[exim.git] / src / src / routers / iplookup.c

/*************************************************
*     Exim - an Internet mail transport agent    *
*************************************************/

/* Copyright (c) University of Cambridge 1995 - 2018 */
/* Copyright (c) The Exim Maintainers 2020 */
/* See the file NOTICE for conditions of use and distribution. */


#include "../exim.h"
#include "rf_functions.h"
#include "iplookup.h"


/* IP connection types */

#define ip_udp 0
#define ip_tcp 1


/* Options specific to the iplookup router. */

optionlist iplookup_router_options[] = {
  { "hosts",    opt_stringptr,
      OPT_OFF(iplookup_router_options_block, hosts) },
  { "optional", opt_bool,
      OPT_OFF(iplookup_router_options_block, optional) },
  { "port",     opt_int,
      OPT_OFF(iplookup_router_options_block, port) },
  { "protocol", opt_stringptr,
      OPT_OFF(iplookup_router_options_block, protocol_name) },
  { "query",    opt_stringptr,
      OPT_OFF(iplookup_router_options_block, query) },
  { "reroute",  opt_stringptr,
      OPT_OFF(iplookup_router_options_block, reroute) },
  { "response_pattern", opt_stringptr,
      OPT_OFF(iplookup_router_options_block, response_pattern) },
  { "timeout",  opt_time,
      OPT_OFF(iplookup_router_options_block, timeout) }
};

/* Size of the options list. An extern variable has to be used so that its
address can appear in the tables drtables.c. */

int iplookup_router_options_count =
  sizeof(iplookup_router_options)/sizeof(optionlist);


#ifdef MACRO_PREDEF

/* Dummy entries */
iplookup_router_options_block iplookup_router_option_defaults = {0};
void iplookup_router_init(router_instance *rblock) {}
int iplookup_router_entry(router_instance *rblock, address_item *addr,
  struct passwd *pw, int verify, address_item **addr_local,
  address_item **addr_remote, address_item **addr_new,
  address_item **addr_succeed) {return 0;}

#else   /*!MACRO_PREDEF*/


/* Default private options block for the iplookup router. */

iplookup_router_options_block iplookup_router_option_defaults = {
  -1,       /* port */
  ip_udp,   /* protocol */
  5,        /* timeout */
  NULL,     /* protocol_name */
  NULL,     /* hosts */
  NULL,     /* query; NULL => local_part@domain */
  NULL,     /* response_pattern; NULL => don't apply regex */
  NULL,     /* reroute; NULL => just used returned data */
  NULL,     /* re_response_pattern; compiled pattern */
  FALSE     /* optional */
};


/*************************************************
*          Initialization entry point            *
*************************************************/

/* Called for each instance, after its options have been read, to enable
consistency checks to be done, or anything else that needs to be set up. */

void
iplookup_router_init(router_instance *rblock)
{
iplookup_router_options_block *ob =
  (iplookup_router_options_block *)(rblock->options_block);

/* A port and a host list must be given */

if (ob->port < 0)
  log_write(0, LOG_PANIC_DIE|LOG_CONFIG_FOR, "%s router:\n  "
    "a port must be specified", rblock->name);

if (ob->hosts == NULL)
  log_write(0, LOG_PANIC_DIE|LOG_CONFIG_FOR, "%s router:\n  "
    "a host list must be specified", rblock->name);

/* Translate protocol name into value */

if (ob->protocol_name != NULL)
  {
  if (Ustrcmp(ob->protocol_name, "udp") == 0) ob->protocol = ip_udp;
  else if (Ustrcmp(ob->protocol_name, "tcp") == 0) ob->protocol = ip_tcp;
  else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_FOR, "%s router:\n  "
    "protocol not specified as udp or tcp", rblock->name);
  }

/* If a response pattern is given, compile it now to get the error early. */

if (ob->response_pattern != NULL)
  ob->re_response_pattern =
    regex_must_compile(ob->response_pattern, FALSE, TRUE);
}


