projects / exim.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Revert "Build: tidying"
[exim.git] / src / src / readconf.c
CommitLineData
059ec3d9
PH		 1/*************************************************
2* Exim - an Internet mail transport agent *
3*************************************************/
4
80fea873 5/* Copyright (c) University of Cambridge 1995 - 2016 */
059ec3d9
PH		 6/* See the file NOTICE for conditions of use and distribution. */
7
8/* Functions for reading the configuration file, and for displaying
9overall configuration values. Thanks to Brian Candler for the original
10implementation of the conditional .ifdef etc. */
11
12#include "exim.h"
13
d185889f 14#ifdef MACRO_PREDEF
5f69a529 15# include "macro_predef.h"
d185889f 16#endif
059ec3d9 17
d185889f
JH		 18static uschar * syslog_facility_str;
19static void fn_smtp_receive_timeout(const uschar *, const uschar *);
059ec3d9
PH		 20
21/*************************************************
22* Main configuration options *
23*************************************************/
24
25/* The list of options that can be set in the main configuration file. This
26must be in alphabetic order because it is searched by binary chop. */
27
28static optionlist optionlist_config[] = {
29 { "*set_exim_group", opt_bool|opt_hidden, &exim_gid_set },
30 { "*set_exim_user", opt_bool|opt_hidden, &exim_uid_set },
31 { "*set_system_filter_group", opt_bool|opt_hidden, &system_filter_gid_set },
32 { "*set_system_filter_user", opt_bool|opt_hidden, &system_filter_uid_set },
33 { "accept_8bitmime", opt_bool, &accept_8bitmime },
34 { "acl_not_smtp", opt_stringptr, &acl_not_smtp },
54cdb463
PH		 35#ifdef WITH_CONTENT_SCAN
36 { "acl_not_smtp_mime", opt_stringptr, &acl_not_smtp_mime },
37#endif
45b91596 38 { "acl_not_smtp_start", opt_stringptr, &acl_not_smtp_start },
059ec3d9
PH		 39 { "acl_smtp_auth", opt_stringptr, &acl_smtp_auth },
40 { "acl_smtp_connect", opt_stringptr, &acl_smtp_connect },
41 { "acl_smtp_data", opt_stringptr, &acl_smtp_data },
8ccd00b1 42#ifndef DISABLE_PRDR
fd98a5c6
JH		 43 { "acl_smtp_data_prdr", opt_stringptr, &acl_smtp_data_prdr },
44#endif
80a47a2c
TK		 45#ifndef DISABLE_DKIM
46 { "acl_smtp_dkim", opt_stringptr, &acl_smtp_dkim },
47#endif
059ec3d9
PH		 48 { "acl_smtp_etrn", opt_stringptr, &acl_smtp_etrn },
49 { "acl_smtp_expn", opt_stringptr, &acl_smtp_expn },
50 { "acl_smtp_helo", opt_stringptr, &acl_smtp_helo },
51 { "acl_smtp_mail", opt_stringptr, &acl_smtp_mail },
52 { "acl_smtp_mailauth", opt_stringptr, &acl_smtp_mailauth },
8523533c
TK		 53#ifdef WITH_CONTENT_SCAN
54 { "acl_smtp_mime", opt_stringptr, &acl_smtp_mime },
55#endif
8f128379 56 { "acl_smtp_notquit", opt_stringptr, &acl_smtp_notquit },
059ec3d9
PH		 57 { "acl_smtp_predata", opt_stringptr, &acl_smtp_predata },
58 { "acl_smtp_quit", opt_stringptr, &acl_smtp_quit },
59 { "acl_smtp_rcpt", opt_stringptr, &acl_smtp_rcpt },
60#ifdef SUPPORT_TLS
61 { "acl_smtp_starttls", opt_stringptr, &acl_smtp_starttls },
62#endif
63 { "acl_smtp_vrfy", opt_stringptr, &acl_smtp_vrfy },
bc3c7bb7 64 { "add_environment", opt_stringptr, &add_environment },
059ec3d9
PH		 65 { "admin_groups", opt_gidlist, &admin_groups },
66 { "allow_domain_literals", opt_bool, &allow_domain_literals },
67 { "allow_mx_to_ip", opt_bool, &allow_mx_to_ip },
68 { "allow_utf8_domains", opt_bool, &allow_utf8_domains },
69 { "auth_advertise_hosts", opt_stringptr, &auth_advertise_hosts },
70 { "auto_thaw", opt_time, &auto_thaw },
8523533c
TK		 71#ifdef WITH_CONTENT_SCAN
72 { "av_scanner", opt_stringptr, &av_scanner },
73#endif
059ec3d9 74 { "bi_command", opt_stringptr, &bi_command },
8523533c
TK		 75#ifdef EXPERIMENTAL_BRIGHTMAIL
76 { "bmi_config_file", opt_stringptr, &bmi_config_file },
77#endif
059ec3d9
PH		 78 { "bounce_message_file", opt_stringptr, &bounce_message_file },
79 { "bounce_message_text", opt_stringptr, &bounce_message_text },
80 { "bounce_return_body", opt_bool, &bounce_return_body },
62b7cd08 81 { "bounce_return_linesize_limit", opt_mkint, &bounce_return_linesize_limit },
059ec3d9
PH		 82 { "bounce_return_message", opt_bool, &bounce_return_message },
83 { "bounce_return_size_limit", opt_mkint, &bounce_return_size_limit },
84 { "bounce_sender_authentication",opt_stringptr,&bounce_sender_authentication },
85 { "callout_domain_negative_expire", opt_time, &callout_cache_domain_negative_expire },
86 { "callout_domain_positive_expire", opt_time, &callout_cache_domain_positive_expire },
87 { "callout_negative_expire", opt_time, &callout_cache_negative_expire },
88 { "callout_positive_expire", opt_time, &callout_cache_positive_expire },
89 { "callout_random_local_part",opt_stringptr, &callout_random_local_part },
90 { "check_log_inodes", opt_int, &check_log_inodes },
91 { "check_log_space", opt_Kint, &check_log_space },
a0d6ba8a 92 { "check_rfc2047_length", opt_bool, &check_rfc2047_length },
059ec3d9
PH		 93 { "check_spool_inodes", opt_int, &check_spool_inodes },
94 { "check_spool_space", opt_Kint, &check_spool_space },
aa368db3 95 { "chunking_advertise_hosts", opt_stringptr, &chunking_advertise_hosts },
f33875c3 96 { "commandline_checks_require_admin", opt_bool,&commandline_checks_require_admin },
059ec3d9
PH		 97 { "daemon_smtp_port", opt_stringptr|opt_hidden, &daemon_smtp_port },
98 { "daemon_smtp_ports", opt_stringptr, &daemon_smtp_port },
4aee0225
PH		 99 { "daemon_startup_retries", opt_int, &daemon_startup_retries },
100 { "daemon_startup_sleep", opt_time, &daemon_startup_sleep },
6a8f9482
TK		 101#ifdef EXPERIMENTAL_DCC
102 { "dcc_direct_add_header", opt_bool, &dcc_direct_add_header },
103 { "dccifd_address", opt_stringptr, &dccifd_address },
104 { "dccifd_options", opt_stringptr, &dccifd_options },
105#endif
64073d9c 106 { "debug_store", opt_bool, &debug_store },
059ec3d9
PH		 107 { "delay_warning", opt_timelist, &delay_warning },
108 { "delay_warning_condition", opt_stringptr, &delay_warning_condition },
109 { "deliver_drop_privilege", opt_bool, &deliver_drop_privilege },
110 { "deliver_queue_load_max", opt_fixed, &deliver_queue_load_max },
111 { "delivery_date_remove", opt_bool, &delivery_date_remove },
54fc8428
PH		 112#ifdef ENABLE_DISABLE_FSYNC
113 { "disable_fsync", opt_bool, &disable_fsync },
114#endif
7e66e54d 115 { "disable_ipv6", opt_bool, &disable_ipv6 },
80a47a2c
TK		 116#ifndef DISABLE_DKIM
117 { "dkim_verify_signers", opt_stringptr, &dkim_verify_signers },
4840604e
TL		 118#endif
119#ifdef EXPERIMENTAL_DMARC
120 { "dmarc_forensic_sender", opt_stringptr, &dmarc_forensic_sender },
121 { "dmarc_history_file", opt_stringptr, &dmarc_history_file },
122 { "dmarc_tld_file", opt_stringptr, &dmarc_tld_file },
80a47a2c 123#endif
059ec3d9
PH		 124 { "dns_again_means_nonexist", opt_stringptr, &dns_again_means_nonexist },
125 { "dns_check_names_pattern", opt_stringptr, &check_dns_names_pattern },
e5a9dba6
PH		 126 { "dns_csa_search_limit", opt_int, &dns_csa_search_limit },
127 { "dns_csa_use_reverse", opt_bool, &dns_csa_use_reverse },
83712b39 128 { "dns_dnssec_ok", opt_int, &dns_dnssec_ok },
059ec3d9
PH		 129 { "dns_ipv4_lookup", opt_stringptr, &dns_ipv4_lookup },
130 { "dns_retrans", opt_time, &dns_retrans },
131 { "dns_retry", opt_int, &dns_retry },
9820a77f 132 { "dns_trust_aa", opt_stringptr, &dns_trust_aa },
e97d1f08 133 { "dns_use_edns0", opt_int, &dns_use_edns0 },
4c04137d 134 /* This option is now a no-op, retained for compatibility */
059ec3d9
PH		 135 { "drop_cr", opt_bool, &drop_cr },
136/*********************************************************/
6c1c3d1d 137 { "dsn_advertise_hosts", opt_stringptr, &dsn_advertise_hosts },
0e22dfd1 138 { "dsn_from", opt_stringptr, &dsn_from },
059ec3d9
PH		 139 { "envelope_to_remove", opt_bool, &envelope_to_remove },
140 { "errors_copy", opt_stringptr, &errors_copy },
141 { "errors_reply_to", opt_stringptr, &errors_reply_to },
0cbf2b82 142#ifndef DISABLE_EVENT
774ef2d7
JH		 143 { "event_action", opt_stringptr, &event_action },
144#endif
059ec3d9
PH		 145 { "exim_group", opt_gid, &exim_gid },
146 { "exim_path", opt_stringptr, &exim_path },
147 { "exim_user", opt_uid, &exim_uid },
148 { "extra_local_interfaces", opt_stringptr, &extra_local_interfaces },
149 { "extract_addresses_remove_arguments", opt_bool, &extract_addresses_remove_arguments },
150 { "finduser_retries", opt_int, &finduser_retries },
151 { "freeze_tell", opt_stringptr, &freeze_tell },
152 { "gecos_name", opt_stringptr, &gecos_name },
153 { "gecos_pattern", opt_stringptr, &gecos_pattern },
83da1223 154#ifdef SUPPORT_TLS
2519e60d 155 { "gnutls_allow_auto_pkcs11", opt_bool, &gnutls_allow_auto_pkcs11 },
e6060e2c 156 { "gnutls_compat_mode", opt_bool, &gnutls_compat_mode },
83da1223 157#endif
059ec3d9
PH		 158 { "header_line_maxsize", opt_int, &header_line_maxsize },
159 { "header_maxsize", opt_int, &header_maxsize },
160 { "headers_charset", opt_stringptr, &headers_charset },
161 { "helo_accept_junk_hosts", opt_stringptr, &helo_accept_junk_hosts },
162 { "helo_allow_chars", opt_stringptr, &helo_allow_chars },
163 { "helo_lookup_domains", opt_stringptr, &helo_lookup_domains },
164 { "helo_try_verify_hosts", opt_stringptr, &helo_try_verify_hosts },
165 { "helo_verify_hosts", opt_stringptr, &helo_verify_hosts },
166 { "hold_domains", opt_stringptr, &hold_domains },
167 { "host_lookup", opt_stringptr, &host_lookup },
168 { "host_lookup_order", opt_stringptr, &host_lookup_order },
169 { "host_reject_connection", opt_stringptr, &host_reject_connection },
170 { "hosts_connection_nolog", opt_stringptr, &hosts_connection_nolog },
cee5f132 171#ifdef SUPPORT_PROXY
7a2fa0bc 172 { "hosts_proxy", opt_stringptr, &hosts_proxy },
cee5f132 173#endif
059ec3d9
PH		 174 { "hosts_treat_as_local", opt_stringptr, &hosts_treat_as_local },
175#ifdef LOOKUP_IBASE
176 { "ibase_servers", opt_stringptr, &ibase_servers },
177#endif
178 { "ignore_bounce_errors_after", opt_time, &ignore_bounce_errors_after },
179 { "ignore_fromline_hosts", opt_stringptr, &ignore_fromline_hosts },
180 { "ignore_fromline_local", opt_bool, &ignore_fromline_local },
bc3c7bb7 181 { "keep_environment", opt_stringptr, &keep_environment },
059ec3d9
PH		 182 { "keep_malformed", opt_time, &keep_malformed },
183#ifdef LOOKUP_LDAP
bc19a55b
PP		 184 { "ldap_ca_cert_dir", opt_stringptr, &eldap_ca_cert_dir },
185 { "ldap_ca_cert_file", opt_stringptr, &eldap_ca_cert_file },
186 { "ldap_cert_file", opt_stringptr, &eldap_cert_file },
187 { "ldap_cert_key", opt_stringptr, &eldap_cert_key },
188 { "ldap_cipher_suite", opt_stringptr, &eldap_cipher_suite },
059ec3d9 189 { "ldap_default_servers", opt_stringptr, &eldap_default_servers },
bc19a55b
PP		 190 { "ldap_require_cert", opt_stringptr, &eldap_require_cert },
191 { "ldap_start_tls", opt_bool, &eldap_start_tls },
059ec3d9
PH		 192 { "ldap_version", opt_int, &eldap_version },
193#endif
194 { "local_from_check", opt_bool, &local_from_check },
195 { "local_from_prefix", opt_stringptr, &local_from_prefix },
196 { "local_from_suffix", opt_stringptr, &local_from_suffix },
197 { "local_interfaces", opt_stringptr, &local_interfaces },
198 { "local_scan_timeout", opt_time, &local_scan_timeout },
199 { "local_sender_retain", opt_bool, &local_sender_retain },
200 { "localhost_number", opt_stringptr, &host_number_string },
201 { "log_file_path", opt_stringptr, &log_file_path },
202 { "log_selector", opt_stringptr, &log_selector_string },
203 { "log_timezone", opt_bool, &log_timezone },
204 { "lookup_open_max", opt_int, &lookup_open_max },
205 { "max_username_length", opt_int, &max_username_length },
ddea74fa 206 { "message_body_newlines", opt_bool, &message_body_newlines },
059ec3d9
PH		 207 { "message_body_visible", opt_mkint, &message_body_visible },
208 { "message_id_header_domain", opt_stringptr, &message_id_domain },
209 { "message_id_header_text", opt_stringptr, &message_id_text },
210 { "message_logs", opt_bool, &message_logs },
211 { "message_size_limit", opt_stringptr, &message_size_limit },
212#ifdef SUPPORT_MOVE_FROZEN_MESSAGES
213 { "move_frozen_messages", opt_bool, &move_frozen_messages },
214#endif
215 { "mua_wrapper", opt_bool, &mua_wrapper },
216#ifdef LOOKUP_MYSQL
217 { "mysql_servers", opt_stringptr, &mysql_servers },
218#endif
219 { "never_users", opt_uidlist, &never_users },
77bb000f
PP		 220#ifdef SUPPORT_TLS
221 { "openssl_options", opt_stringptr, &openssl_options },
222#endif
059ec3d9
PH		 223#ifdef LOOKUP_ORACLE
224 { "oracle_servers", opt_stringptr, &oracle_servers },
225#endif
226 { "percent_hack_domains", opt_stringptr, &percent_hack_domains },
227#ifdef EXIM_PERL
228 { "perl_at_start", opt_bool, &opt_perl_at_start },
229 { "perl_startup", opt_stringptr, &opt_perl_startup },
2f680c0c 230 { "perl_taintmode", opt_bool, &opt_perl_taintmode },
059ec3d9
PH		 231#endif
232#ifdef LOOKUP_PGSQL
233 { "pgsql_servers", opt_stringptr, &pgsql_servers },
234#endif
235 { "pid_file_path", opt_stringptr, &pid_file_path },
236 { "pipelining_advertise_hosts", opt_stringptr, &pipelining_advertise_hosts },
8ccd00b1 237#ifndef DISABLE_PRDR
fd98a5c6
JH		 238 { "prdr_enable", opt_bool, &prdr_enable },
239#endif
059ec3d9
PH		 240 { "preserve_message_logs", opt_bool, &preserve_message_logs },
241 { "primary_hostname", opt_stringptr, &primary_hostname },
242 { "print_topbitchars", opt_bool, &print_topbitchars },
243 { "process_log_path", opt_stringptr, &process_log_path },
244 { "prod_requires_admin", opt_bool, &prod_requires_admin },
245 { "qualify_domain", opt_stringptr, &qualify_domain_sender },
246 { "qualify_recipient", opt_stringptr, &qualify_domain_recipient },
247 { "queue_domains", opt_stringptr, &queue_domains },
248 { "queue_list_requires_admin",opt_bool, &queue_list_requires_admin },
249 { "queue_only", opt_bool, &queue_only },
250 { "queue_only_file", opt_stringptr, &queue_only_file },
251 { "queue_only_load", opt_fixed, &queue_only_load },
8669f003 252 { "queue_only_load_latch", opt_bool, &queue_only_load_latch },
059ec3d9
PH		 253 { "queue_only_override", opt_bool, &queue_only_override },
254 { "queue_run_in_order", opt_bool, &queue_run_in_order },
0cd5fd23 255 { "queue_run_max", opt_stringptr, &queue_run_max },
059ec3d9
PH		 256 { "queue_smtp_domains", opt_stringptr, &queue_smtp_domains },
257 { "receive_timeout", opt_time, &receive_timeout },
258 { "received_header_text", opt_stringptr, &received_header_text },
259 { "received_headers_max", opt_int, &received_headers_max },
260 { "recipient_unqualified_hosts", opt_stringptr, &recipient_unqualified_hosts },
261 { "recipients_max", opt_int, &recipients_max },
262 { "recipients_max_reject", opt_bool, &recipients_max_reject },
de78e2d5 263#ifdef LOOKUP_REDIS
9bdd29ad
TL		 264 { "redis_servers", opt_stringptr, &redis_servers },
265#endif
059ec3d9
PH		 266 { "remote_max_parallel", opt_int, &remote_max_parallel },
267 { "remote_sort_domains", opt_stringptr, &remote_sort_domains },
268 { "retry_data_expire", opt_time, &retry_data_expire },
269 { "retry_interval_max", opt_time, &retry_interval_max },
270 { "return_path_remove", opt_bool, &return_path_remove },
271 { "return_size_limit", opt_mkint|opt_hidden, &bounce_return_size_limit },
272 { "rfc1413_hosts", opt_stringptr, &rfc1413_hosts },
273 { "rfc1413_query_timeout", opt_time, &rfc1413_query_timeout },
274 { "sender_unqualified_hosts", opt_stringptr, &sender_unqualified_hosts },
846430d9 275 { "slow_lookup_log", opt_int, &slow_lookup_log },
059ec3d9
PH		 276 { "smtp_accept_keepalive", opt_bool, &smtp_accept_keepalive },
277 { "smtp_accept_max", opt_int, &smtp_accept_max },
278 { "smtp_accept_max_nonmail", opt_int, &smtp_accept_max_nonmail },
279 { "smtp_accept_max_nonmail_hosts", opt_stringptr, &smtp_accept_max_nonmail_hosts },
280 { "smtp_accept_max_per_connection", opt_int, &smtp_accept_max_per_connection },
281 { "smtp_accept_max_per_host", opt_stringptr, &smtp_accept_max_per_host },
282 { "smtp_accept_queue", opt_int, &smtp_accept_queue },
283 { "smtp_accept_queue_per_connection", opt_int, &smtp_accept_queue_per_connection },
284 { "smtp_accept_reserve", opt_int, &smtp_accept_reserve },
285 { "smtp_active_hostname", opt_stringptr, &raw_active_hostname },
286 { "smtp_banner", opt_stringptr, &smtp_banner },
287 { "smtp_check_spool_space", opt_bool, &smtp_check_spool_space },
288 { "smtp_connect_backlog", opt_int, &smtp_connect_backlog },
289 { "smtp_enforce_sync", opt_bool, &smtp_enforce_sync },
290 { "smtp_etrn_command", opt_stringptr, &smtp_etrn_command },
291 { "smtp_etrn_serialize", opt_bool, &smtp_etrn_serialize },
292 { "smtp_load_reserve", opt_fixed, &smtp_load_reserve },
293 { "smtp_max_synprot_errors", opt_int, &smtp_max_synprot_errors },
294 { "smtp_max_unknown_commands",opt_int, &smtp_max_unknown_commands },
295 { "smtp_ratelimit_hosts", opt_stringptr, &smtp_ratelimit_hosts },
296 { "smtp_ratelimit_mail", opt_stringptr, &smtp_ratelimit_mail },
297 { "smtp_ratelimit_rcpt", opt_stringptr, &smtp_ratelimit_rcpt },
1ad6489e 298 { "smtp_receive_timeout", opt_func, &fn_smtp_receive_timeout },
059ec3d9
PH		 299 { "smtp_reserve_hosts", opt_stringptr, &smtp_reserve_hosts },
300 { "smtp_return_error_details",opt_bool, &smtp_return_error_details },
8c5d388a 301#ifdef SUPPORT_I18N
3d1451ea
JH		 302 { "smtputf8_advertise_hosts", opt_stringptr, &smtputf8_advertise_hosts },
303#endif
8523533c
TK		 304#ifdef WITH_CONTENT_SCAN
305 { "spamd_address", opt_stringptr, &spamd_address },
65a7d8c3
NM		 306#endif
307#ifdef EXPERIMENTAL_SPF
308 { "spf_guess", opt_stringptr, &spf_guess },
8523533c 309#endif
059ec3d9
PH		 310 { "split_spool_directory", opt_bool, &split_spool_directory },
311 { "spool_directory", opt_stringptr, &spool_directory },
328c5688 312 { "spool_wireformat", opt_bool, &spool_wireformat },
31480e42
PH		 313#ifdef LOOKUP_SQLITE
314 { "sqlite_lock_timeout", opt_int, &sqlite_lock_timeout },
315#endif
8523533c
TK		 316#ifdef EXPERIMENTAL_SRS
317 { "srs_config", opt_stringptr, &srs_config },
384152a6
TK		 318 { "srs_hashlength", opt_int, &srs_hashlength },
319 { "srs_hashmin", opt_int, &srs_hashmin },
320 { "srs_maxage", opt_int, &srs_maxage },
321 { "srs_secrets", opt_stringptr, &srs_secrets },
322 { "srs_usehash", opt_bool, &srs_usehash },
323 { "srs_usetimestamp", opt_bool, &srs_usetimestamp },
8523533c 324#endif
38a0a95f 325 { "strict_acl_vars", opt_bool, &strict_acl_vars },
059ec3d9
PH		 326 { "strip_excess_angle_brackets", opt_bool, &strip_excess_angle_brackets },
327 { "strip_trailing_dot", opt_bool, &strip_trailing_dot },
328 { "syslog_duplication", opt_bool, &syslog_duplication },
329 { "syslog_facility", opt_stringptr, &syslog_facility_str },
2333e06f 330 { "syslog_pid", opt_bool, &syslog_pid },
059ec3d9
PH		 331 { "syslog_processname", opt_stringptr, &syslog_processname },
332 { "syslog_timestamp", opt_bool, &syslog_timestamp },
333 { "system_filter", opt_stringptr, &system_filter },
334 { "system_filter_directory_transport", opt_stringptr,&system_filter_directory_transport },
335 { "system_filter_file_transport",opt_stringptr,&system_filter_file_transport },
336 { "system_filter_group", opt_gid, &system_filter_gid },
337 { "system_filter_pipe_transport",opt_stringptr,&system_filter_pipe_transport },
