projects / exim.git / blame_incremental
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (non-incremental) | history | HEAD
Build: linux only needs libnsl for LOOKUP_NIS
[exim.git] / src / src / readconf.c
... / ...
CommitLineData
1/*************************************************
2* Exim - an Internet mail transport agent *
3*************************************************/
4
5/* Copyright (c) University of Cambridge 1995 - 2018 */
6/* See the file NOTICE for conditions of use and distribution. */
7
8/* Functions for reading the configuration file, and for displaying
9overall configuration values. Thanks to Brian Candler for the original
10implementation of the conditional .ifdef etc. */
11
12#include "exim.h"
13
14#ifdef MACRO_PREDEF
15# include "macro_predef.h"
16#endif
17
18#define READCONF_DEBUG if (FALSE) /* Change to TRUE to enable */
19
20
21static uschar * syslog_facility_str;
22static void fn_smtp_receive_timeout(const uschar *, const uschar *, unsigned);
23
24/*************************************************
25* Main configuration options *
26*************************************************/
27
28/* The list of options that can be set in the main configuration file. This
29must be in alphabetic order because it is searched by binary chop. */
30
31static optionlist optionlist_config[] = {
32 { "*set_exim_group", opt_bool|opt_hidden, &exim_gid_set },
33 { "*set_exim_user", opt_bool|opt_hidden, &exim_uid_set },
34 { "*set_system_filter_group", opt_bool|opt_hidden, &system_filter_gid_set },
35 { "*set_system_filter_user", opt_bool|opt_hidden, &system_filter_uid_set },
36 { "accept_8bitmime", opt_bool, &accept_8bitmime },
37 { "acl_not_smtp", opt_stringptr, &acl_not_smtp },
38#ifdef WITH_CONTENT_SCAN
39 { "acl_not_smtp_mime", opt_stringptr, &acl_not_smtp_mime },
40#endif
41 { "acl_not_smtp_start", opt_stringptr, &acl_not_smtp_start },
42 { "acl_smtp_auth", opt_stringptr, &acl_smtp_auth },
43 { "acl_smtp_connect", opt_stringptr, &acl_smtp_connect },
44 { "acl_smtp_data", opt_stringptr, &acl_smtp_data },
45#ifndef DISABLE_PRDR
46 { "acl_smtp_data_prdr", opt_stringptr, &acl_smtp_data_prdr },
47#endif
48#ifndef DISABLE_DKIM
49 { "acl_smtp_dkim", opt_stringptr, &acl_smtp_dkim },
50#endif
51 { "acl_smtp_etrn", opt_stringptr, &acl_smtp_etrn },
52 { "acl_smtp_expn", opt_stringptr, &acl_smtp_expn },
53 { "acl_smtp_helo", opt_stringptr, &acl_smtp_helo },
54 { "acl_smtp_mail", opt_stringptr, &acl_smtp_mail },
55 { "acl_smtp_mailauth", opt_stringptr, &acl_smtp_mailauth },
56#ifdef WITH_CONTENT_SCAN
57 { "acl_smtp_mime", opt_stringptr, &acl_smtp_mime },
58#endif
59 { "acl_smtp_notquit", opt_stringptr, &acl_smtp_notquit },
60 { "acl_smtp_predata", opt_stringptr, &acl_smtp_predata },
61 { "acl_smtp_quit", opt_stringptr, &acl_smtp_quit },
62 { "acl_smtp_rcpt", opt_stringptr, &acl_smtp_rcpt },
63#ifndef DISABLE_TLS
64 { "acl_smtp_starttls", opt_stringptr, &acl_smtp_starttls },
65#endif
66 { "acl_smtp_vrfy", opt_stringptr, &acl_smtp_vrfy },
67 { "add_environment", opt_stringptr, &add_environment },
68 { "admin_groups", opt_gidlist, &admin_groups },
69 { "allow_domain_literals", opt_bool, &allow_domain_literals },
70 { "allow_mx_to_ip", opt_bool, &allow_mx_to_ip },
71 { "allow_utf8_domains", opt_bool, &allow_utf8_domains },
72 { "auth_advertise_hosts", opt_stringptr, &auth_advertise_hosts },
73 { "auto_thaw", opt_time, &auto_thaw },
74#ifdef WITH_CONTENT_SCAN
75 { "av_scanner", opt_stringptr, &av_scanner },
76#endif
77 { "bi_command", opt_stringptr, &bi_command },
78#ifdef EXPERIMENTAL_BRIGHTMAIL
79 { "bmi_config_file", opt_stringptr, &bmi_config_file },
80#endif
81 { "bounce_message_file", opt_stringptr, &bounce_message_file },
82 { "bounce_message_text", opt_stringptr, &bounce_message_text },
83 { "bounce_return_body", opt_bool, &bounce_return_body },
84 { "bounce_return_linesize_limit", opt_mkint, &bounce_return_linesize_limit },
85 { "bounce_return_message", opt_bool, &bounce_return_message },
86 { "bounce_return_size_limit", opt_mkint, &bounce_return_size_limit },
87 { "bounce_sender_authentication",opt_stringptr,&bounce_sender_authentication },
88 { "callout_domain_negative_expire", opt_time, &callout_cache_domain_negative_expire },
89 { "callout_domain_positive_expire", opt_time, &callout_cache_domain_positive_expire },
90 { "callout_negative_expire", opt_time, &callout_cache_negative_expire },
91 { "callout_positive_expire", opt_time, &callout_cache_positive_expire },
92 { "callout_random_local_part",opt_stringptr, &callout_random_local_part },
93 { "check_log_inodes", opt_int, &check_log_inodes },
94 { "check_log_space", opt_Kint, &check_log_space },
95 { "check_rfc2047_length", opt_bool, &check_rfc2047_length },
96 { "check_spool_inodes", opt_int, &check_spool_inodes },
97 { "check_spool_space", opt_Kint, &check_spool_space },
98 { "chunking_advertise_hosts", opt_stringptr, &chunking_advertise_hosts },
99 { "commandline_checks_require_admin", opt_bool,&commandline_checks_require_admin },
100 { "daemon_smtp_port", opt_stringptr|opt_hidden, &daemon_smtp_port },
101 { "daemon_smtp_ports", opt_stringptr, &daemon_smtp_port },
102 { "daemon_startup_retries", opt_int, &daemon_startup_retries },
103 { "daemon_startup_sleep", opt_time, &daemon_startup_sleep },
104#ifdef EXPERIMENTAL_DCC
105 { "dcc_direct_add_header", opt_bool, &dcc_direct_add_header },
106 { "dccifd_address", opt_stringptr, &dccifd_address },
107 { "dccifd_options", opt_stringptr, &dccifd_options },
108#endif
109 { "debug_store", opt_bool, &debug_store },
110 { "delay_warning", opt_timelist, &delay_warning },
111 { "delay_warning_condition", opt_stringptr, &delay_warning_condition },
112 { "deliver_drop_privilege", opt_bool, &deliver_drop_privilege },
113 { "deliver_queue_load_max", opt_fixed, &deliver_queue_load_max },
114 { "delivery_date_remove", opt_bool, &delivery_date_remove },
115#ifdef ENABLE_DISABLE_FSYNC
116 { "disable_fsync", opt_bool, &disable_fsync },
117#endif
118 { "disable_ipv6", opt_bool, &disable_ipv6 },
119#ifndef DISABLE_DKIM
120 { "dkim_verify_hashes", opt_stringptr, &dkim_verify_hashes },
121 { "dkim_verify_keytypes", opt_stringptr, &dkim_verify_keytypes },
122 { "dkim_verify_minimal", opt_bool, &dkim_verify_minimal },
123 { "dkim_verify_signers", opt_stringptr, &dkim_verify_signers },
124#endif
125#ifdef SUPPORT_DMARC
126 { "dmarc_forensic_sender", opt_stringptr, &dmarc_forensic_sender },
127 { "dmarc_history_file", opt_stringptr, &dmarc_history_file },
128 { "dmarc_tld_file", opt_stringptr, &dmarc_tld_file },
129#endif
130 { "dns_again_means_nonexist", opt_stringptr, &dns_again_means_nonexist },
131 { "dns_check_names_pattern", opt_stringptr, &check_dns_names_pattern },
132 { "dns_cname_loops", opt_int, &dns_cname_loops },
133 { "dns_csa_search_limit", opt_int, &dns_csa_search_limit },
134 { "dns_csa_use_reverse", opt_bool, &dns_csa_use_reverse },
135 { "dns_dnssec_ok", opt_int, &dns_dnssec_ok },
136 { "dns_ipv4_lookup", opt_stringptr, &dns_ipv4_lookup },
137 { "dns_retrans", opt_time, &dns_retrans },
138 { "dns_retry", opt_int, &dns_retry },
139 { "dns_trust_aa", opt_stringptr, &dns_trust_aa },
140 { "dns_use_edns0", opt_int, &dns_use_edns0 },
141 /* This option is now a no-op, retained for compatibility */
142 { "drop_cr", opt_bool, &drop_cr },
143/*********************************************************/
144 { "dsn_advertise_hosts", opt_stringptr, &dsn_advertise_hosts },
145 { "dsn_from", opt_stringptr, &dsn_from },
146 { "envelope_to_remove", opt_bool, &envelope_to_remove },
147 { "errors_copy", opt_stringptr, &errors_copy },
148 { "errors_reply_to", opt_stringptr, &errors_reply_to },
149#ifndef DISABLE_EVENT
150 { "event_action", opt_stringptr, &event_action },
151#endif
152 { "exim_group", opt_gid, &exim_gid },
153 { "exim_path", opt_stringptr, &exim_path },
154 { "exim_user", opt_uid, &exim_uid },
155 { "exim_version", opt_stringptr, &version_string },
156 { "extra_local_interfaces", opt_stringptr, &extra_local_interfaces },
157 { "extract_addresses_remove_arguments", opt_bool, &extract_addresses_remove_arguments },
158 { "finduser_retries", opt_int, &finduser_retries },
159 { "freeze_tell", opt_stringptr, &freeze_tell },
160 { "gecos_name", opt_stringptr, &gecos_name },
161 { "gecos_pattern", opt_stringptr, &gecos_pattern },
162#ifndef DISABLE_TLS
163 { "gnutls_allow_auto_pkcs11", opt_bool, &gnutls_allow_auto_pkcs11 },
164 { "gnutls_compat_mode", opt_bool, &gnutls_compat_mode },
165#endif
166 { "header_line_maxsize", opt_int, &header_line_maxsize },
167 { "header_maxsize", opt_int, &header_maxsize },
168 { "headers_charset", opt_stringptr, &headers_charset },
169 { "helo_accept_junk_hosts", opt_stringptr, &helo_accept_junk_hosts },
170 { "helo_allow_chars", opt_stringptr, &helo_allow_chars },
171 { "helo_lookup_domains", opt_stringptr, &helo_lookup_domains },
172 { "helo_try_verify_hosts", opt_stringptr, &helo_try_verify_hosts },
173 { "helo_verify_hosts", opt_stringptr, &helo_verify_hosts },
174 { "hold_domains", opt_stringptr, &hold_domains },
175 { "host_lookup", opt_stringptr, &host_lookup },
176 { "host_lookup_order", opt_stringptr, &host_lookup_order },
177 { "host_reject_connection", opt_stringptr, &host_reject_connection },
178 { "hosts_connection_nolog", opt_stringptr, &hosts_connection_nolog },
179#ifdef SUPPORT_PROXY
180 { "hosts_proxy", opt_stringptr, &hosts_proxy },
181#endif
182 { "hosts_treat_as_local", opt_stringptr, &hosts_treat_as_local },
183#ifdef LOOKUP_IBASE
184 { "ibase_servers", opt_stringptr, &ibase_servers },
185#endif
186 { "ignore_bounce_errors_after", opt_time, &ignore_bounce_errors_after },
187 { "ignore_fromline_hosts", opt_stringptr, &ignore_fromline_hosts },
188 { "ignore_fromline_local", opt_bool, &ignore_fromline_local },
189 { "keep_environment", opt_stringptr, &keep_environment },
190 { "keep_malformed", opt_time, &keep_malformed },
191#ifdef LOOKUP_LDAP
192 { "ldap_ca_cert_dir", opt_stringptr, &eldap_ca_cert_dir },
193 { "ldap_ca_cert_file", opt_stringptr, &eldap_ca_cert_file },
194 { "ldap_cert_file", opt_stringptr, &eldap_cert_file },
195 { "ldap_cert_key", opt_stringptr, &eldap_cert_key },
196 { "ldap_cipher_suite", opt_stringptr, &eldap_cipher_suite },
197 { "ldap_default_servers", opt_stringptr, &eldap_default_servers },
198 { "ldap_require_cert", opt_stringptr, &eldap_require_cert },
199 { "ldap_start_tls", opt_bool, &eldap_start_tls },
200 { "ldap_version", opt_int, &eldap_version },
201#endif
202 { "local_from_check", opt_bool, &local_from_check },
203 { "local_from_prefix", opt_stringptr, &local_from_prefix },
204 { "local_from_suffix", opt_stringptr, &local_from_suffix },
205 { "local_interfaces", opt_stringptr, &local_interfaces },
206#ifdef HAVE_LOCAL_SCAN
207 { "local_scan_timeout", opt_time, &local_scan_timeout },
208#endif
209 { "local_sender_retain", opt_bool, &local_sender_retain },
210 { "localhost_number", opt_stringptr, &host_number_string },
211 { "log_file_path", opt_stringptr, &log_file_path },
212 { "log_selector", opt_stringptr, &log_selector_string },
213 { "log_timezone", opt_bool, &log_timezone },
214 { "lookup_open_max", opt_int, &lookup_open_max },
215 { "max_username_length", opt_int, &max_username_length },
216 { "message_body_newlines", opt_bool, &message_body_newlines },
217 { "message_body_visible", opt_mkint, &message_body_visible },
218 { "message_id_header_domain", opt_stringptr, &message_id_domain },
219 { "message_id_header_text", opt_stringptr, &message_id_text },
220 { "message_logs", opt_bool, &message_logs },
221 { "message_size_limit", opt_stringptr, &message_size_limit },
222#ifdef SUPPORT_MOVE_FROZEN_MESSAGES
223 { "move_frozen_messages", opt_bool, &move_frozen_messages },
224#endif
225 { "mua_wrapper", opt_bool, &mua_wrapper },
226#ifdef LOOKUP_MYSQL
227 { "mysql_servers", opt_stringptr, &mysql_servers },
228#endif
229 { "never_users", opt_uidlist, &never_users },
230#ifndef DISABLE_TLS
231 { "openssl_options", opt_stringptr, &openssl_options },
232#endif
233#ifdef LOOKUP_ORACLE
234 { "oracle_servers", opt_stringptr, &oracle_servers },
235#endif
236 { "percent_hack_domains", opt_stringptr, &percent_hack_domains },
237#ifdef EXIM_PERL
238 { "perl_at_start", opt_bool, &opt_perl_at_start },
239 { "perl_startup", opt_stringptr, &opt_perl_startup },
240 { "perl_taintmode", opt_bool, &opt_perl_taintmode },
241#endif
242#ifdef LOOKUP_PGSQL
243 { "pgsql_servers", opt_stringptr, &pgsql_servers },
244#endif
245 { "pid_file_path", opt_stringptr, &pid_file_path },
246 { "pipelining_advertise_hosts", opt_stringptr, &pipelining_advertise_hosts },
247#ifdef SUPPORT_PIPE_CONNECT
248 { "pipelining_connect_advertise_hosts", opt_stringptr,
249 &pipe_connect_advertise_hosts },
250#endif
251#ifndef DISABLE_PRDR
252 { "prdr_enable", opt_bool, &prdr_enable },
253#endif
254 { "preserve_message_logs", opt_bool, &preserve_message_logs },
255 { "primary_hostname", opt_stringptr, &primary_hostname },
256 { "print_topbitchars", opt_bool, &print_topbitchars },
257 { "process_log_path", opt_stringptr, &process_log_path },
258 { "prod_requires_admin", opt_bool, &prod_requires_admin },
259 { "qualify_domain", opt_stringptr, &qualify_domain_sender },
260 { "qualify_recipient", opt_stringptr, &qualify_domain_recipient },
261 { "queue_domains", opt_stringptr, &queue_domains },
262 { "queue_list_requires_admin",opt_bool, &queue_list_requires_admin },
263 { "queue_only", opt_bool, &queue_only },
264 { "queue_only_file", opt_stringptr, &queue_only_file },
265 { "queue_only_load", opt_fixed, &queue_only_load },
266 { "queue_only_load_latch", opt_bool, &queue_only_load_latch },
267 { "queue_only_override", opt_bool, &queue_only_override },
268 { "queue_run_in_order", opt_bool, &queue_run_in_order },
269 { "queue_run_max", opt_stringptr, &queue_run_max },
270 { "queue_smtp_domains", opt_stringptr, &queue_smtp_domains },
271 { "receive_timeout", opt_time, &receive_timeout },
272 { "received_header_text", opt_stringptr, &received_header_text },
273 { "received_headers_max", opt_int, &received_headers_max },
274 { "recipient_unqualified_hosts", opt_stringptr, &recipient_unqualified_hosts },
275 { "recipients_max", opt_int, &recipients_max },
276 { "recipients_max_reject", opt_bool, &recipients_max_reject },
277#ifdef LOOKUP_REDIS
278 { "redis_servers", opt_stringptr, &redis_servers },
279#endif
280 { "remote_max_parallel", opt_int, &remote_max_parallel },
281 { "remote_sort_domains", opt_stringptr, &remote_sort_domains },
282 { "retry_data_expire", opt_time, &retry_data_expire },
283 { "retry_interval_max", opt_time, &retry_interval_max },
284 { "return_path_remove", opt_bool, &return_path_remove },
285 { "return_size_limit", opt_mkint|opt_hidden, &bounce_return_size_limit },
286 { "rfc1413_hosts", opt_stringptr, &rfc1413_hosts },
287 { "rfc1413_query_timeout", opt_time, &rfc1413_query_timeout },
288 { "sender_unqualified_hosts", opt_stringptr, &sender_unqualified_hosts },
289 { "slow_lookup_log", opt_int, &slow_lookup_log },
290 { "smtp_accept_keepalive", opt_bool, &smtp_accept_keepalive },
291 { "smtp_accept_max", opt_int, &smtp_accept_max },
292 { "smtp_accept_max_nonmail", opt_int, &smtp_accept_max_nonmail },
293 { "smtp_accept_max_nonmail_hosts", opt_stringptr, &smtp_accept_max_nonmail_hosts },
294 { "smtp_accept_max_per_connection", opt_int, &smtp_accept_max_per_connection },
295 { "smtp_accept_max_per_host", opt_stringptr, &smtp_accept_max_per_host },
296 { "smtp_accept_queue", opt_int, &smtp_accept_queue },
297 { "smtp_accept_queue_per_connection", opt_int, &smtp_accept_queue_per_connection },
298 { "smtp_accept_reserve", opt_int, &smtp_accept_reserve },
299 { "smtp_active_hostname", opt_stringptr, &raw_active_hostname },
300 { "smtp_banner", opt_stringptr, &smtp_banner },
301 { "smtp_check_spool_space", opt_bool, &smtp_check_spool_space },
302 { "smtp_connect_backlog", opt_int, &smtp_connect_backlog },
303 { "smtp_enforce_sync", opt_bool, &smtp_enforce_sync },
304 { "smtp_etrn_command", opt_stringptr, &smtp_etrn_command },
305 { "smtp_etrn_serialize", opt_bool, &smtp_etrn_serialize },
306 { "smtp_load_reserve", opt_fixed, &smtp_load_reserve },
307 { "smtp_max_synprot_errors", opt_int, &smtp_max_synprot_errors },
308 { "smtp_max_unknown_commands",opt_int, &smtp_max_unknown_commands },
309 { "smtp_ratelimit_hosts", opt_stringptr, &smtp_ratelimit_hosts },
310 { "smtp_ratelimit_mail", opt_stringptr, &smtp_ratelimit_mail },
311 { "smtp_ratelimit_rcpt", opt_stringptr, &smtp_ratelimit_rcpt },
312 { "smtp_receive_timeout", opt_func, (void *) &fn_smtp_receive_timeout },
313 { "smtp_reserve_hosts", opt_stringptr, &smtp_reserve_hosts },
314 { "smtp_return_error_details",opt_bool, &smtp_return_error_details },
315#ifdef SUPPORT_I18N
316 { "smtputf8_advertise_hosts", opt_stringptr, &smtputf8_advertise_hosts },
317#endif
318#ifdef WITH_CONTENT_SCAN
319 { "spamd_address", opt_stringptr, &spamd_address },
320#endif
321#ifdef SUPPORT_SPF
322 { "spf_guess", opt_stringptr, &spf_guess },
323#endif
324 { "split_spool_directory", opt_bool, &split_spool_directory },
325 { "spool_directory", opt_stringptr, &spool_directory },
326 { "spool_wireformat", opt_bool, &spool_wireformat },
327#ifdef LOOKUP_SQLITE
328 { "sqlite_lock_timeout", opt_int, &sqlite_lock_timeout },
329#endif
330#ifdef EXPERIMENTAL_SRS
331 { "srs_config", opt_stringptr, &srs_config },
332 { "srs_hashlength", opt_int, &srs_hashlength },
333 { "srs_hashmin", opt_int, &srs_hashmin },
334 { "srs_maxage", opt_int, &srs_maxage },
335 { "srs_secrets", opt_stringptr, &srs_secrets },
