| 1 | /************************************************* |
| 2 | * Exim - an Internet mail transport agent * |
| 3 | *************************************************/ |
| 4 | |
| 5 | /* Copyright (c) University of Cambridge 1995 - 2018 */ |
| 6 | /* See the file NOTICE for conditions of use and distribution. */ |
| 7 | |
| 8 | /* Functions for reading the configuration file, and for displaying |
| 9 | overall configuration values. Thanks to Brian Candler for the original |
| 10 | implementation of the conditional .ifdef etc. */ |
| 11 | |
| 12 | #include "exim.h" |
| 13 | |
| 14 | #ifdef MACRO_PREDEF |
| 15 | # include "macro_predef.h" |
| 16 | #endif |
| 17 | |
| 18 | #define READCONF_DEBUG if (FALSE) /* Change to TRUE to enable */ |
| 19 | |
| 20 | |
| 21 | static uschar * syslog_facility_str; |
| 22 | static void fn_smtp_receive_timeout(const uschar *, const uschar *, unsigned); |
| 23 | |
| 24 | /************************************************* |
| 25 | * Main configuration options * |
| 26 | *************************************************/ |
| 27 | |
| 28 | /* The list of options that can be set in the main configuration file. This |
| 29 | must be in alphabetic order because it is searched by binary chop. */ |
| 30 | |
| 31 | static optionlist optionlist_config[] = { |
| 32 | { "*set_exim_group", opt_bool|opt_hidden, &exim_gid_set }, |
| 33 | { "*set_exim_user", opt_bool|opt_hidden, &exim_uid_set }, |
| 34 | { "*set_system_filter_group", opt_bool|opt_hidden, &system_filter_gid_set }, |
| 35 | { "*set_system_filter_user", opt_bool|opt_hidden, &system_filter_uid_set }, |
| 36 | { "accept_8bitmime", opt_bool, &accept_8bitmime }, |
| 37 | { "acl_not_smtp", opt_stringptr, &acl_not_smtp }, |
| 38 | #ifdef WITH_CONTENT_SCAN |
| 39 | { "acl_not_smtp_mime", opt_stringptr, &acl_not_smtp_mime }, |
| 40 | #endif |
| 41 | { "acl_not_smtp_start", opt_stringptr, &acl_not_smtp_start }, |
| 42 | { "acl_smtp_auth", opt_stringptr, &acl_smtp_auth }, |
| 43 | { "acl_smtp_connect", opt_stringptr, &acl_smtp_connect }, |
| 44 | { "acl_smtp_data", opt_stringptr, &acl_smtp_data }, |
| 45 | #ifndef DISABLE_PRDR |
| 46 | { "acl_smtp_data_prdr", opt_stringptr, &acl_smtp_data_prdr }, |
| 47 | #endif |
| 48 | #ifndef DISABLE_DKIM |
| 49 | { "acl_smtp_dkim", opt_stringptr, &acl_smtp_dkim }, |
| 50 | #endif |
| 51 | { "acl_smtp_etrn", opt_stringptr, &acl_smtp_etrn }, |
| 52 | { "acl_smtp_expn", opt_stringptr, &acl_smtp_expn }, |
| 53 | { "acl_smtp_helo", opt_stringptr, &acl_smtp_helo }, |
| 54 | { "acl_smtp_mail", opt_stringptr, &acl_smtp_mail }, |
| 55 | { "acl_smtp_mailauth", opt_stringptr, &acl_smtp_mailauth }, |
| 56 | #ifdef WITH_CONTENT_SCAN |
| 57 | { "acl_smtp_mime", opt_stringptr, &acl_smtp_mime }, |
| 58 | #endif |
| 59 | { "acl_smtp_notquit", opt_stringptr, &acl_smtp_notquit }, |
| 60 | { "acl_smtp_predata", opt_stringptr, &acl_smtp_predata }, |
| 61 | { "acl_smtp_quit", opt_stringptr, &acl_smtp_quit }, |
| 62 | { "acl_smtp_rcpt", opt_stringptr, &acl_smtp_rcpt }, |
| 63 | #ifndef DISABLE_TLS |
| 64 | { "acl_smtp_starttls", opt_stringptr, &acl_smtp_starttls }, |
| 65 | #endif |
| 66 | { "acl_smtp_vrfy", opt_stringptr, &acl_smtp_vrfy }, |
| 67 | { "add_environment", opt_stringptr, &add_environment }, |
| 68 | { "admin_groups", opt_gidlist, &admin_groups }, |
| 69 | { "allow_domain_literals", opt_bool, &allow_domain_literals }, |
| 70 | { "allow_mx_to_ip", opt_bool, &allow_mx_to_ip }, |
| 71 | { "allow_utf8_domains", opt_bool, &allow_utf8_domains }, |
| 72 | { "auth_advertise_hosts", opt_stringptr, &auth_advertise_hosts }, |
| 73 | { "auto_thaw", opt_time, &auto_thaw }, |
| 74 | #ifdef WITH_CONTENT_SCAN |
| 75 | { "av_scanner", opt_stringptr, &av_scanner }, |
| 76 | #endif |
| 77 | { "bi_command", opt_stringptr, &bi_command }, |
| 78 | #ifdef EXPERIMENTAL_BRIGHTMAIL |
| 79 | { "bmi_config_file", opt_stringptr, &bmi_config_file }, |
| 80 | #endif |
| 81 | { "bounce_message_file", opt_stringptr, &bounce_message_file }, |
| 82 | { "bounce_message_text", opt_stringptr, &bounce_message_text }, |
| 83 | { "bounce_return_body", opt_bool, &bounce_return_body }, |
| 84 | { "bounce_return_linesize_limit", opt_mkint, &bounce_return_linesize_limit }, |
| 85 | { "bounce_return_message", opt_bool, &bounce_return_message }, |
| 86 | { "bounce_return_size_limit", opt_mkint, &bounce_return_size_limit }, |
| 87 | { "bounce_sender_authentication",opt_stringptr,&bounce_sender_authentication }, |
| 88 | { "callout_domain_negative_expire", opt_time, &callout_cache_domain_negative_expire }, |
| 89 | { "callout_domain_positive_expire", opt_time, &callout_cache_domain_positive_expire }, |
| 90 | { "callout_negative_expire", opt_time, &callout_cache_negative_expire }, |
| 91 | { "callout_positive_expire", opt_time, &callout_cache_positive_expire }, |
| 92 | { "callout_random_local_part",opt_stringptr, &callout_random_local_part }, |
| 93 | { "check_log_inodes", opt_int, &check_log_inodes }, |
| 94 | { "check_log_space", opt_Kint, &check_log_space }, |
| 95 | { "check_rfc2047_length", opt_bool, &check_rfc2047_length }, |
| 96 | { "check_spool_inodes", opt_int, &check_spool_inodes }, |
| 97 | { "check_spool_space", opt_Kint, &check_spool_space }, |
| 98 | { "chunking_advertise_hosts", opt_stringptr, &chunking_advertise_hosts }, |
| 99 | { "commandline_checks_require_admin", opt_bool,&commandline_checks_require_admin }, |
| 100 | { "daemon_smtp_port", opt_stringptr|opt_hidden, &daemon_smtp_port }, |
| 101 | { "daemon_smtp_ports", opt_stringptr, &daemon_smtp_port }, |
| 102 | { "daemon_startup_retries", opt_int, &daemon_startup_retries }, |
| 103 | { "daemon_startup_sleep", opt_time, &daemon_startup_sleep }, |
| 104 | #ifdef EXPERIMENTAL_DCC |
| 105 | { "dcc_direct_add_header", opt_bool, &dcc_direct_add_header }, |
| 106 | { "dccifd_address", opt_stringptr, &dccifd_address }, |
| 107 | { "dccifd_options", opt_stringptr, &dccifd_options }, |
| 108 | #endif |
| 109 | { "debug_store", opt_bool, &debug_store }, |
| 110 | { "delay_warning", opt_timelist, &delay_warning }, |
| 111 | { "delay_warning_condition", opt_stringptr, &delay_warning_condition }, |
| 112 | { "deliver_drop_privilege", opt_bool, &deliver_drop_privilege }, |
| 113 | { "deliver_queue_load_max", opt_fixed, &deliver_queue_load_max }, |
| 114 | { "delivery_date_remove", opt_bool, &delivery_date_remove }, |
| 115 | #ifdef ENABLE_DISABLE_FSYNC |
| 116 | { "disable_fsync", opt_bool, &disable_fsync }, |
| 117 | #endif |
| 118 | { "disable_ipv6", opt_bool, &disable_ipv6 }, |
| 119 | #ifndef DISABLE_DKIM |
| 120 | { "dkim_verify_signers", opt_stringptr, &dkim_verify_signers }, |
| 121 | #endif |
| 122 | #ifdef EXPERIMENTAL_DMARC |
| 123 | { "dmarc_forensic_sender", opt_stringptr, &dmarc_forensic_sender }, |
| 124 | { "dmarc_history_file", opt_stringptr, &dmarc_history_file }, |
| 125 | { "dmarc_tld_file", opt_stringptr, &dmarc_tld_file }, |
| 126 | #endif |
| 127 | { "dns_again_means_nonexist", opt_stringptr, &dns_again_means_nonexist }, |
| 128 | { "dns_check_names_pattern", opt_stringptr, &check_dns_names_pattern }, |
| 129 | { "dns_cname_loops", opt_int, &dns_cname_loops }, |
| 130 | { "dns_csa_search_limit", opt_int, &dns_csa_search_limit }, |
| 131 | { "dns_csa_use_reverse", opt_bool, &dns_csa_use_reverse }, |
| 132 | { "dns_dnssec_ok", opt_int, &dns_dnssec_ok }, |
| 133 | { "dns_ipv4_lookup", opt_stringptr, &dns_ipv4_lookup }, |
| 134 | { "dns_retrans", opt_time, &dns_retrans }, |
| 135 | { "dns_retry", opt_int, &dns_retry }, |
| 136 | { "dns_trust_aa", opt_stringptr, &dns_trust_aa }, |
| 137 | { "dns_use_edns0", opt_int, &dns_use_edns0 }, |
| 138 | /* This option is now a no-op, retained for compatibility */ |
| 139 | { "drop_cr", opt_bool, &drop_cr }, |
| 140 | /*********************************************************/ |
| 141 | { "dsn_advertise_hosts", opt_stringptr, &dsn_advertise_hosts }, |
| 142 | { "dsn_from", opt_stringptr, &dsn_from }, |
| 143 | { "envelope_to_remove", opt_bool, &envelope_to_remove }, |
| 144 | { "errors_copy", opt_stringptr, &errors_copy }, |
| 145 | { "errors_reply_to", opt_stringptr, &errors_reply_to }, |
| 146 | #ifndef DISABLE_EVENT |
| 147 | { "event_action", opt_stringptr, &event_action }, |
| 148 | #endif |
| 149 | { "exim_group", opt_gid, &exim_gid }, |
| 150 | { "exim_path", opt_stringptr, &exim_path }, |
| 151 | { "exim_user", opt_uid, &exim_uid }, |
| 152 | { "exim_version", opt_stringptr, &version_string }, |
| 153 | { "extra_local_interfaces", opt_stringptr, &extra_local_interfaces }, |
| 154 | { "extract_addresses_remove_arguments", opt_bool, &extract_addresses_remove_arguments }, |
| 155 | { "finduser_retries", opt_int, &finduser_retries }, |
| 156 | { "freeze_tell", opt_stringptr, &freeze_tell }, |
| 157 | { "gecos_name", opt_stringptr, &gecos_name }, |
| 158 | { "gecos_pattern", opt_stringptr, &gecos_pattern }, |
| 159 | #ifndef DISABLE_TLS |
| 160 | { "gnutls_allow_auto_pkcs11", opt_bool, &gnutls_allow_auto_pkcs11 }, |
| 161 | { "gnutls_compat_mode", opt_bool, &gnutls_compat_mode }, |
| 162 | #endif |
| 163 | { "header_line_maxsize", opt_int, &header_line_maxsize }, |
| 164 | { "header_maxsize", opt_int, &header_maxsize }, |
| 165 | { "headers_charset", opt_stringptr, &headers_charset }, |
| 166 | { "helo_accept_junk_hosts", opt_stringptr, &helo_accept_junk_hosts }, |
| 167 | { "helo_allow_chars", opt_stringptr, &helo_allow_chars }, |
| 168 | { "helo_lookup_domains", opt_stringptr, &helo_lookup_domains }, |
| 169 | { "helo_try_verify_hosts", opt_stringptr, &helo_try_verify_hosts }, |
| 170 | { "helo_verify_hosts", opt_stringptr, &helo_verify_hosts }, |
| 171 | { "hold_domains", opt_stringptr, &hold_domains }, |
| 172 | { "host_lookup", opt_stringptr, &host_lookup }, |
| 173 | { "host_lookup_order", opt_stringptr, &host_lookup_order }, |
| 174 | { "host_reject_connection", opt_stringptr, &host_reject_connection }, |
| 175 | { "hosts_connection_nolog", opt_stringptr, &hosts_connection_nolog }, |
| 176 | #ifdef SUPPORT_PROXY |
| 177 | { "hosts_proxy", opt_stringptr, &hosts_proxy }, |
| 178 | #endif |
| 179 | { "hosts_treat_as_local", opt_stringptr, &hosts_treat_as_local }, |
| 180 | #ifdef LOOKUP_IBASE |
| 181 | { "ibase_servers", opt_stringptr, &ibase_servers }, |
| 182 | #endif |
| 183 | { "ignore_bounce_errors_after", opt_time, &ignore_bounce_errors_after }, |
| 184 | { "ignore_fromline_hosts", opt_stringptr, &ignore_fromline_hosts }, |
| 185 | { "ignore_fromline_local", opt_bool, &ignore_fromline_local }, |
| 186 | { "keep_environment", opt_stringptr, &keep_environment }, |
| 187 | { "keep_malformed", opt_time, &keep_malformed }, |
| 188 | #ifdef LOOKUP_LDAP |
| 189 | { "ldap_ca_cert_dir", opt_stringptr, &eldap_ca_cert_dir }, |
| 190 | { "ldap_ca_cert_file", opt_stringptr, &eldap_ca_cert_file }, |
| 191 | { "ldap_cert_file", opt_stringptr, &eldap_cert_file }, |
| 192 | { "ldap_cert_key", opt_stringptr, &eldap_cert_key }, |
| 193 | { "ldap_cipher_suite", opt_stringptr, &eldap_cipher_suite }, |
| 194 | { "ldap_default_servers", opt_stringptr, &eldap_default_servers }, |
| 195 | { "ldap_require_cert", opt_stringptr, &eldap_require_cert }, |
| 196 | { "ldap_start_tls", opt_bool, &eldap_start_tls }, |
| 197 | { "ldap_version", opt_int, &eldap_version }, |
| 198 | #endif |
| 199 | { "local_from_check", opt_bool, &local_from_check }, |
| 200 | { "local_from_prefix", opt_stringptr, &local_from_prefix }, |
| 201 | { "local_from_suffix", opt_stringptr, &local_from_suffix }, |
| 202 | { "local_interfaces", opt_stringptr, &local_interfaces }, |
| 203 | #ifdef HAVE_LOCAL_SCAN |
| 204 | { "local_scan_timeout", opt_time, &local_scan_timeout }, |
| 205 | #endif |
| 206 | { "local_sender_retain", opt_bool, &local_sender_retain }, |
| 207 | { "localhost_number", opt_stringptr, &host_number_string }, |
| 208 | { "log_file_path", opt_stringptr, &log_file_path }, |
| 209 | { "log_selector", opt_stringptr, &log_selector_string }, |
| 210 | { "log_timezone", opt_bool, &log_timezone }, |
| 211 | { "lookup_open_max", opt_int, &lookup_open_max }, |
| 212 | { "max_username_length", opt_int, &max_username_length }, |
| 213 | { "message_body_newlines", opt_bool, &message_body_newlines }, |
| 214 | { "message_body_visible", opt_mkint, &message_body_visible }, |
| 215 | { "message_id_header_domain", opt_stringptr, &message_id_domain }, |
| 216 | { "message_id_header_text", opt_stringptr, &message_id_text }, |
| 217 | { "message_logs", opt_bool, &message_logs }, |
| 218 | { "message_size_limit", opt_stringptr, &message_size_limit }, |
| 219 | #ifdef SUPPORT_MOVE_FROZEN_MESSAGES |
| 220 | { "move_frozen_messages", opt_bool, &move_frozen_messages }, |
| 221 | #endif |
| 222 | { "mua_wrapper", opt_bool, &mua_wrapper }, |
| 223 | #ifdef LOOKUP_MYSQL |
| 224 | { "mysql_servers", opt_stringptr, &mysql_servers }, |
| 225 | #endif |
| 226 | { "never_users", opt_uidlist, &never_users }, |
| 227 | #ifndef DISABLE_TLS |
| 228 | { "openssl_options", opt_stringptr, &openssl_options }, |
| 229 | #endif |
| 230 | #ifdef LOOKUP_ORACLE |
| 231 | { "oracle_servers", opt_stringptr, &oracle_servers }, |
| 232 | #endif |
| 233 | { "percent_hack_domains", opt_stringptr, &percent_hack_domains }, |
| 234 | #ifdef EXIM_PERL |
| 235 | { "perl_at_start", opt_bool, &opt_perl_at_start }, |
| 236 | { "perl_startup", opt_stringptr, &opt_perl_startup }, |
| 237 | { "perl_taintmode", opt_bool, &opt_perl_taintmode }, |
| 238 | #endif |
| 239 | #ifdef LOOKUP_PGSQL |
| 240 | { "pgsql_servers", opt_stringptr, &pgsql_servers }, |
| 241 | #endif |
| 242 | { "pid_file_path", opt_stringptr, &pid_file_path }, |
| 243 | { "pipelining_advertise_hosts", opt_stringptr, &pipelining_advertise_hosts }, |
| 244 | #ifdef SUPPORT_PIPE_CONNECT |
| 245 | { "pipelining_connect_advertise_hosts", opt_stringptr, |
| 246 | &pipe_connect_advertise_hosts }, |
| 247 | #endif |
| 248 | #ifndef DISABLE_PRDR |
| 249 | { "prdr_enable", opt_bool, &prdr_enable }, |
| 250 | #endif |
| 251 | { "preserve_message_logs", opt_bool, &preserve_message_logs }, |
| 252 | { "primary_hostname", opt_stringptr, &primary_hostname }, |
| 253 | { "print_topbitchars", opt_bool, &print_topbitchars }, |
| 254 | { "process_log_path", opt_stringptr, &process_log_path }, |
| 255 | { "prod_requires_admin", opt_bool, &prod_requires_admin }, |
| 256 | { "qualify_domain", opt_stringptr, &qualify_domain_sender }, |
| 257 | { "qualify_recipient", opt_stringptr, &qualify_domain_recipient }, |
| 258 | { "queue_domains", opt_stringptr, &queue_domains }, |
| 259 | { "queue_list_requires_admin",opt_bool, &queue_list_requires_admin }, |
| 260 | { "queue_only", opt_bool, &queue_only }, |
| 261 | { "queue_only_file", opt_stringptr, &queue_only_file }, |
| 262 | { "queue_only_load", opt_fixed, &queue_only_load }, |
| 263 | { "queue_only_load_latch", opt_bool, &queue_only_load_latch }, |
| 264 | { "queue_only_override", opt_bool, &queue_only_override }, |
| 265 | { "queue_run_in_order", opt_bool, &queue_run_in_order }, |
| 266 | { "queue_run_max", opt_stringptr, &queue_run_max }, |
| 267 | { "queue_smtp_domains", opt_stringptr, &queue_smtp_domains }, |
| 268 | { "receive_timeout", opt_time, &receive_timeout }, |
| 269 | { "received_header_text", opt_stringptr, &received_header_text }, |
| 270 | { "received_headers_max", opt_int, &received_headers_max }, |
| 271 | { "recipient_unqualified_hosts", opt_stringptr, &recipient_unqualified_hosts }, |
| 272 | { "recipients_max", opt_int, &recipients_max }, |
| 273 | { "recipients_max_reject", opt_bool, &recipients_max_reject }, |
| 274 | #ifdef LOOKUP_REDIS |
| 275 | { "redis_servers", opt_stringptr, &redis_servers }, |
| 276 | #endif |
| 277 | { "remote_max_parallel", opt_int, &remote_max_parallel }, |
| 278 | { "remote_sort_domains", opt_stringptr, &remote_sort_domains }, |
| 279 | { "retry_data_expire", opt_time, &retry_data_expire }, |
| 280 | { "retry_interval_max", opt_time, &retry_interval_max }, |
| 281 | { "return_path_remove", opt_bool, &return_path_remove }, |
| 282 | { "return_size_limit", opt_mkint|opt_hidden, &bounce_return_size_limit }, |
| 283 | { "rfc1413_hosts", opt_stringptr, &rfc1413_hosts }, |
| 284 | { "rfc1413_query_timeout", opt_time, &rfc1413_query_timeout }, |
| 285 | { "sender_unqualified_hosts", opt_stringptr, &sender_unqualified_hosts }, |
| 286 | { "slow_lookup_log", opt_int, &slow_lookup_log }, |
| 287 | { "smtp_accept_keepalive", opt_bool, &smtp_accept_keepalive }, |
| 288 | { "smtp_accept_max", opt_int, &smtp_accept_max }, |
| 289 | { "smtp_accept_max_nonmail", opt_int, &smtp_accept_max_nonmail }, |
| 290 | { "smtp_accept_max_nonmail_hosts", opt_stringptr, &smtp_accept_max_nonmail_hosts }, |
| 291 | { "smtp_accept_max_per_connection", opt_int, &smtp_accept_max_per_connection }, |
| 292 | { "smtp_accept_max_per_host", opt_stringptr, &smtp_accept_max_per_host }, |
| 293 | { "smtp_accept_queue", opt_int, &smtp_accept_queue }, |
| 294 | { "smtp_accept_queue_per_connection", opt_int, &smtp_accept_queue_per_connection }, |
| 295 | { "smtp_accept_reserve", opt_int, &smtp_accept_reserve }, |
| 296 | { "smtp_active_hostname", opt_stringptr, &raw_active_hostname }, |
| 297 | { "smtp_banner", opt_stringptr, &smtp_banner }, |
| 298 | { "smtp_check_spool_space", opt_bool, &smtp_check_spool_space }, |
| 299 | { "smtp_connect_backlog", opt_int, &smtp_connect_backlog }, |
| 300 | { "smtp_enforce_sync", opt_bool, &smtp_enforce_sync }, |
| 301 | { "smtp_etrn_command", opt_stringptr, &smtp_etrn_command }, |
| 302 | { "smtp_etrn_serialize", opt_bool, &smtp_etrn_serialize }, |
| 303 | { "smtp_load_reserve", opt_fixed, &smtp_load_reserve }, |
| 304 | { "smtp_max_synprot_errors", opt_int, &smtp_max_synprot_errors }, |
| 305 | { "smtp_max_unknown_commands",opt_int, &smtp_max_unknown_commands }, |
| 306 | { "smtp_ratelimit_hosts", opt_stringptr, &smtp_ratelimit_hosts }, |
| 307 | { "smtp_ratelimit_mail", opt_stringptr, &smtp_ratelimit_mail }, |
| 308 | { "smtp_ratelimit_rcpt", opt_stringptr, &smtp_ratelimit_rcpt }, |
| 309 | { "smtp_receive_timeout", opt_func, &fn_smtp_receive_timeout }, |
| 310 | { "smtp_reserve_hosts", opt_stringptr, &smtp_reserve_hosts }, |
| 311 | { "smtp_return_error_details",opt_bool, &smtp_return_error_details }, |
| 312 | #ifdef SUPPORT_I18N |
| 313 | { "smtputf8_advertise_hosts", opt_stringptr, &smtputf8_advertise_hosts }, |
| 314 | #endif |
| 315 | #ifdef WITH_CONTENT_SCAN |
| 316 | { "spamd_address", opt_stringptr, &spamd_address }, |
| 317 | #endif |
| 318 | #ifdef SUPPORT_SPF |
| 319 | { "spf_guess", opt_stringptr, &spf_guess }, |
| 320 | #endif |
| 321 | { "split_spool_directory", opt_bool, &split_spool_directory }, |
| 322 | { "spool_directory", opt_stringptr, &spool_directory }, |
| 323 | { "spool_wireformat", opt_bool, &spool_wireformat }, |
| 324 | #ifdef LOOKUP_SQLITE |
| 325 | { "sqlite_lock_timeout", opt_int, &sqlite_lock_timeout }, |
| 326 | #endif |
| 327 | #ifdef EXPERIMENTAL_SRS |
| 328 | { "srs_config", opt_stringptr, &srs_config }, |
| 329 | { "srs_hashlength", opt_int, &srs_hashlength }, |
| 330 | { "srs_hashmin", opt_int, &srs_hashmin }, |
| 331 | { "srs_maxage", opt_int, &srs_maxage }, |
| 332 | { "srs_secrets", opt_stringptr, &srs_secrets }, |
| 333 | { "srs_usehash", opt_bool, &srs_usehash }, |
| 334 | { "srs_usetimestamp", opt_bool, &srs_usetimestamp }, |
| 335 | #endif |
| 336 | { "strict_acl_vars", opt_bool, &strict_acl_vars }, |
| 337 | { "strip_excess_angle_brackets", opt_bool, &strip_excess_angle_brackets }, |
| 338 | { "strip_trailing_dot", opt_bool, &strip_trailing_dot }, |
| 339 | { "syslog_duplication", opt_bool, &syslog_duplication }, |
| 340 | { "syslog_facility", opt_stringptr, &syslog_facility_str }, |
| 341 | { "syslog_pid", opt_bool, &syslog_pid }, |
| 342 | { "syslog_processname", opt_stringptr, &syslog_processname }, |
| 343 | { "syslog_timestamp", opt_bool, &syslog_timestamp }, |
| 344 | { "system_filter", opt_stringptr, &system_filter }, |
| 345 | { "system_filter_directory_transport", opt_stringptr,&system_filter_directory_transport }, |
| 346 | { "system_filter_file_transport",opt_stringptr,&system_filter_file_transport }, |
| 347 | { "system_filter_group", opt_gid, &system_filter_gid }, |
| 348 | { "system_filter_pipe_transport",opt_stringptr,&system_filter_pipe_transport }, |
| 349 | { "system_filter_reply_transport",opt_stringptr,&system_filter_reply_transport }, |
| 350 | { "system_filter_user", opt_uid, &system_filter_uid }, |
| 351 | { "tcp_nodelay", opt_bool, &tcp_nodelay }, |
| 352 | #ifdef USE_TCP_WRAPPERS |
| 353 | { "tcp_wrappers_daemon_name", opt_stringptr, &tcp_wrappers_daemon_name }, |
| 354 | #endif |
| 355 | { "timeout_frozen_after", opt_time, &timeout_frozen_after }, |
| 356 | { "timezone", opt_stringptr, &timezone_string }, |
| 357 | { "tls_advertise_hosts", opt_stringptr, &tls_advertise_hosts }, |
| 358 | #ifndef DISABLE_TLS |
| 359 | { "tls_certificate", opt_stringptr, &tls_certificate }, |
| 360 | { "tls_crl", opt_stringptr, &tls_crl }, |
| 361 | { "tls_dh_max_bits", opt_int, &tls_dh_max_bits }, |
| 362 | { "tls_dhparam", opt_stringptr, &tls_dhparam }, |
| 363 | { "tls_eccurve", opt_stringptr, &tls_eccurve }, |
| 364 | # ifndef DISABLE_OCSP |
| 365 | { "tls_ocsp_file", opt_stringptr, &tls_ocsp_file }, |
| 366 | # endif |
| 367 | { "tls_on_connect_ports", opt_stringptr, &tls_in.on_connect_ports }, |
| 368 | { "tls_privatekey", opt_stringptr, &tls_privatekey }, |
| 369 | { "tls_remember_esmtp", opt_bool, &tls_remember_esmtp }, |
| 370 | { "tls_require_ciphers", opt_stringptr, &tls_require_ciphers }, |
| 371 | # ifdef EXPERIMENTAL_TLS_RESUME |
| 372 | { "tls_resumption_hosts", opt_stringptr, &tls_resumption_hosts }, |
| 373 | # endif |
| 374 | { "tls_try_verify_hosts", opt_stringptr, &tls_try_verify_hosts }, |
| 375 | { "tls_verify_certificates", opt_stringptr, &tls_verify_certificates }, |
| 376 | { "tls_verify_hosts", opt_stringptr, &tls_verify_hosts }, |
| 377 | #endif |
| 378 | { "trusted_groups", opt_gidlist, &trusted_groups }, |
| 379 | { "trusted_users", opt_uidlist, &trusted_users }, |