338 { "system_filter_reply_transport",opt_stringptr,&system_filter_reply_transport },
339 { "system_filter_user", opt_uid, &system_filter_uid },
340 { "tcp_nodelay", opt_bool, &tcp_nodelay },
5dc43717
JJ		 341#ifdef USE_TCP_WRAPPERS
342 { "tcp_wrappers_daemon_name", opt_stringptr, &tcp_wrappers_daemon_name },
343#endif
059ec3d9
PH		 344 { "timeout_frozen_after", opt_time, &timeout_frozen_after },
345 { "timezone", opt_stringptr, &timezone_string },
059ec3d9 346 { "tls_advertise_hosts", opt_stringptr, &tls_advertise_hosts },
23f3dc67 347#ifdef SUPPORT_TLS
059ec3d9
PH		 348 { "tls_certificate", opt_stringptr, &tls_certificate },
349 { "tls_crl", opt_stringptr, &tls_crl },
3375e053 350 { "tls_dh_max_bits", opt_int, &tls_dh_max_bits },
059ec3d9 351 { "tls_dhparam", opt_stringptr, &tls_dhparam },
10ca4f1c 352 { "tls_eccurve", opt_stringptr, &tls_eccurve },
f2de3a33 353# ifndef DISABLE_OCSP
3f7eeb86 354 { "tls_ocsp_file", opt_stringptr, &tls_ocsp_file },
817d9f57
JH		 355# endif
356 { "tls_on_connect_ports", opt_stringptr, &tls_in.on_connect_ports },
059ec3d9
PH		 357 { "tls_privatekey", opt_stringptr, &tls_privatekey },
358 { "tls_remember_esmtp", opt_bool, &tls_remember_esmtp },
359 { "tls_require_ciphers", opt_stringptr, &tls_require_ciphers },
360 { "tls_try_verify_hosts", opt_stringptr, &tls_try_verify_hosts },
361 { "tls_verify_certificates", opt_stringptr, &tls_verify_certificates },
362 { "tls_verify_hosts", opt_stringptr, &tls_verify_hosts },
363#endif
364 { "trusted_groups", opt_gidlist, &trusted_groups },
365 { "trusted_users", opt_uidlist, &trusted_users },
366 { "unknown_login", opt_stringptr, &unknown_login },
367 { "unknown_username", opt_stringptr, &unknown_username },
368 { "untrusted_set_sender", opt_stringptr, &untrusted_set_sender },
369 { "uucp_from_pattern", opt_stringptr, &uucp_from_pattern },
370 { "uucp_from_sender", opt_stringptr, &uucp_from_sender },
371 { "warn_message_file", opt_stringptr, &warn_message_file },
372 { "write_rejectlog", opt_bool, &write_rejectlog }
373};
374
cab0c277 375#ifndef MACRO_PREDEF
d7bed771 376static int optionlist_config_size = nelem(optionlist_config);
cab0c277 377#endif
059ec3d9
PH		 378
379
d185889f
JH		 380#ifdef MACRO_PREDEF
381
382static void fn_smtp_receive_timeout(const uschar * name, const uschar * str) {/*Dummy*/}
383
384void
385options_main(void)
386{
387options_from_list(optionlist_config, nelem(optionlist_config), US"MAIN", NULL);
388}
389
390void
391options_auths(void)
392{
393struct auth_info * ai;
394uschar buf[64];
395
396options_from_list(optionlist_auths, optionlist_auths_size, US"AUTHENTICATORS", NULL);
397
398for (ai = auths_available; ai->driver_name[0]; ai++)
399 {
cab0c277 400 spf(buf, sizeof(buf), US"_DRIVER_AUTHENTICATOR_%T", ai->driver_name);
d185889f
JH		 401 builtin_macro_create(buf);
402 options_from_list(ai->options, (unsigned)*ai->options_count, US"AUTHENTICATOR", ai->driver_name);
403 }
404}
405
406
407#else /*!MACRO_PREDEF*/
408
409extern char **environ;
410
411static void save_config_line(const uschar* line);
412static void save_config_position(const uschar *file, int line);
413static void print_config(BOOL admin, BOOL terse);
414
415
416#define CSTATE_STACK_SIZE 10
417
418const uschar *config_directory = NULL;
419
420
421/* Structure for chain (stack) of .included files */
422
423typedef struct config_file_item {
424 struct config_file_item *next;
425 const uschar *filename;
426 const uschar *directory;
427 FILE *file;
428 int lineno;
429} config_file_item;
430
431/* Structure for chain of configuration lines (-bP config) */
432
433typedef struct config_line_item {
434 struct config_line_item *next;
435 uschar *line;
436} config_line_item;
437
438static config_line_item* config_lines;
439
440/* Structure of table of conditional words and their state transitions */
441
442typedef struct cond_item {
443 uschar *name;
444 int namelen;
445 int action1;
446 int action2;
447 int pushpop;
448} cond_item;
449
450/* Structure of table of syslog facility names and values */
451
452typedef struct syslog_fac_item {
453 uschar *name;
454 int value;
455} syslog_fac_item;
456
457/* constants */
458static const char * const hidden = "<value not displayable>";
459
460/* Static variables */
461
462static config_file_item *config_file_stack = NULL; /* For includes */
463
464static uschar *syslog_facility_str = NULL;
465static uschar next_section[24];
466static uschar time_buffer[24];
467
468/* State variables for conditional loading (.ifdef / .else / .endif) */
469
470static int cstate = 0;
471static int cstate_stack_ptr = -1;
472static int cstate_stack[CSTATE_STACK_SIZE];
473
474/* Table of state transitions for handling conditional inclusions. There are
475four possible state transitions:
476
477 .ifdef true
478 .ifdef false
479 .elifdef true (or .else)
480 .elifdef false
481
482.endif just causes the previous cstate to be popped off the stack */
483
484static int next_cstate[3][4] =
485 {
486 /* State 0: reading from file, or reading until next .else or .endif */
487 { 0, 1, 2, 2 },
488 /* State 1: condition failed, skipping until next .else or .endif */
489 { 2, 2, 0, 1 },
490 /* State 2: skipping until .endif */
491 { 2, 2, 2, 2 },
492 };
493
494/* Table of conditionals and the states to set. For each name, there are four
495values: the length of the name (to save computing it each time), the state to
496set if a macro was found in the line, the state to set if a macro was not found
497in the line, and a stack manipulation setting which is:
498
499 -1 pull state value off the stack
500 0 don't alter the stack
501 +1 push value onto stack, before setting new state
502*/
503
504static cond_item cond_list[] = {
505 { US"ifdef", 5, 0, 1, 1 },
506 { US"ifndef", 6, 1, 0, 1 },
507 { US"elifdef", 7, 2, 3, 0 },
508 { US"elifndef", 8, 3, 2, 0 },
509 { US"else", 4, 2, 2, 0 },
510 { US"endif", 5, 0, 0, -1 }
511};
512
513static int cond_list_size = sizeof(cond_list)/sizeof(cond_item);
514
515/* Table of syslog facility names and their values */
516
517static syslog_fac_item syslog_list[] = {
518 { US"mail", LOG_MAIL },
519 { US"user", LOG_USER },
520 { US"news", LOG_NEWS },
521 { US"uucp", LOG_UUCP },
522 { US"local0", LOG_LOCAL0 },
523 { US"local1", LOG_LOCAL1 },
524 { US"local2", LOG_LOCAL2 },
525 { US"local3", LOG_LOCAL3 },
526 { US"local4", LOG_LOCAL4 },
527 { US"local5", LOG_LOCAL5 },
528 { US"local6", LOG_LOCAL6 },
529 { US"local7", LOG_LOCAL7 },
530 { US"daemon", LOG_DAEMON }
531};
532
533static int syslog_list_size = sizeof(syslog_list)/sizeof(syslog_fac_item);
534
535
536
059ec3d9
PH		 537
538/*************************************************
539* Find the name of an option *
540*************************************************/
541
542/* This function is to aid debugging. Various functions take arguments that are
543pointer variables in the options table or in option tables for various drivers.
544For debugging output, it is useful to be able to find the name of the option
545which is currently being processed. This function finds it, if it exists, by
546searching the table(s).
547
548Arguments: a value that is presumed to be in the table above
549Returns: the option name, or an empty string
550*/
551
552uschar *
553readconf_find_option(void *p)
554{
555int i;
556router_instance *r;
557transport_instance *t;
558
c0b9d3e8 559for (i = 0; i < nelem(optionlist_config); i++)
059ec3d9
PH		 560 if (p == optionlist_config[i].value) return US optionlist_config[i].name;
561
d7bed771 562for (r = routers; r; r = r->next)
059ec3d9
PH		 563 {
564 router_info *ri = r->info;
c4b738a9 565 for (i = 0; i < *ri->options_count; i++)
059ec3d9
PH		 566 {
567 if ((ri->options[i].type & opt_mask) != opt_stringptr) continue;
5903c6ff 568 if (p == CS (r->options_block) + (long int)(ri->options[i].value))
059ec3d9
PH		 569 return US ri->options[i].name;
570 }
571 }
572
d7bed771 573for (t = transports; t; t = t->next)
059ec3d9
PH		 574 {
575 transport_info *ti = t->info;
c4b738a9 576 for (i = 0; i < *ti->options_count; i++)
059ec3d9 577 {
c4b738a9
JH		 578 optionlist * op = &ti->options[i];
579 if ((op->type & opt_mask) != opt_stringptr) continue;
580 if (p == ( op->type & opt_public
5903c6ff
JH		 581 ? CS t
582 : CS t->options_block
c4b738a9
JH		 583 )
584 + (long int)op->value)
585 return US op->name;
059ec3d9
PH		 586 }
587 }
588
589return US"";
590}
591
592
593
594
cf00dad6
PH		 595/*************************************************
596* Deal with an assignment to a macro *
597*************************************************/
598
d185889f 599/* We have a new definition; append to the list.
125103ce
JH		 600
601Args:
602 name Name of the macro. Must be in storage persistent past the call
603 val Expansion result for the macro. Ditto persistence.
604*/
c193398d
JH		 605
606macro_item *
d185889f 607macro_create(const uschar * name, const uschar * val, BOOL command_line)
c193398d 608{
125103ce 609macro_item * m = store_get(sizeof(macro_item));
c193398d 610
d185889f
JH		 611/* fprintf(stderr, "%s: '%s' '%s'\n", __FUNCTION__, name, val); */
612m->next = NULL;
c193398d 613m->command_line = command_line;
b8f899cf
JH		 614m->namelen = Ustrlen(name);
615m->replen = Ustrlen(val);
125103ce
JH		 616m->name = name;
617m->replacement = val;
d185889f
JH		 618mlast->next = m;
619mlast = m;
c193398d
JH		 620return m;
621}
622
623
cf00dad6
PH		 624/* This function is called when a line that starts with an upper case letter is
625encountered. The argument "line" should contain a complete logical line, and
626start with the first letter of the macro name. The macro name and the
627replacement text are extracted and stored. Redefinition of existing,
628non-command line, macros is permitted using '==' instead of '='.
629
630Arguments:
631 s points to the start of the logical line
632
633Returns: nothing
634*/
635
dc5d51dc 636static void
cf00dad6
PH		 637read_macro_assignment(uschar *s)
638{
639uschar name[64];
640int namelen = 0;
641BOOL redef = FALSE;
642macro_item *m;
cf00dad6
PH		 643
644while (isalnum(*s) || *s == '_')
645 {
646 if (namelen >= sizeof(name) - 1)
647 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
ef840681 648 "macro name too long (maximum is " SIZE_T_FMT " characters)", sizeof(name) - 1);
cf00dad6
PH		 649 name[namelen++] = *s++;
650 }
651name[namelen] = 0;
652
653while (isspace(*s)) s++;
654if (*s++ != '=')
655 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "malformed macro definition");
656
657if (*s == '=')
658 {
659 redef = TRUE;
660 s++;
661 }
662while (isspace(*s)) s++;
663
664/* If an existing macro of the same name was defined on the command line, we
665just skip this definition. It's an error to attempt to redefine a macro without
666redef set to TRUE, or to redefine a macro when it hasn't been defined earlier.
667It is also an error to define a macro whose name begins with the name of a
c193398d
JH		 668previously defined macro. This is the requirement that make using a tree
669for macros hard; we must check all macros for the substring. Perhaps a
670sorted list, and a bsearch, would work?
671Note: it is documented that the other way round works. */
cf00dad6 672
c193398d 673for (m = macros; m; m = m->next)
cf00dad6 674 {
cf00dad6
PH		 675 if (Ustrcmp(m->name, name) == 0)
676 {
677 if (!m->command_line && !redef)
678 log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "macro \"%s\" is already "
679 "defined (use \"==\" if you want to redefine it", name);
680 break;
681 }
682
c193398d 683 if (m->namelen < namelen && Ustrstr(name, m->name) != NULL)
cf00dad6
PH		 684 log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "\"%s\" cannot be defined as "
685 "a macro because previously defined macro \"%s\" is a substring",
686 name, m->name);
687
688 /* We cannot have this test, because it is documented that a substring
689 macro is permitted (there is even an example).
690 *
c193398d 691 * if (m->namelen > namelen && Ustrstr(m->name, name) != NULL)
cf00dad6
PH		 692 * log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "\"%s\" cannot be defined as "
693 * "a macro because it is a substring of previously defined macro \"%s\"",
694 * name, m->name);
695 */
cf00dad6
PH		 696 }
697
698/* Check for an overriding command-line definition. */
699
c193398d 700if (m && m->command_line) return;
cf00dad6
PH		 701
702/* Redefinition must refer to an existing macro. */
703
704if (redef)
c193398d 705 if (m)
b8f899cf
JH		 706 {
707 m->replen = Ustrlen(s);
c193398d 708 m->replacement = string_copy(s);
b8f899cf 709 }
c193398d 710 else
cf00dad6
PH		 711 log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "can't redefine an undefined macro "
712 "\"%s\"", name);
cf00dad6 713
c193398d 714/* We have a new definition. */
cf00dad6 715else
d185889f 716 (void) macro_create(string_copy(name), string_copy(s), FALSE);
8e6c4db1
JH		 717}
718
719
cf00dad6
PH		 720
721
059ec3d9
PH		 722
723/*************************************************
724* Read configuration line *
725*************************************************/
726
727/* A logical line of text is read from the configuration file into the big
728buffer, taking account of macros, .includes, and continuations. The size of
729big_buffer is increased if necessary. The count of configuration lines is
730maintained. Physical input lines starting with # (ignoring leading white space,
731and after macro replacement) and empty logical lines are always ignored.
732Leading and trailing spaces are removed.
733
734If we hit a line of the form "begin xxxx", the xxxx is placed in the
735next_section vector, and the function returns NULL, indicating the end of a
736configuration section. On end-of-file, NULL is returned with next_section
737empty.
738
739Arguments: none
740
741Returns: a pointer to the first non-blank in the line,
742 or NULL if eof or end of section is reached
743*/
744
745static uschar *
746get_config_line(void)
747{
748int startoffset = 0; /* To first non-blank char in logical line */
749int len = 0; /* Of logical line so far */
750int newlen;
751uschar *s, *ss;
752macro_item *m;
753BOOL macro_found;
754
755/* Loop for handling continuation lines, skipping comments, and dealing with
756.include files. */
757
758for (;;)
759 {
760 if (Ufgets(big_buffer+len, big_buffer_size-len, config_file) == NULL)
761 {
762 if (config_file_stack != NULL) /* EOF inside .include */
763 {
f1e894f3 764 (void)fclose(config_file);
059ec3d9
PH		 765 config_file = config_file_stack->file;
766 config_filename = config_file_stack->filename;
29f67888 767 config_directory = config_file_stack->directory;
059ec3d9
PH		 768 config_lineno = config_file_stack->lineno;
769 config_file_stack = config_file_stack->next;
bf3c2c6b
HSHR		 770 if (config_lines)
771 save_config_position(config_filename, config_lineno);
059ec3d9
PH		 772 continue;
773 }
774
775 /* EOF at top level */
776
777 if (cstate_stack_ptr >= 0)
778 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
779 "Unexpected end of configuration file: .endif missing");
780
781 if (len != 0) break; /* EOF after continuation */
782 next_section[0] = 0; /* EOF at start of logical line */
783 return NULL;
784 }
785
786 config_lineno++;
787 newlen = len + Ustrlen(big_buffer + len);
788
bf3c2c6b
HSHR		 789 if (config_lines && config_lineno == 1)
790 save_config_position(config_filename, config_lineno);
791
059ec3d9
PH		 792 /* Handle pathologically long physical lines - yes, it did happen - by
793 extending big_buffer at this point. The code also copes with very long
794 logical lines. */
795
796 while (newlen == big_buffer_size - 1 && big_buffer[newlen - 1] != '\n')
797 {
798 uschar *newbuffer;
799 big_buffer_size += BIG_BUFFER_SIZE;
800 newbuffer = store_malloc(big_buffer_size);
801
802 /* This use of strcpy is OK because we know that the string in the old
803 buffer is shorter than the new buffer. */
804
805 Ustrcpy(newbuffer, big_buffer);
806 store_free(big_buffer);
807 big_buffer = newbuffer;
808 if (Ufgets(big_buffer+newlen, big_buffer_size-newlen, config_file) == NULL)
809 break;
810 newlen += Ustrlen(big_buffer + newlen);
811 }
812
813 /* Find the true start of the physical line - leading spaces are always
814 ignored. */
815
816 ss = big_buffer + len;
817 while (isspace(*ss)) ss++;
818
819 /* Process the physical line for macros. If this is the start of the logical
820 line, skip over initial text at the start of the line if it starts with an
821 upper case character followed by a sequence of name characters and an equals
822 sign, because that is the definition of a new macro, and we don't do
823 replacement therein. */
824
825 s = ss;
826 if (len == 0 && isupper(*s))
827 {
828 while (isalnum(*s) || *s == '_') s++;
829 while (isspace(*s)) s++;
830 if (*s != '=') s = ss; /* Not a macro definition */
831 }
832
b8f899cf
JH		 833 /* Skip leading chars which cannot start a macro name, to avoid multiple
834 pointless rescans in Ustrstr calls. */
835
836 while (*s && !isupper(*s) && *s != '_') s++;
837
059ec3d9
PH		 838 /* For each defined macro, scan the line (from after XXX= if present),
839 replacing all occurrences of the macro. */
840
841 macro_found = FALSE;
a4034eb8 842 for (m = macros; m; m = m->next)
059ec3d9 843 {
b8f899cf
JH		 844 uschar * p, *pp;
845 uschar * t = s;
059ec3d9
PH		 846
847 while ((p = Ustrstr(t, m->name)) != NULL)
848 {
849 int moveby;
059ec3d9 850
b8f899cf 851/* fprintf(stderr, "%s: matched '%s' in '%s'\n", __FUNCTION__, m->name, ss); */
059ec3d9
PH		 852 /* Expand the buffer if necessary */
853
b8f899cf 854 while (newlen - m->namelen + m->replen + 1 > big_buffer_size)
059ec3d9
PH		 855 {
856 int newsize = big_buffer_size + BIG_BUFFER_SIZE;
857 uschar *newbuffer = store_malloc(newsize);
858 memcpy(newbuffer, big_buffer, newlen + 1);
859 p = newbuffer + (p - big_buffer);
860 s = newbuffer + (s - big_buffer);
861 ss = newbuffer + (ss - big_buffer);
862 t = newbuffer + (t - big_buffer);
863 big_buffer_size = newsize;
864 store_free(big_buffer);
865 big_buffer = newbuffer;
866 }
867
868 /* Shuffle the remaining characters up or down in the buffer before
869 copying in the replacement text. Don't rescan the replacement for this
870 same macro. */
871
c193398d 872 pp = p + m->namelen;
b8f899cf 873 if ((moveby = m->replen - m->namelen) != 0)
059ec3d9 874 {
b8f899cf 875 memmove(p + m->replen, pp, (big_buffer + newlen) - pp + 1);
059ec3d9
PH		 876 newlen += moveby;
877 }
b8f899cf
JH		 878 Ustrncpy(p, m->replacement, m->replen);
879 t = p + m->replen;
880 while (*t && !isupper(*t) && *t != '_') t++;
059ec3d9
PH		 881 macro_found = TRUE;
882 }
883 }
884
885 /* An empty macro replacement at the start of a line could mean that ss no
886 longer points to the first non-blank character. */
887
888 while (isspace(*ss)) ss++;
889
890 /* Check for comment lines - these are physical lines. */
891
892 if (*ss == '#') continue;
893
894 /* Handle conditionals, which are also applied to physical lines. Conditions
895 are of the form ".ifdef ANYTEXT" and are treated as true if any macro
896 expansion occured on the rest of the line. A preliminary test for the leading
897 '.' saves effort on most lines. */
898
899 if (*ss == '.')
