a44f3223b58a8c745f3f3e69932f3c1694049486
[exim.git] / src / src / readconf.c
1 /*************************************************
2 * Exim - an Internet mail transport agent *
3 *************************************************/
4
5 /* Copyright (c) University of Cambridge 1995 - 2018 */
6 /* See the file NOTICE for conditions of use and distribution. */
7
8 /* Functions for reading the configuration file, and for displaying
9 overall configuration values. Thanks to Brian Candler for the original
10 implementation of the conditional .ifdef etc. */
11
12 #include "exim.h"
13
14 #ifdef MACRO_PREDEF
15 # include "macro_predef.h"
16 #endif
17
18 #define READCONF_DEBUG if (FALSE) /* Change to TRUE to enable */
19
20
21 static uschar * syslog_facility_str;
22 static void fn_smtp_receive_timeout(const uschar *, const uschar *, unsigned);
23
24 /*************************************************
25 * Main configuration options *
26 *************************************************/
27
28 /* The list of options that can be set in the main configuration file. This
29 must be in alphabetic order because it is searched by binary chop. */
30
31 static optionlist optionlist_config[] = {
32 { "*set_exim_group", opt_bool|opt_hidden, {&exim_gid_set} },
33 { "*set_exim_user", opt_bool|opt_hidden, {&exim_uid_set} },
34 { "*set_system_filter_group", opt_bool|opt_hidden, {&system_filter_gid_set} },
35 { "*set_system_filter_user", opt_bool|opt_hidden, {&system_filter_uid_set} },
36 { "accept_8bitmime", opt_bool, {&accept_8bitmime} },
37 { "acl_not_smtp", opt_stringptr, {&acl_not_smtp} },
38 #ifdef WITH_CONTENT_SCAN
39 { "acl_not_smtp_mime", opt_stringptr, {&acl_not_smtp_mime} },
40 #endif
41 { "acl_not_smtp_start", opt_stringptr, {&acl_not_smtp_start} },
42 { "acl_smtp_auth", opt_stringptr, {&acl_smtp_auth} },
43 { "acl_smtp_connect", opt_stringptr, {&acl_smtp_connect} },
44 { "acl_smtp_data", opt_stringptr, {&acl_smtp_data} },
45 #ifndef DISABLE_PRDR
46 { "acl_smtp_data_prdr", opt_stringptr, {&acl_smtp_data_prdr} },
47 #endif
48 #ifndef DISABLE_DKIM
49 { "acl_smtp_dkim", opt_stringptr, {&acl_smtp_dkim} },
50 #endif
51 { "acl_smtp_etrn", opt_stringptr, {&acl_smtp_etrn} },
52 { "acl_smtp_expn", opt_stringptr, {&acl_smtp_expn} },
53 { "acl_smtp_helo", opt_stringptr, {&acl_smtp_helo} },
54 { "acl_smtp_mail", opt_stringptr, {&acl_smtp_mail} },
55 { "acl_smtp_mailauth", opt_stringptr, {&acl_smtp_mailauth} },
56 #ifdef WITH_CONTENT_SCAN
57 { "acl_smtp_mime", opt_stringptr, {&acl_smtp_mime} },
58 #endif
59 { "acl_smtp_notquit", opt_stringptr, {&acl_smtp_notquit} },
60 { "acl_smtp_predata", opt_stringptr, {&acl_smtp_predata} },
61 { "acl_smtp_quit", opt_stringptr, {&acl_smtp_quit} },
62 { "acl_smtp_rcpt", opt_stringptr, {&acl_smtp_rcpt} },
63 #ifndef DISABLE_TLS
64 { "acl_smtp_starttls", opt_stringptr, {&acl_smtp_starttls} },
65 #endif
66 { "acl_smtp_vrfy", opt_stringptr, {&acl_smtp_vrfy} },
67 { "add_environment", opt_stringptr, {&add_environment} },
68 { "admin_groups", opt_gidlist, {&admin_groups} },
69 { "allow_domain_literals", opt_bool, {&allow_domain_literals} },
70 { "allow_mx_to_ip", opt_bool, {&allow_mx_to_ip} },
71 { "allow_utf8_domains", opt_bool, {&allow_utf8_domains} },
72 { "auth_advertise_hosts", opt_stringptr, {&auth_advertise_hosts} },
73 { "auto_thaw", opt_time, {&auto_thaw} },
74 #ifdef WITH_CONTENT_SCAN
75 { "av_scanner", opt_stringptr, {&av_scanner} },
76 #endif
77 { "bi_command", opt_stringptr, {&bi_command} },
78 #ifdef EXPERIMENTAL_BRIGHTMAIL
79 { "bmi_config_file", opt_stringptr, {&bmi_config_file} },
80 #endif
81 { "bounce_message_file", opt_stringptr, {&bounce_message_file} },
82 { "bounce_message_text", opt_stringptr, {&bounce_message_text} },
83 { "bounce_return_body", opt_bool, {&bounce_return_body} },
84 { "bounce_return_linesize_limit", opt_mkint, {&bounce_return_linesize_limit} },
85 { "bounce_return_message", opt_bool, {&bounce_return_message} },
86 { "bounce_return_size_limit", opt_mkint, {&bounce_return_size_limit} },
87 { "bounce_sender_authentication",opt_stringptr,{&bounce_sender_authentication} },
88 { "callout_domain_negative_expire", opt_time, {&callout_cache_domain_negative_expire} },
89 { "callout_domain_positive_expire", opt_time, {&callout_cache_domain_positive_expire} },
90 { "callout_negative_expire", opt_time, {&callout_cache_negative_expire} },
91 { "callout_positive_expire", opt_time, {&callout_cache_positive_expire} },
92 { "callout_random_local_part",opt_stringptr, {&callout_random_local_part} },
93 { "check_log_inodes", opt_int, {&check_log_inodes} },
94 { "check_log_space", opt_Kint, {&check_log_space} },
95 { "check_rfc2047_length", opt_bool, {&check_rfc2047_length} },
96 { "check_spool_inodes", opt_int, {&check_spool_inodes} },
97 { "check_spool_space", opt_Kint, {&check_spool_space} },
98 { "chunking_advertise_hosts", opt_stringptr, {&chunking_advertise_hosts} },
