projects / exim.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
tidying
[exim.git] / src / src / readconf.c
1 /*************************************************
2 * Exim - an Internet mail transport agent *
3 *************************************************/
4
5 /* Copyright (c) University of Cambridge 1995 - 2018 */
6 /* See the file NOTICE for conditions of use and distribution. */
7
8 /* Functions for reading the configuration file, and for displaying
9 overall configuration values. Thanks to Brian Candler for the original
10 implementation of the conditional .ifdef etc. */
11
12 #include "exim.h"
13
14 #ifdef MACRO_PREDEF
15 # include "macro_predef.h"
16 #endif
17
18 #define READCONF_DEBUG if (FALSE) /* Change to TRUE to enable */
19
20
21 static uschar * syslog_facility_str;
22 static void fn_smtp_receive_timeout(const uschar *, const uschar *, unsigned);
23
24 /*************************************************
25 * Main configuration options *
26 *************************************************/
27
28 /* The list of options that can be set in the main configuration file. This
29 must be in alphabetic order because it is searched by binary chop. */
30
31 static optionlist optionlist_config[] = {
32 { "*set_exim_group", opt_bool|opt_hidden, &exim_gid_set },
33 { "*set_exim_user", opt_bool|opt_hidden, &exim_uid_set },
34 { "*set_system_filter_group", opt_bool|opt_hidden, &system_filter_gid_set },
35 { "*set_system_filter_user", opt_bool|opt_hidden, &system_filter_uid_set },
36 { "accept_8bitmime", opt_bool, &accept_8bitmime },
37 { "acl_not_smtp", opt_stringptr, &acl_not_smtp },
38 #ifdef WITH_CONTENT_SCAN
39 { "acl_not_smtp_mime", opt_stringptr, &acl_not_smtp_mime },
40 #endif
41 { "acl_not_smtp_start", opt_stringptr, &acl_not_smtp_start },
42 { "acl_smtp_auth", opt_stringptr, &acl_smtp_auth },
43 { "acl_smtp_connect", opt_stringptr, &acl_smtp_connect },
44 { "acl_smtp_data", opt_stringptr, &acl_smtp_data },
45 #ifndef DISABLE_PRDR
46 { "acl_smtp_data_prdr", opt_stringptr, &acl_smtp_data_prdr },
47 #endif
48 #ifndef DISABLE_DKIM
49 { "acl_smtp_dkim", opt_stringptr, &acl_smtp_dkim },
50 #endif
51 { "acl_smtp_etrn", opt_stringptr, &acl_smtp_etrn },
52 { "acl_smtp_expn", opt_stringptr, &acl_smtp_expn },
53 { "acl_smtp_helo", opt_stringptr, &acl_smtp_helo },
54 { "acl_smtp_mail", opt_stringptr, &acl_smtp_mail },
55 { "acl_smtp_mailauth", opt_stringptr, &acl_smtp_mailauth },
56 #ifdef WITH_CONTENT_SCAN
57 { "acl_smtp_mime", opt_stringptr, &acl_smtp_mime },
58 #endif
59 { "acl_smtp_notquit", opt_stringptr, &acl_smtp_notquit },
60 { "acl_smtp_predata", opt_stringptr, &acl_smtp_predata },
61 { "acl_smtp_quit", opt_stringptr, &acl_smtp_quit },
62 { "acl_smtp_rcpt", opt_stringptr, &acl_smtp_rcpt },
63 #ifndef DISABLE_TLS
64 { "acl_smtp_starttls", opt_stringptr, &acl_smtp_starttls },
65 #endif
66 { "acl_smtp_vrfy", opt_stringptr, &acl_smtp_vrfy },
67 { "add_environment", opt_stringptr, &add_environment },
68 { "admin_groups", opt_gidlist, &admin_groups },
69 { "allow_domain_literals", opt_bool, &allow_domain_literals },
70 { "allow_mx_to_ip", opt_bool, &allow_mx_to_ip },
71 { "allow_utf8_domains", opt_bool, &allow_utf8_domains },
72 { "auth_advertise_hosts", opt_stringptr, &auth_advertise_hosts },
73 { "auto_thaw", opt_time, &auto_thaw },
74 #ifdef WITH_CONTENT_SCAN
75 { "av_scanner", opt_stringptr, &av_scanner },
76 #endif
77 { "bi_command", opt_stringptr, &bi_command },
78 #ifdef EXPERIMENTAL_BRIGHTMAIL
79 { "bmi_config_file", opt_stringptr, &bmi_config_file },
80 #endif
81 { "bounce_message_file", opt_stringptr, &bounce_message_file },
82 { "bounce_message_text", opt_stringptr, &bounce_message_text },
83 { "bounce_return_body", opt_bool, &bounce_return_body },
84 { "bounce_return_linesize_limit", opt_mkint, &bounce_return_linesize_limit },
85 { "bounce_return_message", opt_bool, &bounce_return_message },
86 { "bounce_return_size_limit", opt_mkint, &bounce_return_size_limit },
87 { "bounce_sender_authentication",opt_stringptr,&bounce_sender_authentication },
88 { "callout_domain_negative_expire", opt_time, &callout_cache_domain_negative_expire },
89 { "callout_domain_positive_expire", opt_time, &callout_cache_domain_positive_expire },
90 { "callout_negative_expire", opt_time, &callout_cache_negative_expire },
91 { "callout_positive_expire", opt_time, &callout_cache_positive_expire },
92 { "callout_random_local_part",opt_stringptr, &callout_random_local_part },
93 { "check_log_inodes", opt_int, &check_log_inodes },
94 { "check_log_space", opt_Kint, &check_log_space },
95 { "check_rfc2047_length", opt_bool, &check_rfc2047_length },
96 { "check_spool_inodes", opt_int, &check_spool_inodes },
97 { "check_spool_space", opt_Kint, &check_spool_space },
98 { "chunking_advertise_hosts", opt_stringptr, &chunking_advertise_hosts },
99 { "commandline_checks_require_admin", opt_bool,&commandline_checks_require_admin },
100 { "daemon_smtp_port", opt_stringptr|opt_hidden, &daemon_smtp_port },
101 { "daemon_smtp_ports", opt_stringptr, &daemon_smtp_port },
102 { "daemon_startup_retries", opt_int, &daemon_startup_retries },
103 { "daemon_startup_sleep", opt_time, &daemon_startup_sleep },
104 #ifdef EXPERIMENTAL_DCC
105 { "dcc_direct_add_header", opt_bool, &dcc_direct_add_header },
106 { "dccifd_address", opt_stringptr, &dccifd_address },
107 { "dccifd_options", opt_stringptr, &dccifd_options },
108 #endif
109 { "debug_store", opt_bool, &debug_store },
110 { "delay_warning", opt_timelist, &delay_warning },
111 { "delay_warning_condition", opt_stringptr, &delay_warning_condition },
112 { "deliver_drop_privilege", opt_bool, &deliver_drop_privilege },
113 { "deliver_queue_load_max", opt_fixed, &deliver_queue_load_max },
114 { "delivery_date_remove", opt_bool, &delivery_date_remove },
115 #ifdef ENABLE_DISABLE_FSYNC
116 { "disable_fsync", opt_bool, &disable_fsync },
117 #endif
118 { "disable_ipv6", opt_bool, &disable_ipv6 },
119 #ifndef DISABLE_DKIM
120 { "dkim_verify_hashes", opt_stringptr, &dkim_verify_hashes },
121 { "dkim_verify_keytypes", opt_stringptr, &dkim_verify_keytypes },
122 { "dkim_verify_minimal", opt_bool, &dkim_verify_minimal },
123 { "dkim_verify_signers", opt_stringptr, &dkim_verify_signers },
124 #endif
125 #ifdef EXPERIMENTAL_DMARC
126 { "dmarc_forensic_sender", opt_stringptr, &dmarc_forensic_sender },
127 { "dmarc_history_file", opt_stringptr, &dmarc_history_file },
128 { "dmarc_tld_file", opt_stringptr, &dmarc_tld_file },
129 #endif
130 { "dns_again_means_nonexist", opt_stringptr, &dns_again_means_nonexist },
131 { "dns_check_names_pattern", opt_stringptr, &check_dns_names_pattern },
132 { "dns_cname_loops", opt_int, &dns_cname_loops },
133 { "dns_csa_search_limit", opt_int, &dns_csa_search_limit },
134 { "dns_csa_use_reverse", opt_bool, &dns_csa_use_reverse },
135 { "dns_dnssec_ok", opt_int, &dns_dnssec_ok },
136 { "dns_ipv4_lookup", opt_stringptr, &dns_ipv4_lookup },
137 { "dns_retrans", opt_time, &dns_retrans },
138 { "dns_retry", opt_int, &dns_retry },
139 { "dns_trust_aa", opt_stringptr, &dns_trust_aa },
140 { "dns_use_edns0", opt_int, &dns_use_edns0 },
141 /* This option is now a no-op, retained for compatibility */
142 { "drop_cr", opt_bool, &drop_cr },
143 /*********************************************************/
144 { "dsn_advertise_hosts", opt_stringptr, &dsn_advertise_hosts },
145 { "dsn_from", opt_stringptr, &dsn_from },
146 { "envelope_to_remove", opt_bool, &envelope_to_remove },
147 { "errors_copy", opt_stringptr, &errors_copy },
148 { "errors_reply_to", opt_stringptr, &errors_reply_to },
149 #ifndef DISABLE_EVENT
150 { "event_action", opt_stringptr, &event_action },
151 #endif
152 { "exim_group", opt_gid, &exim_gid },
153 { "exim_path", opt_stringptr, &exim_path },
154 { "exim_user", opt_uid, &exim_uid },
155 { "exim_version", opt_stringptr, &version_string },
156 { "extra_local_interfaces", opt_stringptr, &extra_local_interfaces },
157 { "extract_addresses_remove_arguments", opt_bool, &extract_addresses_remove_arguments },
158 { "finduser_retries", opt_int, &finduser_retries },
159 { "freeze_tell", opt_stringptr, &freeze_tell },
160 { "gecos_name", opt_stringptr, &gecos_name },
161 { "gecos_pattern", opt_stringptr, &gecos_pattern },
162 #ifndef DISABLE_TLS
163 { "gnutls_allow_auto_pkcs11", opt_bool, &gnutls_allow_auto_pkcs11 },
164 { "gnutls_compat_mode", opt_bool, &gnutls_compat_mode },
165 #endif
166 { "header_line_maxsize", opt_int, &header_line_maxsize },
167 { "header_maxsize", opt_int, &header_maxsize },
168 { "headers_charset", opt_stringptr, &headers_charset },
169 { "helo_accept_junk_hosts", opt_stringptr, &helo_accept_junk_hosts },
170 { "helo_allow_chars", opt_stringptr, &helo_allow_chars },
171 { "helo_lookup_domains", opt_stringptr, &helo_lookup_domains },
172 { "helo_try_verify_hosts", opt_stringptr, &helo_try_verify_hosts },
173 { "helo_verify_hosts", opt_stringptr, &helo_verify_hosts },
174 { "hold_domains", opt_stringptr, &hold_domains },
175 { "host_lookup", opt_stringptr, &host_lookup },
176 { "host_lookup_order", opt_stringptr, &host_lookup_order },
177 { "host_reject_connection", opt_stringptr, &host_reject_connection },
178 { "hosts_connection_nolog", opt_stringptr, &hosts_connection_nolog },
179 #ifdef SUPPORT_PROXY
180 { "hosts_proxy", opt_stringptr, &hosts_proxy },
181 #endif
182 { "hosts_treat_as_local", opt_stringptr, &hosts_treat_as_local },
183 #ifdef LOOKUP_IBASE
184 { "ibase_servers", opt_stringptr, &ibase_servers },
185 #endif
186 { "ignore_bounce_errors_after", opt_time, &ignore_bounce_errors_after },
187 { "ignore_fromline_hosts", opt_stringptr, &ignore_fromline_hosts },
188 { "ignore_fromline_local", opt_bool, &ignore_fromline_local },
189 { "keep_environment", opt_stringptr, &keep_environment },
190 { "keep_malformed", opt_time, &keep_malformed },
191 #ifdef LOOKUP_LDAP
192 { "ldap_ca_cert_dir", opt_stringptr, &eldap_ca_cert_dir },
193 { "ldap_ca_cert_file", opt_stringptr, &eldap_ca_cert_file },
194 { "ldap_cert_file", opt_stringptr, &eldap_cert_file },
195 { "ldap_cert_key", opt_stringptr, &eldap_cert_key },
196 { "ldap_cipher_suite", opt_stringptr, &eldap_cipher_suite },
197 { "ldap_default_servers", opt_stringptr, &eldap_default_servers },
198 { "ldap_require_cert", opt_stringptr, &eldap_require_cert },
199 { "ldap_start_tls", opt_bool, &eldap_start_tls },
200 { "ldap_version", opt_int, &eldap_version },
201 #endif
202 { "local_from_check", opt_bool, &local_from_check },
203 { "local_from_prefix", opt_stringptr, &local_from_prefix },
204 { "local_from_suffix", opt_stringptr, &local_from_suffix },
205 { "local_interfaces", opt_stringptr, &local_interfaces },
206 #ifdef HAVE_LOCAL_SCAN
207 { "local_scan_timeout", opt_time, &local_scan_timeout },
208 #endif
209 { "local_sender_retain", opt_bool, &local_sender_retain },
210 { "localhost_number", opt_stringptr, &host_number_string },
211 { "log_file_path", opt_stringptr, &log_file_path },
212 { "log_selector", opt_stringptr, &log_selector_string },
213 { "log_timezone", opt_bool, &log_timezone },
214 { "lookup_open_max", opt_int, &lookup_open_max },
215 { "max_username_length", opt_int, &max_username_length },
216 { "message_body_newlines", opt_bool, &message_body_newlines },
217 { "message_body_visible", opt_mkint, &message_body_visible },
218 { "message_id_header_domain", opt_stringptr, &message_id_domain },
219 { "message_id_header_text", opt_stringptr, &message_id_text },
220 { "message_logs", opt_bool, &message_logs },
221 { "message_size_limit", opt_stringptr, &message_size_limit },
222 #ifdef SUPPORT_MOVE_FROZEN_MESSAGES
223 { "move_frozen_messages", opt_bool, &move_frozen_messages },
224 #endif
225 { "mua_wrapper", opt_bool, &mua_wrapper },
226 #ifdef LOOKUP_MYSQL
227 { "mysql_servers", opt_stringptr, &mysql_servers },
228 #endif
229 { "never_users", opt_uidlist, &never_users },
230 #ifndef DISABLE_TLS
231 { "openssl_options", opt_stringptr, &openssl_options },
232 #endif
233 #ifdef LOOKUP_ORACLE
234 { "oracle_servers", opt_stringptr, &oracle_servers },
235 #endif
236 { "percent_hack_domains", opt_stringptr, &percent_hack_domains },
237 #ifdef EXIM_PERL
238 { "perl_at_start", opt_bool, &opt_perl_at_start },
239 { "perl_startup", opt_stringptr, &opt_perl_startup },
240 { "perl_taintmode", opt_bool, &opt_perl_taintmode },
241 #endif
242 #ifdef LOOKUP_PGSQL
243 { "pgsql_servers", opt_stringptr, &pgsql_servers },
244 #endif
245 { "pid_file_path", opt_stringptr, &pid_file_path },
246 { "pipelining_advertise_hosts", opt_stringptr, &pipelining_advertise_hosts },
247 #ifdef SUPPORT_PIPE_CONNECT
248 { "pipelining_connect_advertise_hosts", opt_stringptr,
249 &pipe_connect_advertise_hosts },
250 #endif
251 #ifndef DISABLE_PRDR
252 { "prdr_enable", opt_bool, &prdr_enable },
253 #endif
254 { "preserve_message_logs", opt_bool, &preserve_message_logs },
255 { "primary_hostname", opt_stringptr, &primary_hostname },
256 { "print_topbitchars", opt_bool, &print_topbitchars },
257 { "process_log_path", opt_stringptr, &process_log_path },
258 { "prod_requires_admin", opt_bool, &prod_requires_admin },
259 { "qualify_domain", opt_stringptr, &qualify_domain_sender },
260 { "qualify_recipient", opt_stringptr, &qualify_domain_recipient },
261 { "queue_domains", opt_stringptr, &queue_domains },
262 { "queue_list_requires_admin",opt_bool, &queue_list_requires_admin },
263 { "queue_only", opt_bool, &queue_only },
264 { "queue_only_file", opt_stringptr, &queue_only_file },
265 { "queue_only_load", opt_fixed, &queue_only_load },
266 { "queue_only_load_latch", opt_bool, &queue_only_load_latch },
267 { "queue_only_override", opt_bool, &queue_only_override },
268 { "queue_run_in_order", opt_bool, &queue_run_in_order },
269 { "queue_run_max", opt_stringptr, &queue_run_max },
270 { "queue_smtp_domains", opt_stringptr, &queue_smtp_domains },
271 { "receive_timeout", opt_time, &receive_timeout },
272 { "received_header_text", opt_stringptr, &received_header_text },
273 { "received_headers_max", opt_int, &received_headers_max },
274 { "recipient_unqualified_hosts", opt_stringptr, &recipient_unqualified_hosts },
275 { "recipients_max", opt_int, &recipients_max },
276 { "recipients_max_reject", opt_bool, &recipients_max_reject },
277 #ifdef LOOKUP_REDIS
278 { "redis_servers", opt_stringptr, &redis_servers },
279 #endif
280 { "remote_max_parallel", opt_int, &remote_max_parallel },
281 { "remote_sort_domains", opt_stringptr, &remote_sort_domains },
282 { "retry_data_expire", opt_time, &retry_data_expire },
283 { "retry_interval_max", opt_time, &retry_interval_max },
284 { "return_path_remove", opt_bool, &return_path_remove },
285 { "return_size_limit", opt_mkint|opt_hidden, &bounce_return_size_limit },
286 { "rfc1413_hosts", opt_stringptr, &rfc1413_hosts },
287 { "rfc1413_query_timeout", opt_time, &rfc1413_query_timeout },
288 { "sender_unqualified_hosts", opt_stringptr, &sender_unqualified_hosts },
289 { "slow_lookup_log", opt_int, &slow_lookup_log },
290 { "smtp_accept_keepalive", opt_bool, &smtp_accept_keepalive },
291 { "smtp_accept_max", opt_int, &smtp_accept_max },
292 { "smtp_accept_max_nonmail", opt_int, &smtp_accept_max_nonmail },
293 { "smtp_accept_max_nonmail_hosts", opt_stringptr, &smtp_accept_max_nonmail_hosts },
294 { "smtp_accept_max_per_connection", opt_int, &smtp_accept_max_per_connection },
295 { "smtp_accept_max_per_host", opt_stringptr, &smtp_accept_max_per_host },
296 { "smtp_accept_queue", opt_int, &smtp_accept_queue },
297 { "smtp_accept_queue_per_connection", opt_int, &smtp_accept_queue_per_connection },
298 { "smtp_accept_reserve", opt_int, &smtp_accept_reserve },
299 { "smtp_active_hostname", opt_stringptr, &raw_active_hostname },
300 { "smtp_banner", opt_stringptr, &smtp_banner },
301 { "smtp_check_spool_space", opt_bool, &smtp_check_spool_space },
302 { "smtp_connect_backlog", opt_int, &smtp_connect_backlog },
303 { "smtp_enforce_sync", opt_bool, &smtp_enforce_sync },
304 { "smtp_etrn_command", opt_stringptr, &smtp_etrn_command },
305 { "smtp_etrn_serialize", opt_bool, &smtp_etrn_serialize },
306 { "smtp_load_reserve", opt_fixed, &smtp_load_reserve },
307 { "smtp_max_synprot_errors", opt_int, &smtp_max_synprot_errors },
308 { "smtp_max_unknown_commands",opt_int, &smtp_max_unknown_commands },
309 { "smtp_ratelimit_hosts", opt_stringptr, &smtp_ratelimit_hosts },
310 { "smtp_ratelimit_mail", opt_stringptr, &smtp_ratelimit_mail },
311 { "smtp_ratelimit_rcpt", opt_stringptr, &smtp_ratelimit_rcpt },
312 { "smtp_receive_timeout", opt_func, (void *) &fn_smtp_receive_timeout },
313 { "smtp_reserve_hosts", opt_stringptr, &smtp_reserve_hosts },
314 { "smtp_return_error_details",opt_bool, &smtp_return_error_details },
315 #ifdef SUPPORT_I18N
316 { "smtputf8_advertise_hosts", opt_stringptr, &smtputf8_advertise_hosts },
317 #endif
318 #ifdef WITH_CONTENT_SCAN
319 { "spamd_address", opt_stringptr, &spamd_address },
320 #endif
321 #ifdef SUPPORT_SPF
322 { "spf_guess", opt_stringptr, &spf_guess },
323 #endif
324 { "split_spool_directory", opt_bool, &split_spool_directory },
325 { "spool_directory", opt_stringptr, &spool_directory },
326 { "spool_wireformat", opt_bool, &spool_wireformat },
327 #ifdef LOOKUP_SQLITE
328 { "sqlite_lock_timeout", opt_int, &sqlite_lock_timeout },
329 #endif
330 #ifdef EXPERIMENTAL_SRS
331 { "srs_config", opt_stringptr, &srs_config },
332 { "srs_hashlength", opt_int, &srs_hashlength },
333 { "srs_hashmin", opt_int, &srs_hashmin },
334 { "srs_maxage", opt_int, &srs_maxage },
335 { "srs_secrets", opt_stringptr, &srs_secrets },
336 { "srs_usehash", opt_bool, &srs_usehash },
337 { "srs_usetimestamp", opt_bool, &srs_usetimestamp },
338 #endif
