05afb246438d637cf3d2eeef21e72621d59811ce
[exim.git] / src / src / readconf.c
1 /*************************************************
2 * Exim - an Internet mail transport agent *
3 *************************************************/
4
5 /* Copyright (c) University of Cambridge 1995 - 2018 */
6 /* See the file NOTICE for conditions of use and distribution. */
7
8 /* Functions for reading the configuration file, and for displaying
9 overall configuration values. Thanks to Brian Candler for the original
10 implementation of the conditional .ifdef etc. */
11
12 #include "exim.h"
13
14 #ifdef MACRO_PREDEF
15 # include "macro_predef.h"
16 #endif
17
18 #define READCONF_DEBUG if (FALSE) /* Change to TRUE to enable */
19
20
21 static uschar * syslog_facility_str;
22 static void fn_smtp_receive_timeout(const uschar *, const uschar *, unsigned);
23
24 /*************************************************
25 * Main configuration options *
26 *************************************************/
27
28 /* The list of options that can be set in the main configuration file. This
29 must be in alphabetic order because it is searched by binary chop. */
30
31 static optionlist optionlist_config[] = {
32 { "*set_exim_group", opt_bool|opt_hidden, &exim_gid_set },
33 { "*set_exim_user", opt_bool|opt_hidden, &exim_uid_set },
34 { "*set_system_filter_group", opt_bool|opt_hidden, &system_filter_gid_set },
35 { "*set_system_filter_user", opt_bool|opt_hidden, &system_filter_uid_set },
36 { "accept_8bitmime", opt_bool, &accept_8bitmime },
37 { "acl_not_smtp", opt_stringptr, &acl_not_smtp },
38 #ifdef WITH_CONTENT_SCAN
39 { "acl_not_smtp_mime", opt_stringptr, &acl_not_smtp_mime },
40 #endif
41 { "acl_not_smtp_start", opt_stringptr, &acl_not_smtp_start },
42 { "acl_smtp_auth", opt_stringptr, &acl_smtp_auth },
43 { "acl_smtp_connect", opt_stringptr, &acl_smtp_connect },
44 { "acl_smtp_data", opt_stringptr, &acl_smtp_data },
45 #ifndef DISABLE_PRDR
46 { "acl_smtp_data_prdr", opt_stringptr, &acl_smtp_data_prdr },
47 #endif
48 #ifndef DISABLE_DKIM
49 { "acl_smtp_dkim", opt_stringptr, &acl_smtp_dkim },
50 #endif
51 { "acl_smtp_etrn", opt_stringptr, &acl_smtp_etrn },
52 { "acl_smtp_expn", opt_stringptr, &acl_smtp_expn },
53 { "acl_smtp_helo", opt_stringptr, &acl_smtp_helo },
54 { "acl_smtp_mail", opt_stringptr, &acl_smtp_mail },
55 { "acl_smtp_mailauth", opt_stringptr, &acl_smtp_mailauth },
56 #ifdef WITH_CONTENT_SCAN
57 { "acl_smtp_mime", opt_stringptr, &acl_smtp_mime },
58 #endif
59 { "acl_smtp_notquit", opt_stringptr, &acl_smtp_notquit },
60 { "acl_smtp_predata", opt_stringptr, &acl_smtp_predata },
61 { "acl_smtp_quit", opt_stringptr, &acl_smtp_quit },
62 { "acl_smtp_rcpt", opt_stringptr, &acl_smtp_rcpt },
63 #ifndef DISABLE_TLS
64 { "acl_smtp_starttls", opt_stringptr, &acl_smtp_starttls },
65 #endif
66 { "acl_smtp_vrfy", opt_stringptr, &acl_smtp_vrfy },
67 { "add_environment", opt_stringptr, &add_environment },
68 { "admin_groups", opt_gidlist, &admin_groups },
69 { "allow_domain_literals", opt_bool, &allow_domain_literals },
70 { "allow_mx_to_ip", opt_bool, &allow_mx_to_ip },
71 { "allow_utf8_domains", opt_bool, &allow_utf8_domains },
72 { "auth_advertise_hosts", opt_stringptr, &auth_advertise_hosts },
73 { "auto_thaw", opt_time, &auto_thaw },
74 #ifdef WITH_CONTENT_SCAN
75 { "av_scanner", opt_stringptr, &av_scanner },
76 #endif
77 { "bi_command", opt_stringptr, &bi_command },
78 #ifdef EXPERIMENTAL_BRIGHTMAIL
79 { "bmi_config_file", opt_stringptr, &bmi_config_file },
80 #endif
81 { "bounce_message_file", opt_stringptr, &bounce_message_file },
82 { "bounce_message_text", opt_stringptr, &bounce_message_text },
83 { "bounce_return_body", opt_bool, &bounce_return_body },
84 { "bounce_return_linesize_limit", opt_mkint, &bounce_return_linesize_limit },
85 { "bounce_return_message", opt_bool, &bounce_return_message },
86 { "bounce_return_size_limit", opt_mkint, &bounce_return_size_limit },
87 { "bounce_sender_authentication",opt_stringptr,&bounce_sender_authentication },
88 { "callout_domain_negative_expire", opt_time, &callout_cache_domain_negative_expire },
89 { "callout_domain_positive_expire", opt_time, &callout_cache_domain_positive_expire },
90 { "callout_negative_expire", opt_time, &callout_cache_negative_expire },
91 { "callout_positive_expire", opt_time, &callout_cache_positive_expire },
92 { "callout_random_local_part",opt_stringptr, &callout_random_local_part },
93 { "check_log_inodes", opt_int, &check_log_inodes },
94 { "check_log_space", opt_Kint, &check_log_space },
95 { "check_rfc2047_length", opt_bool, &check_rfc2047_length },
96 { "check_spool_inodes", opt_int, &check_spool_inodes },
97 { "check_spool_space", opt_Kint, &check_spool_space },
98 { "chunking_advertise_hosts", opt_stringptr, &chunking_advertise_hosts },
99 { "commandline_checks_require_admin", opt_bool,&commandline_checks_require_admin },
100 { "daemon_smtp_port", opt_stringptr|opt_hidden, &daemon_smtp_port },
101 { "daemon_smtp_ports", opt_stringptr, &daemon_smtp_port },
102 { "daemon_startup_retries", opt_int, &daemon_startup_retries },
103 { "daemon_startup_sleep", opt_time, &daemon_startup_sleep },
104 #ifdef EXPERIMENTAL_DCC
105 { "dcc_direct_add_header", opt_bool, &dcc_direct_add_header },
106 { "dccifd_address", opt_stringptr, &dccifd_address },
107 { "dccifd_options", opt_stringptr, &dccifd_options },
108 #endif
109 { "debug_store", opt_bool, &debug_store },
110 { "delay_warning", opt_timelist, &delay_warning },
111 { "delay_warning_condition", opt_stringptr, &delay_warning_condition },
112 { "deliver_drop_privilege", opt_bool, &deliver_drop_privilege },
113 { "deliver_queue_load_max", opt_fixed, &deliver_queue_load_max },
114 { "delivery_date_remove", opt_bool, &delivery_date_remove },
115 #ifdef ENABLE_DISABLE_FSYNC
116 { "disable_fsync", opt_bool, &disable_fsync },
117 #endif
118 { "disable_ipv6", opt_bool, &disable_ipv6 },
119 #ifndef DISABLE_DKIM
120 { "dkim_verify_hashes", opt_stringptr, &dkim_verify_hashes },
121 { "dkim_verify_keytypes", opt_stringptr, &dkim_verify_keytypes },
122 { "dkim_verify_minimal", opt_bool, &dkim_verify_minimal },
123 { "dkim_verify_signers", opt_stringptr, &dkim_verify_signers },
124 #endif
125 #ifdef SUPPORT_DMARC
126 { "dmarc_forensic_sender", opt_stringptr, &dmarc_forensic_sender },
127 { "dmarc_history_file", opt_stringptr, &dmarc_history_file },
128 { "dmarc_tld_file", opt_stringptr, &dmarc_tld_file },
129 #endif
130 { "dns_again_means_nonexist", opt_stringptr, &dns_again_means_nonexist },
131 { "dns_check_names_pattern", opt_stringptr, &check_dns_names_pattern },
132 { "dns_cname_loops", opt_int, &dns_cname_loops },
133 { "dns_csa_search_limit", opt_int, &dns_csa_search_limit },
134 { "dns_csa_use_reverse", opt_bool, &dns_csa_use_reverse },
135 { "dns_dnssec_ok", opt_int, &dns_dnssec_ok },
136 { "dns_ipv4_lookup", opt_stringptr, &dns_ipv4_lookup },
137 { "dns_retrans", opt_time, &dns_retrans },
138 { "dns_retry", opt_int, &dns_retry },
139 { "dns_trust_aa", opt_stringptr, &dns_trust_aa },
140 { "dns_use_edns0", opt_int, &dns_use_edns0 },
141 /* This option is now a no-op, retained for compatibility */
142 { "drop_cr", opt_bool, &drop_cr },
143 /*********************************************************/
144 { "dsn_advertise_hosts", opt_stringptr, &dsn_advertise_hosts },
145 { "dsn_from", opt_stringptr, &dsn_from },
146 { "envelope_to_remove", opt_bool, &envelope_to_remove },
147 { "errors_copy", opt_stringptr, &errors_copy },
148 { "errors_reply_to", opt_stringptr, &errors_reply_to },
149 #ifndef DISABLE_EVENT
150 { "event_action", opt_stringptr, &event_action },
151 #endif
152 { "exim_group", opt_gid, &exim_gid },
153 { "exim_path", opt_stringptr, &exim_path },
154 { "exim_user", opt_uid, &exim_uid },
155 { "exim_version", opt_stringptr, &version_string },
156 { "extra_local_interfaces", opt_stringptr, &extra_local_interfaces },
157 { "extract_addresses_remove_arguments", opt_bool, &extract_addresses_remove_arguments },
158 { "finduser_retries", opt_int, &finduser_retries },
159 { "freeze_tell", opt_stringptr, &freeze_tell },
160 { "gecos_name", opt_stringptr, &gecos_name },
161 { "gecos_pattern", opt_stringptr, &gecos_pattern },
162 #ifndef DISABLE_TLS
163 { "gnutls_allow_auto_pkcs11", opt_bool, &gnutls_allow_auto_pkcs11 },
164 { "gnutls_compat_mode", opt_bool, &gnutls_compat_mode },
165 #endif
166 { "header_line_maxsize", opt_int, &header_line_maxsize },
167 { "header_maxsize", opt_int, &header_maxsize },
168 { "headers_charset", opt_stringptr, &headers_charset },
169 { "helo_accept_junk_hosts", opt_stringptr, &helo_accept_junk_hosts },
170 { "helo_allow_chars", opt_stringptr, &helo_allow_chars },
171 { "helo_lookup_domains", opt_stringptr, &helo_lookup_domains },
172 { "helo_try_verify_hosts", opt_stringptr, &helo_try_verify_hosts },
173 { "helo_verify_hosts", opt_stringptr, &helo_verify_hosts },
174 { "hold_domains", opt_stringptr, &hold_domains },
175 { "host_lookup", opt_stringptr, &host_lookup },
176 { "host_lookup_order", opt_stringptr, &host_lookup_order },
177 { "host_reject_connection", opt_stringptr, &host_reject_connection },
178 { "hosts_connection_nolog", opt_stringptr, &hosts_connection_nolog },
179 #ifdef SUPPORT_PROXY
180 { "hosts_proxy", opt_stringptr, &hosts_proxy },
181 #endif
182 { "hosts_treat_as_local", opt_stringptr, &hosts_treat_as_local },
183 #ifdef LOOKUP_IBASE
184 { "ibase_servers", opt_stringptr, &ibase_servers },
185 #endif
186 { "ignore_bounce_errors_after", opt_time, &ignore_bounce_errors_after },
187 { "ignore_fromline_hosts", opt_stringptr, &ignore_fromline_hosts },
188 { "ignore_fromline_local", opt_bool, &ignore_fromline_local },
189 { "keep_environment", opt_stringptr, &keep_environment },
190 { "keep_malformed", opt_time, &keep_malformed },
191 #ifdef LOOKUP_LDAP
192 { "ldap_ca_cert_dir", opt_stringptr, &eldap_ca_cert_dir },
193 { "ldap_ca_cert_file", opt_stringptr, &eldap_ca_cert_file },
194 { "ldap_cert_file", opt_stringptr, &eldap_cert_file },
195 { "ldap_cert_key", opt_stringptr, &eldap_cert_key },
196 { "ldap_cipher_suite", opt_stringptr, &eldap_cipher_suite },
197 { "ldap_default_servers", opt_stringptr, &eldap_default_servers },
198 { "ldap_require_cert", opt_stringptr, &eldap_require_cert },
199 { "ldap_start_tls", opt_bool, &eldap_start_tls },
200 { "ldap_version", opt_int, &eldap_version },
201 #endif
202 { "local_from_check", opt_bool, &local_from_check },
203 { "local_from_prefix", opt_stringptr, &local_from_prefix },
204 { "local_from_suffix", opt_stringptr, &local_from_suffix },
205 { "local_interfaces", opt_stringptr, &local_interfaces },
206 #ifdef HAVE_LOCAL_SCAN
207 { "local_scan_timeout", opt_time, &local_scan_timeout },
208 #endif
209 { "local_sender_retain", opt_bool, &local_sender_retain },
210 { "localhost_number", opt_stringptr, &host_number_string },
211 { "log_file_path", opt_stringptr, &log_file_path },
212 { "log_selector", opt_stringptr, &log_selector_string },
213 { "log_timezone", opt_bool, &log_timezone },
214 { "lookup_open_max", opt_int, &lookup_open_max },
215 { "max_username_length", opt_int, &max_username_length },
216 { "message_body_newlines", opt_bool, &message_body_newlines },
217 { "message_body_visible", opt_mkint, &message_body_visible },
218 { "message_id_header_domain", opt_stringptr, &message_id_domain },
219 { "message_id_header_text", opt_stringptr, &message_id_text },
220 { "message_logs", opt_bool, &message_logs },
221 { "message_size_limit", opt_stringptr, &message_size_limit },
222 #ifdef SUPPORT_MOVE_FROZEN_MESSAGES
223 { "move_frozen_messages", opt_bool, &move_frozen_messages },
224 #endif
225 { "mua_wrapper", opt_bool, &mua_wrapper },
226 #ifdef LOOKUP_MYSQL
227 { "mysql_servers", opt_stringptr, &mysql_servers },
228 #endif
229 { "never_users", opt_uidlist, &never_users },
230 #ifndef DISABLE_TLS
231 { "openssl_options", opt_stringptr, &openssl_options },
232 #endif
233 #ifdef LOOKUP_ORACLE
234 { "oracle_servers", opt_stringptr, &oracle_servers },
235 #endif
236 { "percent_hack_domains", opt_stringptr, &percent_hack_domains },
237 #ifdef EXIM_PERL
238 { "perl_at_start", opt_bool, &opt_perl_at_start },
239 { "perl_startup", opt_stringptr, &opt_perl_startup },
240 { "perl_taintmode", opt_bool, &opt_perl_taintmode },
241 #endif
242 #ifdef LOOKUP_PGSQL
243 { "pgsql_servers", opt_stringptr, &pgsql_servers },
244 #endif
245 { "pid_file_path", opt_stringptr, &pid_file_path },
246 { "pipelining_advertise_hosts", opt_stringptr, &pipelining_advertise_hosts },
247 #ifndef DISABLE_PIPE_CONNECT
248 { "pipelining_connect_advertise_hosts", opt_stringptr,
249 &pipe_connect_advertise_hosts },
250 #endif
251 #ifndef DISABLE_PRDR
252 { "prdr_enable", opt_bool, &prdr_enable },
253 #endif
254 { "preserve_message_logs", opt_bool, &preserve_message_logs },
255 { "primary_hostname", opt_stringptr, &primary_hostname },
256 { "print_topbitchars", opt_bool, &print_topbitchars },
257 { "process_log_path", opt_stringptr, &process_log_path },
258 { "prod_requires_admin", opt_bool, &prod_requires_admin },
259 { "qualify_domain", opt_stringptr, &qualify_domain_sender },
260 { "qualify_recipient", opt_stringptr, &qualify_domain_recipient },
261 { "queue_domains", opt_stringptr, &queue_domains },
262 { "queue_list_requires_admin",opt_bool, &queue_list_requires_admin },
263 { "queue_only", opt_bool, &queue_only },
264 { "queue_only_file", opt_stringptr, &queue_only_file },
265 { "queue_only_load", opt_fixed, &queue_only_load },
266 { "queue_only_load_latch", opt_bool, &queue_only_load_latch },
267 { "queue_only_override", opt_bool, &queue_only_override },
268 { "queue_run_in_order", opt_bool, &queue_run_in_order },
269 { "queue_run_max", opt_stringptr, &queue_run_max },
270 { "queue_smtp_domains", opt_stringptr, &queue_smtp_domains },
271 { "receive_timeout", opt_time, &receive_timeout },
272 { "received_header_text", opt_stringptr, &received_header_text },
273 { "received_headers_max", opt_int, &received_headers_max },
274 { "recipient_unqualified_hosts", opt_stringptr, &recipient_unqualified_hosts },
275 { "recipients_max", opt_int, &recipients_max },
276 { "recipients_max_reject", opt_bool, &recipients_max_reject },
277 #ifdef LOOKUP_REDIS
278 { "redis_servers", opt_stringptr, &redis_servers },
279 #endif
280 { "remote_max_parallel", opt_int, &remote_max_parallel },
281 { "remote_sort_domains", opt_stringptr, &remote_sort_domains },
282 { "retry_data_expire", opt_time, &retry_data_expire },
283 { "retry_interval_max", opt_time, &retry_interval_max },
284 { "return_path_remove", opt_bool, &return_path_remove },
285 { "return_size_limit", opt_mkint|opt_hidden, &bounce_return_size_limit },