900 {
901 int i;
902
903 /* Search the list of conditional directives */
904
905 for (i = 0; i < cond_list_size; i++)
906 {
907 int n;
908 cond_item *c = cond_list+i;
909 if (Ustrncmp(ss+1, c->name, c->namelen) != 0) continue;
910
911 /* The following character must be white space or end of string */
912
913 n = ss[1 + c->namelen];
914 if (n != ' ' && n != 't' && n != '\n' && n != 0) break;
915
916 /* .ifdef and .ifndef push the current state onto the stack, then set
917 a new one from the table. Stack overflow is an error */
918
919 if (c->pushpop > 0)
920 {
921 if (cstate_stack_ptr >= CSTATE_STACK_SIZE - 1)
922 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
923 ".%s nested too deeply", c->name);
924 cstate_stack[++cstate_stack_ptr] = cstate;
925 cstate = next_cstate[cstate][macro_found? c->action1 : c->action2];
926 }
927
928 /* For any of the others, stack underflow is an error. The next state
929 comes either from the stack (.endif) or from the table. */
930
931 else
932 {
933 if (cstate_stack_ptr < 0)
934 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
935 ".%s without matching .ifdef", c->name);
936 cstate = (c->pushpop < 0)? cstate_stack[cstate_stack_ptr--] :
937 next_cstate[cstate][macro_found? c->action1 : c->action2];
938 }
939
940 /* Having dealt with a directive, break the loop */
941
942 break;
943 }
944
945 /* If we have handled a conditional directive, continue with the next
946 physical line. Otherwise, fall through. */
947
948 if (i < cond_list_size) continue;
949 }
950
951 /* If the conditional state is not 0 (actively using these lines), ignore
952 this input line. */
953
954 if (cstate != 0) continue; /* Conditional skip */
955
956 /* Handle .include lines - these are also physical lines. */
957
958 if (Ustrncmp(ss, ".include", 8) == 0 &&
959 (isspace(ss[8]) ||
960 (Ustrncmp(ss+8, "_if_exists", 10) == 0 && isspace(ss[18]))))
961 {
962 uschar *t;
963 int include_if_exists = isspace(ss[8])? 0 : 10;
964 config_file_item *save;
965 struct stat statbuf;
966
967 ss += 9 + include_if_exists;
968 while (isspace(*ss)) ss++;
969 t = ss + Ustrlen(ss);
970 while (t > ss && isspace(t[-1])) t--;
971 if (*ss == '\"' && t[-1] == '\"')
972 {
973 ss++;
974 t--;
975 }
976 *t = 0;
977
29f67888
HSHR		 978 /* We allow relative file names. For security reasons currently
979 relative names not allowed with .include_if_exists. For .include_if_exists
980 we need to check the permissions/ownership of the containing folder */
145396a6 981 if (*ss != '/')
29f67888
HSHR		 982 if (include_if_exists) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, ".include specifies a non-"
983 "absolute path \"%s\"", ss);
984 else
985 {
acec9514
JH		 986 gstring * g = string_append(NULL, 3, config_directory, "/", ss);
987 ss = string_from_gstring(g);
29f67888 988 }
145396a6 989
059ec3d9
PH		 990 if (include_if_exists != 0 && (Ustat(ss, &statbuf) != 0)) continue;
991
bf3c2c6b
HSHR		 992 if (config_lines)
993 save_config_position(config_filename, config_lineno);
059ec3d9
PH		 994 save = store_get(sizeof(config_file_item));
995 save->next = config_file_stack;
996 config_file_stack = save;
997 save->file = config_file;
998 save->filename = config_filename;
29f67888 999 save->directory = config_directory;
059ec3d9
PH		 1000 save->lineno = config_lineno;
1001
10c50704 1002 if (!(config_file = Ufopen(ss, "rb")))
059ec3d9
PH		 1003 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to open included "
1004 "configuration file %s", ss);
10c50704 1005
059ec3d9 1006 config_filename = string_copy(ss);
863bd541 1007 config_directory = string_copyn(ss, CUstrrchr(ss, '/') - ss);
059ec3d9
PH		 1008 config_lineno = 0;
1009 continue;
1010 }
1011
1012 /* If this is the start of the logical line, remember where the non-blank
1013 data starts. Otherwise shuffle down continuation lines to remove leading
1014 white space. */
1015
1016 if (len == 0)
1017 startoffset = ss - big_buffer;
1018 else
1019 {
1020 s = big_buffer + len;
1021 if (ss > s)
1022 {
1023 memmove(s, ss, (newlen - len) - (ss - s) + 1);
1024 newlen -= ss - s;
1025 }
1026 }
1027
1028 /* Accept the new addition to the line. Remove trailing white space. */
1029
1030 len = newlen;
1031 while (len > 0 && isspace(big_buffer[len-1])) len--;
1032 big_buffer[len] = 0;
1033
1034 /* We are done if the line does not end in backslash and contains some data.
1035 Empty logical lines are ignored. For continuations, remove the backslash and
1036 go round the loop to read the continuation line. */
1037
1038 if (len > 0)
1039 {
1040 if (big_buffer[len-1] != '\\') break; /* End of logical line */
1041 big_buffer[--len] = 0; /* Remove backslash */
1042 }
1043 } /* Loop for reading multiple physical lines */
1044
1045/* We now have a logical line. Test for the end of a configuration section (or,
1046more accurately, for the start of the next section). Place the name of the next
1047section in next_section, and return NULL. If the name given is longer than
1048next_section, truncate it. It will be unrecognized later, because all the known
1049section names do fit. Leave space for pluralizing. */
1050
1051s = big_buffer + startoffset; /* First non-space character */
bf3c2c6b
HSHR		 1052
1053if (config_lines)
1054 save_config_line(s);
1055
059ec3d9
PH		 1056if (strncmpic(s, US"begin ", 6) == 0)
1057 {
1058 s += 6;
1059 while (isspace(*s)) s++;
1060 if (big_buffer + len - s > sizeof(next_section) - 2)
1061 s[sizeof(next_section) - 2] = 0;
1062 Ustrcpy(next_section, s);
1063 return NULL;
1064 }
1065
1066/* Return the first non-blank character. */
1067
1068return s;
1069}
1070
1071
1072
1073/*************************************************
1074* Read a name *
1075*************************************************/
1076
1077/* The yield is the pointer to the next uschar. Names longer than the
1078output space are silently truncated. This function is also used from acl.c when
1079parsing ACLs.
1080
1081Arguments:
1082 name where to put the name
1083 len length of name
1084 s input pointer
1085
1086Returns: new input pointer
1087*/
1088
1089uschar *
1090readconf_readname(uschar *name, int len, uschar *s)
1091{
1092int p = 0;
1093while (isspace(*s)) s++;
1094if (isalpha(*s))
1095 {
1096 while (isalnum(*s) || *s == '_')
1097 {
1098 if (p < len-1) name[p++] = *s;
1099 s++;
1100 }
1101 }
1102name[p] = 0;
1103while (isspace(*s)) s++;
1104return s;
1105}
1106
1107
1108
1109
1110/*************************************************
1111* Read a time value *
1112*************************************************/
1113
1114/* This function is also called from outside, to read argument
1115time values. The format of a time value is:
1116
1117 [<n>w][<n>d][<n>h][<n>m][<n>s]
1118
1119as long as at least one is present. If a format error is encountered,
1120return a negative value. The value must be terminated by the given
1121terminator.
1122
1123Arguments:
1124 s input pointer
1125 terminator required terminating character
1126 return_msec if TRUE, allow fractional seconds and return milliseconds
1127
1128Returns: the time value, or -1 on syntax error
1129 value is seconds if return_msec is FALSE
1130 value is milliseconds if return_msec is TRUE
1131*/
1132
1133int
1ad6489e 1134readconf_readtime(const uschar *s, int terminator, BOOL return_msec)
059ec3d9
PH		 1135{
1136int yield = 0;
1137for (;;)
1138 {
1139 int value, count;
1140 double fraction;
1141
1142 if (!isdigit(*s)) return -1;
1ad6489e 1143 (void)sscanf(CCS s, "%d%n", &value, &count);
059ec3d9
PH		 1144 s += count;
1145
1146 switch (*s)
1147 {
1148 case 'w': value *= 7;
1149 case 'd': value *= 24;
1150 case 'h': value *= 60;
1151 case 'm': value *= 60;
1152 case 's': s++;
1153 break;
1154
1155 case '.':
1156 if (!return_msec) return -1;
1ad6489e 1157 (void)sscanf(CCS s, "%lf%n", &fraction, &count);
059ec3d9
PH		 1158 s += count;
1159 if (*s++ != 's') return -1;
1160 yield += (int)(fraction * 1000.0);
1161 break;
1162
1163 default: return -1;
1164 }
1165
1166 if (return_msec) value *= 1000;
1167 yield += value;
1168 if (*s == terminator) return yield;
1169 }
1170/* Control never reaches here. */
1171}
1172
1173
1174
1175/*************************************************
1176* Read a fixed point value *
1177*************************************************/
1178
1179/* The value is returned *1000
1180
1181Arguments:
1182 s input pointer
1183 terminator required terminator
1184
1185Returns: the value, or -1 on error
1186*/
1187
1188static int
55414b25 1189readconf_readfixed(const uschar *s, int terminator)
059ec3d9
PH		 1190{
1191int yield = 0;
1192int value, count;
1193if (!isdigit(*s)) return -1;
1194(void)sscanf(CS s, "%d%n", &value, &count);
1195s += count;
1196yield = value * 1000;
1197if (*s == '.')
1198 {
1199 int m = 100;
1200 while (isdigit((*(++s))))
1201 {
1202 yield += (*s - '0') * m;
1203 m /= 10;
1204 }
1205 }
1206
1207return (*s == terminator)? yield : (-1);
1208}
1209
1210
1211
1212/*************************************************
1213* Find option in list *
1214*************************************************/
1215
1216/* The lists are always in order, so binary chop can be used.
1217
1218Arguments:
1219 name the option name to search for
1220 ol the first entry in the option list
1221 last one more than the offset of the last entry in the option list
1222
1223Returns: pointer to an option entry, or NULL if not found
1224*/
1225
1226static optionlist *
1227find_option(uschar *name, optionlist *ol, int last)
1228{
1229int first = 0;
1230while (last > first)
1231 {
1232 int middle = (first + last)/2;
1233 int c = Ustrcmp(name, ol[middle].name);
d7bed771 1234
059ec3d9 1235 if (c == 0) return ol + middle;
d7bed771
JH		 1236 else if (c > 0) first = middle + 1;
1237 else last = middle;
059ec3d9
PH		 1238 }
1239return NULL;
1240}
1241
1242
1243
1244/*************************************************
1245* Find a set flag in option list *
1246*************************************************/
1247
1248/* Because some versions of Unix make no restrictions on the values of uids and
1249gids (even negative ones), we cannot represent "unset" by a special value.
1250There is therefore a separate boolean variable for each one indicating whether
1251a value is set or not. This function returns a pointer to the boolean, given
1252the original option name. It is a major disaster if the flag cannot be found.
1253
1254Arguments:
1255 name the name of the uid or gid option
1256 oltop points to the start of the relevant option list
1257 last one more than the offset of the last item in the option list
1258 data_block NULL when reading main options => data values in the option
1259 list are absolute addresses; otherwise they are byte offsets
1260 in data_block (used for driver options)
1261
1262Returns: a pointer to the boolean flag.
1263*/
1264
1265static BOOL *
1266get_set_flag(uschar *name, optionlist *oltop, int last, void *data_block)
1267{
1268optionlist *ol;
1269uschar name2[64];
1270sprintf(CS name2, "*set_%.50s", name);
1271ol = find_option(name2, oltop, last);
1272if (ol == NULL) log_write(0, LOG_MAIN|LOG_PANIC_DIE,
1273 "Exim internal error: missing set flag for %s", name);
1274return (data_block == NULL)? (BOOL *)(ol->value) :
5903c6ff 1275 (BOOL *)(US data_block + (long int)(ol->value));
059ec3d9
PH		 1276}
1277
1278
1279
1280
1281/*************************************************
1282* Output extra characters message and die *
1283*************************************************/
1284
1285/* Called when an option line has junk on the end. Sometimes this is because
1286the sysadmin thinks comments are permitted.
1287
1288Arguments:
1289 s points to the extra characters
1290 t1..t3 strings to insert in the log message
1291
1292Returns: doesn't return; dies
1293*/
1294
1295static void
55414b25 1296extra_chars_error(const uschar *s, const uschar *t1, const uschar *t2, const uschar *t3)
059ec3d9
PH		 1297{
1298uschar *comment = US"";
1299if (*s == '#') comment = US" (# is comment only at line start)";
1300log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1301 "extra characters follow %s%s%s%s", t1, t2, t3, comment);
1302}
1303
1304
1305
1306/*************************************************
1307* Read rewrite information *
1308*************************************************/
1309
1310/* Each line of rewrite information contains:
1311
1312. A complete address in the form user@domain, possibly with
1313 leading * for each part; or alternatively, a regex.
1314
1315. A replacement string (which will be expanded).
1316
1317. An optional sequence of one-letter flags, indicating which
1318 headers etc. to apply this rule to.
1319
1320All this is decoded and placed into a control block. The OR of the flags is
1321maintained in a common word.
1322
1323Arguments:
1324 p points to the string that makes up the rule
1325 existflags points to the overall flag word
1326 isglobal TRUE if reading global rewrite rules
1327
1328Returns: the control block for the parsed rule.
1329*/
1330
1331static rewrite_rule *
55414b25 1332readconf_one_rewrite(const uschar *p, int *existflags, BOOL isglobal)
059ec3d9
PH		 1333{
1334rewrite_rule *next = store_get(sizeof(rewrite_rule));
1335
1336next->next = NULL;
1337next->key = string_dequote(&p);
1338
1339while (isspace(*p)) p++;
1340if (*p == 0)
1341 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1342 "missing rewrite replacement string");
1343
1344next->flags = 0;
1345next->replacement = string_dequote(&p);
1346
1347while (*p != 0) switch (*p++)
1348 {
1349 case ' ': case '\t': break;
1350
1351 case 'q': next->flags |= rewrite_quit; break;
1352 case 'w': next->flags |= rewrite_whole; break;
1353
1354 case 'h': next->flags |= rewrite_all_headers; break;
1355 case 's': next->flags |= rewrite_sender; break;
1356 case 'f': next->flags |= rewrite_from; break;
1357 case 't': next->flags |= rewrite_to; break;
1358 case 'c': next->flags |= rewrite_cc; break;
1359 case 'b': next->flags |= rewrite_bcc; break;
1360 case 'r': next->flags |= rewrite_replyto; break;
1361
1362 case 'E': next->flags |= rewrite_all_envelope; break;
1363 case 'F': next->flags |= rewrite_envfrom; break;
1364 case 'T': next->flags |= rewrite_envto; break;
1365
1366 case 'Q': next->flags |= rewrite_qualify; break;
1367 case 'R': next->flags |= rewrite_repeat; break;
1368
1369 case 'S':
1370 next->flags |= rewrite_smtp;
1371 if (next->key[0] != '^' && Ustrncmp(next->key, "\\N^", 3) != 0)
1372 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1373 "rewrite rule has the S flag but is not a regular expression");
1374 break;
1375
1376 default:
1377 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1378 "unknown rewrite flag character '%c' "
1379 "(could be missing quotes round replacement item)", p[-1]);
1380 break;
1381 }
1382
1383/* If no action flags are set, set all the "normal" rewrites. */
1384
1385if ((next->flags & (rewrite_all | rewrite_smtp)) == 0)
1386 next->flags |= isglobal? rewrite_all : rewrite_all_headers;
1387
1388/* Remember which exist, for optimization, and return the rule */
1389
1390*existflags |= next->flags;
1391return next;
1392}
1393
1394
1395
1396
1397/*************************************************
1398* Read global rewrite information *
1399*************************************************/
1400
1401/* Each line is a single rewrite rule; it is parsed into a control block
1402by readconf_one_rewrite(), and its flags are ORed into the global flag
1403word rewrite_existflags. */
1404
1405void
1406readconf_rewrites(void)
1407{
1408rewrite_rule **chain = &global_rewrite_rules;
1409uschar *p;
1410
1411while ((p = get_config_line()) != NULL)
1412 {
1413 rewrite_rule *next = readconf_one_rewrite(p, &rewrite_existflags, TRUE);
1414 *chain = next;
1415 chain = &(next->next);
1416 }
1417}
1418
1419
1420
1421/*************************************************
1422* Read a string *
1423*************************************************/
1424
1425/* Strings are read into the normal store pool. As long we aren't too
1426near the end of the current block, the string will just use what is necessary
1427on the top of the stacking pool, because string_cat() uses the extension
1428mechanism.
1429
1430Argument:
1431 s the rest of the input line
1432 name the option name (for errors)
1433
1434Returns: pointer to the string
1435*/
1436
1437static uschar *
55414b25 1438read_string(const uschar *s, const uschar *name)
059ec3d9
PH		 1439{
1440uschar *yield;
55414b25 1441const uschar *ss;
059ec3d9
PH		 1442
1443if (*s != '\"') return string_copy(s);
1444
1445ss = s;
1446yield = string_dequote(&s);
1447
1448if (s == ss+1 || s[-1] != '\"')
1449 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1450 "missing quote at end of string value for %s", name);
1451
1452if (*s != 0) extra_chars_error(s, US"string value for ", name, US"");
1453
1454return yield;
1455}
1456
1457
1ad6489e
JH		 1458/*************************************************
1459* Custom-handler options *
1460*************************************************/
1461static void
1462fn_smtp_receive_timeout(const uschar * name, const uschar * str)
1463{
1ad6489e
JH		 1464if (*str == '$')
1465 smtp_receive_timeout_s = string_copy(str);
1466else
1467 {
1468 /* "smtp_receive_timeout", opt_time, &smtp_receive_timeout */
1469 smtp_receive_timeout = readconf_readtime(str, 0, FALSE);
1470 if (smtp_receive_timeout < 0)
1471 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
1472 name);
1473 }
1474}
1475
059ec3d9
PH		 1476/*************************************************
1477* Handle option line *
1478*************************************************/
1479
1480/* This function is called from several places to process a line containing the
1481setting of an option. The first argument is the line to be decoded; it has been
1482checked not to be empty and not to start with '#'. Trailing newlines and white
1483space have been removed. The second argument is a pointer to the list of
1484variable names that are to be recognized, together with their types and
1485locations, and the third argument gives the number of entries in the list.
1486
1487The fourth argument is a pointer to a data block. If it is NULL, then the data
1488values in the options list are absolute addresses. Otherwise, they are byte
1489offsets in the data block.
1490
1491String option data may continue onto several lines; this function reads further
1492data from config_file if necessary.
1493
1494The yield of this function is normally zero. If a string continues onto
1495multiple lines, then the data value is permitted to be followed by a comma
1496or a semicolon (for use in drivers) and the yield is that character.
1497
1498Arguments:
1499 buffer contains the configuration line to be handled
1500 oltop points to the start of the relevant option list
1501 last one more than the offset of the last item in the option list
1502 data_block NULL when reading main options => data values in the option
1503 list are absolute addresses; otherwise they are byte offsets
1504 in data_block when they have opt_public set; otherwise
1505 they are byte offsets in data_block->options_block.