99 { "commandline_checks_require_admin", opt_bool,{&commandline_checks_require_admin} },
100 { "daemon_smtp_port", opt_stringptr|opt_hidden, {&daemon_smtp_port} },
101 { "daemon_smtp_ports", opt_stringptr, {&daemon_smtp_port} },
102 { "daemon_startup_retries", opt_int, {&daemon_startup_retries} },
103 { "daemon_startup_sleep", opt_time, {&daemon_startup_sleep} },
104 #ifdef EXPERIMENTAL_DCC
105 { "dcc_direct_add_header", opt_bool, {&dcc_direct_add_header} },
106 { "dccifd_address", opt_stringptr, {&dccifd_address} },
107 { "dccifd_options", opt_stringptr, {&dccifd_options} },
108 #endif
109 { "debug_store", opt_bool, {&debug_store} },
110 { "delay_warning", opt_timelist, {&delay_warning} },
111 { "delay_warning_condition", opt_stringptr, {&delay_warning_condition} },
112 { "deliver_drop_privilege", opt_bool, {&deliver_drop_privilege} },
113 { "deliver_queue_load_max", opt_fixed, {&deliver_queue_load_max} },
114 { "delivery_date_remove", opt_bool, {&delivery_date_remove} },
115 #ifdef ENABLE_DISABLE_FSYNC
116 { "disable_fsync", opt_bool, {&disable_fsync} },
117 #endif
118 { "disable_ipv6", opt_bool, {&disable_ipv6} },
119 #ifndef DISABLE_DKIM
120 { "dkim_verify_hashes", opt_stringptr, {&dkim_verify_hashes} },
121 { "dkim_verify_keytypes", opt_stringptr, {&dkim_verify_keytypes} },
122 { "dkim_verify_min_keysizes", opt_stringptr, {&dkim_verify_min_keysizes} },
123 { "dkim_verify_minimal", opt_bool, {&dkim_verify_minimal} },
124 { "dkim_verify_signers", opt_stringptr, {&dkim_verify_signers} },
125 #endif
126 #ifdef SUPPORT_DMARC
127 { "dmarc_forensic_sender", opt_stringptr, {&dmarc_forensic_sender} },
128 { "dmarc_history_file", opt_stringptr, {&dmarc_history_file} },
129 { "dmarc_tld_file", opt_stringptr, {&dmarc_tld_file} },
130 #endif
131 { "dns_again_means_nonexist", opt_stringptr, {&dns_again_means_nonexist} },
132 { "dns_check_names_pattern", opt_stringptr, {&check_dns_names_pattern} },
133 { "dns_cname_loops", opt_int, {&dns_cname_loops} },
134 { "dns_csa_search_limit", opt_int, {&dns_csa_search_limit} },
135 { "dns_csa_use_reverse", opt_bool, {&dns_csa_use_reverse} },
136 { "dns_dnssec_ok", opt_int, {&dns_dnssec_ok} },
137 { "dns_ipv4_lookup", opt_stringptr, {&dns_ipv4_lookup} },
138 { "dns_retrans", opt_time, {&dns_retrans} },
139 { "dns_retry", opt_int, {&dns_retry} },
140 { "dns_trust_aa", opt_stringptr, {&dns_trust_aa} },
141 { "dns_use_edns0", opt_int, {&dns_use_edns0} },
142 /* This option is now a no-op, retained for compatibility */
143 { "drop_cr", opt_bool, {&drop_cr} },
144 /*********************************************************/
145 { "dsn_advertise_hosts", opt_stringptr, {&dsn_advertise_hosts} },
146 { "dsn_from", opt_stringptr, {&dsn_from} },
147 { "envelope_to_remove", opt_bool, {&envelope_to_remove} },
148 { "errors_copy", opt_stringptr, {&errors_copy} },
149 { "errors_reply_to", opt_stringptr, {&errors_reply_to} },
150 #ifndef DISABLE_EVENT
151 { "event_action", opt_stringptr, {&event_action} },
152 #endif
153 { "exim_group", opt_gid, {&exim_gid} },
154 { "exim_path", opt_stringptr, {&exim_path} },
155 { "exim_user", opt_uid, {&exim_uid} },
156 { "exim_version", opt_stringptr, {&version_string} },
157 { "extra_local_interfaces", opt_stringptr, {&extra_local_interfaces} },
158 { "extract_addresses_remove_arguments", opt_bool, {&extract_addresses_remove_arguments} },
159 { "finduser_retries", opt_int, {&finduser_retries} },
160 { "freeze_tell", opt_stringptr, {&freeze_tell} },
161 { "gecos_name", opt_stringptr, {&gecos_name} },
162 { "gecos_pattern", opt_stringptr, {&gecos_pattern} },
163 #ifndef DISABLE_TLS
164 { "gnutls_allow_auto_pkcs11", opt_bool, {&gnutls_allow_auto_pkcs11} },
165 { "gnutls_compat_mode", opt_bool, {&gnutls_compat_mode} },
166 #endif
167 { "header_line_maxsize", opt_int, {&header_line_maxsize} },
168 { "header_maxsize", opt_int, {&header_maxsize} },
169 { "headers_charset", opt_stringptr, {&headers_charset} },
170 { "helo_accept_junk_hosts", opt_stringptr, {&helo_accept_junk_hosts} },
171 { "helo_allow_chars", opt_stringptr, {&helo_allow_chars} },
172 { "helo_lookup_domains", opt_stringptr, {&helo_lookup_domains} },
173 { "helo_try_verify_hosts", opt_stringptr, {&helo_try_verify_hosts} },
174 { "helo_verify_hosts", opt_stringptr, {&helo_verify_hosts} },
175 { "hold_domains", opt_stringptr, {&hold_domains} },
176 { "host_lookup", opt_stringptr, {&host_lookup} },
177 { "host_lookup_order", opt_stringptr, {&host_lookup_order} },
178 { "host_reject_connection", opt_stringptr, {&host_reject_connection} },
179 { "hosts_connection_nolog", opt_stringptr, {&hosts_connection_nolog} },
180 #ifdef SUPPORT_PROXY
181 { "hosts_proxy", opt_stringptr, {&hosts_proxy} },
182 #endif
183 { "hosts_treat_as_local", opt_stringptr, {&hosts_treat_as_local} },
184 #ifdef LOOKUP_IBASE