/*************************************************
*              Main entry point                  *
*************************************************/

/* See local README for interface details. This router returns:

DECLINE
  . pattern or identification match on returned data failed

DEFER
  . failed to expand the query or rerouting string
  . failed to create socket ("optional" not set)
  . failed to find a host, failed to connect, timed out ("optional" not set)
  . rerouting string is not in the form localpart@domain
  . verifying the errors address caused a deferment or a big disaster such
      as an expansion failure (rf_get_errors_address)
  . expanding a headers_{add,remove} string caused a deferment or another
      expansion error (rf_get_munge_headers)

PASS
  . failed to create socket ("optional" set)
  . failed to find a host, failed to connect, timed out ("optional" set)

OK
  . new address added to addr_new
*/

int
iplookup_router_entry(
  router_instance *rblock,        /* data for this instantiation */
  address_item *addr,             /* address we are working on */
  struct passwd *pw,              /* passwd entry after check_local_user */
  int verify,                     /* v_none/v_recipient/v_sender/v_expn */
  address_item **addr_local,      /* add it to this if it's local */
  address_item **addr_remote,     /* add it to this if it's remote */
  address_item **addr_new,        /* put new addresses on here */
  address_item **addr_succeed)    /* put old address here on success */
{
uschar *query = NULL;
uschar *reply;
uschar *hostname, *reroute, *domain;
const uschar *listptr;
uschar host_buffer[256];
host_item *host = store_get(sizeof(host_item), FALSE);
address_item *new_addr;
iplookup_router_options_block *ob =
  (iplookup_router_options_block *)(rblock->options_block);
const pcre *re = ob->re_response_pattern;
int count, query_len, rc;
int sep = 0;

addr_local = addr_local;    /* Keep picky compilers happy */
addr_remote = addr_remote;
addr_succeed = addr_succeed;
pw = pw;

DEBUG(D_route) debug_printf("%s router called for %s: domain = %s\n",
  rblock->name, addr->address, addr->domain);

reply = store_get(256, TRUE);	/* tainted data */

/* Build the query string to send. If not explicitly given, a default of
"user@domain user@domain" is used. */

if (ob->query == NULL)
  query = string_sprintf("%s@%s %s@%s", addr->local_part, addr->domain,
    addr->local_part, addr->domain);
else
  {
  query = expand_string(ob->query);
  if (query == NULL)
    {
    addr->message = string_sprintf("%s router: failed to expand %s: %s",
      rblock->name, ob->query, expand_string_message);
    return DEFER;
    }
  }

query_len = Ustrlen(query);
DEBUG(D_route) debug_printf("%s router query is \"%s\"\n", rblock->name,
  string_printing(query));

/* Now connect to the required port for each of the hosts in turn, until a
response it received. Initialization insists on the port being set and there
being a host list. */

listptr = ob->hosts;
while ((hostname = string_nextinlist(&listptr, &sep, host_buffer,
       sizeof(host_buffer))))
  {
  host_item *h;

  DEBUG(D_route) debug_printf("calling host %s\n", hostname);

  host->name = hostname;
  host->address = NULL;
  host->port = PORT_NONE;
  host->mx = MX_NONE;
  host->next = NULL;

  if (string_is_ip_address(host->name, NULL) != 0)
    host->address = host->name;
  else
    {
/*XXX might want dnssec request/require on an iplookup router? */
    int rc = host_find_byname(host, NULL, HOST_FIND_QUALIFY_SINGLE, NULL, TRUE);
    if (rc == HOST_FIND_FAILED || rc == HOST_FIND_AGAIN) continue;
    }

  /* Loop for possible multiple IP addresses for the given name. */

  for (h = host; h; h = h->next)
    {
    int host_af;
    client_conn_ctx query_cctx = {0};

    /* Skip any hosts for which we have no address */

    if (!h->address) continue;