| 380 | { "unknown_login", opt_stringptr, &unknown_login }, |
| 381 | { "unknown_username", opt_stringptr, &unknown_username }, |
| 382 | { "untrusted_set_sender", opt_stringptr, &untrusted_set_sender }, |
| 383 | { "uucp_from_pattern", opt_stringptr, &uucp_from_pattern }, |
| 384 | { "uucp_from_sender", opt_stringptr, &uucp_from_sender }, |
| 385 | { "warn_message_file", opt_stringptr, &warn_message_file }, |
| 386 | { "write_rejectlog", opt_bool, &write_rejectlog } |
| 387 | }; |
| 388 | |
| 389 | #ifndef MACRO_PREDEF |
| 390 | static int optionlist_config_size = nelem(optionlist_config); |
| 391 | #endif |
| 392 | |
| 393 | |
| 394 | #ifdef MACRO_PREDEF |
| 395 | |
| 396 | static void |
| 397 | fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags) {/*Dummy*/} |
| 398 | |
| 399 | void |
| 400 | options_main(void) |
| 401 | { |
| 402 | options_from_list(optionlist_config, nelem(optionlist_config), US"MAIN", NULL); |
| 403 | } |
| 404 | |
| 405 | void |
| 406 | options_auths(void) |
| 407 | { |
| 408 | uschar buf[64]; |
| 409 | |
| 410 | options_from_list(optionlist_auths, optionlist_auths_size, US"AUTHENTICATORS", NULL); |
| 411 | |
| 412 | for (struct auth_info * ai = auths_available; ai->driver_name[0]; ai++) |
| 413 | { |
| 414 | spf(buf, sizeof(buf), US"_DRIVER_AUTHENTICATOR_%T", ai->driver_name); |
| 415 | builtin_macro_create(buf); |
| 416 | options_from_list(ai->options, (unsigned)*ai->options_count, US"AUTHENTICATOR", ai->driver_name); |
| 417 | } |
| 418 | } |
| 419 | |
| 420 | void |
| 421 | options_logging(void) |
| 422 | { |
| 423 | uschar buf[64]; |
| 424 | |
| 425 | for (bit_table * bp = log_options; bp < log_options + log_options_count; bp++) |
| 426 | { |
| 427 | spf(buf, sizeof(buf), US"_LOG_%T", bp->name); |
| 428 | builtin_macro_create(buf); |
| 429 | } |
| 430 | } |
| 431 | |
| 432 | |
| 433 | #else /*!MACRO_PREDEF*/ |
| 434 | |
| 435 | extern char **environ; |
| 436 | |
| 437 | static void save_config_line(const uschar* line); |
| 438 | static void save_config_position(const uschar *file, int line); |
| 439 | static void print_config(BOOL admin, BOOL terse); |
| 440 | |
| 441 | |
| 442 | #define CSTATE_STACK_SIZE 10 |
| 443 | |
| 444 | const uschar *config_directory = NULL; |
| 445 | |
| 446 | |
| 447 | /* Structure for chain (stack) of .included files */ |
| 448 | |
| 449 | typedef struct config_file_item { |
| 450 | struct config_file_item *next; |
| 451 | const uschar *filename; |
| 452 | const uschar *directory; |
| 453 | FILE *file; |
| 454 | int lineno; |
| 455 | } config_file_item; |
| 456 | |
| 457 | /* Structure for chain of configuration lines (-bP config) */ |
| 458 | |
| 459 | typedef struct config_line_item { |
| 460 | struct config_line_item *next; |
| 461 | uschar *line; |
| 462 | } config_line_item; |
| 463 | |
| 464 | static config_line_item* config_lines; |
| 465 | |
| 466 | /* Structure of table of conditional words and their state transitions */ |
| 467 | |
| 468 | typedef struct cond_item { |
| 469 | uschar *name; |
| 470 | int namelen; |
| 471 | int action1; |
| 472 | int action2; |
| 473 | int pushpop; |
| 474 | } cond_item; |
| 475 | |
| 476 | /* Structure of table of syslog facility names and values */ |
| 477 | |
| 478 | typedef struct syslog_fac_item { |
| 479 | uschar *name; |
| 480 | int value; |
| 481 | } syslog_fac_item; |
| 482 | |
| 483 | /* constants */ |
| 484 | static const char * const hidden = "<value not displayable>"; |
| 485 | |
| 486 | /* Static variables */ |
| 487 | |
| 488 | static config_file_item *config_file_stack = NULL; /* For includes */ |
| 489 | |
| 490 | static uschar *syslog_facility_str = NULL; |
| 491 | static uschar next_section[24]; |
| 492 | static uschar time_buffer[24]; |
| 493 | |
| 494 | /* State variables for conditional loading (.ifdef / .else / .endif) */ |
| 495 | |
| 496 | static int cstate = 0; |
| 497 | static int cstate_stack_ptr = -1; |
| 498 | static int cstate_stack[CSTATE_STACK_SIZE]; |
| 499 | |
| 500 | /* Table of state transitions for handling conditional inclusions. There are |
| 501 | four possible state transitions: |
| 502 | |
| 503 | .ifdef true |
| 504 | .ifdef false |
| 505 | .elifdef true (or .else) |
| 506 | .elifdef false |
| 507 | |
| 508 | .endif just causes the previous cstate to be popped off the stack */ |
| 509 | |
| 510 | static int next_cstate[3][4] = |
| 511 | { |
| 512 | /* State 0: reading from file, or reading until next .else or .endif */ |
| 513 | { 0, 1, 2, 2 }, |
| 514 | /* State 1: condition failed, skipping until next .else or .endif */ |
| 515 | { 2, 2, 0, 1 }, |
| 516 | /* State 2: skipping until .endif */ |
| 517 | { 2, 2, 2, 2 }, |
| 518 | }; |
| 519 | |
| 520 | /* Table of conditionals and the states to set. For each name, there are four |
| 521 | values: the length of the name (to save computing it each time), the state to |
| 522 | set if a macro was found in the line, the state to set if a macro was not found |
| 523 | in the line, and a stack manipulation setting which is: |
| 524 | |
| 525 | -1 pull state value off the stack |
| 526 | 0 don't alter the stack |
| 527 | +1 push value onto stack, before setting new state |
| 528 | */ |
| 529 | |
| 530 | static cond_item cond_list[] = { |
| 531 | { US"ifdef", 5, 0, 1, 1 }, |
| 532 | { US"ifndef", 6, 1, 0, 1 }, |
| 533 | { US"elifdef", 7, 2, 3, 0 }, |
| 534 | { US"elifndef", 8, 3, 2, 0 }, |
| 535 | { US"else", 4, 2, 2, 0 }, |
| 536 | { US"endif", 5, 0, 0, -1 } |
| 537 | }; |
| 538 | |
| 539 | static int cond_list_size = sizeof(cond_list)/sizeof(cond_item); |
| 540 | |
| 541 | /* Table of syslog facility names and their values */ |
| 542 | |
| 543 | static syslog_fac_item syslog_list[] = { |
| 544 | { US"mail", LOG_MAIL }, |
| 545 | { US"user", LOG_USER }, |
| 546 | { US"news", LOG_NEWS }, |
| 547 | { US"uucp", LOG_UUCP }, |
| 548 | { US"local0", LOG_LOCAL0 }, |
| 549 | { US"local1", LOG_LOCAL1 }, |
| 550 | { US"local2", LOG_LOCAL2 }, |
| 551 | { US"local3", LOG_LOCAL3 }, |
| 552 | { US"local4", LOG_LOCAL4 }, |
| 553 | { US"local5", LOG_LOCAL5 }, |
| 554 | { US"local6", LOG_LOCAL6 }, |
| 555 | { US"local7", LOG_LOCAL7 }, |
| 556 | { US"daemon", LOG_DAEMON } |
| 557 | }; |
| 558 | |
| 559 | static int syslog_list_size = sizeof(syslog_list)/sizeof(syslog_fac_item); |
| 560 | |
| 561 | |
| 562 | #define opt_fn_print BIT(0) |
| 563 | #define opt_fn_print_label BIT(1) |
| 564 | |
| 565 | |
| 566 | /************************************************* |
| 567 | * Find the name of an option * |
| 568 | *************************************************/ |
| 569 | |
| 570 | /* This function is to aid debugging. Various functions take arguments that are |
| 571 | pointer variables in the options table or in option tables for various drivers. |
| 572 | For debugging output, it is useful to be able to find the name of the option |
| 573 | which is currently being processed. This function finds it, if it exists, by |
| 574 | searching the table(s). |
| 575 | |
| 576 | Arguments: a value that is presumed to be in the table above |
| 577 | Returns: the option name, or an empty string |
| 578 | */ |
| 579 | |
| 580 | uschar * |
| 581 | readconf_find_option(void *p) |
| 582 | { |
| 583 | for (int i = 0; i < nelem(optionlist_config); i++) |
| 584 | if (p == optionlist_config[i].value) return US optionlist_config[i].name; |
| 585 | |
| 586 | for (router_instance * r = routers; r; r = r->next) |
| 587 | { |
| 588 | router_info *ri = r->info; |
| 589 | for (int i = 0; i < *ri->options_count; i++) |
| 590 | { |
| 591 | if ((ri->options[i].type & opt_mask) != opt_stringptr) continue; |
| 592 | if (p == CS (r->options_block) + (long int)(ri->options[i].value)) |
| 593 | return US ri->options[i].name; |
| 594 | } |
| 595 | } |
| 596 | |
| 597 | for (transport_instance * t = transports; t; t = t->next) |
| 598 | { |
| 599 | transport_info *ti = t->info; |
| 600 | for (int i = 0; i < *ti->options_count; i++) |
| 601 | { |
| 602 | optionlist * op = &ti->options[i]; |
| 603 | if ((op->type & opt_mask) != opt_stringptr) continue; |
| 604 | if (p == ( op->type & opt_public |
| 605 | ? CS t |
| 606 | : CS t->options_block |
| 607 | ) |
| 608 | + (long int)op->value) |
| 609 | return US op->name; |
| 610 | } |
| 611 | } |
| 612 | |
| 613 | return US""; |
| 614 | } |
| 615 | |
| 616 | |
| 617 | |
| 618 | |
| 619 | /************************************************* |
| 620 | * Deal with an assignment to a macro * |
| 621 | *************************************************/ |
| 622 | |
| 623 | /* We have a new definition; append to the list. |
| 624 | |
| 625 | Args: |
| 626 | name Name of the macro; will be copied |
| 627 | val Expansion result for the macro; will be copied |
| 628 | */ |
| 629 | |
| 630 | macro_item * |
| 631 | macro_create(const uschar * name, const uschar * val, BOOL command_line) |
| 632 | { |
| 633 | macro_item * m = store_get(sizeof(macro_item), FALSE); |
| 634 | |
| 635 | READCONF_DEBUG fprintf(stderr, "%s: '%s' '%s'\n", __FUNCTION__, name, val); |
| 636 | m->next = NULL; |
| 637 | m->command_line = command_line; |
| 638 | m->namelen = Ustrlen(name); |
| 639 | m->replen = Ustrlen(val); |
| 640 | m->name = string_copy(name); |
| 641 | m->replacement = string_copy(val); |
| 642 | if (mlast) |
| 643 | mlast->next = m; |
| 644 | else |
| 645 | macros = m; |
| 646 | mlast = m; |
| 647 | if (!macros_user) |
| 648 | macros_user = m; |
| 649 | return m; |
| 650 | } |
| 651 | |
| 652 | |
| 653 | /* This function is called when a line that starts with an upper case letter is |
| 654 | encountered. The argument "line" should contain a complete logical line, and |
| 655 | start with the first letter of the macro name. The macro name and the |
| 656 | replacement text are extracted and stored. Redefinition of existing, |
| 657 | non-command line, macros is permitted using '==' instead of '='. |
| 658 | |
| 659 | Arguments: |
| 660 | s points to the start of the logical line |
| 661 | |
| 662 | Returns: FALSE iff fatal error |
| 663 | */ |
| 664 | |
| 665 | BOOL |
| 666 | macro_read_assignment(uschar *s) |
| 667 | { |
| 668 | uschar name[64]; |
| 669 | int namelen = 0; |
| 670 | BOOL redef = FALSE; |
| 671 | macro_item *m; |
| 672 | |
| 673 | while (isalnum(*s) || *s == '_') |
| 674 | { |
| 675 | if (namelen >= sizeof(name) - 1) |
| 676 | { |
| 677 | log_write(0, LOG_PANIC|LOG_CONFIG_IN, |
| 678 | "macro name too long (maximum is " SIZE_T_FMT " characters)", sizeof(name) - 1); |
| 679 | return FALSE; |
| 680 | } |
| 681 | name[namelen++] = *s++; |
| 682 | } |
| 683 | name[namelen] = 0; |
| 684 | |
| 685 | while (isspace(*s)) s++; |
| 686 | if (*s++ != '=') |
| 687 | { |
| 688 | log_write(0, LOG_PANIC|LOG_CONFIG_IN, "malformed macro definition"); |
| 689 | return FALSE; |
| 690 | } |
| 691 | |
| 692 | if (*s == '=') |
| 693 | { |
| 694 | redef = TRUE; |
| 695 | s++; |
| 696 | } |
| 697 | while (isspace(*s)) s++; |
| 698 | |
| 699 | /* If an existing macro of the same name was defined on the command line, we |
| 700 | just skip this definition. It's an error to attempt to redefine a macro without |
| 701 | redef set to TRUE, or to redefine a macro when it hasn't been defined earlier. |
| 702 | It is also an error to define a macro whose name begins with the name of a |
| 703 | previously defined macro. This is the requirement that make using a tree |
| 704 | for macros hard; we must check all macros for the substring. Perhaps a |
| 705 | sorted list, and a bsearch, would work? |
| 706 | Note: it is documented that the other way round works. */ |
| 707 | |
| 708 | for (m = macros; m; m = m->next) |
| 709 | { |
| 710 | if (Ustrcmp(m->name, name) == 0) |
| 711 | { |
| 712 | if (!m->command_line && !redef) |
| 713 | { |
| 714 | log_write(0, LOG_CONFIG|LOG_PANIC, "macro \"%s\" is already " |
| 715 | "defined (use \"==\" if you want to redefine it)", name); |
| 716 | return FALSE; |
| 717 | } |
| 718 | break; |
| 719 | } |
| 720 | |
| 721 | if (m->namelen < namelen && Ustrstr(name, m->name) != NULL) |
| 722 | { |
| 723 | log_write(0, LOG_CONFIG|LOG_PANIC, "\"%s\" cannot be defined as " |
| 724 | "a macro because previously defined macro \"%s\" is a substring", |
| 725 | name, m->name); |
| 726 | return FALSE; |
| 727 | } |
| 728 | |
| 729 | /* We cannot have this test, because it is documented that a substring |
| 730 | macro is permitted (there is even an example). |
| 731 | * |
| 732 | * if (m->namelen > namelen && Ustrstr(m->name, name) != NULL) |
| 733 | * log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "\"%s\" cannot be defined as " |
| 734 | * "a macro because it is a substring of previously defined macro \"%s\"", |
| 735 | * name, m->name); |
| 736 | */ |
| 737 | } |
| 738 | |
| 739 | /* Check for an overriding command-line definition. */ |
| 740 | |
| 741 | if (m && m->command_line) return TRUE; |
| 742 | |
| 743 | /* Redefinition must refer to an existing macro. */ |
| 744 | |
| 745 | if (redef) |
| 746 | if (m) |
| 747 | { |
| 748 | m->replen = Ustrlen(s); |
| 749 | m->replacement = string_copy(s); |
| 750 | } |
| 751 | else |
| 752 | { |
| 753 | log_write(0, LOG_CONFIG|LOG_PANIC, "can't redefine an undefined macro " |
| 754 | "\"%s\"", name); |
| 755 | return FALSE; |
| 756 | } |
| 757 | |
| 758 | /* We have a new definition. */ |
| 759 | else |
| 760 | (void) macro_create(name, s, FALSE); |
| 761 | return TRUE; |
| 762 | } |
| 763 | |
| 764 | |
| 765 | |
| 766 | |
| 767 | |
| 768 | /* Process line for macros. The line is in big_buffer starting at offset len. |
| 769 | Expand big_buffer if needed. Handle definitions of new macros, and |
| 770 | macro expansions, rewriting the line in the buffer. |
| 771 | |
| 772 | Arguments: |
| 773 | len Offset in buffer of start of line |
| 774 | newlen Pointer to offset of end of line, updated on return |
| 775 | macro_found Pointer to return that a macro was expanded |
| 776 | |
| 777 | Return: pointer to first nonblank char in line |
| 778 | */ |
| 779 | |
| 780 | uschar * |
| 781 | macros_expand(int len, int * newlen, BOOL * macro_found) |
| 782 | { |
| 783 | uschar * ss = big_buffer + len; |
| 784 | uschar * s; |
| 785 | |
| 786 | /* Find the true start of the physical line - leading spaces are always |
| 787 | ignored. */ |
| 788 | |
| 789 | while (isspace(*ss)) ss++; |
| 790 | |
| 791 | /* Process the physical line for macros. If this is the start of the logical |
| 792 | line, skip over initial text at the start of the line if it starts with an |
| 793 | upper case character followed by a sequence of name characters and an equals |
| 794 | sign, because that is the definition of a new macro, and we don't do |
| 795 | replacement therein. */ |
| 796 | |
| 797 | s = ss; |
| 798 | if (len == 0 && isupper(*s)) |
| 799 | { |
| 800 | while (isalnum(*s) || *s == '_') s++; |
| 801 | while (isspace(*s)) s++; |
| 802 | if (*s != '=') s = ss; /* Not a macro definition */ |
| 803 | } |
| 804 | |
| 805 | /* Skip leading chars which cannot start a macro name, to avoid multiple |
| 806 | pointless rescans in Ustrstr calls. */ |
| 807 | |
| 808 | while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++; |
| 809 | |
| 810 | /* For each defined macro, scan the line (from after XXX= if present), |
| 811 | replacing all occurrences of the macro. */ |
| 812 | |
| 813 | *macro_found = FALSE; |
| 814 | if (*s) for (macro_item * m = *s == '_' ? macros : macros_user; m; m = m->next) |
| 815 | { |
| 816 | uschar * p, *pp; |
| 817 | uschar * t; |
| 818 | |
| 819 | while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++; |
| 820 | if (!*s) break; |
| 821 | |
| 822 | t = s; |
| 823 | while ((p = Ustrstr(t, m->name)) != NULL) |
| 824 | { |
| 825 | int moveby; |
| 826 | |
| 827 | READCONF_DEBUG fprintf(stderr, "%s: matched '%s' in '%.*s'\n", __FUNCTION__, |
| 828 | m->name, (int) Ustrlen(ss)-1, ss); |
| 829 | /* Expand the buffer if necessary */ |
| 830 | |
| 831 | while (*newlen - m->namelen + m->replen + 1 > big_buffer_size) |
| 832 | { |
| 833 | int newsize = big_buffer_size + BIG_BUFFER_SIZE; |
| 834 | uschar *newbuffer = store_malloc(newsize); |
| 835 | memcpy(newbuffer, big_buffer, *newlen + 1); |
| 836 | p = newbuffer + (p - big_buffer); |
| 837 | s = newbuffer + (s - big_buffer); |
| 838 | ss = newbuffer + (ss - big_buffer); |
| 839 | t = newbuffer + (t - big_buffer); |
| 840 | big_buffer_size = newsize; |
| 841 | store_free(big_buffer); |
| 842 | big_buffer = newbuffer; |
| 843 | } |
| 844 | |
| 845 | /* Shuffle the remaining characters up or down in the buffer before |
| 846 | copying in the replacement text. Don't rescan the replacement for this |
| 847 | same macro. */ |
| 848 | |
| 849 | pp = p + m->namelen; |
| 850 | if ((moveby = m->replen - m->namelen) != 0) |
| 851 | { |
| 852 | memmove(p + m->replen, pp, (big_buffer + *newlen) - pp + 1); |
| 853 | *newlen += moveby; |
| 854 | } |
| 855 | Ustrncpy(p, m->replacement, m->replen); |
| 856 | t = p + m->replen; |
| 857 | while (*t && !isupper(*t) && !(*t == '_' && isupper(t[1]))) t++; |
| 858 | *macro_found = TRUE; |
| 859 | } |
| 860 | } |
| 861 | |
| 862 | /* An empty macro replacement at the start of a line could mean that ss no |
| 863 | longer points to the first non-blank character. */ |
| 864 | |
| 865 | while (isspace(*ss)) ss++; |
| 866 | return ss; |
| 867 | } |
| 868 | |
| 869 | /************************************************* |
| 870 | * Read configuration line * |
| 871 | *************************************************/ |
| 872 | |
| 873 | /* A logical line of text is read from the configuration file into the big |
| 874 | buffer, taking account of macros, .includes, and continuations. The size of |
| 875 | big_buffer is increased if necessary. The count of configuration lines is |
| 876 | maintained. Physical input lines starting with # (ignoring leading white space, |
| 877 | and after macro replacement) and empty logical lines are always ignored. |
| 878 | Leading and trailing spaces are removed. |
| 879 | |
| 880 | If we hit a line of the form "begin xxxx", the xxxx is placed in the |
| 881 | next_section vector, and the function returns NULL, indicating the end of a |
| 882 | configuration section. On end-of-file, NULL is returned with next_section |
| 883 | empty. |
| 884 | |
| 885 | Arguments: none |
| 886 | |
| 887 | Returns: a pointer to the first non-blank in the line, |
| 888 | or NULL if eof or end of section is reached |
| 889 | */ |
| 890 | |
| 891 | static uschar * |
| 892 | get_config_line(void) |
| 893 | { |
| 894 | int startoffset = 0; /* To first non-blank char in logical line */ |
| 895 | int len = 0; /* Of logical line so far */ |
| 896 | int newlen; |
| 897 | uschar *s, *ss; |
| 898 | BOOL macro_found; |
| 899 | |
| 900 | /* Loop for handling continuation lines, skipping comments, and dealing with |
| 901 | .include files. */ |
| 902 | |
| 903 | for (;;) |
| 904 | { |
| 905 | if (Ufgets(big_buffer+len, big_buffer_size-len, config_file) == NULL) |
| 906 | { |
| 907 | if (config_file_stack != NULL) /* EOF inside .include */ |
| 908 | { |
| 909 | (void)fclose(config_file); |
| 910 | config_file = config_file_stack->file; |
| 911 | config_filename = config_file_stack->filename; |
| 912 | config_directory = config_file_stack->directory; |
| 913 | config_lineno = config_file_stack->lineno; |
| 914 | config_file_stack = config_file_stack->next; |
| 915 | if (config_lines) |
| 916 | save_config_position(config_filename, config_lineno); |
| 917 | continue; |
| 918 | } |
| 919 | |
| 920 | /* EOF at top level */ |
| 921 | |
| 922 | if (cstate_stack_ptr >= 0) |
| 923 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 924 | "Unexpected end of configuration file: .endif missing"); |
| 925 | |
| 926 | if (len != 0) break; /* EOF after continuation */ |
| 927 | next_section[0] = 0; /* EOF at start of logical line */ |
| 928 | return NULL; |
| 929 | } |
| 930 | |
| 931 | config_lineno++; |
| 932 | newlen = len + Ustrlen(big_buffer + len); |
| 933 | |
| 934 | if (config_lines && config_lineno == 1) |
| 935 | save_config_position(config_filename, config_lineno); |
| 936 | |
| 937 | /* Handle pathologically long physical lines - yes, it did happen - by |
| 938 | extending big_buffer at this point. The code also copes with very long |
| 939 | logical lines. */ |
| 940 | |
| 941 | while (newlen == big_buffer_size - 1 && big_buffer[newlen - 1] != '\n') |
| 942 | { |
| 943 | uschar *newbuffer; |
| 944 | big_buffer_size += BIG_BUFFER_SIZE; |
| 945 | newbuffer = store_malloc(big_buffer_size); |
| 946 | |
| 947 | /* This use of strcpy is OK because we know that the string in the old |
| 948 | buffer is shorter than the new buffer. */ |
| 949 | |
| 950 | Ustrcpy(newbuffer, big_buffer); |
| 951 | store_free(big_buffer); |
| 952 | big_buffer = newbuffer; |
| 953 | if (Ufgets(big_buffer+newlen, big_buffer_size-newlen, config_file) == NULL) |
| 954 | break; |
| 955 | newlen += Ustrlen(big_buffer + newlen); |
| 956 | } |
| 957 | |
| 958 | ss = macros_expand(len, &newlen, ¯o_found); |
| 959 | |
| 960 | /* Check for comment lines - these are physical lines. */ |
| 961 | |
| 962 | if (*ss == '#') continue; |
| 963 | |
| 964 | /* Handle conditionals, which are also applied to physical lines. Conditions |
| 965 | are of the form ".ifdef ANYTEXT" and are treated as true if any macro |
| 966 | expansion occurred on the rest of the line. A preliminary test for the leading |
| 967 | '.' saves effort on most lines. */ |
| 968 | |
| 969 | if (*ss == '.') |
| 970 | { |
| 971 | int i; |
| 972 | |
| 973 | /* Search the list of conditional directives */ |
| 974 | |
| 975 | for (i = 0; i < cond_list_size; i++) |
| 976 | { |
| 977 | int n; |
| 978 | cond_item *c = cond_list+i; |
| 979 | if (Ustrncmp(ss+1, c->name, c->namelen) != 0) continue; |
| 980 | |
| 981 | /* The following character must be white space or end of string */ |
| 982 | |
| 983 | n = ss[1 + c->namelen]; |
| 984 | if (n != ' ' && n != 't' && n != '\n' && n != 0) break; |
| 985 | |
| 986 | /* .ifdef and .ifndef push the current state onto the stack, then set |