185 { "ibase_servers", opt_stringptr, {&ibase_servers} },
186 #endif
187 { "ignore_bounce_errors_after", opt_time, {&ignore_bounce_errors_after} },
188 { "ignore_fromline_hosts", opt_stringptr, {&ignore_fromline_hosts} },
189 { "ignore_fromline_local", opt_bool, {&ignore_fromline_local} },
190 { "keep_environment", opt_stringptr, {&keep_environment} },
191 { "keep_malformed", opt_time, {&keep_malformed} },
192 #ifdef LOOKUP_LDAP
193 { "ldap_ca_cert_dir", opt_stringptr, {&eldap_ca_cert_dir} },
194 { "ldap_ca_cert_file", opt_stringptr, {&eldap_ca_cert_file} },
195 { "ldap_cert_file", opt_stringptr, {&eldap_cert_file} },
196 { "ldap_cert_key", opt_stringptr, {&eldap_cert_key} },
197 { "ldap_cipher_suite", opt_stringptr, {&eldap_cipher_suite} },
198 { "ldap_default_servers", opt_stringptr, {&eldap_default_servers} },
199 { "ldap_require_cert", opt_stringptr, {&eldap_require_cert} },
200 { "ldap_start_tls", opt_bool, {&eldap_start_tls} },
201 { "ldap_version", opt_int, {&eldap_version} },
202 #endif
203 { "local_from_check", opt_bool, {&local_from_check} },
204 { "local_from_prefix", opt_stringptr, {&local_from_prefix} },
205 { "local_from_suffix", opt_stringptr, {&local_from_suffix} },
206 { "local_interfaces", opt_stringptr, {&local_interfaces} },
207 #ifdef HAVE_LOCAL_SCAN
208 { "local_scan_timeout", opt_time, {&local_scan_timeout} },
209 #endif
210 { "local_sender_retain", opt_bool, {&local_sender_retain} },
211 { "localhost_number", opt_stringptr, {&host_number_string} },
212 { "log_file_path", opt_stringptr, {&log_file_path} },
213 { "log_selector", opt_stringptr, {&log_selector_string} },
214 { "log_timezone", opt_bool, {&log_timezone} },
215 { "lookup_open_max", opt_int, {&lookup_open_max} },
216 { "max_username_length", opt_int, {&max_username_length} },
217 { "message_body_newlines", opt_bool, {&message_body_newlines} },
218 { "message_body_visible", opt_mkint, {&message_body_visible} },
219 { "message_id_header_domain", opt_stringptr, {&message_id_domain} },
220 { "message_id_header_text", opt_stringptr, {&message_id_text} },
221 { "message_logs", opt_bool, {&message_logs} },
222 { "message_size_limit", opt_stringptr, {&message_size_limit} },
223 #ifdef SUPPORT_MOVE_FROZEN_MESSAGES
224 { "move_frozen_messages", opt_bool, {&move_frozen_messages} },
225 #endif
226 { "mua_wrapper", opt_bool, {&mua_wrapper} },
227 #ifdef LOOKUP_MYSQL
228 { "mysql_servers", opt_stringptr, {&mysql_servers} },
229 #endif
230 { "never_users", opt_uidlist, {&never_users} },
231 { "notifier_socket", opt_stringptr, {&notifier_socket} },
232 #ifndef DISABLE_TLS
233 { "openssl_options", opt_stringptr, {&openssl_options} },
234 #endif
235 #ifdef LOOKUP_ORACLE
236 { "oracle_servers", opt_stringptr, {&oracle_servers} },
237 #endif
238 { "percent_hack_domains", opt_stringptr, {&percent_hack_domains} },
239 #ifdef EXIM_PERL
240 { "perl_at_start", opt_bool, {&opt_perl_at_start} },
241 { "perl_startup", opt_stringptr, {&opt_perl_startup} },
242 { "perl_taintmode", opt_bool, {&opt_perl_taintmode} },
243 #endif
244 #ifdef LOOKUP_PGSQL
245 { "pgsql_servers", opt_stringptr, {&pgsql_servers} },
246 #endif
247 { "pid_file_path", opt_stringptr, {&pid_file_path} },
248 { "pipelining_advertise_hosts", opt_stringptr, {&pipelining_advertise_hosts} },
249 #ifndef DISABLE_PIPE_CONNECT
250 { "pipelining_connect_advertise_hosts", opt_stringptr,
251 {&pipe_connect_advertise_hosts} },
252 #endif
253 #ifndef DISABLE_PRDR
254 { "prdr_enable", opt_bool, {&prdr_enable} },
255 #endif
256 { "preserve_message_logs", opt_bool, {&preserve_message_logs} },
257 { "primary_hostname", opt_stringptr, {&primary_hostname} },
258 { "print_topbitchars", opt_bool, {&print_topbitchars} },
259 { "process_log_path", opt_stringptr, {&process_log_path} },
260 { "prod_requires_admin", opt_bool, {&prod_requires_admin} },
261 { "qualify_domain", opt_stringptr, {&qualify_domain_sender} },
262 { "qualify_recipient", opt_stringptr, {&qualify_domain_recipient} },
263 { "queue_domains", opt_stringptr, {&queue_domains} },
264 #ifdef EXPERIMENTAL_QUEUE_RAMP
265 { "queue_fast_ramp", opt_bool, {&queue_fast_ramp} },
266 #endif
267 { "queue_list_requires_admin",opt_bool, {&queue_list_requires_admin} },
268 { "queue_only", opt_bool, {&queue_only} },
269 { "queue_only_file", opt_stringptr, {&queue_only_file} },
270 { "queue_only_load", opt_fixed, {&queue_only_load} },
271 { "queue_only_load_latch", opt_bool, {&queue_only_load_latch} },
272 { "queue_only_override", opt_bool, {&queue_only_override} },
273 { "queue_run_in_order", opt_bool, {&queue_run_in_order} },
274 { "queue_run_max", opt_stringptr, {&queue_run_max} },
275 { "queue_smtp_domains", opt_stringptr, {&queue_smtp_domains} },
276 { "receive_timeout", opt_time, {&receive_timeout} },
277 { "received_header_text", opt_stringptr, {&received_header_text} },
278 { "received_headers_max", opt_int, {&received_headers_max} },