    /* Create a socket, for UDP or TCP, as configured. IPv6 addresses are
    detected by checking for a colon in the address. */

    host_af = (Ustrchr(h->address, ':') != NULL)? AF_INET6 : AF_INET;

    query_cctx.sock = ip_socket(ob->protocol == ip_udp ? SOCK_DGRAM:SOCK_STREAM,
      host_af);
    if (query_cctx.sock < 0)
      {
      if (ob->optional) return PASS;
      addr->message = string_sprintf("failed to create socket in %s router",
        rblock->name);
      return DEFER;
      }

    /* Connect to the remote host, under a timeout. In fact, timeouts can occur
    here only for TCP calls; for a UDP socket, "connect" always works (the
    router will timeout later on the read call). */
/*XXX could take advantage of TFO */

    if (ip_connect(query_cctx.sock, host_af, h->address,ob->port, ob->timeout,
		ob->protocol == ip_udp ? NULL : &tcp_fastopen_nodata) < 0)
      {
      close(query_cctx.sock);
      DEBUG(D_route)
        debug_printf("connection to %s failed: %s\n", h->address,
          strerror(errno));
      continue;
      }

    /* Send the query. If it fails, just continue with the next address. */

    if (send(query_cctx.sock, query, query_len, 0) < 0)
      {
      DEBUG(D_route) debug_printf("send to %s failed\n", h->address);
      (void)close(query_cctx.sock);
      continue;
      }

    /* Read the response and close the socket. If the read fails, try the
    next IP address. */

    count = ip_recv(&query_cctx, reply, sizeof(reply) - 1, time(NULL) + ob->timeout);
    (void)close(query_cctx.sock);
    if (count <= 0)
      {
      DEBUG(D_route) debug_printf("%s from %s\n", (errno == ETIMEDOUT)?
        "timed out" : "recv failed", h->address);
      *reply = 0;
      continue;
      }

    /* Success; break the loop */

    reply[count] = 0;
    DEBUG(D_route) debug_printf("%s router received \"%s\" from %s\n",
      rblock->name, string_printing(reply), h->address);
    break;
    }

  /* If h == NULL we have tried all the IP addresses and failed on all of them,
  so we must continue to try more host names. Otherwise we have succeeded. */

  if (h) break;
  }


/* If hostname is NULL, we have failed to find any host, or failed to
connect to any of the IP addresses, or timed out while reading or writing to
those we have connected to. In all cases, we must pass if optional and
defer otherwise. */

if (hostname == NULL)
  {
  DEBUG(D_route) debug_printf("%s router failed to get anything\n", rblock->name);
  if (ob->optional) return PASS;
  addr->message = string_sprintf("%s router: failed to communicate with any "
    "host", rblock->name);
  return DEFER;
  }


/* If a response pattern was supplied, match the returned string against it. A
failure to match causes the router to decline. After a successful match, the
numerical variables for expanding the rerouted address are set up. */

if (re != NULL)
  {
  if (!regex_match_and_setup(re, reply, 0, -1))
    {
    DEBUG(D_route) debug_printf("%s router: %s failed to match response %s\n",
      rblock->name, ob->response_pattern, reply);
    return DECLINE;
    }
  }


/* If no response pattern was supplied, set up $0 as the response up to the
first white space (if any). Also, if no query was specified, check that what
follows the white space matches user@domain. */

else
  {
  int n = 0;
  while (reply[n] != 0 && !isspace(reply[n])) n++;
  expand_nmax = 0;
  expand_nstring[0] = reply;
  expand_nlength[0] = n;

  if (ob->query == NULL)
    {
    int nn = n;
    while (isspace(reply[nn])) nn++;
    if (Ustrcmp(query + query_len/2 + 1, reply+nn) != 0)
      {
      DEBUG(D_route) debug_printf("%s router: failed to match identification "
        "in response %s\n", rblock->name, reply);
      return DECLINE;
      }
    }

  reply[n] = 0;  /* Terminate for the default case */
  }

/* If an explicit rerouting string is specified, expand it. Otherwise, use
what was sent back verbatim. */

if (ob->reroute != NULL)
  {
  reroute = expand_string(ob->reroute);
  expand_nmax = -1;
  if (reroute == NULL)
    {
    addr->message = string_sprintf("%s router: failed to expand %s: %s",
      rblock->name, ob->reroute, expand_string_message);
    return DEFER;
    }
  }
else reroute = reply;