336 { "srs_usehash", opt_bool, &srs_usehash },
337 { "srs_usetimestamp", opt_bool, &srs_usetimestamp },
338#endif
339 { "strict_acl_vars", opt_bool, &strict_acl_vars },
340 { "strip_excess_angle_brackets", opt_bool, &strip_excess_angle_brackets },
341 { "strip_trailing_dot", opt_bool, &strip_trailing_dot },
342 { "syslog_duplication", opt_bool, &syslog_duplication },
343 { "syslog_facility", opt_stringptr, &syslog_facility_str },
344 { "syslog_pid", opt_bool, &syslog_pid },
345 { "syslog_processname", opt_stringptr, &syslog_processname },
346 { "syslog_timestamp", opt_bool, &syslog_timestamp },
347 { "system_filter", opt_stringptr, &system_filter },
348 { "system_filter_directory_transport", opt_stringptr,&system_filter_directory_transport },
349 { "system_filter_file_transport",opt_stringptr,&system_filter_file_transport },
350 { "system_filter_group", opt_gid, &system_filter_gid },
351 { "system_filter_pipe_transport",opt_stringptr,&system_filter_pipe_transport },
352 { "system_filter_reply_transport",opt_stringptr,&system_filter_reply_transport },
353 { "system_filter_user", opt_uid, &system_filter_uid },
354 { "tcp_nodelay", opt_bool, &tcp_nodelay },
355#ifdef USE_TCP_WRAPPERS
356 { "tcp_wrappers_daemon_name", opt_stringptr, &tcp_wrappers_daemon_name },
357#endif
358 { "timeout_frozen_after", opt_time, &timeout_frozen_after },
359 { "timezone", opt_stringptr, &timezone_string },
360 { "tls_advertise_hosts", opt_stringptr, &tls_advertise_hosts },
361#ifndef DISABLE_TLS
362 { "tls_certificate", opt_stringptr, &tls_certificate },
363 { "tls_crl", opt_stringptr, &tls_crl },
364 { "tls_dh_max_bits", opt_int, &tls_dh_max_bits },
365 { "tls_dhparam", opt_stringptr, &tls_dhparam },
366 { "tls_eccurve", opt_stringptr, &tls_eccurve },
367# ifndef DISABLE_OCSP
368 { "tls_ocsp_file", opt_stringptr, &tls_ocsp_file },
369# endif
370 { "tls_on_connect_ports", opt_stringptr, &tls_in.on_connect_ports },
371 { "tls_privatekey", opt_stringptr, &tls_privatekey },
372 { "tls_remember_esmtp", opt_bool, &tls_remember_esmtp },
373 { "tls_require_ciphers", opt_stringptr, &tls_require_ciphers },
374# ifdef EXPERIMENTAL_TLS_RESUME
375 { "tls_resumption_hosts", opt_stringptr, &tls_resumption_hosts },
376# endif
377 { "tls_try_verify_hosts", opt_stringptr, &tls_try_verify_hosts },
378 { "tls_verify_certificates", opt_stringptr, &tls_verify_certificates },
379 { "tls_verify_hosts", opt_stringptr, &tls_verify_hosts },
380#endif
381 { "trusted_groups", opt_gidlist, &trusted_groups },
382 { "trusted_users", opt_uidlist, &trusted_users },
383 { "unknown_login", opt_stringptr, &unknown_login },
384 { "unknown_username", opt_stringptr, &unknown_username },
385 { "untrusted_set_sender", opt_stringptr, &untrusted_set_sender },
386 { "uucp_from_pattern", opt_stringptr, &uucp_from_pattern },
387 { "uucp_from_sender", opt_stringptr, &uucp_from_sender },
388 { "warn_message_file", opt_stringptr, &warn_message_file },
389 { "write_rejectlog", opt_bool, &write_rejectlog }
390};
391
392#ifndef MACRO_PREDEF
393static int optionlist_config_size = nelem(optionlist_config);
394#endif
395
396
397#ifdef MACRO_PREDEF
398
399static void
400fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags) {/*Dummy*/}
401
402void
403options_main(void)
404{
405options_from_list(optionlist_config, nelem(optionlist_config), US"MAIN", NULL);
406}
407
408void
409options_auths(void)
410{
411uschar buf[64];
412
413options_from_list(optionlist_auths, optionlist_auths_size, US"AUTHENTICATORS", NULL);
414
415for (struct auth_info * ai = auths_available; ai->driver_name[0]; ai++)
416 {
417 spf(buf, sizeof(buf), US"_DRIVER_AUTHENTICATOR_%T", ai->driver_name);
418 builtin_macro_create(buf);
419 options_from_list(ai->options, (unsigned)*ai->options_count, US"AUTHENTICATOR", ai->driver_name);
420 }
421}
422
423void
424options_logging(void)
425{
426uschar buf[64];
427
428for (bit_table * bp = log_options; bp < log_options + log_options_count; bp++)
429 {
430 spf(buf, sizeof(buf), US"_LOG_%T", bp->name);
431 builtin_macro_create(buf);
432 }
433}
434
435
436#else /*!MACRO_PREDEF*/
437
438extern char **environ;
439
440static void save_config_line(const uschar* line);
441static void save_config_position(const uschar *file, int line);
442static void print_config(BOOL admin, BOOL terse);
443
444
445#define CSTATE_STACK_SIZE 10
446
447const uschar *config_directory = NULL;
448
449
450/* Structure for chain (stack) of .included files */
451
452typedef struct config_file_item {
453 struct config_file_item *next;
454 const uschar *filename;
455 const uschar *directory;
456 FILE *file;
457 int lineno;
458} config_file_item;
459
460/* Structure for chain of configuration lines (-bP config) */
461
462typedef struct config_line_item {
463 struct config_line_item *next;
464 uschar *line;
465} config_line_item;
466
467static config_line_item* config_lines;
468
469/* Structure of table of conditional words and their state transitions */
470
471typedef struct cond_item {
472 uschar *name;
473 int namelen;
474 int action1;
475 int action2;
476 int pushpop;
477} cond_item;
478
479/* Structure of table of syslog facility names and values */
480
481typedef struct syslog_fac_item {
482 uschar *name;
483 int value;
484} syslog_fac_item;
485
486/* constants */
487static const char * const hidden = "<value not displayable>";
488
489/* Static variables */
490
491static config_file_item *config_file_stack = NULL; /* For includes */
492
493static uschar *syslog_facility_str = NULL;
494static uschar next_section[24];
495static uschar time_buffer[24];
496
497/* State variables for conditional loading (.ifdef / .else / .endif) */
498
499static int cstate = 0;
500static int cstate_stack_ptr = -1;
501static int cstate_stack[CSTATE_STACK_SIZE];
502
503/* Table of state transitions for handling conditional inclusions. There are
504four possible state transitions:
505
506 .ifdef true
507 .ifdef false
508 .elifdef true (or .else)
509 .elifdef false
510
511.endif just causes the previous cstate to be popped off the stack */
512
513static int next_cstate[3][4] =
514 {
515 /* State 0: reading from file, or reading until next .else or .endif */
516 { 0, 1, 2, 2 },
517 /* State 1: condition failed, skipping until next .else or .endif */
518 { 2, 2, 0, 1 },
519 /* State 2: skipping until .endif */
520 { 2, 2, 2, 2 },
521 };
522
523/* Table of conditionals and the states to set. For each name, there are four
524values: the length of the name (to save computing it each time), the state to
525set if a macro was found in the line, the state to set if a macro was not found
526in the line, and a stack manipulation setting which is:
527
528 -1 pull state value off the stack
529 0 don't alter the stack
530 +1 push value onto stack, before setting new state
531*/
532
533static cond_item cond_list[] = {
534 { US"ifdef", 5, 0, 1, 1 },
535 { US"ifndef", 6, 1, 0, 1 },
536 { US"elifdef", 7, 2, 3, 0 },
537 { US"elifndef", 8, 3, 2, 0 },
538 { US"else", 4, 2, 2, 0 },
539 { US"endif", 5, 0, 0, -1 }
540};
541
542static int cond_list_size = sizeof(cond_list)/sizeof(cond_item);
543
544/* Table of syslog facility names and their values */
545
546static syslog_fac_item syslog_list[] = {
547 { US"mail", LOG_MAIL },
548 { US"user", LOG_USER },
549 { US"news", LOG_NEWS },
550 { US"uucp", LOG_UUCP },
551 { US"local0", LOG_LOCAL0 },
552 { US"local1", LOG_LOCAL1 },
553 { US"local2", LOG_LOCAL2 },
554 { US"local3", LOG_LOCAL3 },
555 { US"local4", LOG_LOCAL4 },
556 { US"local5", LOG_LOCAL5 },
557 { US"local6", LOG_LOCAL6 },
558 { US"local7", LOG_LOCAL7 },
559 { US"daemon", LOG_DAEMON }
560};
561
562static int syslog_list_size = sizeof(syslog_list)/sizeof(syslog_fac_item);
563
564
565#define opt_fn_print BIT(0)
566#define opt_fn_print_label BIT(1)
567
568
569/*************************************************
570* Find the name of an option *
571*************************************************/
572
573/* This function is to aid debugging. Various functions take arguments that are
574pointer variables in the options table or in option tables for various drivers.
575For debugging output, it is useful to be able to find the name of the option
576which is currently being processed. This function finds it, if it exists, by
577searching the table(s).
578
579Arguments: a value that is presumed to be in the table above
580Returns: the option name, or an empty string
581*/
582
583uschar *
584readconf_find_option(void *p)
585{
586for (int i = 0; i < nelem(optionlist_config); i++)
587 if (p == optionlist_config[i].value) return US optionlist_config[i].name;
588
589for (router_instance * r = routers; r; r = r->next)
590 {
591 router_info *ri = r->info;
592 for (int i = 0; i < *ri->options_count; i++)
593 {
594 if ((ri->options[i].type & opt_mask) != opt_stringptr) continue;
595 if (p == CS (r->options_block) + (long int)(ri->options[i].value))
596 return US ri->options[i].name;
597 }
598 }
599
600for (transport_instance * t = transports; t; t = t->next)
601 {
602 transport_info *ti = t->info;
603 for (int i = 0; i < *ti->options_count; i++)
604 {
605 optionlist * op = &ti->options[i];
606 if ((op->type & opt_mask) != opt_stringptr) continue;
607 if (p == ( op->type & opt_public
608 ? CS t
609 : CS t->options_block
610 )
611 + (long int)op->value)
612 return US op->name;
613 }
614 }
615
616return US"";
617}
618
619
620
621
622/*************************************************
623* Deal with an assignment to a macro *
624*************************************************/
625
626/* We have a new definition; append to the list.
627
628Args:
629 name Name of the macro; will be copied
630 val Expansion result for the macro; will be copied
631*/
632
633macro_item *
634macro_create(const uschar * name, const uschar * val, BOOL command_line)
635{
636macro_item * m = store_get(sizeof(macro_item), FALSE);
637
638READCONF_DEBUG fprintf(stderr, "%s: '%s' '%s'\n", __FUNCTION__, name, val);
639m->next = NULL;
640m->command_line = command_line;
641m->namelen = Ustrlen(name);
642m->replen = Ustrlen(val);
643m->name = string_copy(name);
644m->replacement = string_copy(val);
645if (mlast)
646 mlast->next = m;
647else
648 macros = m;
649mlast = m;
650if (!macros_user)
651 macros_user = m;
652return m;
653}
654
655
656/* This function is called when a line that starts with an upper case letter is
657encountered. The argument "line" should contain a complete logical line, and
658start with the first letter of the macro name. The macro name and the
659replacement text are extracted and stored. Redefinition of existing,
660non-command line, macros is permitted using '==' instead of '='.
661
662Arguments:
663 s points to the start of the logical line
664
665Returns: FALSE iff fatal error
666*/
667
668BOOL
669macro_read_assignment(uschar *s)
670{
671uschar name[64];
672int namelen = 0;
673BOOL redef = FALSE;
674macro_item *m;
675
676while (isalnum(*s) || *s == '_')
677 {
678 if (namelen >= sizeof(name) - 1)
679 {
680 log_write(0, LOG_PANIC|LOG_CONFIG_IN,
681 "macro name too long (maximum is " SIZE_T_FMT " characters)", sizeof(name) - 1);
682 return FALSE;
683 }
684 name[namelen++] = *s++;
685 }
686name[namelen] = 0;
687
688while (isspace(*s)) s++;
689if (*s++ != '=')
690 {
691 log_write(0, LOG_PANIC|LOG_CONFIG_IN, "malformed macro definition");
692 return FALSE;
693 }
694
695if (*s == '=')
696 {
697 redef = TRUE;
698 s++;
699 }
700while (isspace(*s)) s++;
701
702/* If an existing macro of the same name was defined on the command line, we
703just skip this definition. It's an error to attempt to redefine a macro without
704redef set to TRUE, or to redefine a macro when it hasn't been defined earlier.
705It is also an error to define a macro whose name begins with the name of a
706previously defined macro. This is the requirement that make using a tree
707for macros hard; we must check all macros for the substring. Perhaps a
708sorted list, and a bsearch, would work?
709Note: it is documented that the other way round works. */
710
711for (m = macros; m; m = m->next)
712 {
713 if (Ustrcmp(m->name, name) == 0)
714 {
715 if (!m->command_line && !redef)
716 {
717 log_write(0, LOG_CONFIG|LOG_PANIC, "macro \"%s\" is already "
718 "defined (use \"==\" if you want to redefine it)", name);
719 return FALSE;
720 }
721 break;
722 }
723
724 if (m->namelen < namelen && Ustrstr(name, m->name) != NULL)
725 {
726 log_write(0, LOG_CONFIG|LOG_PANIC, "\"%s\" cannot be defined as "
727 "a macro because previously defined macro \"%s\" is a substring",
728 name, m->name);
729 return FALSE;
730 }
731
732 /* We cannot have this test, because it is documented that a substring
733 macro is permitted (there is even an example).
734 *
735 * if (m->namelen > namelen && Ustrstr(m->name, name) != NULL)
736 * log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "\"%s\" cannot be defined as "
737 * "a macro because it is a substring of previously defined macro \"%s\"",
738 * name, m->name);
739 */
740 }
741
742/* Check for an overriding command-line definition. */
743
744if (m && m->command_line) return TRUE;
745
746/* Redefinition must refer to an existing macro. */
747
748if (redef)
749 if (m)
750 {
751 m->replen = Ustrlen(s);
752 m->replacement = string_copy(s);
753 }
754 else
755 {
756 log_write(0, LOG_CONFIG|LOG_PANIC, "can't redefine an undefined macro "
757 "\"%s\"", name);
758 return FALSE;
759 }
760
761/* We have a new definition. */
762else
763 (void) macro_create(name, s, FALSE);
764return TRUE;
765}
766
767
768
769
770
771/* Process line for macros. The line is in big_buffer starting at offset len.
772Expand big_buffer if needed. Handle definitions of new macros, and
773macro expansions, rewriting the line in the buffer.
774
775Arguments:
776 len Offset in buffer of start of line
777 newlen Pointer to offset of end of line, updated on return
778 macro_found Pointer to return that a macro was expanded
779
780Return: pointer to first nonblank char in line
781*/
782
783uschar *
784macros_expand(int len, int * newlen, BOOL * macro_found)
785{
786uschar * ss = big_buffer + len;
787uschar * s;
788
789/* Find the true start of the physical line - leading spaces are always
790ignored. */
791
792while (isspace(*ss)) ss++;
793
794/* Process the physical line for macros. If this is the start of the logical
795line, skip over initial text at the start of the line if it starts with an
796upper case character followed by a sequence of name characters and an equals
797sign, because that is the definition of a new macro, and we don't do
798replacement therein. */
799
800s = ss;
801if (len == 0 && isupper(*s))
802 {
803 while (isalnum(*s) || *s == '_') s++;
804 while (isspace(*s)) s++;
805 if (*s != '=') s = ss; /* Not a macro definition */
806 }
807
808/* Skip leading chars which cannot start a macro name, to avoid multiple
809pointless rescans in Ustrstr calls. */
810
811while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
812
813/* For each defined macro, scan the line (from after XXX= if present),
814replacing all occurrences of the macro. */
815
816*macro_found = FALSE;
817if (*s) for (macro_item * m = *s == '_' ? macros : macros_user; m; m = m->next)
818 {
819 uschar * p, *pp;
820 uschar * t;
821
822 while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
823 if (!*s) break;
824
825 t = s;
826 while ((p = Ustrstr(t, m->name)) != NULL)
827 {
828 int moveby;
829
830 READCONF_DEBUG fprintf(stderr, "%s: matched '%s' in '%.*s'\n", __FUNCTION__,
831 m->name, (int) Ustrlen(ss)-1, ss);
832 /* Expand the buffer if necessary */
833
834 while (*newlen - m->namelen + m->replen + 1 > big_buffer_size)
835 {
836 int newsize = big_buffer_size + BIG_BUFFER_SIZE;
837 uschar *newbuffer = store_malloc(newsize);
838 memcpy(newbuffer, big_buffer, *newlen + 1);
839 p = newbuffer + (p - big_buffer);
840 s = newbuffer + (s - big_buffer);
841 ss = newbuffer + (ss - big_buffer);
842 t = newbuffer + (t - big_buffer);
843 big_buffer_size = newsize;
844 store_free(big_buffer);
845 big_buffer = newbuffer;
846 }
847
848 /* Shuffle the remaining characters up or down in the buffer before
849 copying in the replacement text. Don't rescan the replacement for this
850 same macro. */
851
852 pp = p + m->namelen;
853 if ((moveby = m->replen - m->namelen) != 0)
854 {
855 memmove(p + m->replen, pp, (big_buffer + *newlen) - pp + 1);
856 *newlen += moveby;
857 }
858 Ustrncpy(p, m->replacement, m->replen);
859 t = p + m->replen;
860 while (*t && !isupper(*t) && !(*t == '_' && isupper(t[1]))) t++;
861 *macro_found = TRUE;
862 }
863 }
864
865/* An empty macro replacement at the start of a line could mean that ss no
866longer points to the first non-blank character. */
867
868while (isspace(*ss)) ss++;
869return ss;
870}
871
872/*************************************************
873* Read configuration line *
874*************************************************/
875
876/* A logical line of text is read from the configuration file into the big
877buffer, taking account of macros, .includes, and continuations. The size of
878big_buffer is increased if necessary. The count of configuration lines is
879maintained. Physical input lines starting with # (ignoring leading white space,
880and after macro replacement) and empty logical lines are always ignored.
881Leading and trailing spaces are removed.
882
883If we hit a line of the form "begin xxxx", the xxxx is placed in the
884next_section vector, and the function returns NULL, indicating the end of a
885configuration section. On end-of-file, NULL is returned with next_section
886empty.