339 { "strict_acl_vars", opt_bool, &strict_acl_vars },
340 { "strip_excess_angle_brackets", opt_bool, &strip_excess_angle_brackets },
341 { "strip_trailing_dot", opt_bool, &strip_trailing_dot },
342 { "syslog_duplication", opt_bool, &syslog_duplication },
343 { "syslog_facility", opt_stringptr, &syslog_facility_str },
344 { "syslog_pid", opt_bool, &syslog_pid },
345 { "syslog_processname", opt_stringptr, &syslog_processname },
346 { "syslog_timestamp", opt_bool, &syslog_timestamp },
347 { "system_filter", opt_stringptr, &system_filter },
348 { "system_filter_directory_transport", opt_stringptr,&system_filter_directory_transport },
349 { "system_filter_file_transport",opt_stringptr,&system_filter_file_transport },
350 { "system_filter_group", opt_gid, &system_filter_gid },
351 { "system_filter_pipe_transport",opt_stringptr,&system_filter_pipe_transport },
352 { "system_filter_reply_transport",opt_stringptr,&system_filter_reply_transport },
353 { "system_filter_user", opt_uid, &system_filter_uid },
354 { "tcp_nodelay", opt_bool, &tcp_nodelay },
355 #ifdef USE_TCP_WRAPPERS
356 { "tcp_wrappers_daemon_name", opt_stringptr, &tcp_wrappers_daemon_name },
357 #endif
358 { "timeout_frozen_after", opt_time, &timeout_frozen_after },
359 { "timezone", opt_stringptr, &timezone_string },
360 { "tls_advertise_hosts", opt_stringptr, &tls_advertise_hosts },
361 #ifndef DISABLE_TLS
362 { "tls_certificate", opt_stringptr, &tls_certificate },
363 { "tls_crl", opt_stringptr, &tls_crl },
364 { "tls_dh_max_bits", opt_int, &tls_dh_max_bits },
365 { "tls_dhparam", opt_stringptr, &tls_dhparam },
366 { "tls_eccurve", opt_stringptr, &tls_eccurve },
367 # ifndef DISABLE_OCSP
368 { "tls_ocsp_file", opt_stringptr, &tls_ocsp_file },
369 # endif
370 { "tls_on_connect_ports", opt_stringptr, &tls_in.on_connect_ports },
371 { "tls_privatekey", opt_stringptr, &tls_privatekey },
372 { "tls_remember_esmtp", opt_bool, &tls_remember_esmtp },
373 { "tls_require_ciphers", opt_stringptr, &tls_require_ciphers },
374 # ifdef EXPERIMENTAL_TLS_RESUME
375 { "tls_resumption_hosts", opt_stringptr, &tls_resumption_hosts },
376 # endif
377 { "tls_try_verify_hosts", opt_stringptr, &tls_try_verify_hosts },
378 { "tls_verify_certificates", opt_stringptr, &tls_verify_certificates },
379 { "tls_verify_hosts", opt_stringptr, &tls_verify_hosts },
380 #endif
381 { "trusted_groups", opt_gidlist, &trusted_groups },
382 { "trusted_users", opt_uidlist, &trusted_users },
383 { "unknown_login", opt_stringptr, &unknown_login },
384 { "unknown_username", opt_stringptr, &unknown_username },
385 { "untrusted_set_sender", opt_stringptr, &untrusted_set_sender },
386 { "uucp_from_pattern", opt_stringptr, &uucp_from_pattern },
387 { "uucp_from_sender", opt_stringptr, &uucp_from_sender },
388 { "warn_message_file", opt_stringptr, &warn_message_file },
389 { "write_rejectlog", opt_bool, &write_rejectlog }
390 };
391
392 #ifndef MACRO_PREDEF
393 static int optionlist_config_size = nelem(optionlist_config);
394 #endif
395
396
397 #ifdef MACRO_PREDEF
398
399 static void
400 fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags) {/*Dummy*/}
401
402 void
403 options_main(void)
404 {
405 options_from_list(optionlist_config, nelem(optionlist_config), US"MAIN", NULL);
406 }
407
408 void
409 options_auths(void)
410 {
411 uschar buf[64];
412
413 options_from_list(optionlist_auths, optionlist_auths_size, US"AUTHENTICATORS", NULL);
414
415 for (struct auth_info * ai = auths_available; ai->driver_name[0]; ai++)
416 {
417 spf(buf, sizeof(buf), US"_DRIVER_AUTHENTICATOR_%T", ai->driver_name);
418 builtin_macro_create(buf);
419 options_from_list(ai->options, (unsigned)*ai->options_count, US"AUTHENTICATOR", ai->driver_name);
420 }
421 }
422
423 void
424 options_logging(void)
425 {
426 uschar buf[64];
427
428 for (bit_table * bp = log_options; bp < log_options + log_options_count; bp++)
429 {
430 spf(buf, sizeof(buf), US"_LOG_%T", bp->name);
431 builtin_macro_create(buf);
432 }
433 }
434
435
436 #else /*!MACRO_PREDEF*/
437
438 extern char **environ;
439
440 static void save_config_line(const uschar* line);
441 static void save_config_position(const uschar *file, int line);
442 static void print_config(BOOL admin, BOOL terse);
443
444
445 #define CSTATE_STACK_SIZE 10
446
447 const uschar *config_directory = NULL;
448
449
450 /* Structure for chain (stack) of .included files */
451
452 typedef struct config_file_item {
453 struct config_file_item *next;
454 const uschar *filename;
455 const uschar *directory;
456 FILE *file;
457 int lineno;
458 } config_file_item;
459
460 /* Structure for chain of configuration lines (-bP config) */
461
462 typedef struct config_line_item {
463 struct config_line_item *next;
464 uschar *line;
465 } config_line_item;
466
467 static config_line_item* config_lines;
468
469 /* Structure of table of conditional words and their state transitions */
470
471 typedef struct cond_item {
472 uschar *name;
473 int namelen;
474 int action1;
475 int action2;
476 int pushpop;
477 } cond_item;
478
479 /* Structure of table of syslog facility names and values */
480
481 typedef struct syslog_fac_item {
482 uschar *name;
483 int value;
484 } syslog_fac_item;
485
486 /* constants */
487 static const char * const hidden = "<value not displayable>";
488
489 /* Static variables */
490
491 static config_file_item *config_file_stack = NULL; /* For includes */
492
493 static uschar *syslog_facility_str = NULL;
494 static uschar next_section[24];
495 static uschar time_buffer[24];
496
497 /* State variables for conditional loading (.ifdef / .else / .endif) */
498
499 static int cstate = 0;
500 static int cstate_stack_ptr = -1;
501 static int cstate_stack[CSTATE_STACK_SIZE];
502
503 /* Table of state transitions for handling conditional inclusions. There are
504 four possible state transitions:
505
506 .ifdef true
507 .ifdef false
508 .elifdef true (or .else)
509 .elifdef false
510
511 .endif just causes the previous cstate to be popped off the stack */
512
513 static int next_cstate[3][4] =
514 {
515 /* State 0: reading from file, or reading until next .else or .endif */
516 { 0, 1, 2, 2 },
517 /* State 1: condition failed, skipping until next .else or .endif */
518 { 2, 2, 0, 1 },
519 /* State 2: skipping until .endif */
520 { 2, 2, 2, 2 },
521 };
522
523 /* Table of conditionals and the states to set. For each name, there are four
524 values: the length of the name (to save computing it each time), the state to
525 set if a macro was found in the line, the state to set if a macro was not found
526 in the line, and a stack manipulation setting which is:
527
528 -1 pull state value off the stack
529 0 don't alter the stack
530 +1 push value onto stack, before setting new state
531 */
532
533 static cond_item cond_list[] = {
534 { US"ifdef", 5, 0, 1, 1 },
535 { US"ifndef", 6, 1, 0, 1 },
536 { US"elifdef", 7, 2, 3, 0 },
537 { US"elifndef", 8, 3, 2, 0 },
538 { US"else", 4, 2, 2, 0 },
539 { US"endif", 5, 0, 0, -1 }
540 };
541
542 static int cond_list_size = sizeof(cond_list)/sizeof(cond_item);
543
544 /* Table of syslog facility names and their values */
545
546 static syslog_fac_item syslog_list[] = {
547 { US"mail", LOG_MAIL },
548 { US"user", LOG_USER },
549 { US"news", LOG_NEWS },
550 { US"uucp", LOG_UUCP },
551 { US"local0", LOG_LOCAL0 },
552 { US"local1", LOG_LOCAL1 },
553 { US"local2", LOG_LOCAL2 },
554 { US"local3", LOG_LOCAL3 },
555 { US"local4", LOG_LOCAL4 },
556 { US"local5", LOG_LOCAL5 },
557 { US"local6", LOG_LOCAL6 },
558 { US"local7", LOG_LOCAL7 },
559 { US"daemon", LOG_DAEMON }
560 };
561
562 static int syslog_list_size = sizeof(syslog_list)/sizeof(syslog_fac_item);
563
564
565 #define opt_fn_print BIT(0)
566 #define opt_fn_print_label BIT(1)
567
568
569 /*************************************************
570 * Find the name of an option *
571 *************************************************/
572
573 /* This function is to aid debugging. Various functions take arguments that are
574 pointer variables in the options table or in option tables for various drivers.
575 For debugging output, it is useful to be able to find the name of the option
576 which is currently being processed. This function finds it, if it exists, by
577 searching the table(s).
578
579 Arguments: a value that is presumed to be in the table above
580 Returns: the option name, or an empty string
581 */
582
583 uschar *
584 readconf_find_option(void *p)
585 {
586 for (int i = 0; i < nelem(optionlist_config); i++)
587 if (p == optionlist_config[i].value) return US optionlist_config[i].name;
588
589 for (router_instance * r = routers; r; r = r->next)
590 {
591 router_info *ri = r->info;
592 for (int i = 0; i < *ri->options_count; i++)
593 {
594 if ((ri->options[i].type & opt_mask) != opt_stringptr) continue;
595 if (p == CS (r->options_block) + (long int)(ri->options[i].value))
596 return US ri->options[i].name;
597 }
598 }
599
600 for (transport_instance * t = transports; t; t = t->next)
601 {
602 transport_info *ti = t->info;
603 for (int i = 0; i < *ti->options_count; i++)
604 {
605 optionlist * op = &ti->options[i];
606 if ((op->type & opt_mask) != opt_stringptr) continue;
607 if (p == ( op->type & opt_public
608 ? CS t
609 : CS t->options_block
610 )
611 + (long int)op->value)
612 return US op->name;
613 }
614 }
615
616 return US"";
617 }
618
619
620
621
622 /*************************************************
623 * Deal with an assignment to a macro *
624 *************************************************/
625
626 /* We have a new definition; append to the list.
627
628 Args:
629 name Name of the macro; will be copied
630 val Expansion result for the macro; will be copied
631 */
632
633 macro_item *
634 macro_create(const uschar * name, const uschar * val, BOOL command_line)
635 {
636 macro_item * m = store_get(sizeof(macro_item), FALSE);
637
638 READCONF_DEBUG fprintf(stderr, "%s: '%s' '%s'\n", __FUNCTION__, name, val);
639 m->next = NULL;
640 m->command_line = command_line;
641 m->namelen = Ustrlen(name);
642 m->replen = Ustrlen(val);
643 m->name = string_copy(name);
644 m->replacement = string_copy(val);
645 if (mlast)
646 mlast->next = m;
647 else
648 macros = m;
649 mlast = m;
650 if (!macros_user)
651 macros_user = m;
652 return m;
653 }
654
655
656 /* This function is called when a line that starts with an upper case letter is
657 encountered. The argument "line" should contain a complete logical line, and
658 start with the first letter of the macro name. The macro name and the
659 replacement text are extracted and stored. Redefinition of existing,
660 non-command line, macros is permitted using '==' instead of '='.
661
662 Arguments:
663 s points to the start of the logical line
664
665 Returns: FALSE iff fatal error
666 */
667
668 BOOL
669 macro_read_assignment(uschar *s)
670 {
671 uschar name[64];
672 int namelen = 0;
673 BOOL redef = FALSE;
674 macro_item *m;
675
676 while (isalnum(*s) || *s == '_')
677 {
678 if (namelen >= sizeof(name) - 1)
679 {
680 log_write(0, LOG_PANIC|LOG_CONFIG_IN,
681 "macro name too long (maximum is " SIZE_T_FMT " characters)", sizeof(name) - 1);
682 return FALSE;
683 }
684 name[namelen++] = *s++;
685 }
686 name[namelen] = 0;
687
688 while (isspace(*s)) s++;
689 if (*s++ != '=')
690 {
691 log_write(0, LOG_PANIC|LOG_CONFIG_IN, "malformed macro definition");
692 return FALSE;
693 }
694
695 if (*s == '=')
696 {
697 redef = TRUE;
698 s++;
699 }
700 while (isspace(*s)) s++;
701
702 /* If an existing macro of the same name was defined on the command line, we
703 just skip this definition. It's an error to attempt to redefine a macro without
704 redef set to TRUE, or to redefine a macro when it hasn't been defined earlier.
705 It is also an error to define a macro whose name begins with the name of a
706 previously defined macro. This is the requirement that make using a tree
707 for macros hard; we must check all macros for the substring. Perhaps a
708 sorted list, and a bsearch, would work?
709 Note: it is documented that the other way round works. */
710
711 for (m = macros; m; m = m->next)
712 {
713 if (Ustrcmp(m->name, name) == 0)
714 {
715 if (!m->command_line && !redef)
716 {
717 log_write(0, LOG_CONFIG|LOG_PANIC, "macro \"%s\" is already "
718 "defined (use \"==\" if you want to redefine it)", name);
719 return FALSE;
720 }
721 break;
722 }
723
724 if (m->namelen < namelen && Ustrstr(name, m->name) != NULL)
725 {
726 log_write(0, LOG_CONFIG|LOG_PANIC, "\"%s\" cannot be defined as "
727 "a macro because previously defined macro \"%s\" is a substring",
728 name, m->name);
729 return FALSE;
730 }
731
732 /* We cannot have this test, because it is documented that a substring
733 macro is permitted (there is even an example).
734 *
735 * if (m->namelen > namelen && Ustrstr(m->name, name) != NULL)
736 * log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "\"%s\" cannot be defined as "
737 * "a macro because it is a substring of previously defined macro \"%s\"",
738 * name, m->name);
739 */
740 }
741
742 /* Check for an overriding command-line definition. */
743
744 if (m && m->command_line) return TRUE;
745
746 /* Redefinition must refer to an existing macro. */
747
748 if (redef)
749 if (m)
750 {
751 m->replen = Ustrlen(s);
752 m->replacement = string_copy(s);
753 }
754 else
755 {
756 log_write(0, LOG_CONFIG|LOG_PANIC, "can't redefine an undefined macro "
757 "\"%s\"", name);
758 return FALSE;
759 }
760
761 /* We have a new definition. */
762 else
763 (void) macro_create(name, s, FALSE);
764 return TRUE;
765 }
766
767
768
769
770
771 /* Process line for macros. The line is in big_buffer starting at offset len.
772 Expand big_buffer if needed. Handle definitions of new macros, and
773 macro expansions, rewriting the line in the buffer.
774
775 Arguments:
776 len Offset in buffer of start of line
777 newlen Pointer to offset of end of line, updated on return
778 macro_found Pointer to return that a macro was expanded
779
780 Return: pointer to first nonblank char in line
781 */
782
783 uschar *
784 macros_expand(int len, int * newlen, BOOL * macro_found)
785 {
786 uschar * ss = big_buffer + len;
787 uschar * s;
788
789 /* Find the true start of the physical line - leading spaces are always
790 ignored. */
791
792 while (isspace(*ss)) ss++;
793
794 /* Process the physical line for macros. If this is the start of the logical
795 line, skip over initial text at the start of the line if it starts with an
796 upper case character followed by a sequence of name characters and an equals
797 sign, because that is the definition of a new macro, and we don't do
798 replacement therein. */
799
800 s = ss;
801 if (len == 0 && isupper(*s))
802 {
803 while (isalnum(*s) || *s == '_') s++;
804 while (isspace(*s)) s++;
805 if (*s != '=') s = ss; /* Not a macro definition */
806 }
807
808 /* Skip leading chars which cannot start a macro name, to avoid multiple
809 pointless rescans in Ustrstr calls. */
810
811 while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
812
813 /* For each defined macro, scan the line (from after XXX= if present),
814 replacing all occurrences of the macro. */
815
816 *macro_found = FALSE;
817 if (*s) for (macro_item * m = *s == '_' ? macros : macros_user; m; m = m->next)
818 {
819 uschar * p, *pp;
820 uschar * t;
821
822 while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
823 if (!*s) break;
824
825 t = s;
826 while ((p = Ustrstr(t, m->name)) != NULL)
827 {
828 int moveby;
829
830 READCONF_DEBUG fprintf(stderr, "%s: matched '%s' in '%.*s'\n", __FUNCTION__,
831 m->name, (int) Ustrlen(ss)-1, ss);
832 /* Expand the buffer if necessary */
833
834 while (*newlen - m->namelen + m->replen + 1 > big_buffer_size)
835 {
836 int newsize = big_buffer_size + BIG_BUFFER_SIZE;
837 uschar *newbuffer = store_malloc(newsize);
838 memcpy(newbuffer, big_buffer, *newlen + 1);
839 p = newbuffer + (p - big_buffer);
840 s = newbuffer + (s - big_buffer);
841 ss = newbuffer + (ss - big_buffer);
842 t = newbuffer + (t - big_buffer);
843 big_buffer_size = newsize;
844 store_free(big_buffer);
845 big_buffer = newbuffer;
846 }
847
848 /* Shuffle the remaining characters up or down in the buffer before
849 copying in the replacement text. Don't rescan the replacement for this
850 same macro. */
851
852 pp = p + m->namelen;
853 if ((moveby = m->replen - m->namelen) != 0)
854 {
855 memmove(p + m->replen, pp, (big_buffer + *newlen) - pp + 1);
856 *newlen += moveby;
857 }
858 Ustrncpy(p, m->replacement, m->replen);
859 t = p + m->replen;
860 while (*t && !isupper(*t) && !(*t == '_' && isupper(t[1]))) t++;
861 *macro_found = TRUE;
862 }
863 }
864
865 /* An empty macro replacement at the start of a line could mean that ss no
866 longer points to the first non-blank character. */
867
868 while (isspace(*ss)) ss++;
869 return ss;
870 }
871
872 /*************************************************
873 * Read configuration line *
874 *************************************************/
875
876 /* A logical line of text is read from the configuration file into the big
877 buffer, taking account of macros, .includes, and continuations. The size of
878 big_buffer is increased if necessary. The count of configuration lines is
879 maintained. Physical input lines starting with # (ignoring leading white space,
880 and after macro replacement) and empty logical lines are always ignored.
881 Leading and trailing spaces are removed.
882
883 If we hit a line of the form "begin xxxx", the xxxx is placed in the
884 next_section vector, and the function returns NULL, indicating the end of a
885 configuration section. On end-of-file, NULL is returned with next_section
886 empty.