/* We should now have a new address in the form user@domain. */

domain = Ustrchr(reroute, '@');
if (domain == NULL)
  {
  log_write(0, LOG_MAIN, "%s router: reroute string %s is not of the form "
    "user@domain", rblock->name, reroute);
  addr->message = string_sprintf("%s router: reroute string %s is not of the "
    "form user@domain", rblock->name, reroute);
  return DEFER;
  }

/* Create a child address with the old one as parent. Put the new address on
the chain of new addressess. */

new_addr = deliver_make_addr(reroute, TRUE);
new_addr->parent = addr;

new_addr->prop = addr->prop;

if (addr->child_count == USHRT_MAX)
  log_write(0, LOG_MAIN|LOG_PANIC_DIE, "%s router generated more than %d "
    "child addresses for <%s>", rblock->name, USHRT_MAX, addr->address);
addr->child_count++;
new_addr->next = *addr_new;
*addr_new = new_addr;

/* Set up the errors address, if any, and the additional and removable headers
for this new address. */

rc = rf_get_errors_address(addr, rblock, verify, &new_addr->prop.errors_address);
if (rc != OK) return rc;

rc = rf_get_munge_headers(addr, rblock, &new_addr->prop.extra_headers,
  &new_addr->prop.remove_headers);
if (rc != OK) return rc;