887
888Arguments: none
889
890Returns: a pointer to the first non-blank in the line,
891 or NULL if eof or end of section is reached
892*/
893
894static uschar *
895get_config_line(void)
896{
897int startoffset = 0; /* To first non-blank char in logical line */
898int len = 0; /* Of logical line so far */
899int newlen;
900uschar *s, *ss;
901BOOL macro_found;
902
903/* Loop for handling continuation lines, skipping comments, and dealing with
904.include files. */
905
906for (;;)
907 {
908 if (Ufgets(big_buffer+len, big_buffer_size-len, config_file) == NULL)
909 {
910 if (config_file_stack != NULL) /* EOF inside .include */
911 {
912 (void)fclose(config_file);
913 config_file = config_file_stack->file;
914 config_filename = config_file_stack->filename;
915 config_directory = config_file_stack->directory;
916 config_lineno = config_file_stack->lineno;
917 config_file_stack = config_file_stack->next;
918 if (config_lines)
919 save_config_position(config_filename, config_lineno);
920 continue;
921 }
922
923 /* EOF at top level */
924
925 if (cstate_stack_ptr >= 0)
926 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
927 "Unexpected end of configuration file: .endif missing");
928
929 if (len != 0) break; /* EOF after continuation */
930 next_section[0] = 0; /* EOF at start of logical line */
931 return NULL;
932 }
933
934 config_lineno++;
935 newlen = len + Ustrlen(big_buffer + len);
936
937 if (config_lines && config_lineno == 1)
938 save_config_position(config_filename, config_lineno);
939
940 /* Handle pathologically long physical lines - yes, it did happen - by
941 extending big_buffer at this point. The code also copes with very long
942 logical lines. */
943
944 while (newlen == big_buffer_size - 1 && big_buffer[newlen - 1] != '\n')
945 {
946 uschar *newbuffer;
947 big_buffer_size += BIG_BUFFER_SIZE;
948 newbuffer = store_malloc(big_buffer_size);
949
950 /* This use of strcpy is OK because we know that the string in the old
951 buffer is shorter than the new buffer. */
952
953 Ustrcpy(newbuffer, big_buffer);
954 store_free(big_buffer);
955 big_buffer = newbuffer;
956 if (Ufgets(big_buffer+newlen, big_buffer_size-newlen, config_file) == NULL)
957 break;
958 newlen += Ustrlen(big_buffer + newlen);
959 }
960
961 ss = macros_expand(len, &newlen, &macro_found);
962
963 /* Check for comment lines - these are physical lines. */
964
965 if (*ss == '#') continue;
966
967 /* Handle conditionals, which are also applied to physical lines. Conditions
968 are of the form ".ifdef ANYTEXT" and are treated as true if any macro
969 expansion occurred on the rest of the line. A preliminary test for the leading
970 '.' saves effort on most lines. */
971
972 if (*ss == '.')
973 {
974 int i;
975
976 /* Search the list of conditional directives */
977
978 for (i = 0; i < cond_list_size; i++)
979 {
980 int n;
981 cond_item *c = cond_list+i;
982 if (Ustrncmp(ss+1, c->name, c->namelen) != 0) continue;
983
984 /* The following character must be white space or end of string */
985
986 n = ss[1 + c->namelen];
987 if (n != ' ' && n != 't' && n != '\n' && n != 0) break;
988
989 /* .ifdef and .ifndef push the current state onto the stack, then set
990 a new one from the table. Stack overflow is an error */
991
992 if (c->pushpop > 0)
993 {
994 if (cstate_stack_ptr >= CSTATE_STACK_SIZE - 1)
995 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
996 ".%s nested too deeply", c->name);
997 cstate_stack[++cstate_stack_ptr] = cstate;
998 cstate = next_cstate[cstate][macro_found? c->action1 : c->action2];
999 }
1000
1001 /* For any of the others, stack underflow is an error. The next state
1002 comes either from the stack (.endif) or from the table. */
1003
1004 else
1005 {
1006 if (cstate_stack_ptr < 0)
1007 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1008 ".%s without matching .ifdef", c->name);
1009 cstate = (c->pushpop < 0)? cstate_stack[cstate_stack_ptr--] :
1010 next_cstate[cstate][macro_found? c->action1 : c->action2];
1011 }
1012
1013 /* Having dealt with a directive, break the loop */
1014
1015 break;
1016 }
1017
1018 /* If we have handled a conditional directive, continue with the next
1019 physical line. Otherwise, fall through. */
1020
1021 if (i < cond_list_size) continue;
1022 }
1023
1024 /* If the conditional state is not 0 (actively using these lines), ignore
1025 this input line. */
1026
1027 if (cstate != 0) continue; /* Conditional skip */
1028
1029 /* Handle .include lines - these are also physical lines. */
1030
1031 if (Ustrncmp(ss, ".include", 8) == 0 &&
1032 (isspace(ss[8]) ||
1033 (Ustrncmp(ss+8, "_if_exists", 10) == 0 && isspace(ss[18]))))
1034 {
1035 uschar *t;
1036 int include_if_exists = isspace(ss[8])? 0 : 10;
1037 config_file_item *save;
1038 struct stat statbuf;
1039
1040 ss += 9 + include_if_exists;
1041 while (isspace(*ss)) ss++;
1042 t = ss + Ustrlen(ss);
1043 while (t > ss && isspace(t[-1])) t--;
1044 if (*ss == '\"' && t[-1] == '\"')
1045 {
1046 ss++;
1047 t--;
1048 }
1049 *t = 0;
1050
1051 /* We allow relative file names. For security reasons currently
1052 relative names not allowed with .include_if_exists. For .include_if_exists
1053 we need to check the permissions/ownership of the containing folder */
1054 if (*ss != '/')
1055 if (include_if_exists) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, ".include specifies a non-"
1056 "absolute path \"%s\"", ss);
1057 else
1058 {
1059 gstring * g = string_append(NULL, 3, config_directory, "/", ss);
1060 ss = string_from_gstring(g);
1061 }
1062
1063 if (include_if_exists != 0 && (Ustat(ss, &statbuf) != 0)) continue;
1064
1065 if (config_lines)
1066 save_config_position(config_filename, config_lineno);
1067 save = store_get(sizeof(config_file_item), FALSE);
1068 save->next = config_file_stack;
1069 config_file_stack = save;
1070 save->file = config_file;
1071 save->filename = config_filename;
1072 save->directory = config_directory;
1073 save->lineno = config_lineno;
1074
1075 if (!(config_file = Ufopen(ss, "rb")))
1076 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to open included "
1077 "configuration file %s", ss);
1078
1079 config_filename = string_copy(ss);
1080 config_directory = string_copyn(ss, CUstrrchr(ss, '/') - ss);
1081 config_lineno = 0;
1082 continue;
1083 }
1084
1085 /* If this is the start of the logical line, remember where the non-blank
1086 data starts. Otherwise shuffle down continuation lines to remove leading
1087 white space. */
1088
1089 if (len == 0)
1090 startoffset = ss - big_buffer;
1091 else
1092 {
1093 s = big_buffer + len;
1094 if (ss > s)
1095 {
1096 memmove(s, ss, (newlen - len) - (ss - s) + 1);
1097 newlen -= ss - s;
1098 }
1099 }
1100
1101 /* Accept the new addition to the line. Remove trailing white space. */
1102
1103 len = newlen;
1104 while (len > 0 && isspace(big_buffer[len-1])) len--;
1105 big_buffer[len] = 0;
1106
1107 /* We are done if the line does not end in backslash and contains some data.
1108 Empty logical lines are ignored. For continuations, remove the backslash and
1109 go round the loop to read the continuation line. */
1110
1111 if (len > 0)
1112 {
1113 if (big_buffer[len-1] != '\\') break; /* End of logical line */
1114 big_buffer[--len] = 0; /* Remove backslash */
1115 }
1116 } /* Loop for reading multiple physical lines */
1117
1118/* We now have a logical line. Test for the end of a configuration section (or,
1119more accurately, for the start of the next section). Place the name of the next
1120section in next_section, and return NULL. If the name given is longer than
1121next_section, truncate it. It will be unrecognized later, because all the known
1122section names do fit. Leave space for pluralizing. */
1123
1124s = big_buffer + startoffset; /* First non-space character */
1125
1126if (config_lines)
1127 save_config_line(s);
1128
1129if (strncmpic(s, US"begin ", 6) == 0)
1130 {
1131 s += 6;
1132 while (isspace(*s)) s++;
1133 if (big_buffer + len - s > sizeof(next_section) - 2)
1134 s[sizeof(next_section) - 2] = 0;
1135 Ustrcpy(next_section, s);
1136 return NULL;
1137 }
1138
1139/* Return the first non-blank character. */
1140
1141return s;
1142}
1143
1144
1145
1146/*************************************************
1147* Read a name *
1148*************************************************/
1149
1150/* The yield is the pointer to the next uschar. Names longer than the
1151output space are silently truncated. This function is also used from acl.c when
1152parsing ACLs.
1153
1154Arguments:
1155 name where to put the name
1156 len length of name
1157 s input pointer
1158
1159Returns: new input pointer
1160*/
1161
1162uschar *
1163readconf_readname(uschar *name, int len, uschar *s)
1164{
1165int p = 0;
1166while (isspace(*s)) s++;
1167if (isalpha(*s))
1168 {
1169 while (isalnum(*s) || *s == '_')
1170 {
1171 if (p < len-1) name[p++] = *s;
1172 s++;
1173 }
1174 }
1175name[p] = 0;
1176while (isspace(*s)) s++;
1177return s;
1178}
1179
1180
1181
1182
1183/*************************************************
1184* Read a time value *
1185*************************************************/
1186
1187/* This function is also called from outside, to read argument
1188time values. The format of a time value is:
1189
1190 [<n>w][<n>d][<n>h][<n>m][<n>s]
1191
1192as long as at least one is present. If a format error is encountered,
1193return a negative value. The value must be terminated by the given
1194terminator.
1195
1196Arguments:
1197 s input pointer
1198 terminator required terminating character
1199 return_msec if TRUE, allow fractional seconds and return milliseconds
1200
1201Returns: the time value, or -1 on syntax error
1202 value is seconds if return_msec is FALSE
1203 value is milliseconds if return_msec is TRUE
1204*/
1205
1206int
1207readconf_readtime(const uschar *s, int terminator, BOOL return_msec)
1208{
1209int yield = 0;
1210for (;;)
1211 {
1212 int value, count;
1213 double fraction;
1214
1215 if (!isdigit(*s)) return -1;
1216 (void)sscanf(CCS s, "%d%n", &value, &count);
1217 s += count;
1218
1219 switch (*s)
1220 {
1221 case 'w': value *= 7;
1222 case 'd': value *= 24;
1223 case 'h': value *= 60;
1224 case 'm': value *= 60;
1225 case 's': s++;
1226 break;
1227
1228 case '.':
1229 if (!return_msec) return -1;
1230 (void)sscanf(CCS s, "%lf%n", &fraction, &count);
1231 s += count;
1232 if (*s++ != 's') return -1;
1233 yield += (int)(fraction * 1000.0);
1234 break;
1235
1236 default: return -1;
1237 }
1238
1239 if (return_msec) value *= 1000;
1240 yield += value;
1241 if (*s == terminator) return yield;
1242 }
1243/* Control never reaches here. */
1244}
1245
1246
1247
1248/*************************************************
1249* Read a fixed point value *
1250*************************************************/
1251
1252/* The value is returned *1000
1253
1254Arguments:
1255 s input pointer
1256 terminator required terminator
1257
1258Returns: the value, or -1 on error
1259*/
1260
1261static int
1262readconf_readfixed(const uschar *s, int terminator)
1263{
1264int yield = 0;
1265int value, count;
1266if (!isdigit(*s)) return -1;
1267(void)sscanf(CS s, "%d%n", &value, &count);
1268s += count;
1269yield = value * 1000;
1270if (*s == '.')
1271 {
1272 int m = 100;
1273 while (isdigit((*(++s))))
1274 {
1275 yield += (*s - '0') * m;
1276 m /= 10;
1277 }
1278 }
1279
1280return (*s == terminator)? yield : (-1);
1281}
1282
1283
1284
1285/*************************************************
1286* Find option in list *
1287*************************************************/
1288
1289/* The lists are always in order, so binary chop can be used.
1290
1291Arguments:
1292 name the option name to search for
1293 ol the first entry in the option list
1294 last one more than the offset of the last entry in the option list
1295
1296Returns: pointer to an option entry, or NULL if not found
1297*/
1298
1299static optionlist *
1300find_option(uschar *name, optionlist *ol, int last)
1301{
1302int first = 0;
1303while (last > first)
1304 {
1305 int middle = (first + last)/2;
1306 int c = Ustrcmp(name, ol[middle].name);
1307
1308 if (c == 0) return ol + middle;
1309 else if (c > 0) first = middle + 1;
1310 else last = middle;
1311 }
1312return NULL;
1313}
1314
1315
1316
1317/*************************************************
1318* Find a set flag in option list *
1319*************************************************/
1320
1321/* Because some versions of Unix make no restrictions on the values of uids and
1322gids (even negative ones), we cannot represent "unset" by a special value.
1323There is therefore a separate boolean variable for each one indicating whether
1324a value is set or not. This function returns a pointer to the boolean, given
1325the original option name. It is a major disaster if the flag cannot be found.
1326
1327Arguments:
1328 name the name of the uid or gid option
1329 oltop points to the start of the relevant option list
1330 last one more than the offset of the last item in the option list
1331 data_block NULL when reading main options => data values in the option
1332 list are absolute addresses; otherwise they are byte offsets
1333 in data_block (used for driver options)
1334
1335Returns: a pointer to the boolean flag.
1336*/
1337
1338static BOOL *
1339get_set_flag(uschar *name, optionlist *oltop, int last, void *data_block)
1340{
1341optionlist *ol;
1342uschar name2[64];
1343sprintf(CS name2, "*set_%.50s", name);
1344ol = find_option(name2, oltop, last);
1345if (ol == NULL) log_write(0, LOG_MAIN|LOG_PANIC_DIE,
1346 "Exim internal error: missing set flag for %s", name);
1347return (data_block == NULL)? (BOOL *)(ol->value) :
1348 (BOOL *)(US data_block + (long int)(ol->value));
1349}
1350
1351
1352
1353
1354/*************************************************
1355* Output extra characters message and die *
1356*************************************************/
1357
1358/* Called when an option line has junk on the end. Sometimes this is because
1359the sysadmin thinks comments are permitted.
1360
1361Arguments:
1362 s points to the extra characters
1363 t1..t3 strings to insert in the log message
1364
1365Returns: doesn't return; dies
1366*/
1367
1368static void
1369extra_chars_error(const uschar *s, const uschar *t1, const uschar *t2, const uschar *t3)
1370{
1371uschar *comment = US"";
1372if (*s == '#') comment = US" (# is comment only at line start)";
1373log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1374 "extra characters follow %s%s%s%s", t1, t2, t3, comment);
1375}
1376
1377
1378
1379/*************************************************
1380* Read rewrite information *
1381*************************************************/
1382
1383/* Each line of rewrite information contains:
1384
1385. A complete address in the form user@domain, possibly with
1386 leading * for each part; or alternatively, a regex.
1387
1388. A replacement string (which will be expanded).
1389
1390. An optional sequence of one-letter flags, indicating which
1391 headers etc. to apply this rule to.
1392
1393All this is decoded and placed into a control block. The OR of the flags is
1394maintained in a common word.
1395
1396Arguments:
1397 p points to the string that makes up the rule
1398 existflags points to the overall flag word
1399 isglobal TRUE if reading global rewrite rules
1400
1401Returns: the control block for the parsed rule.
1402*/
1403
1404static rewrite_rule *
1405readconf_one_rewrite(const uschar *p, int *existflags, BOOL isglobal)
1406{
1407rewrite_rule *next = store_get(sizeof(rewrite_rule), FALSE);
1408
1409next->next = NULL;
1410next->key = string_dequote(&p);
1411
1412while (isspace(*p)) p++;
1413if (*p == 0)
1414 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1415 "missing rewrite replacement string");
1416
1417next->flags = 0;
1418next->replacement = string_dequote(&p);
1419
1420while (*p != 0) switch (*p++)
1421 {
1422 case ' ': case '\t': break;
1423
1424 case 'q': next->flags |= rewrite_quit; break;
1425 case 'w': next->flags |= rewrite_whole; break;
1426
1427 case 'h': next->flags |= rewrite_all_headers; break;
1428 case 's': next->flags |= rewrite_sender; break;
1429 case 'f': next->flags |= rewrite_from; break;
1430 case 't': next->flags |= rewrite_to; break;
1431 case 'c': next->flags |= rewrite_cc; break;
1432 case 'b': next->flags |= rewrite_bcc; break;
1433 case 'r': next->flags |= rewrite_replyto; break;
1434
1435 case 'E': next->flags |= rewrite_all_envelope; break;
1436 case 'F': next->flags |= rewrite_envfrom; break;
1437 case 'T': next->flags |= rewrite_envto; break;
1438
1439 case 'Q': next->flags |= rewrite_qualify; break;
1440 case 'R': next->flags |= rewrite_repeat; break;
1441
1442 case 'S':
1443 next->flags |= rewrite_smtp;
1444 if (next->key[0] != '^' && Ustrncmp(next->key, "\\N^", 3) != 0)
1445 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1446 "rewrite rule has the S flag but is not a regular expression");
1447 break;
1448
1449 default:
1450 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1451 "unknown rewrite flag character '%c' "
1452 "(could be missing quotes round replacement item)", p[-1]);
1453 break;
1454 }
1455
1456/* If no action flags are set, set all the "normal" rewrites. */
1457
1458if ((next->flags & (rewrite_all | rewrite_smtp)) == 0)
1459 next->flags |= isglobal? rewrite_all : rewrite_all_headers;
1460
1461/* Remember which exist, for optimization, and return the rule */
1462
1463*existflags |= next->flags;
1464return next;
1465}
1466
1467
1468
1469
1470/*************************************************
1471* Read global rewrite information *
1472*************************************************/
1473
1474/* Each line is a single rewrite rule; it is parsed into a control block
1475by readconf_one_rewrite(), and its flags are ORed into the global flag
1476word rewrite_existflags. */
1477
1478void
1479readconf_rewrites(void)
1480{
1481rewrite_rule **chain = &global_rewrite_rules;
1482uschar *p;
1483
1484while ((p = get_config_line()) != NULL)
1485 {
1486 rewrite_rule *next = readconf_one_rewrite(p, &rewrite_existflags, TRUE);
1487 *chain = next;
1488 chain = &(next->next);
1489 }
1490}
1491
1492
1493
1494/*************************************************
1495* Read a string *
1496*************************************************/
1497
1498/* Strings are read into the normal store pool. As long we aren't too
1499near the end of the current block, the string will just use what is necessary
1500on the top of the stacking pool, because string_cat() uses the extension
1501mechanism.
1502
1503Argument:
1504 s the rest of the input line
1505 name the option name (for errors)
1506
1507Returns: pointer to the string
1508*/
1509
1510static uschar *
1511read_string(const uschar *s, const uschar *name)
1512{
1513uschar *yield;
1514const uschar *ss;
1515
1516if (*s != '\"') return string_copy(s);
1517
1518ss = s;
1519yield = string_dequote(&s);
1520
1521if (s == ss+1 || s[-1] != '\"')
1522 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1523 "missing quote at end of string value for %s", name);
1524
1525if (*s != 0) extra_chars_error(s, US"string value for ", name, US"");
1526
1527return yield;
1528}
1529
1530
1531/*************************************************
1532* Custom-handler options *
1533*************************************************/
1534static void
1535fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags)
1536{
1537if (flags & opt_fn_print)
1538 {
1539 if (flags & opt_fn_print_label) printf("%s = ", name);
1540 printf("%s\n", smtp_receive_timeout_s
1541 ? string_printing2(smtp_receive_timeout_s, FALSE)
1542 : readconf_printtime(smtp_receive_timeout));
1543 }
1544else if (*str == '$')
1545 smtp_receive_timeout_s = string_copy(str);
1546else
1547 {
1548 /* "smtp_receive_timeout", opt_time, &smtp_receive_timeout */
1549 smtp_receive_timeout = readconf_readtime(str, 0, FALSE);
1550 if (smtp_receive_timeout < 0)
1551 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
1552 name);
1553 }
1554}
1555
1556/*************************************************
1557* Handle option line *
1558*************************************************/
1559
1560/* This function is called from several places to process a line containing the
1561setting of an option. The first argument is the line to be decoded; it has been
1562checked not to be empty and not to start with '#'. Trailing newlines and white
1563space have been removed. The second argument is a pointer to the list of
1564variable names that are to be recognized, together with their types and
1565locations, and the third argument gives the number of entries in the list.