279 { "recipient_unqualified_hosts", opt_stringptr, {&recipient_unqualified_hosts} },
280 { "recipients_max", opt_int, {&recipients_max} },
281 { "recipients_max_reject", opt_bool, {&recipients_max_reject} },
282 #ifdef LOOKUP_REDIS
283 { "redis_servers", opt_stringptr, {&redis_servers} },
284 #endif
285 { "remote_max_parallel", opt_int, {&remote_max_parallel} },
286 { "remote_sort_domains", opt_stringptr, {&remote_sort_domains} },
287 { "retry_data_expire", opt_time, {&retry_data_expire} },
288 { "retry_interval_max", opt_time, {&retry_interval_max} },
289 { "return_path_remove", opt_bool, {&return_path_remove} },
290 { "return_size_limit", opt_mkint|opt_hidden, {&bounce_return_size_limit} },
291 { "rfc1413_hosts", opt_stringptr, {&rfc1413_hosts} },
292 { "rfc1413_query_timeout", opt_time, {&rfc1413_query_timeout} },
293 { "sender_unqualified_hosts", opt_stringptr, {&sender_unqualified_hosts} },
294 { "slow_lookup_log", opt_int, {&slow_lookup_log} },
295 { "smtp_accept_keepalive", opt_bool, {&smtp_accept_keepalive} },
296 { "smtp_accept_max", opt_int, {&smtp_accept_max} },
297 { "smtp_accept_max_nonmail", opt_int, {&smtp_accept_max_nonmail} },
298 { "smtp_accept_max_nonmail_hosts", opt_stringptr, {&smtp_accept_max_nonmail_hosts} },
299 { "smtp_accept_max_per_connection", opt_int, {&smtp_accept_max_per_connection} },
300 { "smtp_accept_max_per_host", opt_stringptr, {&smtp_accept_max_per_host} },
301 { "smtp_accept_queue", opt_int, {&smtp_accept_queue} },
302 { "smtp_accept_queue_per_connection", opt_int, {&smtp_accept_queue_per_connection} },
303 { "smtp_accept_reserve", opt_int, {&smtp_accept_reserve} },
304 { "smtp_active_hostname", opt_stringptr, {&raw_active_hostname} },
305 { "smtp_banner", opt_stringptr, {&smtp_banner} },
306 { "smtp_check_spool_space", opt_bool, {&smtp_check_spool_space} },
307 { "smtp_connect_backlog", opt_int, {&smtp_connect_backlog} },
308 { "smtp_enforce_sync", opt_bool, {&smtp_enforce_sync} },
309 { "smtp_etrn_command", opt_stringptr, {&smtp_etrn_command} },
310 { "smtp_etrn_serialize", opt_bool, {&smtp_etrn_serialize} },
311 { "smtp_load_reserve", opt_fixed, {&smtp_load_reserve} },
312 { "smtp_max_synprot_errors", opt_int, {&smtp_max_synprot_errors} },
313 { "smtp_max_unknown_commands",opt_int, {&smtp_max_unknown_commands} },
314 { "smtp_ratelimit_hosts", opt_stringptr, {&smtp_ratelimit_hosts} },
315 { "smtp_ratelimit_mail", opt_stringptr, {&smtp_ratelimit_mail} },
316 { "smtp_ratelimit_rcpt", opt_stringptr, {&smtp_ratelimit_rcpt} },
317 { "smtp_receive_timeout", opt_func, {.fn = &fn_smtp_receive_timeout} },
318 { "smtp_reserve_hosts", opt_stringptr, {&smtp_reserve_hosts} },
319 { "smtp_return_error_details",opt_bool, {&smtp_return_error_details} },
320 #ifdef SUPPORT_I18N
321 { "smtputf8_advertise_hosts", opt_stringptr, {&smtputf8_advertise_hosts} },
322 #endif
323 #ifdef WITH_CONTENT_SCAN
324 { "spamd_address", opt_stringptr, {&spamd_address} },
325 #endif
326 #ifdef SUPPORT_SPF
327 { "spf_guess", opt_stringptr, {&spf_guess} },
328 #endif
329 { "split_spool_directory", opt_bool, {&split_spool_directory} },
330 { "spool_directory", opt_stringptr, {&spool_directory} },
331 { "spool_wireformat", opt_bool, {&spool_wireformat} },
332 #ifdef LOOKUP_SQLITE
333 { "sqlite_dbfile", opt_stringptr, {&sqlite_dbfile} },
334 { "sqlite_lock_timeout", opt_int, {&sqlite_lock_timeout} },
335 #endif
336 #ifdef EXPERIMENTAL_SRS
337 { "srs_config", opt_stringptr, {&srs_config} },
338 { "srs_hashlength", opt_int, {&srs_hashlength} },
339 { "srs_hashmin", opt_int, {&srs_hashmin} },
340 { "srs_maxage", opt_int, {&srs_maxage} },
341 { "srs_secrets", opt_stringptr, {&srs_secrets} },
342 { "srs_usehash", opt_bool, {&srs_usehash} },
343 { "srs_usetimestamp", opt_bool, {&srs_usetimestamp} },
344 #endif
345 { "strict_acl_vars", opt_bool, {&strict_acl_vars} },
346 { "strip_excess_angle_brackets", opt_bool, {&strip_excess_angle_brackets} },
347 { "strip_trailing_dot", opt_bool, {&strip_trailing_dot} },
348 { "syslog_duplication", opt_bool, {&syslog_duplication} },
349 { "syslog_facility", opt_stringptr, {&syslog_facility_str} },
350 { "syslog_pid", opt_bool, {&syslog_pid} },
351 { "syslog_processname", opt_stringptr, {&syslog_processname} },
352 { "syslog_timestamp", opt_bool, {&syslog_timestamp} },
353 { "system_filter", opt_stringptr, {&system_filter} },
354 { "system_filter_directory_transport", opt_stringptr,{&system_filter_directory_transport} },
355 { "system_filter_file_transport",opt_stringptr,{&system_filter_file_transport} },
356 { "system_filter_group", opt_gid, {&system_filter_gid} },
357 { "system_filter_pipe_transport",opt_stringptr,{&system_filter_pipe_transport} },
358 { "system_filter_reply_transport",opt_stringptr,{&system_filter_reply_transport} },
359 { "system_filter_user", opt_uid, {&system_filter_uid} },