286 { "rfc1413_hosts", opt_stringptr, &rfc1413_hosts },
287 { "rfc1413_query_timeout", opt_time, &rfc1413_query_timeout },
288 { "sender_unqualified_hosts", opt_stringptr, &sender_unqualified_hosts },
289 { "slow_lookup_log", opt_int, &slow_lookup_log },
290 { "smtp_accept_keepalive", opt_bool, &smtp_accept_keepalive },
291 { "smtp_accept_max", opt_int, &smtp_accept_max },
292 { "smtp_accept_max_nonmail", opt_int, &smtp_accept_max_nonmail },
293 { "smtp_accept_max_nonmail_hosts", opt_stringptr, &smtp_accept_max_nonmail_hosts },
294 { "smtp_accept_max_per_connection", opt_int, &smtp_accept_max_per_connection },
295 { "smtp_accept_max_per_host", opt_stringptr, &smtp_accept_max_per_host },
296 { "smtp_accept_queue", opt_int, &smtp_accept_queue },
297 { "smtp_accept_queue_per_connection", opt_int, &smtp_accept_queue_per_connection },
298 { "smtp_accept_reserve", opt_int, &smtp_accept_reserve },
299 { "smtp_active_hostname", opt_stringptr, &raw_active_hostname },
300 { "smtp_banner", opt_stringptr, &smtp_banner },
301 { "smtp_check_spool_space", opt_bool, &smtp_check_spool_space },
302 { "smtp_connect_backlog", opt_int, &smtp_connect_backlog },
303 { "smtp_enforce_sync", opt_bool, &smtp_enforce_sync },
304 { "smtp_etrn_command", opt_stringptr, &smtp_etrn_command },
305 { "smtp_etrn_serialize", opt_bool, &smtp_etrn_serialize },
306 { "smtp_load_reserve", opt_fixed, &smtp_load_reserve },
307 { "smtp_max_synprot_errors", opt_int, &smtp_max_synprot_errors },
308 { "smtp_max_unknown_commands",opt_int, &smtp_max_unknown_commands },
309 { "smtp_ratelimit_hosts", opt_stringptr, &smtp_ratelimit_hosts },
310 { "smtp_ratelimit_mail", opt_stringptr, &smtp_ratelimit_mail },
311 { "smtp_ratelimit_rcpt", opt_stringptr, &smtp_ratelimit_rcpt },
312 { "smtp_receive_timeout", opt_func, (void *) &fn_smtp_receive_timeout },
313 { "smtp_reserve_hosts", opt_stringptr, &smtp_reserve_hosts },
314 { "smtp_return_error_details",opt_bool, &smtp_return_error_details },
315 #ifdef SUPPORT_I18N
316 { "smtputf8_advertise_hosts", opt_stringptr, &smtputf8_advertise_hosts },
317 #endif
318 #ifdef WITH_CONTENT_SCAN
319 { "spamd_address", opt_stringptr, &spamd_address },
320 #endif
321 #ifdef SUPPORT_SPF
322 { "spf_guess", opt_stringptr, &spf_guess },
323 #endif
324 { "split_spool_directory", opt_bool, &split_spool_directory },
325 { "spool_directory", opt_stringptr, &spool_directory },
326 { "spool_wireformat", opt_bool, &spool_wireformat },
327 #ifdef LOOKUP_SQLITE
328 { "sqlite_lock_timeout", opt_int, &sqlite_lock_timeout },
329 #endif
330 #ifdef EXPERIMENTAL_SRS
331 { "srs_config", opt_stringptr, &srs_config },
332 { "srs_hashlength", opt_int, &srs_hashlength },
333 { "srs_hashmin", opt_int, &srs_hashmin },
334 { "srs_maxage", opt_int, &srs_maxage },
335 { "srs_secrets", opt_stringptr, &srs_secrets },
336 { "srs_usehash", opt_bool, &srs_usehash },
337 { "srs_usetimestamp", opt_bool, &srs_usetimestamp },
338 #endif
339 { "strict_acl_vars", opt_bool, &strict_acl_vars },
340 { "strip_excess_angle_brackets", opt_bool, &strip_excess_angle_brackets },
341 { "strip_trailing_dot", opt_bool, &strip_trailing_dot },
342 { "syslog_duplication", opt_bool, &syslog_duplication },
343 { "syslog_facility", opt_stringptr, &syslog_facility_str },
344 { "syslog_pid", opt_bool, &syslog_pid },
345 { "syslog_processname", opt_stringptr, &syslog_processname },
346 { "syslog_timestamp", opt_bool, &syslog_timestamp },
347 { "system_filter", opt_stringptr, &system_filter },
348 { "system_filter_directory_transport", opt_stringptr,&system_filter_directory_transport },
349 { "system_filter_file_transport",opt_stringptr,&system_filter_file_transport },
350 { "system_filter_group", opt_gid, &system_filter_gid },
351 { "system_filter_pipe_transport",opt_stringptr,&system_filter_pipe_transport },
352 { "system_filter_reply_transport",opt_stringptr,&system_filter_reply_transport },
353 { "system_filter_user", opt_uid, &system_filter_uid },
354 { "tcp_nodelay", opt_bool, &tcp_nodelay },
355 #ifdef USE_TCP_WRAPPERS
356 { "tcp_wrappers_daemon_name", opt_stringptr, &tcp_wrappers_daemon_name },
357 #endif
358 { "timeout_frozen_after", opt_time, &timeout_frozen_after },
359 { "timezone", opt_stringptr, &timezone_string },
360 { "tls_advertise_hosts", opt_stringptr, &tls_advertise_hosts },
361 #ifndef DISABLE_TLS
362 { "tls_certificate", opt_stringptr, &tls_certificate },
363 { "tls_crl", opt_stringptr, &tls_crl },
364 { "tls_dh_max_bits", opt_int, &tls_dh_max_bits },
365 { "tls_dhparam", opt_stringptr, &tls_dhparam },
366 { "tls_eccurve", opt_stringptr, &tls_eccurve },
367 # ifndef DISABLE_OCSP
368 { "tls_ocsp_file", opt_stringptr, &tls_ocsp_file },
369 # endif
370 { "tls_on_connect_ports", opt_stringptr, &tls_in.on_connect_ports },
371 { "tls_privatekey", opt_stringptr, &tls_privatekey },
372 { "tls_remember_esmtp", opt_bool, &tls_remember_esmtp },
373 { "tls_require_ciphers", opt_stringptr, &tls_require_ciphers },
374 # ifdef EXPERIMENTAL_TLS_RESUME
375 { "tls_resumption_hosts", opt_stringptr, &tls_resumption_hosts },
376 # endif
377 { "tls_try_verify_hosts", opt_stringptr, &tls_try_verify_hosts },
378 { "tls_verify_certificates", opt_stringptr, &tls_verify_certificates },
379 { "tls_verify_hosts", opt_stringptr, &tls_verify_hosts },
380 #endif
381 { "trusted_groups", opt_gidlist, &trusted_groups },
382 { "trusted_users", opt_uidlist, &trusted_users },
383 { "unknown_login", opt_stringptr, &unknown_login },
384 { "unknown_username", opt_stringptr, &unknown_username },
385 { "untrusted_set_sender", opt_stringptr, &untrusted_set_sender },
386 { "uucp_from_pattern", opt_stringptr, &uucp_from_pattern },
387 { "uucp_from_sender", opt_stringptr, &uucp_from_sender },
388 { "warn_message_file", opt_stringptr, &warn_message_file },
389 { "write_rejectlog", opt_bool, &write_rejectlog }
390 };
391
392 #ifndef MACRO_PREDEF
393 static int optionlist_config_size = nelem(optionlist_config);
394 #endif
395
396
397 #ifdef MACRO_PREDEF
398
399 static void
400 fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags) {/*Dummy*/}
401
402 void
403 options_main(void)
404 {
405 options_from_list(optionlist_config, nelem(optionlist_config), US"MAIN", NULL);
406 }
407
408 void
409 options_auths(void)
410 {
411 uschar buf[64];
412
413 options_from_list(optionlist_auths, optionlist_auths_size, US"AUTHENTICATORS", NULL);
414
415 for (struct auth_info * ai = auths_available; ai->driver_name[0]; ai++)
416 {
417 spf(buf, sizeof(buf), US"_DRIVER_AUTHENTICATOR_%T", ai->driver_name);
418 builtin_macro_create(buf);
419 options_from_list(ai->options, (unsigned)*ai->options_count, US"AUTHENTICATOR", ai->driver_name);
420
421 if (ai->macros_create) (ai->macros_create)();
422 }
423 }
424
425 void
426 options_logging(void)
427 {
428 uschar buf[64];
429
430 for (bit_table * bp = log_options; bp < log_options + log_options_count; bp++)
431 {
432 spf(buf, sizeof(buf), US"_LOG_%T", bp->name);
433 builtin_macro_create(buf);
434 }
435 }
436
437
438 #else /*!MACRO_PREDEF*/
439
440 extern char **environ;
441
442 static void save_config_line(const uschar* line);
443 static void save_config_position(const uschar *file, int line);
444 static void print_config(BOOL admin, BOOL terse);
445
446
447 #define CSTATE_STACK_SIZE 10
448
449 const uschar *config_directory = NULL;
450
451
452 /* Structure for chain (stack) of .included files */
453
454 typedef struct config_file_item {
455 struct config_file_item *next;
456 const uschar *filename;
457 const uschar *directory;
458 FILE *file;
459 int lineno;
460 } config_file_item;
461
462 /* Structure for chain of configuration lines (-bP config) */
463
464 typedef struct config_line_item {
465 struct config_line_item *next;
466 uschar *line;
467 } config_line_item;
468
469 static config_line_item* config_lines;
470
471 /* Structure of table of conditional words and their state transitions */
472
473 typedef struct cond_item {
474 uschar *name;
475 int namelen;
476 int action1;
477 int action2;
478 int pushpop;
479 } cond_item;
480
481 /* Structure of table of syslog facility names and values */
482
483 typedef struct syslog_fac_item {
484 uschar *name;
485 int value;
486 } syslog_fac_item;
487
488 /* constants */
489 static const char * const hidden = "<value not displayable>";
490
491 /* Static variables */
492
493 static config_file_item *config_file_stack = NULL; /* For includes */
494
495 static uschar *syslog_facility_str = NULL;
496 static uschar next_section[24];
497 static uschar time_buffer[24];
498
499 /* State variables for conditional loading (.ifdef / .else / .endif) */
500
501 static int cstate = 0;
502 static int cstate_stack_ptr = -1;
503 static int cstate_stack[CSTATE_STACK_SIZE];
504
505 /* Table of state transitions for handling conditional inclusions. There are
506 four possible state transitions:
507
508 .ifdef true
509 .ifdef false
510 .elifdef true (or .else)
511 .elifdef false
512
513 .endif just causes the previous cstate to be popped off the stack */
514
515 static int next_cstate[3][4] =
516 {
517 /* State 0: reading from file, or reading until next .else or .endif */
518 { 0, 1, 2, 2 },
519 /* State 1: condition failed, skipping until next .else or .endif */
520 { 2, 2, 0, 1 },
521 /* State 2: skipping until .endif */
522 { 2, 2, 2, 2 },
523 };
524
525 /* Table of conditionals and the states to set. For each name, there are four
526 values: the length of the name (to save computing it each time), the state to
527 set if a macro was found in the line, the state to set if a macro was not found
528 in the line, and a stack manipulation setting which is:
529
530 -1 pull state value off the stack
531 0 don't alter the stack
532 +1 push value onto stack, before setting new state
533 */
534
535 static cond_item cond_list[] = {
536 { US"ifdef", 5, 0, 1, 1 },
537 { US"ifndef", 6, 1, 0, 1 },
538 { US"elifdef", 7, 2, 3, 0 },
539 { US"elifndef", 8, 3, 2, 0 },
540 { US"else", 4, 2, 2, 0 },
541 { US"endif", 5, 0, 0, -1 }
542 };
543
544 static int cond_list_size = sizeof(cond_list)/sizeof(cond_item);
545
546 /* Table of syslog facility names and their values */
547
548 static syslog_fac_item syslog_list[] = {
549 { US"mail", LOG_MAIL },
550 { US"user", LOG_USER },
551 { US"news", LOG_NEWS },
552 { US"uucp", LOG_UUCP },
553 { US"local0", LOG_LOCAL0 },
554 { US"local1", LOG_LOCAL1 },
555 { US"local2", LOG_LOCAL2 },
556 { US"local3", LOG_LOCAL3 },
557 { US"local4", LOG_LOCAL4 },
558 { US"local5", LOG_LOCAL5 },
559 { US"local6", LOG_LOCAL6 },
560 { US"local7", LOG_LOCAL7 },
561 { US"daemon", LOG_DAEMON }
562 };
563
564 static int syslog_list_size = sizeof(syslog_list)/sizeof(syslog_fac_item);
565
566
567 #define opt_fn_print BIT(0)
568 #define opt_fn_print_label BIT(1)
569
570
571 /*************************************************
572 * Find the name of an option *
573 *************************************************/
574
575 /* This function is to aid debugging. Various functions take arguments that are
576 pointer variables in the options table or in option tables for various drivers.
577 For debugging output, it is useful to be able to find the name of the option
578 which is currently being processed. This function finds it, if it exists, by
579 searching the table(s).
580
581 Arguments: a value that is presumed to be in the table above
582 Returns: the option name, or an empty string
583 */
584
585 uschar *
586 readconf_find_option(void *p)
587 {
588 for (int i = 0; i < nelem(optionlist_config); i++)
589 if (p == optionlist_config[i].value) return US optionlist_config[i].name;
590
591 for (router_instance * r = routers; r; r = r->next)
592 {
593 router_info *ri = r->info;
594 for (int i = 0; i < *ri->options_count; i++)
595 {
596 if ((ri->options[i].type & opt_mask) != opt_stringptr) continue;
597 if (p == CS (r->options_block) + (long int)(ri->options[i].value))
598 return US ri->options[i].name;
599 }
600 }
601
602 for (transport_instance * t = transports; t; t = t->next)
603 {
604 transport_info *ti = t->info;
605 for (int i = 0; i < *ti->options_count; i++)
606 {
607 optionlist * op = &ti->options[i];
608 if ((op->type & opt_mask) != opt_stringptr) continue;
609 if (p == ( op->type & opt_public
610 ? CS t
611 : CS t->options_block
612 )
613 + (long int)op->value)
614 return US op->name;
615 }
616 }
617
618 return US"";
619 }
620
621
622
623
624 /*************************************************
625 * Deal with an assignment to a macro *
626 *************************************************/
627
628 /* We have a new definition; append to the list.
629
630 Args:
631 name Name of the macro; will be copied
632 val Expansion result for the macro; will be copied
633 */
634
635 macro_item *
636 macro_create(const uschar * name, const uschar * val, BOOL command_line)
637 {
638 macro_item * m = store_get(sizeof(macro_item), FALSE);
639
640 READCONF_DEBUG fprintf(stderr, "%s: '%s' '%s'\n", __FUNCTION__, name, val);
641 m->next = NULL;
642 m->command_line = command_line;
643 m->namelen = Ustrlen(name);
644 m->replen = Ustrlen(val);
645 m->name = string_copy(name);
646 m->replacement = string_copy(val);
647 if (mlast)
648 mlast->next = m;
649 else
650 macros = m;
651 mlast = m;
652 if (!macros_user)
653 macros_user = m;
654 return m;
655 }
656
657
658 /* This function is called when a line that starts with an upper case letter is
659 encountered. The argument "line" should contain a complete logical line, and
660 start with the first letter of the macro name. The macro name and the
661 replacement text are extracted and stored. Redefinition of existing,
662 non-command line, macros is permitted using '==' instead of '='.
663
664 Arguments:
665 s points to the start of the logical line
666
667 Returns: FALSE iff fatal error
668 */
669
670 BOOL
671 macro_read_assignment(uschar *s)
672 {
673 uschar name[64];
674 int namelen = 0;
675 BOOL redef = FALSE;
676 macro_item *m;
677
678 while (isalnum(*s) || *s == '_')
679 {
680 if (namelen >= sizeof(name) - 1)
681 {
682 log_write(0, LOG_PANIC|LOG_CONFIG_IN,
683 "macro name too long (maximum is " SIZE_T_FMT " characters)", sizeof(name) - 1);
684 return FALSE;
685 }
686 name[namelen++] = *s++;
687 }
688 name[namelen] = 0;
689
690 while (isspace(*s)) s++;
691 if (*s++ != '=')
692 {
693 log_write(0, LOG_PANIC|LOG_CONFIG_IN, "malformed macro definition");
694 return FALSE;
695 }
696
697 if (*s == '=')
698 {
699 redef = TRUE;
700 s++;
701 }
702 while (isspace(*s)) s++;
703
704 /* If an existing macro of the same name was defined on the command line, we
705 just skip this definition. It's an error to attempt to redefine a macro without
706 redef set to TRUE, or to redefine a macro when it hasn't been defined earlier.