887
888 Arguments: none
889
890 Returns: a pointer to the first non-blank in the line,
891 or NULL if eof or end of section is reached
892 */
893
894 static uschar *
895 get_config_line(void)
896 {
897 int startoffset = 0; /* To first non-blank char in logical line */
898 int len = 0; /* Of logical line so far */
899 int newlen;
900 uschar *s, *ss;
901 BOOL macro_found;
902
903 /* Loop for handling continuation lines, skipping comments, and dealing with
904 .include files. */
905
906 for (;;)
907 {
908 if (Ufgets(big_buffer+len, big_buffer_size-len, config_file) == NULL)
909 {
910 if (config_file_stack != NULL) /* EOF inside .include */
911 {
912 (void)fclose(config_file);
913 config_file = config_file_stack->file;
914 config_filename = config_file_stack->filename;
915 config_directory = config_file_stack->directory;
916 config_lineno = config_file_stack->lineno;
917 config_file_stack = config_file_stack->next;
918 if (config_lines)
919 save_config_position(config_filename, config_lineno);
920 continue;
921 }
922
923 /* EOF at top level */
924
925 if (cstate_stack_ptr >= 0)
926 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
927 "Unexpected end of configuration file: .endif missing");
928
929 if (len != 0) break; /* EOF after continuation */
930 next_section[0] = 0; /* EOF at start of logical line */
931 return NULL;
932 }
933
934 config_lineno++;
935 newlen = len + Ustrlen(big_buffer + len);
936
937 if (config_lines && config_lineno == 1)
938 save_config_position(config_filename, config_lineno);
939
940 /* Handle pathologically long physical lines - yes, it did happen - by
941 extending big_buffer at this point. The code also copes with very long
942 logical lines. */
943
944 while (newlen == big_buffer_size - 1 && big_buffer[newlen - 1] != '\n')
945 {
946 uschar *newbuffer;
947 big_buffer_size += BIG_BUFFER_SIZE;
948 newbuffer = store_malloc(big_buffer_size);
949
950 /* This use of strcpy is OK because we know that the string in the old
951 buffer is shorter than the new buffer. */
952
953 Ustrcpy(newbuffer, big_buffer);
954 store_free(big_buffer);
955 big_buffer = newbuffer;
956 if (Ufgets(big_buffer+newlen, big_buffer_size-newlen, config_file) == NULL)
957 break;
958 newlen += Ustrlen(big_buffer + newlen);
959 }
960
961 ss = macros_expand(len, &newlen, &macro_found);
962
963 /* Check for comment lines - these are physical lines. */
964
965 if (*ss == '#') continue;
966
967 /* Handle conditionals, which are also applied to physical lines. Conditions
968 are of the form ".ifdef ANYTEXT" and are treated as true if any macro
969 expansion occurred on the rest of the line. A preliminary test for the leading
970 '.' saves effort on most lines. */
971
972 if (*ss == '.')
973 {
974 int i;
975
976 /* Search the list of conditional directives */
977
978 for (i = 0; i < cond_list_size; i++)
979 {
980 int n;
981 cond_item *c = cond_list+i;
982 if (Ustrncmp(ss+1, c->name, c->namelen) != 0) continue;
983
984 /* The following character must be white space or end of string */
985
986 n = ss[1 + c->namelen];
987 if (n != ' ' && n != 't' && n != '\n' && n != 0) break;
988
989 /* .ifdef and .ifndef push the current state onto the stack, then set
990 a new one from the table. Stack overflow is an error */
991
992 if (c->pushpop > 0)
993 {
994 if (cstate_stack_ptr >= CSTATE_STACK_SIZE - 1)
995 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
996 ".%s nested too deeply", c->name);
997 cstate_stack[++cstate_stack_ptr] = cstate;
998 cstate = next_cstate[cstate][macro_found? c->action1 : c->action2];
999 }
1000
1001 /* For any of the others, stack underflow is an error. The next state
1002 comes either from the stack (.endif) or from the table. */
1003
1004 else
1005 {
1006 if (cstate_stack_ptr < 0)
1007 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1008 ".%s without matching .ifdef", c->name);
1009 cstate = (c->pushpop < 0)? cstate_stack[cstate_stack_ptr--] :
1010 next_cstate[cstate][macro_found? c->action1 : c->action2];
1011 }
1012
1013 /* Having dealt with a directive, break the loop */
1014
1015 break;
1016 }
1017
1018 /* If we have handled a conditional directive, continue with the next
1019 physical line. Otherwise, fall through. */
1020
1021 if (i < cond_list_size) continue;
1022 }
1023
1024 /* If the conditional state is not 0 (actively using these lines), ignore
1025 this input line. */
1026
1027 if (cstate != 0) continue; /* Conditional skip */
1028
1029 /* Handle .include lines - these are also physical lines. */
1030
1031 if (Ustrncmp(ss, ".include", 8) == 0 &&
1032 (isspace(ss[8]) ||
1033 (Ustrncmp(ss+8, "_if_exists", 10) == 0 && isspace(ss[18]))))
1034 {
1035 uschar *t;
1036 int include_if_exists = isspace(ss[8])? 0 : 10;
1037 config_file_item *save;
1038 struct stat statbuf;
1039
1040 ss += 9 + include_if_exists;
1041 while (isspace(*ss)) ss++;
1042 t = ss + Ustrlen(ss);
1043 while (t > ss && isspace(t[-1])) t--;
1044 if (*ss == '\"' && t[-1] == '\"')
1045 {
1046 ss++;
1047 t--;
1048 }
1049 *t = 0;
1050
1051 /* We allow relative file names. For security reasons currently
1052 relative names not allowed with .include_if_exists. For .include_if_exists
1053 we need to check the permissions/ownership of the containing folder */
1054 if (*ss != '/')
1055 if (include_if_exists) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, ".include specifies a non-"
1056 "absolute path \"%s\"", ss);
1057 else
1058 {
1059 gstring * g = string_append(NULL, 3, config_directory, "/", ss);
1060 ss = string_from_gstring(g);
1061 }
1062
1063 if (include_if_exists != 0 && (Ustat(ss, &statbuf) != 0)) continue;
1064
1065 if (config_lines)
1066 save_config_position(config_filename, config_lineno);
1067 save = store_get(sizeof(config_file_item), FALSE);
1068 save->next = config_file_stack;
1069 config_file_stack = save;
1070 save->file = config_file;
1071 save->filename = config_filename;
1072 save->directory = config_directory;
1073 save->lineno = config_lineno;
1074
1075 if (!(config_file = Ufopen(ss, "rb")))
1076 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to open included "
1077 "configuration file %s", ss);
1078
1079 config_filename = string_copy(ss);
1080 config_directory = string_copyn(ss, CUstrrchr(ss, '/') - ss);
1081 config_lineno = 0;
1082 continue;
1083 }
1084
1085 /* If this is the start of the logical line, remember where the non-blank
1086 data starts. Otherwise shuffle down continuation lines to remove leading
1087 white space. */
1088
1089 if (len == 0)
1090 startoffset = ss - big_buffer;
1091 else
1092 {
1093 s = big_buffer + len;
1094 if (ss > s)
1095 {
1096 memmove(s, ss, (newlen - len) - (ss - s) + 1);
1097 newlen -= ss - s;
1098 }
1099 }
1100
1101 /* Accept the new addition to the line. Remove trailing white space. */
1102
1103 len = newlen;
1104 while (len > 0 && isspace(big_buffer[len-1])) len--;
1105 big_buffer[len] = 0;
1106
1107 /* We are done if the line does not end in backslash and contains some data.
1108 Empty logical lines are ignored. For continuations, remove the backslash and
1109 go round the loop to read the continuation line. */
1110
1111 if (len > 0)
1112 {
1113 if (big_buffer[len-1] != '\\') break; /* End of logical line */
1114 big_buffer[--len] = 0; /* Remove backslash */
1115 }
1116 } /* Loop for reading multiple physical lines */
1117
1118 /* We now have a logical line. Test for the end of a configuration section (or,
1119 more accurately, for the start of the next section). Place the name of the next
1120 section in next_section, and return NULL. If the name given is longer than
1121 next_section, truncate it. It will be unrecognized later, because all the known
1122 section names do fit. Leave space for pluralizing. */
1123
1124 s = big_buffer + startoffset; /* First non-space character */
1125
1126 if (config_lines)
1127 save_config_line(s);
1128
1129 if (strncmpic(s, US"begin ", 6) == 0)
1130 {
1131 s += 6;
1132 while (isspace(*s)) s++;
1133 if (big_buffer + len - s > sizeof(next_section) - 2)
1134 s[sizeof(next_section) - 2] = 0;
1135 Ustrcpy(next_section, s);
1136 return NULL;
1137 }
1138
1139 /* Return the first non-blank character. */
1140
1141 return s;
1142 }
1143
1144
1145
1146 /*************************************************
1147 * Read a name *
1148 *************************************************/
1149
1150 /* The yield is the pointer to the next uschar. Names longer than the
1151 output space are silently truncated. This function is also used from acl.c when
1152 parsing ACLs.
1153
1154 Arguments:
1155 name where to put the name
1156 len length of name
1157 s input pointer
1158
1159 Returns: new input pointer
1160 */
1161
1162 uschar *
1163 readconf_readname(uschar *name, int len, uschar *s)
1164 {
1165 int p = 0;
1166 while (isspace(*s)) s++;
1167 if (isalpha(*s))
1168 {
1169 while (isalnum(*s) || *s == '_')
1170 {
1171 if (p < len-1) name[p++] = *s;
1172 s++;
1173 }
1174 }
1175 name[p] = 0;
1176 while (isspace(*s)) s++;
1177 return s;
1178 }
1179
1180
1181
1182
1183 /*************************************************
1184 * Read a time value *
1185 *************************************************/
1186
1187 /* This function is also called from outside, to read argument
1188 time values. The format of a time value is:
1189
1190 [<n>w][<n>d][<n>h][<n>m][<n>s]
1191
1192 as long as at least one is present. If a format error is encountered,
1193 return a negative value. The value must be terminated by the given
1194 terminator.
1195
1196 Arguments:
1197 s input pointer
1198 terminator required terminating character
1199 return_msec if TRUE, allow fractional seconds and return milliseconds
1200
1201 Returns: the time value, or -1 on syntax error
1202 value is seconds if return_msec is FALSE
1203 value is milliseconds if return_msec is TRUE
1204 */
1205
1206 int
1207 readconf_readtime(const uschar *s, int terminator, BOOL return_msec)
1208 {
1209 int yield = 0;
1210 for (;;)
1211 {
1212 int value, count;
1213 double fraction;
1214
1215 if (!isdigit(*s)) return -1;
1216 (void)sscanf(CCS s, "%d%n", &value, &count);
1217 s += count;
1218
1219 switch (*s)
1220 {
1221 case 'w': value *= 7;
1222 case 'd': value *= 24;
1223 case 'h': value *= 60;
1224 case 'm': value *= 60;
1225 case 's': s++;
1226 break;
1227
1228 case '.':
1229 if (!return_msec) return -1;
1230 (void)sscanf(CCS s, "%lf%n", &fraction, &count);
1231 s += count;
1232 if (*s++ != 's') return -1;
1233 yield += (int)(fraction * 1000.0);
1234 break;
1235
1236 default: return -1;
1237 }
1238
1239 if (return_msec) value *= 1000;
1240 yield += value;
1241 if (*s == terminator) return yield;
1242 }
1243 /* Control never reaches here. */
1244 }
1245
1246
1247
1248 /*************************************************
1249 * Read a fixed point value *
1250 *************************************************/
1251
1252 /* The value is returned *1000
1253
1254 Arguments:
1255 s input pointer
1256 terminator required terminator
1257
1258 Returns: the value, or -1 on error
1259 */
1260
1261 static int
1262 readconf_readfixed(const uschar *s, int terminator)
1263 {
1264 int yield = 0;
1265 int value, count;
1266 if (!isdigit(*s)) return -1;
1267 (void)sscanf(CS s, "%d%n", &value, &count);
1268 s += count;
1269 yield = value * 1000;
1270 if (*s == '.')
1271 {
1272 int m = 100;
1273 while (isdigit((*(++s))))
1274 {
1275 yield += (*s - '0') * m;
1276 m /= 10;
1277 }
1278 }
1279
1280 return (*s == terminator)? yield : (-1);
1281 }
1282
1283
1284
1285 /*************************************************
1286 * Find option in list *
1287 *************************************************/
1288
1289 /* The lists are always in order, so binary chop can be used.
1290
1291 Arguments:
1292 name the option name to search for
1293 ol the first entry in the option list
1294 last one more than the offset of the last entry in the option list
1295
1296 Returns: pointer to an option entry, or NULL if not found
1297 */
1298
1299 static optionlist *
1300 find_option(uschar *name, optionlist *ol, int last)
1301 {
1302 int first = 0;
1303 while (last > first)
1304 {
1305 int middle = (first + last)/2;
1306 int c = Ustrcmp(name, ol[middle].name);
1307
1308 if (c == 0) return ol + middle;
1309 else if (c > 0) first = middle + 1;
1310 else last = middle;
1311 }
1312 return NULL;
1313 }
1314
1315
1316
1317 /*************************************************
1318 * Find a set flag in option list *
1319 *************************************************/
1320
1321 /* Because some versions of Unix make no restrictions on the values of uids and
1322 gids (even negative ones), we cannot represent "unset" by a special value.
1323 There is therefore a separate boolean variable for each one indicating whether
1324 a value is set or not. This function returns a pointer to the boolean, given
1325 the original option name. It is a major disaster if the flag cannot be found.
1326
1327 Arguments:
1328 name the name of the uid or gid option
1329 oltop points to the start of the relevant option list
1330 last one more than the offset of the last item in the option list
1331 data_block NULL when reading main options => data values in the option
1332 list are absolute addresses; otherwise they are byte offsets
1333 in data_block (used for driver options)
1334
1335 Returns: a pointer to the boolean flag.
1336 */
1337
1338 static BOOL *
1339 get_set_flag(uschar *name, optionlist *oltop, int last, void *data_block)
1340 {
1341 optionlist *ol;
1342 uschar name2[64];
1343 sprintf(CS name2, "*set_%.50s", name);
1344 ol = find_option(name2, oltop, last);
1345 if (ol == NULL) log_write(0, LOG_MAIN|LOG_PANIC_DIE,
1346 "Exim internal error: missing set flag for %s", name);
1347 return (data_block == NULL)? (BOOL *)(ol->value) :
1348 (BOOL *)(US data_block + (long int)(ol->value));
1349 }
1350
1351
1352
1353
1354 /*************************************************
1355 * Output extra characters message and die *
1356 *************************************************/
1357
1358 /* Called when an option line has junk on the end. Sometimes this is because
1359 the sysadmin thinks comments are permitted.
1360
1361 Arguments:
1362 s points to the extra characters
1363 t1..t3 strings to insert in the log message
1364
1365 Returns: doesn't return; dies
1366 */
1367
1368 static void
1369 extra_chars_error(const uschar *s, const uschar *t1, const uschar *t2, const uschar *t3)
1370 {
1371 uschar *comment = US"";
1372 if (*s == '#') comment = US" (# is comment only at line start)";
1373 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1374 "extra characters follow %s%s%s%s", t1, t2, t3, comment);
1375 }
1376
1377
1378
1379 /*************************************************
1380 * Read rewrite information *
1381 *************************************************/
1382
1383 /* Each line of rewrite information contains:
1384
1385 . A complete address in the form user@domain, possibly with
1386 leading * for each part; or alternatively, a regex.
1387
1388 . A replacement string (which will be expanded).
1389
1390 . An optional sequence of one-letter flags, indicating which
1391 headers etc. to apply this rule to.
1392
1393 All this is decoded and placed into a control block. The OR of the flags is
1394 maintained in a common word.
1395
1396 Arguments:
1397 p points to the string that makes up the rule
1398 existflags points to the overall flag word
1399 isglobal TRUE if reading global rewrite rules
1400
1401 Returns: the control block for the parsed rule.
1402 */
1403
1404 static rewrite_rule *
1405 readconf_one_rewrite(const uschar *p, int *existflags, BOOL isglobal)
1406 {
1407 rewrite_rule *next = store_get(sizeof(rewrite_rule), FALSE);
1408
1409 next->next = NULL;
1410 next->key = string_dequote(&p);
1411
1412 while (isspace(*p)) p++;
1413 if (*p == 0)
1414 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1415 "missing rewrite replacement string");
1416
1417 next->flags = 0;
1418 next->replacement = string_dequote(&p);
1419
1420 while (*p != 0) switch (*p++)
1421 {
1422 case ' ': case '\t': break;
1423
1424 case 'q': next->flags |= rewrite_quit; break;
1425 case 'w': next->flags |= rewrite_whole; break;
1426
1427 case 'h': next->flags |= rewrite_all_headers; break;
1428 case 's': next->flags |= rewrite_sender; break;
1429 case 'f': next->flags |= rewrite_from; break;
1430 case 't': next->flags |= rewrite_to; break;
1431 case 'c': next->flags |= rewrite_cc; break;
1432 case 'b': next->flags |= rewrite_bcc; break;
1433 case 'r': next->flags |= rewrite_replyto; break;
1434
1435 case 'E': next->flags |= rewrite_all_envelope; break;
1436 case 'F': next->flags |= rewrite_envfrom; break;
1437 case 'T': next->flags |= rewrite_envto; break;
1438
1439 case 'Q': next->flags |= rewrite_qualify; break;
1440 case 'R': next->flags |= rewrite_repeat; break;
1441
1442 case 'S':
1443 next->flags |= rewrite_smtp;
1444 if (next->key[0] != '^' && Ustrncmp(next->key, "\\N^", 3) != 0)
1445 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1446 "rewrite rule has the S flag but is not a regular expression");
1447 break;
1448
1449 default:
1450 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1451 "unknown rewrite flag character '%c' "
1452 "(could be missing quotes round replacement item)", p[-1]);
1453 break;
1454 }
1455
1456 /* If no action flags are set, set all the "normal" rewrites. */
1457
1458 if ((next->flags & (rewrite_all | rewrite_smtp)) == 0)
1459 next->flags |= isglobal? rewrite_all : rewrite_all_headers;
1460
1461 /* Remember which exist, for optimization, and return the rule */
1462
1463 *existflags |= next->flags;
1464 return next;
1465 }
1466
1467
1468
1469
1470 /*************************************************
1471 * Read global rewrite information *
1472 *************************************************/
1473
1474 /* Each line is a single rewrite rule; it is parsed into a control block
1475 by readconf_one_rewrite(), and its flags are ORed into the global flag
1476 word rewrite_existflags. */
1477
1478 void
1479 readconf_rewrites(void)
1480 {
1481 rewrite_rule **chain = &global_rewrite_rules;
1482 uschar *p;
1483
1484 while ((p = get_config_line()) != NULL)
1485 {
1486 rewrite_rule *next = readconf_one_rewrite(p, &rewrite_existflags, TRUE);
1487 *chain = next;
1488 chain = &(next->next);
1489 }
1490 }
1491
1492
1493
1494 /*************************************************
1495 * Read a string *
1496 *************************************************/
1497
1498 /* Strings are read into the normal store pool. As long we aren't too
1499 near the end of the current block, the string will just use what is necessary
1500 on the top of the stacking pool, because string_cat() uses the extension
1501 mechanism.
1502
1503 Argument:
1504 s the rest of the input line
1505 name the option name (for errors)
1506
1507 Returns: pointer to the string
1508 */
1509
1510 static uschar *
1511 read_string(const uschar *s, const uschar *name)
1512 {
1513 uschar *yield;
1514 const uschar *ss;
1515
1516 if (*s != '\"') return string_copy(s);
1517
1518 ss = s;
1519 yield = string_dequote(&s);
1520
1521 if (s == ss+1 || s[-1] != '\"')
1522 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1523 "missing quote at end of string value for %s", name);
1524
1525 if (*s != 0) extra_chars_error(s, US"string value for ", name, US"");
1526
1527 return yield;
1528 }
1529
1530
1531 /*************************************************
1532 * Custom-handler options *
1533 *************************************************/
1534 static void
1535 fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags)
1536 {
1537 if (flags & opt_fn_print)
1538 {
1539 if (flags & opt_fn_print_label) printf("%s = ", name);
1540 printf("%s\n", smtp_receive_timeout_s
1541 ? string_printing2(smtp_receive_timeout_s, FALSE)
1542 : readconf_printtime(smtp_receive_timeout));
1543 }
1544 else if (*str == '$')
1545 smtp_receive_timeout_s = string_copy(str);
1546 else
1547 {
1548 /* "smtp_receive_timeout", opt_time, &smtp_receive_timeout */
1549 smtp_receive_timeout = readconf_readtime(str, 0, FALSE);
1550 if (smtp_receive_timeout < 0)
1551 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
1552 name);
1553 }
1554 }
1555
1556 /*************************************************
1557 * Handle option line *
1558 *************************************************/
1559
1560 /* This function is called from several places to process a line containing the
1561 setting of an option. The first argument is the line to be decoded; it has been
1562 checked not to be empty and not to start with '#'. Trailing newlines and white
1563 space have been removed. The second argument is a pointer to the list of
1564 variable names that are to be recognized, together with their types and
1565 locations, and the third argument gives the number of entries in the list.