1506 unknown_txt format string to use in panic message for unknown option;
1507 must contain %s for option name
1508 if given as NULL, don't panic on unknown option
1509
1510Returns: TRUE if an option was read successfully,
1511 FALSE false for an unknown option if unknown_txt == NULL,
1512 otherwise panic and die on an unknown option
1513*/
1514
1515static BOOL
1516readconf_handle_option(uschar *buffer, optionlist *oltop, int last,
1517 void *data_block, uschar *unknown_txt)
1518{
1519int ptr = 0;
1520int offset = 0;
1521int n, count, type, value;
1522int issecure = 0;
1523uid_t uid;
1524gid_t gid;
1525BOOL boolvalue = TRUE;
1526BOOL freesptr = TRUE;
1527optionlist *ol, *ol2;
1528struct passwd *pw;
1529void *reset_point;
1530int intbase = 0;
1531uschar *inttype = US"";
1532uschar *sptr;
1533uschar *s = buffer;
532be449 1534uschar **str_target;
059ec3d9
PH		 1535uschar name[64];
1536uschar name2[64];
1537
1538/* There may be leading spaces; thereafter, we expect an option name starting
1539with a letter. */
1540
1541while (isspace(*s)) s++;
1542if (!isalpha(*s))
1543 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option setting expected: %s", s);
1544
1545/* Read the name of the option, and skip any subsequent white space. If
1546it turns out that what we read was "hide", set the flag indicating that
1547this is a secure option, and loop to read the next word. */
1548
1549for (n = 0; n < 2; n++)
1550 {
1551 while (isalnum(*s) || *s == '_')
1552 {
1553 if (ptr < sizeof(name)-1) name[ptr++] = *s;
1554 s++;
1555 }
1556 name[ptr] = 0;
1557 while (isspace(*s)) s++;
1558 if (Ustrcmp(name, "hide") != 0) break;
1559 issecure = opt_secure;
1560 ptr = 0;
1561 }
1562
1563/* Deal with "no_" or "not_" here for booleans */
1564
1565if (Ustrncmp(name, "no_", 3) == 0)
1566 {
1567 boolvalue = FALSE;
1568 offset = 3;
1569 }
1570
1571if (Ustrncmp(name, "not_", 4) == 0)
1572 {
1573 boolvalue = FALSE;
1574 offset = 4;
1575 }
1576
1577/* Search the list for the given name. A non-existent name, or an option that
1578is set twice, is a disaster. */
1579
d7bed771 1580if (!(ol = find_option(name + offset, oltop, last)))
059ec3d9
PH		 1581 {
1582 if (unknown_txt == NULL) return FALSE;
1583 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, CS unknown_txt, name);
1584 }
1585
846726c5
JH		 1586if ((ol->type & opt_set) && !(ol->type & (opt_rep_con | opt_rep_str)))
1587 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1588 "\"%s\" option set for the second time", name);
059ec3d9
PH		 1589
1590ol->type |= opt_set | issecure;
1591type = ol->type & opt_mask;
1592
1593/* Types with data values must be followed by '='; the "no[t]_" prefix
1594applies only to boolean values. */
1595
1596if (type < opt_bool || type > opt_bool_last)
1597 {
1598 if (offset != 0)
1599 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1600 "negation prefix applied to a non-boolean option");
1601 if (*s == 0)
1602 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1603 "unexpected end of line (data missing) after %s", name);
1604 if (*s != '=')
1605 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing \"=\" after %s", name);
1606 }
1607
1608/* If a boolean wasn't preceded by "no[t]_" it can be followed by = and
9c695f6d 1609true/false/yes/no, or, in the case of opt_expand_bool, a general string that
059ec3d9
PH		 1610ultimately expands to one of those values. */
1611
1612else if (*s != 0 && (offset != 0 || *s != '='))
1613 extra_chars_error(s, US"boolean option ", name, US"");
1614
1615/* Skip white space after = */
1616
1617if (*s == '=') while (isspace((*(++s))));
1618
1619/* If there is a data block and the opt_public flag is not set, change
1620the data block pointer to the private options block. */
1621
1622if (data_block != NULL && (ol->type & opt_public) == 0)
1623 data_block = (void *)(((driver_instance *)data_block)->options_block);
1624
1625/* Now get the data according to the type. */
1626
1627switch (type)
1628 {
1629 /* If a string value is not enclosed in quotes, it consists of
1630 the rest of the current line, verbatim. Otherwise, string escapes
1631 are processed.
1632
1633 A transport is specified as a string, which is then looked up in the
1634 list of transports. A search type is specified as one of a number of
1635 known strings.
1636
1637 A set or rewrite rules for a driver is specified as a string, which is
1638 then parsed into a suitable chain of control blocks.
1639
1640 Uids and gids are specified as strings which are then looked up in the
1641 passwd file. Lists of uids and gids are similarly specified as colon-
1642 separated strings. */
1643
1644 case opt_stringptr:
1645 case opt_uid:
1646 case opt_gid:
1647 case opt_expand_uid:
1648 case opt_expand_gid:
1649 case opt_uidlist:
1650 case opt_gidlist:
1651 case opt_rewrite:
1652
1653 reset_point = sptr = read_string(s, name);
1654
1655 /* Having read a string, we now have several different ways of using it,
1656 depending on the data type, so do another switch. If keeping the actual
1657 string is not required (because it is interpreted), freesptr is set TRUE,
1658 and at the end we reset the pool. */
1659
1660 switch (type)
1661 {
1662 /* If this was a string, set the variable to point to the new string,
1663 and set the flag so its store isn't reclaimed. If it was a list of rewrite
1664 rules, we still keep the string (for printing), and parse the rules into a
1665 control block and flags word. */
1666
1667 case opt_stringptr:
adaa0e2c
JH		 1668 str_target = data_block ? USS (US data_block + (long int)(ol->value))
1669 : USS (ol->value);
846726c5 1670 if (ol->type & opt_rep_con)
532be449 1671 {
adaa0e2c 1672 uschar * saved_condition;
6a8de854
PP		 1673 /* We already have a condition, we're conducting a crude hack to let
1674 multiple condition rules be chained together, despite storing them in
1675 text form. */
adaa0e2c
JH		 1676 *str_target = string_copy_malloc( (saved_condition = *str_target)
1677 ? string_sprintf("${if and{{bool_lax{%s}}{bool_lax{%s}}}}",
1678 saved_condition, sptr)
1679 : sptr);
846726c5
JH		 1680 /* TODO(pdp): there is a memory leak here and just below
1681 when we set 3 or more conditions; I still don't
1682 understand the store mechanism enough to know
1683 what's the safe way to free content from an earlier store.
6a8de854
PP		 1684 AFAICT, stores stack, so freeing an early stored item also stores
1685 all data alloc'd after it. If we knew conditions were adjacent,
1686 we could survive that, but we don't. So I *think* we need to take
1687 another bit from opt_type to indicate "malloced"; this seems like
1688 quite a hack, especially for this one case. It also means that
1689 we can't ever reclaim the store from the *first* condition.
1690
1691 Because we only do this once, near process start-up, I'm prepared to
1692 let this slide for the time being, even though it rankles. */
532be449 1693 }
76146973
JH		 1694 else if (ol->type & opt_rep_str)
1695 {
2ad78978
JH		 1696 uschar sep_o = Ustrncmp(name, "headers_add", 11)==0 ? '\n' : ':';
1697 int sep_i = -(int)sep_o;
55414b25 1698 const uschar * list = sptr;
2ad78978 1699 uschar * s;
acec9514 1700 gstring * list_o = NULL;
4226691b 1701
acec9514
JH		 1702 if (*str_target)
1703 {
1704 list_o = string_get(Ustrlen(*str_target) + Ustrlen(sptr));
1705 list_o = string_cat(list_o, *str_target);
1706 }
2ad78978
JH		 1707
1708 while ((s = string_nextinlist(&list, &sep_i, NULL, 0)))
acec9514
JH		 1709 list_o = string_append_listele(list_o, sep_o, s);
1710
2ad78978 1711 if (list_o)
acec9514 1712 *str_target = string_copy_malloc(string_from_gstring(list_o));
76146973 1713 }
532be449
PP		 1714 else
1715 {
1716 *str_target = sptr;
1717 freesptr = FALSE;
1718 }
1719 break;
1720
059ec3d9 1721 case opt_rewrite:
adaa0e2c
JH		 1722 if (data_block)
1723 *USS (US data_block + (long int)(ol->value)) = sptr;
059ec3d9 1724 else
adaa0e2c 1725 *USS (ol->value) = sptr;
059ec3d9
PH		 1726 freesptr = FALSE;
1727 if (type == opt_rewrite)
1728 {
1729 int sep = 0;
1730 int *flagptr;
1731 uschar *p = sptr;
1732 rewrite_rule **chain;
1733 optionlist *ol3;
1734
1735 sprintf(CS name2, "*%.50s_rules", name);
1736 ol2 = find_option(name2, oltop, last);
1737 sprintf(CS name2, "*%.50s_flags", name);
1738 ol3 = find_option(name2, oltop, last);
1739
1740 if (ol2 == NULL || ol3 == NULL)
1741 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1742 "rewrite rules not available for driver");
1743
1744 if (data_block == NULL)
1745 {
1746 chain = (rewrite_rule **)(ol2->value);
1747 flagptr = (int *)(ol3->value);
1748 }
1749 else
1750 {
5903c6ff
JH		 1751 chain = (rewrite_rule **)(US data_block + (long int)(ol2->value));
1752 flagptr = (int *)(US data_block + (long int)(ol3->value));
059ec3d9
PH		 1753 }
1754
55414b25 1755 while ((p = string_nextinlist(CUSS &sptr, &sep, big_buffer, BIG_BUFFER_SIZE)))
059ec3d9
PH		 1756 {
1757 rewrite_rule *next = readconf_one_rewrite(p, flagptr, FALSE);
1758 *chain = next;
1759 chain = &(next->next);
1760 }
1761
1762 if ((*flagptr & (rewrite_all_envelope | rewrite_smtp)) != 0)
1763 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "rewrite rule specifies a "
1764 "non-header rewrite - not allowed at transport time -");
1765 }
1766 break;
1767
1768 /* If it was an expanded uid, see if there is any expansion to be
1769 done by checking for the presence of a $ character. If there is, save it
1770 in the corresponding *expand_user option field. Otherwise, fall through
1771 to treat it as a fixed uid. Ensure mutual exclusivity of the two kinds
1772 of data. */
1773
1774 case opt_expand_uid:
1775 sprintf(CS name2, "*expand_%.50s", name);
1776 ol2 = find_option(name2, oltop, last);
1777 if (ol2 != NULL)
1778 {
1779 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1780
1781 if (data_block == NULL)
1782 *((uschar **)(ol2->value)) = ss;
1783 else
5903c6ff 1784 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
059ec3d9
PH		 1785
1786 if (ss != NULL)
1787 {
1788 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1789 freesptr = FALSE;
1790 break;
1791 }
1792 }
1793
1794 /* Look up a fixed uid, and also make use of the corresponding gid
1795 if a passwd entry is returned and the gid has not been set. */
1796
1797 case opt_uid:
1798 if (!route_finduser(sptr, &pw, &uid))
1799 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found", sptr);
1800 if (data_block == NULL)
1801 *((uid_t *)(ol->value)) = uid;
1802 else
5903c6ff 1803 *((uid_t *)(US data_block + (long int)(ol->value))) = uid;
059ec3d9
PH		 1804
1805 /* Set the flag indicating a fixed value is set */
1806
1807 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1808
1809 /* Handle matching gid if we have a passwd entry: done by finding the
1810 same name with terminating "user" changed to "group"; if not found,
1811 ignore. Also ignore if the value is already set. */
1812
1813 if (pw == NULL) break;
1814 Ustrcpy(name+Ustrlen(name)-4, "group");
1815 ol2 = find_option(name, oltop, last);
1816 if (ol2 != NULL && ((ol2->type & opt_mask) == opt_gid ||
1817 (ol2->type & opt_mask) == opt_expand_gid))
1818 {
1819 BOOL *set_flag = get_set_flag(name, oltop, last, data_block);
1820 if (! *set_flag)
1821 {
1822 if (data_block == NULL)
1823 *((gid_t *)(ol2->value)) = pw->pw_gid;
1824 else
5903c6ff 1825 *((gid_t *)(US data_block + (long int)(ol2->value))) = pw->pw_gid;
059ec3d9
PH		 1826 *set_flag = TRUE;
1827 }
1828 }
1829 break;
1830
1831 /* If it was an expanded gid, see if there is any expansion to be
1832 done by checking for the presence of a $ character. If there is, save it
1833 in the corresponding *expand_user option field. Otherwise, fall through
1834 to treat it as a fixed gid. Ensure mutual exclusivity of the two kinds
1835 of data. */
1836
1837 case opt_expand_gid:
1838 sprintf(CS name2, "*expand_%.50s", name);
1839 ol2 = find_option(name2, oltop, last);
1840 if (ol2 != NULL)
1841 {
1842 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1843
1844 if (data_block == NULL)
1845 *((uschar **)(ol2->value)) = ss;
1846 else
5903c6ff 1847 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
059ec3d9
PH		 1848
1849 if (ss != NULL)
1850 {
1851 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1852 freesptr = FALSE;
1853 break;
1854 }
1855 }
1856
1857 /* Handle freestanding gid */
1858
1859 case opt_gid:
1860 if (!route_findgroup(sptr, &gid))
1861 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found", sptr);
1862 if (data_block == NULL)
1863 *((gid_t *)(ol->value)) = gid;
1864 else
5903c6ff 1865 *((gid_t *)(US data_block + (long int)(ol->value))) = gid;
059ec3d9
PH		 1866 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1867 break;
1868
1869 /* If it was a uid list, look up each individual entry, and build
1870 a vector of uids, with a count in the first element. Put the vector
1871 in malloc store so we can free the string. (We are reading into
1872 permanent store already.) */
1873
1874 case opt_uidlist:
1875 {
1876 int count = 1;
1877 uid_t *list;
1878 int ptr = 0;
55414b25
JH		 1879 const uschar *p;
1880 const uschar *op = expand_string (sptr);
0925ede6
PH		 1881
1882 if (op == NULL)
1883 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
1884 name, expand_string_message);
059ec3d9 1885
0925ede6 1886 p = op;
059ec3d9 1887 if (*p != 0) count++;
0925ede6 1888 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
059ec3d9
PH		 1889 list = store_malloc(count*sizeof(uid_t));
1890 list[ptr++] = (uid_t)(count - 1);
1891
1892 if (data_block == NULL)
1893 *((uid_t **)(ol->value)) = list;
1894 else
5903c6ff 1895 *((uid_t **)(US data_block + (long int)(ol->value))) = list;
059ec3d9 1896
0925ede6 1897 p = op;
059ec3d9
PH		 1898 while (count-- > 1)
1899 {
1900 int sep = 0;
1901 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
1902 if (!route_finduser(big_buffer, NULL, &uid))
1903 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found",
1904 big_buffer);
1905 list[ptr++] = uid;
1906 }
1907 }
1908 break;
1909
1910 /* If it was a gid list, look up each individual entry, and build
1911 a vector of gids, with a count in the first element. Put the vector
1912 in malloc store so we can free the string. (We are reading into permanent
1913 store already.) */
1914
1915 case opt_gidlist:
1916 {
1917 int count = 1;
1918 gid_t *list;
1919 int ptr = 0;
55414b25
JH		 1920 const uschar *p;
1921 const uschar *op = expand_string (sptr);
0925ede6
PH		 1922
1923 if (op == NULL)
1924 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
1925 name, expand_string_message);
059ec3d9 1926
0925ede6 1927 p = op;
059ec3d9 1928 if (*p != 0) count++;
0925ede6 1929 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
059ec3d9
PH		 1930 list = store_malloc(count*sizeof(gid_t));
1931 list[ptr++] = (gid_t)(count - 1);
1932
1933 if (data_block == NULL)
1934 *((gid_t **)(ol->value)) = list;
1935 else
5903c6ff 1936 *((gid_t **)(US data_block + (long int)(ol->value))) = list;
059ec3d9 1937
0925ede6 1938 p = op;
059ec3d9
PH		 1939 while (count-- > 1)
1940 {
1941 int sep = 0;
1942 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
1943 if (!route_findgroup(big_buffer, &gid))
1944 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found",
1945 big_buffer);
1946 list[ptr++] = gid;
1947 }
1948 }
1949 break;
1950 }
1951
1952 /* Release store if the value of the string doesn't need to be kept. */
1953
1954 if (freesptr) store_reset(reset_point);
1955 break;
1956
1957 /* Expanded boolean: if no characters follow, or if there are no dollar
1958 characters, this is a fixed-valued boolean, and we fall through. Otherwise,
1959 save the string for later expansion in the alternate place. */
1960
1961 case opt_expand_bool:
1962 if (*s != 0 && Ustrchr(s, '$') != 0)
1963 {
1964 sprintf(CS name2, "*expand_%.50s", name);
1965 ol2 = find_option(name2, oltop, last);
1966 if (ol2 != NULL)
1967 {
1968 reset_point = sptr = read_string(s, name);
1969 if (data_block == NULL)
1970 *((uschar **)(ol2->value)) = sptr;
1971 else
5903c6ff 1972 *((uschar **)(US data_block + (long int)(ol2->value))) = sptr;
059ec3d9
PH		 1973 freesptr = FALSE;
1974 break;
1975 }
1976 }
1977 /* Fall through */
1978
1979 /* Boolean: if no characters follow, the value is boolvalue. Otherwise
1980 look for yes/not/true/false. Some booleans are stored in a single bit in
1981 a single int. There's a special fudge for verify settings; without a suffix
1982 they set both xx_sender and xx_recipient. The table points to the sender
1983 value; search subsequently for the recipient. There's another special case:
1984 opt_bool_set also notes when a boolean has been set. */
1985
1986 case opt_bool:
1987 case opt_bit:
1988 case opt_bool_verify:
1989 case opt_bool_set:
1990 if (*s != 0)
1991 {
1992 s = readconf_readname(name2, 64, s);
1993 if (strcmpic(name2, US"true") == 0 || strcmpic(name2, US"yes") == 0)
1994 boolvalue = TRUE;
1995 else if (strcmpic(name2, US"false") == 0 || strcmpic(name2, US"no") == 0)
1996 boolvalue = FALSE;
1997 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1998 "\"%s\" is not a valid value for the \"%s\" option", name2, name);
1999 if (*s != 0) extra_chars_error(s, string_sprintf("\"%s\" ", name2),
2000 US"for boolean option ", name);
2001 }
2002
2003 /* Handle single-bit type. */
2004
2005 if (type == opt_bit)
2006 {
2007 int bit = 1 << ((ol->type >> 16) & 31);
2008 int *ptr = (data_block == NULL)?
2009 (int *)(ol->value) :
5903c6ff 2010 (int *)(US data_block + (long int)ol->value);
059ec3d9
PH		 2011 if (boolvalue) *ptr |= bit; else *ptr &= ~bit;
2012 break;
2013 }
2014
2015 /* Handle full BOOL types */
2016
2017 if (data_block == NULL)
2018 *((BOOL *)(ol->value)) = boolvalue;
2019 else
5903c6ff 2020 *((BOOL *)(US data_block + (long int)(ol->value))) = boolvalue;
059ec3d9
PH		 2021
2022 /* Verify fudge */
2023
2024 if (type == opt_bool_verify)
2025 {
2026 sprintf(CS name2, "%.50s_recipient", name + offset);
2027 ol2 = find_option(name2, oltop, last);
2028 if (ol2 != NULL)
2029 {
2030 if (data_block == NULL)
2031 *((BOOL *)(ol2->value)) = boolvalue;
2032 else
5903c6ff 2033 *((BOOL *)(US data_block + (long int)(ol2->value))) = boolvalue;
059ec3d9
PH		 2034 }
2035 }
2036
2037 /* Note that opt_bool_set type is set, if there is somewhere to do so */
2038
2039 else if (type == opt_bool_set)
2040 {
2041 sprintf(CS name2, "*set_%.50s", name + offset);
2042 ol2 = find_option(name2, oltop, last);
2043 if (ol2 != NULL)
2044 {
2045 if (data_block == NULL)
2046 *((BOOL *)(ol2->value)) = TRUE;
2047 else
5903c6ff 2048 *((BOOL *)(US data_block + (long int)(ol2->value))) = TRUE;
059ec3d9
PH		 2049 }
2050 }
2051 break;
2052
2053 /* Octal integer */
2054
2055 case opt_octint:
2056 intbase = 8;
2057 inttype = US"octal ";
2058
2059 /* Integer: a simple(ish) case; allow octal and hex formats, and
dcb72db9 2060 suffixes K, M and G. The different types affect output, not input. */
059ec3d9
PH		 2061
2062 case opt_mkint:
2063 case opt_int:
2064 {
2065 uschar *endptr;
7e8d92ba
PH		 2066 long int lvalue;
2067
059ec3d9 2068 errno = 0;
7e8d92ba 2069 lvalue = strtol(CS s, CSS &endptr, intbase);
059ec3d9
PH		 2070
2071 if (endptr == s)
2072 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2073 inttype, name);
2074
2075 if (errno != ERANGE)
059ec3d9
PH		 2076 if (tolower(*endptr) == 'k')
2077 {
7e8d92ba
PH		 2078 if (lvalue > INT_MAX/1024 || lvalue < INT_MIN/1024) errno = ERANGE;
2079 else lvalue *= 1024;
059ec3d9
PH		 2080 endptr++;
2081 }
2082 else if (tolower(*endptr) == 'm')
2083 {
7e8d92ba 2084 if (lvalue > INT_MAX/(1024*1024) || lvalue < INT_MIN/(1024*1024))
059ec3d9 2085 errno = ERANGE;
7e8d92ba 2086 else lvalue *= 1024*1024;
059ec3d9
PH		 2087 endptr++;
2088 }
dcb72db9
JH		 2089 else if (tolower(*endptr) == 'g')
2090 {
2091 if (lvalue > INT_MAX/(1024*1024*1024) || lvalue < INT_MIN/(1024*1024*1024))
2092 errno = ERANGE;
2093 else lvalue *= 1024*1024*1024;
2094 endptr++;
2095 }
059ec3d9 2096
7e8d92ba
PH		 2097 if (errno == ERANGE || lvalue > INT_MAX || lvalue < INT_MIN)
2098 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2099 "absolute value of integer \"%s\" is too large (overflow)", s);
059ec3d9
PH		 2100
2101 while (isspace(*endptr)) endptr++;
2102 if (*endptr != 0)
2103 extra_chars_error(endptr, inttype, US"integer value for ", name);
7e8d92ba
PH		 2104
2105 value = (int)lvalue;
059ec3d9
PH		 2106 }
2107
2108 if (data_block == NULL)
2109 *((int *)(ol->value)) = value;
2110 else
5903c6ff 2111 *((int *)(US data_block + (long int)(ol->value))) = value;
059ec3d9
PH		 2112 break;
2113
dcb72db9
JH		 2114 /* Integer held in K: again, allow octal and hex formats, and suffixes K, M
2115 and G. */
13559da6 2116 /*XXX consider moving to int_eximarith_t (but mind the overflow test 0415) */
059ec3d9
PH		 2117
2118 case opt_Kint:
2119 {
2120 uschar *endptr;
2121 errno = 0;
2122 value = strtol(CS s, CSS &endptr, intbase);
2123
2124 if (endptr == s)
2125 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2126 inttype, name);
2127
2128 if (errno != ERANGE)
dcb72db9 2129 if (tolower(*endptr) == 'g')
059ec3d9 2130 {
dcb72db9
JH		 2131 if (value > INT_MAX/(1024*1024) || value < INT_MIN/(1024*1024))
2132 errno = ERANGE;
2133 else
2134 value *= 1024*1024;
059ec3d9
PH		 2135 endptr++;
2136 }
dcb72db9 2137 else if (tolower(*endptr) == 'm')
059ec3d9 2138 {
dcb72db9
JH		 2139 if (value > INT_MAX/1024 || value < INT_MIN/1024)
2140 errno = ERANGE;
2141 else
2142 value *= 1024;
059ec3d9
PH		 2143 endptr++;
2144 }
dcb72db9
JH		 2145 else if (tolower(*endptr) == 'k')
2146 endptr++;
059ec3d9 2147 else
059ec3d9 2148 value = (value + 512)/1024;
059ec3d9
PH		 2149
2150 if (errno == ERANGE) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2151 "absolute value of integer \"%s\" is too large (overflow)", s);
2152
2153 while (isspace(*endptr)) endptr++;
2154 if (*endptr != 0)
2155 extra_chars_error(endptr, inttype, US"integer value for ", name);
2156 }
2157
2158 if (data_block == NULL)
2159 *((int *)(ol->value)) = value;
2160 else
5903c6ff 2161 *((int *)(US data_block + (long int)(ol->value))) = value;
059ec3d9
PH		 2162 break;
2163
2164 /* Fixed-point number: held to 3 decimal places. */
2165
2166 case opt_fixed:
2167 if (sscanf(CS s, "%d%n", &value, &count) != 1)
2168 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2169 "fixed-point number expected for %s", name);
2170
2171 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2172 "integer \"%s\" is too large (overflow)", s);
2173
2174 value *= 1000;
2175
2176 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2177 "integer \"%s\" is too large (overflow)", s);
2178
76ac1b5b
JH		 2179 /* We get a coverity error here for using count, as it derived
2180 from the tainted buffer pointed to by s, as parsed by sscanf().