707 It is also an error to define a macro whose name begins with the name of a
708 previously defined macro. This is the requirement that make using a tree
709 for macros hard; we must check all macros for the substring. Perhaps a
710 sorted list, and a bsearch, would work?
711 Note: it is documented that the other way round works. */
712
713 for (m = macros; m; m = m->next)
714 {
715 if (Ustrcmp(m->name, name) == 0)
716 {
717 if (!m->command_line && !redef)
718 {
719 log_write(0, LOG_CONFIG|LOG_PANIC, "macro \"%s\" is already "
720 "defined (use \"==\" if you want to redefine it)", name);
721 return FALSE;
722 }
723 break;
724 }
725
726 if (m->namelen < namelen && Ustrstr(name, m->name) != NULL)
727 {
728 log_write(0, LOG_CONFIG|LOG_PANIC, "\"%s\" cannot be defined as "
729 "a macro because previously defined macro \"%s\" is a substring",
730 name, m->name);
731 return FALSE;
732 }
733
734 /* We cannot have this test, because it is documented that a substring
735 macro is permitted (there is even an example).
736 *
737 * if (m->namelen > namelen && Ustrstr(m->name, name) != NULL)
738 * log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "\"%s\" cannot be defined as "
739 * "a macro because it is a substring of previously defined macro \"%s\"",
740 * name, m->name);
741 */
742 }
743
744 /* Check for an overriding command-line definition. */
745
746 if (m && m->command_line) return TRUE;
747
748 /* Redefinition must refer to an existing macro. */
749
750 if (redef)
751 if (m)
752 {
753 m->replen = Ustrlen(s);
754 m->replacement = string_copy(s);
755 }
756 else
757 {
758 log_write(0, LOG_CONFIG|LOG_PANIC, "can't redefine an undefined macro "
759 "\"%s\"", name);
760 return FALSE;
761 }
762
763 /* We have a new definition. */
764 else
765 (void) macro_create(name, s, FALSE);
766 return TRUE;
767 }
768
769
770
771
772
773 /* Process line for macros. The line is in big_buffer starting at offset len.
774 Expand big_buffer if needed. Handle definitions of new macros, and
775 macro expansions, rewriting the line in the buffer.
776
777 Arguments:
778 len Offset in buffer of start of line
779 newlen Pointer to offset of end of line, updated on return
780 macro_found Pointer to return that a macro was expanded
781
782 Return: pointer to first nonblank char in line
783 */
784
785 uschar *
786 macros_expand(int len, int * newlen, BOOL * macro_found)
787 {
788 uschar * ss = big_buffer + len;
789 uschar * s;
790
791 /* Find the true start of the physical line - leading spaces are always
792 ignored. */
793
794 while (isspace(*ss)) ss++;
795
796 /* Process the physical line for macros. If this is the start of the logical
797 line, skip over initial text at the start of the line if it starts with an
798 upper case character followed by a sequence of name characters and an equals
799 sign, because that is the definition of a new macro, and we don't do
800 replacement therein. */
801
802 s = ss;
803 if (len == 0 && isupper(*s))
804 {
805 while (isalnum(*s) || *s == '_') s++;
806 while (isspace(*s)) s++;
807 if (*s != '=') s = ss; /* Not a macro definition */
808 }
809
810 /* Skip leading chars which cannot start a macro name, to avoid multiple
811 pointless rescans in Ustrstr calls. */
812
813 while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
814
815 /* For each defined macro, scan the line (from after XXX= if present),
816 replacing all occurrences of the macro. */
817
818 *macro_found = FALSE;
819 if (*s) for (macro_item * m = *s == '_' ? macros : macros_user; m; m = m->next)
820 {
821 uschar * p, *pp;
822 uschar * t;
823
824 while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
825 if (!*s) break;
826
827 t = s;
828 while ((p = Ustrstr(t, m->name)) != NULL)
829 {
830 int moveby;
831
832 READCONF_DEBUG fprintf(stderr, "%s: matched '%s' in '%.*s'\n", __FUNCTION__,
833 m->name, (int) Ustrlen(ss)-1, ss);
834 /* Expand the buffer if necessary */
835
836 while (*newlen - m->namelen + m->replen + 1 > big_buffer_size)
837 {
838 int newsize = big_buffer_size + BIG_BUFFER_SIZE;
839 uschar *newbuffer = store_malloc(newsize);
840 memcpy(newbuffer, big_buffer, *newlen + 1);
841 p = newbuffer + (p - big_buffer);
842 s = newbuffer + (s - big_buffer);
843 ss = newbuffer + (ss - big_buffer);
844 t = newbuffer + (t - big_buffer);
845 big_buffer_size = newsize;
846 store_free(big_buffer);
847 big_buffer = newbuffer;
848 }
849
850 /* Shuffle the remaining characters up or down in the buffer before
851 copying in the replacement text. Don't rescan the replacement for this
852 same macro. */
853
854 pp = p + m->namelen;
855 if ((moveby = m->replen - m->namelen) != 0)
856 {
857 memmove(p + m->replen, pp, (big_buffer + *newlen) - pp + 1);
858 *newlen += moveby;
859 }
860 Ustrncpy(p, m->replacement, m->replen);
861 t = p + m->replen;
862 while (*t && !isupper(*t) && !(*t == '_' && isupper(t[1]))) t++;
863 *macro_found = TRUE;
864 }
865 }
866
867 /* An empty macro replacement at the start of a line could mean that ss no
868 longer points to the first non-blank character. */
869
870 while (isspace(*ss)) ss++;
871 return ss;
872 }
873
874 /*************************************************
875 * Read configuration line *
876 *************************************************/
877
878 /* A logical line of text is read from the configuration file into the big
879 buffer, taking account of macros, .includes, and continuations. The size of
880 big_buffer is increased if necessary. The count of configuration lines is
881 maintained. Physical input lines starting with # (ignoring leading white space,
882 and after macro replacement) and empty logical lines are always ignored.
883 Leading and trailing spaces are removed.
884
885 If we hit a line of the form "begin xxxx", the xxxx is placed in the
886 next_section vector, and the function returns NULL, indicating the end of a
887 configuration section. On end-of-file, NULL is returned with next_section
888 empty.
889
890 Arguments: none
891
892 Returns: a pointer to the first non-blank in the line,
893 or NULL if eof or end of section is reached
894 */
895
896 static uschar *
897 get_config_line(void)
898 {
899 int startoffset = 0; /* To first non-blank char in logical line */
900 int len = 0; /* Of logical line so far */
901 int newlen;
902 uschar *s, *ss;
903 BOOL macro_found;
904
905 /* Loop for handling continuation lines, skipping comments, and dealing with
906 .include files. */
907
908 for (;;)
909 {
910 if (Ufgets(big_buffer+len, big_buffer_size-len, config_file) == NULL)
911 {
912 if (config_file_stack != NULL) /* EOF inside .include */
913 {
914 (void)fclose(config_file);
915 config_file = config_file_stack->file;
916 config_filename = config_file_stack->filename;
917 config_directory = config_file_stack->directory;
918 config_lineno = config_file_stack->lineno;
919 config_file_stack = config_file_stack->next;
920 if (config_lines)
921 save_config_position(config_filename, config_lineno);
922 continue;
923 }
924
925 /* EOF at top level */
926
927 if (cstate_stack_ptr >= 0)
928 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
929 "Unexpected end of configuration file: .endif missing");
930
931 if (len != 0) break; /* EOF after continuation */
932 next_section[0] = 0; /* EOF at start of logical line */
933 return NULL;
934 }
935
936 config_lineno++;
937 newlen = len + Ustrlen(big_buffer + len);
938
939 if (config_lines && config_lineno == 1)
940 save_config_position(config_filename, config_lineno);
941
942 /* Handle pathologically long physical lines - yes, it did happen - by
943 extending big_buffer at this point. The code also copes with very long
944 logical lines. */
945
946 while (newlen == big_buffer_size - 1 && big_buffer[newlen - 1] != '\n')
947 {
948 uschar *newbuffer;
949 big_buffer_size += BIG_BUFFER_SIZE;
950 newbuffer = store_malloc(big_buffer_size);
951
952 /* This use of strcpy is OK because we know that the string in the old
953 buffer is shorter than the new buffer. */
954
955 Ustrcpy(newbuffer, big_buffer);
956 store_free(big_buffer);
957 big_buffer = newbuffer;
958 if (Ufgets(big_buffer+newlen, big_buffer_size-newlen, config_file) == NULL)
959 break;
960 newlen += Ustrlen(big_buffer + newlen);
961 }
962
963 ss = macros_expand(len, &newlen, &macro_found);
964
965 /* Check for comment lines - these are physical lines. */
966
967 if (*ss == '#') continue;
968
969 /* Handle conditionals, which are also applied to physical lines. Conditions
970 are of the form ".ifdef ANYTEXT" and are treated as true if any macro
971 expansion occurred on the rest of the line. A preliminary test for the leading
972 '.' saves effort on most lines. */
973
974 if (*ss == '.')
975 {
976 int i;
977
978 /* Search the list of conditional directives */
979
980 for (i = 0; i < cond_list_size; i++)
981 {
982 int n;
983 cond_item *c = cond_list+i;
984 if (Ustrncmp(ss+1, c->name, c->namelen) != 0) continue;
985
986 /* The following character must be white space or end of string */
987
988 n = ss[1 + c->namelen];
989 if (n != ' ' && n != 't' && n != '\n' && n != 0) break;
990
991 /* .ifdef and .ifndef push the current state onto the stack, then set
992 a new one from the table. Stack overflow is an error */
993
994 if (c->pushpop > 0)
995 {
996 if (cstate_stack_ptr >= CSTATE_STACK_SIZE - 1)
997 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
998 ".%s nested too deeply", c->name);
999 cstate_stack[++cstate_stack_ptr] = cstate;
1000 cstate = next_cstate[cstate][macro_found? c->action1 : c->action2];
1001 }
1002
1003 /* For any of the others, stack underflow is an error. The next state
1004 comes either from the stack (.endif) or from the table. */
1005
1006 else
1007 {
1008 if (cstate_stack_ptr < 0)
1009 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1010 ".%s without matching .ifdef", c->name);
1011 cstate = (c->pushpop < 0)? cstate_stack[cstate_stack_ptr--] :
1012 next_cstate[cstate][macro_found? c->action1 : c->action2];
1013 }
1014
1015 /* Having dealt with a directive, break the loop */
1016
1017 break;
1018 }
1019
1020 /* If we have handled a conditional directive, continue with the next
1021 physical line. Otherwise, fall through. */
1022
1023 if (i < cond_list_size) continue;
1024 }
1025
1026 /* If the conditional state is not 0 (actively using these lines), ignore
1027 this input line. */
1028
1029 if (cstate != 0) continue; /* Conditional skip */
1030
1031 /* Handle .include lines - these are also physical lines. */
1032
1033 if (Ustrncmp(ss, ".include", 8) == 0 &&
1034 (isspace(ss[8]) ||
1035 (Ustrncmp(ss+8, "_if_exists", 10) == 0 && isspace(ss[18]))))
1036 {
1037 uschar *t;
1038 int include_if_exists = isspace(ss[8])? 0 : 10;
1039 config_file_item *save;
1040 struct stat statbuf;
1041
1042 ss += 9 + include_if_exists;
1043 while (isspace(*ss)) ss++;
1044 t = ss + Ustrlen(ss);
1045 while (t > ss && isspace(t[-1])) t--;
1046 if (*ss == '\"' && t[-1] == '\"')
1047 {
1048 ss++;
1049 t--;
1050 }
1051 *t = 0;
1052
1053 /* We allow relative file names. For security reasons currently
1054 relative names not allowed with .include_if_exists. For .include_if_exists
1055 we need to check the permissions/ownership of the containing folder */
1056 if (*ss != '/')
1057 if (include_if_exists) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, ".include specifies a non-"
1058 "absolute path \"%s\"", ss);
1059 else
1060 {
1061 gstring * g = string_append(NULL, 3, config_directory, "/", ss);
1062 ss = string_from_gstring(g);
1063 }
1064
1065 if (include_if_exists != 0 && (Ustat(ss, &statbuf) != 0)) continue;
1066
1067 if (config_lines)
1068 save_config_position(config_filename, config_lineno);
1069 save = store_get(sizeof(config_file_item), FALSE);
1070 save->next = config_file_stack;
1071 config_file_stack = save;
1072 save->file = config_file;
1073 save->filename = config_filename;
1074 save->directory = config_directory;
1075 save->lineno = config_lineno;
1076
1077 if (!(config_file = Ufopen(ss, "rb")))
1078 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to open included "
1079 "configuration file %s", ss);
1080
1081 config_filename = string_copy(ss);
1082 config_directory = string_copyn(ss, CUstrrchr(ss, '/') - ss);
1083 config_lineno = 0;
1084 continue;
1085 }
1086
1087 /* If this is the start of the logical line, remember where the non-blank
1088 data starts. Otherwise shuffle down continuation lines to remove leading
1089 white space. */
1090
1091 if (len == 0)
1092 startoffset = ss - big_buffer;
1093 else
1094 {
1095 s = big_buffer + len;
1096 if (ss > s)
1097 {
1098 memmove(s, ss, (newlen - len) - (ss - s) + 1);
1099 newlen -= ss - s;
1100 }
1101 }
1102
1103 /* Accept the new addition to the line. Remove trailing white space. */
1104
1105 len = newlen;
1106 while (len > 0 && isspace(big_buffer[len-1])) len--;
1107 big_buffer[len] = 0;
1108
1109 /* We are done if the line does not end in backslash and contains some data.
1110 Empty logical lines are ignored. For continuations, remove the backslash and
1111 go round the loop to read the continuation line. */
1112
1113 if (len > 0)
1114 {
1115 if (big_buffer[len-1] != '\\') break; /* End of logical line */
1116 big_buffer[--len] = 0; /* Remove backslash */
1117 }
1118 } /* Loop for reading multiple physical lines */
1119
1120 /* We now have a logical line. Test for the end of a configuration section (or,
1121 more accurately, for the start of the next section). Place the name of the next
1122 section in next_section, and return NULL. If the name given is longer than
1123 next_section, truncate it. It will be unrecognized later, because all the known
1124 section names do fit. Leave space for pluralizing. */
1125
1126 s = big_buffer + startoffset; /* First non-space character */
1127
1128 if (config_lines)
1129 save_config_line(s);
1130
1131 if (strncmpic(s, US"begin ", 6) == 0)
1132 {
1133 s += 6;
1134 while (isspace(*s)) s++;
1135 if (big_buffer + len - s > sizeof(next_section) - 2)
1136 s[sizeof(next_section) - 2] = 0;
1137 Ustrcpy(next_section, s);
1138 return NULL;
1139 }
1140
1141 /* Return the first non-blank character. */
1142
1143 return s;
1144 }
1145
1146
1147
1148 /*************************************************
1149 * Read a name *
1150 *************************************************/
1151
1152 /* The yield is the pointer to the next uschar. Names longer than the
1153 output space are silently truncated. This function is also used from acl.c when
1154 parsing ACLs.
1155
1156 Arguments:
1157 name where to put the name
1158 len length of name
1159 s input pointer
1160
1161 Returns: new input pointer
1162 */
1163
1164 uschar *
1165 readconf_readname(uschar *name, int len, uschar *s)
1166 {
1167 int p = 0;
1168 while (isspace(*s)) s++;
1169 if (isalpha(*s))
1170 {
1171 while (isalnum(*s) || *s == '_')
1172 {
1173 if (p < len-1) name[p++] = *s;
1174 s++;
1175 }
1176 }
1177 name[p] = 0;
1178 while (isspace(*s)) s++;
1179 return s;
1180 }
1181
1182
1183
1184
1185 /*************************************************
1186 * Read a time value *
1187 *************************************************/
1188
1189 /* This function is also called from outside, to read argument
1190 time values. The format of a time value is:
1191
1192 [<n>w][<n>d][<n>h][<n>m][<n>s]
1193
1194 as long as at least one is present. If a format error is encountered,
1195 return a negative value. The value must be terminated by the given
1196 terminator.
1197
1198 Arguments:
1199 s input pointer
1200 terminator required terminating character
1201 return_msec if TRUE, allow fractional seconds and return milliseconds
1202
1203 Returns: the time value, or -1 on syntax error
1204 value is seconds if return_msec is FALSE
1205 value is milliseconds if return_msec is TRUE
1206 */
1207
1208 int
1209 readconf_readtime(const uschar *s, int terminator, BOOL return_msec)
1210 {
1211 int yield = 0;
1212 for (;;)
1213 {
1214 int value, count;
1215 double fraction;
1216
1217 if (!isdigit(*s)) return -1;
1218 (void)sscanf(CCS s, "%d%n", &value, &count);
1219 s += count;
1220
1221 switch (*s)
1222 {
1223 case 'w': value *= 7;
1224 case 'd': value *= 24;
1225 case 'h': value *= 60;
1226 case 'm': value *= 60;
1227 case 's': s++;
1228 break;
1229
1230 case '.':
1231 if (!return_msec) return -1;
1232 (void)sscanf(CCS s, "%lf%n", &fraction, &count);
1233 s += count;
1234 if (*s++ != 's') return -1;
1235 yield += (int)(fraction * 1000.0);
1236 break;
1237
1238 default: return -1;
1239 }
1240
1241 if (return_msec) value *= 1000;
1242 yield += value;
1243 if (*s == terminator) return yield;
1244 }
1245 /* Control never reaches here. */
1246 }
1247
1248
1249
1250 /*************************************************
1251 * Read a fixed point value *
1252 *************************************************/
1253
1254 /* The value is returned *1000
1255
1256 Arguments:
1257 s input pointer
1258 terminator required terminator
1259
1260 Returns: the value, or -1 on error
1261 */
1262
1263 static int
1264 readconf_readfixed(const uschar *s, int terminator)
1265 {
1266 int yield = 0;
1267 int value, count;
1268 if (!isdigit(*s)) return -1;
1269 (void)sscanf(CS s, "%d%n", &value, &count);
1270 s += count;
1271 yield = value * 1000;
1272 if (*s == '.')