1566
1567 The fourth argument is a pointer to a data block. If it is NULL, then the data
1568 values in the options list are absolute addresses. Otherwise, they are byte
1569 offsets in the data block.
1570
1571 String option data may continue onto several lines; this function reads further
1572 data from config_file if necessary.
1573
1574 The yield of this function is normally zero. If a string continues onto
1575 multiple lines, then the data value is permitted to be followed by a comma
1576 or a semicolon (for use in drivers) and the yield is that character.
1577
1578 Arguments:
1579 buffer contains the configuration line to be handled
1580 oltop points to the start of the relevant option list
1581 last one more than the offset of the last item in the option list
1582 data_block NULL when reading main options => data values in the option
1583 list are absolute addresses; otherwise they are byte offsets
1584 in data_block when they have opt_public set; otherwise
1585 they are byte offsets in data_block->options_block.
1586 unknown_txt format string to use in panic message for unknown option;
1587 must contain %s for option name
1588 if given as NULL, don't panic on unknown option
1589
1590 Returns: TRUE if an option was read successfully,
1591 FALSE false for an unknown option if unknown_txt == NULL,
1592 otherwise panic and die on an unknown option
1593 */
1594
1595 static BOOL
1596 readconf_handle_option(uschar *buffer, optionlist *oltop, int last,
1597 void *data_block, uschar *unknown_txt)
1598 {
1599 int ptr = 0;
1600 int offset = 0;
1601 int count, type, value;
1602 int issecure = 0;
1603 uid_t uid;
1604 gid_t gid;
1605 BOOL boolvalue = TRUE;
1606 BOOL freesptr = TRUE;
1607 optionlist *ol, *ol2;
1608 struct passwd *pw;
1609 rmark reset_point;
1610 int intbase = 0;
1611 uschar *inttype = US"";
1612 uschar *sptr;
1613 uschar *s = buffer;
1614 uschar **str_target;
1615 uschar name[64];
1616 uschar name2[64];
1617
1618 /* There may be leading spaces; thereafter, we expect an option name starting
1619 with a letter. */
1620
1621 while (isspace(*s)) s++;
1622 if (!isalpha(*s))
1623 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option setting expected: %s", s);
1624
1625 /* Read the name of the option, and skip any subsequent white space. If
1626 it turns out that what we read was "hide", set the flag indicating that
1627 this is a secure option, and loop to read the next word. */
1628
1629 for (int n = 0; n < 2; n++)
1630 {
1631 while (isalnum(*s) || *s == '_')
1632 {
1633 if (ptr < sizeof(name)-1) name[ptr++] = *s;
1634 s++;
1635 }
1636 name[ptr] = 0;
1637 while (isspace(*s)) s++;
1638 if (Ustrcmp(name, "hide") != 0) break;
1639 issecure = opt_secure;
1640 ptr = 0;
1641 }
1642
1643 /* Deal with "no_" or "not_" here for booleans */
1644
1645 if (Ustrncmp(name, "no_", 3) == 0)
1646 {
1647 boolvalue = FALSE;
1648 offset = 3;
1649 }
1650
1651 if (Ustrncmp(name, "not_", 4) == 0)
1652 {
1653 boolvalue = FALSE;
1654 offset = 4;
1655 }
1656
1657 /* Search the list for the given name. A non-existent name, or an option that
1658 is set twice, is a disaster. */
1659
1660 if (!(ol = find_option(name + offset, oltop, last)))
1661 {
1662 if (unknown_txt == NULL) return FALSE;
1663 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, CS unknown_txt, name);
1664 }
1665
1666 if ((ol->type & opt_set) && !(ol->type & (opt_rep_con | opt_rep_str)))
1667 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1668 "\"%s\" option set for the second time", name);
1669
1670 ol->type |= opt_set | issecure;
1671 type = ol->type & opt_mask;
1672
1673 /* Types with data values must be followed by '='; the "no[t]_" prefix
1674 applies only to boolean values. */
1675
1676 if (type < opt_bool || type > opt_bool_last)
1677 {
1678 if (offset != 0)
1679 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1680 "negation prefix applied to a non-boolean option");
1681 if (*s == 0)
1682 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1683 "unexpected end of line (data missing) after %s", name);
1684 if (*s != '=')
1685 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing \"=\" after %s", name);
1686 }
1687
1688 /* If a boolean wasn't preceded by "no[t]_" it can be followed by = and
1689 true/false/yes/no, or, in the case of opt_expand_bool, a general string that
1690 ultimately expands to one of those values. */
1691
1692 else if (*s != 0 && (offset != 0 || *s != '='))
1693 extra_chars_error(s, US"boolean option ", name, US"");
1694
1695 /* Skip white space after = */
1696
1697 if (*s == '=') while (isspace((*(++s))));
1698
1699 /* If there is a data block and the opt_public flag is not set, change
1700 the data block pointer to the private options block. */
1701
1702 if (data_block != NULL && (ol->type & opt_public) == 0)
1703 data_block = (void *)(((driver_instance *)data_block)->options_block);
1704
1705 /* Now get the data according to the type. */
1706
1707 switch (type)
1708 {
1709 /* If a string value is not enclosed in quotes, it consists of
1710 the rest of the current line, verbatim. Otherwise, string escapes
1711 are processed.
1712
1713 A transport is specified as a string, which is then looked up in the
1714 list of transports. A search type is specified as one of a number of
1715 known strings.
1716
1717 A set or rewrite rules for a driver is specified as a string, which is
1718 then parsed into a suitable chain of control blocks.
1719
1720 Uids and gids are specified as strings which are then looked up in the
1721 passwd file. Lists of uids and gids are similarly specified as colon-
1722 separated strings. */
1723
1724 case opt_stringptr:
1725 case opt_uid:
1726 case opt_gid:
1727 case opt_expand_uid:
1728 case opt_expand_gid:
1729 case opt_uidlist:
1730 case opt_gidlist:
1731 case opt_rewrite:
1732
1733 reset_point = store_mark();
1734 sptr = read_string(s, name);
1735
1736 /* Having read a string, we now have several different ways of using it,
1737 depending on the data type, so do another switch. If keeping the actual
1738 string is not required (because it is interpreted), freesptr is set TRUE,
1739 and at the end we reset the pool. */
1740
1741 switch (type)
1742 {
1743 /* If this was a string, set the variable to point to the new string,
1744 and set the flag so its store isn't reclaimed. If it was a list of rewrite
1745 rules, we still keep the string (for printing), and parse the rules into a
1746 control block and flags word. */
1747
1748 case opt_stringptr:
1749 str_target = data_block ? USS (US data_block + (long int)(ol->value))
1750 : USS (ol->value);
1751 if (ol->type & opt_rep_con)
1752 {
1753 uschar * saved_condition;
1754 /* We already have a condition, we're conducting a crude hack to let
1755 multiple condition rules be chained together, despite storing them in
1756 text form. */
1757 *str_target = string_copy_perm( (saved_condition = *str_target)
1758 ? string_sprintf("${if and{{bool_lax{%s}}{bool_lax{%s}}}}",
1759 saved_condition, sptr)
1760 : sptr,
1761 FALSE);
1762 /* TODO(pdp): there is a memory leak here and just below
1763 when we set 3 or more conditions; I still don't
1764 understand the store mechanism enough to know
1765 what's the safe way to free content from an earlier store.
1766 AFAICT, stores stack, so freeing an early stored item also stores
1767 all data alloc'd after it. If we knew conditions were adjacent,
1768 we could survive that, but we don't. So I *think* we need to take
1769 another bit from opt_type to indicate "malloced"; this seems like
1770 quite a hack, especially for this one case. It also means that
1771 we can't ever reclaim the store from the *first* condition.
1772
1773 Because we only do this once, near process start-up, I'm prepared to
1774 let this slide for the time being, even though it rankles. */
1775 }
1776 else if (ol->type & opt_rep_str)
1777 {
1778 uschar sep_o =
1779 Ustrncmp(name, "headers_add", 11) == 0 ? '\n'
1780 : Ustrncmp(name, "set", 3) == 0 ? ';'
1781 : ':';
1782 int sep_i = -(int)sep_o;
1783 const uschar * list = sptr;
1784 uschar * s;
1785 gstring * list_o = NULL;
1786
1787 if (*str_target)
1788 {
1789 list_o = string_get(Ustrlen(*str_target) + Ustrlen(sptr));
1790 list_o = string_cat(list_o, *str_target);
1791 }
1792
1793 while ((s = string_nextinlist(&list, &sep_i, NULL, 0)))
1794 list_o = string_append_listele(list_o, sep_o, s);
1795
1796 if (list_o)
1797 *str_target = string_copy_perm(string_from_gstring(list_o), FALSE);
1798 }
1799 else
1800 {
1801 *str_target = sptr;
1802 freesptr = FALSE;
1803 }
1804 break;
1805
1806 case opt_rewrite:
1807 if (data_block)
1808 *USS (US data_block + (long int)(ol->value)) = sptr;
1809 else
1810 *USS (ol->value) = sptr;
1811 freesptr = FALSE;
1812 if (type == opt_rewrite)
1813 {
1814 int sep = 0;
1815 int *flagptr;
1816 uschar *p = sptr;
1817 rewrite_rule **chain;
1818 optionlist *ol3;
1819
1820 sprintf(CS name2, "*%.50s_rules", name);
1821 ol2 = find_option(name2, oltop, last);
1822 sprintf(CS name2, "*%.50s_flags", name);
1823 ol3 = find_option(name2, oltop, last);
1824
1825 if (ol2 == NULL || ol3 == NULL)
1826 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1827 "rewrite rules not available for driver");
1828
1829 if (data_block == NULL)
1830 {
1831 chain = (rewrite_rule **)(ol2->value);
1832 flagptr = (int *)(ol3->value);
1833 }
1834 else
1835 {
1836 chain = (rewrite_rule **)(US data_block + (long int)(ol2->value));
1837 flagptr = (int *)(US data_block + (long int)(ol3->value));
1838 }
1839
1840 while ((p = string_nextinlist(CUSS &sptr, &sep, big_buffer, BIG_BUFFER_SIZE)))
1841 {
1842 rewrite_rule *next = readconf_one_rewrite(p, flagptr, FALSE);
1843 *chain = next;
1844 chain = &(next->next);
1845 }
1846
1847 if ((*flagptr & (rewrite_all_envelope | rewrite_smtp)) != 0)
1848 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "rewrite rule specifies a "
1849 "non-header rewrite - not allowed at transport time -");
1850 }
1851 break;
1852
1853 /* If it was an expanded uid, see if there is any expansion to be
1854 done by checking for the presence of a $ character. If there is, save it
1855 in the corresponding *expand_user option field. Otherwise, fall through
1856 to treat it as a fixed uid. Ensure mutual exclusivity of the two kinds
1857 of data. */
1858
1859 case opt_expand_uid:
1860 sprintf(CS name2, "*expand_%.50s", name);
1861 ol2 = find_option(name2, oltop, last);
1862 if (ol2 != NULL)
1863 {
1864 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1865
1866 if (data_block == NULL)
1867 *((uschar **)(ol2->value)) = ss;
1868 else
1869 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
1870
1871 if (ss != NULL)
1872 {
1873 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1874 freesptr = FALSE;
1875 break;
1876 }
1877 }
1878
1879 /* Look up a fixed uid, and also make use of the corresponding gid
1880 if a passwd entry is returned and the gid has not been set. */
1881
1882 case opt_uid:
1883 if (!route_finduser(sptr, &pw, &uid))
1884 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found", sptr);
1885 if (data_block == NULL)
1886 *((uid_t *)(ol->value)) = uid;
1887 else
1888 *((uid_t *)(US data_block + (long int)(ol->value))) = uid;
1889
1890 /* Set the flag indicating a fixed value is set */
1891
1892 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1893
1894 /* Handle matching gid if we have a passwd entry: done by finding the
1895 same name with terminating "user" changed to "group"; if not found,
1896 ignore. Also ignore if the value is already set. */
1897
1898 if (pw == NULL) break;
1899 Ustrcpy(name+Ustrlen(name)-4, US"group");
1900 ol2 = find_option(name, oltop, last);
1901 if (ol2 != NULL && ((ol2->type & opt_mask) == opt_gid ||
1902 (ol2->type & opt_mask) == opt_expand_gid))
1903 {
1904 BOOL *set_flag = get_set_flag(name, oltop, last, data_block);
1905 if (! *set_flag)
1906 {
1907 if (data_block == NULL)
1908 *((gid_t *)(ol2->value)) = pw->pw_gid;
1909 else
1910 *((gid_t *)(US data_block + (long int)(ol2->value))) = pw->pw_gid;
1911 *set_flag = TRUE;
1912 }
1913 }
1914 break;
1915
1916 /* If it was an expanded gid, see if there is any expansion to be
1917 done by checking for the presence of a $ character. If there is, save it
1918 in the corresponding *expand_user option field. Otherwise, fall through
1919 to treat it as a fixed gid. Ensure mutual exclusivity of the two kinds
1920 of data. */
1921
1922 case opt_expand_gid:
1923 sprintf(CS name2, "*expand_%.50s", name);
1924 ol2 = find_option(name2, oltop, last);
1925 if (ol2 != NULL)
1926 {
1927 uschar *ss = (Ustrchr(sptr, '$') != NULL)? sptr : NULL;
1928
1929 if (data_block == NULL)
1930 *((uschar **)(ol2->value)) = ss;
1931 else
1932 *((uschar **)(US data_block + (long int)(ol2->value))) = ss;
1933
1934 if (ss != NULL)
1935 {
1936 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1937 freesptr = FALSE;
1938 break;
1939 }
1940 }
1941
1942 /* Handle freestanding gid */
1943
1944 case opt_gid:
1945 if (!route_findgroup(sptr, &gid))
1946 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found", sptr);
1947 if (data_block == NULL)
1948 *((gid_t *)(ol->value)) = gid;
1949 else
1950 *((gid_t *)(US data_block + (long int)(ol->value))) = gid;
1951 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1952 break;
1953
1954 /* If it was a uid list, look up each individual entry, and build
1955 a vector of uids, with a count in the first element. Put the vector
1956 in malloc store so we can free the string. (We are reading into
1957 permanent store already.) */
1958
1959 case opt_uidlist:
1960 {
1961 int count = 1;
1962 uid_t *list;
1963 int ptr = 0;
1964 const uschar *p;
1965 const uschar *op = expand_string (sptr);
1966
1967 if (op == NULL)
1968 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
1969 name, expand_string_message);
1970
1971 p = op;
1972 if (*p != 0) count++;
1973 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
1974 list = store_malloc(count*sizeof(uid_t));
1975 list[ptr++] = (uid_t)(count - 1);
1976
1977 if (data_block == NULL)
1978 *((uid_t **)(ol->value)) = list;
1979 else
1980 *((uid_t **)(US data_block + (long int)(ol->value))) = list;
1981
1982 p = op;
1983 while (count-- > 1)
1984 {
1985 int sep = 0;
1986 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
1987 if (!route_finduser(big_buffer, NULL, &uid))
1988 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found",
1989 big_buffer);
1990 list[ptr++] = uid;
1991 }
1992 }
1993 break;
1994
1995 /* If it was a gid list, look up each individual entry, and build
1996 a vector of gids, with a count in the first element. Put the vector
1997 in malloc store so we can free the string. (We are reading into permanent
1998 store already.) */
1999
2000 case opt_gidlist:
2001 {
2002 int count = 1;
2003 gid_t *list;
2004 int ptr = 0;
2005 const uschar *p;
2006 const uschar *op = expand_string (sptr);
2007
2008 if (op == NULL)
2009 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
2010 name, expand_string_message);
2011
2012 p = op;
2013 if (*p != 0) count++;
2014 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
2015 list = store_malloc(count*sizeof(gid_t));
2016 list[ptr++] = (gid_t)(count - 1);
2017
2018 if (data_block == NULL)
2019 *((gid_t **)(ol->value)) = list;
2020 else
2021 *((gid_t **)(US data_block + (long int)(ol->value))) = list;
2022
2023 p = op;
2024 while (count-- > 1)
2025 {
2026 int sep = 0;
2027 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
2028 if (!route_findgroup(big_buffer, &gid))
2029 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found",
2030 big_buffer);
2031 list[ptr++] = gid;
2032 }
2033 }
2034 break;
2035 }
2036
2037 /* Release store if the value of the string doesn't need to be kept. */
2038
2039 if (freesptr) reset_point = store_reset(reset_point);
2040 break;
2041
2042 /* Expanded boolean: if no characters follow, or if there are no dollar
2043 characters, this is a fixed-valued boolean, and we fall through. Otherwise,
2044 save the string for later expansion in the alternate place. */
2045
2046 case opt_expand_bool:
2047 if (*s != 0 && Ustrchr(s, '$') != 0)
2048 {
2049 sprintf(CS name2, "*expand_%.50s", name);
2050 if ((ol2 = find_option(name2, oltop, last)))
2051 {
2052 reset_point = store_mark();
2053 sptr = read_string(s, name);
2054 if (data_block == NULL)
2055 *((uschar **)(ol2->value)) = sptr;
2056 else
2057 *((uschar **)(US data_block + (long int)(ol2->value))) = sptr;
2058 freesptr = FALSE;
2059 break;
2060 }
2061 }
2062 /* Fall through */
2063
2064 /* Boolean: if no characters follow, the value is boolvalue. Otherwise
2065 look for yes/not/true/false. Some booleans are stored in a single bit in
2066 a single int. There's a special fudge for verify settings; without a suffix
2067 they set both xx_sender and xx_recipient. The table points to the sender
2068 value; search subsequently for the recipient. There's another special case:
2069 opt_bool_set also notes when a boolean has been set. */
2070
2071 case opt_bool:
2072 case opt_bit:
2073 case opt_bool_verify:
2074 case opt_bool_set:
2075 if (*s != 0)
2076 {
2077 s = readconf_readname(name2, 64, s);
2078 if (strcmpic(name2, US"true") == 0 || strcmpic(name2, US"yes") == 0)
2079 boolvalue = TRUE;
2080 else if (strcmpic(name2, US"false") == 0 || strcmpic(name2, US"no") == 0)
2081 boolvalue = FALSE;
2082 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2083 "\"%s\" is not a valid value for the \"%s\" option", name2, name);
2084 if (*s != 0) extra_chars_error(s, string_sprintf("\"%s\" ", name2),
2085 US"for boolean option ", name);
2086 }
2087
2088 /* Handle single-bit type. */
2089
2090 if (type == opt_bit)
2091 {
2092 int bit = 1 << ((ol->type >> 16) & 31);
2093 int *ptr = (data_block == NULL)?