360 { "tcp_nodelay", opt_bool, {&tcp_nodelay} },
361 #ifdef USE_TCP_WRAPPERS
362 { "tcp_wrappers_daemon_name", opt_stringptr, {&tcp_wrappers_daemon_name} },
363 #endif
364 { "timeout_frozen_after", opt_time, {&timeout_frozen_after} },
365 { "timezone", opt_stringptr, {&timezone_string} },
366 { "tls_advertise_hosts", opt_stringptr, {&tls_advertise_hosts} },
367 #ifndef DISABLE_TLS
368 { "tls_certificate", opt_stringptr, {&tls_certificate} },
369 { "tls_crl", opt_stringptr, {&tls_crl} },
370 { "tls_dh_max_bits", opt_int, {&tls_dh_max_bits} },
371 { "tls_dhparam", opt_stringptr, {&tls_dhparam} },
372 { "tls_eccurve", opt_stringptr, {&tls_eccurve} },
373 # ifndef DISABLE_OCSP
374 { "tls_ocsp_file", opt_stringptr, {&tls_ocsp_file} },
375 # endif
376 { "tls_on_connect_ports", opt_stringptr, {&tls_in.on_connect_ports} },
377 { "tls_privatekey", opt_stringptr, {&tls_privatekey} },
378 { "tls_remember_esmtp", opt_bool, {&tls_remember_esmtp} },
379 { "tls_require_ciphers", opt_stringptr, {&tls_require_ciphers} },
380 # ifdef EXPERIMENTAL_TLS_RESUME
381 { "tls_resumption_hosts", opt_stringptr, {&tls_resumption_hosts} },
382 # endif
383 { "tls_try_verify_hosts", opt_stringptr, {&tls_try_verify_hosts} },
384 { "tls_verify_certificates", opt_stringptr, {&tls_verify_certificates} },
385 { "tls_verify_hosts", opt_stringptr, {&tls_verify_hosts} },
386 #endif
387 { "trusted_groups", opt_gidlist, {&trusted_groups} },
388 { "trusted_users", opt_uidlist, {&trusted_users} },
389 { "unknown_login", opt_stringptr, {&unknown_login} },
390 { "unknown_username", opt_stringptr, {&unknown_username} },
391 { "untrusted_set_sender", opt_stringptr, {&untrusted_set_sender} },
392 { "uucp_from_pattern", opt_stringptr, {&uucp_from_pattern} },
393 { "uucp_from_sender", opt_stringptr, {&uucp_from_sender} },
394 { "warn_message_file", opt_stringptr, {&warn_message_file} },
395 { "write_rejectlog", opt_bool, {&write_rejectlog} }
396 };
397
398 #ifndef MACRO_PREDEF
399 static int optionlist_config_size = nelem(optionlist_config);
400 #endif
401
402
403 #ifdef MACRO_PREDEF
404
405 static void
406 fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags) {/*Dummy*/}
407
408 void
409 options_main(void)
410 {
411 options_from_list(optionlist_config, nelem(optionlist_config), US"MAIN", NULL);
412 }
413
414 void
415 options_auths(void)
416 {
417 uschar buf[64];
418
419 options_from_list(optionlist_auths, optionlist_auths_size, US"AUTHENTICATORS", NULL);
420
421 for (struct auth_info * ai = auths_available; ai->driver_name[0]; ai++)
422 {
423 spf(buf, sizeof(buf), US"_DRIVER_AUTHENTICATOR_%T", ai->driver_name);
424 builtin_macro_create(buf);
425 options_from_list(ai->options, (unsigned)*ai->options_count, US"AUTHENTICATOR", ai->driver_name);
426
427 if (ai->macros_create) (ai->macros_create)();
428 }
429 }
430
431 void
432 options_logging(void)
433 {
434 uschar buf[64];
435
436 for (bit_table * bp = log_options; bp < log_options + log_options_count; bp++)
437 {
438 spf(buf, sizeof(buf), US"_LOG_%T", bp->name);
439 builtin_macro_create(buf);
440 }
441 }
442
443
444 #else /*!MACRO_PREDEF*/
445
446 extern char **environ;
447
448 static void save_config_line(const uschar* line);
449 static void save_config_position(const uschar *file, int line);
450 static void print_config(BOOL admin, BOOL terse);
451
452
453 #define CSTATE_STACK_SIZE 10
454
455 const uschar *config_directory = NULL;
456
457
458 /* Structure for chain (stack) of .included files */
459
460 typedef struct config_file_item {
461 struct config_file_item *next;
462 const uschar *filename;
463 const uschar *directory;
464 FILE *file;
465 int lineno;
466 } config_file_item;
467
468 /* Structure for chain of configuration lines (-bP config) */
469
470 typedef struct config_line_item {
471 struct config_line_item *next;
472 uschar *line;
473 } config_line_item;
474
475 static config_line_item* config_lines;
476
477 /* Structure of table of conditional words and their state transitions */
478
479 typedef struct cond_item {
480 uschar *name;
481 int namelen;
482 int action1;
483 int action2;
484 int pushpop;
485 } cond_item;
486
487 /* Structure of table of syslog facility names and values */
488
489 typedef struct syslog_fac_item {
490 uschar *name;
491 int value;
492 } syslog_fac_item;
493
494 /* constants */
495 static const uschar * const hidden = US"<value not displayable>";
496
497 /* Static variables */
498
499 static config_file_item *config_file_stack = NULL; /* For includes */
500
501 static uschar *syslog_facility_str = NULL;
502 static uschar next_section[24];
503 static uschar time_buffer[24];
504
505 /* State variables for conditional loading (.ifdef / .else / .endif) */
506
507 static int cstate = 0;
508 static int cstate_stack_ptr = -1;
509 static int cstate_stack[CSTATE_STACK_SIZE];
510
511 /* Table of state transitions for handling conditional inclusions. There are