1273 {
1274 int m = 100;
1275 while (isdigit((*(++s))))
1276 {
1277 yield += (*s - '0') * m;
1278 m /= 10;
1279 }
1280 }
1281
1282 return (*s == terminator)? yield : (-1);
1283 }
1284
1285
1286
1287 /*************************************************
1288 * Find option in list *
1289 *************************************************/
1290
1291 /* The lists are always in order, so binary chop can be used.
1292
1293 Arguments:
1294 name the option name to search for
1295 ol the first entry in the option list
1296 last one more than the offset of the last entry in the option list
1297
1298 Returns: pointer to an option entry, or NULL if not found
1299 */
1300
1301 static optionlist *
1302 find_option(uschar *name, optionlist *ol, int last)
1303 {
1304 int first = 0;
1305 while (last > first)
1306 {
1307 int middle = (first + last)/2;
1308 int c = Ustrcmp(name, ol[middle].name);
1309
1310 if (c == 0) return ol + middle;
1311 else if (c > 0) first = middle + 1;
1312 else last = middle;
1313 }
1314 return NULL;
1315 }
1316
1317
1318
1319 /*************************************************
1320 * Find a set flag in option list *
1321 *************************************************/
1322
1323 /* Because some versions of Unix make no restrictions on the values of uids and
1324 gids (even negative ones), we cannot represent "unset" by a special value.
1325 There is therefore a separate boolean variable for each one indicating whether
1326 a value is set or not. This function returns a pointer to the boolean, given
1327 the original option name. It is a major disaster if the flag cannot be found.
1328
1329 Arguments:
1330 name the name of the uid or gid option
1331 oltop points to the start of the relevant option list
1332 last one more than the offset of the last item in the option list
1333 data_block NULL when reading main options => data values in the option
1334 list are absolute addresses; otherwise they are byte offsets
1335 in data_block (used for driver options)
1336
1337 Returns: a pointer to the boolean flag.
1338 */
1339
1340 static BOOL *
1341 get_set_flag(uschar *name, optionlist *oltop, int last, void *data_block)
1342 {
1343 optionlist *ol;
1344 uschar name2[64];
1345 sprintf(CS name2, "*set_%.50s", name);
1346 ol = find_option(name2, oltop, last);
1347 if (ol == NULL) log_write(0, LOG_MAIN|LOG_PANIC_DIE,
1348 "Exim internal error: missing set flag for %s", name);
1349 return (data_block == NULL)? (BOOL *)(ol->value) :
1350 (BOOL *)(US data_block + (long int)(ol->value));
1351 }
1352
1353
1354
1355
1356 /*************************************************
1357 * Output extra characters message and die *
1358 *************************************************/
1359
1360 /* Called when an option line has junk on the end. Sometimes this is because
1361 the sysadmin thinks comments are permitted.
1362
1363 Arguments:
1364 s points to the extra characters
1365 t1..t3 strings to insert in the log message
1366
1367 Returns: doesn't return; dies
1368 */
1369
1370 static void
1371 extra_chars_error(const uschar *s, const uschar *t1, const uschar *t2, const uschar *t3)
1372 {
1373 uschar *comment = US"";
1374 if (*s == '#') comment = US" (# is comment only at line start)";
1375 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1376 "extra characters follow %s%s%s%s", t1, t2, t3, comment);
1377 }
1378
1379
1380
1381 /*************************************************
1382 * Read rewrite information *
1383 *************************************************/
1384
1385 /* Each line of rewrite information contains:
1386
1387 . A complete address in the form user@domain, possibly with
1388 leading * for each part; or alternatively, a regex.
1389
1390 . A replacement string (which will be expanded).
1391
1392 . An optional sequence of one-letter flags, indicating which
1393 headers etc. to apply this rule to.
1394
1395 All this is decoded and placed into a control block. The OR of the flags is
1396 maintained in a common word.
1397
1398 Arguments:
1399 p points to the string that makes up the rule
1400 existflags points to the overall flag word
1401 isglobal TRUE if reading global rewrite rules
1402
1403 Returns: the control block for the parsed rule.
1404 */
1405
1406 static rewrite_rule *
1407 readconf_one_rewrite(const uschar *p, int *existflags, BOOL isglobal)
1408 {
1409 rewrite_rule *next = store_get(sizeof(rewrite_rule), FALSE);
1410
1411 next->next = NULL;
1412 next->key = string_dequote(&p);
1413
1414 while (isspace(*p)) p++;
1415 if (*p == 0)
1416 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1417 "missing rewrite replacement string");
1418
1419 next->flags = 0;
1420 next->replacement = string_dequote(&p);
1421
1422 while (*p != 0) switch (*p++)
1423 {
1424 case ' ': case '\t': break;
1425
1426 case 'q': next->flags |= rewrite_quit; break;
1427 case 'w': next->flags |= rewrite_whole; break;
1428
1429 case 'h': next->flags |= rewrite_all_headers; break;
1430 case 's': next->flags |= rewrite_sender; break;
1431 case 'f': next->flags |= rewrite_from; break;
1432 case 't': next->flags |= rewrite_to; break;
1433 case 'c': next->flags |= rewrite_cc; break;
1434 case 'b': next->flags |= rewrite_bcc; break;
1435 case 'r': next->flags |= rewrite_replyto; break;
1436
1437 case 'E': next->flags |= rewrite_all_envelope; break;
1438 case 'F': next->flags |= rewrite_envfrom; break;
1439 case 'T': next->flags |= rewrite_envto; break;
1440
1441 case 'Q': next->flags |= rewrite_qualify; break;
1442 case 'R': next->flags |= rewrite_repeat; break;
1443
1444 case 'S':
1445 next->flags |= rewrite_smtp;
1446 if (next->key[0] != '^' && Ustrncmp(next->key, "\\N^", 3) != 0)
1447 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1448 "rewrite rule has the S flag but is not a regular expression");
1449 break;
1450
1451 default:
1452 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1453 "unknown rewrite flag character '%c' "
1454 "(could be missing quotes round replacement item)", p[-1]);
1455 break;
1456 }
1457
1458 /* If no action flags are set, set all the "normal" rewrites. */
1459
1460 if ((next->flags & (rewrite_all | rewrite_smtp)) == 0)
1461 next->flags |= isglobal? rewrite_all : rewrite_all_headers;
1462
1463 /* Remember which exist, for optimization, and return the rule */
1464
1465 *existflags |= next->flags;
1466 return next;
1467 }
1468
1469
1470
1471
1472 /*************************************************
1473 * Read global rewrite information *
1474 *************************************************/
1475
1476 /* Each line is a single rewrite rule; it is parsed into a control block
1477 by readconf_one_rewrite(), and its flags are ORed into the global flag
1478 word rewrite_existflags. */
1479
1480 void
1481 readconf_rewrites(void)
1482 {
1483 rewrite_rule **chain = &global_rewrite_rules;
1484 uschar *p;
1485
1486 while ((p = get_config_line()) != NULL)
1487 {
1488 rewrite_rule *next = readconf_one_rewrite(p, &rewrite_existflags, TRUE);
1489 *chain = next;
1490 chain = &(next->next);
1491 }
1492 }
1493
1494
1495
1496 /*************************************************
1497 * Read a string *
1498 *************************************************/
1499
1500 /* Strings are read into the normal store pool. As long we aren't too
1501 near the end of the current block, the string will just use what is necessary
1502 on the top of the stacking pool, because string_cat() uses the extension
1503 mechanism.
1504
1505 Argument:
1506 s the rest of the input line
1507 name the option name (for errors)
1508
1509 Returns: pointer to the string
1510 */
1511
1512 static uschar *
1513 read_string(const uschar *s, const uschar *name)
1514 {
1515 uschar *yield;
1516 const uschar *ss;
1517
1518 if (*s != '\"') return string_copy(s);
1519
1520 ss = s;
1521 yield = string_dequote(&s);
1522
1523 if (s == ss+1 || s[-1] != '\"')
1524 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1525 "missing quote at end of string value for %s", name);
1526
1527 if (*s != 0) extra_chars_error(s, US"string value for ", name, US"");
1528
1529 return yield;
1530 }
1531
1532
1533 /*************************************************
1534 * Custom-handler options *
1535 *************************************************/
1536 static void
1537 fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags)
1538 {
1539 if (flags & opt_fn_print)
1540 {
1541 if (flags & opt_fn_print_label) printf("%s = ", name);
1542 printf("%s\n", smtp_receive_timeout_s
1543 ? string_printing2(smtp_receive_timeout_s, FALSE)
1544 : readconf_printtime(smtp_receive_timeout));
1545 }
1546 else if (*str == '$')
1547 smtp_receive_timeout_s = string_copy(str);
1548 else
1549 {
1550 /* "smtp_receive_timeout", opt_time, &smtp_receive_timeout */
1551 smtp_receive_timeout = readconf_readtime(str, 0, FALSE);
1552 if (smtp_receive_timeout < 0)
1553 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
1554 name);
1555 }
1556 }
1557
1558 /*************************************************
1559 * Handle option line *
1560 *************************************************/
1561
1562 /* This function is called from several places to process a line containing the
1563 setting of an option. The first argument is the line to be decoded; it has been
1564 checked not to be empty and not to start with '#'. Trailing newlines and white
1565 space have been removed. The second argument is a pointer to the list of
1566 variable names that are to be recognized, together with their types and
1567 locations, and the third argument gives the number of entries in the list.
1568
1569 The fourth argument is a pointer to a data block. If it is NULL, then the data
1570 values in the options list are absolute addresses. Otherwise, they are byte
1571 offsets in the data block.
1572
1573 String option data may continue onto several lines; this function reads further
1574 data from config_file if necessary.
1575
1576 The yield of this function is normally zero. If a string continues onto
1577 multiple lines, then the data value is permitted to be followed by a comma
1578 or a semicolon (for use in drivers) and the yield is that character.
1579
1580 Arguments:
1581 buffer contains the configuration line to be handled
1582 oltop points to the start of the relevant option list
1583 last one more than the offset of the last item in the option list
1584 data_block NULL when reading main options => data values in the option
1585 list are absolute addresses; otherwise they are byte offsets
1586 in data_block when they have opt_public set; otherwise
1587 they are byte offsets in data_block->options_block.
1588 unknown_txt format string to use in panic message for unknown option;
1589 must contain %s for option name
1590 if given as NULL, don't panic on unknown option
1591
1592 Returns: TRUE if an option was read successfully,
1593 FALSE false for an unknown option if unknown_txt == NULL,
1594 otherwise panic and die on an unknown option
1595 */
1596
1597 static BOOL
1598 readconf_handle_option(uschar *buffer, optionlist *oltop, int last,
1599 void *data_block, uschar *unknown_txt)
1600 {
1601 int ptr = 0;
1602 int offset = 0;
1603 int count, type, value;
1604 int issecure = 0;
1605 uid_t uid;
1606 gid_t gid;
1607 BOOL boolvalue = TRUE;
1608 BOOL freesptr = TRUE;
1609 optionlist *ol, *ol2;
1610 struct passwd *pw;
1611 rmark reset_point;
1612 int intbase = 0;
1613 uschar *inttype = US"";
1614 uschar *sptr;
1615 uschar *s = buffer;
1616 uschar **str_target;
1617 uschar name[64];
1618 uschar name2[64];
1619
1620 /* There may be leading spaces; thereafter, we expect an option name starting
1621 with a letter. */
1622
1623 while (isspace(*s)) s++;
1624 if (!isalpha(*s))
1625 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option setting expected: %s", s);
1626
1627 /* Read the name of the option, and skip any subsequent white space. If
1628 it turns out that what we read was "hide", set the flag indicating that
1629 this is a secure option, and loop to read the next word. */
1630
1631 for (int n = 0; n < 2; n++)
1632 {
1633 while (isalnum(*s) || *s == '_')
1634 {
1635 if (ptr < sizeof(name)-1) name[ptr++] = *s;
1636 s++;
1637 }
1638 name[ptr] = 0;
1639 while (isspace(*s)) s++;
1640 if (Ustrcmp(name, "hide") != 0) break;
1641 issecure = opt_secure;
1642 ptr = 0;
1643 }
1644
1645 /* Deal with "no_" or "not_" here for booleans */
1646
1647 if (Ustrncmp(name, "no_", 3) == 0)
1648 {
1649 boolvalue = FALSE;
1650 offset = 3;
1651 }
1652
1653 if (Ustrncmp(name, "not_", 4) == 0)
1654 {
1655 boolvalue = FALSE;
1656 offset = 4;
1657 }
1658
1659 /* Search the list for the given name. A non-existent name, or an option that
1660 is set twice, is a disaster. */
1661
1662 if (!(ol = find_option(name + offset, oltop, last)))
1663 {
1664 if (unknown_txt == NULL) return FALSE;
1665 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, CS unknown_txt, name);
1666 }
1667
1668 if ((ol->type & opt_set) && !(ol->type & (opt_rep_con | opt_rep_str)))
1669 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1670 "\"%s\" option set for the second time", name);
1671
1672 ol->type |= opt_set | issecure;
1673 type = ol->type & opt_mask;
1674
1675 /* Types with data values must be followed by '='; the "no[t]_" prefix
1676 applies only to boolean values. */
1677
1678 if (type < opt_bool || type > opt_bool_last)
1679 {
1680 if (offset != 0)
1681 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1682 "negation prefix applied to a non-boolean option");
1683 if (*s == 0)
1684 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1685 "unexpected end of line (data missing) after %s", name);
1686 if (*s != '=')
1687 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing \"=\" after %s", name);
1688 }
1689
1690 /* If a boolean wasn't preceded by "no[t]_" it can be followed by = and
1691 true/false/yes/no, or, in the case of opt_expand_bool, a general string that
1692 ultimately expands to one of those values. */
1693
1694 else if (*s != 0 && (offset != 0 || *s != '='))
1695 extra_chars_error(s, US"boolean option ", name, US"");
1696
1697 /* Skip white space after = */
1698
1699 if (*s == '=') while (isspace((*(++s))));
1700
1701 /* If there is a data block and the opt_public flag is not set, change
1702 the data block pointer to the private options block. */
1703
1704 if (data_block != NULL && (ol->type & opt_public) == 0)
1705 data_block = (void *)(((driver_instance *)data_block)->options_block);
1706
1707 /* Now get the data according to the type. */
1708
1709 switch (type)
1710 {
1711 /* If a string value is not enclosed in quotes, it consists of
1712 the rest of the current line, verbatim. Otherwise, string escapes
1713 are processed.
1714
1715 A transport is specified as a string, which is then looked up in the
1716 list of transports. A search type is specified as one of a number of
1717 known strings.
1718
1719 A set or rewrite rules for a driver is specified as a string, which is
1720 then parsed into a suitable chain of control blocks.
1721
1722 Uids and gids are specified as strings which are then looked up in the
1723 passwd file. Lists of uids and gids are similarly specified as colon-
1724 separated strings. */
1725
1726 case opt_stringptr:
1727 case opt_uid:
1728 case opt_gid:
1729 case opt_expand_uid:
1730 case opt_expand_gid:
1731 case opt_uidlist:
1732 case opt_gidlist:
1733 case opt_rewrite:
1734
1735 reset_point = store_mark();
1736 sptr = read_string(s, name);
1737
1738 /* Having read a string, we now have several different ways of using it,
1739 depending on the data type, so do another switch. If keeping the actual
1740 string is not required (because it is interpreted), freesptr is set TRUE,
1741 and at the end we reset the pool. */
1742
1743 switch (type)
1744 {
1745 /* If this was a string, set the variable to point to the new string,
1746 and set the flag so its store isn't reclaimed. If it was a list of rewrite
1747 rules, we still keep the string (for printing), and parse the rules into a
1748 control block and flags word. */
1749
1750 case opt_stringptr:
1751 str_target = data_block ? USS (US data_block + (long int)(ol->value))
1752 : USS (ol->value);
1753 if (ol->type & opt_rep_con)
1754 {
1755 uschar * saved_condition;
1756 /* We already have a condition, we're conducting a crude hack to let
1757 multiple condition rules be chained together, despite storing them in
1758 text form. */
1759 *str_target = string_copy_perm( (saved_condition = *str_target)
1760 ? string_sprintf("${if and{{bool_lax{%s}}{bool_lax{%s}}}}",
1761 saved_condition, sptr)
1762 : sptr,
1763 FALSE);
1764 /* TODO(pdp): there is a memory leak here and just below
1765 when we set 3 or more conditions; I still don't
1766 understand the store mechanism enough to know
1767 what's the safe way to free content from an earlier store.