2094 (int *)(ol->value) :
2095 (int *)(US data_block + (long int)ol->value);
2096 if (boolvalue) *ptr |= bit; else *ptr &= ~bit;
2097 break;
2098 }
2099
2100 /* Handle full BOOL types */
2101
2102 if (data_block == NULL)
2103 *((BOOL *)(ol->value)) = boolvalue;
2104 else
2105 *((BOOL *)(US data_block + (long int)(ol->value))) = boolvalue;
2106
2107 /* Verify fudge */
2108
2109 if (type == opt_bool_verify)
2110 {
2111 sprintf(CS name2, "%.50s_recipient", name + offset);
2112 ol2 = find_option(name2, oltop, last);
2113 if (ol2 != NULL)
2114 {
2115 if (data_block == NULL)
2116 *((BOOL *)(ol2->value)) = boolvalue;
2117 else
2118 *((BOOL *)(US data_block + (long int)(ol2->value))) = boolvalue;
2119 }
2120 }
2121
2122 /* Note that opt_bool_set type is set, if there is somewhere to do so */
2123
2124 else if (type == opt_bool_set)
2125 {
2126 sprintf(CS name2, "*set_%.50s", name + offset);
2127 ol2 = find_option(name2, oltop, last);
2128 if (ol2 != NULL)
2129 {
2130 if (data_block == NULL)
2131 *((BOOL *)(ol2->value)) = TRUE;
2132 else
2133 *((BOOL *)(US data_block + (long int)(ol2->value))) = TRUE;
2134 }
2135 }
2136 break;
2137
2138 /* Octal integer */
2139
2140 case opt_octint:
2141 intbase = 8;
2142 inttype = US"octal ";
2143
2144 /* Integer: a simple(ish) case; allow octal and hex formats, and
2145 suffixes K, M, G, and T. The different types affect output, not input. */
2146
2147 case opt_mkint:
2148 case opt_int:
2149 {
2150 uschar *endptr;
2151 long int lvalue;
2152
2153 errno = 0;
2154 lvalue = strtol(CS s, CSS &endptr, intbase);
2155
2156 if (endptr == s)
2157 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2158 inttype, name);
2159
2160 if (errno != ERANGE && *endptr)
2161 {
2162 uschar * mp = US"TtGgMmKk\0"; /* YyZzEePpTtGgMmKk */
2163
2164 if ((mp = Ustrchr(mp, *endptr)))
2165 {
2166 endptr++;
2167 do
2168 {
2169 if (lvalue > INT_MAX/1024 || lvalue < INT_MIN/1024)
2170 {
2171 errno = ERANGE;
2172 break;
2173 }
2174 lvalue *= 1024;
2175 }
2176 while (*(mp += 2));
2177 }
2178 }
2179
2180 if (errno == ERANGE || lvalue > INT_MAX || lvalue < INT_MIN)
2181 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2182 "absolute value of integer \"%s\" is too large (overflow)", s);
2183
2184 while (isspace(*endptr)) endptr++;
2185 if (*endptr)
2186 extra_chars_error(endptr, inttype, US"integer value for ", name);
2187
2188 value = (int)lvalue;
2189 }
2190
2191 if (data_block)
2192 *(int *)(US data_block + (long int)ol->value) = value;
2193 else
2194 *(int *)ol->value = value;
2195 break;
2196
2197 /* Integer held in K: again, allow formats and suffixes as above. */
2198
2199 case opt_Kint:
2200 {
2201 uschar *endptr;
2202 errno = 0;
2203 int_eximarith_t lvalue = strtol(CS s, CSS &endptr, intbase);
2204
2205 if (endptr == s)
2206 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2207 inttype, name);
2208
2209 if (errno != ERANGE && *endptr)
2210 {
2211 uschar * mp = US"ZzEePpTtGgMmKk\0"; /* YyZzEePpTtGgMmKk */
2212
2213 if ((mp = Ustrchr(mp, *endptr)))
2214 {
2215 endptr++;
2216 while (*(mp += 2))
2217 {
2218 if (lvalue > EXIM_ARITH_MAX/1024 || lvalue < EXIM_ARITH_MIN/1024)
2219 {
2220 errno = ERANGE;
2221 break;
2222 }
2223 lvalue *= 1024;
2224 }
2225 }
2226 else
2227 lvalue = (lvalue + 512)/1024;
2228 }
2229
2230 if (errno == ERANGE) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2231 "absolute value of integer \"%s\" is too large (overflow)", s);
2232
2233 while (isspace(*endptr)) endptr++;
2234 if (*endptr != 0)
2235 extra_chars_error(endptr, inttype, US"integer value for ", name);
2236
2237 if (data_block)
2238 *(int_eximarith_t *)(US data_block + (long int)ol->value) = lvalue;
2239 else
2240 *(int_eximarith_t *)ol->value = lvalue;
2241 break;
2242 }
2243
2244 /* Fixed-point number: held to 3 decimal places. */
2245
2246 case opt_fixed:
2247 if (sscanf(CS s, "%d%n", &value, &count) != 1)
2248 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2249 "fixed-point number expected for %s", name);
2250
2251 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2252 "integer \"%s\" is too large (overflow)", s);
2253
2254 value *= 1000;
2255
2256 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2257 "integer \"%s\" is too large (overflow)", s);
2258
2259 /* We get a coverity error here for using count, as it derived
2260 from the tainted buffer pointed to by s, as parsed by sscanf().
2261 By the definition of sscanf we must be accessing between start
2262 and end of s (assuming it is nul-terminated...) so ignore the error. */
2263 /* coverity[tainted_data] */
2264 if (s[count] == '.')
2265 {
2266 int d = 100;
2267 while (isdigit(s[++count]))
2268 {
2269 value += (s[count] - '0') * d;
2270 d /= 10;
2271 }
2272 }
2273
2274 while (isspace(s[count])) count++;
2275
2276 if (s[count] != 0)
2277 extra_chars_error(s+count, US"fixed-point value for ", name, US"");
2278
2279 if (data_block == NULL)
2280 *((int *)(ol->value)) = value;
2281 else
2282 *((int *)(US data_block + (long int)(ol->value))) = value;
2283 break;
2284
2285 /* There's a special routine to read time values. */
2286
2287 case opt_time:
2288 value = readconf_readtime(s, 0, FALSE);
2289 if (value < 0)
2290 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2291 name);
2292 if (data_block == NULL)
2293 *((int *)(ol->value)) = value;
2294 else
2295 *((int *)(US data_block + (long int)(ol->value))) = value;
2296 break;
2297
2298 /* A time list is a list of colon-separated times, with the first
2299 element holding the size of the list and the second the number of
2300 entries used. */
2301
2302 case opt_timelist:
2303 {
2304 int count = 0;
2305 int *list = (data_block == NULL)?
2306 (int *)(ol->value) :
2307 (int *)(US data_block + (long int)(ol->value));
2308
2309 if (*s != 0) for (count = 1; count <= list[0] - 2; count++)
2310 {
2311 int terminator = 0;
2312 uschar *snext = Ustrchr(s, ':');
2313 if (snext != NULL)
2314 {
2315 uschar *ss = snext;
2316 while (ss > s && isspace(ss[-1])) ss--;
2317 terminator = *ss;
2318 }
2319 value = readconf_readtime(s, terminator, FALSE);
2320 if (value < 0)
2321 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2322 name);
2323 if (count > 1 && value <= list[count])
2324 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2325 "time value out of order for %s", name);
2326 list[count+1] = value;
2327 if (snext == NULL) break;
2328 s = snext + 1;
2329 while (isspace(*s)) s++;
2330 }
2331
2332 if (count > list[0] - 2)
2333 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many time values for %s",
2334 name);
2335 if (count > 0 && list[2] == 0) count = 0;
2336 list[1] = count;
2337 break;
2338 }
2339
2340 case opt_func:
2341 {
2342 void (*fn)() = ol->value;
2343 fn(name, s, 0);
2344 break;
2345 }
2346 }
2347
2348 return TRUE;
2349 }
2350
2351
2352
2353 /*************************************************
2354 * Print a time value *
2355 *************************************************/
2356
2357 /*
2358 Argument: a time value in seconds
2359 Returns: pointer to a fixed buffer containing the time as a string,
2360 in readconf_readtime() format
2361 */
2362
2363 uschar *
2364 readconf_printtime(int t)
2365 {
2366 int s, m, h, d, w;
2367 uschar *p = time_buffer;
2368
2369 if (t < 0)
2370 {
2371 *p++ = '-';
2372 t = -t;
2373 }
2374
2375 s = t % 60;
2376 t /= 60;
2377 m = t % 60;
2378 t /= 60;
2379 h = t % 24;
2380 t /= 24;
2381 d = t % 7;
2382 w = t/7;
2383
2384 if (w > 0) p += sprintf(CS p, "%dw", w);
2385 if (d > 0) p += sprintf(CS p, "%dd", d);
2386 if (h > 0) p += sprintf(CS p, "%dh", h);
2387 if (m > 0) p += sprintf(CS p, "%dm", m);
2388 if (s > 0 || p == time_buffer) sprintf(CS p, "%ds", s);
2389
2390 return time_buffer;
2391 }
2392
2393
2394
2395 /*************************************************
2396 * Print an individual option value *
2397 *************************************************/
2398
2399 /* This is used by the -bP option, so prints to the standard output.
2400 The entire options list is passed in as an argument, because some options come
2401 in pairs - typically uid/gid settings, which can either be explicit numerical
2402 values, or strings to be expanded later. If the numerical value is unset,
2403 search for "*expand_<name>" to see if there is a string equivalent.
2404
2405 Arguments:
2406 ol option entry, or NULL for an unknown option
2407 name option name
2408 options_block NULL for main configuration options; otherwise points to
2409 a driver block; if the option doesn't have opt_public
2410 set, then options_block->options_block is where the item
2411 resides.
2412 oltop points to the option list in which ol exists
2413 last one more than the offset of the last entry in optop
2414 no_labels do not show "foo = " at the start.
2415
2416 Returns: boolean success
2417 */
2418
2419 static BOOL
2420 print_ol(optionlist *ol, uschar *name, void *options_block,
2421 optionlist *oltop, int last, BOOL no_labels)
2422 {
2423 struct passwd *pw;
2424 struct group *gr;
2425 optionlist *ol2;
2426 void *value;
2427 uid_t *uidlist;
2428 gid_t *gidlist;
2429 uschar *s;
2430 uschar name2[64];
2431
2432 if (!ol)
2433 {
2434 printf("%s is not a known option\n", name);
2435 return FALSE;
2436 }
2437
2438 /* Non-admin callers cannot see options that have been flagged secure by the
2439 "hide" prefix. */
2440
2441 if (!f.admin_user && ol->type & opt_secure)
2442 {
2443 if (no_labels)
2444 printf("%s\n", hidden);
2445 else
2446 printf("%s = %s\n", name, hidden);
2447 return TRUE;
2448 }
2449
2450 /* Else show the value of the option */
2451
2452 value = ol->value;
2453 if (options_block)
2454 {
2455 if (!(ol->type & opt_public))
2456 options_block = (void *)(((driver_instance *)options_block)->options_block);
2457 value = (void *)(US options_block + (long int)value);
2458 }
2459
2460 switch(ol->type & opt_mask)
2461 {
2462 case opt_stringptr:
2463 case opt_rewrite: /* Show the text value */
2464 s = *(USS value);
2465 if (!no_labels) printf("%s = ", name);
2466 printf("%s\n", s ? string_printing2(s, FALSE) : US"");
2467 break;
2468
2469 case opt_int:
2470 if (!no_labels) printf("%s = ", name);
2471 printf("%d\n", *((int *)value));
2472 break;
2473
2474 case opt_mkint:
2475 {
2476 int x = *((int *)value);
2477 if (x != 0 && (x & 1023) == 0)
2478 {
2479 int c = 'K';
2480 x >>= 10;
2481 if ((x & 1023) == 0)
2482 {
2483 c = 'M';
2484 x >>= 10;
2485 }
2486 if (!no_labels) printf("%s = ", name);
2487 printf("%d%c\n", x, c);
2488 }
2489 else
2490 {
2491 if (!no_labels) printf("%s = ", name);
2492 printf("%d\n", x);
2493 }
2494 }
2495 break;
2496
2497 case opt_Kint:
2498 {
2499 int_eximarith_t x = *((int_eximarith_t *)value);
2500 if (!no_labels) printf("%s = ", name);
2501 if (x == 0) printf("0\n");
2502 else if ((x & ((1<<30)-1)) == 0) printf(PR_EXIM_ARITH "T\n", x >> 30);
2503 else if ((x & ((1<<20)-1)) == 0) printf(PR_EXIM_ARITH "G\n", x >> 20);
2504 else if ((x & ((1<<10)-1)) == 0) printf(PR_EXIM_ARITH "M\n", x >> 10);
2505 else printf(PR_EXIM_ARITH "K\n", x);
2506 }
2507 break;
2508
2509 case opt_octint:
2510 if (!no_labels) printf("%s = ", name);
2511 printf("%#o\n", *((int *)value));
2512 break;
2513
2514 /* Can be negative only when "unset", in which case integer */
2515
2516 case opt_fixed:
2517 {
2518 int x = *((int *)value);
2519 int f = x % 1000;
2520 int d = 100;
2521 if (x < 0) printf("%s =\n", name); else
2522 {
2523 if (!no_labels) printf("%s = ", name);
2524 printf("%d.", x/1000);
2525 do
2526 {
2527 printf("%d", f/d);
2528 f %= d;
2529 d /= 10;
2530 }
2531 while (f != 0);
2532 printf("\n");
2533 }
2534 }
2535 break;
2536
2537 /* If the numerical value is unset, try for the string value */
2538
2539 case opt_expand_uid:
2540 if (! *get_set_flag(name, oltop, last, options_block))
2541 {
2542 sprintf(CS name2, "*expand_%.50s", name);
2543 if ((ol2 = find_option(name2, oltop, last)))
2544 {
2545 void *value2 = ol2->value;
2546 if (options_block)
2547 value2 = (void *)(US options_block + (long int)value2);
2548 s = *(USS value2);
2549 if (!no_labels) printf("%s = ", name);
2550 printf("%s\n", s ? string_printing(s) : US"");
2551 break;
2552 }
2553 }
2554
2555 /* Else fall through */
2556
2557 case opt_uid:
2558 if (!no_labels) printf("%s = ", name);
2559 if (! *get_set_flag(name, oltop, last, options_block))
2560 printf("\n");
2561 else
2562 if ((pw = getpwuid(*((uid_t *)value))))
2563 printf("%s\n", pw->pw_name);
2564 else
2565 printf("%ld\n", (long int)(*((uid_t *)value)));
2566 break;
2567
2568 /* If the numerical value is unset, try for the string value */
2569
2570 case opt_expand_gid:
2571 if (! *get_set_flag(name, oltop, last, options_block))
2572 {
2573 sprintf(CS name2, "*expand_%.50s", name);
2574 if ( (ol2 = find_option(name2, oltop, last))
2575 && (ol2->type & opt_mask) == opt_stringptr)
2576 {
2577 void *value2 = ol2->value;
2578 if (options_block)
2579 value2 = (void *)(US options_block + (long int)value2);
2580 s = *(USS value2);
2581 if (!no_labels) printf("%s = ", name);
2582 printf("%s\n", s ? string_printing(s) : US"");
2583 break;
2584 }
2585 }
2586
2587 /* Else fall through */
2588
2589 case opt_gid:
2590 if (!no_labels) printf("%s = ", name);
2591 if (! *get_set_flag(name, oltop, last, options_block))
2592 printf("\n");
2593 else
2594 if ((gr = getgrgid(*((int *)value))))
2595 printf("%s\n", gr->gr_name);
2596 else
2597 printf("%ld\n", (long int)(*((int *)value)));
2598 break;
2599
2600 case opt_uidlist:
2601 uidlist = *((uid_t **)value);
2602 if (!no_labels) printf("%s =", name);
2603 if (uidlist)
2604 {
2605 uschar sep = no_labels ? '\0' : ' ';
2606 for (int i = 1; i <= (int)(uidlist[0]); i++)
2607 {
2608 uschar *name = NULL;
2609 if ((pw = getpwuid(uidlist[i]))) name = US pw->pw_name;
2610 if (sep != '\0') printf("%c", sep);
2611 if (name) printf("%s", name);
2612 else printf("%ld", (long int)(uidlist[i]));
2613 sep = ':';
2614 }
2615 }
2616 printf("\n");
2617 break;
2618
2619 case opt_gidlist:
2620 gidlist = *((gid_t **)value);
2621 if (!no_labels) printf("%s =", name);
2622 if (gidlist)
2623 {
2624 uschar sep = no_labels ? '\0' : ' ';
2625 for (int i = 1; i <= (int)(gidlist[0]); i++)
2626 {
2627 uschar *name = NULL;
2628 if ((gr = getgrgid(gidlist[i]))) name = US gr->gr_name;
2629 if (sep != '\0') printf("%c", sep);
2630 if (name) printf("%s", name);
2631 else printf("%ld", (long int)(gidlist[i]));
2632 sep = ':';
2633 }
2634 }
2635 printf("\n");
2636 break;
2637
2638 case opt_time:
2639 if (!no_labels) printf("%s = ", name);
2640 printf("%s\n", readconf_printtime(*((int *)value)));
2641 break;
2642
2643 case opt_timelist:
2644 {
2645 int *list = (int *)value;
2646 if (!no_labels) printf("%s = ", name);
2647 for (int i = 0; i < list[1]; i++)
2648 printf("%s%s", i == 0 ? "" : ":", readconf_printtime(list[i+2]));
2649 printf("\n");
2650 }
2651 break;
2652
2653 case opt_bit:
2654 printf("%s%s\n", ((*((int *)value)) & (1 << ((ol->type >> 16) & 31)))?
2655 "" : "no_", name);
2656 break;
2657
2658 case opt_expand_bool:
2659 sprintf(CS name2, "*expand_%.50s", name);
2660 if ((ol2 = find_option(name2, oltop, last)) && ol2->value)
2661 {
2662 void *value2 = ol2->value;
2663 if (options_block)
2664 value2 = (void *)(US options_block + (long int)value2);
2665 s = *(USS value2);
2666 if (s)
2667 {
2668 if (!no_labels) printf("%s = ", name);
2669 printf("%s\n", string_printing(s));
2670 break;
2671 }
2672 /* s == NULL => string not set; fall through */
2673 }
2674
2675 /* Fall through */
2676
2677 case opt_bool:
2678 case opt_bool_verify:
2679 case opt_bool_set:
2680 printf("%s%s\n", (*((BOOL *)value))? "" : "no_", name);
2681 break;
2682
2683 case opt_func:
2684 {
2685 void (*fn)() = ol->value;
2686 fn(name, NULL, no_labels ? opt_fn_print : opt_fn_print|opt_fn_print_label);
2687 break;
2688 }
2689 }
2690 return TRUE;
2691 }
2692
2693
2694
2695 /*************************************************
2696 * Print value from main configuration *
2697 *************************************************/
2698
2699 /* This function, called as a result of encountering the -bP option,
2700 causes the value of any main configuration variable to be output if the
2701 second argument is NULL. There are some special values:
2702
2703 all print all main configuration options
2704 config_file print the name of the configuration file
2705 (configure_file will still work, for backward
2706 compatibility)
2707 routers print the routers' configurations
2708 transports print the transports' configuration
2709 authenticators print the authenticators' configuration
2710 macros print the macros' configuration
2711 router_list print a list of router names
2712 transport_list print a list of transport names
2713 authenticator_list print a list of authentication mechanism names
2714 macro_list print a list of macro names
2715 +name print a named list item
2716 local_scan print the local_scan options
2717 config print the configuration as it is parsed
2718 environment print the used execution environment
2719
2720 If the second argument is not NULL, it must be one of "router", "transport",
2721 "authenticator" or "macro" in which case the first argument identifies the
2722 driver whose options are to be printed.