512 four possible state transitions:
513
514 .ifdef true
515 .ifdef false
516 .elifdef true (or .else)
517 .elifdef false
518
519 .endif just causes the previous cstate to be popped off the stack */
520
521 static int next_cstate[3][4] =
522 {
523 /* State 0: reading from file, or reading until next .else or .endif */
524 { 0, 1, 2, 2 },
525 /* State 1: condition failed, skipping until next .else or .endif */
526 { 2, 2, 0, 1 },
527 /* State 2: skipping until .endif */
528 { 2, 2, 2, 2 },
529 };
530
531 /* Table of conditionals and the states to set. For each name, there are four
532 values: the length of the name (to save computing it each time), the state to
533 set if a macro was found in the line, the state to set if a macro was not found
534 in the line, and a stack manipulation setting which is:
535
536 -1 pull state value off the stack
537 0 don't alter the stack
538 +1 push value onto stack, before setting new state
539 */
540
541 static cond_item cond_list[] = {
542 { US"ifdef", 5, 0, 1, 1 },
543 { US"ifndef", 6, 1, 0, 1 },
544 { US"elifdef", 7, 2, 3, 0 },
545 { US"elifndef", 8, 3, 2, 0 },
546 { US"else", 4, 2, 2, 0 },
547 { US"endif", 5, 0, 0, -1 }
548 };
549
550 static int cond_list_size = sizeof(cond_list)/sizeof(cond_item);
551
552 /* Table of syslog facility names and their values */
553
554 static syslog_fac_item syslog_list[] = {
555 { US"mail", LOG_MAIL },
556 { US"user", LOG_USER },
557 { US"news", LOG_NEWS },
558 { US"uucp", LOG_UUCP },
559 { US"local0", LOG_LOCAL0 },
560 { US"local1", LOG_LOCAL1 },
561 { US"local2", LOG_LOCAL2 },
562 { US"local3", LOG_LOCAL3 },
563 { US"local4", LOG_LOCAL4 },
564 { US"local5", LOG_LOCAL5 },
565 { US"local6", LOG_LOCAL6 },
566 { US"local7", LOG_LOCAL7 },
567 { US"daemon", LOG_DAEMON }
568 };
569
570 static int syslog_list_size = sizeof(syslog_list)/sizeof(syslog_fac_item);
571
572
573 #define opt_fn_print BIT(0)
574 #define opt_fn_print_label BIT(1)
575
576
577 /*************************************************
578 * Find the name of an option *
579 *************************************************/
580
581 /* This function is to aid debugging. Various functions take arguments that are
582 pointer variables in the options table or in option tables for various drivers.
583 For debugging output, it is useful to be able to find the name of the option
584 which is currently being processed. This function finds it, if it exists, by
585 searching the table(s).
586
587 Arguments: a value that is presumed to be in the table above
588 Returns: the option name, or an empty string
589 */
590
591 uschar *
592 readconf_find_option(void *p)
593 {
594 for (int i = 0; i < nelem(optionlist_config); i++)
595 if (p == optionlist_config[i].v.value) return US optionlist_config[i].name;
596
597 for (router_instance * r = routers; r; r = r->next)
598 {
599 router_info *ri = r->info;
600 for (int i = 0; i < *ri->options_count; i++)
601 {
602 if ((ri->options[i].type & opt_mask) != opt_stringptr) continue;
603 if (p == CS (r->options_block) + ri->options[i].v.offset)
604 return US ri->options[i].name;
605 }
606 }
607
608 for (transport_instance * t = transports; t; t = t->next)
609 {
610 transport_info *ti = t->info;
611 for (int i = 0; i < *ti->options_count; i++)
612 {
613 optionlist * op = &ti->options[i];
614 if ((op->type & opt_mask) != opt_stringptr) continue;
615 if (p == ( op->type & opt_public
616 ? CS t
617 : CS t->options_block
618 )
619 + op->v.offset)
620 return US op->name;
621 }
622 }
623
624 return US"";
625 }
626
627
628
629
630 /*************************************************
631 * Deal with an assignment to a macro *
632 *************************************************/
633
634 /* We have a new definition; append to the list.
635
636 Args:
637 name Name of the macro; will be copied
638 val Expansion result for the macro; will be copied
639 */
640
641 macro_item *
642 macro_create(const uschar * name, const uschar * val, BOOL command_line)
643 {
644 macro_item * m = store_get(sizeof(macro_item), FALSE);
645
646 READCONF_DEBUG fprintf(stderr, "%s: '%s' '%s'\n", __FUNCTION__, name, val);
647 m->next = NULL;
648 m->command_line = command_line;
649 m->namelen = Ustrlen(name);
650 m->replen = Ustrlen(val);
651 m->name = string_copy(name);
652 m->replacement = string_copy(val);
653 if (mlast)
654 mlast->next = m;
655 else
656 macros = m;
657 mlast = m;
658 if (!macros_user)
659 macros_user = m;
660 return m;
661 }
662
663
664 /* This function is called when a line that starts with an upper case letter is
665 encountered. The argument "line" should contain a complete logical line, and
666 start with the first letter of the macro name. The macro name and the
667 replacement text are extracted and stored. Redefinition of existing,
668 non-command line, macros is permitted using '==' instead of '='.