1566
1567The fourth argument is a pointer to a data block. If it is NULL, then the data
1568values in the options list are absolute addresses. Otherwise, they are byte
1569offsets in the data block.
1570
1571String option data may continue onto several lines; this function reads further
1572data from config_file if necessary.
1573
1574The yield of this function is normally zero. If a string continues onto
1575multiple lines, then the data value is permitted to be followed by a comma
1576or a semicolon (for use in drivers) and the yield is that character.
1577
1578Arguments:
1579 buffer contains the configuration line to be handled
1580 oltop points to the start of the relevant option list
1581 last one more than the offset of the last item in the option list
1582 data_block NULL when reading main options => data values in the option
1583 list are absolute addresses; otherwise they are byte offsets
1584 in data_block when they have opt_public set; otherwise
1585 they are byte offsets in data_block->options_block.
1586 unknown_txt format string to use in panic message for unknown option;
1587 must contain %s for option name
1588 if given as NULL, don't panic on unknown option
1589
1590Returns: TRUE if an option was read successfully,
1591 FALSE false for an unknown option if unknown_txt == NULL,
1592 otherwise panic and die on an unknown option
1593*/
1594
1595static BOOL
1596readconf_handle_option(uschar *buffer, optionlist *oltop, int last,
1597 void *data_block, uschar *unknown_txt)
1598{
1599int ptr = 0;
1600int offset = 0;
1601int count, type, value;
1602int issecure = 0;
1603uid_t uid;
1604gid_t gid;
1605BOOL boolvalue = TRUE;
1606BOOL freesptr = TRUE;
1607optionlist *ol, *ol2;
1608struct passwd *pw;
1609rmark reset_point;
1610int intbase = 0;
1611uschar *inttype = US"";
1612uschar *sptr;
1613uschar *s = buffer;
1614uschar **str_target;
1615uschar name[64];
1616uschar name2[64];
1617
1618/* There may be leading spaces; thereafter, we expect an option name starting
1619with a letter. */
1620
1621while (isspace(*s)) s++;
1622if (!isalpha(*s))
1623 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option setting expected: %s", s);
1624
1625/* Read the name of the option, and skip any subsequent white space. If
1626it turns out that what we read was "hide", set the flag indicating that
1627this is a secure option, and loop to read the next word. */
1628
1629for (int n = 0; n < 2; n++)
1630 {
1631 while (isalnum(*s) || *s == '_')
1632 {
1633 if (ptr < sizeof(name)-1) name[ptr++] = *s;
1634 s++;
1635 }
1636 name[ptr] = 0;
1637 while (isspace(*s)) s++;
1638 if (Ustrcmp(name, "hide") != 0) break;
1639 issecure = opt_secure;
1640 ptr = 0;
1641 }
1642
1643/* Deal with "no_" or "not_" here for booleans */
1644
1645if (Ustrncmp(name, "no_", 3) == 0)
1646 {
1647 boolvalue = FALSE;
1648 offset = 3;
1649 }
1650
1651if (Ustrncmp(name, "not_", 4) == 0)
1652 {
1653 boolvalue = FALSE;
1654 offset = 4;
1655 }
1656
1657/* Search the list for the given name. A non-existent name, or an option that
1658is set twice, is a disaster. */
1659
1660if (!(ol = find_option(name + offset, oltop, last)))
1661 {
1662 if (unknown_txt == NULL) return FALSE;
1663 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, CS unknown_txt, name);
1664 }
1665
1666if ((ol->type & opt_set) && !(ol->type & (opt_rep_con | opt_rep_str)))
1667 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1668 "\"%s\" option set for the second time", name);
1669
1670ol->type |= opt_set | issecure;
1671type = ol->type & opt_mask;
1672
1673/* Types with data values must be followed by '='; the "no[t]_" prefix
1674applies only to boolean values. */
1675
1676if (type < opt_bool || type > opt_bool_last)
1677 {
1678 if (offset != 0)
1679 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1680 "negation prefix applied to a non-boolean option");
1681 if (*s == 0)
1682 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1683 "unexpected end of line (data missing) after %s", name);
1684 if (*s != '=')
1685 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing \"=\" after %s", name);
1686 }
1687
1688/* If a boolean wasn't preceded by "no[t]_" it can be followed by = and
1689true/false/yes/no, or, in the case of opt_expand_bool, a general string that
1690ultimately expands to one of those values. */
1691
1692else if (*s != 0 && (offset != 0 || *s != '='))
1693 extra_chars_error(s, US"boolean option ", name, US"");
1694
1695/* Skip white space after = */
1696
1697if (*s == '=') while (isspace((*(++s))));
1698
1699/* If there is a data block and the opt_public flag is not set, change
1700the data block pointer to the private options block. */
1701
1702if (data_block != NULL && (ol->type & opt_public) == 0)
1703 data_block = (void *)(((driver_instance *)data_block)->options_block);
1704
1705/* Now get the data according to the type. */
1706
1707switch (type)
1708 {
1709 /* If a string value is not enclosed in quotes, it consists of
1710 the rest of the current line, verbatim. Otherwise, string escapes
1711 are processed.
1712
1713 A transport is specified as a string, which is then looked up in the
1714 list of transports. A search type is specified as one of a number of
1715 known strings.
1716
1717 A set or rewrite rules for a driver is specified as a string, which is
1718 then parsed into a suitable chain of control blocks.
1719
1720 Uids and gids are specified as strings which are then looked up in the
1721 passwd file. Lists of uids and gids are similarly specified as colon-
1722 separated strings. */
1723
1724 case opt_stringptr:
1725 case opt_uid:
1726 case opt_gid:
1727 case opt_expand_uid:
1728 case opt_expand_gid:
1729 case opt_uidlist:
1730 case opt_gidlist:
1731 case opt_rewrite:
1732
1733 reset_point = store_mark();
1734 sptr = read_string(s, name);
1735
1736 /* Having read a string, we now have several different ways of using it,
1737 depending on the data type, so do another switch. If keeping the actual
1738 string is not required (because it is interpreted), freesptr is set TRUE,
1739 and at the end we reset the pool. */
1740
1741 switch (type)
1742 {
1743 /* If this was a string, set the variable to point to the new string,
1744 and set the flag so its store isn't reclaimed. If it was a list of rewrite
1745 rules, we still keep the string (for printing), and parse the rules into a
1746 control block and flags word. */
1747
1748 case opt_stringptr:
1749 str_target = data_block ? USS (US data_block + (long int)(ol->value))
1750 : USS (ol->value);
1751 if (ol->type & opt_rep_con)
1752 {
1753 uschar * saved_condition;
1754 /* We already have a condition, we're conducting a crude hack to let
1755 multiple condition rules be chained together, despite storing them in
1756 text form. */
1757 *str_target = string_copy_perm( (saved_condition = *str_target)
1758 ? string_sprintf("${if and{{bool_lax{%s}}{bool_lax{%s}}}}",
1759 saved_condition, sptr)
1760 : sptr,
1761 FALSE);
1762 /* TODO(pdp): there is a memory leak here and just below
1763 when we set 3 or more conditions; I still don't
1764 understand the store mechanism enough to know
1765 what's the safe way to free content from an earlier store.
1766 AFAICT, stores stack, so freeing an early stored item also stores
1767 all data alloc'd after it. If we knew conditions were adjacent,
1768 we could survive that, but we don't. So I *think* we need to take
1769 another bit from opt_type to indicate "malloced"; this seems like
1770 quite a hack, especially for this one case. It also means that
1771 we can't ever reclaim the store from the *first* condition.
1772
1773 Because we only do this once, near process start-up, I'm prepared to
1774 let this slide for the time being, even though it rankles. */
1775 }
1776 else if (ol->type & opt_rep_str)
1777 {
1778 uschar sep_o =
1779 Ustrncmp(name, "headers_add", 11) == 0 ? '\n'
1780 : Ustrncmp(name, "set", 3) == 0 ? ';'
1781 : ':';
1782 int sep_i = -(int)sep_o;
1783 const uschar * list = sptr;
1784 uschar * s;
1785 gstring * list_o = NULL;
1786
1787 if (*str_target)
1788 {
1789 list_o = string_get(Ustrlen(*str_target) + Ustrlen(sptr));
1790 list_o = string_cat(list_o, *str_target);
1791 }
1792
1793 while ((s = string_nextinlist(&list, &sep_i, NULL, 0)))
1794 list_o = string_append_listele(list_o, sep_o, s);
1795
1796 if (list_o)
1797 *str_target = string_copy_perm(string_from_gstring(list_o), FALSE);
1798 }
1799 else
1800 {
1801 *str_target = sptr;
1802 freesptr = FALSE;
1803 }
1804 break;
1805
1806 case opt_rewrite:
1807 if (data_block)
1808 *USS (US data_block + (long int)(ol->value)) = sptr;
1809 else
1810 *USS (ol->value) = sptr;
1811 freesptr = FALSE;
1812 if (type == opt_rewrite)
1813 {
1814 int sep = 0;
1815 int *flagptr;
1816 uschar *p = sptr;
1817 rewrite_rule **chain;
1818 optionlist *ol3;
1819
1820 sprintf(CS name2, "*%.50s_rules", name);
1821 ol2 = find_option(name2, oltop, last);
1822 sprintf(CS name2, "*%.50s_flags", name);
1823 ol3 = find_option(name2, oltop, last);
1824
1825 if (ol2 == NULL || ol3 == NULL)
1826 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1827 "rewrite rules not available for driver");
1828
1829 if (data_block == NULL)
1830 {
1831 chain = (rewrite_rule **)(ol2->value);
1832 flagptr = (int *)(ol3->value);
1833 }
1834 else
1835 {
1836 chain = (rewrite_rule **)(US data_block + (long int)(ol2->value));
1837 flagptr = (int *)(US data_block + (long int)(ol3->value));
1838 }
1839
1840 while ((p = string_nextinlist(CUSS &sptr, &sep, big_buffer, BIG_BUFFER_SIZE)))
1841 {
1842 rewrite_rule *next = readconf_one_rewrite(p, flagptr, FALSE);
1843 *chain = next;
1844 chain = &(next->next);
1845 }
1846
1847 if ((*flagptr & (rewrite_all_envelope | rewrite_smtp)) != 0)
1848 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "rewrite rule specifies a "
1849 "non-header rewrite - not allowed at transport time -");
1850 }
1851 break;
1852
1853 /* If it was an expanded uid, see if there is any expansion to be
1854 done by checking for the presence of a $ character. If there is, save it
1855 in the corresponding *expand_user option field. Otherwise, fall through
1856 to treat it as a fixed uid. Ensure mutual exclusivity of the two kinds
1857 of data. */
1858
1859 case opt_expand_uid:
1860 sprintf(CS name2, "*expand_%.50s", name);
1861 ol2 = find_option(name2, oltop, last);
1862 if (ol2 != NULL)
1863 {
1864 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1865
1866 if (data_block == NULL)
1867 *((uschar **)(ol2->value)) = ss;
1868 else
1869 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
1870
1871 if (ss != NULL)
1872 {
1873 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1874 freesptr = FALSE;
1875 break;
1876 }
1877 }
1878
1879 /* Look up a fixed uid, and also make use of the corresponding gid
1880 if a passwd entry is returned and the gid has not been set. */
1881
1882 case opt_uid:
1883 if (!route_finduser(sptr, &pw, &uid))
1884 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found", sptr);
1885 if (data_block == NULL)
1886 *((uid_t *)(ol->value)) = uid;
1887 else
1888 *((uid_t *)(US data_block + (long int)(ol->value))) = uid;
1889
1890 /* Set the flag indicating a fixed value is set */
1891
1892 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1893
1894 /* Handle matching gid if we have a passwd entry: done by finding the
1895 same name with terminating "user" changed to "group"; if not found,
1896 ignore. Also ignore if the value is already set. */
1897
1898 if (pw == NULL) break;
1899 Ustrcpy(name+Ustrlen(name)-4, US"group");
1900 ol2 = find_option(name, oltop, last);
1901 if (ol2 != NULL && ((ol2->type & opt_mask) == opt_gid ||
1902 (ol2->type & opt_mask) == opt_expand_gid))
1903 {
1904 BOOL *set_flag = get_set_flag(name, oltop, last, data_block);
1905 if (! *set_flag)
1906 {
1907 if (data_block == NULL)
1908 *((gid_t *)(ol2->value)) = pw->pw_gid;
1909 else
1910 *((gid_t *)(US data_block + (long int)(ol2->value))) = pw->pw_gid;
1911 *set_flag = TRUE;
1912 }
1913 }
1914 break;
1915
1916 /* If it was an expanded gid, see if there is any expansion to be
1917 done by checking for the presence of a $ character. If there is, save it
1918 in the corresponding *expand_user option field. Otherwise, fall through
1919 to treat it as a fixed gid. Ensure mutual exclusivity of the two kinds
1920 of data. */
1921
1922 case opt_expand_gid:
1923 sprintf(CS name2, "*expand_%.50s", name);
1924 ol2 = find_option(name2, oltop, last);
1925 if (ol2 != NULL)
1926 {
1927 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1928
1929 if (data_block == NULL)
1930 *((uschar **)(ol2->value)) = ss;
1931 else
1932 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
1933
1934 if (ss != NULL)
1935 {
1936 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1937 freesptr = FALSE;
1938 break;
1939 }
1940 }
1941
1942 /* Handle freestanding gid */
1943
1944 case opt_gid:
1945 if (!route_findgroup(sptr, &gid))
1946 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found", sptr);
1947 if (data_block == NULL)
1948 *((gid_t *)(ol->value)) = gid;
1949 else
1950 *((gid_t *)(US data_block + (long int)(ol->value))) = gid;
1951 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1952 break;
1953
1954 /* If it was a uid list, look up each individual entry, and build
1955 a vector of uids, with a count in the first element. Put the vector
1956 in malloc store so we can free the string. (We are reading into
1957 permanent store already.) */
1958
1959 case opt_uidlist:
1960 {
1961 int count = 1;
1962 uid_t *list;
1963 int ptr = 0;
1964 const uschar *p;
1965 const uschar *op = expand_string (sptr);
1966
1967 if (op == NULL)
1968 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
1969 name, expand_string_message);
1970
1971 p = op;
1972 if (*p != 0) count++;
1973 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
1974 list = store_malloc(count*sizeof(uid_t));
1975 list[ptr++] = (uid_t)(count - 1);
1976
1977 if (data_block == NULL)
1978 *((uid_t **)(ol->value)) = list;
1979 else
1980 *((uid_t **)(US data_block + (long int)(ol->value))) = list;
1981
1982 p = op;
1983 while (count-- > 1)
1984 {
1985 int sep = 0;
1986 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
1987 if (!route_finduser(big_buffer, NULL, &uid))
1988 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found",
1989 big_buffer);
1990 list[ptr++] = uid;
1991 }
1992 }
1993 break;
1994
1995 /* If it was a gid list, look up each individual entry, and build
1996 a vector of gids, with a count in the first element. Put the vector
1997 in malloc store so we can free the string. (We are reading into permanent
1998 store already.) */
1999
2000 case opt_gidlist:
2001 {
2002 int count = 1;
2003 gid_t *list;
2004 int ptr = 0;
2005 const uschar *p;
2006 const uschar *op = expand_string (sptr);
2007
2008 if (op == NULL)
2009 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
2010 name, expand_string_message);
2011
2012 p = op;
2013 if (*p != 0) count++;
2014 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
2015 list = store_malloc(count*sizeof(gid_t));
2016 list[ptr++] = (gid_t)(count - 1);
2017
2018 if (data_block == NULL)
2019 *((gid_t **)(ol->value)) = list;
2020 else
2021 *((gid_t **)(US data_block + (long int)(ol->value))) = list;
2022
2023 p = op;
2024 while (count-- > 1)
2025 {
2026 int sep = 0;
2027 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
2028 if (!route_findgroup(big_buffer, &gid))
2029 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found",
2030 big_buffer);
2031 list[ptr++] = gid;
2032 }
2033 }
2034 break;
2035 }
2036
2037 /* Release store if the value of the string doesn't need to be kept. */
2038
2039 if (freesptr) reset_point = store_reset(reset_point);
2040 break;
2041
2042 /* Expanded boolean: if no characters follow, or if there are no dollar
2043 characters, this is a fixed-valued boolean, and we fall through. Otherwise,
2044 save the string for later expansion in the alternate place. */
2045
2046 case opt_expand_bool:
2047 if (*s != 0 && Ustrchr(s, '$') != 0)
2048 {
2049 sprintf(CS name2, "*expand_%.50s", name);
2050 if ((ol2 = find_option(name2, oltop, last)))
2051 {
2052 reset_point = store_mark();
2053 sptr = read_string(s, name);
2054 if (data_block == NULL)
2055 *((uschar **)(ol2->value)) = sptr;
2056 else
2057 *((uschar **)(US data_block + (long int)(ol2->value))) = sptr;
2058 freesptr = FALSE;
2059 break;
2060 }
2061 }
2062 /* Fall through */
2063
2064 /* Boolean: if no characters follow, the value is boolvalue. Otherwise
2065 look for yes/not/true/false. Some booleans are stored in a single bit in
2066 a single int. There's a special fudge for verify settings; without a suffix
2067 they set both xx_sender and xx_recipient. The table points to the sender
2068 value; search subsequently for the recipient. There's another special case:
2069 opt_bool_set also notes when a boolean has been set. */
2070
2071 case opt_bool:
2072 case opt_bit:
2073 case opt_bool_verify:
2074 case opt_bool_set:
2075 if (*s != 0)
2076 {
2077 s = readconf_readname(name2, 64, s);
2078 if (strcmpic(name2, US"true") == 0 || strcmpic(name2, US"yes") == 0)
2079 boolvalue = TRUE;
2080 else if (strcmpic(name2, US"false") == 0 || strcmpic(name2, US"no") == 0)
2081 boolvalue = FALSE;
2082 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2083 "\"%s\" is not a valid value for the \"%s\" option", name2, name);
2084 if (*s != 0) extra_chars_error(s, string_sprintf("\"%s\" ", name2),
2085 US"for boolean option ", name);
2086 }
2087
2088 /* Handle single-bit type. */
2089
2090 if (type == opt_bit)
2091 {
2092 int bit = 1 << ((ol->type >> 16) & 31);
2093 int *ptr = (data_block == NULL)?