| 987 | a new one from the table. Stack overflow is an error */ |
| 988 | |
| 989 | if (c->pushpop > 0) |
| 990 | { |
| 991 | if (cstate_stack_ptr >= CSTATE_STACK_SIZE - 1) |
| 992 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 993 | ".%s nested too deeply", c->name); |
| 994 | cstate_stack[++cstate_stack_ptr] = cstate; |
| 995 | cstate = next_cstate[cstate][macro_found? c->action1 : c->action2]; |
| 996 | } |
| 997 | |
| 998 | /* For any of the others, stack underflow is an error. The next state |
| 999 | comes either from the stack (.endif) or from the table. */ |
| 1000 | |
| 1001 | else |
| 1002 | { |
| 1003 | if (cstate_stack_ptr < 0) |
| 1004 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1005 | ".%s without matching .ifdef", c->name); |
| 1006 | cstate = (c->pushpop < 0)? cstate_stack[cstate_stack_ptr--] : |
| 1007 | next_cstate[cstate][macro_found? c->action1 : c->action2]; |
| 1008 | } |
| 1009 | |
| 1010 | /* Having dealt with a directive, break the loop */ |
| 1011 | |
| 1012 | break; |
| 1013 | } |
| 1014 | |
| 1015 | /* If we have handled a conditional directive, continue with the next |
| 1016 | physical line. Otherwise, fall through. */ |
| 1017 | |
| 1018 | if (i < cond_list_size) continue; |
| 1019 | } |
| 1020 | |
| 1021 | /* If the conditional state is not 0 (actively using these lines), ignore |
| 1022 | this input line. */ |
| 1023 | |
| 1024 | if (cstate != 0) continue; /* Conditional skip */ |
| 1025 | |
| 1026 | /* Handle .include lines - these are also physical lines. */ |
| 1027 | |
| 1028 | if (Ustrncmp(ss, ".include", 8) == 0 && |
| 1029 | (isspace(ss[8]) || |
| 1030 | (Ustrncmp(ss+8, "_if_exists", 10) == 0 && isspace(ss[18])))) |
| 1031 | { |
| 1032 | uschar *t; |
| 1033 | int include_if_exists = isspace(ss[8])? 0 : 10; |
| 1034 | config_file_item *save; |
| 1035 | struct stat statbuf; |
| 1036 | |
| 1037 | ss += 9 + include_if_exists; |
| 1038 | while (isspace(*ss)) ss++; |
| 1039 | t = ss + Ustrlen(ss); |
| 1040 | while (t > ss && isspace(t[-1])) t--; |
| 1041 | if (*ss == '\"' && t[-1] == '\"') |
| 1042 | { |
| 1043 | ss++; |
| 1044 | t--; |
| 1045 | } |
| 1046 | *t = 0; |
| 1047 | |
| 1048 | /* We allow relative file names. For security reasons currently |
| 1049 | relative names not allowed with .include_if_exists. For .include_if_exists |
| 1050 | we need to check the permissions/ownership of the containing folder */ |
| 1051 | if (*ss != '/') |
| 1052 | if (include_if_exists) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, ".include specifies a non-" |
| 1053 | "absolute path \"%s\"", ss); |
| 1054 | else |
| 1055 | { |
| 1056 | gstring * g = string_append(NULL, 3, config_directory, "/", ss); |
| 1057 | ss = string_from_gstring(g); |
| 1058 | } |
| 1059 | |
| 1060 | if (include_if_exists != 0 && (Ustat(ss, &statbuf) != 0)) continue; |
| 1061 | |
| 1062 | if (config_lines) |
| 1063 | save_config_position(config_filename, config_lineno); |
| 1064 | save = store_get(sizeof(config_file_item), FALSE); |
| 1065 | save->next = config_file_stack; |
| 1066 | config_file_stack = save; |
| 1067 | save->file = config_file; |
| 1068 | save->filename = config_filename; |
| 1069 | save->directory = config_directory; |
| 1070 | save->lineno = config_lineno; |
| 1071 | |
| 1072 | if (!(config_file = Ufopen(ss, "rb"))) |
| 1073 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to open included " |
| 1074 | "configuration file %s", ss); |
| 1075 | |
| 1076 | config_filename = string_copy(ss); |
| 1077 | config_directory = string_copyn(ss, CUstrrchr(ss, '/') - ss); |
| 1078 | config_lineno = 0; |
| 1079 | continue; |
| 1080 | } |
| 1081 | |
| 1082 | /* If this is the start of the logical line, remember where the non-blank |
| 1083 | data starts. Otherwise shuffle down continuation lines to remove leading |
| 1084 | white space. */ |
| 1085 | |
| 1086 | if (len == 0) |
| 1087 | startoffset = ss - big_buffer; |
| 1088 | else |
| 1089 | { |
| 1090 | s = big_buffer + len; |
| 1091 | if (ss > s) |
| 1092 | { |
| 1093 | memmove(s, ss, (newlen - len) - (ss - s) + 1); |
| 1094 | newlen -= ss - s; |
| 1095 | } |
| 1096 | } |
| 1097 | |
| 1098 | /* Accept the new addition to the line. Remove trailing white space. */ |
| 1099 | |
| 1100 | len = newlen; |
| 1101 | while (len > 0 && isspace(big_buffer[len-1])) len--; |
| 1102 | big_buffer[len] = 0; |
| 1103 | |
| 1104 | /* We are done if the line does not end in backslash and contains some data. |
| 1105 | Empty logical lines are ignored. For continuations, remove the backslash and |
| 1106 | go round the loop to read the continuation line. */ |
| 1107 | |
| 1108 | if (len > 0) |
| 1109 | { |
| 1110 | if (big_buffer[len-1] != '\\') break; /* End of logical line */ |
| 1111 | big_buffer[--len] = 0; /* Remove backslash */ |
| 1112 | } |
| 1113 | } /* Loop for reading multiple physical lines */ |
| 1114 | |
| 1115 | /* We now have a logical line. Test for the end of a configuration section (or, |
| 1116 | more accurately, for the start of the next section). Place the name of the next |
| 1117 | section in next_section, and return NULL. If the name given is longer than |
| 1118 | next_section, truncate it. It will be unrecognized later, because all the known |
| 1119 | section names do fit. Leave space for pluralizing. */ |
| 1120 | |
| 1121 | s = big_buffer + startoffset; /* First non-space character */ |
| 1122 | |
| 1123 | if (config_lines) |
| 1124 | save_config_line(s); |
| 1125 | |
| 1126 | if (strncmpic(s, US"begin ", 6) == 0) |
| 1127 | { |
| 1128 | s += 6; |
| 1129 | while (isspace(*s)) s++; |
| 1130 | if (big_buffer + len - s > sizeof(next_section) - 2) |
| 1131 | s[sizeof(next_section) - 2] = 0; |
| 1132 | Ustrcpy(next_section, s); |
| 1133 | return NULL; |
| 1134 | } |
| 1135 | |
| 1136 | /* Return the first non-blank character. */ |
| 1137 | |
| 1138 | return s; |
| 1139 | } |
| 1140 | |
| 1141 | |
| 1142 | |
| 1143 | /************************************************* |
| 1144 | * Read a name * |
| 1145 | *************************************************/ |
| 1146 | |
| 1147 | /* The yield is the pointer to the next uschar. Names longer than the |
| 1148 | output space are silently truncated. This function is also used from acl.c when |
| 1149 | parsing ACLs. |
| 1150 | |
| 1151 | Arguments: |
| 1152 | name where to put the name |
| 1153 | len length of name |
| 1154 | s input pointer |
| 1155 | |
| 1156 | Returns: new input pointer |
| 1157 | */ |
| 1158 | |
| 1159 | uschar * |
| 1160 | readconf_readname(uschar *name, int len, uschar *s) |
| 1161 | { |
| 1162 | int p = 0; |
| 1163 | while (isspace(*s)) s++; |
| 1164 | if (isalpha(*s)) |
| 1165 | { |
| 1166 | while (isalnum(*s) || *s == '_') |
| 1167 | { |
| 1168 | if (p < len-1) name[p++] = *s; |
| 1169 | s++; |
| 1170 | } |
| 1171 | } |
| 1172 | name[p] = 0; |
| 1173 | while (isspace(*s)) s++; |
| 1174 | return s; |
| 1175 | } |
| 1176 | |
| 1177 | |
| 1178 | |
| 1179 | |
| 1180 | /************************************************* |
| 1181 | * Read a time value * |
| 1182 | *************************************************/ |
| 1183 | |
| 1184 | /* This function is also called from outside, to read argument |
| 1185 | time values. The format of a time value is: |
| 1186 | |
| 1187 | [<n>w][<n>d][<n>h][<n>m][<n>s] |
| 1188 | |
| 1189 | as long as at least one is present. If a format error is encountered, |
| 1190 | return a negative value. The value must be terminated by the given |
| 1191 | terminator. |
| 1192 | |
| 1193 | Arguments: |
| 1194 | s input pointer |
| 1195 | terminator required terminating character |
| 1196 | return_msec if TRUE, allow fractional seconds and return milliseconds |
| 1197 | |
| 1198 | Returns: the time value, or -1 on syntax error |
| 1199 | value is seconds if return_msec is FALSE |
| 1200 | value is milliseconds if return_msec is TRUE |
| 1201 | */ |
| 1202 | |
| 1203 | int |
| 1204 | readconf_readtime(const uschar *s, int terminator, BOOL return_msec) |
| 1205 | { |
| 1206 | int yield = 0; |
| 1207 | for (;;) |
| 1208 | { |
| 1209 | int value, count; |
| 1210 | double fraction; |
| 1211 | |
| 1212 | if (!isdigit(*s)) return -1; |
| 1213 | (void)sscanf(CCS s, "%d%n", &value, &count); |
| 1214 | s += count; |
| 1215 | |
| 1216 | switch (*s) |
| 1217 | { |
| 1218 | case 'w': value *= 7; |
| 1219 | case 'd': value *= 24; |
| 1220 | case 'h': value *= 60; |
| 1221 | case 'm': value *= 60; |
| 1222 | case 's': s++; |
| 1223 | break; |
| 1224 | |
| 1225 | case '.': |
| 1226 | if (!return_msec) return -1; |
| 1227 | (void)sscanf(CCS s, "%lf%n", &fraction, &count); |
| 1228 | s += count; |
| 1229 | if (*s++ != 's') return -1; |
| 1230 | yield += (int)(fraction * 1000.0); |
| 1231 | break; |
| 1232 | |
| 1233 | default: return -1; |
| 1234 | } |
| 1235 | |
| 1236 | if (return_msec) value *= 1000; |
| 1237 | yield += value; |
| 1238 | if (*s == terminator) return yield; |
| 1239 | } |
| 1240 | /* Control never reaches here. */ |
| 1241 | } |
| 1242 | |
| 1243 | |
| 1244 | |
| 1245 | /************************************************* |
| 1246 | * Read a fixed point value * |
| 1247 | *************************************************/ |
| 1248 | |
| 1249 | /* The value is returned *1000 |
| 1250 | |
| 1251 | Arguments: |
| 1252 | s input pointer |
| 1253 | terminator required terminator |
| 1254 | |
| 1255 | Returns: the value, or -1 on error |
| 1256 | */ |
| 1257 | |
| 1258 | static int |
| 1259 | readconf_readfixed(const uschar *s, int terminator) |
| 1260 | { |
| 1261 | int yield = 0; |
| 1262 | int value, count; |
| 1263 | if (!isdigit(*s)) return -1; |
| 1264 | (void)sscanf(CS s, "%d%n", &value, &count); |
| 1265 | s += count; |
| 1266 | yield = value * 1000; |
| 1267 | if (*s == '.') |
| 1268 | { |
| 1269 | int m = 100; |
| 1270 | while (isdigit((*(++s)))) |
| 1271 | { |
| 1272 | yield += (*s - '0') * m; |
| 1273 | m /= 10; |
| 1274 | } |
| 1275 | } |
| 1276 | |
| 1277 | return (*s == terminator)? yield : (-1); |
| 1278 | } |
| 1279 | |
| 1280 | |
| 1281 | |
| 1282 | /************************************************* |
| 1283 | * Find option in list * |
| 1284 | *************************************************/ |
| 1285 | |
| 1286 | /* The lists are always in order, so binary chop can be used. |
| 1287 | |
| 1288 | Arguments: |
| 1289 | name the option name to search for |
| 1290 | ol the first entry in the option list |
| 1291 | last one more than the offset of the last entry in the option list |
| 1292 | |
| 1293 | Returns: pointer to an option entry, or NULL if not found |
| 1294 | */ |
| 1295 | |
| 1296 | static optionlist * |
| 1297 | find_option(uschar *name, optionlist *ol, int last) |
| 1298 | { |
| 1299 | int first = 0; |
| 1300 | while (last > first) |
| 1301 | { |
| 1302 | int middle = (first + last)/2; |
| 1303 | int c = Ustrcmp(name, ol[middle].name); |
| 1304 | |
| 1305 | if (c == 0) return ol + middle; |
| 1306 | else if (c > 0) first = middle + 1; |
| 1307 | else last = middle; |
| 1308 | } |
| 1309 | return NULL; |
| 1310 | } |
| 1311 | |
| 1312 | |
| 1313 | |
| 1314 | /************************************************* |
| 1315 | * Find a set flag in option list * |
| 1316 | *************************************************/ |
| 1317 | |
| 1318 | /* Because some versions of Unix make no restrictions on the values of uids and |
| 1319 | gids (even negative ones), we cannot represent "unset" by a special value. |
| 1320 | There is therefore a separate boolean variable for each one indicating whether |
| 1321 | a value is set or not. This function returns a pointer to the boolean, given |
| 1322 | the original option name. It is a major disaster if the flag cannot be found. |
| 1323 | |
| 1324 | Arguments: |
| 1325 | name the name of the uid or gid option |
| 1326 | oltop points to the start of the relevant option list |
| 1327 | last one more than the offset of the last item in the option list |
| 1328 | data_block NULL when reading main options => data values in the option |
| 1329 | list are absolute addresses; otherwise they are byte offsets |
| 1330 | in data_block (used for driver options) |
| 1331 | |
| 1332 | Returns: a pointer to the boolean flag. |
| 1333 | */ |
| 1334 | |
| 1335 | static BOOL * |
| 1336 | get_set_flag(uschar *name, optionlist *oltop, int last, void *data_block) |
| 1337 | { |
| 1338 | optionlist *ol; |
| 1339 | uschar name2[64]; |
| 1340 | sprintf(CS name2, "*set_%.50s", name); |
| 1341 | ol = find_option(name2, oltop, last); |
| 1342 | if (ol == NULL) log_write(0, LOG_MAIN|LOG_PANIC_DIE, |
| 1343 | "Exim internal error: missing set flag for %s", name); |
| 1344 | return (data_block == NULL)? (BOOL *)(ol->value) : |
| 1345 | (BOOL *)(US data_block + (long int)(ol->value)); |
| 1346 | } |
| 1347 | |
| 1348 | |
| 1349 | |
| 1350 | |
| 1351 | /************************************************* |
| 1352 | * Output extra characters message and die * |
| 1353 | *************************************************/ |
| 1354 | |
| 1355 | /* Called when an option line has junk on the end. Sometimes this is because |
| 1356 | the sysadmin thinks comments are permitted. |
| 1357 | |
| 1358 | Arguments: |
| 1359 | s points to the extra characters |
| 1360 | t1..t3 strings to insert in the log message |
| 1361 | |
| 1362 | Returns: doesn't return; dies |
| 1363 | */ |
| 1364 | |
| 1365 | static void |
| 1366 | extra_chars_error(const uschar *s, const uschar *t1, const uschar *t2, const uschar *t3) |
| 1367 | { |
| 1368 | uschar *comment = US""; |
| 1369 | if (*s == '#') comment = US" (# is comment only at line start)"; |
| 1370 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1371 | "extra characters follow %s%s%s%s", t1, t2, t3, comment); |
| 1372 | } |
| 1373 | |
| 1374 | |
| 1375 | |
| 1376 | /************************************************* |
| 1377 | * Read rewrite information * |
| 1378 | *************************************************/ |
| 1379 | |
| 1380 | /* Each line of rewrite information contains: |
| 1381 | |
| 1382 | . A complete address in the form user@domain, possibly with |
| 1383 | leading * for each part; or alternatively, a regex. |
| 1384 | |
| 1385 | . A replacement string (which will be expanded). |
| 1386 | |
| 1387 | . An optional sequence of one-letter flags, indicating which |
| 1388 | headers etc. to apply this rule to. |
| 1389 | |
| 1390 | All this is decoded and placed into a control block. The OR of the flags is |
| 1391 | maintained in a common word. |
| 1392 | |
| 1393 | Arguments: |
| 1394 | p points to the string that makes up the rule |
| 1395 | existflags points to the overall flag word |
| 1396 | isglobal TRUE if reading global rewrite rules |
| 1397 | |
| 1398 | Returns: the control block for the parsed rule. |
| 1399 | */ |
| 1400 | |
| 1401 | static rewrite_rule * |
| 1402 | readconf_one_rewrite(const uschar *p, int *existflags, BOOL isglobal) |
| 1403 | { |
| 1404 | rewrite_rule *next = store_get(sizeof(rewrite_rule), FALSE); |
| 1405 | |
| 1406 | next->next = NULL; |
| 1407 | next->key = string_dequote(&p); |
| 1408 | |
| 1409 | while (isspace(*p)) p++; |
| 1410 | if (*p == 0) |
| 1411 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1412 | "missing rewrite replacement string"); |
| 1413 | |
| 1414 | next->flags = 0; |
| 1415 | next->replacement = string_dequote(&p); |
| 1416 | |
| 1417 | while (*p != 0) switch (*p++) |
| 1418 | { |
| 1419 | case ' ': case '\t': break; |
| 1420 | |
| 1421 | case 'q': next->flags |= rewrite_quit; break; |
| 1422 | case 'w': next->flags |= rewrite_whole; break; |
| 1423 | |
| 1424 | case 'h': next->flags |= rewrite_all_headers; break; |
| 1425 | case 's': next->flags |= rewrite_sender; break; |
| 1426 | case 'f': next->flags |= rewrite_from; break; |
| 1427 | case 't': next->flags |= rewrite_to; break; |
| 1428 | case 'c': next->flags |= rewrite_cc; break; |
| 1429 | case 'b': next->flags |= rewrite_bcc; break; |
| 1430 | case 'r': next->flags |= rewrite_replyto; break; |
| 1431 | |
| 1432 | case 'E': next->flags |= rewrite_all_envelope; break; |
| 1433 | case 'F': next->flags |= rewrite_envfrom; break; |
| 1434 | case 'T': next->flags |= rewrite_envto; break; |
| 1435 | |
| 1436 | case 'Q': next->flags |= rewrite_qualify; break; |
| 1437 | case 'R': next->flags |= rewrite_repeat; break; |
| 1438 | |
| 1439 | case 'S': |
| 1440 | next->flags |= rewrite_smtp; |
| 1441 | if (next->key[0] != '^' && Ustrncmp(next->key, "\\N^", 3) != 0) |
| 1442 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1443 | "rewrite rule has the S flag but is not a regular expression"); |
| 1444 | break; |
| 1445 | |
| 1446 | default: |
| 1447 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1448 | "unknown rewrite flag character '%c' " |
| 1449 | "(could be missing quotes round replacement item)", p[-1]); |
| 1450 | break; |
| 1451 | } |
| 1452 | |
| 1453 | /* If no action flags are set, set all the "normal" rewrites. */ |
| 1454 | |
| 1455 | if ((next->flags & (rewrite_all | rewrite_smtp)) == 0) |
| 1456 | next->flags |= isglobal? rewrite_all : rewrite_all_headers; |
| 1457 | |
| 1458 | /* Remember which exist, for optimization, and return the rule */ |
| 1459 | |
| 1460 | *existflags |= next->flags; |
| 1461 | return next; |
| 1462 | } |
| 1463 | |
| 1464 | |
| 1465 | |
| 1466 | |
| 1467 | /************************************************* |
| 1468 | * Read global rewrite information * |
| 1469 | *************************************************/ |
| 1470 | |
| 1471 | /* Each line is a single rewrite rule; it is parsed into a control block |
| 1472 | by readconf_one_rewrite(), and its flags are ORed into the global flag |
| 1473 | word rewrite_existflags. */ |
| 1474 | |
| 1475 | void |
| 1476 | readconf_rewrites(void) |
| 1477 | { |
| 1478 | rewrite_rule **chain = &global_rewrite_rules; |
| 1479 | uschar *p; |
| 1480 | |
| 1481 | while ((p = get_config_line()) != NULL) |
| 1482 | { |
| 1483 | rewrite_rule *next = readconf_one_rewrite(p, &rewrite_existflags, TRUE); |
| 1484 | *chain = next; |
| 1485 | chain = &(next->next); |
| 1486 | } |
| 1487 | } |
| 1488 | |
| 1489 | |
| 1490 | |
| 1491 | /************************************************* |
| 1492 | * Read a string * |
| 1493 | *************************************************/ |
| 1494 | |
| 1495 | /* Strings are read into the normal store pool. As long we aren't too |
| 1496 | near the end of the current block, the string will just use what is necessary |
| 1497 | on the top of the stacking pool, because string_cat() uses the extension |
| 1498 | mechanism. |
| 1499 | |
| 1500 | Argument: |
| 1501 | s the rest of the input line |
| 1502 | name the option name (for errors) |
| 1503 | |
| 1504 | Returns: pointer to the string |
| 1505 | */ |
| 1506 | |
| 1507 | static uschar * |
| 1508 | read_string(const uschar *s, const uschar *name) |
| 1509 | { |
| 1510 | uschar *yield; |
| 1511 | const uschar *ss; |
| 1512 | |
| 1513 | if (*s != '\"') return string_copy(s); |
| 1514 | |
| 1515 | ss = s; |
| 1516 | yield = string_dequote(&s); |
| 1517 | |
| 1518 | if (s == ss+1 || s[-1] != '\"') |
| 1519 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1520 | "missing quote at end of string value for %s", name); |
| 1521 | |
| 1522 | if (*s != 0) extra_chars_error(s, US"string value for ", name, US""); |
| 1523 | |
| 1524 | return yield; |
| 1525 | } |
| 1526 | |
| 1527 | |
| 1528 | /************************************************* |
| 1529 | * Custom-handler options * |
| 1530 | *************************************************/ |
| 1531 | static void |
| 1532 | fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags) |
| 1533 | { |
| 1534 | if (flags & opt_fn_print) |
| 1535 | { |
| 1536 | if (flags & opt_fn_print_label) printf("%s = ", name); |
| 1537 | printf("%s\n", smtp_receive_timeout_s |
| 1538 | ? string_printing2(smtp_receive_timeout_s, FALSE) |
| 1539 | : readconf_printtime(smtp_receive_timeout)); |
| 1540 | } |
| 1541 | else if (*str == '$') |
| 1542 | smtp_receive_timeout_s = string_copy(str); |
| 1543 | else |
| 1544 | { |
| 1545 | /* "smtp_receive_timeout", opt_time, &smtp_receive_timeout */ |
| 1546 | smtp_receive_timeout = readconf_readtime(str, 0, FALSE); |
| 1547 | if (smtp_receive_timeout < 0) |
| 1548 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s", |
| 1549 | name); |
| 1550 | } |
| 1551 | } |
| 1552 | |
| 1553 | /************************************************* |
| 1554 | * Handle option line * |
| 1555 | *************************************************/ |
| 1556 | |
| 1557 | /* This function is called from several places to process a line containing the |
| 1558 | setting of an option. The first argument is the line to be decoded; it has been |
| 1559 | checked not to be empty and not to start with '#'. Trailing newlines and white |
| 1560 | space have been removed. The second argument is a pointer to the list of |
| 1561 | variable names that are to be recognized, together with their types and |
| 1562 | locations, and the third argument gives the number of entries in the list. |
| 1563 | |
| 1564 | The fourth argument is a pointer to a data block. If it is NULL, then the data |
| 1565 | values in the options list are absolute addresses. Otherwise, they are byte |
| 1566 | offsets in the data block. |
| 1567 | |
| 1568 | String option data may continue onto several lines; this function reads further |
| 1569 | data from config_file if necessary. |
| 1570 | |
| 1571 | The yield of this function is normally zero. If a string continues onto |
| 1572 | multiple lines, then the data value is permitted to be followed by a comma |
| 1573 | or a semicolon (for use in drivers) and the yield is that character. |
| 1574 | |
| 1575 | Arguments: |
| 1576 | buffer contains the configuration line to be handled |
| 1577 | oltop points to the start of the relevant option list |
| 1578 | last one more than the offset of the last item in the option list |
| 1579 | data_block NULL when reading main options => data values in the option |