669
670 Arguments:
671 s points to the start of the logical line
672
673 Returns: FALSE iff fatal error
674 */
675
676 BOOL
677 macro_read_assignment(uschar *s)
678 {
679 uschar name[64];
680 int namelen = 0;
681 BOOL redef = FALSE;
682 macro_item *m;
683
684 while (isalnum(*s) || *s == '_')
685 {
686 if (namelen >= sizeof(name) - 1)
687 {
688 log_write(0, LOG_PANIC|LOG_CONFIG_IN,
689 "macro name too long (maximum is " SIZE_T_FMT " characters)", sizeof(name) - 1);
690 return FALSE;
691 }
692 name[namelen++] = *s++;
693 }
694 name[namelen] = 0;
695
696 Uskip_whitespace(&s);
697 if (*s++ != '=')
698 {
699 log_write(0, LOG_PANIC|LOG_CONFIG_IN, "malformed macro definition");
700 return FALSE;
701 }
702
703 if (*s == '=')
704 {
705 redef = TRUE;
706 s++;
707 }
708 Uskip_whitespace(&s);
709
710 /* If an existing macro of the same name was defined on the command line, we
711 just skip this definition. It's an error to attempt to redefine a macro without
712 redef set to TRUE, or to redefine a macro when it hasn't been defined earlier.
713 It is also an error to define a macro whose name begins with the name of a
714 previously defined macro. This is the requirement that make using a tree
715 for macros hard; we must check all macros for the substring. Perhaps a
716 sorted list, and a bsearch, would work?
717 Note: it is documented that the other way round works. */
718
719 for (m = macros; m; m = m->next)
720 {
721 if (Ustrcmp(m->name, name) == 0)
722 {
723 if (!m->command_line && !redef)
724 {
725 log_write(0, LOG_CONFIG|LOG_PANIC, "macro \"%s\" is already "
726 "defined (use \"==\" if you want to redefine it)", name);
727 return FALSE;
728 }
729 break;
730 }
731
732 if (m->namelen < namelen && Ustrstr(name, m->name) != NULL)
733 {
734 log_write(0, LOG_CONFIG|LOG_PANIC, "\"%s\" cannot be defined as "
735 "a macro because previously defined macro \"%s\" is a substring",
736 name, m->name);
737 return FALSE;
738 }
739
740 /* We cannot have this test, because it is documented that a substring
741 macro is permitted (there is even an example).
742 *
743 * if (m->namelen > namelen && Ustrstr(m->name, name) != NULL)
744 * log_write(0, LOG_CONFIG|LOG_PANIC_DIE, "\"%s\" cannot be defined as "
745 * "a macro because it is a substring of previously defined macro \"%s\"",
746 * name, m->name);
747 */
748 }
749
750 /* Check for an overriding command-line definition. */
751
752 if (m && m->command_line) return TRUE;
753
754 /* Redefinition must refer to an existing macro. */
755
756 if (redef)
757 if (m)
758 {
759 m->replen = Ustrlen(s);
760 m->replacement = string_copy(s);
761 }
762 else
763 {
764 log_write(0, LOG_CONFIG|LOG_PANIC, "can't redefine an undefined macro "
765 "\"%s\"", name);
766 return FALSE;
767 }
768
769 /* We have a new definition. */
770 else
771 (void) macro_create(name, s, FALSE);
772 return TRUE;
773 }
774
775
776
777
778
779 /* Process line for macros. The line is in big_buffer starting at offset len.
780 Expand big_buffer if needed. Handle definitions of new macros, and
781 macro expansions, rewriting the line in the buffer.
782
783 Arguments:
784 len Offset in buffer of start of line
785 newlen Pointer to offset of end of line, updated on return
786 macro_found Pointer to return that a macro was expanded
787
788 Return: pointer to first nonblank char in line
789 */
790
791 uschar *
792 macros_expand(int len, int * newlen, BOOL * macro_found)
793 {
794 uschar * ss = big_buffer + len;
795 uschar * s;
796
797 /* Find the true start of the physical line - leading spaces are always
798 ignored. */
799
800 Uskip_whitespace(&ss);
801
802 /* Process the physical line for macros. If this is the start of the logical
803 line, skip over initial text at the start of the line if it starts with an
804 upper case character followed by a sequence of name characters and an equals
805 sign, because that is the definition of a new macro, and we don't do
806 replacement therein. */
807
808 s = ss;
809 if (len == 0 && isupper(*s))
810 {
811 while (isalnum(*s) || *s == '_') s++;
812 if (Uskip_whitespace(&s) != '=') s = ss; /* Not a macro definition */
813 }
814
815 /* Skip leading chars which cannot start a macro name, to avoid multiple
816 pointless rescans in Ustrstr calls. */
817
818 while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
819
820 /* For each defined macro, scan the line (from after XXX= if present),
821 replacing all occurrences of the macro. */
822
823 *macro_found = FALSE;
824 if (*s) for (macro_item * m = *s == '_' ? macros : macros_user; m; m = m->next)
825 {
826 uschar * p, *pp;
827 uschar * t;
828
829 while (*s && !isupper(*s) && !(*s == '_' && isupper(s[1]))) s++;
830 if (!*s) break;
831
832 t = s;
833 while ((p = Ustrstr(t, m->name)) != NULL)
834 {
835 int moveby;
836
837 READCONF_DEBUG fprintf(stderr, "%s: matched '%s' in '%.*s'\n", __FUNCTION__,
838 m->name, (int) Ustrlen(ss)-1, ss);
839 /* Expand the buffer if necessary */
840
841 while (*newlen - m->namelen + m->replen + 1 > big_buffer_size)
842 {
843 int newsize = big_buffer_size + BIG_BUFFER_SIZE;
844 uschar *newbuffer = store_malloc(newsize);
845 memcpy(newbuffer, big_buffer, *newlen + 1);
846 p = newbuffer + (p - big_buffer);
847 s = newbuffer + (s - big_buffer);
848 ss = newbuffer + (ss - big_buffer);
849 t = newbuffer + (t - big_buffer);
850 big_buffer_size = newsize;
851 store_free(big_buffer);
852 big_buffer = newbuffer;
853 }
854
855 /* Shuffle the remaining characters up or down in the buffer before
856 copying in the replacement text. Don't rescan the replacement for this
857 same macro. */
858
859 pp = p + m->namelen;
860 if ((moveby = m->replen - m->namelen) != 0)
861 {
862 memmove(p + m->replen, pp, (big_buffer + *newlen) - pp + 1);
863 *newlen += moveby;
864 }
865 Ustrncpy(p, m->replacement, m->replen);
866 t = p + m->replen;
867 while (*t && !isupper(*t) && !(*t == '_' && isupper(t[1]))) t++;
868 *macro_found = TRUE;
869 }
870 }
871
872 /* An empty macro replacement at the start of a line could mean that ss no
873 longer points to the first non-blank character. */
874
875 Uskip_whitespace(&ss);
876 return ss;
877 }
878
879 /*************************************************
880 * Read configuration line *
881 *************************************************/
882
883 /* A logical line of text is read from the configuration file into the big
884 buffer, taking account of macros, .includes, and continuations. The size of
885 big_buffer is increased if necessary. The count of configuration lines is
886 maintained. Physical input lines starting with # (ignoring leading white space,
887 and after macro replacement) and empty logical lines are always ignored.