4c04137d 2181 By the definition of sscanf we must be accessing between start
76ac1b5b
JH		 2182 and end of s (assuming it is nul-terminated...) so ignore the error. */
2183 /* coverity[tainted_data] */
059ec3d9
PH		 2184 if (s[count] == '.')
2185 {
2186 int d = 100;
2187 while (isdigit(s[++count]))
2188 {
2189 value += (s[count] - '0') * d;
2190 d /= 10;
2191 }
2192 }
2193
2194 while (isspace(s[count])) count++;
2195
2196 if (s[count] != 0)
2197 extra_chars_error(s+count, US"fixed-point value for ", name, US"");
2198
2199 if (data_block == NULL)
2200 *((int *)(ol->value)) = value;
2201 else
5903c6ff 2202 *((int *)(US data_block + (long int)(ol->value))) = value;
059ec3d9
PH		 2203 break;
2204
2205 /* There's a special routine to read time values. */
2206
2207 case opt_time:
2208 value = readconf_readtime(s, 0, FALSE);
2209 if (value < 0)
2210 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2211 name);
2212 if (data_block == NULL)
2213 *((int *)(ol->value)) = value;
2214 else
5903c6ff 2215 *((int *)(US data_block + (long int)(ol->value))) = value;
059ec3d9
PH		 2216 break;
2217
2218 /* A time list is a list of colon-separated times, with the first
2219 element holding the size of the list and the second the number of
2220 entries used. */
2221
2222 case opt_timelist:
2223 {
2224 int count = 0;
2225 int *list = (data_block == NULL)?
2226 (int *)(ol->value) :
5903c6ff 2227 (int *)(US data_block + (long int)(ol->value));
059ec3d9
PH		 2228
2229 if (*s != 0) for (count = 1; count <= list[0] - 2; count++)
2230 {
2231 int terminator = 0;
2232 uschar *snext = Ustrchr(s, ':');
2233 if (snext != NULL)
2234 {
2235 uschar *ss = snext;
2236 while (ss > s && isspace(ss[-1])) ss--;
2237 terminator = *ss;
2238 }
2239 value = readconf_readtime(s, terminator, FALSE);
2240 if (value < 0)
2241 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2242 name);
2243 if (count > 1 && value <= list[count])
2244 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2245 "time value out of order for %s", name);
2246 list[count+1] = value;
2247 if (snext == NULL) break;
2248 s = snext + 1;
2249 while (isspace(*s)) s++;
2250 }
2251
2252 if (count > list[0] - 2)
2253 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many time values for %s",
2254 name);
2255 if (count > 0 && list[2] == 0) count = 0;
2256 list[1] = count;
1ad6489e 2257 break;
059ec3d9
PH		 2258 }
2259
1ad6489e
JH		 2260 case opt_func:
2261 {
2262 void (*fn)() = ol->value;
2263 fn(name, s);
2264 break;
2265 }
059ec3d9
PH		 2266 }
2267
2268return TRUE;
2269}
2270
2271
2272
2273/*************************************************
2274* Print a time value *
2275*************************************************/
2276
2277/*
2278Argument: a time value in seconds
2279Returns: pointer to a fixed buffer containing the time as a string,
2280 in readconf_readtime() format
2281*/
2282
2283uschar *
2284readconf_printtime(int t)
2285{
2286int s, m, h, d, w;
2287uschar *p = time_buffer;
2288
ea49d0e1
PH		 2289if (t < 0)
2290 {
2291 *p++ = '-';
2292 t = -t;
2293 }
2294
059ec3d9
PH		 2295s = t % 60;
2296t /= 60;
2297m = t % 60;
2298t /= 60;
2299h = t % 24;
2300t /= 24;
2301d = t % 7;
2302w = t/7;
2303
32dfdf8b
JH		 2304if (w > 0) p += sprintf(CS p, "%dw", w);
2305if (d > 0) p += sprintf(CS p, "%dd", d);
2306if (h > 0) p += sprintf(CS p, "%dh", h);
2307if (m > 0) p += sprintf(CS p, "%dm", m);
059ec3d9
PH		 2308if (s > 0 || p == time_buffer) sprintf(CS p, "%ds", s);
2309
2310return time_buffer;
2311}
2312
2313
2314
2315/*************************************************
2316* Print an individual option value *
2317*************************************************/
2318
2319/* This is used by the -bP option, so prints to the standard output.
2320The entire options list is passed in as an argument, because some options come
2321in pairs - typically uid/gid settings, which can either be explicit numerical
2322values, or strings to be expanded later. If the numerical value is unset,
2323search for "*expand_<name>" to see if there is a string equivalent.
2324
2325Arguments:
2326 ol option entry, or NULL for an unknown option
2327 name option name
2328 options_block NULL for main configuration options; otherwise points to
2329 a driver block; if the option doesn't have opt_public
2330 set, then options_block->options_block is where the item
2331 resides.
2332 oltop points to the option list in which ol exists
2333 last one more than the offset of the last entry in optop
12f69989 2334 no_labels do not show "foo = " at the start.
059ec3d9
PH		 2335
2336Returns: nothing
2337*/
2338
2339static void
2340print_ol(optionlist *ol, uschar *name, void *options_block,
12f69989 2341 optionlist *oltop, int last, BOOL no_labels)
059ec3d9
PH		 2342{
2343struct passwd *pw;
2344struct group *gr;
2345optionlist *ol2;
2346void *value;
2347uid_t *uidlist;
2348gid_t *gidlist;
2349uschar *s;
2350uschar name2[64];
2351
2352if (ol == NULL)
2353 {
2354 printf("%s is not a known option\n", name);
2355 return;
2356 }
2357
2358/* Non-admin callers cannot see options that have been flagged secure by the
2359"hide" prefix. */
2360
2361if (!admin_user && (ol->type & opt_secure) != 0)
2362 {
12f69989
PP		 2363 if (no_labels)
2364 printf("%s\n", hidden);
2365 else
2366 printf("%s = %s\n", name, hidden);
059ec3d9
PH		 2367 return;
2368 }
2369
2370/* Else show the value of the option */
2371
2372value = ol->value;
2373if (options_block != NULL)
2374 {
2375 if ((ol->type & opt_public) == 0)
2376 options_block = (void *)(((driver_instance *)options_block)->options_block);
5903c6ff 2377 value = (void *)(US options_block + (long int)value);
059ec3d9
PH		 2378 }
2379
2380switch(ol->type & opt_mask)
2381 {
2382 case opt_stringptr:
2383 case opt_rewrite: /* Show the text value */
2384 s = *((uschar **)value);
12f69989
PP		 2385 if (!no_labels) printf("%s = ", name);
2386 printf("%s\n", (s == NULL)? US"" : string_printing2(s, FALSE));
059ec3d9
PH		 2387 break;
2388
2389 case opt_int:
12f69989
PP		 2390 if (!no_labels) printf("%s = ", name);
2391 printf("%d\n", *((int *)value));
059ec3d9
PH		 2392 break;
2393
2394 case opt_mkint:
2395 {
2396 int x = *((int *)value);
2397 if (x != 0 && (x & 1023) == 0)
2398 {
2399 int c = 'K';
2400 x >>= 10;
2401 if ((x & 1023) == 0)
2402 {
2403 c = 'M';
2404 x >>= 10;
2405 }
12f69989
PP		 2406 if (!no_labels) printf("%s = ", name);
2407 printf("%d%c\n", x, c);
2408 }
2409 else
2410 {
2411 if (!no_labels) printf("%s = ", name);
2412 printf("%d\n", x);
059ec3d9 2413 }
059ec3d9
PH		 2414 }
2415 break;
2416
2417 case opt_Kint:
2418 {
2419 int x = *((int *)value);
12f69989
PP		 2420 if (!no_labels) printf("%s = ", name);
2421 if (x == 0) printf("0\n");
2422 else if ((x & 1023) == 0) printf("%dM\n", x >> 10);
2423 else printf("%dK\n", x);
059ec3d9
PH		 2424 }
2425 break;
2426
2427 case opt_octint:
12f69989
PP		 2428 if (!no_labels) printf("%s = ", name);
2429 printf("%#o\n", *((int *)value));
059ec3d9
PH		 2430 break;
2431
2432 /* Can be negative only when "unset", in which case integer */
2433
2434 case opt_fixed:
2435 {
2436 int x = *((int *)value);
2437 int f = x % 1000;
2438 int d = 100;
2439 if (x < 0) printf("%s =\n", name); else
2440 {
12f69989
PP		 2441 if (!no_labels) printf("%s = ", name);
2442 printf("%d.", x/1000);
059ec3d9
PH		 2443 do
2444 {
2445 printf("%d", f/d);
2446 f %= d;
2447 d /= 10;
2448 }
2449 while (f != 0);
2450 printf("\n");
2451 }
2452 }
2453 break;
2454
2455 /* If the numerical value is unset, try for the string value */
2456
2457 case opt_expand_uid:
2458 if (! *get_set_flag(name, oltop, last, options_block))
2459 {
2460 sprintf(CS name2, "*expand_%.50s", name);
2461 ol2 = find_option(name2, oltop, last);
2462 if (ol2 != NULL)
2463 {
2464 void *value2 = ol2->value;
2465 if (options_block != NULL)
5903c6ff 2466 value2 = (void *)(US options_block + (long int)value2);
059ec3d9 2467 s = *((uschar **)value2);
12f69989
PP		 2468 if (!no_labels) printf("%s = ", name);
2469 printf("%s\n", (s == NULL)? US"" : string_printing(s));
059ec3d9
PH		 2470 break;
2471 }
2472 }
2473
2474 /* Else fall through */
2475
2476 case opt_uid:
12f69989 2477 if (!no_labels) printf("%s = ", name);
059ec3d9 2478 if (! *get_set_flag(name, oltop, last, options_block))
12f69989 2479 printf("\n");
059ec3d9
PH		 2480 else
2481 {
2482 pw = getpwuid(*((uid_t *)value));
2483 if (pw == NULL)
12f69989
PP		 2484 printf("%ld\n", (long int)(*((uid_t *)value)));
2485 else printf("%s\n", pw->pw_name);
059ec3d9
PH		 2486 }
2487 break;
2488
2489 /* If the numerical value is unset, try for the string value */
2490
2491 case opt_expand_gid:
2492 if (! *get_set_flag(name, oltop, last, options_block))
2493 {
2494 sprintf(CS name2, "*expand_%.50s", name);
2495 ol2 = find_option(name2, oltop, last);
2496 if (ol2 != NULL && (ol2->type & opt_mask) == opt_stringptr)
2497 {
2498 void *value2 = ol2->value;
2499 if (options_block != NULL)
5903c6ff 2500 value2 = (void *)(US options_block + (long int)value2);
059ec3d9 2501 s = *((uschar **)value2);
12f69989
PP		 2502 if (!no_labels) printf("%s = ", name);
2503 printf("%s\n", (s == NULL)? US"" : string_printing(s));
059ec3d9
PH		 2504 break;
2505 }
2506 }
2507
2508 /* Else fall through */
2509
2510 case opt_gid:
12f69989 2511 if (!no_labels) printf("%s = ", name);
059ec3d9 2512 if (! *get_set_flag(name, oltop, last, options_block))
12f69989 2513 printf("\n");
059ec3d9
PH		 2514 else
2515 {
2516 gr = getgrgid(*((int *)value));
2517 if (gr == NULL)
12f69989
PP		 2518 printf("%ld\n", (long int)(*((int *)value)));
2519 else printf("%s\n", gr->gr_name);
059ec3d9
PH		 2520 }
2521 break;
2522
2523 case opt_uidlist:
2524 uidlist = *((uid_t **)value);
12f69989 2525 if (!no_labels) printf("%s =", name);
059ec3d9
PH		 2526 if (uidlist != NULL)
2527 {
2528 int i;
2529 uschar sep = ' ';
12f69989 2530 if (no_labels) sep = '\0';
059ec3d9
PH		 2531 for (i = 1; i <= (int)(uidlist[0]); i++)
2532 {
2533 uschar *name = NULL;
2534 pw = getpwuid(uidlist[i]);
2535 if (pw != NULL) name = US pw->pw_name;
12f69989
PP		 2536 if (sep != '\0') printf("%c", sep);
2537 if (name != NULL) printf("%s", name);
2538 else printf("%ld", (long int)(uidlist[i]));
059ec3d9
PH		 2539 sep = ':';
2540 }
2541 }
2542 printf("\n");
2543 break;
2544
2545 case opt_gidlist:
2546 gidlist = *((gid_t **)value);
12f69989 2547 if (!no_labels) printf("%s =", name);
059ec3d9
PH		 2548 if (gidlist != NULL)
2549 {
2550 int i;
2551 uschar sep = ' ';
12f69989 2552 if (no_labels) sep = '\0';
059ec3d9
PH		 2553 for (i = 1; i <= (int)(gidlist[0]); i++)
2554 {
2555 uschar *name = NULL;
2556 gr = getgrgid(gidlist[i]);
2557 if (gr != NULL) name = US gr->gr_name;
12f69989
PP		 2558 if (sep != '\0') printf("%c", sep);
2559 if (name != NULL) printf("%s", name);
2560 else printf("%ld", (long int)(gidlist[i]));
059ec3d9
PH		 2561 sep = ':';
2562 }
2563 }
2564 printf("\n");
2565 break;
2566
2567 case opt_time:
12f69989
PP		 2568 if (!no_labels) printf("%s = ", name);
2569 printf("%s\n", readconf_printtime(*((int *)value)));
059ec3d9
PH		 2570 break;
2571
2572 case opt_timelist:
2573 {
2574 int i;
2575 int *list = (int *)value;
12f69989 2576 if (!no_labels) printf("%s = ", name);
059ec3d9
PH		 2577 for (i = 0; i < list[1]; i++)
2578 printf("%s%s", (i == 0)? "" : ":", readconf_printtime(list[i+2]));
2579 printf("\n");
2580 }
2581 break;
2582
2583 case opt_bit:
2584 printf("%s%s\n", ((*((int *)value)) & (1 << ((ol->type >> 16) & 31)))?
2585 "" : "no_", name);
2586 break;
2587
2588 case opt_expand_bool:
2589 sprintf(CS name2, "*expand_%.50s", name);
2590 ol2 = find_option(name2, oltop, last);
2591 if (ol2 != NULL && ol2->value != NULL)
2592 {
2593 void *value2 = ol2->value;
2594 if (options_block != NULL)
5903c6ff 2595 value2 = (void *)(US options_block + (long int)value2);
059ec3d9
PH		 2596 s = *((uschar **)value2);
2597 if (s != NULL)
2598 {
12f69989
PP		 2599 if (!no_labels) printf("%s = ", name);
2600 printf("%s\n", string_printing(s));
059ec3d9
PH		 2601 break;
2602 }
2603 /* s == NULL => string not set; fall through */
2604 }
2605
2606 /* Fall through */
2607
2608 case opt_bool:
2609 case opt_bool_verify:
2610 case opt_bool_set:
2611 printf("%s%s\n", (*((BOOL *)value))? "" : "no_", name);
2612 break;
2613 }
2614}
2615
2616
2617
2618/*************************************************
2619* Print value from main configuration *
2620*************************************************/
2621
2622/* This function, called as a result of encountering the -bP option,
2623causes the value of any main configuration variable to be output if the
2624second argument is NULL. There are some special values:
2625
2626 all print all main configuration options
44f6c01d
HSHR		 2627 config_file print the name of the configuration file
2628 (configure_file will still work, for backward
2629 compatibility)
059ec3d9
PH		 2630 routers print the routers' configurations
2631 transports print the transports' configuration
2632 authenticators print the authenticators' configuration
5d9c27ec 2633 macros print the macros' configuration
059ec3d9
PH		 2634 router_list print a list of router names
2635 transport_list print a list of transport names
2636 authenticator_list print a list of authentication mechanism names
5d9c27ec 2637 macro_list print a list of macro names
059ec3d9
PH		 2638 +name print a named list item
2639 local_scan print the local_scan options
bf3c2c6b 2640 config print the configuration as it is parsed
bc3c7bb7 2641 environment print the used execution environment
059ec3d9 2642
5d9c27ec
TK		 2643If the second argument is not NULL, it must be one of "router", "transport",
2644"authenticator" or "macro" in which case the first argument identifies the
2645driver whose options are to be printed.