| 1580 | list are absolute addresses; otherwise they are byte offsets |
| 1581 | in data_block when they have opt_public set; otherwise |
| 1582 | they are byte offsets in data_block->options_block. |
| 1583 | unknown_txt format string to use in panic message for unknown option; |
| 1584 | must contain %s for option name |
| 1585 | if given as NULL, don't panic on unknown option |
| 1586 | |
| 1587 | Returns: TRUE if an option was read successfully, |
| 1588 | FALSE false for an unknown option if unknown_txt == NULL, |
| 1589 | otherwise panic and die on an unknown option |
| 1590 | */ |
| 1591 | |
| 1592 | static BOOL |
| 1593 | readconf_handle_option(uschar *buffer, optionlist *oltop, int last, |
| 1594 | void *data_block, uschar *unknown_txt) |
| 1595 | { |
| 1596 | int ptr = 0; |
| 1597 | int offset = 0; |
| 1598 | int count, type, value; |
| 1599 | int issecure = 0; |
| 1600 | uid_t uid; |
| 1601 | gid_t gid; |
| 1602 | BOOL boolvalue = TRUE; |
| 1603 | BOOL freesptr = TRUE; |
| 1604 | optionlist *ol, *ol2; |
| 1605 | struct passwd *pw; |
| 1606 | rmark reset_point; |
| 1607 | int intbase = 0; |
| 1608 | uschar *inttype = US""; |
| 1609 | uschar *sptr; |
| 1610 | uschar *s = buffer; |
| 1611 | uschar **str_target; |
| 1612 | uschar name[64]; |
| 1613 | uschar name2[64]; |
| 1614 | |
| 1615 | /* There may be leading spaces; thereafter, we expect an option name starting |
| 1616 | with a letter. */ |
| 1617 | |
| 1618 | while (isspace(*s)) s++; |
| 1619 | if (!isalpha(*s)) |
| 1620 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option setting expected: %s", s); |
| 1621 | |
| 1622 | /* Read the name of the option, and skip any subsequent white space. If |
| 1623 | it turns out that what we read was "hide", set the flag indicating that |
| 1624 | this is a secure option, and loop to read the next word. */ |
| 1625 | |
| 1626 | for (int n = 0; n < 2; n++) |
| 1627 | { |
| 1628 | while (isalnum(*s) || *s == '_') |
| 1629 | { |
| 1630 | if (ptr < sizeof(name)-1) name[ptr++] = *s; |
| 1631 | s++; |
| 1632 | } |
| 1633 | name[ptr] = 0; |
| 1634 | while (isspace(*s)) s++; |
| 1635 | if (Ustrcmp(name, "hide") != 0) break; |
| 1636 | issecure = opt_secure; |
| 1637 | ptr = 0; |
| 1638 | } |
| 1639 | |
| 1640 | /* Deal with "no_" or "not_" here for booleans */ |
| 1641 | |
| 1642 | if (Ustrncmp(name, "no_", 3) == 0) |
| 1643 | { |
| 1644 | boolvalue = FALSE; |
| 1645 | offset = 3; |
| 1646 | } |
| 1647 | |
| 1648 | if (Ustrncmp(name, "not_", 4) == 0) |
| 1649 | { |
| 1650 | boolvalue = FALSE; |
| 1651 | offset = 4; |
| 1652 | } |
| 1653 | |
| 1654 | /* Search the list for the given name. A non-existent name, or an option that |
| 1655 | is set twice, is a disaster. */ |
| 1656 | |
| 1657 | if (!(ol = find_option(name + offset, oltop, last))) |
| 1658 | { |
| 1659 | if (unknown_txt == NULL) return FALSE; |
| 1660 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, CS unknown_txt, name); |
| 1661 | } |
| 1662 | |
| 1663 | if ((ol->type & opt_set) && !(ol->type & (opt_rep_con | opt_rep_str))) |
| 1664 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1665 | "\"%s\" option set for the second time", name); |
| 1666 | |
| 1667 | ol->type |= opt_set | issecure; |
| 1668 | type = ol->type & opt_mask; |
| 1669 | |
| 1670 | /* Types with data values must be followed by '='; the "no[t]_" prefix |
| 1671 | applies only to boolean values. */ |
| 1672 | |
| 1673 | if (type < opt_bool || type > opt_bool_last) |
| 1674 | { |
| 1675 | if (offset != 0) |
| 1676 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1677 | "negation prefix applied to a non-boolean option"); |
| 1678 | if (*s == 0) |
| 1679 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1680 | "unexpected end of line (data missing) after %s", name); |
| 1681 | if (*s != '=') |
| 1682 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing \"=\" after %s", name); |
| 1683 | } |
| 1684 | |
| 1685 | /* If a boolean wasn't preceded by "no[t]_" it can be followed by = and |
| 1686 | true/false/yes/no, or, in the case of opt_expand_bool, a general string that |
| 1687 | ultimately expands to one of those values. */ |
| 1688 | |
| 1689 | else if (*s != 0 && (offset != 0 || *s != '=')) |
| 1690 | extra_chars_error(s, US"boolean option ", name, US""); |
| 1691 | |
| 1692 | /* Skip white space after = */ |
| 1693 | |
| 1694 | if (*s == '=') while (isspace((*(++s)))); |
| 1695 | |
| 1696 | /* If there is a data block and the opt_public flag is not set, change |
| 1697 | the data block pointer to the private options block. */ |
| 1698 | |
| 1699 | if (data_block != NULL && (ol->type & opt_public) == 0) |
| 1700 | data_block = (void *)(((driver_instance *)data_block)->options_block); |
| 1701 | |
| 1702 | /* Now get the data according to the type. */ |
| 1703 | |
| 1704 | switch (type) |
| 1705 | { |
| 1706 | /* If a string value is not enclosed in quotes, it consists of |
| 1707 | the rest of the current line, verbatim. Otherwise, string escapes |
| 1708 | are processed. |
| 1709 | |
| 1710 | A transport is specified as a string, which is then looked up in the |
| 1711 | list of transports. A search type is specified as one of a number of |
| 1712 | known strings. |
| 1713 | |
| 1714 | A set or rewrite rules for a driver is specified as a string, which is |
| 1715 | then parsed into a suitable chain of control blocks. |
| 1716 | |
| 1717 | Uids and gids are specified as strings which are then looked up in the |
| 1718 | passwd file. Lists of uids and gids are similarly specified as colon- |
| 1719 | separated strings. */ |
| 1720 | |
| 1721 | case opt_stringptr: |
| 1722 | case opt_uid: |
| 1723 | case opt_gid: |
| 1724 | case opt_expand_uid: |
| 1725 | case opt_expand_gid: |
| 1726 | case opt_uidlist: |
| 1727 | case opt_gidlist: |
| 1728 | case opt_rewrite: |
| 1729 | |
| 1730 | reset_point = store_mark(); |
| 1731 | sptr = read_string(s, name); |
| 1732 | |
| 1733 | /* Having read a string, we now have several different ways of using it, |
| 1734 | depending on the data type, so do another switch. If keeping the actual |
| 1735 | string is not required (because it is interpreted), freesptr is set TRUE, |
| 1736 | and at the end we reset the pool. */ |
| 1737 | |
| 1738 | switch (type) |
| 1739 | { |
| 1740 | /* If this was a string, set the variable to point to the new string, |
| 1741 | and set the flag so its store isn't reclaimed. If it was a list of rewrite |
| 1742 | rules, we still keep the string (for printing), and parse the rules into a |
| 1743 | control block and flags word. */ |
| 1744 | |
| 1745 | case opt_stringptr: |
| 1746 | str_target = data_block ? USS (US data_block + (long int)(ol->value)) |
| 1747 | : USS (ol->value); |
| 1748 | if (ol->type & opt_rep_con) |
| 1749 | { |
| 1750 | uschar * saved_condition; |
| 1751 | /* We already have a condition, we're conducting a crude hack to let |
| 1752 | multiple condition rules be chained together, despite storing them in |
| 1753 | text form. */ |
| 1754 | *str_target = string_copy_perm( (saved_condition = *str_target) |
| 1755 | ? string_sprintf("${if and{{bool_lax{%s}}{bool_lax{%s}}}}", |
| 1756 | saved_condition, sptr) |
| 1757 | : sptr, |
| 1758 | FALSE); |
| 1759 | /* TODO(pdp): there is a memory leak here and just below |
| 1760 | when we set 3 or more conditions; I still don't |
| 1761 | understand the store mechanism enough to know |
| 1762 | what's the safe way to free content from an earlier store. |
| 1763 | AFAICT, stores stack, so freeing an early stored item also stores |
| 1764 | all data alloc'd after it. If we knew conditions were adjacent, |
| 1765 | we could survive that, but we don't. So I *think* we need to take |
| 1766 | another bit from opt_type to indicate "malloced"; this seems like |
| 1767 | quite a hack, especially for this one case. It also means that |
| 1768 | we can't ever reclaim the store from the *first* condition. |
| 1769 | |
| 1770 | Because we only do this once, near process start-up, I'm prepared to |
| 1771 | let this slide for the time being, even though it rankles. */ |
| 1772 | } |
| 1773 | else if (ol->type & opt_rep_str) |
| 1774 | { |
| 1775 | uschar sep_o = |
| 1776 | Ustrncmp(name, "headers_add", 11) == 0 ? '\n' |
| 1777 | : Ustrncmp(name, "set", 3) == 0 ? ';' |
| 1778 | : ':'; |
| 1779 | int sep_i = -(int)sep_o; |
| 1780 | const uschar * list = sptr; |
| 1781 | uschar * s; |
| 1782 | gstring * list_o = NULL; |
| 1783 | |
| 1784 | if (*str_target) |
| 1785 | { |
| 1786 | list_o = string_get(Ustrlen(*str_target) + Ustrlen(sptr)); |
| 1787 | list_o = string_cat(list_o, *str_target); |
| 1788 | } |
| 1789 | |
| 1790 | while ((s = string_nextinlist(&list, &sep_i, NULL, 0))) |
| 1791 | list_o = string_append_listele(list_o, sep_o, s); |
| 1792 | |
| 1793 | if (list_o) |
| 1794 | *str_target = string_copy_perm(string_from_gstring(list_o), FALSE); |
| 1795 | } |
| 1796 | else |
| 1797 | { |
| 1798 | *str_target = sptr; |
| 1799 | freesptr = FALSE; |
| 1800 | } |
| 1801 | break; |
| 1802 | |
| 1803 | case opt_rewrite: |
| 1804 | if (data_block) |
| 1805 | *USS (US data_block + (long int)(ol->value)) = sptr; |
| 1806 | else |
| 1807 | *USS (ol->value) = sptr; |
| 1808 | freesptr = FALSE; |
| 1809 | if (type == opt_rewrite) |
| 1810 | { |
| 1811 | int sep = 0; |
| 1812 | int *flagptr; |
| 1813 | uschar *p = sptr; |
| 1814 | rewrite_rule **chain; |
| 1815 | optionlist *ol3; |
| 1816 | |
| 1817 | sprintf(CS name2, "*%.50s_rules", name); |
| 1818 | ol2 = find_option(name2, oltop, last); |
| 1819 | sprintf(CS name2, "*%.50s_flags", name); |
| 1820 | ol3 = find_option(name2, oltop, last); |
| 1821 | |
| 1822 | if (ol2 == NULL || ol3 == NULL) |
| 1823 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 1824 | "rewrite rules not available for driver"); |
| 1825 | |
| 1826 | if (data_block == NULL) |
| 1827 | { |
| 1828 | chain = (rewrite_rule **)(ol2->value); |
| 1829 | flagptr = (int *)(ol3->value); |
| 1830 | } |
| 1831 | else |
| 1832 | { |
| 1833 | chain = (rewrite_rule **)(US data_block + (long int)(ol2->value)); |
| 1834 | flagptr = (int *)(US data_block + (long int)(ol3->value)); |
| 1835 | } |
| 1836 | |
| 1837 | while ((p = string_nextinlist(CUSS &sptr, &sep, big_buffer, BIG_BUFFER_SIZE))) |
| 1838 | { |
| 1839 | rewrite_rule *next = readconf_one_rewrite(p, flagptr, FALSE); |
| 1840 | *chain = next; |
| 1841 | chain = &(next->next); |
| 1842 | } |
| 1843 | |
| 1844 | if ((*flagptr & (rewrite_all_envelope | rewrite_smtp)) != 0) |
| 1845 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "rewrite rule specifies a " |
| 1846 | "non-header rewrite - not allowed at transport time -"); |
| 1847 | } |
| 1848 | break; |
| 1849 | |
| 1850 | /* If it was an expanded uid, see if there is any expansion to be |
| 1851 | done by checking for the presence of a $ character. If there is, save it |
| 1852 | in the corresponding *expand_user option field. Otherwise, fall through |
| 1853 | to treat it as a fixed uid. Ensure mutual exclusivity of the two kinds |
| 1854 | of data. */ |
| 1855 | |
| 1856 | case opt_expand_uid: |
| 1857 | sprintf(CS name2, "*expand_%.50s", name); |
| 1858 | ol2 = find_option(name2, oltop, last); |
| 1859 | if (ol2 != NULL) |
| 1860 | { |
| 1861 | uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL; |
| 1862 | |
| 1863 | if (data_block == NULL) |
| 1864 | *((uschar **)(ol2->value)) = ss; |
| 1865 | else |
| 1866 | *((uschar **)(US data_block + (long int)(ol2->value))) = ss; |
| 1867 | |
| 1868 | if (ss != NULL) |
| 1869 | { |
| 1870 | *(get_set_flag(name, oltop, last, data_block)) = FALSE; |
| 1871 | freesptr = FALSE; |
| 1872 | break; |
| 1873 | } |
| 1874 | } |
| 1875 | |
| 1876 | /* Look up a fixed uid, and also make use of the corresponding gid |
| 1877 | if a passwd entry is returned and the gid has not been set. */ |
| 1878 | |
| 1879 | case opt_uid: |
| 1880 | if (!route_finduser(sptr, &pw, &uid)) |
| 1881 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found", sptr); |
| 1882 | if (data_block == NULL) |
| 1883 | *((uid_t *)(ol->value)) = uid; |
| 1884 | else |
| 1885 | *((uid_t *)(US data_block + (long int)(ol->value))) = uid; |
| 1886 | |
| 1887 | /* Set the flag indicating a fixed value is set */ |
| 1888 | |
| 1889 | *(get_set_flag(name, oltop, last, data_block)) = TRUE; |
| 1890 | |
| 1891 | /* Handle matching gid if we have a passwd entry: done by finding the |
| 1892 | same name with terminating "user" changed to "group"; if not found, |
| 1893 | ignore. Also ignore if the value is already set. */ |
| 1894 | |
| 1895 | if (pw == NULL) break; |
| 1896 | Ustrcpy(name+Ustrlen(name)-4, US"group"); |
| 1897 | ol2 = find_option(name, oltop, last); |
| 1898 | if (ol2 != NULL && ((ol2->type & opt_mask) == opt_gid || |
| 1899 | (ol2->type & opt_mask) == opt_expand_gid)) |
| 1900 | { |
| 1901 | BOOL *set_flag = get_set_flag(name, oltop, last, data_block); |
| 1902 | if (! *set_flag) |
| 1903 | { |
| 1904 | if (data_block == NULL) |
| 1905 | *((gid_t *)(ol2->value)) = pw->pw_gid; |
| 1906 | else |
| 1907 | *((gid_t *)(US data_block + (long int)(ol2->value))) = pw->pw_gid; |
| 1908 | *set_flag = TRUE; |
| 1909 | } |
| 1910 | } |
| 1911 | break; |
| 1912 | |
| 1913 | /* If it was an expanded gid, see if there is any expansion to be |
| 1914 | done by checking for the presence of a $ character. If there is, save it |
| 1915 | in the corresponding *expand_user option field. Otherwise, fall through |
| 1916 | to treat it as a fixed gid. Ensure mutual exclusivity of the two kinds |
| 1917 | of data. */ |
| 1918 | |
| 1919 | case opt_expand_gid: |
| 1920 | sprintf(CS name2, "*expand_%.50s", name); |
| 1921 | ol2 = find_option(name2, oltop, last); |
| 1922 | if (ol2 != NULL) |
| 1923 | { |
| 1924 | uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL; |
| 1925 | |
| 1926 | if (data_block == NULL) |
| 1927 | *((uschar **)(ol2->value)) = ss; |
| 1928 | else |
| 1929 | *((uschar **)(US data_block + (long int)(ol2->value))) = ss; |
| 1930 | |
| 1931 | if (ss != NULL) |
| 1932 | { |
| 1933 | *(get_set_flag(name, oltop, last, data_block)) = FALSE; |
| 1934 | freesptr = FALSE; |
| 1935 | break; |
| 1936 | } |
| 1937 | } |
| 1938 | |
| 1939 | /* Handle freestanding gid */ |
| 1940 | |
| 1941 | case opt_gid: |
| 1942 | if (!route_findgroup(sptr, &gid)) |
| 1943 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found", sptr); |
| 1944 | if (data_block == NULL) |
| 1945 | *((gid_t *)(ol->value)) = gid; |
| 1946 | else |
| 1947 | *((gid_t *)(US data_block + (long int)(ol->value))) = gid; |
| 1948 | *(get_set_flag(name, oltop, last, data_block)) = TRUE; |
| 1949 | break; |
| 1950 | |
| 1951 | /* If it was a uid list, look up each individual entry, and build |
| 1952 | a vector of uids, with a count in the first element. Put the vector |
| 1953 | in malloc store so we can free the string. (We are reading into |
| 1954 | permanent store already.) */ |
| 1955 | |
| 1956 | case opt_uidlist: |
| 1957 | { |
| 1958 | int count = 1; |
| 1959 | uid_t *list; |
| 1960 | int ptr = 0; |
| 1961 | const uschar *p; |
| 1962 | const uschar *op = expand_string (sptr); |
| 1963 | |
| 1964 | if (op == NULL) |
| 1965 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s", |
| 1966 | name, expand_string_message); |
| 1967 | |
| 1968 | p = op; |
| 1969 | if (*p != 0) count++; |
| 1970 | while (*p != 0) if (*p++ == ':' && *p != 0) count++; |
| 1971 | list = store_malloc(count*sizeof(uid_t)); |
| 1972 | list[ptr++] = (uid_t)(count - 1); |
| 1973 | |
| 1974 | if (data_block == NULL) |
| 1975 | *((uid_t **)(ol->value)) = list; |
| 1976 | else |
| 1977 | *((uid_t **)(US data_block + (long int)(ol->value))) = list; |
| 1978 | |
| 1979 | p = op; |
| 1980 | while (count-- > 1) |
| 1981 | { |
| 1982 | int sep = 0; |
| 1983 | (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE); |
| 1984 | if (!route_finduser(big_buffer, NULL, &uid)) |
| 1985 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found", |
| 1986 | big_buffer); |
| 1987 | list[ptr++] = uid; |
| 1988 | } |
| 1989 | } |
| 1990 | break; |
| 1991 | |
| 1992 | /* If it was a gid list, look up each individual entry, and build |
| 1993 | a vector of gids, with a count in the first element. Put the vector |
| 1994 | in malloc store so we can free the string. (We are reading into permanent |
| 1995 | store already.) */ |
| 1996 | |
| 1997 | case opt_gidlist: |
| 1998 | { |
| 1999 | int count = 1; |
| 2000 | gid_t *list; |
| 2001 | int ptr = 0; |
| 2002 | const uschar *p; |
| 2003 | const uschar *op = expand_string (sptr); |
| 2004 | |
| 2005 | if (op == NULL) |
| 2006 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s", |
| 2007 | name, expand_string_message); |
| 2008 | |
| 2009 | p = op; |
| 2010 | if (*p != 0) count++; |
| 2011 | while (*p != 0) if (*p++ == ':' && *p != 0) count++; |
| 2012 | list = store_malloc(count*sizeof(gid_t)); |
| 2013 | list[ptr++] = (gid_t)(count - 1); |
| 2014 | |
| 2015 | if (data_block == NULL) |
| 2016 | *((gid_t **)(ol->value)) = list; |
| 2017 | else |
| 2018 | *((gid_t **)(US data_block + (long int)(ol->value))) = list; |
| 2019 | |
| 2020 | p = op; |
| 2021 | while (count-- > 1) |
| 2022 | { |
| 2023 | int sep = 0; |
| 2024 | (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE); |
| 2025 | if (!route_findgroup(big_buffer, &gid)) |
| 2026 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found", |
| 2027 | big_buffer); |
| 2028 | list[ptr++] = gid; |
| 2029 | } |
| 2030 | } |
| 2031 | break; |
| 2032 | } |
| 2033 | |
| 2034 | /* Release store if the value of the string doesn't need to be kept. */ |
| 2035 | |
| 2036 | if (freesptr) reset_point = store_reset(reset_point); |
| 2037 | break; |
| 2038 | |
| 2039 | /* Expanded boolean: if no characters follow, or if there are no dollar |
| 2040 | characters, this is a fixed-valued boolean, and we fall through. Otherwise, |
| 2041 | save the string for later expansion in the alternate place. */ |
| 2042 | |
| 2043 | case opt_expand_bool: |
| 2044 | if (*s != 0 && Ustrchr(s, '$') != 0) |
| 2045 | { |
| 2046 | sprintf(CS name2, "*expand_%.50s", name); |
| 2047 | if ((ol2 = find_option(name2, oltop, last))) |
| 2048 | { |
| 2049 | reset_point = store_mark(); |
| 2050 | sptr = read_string(s, name); |
| 2051 | if (data_block == NULL) |
| 2052 | *((uschar **)(ol2->value)) = sptr; |
| 2053 | else |
| 2054 | *((uschar **)(US data_block + (long int)(ol2->value))) = sptr; |
| 2055 | freesptr = FALSE; |
| 2056 | break; |
| 2057 | } |
| 2058 | } |
| 2059 | /* Fall through */ |
| 2060 | |
| 2061 | /* Boolean: if no characters follow, the value is boolvalue. Otherwise |
| 2062 | look for yes/not/true/false. Some booleans are stored in a single bit in |
| 2063 | a single int. There's a special fudge for verify settings; without a suffix |
| 2064 | they set both xx_sender and xx_recipient. The table points to the sender |
| 2065 | value; search subsequently for the recipient. There's another special case: |
| 2066 | opt_bool_set also notes when a boolean has been set. */ |
| 2067 | |
| 2068 | case opt_bool: |
| 2069 | case opt_bit: |
| 2070 | case opt_bool_verify: |
| 2071 | case opt_bool_set: |
| 2072 | if (*s != 0) |
| 2073 | { |
| 2074 | s = readconf_readname(name2, 64, s); |
| 2075 | if (strcmpic(name2, US"true") == 0 || strcmpic(name2, US"yes") == 0) |
| 2076 | boolvalue = TRUE; |
| 2077 | else if (strcmpic(name2, US"false") == 0 || strcmpic(name2, US"no") == 0) |
| 2078 | boolvalue = FALSE; |
| 2079 | else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 2080 | "\"%s\" is not a valid value for the \"%s\" option", name2, name); |
| 2081 | if (*s != 0) extra_chars_error(s, string_sprintf("\"%s\" ", name2), |
| 2082 | US"for boolean option ", name); |
| 2083 | } |
| 2084 | |
| 2085 | /* Handle single-bit type. */ |
| 2086 | |
| 2087 | if (type == opt_bit) |
| 2088 | { |
| 2089 | int bit = 1 << ((ol->type >> 16) & 31); |
| 2090 | int *ptr = (data_block == NULL)? |
| 2091 | (int *)(ol->value) : |
| 2092 | (int *)(US data_block + (long int)ol->value); |
| 2093 | if (boolvalue) *ptr |= bit; else *ptr &= ~bit; |
| 2094 | break; |
| 2095 | } |
| 2096 | |
| 2097 | /* Handle full BOOL types */ |
| 2098 | |
| 2099 | if (data_block == NULL) |
| 2100 | *((BOOL *)(ol->value)) = boolvalue; |
| 2101 | else |
| 2102 | *((BOOL *)(US data_block + (long int)(ol->value))) = boolvalue; |
| 2103 | |
| 2104 | /* Verify fudge */ |
| 2105 | |
| 2106 | if (type == opt_bool_verify) |
| 2107 | { |
| 2108 | sprintf(CS name2, "%.50s_recipient", name + offset); |
| 2109 | ol2 = find_option(name2, oltop, last); |
| 2110 | if (ol2 != NULL) |
| 2111 | { |
| 2112 | if (data_block == NULL) |
| 2113 | *((BOOL *)(ol2->value)) = boolvalue; |
| 2114 | else |
| 2115 | *((BOOL *)(US data_block + (long int)(ol2->value))) = boolvalue; |
| 2116 | } |
| 2117 | } |
| 2118 | |
| 2119 | /* Note that opt_bool_set type is set, if there is somewhere to do so */ |
| 2120 | |
| 2121 | else if (type == opt_bool_set) |
| 2122 | { |
| 2123 | sprintf(CS name2, "*set_%.50s", name + offset); |
| 2124 | ol2 = find_option(name2, oltop, last); |
| 2125 | if (ol2 != NULL) |
| 2126 | { |
| 2127 | if (data_block == NULL) |
| 2128 | *((BOOL *)(ol2->value)) = TRUE; |
| 2129 | else |
| 2130 | *((BOOL *)(US data_block + (long int)(ol2->value))) = TRUE; |
| 2131 | } |
| 2132 | } |
| 2133 | break; |
| 2134 | |
| 2135 | /* Octal integer */ |
| 2136 | |
| 2137 | case opt_octint: |
| 2138 | intbase = 8; |
| 2139 | inttype = US"octal "; |
| 2140 | |
| 2141 | /* Integer: a simple(ish) case; allow octal and hex formats, and |
| 2142 | suffixes K, M, G, and T. The different types affect output, not input. */ |
| 2143 | |
| 2144 | case opt_mkint: |
| 2145 | case opt_int: |
| 2146 | { |
| 2147 | uschar *endptr; |
| 2148 | long int lvalue; |
| 2149 | |
| 2150 | errno = 0; |
| 2151 | lvalue = strtol(CS s, CSS &endptr, intbase); |
| 2152 | |
| 2153 | if (endptr == s) |
| 2154 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s", |
| 2155 | inttype, name); |