1768 AFAICT, stores stack, so freeing an early stored item also stores
1769 all data alloc'd after it. If we knew conditions were adjacent,
1770 we could survive that, but we don't. So I *think* we need to take
1771 another bit from opt_type to indicate "malloced"; this seems like
1772 quite a hack, especially for this one case. It also means that
1773 we can't ever reclaim the store from the *first* condition.
1774
1775 Because we only do this once, near process start-up, I'm prepared to
1776 let this slide for the time being, even though it rankles. */
1777 }
1778 else if (ol->type & opt_rep_str)
1779 {
1780 uschar sep_o =
1781 Ustrncmp(name, "headers_add", 11) == 0 ? '\n'
1782 : Ustrncmp(name, "set", 3) == 0 ? ';'
1783 : ':';
1784 int sep_i = -(int)sep_o;
1785 const uschar * list = sptr;
1786 uschar * s;
1787 gstring * list_o = NULL;
1788
1789 if (*str_target)
1790 {
1791 list_o = string_get(Ustrlen(*str_target) + Ustrlen(sptr));
1792 list_o = string_cat(list_o, *str_target);
1793 }
1794
1795 while ((s = string_nextinlist(&list, &sep_i, NULL, 0)))
1796 list_o = string_append_listele(list_o, sep_o, s);
1797
1798 if (list_o)
1799 *str_target = string_copy_perm(string_from_gstring(list_o), FALSE);
1800 }
1801 else
1802 {
1803 *str_target = sptr;
1804 freesptr = FALSE;
1805 }
1806 break;
1807
1808 case opt_rewrite:
1809 if (data_block)
1810 *USS (US data_block + (long int)(ol->value)) = sptr;
1811 else
1812 *USS (ol->value) = sptr;
1813 freesptr = FALSE;
1814 if (type == opt_rewrite)
1815 {
1816 int sep = 0;
1817 int *flagptr;
1818 uschar *p = sptr;
1819 rewrite_rule **chain;
1820 optionlist *ol3;
1821
1822 sprintf(CS name2, "*%.50s_rules", name);
1823 ol2 = find_option(name2, oltop, last);
1824 sprintf(CS name2, "*%.50s_flags", name);
1825 ol3 = find_option(name2, oltop, last);
1826
1827 if (ol2 == NULL || ol3 == NULL)
1828 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1829 "rewrite rules not available for driver");
1830
1831 if (data_block == NULL)
1832 {
1833 chain = (rewrite_rule **)(ol2->value);
1834 flagptr = (int *)(ol3->value);
1835 }
1836 else
1837 {
1838 chain = (rewrite_rule **)(US data_block + (long int)(ol2->value));
1839 flagptr = (int *)(US data_block + (long int)(ol3->value));
1840 }
1841
1842 while ((p = string_nextinlist(CUSS &sptr, &sep, big_buffer, BIG_BUFFER_SIZE)))
1843 {
1844 rewrite_rule *next = readconf_one_rewrite(p, flagptr, FALSE);
1845 *chain = next;
1846 chain = &(next->next);
1847 }
1848
1849 if ((*flagptr & (rewrite_all_envelope | rewrite_smtp)) != 0)
1850 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "rewrite rule specifies a "
1851 "non-header rewrite - not allowed at transport time -");
1852 }
1853 break;
1854
1855 /* If it was an expanded uid, see if there is any expansion to be
1856 done by checking for the presence of a $ character. If there is, save it
1857 in the corresponding *expand_user option field. Otherwise, fall through
1858 to treat it as a fixed uid. Ensure mutual exclusivity of the two kinds
1859 of data. */
1860
1861 case opt_expand_uid:
1862 sprintf(CS name2, "*expand_%.50s", name);
1863 ol2 = find_option(name2, oltop, last);
1864 if (ol2 != NULL)
1865 {
1866 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1867
1868 if (data_block == NULL)
1869 *((uschar **)(ol2->value)) = ss;
1870 else
1871 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
1872
1873 if (ss != NULL)
1874 {
1875 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1876 freesptr = FALSE;
1877 break;
1878 }
1879 }
1880
1881 /* Look up a fixed uid, and also make use of the corresponding gid
1882 if a passwd entry is returned and the gid has not been set. */
1883
1884 case opt_uid:
1885 if (!route_finduser(sptr, &pw, &uid))
1886 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found", sptr);
1887 if (data_block == NULL)
1888 *((uid_t *)(ol->value)) = uid;
1889 else
1890 *((uid_t *)(US data_block + (long int)(ol->value))) = uid;
1891
1892 /* Set the flag indicating a fixed value is set */
1893
1894 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1895
1896 /* Handle matching gid if we have a passwd entry: done by finding the
1897 same name with terminating "user" changed to "group"; if not found,
1898 ignore. Also ignore if the value is already set. */
1899
1900 if (pw == NULL) break;
1901 Ustrcpy(name+Ustrlen(name)-4, US"group");
1902 ol2 = find_option(name, oltop, last);
1903 if (ol2 != NULL && ((ol2->type & opt_mask) == opt_gid ||
1904 (ol2->type & opt_mask) == opt_expand_gid))
1905 {
1906 BOOL *set_flag = get_set_flag(name, oltop, last, data_block);
1907 if (! *set_flag)
1908 {
1909 if (data_block == NULL)
1910 *((gid_t *)(ol2->value)) = pw->pw_gid;
1911 else
1912 *((gid_t *)(US data_block + (long int)(ol2->value))) = pw->pw_gid;
1913 *set_flag = TRUE;
1914 }
1915 }
1916 break;
1917
1918 /* If it was an expanded gid, see if there is any expansion to be
1919 done by checking for the presence of a $ character. If there is, save it
1920 in the corresponding *expand_user option field. Otherwise, fall through
1921 to treat it as a fixed gid. Ensure mutual exclusivity of the two kinds
1922 of data. */
1923
1924 case opt_expand_gid:
1925 sprintf(CS name2, "*expand_%.50s", name);
1926 ol2 = find_option(name2, oltop, last);
1927 if (ol2 != NULL)
1928 {
1929 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1930
1931 if (data_block == NULL)
1932 *((uschar **)(ol2->value)) = ss;
1933 else
1934 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
1935
1936 if (ss != NULL)
1937 {
1938 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1939 freesptr = FALSE;
1940 break;
1941 }
1942 }
1943
1944 /* Handle freestanding gid */
1945
1946 case opt_gid:
1947 if (!route_findgroup(sptr, &gid))
1948 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found", sptr);
1949 if (data_block == NULL)
1950 *((gid_t *)(ol->value)) = gid;
1951 else
1952 *((gid_t *)(US data_block + (long int)(ol->value))) = gid;
1953 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1954 break;
1955
1956 /* If it was a uid list, look up each individual entry, and build
1957 a vector of uids, with a count in the first element. Put the vector
1958 in malloc store so we can free the string. (We are reading into
1959 permanent store already.) */
1960
1961 case opt_uidlist:
1962 {
1963 int count = 1;
1964 uid_t *list;
1965 int ptr = 0;
1966 const uschar *p;
1967 const uschar *op = expand_string (sptr);
1968
1969 if (op == NULL)
1970 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
1971 name, expand_string_message);
1972
1973 p = op;
1974 if (*p != 0) count++;
1975 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
1976 list = store_malloc(count*sizeof(uid_t));
1977 list[ptr++] = (uid_t)(count - 1);
1978
1979 if (data_block == NULL)
1980 *((uid_t **)(ol->value)) = list;
1981 else
1982 *((uid_t **)(US data_block + (long int)(ol->value))) = list;
1983
1984 p = op;
1985 while (count-- > 1)
1986 {
1987 int sep = 0;
1988 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
1989 if (!route_finduser(big_buffer, NULL, &uid))
1990 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found",
1991 big_buffer);
1992 list[ptr++] = uid;
1993 }
1994 }
1995 break;
1996
1997 /* If it was a gid list, look up each individual entry, and build
1998 a vector of gids, with a count in the first element. Put the vector
1999 in malloc store so we can free the string. (We are reading into permanent
2000 store already.) */
2001
2002 case opt_gidlist:
2003 {
2004 int count = 1;
2005 gid_t *list;
2006 int ptr = 0;
2007 const uschar *p;
2008 const uschar *op = expand_string (sptr);
2009
2010 if (op == NULL)
2011 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
2012 name, expand_string_message);
2013
2014 p = op;
2015 if (*p != 0) count++;
2016 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
2017 list = store_malloc(count*sizeof(gid_t));
2018 list[ptr++] = (gid_t)(count - 1);
2019
2020 if (data_block == NULL)
2021 *((gid_t **)(ol->value)) = list;
2022 else
2023 *((gid_t **)(US data_block + (long int)(ol->value))) = list;
2024
2025 p = op;
2026 while (count-- > 1)
2027 {
2028 int sep = 0;
2029 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
2030 if (!route_findgroup(big_buffer, &gid))
2031 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found",
2032 big_buffer);
2033 list[ptr++] = gid;
2034 }
2035 }
2036 break;
2037 }
2038
2039 /* Release store if the value of the string doesn't need to be kept. */
2040
2041 if (freesptr) reset_point = store_reset(reset_point);
2042 break;
2043
2044 /* Expanded boolean: if no characters follow, or if there are no dollar
2045 characters, this is a fixed-valued boolean, and we fall through. Otherwise,
2046 save the string for later expansion in the alternate place. */
2047
2048 case opt_expand_bool:
2049 if (*s != 0 && Ustrchr(s, '$') != 0)
2050 {
2051 sprintf(CS name2, "*expand_%.50s", name);
2052 if ((ol2 = find_option(name2, oltop, last)))
2053 {
2054 reset_point = store_mark();
2055 sptr = read_string(s, name);
2056 if (data_block == NULL)
2057 *((uschar **)(ol2->value)) = sptr;
2058 else
2059 *((uschar **)(US data_block + (long int)(ol2->value))) = sptr;
2060 freesptr = FALSE;
2061 break;
2062 }
2063 }
2064 /* Fall through */
2065
2066 /* Boolean: if no characters follow, the value is boolvalue. Otherwise
2067 look for yes/not/true/false. Some booleans are stored in a single bit in
2068 a single int. There's a special fudge for verify settings; without a suffix
2069 they set both xx_sender and xx_recipient. The table points to the sender
2070 value; search subsequently for the recipient. There's another special case:
2071 opt_bool_set also notes when a boolean has been set. */
2072
2073 case opt_bool:
2074 case opt_bit:
2075 case opt_bool_verify:
2076 case opt_bool_set:
2077 if (*s != 0)
2078 {
2079 s = readconf_readname(name2, 64, s);
2080 if (strcmpic(name2, US"true") == 0 || strcmpic(name2, US"yes") == 0)
2081 boolvalue = TRUE;
2082 else if (strcmpic(name2, US"false") == 0 || strcmpic(name2, US"no") == 0)
2083 boolvalue = FALSE;
2084 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2085 "\"%s\" is not a valid value for the \"%s\" option", name2, name);
2086 if (*s != 0) extra_chars_error(s, string_sprintf("\"%s\" ", name2),
2087 US"for boolean option ", name);
2088 }
2089
2090 /* Handle single-bit type. */
2091
2092 if (type == opt_bit)
2093 {
2094 int bit = 1 << ((ol->type >> 16) & 31);
2095 int *ptr = (data_block == NULL)?
2096 (int *)(ol->value) :
2097 (int *)(US data_block + (long int)ol->value);
2098 if (boolvalue) *ptr |= bit; else *ptr &= ~bit;
2099 break;
2100 }
2101
2102 /* Handle full BOOL types */
2103
2104 if (data_block == NULL)
2105 *((BOOL *)(ol->value)) = boolvalue;
2106 else
2107 *((BOOL *)(US data_block + (long int)(ol->value))) = boolvalue;
2108
2109 /* Verify fudge */
2110
2111 if (type == opt_bool_verify)
2112 {
2113 sprintf(CS name2, "%.50s_recipient", name + offset);
2114 ol2 = find_option(name2, oltop, last);
2115 if (ol2 != NULL)
2116 {
2117 if (data_block == NULL)
2118 *((BOOL *)(ol2->value)) = boolvalue;
2119 else
2120 *((BOOL *)(US data_block + (long int)(ol2->value))) = boolvalue;
2121 }
2122 }
2123
2124 /* Note that opt_bool_set type is set, if there is somewhere to do so */
2125
2126 else if (type == opt_bool_set)
2127 {
2128 sprintf(CS name2, "*set_%.50s", name + offset);
2129 ol2 = find_option(name2, oltop, last);
2130 if (ol2 != NULL)
2131 {
2132 if (data_block == NULL)
2133 *((BOOL *)(ol2->value)) = TRUE;
2134 else
2135 *((BOOL *)(US data_block + (long int)(ol2->value))) = TRUE;
2136 }
2137 }
2138 break;
2139
2140 /* Octal integer */
2141
2142 case opt_octint:
2143 intbase = 8;
2144 inttype = US"octal ";
2145
2146 /* Integer: a simple(ish) case; allow octal and hex formats, and
2147 suffixes K, M, G, and T. The different types affect output, not input. */
2148
2149 case opt_mkint:
2150 case opt_int:
2151 {
2152 uschar *endptr;
2153 long int lvalue;
2154
2155 errno = 0;
2156 lvalue = strtol(CS s, CSS &endptr, intbase);
2157
2158 if (endptr == s)
2159 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2160 inttype, name);
2161
2162 if (errno != ERANGE && *endptr)
2163 {
2164 uschar * mp = US"TtGgMmKk\0"; /* YyZzEePpTtGgMmKk */
2165
2166 if ((mp = Ustrchr(mp, *endptr)))
2167 {
2168 endptr++;
2169 do
2170 {
2171 if (lvalue > INT_MAX/1024 || lvalue < INT_MIN/1024)
2172 {
2173 errno = ERANGE;
2174 break;
2175 }
2176 lvalue *= 1024;
2177 }
2178 while (*(mp += 2));
2179 }
2180 }
2181
2182 if (errno == ERANGE || lvalue > INT_MAX || lvalue < INT_MIN)
2183 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2184 "absolute value of integer \"%s\" is too large (overflow)", s);
2185
2186 while (isspace(*endptr)) endptr++;
2187 if (*endptr)
2188 extra_chars_error(endptr, inttype, US"integer value for ", name);
2189
2190 value = (int)lvalue;
2191 }
2192
2193 if (data_block)
2194 *(int *)(US data_block + (long int)ol->value) = value;
2195 else
2196 *(int *)ol->value = value;
2197 break;
2198
2199 /* Integer held in K: again, allow formats and suffixes as above. */
2200
2201 case opt_Kint:
2202 {
2203 uschar *endptr;
2204 errno = 0;
2205 int_eximarith_t lvalue = strtol(CS s, CSS &endptr, intbase);
2206
2207 if (endptr == s)
2208 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2209 inttype, name);
2210
2211 if (errno != ERANGE && *endptr)
2212 {
2213 uschar * mp = US"ZzEePpTtGgMmKk\0"; /* YyZzEePpTtGgMmKk */
2214
2215 if ((mp = Ustrchr(mp, *endptr)))
2216 {
2217 endptr++;
2218 while (*(mp += 2))
2219 {
2220 if (lvalue > EXIM_ARITH_MAX/1024 || lvalue < EXIM_ARITH_MIN/1024)
2221 {
2222 errno = ERANGE;
2223 break;
2224 }
2225 lvalue *= 1024;
2226 }
2227 }
2228 else
2229 lvalue = (lvalue + 512)/1024;
2230 }
2231
2232 if (errno == ERANGE) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2233 "absolute value of integer \"%s\" is too large (overflow)", s);
2234
2235 while (isspace(*endptr)) endptr++;
2236 if (*endptr != 0)
2237 extra_chars_error(endptr, inttype, US"integer value for ", name);
2238
2239 if (data_block)
2240 *(int_eximarith_t *)(US data_block + (long int)ol->value) = lvalue;
2241 else
2242 *(int_eximarith_t *)ol->value = lvalue;
2243 break;
2244 }
2245
2246 /* Fixed-point number: held to 3 decimal places. */
2247
2248 case opt_fixed:
2249 if (sscanf(CS s, "%d%n", &value, &count) != 1)
2250 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2251 "fixed-point number expected for %s", name);
2252
2253 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2254 "integer \"%s\" is too large (overflow)", s);
2255
2256 value *= 1000;
2257
2258 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2259 "integer \"%s\" is too large (overflow)", s);
2260
2261 /* We get a coverity error here for using count, as it derived
2262 from the tainted buffer pointed to by s, as parsed by sscanf().
2263 By the definition of sscanf we must be accessing between start
2264 and end of s (assuming it is nul-terminated...) so ignore the error. */
2265 /* coverity[tainted_data] */
2266 if (s[count] == '.')