2094 (int *)(ol->value) :
2095 (int *)(US data_block + (long int)ol->value);
2096 if (boolvalue) *ptr |= bit; else *ptr &= ~bit;
2097 break;
2098 }
2099
2100 /* Handle full BOOL types */
2101
2102 if (data_block == NULL)
2103 *((BOOL *)(ol->value)) = boolvalue;
2104 else
2105 *((BOOL *)(US data_block + (long int)(ol->value))) = boolvalue;
2106
2107 /* Verify fudge */
2108
2109 if (type == opt_bool_verify)
2110 {
2111 sprintf(CS name2, "%.50s_recipient", name + offset);
2112 ol2 = find_option(name2, oltop, last);
2113 if (ol2 != NULL)
2114 {
2115 if (data_block == NULL)
2116 *((BOOL *)(ol2->value)) = boolvalue;
2117 else
2118 *((BOOL *)(US data_block + (long int)(ol2->value))) = boolvalue;
2119 }
2120 }
2121
2122 /* Note that opt_bool_set type is set, if there is somewhere to do so */
2123
2124 else if (type == opt_bool_set)
2125 {
2126 sprintf(CS name2, "*set_%.50s", name + offset);
2127 ol2 = find_option(name2, oltop, last);
2128 if (ol2 != NULL)
2129 {
2130 if (data_block == NULL)
2131 *((BOOL *)(ol2->value)) = TRUE;
2132 else
2133 *((BOOL *)(US data_block + (long int)(ol2->value))) = TRUE;
2134 }
2135 }
2136 break;
2137
2138 /* Octal integer */
2139
2140 case opt_octint:
2141 intbase = 8;
2142 inttype = US"octal ";
2143
2144 /* Integer: a simple(ish) case; allow octal and hex formats, and
2145 suffixes K, M, G, and T. The different types affect output, not input. */
2146
2147 case opt_mkint:
2148 case opt_int:
2149 {
2150 uschar *endptr;
2151 long int lvalue;
2152
2153 errno = 0;
2154 lvalue = strtol(CS s, CSS &endptr, intbase);
2155
2156 if (endptr == s)
2157 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2158 inttype, name);
2159
2160 if (errno != ERANGE && *endptr)
2161 {
2162 uschar * mp = US"TtGgMmKk\0"; /* YyZzEePpTtGgMmKk */
2163
2164 if ((mp = Ustrchr(mp, *endptr)))
2165 {
2166 endptr++;
2167 do
2168 {
2169 if (lvalue > INT_MAX/1024 || lvalue < INT_MIN/1024)
2170 {
2171 errno = ERANGE;
2172 break;
2173 }
2174 lvalue *= 1024;
2175 }
2176 while (*(mp += 2));
2177 }
2178 }
2179
2180 if (errno == ERANGE || lvalue > INT_MAX || lvalue < INT_MIN)
2181 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2182 "absolute value of integer \"%s\" is too large (overflow)", s);
2183
2184 while (isspace(*endptr)) endptr++;
2185 if (*endptr)
2186 extra_chars_error(endptr, inttype, US"integer value for ", name);
2187
2188 value = (int)lvalue;
2189 }
2190
2191 if (data_block)
2192 *(int *)(US data_block + (long int)ol->value) = value;
2193 else
2194 *(int *)ol->value = value;
2195 break;
2196
2197 /* Integer held in K: again, allow formats and suffixes as above. */
2198
2199 case opt_Kint:
2200 {
2201 uschar *endptr;
2202 errno = 0;
2203 int_eximarith_t lvalue = strtol(CS s, CSS &endptr, intbase);
2204
2205 if (endptr == s)
2206 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2207 inttype, name);
2208
2209 if (errno != ERANGE && *endptr)
2210 {
2211 uschar * mp = US"ZzEePpTtGgMmKk\0"; /* YyZzEePpTtGgMmKk */
2212
2213 if ((mp = Ustrchr(mp, *endptr)))
2214 {
2215 endptr++;
2216 while (*(mp += 2))
2217 {
2218 if (lvalue > EXIM_ARITH_MAX/1024 || lvalue < EXIM_ARITH_MIN/1024)
2219 {
2220 errno = ERANGE;
2221 break;
2222 }
2223 lvalue *= 1024;
2224 }
2225 }
2226 else
2227 lvalue = (lvalue + 512)/1024;
2228 }
2229
2230 if (errno == ERANGE) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2231 "absolute value of integer \"%s\" is too large (overflow)", s);
2232
2233 while (isspace(*endptr)) endptr++;
2234 if (*endptr != 0)
2235 extra_chars_error(endptr, inttype, US"integer value for ", name);
2236
2237 if (data_block)
2238 *(int_eximarith_t *)(US data_block + (long int)ol->value) = lvalue;
2239 else
2240 *(int_eximarith_t *)ol->value = lvalue;
2241 break;
2242 }
2243
2244 /* Fixed-point number: held to 3 decimal places. */
2245
2246 case opt_fixed:
2247 if (sscanf(CS s, "%d%n", &value, &count) != 1)
2248 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2249 "fixed-point number expected for %s", name);
2250
2251 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2252 "integer \"%s\" is too large (overflow)", s);
2253
2254 value *= 1000;
2255
2256 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2257 "integer \"%s\" is too large (overflow)", s);
2258
2259 /* We get a coverity error here for using count, as it derived
2260 from the tainted buffer pointed to by s, as parsed by sscanf().
2261 By the definition of sscanf we must be accessing between start
2262 and end of s (assuming it is nul-terminated...) so ignore the error. */
2263 /* coverity[tainted_data] */
2264 if (s[count] == '.')
2265 {
2266 int d = 100;
2267 while (isdigit(s[++count]))
2268 {
2269 value += (s[count] - '0') * d;
2270 d /= 10;
2271 }
2272 }
2273
2274 while (isspace(s[count])) count++;
2275
2276 if (s[count] != 0)
2277 extra_chars_error(s+count, US"fixed-point value for ", name, US"");
2278
2279 if (data_block == NULL)
2280 *((int *)(ol->value)) = value;
2281 else
2282 *((int *)(US data_block + (long int)(ol->value))) = value;
2283 break;
2284
2285 /* There's a special routine to read time values. */
2286
2287 case opt_time:
2288 value = readconf_readtime(s, 0, FALSE);
2289 if (value < 0)
2290 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2291 name);
2292 if (data_block == NULL)
2293 *((int *)(ol->value)) = value;
2294 else
2295 *((int *)(US data_block + (long int)(ol->value))) = value;
2296 break;
2297
2298 /* A time list is a list of colon-separated times, with the first
2299 element holding the size of the list and the second the number of
2300 entries used. */
2301
2302 case opt_timelist:
2303 {
2304 int count = 0;
2305 int *list = (data_block == NULL)?
2306 (int *)(ol->value) :
2307 (int *)(US data_block + (long int)(ol->value));
2308
2309 if (*s != 0) for (count = 1; count <= list[0] - 2; count++)
2310 {
2311 int terminator = 0;
2312 uschar *snext = Ustrchr(s, ':');
2313 if (snext != NULL)
2314 {
2315 uschar *ss = snext;
2316 while (ss > s && isspace(ss[-1])) ss--;
2317 terminator = *ss;
2318 }
2319 value = readconf_readtime(s, terminator, FALSE);
2320 if (value < 0)
2321 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2322 name);
2323 if (count > 1 && value <= list[count])
2324 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2325 "time value out of order for %s", name);
2326 list[count+1] = value;
2327 if (snext == NULL) break;
2328 s = snext + 1;
2329 while (isspace(*s)) s++;
2330 }
2331
2332 if (count > list[0] - 2)
2333 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many time values for %s",
2334 name);
2335 if (count > 0 && list[2] == 0) count = 0;
2336 list[1] = count;
2337 break;
2338 }
2339
2340 case opt_func:
2341 {
2342 void (*fn)() = ol->value;
2343 fn(name, s, 0);
2344 break;
2345 }
2346 }
2347
2348return TRUE;
2349}
2350
2351
2352
2353/*************************************************
2354* Print a time value *
2355*************************************************/
2356
2357/*
2358Argument: a time value in seconds
2359Returns: pointer to a fixed buffer containing the time as a string,
2360 in readconf_readtime() format
2361*/
2362
2363uschar *
2364readconf_printtime(int t)
2365{
2366int s, m, h, d, w;
2367uschar *p = time_buffer;
2368
2369if (t < 0)
2370 {
2371 *p++ = '-';
2372 t = -t;
2373 }
2374
2375s = t % 60;
2376t /= 60;
2377m = t % 60;
2378t /= 60;
2379h = t % 24;
2380t /= 24;
2381d = t % 7;
2382w = t/7;
2383
2384if (w > 0) p += sprintf(CS p, "%dw", w);
2385if (d > 0) p += sprintf(CS p, "%dd", d);
2386if (h > 0) p += sprintf(CS p, "%dh", h);
2387if (m > 0) p += sprintf(CS p, "%dm", m);
2388if (s > 0 || p == time_buffer) sprintf(CS p, "%ds", s);
2389
2390return time_buffer;
2391}
2392
2393
2394
2395/*************************************************
2396* Print an individual option value *
2397*************************************************/
2398
2399/* This is used by the -bP option, so prints to the standard output.
2400The entire options list is passed in as an argument, because some options come
2401in pairs - typically uid/gid settings, which can either be explicit numerical
2402values, or strings to be expanded later. If the numerical value is unset,
2403search for "*expand_<name>" to see if there is a string equivalent.
2404
2405Arguments:
2406 ol option entry, or NULL for an unknown option
2407 name option name
2408 options_block NULL for main configuration options; otherwise points to
2409 a driver block; if the option doesn't have opt_public
2410 set, then options_block->options_block is where the item
2411 resides.
2412 oltop points to the option list in which ol exists
2413 last one more than the offset of the last entry in optop
2414 no_labels do not show "foo = " at the start.
2415
2416Returns: boolean success
2417*/
2418
2419static BOOL
2420print_ol(optionlist *ol, uschar *name, void *options_block,
2421 optionlist *oltop, int last, BOOL no_labels)
2422{
2423struct passwd *pw;
2424struct group *gr;
2425optionlist *ol2;
2426void *value;
2427uid_t *uidlist;
2428gid_t *gidlist;
2429uschar *s;
2430uschar name2[64];
2431
2432if (!ol)
2433 {
2434 printf("%s is not a known option\n", name);
2435 return FALSE;
2436 }
2437
2438/* Non-admin callers cannot see options that have been flagged secure by the
2439"hide" prefix. */
2440
2441if (!f.admin_user && ol->type & opt_secure)
2442 {
2443 if (no_labels)
2444 printf("%s\n", hidden);
2445 else
2446 printf("%s = %s\n", name, hidden);
2447 return TRUE;
2448 }
2449
2450/* Else show the value of the option */
2451
2452value = ol->value;
2453if (options_block)
2454 {
2455 if (!(ol->type & opt_public))
2456 options_block = (void *)(((driver_instance *)options_block)->options_block);
2457 value = (void *)(US options_block + (long int)value);
2458 }
2459
2460switch(ol->type & opt_mask)
2461 {
2462 case opt_stringptr:
2463 case opt_rewrite: /* Show the text value */
2464 s = *(USS value);
2465 if (!no_labels) printf("%s = ", name);
2466 printf("%s\n", s ? string_printing2(s, FALSE) : US"");
2467 break;
2468
2469 case opt_int:
2470 if (!no_labels) printf("%s = ", name);
2471 printf("%d\n", *((int *)value));
2472 break;
2473
2474 case opt_mkint:
2475 {
2476 int x = *((int *)value);
2477 if (x != 0 && (x & 1023) == 0)
2478 {
2479 int c = 'K';
2480 x >>= 10;
2481 if ((x & 1023) == 0)
2482 {
2483 c = 'M';
2484 x >>= 10;
2485 }
2486 if (!no_labels) printf("%s = ", name);
2487 printf("%d%c\n", x, c);
2488 }
2489 else
2490 {
2491 if (!no_labels) printf("%s = ", name);
2492 printf("%d\n", x);
2493 }
2494 }
2495 break;
2496
2497 case opt_Kint:
2498 {
2499 int_eximarith_t x = *((int_eximarith_t *)value);
2500 if (!no_labels) printf("%s = ", name);
2501 if (x == 0) printf("0\n");
2502 else if ((x & ((1<<30)-1)) == 0) printf(PR_EXIM_ARITH "T\n", x >> 30);
2503 else if ((x & ((1<<20)-1)) == 0) printf(PR_EXIM_ARITH "G\n", x >> 20);
2504 else if ((x & ((1<<10)-1)) == 0) printf(PR_EXIM_ARITH "M\n", x >> 10);
2505 else printf(PR_EXIM_ARITH "K\n", x);
2506 }
2507 break;
2508
2509 case opt_octint:
2510 if (!no_labels) printf("%s = ", name);
2511 printf("%#o\n", *((int *)value));
2512 break;
2513
2514 /* Can be negative only when "unset", in which case integer */
2515
2516 case opt_fixed:
2517 {
2518 int x = *((int *)value);
2519 int f = x % 1000;
2520 int d = 100;
2521 if (x < 0) printf("%s =\n", name); else
2522 {
2523 if (!no_labels) printf("%s = ", name);
2524 printf("%d.", x/1000);
2525 do
2526 {
2527 printf("%d", f/d);
2528 f %= d;
2529 d /= 10;
2530 }
2531 while (f != 0);
2532 printf("\n");
2533 }
2534 }
2535 break;
2536
2537 /* If the numerical value is unset, try for the string value */
2538
2539 case opt_expand_uid:
2540 if (! *get_set_flag(name, oltop, last, options_block))
2541 {
2542 sprintf(CS name2, "*expand_%.50s", name);
2543 if ((ol2 = find_option(name2, oltop, last)))
2544 {
2545 void *value2 = ol2->value;
2546 if (options_block)
2547 value2 = (void *)(US options_block + (long int)value2);
2548 s = *(USS value2);
2549 if (!no_labels) printf("%s = ", name);
2550 printf("%s\n", s ? string_printing(s) : US"");
2551 break;
2552 }
2553 }
2554
2555 /* Else fall through */
2556
2557 case opt_uid:
2558 if (!no_labels) printf("%s = ", name);
2559 if (! *get_set_flag(name, oltop, last, options_block))
2560 printf("\n");
2561 else
2562 if ((pw = getpwuid(*((uid_t *)value))))
2563 printf("%s\n", pw->pw_name);
2564 else
2565 printf("%ld\n", (long int)(*((uid_t *)value)));
2566 break;
2567
2568 /* If the numerical value is unset, try for the string value */
2569
2570 case opt_expand_gid:
2571 if (! *get_set_flag(name, oltop, last, options_block))
2572 {
2573 sprintf(CS name2, "*expand_%.50s", name);
2574 if ( (ol2 = find_option(name2, oltop, last))
2575 && (ol2->type & opt_mask) == opt_stringptr)
2576 {
2577 void *value2 = ol2->value;
2578 if (options_block)
2579 value2 = (void *)(US options_block + (long int)value2);
2580 s = *(USS value2);
2581 if (!no_labels) printf("%s = ", name);
2582 printf("%s\n", s ? string_printing(s) : US"");
2583 break;
2584 }
2585 }
2586
2587 /* Else fall through */
2588
2589 case opt_gid:
2590 if (!no_labels) printf("%s = ", name);
2591 if (! *get_set_flag(name, oltop, last, options_block))
2592 printf("\n");
2593 else
2594 if ((gr = getgrgid(*((int *)value))))
2595 printf("%s\n", gr->gr_name);
2596 else
2597 printf("%ld\n", (long int)(*((int *)value)));
2598 break;
2599
2600 case opt_uidlist:
2601 uidlist = *((uid_t **)value);
2602 if (!no_labels) printf("%s =", name);
2603 if (uidlist)
2604 {
2605 uschar sep = no_labels ? '\0' : ' ';
2606 for (int i = 1; i <= (int)(uidlist[0]); i++)
2607 {
2608 uschar *name = NULL;
2609 if ((pw = getpwuid(uidlist[i]))) name = US pw->pw_name;
2610 if (sep != '\0') printf("%c", sep);
2611 if (name) printf("%s", name);
2612 else printf("%ld", (long int)(uidlist[i]));
2613 sep = ':';
2614 }
2615 }
2616 printf("\n");
2617 break;
2618
2619 case opt_gidlist:
2620 gidlist = *((gid_t **)value);
2621 if (!no_labels) printf("%s =", name);
2622 if (gidlist)
2623 {
2624 uschar sep = no_labels ? '\0' : ' ';
2625 for (int i = 1; i <= (int)(gidlist[0]); i++)
2626 {
2627 uschar *name = NULL;
2628 if ((gr = getgrgid(gidlist[i]))) name = US gr->gr_name;
2629 if (sep != '\0') printf("%c", sep);
2630 if (name) printf("%s", name);
2631 else printf("%ld", (long int)(gidlist[i]));
2632 sep = ':';
2633 }
2634 }
2635 printf("\n");
2636 break;
2637
2638 case opt_time:
2639 if (!no_labels) printf("%s = ", name);
2640 printf("%s\n", readconf_printtime(*((int *)value)));
2641 break;
2642
2643 case opt_timelist:
2644 {
2645 int *list = (int *)value;
2646 if (!no_labels) printf("%s = ", name);
2647 for (int i = 0; i < list[1]; i++)
2648 printf("%s%s", i == 0 ? "" : ":", readconf_printtime(list[i+2]));
2649 printf("\n");
2650 }
2651 break;
2652
2653 case opt_bit:
2654 printf("%s%s\n", ((*((int *)value)) & (1 << ((ol->type >> 16) & 31)))?
2655 "" : "no_", name);
2656 break;
2657
2658 case opt_expand_bool:
2659 sprintf(CS name2, "*expand_%.50s", name);
2660 if ((ol2 = find_option(name2, oltop, last)) && ol2->value)
2661 {
2662 void *value2 = ol2->value;
2663 if (options_block)
2664 value2 = (void *)(US options_block + (long int)value2);
2665 s = *(USS value2);
2666 if (s)
2667 {
2668 if (!no_labels) printf("%s = ", name);
2669 printf("%s\n", string_printing(s));
2670 break;
2671 }
2672 /* s == NULL => string not set; fall through */
2673 }
2674
2675 /* Fall through */
2676
2677 case opt_bool:
2678 case opt_bool_verify:
2679 case opt_bool_set:
2680 printf("%s%s\n", (*((BOOL *)value))? "" : "no_", name);
2681 break;
2682
2683 case opt_func:
2684 {
2685 void (*fn)() = ol->value;
2686 fn(name, NULL, no_labels ? opt_fn_print : opt_fn_print|opt_fn_print_label);
2687 break;
2688 }
2689 }
2690return TRUE;
2691}
2692
2693
2694
2695/*************************************************
2696* Print value from main configuration *
2697*************************************************/
2698
2699/* This function, called as a result of encountering the -bP option,
2700causes the value of any main configuration variable to be output if the
2701second argument is NULL. There are some special values:
2702
2703 all print all main configuration options
2704 config_file print the name of the configuration file
2705 (configure_file will still work, for backward
2706 compatibility)
2707 routers print the routers' configurations
2708 transports print the transports' configuration
2709 authenticators print the authenticators' configuration
2710 macros print the macros' configuration
2711 router_list print a list of router names
2712 transport_list print a list of transport names
2713 authenticator_list print a list of authentication mechanism names
2714 macro_list print a list of macro names
2715 +name print a named list item
2716 local_scan print the local_scan options
2717 config print the configuration as it is parsed
2718 environment print the used execution environment
2719
2720If the second argument is not NULL, it must be one of "router", "transport",
2721"authenticator" or "macro" in which case the first argument identifies the
2722driver whose options are to be printed.