| 2156 | |
| 2157 | if (errno != ERANGE && *endptr) |
| 2158 | { |
| 2159 | uschar * mp = US"TtGgMmKk\0"; /* YyZzEePpTtGgMmKk */ |
| 2160 | |
| 2161 | if ((mp = Ustrchr(mp, *endptr))) |
| 2162 | { |
| 2163 | endptr++; |
| 2164 | do |
| 2165 | { |
| 2166 | if (lvalue > INT_MAX/1024 || lvalue < INT_MIN/1024) |
| 2167 | { |
| 2168 | errno = ERANGE; |
| 2169 | break; |
| 2170 | } |
| 2171 | lvalue *= 1024; |
| 2172 | } |
| 2173 | while (*(mp += 2)); |
| 2174 | } |
| 2175 | } |
| 2176 | |
| 2177 | if (errno == ERANGE || lvalue > INT_MAX || lvalue < INT_MIN) |
| 2178 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 2179 | "absolute value of integer \"%s\" is too large (overflow)", s); |
| 2180 | |
| 2181 | while (isspace(*endptr)) endptr++; |
| 2182 | if (*endptr) |
| 2183 | extra_chars_error(endptr, inttype, US"integer value for ", name); |
| 2184 | |
| 2185 | value = (int)lvalue; |
| 2186 | } |
| 2187 | |
| 2188 | if (data_block) |
| 2189 | *(int *)(US data_block + (long int)ol->value) = value; |
| 2190 | else |
| 2191 | *(int *)ol->value = value; |
| 2192 | break; |
| 2193 | |
| 2194 | /* Integer held in K: again, allow formats and suffixes as above. */ |
| 2195 | |
| 2196 | case opt_Kint: |
| 2197 | { |
| 2198 | uschar *endptr; |
| 2199 | errno = 0; |
| 2200 | int_eximarith_t lvalue = strtol(CS s, CSS &endptr, intbase); |
| 2201 | |
| 2202 | if (endptr == s) |
| 2203 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s", |
| 2204 | inttype, name); |
| 2205 | |
| 2206 | if (errno != ERANGE && *endptr) |
| 2207 | { |
| 2208 | uschar * mp = US"ZzEePpTtGgMmKk\0"; /* YyZzEePpTtGgMmKk */ |
| 2209 | |
| 2210 | if ((mp = Ustrchr(mp, *endptr))) |
| 2211 | { |
| 2212 | endptr++; |
| 2213 | while (*(mp += 2)) |
| 2214 | { |
| 2215 | if (lvalue > EXIM_ARITH_MAX/1024 || lvalue < EXIM_ARITH_MIN/1024) |
| 2216 | { |
| 2217 | errno = ERANGE; |
| 2218 | break; |
| 2219 | } |
| 2220 | lvalue *= 1024; |
| 2221 | } |
| 2222 | } |
| 2223 | else |
| 2224 | lvalue = (lvalue + 512)/1024; |
| 2225 | } |
| 2226 | |
| 2227 | if (errno == ERANGE) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 2228 | "absolute value of integer \"%s\" is too large (overflow)", s); |
| 2229 | |
| 2230 | while (isspace(*endptr)) endptr++; |
| 2231 | if (*endptr != 0) |
| 2232 | extra_chars_error(endptr, inttype, US"integer value for ", name); |
| 2233 | |
| 2234 | if (data_block) |
| 2235 | *(int_eximarith_t *)(US data_block + (long int)ol->value) = lvalue; |
| 2236 | else |
| 2237 | *(int_eximarith_t *)ol->value = lvalue; |
| 2238 | break; |
| 2239 | } |
| 2240 | |
| 2241 | /* Fixed-point number: held to 3 decimal places. */ |
| 2242 | |
| 2243 | case opt_fixed: |
| 2244 | if (sscanf(CS s, "%d%n", &value, &count) != 1) |
| 2245 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 2246 | "fixed-point number expected for %s", name); |
| 2247 | |
| 2248 | if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 2249 | "integer \"%s\" is too large (overflow)", s); |
| 2250 | |
| 2251 | value *= 1000; |
| 2252 | |
| 2253 | if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 2254 | "integer \"%s\" is too large (overflow)", s); |
| 2255 | |
| 2256 | /* We get a coverity error here for using count, as it derived |
| 2257 | from the tainted buffer pointed to by s, as parsed by sscanf(). |
| 2258 | By the definition of sscanf we must be accessing between start |
| 2259 | and end of s (assuming it is nul-terminated...) so ignore the error. */ |
| 2260 | /* coverity[tainted_data] */ |
| 2261 | if (s[count] == '.') |
| 2262 | { |
| 2263 | int d = 100; |
| 2264 | while (isdigit(s[++count])) |
| 2265 | { |
| 2266 | value += (s[count] - '0') * d; |
| 2267 | d /= 10; |
| 2268 | } |
| 2269 | } |
| 2270 | |
| 2271 | while (isspace(s[count])) count++; |
| 2272 | |
| 2273 | if (s[count] != 0) |
| 2274 | extra_chars_error(s+count, US"fixed-point value for ", name, US""); |
| 2275 | |
| 2276 | if (data_block == NULL) |
| 2277 | *((int *)(ol->value)) = value; |
| 2278 | else |
| 2279 | *((int *)(US data_block + (long int)(ol->value))) = value; |
| 2280 | break; |
| 2281 | |
| 2282 | /* There's a special routine to read time values. */ |
| 2283 | |
| 2284 | case opt_time: |
| 2285 | value = readconf_readtime(s, 0, FALSE); |
| 2286 | if (value < 0) |
| 2287 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s", |
| 2288 | name); |
| 2289 | if (data_block == NULL) |
| 2290 | *((int *)(ol->value)) = value; |
| 2291 | else |
| 2292 | *((int *)(US data_block + (long int)(ol->value))) = value; |
| 2293 | break; |
| 2294 | |
| 2295 | /* A time list is a list of colon-separated times, with the first |
| 2296 | element holding the size of the list and the second the number of |
| 2297 | entries used. */ |
| 2298 | |
| 2299 | case opt_timelist: |
| 2300 | { |
| 2301 | int count = 0; |
| 2302 | int *list = (data_block == NULL)? |
| 2303 | (int *)(ol->value) : |
| 2304 | (int *)(US data_block + (long int)(ol->value)); |
| 2305 | |
| 2306 | if (*s != 0) for (count = 1; count <= list[0] - 2; count++) |
| 2307 | { |
| 2308 | int terminator = 0; |
| 2309 | uschar *snext = Ustrchr(s, ':'); |
| 2310 | if (snext != NULL) |
| 2311 | { |
| 2312 | uschar *ss = snext; |
| 2313 | while (ss > s && isspace(ss[-1])) ss--; |
| 2314 | terminator = *ss; |
| 2315 | } |
| 2316 | value = readconf_readtime(s, terminator, FALSE); |
| 2317 | if (value < 0) |
| 2318 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s", |
| 2319 | name); |
| 2320 | if (count > 1 && value <= list[count]) |
| 2321 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 2322 | "time value out of order for %s", name); |
| 2323 | list[count+1] = value; |
| 2324 | if (snext == NULL) break; |
| 2325 | s = snext + 1; |
| 2326 | while (isspace(*s)) s++; |
| 2327 | } |
| 2328 | |
| 2329 | if (count > list[0] - 2) |
| 2330 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many time values for %s", |
| 2331 | name); |
| 2332 | if (count > 0 && list[2] == 0) count = 0; |
| 2333 | list[1] = count; |
| 2334 | break; |
| 2335 | } |
| 2336 | |
| 2337 | case opt_func: |
| 2338 | { |
| 2339 | void (*fn)() = ol->value; |
| 2340 | fn(name, s, 0); |
| 2341 | break; |
| 2342 | } |
| 2343 | } |
| 2344 | |
| 2345 | return TRUE; |
| 2346 | } |
| 2347 | |
| 2348 | |
| 2349 | |
| 2350 | /************************************************* |
| 2351 | * Print a time value * |
| 2352 | *************************************************/ |
| 2353 | |
| 2354 | /* |
| 2355 | Argument: a time value in seconds |
| 2356 | Returns: pointer to a fixed buffer containing the time as a string, |
| 2357 | in readconf_readtime() format |
| 2358 | */ |
| 2359 | |
| 2360 | uschar * |
| 2361 | readconf_printtime(int t) |
| 2362 | { |
| 2363 | int s, m, h, d, w; |
| 2364 | uschar *p = time_buffer; |
| 2365 | |
| 2366 | if (t < 0) |
| 2367 | { |
| 2368 | *p++ = '-'; |
| 2369 | t = -t; |
| 2370 | } |
| 2371 | |
| 2372 | s = t % 60; |
| 2373 | t /= 60; |
| 2374 | m = t % 60; |
| 2375 | t /= 60; |
| 2376 | h = t % 24; |
| 2377 | t /= 24; |
| 2378 | d = t % 7; |
| 2379 | w = t/7; |
| 2380 | |
| 2381 | if (w > 0) p += sprintf(CS p, "%dw", w); |
| 2382 | if (d > 0) p += sprintf(CS p, "%dd", d); |
| 2383 | if (h > 0) p += sprintf(CS p, "%dh", h); |
| 2384 | if (m > 0) p += sprintf(CS p, "%dm", m); |
| 2385 | if (s > 0 || p == time_buffer) sprintf(CS p, "%ds", s); |
| 2386 | |
| 2387 | return time_buffer; |
| 2388 | } |
| 2389 | |
| 2390 | |
| 2391 | |
| 2392 | /************************************************* |
| 2393 | * Print an individual option value * |
| 2394 | *************************************************/ |
| 2395 | |
| 2396 | /* This is used by the -bP option, so prints to the standard output. |
| 2397 | The entire options list is passed in as an argument, because some options come |
| 2398 | in pairs - typically uid/gid settings, which can either be explicit numerical |
| 2399 | values, or strings to be expanded later. If the numerical value is unset, |
| 2400 | search for "*expand_<name>" to see if there is a string equivalent. |
| 2401 | |
| 2402 | Arguments: |
| 2403 | ol option entry, or NULL for an unknown option |
| 2404 | name option name |
| 2405 | options_block NULL for main configuration options; otherwise points to |
| 2406 | a driver block; if the option doesn't have opt_public |
| 2407 | set, then options_block->options_block is where the item |
| 2408 | resides. |
| 2409 | oltop points to the option list in which ol exists |
| 2410 | last one more than the offset of the last entry in optop |
| 2411 | no_labels do not show "foo = " at the start. |
| 2412 | |
| 2413 | Returns: boolean success |
| 2414 | */ |
| 2415 | |
| 2416 | static BOOL |
| 2417 | print_ol(optionlist *ol, uschar *name, void *options_block, |
| 2418 | optionlist *oltop, int last, BOOL no_labels) |
| 2419 | { |
| 2420 | struct passwd *pw; |
| 2421 | struct group *gr; |
| 2422 | optionlist *ol2; |
| 2423 | void *value; |
| 2424 | uid_t *uidlist; |
| 2425 | gid_t *gidlist; |
| 2426 | uschar *s; |
| 2427 | uschar name2[64]; |
| 2428 | |
| 2429 | if (!ol) |
| 2430 | { |
| 2431 | printf("%s is not a known option\n", name); |
| 2432 | return FALSE; |
| 2433 | } |
| 2434 | |
| 2435 | /* Non-admin callers cannot see options that have been flagged secure by the |
| 2436 | "hide" prefix. */ |
| 2437 | |
| 2438 | if (!f.admin_user && ol->type & opt_secure) |
| 2439 | { |
| 2440 | if (no_labels) |
| 2441 | printf("%s\n", hidden); |
| 2442 | else |
| 2443 | printf("%s = %s\n", name, hidden); |
| 2444 | return TRUE; |
| 2445 | } |
| 2446 | |
| 2447 | /* Else show the value of the option */ |
| 2448 | |
| 2449 | value = ol->value; |
| 2450 | if (options_block) |
| 2451 | { |
| 2452 | if (!(ol->type & opt_public)) |
| 2453 | options_block = (void *)(((driver_instance *)options_block)->options_block); |
| 2454 | value = (void *)(US options_block + (long int)value); |
| 2455 | } |
| 2456 | |
| 2457 | switch(ol->type & opt_mask) |
| 2458 | { |
| 2459 | case opt_stringptr: |
| 2460 | case opt_rewrite: /* Show the text value */ |
| 2461 | s = *(USS value); |
| 2462 | if (!no_labels) printf("%s = ", name); |
| 2463 | printf("%s\n", s ? string_printing2(s, FALSE) : US""); |
| 2464 | break; |
| 2465 | |
| 2466 | case opt_int: |
| 2467 | if (!no_labels) printf("%s = ", name); |
| 2468 | printf("%d\n", *((int *)value)); |
| 2469 | break; |
| 2470 | |
| 2471 | case opt_mkint: |
| 2472 | { |
| 2473 | int x = *((int *)value); |
| 2474 | if (x != 0 && (x & 1023) == 0) |
| 2475 | { |
| 2476 | int c = 'K'; |
| 2477 | x >>= 10; |
| 2478 | if ((x & 1023) == 0) |
| 2479 | { |
| 2480 | c = 'M'; |
| 2481 | x >>= 10; |
| 2482 | } |
| 2483 | if (!no_labels) printf("%s = ", name); |
| 2484 | printf("%d%c\n", x, c); |
| 2485 | } |
| 2486 | else |
| 2487 | { |
| 2488 | if (!no_labels) printf("%s = ", name); |
| 2489 | printf("%d\n", x); |
| 2490 | } |
| 2491 | } |
| 2492 | break; |
| 2493 | |
| 2494 | case opt_Kint: |
| 2495 | { |
| 2496 | int_eximarith_t x = *((int_eximarith_t *)value); |
| 2497 | if (!no_labels) printf("%s = ", name); |
| 2498 | if (x == 0) printf("0\n"); |
| 2499 | else if ((x & ((1<<30)-1)) == 0) printf(PR_EXIM_ARITH "T\n", x >> 30); |
| 2500 | else if ((x & ((1<<20)-1)) == 0) printf(PR_EXIM_ARITH "G\n", x >> 20); |
| 2501 | else if ((x & ((1<<10)-1)) == 0) printf(PR_EXIM_ARITH "M\n", x >> 10); |
| 2502 | else printf(PR_EXIM_ARITH "K\n", x); |
| 2503 | } |
| 2504 | break; |
| 2505 | |
| 2506 | case opt_octint: |
| 2507 | if (!no_labels) printf("%s = ", name); |
| 2508 | printf("%#o\n", *((int *)value)); |
| 2509 | break; |
| 2510 | |
| 2511 | /* Can be negative only when "unset", in which case integer */ |
| 2512 | |
| 2513 | case opt_fixed: |
| 2514 | { |
| 2515 | int x = *((int *)value); |
| 2516 | int f = x % 1000; |
| 2517 | int d = 100; |
| 2518 | if (x < 0) printf("%s =\n", name); else |
| 2519 | { |
| 2520 | if (!no_labels) printf("%s = ", name); |
| 2521 | printf("%d.", x/1000); |
| 2522 | do |
| 2523 | { |
| 2524 | printf("%d", f/d); |
| 2525 | f %= d; |
| 2526 | d /= 10; |
| 2527 | } |
| 2528 | while (f != 0); |
| 2529 | printf("\n"); |
| 2530 | } |
| 2531 | } |
| 2532 | break; |
| 2533 | |
| 2534 | /* If the numerical value is unset, try for the string value */ |
| 2535 | |
| 2536 | case opt_expand_uid: |
| 2537 | if (! *get_set_flag(name, oltop, last, options_block)) |
| 2538 | { |
| 2539 | sprintf(CS name2, "*expand_%.50s", name); |
| 2540 | if ((ol2 = find_option(name2, oltop, last))) |
| 2541 | { |
| 2542 | void *value2 = ol2->value; |
| 2543 | if (options_block) |
| 2544 | value2 = (void *)(US options_block + (long int)value2); |
| 2545 | s = *(USS value2); |
| 2546 | if (!no_labels) printf("%s = ", name); |
| 2547 | printf("%s\n", s ? string_printing(s) : US""); |
| 2548 | break; |
| 2549 | } |
| 2550 | } |
| 2551 | |
| 2552 | /* Else fall through */ |
| 2553 | |
| 2554 | case opt_uid: |
| 2555 | if (!no_labels) printf("%s = ", name); |
| 2556 | if (! *get_set_flag(name, oltop, last, options_block)) |
| 2557 | printf("\n"); |
| 2558 | else |
| 2559 | if ((pw = getpwuid(*((uid_t *)value)))) |
| 2560 | printf("%s\n", pw->pw_name); |
| 2561 | else |
| 2562 | printf("%ld\n", (long int)(*((uid_t *)value))); |
| 2563 | break; |
| 2564 | |
| 2565 | /* If the numerical value is unset, try for the string value */ |
| 2566 | |
| 2567 | case opt_expand_gid: |
| 2568 | if (! *get_set_flag(name, oltop, last, options_block)) |
| 2569 | { |
| 2570 | sprintf(CS name2, "*expand_%.50s", name); |
| 2571 | if ( (ol2 = find_option(name2, oltop, last)) |
| 2572 | && (ol2->type & opt_mask) == opt_stringptr) |
| 2573 | { |
| 2574 | void *value2 = ol2->value; |
| 2575 | if (options_block) |
| 2576 | value2 = (void *)(US options_block + (long int)value2); |
| 2577 | s = *(USS value2); |
| 2578 | if (!no_labels) printf("%s = ", name); |
| 2579 | printf("%s\n", s ? string_printing(s) : US""); |
| 2580 | break; |
| 2581 | } |
| 2582 | } |
| 2583 | |
| 2584 | /* Else fall through */ |
| 2585 | |
| 2586 | case opt_gid: |
| 2587 | if (!no_labels) printf("%s = ", name); |
| 2588 | if (! *get_set_flag(name, oltop, last, options_block)) |
| 2589 | printf("\n"); |
| 2590 | else |
| 2591 | if ((gr = getgrgid(*((int *)value)))) |
| 2592 | printf("%s\n", gr->gr_name); |
| 2593 | else |
| 2594 | printf("%ld\n", (long int)(*((int *)value))); |
| 2595 | break; |
| 2596 | |
| 2597 | case opt_uidlist: |
| 2598 | uidlist = *((uid_t **)value); |
| 2599 | if (!no_labels) printf("%s =", name); |
| 2600 | if (uidlist) |
| 2601 | { |
| 2602 | uschar sep = no_labels ? '\0' : ' '; |
| 2603 | for (int i = 1; i <= (int)(uidlist[0]); i++) |
| 2604 | { |
| 2605 | uschar *name = NULL; |
| 2606 | if ((pw = getpwuid(uidlist[i]))) name = US pw->pw_name; |
| 2607 | if (sep != '\0') printf("%c", sep); |
| 2608 | if (name) printf("%s", name); |
| 2609 | else printf("%ld", (long int)(uidlist[i])); |
| 2610 | sep = ':'; |
| 2611 | } |
| 2612 | } |
| 2613 | printf("\n"); |
| 2614 | break; |
| 2615 | |
| 2616 | case opt_gidlist: |
| 2617 | gidlist = *((gid_t **)value); |
| 2618 | if (!no_labels) printf("%s =", name); |
| 2619 | if (gidlist) |
| 2620 | { |
| 2621 | uschar sep = no_labels ? '\0' : ' '; |
| 2622 | for (int i = 1; i <= (int)(gidlist[0]); i++) |
| 2623 | { |
| 2624 | uschar *name = NULL; |
| 2625 | if ((gr = getgrgid(gidlist[i]))) name = US gr->gr_name; |
| 2626 | if (sep != '\0') printf("%c", sep); |
| 2627 | if (name) printf("%s", name); |
| 2628 | else printf("%ld", (long int)(gidlist[i])); |
| 2629 | sep = ':'; |
| 2630 | } |
| 2631 | } |
| 2632 | printf("\n"); |
| 2633 | break; |
| 2634 | |
| 2635 | case opt_time: |
| 2636 | if (!no_labels) printf("%s = ", name); |
| 2637 | printf("%s\n", readconf_printtime(*((int *)value))); |
| 2638 | break; |
| 2639 | |
| 2640 | case opt_timelist: |
| 2641 | { |
| 2642 | int *list = (int *)value; |
| 2643 | if (!no_labels) printf("%s = ", name); |
| 2644 | for (int i = 0; i < list[1]; i++) |
| 2645 | printf("%s%s", i == 0 ? "" : ":", readconf_printtime(list[i+2])); |
| 2646 | printf("\n"); |
| 2647 | } |
| 2648 | break; |
| 2649 | |
| 2650 | case opt_bit: |
| 2651 | printf("%s%s\n", ((*((int *)value)) & (1 << ((ol->type >> 16) & 31)))? |
| 2652 | "" : "no_", name); |
| 2653 | break; |
| 2654 | |
| 2655 | case opt_expand_bool: |
| 2656 | sprintf(CS name2, "*expand_%.50s", name); |
| 2657 | if ((ol2 = find_option(name2, oltop, last)) && ol2->value) |
| 2658 | { |
| 2659 | void *value2 = ol2->value; |
| 2660 | if (options_block) |
| 2661 | value2 = (void *)(US options_block + (long int)value2); |
| 2662 | s = *(USS value2); |
| 2663 | if (s) |
| 2664 | { |
| 2665 | if (!no_labels) printf("%s = ", name); |
| 2666 | printf("%s\n", string_printing(s)); |
| 2667 | break; |
| 2668 | } |
| 2669 | /* s == NULL => string not set; fall through */ |
| 2670 | } |
| 2671 | |
| 2672 | /* Fall through */ |
| 2673 | |
| 2674 | case opt_bool: |
| 2675 | case opt_bool_verify: |
| 2676 | case opt_bool_set: |
| 2677 | printf("%s%s\n", (*((BOOL *)value))? "" : "no_", name); |
| 2678 | break; |
| 2679 | |
| 2680 | case opt_func: |
| 2681 | { |
| 2682 | void (*fn)() = ol->value; |
| 2683 | fn(name, NULL, no_labels ? opt_fn_print : opt_fn_print|opt_fn_print_label); |
| 2684 | break; |
| 2685 | } |
| 2686 | } |
| 2687 | return TRUE; |
| 2688 | } |
| 2689 | |
| 2690 | |
| 2691 | |
| 2692 | /************************************************* |
| 2693 | * Print value from main configuration * |
| 2694 | *************************************************/ |
| 2695 | |
| 2696 | /* This function, called as a result of encountering the -bP option, |
| 2697 | causes the value of any main configuration variable to be output if the |
| 2698 | second argument is NULL. There are some special values: |
| 2699 | |
| 2700 | all print all main configuration options |
| 2701 | config_file print the name of the configuration file |
| 2702 | (configure_file will still work, for backward |
| 2703 | compatibility) |
| 2704 | routers print the routers' configurations |
| 2705 | transports print the transports' configuration |
| 2706 | authenticators print the authenticators' configuration |
| 2707 | macros print the macros' configuration |
| 2708 | router_list print a list of router names |
| 2709 | transport_list print a list of transport names |
| 2710 | authenticator_list print a list of authentication mechanism names |
| 2711 | macro_list print a list of macro names |
| 2712 | +name print a named list item |
| 2713 | local_scan print the local_scan options |
| 2714 | config print the configuration as it is parsed |
| 2715 | environment print the used execution environment |
| 2716 | |
| 2717 | If the second argument is not NULL, it must be one of "router", "transport", |
| 2718 | "authenticator" or "macro" in which case the first argument identifies the |
| 2719 | driver whose options are to be printed. |
| 2720 | |
| 2721 | Arguments: |
| 2722 | name option name if type == NULL; else driver name |
| 2723 | type NULL or driver type name, as described above |
| 2724 | no_labels avoid the "foo = " at the start of an item |
| 2725 | |
| 2726 | Returns: Boolean success |
| 2727 | */ |
| 2728 | |
| 2729 | BOOL |
| 2730 | readconf_print(uschar *name, uschar *type, BOOL no_labels) |
| 2731 | { |
| 2732 | BOOL names_only = FALSE; |
| 2733 | optionlist *ol2 = NULL; |
| 2734 | driver_instance *d = NULL; |
| 2735 | int size = 0; |
| 2736 | |
| 2737 | if (!type) |
| 2738 | { |
| 2739 | if (*name == '+') |
| 2740 | { |
| 2741 | tree_node *t; |
| 2742 | BOOL found = FALSE; |
| 2743 | static uschar *types[] = { US"address", US"domain", US"host", |
| 2744 | US"localpart" }; |
| 2745 | static tree_node **anchors[] = { &addresslist_anchor, &domainlist_anchor, |
| 2746 | &hostlist_anchor, &localpartlist_anchor }; |
| 2747 | |
| 2748 | for (int i = 0; i < 4; i++) |
| 2749 | if ((t = tree_search(*(anchors[i]), name+1))) |
| 2750 | { |
| 2751 | found = TRUE; |
| 2752 | if (no_labels) |
| 2753 | printf("%s\n", ((namedlist_block *)(t->data.ptr))->string); |
| 2754 | else |
| 2755 | printf("%slist %s = %s\n", types[i], name+1, |
| 2756 | ((namedlist_block *)(t->data.ptr))->string); |
| 2757 | } |
| 2758 | |
| 2759 | if (!found) |
| 2760 | printf("no address, domain, host, or local part list called \"%s\" " |
| 2761 | "exists\n", name+1); |
| 2762 | |
| 2763 | return found; |
| 2764 | } |
| 2765 | |
| 2766 | if ( Ustrcmp(name, "configure_file") == 0 |
| 2767 | || Ustrcmp(name, "config_file") == 0) |
| 2768 | { |
| 2769 | printf("%s\n", CS config_main_filename); |
| 2770 | return TRUE; |
| 2771 | } |
| 2772 | |
| 2773 | if (Ustrcmp(name, "all") == 0) |
| 2774 | { |
| 2775 | for (optionlist * ol = optionlist_config; |
| 2776 | ol < optionlist_config + nelem(optionlist_config); ol++) |
| 2777 | if (!(ol->type & opt_hidden)) |
| 2778 | (void) print_ol(ol, US ol->name, NULL, |
| 2779 | optionlist_config, nelem(optionlist_config), |
| 2780 | no_labels); |
| 2781 | return TRUE; |
| 2782 | } |
| 2783 | |
| 2784 | if (Ustrcmp(name, "local_scan") == 0) |
| 2785 | { |
| 2786 | #ifndef LOCAL_SCAN_HAS_OPTIONS |
| 2787 | printf("local_scan() options are not supported\n"); |
| 2788 | return FALSE; |
| 2789 | #else |
| 2790 | for (optionlist * ol = local_scan_options; |
| 2791 | ol < local_scan_options + local_scan_options_count; ol++) |
| 2792 | (void) print_ol(ol, US ol->name, NULL, local_scan_options, |
| 2793 | local_scan_options_count, no_labels); |
| 2794 | return TRUE; |
| 2795 | #endif |
| 2796 | } |
| 2797 | |
| 2798 | if (Ustrcmp(name, "config") == 0) |
| 2799 | { |
| 2800 | print_config(f.admin_user, no_labels); |
| 2801 | return TRUE; |
| 2802 | } |
| 2803 | |
| 2804 | if (Ustrcmp(name, "routers") == 0) |
| 2805 | { |
| 2806 | type = US"router"; |
| 2807 | name = NULL; |
| 2808 | } |
| 2809 | else if (Ustrcmp(name, "transports") == 0) |
| 2810 | { |
| 2811 | type = US"transport"; |
| 2812 | name = NULL; |
| 2813 | } |
| 2814 | else if (Ustrcmp(name, "authenticators") == 0) |
| 2815 | { |
| 2816 | type = US"authenticator"; |