059ec3d9
PH		 2646
2647Arguments:
2648 name option name if type == NULL; else driver name
2649 type NULL or driver type name, as described above
12f69989 2650 no_labels avoid the "foo = " at the start of an item
059ec3d9
PH		 2651
2652Returns: nothing
2653*/
2654
2655void
12f69989 2656readconf_print(uschar *name, uschar *type, BOOL no_labels)
059ec3d9
PH		 2657{
2658BOOL names_only = FALSE;
2659optionlist *ol;
2660optionlist *ol2 = NULL;
2661driver_instance *d = NULL;
5d9c27ec 2662macro_item *m;
059ec3d9
PH		 2663int size = 0;
2664
2665if (type == NULL)
2666 {
2667 if (*name == '+')
2668 {
2669 int i;
2670 tree_node *t;
2671 BOOL found = FALSE;
2672 static uschar *types[] = { US"address", US"domain", US"host",
2673 US"localpart" };
2674 static tree_node **anchors[] = { &addresslist_anchor, &domainlist_anchor,
2675 &hostlist_anchor, &localpartlist_anchor };
2676
2677 for (i = 0; i < 4; i++)
2678 {
2679 t = tree_search(*(anchors[i]), name+1);
2680 if (t != NULL)
2681 {
2682 found = TRUE;
12f69989
PP		 2683 if (no_labels)
2684 printf("%s\n", ((namedlist_block *)(t->data.ptr))->string);
2685 else
2686 printf("%slist %s = %s\n", types[i], name+1,
2687 ((namedlist_block *)(t->data.ptr))->string);
059ec3d9
PH		 2688 }
2689 }
2690
2691 if (!found)
2692 printf("no address, domain, host, or local part list called \"%s\" "
2693 "exists\n", name+1);
2694
2695 return;
2696 }
2697
d7bed771
JH		 2698 if ( Ustrcmp(name, "configure_file") == 0
2699 || Ustrcmp(name, "config_file") == 0)
059ec3d9
PH		 2700 {
2701 printf("%s\n", CS config_main_filename);
2702 return;
2703 }
2704
2705 if (Ustrcmp(name, "all") == 0)
2706 {
2707 for (ol = optionlist_config;
c0b9d3e8 2708 ol < optionlist_config + nelem(optionlist_config); ol++)
059ec3d9
PH		 2709 {
2710 if ((ol->type & opt_hidden) == 0)
12f69989 2711 print_ol(ol, US ol->name, NULL,
c0b9d3e8 2712 optionlist_config, nelem(optionlist_config),
12f69989 2713 no_labels);
059ec3d9
PH		 2714 }
2715 return;
2716 }
2717
2718 if (Ustrcmp(name, "local_scan") == 0)
2719 {
2720 #ifndef LOCAL_SCAN_HAS_OPTIONS
2721 printf("local_scan() options are not supported\n");
2722 #else
2723 for (ol = local_scan_options;
2724 ol < local_scan_options + local_scan_options_count; ol++)
2725 {
2726 print_ol(ol, US ol->name, NULL, local_scan_options,
12f69989 2727 local_scan_options_count, no_labels);
059ec3d9
PH		 2728 }
2729 #endif
2730 return;
2731 }
2732
bf3c2c6b
HSHR		 2733 if (Ustrcmp(name, "config") == 0)
2734 {
3257ed4b 2735 print_config(admin_user, no_labels);
bf3c2c6b
HSHR		 2736 return;
2737 }
2738
059ec3d9
PH		 2739 if (Ustrcmp(name, "routers") == 0)
2740 {
2741 type = US"router";
2742 name = NULL;
2743 }
2744 else if (Ustrcmp(name, "transports") == 0)
2745 {
2746 type = US"transport";
2747 name = NULL;
2748 }
2749
2750 else if (Ustrcmp(name, "authenticators") == 0)
2751 {
2752 type = US"authenticator";
2753 name = NULL;
2754 }
2755
5d9c27ec 2756 else if (Ustrcmp(name, "macros") == 0)
059ec3d9 2757 {
5d9c27ec 2758 type = US"macro";
059ec3d9 2759 name = NULL;
059ec3d9
PH		 2760 }
2761
2762 else if (Ustrcmp(name, "router_list") == 0)
2763 {
2764 type = US"router";
2765 name = NULL;
2766 names_only = TRUE;
2767 }
5d9c27ec 2768
059ec3d9
PH		 2769 else if (Ustrcmp(name, "transport_list") == 0)
2770 {
2771 type = US"transport";
2772 name = NULL;
2773 names_only = TRUE;
2774 }
5d9c27ec
TK		 2775
2776 else if (Ustrcmp(name, "authenticator_list") == 0)
2777 {
2778 type = US"authenticator";
2779 name = NULL;
2780 names_only = TRUE;
2781 }
2782
2783 else if (Ustrcmp(name, "macro_list") == 0)
2784 {
2785 type = US"macro";
2786 name = NULL;
2787 names_only = TRUE;
2788 }
2789
bc3c7bb7
HSHR		 2790 else if (Ustrcmp(name, "environment") == 0)
2791 {
2792 if (environ)
2793 {
77560253 2794 uschar ** p;
bc3c7bb7 2795 for (p = USS environ; *p; p++) ;
84bbb4d8 2796 qsort(environ, p - USS environ, sizeof(*p), string_compare_by_pointer);
bc3c7bb7
HSHR		 2797
2798 for (p = USS environ; *p; p++)
2799 {
77560253
JH		 2800 uschar * q;
2801 if (no_labels && (q = Ustrchr(*p, '='))) *q = '\0';
f2cb6292 2802 puts(CS *p);
bc3c7bb7
HSHR		 2803 }
2804 }
2805 return;
2806 }
2807
059ec3d9
PH		 2808 else
2809 {
c0b9d3e8
JH		 2810 print_ol(find_option(name, optionlist_config, nelem(optionlist_config)),
2811 name, NULL, optionlist_config, nelem(optionlist_config), no_labels);
059ec3d9
PH		 2812 return;
2813 }
2814 }
2815
2816/* Handle the options for a router or transport. Skip options that are flagged
2817as hidden. Some of these are options with names starting with '*', used for
2818internal alternative representations of other options (which the printing
2819function will sort out). Others are synonyms kept for backward compatibility.
2820*/
2821
2822if (Ustrcmp(type, "router") == 0)
2823 {
2824 d = (driver_instance *)routers;
2825 ol2 = optionlist_routers;
2826 size = optionlist_routers_size;
2827 }
2828else if (Ustrcmp(type, "transport") == 0)
2829 {
2830 d = (driver_instance *)transports;
2831 ol2 = optionlist_transports;
2832 size = optionlist_transports_size;
2833 }
2834else if (Ustrcmp(type, "authenticator") == 0)
2835 {
2836 d = (driver_instance *)auths;
2837 ol2 = optionlist_auths;
2838 size = optionlist_auths_size;
2839 }
2840
5d9c27ec
TK		 2841else if (Ustrcmp(type, "macro") == 0)
2842 {
2843 /* People store passwords in macros and they were previously not available
2844 for printing. So we have an admin_users restriction. */
2845 if (!admin_user)
2846 {
2847 fprintf(stderr, "exim: permission denied\n");
2848 exit(EXIT_FAILURE);
2849 }
c193398d
JH		 2850 for (m = macros; m; m = m->next)
2851 if (!name || Ustrcmp(name, m->name) == 0)
5d9c27ec
TK		 2852 {
2853 if (names_only)
2854 printf("%s\n", CS m->name);
2855 else
2856 printf("%s=%s\n", CS m->name, CS m->replacement);
c193398d 2857 if (name)
5d9c27ec
TK		 2858 return;
2859 }
c193398d 2860 if (name)
5d9c27ec
TK		 2861 printf("%s %s not found\n", type, name);
2862 return;
2863 }
2864
059ec3d9
PH		 2865if (names_only)
2866 {
2867 for (; d != NULL; d = d->next) printf("%s\n", CS d->name);
2868 return;
2869 }
2870
2871/* Either search for a given driver, or print all of them */
2872
2873for (; d != NULL; d = d->next)
2874 {
2875 if (name == NULL)
2876 printf("\n%s %s:\n", d->name, type);
2877 else if (Ustrcmp(d->name, name) != 0) continue;
2878
2879 for (ol = ol2; ol < ol2 + size; ol++)
2880 {
2881 if ((ol->type & opt_hidden) == 0)
12f69989 2882 print_ol(ol, US ol->name, d, ol2, size, no_labels);
059ec3d9
PH		 2883 }
2884
2885 for (ol = d->info->options;
2886 ol < d->info->options + *(d->info->options_count); ol++)
2887 {
2888 if ((ol->type & opt_hidden) == 0)
12f69989 2889 print_ol(ol, US ol->name, d, d->info->options, *(d->info->options_count), no_labels);
059ec3d9
PH		 2890 }
2891 if (name != NULL) return;
2892 }
2893if (name != NULL) printf("%s %s not found\n", type, name);
2894}
2895
2896
2897
2898/*************************************************
2899* Read a named list item *
2900*************************************************/
2901
2902/* This function reads a name and a list (i.e. string). The name is used to
2903save the list in a tree, sorted by its name. Each entry also has a number,
2904which can be used for caching tests, but if the string contains any expansion
2905items other than $key, the number is set negative to inhibit caching. This
2906mechanism is used for domain, host, and address lists that are referenced by
2907the "+name" syntax.
2908
2909Arguments:
2910 anchorp points to the tree anchor
2911 numberp points to the current number for this tree
2912 max the maximum number permitted
2913 s the text of the option line, starting immediately after the name
2914 of the list type
2915 tname the name of the list type, for messages
2916
2917Returns: nothing
2918*/
2919
2920static void
2921read_named_list(tree_node **anchorp, int *numberp, int max, uschar *s,
2922 uschar *tname)
2923{
2924BOOL forcecache = FALSE;
2925uschar *ss;
2926tree_node *t;
2927namedlist_block *nb = store_get(sizeof(namedlist_block));
2928
2929if (Ustrncmp(s, "_cache", 6) == 0)
2930 {
2931 forcecache = TRUE;
2932 s += 6;
2933 }
2934
2935if (!isspace(*s))
2936 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unrecognized configuration line");
2937
2938if (*numberp >= max)
2939 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many named %ss (max is %d)\n",
2940 tname, max);
2941
2942while (isspace(*s)) s++;
2943ss = s;
2944while (isalnum(*s) || *s == '_') s++;
2945t = store_get(sizeof(tree_node) + s-ss);
2946Ustrncpy(t->name, ss, s-ss);
2947t->name[s-ss] = 0;
2948while (isspace(*s)) s++;
2949
2950if (!tree_insertnode(anchorp, t))
2951 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2952 "duplicate name \"%s\" for a named %s", t->name, tname);
2953
2954t->data.ptr = nb;
2955nb->number = *numberp;
2956*numberp += 1;
2957
2958if (*s++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2959 "missing '=' after \"%s\"", t->name);
2960while (isspace(*s)) s++;
2961nb->string = read_string(s, t->name);
2962nb->cache_data = NULL;
2963
2964/* Check the string for any expansions; if any are found, mark this list
2965uncacheable unless the user has explicited forced caching. */
2966
2967if (!forcecache && Ustrchr(nb->string, '$') != NULL) nb->number = -1;
2968}
2969
2970
2971
2972
2973/*************************************************
2974* Unpick data for a rate limit *
2975*************************************************/
2976
2977/* This function is called to unpick smtp_ratelimit_{mail,rcpt} into four
2978separate values.
2979
2980Arguments:
2981 s string, in the form t,b,f,l
2982 where t is the threshold (integer)
2983 b is the initial delay (time)
2984 f is the multiplicative factor (fixed point)
2985 k is the maximum time (time)
2986 threshold where to store threshold
2987 base where to store base in milliseconds
2988 factor where to store factor in milliseconds
2989 limit where to store limit
2990
2991Returns: nothing (panics on error)
2992*/
2993
2994static void
2995unpick_ratelimit(uschar *s, int *threshold, int *base, double *factor,
2996 int *limit)
2997{
2998uschar bstring[16], lstring[16];
2999
3000if (sscanf(CS s, "%d, %15[0123456789smhdw.], %lf, %15s", threshold, bstring,
3001 factor, lstring) == 4)
3002 {
3003 *base = readconf_readtime(bstring, 0, TRUE);
3004 *limit = readconf_readtime(lstring, 0, TRUE);
3005 if (*base >= 0 && *limit >= 0) return;
3006 }
3007log_write(0, LOG_MAIN|LOG_PANIC_DIE, "malformed ratelimit data: %s", s);
3008}
3009
3010
3011
3012
3375e053
PP		 3013/*************************************************
3014* Drop privs for checking TLS config *
3015*************************************************/
3016
3017/* We want to validate TLS options during readconf, but do not want to be
3018root when we call into the TLS library, in case of library linkage errors
3019which cause segfaults; before this check, those were always done as the Exim
3020runtime user and it makes sense to continue with that.
3021
3022Assumes: tls_require_ciphers has been set, if it will be
3023 exim_user has been set, if it will be
3024 exim_group has been set, if it will be
3025
3026Returns: bool for "okay"; false will cause caller to immediately exit.
3027*/
3028
3029#ifdef SUPPORT_TLS
3030static BOOL
34e86e20 3031tls_dropprivs_validate_require_cipher(BOOL nowarn)
3375e053
PP		 3032{
3033const uschar *errmsg;
3034pid_t pid;
3035int rc, status;
3036void (*oldsignal)(int);
3037
23f3dc67
JH		 3038/* If TLS will never be used, no point checking ciphers */
3039
3040if ( !tls_advertise_hosts
3041 || !*tls_advertise_hosts
3042 || Ustrcmp(tls_advertise_hosts, ":") == 0
3043 )
3044 return TRUE;
34e86e20 3045else if (!nowarn && !tls_certificate)
23bb6982
JH		 3046 log_write(0, LOG_MAIN,
3047 "Warning: No server certificate defined; will use a selfsigned one.\n"
23f3dc67
JH		 3048 " Suggested action: either install a certificate or change tls_advertise_hosts option");
3049
3375e053
PP		 3050oldsignal = signal(SIGCHLD, SIG_DFL);
3051
3052fflush(NULL);
3053if ((pid = fork()) < 0)
3054 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "fork failed for TLS check");
3055
3056if (pid == 0)
3057 {
1d7a353e
PP		 3058 /* in some modes, will have dropped privilege already */
3059 if (!geteuid())
3060 exim_setugid(exim_uid, exim_gid, FALSE,
3061 US"calling tls_validate_require_cipher");
3375e053 3062
cf0c6164 3063 if ((errmsg = tls_validate_require_cipher()))
3375e053
PP		 3064 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3065 "tls_require_ciphers invalid: %s", errmsg);
3375e053
PP		 3066 fflush(NULL);
3067 _exit(0);
3068 }
3069
3070do {
3071 rc = waitpid(pid, &status, 0);
3072} while (rc < 0 && errno == EINTR);
3073
9d26b8c0 3074DEBUG(D_tls)
3375e053
PP		 3075 debug_printf("tls_validate_require_cipher child %d ended: status=0x%x\n",
3076 (int)pid, status);
3077
3078signal(SIGCHLD, oldsignal);
3079
3080return status == 0;
3081}
3082#endif /* SUPPORT_TLS */
3083
3084
3085
3086
059ec3d9
PH		 3087/*************************************************
3088* Read main configuration options *
3089*************************************************/
3090
3091/* This function is the first to be called for configuration reading. It
3092opens the configuration file and reads general configuration settings until
3093it reaches the end of the configuration section. The file is then left open so
3094that the remaining configuration data can subsequently be read if needed for
3095this run of Exim.
3096
3097The configuration file must be owned either by root or exim, and be writeable
3098only by root or uid/gid exim. The values for Exim's uid and gid can be changed
3099in the config file, so the test is done on the compiled in values. A slight
3100anomaly, to be carefully documented.
3101
3102The name of the configuration file is taken from a list that is included in the
3103binary of Exim. It can be altered from the command line, but if that is done,
3104root privilege is immediately withdrawn unless the caller is root or exim.
3105The first file on the list that exists is used.
3106
3107For use on multiple systems that share file systems, first look for a
3108configuration file whose name has the current node name on the end. If that is
3109not found, try the generic name. For really contorted configurations, that run
3110multiple Exims with different uid settings, first try adding the effective uid
3111before the node name. These complications are going to waste resources on most
3112systems. Therefore they are available only when requested by compile-time
3113options. */
3114
3115void
34e86e20 3116readconf_main(BOOL nowarn)
059ec3d9
PH		 3117{
3118int sep = 0;
3119struct stat statbuf;
3120uschar *s, *filename;
55414b25 3121const uschar *list = config_main_filelist;
059ec3d9
PH		 3122
3123/* Loop through the possible file names */
3124
8e6c4db1 3125while((filename = string_nextinlist(&list, &sep, big_buffer, big_buffer_size)))
059ec3d9 3126 {
bc3c7bb7 3127
059ec3d9
PH		 3128 /* Cut out all the fancy processing unless specifically wanted */
3129
3130 #if defined(CONFIGURE_FILE_USE_NODE) || defined(CONFIGURE_FILE_USE_EUID)
3131 uschar *suffix = filename + Ustrlen(filename);
3132
3133 /* Try for the node-specific file if a node name exists */
3134
3135 #ifdef CONFIGURE_FILE_USE_NODE
3136 struct utsname uts;
3137 if (uname(&uts) >= 0)
3138 {
3139 #ifdef CONFIGURE_FILE_USE_EUID
3140 sprintf(CS suffix, ".%ld.%.256s", (long int)original_euid, uts.nodename);
3141 config_file = Ufopen(filename, "rb");
3142 if (config_file == NULL)
3143 #endif /* CONFIGURE_FILE_USE_EUID */
3144 {
3145 sprintf(CS suffix, ".%.256s", uts.nodename);
3146 config_file = Ufopen(filename, "rb");
3147 }
3148 }
3149 #endif /* CONFIGURE_FILE_USE_NODE */
3150
3151 /* Otherwise, try the generic name, possibly with the euid added */
3152
3153 #ifdef CONFIGURE_FILE_USE_EUID
3154 if (config_file == NULL)
3155 {
3156 sprintf(CS suffix, ".%ld", (long int)original_euid);
3157 config_file = Ufopen(filename, "rb");
3158 }
3159 #endif /* CONFIGURE_FILE_USE_EUID */
3160
3161 /* Finally, try the unadorned name */
3162
3163 if (config_file == NULL)
3164 {
3165 *suffix = 0;
3166 config_file = Ufopen(filename, "rb");
3167 }
3168 #else /* if neither defined */
3169
3170 /* This is the common case when the fancy processing is not included. */
3171
3172 config_file = Ufopen(filename, "rb");
3173 #endif
3174
3175 /* If the file does not exist, continue to try any others. For any other
3176 error, break out (and die). */
3177
3178 if (config_file != NULL || errno != ENOENT) break;
3179 }
3180
3181/* On success, save the name for verification; config_filename is used when
3182logging configuration errors (it changes for .included files) whereas
3183config_main_filename is the name shown by -bP. Failure to open a configuration
3184file is a serious disaster. */
3185
8e7e1357 3186if (config_file)
059ec3d9 3187 {
8e7e1357 3188 uschar *last_slash = Ustrrchr(filename, '/');
059ec3d9 3189 config_filename = config_main_filename = string_copy(filename);
98b8312f 3190
8e7e1357
HSHR		 3191 /* The config_main_directory we need for the $config_dir expansion.
3192 config_main_filename we need for $config_file expansion.