2723
2724Arguments:
2725 name option name if type == NULL; else driver name
2726 type NULL or driver type name, as described above
2727 no_labels avoid the "foo = " at the start of an item
2728
2729Returns: Boolean success
2730*/
2731
2732BOOL
2733readconf_print(uschar *name, uschar *type, BOOL no_labels)
2734{
2735BOOL names_only = FALSE;
2736optionlist *ol2 = NULL;
2737driver_instance *d = NULL;
2738int size = 0;
2739
2740if (!type)
2741 {
2742 if (*name == '+')
2743 {
2744 tree_node *t;
2745 BOOL found = FALSE;
2746 static uschar *types[] = { US"address", US"domain", US"host",
2747 US"localpart" };
2748 static tree_node **anchors[] = { &addresslist_anchor, &domainlist_anchor,
2749 &hostlist_anchor, &localpartlist_anchor };
2750
2751 for (int i = 0; i < 4; i++)
2752 if ((t = tree_search(*(anchors[i]), name+1)))
2753 {
2754 found = TRUE;
2755 if (no_labels)
2756 printf("%s\n", ((namedlist_block *)(t->data.ptr))->string);
2757 else
2758 printf("%slist %s = %s\n", types[i], name+1,
2759 ((namedlist_block *)(t->data.ptr))->string);
2760 }
2761
2762 if (!found)
2763 printf("no address, domain, host, or local part list called \"%s\" "
2764 "exists\n", name+1);
2765
2766 return found;
2767 }
2768
2769 if ( Ustrcmp(name, "configure_file") == 0
2770 || Ustrcmp(name, "config_file") == 0)
2771 {
2772 printf("%s\n", CS config_main_filename);
2773 return TRUE;
2774 }
2775
2776 if (Ustrcmp(name, "all") == 0)
2777 {
2778 for (optionlist * ol = optionlist_config;
2779 ol < optionlist_config + nelem(optionlist_config); ol++)
2780 if (!(ol->type & opt_hidden))
2781 (void) print_ol(ol, US ol->name, NULL,
2782 optionlist_config, nelem(optionlist_config),
2783 no_labels);
2784 return TRUE;
2785 }
2786
2787 if (Ustrcmp(name, "local_scan") == 0)
2788 {
2789#ifndef LOCAL_SCAN_HAS_OPTIONS
2790 printf("local_scan() options are not supported\n");
2791 return FALSE;
2792#else
2793 for (optionlist * ol = local_scan_options;
2794 ol < local_scan_options + local_scan_options_count; ol++)
2795 (void) print_ol(ol, US ol->name, NULL, local_scan_options,
2796 local_scan_options_count, no_labels);
2797 return TRUE;
2798#endif
2799 }
2800
2801 if (Ustrcmp(name, "config") == 0)
2802 {
2803 print_config(f.admin_user, no_labels);
2804 return TRUE;
2805 }
2806
2807 if (Ustrcmp(name, "routers") == 0)
2808 {
2809 type = US"router";
2810 name = NULL;
2811 }
2812 else if (Ustrcmp(name, "transports") == 0)
2813 {
2814 type = US"transport";
2815 name = NULL;
2816 }
2817 else if (Ustrcmp(name, "authenticators") == 0)
2818 {
2819 type = US"authenticator";
2820 name = NULL;
2821 }
2822 else if (Ustrcmp(name, "macros") == 0)
2823 {
2824 type = US"macro";
2825 name = NULL;
2826 }
2827 else if (Ustrcmp(name, "router_list") == 0)
2828 {
2829 type = US"router";
2830 name = NULL;
2831 names_only = TRUE;
2832 }
2833 else if (Ustrcmp(name, "transport_list") == 0)
2834 {
2835 type = US"transport";
2836 name = NULL;
2837 names_only = TRUE;
2838 }
2839 else if (Ustrcmp(name, "authenticator_list") == 0)
2840 {
2841 type = US"authenticator";
2842 name = NULL;
2843 names_only = TRUE;
2844 }
2845 else if (Ustrcmp(name, "macro_list") == 0)
2846 {
2847 type = US"macro";
2848 name = NULL;
2849 names_only = TRUE;
2850 }
2851 else if (Ustrcmp(name, "environment") == 0)
2852 {
2853 if (environ)
2854 {
2855 uschar ** p;
2856 for (p = USS environ; *p; p++) ;
2857 qsort(environ, p - USS environ, sizeof(*p), string_compare_by_pointer);
2858
2859 for (p = USS environ; *p; p++)
2860 {
2861 uschar * q;
2862 if (no_labels && (q = Ustrchr(*p, '='))) *q = '\0';
2863 puts(CS *p);
2864 }
2865 }
2866 return TRUE;
2867 }
2868
2869 else
2870 return print_ol(find_option(name,
2871 optionlist_config, nelem(optionlist_config)),
2872 name, NULL, optionlist_config, nelem(optionlist_config), no_labels);
2873 }
2874
2875/* Handle the options for a router or transport. Skip options that are flagged
2876as hidden. Some of these are options with names starting with '*', used for
2877internal alternative representations of other options (which the printing
2878function will sort out). Others are synonyms kept for backward compatibility.
2879*/
2880
2881if (Ustrcmp(type, "router") == 0)
2882 {
2883 d = (driver_instance *)routers;
2884 ol2 = optionlist_routers;
2885 size = optionlist_routers_size;
2886 }
2887else if (Ustrcmp(type, "transport") == 0)
2888 {
2889 d = (driver_instance *)transports;
2890 ol2 = optionlist_transports;
2891 size = optionlist_transports_size;
2892 }
2893else if (Ustrcmp(type, "authenticator") == 0)
2894 {
2895 d = (driver_instance *)auths;
2896 ol2 = optionlist_auths;
2897 size = optionlist_auths_size;
2898 }
2899
2900else if (Ustrcmp(type, "macro") == 0)
2901 {
2902 /* People store passwords in macros and they were previously not available
2903 for printing. So we have an admin_users restriction. */
2904 if (!f.admin_user)
2905 {
2906 fprintf(stderr, "exim: permission denied\n");
2907 return FALSE;
2908 }
2909 for (macro_item * m = macros; m; m = m->next)
2910 if (!name || Ustrcmp(name, m->name) == 0)
2911 {
2912 if (names_only)
2913 printf("%s\n", CS m->name);
2914 else if (no_labels)
2915 printf("%s\n", CS m->replacement);
2916 else
2917 printf("%s=%s\n", CS m->name, CS m->replacement);
2918 if (name)
2919 return TRUE;
2920 }
2921 if (!name) return TRUE;
2922
2923 printf("%s %s not found\n", type, name);
2924 return FALSE;
2925 }
2926
2927if (names_only)
2928 {
2929 for (; d; d = d->next) printf("%s\n", CS d->name);
2930 return TRUE;
2931 }
2932
2933/* Either search for a given driver, or print all of them */
2934
2935for (; d; d = d->next)
2936 {
2937 BOOL rc = FALSE;
2938 if (!name)
2939 printf("\n%s %s:\n", d->name, type);
2940 else if (Ustrcmp(d->name, name) != 0) continue;
2941
2942 for (optionlist * ol = ol2; ol < ol2 + size; ol++)
2943 if (!(ol->type & opt_hidden))
2944 rc |= print_ol(ol, US ol->name, d, ol2, size, no_labels);
2945
2946 for (optionlist * ol = d->info->options;
2947 ol < d->info->options + *(d->info->options_count); ol++)
2948 if (!(ol->type & opt_hidden))
2949 rc |= print_ol(ol, US ol->name, d, d->info->options,
2950 *d->info->options_count, no_labels);
2951
2952 if (name) return rc;
2953 }
2954if (!name) return TRUE;
2955
2956printf("%s %s not found\n", type, name);
2957return FALSE;
2958}
2959
2960
2961
2962/*************************************************
2963* Read a named list item *
2964*************************************************/
2965
2966/* This function reads a name and a list (i.e. string). The name is used to
2967save the list in a tree, sorted by its name. Each entry also has a number,
2968which can be used for caching tests, but if the string contains any expansion
2969items other than $key, the number is set negative to inhibit caching. This
2970mechanism is used for domain, host, and address lists that are referenced by
2971the "+name" syntax.
2972
2973Arguments:
2974 anchorp points to the tree anchor
2975 numberp points to the current number for this tree
2976 max the maximum number permitted
2977 s the text of the option line, starting immediately after the name
2978 of the list type
2979 tname the name of the list type, for messages
2980
2981Returns: nothing
2982*/
2983
2984static void
2985read_named_list(tree_node **anchorp, int *numberp, int max, uschar *s,
2986 uschar *tname)
2987{
2988BOOL forcecache = FALSE;
2989uschar *ss;
2990tree_node *t;
2991namedlist_block *nb = store_get(sizeof(namedlist_block), FALSE);
2992
2993if (Ustrncmp(s, "_cache", 6) == 0)
2994 {
2995 forcecache = TRUE;
2996 s += 6;
2997 }
2998
2999if (!isspace(*s))
3000 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unrecognized configuration line");
3001
3002if (*numberp >= max)
3003 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many named %ss (max is %d)\n",
3004 tname, max);
3005
3006while (isspace(*s)) s++;
3007ss = s;
3008while (isalnum(*s) || *s == '_') s++;
3009t = store_get(sizeof(tree_node) + s-ss, is_tainted(ss));
3010Ustrncpy(t->name, ss, s-ss);
3011t->name[s-ss] = 0;
3012while (isspace(*s)) s++;
3013
3014if (!tree_insertnode(anchorp, t))
3015 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3016 "duplicate name \"%s\" for a named %s", t->name, tname);
3017
3018t->data.ptr = nb;
3019nb->number = *numberp;
3020*numberp += 1;
3021
3022if (*s++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3023 "missing '=' after \"%s\"", t->name);
3024while (isspace(*s)) s++;
3025nb->string = read_string(s, t->name);
3026nb->cache_data = NULL;
3027
3028/* Check the string for any expansions; if any are found, mark this list
3029uncacheable unless the user has explicited forced caching. */
3030
3031if (!forcecache && Ustrchr(nb->string, '$') != NULL) nb->number = -1;
3032}
3033
3034
3035
3036
3037/*************************************************
3038* Unpick data for a rate limit *
3039*************************************************/
3040
3041/* This function is called to unpick smtp_ratelimit_{mail,rcpt} into four
3042separate values.
3043
3044Arguments:
3045 s string, in the form t,b,f,l
3046 where t is the threshold (integer)
3047 b is the initial delay (time)
3048 f is the multiplicative factor (fixed point)
3049 k is the maximum time (time)
3050 threshold where to store threshold
3051 base where to store base in milliseconds
3052 factor where to store factor in milliseconds
3053 limit where to store limit
3054
3055Returns: nothing (panics on error)
3056*/
3057
3058static void
3059unpick_ratelimit(uschar *s, int *threshold, int *base, double *factor,
3060 int *limit)
3061{
3062uschar bstring[16], lstring[16];
3063
3064if (sscanf(CS s, "%d, %15[0123456789smhdw.], %lf, %15s", threshold, bstring,
3065 factor, lstring) == 4)
3066 {
3067 *base = readconf_readtime(bstring, 0, TRUE);
3068 *limit = readconf_readtime(lstring, 0, TRUE);
3069 if (*base >= 0 && *limit >= 0) return;
3070 }
3071log_write(0, LOG_MAIN|LOG_PANIC_DIE, "malformed ratelimit data: %s", s);
3072}
3073
3074
3075
3076
3077/*************************************************
3078* Drop privs for checking TLS config *
3079*************************************************/
3080
3081/* We want to validate TLS options during readconf, but do not want to be
3082root when we call into the TLS library, in case of library linkage errors
3083which cause segfaults; before this check, those were always done as the Exim
3084runtime user and it makes sense to continue with that.
3085
3086Assumes: tls_require_ciphers has been set, if it will be
3087 exim_user has been set, if it will be
3088 exim_group has been set, if it will be
3089
3090Returns: bool for "okay"; false will cause caller to immediately exit.
3091*/
3092
3093#ifndef DISABLE_TLS
3094static BOOL
3095tls_dropprivs_validate_require_cipher(BOOL nowarn)
3096{
3097const uschar *errmsg;
3098pid_t pid;
3099int rc, status;
3100void (*oldsignal)(int);
3101
3102/* If TLS will never be used, no point checking ciphers */
3103
3104if ( !tls_advertise_hosts
3105 || !*tls_advertise_hosts
3106 || Ustrcmp(tls_advertise_hosts, ":") == 0
3107 )
3108 return TRUE;
3109else if (!nowarn && !tls_certificate)
3110 log_write(0, LOG_MAIN,
3111 "Warning: No server certificate defined; will use a selfsigned one.\n"
3112 " Suggested action: either install a certificate or change tls_advertise_hosts option");
3113
3114oldsignal = signal(SIGCHLD, SIG_DFL);
3115
3116fflush(NULL);
3117if ((pid = fork()) < 0)
3118 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "fork failed for TLS check");
3119
3120if (pid == 0)
3121 {
3122 /* in some modes, will have dropped privilege already */
3123 if (!geteuid())
3124 exim_setugid(exim_uid, exim_gid, FALSE,
3125 US"calling tls_validate_require_cipher");
3126
3127 if ((errmsg = tls_validate_require_cipher()))
3128 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3129 "tls_require_ciphers invalid: %s", errmsg);
3130 fflush(NULL);
3131 exim_underbar_exit(0);
3132 }
3133
3134do {
3135 rc = waitpid(pid, &status, 0);
3136} while (rc < 0 && errno == EINTR);
3137
3138DEBUG(D_tls)
3139 debug_printf("tls_validate_require_cipher child %d ended: status=0x%x\n",
3140 (int)pid, status);
3141
3142signal(SIGCHLD, oldsignal);
3143
3144return status == 0;
3145}
3146#endif /*DISABLE_TLS*/
3147
3148
3149
3150
3151/*************************************************
3152* Read main configuration options *
3153*************************************************/
3154
3155/* This function is the first to be called for configuration reading. It
3156opens the configuration file and reads general configuration settings until
3157it reaches the end of the configuration section. The file is then left open so
3158that the remaining configuration data can subsequently be read if needed for
3159this run of Exim.
3160
3161The configuration file must be owned either by root or exim, and be writeable
3162only by root or uid/gid exim. The values for Exim's uid and gid can be changed
3163in the config file, so the test is done on the compiled in values. A slight
3164anomaly, to be carefully documented.
3165
3166The name of the configuration file is taken from a list that is included in the
3167binary of Exim. It can be altered from the command line, but if that is done,
3168root privilege is immediately withdrawn unless the caller is root or exim.
3169The first file on the list that exists is used.
3170
3171For use on multiple systems that share file systems, first look for a
3172configuration file whose name has the current node name on the end. If that is
3173not found, try the generic name. For really contorted configurations, that run
3174multiple Exims with different uid settings, first try adding the effective uid
3175before the node name. These complications are going to waste resources on most
3176systems. Therefore they are available only when requested by compile-time
3177options. */
3178
3179void
3180readconf_main(BOOL nowarn)
3181{
3182int sep = 0;
3183struct stat statbuf;
3184uschar *s, *filename;
3185const uschar *list = config_main_filelist;
3186
3187/* Loop through the possible file names */
3188
3189while((filename = string_nextinlist(&list, &sep, big_buffer, big_buffer_size)))
3190 {
3191
3192 /* Cut out all the fancy processing unless specifically wanted */
3193
3194 #if defined(CONFIGURE_FILE_USE_NODE) || defined(CONFIGURE_FILE_USE_EUID)
3195 uschar *suffix = filename + Ustrlen(filename);
3196
3197 /* Try for the node-specific file if a node name exists */
3198
3199 #ifdef CONFIGURE_FILE_USE_NODE
3200 struct utsname uts;
3201 if (uname(&uts) >= 0)
3202 {
3203 #ifdef CONFIGURE_FILE_USE_EUID
3204 sprintf(CS suffix, ".%ld.%.256s", (long int)original_euid, uts.nodename);
3205 config_file = Ufopen(filename, "rb");
3206 if (config_file == NULL)
3207 #endif /* CONFIGURE_FILE_USE_EUID */
3208 {
3209 sprintf(CS suffix, ".%.256s", uts.nodename);
3210 config_file = Ufopen(filename, "rb");
3211 }
3212 }
3213 #endif /* CONFIGURE_FILE_USE_NODE */
3214
3215 /* Otherwise, try the generic name, possibly with the euid added */
3216
3217 #ifdef CONFIGURE_FILE_USE_EUID
3218 if (config_file == NULL)
3219 {
3220 sprintf(CS suffix, ".%ld", (long int)original_euid);
3221 config_file = Ufopen(filename, "rb");
3222 }
3223 #endif /* CONFIGURE_FILE_USE_EUID */
3224
3225 /* Finally, try the unadorned name */
3226
3227 if (config_file == NULL)
3228 {
3229 *suffix = 0;
3230 config_file = Ufopen(filename, "rb");
3231 }
3232 #else /* if neither defined */
3233
3234 /* This is the common case when the fancy processing is not included. */
3235
3236 config_file = Ufopen(filename, "rb");
3237 #endif
3238
3239 /* If the file does not exist, continue to try any others. For any other
3240 error, break out (and die). */
3241
3242 if (config_file != NULL || errno != ENOENT) break;
3243 }
3244
3245/* On success, save the name for verification; config_filename is used when
3246logging configuration errors (it changes for .included files) whereas
3247config_main_filename is the name shown by -bP. Failure to open a configuration
3248file is a serious disaster. */
3249
3250if (config_file)
3251 {
3252 uschar *last_slash = Ustrrchr(filename, '/');
3253 config_filename = config_main_filename = string_copy(filename);
3254
3255 /* The config_main_directory we need for the $config_dir expansion.
3256 config_main_filename we need for $config_file expansion.
3257 And config_dir is the directory of the current configuration, used for
3258 relative .includes. We do need to know it's name, as we change our working
3259 directory later. */
3260
3261 if (filename[0] == '/')
3262 config_main_directory = last_slash == filename ? US"/" : string_copyn(filename, last_slash - filename);
3263 else
3264 {
3265 /* relative configuration file name: working dir + / + basename(filename) */
3266
3267 uschar buf[PATH_MAX];
3268 gstring * g;
3269
3270 if (os_getcwd(buf, PATH_MAX) == NULL)
3271 {
3272 perror("exim: getcwd");
3273 exit(EXIT_FAILURE);
3274 }
3275 g = string_cat(NULL, buf);
3276
3277 /* If the dir does not end with a "/", append one */
3278 if (g->s[g->ptr-1] != '/')
3279 g = string_catn(g, US"/", 1);
3280
3281 /* If the config file contains a "/", extract the directory part */
3282 if (last_slash)
3283 g = string_catn(g, filename, last_slash - filename);
3284
3285 config_main_directory = string_from_gstring(g);
3286 }
3287 config_directory = config_main_directory;
3288 }
3289else
3290 {
3291 if (filename == NULL)
3292 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "non-existent configuration file(s): "
3293 "%s", config_main_filelist);
3294 else
3295 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "%s", string_open_failed(errno,
3296 "configuration file %s", filename));
3297 }
3298
3299/* Now, once we found and opened our configuration file, we change the directory
3300to a safe place. Later we change to $spool_directory. */
3301
3302if (Uchdir("/") < 0)
3303 {
3304 perror("exim: chdir `/': ");
3305 exit(EXIT_FAILURE);
3306 }
3307
3308/* Check the status of the file we have opened, if we have retained root
3309privileges and the file isn't /dev/null (which *should* be 0666). */
3310
3311if (f.trusted_config && Ustrcmp(filename, US"/dev/null"))
3312 {
3313 if (fstat(fileno(config_file), &statbuf) != 0)
3314 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to stat configuration file %s",
3315 big_buffer);
3316
3317 if ((statbuf.st_uid != root_uid /* owner not root */
3318 #ifdef CONFIGURE_OWNER
3319 && statbuf.st_uid != config_uid /* owner not the special one */
3320 #endif
3321 ) || /* or */
3322 (statbuf.st_gid != root_gid /* group not root & */
3323 #ifdef CONFIGURE_GROUP
3324 && statbuf.st_gid != config_gid /* group not the special one */
3325 #endif
3326 && (statbuf.st_mode & 020) != 0) || /* group writeable */
3327 /* or */
3328 ((statbuf.st_mode & 2) != 0)) /* world writeable */
3329
3330 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Exim configuration file %s has the "
3331 "wrong owner, group, or mode", big_buffer);
3332
3333 /* Do a dummy store-allocation of a size related to the (toplevel) file size.
3334 This assumes we will need this much storage to handle all the allocations
3335 during startup; it won't help when .include is being used. When it does, it
3336 will cut down on the number of store blocks (and malloc calls, and sbrk
3337 syscalls). It also assume we're on the relevant pool. */
3338
3339 if (statbuf.st_size > 8192)
3340 {
3341 rmark r = store_mark();
3342 void * dummy = store_get((int)statbuf.st_size, FALSE);
3343 store_reset(r);
3344 }
3345 }
3346
3347/* Do a dummy store-allocation of a size related to the (toplevel) file size.