| 2817 | name = NULL; |
| 2818 | } |
| 2819 | else if (Ustrcmp(name, "macros") == 0) |
| 2820 | { |
| 2821 | type = US"macro"; |
| 2822 | name = NULL; |
| 2823 | } |
| 2824 | else if (Ustrcmp(name, "router_list") == 0) |
| 2825 | { |
| 2826 | type = US"router"; |
| 2827 | name = NULL; |
| 2828 | names_only = TRUE; |
| 2829 | } |
| 2830 | else if (Ustrcmp(name, "transport_list") == 0) |
| 2831 | { |
| 2832 | type = US"transport"; |
| 2833 | name = NULL; |
| 2834 | names_only = TRUE; |
| 2835 | } |
| 2836 | else if (Ustrcmp(name, "authenticator_list") == 0) |
| 2837 | { |
| 2838 | type = US"authenticator"; |
| 2839 | name = NULL; |
| 2840 | names_only = TRUE; |
| 2841 | } |
| 2842 | else if (Ustrcmp(name, "macro_list") == 0) |
| 2843 | { |
| 2844 | type = US"macro"; |
| 2845 | name = NULL; |
| 2846 | names_only = TRUE; |
| 2847 | } |
| 2848 | else if (Ustrcmp(name, "environment") == 0) |
| 2849 | { |
| 2850 | if (environ) |
| 2851 | { |
| 2852 | uschar ** p; |
| 2853 | for (p = USS environ; *p; p++) ; |
| 2854 | qsort(environ, p - USS environ, sizeof(*p), string_compare_by_pointer); |
| 2855 | |
| 2856 | for (p = USS environ; *p; p++) |
| 2857 | { |
| 2858 | uschar * q; |
| 2859 | if (no_labels && (q = Ustrchr(*p, '='))) *q = '\0'; |
| 2860 | puts(CS *p); |
| 2861 | } |
| 2862 | } |
| 2863 | return TRUE; |
| 2864 | } |
| 2865 | |
| 2866 | else |
| 2867 | return print_ol(find_option(name, |
| 2868 | optionlist_config, nelem(optionlist_config)), |
| 2869 | name, NULL, optionlist_config, nelem(optionlist_config), no_labels); |
| 2870 | } |
| 2871 | |
| 2872 | /* Handle the options for a router or transport. Skip options that are flagged |
| 2873 | as hidden. Some of these are options with names starting with '*', used for |
| 2874 | internal alternative representations of other options (which the printing |
| 2875 | function will sort out). Others are synonyms kept for backward compatibility. |
| 2876 | */ |
| 2877 | |
| 2878 | if (Ustrcmp(type, "router") == 0) |
| 2879 | { |
| 2880 | d = (driver_instance *)routers; |
| 2881 | ol2 = optionlist_routers; |
| 2882 | size = optionlist_routers_size; |
| 2883 | } |
| 2884 | else if (Ustrcmp(type, "transport") == 0) |
| 2885 | { |
| 2886 | d = (driver_instance *)transports; |
| 2887 | ol2 = optionlist_transports; |
| 2888 | size = optionlist_transports_size; |
| 2889 | } |
| 2890 | else if (Ustrcmp(type, "authenticator") == 0) |
| 2891 | { |
| 2892 | d = (driver_instance *)auths; |
| 2893 | ol2 = optionlist_auths; |
| 2894 | size = optionlist_auths_size; |
| 2895 | } |
| 2896 | |
| 2897 | else if (Ustrcmp(type, "macro") == 0) |
| 2898 | { |
| 2899 | /* People store passwords in macros and they were previously not available |
| 2900 | for printing. So we have an admin_users restriction. */ |
| 2901 | if (!f.admin_user) |
| 2902 | { |
| 2903 | fprintf(stderr, "exim: permission denied\n"); |
| 2904 | return FALSE; |
| 2905 | } |
| 2906 | for (macro_item * m = macros; m; m = m->next) |
| 2907 | if (!name || Ustrcmp(name, m->name) == 0) |
| 2908 | { |
| 2909 | if (names_only) |
| 2910 | printf("%s\n", CS m->name); |
| 2911 | else if (no_labels) |
| 2912 | printf("%s\n", CS m->replacement); |
| 2913 | else |
| 2914 | printf("%s=%s\n", CS m->name, CS m->replacement); |
| 2915 | if (name) |
| 2916 | return TRUE; |
| 2917 | } |
| 2918 | if (!name) return TRUE; |
| 2919 | |
| 2920 | printf("%s %s not found\n", type, name); |
| 2921 | return FALSE; |
| 2922 | } |
| 2923 | |
| 2924 | if (names_only) |
| 2925 | { |
| 2926 | for (; d; d = d->next) printf("%s\n", CS d->name); |
| 2927 | return TRUE; |
| 2928 | } |
| 2929 | |
| 2930 | /* Either search for a given driver, or print all of them */ |
| 2931 | |
| 2932 | for (; d; d = d->next) |
| 2933 | { |
| 2934 | BOOL rc = FALSE; |
| 2935 | if (!name) |
| 2936 | printf("\n%s %s:\n", d->name, type); |
| 2937 | else if (Ustrcmp(d->name, name) != 0) continue; |
| 2938 | |
| 2939 | for (optionlist * ol = ol2; ol < ol2 + size; ol++) |
| 2940 | if (!(ol->type & opt_hidden)) |
| 2941 | rc |= print_ol(ol, US ol->name, d, ol2, size, no_labels); |
| 2942 | |
| 2943 | for (optionlist * ol = d->info->options; |
| 2944 | ol < d->info->options + *(d->info->options_count); ol++) |
| 2945 | if (!(ol->type & opt_hidden)) |
| 2946 | rc |= print_ol(ol, US ol->name, d, d->info->options, |
| 2947 | *d->info->options_count, no_labels); |
| 2948 | |
| 2949 | if (name) return rc; |
| 2950 | } |
| 2951 | if (!name) return TRUE; |
| 2952 | |
| 2953 | printf("%s %s not found\n", type, name); |
| 2954 | return FALSE; |
| 2955 | } |
| 2956 | |
| 2957 | |
| 2958 | |
| 2959 | /************************************************* |
| 2960 | * Read a named list item * |
| 2961 | *************************************************/ |
| 2962 | |
| 2963 | /* This function reads a name and a list (i.e. string). The name is used to |
| 2964 | save the list in a tree, sorted by its name. Each entry also has a number, |
| 2965 | which can be used for caching tests, but if the string contains any expansion |
| 2966 | items other than $key, the number is set negative to inhibit caching. This |
| 2967 | mechanism is used for domain, host, and address lists that are referenced by |
| 2968 | the "+name" syntax. |
| 2969 | |
| 2970 | Arguments: |
| 2971 | anchorp points to the tree anchor |
| 2972 | numberp points to the current number for this tree |
| 2973 | max the maximum number permitted |
| 2974 | s the text of the option line, starting immediately after the name |
| 2975 | of the list type |
| 2976 | tname the name of the list type, for messages |
| 2977 | |
| 2978 | Returns: nothing |
| 2979 | */ |
| 2980 | |
| 2981 | static void |
| 2982 | read_named_list(tree_node **anchorp, int *numberp, int max, uschar *s, |
| 2983 | uschar *tname) |
| 2984 | { |
| 2985 | BOOL forcecache = FALSE; |
| 2986 | uschar *ss; |
| 2987 | tree_node *t; |
| 2988 | namedlist_block *nb = store_get(sizeof(namedlist_block), FALSE); |
| 2989 | |
| 2990 | if (Ustrncmp(s, "_cache", 6) == 0) |
| 2991 | { |
| 2992 | forcecache = TRUE; |
| 2993 | s += 6; |
| 2994 | } |
| 2995 | |
| 2996 | if (!isspace(*s)) |
| 2997 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unrecognized configuration line"); |
| 2998 | |
| 2999 | if (*numberp >= max) |
| 3000 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many named %ss (max is %d)\n", |
| 3001 | tname, max); |
| 3002 | |
| 3003 | while (isspace(*s)) s++; |
| 3004 | ss = s; |
| 3005 | while (isalnum(*s) || *s == '_') s++; |
| 3006 | t = store_get(sizeof(tree_node) + s-ss, is_tainted(ss)); |
| 3007 | Ustrncpy(t->name, ss, s-ss); |
| 3008 | t->name[s-ss] = 0; |
| 3009 | while (isspace(*s)) s++; |
| 3010 | |
| 3011 | if (!tree_insertnode(anchorp, t)) |
| 3012 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 3013 | "duplicate name \"%s\" for a named %s", t->name, tname); |
| 3014 | |
| 3015 | t->data.ptr = nb; |
| 3016 | nb->number = *numberp; |
| 3017 | *numberp += 1; |
| 3018 | |
| 3019 | if (*s++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 3020 | "missing '=' after \"%s\"", t->name); |
| 3021 | while (isspace(*s)) s++; |
| 3022 | nb->string = read_string(s, t->name); |
| 3023 | nb->cache_data = NULL; |
| 3024 | |
| 3025 | /* Check the string for any expansions; if any are found, mark this list |
| 3026 | uncacheable unless the user has explicited forced caching. */ |
| 3027 | |
| 3028 | if (!forcecache && Ustrchr(nb->string, '$') != NULL) nb->number = -1; |
| 3029 | } |
| 3030 | |
| 3031 | |
| 3032 | |
| 3033 | |
| 3034 | /************************************************* |
| 3035 | * Unpick data for a rate limit * |
| 3036 | *************************************************/ |
| 3037 | |
| 3038 | /* This function is called to unpick smtp_ratelimit_{mail,rcpt} into four |
| 3039 | separate values. |
| 3040 | |
| 3041 | Arguments: |
| 3042 | s string, in the form t,b,f,l |
| 3043 | where t is the threshold (integer) |
| 3044 | b is the initial delay (time) |
| 3045 | f is the multiplicative factor (fixed point) |
| 3046 | k is the maximum time (time) |
| 3047 | threshold where to store threshold |
| 3048 | base where to store base in milliseconds |
| 3049 | factor where to store factor in milliseconds |
| 3050 | limit where to store limit |
| 3051 | |
| 3052 | Returns: nothing (panics on error) |
| 3053 | */ |
| 3054 | |
| 3055 | static void |
| 3056 | unpick_ratelimit(uschar *s, int *threshold, int *base, double *factor, |
| 3057 | int *limit) |
| 3058 | { |
| 3059 | uschar bstring[16], lstring[16]; |
| 3060 | |
| 3061 | if (sscanf(CS s, "%d, %15[0123456789smhdw.], %lf, %15s", threshold, bstring, |
| 3062 | factor, lstring) == 4) |
| 3063 | { |
| 3064 | *base = readconf_readtime(bstring, 0, TRUE); |
| 3065 | *limit = readconf_readtime(lstring, 0, TRUE); |
| 3066 | if (*base >= 0 && *limit >= 0) return; |
| 3067 | } |
| 3068 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "malformed ratelimit data: %s", s); |
| 3069 | } |
| 3070 | |
| 3071 | |
| 3072 | |
| 3073 | |
| 3074 | /************************************************* |
| 3075 | * Drop privs for checking TLS config * |
| 3076 | *************************************************/ |
| 3077 | |
| 3078 | /* We want to validate TLS options during readconf, but do not want to be |
| 3079 | root when we call into the TLS library, in case of library linkage errors |
| 3080 | which cause segfaults; before this check, those were always done as the Exim |
| 3081 | runtime user and it makes sense to continue with that. |
| 3082 | |
| 3083 | Assumes: tls_require_ciphers has been set, if it will be |
| 3084 | exim_user has been set, if it will be |
| 3085 | exim_group has been set, if it will be |
| 3086 | |
| 3087 | Returns: bool for "okay"; false will cause caller to immediately exit. |
| 3088 | */ |
| 3089 | |
| 3090 | #ifndef DISABLE_TLS |
| 3091 | static BOOL |
| 3092 | tls_dropprivs_validate_require_cipher(BOOL nowarn) |
| 3093 | { |
| 3094 | const uschar *errmsg; |
| 3095 | pid_t pid; |
| 3096 | int rc, status; |
| 3097 | void (*oldsignal)(int); |
| 3098 | |
| 3099 | /* If TLS will never be used, no point checking ciphers */ |
| 3100 | |
| 3101 | if ( !tls_advertise_hosts |
| 3102 | || !*tls_advertise_hosts |
| 3103 | || Ustrcmp(tls_advertise_hosts, ":") == 0 |
| 3104 | ) |
| 3105 | return TRUE; |
| 3106 | else if (!nowarn && !tls_certificate) |
| 3107 | log_write(0, LOG_MAIN, |
| 3108 | "Warning: No server certificate defined; will use a selfsigned one.\n" |
| 3109 | " Suggested action: either install a certificate or change tls_advertise_hosts option"); |
| 3110 | |
| 3111 | oldsignal = signal(SIGCHLD, SIG_DFL); |
| 3112 | |
| 3113 | fflush(NULL); |
| 3114 | if ((pid = fork()) < 0) |
| 3115 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "fork failed for TLS check"); |
| 3116 | |
| 3117 | if (pid == 0) |
| 3118 | { |
| 3119 | /* in some modes, will have dropped privilege already */ |
| 3120 | if (!geteuid()) |
| 3121 | exim_setugid(exim_uid, exim_gid, FALSE, |
| 3122 | US"calling tls_validate_require_cipher"); |
| 3123 | |
| 3124 | if ((errmsg = tls_validate_require_cipher())) |
| 3125 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3126 | "tls_require_ciphers invalid: %s", errmsg); |
| 3127 | fflush(NULL); |
| 3128 | exim_underbar_exit(0); |
| 3129 | } |
| 3130 | |
| 3131 | do { |
| 3132 | rc = waitpid(pid, &status, 0); |
| 3133 | } while (rc < 0 && errno == EINTR); |
| 3134 | |
| 3135 | DEBUG(D_tls) |
| 3136 | debug_printf("tls_validate_require_cipher child %d ended: status=0x%x\n", |
| 3137 | (int)pid, status); |
| 3138 | |
| 3139 | signal(SIGCHLD, oldsignal); |
| 3140 | |
| 3141 | return status == 0; |
| 3142 | } |
| 3143 | #endif /*DISABLE_TLS*/ |
| 3144 | |
| 3145 | |
| 3146 | |
| 3147 | |
| 3148 | /************************************************* |
| 3149 | * Read main configuration options * |
| 3150 | *************************************************/ |
| 3151 | |
| 3152 | /* This function is the first to be called for configuration reading. It |
| 3153 | opens the configuration file and reads general configuration settings until |
| 3154 | it reaches the end of the configuration section. The file is then left open so |
| 3155 | that the remaining configuration data can subsequently be read if needed for |
| 3156 | this run of Exim. |
| 3157 | |
| 3158 | The configuration file must be owned either by root or exim, and be writeable |
| 3159 | only by root or uid/gid exim. The values for Exim's uid and gid can be changed |
| 3160 | in the config file, so the test is done on the compiled in values. A slight |
| 3161 | anomaly, to be carefully documented. |
| 3162 | |
| 3163 | The name of the configuration file is taken from a list that is included in the |
| 3164 | binary of Exim. It can be altered from the command line, but if that is done, |
| 3165 | root privilege is immediately withdrawn unless the caller is root or exim. |
| 3166 | The first file on the list that exists is used. |
| 3167 | |
| 3168 | For use on multiple systems that share file systems, first look for a |
| 3169 | configuration file whose name has the current node name on the end. If that is |
| 3170 | not found, try the generic name. For really contorted configurations, that run |
| 3171 | multiple Exims with different uid settings, first try adding the effective uid |
| 3172 | before the node name. These complications are going to waste resources on most |
| 3173 | systems. Therefore they are available only when requested by compile-time |
| 3174 | options. */ |
| 3175 | |
| 3176 | void |
| 3177 | readconf_main(BOOL nowarn) |
| 3178 | { |
| 3179 | int sep = 0; |
| 3180 | struct stat statbuf; |
| 3181 | uschar *s, *filename; |
| 3182 | const uschar *list = config_main_filelist; |
| 3183 | |
| 3184 | /* Loop through the possible file names */ |
| 3185 | |
| 3186 | while((filename = string_nextinlist(&list, &sep, big_buffer, big_buffer_size))) |
| 3187 | { |
| 3188 | |
| 3189 | /* Cut out all the fancy processing unless specifically wanted */ |
| 3190 | |
| 3191 | #if defined(CONFIGURE_FILE_USE_NODE) || defined(CONFIGURE_FILE_USE_EUID) |
| 3192 | uschar *suffix = filename + Ustrlen(filename); |
| 3193 | |
| 3194 | /* Try for the node-specific file if a node name exists */ |
| 3195 | |
| 3196 | #ifdef CONFIGURE_FILE_USE_NODE |
| 3197 | struct utsname uts; |
| 3198 | if (uname(&uts) >= 0) |
| 3199 | { |
| 3200 | #ifdef CONFIGURE_FILE_USE_EUID |
| 3201 | sprintf(CS suffix, ".%ld.%.256s", (long int)original_euid, uts.nodename); |
| 3202 | config_file = Ufopen(filename, "rb"); |
| 3203 | if (config_file == NULL) |
| 3204 | #endif /* CONFIGURE_FILE_USE_EUID */ |
| 3205 | { |
| 3206 | sprintf(CS suffix, ".%.256s", uts.nodename); |
| 3207 | config_file = Ufopen(filename, "rb"); |
| 3208 | } |
| 3209 | } |
| 3210 | #endif /* CONFIGURE_FILE_USE_NODE */ |
| 3211 | |
| 3212 | /* Otherwise, try the generic name, possibly with the euid added */ |
| 3213 | |
| 3214 | #ifdef CONFIGURE_FILE_USE_EUID |
| 3215 | if (config_file == NULL) |
| 3216 | { |
| 3217 | sprintf(CS suffix, ".%ld", (long int)original_euid); |
| 3218 | config_file = Ufopen(filename, "rb"); |
| 3219 | } |
| 3220 | #endif /* CONFIGURE_FILE_USE_EUID */ |
| 3221 | |
| 3222 | /* Finally, try the unadorned name */ |
| 3223 | |
| 3224 | if (config_file == NULL) |
| 3225 | { |
| 3226 | *suffix = 0; |
| 3227 | config_file = Ufopen(filename, "rb"); |
| 3228 | } |
| 3229 | #else /* if neither defined */ |
| 3230 | |
| 3231 | /* This is the common case when the fancy processing is not included. */ |
| 3232 | |
| 3233 | config_file = Ufopen(filename, "rb"); |
| 3234 | #endif |
| 3235 | |
| 3236 | /* If the file does not exist, continue to try any others. For any other |
| 3237 | error, break out (and die). */ |
| 3238 | |
| 3239 | if (config_file != NULL || errno != ENOENT) break; |
| 3240 | } |
| 3241 | |
| 3242 | /* On success, save the name for verification; config_filename is used when |
| 3243 | logging configuration errors (it changes for .included files) whereas |
| 3244 | config_main_filename is the name shown by -bP. Failure to open a configuration |
| 3245 | file is a serious disaster. */ |
| 3246 | |
| 3247 | if (config_file) |
| 3248 | { |
| 3249 | uschar *last_slash = Ustrrchr(filename, '/'); |
| 3250 | config_filename = config_main_filename = string_copy(filename); |
| 3251 | |
| 3252 | /* The config_main_directory we need for the $config_dir expansion. |
| 3253 | config_main_filename we need for $config_file expansion. |
| 3254 | And config_dir is the directory of the current configuration, used for |
| 3255 | relative .includes. We do need to know it's name, as we change our working |
| 3256 | directory later. */ |
| 3257 | |
| 3258 | if (filename[0] == '/') |
| 3259 | config_main_directory = last_slash == filename ? US"/" : string_copyn(filename, last_slash - filename); |
| 3260 | else |
| 3261 | { |
| 3262 | /* relative configuration file name: working dir + / + basename(filename) */ |
| 3263 | |
| 3264 | uschar buf[PATH_MAX]; |
| 3265 | gstring * g; |
| 3266 | |
| 3267 | if (os_getcwd(buf, PATH_MAX) == NULL) |
| 3268 | { |
| 3269 | perror("exim: getcwd"); |
| 3270 | exit(EXIT_FAILURE); |
| 3271 | } |
| 3272 | g = string_cat(NULL, buf); |
| 3273 | |
| 3274 | /* If the dir does not end with a "/", append one */ |
| 3275 | if (g->s[g->ptr-1] != '/') |
| 3276 | g = string_catn(g, US"/", 1); |
| 3277 | |
| 3278 | /* If the config file contains a "/", extract the directory part */ |
| 3279 | if (last_slash) |
| 3280 | g = string_catn(g, filename, last_slash - filename); |
| 3281 | |
| 3282 | config_main_directory = string_from_gstring(g); |
| 3283 | } |
| 3284 | config_directory = config_main_directory; |
| 3285 | } |
| 3286 | else |
| 3287 | { |
| 3288 | if (filename == NULL) |
| 3289 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "non-existent configuration file(s): " |
| 3290 | "%s", config_main_filelist); |
| 3291 | else |
| 3292 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "%s", string_open_failed(errno, |
| 3293 | "configuration file %s", filename)); |
| 3294 | } |
| 3295 | |
| 3296 | /* Now, once we found and opened our configuration file, we change the directory |
| 3297 | to a safe place. Later we change to $spool_directory. */ |
| 3298 | |
| 3299 | if (Uchdir("/") < 0) |
| 3300 | { |
| 3301 | perror("exim: chdir `/': "); |
| 3302 | exit(EXIT_FAILURE); |
| 3303 | } |
| 3304 | |
| 3305 | /* Check the status of the file we have opened, if we have retained root |
| 3306 | privileges and the file isn't /dev/null (which *should* be 0666). */ |
| 3307 | |
| 3308 | if (f.trusted_config && Ustrcmp(filename, US"/dev/null")) |
| 3309 | { |
| 3310 | if (fstat(fileno(config_file), &statbuf) != 0) |
| 3311 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to stat configuration file %s", |
| 3312 | big_buffer); |
| 3313 | |
| 3314 | if ((statbuf.st_uid != root_uid /* owner not root */ |
| 3315 | #ifdef CONFIGURE_OWNER |
| 3316 | && statbuf.st_uid != config_uid /* owner not the special one */ |
| 3317 | #endif |
| 3318 | ) || /* or */ |
| 3319 | (statbuf.st_gid != root_gid /* group not root & */ |
| 3320 | #ifdef CONFIGURE_GROUP |
| 3321 | && statbuf.st_gid != config_gid /* group not the special one */ |
| 3322 | #endif |
| 3323 | && (statbuf.st_mode & 020) != 0) || /* group writeable */ |
| 3324 | /* or */ |
| 3325 | ((statbuf.st_mode & 2) != 0)) /* world writeable */ |
| 3326 | |
| 3327 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Exim configuration file %s has the " |
| 3328 | "wrong owner, group, or mode", big_buffer); |
| 3329 | } |
| 3330 | |
| 3331 | /* Do a dummy store-allocation of a size related to the (toplevel) file size. |
| 3332 | This assumes we will need this much storage to handle all the allocations |
| 3333 | during startup; it won't help when .include is being used. When it does, it |
| 3334 | will cut down on the number of store blocks (and malloc calls, and sbrk |
| 3335 | syscalls). It also assume we're on the relevant pool. */ |
| 3336 | |
| 3337 | if (statbuf.st_size > 8192) |
| 3338 | { |
| 3339 | rmark r = store_mark(); |
| 3340 | void * dummy = store_get((int)statbuf.st_size, FALSE); |
| 3341 | store_reset(r); |
| 3342 | } |
| 3343 | |
| 3344 | /* Process the main configuration settings. They all begin with a lower case |
| 3345 | letter. If we see something starting with an upper case letter, it is taken as |
| 3346 | a macro definition. */ |
| 3347 | |
| 3348 | while ((s = get_config_line())) |
| 3349 | { |
| 3350 | if (config_lineno == 1 && Ustrstr(s, "\xef\xbb\xbf") == s) |
| 3351 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 3352 | "found unexpected BOM (Byte Order Mark)"); |
| 3353 | |
| 3354 | if (isupper(s[0])) |
| 3355 | { if (!macro_read_assignment(s)) exim_exit(EXIT_FAILURE, US""); } |
| 3356 | |
| 3357 | else if (Ustrncmp(s, "domainlist", 10) == 0) |
| 3358 | read_named_list(&domainlist_anchor, &domainlist_count, |
| 3359 | MAX_NAMED_LIST, s+10, US"domain list"); |
| 3360 | |
| 3361 | else if (Ustrncmp(s, "hostlist", 8) == 0) |
| 3362 | read_named_list(&hostlist_anchor, &hostlist_count, |
| 3363 | MAX_NAMED_LIST, s+8, US"host list"); |
| 3364 | |
| 3365 | else if (Ustrncmp(s, US"addresslist", 11) == 0) |
| 3366 | read_named_list(&addresslist_anchor, &addresslist_count, |
| 3367 | MAX_NAMED_LIST, s+11, US"address list"); |
| 3368 | |
| 3369 | else if (Ustrncmp(s, US"localpartlist", 13) == 0) |
| 3370 | read_named_list(&localpartlist_anchor, &localpartlist_count, |
| 3371 | MAX_NAMED_LIST, s+13, US"local part list"); |
| 3372 | |
| 3373 | else |
| 3374 | (void) readconf_handle_option(s, optionlist_config, optionlist_config_size, |
| 3375 | NULL, US"main option \"%s\" unknown"); |
| 3376 | } |
| 3377 | |
| 3378 | |
| 3379 | /* If local_sender_retain is set, local_from_check must be unset. */ |
| 3380 | |
| 3381 | if (local_sender_retain && local_from_check) |
| 3382 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "both local_from_check and " |
