s\n", indent, hidden);
bf3c2c6b
HSHR		 4526 }
4527
39755c16
JH		 4528 else
4529 /* rest is public */
4530 printf("%*s%s\n", indent, "", current);
bf3c2c6b
HSHR		 4531 }
4532}
4533
d185889f 4534#endif /*!MACRO_PREDEF*/
76146973
JH		 4535/* vi: aw ai sw=2
4536*/
059ec3d9 4537/* End of readconf.c */
Unnamed repository; edit this file 'description' to name the repository.