3348This assumes we will need this much storage to handle all the allocations
3349during startup; it won't help when .include is being used. When it does, it
3350will cut down on the number of store blocks (and malloc calls, and sbrk
3351syscalls). It also assume we're on the relevant pool. */
3352
3353if (statbuf.st_size > 8192)
3354 {
3355 rmark r = store_mark();
3356 void * dummy = store_get((int)statbuf.st_size, FALSE);
3357 store_reset(r);
3358 }
3359
3360/* Process the main configuration settings. They all begin with a lower case
3361letter. If we see something starting with an upper case letter, it is taken as
3362a macro definition. */
3363
3364while ((s = get_config_line()))
3365 {
3366 if (config_lineno == 1 && Ustrstr(s, "\xef\xbb\xbf") == s)
3367 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3368 "found unexpected BOM (Byte Order Mark)");
3369
3370 if (isupper(s[0]))
3371 { if (!macro_read_assignment(s)) exim_exit(EXIT_FAILURE, US""); }
3372
3373 else if (Ustrncmp(s, "domainlist", 10) == 0)
3374 read_named_list(&domainlist_anchor, &domainlist_count,
3375 MAX_NAMED_LIST, s+10, US"domain list");
3376
3377 else if (Ustrncmp(s, "hostlist", 8) == 0)
3378 read_named_list(&hostlist_anchor, &hostlist_count,
3379 MAX_NAMED_LIST, s+8, US"host list");
3380
3381 else if (Ustrncmp(s, US"addresslist", 11) == 0)
3382 read_named_list(&addresslist_anchor, &addresslist_count,
3383 MAX_NAMED_LIST, s+11, US"address list");
3384
3385 else if (Ustrncmp(s, US"localpartlist", 13) == 0)
3386 read_named_list(&localpartlist_anchor, &localpartlist_count,
3387 MAX_NAMED_LIST, s+13, US"local part list");
3388
3389 else
3390 (void) readconf_handle_option(s, optionlist_config, optionlist_config_size,
3391 NULL, US"main option \"%s\" unknown");
3392 }
3393
3394
3395/* If local_sender_retain is set, local_from_check must be unset. */
3396
3397if (local_sender_retain && local_from_check)
3398 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "both local_from_check and "
3399 "local_sender_retain are set; this combination is not allowed");
3400
3401/* If the timezone string is empty, set it to NULL, implying no TZ variable
3402wanted. */
3403
3404if (timezone_string != NULL && *timezone_string == 0) timezone_string = NULL;
3405
3406/* The max retry interval must not be greater than 24 hours. */
3407
3408if (retry_interval_max > 24*60*60) retry_interval_max = 24*60*60;
3409
3410/* remote_max_parallel must be > 0 */
3411
3412if (remote_max_parallel <= 0) remote_max_parallel = 1;
3413
3414/* Save the configured setting of freeze_tell, so we can re-instate it at the
3415start of a new SMTP message. */
3416
3417freeze_tell_config = freeze_tell;
3418
3419/* The primary host name may be required for expansion of spool_directory
3420and log_file_path, so make sure it is set asap. It is obtained from uname(),
3421but if that yields an unqualified value, make a FQDN by using gethostbyname to
3422canonize it. Some people like upper case letters in their host names, so we
3423don't force the case. */
3424
3425if (primary_hostname == NULL)
3426 {
3427 const uschar *hostname;
3428 struct utsname uts;
3429 if (uname(&uts) < 0)
3430 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "uname() failed to yield host name");
3431 hostname = US uts.nodename;
3432
3433 if (Ustrchr(hostname, '.') == NULL)
3434 {
3435 int af = AF_INET;
3436 struct hostent *hostdata;
3437
3438 #if HAVE_IPV6
3439 if (!disable_ipv6 && (dns_ipv4_lookup == NULL ||
3440 match_isinlist(hostname, CUSS &dns_ipv4_lookup, 0, NULL, NULL,
3441 MCL_DOMAIN, TRUE, NULL) != OK))
3442 af = AF_INET6;
3443 #else
3444 af = AF_INET;
3445 #endif
3446
3447 for (;;)
3448 {
3449 #if HAVE_IPV6
3450 #if HAVE_GETIPNODEBYNAME
3451 int error_num;
3452 hostdata = getipnodebyname(CS hostname, af, 0, &error_num);
3453 #else
3454 hostdata = gethostbyname2(CS hostname, af);
3455 #endif
3456 #else
3457 hostdata = gethostbyname(CS hostname);
3458 #endif
3459
3460 if (hostdata != NULL)
3461 {
3462 hostname = US hostdata->h_name;
3463 break;
3464 }
3465
3466 if (af == AF_INET) break;
3467 af = AF_INET;
3468 }
3469 }
3470
3471 primary_hostname = string_copy(hostname);
3472 }
3473
3474/* Set up default value for smtp_active_hostname */
3475
3476smtp_active_hostname = primary_hostname;
3477
3478/* If spool_directory wasn't set in the build-time configuration, it must have
3479got set above. Of course, writing to the log may not work if log_file_path is
3480not set, but it will at least get to syslog or somewhere, with any luck. */
3481
3482if (!*spool_directory)
3483 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "spool_directory undefined: cannot "
3484 "proceed");
3485
3486/* Expand the spool directory name; it may, for example, contain the primary
3487host name. Same comment about failure. */
3488
3489if (!(s = expand_string(spool_directory)))
3490 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand spool_directory "
3491 "\"%s\": %s", spool_directory, expand_string_message);
3492spool_directory = s;
3493
3494/* Expand log_file_path, which must contain "%s" in any component that isn't
3495the null string or "syslog". It is also allowed to contain one instance of %D
3496or %M. However, it must NOT contain % followed by anything else. */
3497
3498if (*log_file_path)
3499 {
3500 const uschar *ss, *sss;
3501 int sep = ':'; /* Fixed for log file path */
3502 if (!(s = expand_string(log_file_path)))
3503 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand log_file_path "
3504 "\"%s\": %s", log_file_path, expand_string_message);
3505
3506 ss = s;
3507 while ((sss = string_nextinlist(&ss, &sep, big_buffer, big_buffer_size)))
3508 {
3509 uschar *t;
3510 if (sss[0] == 0 || Ustrcmp(sss, "syslog") == 0) continue;
3511 if (!(t = Ustrstr(sss, "%s")))
3512 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" does not "
3513 "contain \"%%s\"", sss);
3514 *t = 'X';
3515 if ((t = Ustrchr(sss, '%')))
3516 if ((t[1] != 'D' && t[1] != 'M') || Ustrchr(t+2, '%') != NULL)
3517 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" contains "
3518 "unexpected \"%%\" character", s);
3519 }
3520
3521 log_file_path = s;
3522 }
3523
3524/* Interpret syslog_facility into an integer argument for 'ident' param to
3525openlog(). Default is LOG_MAIL set in globals.c. Allow the user to omit the
3526leading "log_". */
3527
3528if (syslog_facility_str)
3529 {
3530 int i;
3531 uschar *s = syslog_facility_str;
3532
3533 if ((Ustrlen(syslog_facility_str) >= 4) &&
3534 (strncmpic(syslog_facility_str, US"log_", 4) == 0))
3535 s += 4;
3536
3537 for (i = 0; i < syslog_list_size; i++)
3538 if (strcmpic(s, syslog_list[i].name) == 0)
3539 {
3540 syslog_facility = syslog_list[i].value;
3541 break;
3542 }
3543
3544 if (i >= syslog_list_size)
3545 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3546 "failed to interpret syslog_facility \"%s\"", syslog_facility_str);
3547 }
3548
3549/* Expand pid_file_path */
3550
3551if (*pid_file_path != 0)
3552 {
3553 if (!(s = expand_string(pid_file_path)))
3554 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand pid_file_path "
3555 "\"%s\": %s", pid_file_path, expand_string_message);
3556 pid_file_path = s;
3557 }
3558
3559/* Set default value of process_log_path */
3560
3561if (!process_log_path || *process_log_path =='\0')
3562 process_log_path = string_sprintf("%s/exim-process.info", spool_directory);
3563
3564/* Compile the regex for matching a UUCP-style "From_" line in an incoming
3565message. */
3566
3567regex_From = regex_must_compile(uucp_from_pattern, FALSE, TRUE);
3568
3569/* Unpick the SMTP rate limiting options, if set */
3570
3571if (smtp_ratelimit_mail)
3572 unpick_ratelimit(smtp_ratelimit_mail, &smtp_rlm_threshold,
3573 &smtp_rlm_base, &smtp_rlm_factor, &smtp_rlm_limit);
3574
3575if (smtp_ratelimit_rcpt)
3576 unpick_ratelimit(smtp_ratelimit_rcpt, &smtp_rlr_threshold,
3577 &smtp_rlr_base, &smtp_rlr_factor, &smtp_rlr_limit);
3578
3579/* The qualify domains default to the primary host name */
3580
3581if (!qualify_domain_sender)
3582 qualify_domain_sender = primary_hostname;
3583if (!qualify_domain_recipient)
3584 qualify_domain_recipient = qualify_domain_sender;
3585
3586/* Setting system_filter_user in the configuration sets the gid as well if a
3587name is given, but a numerical value does not. */
3588
3589if (system_filter_uid_set && !system_filter_gid_set)
3590 {
3591 struct passwd *pw = getpwuid(system_filter_uid);
3592 if (!pw)
3593 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Failed to look up uid %ld",
3594 (long int)system_filter_uid);
3595 system_filter_gid = pw->pw_gid;
3596 system_filter_gid_set = TRUE;
3597 }
3598
3599/* If the errors_reply_to field is set, check that it is syntactically valid
3600and ensure it contains a domain. */
3601
3602if (errors_reply_to)
3603 {
3604 uschar *errmess;
3605 int start, end, domain;
3606 uschar *recipient = parse_extract_address(errors_reply_to, &errmess,
3607 &start, &end, &domain, FALSE);
3608
3609 if (!recipient)
3610 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3611 "error in errors_reply_to (%s): %s", errors_reply_to, errmess);
3612
3613 if (domain == 0)
3614 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3615 "errors_reply_to (%s) does not contain a domain", errors_reply_to);
3616 }
3617
3618/* If smtp_accept_queue or smtp_accept_max_per_host is set, then
3619smtp_accept_max must also be set. */
3620
3621if (smtp_accept_max == 0 &&
3622 (smtp_accept_queue > 0 || smtp_accept_max_per_host != NULL))
3623 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3624 "smtp_accept_max must be set if smtp_accept_queue or "
3625 "smtp_accept_max_per_host is set");
3626
3627/* Set up the host number if anything is specified. It is an expanded string
3628so that it can be computed from the host name, for example. We do this last
3629so as to ensure that everything else is set up before the expansion. */
3630
3631if (host_number_string)
3632 {
3633 long int n;
3634 uschar *end;
3635 uschar *s = expand_string(host_number_string);
3636
3637 if (!s)
3638 log_write(0, LOG_MAIN|LOG_PANIC_DIE,
3639 "failed to expand localhost_number \"%s\": %s",
3640 host_number_string, expand_string_message);
3641 n = Ustrtol(s, &end, 0);
3642 while (isspace(*end)) end++;
3643 if (*end != 0)
3644 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3645 "localhost_number value is not a number: %s", s);
3646 if (n > LOCALHOST_MAX)
3647 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3648 "localhost_number is greater than the maximum allowed value (%d)",
3649 LOCALHOST_MAX);
3650 host_number = n;
3651 }
3652
3653#ifndef DISABLE_TLS
3654/* If tls_verify_hosts is set, tls_verify_certificates must also be set */
3655
3656if ((tls_verify_hosts || tls_try_verify_hosts) && !tls_verify_certificates)
3657 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3658 "tls_%sverify_hosts is set, but tls_verify_certificates is not set",
3659 tls_verify_hosts ? "" : "try_");
3660
3661/* This also checks that the library linkage is working and we can call
3662routines in it, so call even if tls_require_ciphers is unset */
3663if (!tls_dropprivs_validate_require_cipher(nowarn))
3664 exit(1);
3665
3666/* Magic number: at time of writing, 1024 has been the long-standing value
3667used by so many clients, and what Exim used to use always, that it makes
3668sense to just min-clamp this max-clamp at that. */
3669if (tls_dh_max_bits < 1024)
3670 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3671 "tls_dh_max_bits is too small, must be at least 1024 for interop");
3672
3673/* If openssl_options is set, validate it */
3674if (openssl_options)
3675 {
3676# ifdef USE_GNUTLS
3677 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3678 "openssl_options is set but we're using GnuTLS");
3679# else
3680 long dummy;
3681 if (!tls_openssl_options_parse(openssl_options, &dummy))
3682 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3683 "openssl_options parse error: %s", openssl_options);
3684# endif
3685 }
3686#endif /*DISABLE_TLS*/
3687
3688if (!nowarn && !keep_environment && environ && *environ)
3689 log_write(0, LOG_MAIN,
3690 "Warning: purging the environment.\n"
3691 " Suggested action: use keep_environment.");
3692}
3693
3694
3695
3696/*************************************************
3697* Initialize one driver *
3698*************************************************/
3699
3700/* This is called once the driver's generic options, if any, have been read.
3701We can now find the driver, set up defaults for the private options, and
3702unset any "set" bits in the private options table (which might have been
3703set by another incarnation of the same driver).
3704
3705Arguments:
3706 d pointer to driver instance block, with generic
3707 options filled in
3708 drivers_available vector of available drivers
3709 size_of_info size of each block in drivers_available
3710 class class of driver, for error message
3711
3712Returns: pointer to the driver info block
3713*/
3714
3715static driver_info *
3716init_driver(driver_instance *d, driver_info *drivers_available,
3717 int size_of_info, uschar *class)
3718{
3719for (driver_info * dd = drivers_available; dd->driver_name[0] != 0;
3720 dd = (driver_info *)((US dd) + size_of_info))
3721 if (Ustrcmp(d->driver_name, dd->driver_name) == 0)
3722 {
3723 int len = dd->options_len;
3724 d->info = dd;
3725 d->options_block = store_get(len, FALSE);
3726 memcpy(d->options_block, dd->options_block, len);
3727 for (int i = 0; i < *(dd->options_count); i++)
3728 dd->options[i].type &= ~opt_set;
3729 return dd;
3730 }
3731
3732log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3733 "%s %s: cannot find %s driver \"%s\"", class, d->name, class, d->driver_name);
3734
3735return NULL; /* never obeyed */
3736}
3737
3738
3739
3740
3741/*************************************************
3742* Initialize driver list *
3743*************************************************/
3744
3745/* This function is called for routers, transports, and authentication
3746mechanisms. It reads the data from the current point in the configuration file
3747up to the end of the section, and sets up a chain of instance blocks according
3748to the file's contents. The file will already have been opened by a call to
3749readconf_main, and must be left open for subsequent reading of further data.
3750
3751Any errors cause a panic crash. Note that the blocks with names driver_info and
3752driver_instance must map the first portions of all the _info and _instance
3753blocks for this shared code to work.
3754
3755Arguments:
3756 class "router", "transport", or "authenticator"
3757 anchor &routers, &transports, &auths
3758 drivers_available available drivers
3759 size_of_info size of each info block
3760 instance_default points to default data for an instance
3761 instance_size size of instance block
3762 driver_optionlist generic option list
3763 driver_optionlist_count count of generic option list
3764
3765Returns: nothing
3766*/
3767
3768void
3769readconf_driver_init(
3770 uschar *class,
3771 driver_instance **anchor,
3772 driver_info *drivers_available,
3773 int size_of_info,
3774 void *instance_default,
3775 int instance_size,
3776 optionlist *driver_optionlist,
3777 int driver_optionlist_count)
3778{
3779driver_instance **p = anchor;
3780driver_instance *d = NULL;
3781uschar *buffer;
3782
3783while ((buffer = get_config_line()) != NULL)
3784 {
3785 uschar name[64];
3786 uschar *s;
3787
3788 /* Read the first name on the line and test for the start of a new driver. A
3789 macro definition indicates the end of the previous driver. If this isn't the
3790 start of a new driver, the line will be re-read. */
3791
3792 s = readconf_readname(name, sizeof(name), buffer);
3793
3794 /* Handle macro definition, first finishing off the initialization of the
3795 previous driver, if any. */
3796
3797 if (isupper(*name) && *s == '=')
3798 {
3799 if (d)
3800 {
3801 if (!d->driver_name)
3802 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3803 "no driver defined for %s \"%s\"", class, d->name);
3804 (d->info->init)(d);
3805 d = NULL;
3806 }
3807 if (!macro_read_assignment(buffer)) exim_exit(EXIT_FAILURE, US"");
3808 continue;
3809 }
3810
3811 /* If the line starts with a name terminated by a colon, we are at the
3812 start of the definition of a new driver. The rest of the line must be
3813 blank. */
3814
3815 if (*s++ == ':')
3816 {
3817 /* Finish off initializing the previous driver. */
3818
3819 if (d)
3820 {
3821 if (!d->driver_name)
3822 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3823 "no driver defined for %s \"%s\"", class, d->name);
3824 (d->info->init)(d);
3825 }
3826
3827 /* Check that we haven't already got a driver of this name */
3828
3829 for (d = *anchor; d; d = d->next)
3830 if (Ustrcmp(name, d->name) == 0)
3831 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3832 "there are two %ss called \"%s\"", class, name);
3833
3834 /* Set up a new driver instance data block on the chain, with
3835 its default values installed. */
3836
3837 d = store_get(instance_size, FALSE);
3838 memcpy(d, instance_default, instance_size);
3839 *p = d;
3840 p = &d->next;
3841 d->name = string_copy(name);
3842
3843 /* Clear out the "set" bits in the generic options */
3844
3845 for (int i = 0; i < driver_optionlist_count; i++)
3846 driver_optionlist[i].type &= ~opt_set;
3847
3848 /* Check nothing more on this line, then do the next loop iteration. */
3849
3850 while (isspace(*s)) s++;
3851 if (*s != 0) extra_chars_error(s, US"driver name ", name, US"");
3852 continue;
3853 }
3854
3855 /* Not the start of a new driver. Give an error if we have not set up a
3856 current driver yet. */
3857
3858 if (!d)
3859 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s name missing", class);
3860
3861 /* First look to see if this is a generic option; if it is "driver",
3862 initialize the driver. If is it not a generic option, we can look for a
3863 private option provided that the driver has been previously set up. */
3864
3865 if (readconf_handle_option(buffer, driver_optionlist,
3866 driver_optionlist_count, d, NULL))
3867 {
3868 if (!d->info && d->driver_name)
3869 init_driver(d, drivers_available, size_of_info, class);
3870 }
3871
3872 /* Handle private options - pass the generic block because some may
3873 live therein. A flag with each option indicates if it is in the public
3874 block. */
3875
3876 else if (d->info)
3877 readconf_handle_option(buffer, d->info->options,
3878 *(d->info->options_count), d, US"option \"%s\" unknown");
3879
3880 /* The option is not generic and the driver name has not yet been given. */
3881
3882 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option \"%s\" unknown "
3883 "(\"driver\" must be specified before any private options)", name);
3884 }
3885
3886/* Run the initialization function for the final driver. */
3887
3888if (d)
3889 {
3890 if (!d->driver_name)
3891 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3892 "no driver defined for %s \"%s\"", class, d->name);
3893 (d->info->init)(d);
3894 }
3895}
3896
3897
3898
3899/*************************************************
3900* Check driver dependency *
3901*************************************************/
3902
3903/* This function is passed a driver instance and a string. It checks whether
3904any of the string options for the driver contains the given string as an
3905expansion variable.
3906
3907Arguments:
3908 d points to a driver instance block
3909 s the string to search for
3910
3911Returns: TRUE if a dependency is found
3912*/
3913
3914BOOL
3915readconf_depends(driver_instance *d, uschar *s)
3916{
3917int count = *(d->info->options_count);
3918uschar *ss;
3919
3920for (optionlist * ol = d->info->options; ol < d->info->options + count; ol++)
3921 {
3922 void *options_block;
3923 uschar *value;
3924 int type = ol->type & opt_mask;
3925 if (type != opt_stringptr) continue;
3926 options_block = ((ol->type & opt_public) == 0)? d->options_block : (void *)d;
3927 value = *(uschar **)(US options_block + (long int)(ol->value));
3928 if (value != NULL && (ss = Ustrstr(value, s)) != NULL)
3929 {
3930 if (ss <= value || (ss[-1] != '$' && ss[-1] != '{') ||
3931 isalnum(ss[Ustrlen(s)])) continue;
3932 DEBUG(D_transport) debug_printf("driver %s: \"%s\" option depends on %s\n",
3933 d->name, ol->name, s);
3934 return TRUE;
3935 }
3936 }
3937
3938DEBUG(D_transport) debug_printf("driver %s does not depend on %s\n", d->name, s);
3939return FALSE;
3940}
3941
3942
3943
3944
3945/*************************************************
3946* Decode an error type for retries *
3947*************************************************/
3948
3949/* This function is global because it is also called from the main
3950program when testing retry information. It decodes strings such as "quota_7d"
3951into numerical error codes.