return OK;
}

#endif   /*!MACRO_PREDEF*/
/* End of routers/iplookup.c */
Commit	Line	Data
0756eb3c PH	1	/*************************************************
	2	* Exim - an Internet mail transport agent *
	3	*************************************************/
	4
f9ba5e22	5	/* Copyright (c) University of Cambridge 1995 - 2018 */
1e1ddfac	6	/* Copyright (c) The Exim Maintainers 2020 */
0756eb3c PH	7	/* See the file NOTICE for conditions of use and distribution. */
	8
	9
	10	#include "../exim.h"
	11	#include "rf_functions.h"
	12	#include "iplookup.h"
	13
	14
	15	/* IP connection types */
	16
	17	#define ip_udp 0
	18	#define ip_tcp 1
	19
	20
	21	/* Options specific to the iplookup router. */
	22
	23	optionlist iplookup_router_options[] = {
	24	{ "hosts", opt_stringptr,
13a4b4c1	25	OPT_OFF(iplookup_router_options_block, hosts) },
0756eb3c	26	{ "optional", opt_bool,
13a4b4c1	27	OPT_OFF(iplookup_router_options_block, optional) },
0756eb3c	28	{ "port", opt_int,
13a4b4c1	29	OPT_OFF(iplookup_router_options_block, port) },
0756eb3c	30	{ "protocol", opt_stringptr,
13a4b4c1	31	OPT_OFF(iplookup_router_options_block, protocol_name) },
0756eb3c	32	{ "query", opt_stringptr,
13a4b4c1	33	OPT_OFF(iplookup_router_options_block, query) },
0756eb3c	34	{ "reroute", opt_stringptr,
13a4b4c1	35	OPT_OFF(iplookup_router_options_block, reroute) },
0756eb3c	36	{ "response_pattern", opt_stringptr,
13a4b4c1	37	OPT_OFF(iplookup_router_options_block, response_pattern) },
0756eb3c	38	{ "timeout", opt_time,
13a4b4c1	39	OPT_OFF(iplookup_router_options_block, timeout) }
0756eb3c PH	40	};
	41
	42	/* Size of the options list. An extern variable has to be used so that its
	43	address can appear in the tables drtables.c. */
	44
	45	int iplookup_router_options_count =
	46	sizeof(iplookup_router_options)/sizeof(optionlist);
	47
d185889f JH	48
	49	#ifdef MACRO_PREDEF
	50
	51	/* Dummy entries */
	52	iplookup_router_options_block iplookup_router_option_defaults = {0};
	53	void iplookup_router_init(router_instance *rblock) {}
	54	int iplookup_router_entry(router_instance rblock, address_item addr,
	55	struct passwd pw, int verify, address_item *addr_local,
	56	address_item addr_remote, address_item addr_new,
cab0c277	57	address_item **addr_succeed) {return 0;}
d185889f JH	58
	59	#else /!MACRO_PREDEF/
	60
	61
0756eb3c PH	62	/* Default private options block for the iplookup router. */
	63
	64	iplookup_router_options_block iplookup_router_option_defaults = {
	65	-1, /* port */
	66	ip_udp, /* protocol */
	67	5, /* timeout */
	68	NULL, /* protocol_name */
	69	NULL, /* hosts */
	70	NULL, /* query; NULL => local_part@domain */
	71	NULL, /* response_pattern; NULL => don't apply regex */
	72	NULL, /* reroute; NULL => just used returned data */
	73	NULL, /* re_response_pattern; compiled pattern */
	74	FALSE /* optional */
	75	};
	76
	77
	78
	79	/*************************************************
	80	* Initialization entry point *
	81	*************************************************/
	82
	83	/* Called for each instance, after its options have been read, to enable
	84	consistency checks to be done, or anything else that needs to be set up. */
	85
	86	void
	87	iplookup_router_init(router_instance *rblock)
	88	{
	89	iplookup_router_options_block *ob =
	90	(iplookup_router_options_block *)(rblock->options_block);
	91
	92	/* A port and a host list must be given */
	93
	94	if (ob->port < 0)
	95	log_write(0, LOG_PANIC_DIE\|LOG_CONFIG_FOR, "%s router:\n "
	96	"a port must be specified", rblock->name);
	97
	98	if (ob->hosts == NULL)
	99	log_write(0, LOG_PANIC_DIE\|LOG_CONFIG_FOR, "%s router:\n "
	100	"a host list must be specified", rblock->name);
	101
	102	/* Translate protocol name into value */
	103
	104	if (ob->protocol_name != NULL)