2723
2724 Arguments:
2725 name option name if type == NULL; else driver name
2726 type NULL or driver type name, as described above
2727 no_labels avoid the "foo = " at the start of an item
2728
2729 Returns: Boolean success
2730 */
2731
2732 BOOL
2733 readconf_print(uschar *name, uschar *type, BOOL no_labels)
2734 {
2735 BOOL names_only = FALSE;
2736 optionlist *ol2 = NULL;
2737 driver_instance *d = NULL;
2738 int size = 0;
2739
2740 if (!type)
2741 {
2742 if (*name == '+')
2743 {
2744 tree_node *t;
2745 BOOL found = FALSE;
2746 static uschar *types[] = { US"address", US"domain", US"host",
2747 US"localpart" };
2748 static tree_node **anchors[] = { &addresslist_anchor, &domainlist_anchor,
2749 &hostlist_anchor, &localpartlist_anchor };
2750
2751 for (int i = 0; i < 4; i++)
2752 if ((t = tree_search(*(anchors[i]), name+1)))
2753 {
2754 found = TRUE;
2755 if (no_labels)
2756 printf("%s\n", ((namedlist_block *)(t->data.ptr))->string);
2757 else
2758 printf("%slist %s = %s\n", types[i], name+1,
2759 ((namedlist_block *)(t->data.ptr))->string);
2760 }
2761
2762 if (!found)
2763 printf("no address, domain, host, or local part list called \"%s\" "
2764 "exists\n", name+1);
2765
2766 return found;
2767 }
2768
2769 if ( Ustrcmp(name, "configure_file") == 0
2770 || Ustrcmp(name, "config_file") == 0)
2771 {
2772 printf("%s\n", CS config_main_filename);
2773 return TRUE;
2774 }
2775
2776 if (Ustrcmp(name, "all") == 0)
2777 {
2778 for (optionlist * ol = optionlist_config;
2779 ol < optionlist_config + nelem(optionlist_config); ol++)
2780 if (!(ol->type & opt_hidden))
2781 (void) print_ol(ol, US ol->name, NULL,
2782 optionlist_config, nelem(optionlist_config),
2783 no_labels);
2784 return TRUE;
2785 }
2786
2787 if (Ustrcmp(name, "local_scan") == 0)
2788 {
2789 #ifndef LOCAL_SCAN_HAS_OPTIONS
2790 printf("local_scan() options are not supported\n");
2791 return FALSE;
2792 #else
2793 for (optionlist * ol = local_scan_options;
2794 ol < local_scan_options + local_scan_options_count; ol++)
2795 (void) print_ol(ol, US ol->name, NULL, local_scan_options,
2796 local_scan_options_count, no_labels);
2797 return TRUE;
2798 #endif
2799 }
2800
2801 if (Ustrcmp(name, "config") == 0)
2802 {
2803 print_config(f.admin_user, no_labels);
2804 return TRUE;
2805 }
2806
2807 if (Ustrcmp(name, "routers") == 0)
2808 {
2809 type = US"router";
2810 name = NULL;
2811 }
2812 else if (Ustrcmp(name, "transports") == 0)
2813 {
2814 type = US"transport";
2815 name = NULL;
2816 }
2817 else if (Ustrcmp(name, "authenticators") == 0)
2818 {
2819 type = US"authenticator";
2820 name = NULL;
2821 }
2822 else if (Ustrcmp(name, "macros") == 0)
2823 {
2824 type = US"macro";
2825 name = NULL;
2826 }
2827 else if (Ustrcmp(name, "router_list") == 0)
2828 {
2829 type = US"router";
2830 name = NULL;
2831 names_only = TRUE;
2832 }
2833 else if (Ustrcmp(name, "transport_list") == 0)
2834 {
2835 type = US"transport";
2836 name = NULL;
2837 names_only = TRUE;
2838 }
2839 else if (Ustrcmp(name, "authenticator_list") == 0)
2840 {
2841 type = US"authenticator";
2842 name = NULL;
2843 names_only = TRUE;
2844 }
2845 else if (Ustrcmp(name, "macro_list") == 0)
2846 {
2847 type = US"macro";
2848 name = NULL;
2849 names_only = TRUE;
2850 }
2851 else if (Ustrcmp(name, "environment") == 0)
2852 {
2853 if (environ)
2854 {
2855 uschar ** p;
2856 for (p = USS environ; *p; p++) ;
2857 qsort(environ, p - USS environ, sizeof(*p), string_compare_by_pointer);
2858
2859 for (p = USS environ; *p; p++)
2860 {
2861 uschar * q;
2862 if (no_labels && (q = Ustrchr(*p, '='))) *q = '\0';
2863 puts(CS *p);
2864 }
2865 }
2866 return TRUE;
2867 }
2868
2869 else
2870 return print_ol(find_option(name,
2871 optionlist_config, nelem(optionlist_config)),
2872 name, NULL, optionlist_config, nelem(optionlist_config), no_labels);
2873 }
2874
2875 /* Handle the options for a router or transport. Skip options that are flagged
2876 as hidden. Some of these are options with names starting with '*', used for
2877 internal alternative representations of other options (which the printing
2878 function will sort out). Others are synonyms kept for backward compatibility.
2879 */
2880
2881 if (Ustrcmp(type, "router") == 0)
2882 {
2883 d = (driver_instance *)routers;
2884 ol2 = optionlist_routers;
2885 size = optionlist_routers_size;
2886 }
2887 else if (Ustrcmp(type, "transport") == 0)
2888 {
2889 d = (driver_instance *)transports;
2890 ol2 = optionlist_transports;
2891 size = optionlist_transports_size;
2892 }
2893 else if (Ustrcmp(type, "authenticator") == 0)
2894 {
2895 d = (driver_instance *)auths;
2896 ol2 = optionlist_auths;
2897 size = optionlist_auths_size;
2898 }
2899
2900 else if (Ustrcmp(type, "macro") == 0)
2901 {
2902 /* People store passwords in macros and they were previously not available
2903 for printing. So we have an admin_users restriction. */
2904 if (!f.admin_user)
2905 {
2906 fprintf(stderr, "exim: permission denied\n");
2907 return FALSE;
2908 }
2909 for (macro_item * m = macros; m; m = m->next)
2910 if (!name || Ustrcmp(name, m->name) == 0)
2911 {
2912 if (names_only)
2913 printf("%s\n", CS m->name);
2914 else if (no_labels)
2915 printf("%s\n", CS m->replacement);
2916 else
2917 printf("%s=%s\n", CS m->name, CS m->replacement);
2918 if (name)
2919 return TRUE;
2920 }
2921 if (!name) return TRUE;
2922
2923 printf("%s %s not found\n", type, name);
2924 return FALSE;
2925 }
2926
2927 if (names_only)
2928 {
2929 for (; d; d = d->next) printf("%s\n", CS d->name);
2930 return TRUE;
2931 }
2932
2933 /* Either search for a given driver, or print all of them */
2934
2935 for (; d; d = d->next)
2936 {
2937 BOOL rc = FALSE;
2938 if (!name)
2939 printf("\n%s %s:\n", d->name, type);
2940 else if (Ustrcmp(d->name, name) != 0) continue;
2941
2942 for (optionlist * ol = ol2; ol < ol2 + size; ol++)
2943 if (!(ol->type & opt_hidden))
2944 rc |= print_ol(ol, US ol->name, d, ol2, size, no_labels);
2945
2946 for (optionlist * ol = d->info->options;
2947 ol < d->info->options + *(d->info->options_count); ol++)
2948 if (!(ol->type & opt_hidden))
2949 rc |= print_ol(ol, US ol->name, d, d->info->options,
2950 *d->info->options_count, no_labels);
2951
2952 if (name) return rc;
2953 }
2954 if (!name) return TRUE;
2955
2956 printf("%s %s not found\n", type, name);
2957 return FALSE;
2958 }
2959
2960
2961
2962 /*************************************************
2963 * Read a named list item *
2964 *************************************************/
2965
2966 /* This function reads a name and a list (i.e. string). The name is used to
2967 save the list in a tree, sorted by its name. Each entry also has a number,
2968 which can be used for caching tests, but if the string contains any expansion
2969 items other than $key, the number is set negative to inhibit caching. This
2970 mechanism is used for domain, host, and address lists that are referenced by
2971 the "+name" syntax.
2972
2973 Arguments:
2974 anchorp points to the tree anchor
2975 numberp points to the current number for this tree
2976 max the maximum number permitted
2977 s the text of the option line, starting immediately after the name
2978 of the list type
2979 tname the name of the list type, for messages
2980
2981 Returns: nothing
2982 */
2983
2984 static void
2985 read_named_list(tree_node **anchorp, int *numberp, int max, uschar *s,
2986 uschar *tname)
2987 {
2988 BOOL forcecache = FALSE;
2989 uschar *ss;
2990 tree_node *t;
2991 namedlist_block *nb = store_get(sizeof(namedlist_block), FALSE);
2992
2993 if (Ustrncmp(s, "_cache", 6) == 0)
2994 {
2995 forcecache = TRUE;
2996 s += 6;
2997 }
2998
2999 if (!isspace(*s))
3000 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unrecognized configuration line");
3001
3002 if (*numberp >= max)
3003 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many named %ss (max is %d)\n",
3004 tname, max);
3005
3006 while (isspace(*s)) s++;
3007 ss = s;
3008 while (isalnum(*s) || *s == '_') s++;
3009 t = store_get(sizeof(tree_node) + s-ss, is_tainted(ss));
3010 Ustrncpy(t->name, ss, s-ss);
3011 t->name[s-ss] = 0;
3012 while (isspace(*s)) s++;
3013
3014 if (!tree_insertnode(anchorp, t))
3015 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3016 "duplicate name \"%s\" for a named %s", t->name, tname);
3017
3018 t->data.ptr = nb;
3019 nb->number = *numberp;
3020 *numberp += 1;
3021
3022 if (*s++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3023 "missing '=' after \"%s\"", t->name);
3024 while (isspace(*s)) s++;
3025 nb->string = read_string(s, t->name);
3026 nb->cache_data = NULL;
3027
3028 /* Check the string for any expansions; if any are found, mark this list
3029 uncacheable unless the user has explicited forced caching. */
3030
3031 if (!forcecache && Ustrchr(nb->string, '$') != NULL) nb->number = -1;
3032 }
3033
3034
3035
3036
3037 /*************************************************
3038 * Unpick data for a rate limit *
3039 *************************************************/
3040
3041 /* This function is called to unpick smtp_ratelimit_{mail,rcpt} into four
3042 separate values.
3043
3044 Arguments:
3045 s string, in the form t,b,f,l
3046 where t is the threshold (integer)
3047 b is the initial delay (time)
3048 f is the multiplicative factor (fixed point)
3049 k is the maximum time (time)
3050 threshold where to store threshold
3051 base where to store base in milliseconds
3052 factor where to store factor in milliseconds
3053 limit where to store limit
3054
3055 Returns: nothing (panics on error)
3056 */
3057
3058 static void
3059 unpick_ratelimit(uschar *s, int *threshold, int *base, double *factor,
3060 int *limit)
3061 {
3062 uschar bstring[16], lstring[16];
3063
3064 if (sscanf(CS s, "%d, %15[0123456789smhdw.], %lf, %15s", threshold, bstring,
3065 factor, lstring) == 4)
3066 {
3067 *base = readconf_readtime(bstring, 0, TRUE);
3068 *limit = readconf_readtime(lstring, 0, TRUE);
3069 if (*base >= 0 && *limit >= 0) return;
3070 }
3071 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "malformed ratelimit data: %s", s);
3072 }
3073
3074
3075
3076
3077 /*************************************************
3078 * Drop privs for checking TLS config *
3079 *************************************************/
3080
3081 /* We want to validate TLS options during readconf, but do not want to be
3082 root when we call into the TLS library, in case of library linkage errors
3083 which cause segfaults; before this check, those were always done as the Exim
3084 runtime user and it makes sense to continue with that.
3085
3086 Assumes: tls_require_ciphers has been set, if it will be
3087 exim_user has been set, if it will be
3088 exim_group has been set, if it will be
3089
3090 Returns: bool for "okay"; false will cause caller to immediately exit.
3091 */
3092
3093 #ifndef DISABLE_TLS
3094 static BOOL
3095 tls_dropprivs_validate_require_cipher(BOOL nowarn)
3096 {
3097 const uschar *errmsg;
3098 pid_t pid;
3099 int rc, status;
3100 void (*oldsignal)(int);
3101
3102 /* If TLS will never be used, no point checking ciphers */
3103
3104 if ( !tls_advertise_hosts
3105 || !*tls_advertise_hosts
3106 || Ustrcmp(tls_advertise_hosts, ":") == 0
3107 )
3108 return TRUE;
3109 else if (!nowarn && !tls_certificate)
3110 log_write(0, LOG_MAIN,
3111 "Warning: No server certificate defined; will use a selfsigned one.\n"
3112 " Suggested action: either install a certificate or change tls_advertise_hosts option");
3113
3114 oldsignal = signal(SIGCHLD, SIG_DFL);
3115
3116 fflush(NULL);
3117 if ((pid = fork()) < 0)
3118 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "fork failed for TLS check");
3119
3120 if (pid == 0)
3121 {
3122 /* in some modes, will have dropped privilege already */
3123 if (!geteuid())
3124 exim_setugid(exim_uid, exim_gid, FALSE,
3125 US"calling tls_validate_require_cipher");
3126
3127 if ((errmsg = tls_validate_require_cipher()))
3128 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3129 "tls_require_ciphers invalid: %s", errmsg);
3130 fflush(NULL);
3131 exim_underbar_exit(0);
3132 }
3133
3134 do {
3135 rc = waitpid(pid, &status, 0);
3136 } while (rc < 0 && errno == EINTR);
3137
3138 DEBUG(D_tls)
3139 debug_printf("tls_validate_require_cipher child %d ended: status=0x%x\n",
3140 (int)pid, status);
3141
3142 signal(SIGCHLD, oldsignal);
3143
3144 return status == 0;
3145 }
3146 #endif /*DISABLE_TLS*/
3147
3148
3149
3150
3151 /*************************************************
3152 * Read main configuration options *
3153 *************************************************/
3154
3155 /* This function is the first to be called for configuration reading. It
3156 opens the configuration file and reads general configuration settings until
3157 it reaches the end of the configuration section. The file is then left open so
3158 that the remaining configuration data can subsequently be read if needed for
3159 this run of Exim.
3160
3161 The configuration file must be owned either by root or exim, and be writeable
3162 only by root or uid/gid exim. The values for Exim's uid and gid can be changed
3163 in the config file, so the test is done on the compiled in values. A slight
3164 anomaly, to be carefully documented.
3165
3166 The name of the configuration file is taken from a list that is included in the
3167 binary of Exim. It can be altered from the command line, but if that is done,
3168 root privilege is immediately withdrawn unless the caller is root or exim.
3169 The first file on the list that exists is used.
3170
3171 For use on multiple systems that share file systems, first look for a
3172 configuration file whose name has the current node name on the end. If that is
3173 not found, try the generic name. For really contorted configurations, that run
3174 multiple Exims with different uid settings, first try adding the effective uid
3175 before the node name. These complications are going to waste resources on most
3176 systems. Therefore they are available only when requested by compile-time
3177 options. */
3178
3179 void
3180 readconf_main(BOOL nowarn)
3181 {
3182 int sep = 0;
3183 struct stat statbuf;
3184 uschar *s, *filename;
3185 const uschar *list = config_main_filelist;
3186
3187 /* Loop through the possible file names */
3188
3189 while((filename = string_nextinlist(&list, &sep, big_buffer, big_buffer_size)))
3190 {
3191
3192 /* Cut out all the fancy processing unless specifically wanted */
3193
3194 #if defined(CONFIGURE_FILE_USE_NODE) || defined(CONFIGURE_FILE_USE_EUID)
3195 uschar *suffix = filename + Ustrlen(filename);
3196
3197 /* Try for the node-specific file if a node name exists */
3198
3199 #ifdef CONFIGURE_FILE_USE_NODE
3200 struct utsname uts;
3201 if (uname(&uts) >= 0)
3202 {
3203 #ifdef CONFIGURE_FILE_USE_EUID
3204 sprintf(CS suffix, ".%ld.%.256s", (long int)original_euid, uts.nodename);
3205 config_file = Ufopen(filename, "rb");
3206 if (config_file == NULL)
3207 #endif /* CONFIGURE_FILE_USE_EUID */
3208 {
3209 sprintf(CS suffix, ".%.256s", uts.nodename);
3210 config_file = Ufopen(filename, "rb");
3211 }
3212 }
3213 #endif /* CONFIGURE_FILE_USE_NODE */
3214
3215 /* Otherwise, try the generic name, possibly with the euid added */
3216
3217 #ifdef CONFIGURE_FILE_USE_EUID
3218 if (config_file == NULL)
3219 {
3220 sprintf(CS suffix, ".%ld", (long int)original_euid);
3221 config_file = Ufopen(filename, "rb");
3222 }
3223 #endif /* CONFIGURE_FILE_USE_EUID */
3224
3225 /* Finally, try the unadorned name */
3226
3227 if (config_file == NULL)
3228 {
3229 *suffix = 0;
3230 config_file = Ufopen(filename, "rb");
3231 }
3232 #else /* if neither defined */
3233
3234 /* This is the common case when the fancy processing is not included. */
3235
3236 config_file = Ufopen(filename, "rb");
3237 #endif
3238
3239 /* If the file does not exist, continue to try any others. For any other
3240 error, break out (and die). */
3241
3242 if (config_file != NULL || errno != ENOENT) break;
3243 }
3244
3245 /* On success, save the name for verification; config_filename is used when
3246 logging configuration errors (it changes for .included files) whereas
3247 config_main_filename is the name shown by -bP. Failure to open a configuration
3248 file is a serious disaster. */
3249
3250 if (config_file)
3251 {
3252 uschar *last_slash = Ustrrchr(filename, '/');
3253 config_filename = config_main_filename = string_copy(filename);
3254
3255 /* The config_main_directory we need for the $config_dir expansion.
3256 config_main_filename we need for $config_file expansion.
3257 And config_dir is the directory of the current configuration, used for
3258 relative .includes. We do need to know it's name, as we change our working
3259 directory later. */
3260
3261 if (filename[0] == '/')
3262 config_main_directory = last_slash == filename ? US"/" : string_copyn(filename, last_slash - filename);
3263 else
3264 {
3265 /* relative configuration file name: working dir + / + basename(filename) */
3266
3267 uschar buf[PATH_MAX];
3268 gstring * g;
3269
3270 if (os_getcwd(buf, PATH_MAX) == NULL)
3271 {
3272 perror("exim: getcwd");
3273 exit(EXIT_FAILURE);
3274 }
3275 g = string_cat(NULL, buf);
3276
3277 /* If the dir does not end with a "/", append one */
3278 if (g->s[g->ptr-1] != '/')
3279 g = string_catn(g, US"/", 1);
3280
3281 /* If the config file contains a "/", extract the directory part */
3282 if (last_slash)
3283 g = string_catn(g, filename, last_slash - filename);
3284
3285 config_main_directory = string_from_gstring(g);
3286 }
3287 config_directory = config_main_directory;
3288 }
3289 else
3290 {
3291 if (filename == NULL)
3292 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "non-existent configuration file(s): "
3293 "%s", config_main_filelist);
3294 else
3295 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "%s", string_open_failed(errno,
3296 "configuration file %s", filename));
3297 }
3298
3299 /* Now, once we found and opened our configuration file, we change the directory
3300 to a safe place. Later we change to $spool_directory. */
3301
3302 if (Uchdir("/") < 0)
3303 {
3304 perror("exim: chdir `/': ");
3305 exit(EXIT_FAILURE);
3306 }
3307
3308 /* Check the status of the file we have opened, if we have retained root
3309 privileges and the file isn't /dev/null (which *should* be 0666). */
3310
3311 if (f.trusted_config && Ustrcmp(filename, US"/dev/null"))
3312 {
3313 if (fstat(fileno(config_file), &statbuf) != 0)
3314 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to stat configuration file %s",
3315 big_buffer);
3316
3317 if ((statbuf.st_uid != root_uid /* owner not root */
3318 #ifdef CONFIGURE_OWNER
3319 && statbuf.st_uid != config_uid /* owner not the special one */
3320 #endif
3321 ) || /* or */
3322 (statbuf.st_gid != root_gid /* group not root & */
3323 #ifdef CONFIGURE_GROUP
3324 && statbuf.st_gid != config_gid /* group not the special one */
3325 #endif
3326 && (statbuf.st_mode & 020) != 0) || /* group writeable */
3327 /* or */
3328 ((statbuf.st_mode & 2) != 0)) /* world writeable */
3329
3330 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Exim configuration file %s has the "
3331 "wrong owner, group, or mode", big_buffer);
3332
3333 /* Do a dummy store-allocation of a size related to the (toplevel) file size.
3334 This assumes we will need this much storage to handle all the allocations
3335 during startup; it won't help when .include is being used. When it does, it
3336 will cut down on the number of store blocks (and malloc calls, and sbrk
3337 syscalls). It also assume we're on the relevant pool. */
3338
3339 if (statbuf.st_size > 8192)
3340 {
3341 rmark r = store_mark();
3342 void * dummy = store_get((int)statbuf.st_size, FALSE);
3343 store_reset(r);
3344 }
3345 }
3346
3347 /* Do a dummy store-allocation of a size related to the (toplevel) file size.