3952
3953Arguments:
3954 pp points to start of text
3955 p points past end of text
3956 basic_errno points to an int to receive the main error number
3957 more_errno points to an int to receive the secondary error data
3958
3959Returns: NULL if decoded correctly; else points to error text
3960*/
3961
3962uschar *
3963readconf_retry_error(const uschar *pp, const uschar *p,
3964 int *basic_errno, int *more_errno)
3965{
3966int len;
3967const uschar *q = pp;
3968while (q < p && *q != '_') q++;
3969len = q - pp;
3970
3971if (len == 5 && strncmpic(pp, US"quota", len) == 0)
3972 {
3973 *basic_errno = ERRNO_EXIMQUOTA;
3974 if (q != p && (*more_errno = readconf_readtime(q+1, *p, FALSE)) < 0)
3975 return US"bad time value";
3976 }
3977
3978else if (len == 7 && strncmpic(pp, US"refused", len) == 0)
3979 {
3980 *basic_errno = ECONNREFUSED;
3981 if (q != p)
3982 {
3983 if (strncmpic(q+1, US"MX", p-q-1) == 0) *more_errno = 'M';
3984 else if (strncmpic(q+1, US"A", p-q-1) == 0) *more_errno = 'A';
3985 else return US"A or MX expected after \"refused\"";
3986 }
3987 }
3988
3989else if (len == 7 && strncmpic(pp, US"timeout", len) == 0)
3990 {
3991 *basic_errno = ETIMEDOUT;
3992 if (q != p)
3993 {
3994 int i;
3995 int xlen = p - q - 1;
3996 const uschar *x = q + 1;
3997
3998 static uschar *extras[] =
3999 { US"A", US"MX", US"connect", US"connect_A", US"connect_MX" };
4000 static int values[] =
4001 { 'A', 'M', RTEF_CTOUT, RTEF_CTOUT|'A', RTEF_CTOUT|'M' };
4002
4003 for (i = 0; i < nelem(extras); i++)
4004 if (strncmpic(x, extras[i], xlen) == 0)
4005 {
4006 *more_errno = values[i];
4007 break;
4008 }
4009
4010 if (i >= nelem(extras))
4011 if (strncmpic(x, US"DNS", xlen) == 0)
4012 log_write(0, LOG_MAIN|LOG_PANIC, "\"timeout_dns\" is no longer "
4013 "available in retry rules (it has never worked) - treated as "
4014 "\"timeout\"");
4015 else
4016 return US"\"A\", \"MX\", or \"connect\" expected after \"timeout\"";
4017 }
4018 }
4019
4020else if (strncmpic(pp, US"mail_4", 6) == 0 ||
4021 strncmpic(pp, US"rcpt_4", 6) == 0 ||
4022 strncmpic(pp, US"data_4", 6) == 0)
4023 {
4024 BOOL bad = FALSE;
4025 int x = 255; /* means "any 4xx code" */
4026 if (p != pp + 8) bad = TRUE; else
4027 {
4028 int a = pp[6], b = pp[7];
4029 if (isdigit(a))
4030 {
4031 x = (a - '0') * 10;
4032 if (isdigit(b)) x += b - '0';
4033 else if (b == 'x') x += 100;
4034 else bad = TRUE;
4035 }
4036 else if (a != 'x' || b != 'x') bad = TRUE;
4037 }
4038
4039 if (bad)
4040 return string_sprintf("%.4s_4 must be followed by xx, dx, or dd, where "
4041 "x is literal and d is any digit", pp);
4042
4043 *basic_errno = *pp == 'm' ? ERRNO_MAIL4XX :
4044 *pp == 'r' ? ERRNO_RCPT4XX : ERRNO_DATA4XX;
4045 *more_errno = x << 8;
4046 }
4047
4048else if (len == 4 && strncmpic(pp, US"auth", len) == 0 &&
4049 strncmpic(q+1, US"failed", p-q-1) == 0)
4050 *basic_errno = ERRNO_AUTHFAIL;
4051
4052else if (strncmpic(pp, US"lost_connection", p - pp) == 0)
4053 *basic_errno = ERRNO_SMTPCLOSED;
4054
4055else if (strncmpic(pp, US"tls_required", p - pp) == 0)
4056 *basic_errno = ERRNO_TLSREQUIRED;
4057
4058else if (strncmpic(pp, US"lookup", p - pp) == 0)
4059 *basic_errno = ERRNO_UNKNOWNHOST;
4060
4061else if (len != 1 || Ustrncmp(pp, "*", 1) != 0)
4062 return string_sprintf("unknown or malformed retry error \"%.*s\"", (int) (p-pp), pp);
4063
4064return NULL;
4065}
4066
4067
4068
4069
4070/*************************************************
4071* Read retry information *
4072*************************************************/
4073
4074/* Each line of retry information contains:
4075
4076. A domain name pattern or an address pattern;
4077
4078. An error name, possibly with additional data, or *;
4079
4080. An optional sequence of retry items, each consisting of an identifying
4081 letter, a cutoff time, and optional parameters.
4082
4083All this is decoded and placed into a control block. */
4084
4085
4086/* Subroutine to read an argument, preceded by a comma and terminated
4087by comma, semicolon, whitespace, or newline. The types are: 0 = time value,
40881 = fixed point number (returned *1000).
4089
4090Arguments:
4091 paddr pointer to pointer to current character; updated
4092 type 0 => read a time; 1 => read a fixed point number
4093
4094Returns: time in seconds or fixed point number * 1000
4095*/
4096
4097static int
4098retry_arg(const uschar **paddr, int type)
4099{
4100const uschar *p = *paddr;
4101const uschar *pp;
4102
4103if (*p++ != ',') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma expected");
4104
4105while (isspace(*p)) p++;
4106pp = p;
4107while (isalnum(*p) || (type == 1 && *p == '.')) p++;
4108
4109if (*p != 0 && !isspace(*p) && *p != ',' && *p != ';')
4110 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma or semicolon expected");
4111
4112*paddr = p;
4113switch (type)
4114 {
4115 case 0: return readconf_readtime(pp, *p, FALSE);
4116 case 1: return readconf_readfixed(pp, *p);
4117 }
4118return 0; /* Keep picky compilers happy */
4119}
4120
4121/* The function proper */
4122
4123void
4124readconf_retries(void)
4125{
4126retry_config **chain = &retries;
4127retry_config *next;
4128const uschar *p;
4129
4130while ((p = get_config_line()))
4131 {
4132 retry_rule **rchain;
4133 const uschar *pp;
4134 uschar *error;
4135
4136 next = store_get(sizeof(retry_config), FALSE);
4137 next->next = NULL;
4138 *chain = next;
4139 chain = &(next->next);
4140 next->basic_errno = next->more_errno = 0;
4141 next->senders = NULL;
4142 next->rules = NULL;
4143 rchain = &(next->rules);
4144
4145 next->pattern = string_dequote(&p);
4146 while (isspace(*p)) p++;
4147 pp = p;
4148 while (mac_isgraph(*p)) p++;
4149 if (p - pp <= 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4150 "missing error type in retry rule");
4151
4152 /* Test error names for things we understand. */
4153
4154 if ((error = readconf_retry_error(pp, p, &next->basic_errno,
4155 &next->more_errno)))
4156 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s", error);
4157
4158 /* There may be an optional address list of senders to be used as another
4159 constraint on the rule. This was added later, so the syntax is a bit of a
4160 fudge. Anything that is not a retry rule starting "F," or "G," is treated as
4161 an address list. */
4162
4163 while (isspace(*p)) p++;
4164 if (Ustrncmp(p, "senders", 7) == 0)
4165 {
4166 p += 7;
4167 while (isspace(*p)) p++;
4168 if (*p++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4169 "\"=\" expected after \"senders\" in retry rule");
4170 while (isspace(*p)) p++;
4171 next->senders = string_dequote(&p);
4172 }
4173
4174 /* Now the retry rules. Keep the maximum timeout encountered. */
4175
4176 while (isspace(*p)) p++;
4177
4178 while (*p != 0)
4179 {
4180 retry_rule *rule = store_get(sizeof(retry_rule), FALSE);
4181 *rchain = rule;
4182 rchain = &(rule->next);
4183 rule->next = NULL;
4184 rule->rule = toupper(*p++);
4185 rule->timeout = retry_arg(&p, 0);
4186 if (rule->timeout > retry_maximum_timeout)
4187 retry_maximum_timeout = rule->timeout;
4188
4189 switch (rule->rule)
4190 {
4191 case 'F': /* Fixed interval */
4192 rule->p1 = retry_arg(&p, 0);
4193 break;
4194
4195 case 'G': /* Geometrically increasing intervals */
4196 case 'H': /* Ditto, but with randomness */
4197 rule->p1 = retry_arg(&p, 0);
4198 rule->p2 = retry_arg(&p, 1);
4199 break;
4200
4201 default:
4202 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unknown retry rule letter");
4203 break;
4204 }
4205
4206 if (rule->timeout <= 0 || rule->p1 <= 0 ||
4207 (rule->rule != 'F' && rule->p2 < 1000))
4208 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4209 "bad parameters for retry rule");
4210
4211 while (isspace(*p)) p++;
4212 if (*p == ';')
4213 {
4214 p++;
4215 while (isspace(*p)) p++;
4216 }
4217 else if (*p != 0)
4218 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "semicolon expected");
4219 }
4220 }
4221}
4222
4223
4224
4225/*************************************************
4226* Initialize authenticators *
4227*************************************************/
4228
4229/* Read the authenticators section of the configuration file.
4230
4231Arguments: none
4232Returns: nothing
4233*/
4234
4235static void
4236auths_init(void)
4237{
4238#ifdef SUPPORT_PIPE_CONNECT
4239int nauths = 0;
4240#endif
4241
4242readconf_driver_init(US"authenticator",
4243 (driver_instance **)(&auths), /* chain anchor */
4244 (driver_info *)auths_available, /* available drivers */
4245 sizeof(auth_info), /* size of info block */
4246 &auth_defaults, /* default values for generic options */
4247 sizeof(auth_instance), /* size of instance block */
4248 optionlist_auths, /* generic options */
4249 optionlist_auths_size);
4250
4251for (auth_instance * au = auths; au; au = au->next)
4252 {
4253 if (!au->public_name)
4254 log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "no public name specified for "
4255 "the %s authenticator", au->name);
4256
4257 for (auth_instance * bu = au->next; bu; bu = bu->next)
4258 if (strcmpic(au->public_name, bu->public_name) == 0)
4259 if ((au->client && bu->client) || (au->server && bu->server))
4260 log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "two %s authenticators "
4261 "(%s and %s) have the same public name (%s)",
4262 au->client ? US"client" : US"server", au->name, bu->name,
4263 au->public_name);
4264#ifdef SUPPORT_PIPE_CONNECT
4265 nauths++;
4266#endif
4267 }
4268#ifdef SUPPORT_PIPE_CONNECT
4269f.smtp_in_early_pipe_no_auth = nauths > 16;
4270#endif
4271}
4272
4273
4274
4275
4276/*************************************************
4277* Read ACL information *
4278*************************************************/
4279
4280/* If this run of Exim is not doing something that involves receiving a
4281message, we can just skip over the ACL information. No need to parse it.
4282
4283First, we have a function for acl_read() to call back to get the next line. We
4284need to remember the line we passed, because at the end it will contain the
4285name of the next ACL. */
4286
4287static uschar *acl_line;
4288
4289static uschar *
4290acl_callback(void)
4291{
4292acl_line = get_config_line();
4293return acl_line;
4294}
4295
4296
4297/* Now the main function:
4298
4299Arguments: none
4300Returns: nothing
4301*/
4302
4303static void
4304readconf_acl(void)
4305{
4306uschar *p;
4307
4308/* Read each ACL and add it into the tree. Macro (re)definitions are allowed
4309between ACLs. */
4310
4311acl_line = get_config_line();
4312
4313while(acl_line)
4314 {
4315 uschar name[64];
4316 tree_node *node;
4317 uschar *error;
4318
4319 p = readconf_readname(name, sizeof(name), acl_line);
4320 if (isupper(*name) && *p == '=')
4321 {
4322 if (!macro_read_assignment(acl_line)) exim_exit(EXIT_FAILURE, US"");
4323 acl_line = get_config_line();
4324 continue;
4325 }
4326
4327 if (*p != ':' || name[0] == 0)
4328 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing or malformed ACL name");
4329
4330 node = store_get(sizeof(tree_node) + Ustrlen(name), is_tainted(name));
4331 Ustrcpy(node->name, name);
4332 if (!tree_insertnode(&acl_anchor, node))
4333 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4334 "there are two ACLs called \"%s\"", name);
4335
4336 node->data.ptr = acl_read(acl_callback, &error);
4337
4338 if (node->data.ptr == NULL && error != NULL)
4339 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "error in ACL: %s", error);
4340 }
4341}
4342
4343
4344
4345/*************************************************
4346* Read configuration for local_scan() *
4347*************************************************/
4348
4349/* This function is called after "begin local_scan" is encountered in the
4350configuration file. If the local_scan() function allows for configuration
4351options, we can process them. Otherwise, we expire in a panic.
4352
4353Arguments: none
4354Returns: nothing
4355*/
4356
4357static void
4358local_scan_init(void)
4359{
4360#ifndef LOCAL_SCAN_HAS_OPTIONS
4361log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "local_scan() options not supported: "
4362 "(LOCAL_SCAN_HAS_OPTIONS not defined in Local/Makefile)");
4363#else
4364
4365uschar *p;
4366while ((p = get_config_line()))
4367 {
4368 (void) readconf_handle_option(p, local_scan_options, local_scan_options_count,
4369 NULL, US"local_scan option \"%s\" unknown");
4370 }
4371#endif
4372}
4373
4374
4375
4376/*************************************************
4377* Read rest of configuration (after main) *
4378*************************************************/
4379
4380/* This function reads the rest of the runtime configuration, after the main
4381configuration. It is called only when actually needed. Each subsequent section
4382of the configuration starts with a line of the form
4383
4384 begin name
4385
4386where the name is "routers", "transports", etc. A section is terminated by
4387hitting the next "begin" line, and the next name is left in next_section.
4388Because it may confuse people as to whether the names are singular or plural,
4389we add "s" if it's missing. There is always enough room in next_section for
4390this. This function is basically just a switch.
4391
4392Arguments: none
4393Returns: nothing
4394*/
4395
4396static uschar *section_list[] = {
4397 US"acls",
4398 US"authenticators",
4399 US"local_scans",
4400 US"retrys",
4401 US"rewrites",
4402 US"routers",
4403 US"transports"};
4404
4405void
4406readconf_rest(void)
4407{
4408int had = 0;
4409
4410while(next_section[0] != 0)
4411 {
4412 int bit;
4413 int first = 0;
4414 int last = nelem(section_list);
4415 int mid = last/2;
4416 int n = Ustrlen(next_section);
4417
4418 if (tolower(next_section[n-1]) != 's') Ustrcpy(next_section+n, US"s");
4419
4420 for (;;)
4421 {
4422 int c = strcmpic(next_section, section_list[mid]);
4423 if (c == 0) break;
4424 if (c > 0) first = mid + 1; else last = mid;
4425 if (first >= last)
4426 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4427 "\"%.*s\" is not a known configuration section name", n, next_section);
4428 mid = (last + first)/2;
4429 }
4430
4431 bit = 1 << mid;
4432 if (((had ^= bit) & bit) == 0)
4433 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4434 "\"%.*s\" section is repeated in the configuration file", n,
4435 next_section);
4436
4437 switch(mid)
4438 {
4439 case 0: readconf_acl(); break;
4440 case 1: auths_init(); break;
4441 case 2: local_scan_init(); break;
4442 case 3: readconf_retries(); break;
4443 case 4: readconf_rewrites(); break;
4444 case 5: route_init(); break;
4445 case 6: transport_init(); break;
4446 }
4447 }
4448
4449(void)fclose(config_file);
4450}
4451
4452/* Init the storage for the pre-parsed config lines */
4453void
4454readconf_save_config(const uschar *s)
4455{
4456save_config_line(string_sprintf("# Exim Configuration (%s)",
4457 f.running_in_test_harness ? US"X" : s));
4458}
4459
4460static void
4461save_config_position(const uschar *file, int line)
4462{
4463save_config_line(string_sprintf("# %d \"%s\"", line, file));
4464}
4465
4466/* Append a pre-parsed logical line to the config lines store,
4467this operates on a global (static) list that holds all the pre-parsed
4468config lines, we do no further processing here, output formatting and
4469honouring of <hide> or macros will be done during output */
4470
4471static void
4472save_config_line(const uschar* line)
4473{
4474static config_line_item *current;
4475config_line_item *next;
4476
4477next = (config_line_item*) store_get(sizeof(config_line_item), FALSE);
4478next->line = string_copy(line);
4479next->next = NULL;
4480
4481if (!config_lines) config_lines = next;
4482else current->next = next;
4483
4484current = next;
4485}
4486
4487/* List the parsed config lines, care about nice formatting and
4488hide the <hide> values unless we're the admin user */
4489void
4490print_config(BOOL admin, BOOL terse)
4491{
4492const int TS = terse ? 0 : 2;
4493int indent = 0;
4494
4495for (config_line_item * i = config_lines; i; i = i->next)
4496 {
4497 uschar *current;
4498 uschar *p;
4499
4500 /* skip over to the first non-space */
4501 for (current = i->line; *current && isspace(*current); ++current)
4502 ;
4503
4504 if (*current == '\0')
4505 continue;
4506
4507 /* Collapse runs of spaces. We stop this if we encounter one of the
4508 * following characters: "'$, as this may indicate careful formatting */
4509 for (p = current; *p; ++p)
4510 {
4511 uschar *next;
4512 if (!isspace(*p)) continue;
4513 if (*p != ' ') *p = ' ';
4514
4515 for (next = p; isspace(*next); ++next)
4516 ;
4517
4518 if (next - p > 1)
4519 memmove(p+1, next, Ustrlen(next)+1);
4520
4521 if (*next == '"' || *next == '\'' || *next == '$')
4522 break;
4523 }
4524
4525 /* # lines */
4526 if (current[0] == '#')
4527 puts(CCS current);
4528
4529 /* begin lines are left aligned */
4530 else if (Ustrncmp(current, "begin", 5) == 0 && isspace(current[5]))
4531 {
4532 if (!terse) puts("");
4533 puts(CCS current);
4534 indent = TS;
4535 }
4536
4537 /* router/acl/transport block names */
4538 else if (current[Ustrlen(current)-1] == ':' && !Ustrchr(current, '='))
4539 {
4540 if (!terse) puts("");
4541 printf("%*s%s\n", TS, "", current);
4542 indent = 2 * TS;
4543 }
4544
4545 /* hidden lines (all MACROS or lines prefixed with "hide") */
4546 else if ( !admin
4547 && ( isupper(*current)
4548 || Ustrncmp(current, "hide", 4) == 0 && isspace(current[4])
4549 )
4550 )
4551 {
4552 if ((p = Ustrchr(current, '=')))
4553 {
4554 *p = '\0';
4555 printf("%*s%s= %s\n", indent, "", current, hidden);
4556 }
4557 /* e.g.: hide split_spool_directory */
4558 else
4559 printf("%*s\n", indent, hidden);
4560 }
4561
4562 else
4563 /* rest is public */
4564 printf("%*s%s\n", indent, "", current);
4565 }
4566}
4567
4568#endif /*!MACRO_PREDEF*/
4569/* vi: aw ai sw=2
4570*/
4571/* End of readconf.c */
Unnamed repository; edit this file 'description' to name the repository.