	105	{
	106	if (Ustrcmp(ob->protocol_name, "udp") == 0) ob->protocol = ip_udp;
	107	else if (Ustrcmp(ob->protocol_name, "tcp") == 0) ob->protocol = ip_tcp;
	108	else log_write(0, LOG_PANIC_DIE\|LOG_CONFIG_FOR, "%s router:\n "
	109	"protocol not specified as udp or tcp", rblock->name);
	110	}
	111
	112	/* If a response pattern is given, compile it now to get the error early. */
	113
	114	if (ob->response_pattern != NULL)
	115	ob->re_response_pattern =
	116	regex_must_compile(ob->response_pattern, FALSE, TRUE);
	117	}
	118
	119
	120
	121	/*************************************************
	122	* Main entry point *
	123	*************************************************/
	124
	125	/* See local README for interface details. This router returns:
126
127	DECLINE
128	. pattern or identification match on returned data failed
129
130	DEFER
131	. failed to expand the query or rerouting string
132	. failed to create socket ("optional" not set)
133	. failed to find a host, failed to connect, timed out ("optional" not set)
134	. rerouting string is not in the form localpart@domain
135	. verifying the errors address caused a deferment or a big disaster such
136	as an expansion failure (rf_get_errors_address)
137	. expanding a headers_{add,remove} string caused a deferment or another
138	expansion error (rf_get_munge_headers)
139
140	PASS
141	. failed to create socket ("optional" set)
142	. failed to find a host, failed to connect, timed out ("optional" set)
143
144	OK
145	. new address added to addr_new
146	*/
147
148	int
149	iplookup_router_entry(
150	router_instance rblock, / data for this instantiation */
151	address_item addr, / address we are working on */
152	struct passwd pw, / passwd entry after check_local_user */
fd6de02e	153	int verify, /* v_none/v_recipient/v_sender/v_expn */
0756eb3c PH	154	address_item *addr_local, / add it to this if it's local */
	155	address_item *addr_remote, / add it to this if it's remote */
	156	address_item *addr_new, / put new addresses on here */
	157	address_item *addr_succeed) / put old address here on success */
	158	{
	159	uschar *query = NULL;
08488c86	160	uschar *reply;
55414b25 JH	161	uschar hostname, reroute, *domain;
55414b25 JH	162	const uschar *listptr;
0756eb3c	163	uschar host_buffer[256];
f3ebb786	164	host_item *host = store_get(sizeof(host_item), FALSE);
0756eb3c PH	165	address_item *new_addr;
	166	iplookup_router_options_block *ob =
	167	(iplookup_router_options_block *)(rblock->options_block);
	168	const pcre *re = ob->re_response_pattern;
	169	int count, query_len, rc;
	170	int sep = 0;
	171
	172	addr_local = addr_local; /* Keep picky compilers happy */
	173	addr_remote = addr_remote;
	174	addr_succeed = addr_succeed;
	175	pw = pw;
	176
	177	DEBUG(D_route) debug_printf("%s router called for %s: domain = %s\n",
	178	rblock->name, addr->address, addr->domain);
	179
f3ebb786	180	reply = store_get(256, TRUE); /* tainted data */
08488c86	181
0756eb3c PH	182	/* Build the query string to send. If not explicitly given, a default of
	183	"user@domain user@domain" is used. */
	184
	185	if (ob->query == NULL)
	186	query = string_sprintf("%s@%s %s@%s", addr->local_part, addr->domain,
	187	addr->local_part, addr->domain);
	188	else
	189	{
	190	query = expand_string(ob->query);
	191	if (query == NULL)
	192	{
	193	addr->message = string_sprintf("%s router: failed to expand %s: %s",
	194	rblock->name, ob->query, expand_string_message);
	195	return DEFER;
	196	}
	197	}
	198
	199	query_len = Ustrlen(query);
	200	DEBUG(D_route) debug_printf("%s router query is \"%s\"\n", rblock->name,
	201	string_printing(query));
	202
	203	/* Now connect to the required port for each of the hosts in turn, until a