| 3383 | "local_sender_retain are set; this combination is not allowed"); |
| 3384 | |
| 3385 | /* If the timezone string is empty, set it to NULL, implying no TZ variable |
| 3386 | wanted. */ |
| 3387 | |
| 3388 | if (timezone_string != NULL && *timezone_string == 0) timezone_string = NULL; |
| 3389 | |
| 3390 | /* The max retry interval must not be greater than 24 hours. */ |
| 3391 | |
| 3392 | if (retry_interval_max > 24*60*60) retry_interval_max = 24*60*60; |
| 3393 | |
| 3394 | /* remote_max_parallel must be > 0 */ |
| 3395 | |
| 3396 | if (remote_max_parallel <= 0) remote_max_parallel = 1; |
| 3397 | |
| 3398 | /* Save the configured setting of freeze_tell, so we can re-instate it at the |
| 3399 | start of a new SMTP message. */ |
| 3400 | |
| 3401 | freeze_tell_config = freeze_tell; |
| 3402 | |
| 3403 | /* The primary host name may be required for expansion of spool_directory |
| 3404 | and log_file_path, so make sure it is set asap. It is obtained from uname(), |
| 3405 | but if that yields an unqualified value, make a FQDN by using gethostbyname to |
| 3406 | canonize it. Some people like upper case letters in their host names, so we |
| 3407 | don't force the case. */ |
| 3408 | |
| 3409 | if (primary_hostname == NULL) |
| 3410 | { |
| 3411 | const uschar *hostname; |
| 3412 | struct utsname uts; |
| 3413 | if (uname(&uts) < 0) |
| 3414 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "uname() failed to yield host name"); |
| 3415 | hostname = US uts.nodename; |
| 3416 | |
| 3417 | if (Ustrchr(hostname, '.') == NULL) |
| 3418 | { |
| 3419 | int af = AF_INET; |
| 3420 | struct hostent *hostdata; |
| 3421 | |
| 3422 | #if HAVE_IPV6 |
| 3423 | if (!disable_ipv6 && (dns_ipv4_lookup == NULL || |
| 3424 | match_isinlist(hostname, CUSS &dns_ipv4_lookup, 0, NULL, NULL, |
| 3425 | MCL_DOMAIN, TRUE, NULL) != OK)) |
| 3426 | af = AF_INET6; |
| 3427 | #else |
| 3428 | af = AF_INET; |
| 3429 | #endif |
| 3430 | |
| 3431 | for (;;) |
| 3432 | { |
| 3433 | #if HAVE_IPV6 |
| 3434 | #if HAVE_GETIPNODEBYNAME |
| 3435 | int error_num; |
| 3436 | hostdata = getipnodebyname(CS hostname, af, 0, &error_num); |
| 3437 | #else |
| 3438 | hostdata = gethostbyname2(CS hostname, af); |
| 3439 | #endif |
| 3440 | #else |
| 3441 | hostdata = gethostbyname(CS hostname); |
| 3442 | #endif |
| 3443 | |
| 3444 | if (hostdata != NULL) |
| 3445 | { |
| 3446 | hostname = US hostdata->h_name; |
| 3447 | break; |
| 3448 | } |
| 3449 | |
| 3450 | if (af == AF_INET) break; |
| 3451 | af = AF_INET; |
| 3452 | } |
| 3453 | } |
| 3454 | |
| 3455 | primary_hostname = string_copy(hostname); |
| 3456 | } |
| 3457 | |
| 3458 | /* Set up default value for smtp_active_hostname */ |
| 3459 | |
| 3460 | smtp_active_hostname = primary_hostname; |
| 3461 | |
| 3462 | /* If spool_directory wasn't set in the build-time configuration, it must have |
| 3463 | got set above. Of course, writing to the log may not work if log_file_path is |
| 3464 | not set, but it will at least get to syslog or somewhere, with any luck. */ |
| 3465 | |
| 3466 | if (*spool_directory == 0) |
| 3467 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "spool_directory undefined: cannot " |
| 3468 | "proceed"); |
| 3469 | |
| 3470 | /* Expand the spool directory name; it may, for example, contain the primary |
| 3471 | host name. Same comment about failure. */ |
| 3472 | |
| 3473 | s = expand_string(spool_directory); |
| 3474 | if (s == NULL) |
| 3475 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand spool_directory " |
| 3476 | "\"%s\": %s", spool_directory, expand_string_message); |
| 3477 | spool_directory = s; |
| 3478 | |
| 3479 | /* Expand log_file_path, which must contain "%s" in any component that isn't |
| 3480 | the null string or "syslog". It is also allowed to contain one instance of %D |
| 3481 | or %M. However, it must NOT contain % followed by anything else. */ |
| 3482 | |
| 3483 | if (*log_file_path != 0) |
| 3484 | { |
| 3485 | const uschar *ss, *sss; |
| 3486 | int sep = ':'; /* Fixed for log file path */ |
| 3487 | s = expand_string(log_file_path); |
| 3488 | if (s == NULL) |
| 3489 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand log_file_path " |
| 3490 | "\"%s\": %s", log_file_path, expand_string_message); |
| 3491 | |
| 3492 | ss = s; |
| 3493 | while ((sss = string_nextinlist(&ss,&sep,big_buffer,big_buffer_size)) != NULL) |
| 3494 | { |
| 3495 | uschar *t; |
| 3496 | if (sss[0] == 0 || Ustrcmp(sss, "syslog") == 0) continue; |
| 3497 | t = Ustrstr(sss, "%s"); |
| 3498 | if (t == NULL) |
| 3499 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" does not " |
| 3500 | "contain \"%%s\"", sss); |
| 3501 | *t = 'X'; |
| 3502 | t = Ustrchr(sss, '%'); |
| 3503 | if (t != NULL) |
| 3504 | { |
| 3505 | if ((t[1] != 'D' && t[1] != 'M') || Ustrchr(t+2, '%') != NULL) |
| 3506 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" contains " |
| 3507 | "unexpected \"%%\" character", s); |
| 3508 | } |
| 3509 | } |
| 3510 | |
| 3511 | log_file_path = s; |
| 3512 | } |
| 3513 | |
| 3514 | /* Interpret syslog_facility into an integer argument for 'ident' param to |
| 3515 | openlog(). Default is LOG_MAIL set in globals.c. Allow the user to omit the |
| 3516 | leading "log_". */ |
| 3517 | |
| 3518 | if (syslog_facility_str) |
| 3519 | { |
| 3520 | int i; |
| 3521 | uschar *s = syslog_facility_str; |
| 3522 | |
| 3523 | if ((Ustrlen(syslog_facility_str) >= 4) && |
| 3524 | (strncmpic(syslog_facility_str, US"log_", 4) == 0)) |
| 3525 | s += 4; |
| 3526 | |
| 3527 | for (i = 0; i < syslog_list_size; i++) |
| 3528 | if (strcmpic(s, syslog_list[i].name) == 0) |
| 3529 | { |
| 3530 | syslog_facility = syslog_list[i].value; |
| 3531 | break; |
| 3532 | } |
| 3533 | |
| 3534 | if (i >= syslog_list_size) |
| 3535 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3536 | "failed to interpret syslog_facility \"%s\"", syslog_facility_str); |
| 3537 | } |
| 3538 | |
| 3539 | /* Expand pid_file_path */ |
| 3540 | |
| 3541 | if (*pid_file_path != 0) |
| 3542 | { |
| 3543 | if (!(s = expand_string(pid_file_path))) |
| 3544 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand pid_file_path " |
| 3545 | "\"%s\": %s", pid_file_path, expand_string_message); |
| 3546 | pid_file_path = s; |
| 3547 | } |
| 3548 | |
| 3549 | /* Set default value of process_log_path */ |
| 3550 | |
| 3551 | if (!process_log_path || *process_log_path =='\0') |
| 3552 | process_log_path = string_sprintf("%s/exim-process.info", spool_directory); |
| 3553 | |
| 3554 | /* Compile the regex for matching a UUCP-style "From_" line in an incoming |
| 3555 | message. */ |
| 3556 | |
| 3557 | regex_From = regex_must_compile(uucp_from_pattern, FALSE, TRUE); |
| 3558 | |
| 3559 | /* Unpick the SMTP rate limiting options, if set */ |
| 3560 | |
| 3561 | if (smtp_ratelimit_mail) |
| 3562 | unpick_ratelimit(smtp_ratelimit_mail, &smtp_rlm_threshold, |
| 3563 | &smtp_rlm_base, &smtp_rlm_factor, &smtp_rlm_limit); |
| 3564 | |
| 3565 | if (smtp_ratelimit_rcpt) |
| 3566 | unpick_ratelimit(smtp_ratelimit_rcpt, &smtp_rlr_threshold, |
| 3567 | &smtp_rlr_base, &smtp_rlr_factor, &smtp_rlr_limit); |
| 3568 | |
| 3569 | /* The qualify domains default to the primary host name */ |
| 3570 | |
| 3571 | if (!qualify_domain_sender) |
| 3572 | qualify_domain_sender = primary_hostname; |
| 3573 | if (!qualify_domain_recipient) |
| 3574 | qualify_domain_recipient = qualify_domain_sender; |
| 3575 | |
| 3576 | /* Setting system_filter_user in the configuration sets the gid as well if a |
| 3577 | name is given, but a numerical value does not. */ |
| 3578 | |
| 3579 | if (system_filter_uid_set && !system_filter_gid_set) |
| 3580 | { |
| 3581 | struct passwd *pw = getpwuid(system_filter_uid); |
| 3582 | if (!pw) |
| 3583 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Failed to look up uid %ld", |
| 3584 | (long int)system_filter_uid); |
| 3585 | system_filter_gid = pw->pw_gid; |
| 3586 | system_filter_gid_set = TRUE; |
| 3587 | } |
| 3588 | |
| 3589 | /* If the errors_reply_to field is set, check that it is syntactically valid |
| 3590 | and ensure it contains a domain. */ |
| 3591 | |
| 3592 | if (errors_reply_to) |
| 3593 | { |
| 3594 | uschar *errmess; |
| 3595 | int start, end, domain; |
| 3596 | uschar *recipient = parse_extract_address(errors_reply_to, &errmess, |
| 3597 | &start, &end, &domain, FALSE); |
| 3598 | |
| 3599 | if (!recipient) |
| 3600 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3601 | "error in errors_reply_to (%s): %s", errors_reply_to, errmess); |
| 3602 | |
| 3603 | if (domain == 0) |
| 3604 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3605 | "errors_reply_to (%s) does not contain a domain", errors_reply_to); |
| 3606 | } |
| 3607 | |
| 3608 | /* If smtp_accept_queue or smtp_accept_max_per_host is set, then |
| 3609 | smtp_accept_max must also be set. */ |
| 3610 | |
| 3611 | if (smtp_accept_max == 0 && |
| 3612 | (smtp_accept_queue > 0 || smtp_accept_max_per_host != NULL)) |
| 3613 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3614 | "smtp_accept_max must be set if smtp_accept_queue or " |
| 3615 | "smtp_accept_max_per_host is set"); |
| 3616 | |
| 3617 | /* Set up the host number if anything is specified. It is an expanded string |
| 3618 | so that it can be computed from the host name, for example. We do this last |
| 3619 | so as to ensure that everything else is set up before the expansion. */ |
| 3620 | |
| 3621 | if (host_number_string) |
| 3622 | { |
| 3623 | long int n; |
| 3624 | uschar *end; |
| 3625 | uschar *s = expand_string(host_number_string); |
| 3626 | |
| 3627 | if (!s) |
| 3628 | log_write(0, LOG_MAIN|LOG_PANIC_DIE, |
| 3629 | "failed to expand localhost_number \"%s\": %s", |
| 3630 | host_number_string, expand_string_message); |
| 3631 | n = Ustrtol(s, &end, 0); |
| 3632 | while (isspace(*end)) end++; |
| 3633 | if (*end != 0) |
| 3634 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3635 | "localhost_number value is not a number: %s", s); |
| 3636 | if (n > LOCALHOST_MAX) |
| 3637 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3638 | "localhost_number is greater than the maximum allowed value (%d)", |
| 3639 | LOCALHOST_MAX); |
| 3640 | host_number = n; |
| 3641 | } |
| 3642 | |
| 3643 | #ifndef DISABLE_TLS |
| 3644 | /* If tls_verify_hosts is set, tls_verify_certificates must also be set */ |
| 3645 | |
| 3646 | if ((tls_verify_hosts || tls_try_verify_hosts) && !tls_verify_certificates) |
| 3647 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3648 | "tls_%sverify_hosts is set, but tls_verify_certificates is not set", |
| 3649 | tls_verify_hosts ? "" : "try_"); |
| 3650 | |
| 3651 | /* This also checks that the library linkage is working and we can call |
| 3652 | routines in it, so call even if tls_require_ciphers is unset */ |
| 3653 | if (!tls_dropprivs_validate_require_cipher(nowarn)) |
| 3654 | exit(1); |
| 3655 | |
| 3656 | /* Magic number: at time of writing, 1024 has been the long-standing value |
| 3657 | used by so many clients, and what Exim used to use always, that it makes |
| 3658 | sense to just min-clamp this max-clamp at that. */ |
| 3659 | if (tls_dh_max_bits < 1024) |
| 3660 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3661 | "tls_dh_max_bits is too small, must be at least 1024 for interop"); |
| 3662 | |
| 3663 | /* If openssl_options is set, validate it */ |
| 3664 | if (openssl_options) |
| 3665 | { |
| 3666 | # ifdef USE_GNUTLS |
| 3667 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3668 | "openssl_options is set but we're using GnuTLS"); |
| 3669 | # else |
| 3670 | long dummy; |
| 3671 | if (!tls_openssl_options_parse(openssl_options, &dummy)) |
| 3672 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3673 | "openssl_options parse error: %s", openssl_options); |
| 3674 | # endif |
| 3675 | } |
| 3676 | #endif /*DISABLE_TLS*/ |
| 3677 | |
| 3678 | if (!nowarn && !keep_environment && environ && *environ) |
| 3679 | log_write(0, LOG_MAIN, |
| 3680 | "Warning: purging the environment.\n" |
| 3681 | " Suggested action: use keep_environment."); |
| 3682 | } |
| 3683 | |
| 3684 | |
| 3685 | |
| 3686 | /************************************************* |
| 3687 | * Initialize one driver * |
| 3688 | *************************************************/ |
| 3689 | |
| 3690 | /* This is called once the driver's generic options, if any, have been read. |
| 3691 | We can now find the driver, set up defaults for the private options, and |
| 3692 | unset any "set" bits in the private options table (which might have been |
| 3693 | set by another incarnation of the same driver). |
| 3694 | |
| 3695 | Arguments: |
| 3696 | d pointer to driver instance block, with generic |
| 3697 | options filled in |
| 3698 | drivers_available vector of available drivers |
| 3699 | size_of_info size of each block in drivers_available |
| 3700 | class class of driver, for error message |
| 3701 | |
| 3702 | Returns: pointer to the driver info block |
| 3703 | */ |
| 3704 | |
| 3705 | static driver_info * |
| 3706 | init_driver(driver_instance *d, driver_info *drivers_available, |
| 3707 | int size_of_info, uschar *class) |
| 3708 | { |
| 3709 | for (driver_info * dd = drivers_available; dd->driver_name[0] != 0; |
| 3710 | dd = (driver_info *)((US dd) + size_of_info)) |
| 3711 | if (Ustrcmp(d->driver_name, dd->driver_name) == 0) |
| 3712 | { |
| 3713 | int len = dd->options_len; |
| 3714 | d->info = dd; |
| 3715 | d->options_block = store_get(len, FALSE); |
| 3716 | memcpy(d->options_block, dd->options_block, len); |
| 3717 | for (int i = 0; i < *(dd->options_count); i++) |
| 3718 | dd->options[i].type &= ~opt_set; |
| 3719 | return dd; |
| 3720 | } |
| 3721 | |
| 3722 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 3723 | "%s %s: cannot find %s driver \"%s\"", class, d->name, class, d->driver_name); |
| 3724 | |
| 3725 | return NULL; /* never obeyed */ |
| 3726 | } |
| 3727 | |
| 3728 | |
| 3729 | |
| 3730 | |
| 3731 | /************************************************* |
| 3732 | * Initialize driver list * |
| 3733 | *************************************************/ |
| 3734 | |
| 3735 | /* This function is called for routers, transports, and authentication |
| 3736 | mechanisms. It reads the data from the current point in the configuration file |
| 3737 | up to the end of the section, and sets up a chain of instance blocks according |
| 3738 | to the file's contents. The file will already have been opened by a call to |
| 3739 | readconf_main, and must be left open for subsequent reading of further data. |
| 3740 | |
| 3741 | Any errors cause a panic crash. Note that the blocks with names driver_info and |
| 3742 | driver_instance must map the first portions of all the _info and _instance |
| 3743 | blocks for this shared code to work. |
| 3744 | |
| 3745 | Arguments: |
| 3746 | class "router", "transport", or "authenticator" |
| 3747 | anchor &routers, &transports, &auths |
| 3748 | drivers_available available drivers |
| 3749 | size_of_info size of each info block |
| 3750 | instance_default points to default data for an instance |
| 3751 | instance_size size of instance block |
| 3752 | driver_optionlist generic option list |
| 3753 | driver_optionlist_count count of generic option list |
| 3754 | |
| 3755 | Returns: nothing |
| 3756 | */ |
| 3757 | |
| 3758 | void |
| 3759 | readconf_driver_init( |
| 3760 | uschar *class, |
| 3761 | driver_instance **anchor, |
| 3762 | driver_info *drivers_available, |
| 3763 | int size_of_info, |
| 3764 | void *instance_default, |
| 3765 | int instance_size, |
| 3766 | optionlist *driver_optionlist, |
| 3767 | int driver_optionlist_count) |
| 3768 | { |
| 3769 | driver_instance **p = anchor; |
| 3770 | driver_instance *d = NULL; |
| 3771 | uschar *buffer; |
| 3772 | |
| 3773 | while ((buffer = get_config_line()) != NULL) |
| 3774 | { |
| 3775 | uschar name[64]; |
| 3776 | uschar *s; |
| 3777 | |
| 3778 | /* Read the first name on the line and test for the start of a new driver. A |
| 3779 | macro definition indicates the end of the previous driver. If this isn't the |
| 3780 | start of a new driver, the line will be re-read. */ |
| 3781 | |
| 3782 | s = readconf_readname(name, sizeof(name), buffer); |
| 3783 | |
| 3784 | /* Handle macro definition, first finishing off the initialization of the |
| 3785 | previous driver, if any. */ |
| 3786 | |
| 3787 | if (isupper(*name) && *s == '=') |
| 3788 | { |
| 3789 | if (d) |
| 3790 | { |
| 3791 | if (!d->driver_name) |
| 3792 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3793 | "no driver defined for %s \"%s\"", class, d->name); |
| 3794 | (d->info->init)(d); |
| 3795 | d = NULL; |
| 3796 | } |
| 3797 | if (!macro_read_assignment(buffer)) exim_exit(EXIT_FAILURE, US""); |
| 3798 | continue; |
| 3799 | } |
| 3800 | |
| 3801 | /* If the line starts with a name terminated by a colon, we are at the |
| 3802 | start of the definition of a new driver. The rest of the line must be |
| 3803 | blank. */ |
| 3804 | |
| 3805 | if (*s++ == ':') |
| 3806 | { |
| 3807 | /* Finish off initializing the previous driver. */ |
| 3808 | |
| 3809 | if (d) |
| 3810 | { |
| 3811 | if (!d->driver_name) |
| 3812 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3813 | "no driver defined for %s \"%s\"", class, d->name); |
| 3814 | (d->info->init)(d); |
| 3815 | } |
| 3816 | |
| 3817 | /* Check that we haven't already got a driver of this name */ |
| 3818 | |
| 3819 | for (d = *anchor; d; d = d->next) |
| 3820 | if (Ustrcmp(name, d->name) == 0) |
| 3821 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3822 | "there are two %ss called \"%s\"", class, name); |
| 3823 | |
| 3824 | /* Set up a new driver instance data block on the chain, with |
| 3825 | its default values installed. */ |
| 3826 | |
| 3827 | d = store_get(instance_size, FALSE); |
| 3828 | memcpy(d, instance_default, instance_size); |
| 3829 | *p = d; |
| 3830 | p = &d->next; |
| 3831 | d->name = string_copy(name); |
| 3832 | |
| 3833 | /* Clear out the "set" bits in the generic options */ |
| 3834 | |
| 3835 | for (int i = 0; i < driver_optionlist_count; i++) |
| 3836 | driver_optionlist[i].type &= ~opt_set; |
| 3837 | |
| 3838 | /* Check nothing more on this line, then do the next loop iteration. */ |
| 3839 | |
| 3840 | while (isspace(*s)) s++; |
| 3841 | if (*s != 0) extra_chars_error(s, US"driver name ", name, US""); |
| 3842 | continue; |
| 3843 | } |
| 3844 | |
| 3845 | /* Not the start of a new driver. Give an error if we have not set up a |
| 3846 | current driver yet. */ |
| 3847 | |
| 3848 | if (!d) |
| 3849 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s name missing", class); |
| 3850 | |
| 3851 | /* First look to see if this is a generic option; if it is "driver", |
| 3852 | initialize the driver. If is it not a generic option, we can look for a |
| 3853 | private option provided that the driver has been previously set up. */ |
| 3854 | |
| 3855 | if (readconf_handle_option(buffer, driver_optionlist, |
| 3856 | driver_optionlist_count, d, NULL)) |
| 3857 | { |
| 3858 | if (!d->info && d->driver_name) |
| 3859 | init_driver(d, drivers_available, size_of_info, class); |
| 3860 | } |
| 3861 | |
| 3862 | /* Handle private options - pass the generic block because some may |
| 3863 | live therein. A flag with each option indicates if it is in the public |
| 3864 | block. */ |
| 3865 | |
| 3866 | else if (d->info) |
| 3867 | readconf_handle_option(buffer, d->info->options, |
| 3868 | *(d->info->options_count), d, US"option \"%s\" unknown"); |
| 3869 | |
| 3870 | /* The option is not generic and the driver name has not yet been given. */ |
| 3871 | |
| 3872 | else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option \"%s\" unknown " |
| 3873 | "(\"driver\" must be specified before any private options)", name); |
| 3874 | } |
| 3875 | |
| 3876 | /* Run the initialization function for the final driver. */ |
| 3877 | |
| 3878 | if (d) |
| 3879 | { |
| 3880 | if (!d->driver_name) |
| 3881 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, |
| 3882 | "no driver defined for %s \"%s\"", class, d->name); |
| 3883 | (d->info->init)(d); |
| 3884 | } |
| 3885 | } |
| 3886 | |
| 3887 | |
| 3888 | |
| 3889 | /************************************************* |
| 3890 | * Check driver dependency * |
| 3891 | *************************************************/ |
| 3892 | |
| 3893 | /* This function is passed a driver instance and a string. It checks whether |
| 3894 | any of the string options for the driver contains the given string as an |
| 3895 | expansion variable. |
| 3896 | |
| 3897 | Arguments: |
| 3898 | d points to a driver instance block |
| 3899 | s the string to search for |
| 3900 | |
| 3901 | Returns: TRUE if a dependency is found |
| 3902 | */ |
| 3903 | |
| 3904 | BOOL |
| 3905 | readconf_depends(driver_instance *d, uschar *s) |
| 3906 | { |
| 3907 | int count = *(d->info->options_count); |
| 3908 | uschar *ss; |
| 3909 | |
| 3910 | for (optionlist * ol = d->info->options; ol < d->info->options + count; ol++) |
| 3911 | { |
| 3912 | void *options_block; |
| 3913 | uschar *value; |
| 3914 | int type = ol->type & opt_mask; |
| 3915 | if (type != opt_stringptr) continue; |
| 3916 | options_block = ((ol->type & opt_public) == 0)? d->options_block : (void *)d; |
| 3917 | value = *(uschar **)(US options_block + (long int)(ol->value)); |
| 3918 | if (value != NULL && (ss = Ustrstr(value, s)) != NULL) |
| 3919 | { |
| 3920 | if (ss <= value || (ss[-1] != '$' && ss[-1] != '{') || |
| 3921 | isalnum(ss[Ustrlen(s)])) continue; |
| 3922 | DEBUG(D_transport) debug_printf("driver %s: \"%s\" option depends on %s\n", |
| 3923 | d->name, ol->name, s); |
| 3924 | return TRUE; |
| 3925 | } |
| 3926 | } |
| 3927 | |
| 3928 | DEBUG(D_transport) debug_printf("driver %s does not depend on %s\n", d->name, s); |
| 3929 | return FALSE; |
| 3930 | } |
| 3931 | |
| 3932 | |
| 3933 | |
| 3934 | |
| 3935 | /************************************************* |