2267 {
2268 int d = 100;
2269 while (isdigit(s[++count]))
2270 {
2271 value += (s[count] - '0') * d;
2272 d /= 10;
2273 }
2274 }
2275
2276 while (isspace(s[count])) count++;
2277
2278 if (s[count] != 0)
2279 extra_chars_error(s+count, US"fixed-point value for ", name, US"");
2280
2281 if (data_block == NULL)
2282 *((int *)(ol->value)) = value;
2283 else
2284 *((int *)(US data_block + (long int)(ol->value))) = value;
2285 break;
2286
2287 /* There's a special routine to read time values. */
2288
2289 case opt_time:
2290 value = readconf_readtime(s, 0, FALSE);
2291 if (value < 0)
2292 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2293 name);
2294 if (data_block == NULL)
2295 *((int *)(ol->value)) = value;
2296 else
2297 *((int *)(US data_block + (long int)(ol->value))) = value;
2298 break;
2299
2300 /* A time list is a list of colon-separated times, with the first
2301 element holding the size of the list and the second the number of
2302 entries used. */
2303
2304 case opt_timelist:
2305 {
2306 int count = 0;
2307 int *list = (data_block == NULL)?
2308 (int *)(ol->value) :
2309 (int *)(US data_block + (long int)(ol->value));
2310
2311 if (*s != 0) for (count = 1; count <= list[0] - 2; count++)
2312 {
2313 int terminator = 0;
2314 uschar *snext = Ustrchr(s, ':');
2315 if (snext != NULL)
2316 {
2317 uschar *ss = snext;
2318 while (ss > s && isspace(ss[-1])) ss--;
2319 terminator = *ss;
2320 }
2321 value = readconf_readtime(s, terminator, FALSE);
2322 if (value < 0)
2323 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2324 name);
2325 if (count > 1 && value <= list[count])
2326 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2327 "time value out of order for %s", name);
2328 list[count+1] = value;
2329 if (snext == NULL) break;
2330 s = snext + 1;
2331 while (isspace(*s)) s++;
2332 }
2333
2334 if (count > list[0] - 2)
2335 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many time values for %s",
2336 name);
2337 if (count > 0 && list[2] == 0) count = 0;
2338 list[1] = count;
2339 break;
2340 }
2341
2342 case opt_func:
2343 {
2344 void (*fn)() = ol->value;
2345 fn(name, s, 0);
2346 break;
2347 }
2348 }
2349
2350 return TRUE;
2351 }
2352
2353
2354
2355 /*************************************************
2356 * Print a time value *
2357 *************************************************/
2358
2359 /*
2360 Argument: a time value in seconds
2361 Returns: pointer to a fixed buffer containing the time as a string,
2362 in readconf_readtime() format
2363 */
2364
2365 uschar *
2366 readconf_printtime(int t)
2367 {
2368 int s, m, h, d, w;
2369 uschar *p = time_buffer;
2370
2371 if (t < 0)
2372 {
2373 *p++ = '-';
2374 t = -t;
2375 }
2376
2377 s = t % 60;
2378 t /= 60;
2379 m = t % 60;
2380 t /= 60;
2381 h = t % 24;
2382 t /= 24;
2383 d = t % 7;
2384 w = t/7;
2385
2386 if (w > 0) p += sprintf(CS p, "%dw", w);
2387 if (d > 0) p += sprintf(CS p, "%dd", d);
2388 if (h > 0) p += sprintf(CS p, "%dh", h);
2389 if (m > 0) p += sprintf(CS p, "%dm", m);
2390 if (s > 0 || p == time_buffer) sprintf(CS p, "%ds", s);
2391
2392 return time_buffer;
2393 }
2394
2395
2396
2397 /*************************************************
2398 * Print an individual option value *
2399 *************************************************/
2400
2401 /* This is used by the -bP option, so prints to the standard output.
2402 The entire options list is passed in as an argument, because some options come
2403 in pairs - typically uid/gid settings, which can either be explicit numerical
2404 values, or strings to be expanded later. If the numerical value is unset,
2405 search for "*expand_<name>" to see if there is a string equivalent.
2406
2407 Arguments:
2408 ol option entry, or NULL for an unknown option
2409 name option name
2410 options_block NULL for main configuration options; otherwise points to
2411 a driver block; if the option doesn't have opt_public
2412 set, then options_block->options_block is where the item
2413 resides.
2414 oltop points to the option list in which ol exists
2415 last one more than the offset of the last entry in optop
2416 no_labels do not show "foo = " at the start.
2417
2418 Returns: boolean success
2419 */
2420
2421 static BOOL
2422 print_ol(optionlist *ol, uschar *name, void *options_block,
2423 optionlist *oltop, int last, BOOL no_labels)
2424 {
2425 struct passwd *pw;
2426 struct group *gr;
2427 optionlist *ol2;
2428 void *value;
2429 uid_t *uidlist;
2430 gid_t *gidlist;
2431 uschar *s;
2432 uschar name2[64];
2433
2434 if (!ol)
2435 {
2436 printf("%s is not a known option\n", name);
2437 return FALSE;
2438 }
2439
2440 /* Non-admin callers cannot see options that have been flagged secure by the
2441 "hide" prefix. */
2442
2443 if (!f.admin_user && ol->type & opt_secure)
2444 {
2445 if (no_labels)
2446 printf("%s\n", hidden);
2447 else
2448 printf("%s = %s\n", name, hidden);
2449 return TRUE;
2450 }
2451
2452 /* Else show the value of the option */
2453
2454 value = ol->value;
2455 if (options_block)
2456 {
2457 if (!(ol->type & opt_public))
2458 options_block = (void *)(((driver_instance *)options_block)->options_block);
2459 value = (void *)(US options_block + (long int)value);
2460 }
2461
2462 switch(ol->type & opt_mask)
2463 {
2464 case opt_stringptr:
2465 case opt_rewrite: /* Show the text value */
2466 s = *(USS value);
2467 if (!no_labels) printf("%s = ", name);
2468 printf("%s\n", s ? string_printing2(s, FALSE) : US"");
2469 break;
2470
2471 case opt_int:
2472 if (!no_labels) printf("%s = ", name);
2473 printf("%d\n", *((int *)value));
2474 break;
2475
2476 case opt_mkint:
2477 {
2478 int x = *((int *)value);
2479 if (x != 0 && (x & 1023) == 0)
2480 {
2481 int c = 'K';
2482 x >>= 10;
2483 if ((x & 1023) == 0)
2484 {
2485 c = 'M';
2486 x >>= 10;
2487 }
2488 if (!no_labels) printf("%s = ", name);
2489 printf("%d%c\n", x, c);
2490 }
2491 else
2492 {
2493 if (!no_labels) printf("%s = ", name);
2494 printf("%d\n", x);
2495 }
2496 }
2497 break;
2498
2499 case opt_Kint:
2500 {
2501 int_eximarith_t x = *((int_eximarith_t *)value);
2502 if (!no_labels) printf("%s = ", name);
2503 if (x == 0) printf("0\n");
2504 else if ((x & ((1<<30)-1)) == 0) printf(PR_EXIM_ARITH "T\n", x >> 30);
2505 else if ((x & ((1<<20)-1)) == 0) printf(PR_EXIM_ARITH "G\n", x >> 20);
2506 else if ((x & ((1<<10)-1)) == 0) printf(PR_EXIM_ARITH "M\n", x >> 10);
2507 else printf(PR_EXIM_ARITH "K\n", x);
2508 }
2509 break;
2510
2511 case opt_octint:
2512 if (!no_labels) printf("%s = ", name);
2513 printf("%#o\n", *((int *)value));
2514 break;
2515
2516 /* Can be negative only when "unset", in which case integer */
2517
2518 case opt_fixed:
2519 {
2520 int x = *((int *)value);
2521 int f = x % 1000;
2522 int d = 100;
2523 if (x < 0) printf("%s =\n", name); else
2524 {
2525 if (!no_labels) printf("%s = ", name);
2526 printf("%d.", x/1000);
2527 do
2528 {
2529 printf("%d", f/d);
2530 f %= d;
2531 d /= 10;
2532 }
2533 while (f != 0);
2534 printf("\n");
2535 }
2536 }
2537 break;
2538
2539 /* If the numerical value is unset, try for the string value */
2540
2541 case opt_expand_uid:
2542 if (! *get_set_flag(name, oltop, last, options_block))
2543 {
2544 sprintf(CS name2, "*expand_%.50s", name);
2545 if ((ol2 = find_option(name2, oltop, last)))
2546 {
2547 void *value2 = ol2->value;
2548 if (options_block)
2549 value2 = (void *)(US options_block + (long int)value2);
2550 s = *(USS value2);
2551 if (!no_labels) printf("%s = ", name);
2552 printf("%s\n", s ? string_printing(s) : US"");
2553 break;
2554 }
2555 }
2556
2557 /* Else fall through */
2558
2559 case opt_uid:
2560 if (!no_labels) printf("%s = ", name);
2561 if (! *get_set_flag(name, oltop, last, options_block))
2562 printf("\n");
2563 else
2564 if ((pw = getpwuid(*((uid_t *)value))))
2565 printf("%s\n", pw->pw_name);
2566 else
2567 printf("%ld\n", (long int)(*((uid_t *)value)));
2568 break;
2569
2570 /* If the numerical value is unset, try for the string value */
2571
2572 case opt_expand_gid:
2573 if (! *get_set_flag(name, oltop, last, options_block))
2574 {
2575 sprintf(CS name2, "*expand_%.50s", name);
2576 if ( (ol2 = find_option(name2, oltop, last))
2577 && (ol2->type & opt_mask) == opt_stringptr)
2578 {
2579 void *value2 = ol2->value;
2580 if (options_block)
2581 value2 = (void *)(US options_block + (long int)value2);
2582 s = *(USS value2);
2583 if (!no_labels) printf("%s = ", name);
2584 printf("%s\n", s ? string_printing(s) : US"");
2585 break;
2586 }
2587 }
2588
2589 /* Else fall through */
2590
2591 case opt_gid:
2592 if (!no_labels) printf("%s = ", name);
2593 if (! *get_set_flag(name, oltop, last, options_block))
2594 printf("\n");
2595 else
2596 if ((gr = getgrgid(*((int *)value))))
2597 printf("%s\n", gr->gr_name);
2598 else
2599 printf("%ld\n", (long int)(*((int *)value)));
2600 break;
2601
2602 case opt_uidlist:
2603 uidlist = *((uid_t **)value);
2604 if (!no_labels) printf("%s =", name);
2605 if (uidlist)
2606 {
2607 uschar sep = no_labels ? '\0' : ' ';
2608 for (int i = 1; i <= (int)(uidlist[0]); i++)
2609 {
2610 uschar *name = NULL;
2611 if ((pw = getpwuid(uidlist[i]))) name = US pw->pw_name;
2612 if (sep != '\0') printf("%c", sep);
2613 if (name) printf("%s", name);
2614 else printf("%ld", (long int)(uidlist[i]));
2615 sep = ':';
2616 }
2617 }
2618 printf("\n");
2619 break;
2620
2621 case opt_gidlist:
2622 gidlist = *((gid_t **)value);
2623 if (!no_labels) printf("%s =", name);
2624 if (gidlist)
2625 {
2626 uschar sep = no_labels ? '\0' : ' ';
2627 for (int i = 1; i <= (int)(gidlist[0]); i++)
2628 {
2629 uschar *name = NULL;
2630 if ((gr = getgrgid(gidlist[i]))) name = US gr->gr_name;
2631 if (sep != '\0') printf("%c", sep);
2632 if (name) printf("%s", name);
2633 else printf("%ld", (long int)(gidlist[i]));
2634 sep = ':';
2635 }
2636 }
2637 printf("\n");
2638 break;
2639
2640 case opt_time:
2641 if (!no_labels) printf("%s = ", name);
2642 printf("%s\n", readconf_printtime(*((int *)value)));
2643 break;
2644
2645 case opt_timelist:
2646 {
2647 int *list = (int *)value;
2648 if (!no_labels) printf("%s = ", name);
2649 for (int i = 0; i < list[1]; i++)
2650 printf("%s%s", i == 0 ? "" : ":", readconf_printtime(list[i+2]));
2651 printf("\n");
2652 }
2653 break;
2654
2655 case opt_bit:
2656 printf("%s%s\n", ((*((int *)value)) & (1 << ((ol->type >> 16) & 31)))?
2657 "" : "no_", name);
2658 break;
2659
2660 case opt_expand_bool:
2661 sprintf(CS name2, "*expand_%.50s", name);
2662 if ((ol2 = find_option(name2, oltop, last)) && ol2->value)
2663 {
2664 void *value2 = ol2->value;
2665 if (options_block)
2666 value2 = (void *)(US options_block + (long int)value2);
2667 s = *(USS value2);
2668 if (s)
2669 {
2670 if (!no_labels) printf("%s = ", name);
2671 printf("%s\n", string_printing(s));
2672 break;
2673 }
2674 /* s == NULL => string not set; fall through */
2675 }
2676
2677 /* Fall through */
2678
2679 case opt_bool:
2680 case opt_bool_verify:
2681 case opt_bool_set:
2682 printf("%s%s\n", (*((BOOL *)value))? "" : "no_", name);
2683 break;
2684
2685 case opt_func:
2686 {
2687 void (*fn)() = ol->value;
2688 fn(name, NULL, no_labels ? opt_fn_print : opt_fn_print|opt_fn_print_label);
2689 break;
2690 }
2691 }
2692 return TRUE;
2693 }
2694
2695
2696
2697 /*************************************************
2698 * Print value from main configuration *
2699 *************************************************/
2700
2701 /* This function, called as a result of encountering the -bP option,
2702 causes the value of any main configuration variable to be output if the
2703 second argument is NULL. There are some special values:
2704
2705 all print all main configuration options
2706 config_file print the name of the configuration file
2707 (configure_file will still work, for backward
2708 compatibility)
2709 routers print the routers' configurations
2710 transports print the transports' configuration
2711 authenticators print the authenticators' configuration
2712 macros print the macros' configuration
2713 router_list print a list of router names
2714 transport_list print a list of transport names
2715 authenticator_list print a list of authentication mechanism names
2716 macro_list print a list of macro names
2717 +name print a named list item
2718 local_scan print the local_scan options
2719 config print the configuration as it is parsed
2720 environment print the used execution environment
2721
2722 If the second argument is not NULL, it must be one of "router", "transport",
2723 "authenticator" or "macro" in which case the first argument identifies the
2724 driver whose options are to be printed.
2725
2726 Arguments:
2727 name option name if type == NULL; else driver name
2728 type NULL or driver type name, as described above
2729 no_labels avoid the "foo = " at the start of an item
2730
2731 Returns: Boolean success
2732 */
2733
2734 BOOL
2735 readconf_print(uschar *name, uschar *type, BOOL no_labels)
2736 {
2737 BOOL names_only = FALSE;
2738 optionlist *ol2 = NULL;
2739 driver_instance *d = NULL;
2740 int size = 0;
2741
2742 if (!type)
2743 {
2744 if (*name == '+')
2745 {
2746 tree_node *t;
2747 BOOL found = FALSE;
2748 static uschar *types[] = { US"address", US"domain", US"host",
2749 US"localpart" };
2750 static tree_node **anchors[] = { &addresslist_anchor, &domainlist_anchor,
2751 &hostlist_anchor, &localpartlist_anchor };
2752
2753 for (int i = 0; i < 4; i++)
2754 if ((t = tree_search(*(anchors[i]), name+1)))
2755 {
2756 found = TRUE;
2757 if (no_labels)
2758 printf("%s\n", ((namedlist_block *)(t->data.ptr))->string);
2759 else
2760 printf("%slist %s = %s\n", types[i], name+1,
2761 ((namedlist_block *)(t->data.ptr))->string);
2762 }
2763
2764 if (!found)
2765 printf("no address, domain, host, or local part list called \"%s\" "
2766 "exists\n", name+1);
2767
2768 return found;
2769 }
2770
2771 if ( Ustrcmp(name, "configure_file") == 0
2772 || Ustrcmp(name, "config_file") == 0)
2773 {
2774 printf("%s\n", CS config_main_filename);
2775 return TRUE;
2776 }
2777
2778 if (Ustrcmp(name, "all") == 0)
2779 {
2780 for (optionlist * ol = optionlist_config;
2781 ol < optionlist_config + nelem(optionlist_config); ol++)
2782 if (!(ol->type & opt_hidden))
2783 (void) print_ol(ol, US ol->name, NULL,
2784 optionlist_config, nelem(optionlist_config),
2785 no_labels);
2786 return TRUE;
2787 }
2788
2789 if (Ustrcmp(name, "local_scan") == 0)
2790 {
2791 #ifndef LOCAL_SCAN_HAS_OPTIONS
2792 printf("local_scan() options are not supported\n");
2793 return FALSE;
2794 #else
2795 for (optionlist * ol = local_scan_options;
2796 ol < local_scan_options + local_scan_options_count; ol++)
2797 (void) print_ol(ol, US ol->name, NULL, local_scan_options,
2798 local_scan_options_count, no_labels);
2799 return TRUE;
2800 #endif
2801 }
2802
2803 if (Ustrcmp(name, "config") == 0)
2804 {
2805 print_config(f.admin_user, no_labels);
2806 return TRUE;
2807 }
2808
2809 if (Ustrcmp(name, "routers") == 0)
2810 {
2811 type = US"router";
2812 name = NULL;
2813 }
2814 else if (Ustrcmp(name, "transports") == 0)
2815 {
2816 type = US"transport";
2817 name = NULL;
2818 }
2819 else if (Ustrcmp(name, "authenticators") == 0)
2820 {
2821 type = US"authenticator";
2822 name = NULL;
2823 }
2824 else if (Ustrcmp(name, "macros") == 0)
2825 {
2826 type = US"macro";
2827 name = NULL;
2828 }
2829 else if (Ustrcmp(name, "router_list") == 0)
2830 {
2831 type = US"router";
2832 name = NULL;
2833 names_only = TRUE;
2834 }
2835 else if (Ustrcmp(name, "transport_list") == 0)
2836 {
2837 type = US"transport";
2838 name = NULL;
2839 names_only = TRUE;
2840 }
2841 else if (Ustrcmp(name, "authenticator_list") == 0)
2842 {
2843 type = US"authenticator";
2844 name = NULL;
2845 names_only = TRUE;
2846 }
2847 else if (Ustrcmp(name, "macro_list") == 0)
2848 {
2849 type = US"macro";
2850 name = NULL;
2851 names_only = TRUE;
2852 }
2853 else if (Ustrcmp(name, "environment") == 0)
2854 {
2855 if (environ)
2856 {
2857 uschar ** p;
2858 for (p = USS environ; *p; p++) ;
2859 qsort(environ, p - USS environ, sizeof(*p), string_compare_by_pointer);
2860
2861 for (p = USS environ; *p; p++)
2862 {
2863 uschar * q;
2864 if (no_labels && (q = Ustrchr(*p, '='))) *q = '\0';
2865 puts(CS *p);
2866 }
2867 }
2868 return TRUE;
2869 }
2870
2871 else
2872 return print_ol(find_option(name,
2873 optionlist_config, nelem(optionlist_config)),
2874 name, NULL, optionlist_config, nelem(optionlist_config), no_labels);
2875 }
2876
2877 /* Handle the options for a router or transport. Skip options that are flagged
2878 as hidden. Some of these are options with names starting with '*', used for
2879 internal alternative representations of other options (which the printing
2880 function will sort out). Others are synonyms kept for backward compatibility.