	204	response it received. Initialization insists on the port being set and there
	205	being a host list. */
	206
	207	listptr = ob->hosts;
	208	while ((hostname = string_nextinlist(&listptr, &sep, host_buffer,
fb05276a	209	sizeof(host_buffer))))
0756eb3c PH	210	{
	211	host_item *h;
	212
	213	DEBUG(D_route) debug_printf("calling host %s\n", hostname);
	214
	215	host->name = hostname;
	216	host->address = NULL;
	217	host->port = PORT_NONE;
	218	host->mx = MX_NONE;
	219	host->next = NULL;
	220
7e66e54d	221	if (string_is_ip_address(host->name, NULL) != 0)
0756eb3c PH	222	host->address = host->name;
	223	else
	224	{
1f155f8e	225	/XXX might want dnssec request/require on an iplookup router? /
322050c2	226	int rc = host_find_byname(host, NULL, HOST_FIND_QUALIFY_SINGLE, NULL, TRUE);
0756eb3c PH	227	if (rc == HOST_FIND_FAILED \|\| rc == HOST_FIND_AGAIN) continue;
	228	}
	229
	230	/* Loop for possible multiple IP addresses for the given name. */
	231
fb05276a	232	for (h = host; h; h = h->next)
0756eb3c	233	{
74f1a423 JH	234	int host_af;
74f1a423 JH	235	client_conn_ctx query_cctx = {0};
0756eb3c PH	236
	237	/* Skip any hosts for which we have no address */
	238
fb05276a	239	if (!h->address) continue;
0756eb3c PH	240
	241	/* Create a socket, for UDP or TCP, as configured. IPv6 addresses are
	242	detected by checking for a colon in the address. */
	243
	244	host_af = (Ustrchr(h->address, ':') != NULL)? AF_INET6 : AF_INET;
fb05276a	245
74f1a423	246	query_cctx.sock = ip_socket(ob->protocol == ip_udp ? SOCK_DGRAM:SOCK_STREAM,
0756eb3c	247	host_af);
74f1a423	248	if (query_cctx.sock < 0)
0756eb3c PH	249	{
	250	if (ob->optional) return PASS;
	251	addr->message = string_sprintf("failed to create socket in %s router",
	252	rblock->name);
	253	return DEFER;
	254	}
	255
	256	/* Connect to the remote host, under a timeout. In fact, timeouts can occur
	257	here only for TCP calls; for a UDP socket, "connect" always works (the
	258	router will timeout later on the read call). */
0ab63f3d	259	/XXX could take advantage of TFO /
0756eb3c	260
74f1a423	261	if (ip_connect(query_cctx.sock, host_af, h->address,ob->port, ob->timeout,
0ab63f3d	262	ob->protocol == ip_udp ? NULL : &tcp_fastopen_nodata) < 0)
0756eb3c	263	{
74f1a423	264	close(query_cctx.sock);
0756eb3c PH	265	DEBUG(D_route)
	266	debug_printf("connection to %s failed: %s\n", h->address,
	267	strerror(errno));
	268	continue;
	269	}
	270
	271	/* Send the query. If it fails, just continue with the next address. */
	272
74f1a423	273	if (send(query_cctx.sock, query, query_len, 0) < 0)
0756eb3c PH	274	{
0756eb3c PH	275	DEBUG(D_route) debug_printf("send to %s failed\n", h->address);
74f1a423	276	(void)close(query_cctx.sock);
0756eb3c PH	277	continue;
	278	}
	279
	280	/* Read the response and close the socket. If the read fails, try the
	281	next IP address. */
	282
0a5441fc	283	count = ip_recv(&query_cctx, reply, sizeof(reply) - 1, time(NULL) + ob->timeout);
74f1a423	284	(void)close(query_cctx.sock);
0756eb3c PH	285	if (count <= 0)
	286	{
	287	DEBUG(D_route) debug_printf("%s from %s\n", (errno == ETIMEDOUT)?
	288	"timed out" : "recv failed", h->address);
	289	*reply = 0;
	290	continue;
	291	}
	292
	293	/* Success; break the loop */
	294
	295	reply[count] = 0;
	296	DEBUG(D_route) debug_printf("%s router received \"%s\" from %s\n",
	297	rblock->name, string_printing(reply), h->address);
	298	break;
	299	}
	300
	301	/* If h == NULL we have tried all the IP addresses and failed on all of them,
	302	so we must continue to try more host names. Otherwise we have succeeded. */
	303
fb05276a	304	if (h) break;
0756eb3c PH	305	}
	306
	307
	308	/* If hostname is NULL, we have failed to find any host, or failed to
	309	connect to any of the IP addresses, or timed out while reading or writing to