29f67888
HSHR		 3193 And config_dir is the directory of the current configuration, used for
3194 relative .includes. We do need to know it's name, as we change our working
3195 directory later. */
3196
3197 if (filename[0] == '/')
8e7e1357 3198 config_main_directory = last_slash == filename ? US"/" : string_copyn(filename, last_slash - filename);
29f67888
HSHR		 3199 else
3200 {
3201 /* relative configuration file name: working dir + / + basename(filename) */
3202
863bd541 3203 uschar buf[PATH_MAX];
acec9514 3204 gstring * g;
29f67888 3205
863bd541 3206 if (os_getcwd(buf, PATH_MAX) == NULL)
29f67888
HSHR		 3207 {
3208 perror("exim: getcwd");
3209 exit(EXIT_FAILURE);
3210 }
acec9514 3211 g = string_cat(NULL, buf);
29f67888
HSHR		 3212
3213 /* If the dir does not end with a "/", append one */
acec9514
JH		 3214 if (g->s[g->ptr-1] != '/')
3215 g = string_catn(g, US"/", 1);
29f67888
HSHR		 3216
3217 /* If the config file contains a "/", extract the directory part */
8e7e1357 3218 if (last_slash)
acec9514 3219 g = string_catn(g, filename, last_slash - filename);
8e7e1357 3220
acec9514 3221 config_main_directory = string_from_gstring(g);
29f67888
HSHR		 3222 }
3223 config_directory = config_main_directory;
059ec3d9
PH		 3224 }
3225else
3226 {
3227 if (filename == NULL)
3228 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "non-existent configuration file(s): "
3229 "%s", config_main_filelist);
3230 else
3231 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "%s", string_open_failed(errno,
3232 "configuration file %s", filename));
3233 }
3234
29f67888
HSHR		 3235/* Now, once we found and opened our configuration file, we change the directory
3236to a safe place. Later we change to $spool_directory. */
3237
3238if (Uchdir("/") < 0)
3239 {
3240 perror("exim: chdir `/': ");
3241 exit(EXIT_FAILURE);
3242 }
3243
e2f5dc15 3244/* Check the status of the file we have opened, if we have retained root
fea24b2e 3245privileges and the file isn't /dev/null (which *should* be 0666). */
059ec3d9 3246
fea24b2e 3247if (trusted_config && Ustrcmp(filename, US"/dev/null"))
059ec3d9
PH		 3248 {
3249 if (fstat(fileno(config_file), &statbuf) != 0)
3250 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to stat configuration file %s",
3251 big_buffer);
3252
c1d94452 3253 if ((statbuf.st_uid != root_uid /* owner not root */
059ec3d9
PH		 3254 #ifdef CONFIGURE_OWNER
3255 && statbuf.st_uid != config_uid /* owner not the special one */
3256 #endif
3257 ) || /* or */
c1d94452 3258 (statbuf.st_gid != root_gid /* group not root & */
35edf2ff
PH		 3259 #ifdef CONFIGURE_GROUP
3260 && statbuf.st_gid != config_gid /* group not the special one */
8e669ac1 3261 #endif
35edf2ff 3262 && (statbuf.st_mode & 020) != 0) || /* group writeable */
059ec3d9
PH		 3263 /* or */
3264 ((statbuf.st_mode & 2) != 0)) /* world writeable */
3265
3266 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Exim configuration file %s has the "
3267 "wrong owner, group, or mode", big_buffer);
3268 }
3269
3270/* Process the main configuration settings. They all begin with a lower case
3271letter. If we see something starting with an upper case letter, it is taken as
3272a macro definition. */
3273
5bfe3b35 3274while ((s = get_config_line()))
059ec3d9 3275 {
af542dcf
HSHR		 3276 if (config_lineno == 1 && Ustrstr(s, "\xef\xbb\xbf") == s)
3277 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3278 "found unexpected BOM (Byte Order Mark)");
3279
cf00dad6 3280 if (isupper(s[0])) read_macro_assignment(s);
059ec3d9
PH		 3281
3282 else if (Ustrncmp(s, "domainlist", 10) == 0)
3283 read_named_list(&domainlist_anchor, &domainlist_count,
3284 MAX_NAMED_LIST, s+10, US"domain list");
3285
3286 else if (Ustrncmp(s, "hostlist", 8) == 0)
3287 read_named_list(&hostlist_anchor, &hostlist_count,
3288 MAX_NAMED_LIST, s+8, US"host list");
3289
3290 else if (Ustrncmp(s, US"addresslist", 11) == 0)
3291 read_named_list(&addresslist_anchor, &addresslist_count,
3292 MAX_NAMED_LIST, s+11, US"address list");
3293
3294 else if (Ustrncmp(s, US"localpartlist", 13) == 0)
3295 read_named_list(&localpartlist_anchor, &localpartlist_count,
3296 MAX_NAMED_LIST, s+13, US"local part list");
3297
3298 else
3299 (void) readconf_handle_option(s, optionlist_config, optionlist_config_size,
3300 NULL, US"main option \"%s\" unknown");
3301 }
3302
3303
3304/* If local_sender_retain is set, local_from_check must be unset. */
3305
3306if (local_sender_retain && local_from_check)
3307 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "both local_from_check and "
3308 "local_sender_retain are set; this combination is not allowed");
3309
3310/* If the timezone string is empty, set it to NULL, implying no TZ variable
3311wanted. */
3312
3313if (timezone_string != NULL && *timezone_string == 0) timezone_string = NULL;
3314
944a9c55
PH		 3315/* The max retry interval must not be greater than 24 hours. */
3316
3317if (retry_interval_max > 24*60*60) retry_interval_max = 24*60*60;
3318
059ec3d9
PH		 3319/* remote_max_parallel must be > 0 */
3320
3321if (remote_max_parallel <= 0) remote_max_parallel = 1;
3322
6a3f1455
PH		 3323/* Save the configured setting of freeze_tell, so we can re-instate it at the
3324start of a new SMTP message. */
3325
3326freeze_tell_config = freeze_tell;
3327
059ec3d9
PH		 3328/* The primary host name may be required for expansion of spool_directory
3329and log_file_path, so make sure it is set asap. It is obtained from uname(),
3330but if that yields an unqualified value, make a FQDN by using gethostbyname to
3331canonize it. Some people like upper case letters in their host names, so we
3332don't force the case. */
3333
3334if (primary_hostname == NULL)
3335 {
55414b25 3336 const uschar *hostname;
059ec3d9
PH		 3337 struct utsname uts;
3338 if (uname(&uts) < 0)
3339 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "uname() failed to yield host name");
3340 hostname = US uts.nodename;
3341
3342 if (Ustrchr(hostname, '.') == NULL)
3343 {
3344 int af = AF_INET;
3345 struct hostent *hostdata;
3346
3347 #if HAVE_IPV6
7e66e54d 3348 if (!disable_ipv6 && (dns_ipv4_lookup == NULL ||
55414b25
JH		 3349 match_isinlist(hostname, CUSS &dns_ipv4_lookup, 0, NULL, NULL,
3350 MCL_DOMAIN, TRUE, NULL) != OK))
059ec3d9
PH		 3351 af = AF_INET6;
3352 #else
3353 af = AF_INET;
3354 #endif
3355
3356 for (;;)
3357 {
3358 #if HAVE_IPV6
3359 #if HAVE_GETIPNODEBYNAME
3360 int error_num;
3361 hostdata = getipnodebyname(CS hostname, af, 0, &error_num);
3362 #else
3363 hostdata = gethostbyname2(CS hostname, af);
3364 #endif
3365 #else
3366 hostdata = gethostbyname(CS hostname);
3367 #endif
3368
3369 if (hostdata != NULL)
3370 {
3371 hostname = US hostdata->h_name;
3372 break;
3373 }
3374
3375 if (af == AF_INET) break;
3376 af = AF_INET;
3377 }
3378 }
3379
3380 primary_hostname = string_copy(hostname);
3381 }
3382
3383/* Set up default value for smtp_active_hostname */
3384
3385smtp_active_hostname = primary_hostname;
3386
3387/* If spool_directory wasn't set in the build-time configuration, it must have
3388got set above. Of course, writing to the log may not work if log_file_path is
3389not set, but it will at least get to syslog or somewhere, with any luck. */
3390
3391if (*spool_directory == 0)
3392 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "spool_directory undefined: cannot "
3393 "proceed");
3394
3395/* Expand the spool directory name; it may, for example, contain the primary
3396host name. Same comment about failure. */
3397
3398s = expand_string(spool_directory);
3399if (s == NULL)
3400 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand spool_directory "
3401 "\"%s\": %s", spool_directory, expand_string_message);
3402spool_directory = s;
3403
3404/* Expand log_file_path, which must contain "%s" in any component that isn't
f1e5fef5
PP		 3405the null string or "syslog". It is also allowed to contain one instance of %D
3406or %M. However, it must NOT contain % followed by anything else. */
059ec3d9
PH		 3407
3408if (*log_file_path != 0)
3409 {
55414b25 3410 const uschar *ss, *sss;
059ec3d9
PH		 3411 int sep = ':'; /* Fixed for log file path */
3412 s = expand_string(log_file_path);
3413 if (s == NULL)
3414 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand log_file_path "
3415 "\"%s\": %s", log_file_path, expand_string_message);
3416
3417 ss = s;
3418 while ((sss = string_nextinlist(&ss,&sep,big_buffer,big_buffer_size)) != NULL)
3419 {
3420 uschar *t;
3421 if (sss[0] == 0 || Ustrcmp(sss, "syslog") == 0) continue;
3422 t = Ustrstr(sss, "%s");
3423 if (t == NULL)
3424 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" does not "
3425 "contain \"%%s\"", sss);
3426 *t = 'X';
3427 t = Ustrchr(sss, '%');
3428 if (t != NULL)
3429 {
f1e5fef5 3430 if ((t[1] != 'D' && t[1] != 'M') || Ustrchr(t+2, '%') != NULL)
059ec3d9
PH		 3431 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" contains "
3432 "unexpected \"%%\" character", s);
3433 }
3434 }
3435
3436 log_file_path = s;
3437 }
3438
3439/* Interpret syslog_facility into an integer argument for 'ident' param to
3440openlog(). Default is LOG_MAIL set in globals.c. Allow the user to omit the
3441leading "log_". */
3442
5bfe3b35 3443if (syslog_facility_str)
059ec3d9
PH		 3444 {
3445 int i;
3446 uschar *s = syslog_facility_str;
3447
3448 if ((Ustrlen(syslog_facility_str) >= 4) &&
3449 (strncmpic(syslog_facility_str, US"log_", 4) == 0))
3450 s += 4;
3451
3452 for (i = 0; i < syslog_list_size; i++)
059ec3d9
PH		 3453 if (strcmpic(s, syslog_list[i].name) == 0)
3454 {
3455 syslog_facility = syslog_list[i].value;
3456 break;
3457 }
059ec3d9
PH		 3458
3459 if (i >= syslog_list_size)
059ec3d9
PH		 3460 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3461 "failed to interpret syslog_facility \"%s\"", syslog_facility_str);
059ec3d9
PH		 3462 }
3463
3464/* Expand pid_file_path */
3465
3466if (*pid_file_path != 0)
3467 {
5bfe3b35 3468 if (!(s = expand_string(pid_file_path)))
059ec3d9
PH		 3469 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand pid_file_path "
3470 "\"%s\": %s", pid_file_path, expand_string_message);
3471 pid_file_path = s;
3472 }
3473
921b12ca
TF		 3474/* Set default value of process_log_path */
3475
5bfe3b35 3476if (!process_log_path || *process_log_path =='\0')
921b12ca
TF		 3477 process_log_path = string_sprintf("%s/exim-process.info", spool_directory);
3478
059ec3d9
PH		 3479/* Compile the regex for matching a UUCP-style "From_" line in an incoming
3480message. */
3481
3482regex_From = regex_must_compile(uucp_from_pattern, FALSE, TRUE);
3483
3484/* Unpick the SMTP rate limiting options, if set */
3485
5bfe3b35 3486if (smtp_ratelimit_mail)
059ec3d9
PH		 3487 unpick_ratelimit(smtp_ratelimit_mail, &smtp_rlm_threshold,
3488 &smtp_rlm_base, &smtp_rlm_factor, &smtp_rlm_limit);
059ec3d9 3489
5bfe3b35 3490if (smtp_ratelimit_rcpt)
059ec3d9
PH		 3491 unpick_ratelimit(smtp_ratelimit_rcpt, &smtp_rlr_threshold,
3492 &smtp_rlr_base, &smtp_rlr_factor, &smtp_rlr_limit);
059ec3d9
PH		 3493
3494/* The qualify domains default to the primary host name */
3495
5bfe3b35 3496if (!qualify_domain_sender)
059ec3d9 3497 qualify_domain_sender = primary_hostname;
5bfe3b35 3498if (!qualify_domain_recipient)
059ec3d9
PH		 3499 qualify_domain_recipient = qualify_domain_sender;
3500
3501/* Setting system_filter_user in the configuration sets the gid as well if a
3502name is given, but a numerical value does not. */
3503
3504if (system_filter_uid_set && !system_filter_gid_set)
3505 {
3506 struct passwd *pw = getpwuid(system_filter_uid);
5bfe3b35 3507 if (!pw)
059ec3d9
PH		 3508 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Failed to look up uid %ld",
3509 (long int)system_filter_uid);
3510 system_filter_gid = pw->pw_gid;
3511 system_filter_gid_set = TRUE;
3512 }
3513
3514/* If the errors_reply_to field is set, check that it is syntactically valid
3515and ensure it contains a domain. */
3516
5bfe3b35 3517if (errors_reply_to)
059ec3d9
PH		 3518 {
3519 uschar *errmess;
3520 int start, end, domain;
3521 uschar *recipient = parse_extract_address(errors_reply_to, &errmess,
3522 &start, &end, &domain, FALSE);
3523
5bfe3b35 3524 if (!recipient)
059ec3d9
PH		 3525 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3526 "error in errors_reply_to (%s): %s", errors_reply_to, errmess);
3527
3528 if (domain == 0)
3529 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3530 "errors_reply_to (%s) does not contain a domain", errors_reply_to);
3531 }
3532
3533/* If smtp_accept_queue or smtp_accept_max_per_host is set, then
3534smtp_accept_max must also be set. */
3535
3536if (smtp_accept_max == 0 &&
3537 (smtp_accept_queue > 0 || smtp_accept_max_per_host != NULL))
3538 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3539 "smtp_accept_max must be set if smtp_accept_queue or "
3540 "smtp_accept_max_per_host is set");
3541
3542/* Set up the host number if anything is specified. It is an expanded string
3543so that it can be computed from the host name, for example. We do this last
3544so as to ensure that everything else is set up before the expansion. */
3545
5bfe3b35 3546if (host_number_string)
059ec3d9 3547 {
ef840681 3548 long int n;
059ec3d9
PH		 3549 uschar *end;
3550 uschar *s = expand_string(host_number_string);
5bfe3b35
JH		 3551
3552 if (!s)
ef840681
PP		 3553 log_write(0, LOG_MAIN|LOG_PANIC_DIE,
3554 "failed to expand localhost_number \"%s\": %s",
3555 host_number_string, expand_string_message);
3556 n = Ustrtol(s, &end, 0);
059ec3d9
PH		 3557 while (isspace(*end)) end++;
3558 if (*end != 0)
3559 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3560 "localhost_number value is not a number: %s", s);
3561 if (n > LOCALHOST_MAX)
3562 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3563 "localhost_number is greater than the maximum allowed value (%d)",
3564 LOCALHOST_MAX);
3565 host_number = n;
3566 }
3567
3568#ifdef SUPPORT_TLS
3569/* If tls_verify_hosts is set, tls_verify_certificates must also be set */
3570
5bfe3b35 3571if ((tls_verify_hosts || tls_try_verify_hosts) && !tls_verify_certificates)
059ec3d9
PH		 3572 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3573 "tls_%sverify_hosts is set, but tls_verify_certificates is not set",
5bfe3b35 3574 tls_verify_hosts ? "" : "try_");
77bb000f 3575
3375e053
PP		 3576/* This also checks that the library linkage is working and we can call
3577routines in it, so call even if tls_require_ciphers is unset */
34e86e20 3578if (!tls_dropprivs_validate_require_cipher(nowarn))
3375e053
PP		 3579 exit(1);
3580
3581/* Magic number: at time of writing, 1024 has been the long-standing value
3582used by so many clients, and what Exim used to use always, that it makes
3583sense to just min-clamp this max-clamp at that. */
3584if (tls_dh_max_bits < 1024)
3585 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3586 "tls_dh_max_bits is too small, must be at least 1024 for interop");
3587
77bb000f 3588/* If openssl_options is set, validate it */
7006ee24 3589if (openssl_options)
77bb000f
PP		 3590 {
3591# ifdef USE_GNUTLS
3592 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
a053d125 3593 "openssl_options is set but we're using GnuTLS");
77bb000f
PP		 3594# else
3595 long dummy;
7006ee24 3596 if (!tls_openssl_options_parse(openssl_options, &dummy))
77bb000f 3597 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
a053d125 3598 "openssl_options parse error: %s", openssl_options);
77bb000f
PP		 3599# endif
3600 }
32d07012 3601#endif /*SUPPORT_TLS*/
bc3c7bb7 3602
34e86e20 3603if (!nowarn && !keep_environment && environ && *environ)
bc3c7bb7 3604 log_write(0, LOG_MAIN,
8e58ed80
HSHR		 3605 "Warning: purging the environment.\n"
3606 " Suggested action: use keep_environment.");
059ec3d9
PH		 3607}
3608
3609
3610
3611/*************************************************
3612* Initialize one driver *
3613*************************************************/
3614
3615/* This is called once the driver's generic options, if any, have been read.
3616We can now find the driver, set up defaults for the private options, and
3617unset any "set" bits in the private options table (which might have been
3618set by another incarnation of the same driver).
3619
3620Arguments:
3621 d pointer to driver instance block, with generic
3622 options filled in
3623 drivers_available vector of available drivers
3624 size_of_info size of each block in drivers_available
3625 class class of driver, for error message
3626
3627Returns: pointer to the driver info block
3628*/
3629
3630static driver_info *
3631init_driver(driver_instance *d, driver_info *drivers_available,
3632 int size_of_info, uschar *class)
3633{
3634driver_info *dd;
3635
3636for (dd = drivers_available; dd->driver_name[0] != 0;
5903c6ff 3637 dd = (driver_info *)((US dd) + size_of_info))
059ec3d9
PH		 3638 {
3639 if (Ustrcmp(d->driver_name, dd->driver_name) == 0)
3640 {
3641 int i;
3642 int len = dd->options_len;
3643 d->info = dd;
3644 d->options_block = store_get(len);
3645 memcpy(d->options_block, dd->options_block, len);
3646 for (i = 0; i < *(dd->options_count); i++)
3647 dd->options[i].type &= ~opt_set;
3648 return dd;
3649 }
3650 }
3651
3652log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3653 "%s %s: cannot find %s driver \"%s\"", class, d->name, class, d->driver_name);
3654
3655return NULL; /* never obeyed */
3656}
3657
3658
3659
3660
3661/*************************************************
3662* Initialize driver list *
3663*************************************************/
3664
3665/* This function is called for routers, transports, and authentication
3666mechanisms. It reads the data from the current point in the configuration file
3667up to the end of the section, and sets up a chain of instance blocks according
3668to the file's contents. The file will already have been opened by a call to
3669readconf_main, and must be left open for subsequent reading of further data.
3670
3671Any errors cause a panic crash. Note that the blocks with names driver_info and
3672driver_instance must map the first portions of all the _info and _instance
3673blocks for this shared code to work.
3674
3675Arguments:
3676 class "router", "transport", or "authenticator"
3677 anchor &routers, &transports, &auths
3678 drivers_available available drivers
3679 size_of_info size of each info block
3680 instance_default points to default data for an instance
3681 instance_size size of instance block
3682 driver_optionlist generic option list
3683 driver_optionlist_count count of generic option list
3684
3685Returns: nothing
3686*/
3687
3688void
3689readconf_driver_init(
3690 uschar *class,
3691 driver_instance **anchor,
3692 driver_info *drivers_available,
3693 int size_of_info,
3694 void *instance_default,
3695 int instance_size,
3696 optionlist *driver_optionlist,
3697 int driver_optionlist_count)
3698{
3699driver_instance **p = anchor;
3700driver_instance *d = NULL;
3701uschar *buffer;
3702
059ec3d9
PH		 3703while ((buffer = get_config_line()) != NULL)
3704 {
3705 uschar name[64];
cf00dad6 3706 uschar *s;
059ec3d9 3707
cf00dad6
PH		 3708 /* Read the first name on the line and test for the start of a new driver. A
3709 macro definition indicates the end of the previous driver. If this isn't the
3710 start of a new driver, the line will be re-read. */
059ec3d9 3711
cf00dad6
PH		 3712 s = readconf_readname(name, sizeof(name), buffer);
3713
3714 /* Handle macro definition, first finishing off the initialization of the
3715 previous driver, if any. */
3716
3717 if (isupper(*name) && *s == '=')
3718 {
d4ff61d1 3719 if (d)
cf00dad6 3720 {
d4ff61d1 3721 if (!d->driver_name)
cf00dad6
PH		 3722 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3723 "no driver defined for %s \"%s\"", class, d->name);
3724 (d->info->init)(d);
3725 d = NULL;
3726 }
3727 read_macro_assignment(buffer);
3728 continue;
3729 }
059ec3d9
PH		 3730
3731 /* If the line starts with a name terminated by a colon, we are at the
3732 start of the definition of a new driver. The rest of the line must be
3733 blank. */
3734
3735 if (*s++ == ':')
3736 {
3737 int i;
3738
3739 /* Finish off initializing the previous driver. */
3740
d4ff61d1 3741 if (d)
059ec3d9 3742 {
d4ff61d1 3743 if (!d->driver_name)
059ec3d9
PH		 3744 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3745 "no driver defined for %s \"%s\"", class, d->name);
3746 (d->info->init)(d);
3747 }
3748
3749 /* Check that we haven't already got a driver of this name */
3750
d4ff61d1 3751 for (d = *anchor; d; d = d->next)
059ec3d9
PH		 3752 if (Ustrcmp(name, d->name) == 0)
3753 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3754 "there are two %ss called \"%s\"", class, name);
3755
3756 /* Set up a new driver instance data block on the chain, with
3757 its default values installed. */
3758
3759 d = store_get(instance_size);
3760 memcpy(d, instance_default, instance_size);
3761 *p = d;
d4ff61d1 3762 p = &d->next;
059ec3d9
PH		 3763 d->name = string_copy(name);
3764
3765 /* Clear out the "set" bits in the generic options */
3766
3767 for (i = 0; i < driver_optionlist_count; i++)
3768 driver_optionlist[i].type &= ~opt_set;
3769
3770 /* Check nothing more on this line, then do the next loop iteration. */
3771
3772 while (isspace(*s)) s++;
3773 if (*s != 0) extra_chars_error(s, US"driver name ", name, US"");
3774 continue;
3775 }
3776
cf00dad6
PH		 3777 /* Not the start of a new driver. Give an error if we have not set up a
3778 current driver yet. */
059ec3d9 3779
d4ff61d1
JH		 3780 if (!d)
3781 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s name missing", class);
059ec3d9
PH		 3782
3783 /* First look to see if this is a generic option; if it is "driver",
3784 initialize the driver. If is it not a generic option, we can look for a
3785 private option provided that the driver has been previously set up. */
3786
3787 if (readconf_handle_option(buffer, driver_optionlist,
3788 driver_optionlist_count, d, NULL))
3789 {
d4ff61d1 3790 if (!d->info && d->driver_name)
059ec3d9
PH		 3791 init_driver(d, drivers_available, size_of_info, class);
3792 }
3793
3794 /* Handle private options - pass the generic block because some may
3795 live therein. A flag with each option indicates if it is in the public
3796 block. */
3797
d4ff61d1 3798 else if (d->info)
059ec3d9
PH		 3799 readconf_handle_option(buffer, d->info->options,
3800 *(d->info->options_count), d, US"option \"%s\" unknown");
059ec3d9
PH		 3801
3802 /* The option is not generic and the driver name has not yet been given. */
3803
3804 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option \"%s\" unknown "
3805 "(\"driver\" must be specified before any private options)", name);
3806 }
3807
3808/* Run the initialization function for the final driver. */
3809
d4ff61d1 3810if (d)
059ec3d9 3811 {
d4ff61d1 3812 if (!d->driver_name)
059ec3d9
PH		 3813 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3814 "no driver defined for %s \"%s\"", class, d->name);
3815 (d->info->init)(d);
3816 }
3817}
3818
3819
3820
3821/*************************************************
3822* Check driver dependency *
3823*************************************************/
3824
3825/* This function is passed a driver instance and a string. It checks whether
3826any of the string options for the driver contains the given string as an
3827expansion variable.
3828
3829Arguments:
3830 d points to a driver instance block
3831 s the string to search for
3832
3833Returns: TRUE if a dependency is found
3834*/
3835
3836BOOL
3837readconf_depends(driver_instance *d, uschar *s)
3838{
3839int count = *(d->info->options_count);
3840optionlist *ol;
3841uschar *ss;
3842
3843for (ol = d->info->options; ol < d->info->options + count; ol++)
3844 {
3845 void *options_block;
3846 uschar *value;
3847 int type = ol->type & opt_mask;
3848 if (type != opt_stringptr) continue;
3849 options_block = ((ol->type & opt_public) == 0)? d->options_block : (void *)d;
5903c6ff 3850 value = *(uschar **)(US options_block + (long int)(ol->value));
059ec3d9
PH		 3851 if (value != NULL && (ss = Ustrstr(value, s)) != NULL)
3852 {
3853 if (ss <= value || (ss[-1] != '$' && ss[-1] != '{') ||
3854 isalnum(ss[Ustrlen(s)])) continue;
3855 DEBUG(D_transport) debug_printf("driver %s: \"%s\" option depends on %s\n",
3856 d->name, ol->name, s);
3857 return TRUE;
3858 }
3859 }
3860
3861DEBUG(D_transport) debug_printf("driver %s does not depend on %s\n", d->name, s);
3862return FALSE;
3863}
3864
3865
3866
3867
3868/*************************************************
3869* Decode an error type for retries *
3870*************************************************/
3871
3872/* This function is global because it is also called from the main
3873program when testing retry information. It decodes strings such as "quota_7d"
3874into numerical error codes.