2881 */
2882
2883 if (Ustrcmp(type, "router") == 0)
2884 {
2885 d = (driver_instance *)routers;
2886 ol2 = optionlist_routers;
2887 size = optionlist_routers_size;
2888 }
2889 else if (Ustrcmp(type, "transport") == 0)
2890 {
2891 d = (driver_instance *)transports;
2892 ol2 = optionlist_transports;
2893 size = optionlist_transports_size;
2894 }
2895 else if (Ustrcmp(type, "authenticator") == 0)
2896 {
2897 d = (driver_instance *)auths;
2898 ol2 = optionlist_auths;
2899 size = optionlist_auths_size;
2900 }
2901
2902 else if (Ustrcmp(type, "macro") == 0)
2903 {
2904 /* People store passwords in macros and they were previously not available
2905 for printing. So we have an admin_users restriction. */
2906 if (!f.admin_user)
2907 {
2908 fprintf(stderr, "exim: permission denied\n");
2909 return FALSE;
2910 }
2911 for (macro_item * m = macros; m; m = m->next)
2912 if (!name || Ustrcmp(name, m->name) == 0)
2913 {
2914 if (names_only)
2915 printf("%s\n", CS m->name);
2916 else if (no_labels)
2917 printf("%s\n", CS m->replacement);
2918 else
2919 printf("%s=%s\n", CS m->name, CS m->replacement);
2920 if (name)
2921 return TRUE;
2922 }
2923 if (!name) return TRUE;
2924
2925 printf("%s %s not found\n", type, name);
2926 return FALSE;
2927 }
2928
2929 if (names_only)
2930 {
2931 for (; d; d = d->next) printf("%s\n", CS d->name);
2932 return TRUE;
2933 }
2934
2935 /* Either search for a given driver, or print all of them */
2936
2937 for (; d; d = d->next)
2938 {
2939 BOOL rc = FALSE;
2940 if (!name)
2941 printf("\n%s %s:\n", d->name, type);
2942 else if (Ustrcmp(d->name, name) != 0) continue;
2943
2944 for (optionlist * ol = ol2; ol < ol2 + size; ol++)
2945 if (!(ol->type & opt_hidden))
2946 rc |= print_ol(ol, US ol->name, d, ol2, size, no_labels);
2947
2948 for (optionlist * ol = d->info->options;
2949 ol < d->info->options + *(d->info->options_count); ol++)
2950 if (!(ol->type & opt_hidden))
2951 rc |= print_ol(ol, US ol->name, d, d->info->options,
2952 *d->info->options_count, no_labels);
2953
2954 if (name) return rc;
2955 }
2956 if (!name) return TRUE;
2957
2958 printf("%s %s not found\n", type, name);
2959 return FALSE;
2960 }
2961
2962
2963
2964 /*************************************************
2965 * Read a named list item *
2966 *************************************************/
2967
2968 /* This function reads a name and a list (i.e. string). The name is used to
2969 save the list in a tree, sorted by its name. Each entry also has a number,
2970 which can be used for caching tests, but if the string contains any expansion
2971 items other than $key, the number is set negative to inhibit caching. This
2972 mechanism is used for domain, host, and address lists that are referenced by
2973 the "+name" syntax.
2974
2975 Arguments:
2976 anchorp points to the tree anchor
2977 numberp points to the current number for this tree
2978 max the maximum number permitted
2979 s the text of the option line, starting immediately after the name
2980 of the list type
2981 tname the name of the list type, for messages
2982
2983 Returns: nothing
2984 */
2985
2986 static void
2987 read_named_list(tree_node **anchorp, int *numberp, int max, uschar *s,
2988 uschar *tname)
2989 {
2990 BOOL forcecache = FALSE;
2991 uschar *ss;
2992 tree_node *t;
2993 namedlist_block *nb = store_get(sizeof(namedlist_block), FALSE);
2994
2995 if (Ustrncmp(s, "_cache", 6) == 0)
2996 {
2997 forcecache = TRUE;
2998 s += 6;
2999 }
3000
3001 if (!isspace(*s))
3002 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unrecognized configuration line");
3003
3004 if (*numberp >= max)
3005 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many named %ss (max is %d)\n",
3006 tname, max);
3007
3008 while (isspace(*s)) s++;
3009 ss = s;
3010 while (isalnum(*s) || *s == '_') s++;
3011 t = store_get(sizeof(tree_node) + s-ss, is_tainted(ss));
3012 Ustrncpy(t->name, ss, s-ss);
3013 t->name[s-ss] = 0;
3014 while (isspace(*s)) s++;
3015
3016 if (!tree_insertnode(anchorp, t))
3017 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3018 "duplicate name \"%s\" for a named %s", t->name, tname);
3019
3020 t->data.ptr = nb;
3021 nb->number = *numberp;
3022 *numberp += 1;
3023
3024 if (*s++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3025 "missing '=' after \"%s\"", t->name);
3026 while (isspace(*s)) s++;
3027 nb->string = read_string(s, t->name);
3028 nb->cache_data = NULL;
3029
3030 /* Check the string for any expansions; if any are found, mark this list
3031 uncacheable unless the user has explicited forced caching. */
3032
3033 if (!forcecache && Ustrchr(nb->string, '$') != NULL) nb->number = -1;
3034 }
3035
3036
3037
3038
3039 /*************************************************
3040 * Unpick data for a rate limit *
3041 *************************************************/
3042
3043 /* This function is called to unpick smtp_ratelimit_{mail,rcpt} into four
3044 separate values.
3045
3046 Arguments:
3047 s string, in the form t,b,f,l
3048 where t is the threshold (integer)
3049 b is the initial delay (time)
3050 f is the multiplicative factor (fixed point)
3051 k is the maximum time (time)
3052 threshold where to store threshold
3053 base where to store base in milliseconds
3054 factor where to store factor in milliseconds
3055 limit where to store limit
3056
3057 Returns: nothing (panics on error)
3058 */
3059
3060 static void
3061 unpick_ratelimit(uschar *s, int *threshold, int *base, double *factor,
3062 int *limit)
3063 {
3064 uschar bstring[16], lstring[16];
3065
3066 if (sscanf(CS s, "%d, %15[0123456789smhdw.], %lf, %15s", threshold, bstring,
3067 factor, lstring) == 4)
3068 {
3069 *base = readconf_readtime(bstring, 0, TRUE);
3070 *limit = readconf_readtime(lstring, 0, TRUE);
3071 if (*base >= 0 && *limit >= 0) return;
3072 }
3073 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "malformed ratelimit data: %s", s);
3074 }
3075
3076
3077
3078
3079 /*************************************************
3080 * Read main configuration options *
3081 *************************************************/
3082
3083 /* This function is the first to be called for configuration reading. It
3084 opens the configuration file and reads general configuration settings until
3085 it reaches the end of the configuration section. The file is then left open so
3086 that the remaining configuration data can subsequently be read if needed for
3087 this run of Exim.
3088
3089 The configuration file must be owned either by root or exim, and be writeable
3090 only by root or uid/gid exim. The values for Exim's uid and gid can be changed
3091 in the config file, so the test is done on the compiled in values. A slight
3092 anomaly, to be carefully documented.
3093
3094 The name of the configuration file is taken from a list that is included in the
3095 binary of Exim. It can be altered from the command line, but if that is done,
3096 root privilege is immediately withdrawn unless the caller is root or exim.
3097 The first file on the list that exists is used.
3098
3099 For use on multiple systems that share file systems, first look for a
3100 configuration file whose name has the current node name on the end. If that is
3101 not found, try the generic name. For really contorted configurations, that run
3102 multiple Exims with different uid settings, first try adding the effective uid
3103 before the node name. These complications are going to waste resources on most
3104 systems. Therefore they are available only when requested by compile-time
3105 options. */
3106
3107 void
3108 readconf_main(BOOL nowarn)
3109 {
3110 int sep = 0;
3111 struct stat statbuf;
3112 uschar *s, *filename;
3113 const uschar *list = config_main_filelist;
3114
3115 /* Loop through the possible file names */
3116
3117 while((filename = string_nextinlist(&list, &sep, big_buffer, big_buffer_size)))
3118 {
3119
3120 /* Cut out all the fancy processing unless specifically wanted */
3121
3122 #if defined(CONFIGURE_FILE_USE_NODE) || defined(CONFIGURE_FILE_USE_EUID)
3123 uschar *suffix = filename + Ustrlen(filename);
3124
3125 /* Try for the node-specific file if a node name exists */
3126
3127 #ifdef CONFIGURE_FILE_USE_NODE
3128 struct utsname uts;
3129 if (uname(&uts) >= 0)
3130 {
3131 #ifdef CONFIGURE_FILE_USE_EUID
3132 sprintf(CS suffix, ".%ld.%.256s", (long int)original_euid, uts.nodename);
3133 config_file = Ufopen(filename, "rb");
3134 if (config_file == NULL)
3135 #endif /* CONFIGURE_FILE_USE_EUID */
3136 {
3137 sprintf(CS suffix, ".%.256s", uts.nodename);
3138 config_file = Ufopen(filename, "rb");
3139 }
3140 }
3141 #endif /* CONFIGURE_FILE_USE_NODE */
3142
3143 /* Otherwise, try the generic name, possibly with the euid added */
3144
3145 #ifdef CONFIGURE_FILE_USE_EUID
3146 if (config_file == NULL)
3147 {
3148 sprintf(CS suffix, ".%ld", (long int)original_euid);
3149 config_file = Ufopen(filename, "rb");
3150 }
3151 #endif /* CONFIGURE_FILE_USE_EUID */
3152
3153 /* Finally, try the unadorned name */
3154
3155 if (config_file == NULL)
3156 {
3157 *suffix = 0;
3158 config_file = Ufopen(filename, "rb");
3159 }
3160 #else /* if neither defined */
3161
3162 /* This is the common case when the fancy processing is not included. */
3163
3164 config_file = Ufopen(filename, "rb");
3165 #endif
3166
3167 /* If the file does not exist, continue to try any others. For any other
3168 error, break out (and die). */
3169
3170 if (config_file != NULL || errno != ENOENT) break;
3171 }
3172
3173 /* On success, save the name for verification; config_filename is used when
3174 logging configuration errors (it changes for .included files) whereas
3175 config_main_filename is the name shown by -bP. Failure to open a configuration
3176 file is a serious disaster. */
3177
3178 if (config_file)
3179 {
3180 uschar *last_slash = Ustrrchr(filename, '/');
3181 config_filename = config_main_filename = string_copy(filename);
3182
3183 /* The config_main_directory we need for the $config_dir expansion.
3184 config_main_filename we need for $config_file expansion.
3185 And config_dir is the directory of the current configuration, used for
3186 relative .includes. We do need to know it's name, as we change our working
3187 directory later. */
3188
3189 if (filename[0] == '/')
3190 config_main_directory = last_slash == filename ? US"/" : string_copyn(filename, last_slash - filename);
3191 else
3192 {
3193 /* relative configuration file name: working dir + / + basename(filename) */
3194
3195 uschar buf[PATH_MAX];
3196 gstring * g;
3197
3198 if (os_getcwd(buf, PATH_MAX) == NULL)
3199 {
3200 perror("exim: getcwd");
3201 exit(EXIT_FAILURE);
3202 }
3203 g = string_cat(NULL, buf);
3204
3205 /* If the dir does not end with a "/", append one */
3206 if (g->s[g->ptr-1] != '/')
3207 g = string_catn(g, US"/", 1);
3208
3209 /* If the config file contains a "/", extract the directory part */
3210 if (last_slash)
3211 g = string_catn(g, filename, last_slash - filename);
3212
3213 config_main_directory = string_from_gstring(g);
3214 }
3215 config_directory = config_main_directory;
3216 }
3217 else
3218 {
3219 if (filename == NULL)
3220 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "non-existent configuration file(s): "
3221 "%s", config_main_filelist);
3222 else
3223 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "%s", string_open_failed(errno,
3224 "configuration file %s", filename));
3225 }
3226
3227 /* Now, once we found and opened our configuration file, we change the directory
3228 to a safe place. Later we change to $spool_directory. */
3229
3230 if (Uchdir("/") < 0)
3231 {
3232 perror("exim: chdir `/': ");
3233 exit(EXIT_FAILURE);
3234 }
3235
3236 /* Check the status of the file we have opened, if we have retained root
3237 privileges and the file isn't /dev/null (which *should* be 0666). */
3238
3239 if (f.trusted_config && Ustrcmp(filename, US"/dev/null"))
3240 {
3241 if (fstat(fileno(config_file), &statbuf) != 0)
3242 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to stat configuration file %s",
3243 big_buffer);
3244
3245 if ((statbuf.st_uid != root_uid /* owner not root */
3246 #ifdef CONFIGURE_OWNER
3247 && statbuf.st_uid != config_uid /* owner not the special one */
3248 #endif
3249 ) || /* or */
3250 (statbuf.st_gid != root_gid /* group not root & */
3251 #ifdef CONFIGURE_GROUP
3252 && statbuf.st_gid != config_gid /* group not the special one */
3253 #endif
3254 && (statbuf.st_mode & 020) != 0) || /* group writeable */
3255 /* or */
3256 ((statbuf.st_mode & 2) != 0)) /* world writeable */
3257
3258 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Exim configuration file %s has the "
3259 "wrong owner, group, or mode", big_buffer);
3260
3261 /* Do a dummy store-allocation of a size related to the (toplevel) file size.