	310	those we have connected to. In all cases, we must pass if optional and
	311	defer otherwise. */
	312
	313	if (hostname == NULL)
	314	{
	315	DEBUG(D_route) debug_printf("%s router failed to get anything\n", rblock->name);
	316	if (ob->optional) return PASS;
	317	addr->message = string_sprintf("%s router: failed to communicate with any "
	318	"host", rblock->name);
	319	return DEFER;
	320	}
	321
	322
	323	/* If a response pattern was supplied, match the returned string against it. A
	324	failure to match causes the router to decline. After a successful match, the
	325	numerical variables for expanding the rerouted address are set up. */
	326
	327	if (re != NULL)
	328	{
	329	if (!regex_match_and_setup(re, reply, 0, -1))
	330	{
	331	DEBUG(D_route) debug_printf("%s router: %s failed to match response %s\n",
	332	rblock->name, ob->response_pattern, reply);
	333	return DECLINE;
	334	}
	335	}
	336
	337
	338	/* If no response pattern was supplied, set up $0 as the response up to the
	339	first white space (if any). Also, if no query was specified, check that what
	340	follows the white space matches user@domain. */
	341
	342	else
	343	{
	344	int n = 0;
	345	while (reply[n] != 0 && !isspace(reply[n])) n++;
	346	expand_nmax = 0;
	347	expand_nstring[0] = reply;
	348	expand_nlength[0] = n;
	349
	350	if (ob->query == NULL)
	351	{
	352	int nn = n;
	353	while (isspace(reply[nn])) nn++;
	354	if (Ustrcmp(query + query_len/2 + 1, reply+nn) != 0)
	355	{
	356	DEBUG(D_route) debug_printf("%s router: failed to match identification "
	357	"in response %s\n", rblock->name, reply);
	358	return DECLINE;
	359	}
	360	}
	361
	362	reply[n] = 0; /* Terminate for the default case */
	363	}
	364
	365	/* If an explicit rerouting string is specified, expand it. Otherwise, use
	366	what was sent back verbatim. */
	367
	368	if (ob->reroute != NULL)
369	{
370	reroute = expand_string(ob->reroute);
371	expand_nmax = -1;
372	if (reroute == NULL)
373	{
374	addr->message = string_sprintf("%s router: failed to expand %s: %s",
375	rblock->name, ob->reroute, expand_string_message);
376	return DEFER;
377	}
378	}
379	else reroute = reply;
380
381	/* We should now have a new address in the form user@domain. */
382
383	domain = Ustrchr(reroute, '@');
384	if (domain == NULL)
385	{
386	log_write(0, LOG_MAIN, "%s router: reroute string %s is not of the form "
387	"user@domain", rblock->name, reroute);
388	addr->message = string_sprintf("%s router: reroute string %s is not of the "
389	"form user@domain", rblock->name, reroute);
390	return DEFER;
391	}
392
393	/* Create a child address with the old one as parent. Put the new address on
394	the chain of new addressess. */
395
396	new_addr = deliver_make_addr(reroute, TRUE);
397	new_addr->parent = addr;
398
d43cbe25	399	new_addr->prop = addr->prop;
0756eb3c	400
82f90600	401	if (addr->child_count == USHRT_MAX)
4362ff0d	402	log_write(0, LOG_MAIN\|LOG_PANIC_DIE, "%s router generated more than %d "
82f90600	403	"child addresses for <%s>", rblock->name, USHRT_MAX, addr->address);
0756eb3c PH	404	addr->child_count++;
	405	new_addr->next = *addr_new;
	406	*addr_new = new_addr;
	407
aded2255	408	/* Set up the errors address, if any, and the additional and removable headers
0756eb3c PH	409	for this new address. */
0756eb3c PH	410
d43cbe25	411	rc = rf_get_errors_address(addr, rblock, verify, &new_addr->prop.errors_address);
0756eb3c PH	412	if (rc != OK) return rc;
0756eb3c PH	413
d43cbe25 JH	414	rc = rf_get_munge_headers(addr, rblock, &new_addr->prop.extra_headers,
d43cbe25 JH	415	&new_addr->prop.remove_headers);
0756eb3c PH	416	if (rc != OK) return rc;
	417
	418	return OK;
	419	}
	420
d185889f	421	#endif /!MACRO_PREDEF/
0756eb3c	422	/* End of routers/iplookup.c */