| 3936 | * Decode an error type for retries * |
| 3937 | *************************************************/ |
| 3938 | |
| 3939 | /* This function is global because it is also called from the main |
| 3940 | program when testing retry information. It decodes strings such as "quota_7d" |
| 3941 | into numerical error codes. |
| 3942 | |
| 3943 | Arguments: |
| 3944 | pp points to start of text |
| 3945 | p points past end of text |
| 3946 | basic_errno points to an int to receive the main error number |
| 3947 | more_errno points to an int to receive the secondary error data |
| 3948 | |
| 3949 | Returns: NULL if decoded correctly; else points to error text |
| 3950 | */ |
| 3951 | |
| 3952 | uschar * |
| 3953 | readconf_retry_error(const uschar *pp, const uschar *p, |
| 3954 | int *basic_errno, int *more_errno) |
| 3955 | { |
| 3956 | int len; |
| 3957 | const uschar *q = pp; |
| 3958 | while (q < p && *q != '_') q++; |
| 3959 | len = q - pp; |
| 3960 | |
| 3961 | if (len == 5 && strncmpic(pp, US"quota", len) == 0) |
| 3962 | { |
| 3963 | *basic_errno = ERRNO_EXIMQUOTA; |
| 3964 | if (q != p && (*more_errno = readconf_readtime(q+1, *p, FALSE)) < 0) |
| 3965 | return US"bad time value"; |
| 3966 | } |
| 3967 | |
| 3968 | else if (len == 7 && strncmpic(pp, US"refused", len) == 0) |
| 3969 | { |
| 3970 | *basic_errno = ECONNREFUSED; |
| 3971 | if (q != p) |
| 3972 | { |
| 3973 | if (strncmpic(q+1, US"MX", p-q-1) == 0) *more_errno = 'M'; |
| 3974 | else if (strncmpic(q+1, US"A", p-q-1) == 0) *more_errno = 'A'; |
| 3975 | else return US"A or MX expected after \"refused\""; |
| 3976 | } |
| 3977 | } |
| 3978 | |
| 3979 | else if (len == 7 && strncmpic(pp, US"timeout", len) == 0) |
| 3980 | { |
| 3981 | *basic_errno = ETIMEDOUT; |
| 3982 | if (q != p) |
| 3983 | { |
| 3984 | int i; |
| 3985 | int xlen = p - q - 1; |
| 3986 | const uschar *x = q + 1; |
| 3987 | |
| 3988 | static uschar *extras[] = |
| 3989 | { US"A", US"MX", US"connect", US"connect_A", US"connect_MX" }; |
| 3990 | static int values[] = |
| 3991 | { 'A', 'M', RTEF_CTOUT, RTEF_CTOUT|'A', RTEF_CTOUT|'M' }; |
| 3992 | |
| 3993 | for (i = 0; i < nelem(extras); i++) |
| 3994 | if (strncmpic(x, extras[i], xlen) == 0) |
| 3995 | { |
| 3996 | *more_errno = values[i]; |
| 3997 | break; |
| 3998 | } |
| 3999 | |
| 4000 | if (i >= nelem(extras)) |
| 4001 | if (strncmpic(x, US"DNS", xlen) == 0) |
| 4002 | log_write(0, LOG_MAIN|LOG_PANIC, "\"timeout_dns\" is no longer " |
| 4003 | "available in retry rules (it has never worked) - treated as " |
| 4004 | "\"timeout\""); |
| 4005 | else |
| 4006 | return US"\"A\", \"MX\", or \"connect\" expected after \"timeout\""; |
| 4007 | } |
| 4008 | } |
| 4009 | |
| 4010 | else if (strncmpic(pp, US"mail_4", 6) == 0 || |
| 4011 | strncmpic(pp, US"rcpt_4", 6) == 0 || |
| 4012 | strncmpic(pp, US"data_4", 6) == 0) |
| 4013 | { |
| 4014 | BOOL bad = FALSE; |
| 4015 | int x = 255; /* means "any 4xx code" */ |
| 4016 | if (p != pp + 8) bad = TRUE; else |
| 4017 | { |
| 4018 | int a = pp[6], b = pp[7]; |
| 4019 | if (isdigit(a)) |
| 4020 | { |
| 4021 | x = (a - '0') * 10; |
| 4022 | if (isdigit(b)) x += b - '0'; |
| 4023 | else if (b == 'x') x += 100; |
| 4024 | else bad = TRUE; |
| 4025 | } |
| 4026 | else if (a != 'x' || b != 'x') bad = TRUE; |
| 4027 | } |
| 4028 | |
| 4029 | if (bad) |
| 4030 | return string_sprintf("%.4s_4 must be followed by xx, dx, or dd, where " |
| 4031 | "x is literal and d is any digit", pp); |
| 4032 | |
| 4033 | *basic_errno = *pp == 'm' ? ERRNO_MAIL4XX : |
| 4034 | *pp == 'r' ? ERRNO_RCPT4XX : ERRNO_DATA4XX; |
| 4035 | *more_errno = x << 8; |
| 4036 | } |
| 4037 | |
| 4038 | else if (len == 4 && strncmpic(pp, US"auth", len) == 0 && |
| 4039 | strncmpic(q+1, US"failed", p-q-1) == 0) |
| 4040 | *basic_errno = ERRNO_AUTHFAIL; |
| 4041 | |
| 4042 | else if (strncmpic(pp, US"lost_connection", p - pp) == 0) |
| 4043 | *basic_errno = ERRNO_SMTPCLOSED; |
| 4044 | |
| 4045 | else if (strncmpic(pp, US"tls_required", p - pp) == 0) |
| 4046 | *basic_errno = ERRNO_TLSREQUIRED; |
| 4047 | |
| 4048 | else if (strncmpic(pp, US"lookup", p - pp) == 0) |
| 4049 | *basic_errno = ERRNO_UNKNOWNHOST; |
| 4050 | |
| 4051 | else if (len != 1 || Ustrncmp(pp, "*", 1) != 0) |
| 4052 | return string_sprintf("unknown or malformed retry error \"%.*s\"", (int) (p-pp), pp); |
| 4053 | |
| 4054 | return NULL; |
| 4055 | } |
| 4056 | |
| 4057 | |
| 4058 | |
| 4059 | |
| 4060 | /************************************************* |
| 4061 | * Read retry information * |
| 4062 | *************************************************/ |
| 4063 | |
| 4064 | /* Each line of retry information contains: |
| 4065 | |
| 4066 | . A domain name pattern or an address pattern; |
| 4067 | |
| 4068 | . An error name, possibly with additional data, or *; |
| 4069 | |
| 4070 | . An optional sequence of retry items, each consisting of an identifying |
| 4071 | letter, a cutoff time, and optional parameters. |
| 4072 | |
| 4073 | All this is decoded and placed into a control block. */ |
| 4074 | |
| 4075 | |
| 4076 | /* Subroutine to read an argument, preceded by a comma and terminated |
| 4077 | by comma, semicolon, whitespace, or newline. The types are: 0 = time value, |
| 4078 | 1 = fixed point number (returned *1000). |
| 4079 | |
| 4080 | Arguments: |
| 4081 | paddr pointer to pointer to current character; updated |
| 4082 | type 0 => read a time; 1 => read a fixed point number |
| 4083 | |
| 4084 | Returns: time in seconds or fixed point number * 1000 |
| 4085 | */ |
| 4086 | |
| 4087 | static int |
| 4088 | retry_arg(const uschar **paddr, int type) |
| 4089 | { |
| 4090 | const uschar *p = *paddr; |
| 4091 | const uschar *pp; |
| 4092 | |
| 4093 | if (*p++ != ',') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma expected"); |
| 4094 | |
| 4095 | while (isspace(*p)) p++; |
| 4096 | pp = p; |
| 4097 | while (isalnum(*p) || (type == 1 && *p == '.')) p++; |
| 4098 | |
| 4099 | if (*p != 0 && !isspace(*p) && *p != ',' && *p != ';') |
| 4100 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma or semicolon expected"); |
| 4101 | |
| 4102 | *paddr = p; |
| 4103 | switch (type) |
| 4104 | { |
| 4105 | case 0: return readconf_readtime(pp, *p, FALSE); |
| 4106 | case 1: return readconf_readfixed(pp, *p); |
| 4107 | } |
| 4108 | return 0; /* Keep picky compilers happy */ |
| 4109 | } |
| 4110 | |
| 4111 | /* The function proper */ |
| 4112 | |
| 4113 | void |
| 4114 | readconf_retries(void) |
| 4115 | { |
| 4116 | retry_config **chain = &retries; |
| 4117 | retry_config *next; |
| 4118 | const uschar *p; |
| 4119 | |
| 4120 | while ((p = get_config_line())) |
| 4121 | { |
| 4122 | retry_rule **rchain; |
| 4123 | const uschar *pp; |
| 4124 | uschar *error; |
| 4125 | |
| 4126 | next = store_get(sizeof(retry_config), FALSE); |
| 4127 | next->next = NULL; |
| 4128 | *chain = next; |
| 4129 | chain = &(next->next); |
| 4130 | next->basic_errno = next->more_errno = 0; |
| 4131 | next->senders = NULL; |
| 4132 | next->rules = NULL; |
| 4133 | rchain = &(next->rules); |
| 4134 | |
| 4135 | next->pattern = string_dequote(&p); |
| 4136 | while (isspace(*p)) p++; |
| 4137 | pp = p; |
| 4138 | while (mac_isgraph(*p)) p++; |
| 4139 | if (p - pp <= 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 4140 | "missing error type in retry rule"); |
| 4141 | |
| 4142 | /* Test error names for things we understand. */ |
| 4143 | |
| 4144 | if ((error = readconf_retry_error(pp, p, &next->basic_errno, |
| 4145 | &next->more_errno))) |
| 4146 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s", error); |
| 4147 | |
| 4148 | /* There may be an optional address list of senders to be used as another |
| 4149 | constraint on the rule. This was added later, so the syntax is a bit of a |
| 4150 | fudge. Anything that is not a retry rule starting "F," or "G," is treated as |
| 4151 | an address list. */ |
| 4152 | |
| 4153 | while (isspace(*p)) p++; |
| 4154 | if (Ustrncmp(p, "senders", 7) == 0) |
| 4155 | { |
| 4156 | p += 7; |
| 4157 | while (isspace(*p)) p++; |
| 4158 | if (*p++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 4159 | "\"=\" expected after \"senders\" in retry rule"); |
| 4160 | while (isspace(*p)) p++; |
| 4161 | next->senders = string_dequote(&p); |
| 4162 | } |
| 4163 | |
| 4164 | /* Now the retry rules. Keep the maximum timeout encountered. */ |
| 4165 | |
| 4166 | while (isspace(*p)) p++; |
| 4167 | |
| 4168 | while (*p != 0) |
| 4169 | { |
| 4170 | retry_rule *rule = store_get(sizeof(retry_rule), FALSE); |
| 4171 | *rchain = rule; |
| 4172 | rchain = &(rule->next); |
| 4173 | rule->next = NULL; |
| 4174 | rule->rule = toupper(*p++); |
| 4175 | rule->timeout = retry_arg(&p, 0); |
| 4176 | if (rule->timeout > retry_maximum_timeout) |
| 4177 | retry_maximum_timeout = rule->timeout; |
| 4178 | |
| 4179 | switch (rule->rule) |
| 4180 | { |
| 4181 | case 'F': /* Fixed interval */ |
| 4182 | rule->p1 = retry_arg(&p, 0); |
| 4183 | break; |
| 4184 | |
| 4185 | case 'G': /* Geometrically increasing intervals */ |
| 4186 | case 'H': /* Ditto, but with randomness */ |
| 4187 | rule->p1 = retry_arg(&p, 0); |
| 4188 | rule->p2 = retry_arg(&p, 1); |
| 4189 | break; |
| 4190 | |
| 4191 | default: |
| 4192 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unknown retry rule letter"); |
| 4193 | break; |
| 4194 | } |
| 4195 | |
| 4196 | if (rule->timeout <= 0 || rule->p1 <= 0 || |
| 4197 | (rule->rule != 'F' && rule->p2 < 1000)) |
| 4198 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 4199 | "bad parameters for retry rule"); |
| 4200 | |
| 4201 | while (isspace(*p)) p++; |
| 4202 | if (*p == ';') |
| 4203 | { |
| 4204 | p++; |
| 4205 | while (isspace(*p)) p++; |
| 4206 | } |
| 4207 | else if (*p != 0) |
| 4208 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "semicolon expected"); |
| 4209 | } |
| 4210 | } |
| 4211 | } |
| 4212 | |
| 4213 | |
| 4214 | |
| 4215 | /************************************************* |
| 4216 | * Initialize authenticators * |
| 4217 | *************************************************/ |
| 4218 | |
| 4219 | /* Read the authenticators section of the configuration file. |
| 4220 | |
| 4221 | Arguments: none |
| 4222 | Returns: nothing |
| 4223 | */ |
| 4224 | |
| 4225 | static void |
| 4226 | auths_init(void) |
| 4227 | { |
| 4228 | #ifdef SUPPORT_PIPE_CONNECT |
| 4229 | int nauths = 0; |
| 4230 | #endif |
| 4231 | |
| 4232 | readconf_driver_init(US"authenticator", |
| 4233 | (driver_instance **)(&auths), /* chain anchor */ |
| 4234 | (driver_info *)auths_available, /* available drivers */ |
| 4235 | sizeof(auth_info), /* size of info block */ |
| 4236 | &auth_defaults, /* default values for generic options */ |
| 4237 | sizeof(auth_instance), /* size of instance block */ |
| 4238 | optionlist_auths, /* generic options */ |
| 4239 | optionlist_auths_size); |
| 4240 | |
| 4241 | for (auth_instance * au = auths; au; au = au->next) |
| 4242 | { |
| 4243 | if (!au->public_name) |
| 4244 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "no public name specified for " |
| 4245 | "the %s authenticator", au->name); |
| 4246 | |
| 4247 | for (auth_instance * bu = au->next; bu; bu = bu->next) |
| 4248 | if (strcmpic(au->public_name, bu->public_name) == 0) |
| 4249 | if ((au->client && bu->client) || (au->server && bu->server)) |
| 4250 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "two %s authenticators " |
| 4251 | "(%s and %s) have the same public name (%s)", |
| 4252 | au->client ? US"client" : US"server", au->name, bu->name, |
| 4253 | au->public_name); |
| 4254 | #ifdef SUPPORT_PIPE_CONNECT |
| 4255 | nauths++; |
| 4256 | #endif |
| 4257 | } |
| 4258 | #ifdef SUPPORT_PIPE_CONNECT |
| 4259 | f.smtp_in_early_pipe_no_auth = nauths > 16; |
| 4260 | #endif |
| 4261 | } |
| 4262 | |
| 4263 | |
| 4264 | |
| 4265 | |
| 4266 | /************************************************* |
| 4267 | * Read ACL information * |
| 4268 | *************************************************/ |
| 4269 | |
| 4270 | /* If this run of Exim is not doing something that involves receiving a |
| 4271 | message, we can just skip over the ACL information. No need to parse it. |
| 4272 | |
| 4273 | First, we have a function for acl_read() to call back to get the next line. We |
| 4274 | need to remember the line we passed, because at the end it will contain the |
| 4275 | name of the next ACL. */ |
| 4276 | |
| 4277 | static uschar *acl_line; |
| 4278 | |
| 4279 | static uschar * |
| 4280 | acl_callback(void) |
| 4281 | { |
| 4282 | acl_line = get_config_line(); |
| 4283 | return acl_line; |
| 4284 | } |
| 4285 | |
| 4286 | |
| 4287 | /* Now the main function: |
| 4288 | |
| 4289 | Arguments: none |
| 4290 | Returns: nothing |
| 4291 | */ |
| 4292 | |
| 4293 | static void |
| 4294 | readconf_acl(void) |
| 4295 | { |
| 4296 | uschar *p; |
| 4297 | |
| 4298 | /* Read each ACL and add it into the tree. Macro (re)definitions are allowed |
| 4299 | between ACLs. */ |
| 4300 | |
| 4301 | acl_line = get_config_line(); |
| 4302 | |
| 4303 | while(acl_line) |
| 4304 | { |
| 4305 | uschar name[64]; |
| 4306 | tree_node *node; |
| 4307 | uschar *error; |
| 4308 | |
| 4309 | p = readconf_readname(name, sizeof(name), acl_line); |
| 4310 | if (isupper(*name) && *p == '=') |
| 4311 | { |
| 4312 | if (!macro_read_assignment(acl_line)) exim_exit(EXIT_FAILURE, US""); |
| 4313 | acl_line = get_config_line(); |
| 4314 | continue; |
| 4315 | } |
| 4316 | |
| 4317 | if (*p != ':' || name[0] == 0) |
| 4318 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing or malformed ACL name"); |
| 4319 | |
| 4320 | node = store_get(sizeof(tree_node) + Ustrlen(name), is_tainted(name)); |
| 4321 | Ustrcpy(node->name, name); |
| 4322 | if (!tree_insertnode(&acl_anchor, node)) |
| 4323 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 4324 | "there are two ACLs called \"%s\"", name); |
| 4325 | |
| 4326 | node->data.ptr = acl_read(acl_callback, &error); |
| 4327 | |
| 4328 | if (node->data.ptr == NULL && error != NULL) |
| 4329 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "error in ACL: %s", error); |
| 4330 | } |
| 4331 | } |
| 4332 | |
| 4333 | |
| 4334 | |
| 4335 | /************************************************* |
| 4336 | * Read configuration for local_scan() * |
| 4337 | *************************************************/ |
| 4338 | |
| 4339 | /* This function is called after "begin local_scan" is encountered in the |
| 4340 | configuration file. If the local_scan() function allows for configuration |
| 4341 | options, we can process them. Otherwise, we expire in a panic. |
| 4342 | |
| 4343 | Arguments: none |
| 4344 | Returns: nothing |
| 4345 | */ |
| 4346 | |
| 4347 | static void |
| 4348 | local_scan_init(void) |
| 4349 | { |
| 4350 | #ifndef LOCAL_SCAN_HAS_OPTIONS |
| 4351 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "local_scan() options not supported: " |
| 4352 | "(LOCAL_SCAN_HAS_OPTIONS not defined in Local/Makefile)"); |
| 4353 | #else |
| 4354 | |
| 4355 | uschar *p; |
| 4356 | while ((p = get_config_line())) |
| 4357 | { |
| 4358 | (void) readconf_handle_option(p, local_scan_options, local_scan_options_count, |
| 4359 | NULL, US"local_scan option \"%s\" unknown"); |
| 4360 | } |
| 4361 | #endif |
| 4362 | } |
| 4363 | |
| 4364 | |
| 4365 | |
| 4366 | /************************************************* |
| 4367 | * Read rest of configuration (after main) * |
| 4368 | *************************************************/ |
| 4369 | |
| 4370 | /* This function reads the rest of the runtime configuration, after the main |
| 4371 | configuration. It is called only when actually needed. Each subsequent section |
| 4372 | of the configuration starts with a line of the form |
| 4373 | |
| 4374 | begin name |
| 4375 | |
| 4376 | where the name is "routers", "transports", etc. A section is terminated by |
| 4377 | hitting the next "begin" line, and the next name is left in next_section. |
| 4378 | Because it may confuse people as to whether the names are singular or plural, |
| 4379 | we add "s" if it's missing. There is always enough room in next_section for |
| 4380 | this. This function is basically just a switch. |
| 4381 | |
| 4382 | Arguments: none |
| 4383 | Returns: nothing |
| 4384 | */ |
| 4385 | |
| 4386 | static uschar *section_list[] = { |
| 4387 | US"acls", |
| 4388 | US"authenticators", |
| 4389 | US"local_scans", |
| 4390 | US"retrys", |
| 4391 | US"rewrites", |
| 4392 | US"routers", |
| 4393 | US"transports"}; |
| 4394 | |
| 4395 | void |
| 4396 | readconf_rest(void) |
| 4397 | { |
| 4398 | int had = 0; |
| 4399 | |
| 4400 | while(next_section[0] != 0) |
| 4401 | { |
| 4402 | int bit; |
| 4403 | int first = 0; |
| 4404 | int last = nelem(section_list); |
| 4405 | int mid = last/2; |
| 4406 | int n = Ustrlen(next_section); |
| 4407 | |
| 4408 | if (tolower(next_section[n-1]) != 's') Ustrcpy(next_section+n, US"s"); |
| 4409 | |
| 4410 | for (;;) |
| 4411 | { |
| 4412 | int c = strcmpic(next_section, section_list[mid]); |
| 4413 | if (c == 0) break; |
| 4414 | if (c > 0) first = mid + 1; else last = mid; |
| 4415 | if (first >= last) |
| 4416 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 4417 | "\"%.*s\" is not a known configuration section name", n, next_section); |
| 4418 | mid = (last + first)/2; |
| 4419 | } |
| 4420 | |
| 4421 | bit = 1 << mid; |
| 4422 | if (((had ^= bit) & bit) == 0) |
| 4423 | log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, |
| 4424 | "\"%.*s\" section is repeated in the configuration file", n, |
| 4425 | next_section); |
| 4426 | |
| 4427 | switch(mid) |
| 4428 | { |
| 4429 | case 0: readconf_acl(); break; |
| 4430 | case 1: auths_init(); break; |
| 4431 | case 2: local_scan_init(); break; |
| 4432 | case 3: readconf_retries(); break; |
| 4433 | case 4: readconf_rewrites(); break; |
| 4434 | case 5: route_init(); break; |
| 4435 | case 6: transport_init(); break; |
| 4436 | } |
| 4437 | } |
| 4438 | |
| 4439 | (void)fclose(config_file); |
| 4440 | } |
| 4441 | |
| 4442 | /* Init the storage for the pre-parsed config lines */ |
| 4443 | void |
| 4444 | readconf_save_config(const uschar *s) |
| 4445 | { |
| 4446 | save_config_line(string_sprintf("# Exim Configuration (%s)", |
| 4447 | f.running_in_test_harness ? US"X" : s)); |
| 4448 | } |
| 4449 | |
| 4450 | static void |
| 4451 | save_config_position(const uschar *file, int line) |
| 4452 | { |
| 4453 | save_config_line(string_sprintf("# %d \"%s\"", line, file)); |
| 4454 | } |
| 4455 | |
| 4456 | /* Append a pre-parsed logical line to the config lines store, |
| 4457 | this operates on a global (static) list that holds all the pre-parsed |
| 4458 | config lines, we do no further processing here, output formatting and |
| 4459 | honouring of <hide> or macros will be done during output */ |
| 4460 | |
| 4461 | static void |
| 4462 | save_config_line(const uschar* line) |
| 4463 | { |
| 4464 | static config_line_item *current; |
| 4465 | config_line_item *next; |
| 4466 | |
| 4467 | next = (config_line_item*) store_get(sizeof(config_line_item), FALSE); |
| 4468 | next->line = string_copy(line); |
| 4469 | next->next = NULL; |
| 4470 | |
| 4471 | if (!config_lines) config_lines = next; |
| 4472 | else current->next = next; |
| 4473 | |
| 4474 | current = next; |
| 4475 | } |
| 4476 | |
| 4477 | /* List the parsed config lines, care about nice formatting and |
| 4478 | hide the <hide> values unless we're the admin user */ |
| 4479 | void |
| 4480 | print_config(BOOL admin, BOOL terse) |
| 4481 | { |
| 4482 | const int TS = terse ? 0 : 2; |
| 4483 | int indent = 0; |
| 4484 | |
| 4485 | for (config_line_item * i = config_lines; i; i = i->next) |
| 4486 | { |
| 4487 | uschar *current; |
| 4488 | uschar *p; |
| 4489 | |
| 4490 | /* skip over to the first non-space */ |
| 4491 | for (current = i->line; *current && isspace(*current); ++current) |
| 4492 | ; |
| 4493 | |
| 4494 | if (*current == '\0') |
| 4495 | continue; |
| 4496 | |
| 4497 | /* Collapse runs of spaces. We stop this if we encounter one of the |
| 4498 | * following characters: "'$, as this may indicate careful formatting */ |
| 4499 | for (p = current; *p; ++p) |
| 4500 | { |
| 4501 | uschar *next; |
| 4502 | if (!isspace(*p)) continue; |
| 4503 | if (*p != ' ') *p = ' '; |
| 4504 | |
| 4505 | for (next = p; isspace(*next); ++next) |
| 4506 | ; |
| 4507 | |
| 4508 | if (next - p > 1) |
| 4509 | memmove(p+1, next, Ustrlen(next)+1); |
| 4510 | |
| 4511 | if (*next == '"' || *next == '\'' || *next == '$') |
| 4512 | break; |
| 4513 | } |
| 4514 | |
| 4515 | /* # lines */ |
| 4516 | if (current[0] == '#') |
| 4517 | puts(CCS current); |
| 4518 | |
| 4519 | /* begin lines are left aligned */ |
| 4520 | else if (Ustrncmp(current, "begin", 5) == 0 && isspace(current[5])) |
| 4521 | { |
| 4522 | if (!terse) puts(""); |
| 4523 | puts(CCS current); |
| 4524 | indent = TS; |
| 4525 | } |
| 4526 | |
| 4527 | /* router/acl/transport block names */ |
| 4528 | else if (current[Ustrlen(current)-1] == ':' && !Ustrchr(current, '=')) |
| 4529 | { |
| 4530 | if (!terse) puts(""); |
| 4531 | printf("%*s%s\n", TS, "", current); |
| 4532 | indent = 2 * TS; |
| 4533 | } |
| 4534 | |
| 4535 | /* hidden lines (all MACROS or lines prefixed with "hide") */ |
| 4536 | else if ( !admin |
| 4537 | && ( isupper(*current) |
| 4538 | || Ustrncmp(current, "hide", 4) == 0 && isspace(current[4]) |
| 4539 | ) |
| 4540 | ) |
| 4541 | { |
| 4542 | if ((p = Ustrchr(current, '='))) |
| 4543 | { |
| 4544 | *p = '\0'; |
| 4545 | printf("%*s%s= %s\n", indent, "", current, hidden); |
| 4546 | } |
| 4547 | /* e.g.: hide split_spool_directory */ |
| 4548 | else |
| 4549 | printf("%*s\n", indent, hidden); |
| 4550 | } |
| 4551 | |
| 4552 | else |
| 4553 | /* rest is public */ |
| 4554 | printf("%*s%s\n", indent, "", current); |
| 4555 | } |
| 4556 | } |
| 4557 | |
| 4558 | #endif /*!MACRO_PREDEF*/ |
| 4559 | /* vi: aw ai sw=2 |
| 4560 | */ |
| 4561 | /* End of readconf.c */ |