3348 This assumes we will need this much storage to handle all the allocations
3349 during startup; it won't help when .include is being used. When it does, it
3350 will cut down on the number of store blocks (and malloc calls, and sbrk
3351 syscalls). It also assume we're on the relevant pool. */
3352
3353 if (statbuf.st_size > 8192)
3354 {
3355 rmark r = store_mark();
3356 void * dummy = store_get((int)statbuf.st_size, FALSE);
3357 store_reset(r);
3358 }
3359
3360 /* Process the main configuration settings. They all begin with a lower case
3361 letter. If we see something starting with an upper case letter, it is taken as
3362 a macro definition. */
3363
3364 while ((s = get_config_line()))
3365 {
3366 if (config_lineno == 1 && Ustrstr(s, "\xef\xbb\xbf") == s)
3367 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3368 "found unexpected BOM (Byte Order Mark)");
3369
3370 if (isupper(s[0]))
3371 { if (!macro_read_assignment(s)) exim_exit(EXIT_FAILURE, US""); }
3372
3373 else if (Ustrncmp(s, "domainlist", 10) == 0)
3374 read_named_list(&domainlist_anchor, &domainlist_count,
3375 MAX_NAMED_LIST, s+10, US"domain list");
3376
3377 else if (Ustrncmp(s, "hostlist", 8) == 0)
3378 read_named_list(&hostlist_anchor, &hostlist_count,
3379 MAX_NAMED_LIST, s+8, US"host list");
3380
3381 else if (Ustrncmp(s, US"addresslist", 11) == 0)
3382 read_named_list(&addresslist_anchor, &addresslist_count,
3383 MAX_NAMED_LIST, s+11, US"address list");
3384
3385 else if (Ustrncmp(s, US"localpartlist", 13) == 0)
3386 read_named_list(&localpartlist_anchor, &localpartlist_count,
3387 MAX_NAMED_LIST, s+13, US"local part list");
3388
3389 else
3390 (void) readconf_handle_option(s, optionlist_config, optionlist_config_size,
3391 NULL, US"main option \"%s\" unknown");
3392 }
3393
3394
3395 /* If local_sender_retain is set, local_from_check must be unset. */
3396
3397 if (local_sender_retain && local_from_check)
3398 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "both local_from_check and "
3399 "local_sender_retain are set; this combination is not allowed");
3400
3401 /* If the timezone string is empty, set it to NULL, implying no TZ variable
3402 wanted. */
3403
3404 if (timezone_string != NULL && *timezone_string == 0) timezone_string = NULL;
3405
3406 /* The max retry interval must not be greater than 24 hours. */
3407
3408 if (retry_interval_max > 24*60*60) retry_interval_max = 24*60*60;
3409
3410 /* remote_max_parallel must be > 0 */
3411
3412 if (remote_max_parallel <= 0) remote_max_parallel = 1;
3413
3414 /* Save the configured setting of freeze_tell, so we can re-instate it at the
3415 start of a new SMTP message. */
3416
3417 freeze_tell_config = freeze_tell;
3418
3419 /* The primary host name may be required for expansion of spool_directory
3420 and log_file_path, so make sure it is set asap. It is obtained from uname(),
3421 but if that yields an unqualified value, make a FQDN by using gethostbyname to
3422 canonize it. Some people like upper case letters in their host names, so we
3423 don't force the case. */
3424
3425 if (primary_hostname == NULL)
3426 {
3427 const uschar *hostname;
3428 struct utsname uts;
3429 if (uname(&uts) < 0)
3430 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "uname() failed to yield host name");
3431 hostname = US uts.nodename;
3432
3433 if (Ustrchr(hostname, '.') == NULL)
3434 {
3435 int af = AF_INET;
3436 struct hostent *hostdata;
3437
3438 #if HAVE_IPV6
3439 if (!disable_ipv6 && (dns_ipv4_lookup == NULL ||
3440 match_isinlist(hostname, CUSS &dns_ipv4_lookup, 0, NULL, NULL,
3441 MCL_DOMAIN, TRUE, NULL) != OK))
3442 af = AF_INET6;
3443 #else
3444 af = AF_INET;
3445 #endif
3446
3447 for (;;)
3448 {
3449 #if HAVE_IPV6
3450 #if HAVE_GETIPNODEBYNAME
3451 int error_num;
3452 hostdata = getipnodebyname(CS hostname, af, 0, &error_num);
3453 #else
3454 hostdata = gethostbyname2(CS hostname, af);
3455 #endif
3456 #else
3457 hostdata = gethostbyname(CS hostname);
3458 #endif
3459
3460 if (hostdata != NULL)
3461 {
3462 hostname = US hostdata->h_name;
3463 break;
3464 }
3465
3466 if (af == AF_INET) break;
3467 af = AF_INET;
3468 }
3469 }
3470
3471 primary_hostname = string_copy(hostname);
3472 }
3473
3474 /* Set up default value for smtp_active_hostname */
3475
3476 smtp_active_hostname = primary_hostname;
3477
3478 /* If spool_directory wasn't set in the build-time configuration, it must have
3479 got set above. Of course, writing to the log may not work if log_file_path is
3480 not set, but it will at least get to syslog or somewhere, with any luck. */
3481
3482 if (!*spool_directory)
3483 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "spool_directory undefined: cannot "
3484 "proceed");
3485
3486 /* Expand the spool directory name; it may, for example, contain the primary
3487 host name. Same comment about failure. */
3488
3489 if (!(s = expand_string(spool_directory)))
3490 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand spool_directory "
3491 "\"%s\": %s", spool_directory, expand_string_message);
3492 spool_directory = s;
3493
3494 /* Expand log_file_path, which must contain "%s" in any component that isn't
3495 the null string or "syslog". It is also allowed to contain one instance of %D
3496 or %M. However, it must NOT contain % followed by anything else. */
3497
3498 if (*log_file_path)
3499 {
3500 const uschar *ss, *sss;
3501 int sep = ':'; /* Fixed for log file path */
3502 if (!(s = expand_string(log_file_path)))
3503 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand log_file_path "
3504 "\"%s\": %s", log_file_path, expand_string_message);
3505
3506 ss = s;
3507 while ((sss = string_nextinlist(&ss, &sep, big_buffer, big_buffer_size)))
3508 {
3509 uschar *t;
3510 if (sss[0] == 0 || Ustrcmp(sss, "syslog") == 0) continue;
3511 if (!(t = Ustrstr(sss, "%s")))
3512 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" does not "
3513 "contain \"%%s\"", sss);
3514 *t = 'X';
3515 if ((t = Ustrchr(sss, '%')))
3516 if ((t[1] != 'D' && t[1] != 'M') || Ustrchr(t+2, '%') != NULL)
3517 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" contains "
3518 "unexpected \"%%\" character", s);
3519 }
3520
3521 log_file_path = s;
3522 }
3523
3524 /* Interpret syslog_facility into an integer argument for 'ident' param to
3525 openlog(). Default is LOG_MAIL set in globals.c. Allow the user to omit the
3526 leading "log_". */
3527
3528 if (syslog_facility_str)
3529 {
3530 int i;
3531 uschar *s = syslog_facility_str;
3532
3533 if ((Ustrlen(syslog_facility_str) >= 4) &&
3534 (strncmpic(syslog_facility_str, US"log_", 4) == 0))
3535 s += 4;
3536
3537 for (i = 0; i < syslog_list_size; i++)
3538 if (strcmpic(s, syslog_list[i].name) == 0)
3539 {
3540 syslog_facility = syslog_list[i].value;
3541 break;
3542 }
3543
3544 if (i >= syslog_list_size)
3545 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3546 "failed to interpret syslog_facility \"%s\"", syslog_facility_str);
3547 }
3548
3549 /* Expand pid_file_path */
3550
3551 if (*pid_file_path != 0)
3552 {
3553 if (!(s = expand_string(pid_file_path)))
3554 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand pid_file_path "
3555 "\"%s\": %s", pid_file_path, expand_string_message);
3556 pid_file_path = s;
3557 }
3558
3559 /* Set default value of process_log_path */
3560
3561 if (!process_log_path || *process_log_path =='\0')
3562 process_log_path = string_sprintf("%s/exim-process.info", spool_directory);
3563
3564 /* Compile the regex for matching a UUCP-style "From_" line in an incoming
3565 message. */
3566
3567 regex_From = regex_must_compile(uucp_from_pattern, FALSE, TRUE);
3568
3569 /* Unpick the SMTP rate limiting options, if set */
3570
3571 if (smtp_ratelimit_mail)
3572 unpick_ratelimit(smtp_ratelimit_mail, &smtp_rlm_threshold,
3573 &smtp_rlm_base, &smtp_rlm_factor, &smtp_rlm_limit);
3574
3575 if (smtp_ratelimit_rcpt)
3576 unpick_ratelimit(smtp_ratelimit_rcpt, &smtp_rlr_threshold,
3577 &smtp_rlr_base, &smtp_rlr_factor, &smtp_rlr_limit);
3578
3579 /* The qualify domains default to the primary host name */
3580
3581 if (!qualify_domain_sender)
3582 qualify_domain_sender = primary_hostname;
3583 if (!qualify_domain_recipient)
3584 qualify_domain_recipient = qualify_domain_sender;
3585
3586 /* Setting system_filter_user in the configuration sets the gid as well if a
3587 name is given, but a numerical value does not. */
3588
3589 if (system_filter_uid_set && !system_filter_gid_set)
3590 {
3591 struct passwd *pw = getpwuid(system_filter_uid);
3592 if (!pw)
3593 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Failed to look up uid %ld",
3594 (long int)system_filter_uid);
3595 system_filter_gid = pw->pw_gid;
3596 system_filter_gid_set = TRUE;
3597 }
3598
3599 /* If the errors_reply_to field is set, check that it is syntactically valid
3600 and ensure it contains a domain. */
3601
3602 if (errors_reply_to)
3603 {
3604 uschar *errmess;
3605 int start, end, domain;
3606 uschar *recipient = parse_extract_address(errors_reply_to, &errmess,
3607 &start, &end, &domain, FALSE);
3608
3609 if (!recipient)
3610 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3611 "error in errors_reply_to (%s): %s", errors_reply_to, errmess);
3612
3613 if (domain == 0)
3614 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3615 "errors_reply_to (%s) does not contain a domain", errors_reply_to);
3616 }
3617
3618 /* If smtp_accept_queue or smtp_accept_max_per_host is set, then
3619 smtp_accept_max must also be set. */
3620
3621 if (smtp_accept_max == 0 &&
3622 (smtp_accept_queue > 0 || smtp_accept_max_per_host != NULL))
3623 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3624 "smtp_accept_max must be set if smtp_accept_queue or "
3625 "smtp_accept_max_per_host is set");
3626
3627 /* Set up the host number if anything is specified. It is an expanded string
3628 so that it can be computed from the host name, for example. We do this last
3629 so as to ensure that everything else is set up before the expansion. */
3630
3631 if (host_number_string)
3632 {
3633 long int n;
3634 uschar *end;
3635 uschar *s = expand_string(host_number_string);
3636
3637 if (!s)
3638 log_write(0, LOG_MAIN|LOG_PANIC_DIE,
3639 "failed to expand localhost_number \"%s\": %s",
3640 host_number_string, expand_string_message);
3641 n = Ustrtol(s, &end, 0);
3642 while (isspace(*end)) end++;
3643 if (*end != 0)
3644 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3645 "localhost_number value is not a number: %s", s);
3646 if (n > LOCALHOST_MAX)
3647 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3648 "localhost_number is greater than the maximum allowed value (%d)",
3649 LOCALHOST_MAX);
3650 host_number = n;
3651 }
3652
3653 #ifndef DISABLE_TLS
3654 /* If tls_verify_hosts is set, tls_verify_certificates must also be set */
3655
3656 if ((tls_verify_hosts || tls_try_verify_hosts) && !tls_verify_certificates)
3657 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3658 "tls_%sverify_hosts is set, but tls_verify_certificates is not set",
3659 tls_verify_hosts ? "" : "try_");
3660
3661 /* This also checks that the library linkage is working and we can call
3662 routines in it, so call even if tls_require_ciphers is unset */
3663 if (!tls_dropprivs_validate_require_cipher(nowarn))
3664 exit(1);
3665
3666 /* Magic number: at time of writing, 1024 has been the long-standing value
3667 used by so many clients, and what Exim used to use always, that it makes
3668 sense to just min-clamp this max-clamp at that. */
3669 if (tls_dh_max_bits < 1024)
3670 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3671 "tls_dh_max_bits is too small, must be at least 1024 for interop");
3672
3673 /* If openssl_options is set, validate it */
3674 if (openssl_options)
3675 {
3676 # ifdef USE_GNUTLS
3677 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3678 "openssl_options is set but we're using GnuTLS");
3679 # else
3680 long dummy;
3681 if (!tls_openssl_options_parse(openssl_options, &dummy))
3682 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3683 "openssl_options parse error: %s", openssl_options);
3684 # endif
3685 }
3686 #endif /*DISABLE_TLS*/
3687
3688 if (!nowarn && !keep_environment && environ && *environ)
3689 log_write(0, LOG_MAIN,
3690 "Warning: purging the environment.\n"
3691 " Suggested action: use keep_environment.");
3692 }
3693
3694
3695
3696 /*************************************************
3697 * Initialize one driver *
3698 *************************************************/
3699
3700 /* This is called once the driver's generic options, if any, have been read.
3701 We can now find the driver, set up defaults for the private options, and
3702 unset any "set" bits in the private options table (which might have been
3703 set by another incarnation of the same driver).
3704
3705 Arguments:
3706 d pointer to driver instance block, with generic
3707 options filled in
3708 drivers_available vector of available drivers
3709 size_of_info size of each block in drivers_available
3710 class class of driver, for error message
3711
3712 Returns: pointer to the driver info block
3713 */
3714
3715 static driver_info *
3716 init_driver(driver_instance *d, driver_info *drivers_available,
3717 int size_of_info, uschar *class)
3718 {
3719 for (driver_info * dd = drivers_available; dd->driver_name[0] != 0;
3720 dd = (driver_info *)((US dd) + size_of_info))
3721 if (Ustrcmp(d->driver_name, dd->driver_name) == 0)
3722 {
3723 int len = dd->options_len;
3724 d->info = dd;
3725 d->options_block = store_get(len, FALSE);
3726 memcpy(d->options_block, dd->options_block, len);
3727 for (int i = 0; i < *(dd->options_count); i++)
3728 dd->options[i].type &= ~opt_set;
3729 return dd;
3730 }
3731
3732 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3733 "%s %s: cannot find %s driver \"%s\"", class, d->name, class, d->driver_name);
3734
3735 return NULL; /* never obeyed */
3736 }
3737
3738
3739
3740
3741 /*************************************************
3742 * Initialize driver list *
3743 *************************************************/
3744
3745 /* This function is called for routers, transports, and authentication
3746 mechanisms. It reads the data from the current point in the configuration file
3747 up to the end of the section, and sets up a chain of instance blocks according
3748 to the file's contents. The file will already have been opened by a call to
3749 readconf_main, and must be left open for subsequent reading of further data.
3750
3751 Any errors cause a panic crash. Note that the blocks with names driver_info and
3752 driver_instance must map the first portions of all the _info and _instance
3753 blocks for this shared code to work.
3754
3755 Arguments:
3756 class "router", "transport", or "authenticator"
3757 anchor &routers, &transports, &auths
3758 drivers_available available drivers
3759 size_of_info size of each info block
3760 instance_default points to default data for an instance
3761 instance_size size of instance block
3762 driver_optionlist generic option list
3763 driver_optionlist_count count of generic option list
3764
3765 Returns: nothing
3766 */
3767
3768 void
3769 readconf_driver_init(
3770 uschar *class,
3771 driver_instance **anchor,
3772 driver_info *drivers_available,
3773 int size_of_info,
3774 void *instance_default,
3775 int instance_size,
3776 optionlist *driver_optionlist,
3777 int driver_optionlist_count)
3778 {
3779 driver_instance **p = anchor;
3780 driver_instance *d = NULL;
3781 uschar *buffer;
3782
3783 while ((buffer = get_config_line()) != NULL)
3784 {
3785 uschar name[64];
3786 uschar *s;
3787
3788 /* Read the first name on the line and test for the start of a new driver. A
3789 macro definition indicates the end of the previous driver. If this isn't the
3790 start of a new driver, the line will be re-read. */
3791
3792 s = readconf_readname(name, sizeof(name), buffer);
3793
3794 /* Handle macro definition, first finishing off the initialization of the
3795 previous driver, if any. */
3796
3797 if (isupper(*name) && *s == '=')
3798 {
3799 if (d)
3800 {
3801 if (!d->driver_name)
3802 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3803 "no driver defined for %s \"%s\"", class, d->name);
3804 (d->info->init)(d);
3805 d = NULL;
3806 }
3807 if (!macro_read_assignment(buffer)) exim_exit(EXIT_FAILURE, US"");
3808 continue;
3809 }
3810
3811 /* If the line starts with a name terminated by a colon, we are at the
3812 start of the definition of a new driver. The rest of the line must be
3813 blank. */
3814
3815 if (*s++ == ':')
3816 {
3817 /* Finish off initializing the previous driver. */
3818
3819 if (d)
3820 {
3821 if (!d->driver_name)
3822 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3823 "no driver defined for %s \"%s\"", class, d->name);
3824 (d->info->init)(d);
3825 }
3826
3827 /* Check that we haven't already got a driver of this name */
3828
3829 for (d = *anchor; d; d = d->next)
3830 if (Ustrcmp(name, d->name) == 0)
3831 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3832 "there are two %ss called \"%s\"", class, name);
3833
3834 /* Set up a new driver instance data block on the chain, with
3835 its default values installed. */
3836
3837 d = store_get(instance_size, FALSE);
3838 memcpy(d, instance_default, instance_size);
3839 *p = d;
3840 p = &d->next;
3841 d->name = string_copy(name);
3842
3843 /* Clear out the "set" bits in the generic options */
3844
3845 for (int i = 0; i < driver_optionlist_count; i++)
3846 driver_optionlist[i].type &= ~opt_set;
3847
3848 /* Check nothing more on this line, then do the next loop iteration. */
3849
3850 while (isspace(*s)) s++;
3851 if (*s != 0) extra_chars_error(s, US"driver name ", name, US"");
3852 continue;
3853 }
3854
3855 /* Not the start of a new driver. Give an error if we have not set up a
3856 current driver yet. */
3857
3858 if (!d)
3859 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s name missing", class);
3860
3861 /* First look to see if this is a generic option; if it is "driver",
3862 initialize the driver. If is it not a generic option, we can look for a
3863 private option provided that the driver has been previously set up. */
3864
3865 if (readconf_handle_option(buffer, driver_optionlist,
3866 driver_optionlist_count, d, NULL))
3867 {
3868 if (!d->info && d->driver_name)
3869 init_driver(d, drivers_available, size_of_info, class);
3870 }
3871
3872 /* Handle private options - pass the generic block because some may
3873 live therein. A flag with each option indicates if it is in the public
3874 block. */
3875
3876 else if (d->info)
3877 readconf_handle_option(buffer, d->info->options,
3878 *(d->info->options_count), d, US"option \"%s\" unknown");
3879
3880 /* The option is not generic and the driver name has not yet been given. */
3881
3882 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option \"%s\" unknown "
3883 "(\"driver\" must be specified before any private options)", name);
3884 }
3885
3886 /* Run the initialization function for the final driver. */
3887
3888 if (d)
3889 {
3890 if (!d->driver_name)
3891 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3892 "no driver defined for %s \"%s\"", class, d->name);
3893 (d->info->init)(d);
3894 }
3895 }
3896
3897
3898
3899 /*************************************************
3900 * Check driver dependency *
3901 *************************************************/
3902
3903 /* This function is passed a driver instance and a string. It checks whether
3904 any of the string options for the driver contains the given string as an
3905 expansion variable.
3906
3907 Arguments:
3908 d points to a driver instance block
3909 s the string to search for
3910
3911 Returns: TRUE if a dependency is found
3912 */
3913
3914 BOOL
3915 readconf_depends(driver_instance *d, uschar *s)
3916 {
3917 int count = *(d->info->options_count);
3918 uschar *ss;
3919
3920 for (optionlist * ol = d->info->options; ol < d->info->options + count; ol++)
3921 {
3922 void *options_block;
3923 uschar *value;
3924 int type = ol->type & opt_mask;
3925 if (type != opt_stringptr) continue;
3926 options_block = ((ol->type & opt_public) == 0)? d->options_block : (void *)d;
3927 value = *(uschar **)(US options_block + (long int)(ol->value));
3928 if (value != NULL && (ss = Ustrstr(value, s)) != NULL)
3929 {
3930 if (ss <= value || (ss[-1] != '$' && ss[-1] != '{') ||
3931 isalnum(ss[Ustrlen(s)])) continue;
3932 DEBUG(D_transport) debug_printf("driver %s: \"%s\" option depends on %s\n",
3933 d->name, ol->name, s);
3934 return TRUE;
3935 }
3936 }
3937
3938 DEBUG(D_transport) debug_printf("driver %s does not depend on %s\n", d->name, s);
3939 return FALSE;
3940 }
3941
3942
3943
3944
3945 /*************************************************
3946 * Decode an error type for retries *
3947 *************************************************/
3948
3949 /* This function is global because it is also called from the main
3950 program when testing retry information. It decodes strings such as "quota_7d"
3951 into numerical error codes.