3875
3876Arguments:
3877 pp points to start of text
3878 p points past end of text
3879 basic_errno points to an int to receive the main error number
3880 more_errno points to an int to receive the secondary error data
3881
3882Returns: NULL if decoded correctly; else points to error text
3883*/
3884
3885uschar *
bd4ece7d
JH		 3886readconf_retry_error(const uschar *pp, const uschar *p,
3887 int *basic_errno, int *more_errno)
059ec3d9
PH		 3888{
3889int len;
55414b25 3890const uschar *q = pp;
059ec3d9
PH		 3891while (q < p && *q != '_') q++;
3892len = q - pp;
3893
3894if (len == 5 && strncmpic(pp, US"quota", len) == 0)
3895 {
3896 *basic_errno = ERRNO_EXIMQUOTA;
3897 if (q != p && (*more_errno = readconf_readtime(q+1, *p, FALSE)) < 0)
3898 return US"bad time value";
3899 }
3900
3901else if (len == 7 && strncmpic(pp, US"refused", len) == 0)
3902 {
3903 *basic_errno = ECONNREFUSED;
3904 if (q != p)
3905 {
3906 if (strncmpic(q+1, US"MX", p-q-1) == 0) *more_errno = 'M';
3907 else if (strncmpic(q+1, US"A", p-q-1) == 0) *more_errno = 'A';
3908 else return US"A or MX expected after \"refused\"";
3909 }
3910 }
3911
3912else if (len == 7 && strncmpic(pp, US"timeout", len) == 0)
3913 {
3914 *basic_errno = ETIMEDOUT;
3915 if (q != p)
3916 {
3917 int i;
3918 int xlen = p - q - 1;
55414b25 3919 const uschar *x = q + 1;
059ec3d9
PH		 3920
3921 static uschar *extras[] =
3922 { US"A", US"MX", US"connect", US"connect_A", US"connect_MX" };
3923 static int values[] =
3924 { 'A', 'M', RTEF_CTOUT, RTEF_CTOUT|'A', RTEF_CTOUT|'M' };
3925
5903c6ff 3926 for (i = 0; i < nelem(extras); i++)
059ec3d9
PH		 3927 if (strncmpic(x, extras[i], xlen) == 0)
3928 {
3929 *more_errno = values[i];
3930 break;
3931 }
059ec3d9 3932
5903c6ff 3933 if (i >= nelem(extras))
059ec3d9 3934 if (strncmpic(x, US"DNS", xlen) == 0)
059ec3d9
PH		 3935 log_write(0, LOG_MAIN|LOG_PANIC, "\"timeout_dns\" is no longer "
3936 "available in retry rules (it has never worked) - treated as "
3937 "\"timeout\"");
bd4ece7d
JH		 3938 else
3939 return US"\"A\", \"MX\", or \"connect\" expected after \"timeout\"";
059ec3d9
PH		 3940 }
3941 }
3942
e97957bc
PH		 3943else if (strncmpic(pp, US"mail_4", 6) == 0 ||
3944 strncmpic(pp, US"rcpt_4", 6) == 0 ||
3945 strncmpic(pp, US"data_4", 6) == 0)
059ec3d9
PH		 3946 {
3947 BOOL bad = FALSE;
3948 int x = 255; /* means "any 4xx code" */
3949 if (p != pp + 8) bad = TRUE; else
3950 {
3951 int a = pp[6], b = pp[7];
3952 if (isdigit(a))
3953 {
3954 x = (a - '0') * 10;
3955 if (isdigit(b)) x += b - '0';
3956 else if (b == 'x') x += 100;
3957 else bad = TRUE;
3958 }
3959 else if (a != 'x' || b != 'x') bad = TRUE;
3960 }
3961
e97957bc
PH		 3962 if (bad)
3963 return string_sprintf("%.4s_4 must be followed by xx, dx, or dd, where "
3964 "x is literal and d is any digit", pp);
059ec3d9 3965
bd4ece7d
JH		 3966 *basic_errno = *pp == 'm' ? ERRNO_MAIL4XX :
3967 *pp == 'r' ? ERRNO_RCPT4XX : ERRNO_DATA4XX;
059ec3d9
PH		 3968 *more_errno = x << 8;
3969 }
3970
3971else if (len == 4 && strncmpic(pp, US"auth", len) == 0 &&
3972 strncmpic(q+1, US"failed", p-q-1) == 0)
059ec3d9 3973 *basic_errno = ERRNO_AUTHFAIL;
e97957bc 3974
48da4259 3975else if (strncmpic(pp, US"lost_connection", p - pp) == 0)
e97957bc
PH		 3976 *basic_errno = ERRNO_SMTPCLOSED;
3977
48da4259 3978else if (strncmpic(pp, US"tls_required", p - pp) == 0)
e97957bc 3979 *basic_errno = ERRNO_TLSREQUIRED;
059ec3d9 3980
bd4ece7d
JH		 3981else if (strncmpic(pp, US"lookup", p - pp) == 0)
3982 *basic_errno = ERRNO_UNKNOWNHOST;
3983
059ec3d9 3984else if (len != 1 || Ustrncmp(pp, "*", 1) != 0)
ef840681 3985 return string_sprintf("unknown or malformed retry error \"%.*s\"", (int) (p-pp), pp);
059ec3d9
PH		 3986
3987return NULL;
3988}
3989
3990
3991
3992
3993/*************************************************
3994* Read retry information *
3995*************************************************/
3996
3997/* Each line of retry information contains:
3998
3999. A domain name pattern or an address pattern;
4000
4001. An error name, possibly with additional data, or *;
4002
4003. An optional sequence of retry items, each consisting of an identifying
4004 letter, a cutoff time, and optional parameters.
4005
4006All this is decoded and placed into a control block. */
4007
4008
4009/* Subroutine to read an argument, preceded by a comma and terminated
4010by comma, semicolon, whitespace, or newline. The types are: 0 = time value,
40111 = fixed point number (returned *1000).
4012
4013Arguments:
4014 paddr pointer to pointer to current character; updated
4015 type 0 => read a time; 1 => read a fixed point number
4016
4017Returns: time in seconds or fixed point number * 1000
4018*/
4019
4020static int
55414b25 4021retry_arg(const uschar **paddr, int type)
059ec3d9 4022{
55414b25
JH		 4023const uschar *p = *paddr;
4024const uschar *pp;
059ec3d9
PH		 4025
4026if (*p++ != ',') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma expected");
4027
4028while (isspace(*p)) p++;
4029pp = p;
4030while (isalnum(*p) || (type == 1 && *p == '.')) p++;
4031
4032if (*p != 0 && !isspace(*p) && *p != ',' && *p != ';')
4033 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma or semicolon expected");
4034
4035*paddr = p;
4036switch (type)
4037 {
bd4ece7d
JH		 4038 case 0: return readconf_readtime(pp, *p, FALSE);
4039 case 1: return readconf_readfixed(pp, *p);
059ec3d9
PH		 4040 }
4041return 0; /* Keep picky compilers happy */
4042}
4043
4044/* The function proper */
4045
4046void
4047readconf_retries(void)
4048{
4049retry_config **chain = &retries;
4050retry_config *next;
55414b25 4051const uschar *p;
059ec3d9 4052
bd4ece7d 4053while ((p = get_config_line()))
059ec3d9
PH		 4054 {
4055 retry_rule **rchain;
55414b25
JH		 4056 const uschar *pp;
4057 uschar *error;
059ec3d9
PH		 4058
4059 next = store_get(sizeof(retry_config));
4060 next->next = NULL;
4061 *chain = next;
4062 chain = &(next->next);
4063 next->basic_errno = next->more_errno = 0;
4064 next->senders = NULL;
4065 next->rules = NULL;
4066 rchain = &(next->rules);
4067
4068 next->pattern = string_dequote(&p);
4069 while (isspace(*p)) p++;
4070 pp = p;
4071 while (mac_isgraph(*p)) p++;
4072 if (p - pp <= 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
41eff010 4073 "missing error type in retry rule");
059ec3d9
PH		 4074
4075 /* Test error names for things we understand. */
4076
bd4ece7d
JH		 4077 if ((error = readconf_retry_error(pp, p, &next->basic_errno,
4078 &next->more_errno)))
059ec3d9
PH		 4079 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s", error);
4080
4081 /* There may be an optional address list of senders to be used as another
4082 constraint on the rule. This was added later, so the syntax is a bit of a
4083 fudge. Anything that is not a retry rule starting "F," or "G," is treated as
4084 an address list. */
4085
4086 while (isspace(*p)) p++;
4087 if (Ustrncmp(p, "senders", 7) == 0)
4088 {
4089 p += 7;
4090 while (isspace(*p)) p++;
4091 if (*p++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4092 "\"=\" expected after \"senders\" in retry rule");
4093 while (isspace(*p)) p++;
4094 next->senders = string_dequote(&p);
4095 }
4096
4097 /* Now the retry rules. Keep the maximum timeout encountered. */
4098
4099 while (isspace(*p)) p++;
4100
4101 while (*p != 0)
4102 {
4103 retry_rule *rule = store_get(sizeof(retry_rule));
4104 *rchain = rule;
4105 rchain = &(rule->next);
4106 rule->next = NULL;
4107 rule->rule = toupper(*p++);
4108 rule->timeout = retry_arg(&p, 0);
4109 if (rule->timeout > retry_maximum_timeout)
4110 retry_maximum_timeout = rule->timeout;
4111
4112 switch (rule->rule)
4113 {
4114 case 'F': /* Fixed interval */
bd4ece7d
JH		 4115 rule->p1 = retry_arg(&p, 0);
4116 break;
059ec3d9
PH		 4117
4118 case 'G': /* Geometrically increasing intervals */
6af56900 4119 case 'H': /* Ditto, but with randomness */
bd4ece7d
JH		 4120 rule->p1 = retry_arg(&p, 0);
4121 rule->p2 = retry_arg(&p, 1);
4122 break;
059ec3d9
PH		 4123
4124 default:
bd4ece7d
JH		 4125 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unknown retry rule letter");
4126 break;
059ec3d9
PH		 4127 }
4128
4129 if (rule->timeout <= 0 || rule->p1 <= 0 ||
6af56900 4130 (rule->rule != 'F' && rule->p2 < 1000))
059ec3d9
PH		 4131 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4132 "bad parameters for retry rule");
4133
4134 while (isspace(*p)) p++;
4135 if (*p == ';')
4136 {
4137 p++;
4138 while (isspace(*p)) p++;
4139 }
4140 else if (*p != 0)
4141 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "semicolon expected");
4142 }
4143 }
4144}
4145
4146
4147
4148/*************************************************
4149* Initialize authenticators *
4150*************************************************/
4151
4152/* Read the authenticators section of the configuration file.
4153
4154Arguments: none
4155Returns: nothing
4156*/
4157
4158static void
4159auths_init(void)
4160{
4161auth_instance *au, *bu;
c0b9d3e8 4162
059ec3d9
PH		 4163readconf_driver_init(US"authenticator",
4164 (driver_instance **)(&auths), /* chain anchor */
4165 (driver_info *)auths_available, /* available drivers */
4166 sizeof(auth_info), /* size of info block */
4167 &auth_defaults, /* default values for generic options */
4168 sizeof(auth_instance), /* size of instance block */
4169 optionlist_auths, /* generic options */
4170 optionlist_auths_size);
4171
d4ff61d1 4172for (au = auths; au; au = au->next)
059ec3d9 4173 {
d4ff61d1 4174 if (!au->public_name)
059ec3d9
PH		 4175 log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "no public name specified for "
4176 "the %s authenticator", au->name);
d4ff61d1
JH		 4177
4178 for (bu = au->next; bu; bu = bu->next)
059ec3d9 4179 if (strcmpic(au->public_name, bu->public_name) == 0)
059ec3d9
PH		 4180 if ((au->client && bu->client) || (au->server && bu->server))
4181 log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "two %s authenticators "
4182 "(%s and %s) have the same public name (%s)",
d4ff61d1 4183 au->client ? US"client" : US"server", au->name, bu->name,
059ec3d9 4184 au->public_name);
059ec3d9
PH		 4185 }
4186}
4187
4188
4189
4190
4191/*************************************************
4192* Read ACL information *
4193*************************************************/
4194
4195/* If this run of Exim is not doing something that involves receiving a
4196message, we can just skip over the ACL information. No need to parse it.
4197
4198First, we have a function for acl_read() to call back to get the next line. We
4199need to remember the line we passed, because at the end it will contain the
4200name of the next ACL. */
4201
4202static uschar *acl_line;
4203
4204static uschar *
4205acl_callback(void)
4206{
4207acl_line = get_config_line();
4208return acl_line;
4209}
4210
4211
4212/* Now the main function:
4213
cb46fd2b 4214Arguments: none
059ec3d9
PH		 4215Returns: nothing
4216*/
4217
4218static void
cb46fd2b 4219readconf_acl(void)
059ec3d9
PH		 4220{
4221uschar *p;
4222
cf00dad6
PH		 4223/* Read each ACL and add it into the tree. Macro (re)definitions are allowed
4224between ACLs. */
059ec3d9
PH		 4225
4226acl_line = get_config_line();
4227
4228while(acl_line != NULL)
4229 {
4230 uschar name[64];
4231 tree_node *node;
4232 uschar *error;
4233
4234 p = readconf_readname(name, sizeof(name), acl_line);
cf00dad6
PH		 4235 if (isupper(*name) && *p == '=')
4236 {
4237 read_macro_assignment(acl_line);
4238 acl_line = get_config_line();
4239 continue;
4240 }
4241
4242 if (*p != ':' || name[0] == 0)
4243 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing or malformed ACL name");
059ec3d9
PH		 4244
4245 node = store_get(sizeof(tree_node) + Ustrlen(name));
4246 Ustrcpy(node->name, name);
4247 if (!tree_insertnode(&acl_anchor, node))
4248 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4249 "there are two ACLs called \"%s\"", name);
4250
4251 node->data.ptr = acl_read(acl_callback, &error);
4252
4253 if (node->data.ptr == NULL && error != NULL)
4254 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "error in ACL: %s", error);
4255 }
4256}
4257
4258
4259
4260/*************************************************
4261* Read configuration for local_scan() *
4262*************************************************/
4263
4264/* This function is called after "begin local_scan" is encountered in the
4265configuration file. If the local_scan() function allows for configuration
4266options, we can process them. Otherwise, we expire in a panic.
4267
4268Arguments: none
4269Returns: nothing
4270*/
4271
4272static void
4273local_scan_init(void)
4274{
4275#ifndef LOCAL_SCAN_HAS_OPTIONS
4276log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "local_scan() options not supported: "
4277 "(LOCAL_SCAN_HAS_OPTIONS not defined in Local/Makefile)");
4278#else
4279
4280uschar *p;
4281while ((p = get_config_line()) != NULL)
4282 {
4283 (void) readconf_handle_option(p, local_scan_options, local_scan_options_count,
4284 NULL, US"local_scan option \"%s\" unknown");
4285 }
4286#endif
4287}
4288
4289
4290
4291/*************************************************
4292* Read rest of configuration (after main) *
4293*************************************************/
4294
4295/* This function reads the rest of the runtime configuration, after the main
4296configuration. It is called only when actually needed. Each subsequent section
4297of the configuration starts with a line of the form
4298
4299 begin name
4300
4301where the name is "routers", "transports", etc. A section is terminated by
4302hitting the next "begin" line, and the next name is left in next_section.
4303Because it may confuse people as to whether the names are singular or plural,
4304we add "s" if it's missing. There is always enough room in next_section for
4305this. This function is basically just a switch.
4306
351a5bc8 4307Arguments: none
059ec3d9
PH		 4308Returns: nothing
4309*/
4310
4311static uschar *section_list[] = {
4312 US"acls",
4313 US"authenticators",
4314 US"local_scans",
4315 US"retrys",
4316 US"rewrites",
4317 US"routers",
4318 US"transports"};
4319
4320void
351a5bc8 4321readconf_rest(void)
059ec3d9
PH		 4322{
4323int had = 0;
4324
4325while(next_section[0] != 0)
4326 {
4327 int bit;
4328 int first = 0;
5903c6ff 4329 int last = nelem(section_list);
059ec3d9
PH		 4330 int mid = last/2;
4331 int n = Ustrlen(next_section);
4332
4333 if (tolower(next_section[n-1]) != 's') Ustrcpy(next_section+n, "s");
4334
4335 for (;;)
4336 {
4337 int c = strcmpic(next_section, section_list[mid]);
4338 if (c == 0) break;
4339 if (c > 0) first = mid + 1; else last = mid;
4340 if (first >= last)
4341 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4342 "\"%.*s\" is not a known configuration section name", n, next_section);
4343 mid = (last + first)/2;
4344 }
4345
4346 bit = 1 << mid;
4347 if (((had ^= bit) & bit) == 0)
4348 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4349 "\"%.*s\" section is repeated in the configuration file", n,
4350 next_section);
4351
4352 switch(mid)
4353 {
cb46fd2b 4354 case 0: readconf_acl(); break;
059ec3d9
PH		 4355 case 1: auths_init(); break;
4356 case 2: local_scan_init(); break;
4357 case 3: readconf_retries(); break;
4358 case 4: readconf_rewrites(); break;
4359 case 5: route_init(); break;
4360 case 6: transport_init(); break;
4361 }
4362 }
4363
f1e894f3 4364(void)fclose(config_file);
059ec3d9
PH		 4365}
4366
bf3c2c6b
HSHR		 4367/* Init the storage for the pre-parsed config lines */
4368void
4369readconf_save_config(const uschar *s)
4370{
4371 save_config_line(string_sprintf("# Exim Configuration (%s)",
4372 running_in_test_harness ? US"X" : s));
4373}
4374
4375static void
4376save_config_position(const uschar *file, int line)
4377{
4378 save_config_line(string_sprintf("# %d \"%s\"", line, file));
4379}
4380
4381/* Append a pre-parsed logical line to the config lines store,
4382this operates on a global (static) list that holds all the pre-parsed
ce133ea6
HSHR		 4383config lines, we do no further processing here, output formatting and
4384honouring of <hide> or macros will be done during output */
cab0c277 4385
bf3c2c6b
HSHR		 4386static void
4387save_config_line(const uschar* line)
4388{
4389static config_line_item *current;
4390config_line_item *next;
4391
4392next = (config_line_item*) store_get(sizeof(config_line_item));
4393next->line = string_copy(line);
4394next->next = NULL;
4395
4396if (!config_lines) config_lines = next;
4397else current->next = next;
4398
4399current = next;
4400}
4401
4402/* List the parsed config lines, care about nice formatting and
4403hide the <hide> values unless we're the admin user */
4404void
3257ed4b 4405print_config(BOOL admin, BOOL terse)
bf3c2c6b
HSHR		 4406{
4407config_line_item *i;
3257ed4b 4408const int TS = terse ? 0 : 2;
bf3c2c6b
HSHR		 4409int indent = 0;
4410
4411for (i = config_lines; i; i = i->next)
4412 {
30ef6099 4413 uschar *current;
bf3c2c6b
HSHR		 4414 uschar *p;
4415
4416 /* skip over to the first non-space */
4417 for (current = i->line; *current && isspace(*current); ++current)
4418 ;
4419
4420 if (*current == '\0')
4421 continue;
4422
30ef6099
HSHR		 4423 /* Collapse runs of spaces. We stop this if we encounter one of the
4424 * following characters: "'$, as this may indicate careful formatting */
4425 for (p = current; *p; ++p)
4426 {
4427 uschar *next;
4428 if (!isspace(*p)) continue;
4429 if (*p != ' ') *p = ' ';
4430
4431 for (next = p; isspace(*next); ++next)
4432 ;
4433
4434 if (next - p > 1)
3c51463e 4435 memmove(p+1, next, Ustrlen(next)+1);
30ef6099
HSHR		 4436
4437 if (*next == '"' || *next == '\'' || *next == '$')
4438 break;
4439 }
bf3c2c6b
HSHR		 4440
4441 /* # lines */
4442 if (current[0] == '#')
39755c16 4443 puts(CCS current);
bf3c2c6b
HSHR		 4444
4445 /* begin lines are left aligned */
39755c16 4446 else if (Ustrncmp(current, "begin", 5) == 0 && isspace(current[5]))
bf3c2c6b 4447 {
3257ed4b 4448 if (!terse) puts("");
39755c16 4449 puts(CCS current);
bf3c2c6b 4450 indent = TS;
bf3c2c6b
HSHR		 4451 }
4452
4453 /* router/acl/transport block names */
f40d5be3 4454 else if (current[Ustrlen(current)-1] == ':' && !Ustrchr(current, '='))
bf3c2c6b 4455 {
3257ed4b
HSHR		 4456 if (!terse) puts("");
4457 printf("%*s%s\n", TS, "", current);
bf3c2c6b 4458 indent = 2 * TS;
bf3c2c6b
HSHR		 4459 }
4460
30ef6099 4461 /* hidden lines (all MACROS or lines prefixed with "hide") */
39755c16
JH		 4462 else if ( !admin
4463 && ( isupper(*current)
4464 || Ustrncmp(current, "hide", 4) == 0 && isspace(current[4])
4465 )
4466 )
bf3c2c6b 4467 {
f40d5be3 4468 if ((p = Ustrchr(current, '=')))
ce133ea6
HSHR		 4469 {
4470 *p = '\0';
30ef6099 4471 printf("%*s%s= %s\n", indent, "", current, hidden);
ce133ea6
HSHR		 4472 }
4473 /* e.g.: hide split_spool_directory */
39755c16
JH		 4474 else
4475 printf("%*s\n", indent, hidden);
bf3c2c6b
HSHR		 4476 }
4477
39755c16
JH		 4478 else
4479 /* rest is public */
4480 printf("%*s%s\n", indent, "", current);
bf3c2c6b
HSHR		 4481 }
4482}
4483
d185889f 4484#endif /*!MACRO_PREDEF*/
76146973
JH		 4485/* vi: aw ai sw=2
4486*/
059ec3d9 4487/* End of readconf.c */
Unnamed repository; edit this file 'description' to name the repository.