3262 This assumes we will need this much storage to handle all the allocations
3263 during startup; it won't help when .include is being used. When it does, it
3264 will cut down on the number of store blocks (and malloc calls, and sbrk
3265 syscalls). It also assume we're on the relevant pool. */
3266
3267 if (statbuf.st_size > 8192)
3268 {
3269 rmark r = store_mark();
3270 void * dummy = store_get((int)statbuf.st_size, FALSE);
3271 store_reset(r);
3272 }
3273 }
3274
3275 /* Process the main configuration settings. They all begin with a lower case
3276 letter. If we see something starting with an upper case letter, it is taken as
3277 a macro definition. */
3278
3279 while ((s = get_config_line()))
3280 {
3281 if (config_lineno == 1 && Ustrstr(s, "\xef\xbb\xbf") == s)
3282 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3283 "found unexpected BOM (Byte Order Mark)");
3284
3285 if (isupper(s[0]))
3286 { if (!macro_read_assignment(s)) exim_exit(EXIT_FAILURE, US""); }
3287
3288 else if (Ustrncmp(s, "domainlist", 10) == 0)
3289 read_named_list(&domainlist_anchor, &domainlist_count,
3290 MAX_NAMED_LIST, s+10, US"domain list");
3291
3292 else if (Ustrncmp(s, "hostlist", 8) == 0)
3293 read_named_list(&hostlist_anchor, &hostlist_count,
3294 MAX_NAMED_LIST, s+8, US"host list");
3295
3296 else if (Ustrncmp(s, US"addresslist", 11) == 0)
3297 read_named_list(&addresslist_anchor, &addresslist_count,
3298 MAX_NAMED_LIST, s+11, US"address list");
3299
3300 else if (Ustrncmp(s, US"localpartlist", 13) == 0)
3301 read_named_list(&localpartlist_anchor, &localpartlist_count,
3302 MAX_NAMED_LIST, s+13, US"local part list");
3303
3304 else
3305 (void) readconf_handle_option(s, optionlist_config, optionlist_config_size,
3306 NULL, US"main option \"%s\" unknown");
3307 }
3308
3309
3310 /* If local_sender_retain is set, local_from_check must be unset. */
3311
3312 if (local_sender_retain && local_from_check)
3313 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "both local_from_check and "
3314 "local_sender_retain are set; this combination is not allowed");
3315
3316 /* If the timezone string is empty, set it to NULL, implying no TZ variable
3317 wanted. */
3318
3319 if (timezone_string != NULL && *timezone_string == 0) timezone_string = NULL;
3320
3321 /* The max retry interval must not be greater than 24 hours. */
3322
3323 if (retry_interval_max > 24*60*60) retry_interval_max = 24*60*60;
3324
3325 /* remote_max_parallel must be > 0 */
3326
3327 if (remote_max_parallel <= 0) remote_max_parallel = 1;
3328
3329 /* Save the configured setting of freeze_tell, so we can re-instate it at the
3330 start of a new SMTP message. */
3331
3332 freeze_tell_config = freeze_tell;
3333
3334 /* The primary host name may be required for expansion of spool_directory
3335 and log_file_path, so make sure it is set asap. It is obtained from uname(),
3336 but if that yields an unqualified value, make a FQDN by using gethostbyname to
3337 canonize it. Some people like upper case letters in their host names, so we
3338 don't force the case. */
3339
3340 if (primary_hostname == NULL)
3341 {
3342 const uschar *hostname;
3343 struct utsname uts;
3344 if (uname(&uts) < 0)
3345 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "uname() failed to yield host name");
3346 hostname = US uts.nodename;
3347
3348 if (Ustrchr(hostname, '.') == NULL)
3349 {
3350 int af = AF_INET;
3351 struct hostent *hostdata;
3352
3353 #if HAVE_IPV6
3354 if (!disable_ipv6 && (dns_ipv4_lookup == NULL ||
3355 match_isinlist(hostname, CUSS &dns_ipv4_lookup, 0, NULL, NULL,
3356 MCL_DOMAIN, TRUE, NULL) != OK))
3357 af = AF_INET6;
3358 #else
3359 af = AF_INET;
3360 #endif
3361
3362 for (;;)
3363 {
3364 #if HAVE_IPV6
3365 #if HAVE_GETIPNODEBYNAME
3366 int error_num;
3367 hostdata = getipnodebyname(CS hostname, af, 0, &error_num);
3368 #else
3369 hostdata = gethostbyname2(CS hostname, af);
3370 #endif
3371 #else
3372 hostdata = gethostbyname(CS hostname);
3373 #endif
3374
3375 if (hostdata != NULL)
3376 {
3377 hostname = US hostdata->h_name;
3378 break;
3379 }
3380
3381 if (af == AF_INET) break;
3382 af = AF_INET;
3383 }
3384 }
3385
3386 primary_hostname = string_copy(hostname);
3387 }
3388
3389 /* Set up default value for smtp_active_hostname */
3390
3391 smtp_active_hostname = primary_hostname;
3392
3393 /* If spool_directory wasn't set in the build-time configuration, it must have
3394 got set above. Of course, writing to the log may not work if log_file_path is
3395 not set, but it will at least get to syslog or somewhere, with any luck. */
3396
3397 if (!*spool_directory)
3398 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "spool_directory undefined: cannot "
3399 "proceed");
3400
3401 /* Expand the spool directory name; it may, for example, contain the primary
3402 host name. Same comment about failure. */
3403
3404 if (!(s = expand_string(spool_directory)))
3405 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand spool_directory "
3406 "\"%s\": %s", spool_directory, expand_string_message);
3407 spool_directory = s;
3408
3409 /* Expand log_file_path, which must contain "%s" in any component that isn't
3410 the null string or "syslog". It is also allowed to contain one instance of %D
3411 or %M. However, it must NOT contain % followed by anything else. */
3412
3413 if (*log_file_path)
3414 {
3415 const uschar *ss, *sss;
3416 int sep = ':'; /* Fixed for log file path */
3417 if (!(s = expand_string(log_file_path)))
3418 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand log_file_path "
3419 "\"%s\": %s", log_file_path, expand_string_message);
3420
3421 ss = s;
3422 while ((sss = string_nextinlist(&ss, &sep, big_buffer, big_buffer_size)))
3423 {
3424 uschar *t;
3425 if (sss[0] == 0 || Ustrcmp(sss, "syslog") == 0) continue;
3426 if (!(t = Ustrstr(sss, "%s")))
3427 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" does not "
3428 "contain \"%%s\"", sss);
3429 *t = 'X';
3430 if ((t = Ustrchr(sss, '%')))
3431 if ((t[1] != 'D' && t[1] != 'M') || Ustrchr(t+2, '%') != NULL)
3432 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" contains "
3433 "unexpected \"%%\" character", s);
3434 }
3435
3436 log_file_path = s;
3437 }
3438
3439 /* Interpret syslog_facility into an integer argument for 'ident' param to
3440 openlog(). Default is LOG_MAIL set in globals.c. Allow the user to omit the
3441 leading "log_". */
3442
3443 if (syslog_facility_str)
3444 {
3445 int i;
3446 uschar *s = syslog_facility_str;
3447
3448 if ((Ustrlen(syslog_facility_str) >= 4) &&
3449 (strncmpic(syslog_facility_str, US"log_", 4) == 0))
3450 s += 4;
3451
3452 for (i = 0; i < syslog_list_size; i++)
3453 if (strcmpic(s, syslog_list[i].name) == 0)
3454 {
3455 syslog_facility = syslog_list[i].value;
3456 break;
3457 }
3458
3459 if (i >= syslog_list_size)
3460 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3461 "failed to interpret syslog_facility \"%s\"", syslog_facility_str);
3462 }
3463
3464 /* Expand pid_file_path */
3465
3466 if (*pid_file_path != 0)
3467 {
3468 if (!(s = expand_string(pid_file_path)))
3469 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand pid_file_path "
3470 "\"%s\": %s", pid_file_path, expand_string_message);
3471 pid_file_path = s;
3472 }
3473
3474 /* Set default value of process_log_path */
3475
3476 if (!process_log_path || *process_log_path =='\0')
3477 process_log_path = string_sprintf("%s/exim-process.info", spool_directory);
3478
3479 /* Compile the regex for matching a UUCP-style "From_" line in an incoming
3480 message. */
3481
3482 regex_From = regex_must_compile(uucp_from_pattern, FALSE, TRUE);
3483
3484 /* Unpick the SMTP rate limiting options, if set */
3485
3486 if (smtp_ratelimit_mail)
3487 unpick_ratelimit(smtp_ratelimit_mail, &smtp_rlm_threshold,
3488 &smtp_rlm_base, &smtp_rlm_factor, &smtp_rlm_limit);
3489
3490 if (smtp_ratelimit_rcpt)
3491 unpick_ratelimit(smtp_ratelimit_rcpt, &smtp_rlr_threshold,
3492 &smtp_rlr_base, &smtp_rlr_factor, &smtp_rlr_limit);
3493
3494 /* The qualify domains default to the primary host name */
3495
3496 if (!qualify_domain_sender)
3497 qualify_domain_sender = primary_hostname;
3498 if (!qualify_domain_recipient)
3499 qualify_domain_recipient = qualify_domain_sender;
3500
3501 /* Setting system_filter_user in the configuration sets the gid as well if a
3502 name is given, but a numerical value does not. */
3503
3504 if (system_filter_uid_set && !system_filter_gid_set)
3505 {
3506 struct passwd *pw = getpwuid(system_filter_uid);
3507 if (!pw)
3508 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Failed to look up uid %ld",
3509 (long int)system_filter_uid);
3510 system_filter_gid = pw->pw_gid;
3511 system_filter_gid_set = TRUE;
3512 }
3513
3514 /* If the errors_reply_to field is set, check that it is syntactically valid
3515 and ensure it contains a domain. */
3516
3517 if (errors_reply_to)
3518 {
3519 uschar *errmess;
3520 int start, end, domain;
3521 uschar *recipient = parse_extract_address(errors_reply_to, &errmess,
3522 &start, &end, &domain, FALSE);
3523
3524 if (!recipient)
3525 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3526 "error in errors_reply_to (%s): %s", errors_reply_to, errmess);
3527
3528 if (domain == 0)
3529 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3530 "errors_reply_to (%s) does not contain a domain", errors_reply_to);
3531 }
3532
3533 /* If smtp_accept_queue or smtp_accept_max_per_host is set, then
3534 smtp_accept_max must also be set. */
3535
3536 if (smtp_accept_max == 0 &&
3537 (smtp_accept_queue > 0 || smtp_accept_max_per_host != NULL))
3538 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3539 "smtp_accept_max must be set if smtp_accept_queue or "
3540 "smtp_accept_max_per_host is set");
3541
3542 /* Set up the host number if anything is specified. It is an expanded string
3543 so that it can be computed from the host name, for example. We do this last
3544 so as to ensure that everything else is set up before the expansion. */
3545
3546 if (host_number_string)
3547 {
3548 long int n;
3549 uschar *end;
3550 uschar *s = expand_string(host_number_string);
3551
3552 if (!s)
3553 log_write(0, LOG_MAIN|LOG_PANIC_DIE,
3554 "failed to expand localhost_number \"%s\": %s",
3555 host_number_string, expand_string_message);
3556 n = Ustrtol(s, &end, 0);
3557 while (isspace(*end)) end++;
3558 if (*end != 0)
3559 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3560 "localhost_number value is not a number: %s", s);
3561 if (n > LOCALHOST_MAX)
3562 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3563 "localhost_number is greater than the maximum allowed value (%d)",
3564 LOCALHOST_MAX);
3565 host_number = n;
3566 }
3567
3568 #ifndef DISABLE_TLS
3569 /* If tls_verify_hosts is set, tls_verify_certificates must also be set */
3570
3571 if ((tls_verify_hosts || tls_try_verify_hosts) && !tls_verify_certificates)
3572 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3573 "tls_%sverify_hosts is set, but tls_verify_certificates is not set",
3574 tls_verify_hosts ? "" : "try_");
3575
3576 /* Magic number: at time of writing, 1024 has been the long-standing value
3577 used by so many clients, and what Exim used to use always, that it makes
3578 sense to just min-clamp this max-clamp at that. */
3579 if (tls_dh_max_bits < 1024)
3580 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3581 "tls_dh_max_bits is too small, must be at least 1024 for interop");
3582
3583 /* If openssl_options is set, validate it */
3584 if (openssl_options)
3585 {
3586 # ifdef USE_GNUTLS
3587 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3588 "openssl_options is set but we're using GnuTLS");
3589 # else
3590 long dummy;
3591 if (!tls_openssl_options_parse(openssl_options, &dummy))
3592 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3593 "openssl_options parse error: %s", openssl_options);
3594 # endif
3595 }
3596 #endif /*DISABLE_TLS*/
3597
3598 if (!nowarn && !keep_environment && environ && *environ)
3599 log_write(0, LOG_MAIN,
3600 "Warning: purging the environment.\n"
3601 " Suggested action: use keep_environment.");
3602 }
3603
3604
3605
3606 /*************************************************
3607 * Initialize one driver *
3608 *************************************************/
3609
3610 /* This is called once the driver's generic options, if any, have been read.
3611 We can now find the driver, set up defaults for the private options, and
3612 unset any "set" bits in the private options table (which might have been
3613 set by another incarnation of the same driver).
3614
3615 Arguments:
3616 d pointer to driver instance block, with generic
3617 options filled in
3618 drivers_available vector of available drivers
3619 size_of_info size of each block in drivers_available
3620 class class of driver, for error message
3621
3622 Returns: pointer to the driver info block
3623 */
3624
3625 static driver_info *
3626 init_driver(driver_instance *d, driver_info *drivers_available,
3627 int size_of_info, uschar *class)
3628 {
3629 for (driver_info * dd = drivers_available; dd->driver_name[0] != 0;
3630 dd = (driver_info *)((US dd) + size_of_info))
3631 if (Ustrcmp(d->driver_name, dd->driver_name) == 0)
3632 {
3633 int len = dd->options_len;
3634 d->info = dd;
3635 d->options_block = store_get(len, FALSE);
3636 memcpy(d->options_block, dd->options_block, len);
3637 for (int i = 0; i < *(dd->options_count); i++)
3638 dd->options[i].type &= ~opt_set;
3639 return dd;
3640 }
3641
3642 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3643 "%s %s: cannot find %s driver \"%s\"", class, d->name, class, d->driver_name);
3644
3645 return NULL; /* never obeyed */
3646 }
3647
3648
3649
3650
3651 /*************************************************
3652 * Initialize driver list *
3653 *************************************************/
3654
3655 /* This function is called for routers, transports, and authentication
3656 mechanisms. It reads the data from the current point in the configuration file
3657 up to the end of the section, and sets up a chain of instance blocks according
3658 to the file's contents. The file will already have been opened by a call to
3659 readconf_main, and must be left open for subsequent reading of further data.
3660
3661 Any errors cause a panic crash. Note that the blocks with names driver_info and
3662 driver_instance must map the first portions of all the _info and _instance
3663 blocks for this shared code to work.
3664
3665 Arguments:
3666 class "router", "transport", or "authenticator"
3667 anchor &routers, &transports, &auths
3668 drivers_available available drivers
3669 size_of_info size of each info block
3670 instance_default points to default data for an instance
3671 instance_size size of instance block
3672 driver_optionlist generic option list
3673 driver_optionlist_count count of generic option list
3674
3675 Returns: nothing
3676 */
3677
3678 void
3679 readconf_driver_init(
3680 uschar *class,
3681 driver_instance **anchor,
3682 driver_info *drivers_available,
3683 int size_of_info,
3684 void *instance_default,
3685 int instance_size,
3686 optionlist *driver_optionlist,
3687 int driver_optionlist_count)
3688 {
3689 driver_instance **p = anchor;
3690 driver_instance *d = NULL;
3691 uschar *buffer;
3692
3693 while ((buffer = get_config_line()))
3694 {
3695 uschar name[64];
3696 uschar *s;
3697
3698 /* Read the first name on the line and test for the start of a new driver. A
3699 macro definition indicates the end of the previous driver. If this isn't the
3700 start of a new driver, the line will be re-read. */
3701
3702 s = readconf_readname(name, sizeof(name), buffer);
3703
3704 /* Handle macro definition, first finishing off the initialization of the
3705 previous driver, if any. */
3706
3707 if (isupper(*name) && *s == '=')
3708 {
3709 if (d)
3710 {
3711 if (!d->driver_name)
3712 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3713 "no driver defined for %s \"%s\"", class, d->name);
3714 /* s is using big_buffer, so this call had better not */
3715 (d->info->init)(d);
3716 d = NULL;
3717 }
3718 if (!macro_read_assignment(buffer)) exim_exit(EXIT_FAILURE, US"");
3719 continue;
3720 }
3721
3722 /* If the line starts with a name terminated by a colon, we are at the
3723 start of the definition of a new driver. The rest of the line must be
3724 blank. */
3725
3726 if (*s++ == ':')
3727 {
3728 /* Finish off initializing the previous driver. */
3729
3730 if (d)
3731 {
3732 if (!d->driver_name)
3733 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3734 "no driver defined for %s \"%s\"", class, d->name);
3735 (d->info->init)(d);
3736 }
3737
3738 /* Check that we haven't already got a driver of this name */
3739
3740 for (d = *anchor; d; d = d->next)
3741 if (Ustrcmp(name, d->name) == 0)
3742 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3743 "there are two %ss called \"%s\"", class, name);
3744
3745 /* Set up a new driver instance data block on the chain, with
3746 its default values installed. */
3747
3748 d = store_get(instance_size, FALSE);
3749 memcpy(d, instance_default, instance_size);
3750 *p = d;
3751 p = &d->next;
3752 d->name = string_copy(name);
3753
3754 /* Clear out the "set" bits in the generic options */
3755
3756 for (int i = 0; i < driver_optionlist_count; i++)
3757 driver_optionlist[i].type &= ~opt_set;
3758
3759 /* Check nothing more on this line, then do the next loop iteration. */
3760
3761 while (isspace(*s)) s++;
3762 if (*s != 0) extra_chars_error(s, US"driver name ", name, US"");
3763 continue;
3764 }
3765
3766 /* Not the start of a new driver. Give an error if we have not set up a
3767 current driver yet. */
3768
3769 if (!d)
3770 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s name missing", class);
3771
3772 /* First look to see if this is a generic option; if it is "driver",
3773 initialize the driver. If is it not a generic option, we can look for a
3774 private option provided that the driver has been previously set up. */
3775
3776 if (readconf_handle_option(buffer, driver_optionlist,
3777 driver_optionlist_count, d, NULL))
3778 {
3779 if (!d->info && d->driver_name)
3780 init_driver(d, drivers_available, size_of_info, class);
3781 }
3782
3783 /* Handle private options - pass the generic block because some may
3784 live therein. A flag with each option indicates if it is in the public
3785 block. */
3786
3787 else if (d->info)
3788 readconf_handle_option(buffer, d->info->options,
3789 *(d->info->options_count), d, US"option \"%s\" unknown");
3790
3791 /* The option is not generic and the driver name has not yet been given. */
3792
3793 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option \"%s\" unknown "
3794 "(\"driver\" must be specified before any private options)", name);
3795 }
3796
3797 /* Run the initialization function for the final driver. */
3798
3799 if (d)
3800 {
3801 if (!d->driver_name)
3802 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3803 "no driver defined for %s \"%s\"", class, d->name);
3804 (d->info->init)(d);
3805 }