3952
3953 Arguments:
3954 pp points to start of text
3955 p points past end of text
3956 basic_errno points to an int to receive the main error number
3957 more_errno points to an int to receive the secondary error data
3958
3959 Returns: NULL if decoded correctly; else points to error text
3960 */
3961
3962 uschar *
3963 readconf_retry_error(const uschar *pp, const uschar *p,
3964 int *basic_errno, int *more_errno)
3965 {
3966 int len;
3967 const uschar *q = pp;
3968 while (q < p && *q != '_') q++;
3969 len = q - pp;
3970
3971 if (len == 5 && strncmpic(pp, US"quota", len) == 0)
3972 {
3973 *basic_errno = ERRNO_EXIMQUOTA;
3974 if (q != p && (*more_errno = readconf_readtime(q+1, *p, FALSE)) < 0)
3975 return US"bad time value";
3976 }
3977
3978 else if (len == 7 && strncmpic(pp, US"refused", len) == 0)
3979 {
3980 *basic_errno = ECONNREFUSED;
3981 if (q != p)
3982 {
3983 if (strncmpic(q+1, US"MX", p-q-1) == 0) *more_errno = 'M';
3984 else if (strncmpic(q+1, US"A", p-q-1) == 0) *more_errno = 'A';
3985 else return US"A or MX expected after \"refused\"";
3986 }
3987 }
3988
3989 else if (len == 7 && strncmpic(pp, US"timeout", len) == 0)
3990 {
3991 *basic_errno = ETIMEDOUT;
3992 if (q != p)
3993 {
3994 int i;
3995 int xlen = p - q - 1;
3996 const uschar *x = q + 1;
3997
3998 static uschar *extras[] =
3999 { US"A", US"MX", US"connect", US"connect_A", US"connect_MX" };
4000 static int values[] =
4001 { 'A', 'M', RTEF_CTOUT, RTEF_CTOUT|'A', RTEF_CTOUT|'M' };
4002
4003 for (i = 0; i < nelem(extras); i++)
4004 if (strncmpic(x, extras[i], xlen) == 0)
4005 {
4006 *more_errno = values[i];
4007 break;
4008 }
4009
4010 if (i >= nelem(extras))
4011 if (strncmpic(x, US"DNS", xlen) == 0)
4012 log_write(0, LOG_MAIN|LOG_PANIC, "\"timeout_dns\" is no longer "
4013 "available in retry rules (it has never worked) - treated as "
4014 "\"timeout\"");
4015 else
4016 return US"\"A\", \"MX\", or \"connect\" expected after \"timeout\"";
4017 }
4018 }
4019
4020 else if (strncmpic(pp, US"mail_4", 6) == 0 ||
4021 strncmpic(pp, US"rcpt_4", 6) == 0 ||
4022 strncmpic(pp, US"data_4", 6) == 0)
4023 {
4024 BOOL bad = FALSE;
4025 int x = 255; /* means "any 4xx code" */
4026 if (p != pp + 8) bad = TRUE; else
4027 {
4028 int a = pp[6], b = pp[7];
4029 if (isdigit(a))
4030 {
4031 x = (a - '0') * 10;
4032 if (isdigit(b)) x += b - '0';
4033 else if (b == 'x') x += 100;
4034 else bad = TRUE;
4035 }
4036 else if (a != 'x' || b != 'x') bad = TRUE;
4037 }
4038
4039 if (bad)
4040 return string_sprintf("%.4s_4 must be followed by xx, dx, or dd, where "
4041 "x is literal and d is any digit", pp);
4042
4043 *basic_errno = *pp == 'm' ? ERRNO_MAIL4XX :
4044 *pp == 'r' ? ERRNO_RCPT4XX : ERRNO_DATA4XX;
4045 *more_errno = x << 8;
4046 }
4047
4048 else if (len == 4 && strncmpic(pp, US"auth", len) == 0 &&
4049 strncmpic(q+1, US"failed", p-q-1) == 0)
4050 *basic_errno = ERRNO_AUTHFAIL;
4051
4052 else if (strncmpic(pp, US"lost_connection", p - pp) == 0)
4053 *basic_errno = ERRNO_SMTPCLOSED;
4054
4055 else if (strncmpic(pp, US"tls_required", p - pp) == 0)
4056 *basic_errno = ERRNO_TLSREQUIRED;
4057
4058 else if (strncmpic(pp, US"lookup", p - pp) == 0)
4059 *basic_errno = ERRNO_UNKNOWNHOST;
4060
4061 else if (len != 1 || Ustrncmp(pp, "*", 1) != 0)
4062 return string_sprintf("unknown or malformed retry error \"%.*s\"", (int) (p-pp), pp);
4063
4064 return NULL;
4065 }
4066
4067
4068
4069
4070 /*************************************************
4071 * Read retry information *
4072 *************************************************/
4073
4074 /* Each line of retry information contains:
4075
4076 . A domain name pattern or an address pattern;
4077
4078 . An error name, possibly with additional data, or *;
4079
4080 . An optional sequence of retry items, each consisting of an identifying
4081 letter, a cutoff time, and optional parameters.
4082
4083 All this is decoded and placed into a control block. */
4084
4085
4086 /* Subroutine to read an argument, preceded by a comma and terminated
4087 by comma, semicolon, whitespace, or newline. The types are: 0 = time value,
4088 1 = fixed point number (returned *1000).
4089
4090 Arguments:
4091 paddr pointer to pointer to current character; updated
4092 type 0 => read a time; 1 => read a fixed point number
4093
4094 Returns: time in seconds or fixed point number * 1000
4095 */
4096
4097 static int
4098 retry_arg(const uschar **paddr, int type)
4099 {
4100 const uschar *p = *paddr;
4101 const uschar *pp;
4102
4103 if (*p++ != ',') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma expected");
4104
4105 while (isspace(*p)) p++;
4106 pp = p;
4107 while (isalnum(*p) || (type == 1 && *p == '.')) p++;
4108
4109 if (*p != 0 && !isspace(*p) && *p != ',' && *p != ';')
4110 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "comma or semicolon expected");
4111
4112 *paddr = p;
4113 switch (type)
4114 {
4115 case 0: return readconf_readtime(pp, *p, FALSE);
4116 case 1: return readconf_readfixed(pp, *p);
4117 }
4118 return 0; /* Keep picky compilers happy */
4119 }
4120
4121 /* The function proper */
4122
4123 void
4124 readconf_retries(void)
4125 {
4126 retry_config **chain = &retries;
4127 retry_config *next;
4128 const uschar *p;
4129
4130 while ((p = get_config_line()))
4131 {
4132 retry_rule **rchain;
4133 const uschar *pp;
4134 uschar *error;
4135
4136 next = store_get(sizeof(retry_config), FALSE);
4137 next->next = NULL;
4138 *chain = next;
4139 chain = &(next->next);
4140 next->basic_errno = next->more_errno = 0;
4141 next->senders = NULL;
4142 next->rules = NULL;
4143 rchain = &(next->rules);
4144
4145 next->pattern = string_dequote(&p);
4146 while (isspace(*p)) p++;
4147 pp = p;
4148 while (mac_isgraph(*p)) p++;
4149 if (p - pp <= 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4150 "missing error type in retry rule");
4151
4152 /* Test error names for things we understand. */
4153
4154 if ((error = readconf_retry_error(pp, p, &next->basic_errno,
4155 &next->more_errno)))
4156 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s", error);
4157
4158 /* There may be an optional address list of senders to be used as another
4159 constraint on the rule. This was added later, so the syntax is a bit of a
4160 fudge. Anything that is not a retry rule starting "F," or "G," is treated as
4161 an address list. */
4162
4163 while (isspace(*p)) p++;
4164 if (Ustrncmp(p, "senders", 7) == 0)
4165 {
4166 p += 7;
4167 while (isspace(*p)) p++;
4168 if (*p++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4169 "\"=\" expected after \"senders\" in retry rule");
4170 while (isspace(*p)) p++;
4171 next->senders = string_dequote(&p);
4172 }
4173
4174 /* Now the retry rules. Keep the maximum timeout encountered. */
4175
4176 while (isspace(*p)) p++;
4177
4178 while (*p != 0)
4179 {
4180 retry_rule *rule = store_get(sizeof(retry_rule), FALSE);
4181 *rchain = rule;
4182 rchain = &(rule->next);
4183 rule->next = NULL;
4184 rule->rule = toupper(*p++);
4185 rule->timeout = retry_arg(&p, 0);
4186 if (rule->timeout > retry_maximum_timeout)
4187 retry_maximum_timeout = rule->timeout;
4188
4189 switch (rule->rule)
4190 {
4191 case 'F': /* Fixed interval */
4192 rule->p1 = retry_arg(&p, 0);
4193 break;
4194
4195 case 'G': /* Geometrically increasing intervals */
4196 case 'H': /* Ditto, but with randomness */
4197 rule->p1 = retry_arg(&p, 0);
4198 rule->p2 = retry_arg(&p, 1);
4199 break;
4200
4201 default:
4202 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unknown retry rule letter");
4203 break;
4204 }
4205
4206 if (rule->timeout <= 0 || rule->p1 <= 0 ||
4207 (rule->rule != 'F' && rule->p2 < 1000))
4208 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4209 "bad parameters for retry rule");
4210
4211 while (isspace(*p)) p++;
4212 if (*p == ';')
4213 {
4214 p++;
4215 while (isspace(*p)) p++;
4216 }
4217 else if (*p != 0)
4218 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "semicolon expected");
4219 }
4220 }
4221 }
4222
4223
4224
4225 /*************************************************
4226 * Initialize authenticators *
4227 *************************************************/
4228
4229 /* Read the authenticators section of the configuration file.
4230
4231 Arguments: none
4232 Returns: nothing
4233 */
4234
4235 static void
4236 auths_init(void)
4237 {
4238 #ifdef SUPPORT_PIPE_CONNECT
4239 int nauths = 0;
4240 #endif
4241
4242 readconf_driver_init(US"authenticator",
4243 (driver_instance **)(&auths), /* chain anchor */
4244 (driver_info *)auths_available, /* available drivers */
4245 sizeof(auth_info), /* size of info block */
4246 &auth_defaults, /* default values for generic options */
4247 sizeof(auth_instance), /* size of instance block */
4248 optionlist_auths, /* generic options */
4249 optionlist_auths_size);
4250
4251 for (auth_instance * au = auths; au; au = au->next)
4252 {
4253 if (!au->public_name)
4254 log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "no public name specified for "
4255 "the %s authenticator", au->name);
4256
4257 for (auth_instance * bu = au->next; bu; bu = bu->next)
4258 if (strcmpic(au->public_name, bu->public_name) == 0)
4259 if ((au->client && bu->client) || (au->server && bu->server))
4260 log_write(0, LOG_PANIC_DIE|LOG_CONFIG, "two %s authenticators "
4261 "(%s and %s) have the same public name (%s)",
4262 au->client ? US"client" : US"server", au->name, bu->name,
4263 au->public_name);
4264 #ifdef SUPPORT_PIPE_CONNECT
4265 nauths++;
4266 #endif
4267 }
4268 #ifdef SUPPORT_PIPE_CONNECT
4269 f.smtp_in_early_pipe_no_auth = nauths > 16;
4270 #endif
4271 }
4272
4273
4274
4275
4276 /*************************************************
4277 * Read ACL information *
4278 *************************************************/
4279
4280 /* If this run of Exim is not doing something that involves receiving a
4281 message, we can just skip over the ACL information. No need to parse it.
4282
4283 First, we have a function for acl_read() to call back to get the next line. We
4284 need to remember the line we passed, because at the end it will contain the
4285 name of the next ACL. */
4286
4287 static uschar *acl_line;
4288
4289 static uschar *
4290 acl_callback(void)
4291 {
4292 acl_line = get_config_line();
4293 return acl_line;
4294 }
4295
4296
4297 /* Now the main function:
4298
4299 Arguments: none
4300 Returns: nothing
4301 */
4302
4303 static void
4304 readconf_acl(void)
4305 {
4306 uschar *p;
4307
4308 /* Read each ACL and add it into the tree. Macro (re)definitions are allowed
4309 between ACLs. */
4310
4311 acl_line = get_config_line();
4312
4313 while(acl_line)
4314 {
4315 uschar name[64];
4316 tree_node *node;
4317 uschar *error;
4318
4319 p = readconf_readname(name, sizeof(name), acl_line);
4320 if (isupper(*name) && *p == '=')
4321 {
4322 if (!macro_read_assignment(acl_line)) exim_exit(EXIT_FAILURE, US"");
4323 acl_line = get_config_line();
4324 continue;
4325 }
4326
4327 if (*p != ':' || name[0] == 0)
4328 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing or malformed ACL name");
4329
4330 node = store_get(sizeof(tree_node) + Ustrlen(name), is_tainted(name));
4331 Ustrcpy(node->name, name);
4332 if (!tree_insertnode(&acl_anchor, node))
4333 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4334 "there are two ACLs called \"%s\"", name);
4335
4336 node->data.ptr = acl_read(acl_callback, &error);
4337
4338 if (node->data.ptr == NULL && error != NULL)
4339 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "error in ACL: %s", error);
4340 }
4341 }
4342
4343
4344
4345 /*************************************************
4346 * Read configuration for local_scan() *
4347 *************************************************/
4348
4349 /* This function is called after "begin local_scan" is encountered in the
4350 configuration file. If the local_scan() function allows for configuration
4351 options, we can process them. Otherwise, we expire in a panic.
4352
4353 Arguments: none
4354 Returns: nothing
4355 */
4356
4357 static void
4358 local_scan_init(void)
4359 {
4360 #ifndef LOCAL_SCAN_HAS_OPTIONS
4361 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "local_scan() options not supported: "
4362 "(LOCAL_SCAN_HAS_OPTIONS not defined in Local/Makefile)");
4363 #else
4364
4365 uschar *p;
4366 while ((p = get_config_line()))
4367 {
4368 (void) readconf_handle_option(p, local_scan_options, local_scan_options_count,
4369 NULL, US"local_scan option \"%s\" unknown");
4370 }
4371 #endif
4372 }
4373
4374
4375
4376 /*************************************************
4377 * Read rest of configuration (after main) *
4378 *************************************************/
4379
4380 /* This function reads the rest of the runtime configuration, after the main
4381 configuration. It is called only when actually needed. Each subsequent section
4382 of the configuration starts with a line of the form
4383
4384 begin name
4385
4386 where the name is "routers", "transports", etc. A section is terminated by
4387 hitting the next "begin" line, and the next name is left in next_section.
4388 Because it may confuse people as to whether the names are singular or plural,
4389 we add "s" if it's missing. There is always enough room in next_section for
4390 this. This function is basically just a switch.
4391
4392 Arguments: none
4393 Returns: nothing
4394 */
4395
4396 static uschar *section_list[] = {
4397 US"acls",
4398 US"authenticators",
4399 US"local_scans",
4400 US"retrys",
4401 US"rewrites",
4402 US"routers",
4403 US"transports"};
4404
4405 void
4406 readconf_rest(void)
4407 {
4408 int had = 0;
4409
4410 while(next_section[0] != 0)
4411 {
4412 int bit;
4413 int first = 0;
4414 int last = nelem(section_list);
4415 int mid = last/2;
4416 int n = Ustrlen(next_section);
4417
4418 if (tolower(next_section[n-1]) != 's') Ustrcpy(next_section+n, US"s");
4419
4420 for (;;)
4421 {
4422 int c = strcmpic(next_section, section_list[mid]);
4423 if (c == 0) break;
4424 if (c > 0) first = mid + 1; else last = mid;
4425 if (first >= last)
4426 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4427 "\"%.*s\" is not a known configuration section name", n, next_section);
4428 mid = (last + first)/2;
4429 }
4430
4431 bit = 1 << mid;
4432 if (((had ^= bit) & bit) == 0)
4433 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
4434 "\"%.*s\" section is repeated in the configuration file", n,
4435 next_section);
4436
4437 switch(mid)
4438 {
4439 case 0: readconf_acl(); break;
4440 case 1: auths_init(); break;
4441 case 2: local_scan_init(); break;
4442 case 3: readconf_retries(); break;
4443 case 4: readconf_rewrites(); break;
4444 case 5: route_init(); break;
4445 case 6: transport_init(); break;
4446 }
4447 }
4448
4449 (void)fclose(config_file);
4450 }
4451
4452 /* Init the storage for the pre-parsed config lines */
4453 void
4454 readconf_save_config(const uschar *s)
4455 {
4456 save_config_line(string_sprintf("# Exim Configuration (%s)",
4457 f.running_in_test_harness ? US"X" : s));
4458 }
4459
4460 static void
4461 save_config_position(const uschar *file, int line)
4462 {
4463 save_config_line(string_sprintf("# %d \"%s\"", line, file));
4464 }
4465
4466 /* Append a pre-parsed logical line to the config lines store,
4467 this operates on a global (static) list that holds all the pre-parsed
4468 config lines, we do no further processing here, output formatting and
4469 honouring of <hide> or macros will be done during output */
4470
4471 static void
4472 save_config_line(const uschar* line)
4473 {
4474 static config_line_item *current;
4475 config_line_item *next;
4476
4477 next = (config_line_item*) store_get(sizeof(config_line_item), FALSE);
4478 next->line = string_copy(line);
4479 next->next = NULL;
4480
4481 if (!config_lines) config_lines = next;
4482 else current->next = next;
4483
4484 current = next;
4485 }
4486
4487 /* List the parsed config lines, care about nice formatting and
4488 hide the <hide> values unless we're the admin user */
4489 void
4490 print_config(BOOL admin, BOOL terse)
4491 {
4492 const int TS = terse ? 0 : 2;
4493 int indent = 0;
4494
4495 for (config_line_item * i = config_lines; i; i = i->next)
4496 {
4497 uschar *current;
4498 uschar *p;
4499
4500 /* skip over to the first non-space */
4501 for (current = i->line; *current && isspace(*current); ++current)
4502 ;
4503
4504 if (*current == '\0')
4505 continue;
4506
4507 /* Collapse runs of spaces. We stop this if we encounter one of the
4508 * following characters: "'$, as this may indicate careful formatting */
4509 for (p = current; *p; ++p)
4510 {
4511 uschar *next;
4512 if (!isspace(*p)) continue;
4513 if (*p != ' ') *p = ' ';
4514
4515 for (next = p; isspace(*next); ++next)
4516 ;
4517
4518 if (next - p > 1)
4519 memmove(p+1, next, Ustrlen(next)+1);
4520
4521 if (*next == '"' || *next == '\'' || *next == '$')
4522 break;
4523 }
4524
4525 /* # lines */
4526 if (current[0] == '#')
4527 puts(CCS current);
4528
4529 /* begin lines are left aligned */
4530 else if (Ustrncmp(current, "begin", 5) == 0 && isspace(current[5]))
4531 {
4532 if (!terse) puts("");
4533 puts(CCS current);
4534 indent = TS;
4535 }
4536
4537 /* router/acl/transport block names */
4538 else if (current[Ustrlen(current)-1] == ':' && !Ustrchr(current, '='))
4539 {
4540 if (!terse) puts("");
4541 printf("%*s%s\n", TS, "", current);
4542 indent = 2 * TS;
4543 }
4544
4545 /* hidden lines (all MACROS or lines prefixed with "hide") */
4546 else if ( !admin
4547 && ( isupper(*current)
4548 || Ustrncmp(current, "hide", 4) == 0 && isspace(current[4])
4549 )
4550 )
4551 {
4552 if ((p = Ustrchr(current, '=')))
4553 {
4554 *p = '\0';
4555 printf("%*s%s= %s\n", indent, "", current, hidden);
4556 }
4557 /* e.g.: hide split_spool_directory */
4558 else
4559 printf("%*s\n", indent, hidden);
4560 }
4561
4562 else
4563 /* rest is public */
4564 printf("%*s%s\n", indent, "", current);
4565 }
4566 }
4567
4568 #endif /*!MACRO_PREDEF*/
4569 /* vi: aw ai sw=2
4570 */
4571 /* End of readconf.c */
Unnamed repository; edit this file 'description' to name the repository.