888 Leading and trailing spaces are removed.
889
890 If we hit a line of the form "begin xxxx", the xxxx is placed in the
891 next_section vector, and the function returns NULL, indicating the end of a
892 configuration section. On end-of-file, NULL is returned with next_section
893 empty.
894
895 Arguments: none
896
897 Returns: a pointer to the first non-blank in the line,
898 or NULL if eof or end of section is reached
899 */
900
901 static uschar *
902 get_config_line(void)
903 {
904 int startoffset = 0; /* To first non-blank char in logical line */
905 int len = 0; /* Of logical line so far */
906 int newlen;
907 uschar *s, *ss;
908 BOOL macro_found;
909
910 /* Loop for handling continuation lines, skipping comments, and dealing with
911 .include files. */
912
913 for (;;)
914 {
915 if (Ufgets(big_buffer+len, big_buffer_size-len, config_file) == NULL)
916 {
917 if (config_file_stack != NULL) /* EOF inside .include */
918 {
919 (void)fclose(config_file);
920 config_file = config_file_stack->file;
921 config_filename = config_file_stack->filename;
922 config_directory = config_file_stack->directory;
923 config_lineno = config_file_stack->lineno;
924 config_file_stack = config_file_stack->next;
925 if (config_lines)
926 save_config_position(config_filename, config_lineno);
927 continue;
928 }
929
930 /* EOF at top level */
931
932 if (cstate_stack_ptr >= 0)
933 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
934 "Unexpected end of configuration file: .endif missing");
935
936 if (len != 0) break; /* EOF after continuation */
937 next_section[0] = 0; /* EOF at start of logical line */
938 return NULL;
939 }
940
941 config_lineno++;
942 newlen = len + Ustrlen(big_buffer + len);
943
944 if (config_lines && config_lineno == 1)
945 save_config_position(config_filename, config_lineno);
946
947 /* Handle pathologically long physical lines - yes, it did happen - by
948 extending big_buffer at this point. The code also copes with very long
949 logical lines. */
950
951 while (newlen == big_buffer_size - 1 && big_buffer[newlen - 1] != '\n')
952 {
953 uschar *newbuffer;
954 big_buffer_size += BIG_BUFFER_SIZE;
955 newbuffer = store_malloc(big_buffer_size);
956
957 /* This use of strcpy is OK because we know that the string in the old
958 buffer is shorter than the new buffer. */
959
960 Ustrcpy(newbuffer, big_buffer);
961 store_free(big_buffer);
962 big_buffer = newbuffer;
963 if (Ufgets(big_buffer+newlen, big_buffer_size-newlen, config_file) == NULL)
964 break;
965 newlen += Ustrlen(big_buffer + newlen);
966 }
967
968 ss = macros_expand(len, &newlen, &macro_found);
969
970 /* Check for comment lines - these are physical lines. */
971
972 if (*ss == '#') continue;
973
974 /* Handle conditionals, which are also applied to physical lines. Conditions
975 are of the form ".ifdef ANYTEXT" and are treated as true if any macro
976 expansion occurred on the rest of the line. A preliminary test for the leading
977 '.' saves effort on most lines. */
978
979 if (*ss == '.')
980 {
981 int i;
982
983 /* Search the list of conditional directives */
984
985 for (i = 0; i < cond_list_size; i++)
986 {
987 int n;
988 cond_item *c = cond_list+i;
989 if (Ustrncmp(ss+1, c->name, c->namelen) != 0) continue;
990
991 /* The following character must be white space or end of string */
992
993 n = ss[1 + c->namelen];
994 if (n != ' ' && n != 't' && n != '\n' && n != 0) break;
995
996 /* .ifdef and .ifndef push the current state onto the stack, then set
997 a new one from the table. Stack overflow is an error */
998
999 if (c->pushpop > 0)
1000 {
1001 if (cstate_stack_ptr >= CSTATE_STACK_SIZE - 1)
1002 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1003 ".%s nested too deeply", c->name);
1004 cstate_stack[++cstate_stack_ptr] = cstate;
1005 cstate = next_cstate[cstate][macro_found? c->action1 : c->action2];
1006 }
1007
1008 /* For any of the others, stack underflow is an error. The next state
1009 comes either from the stack (.endif) or from the table. */
1010
1011 else
1012 {
1013 if (cstate_stack_ptr < 0)
1014 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1015 ".%s without matching .ifdef", c->name);
1016 cstate = (c->pushpop < 0)? cstate_stack[cstate_stack_ptr--] :
1017 next_cstate[cstate][macro_found? c->action1 : c->action2];
1018 }
1019
1020 /* Having dealt with a directive, break the loop */
1021
1022 break;
1023 }
1024
1025 /* If we have handled a conditional directive, continue with the next
1026 physical line. Otherwise, fall through. */
1027
1028 if (i < cond_list_size) continue;
1029 }
1030
1031 /* If the conditional state is not 0 (actively using these lines), ignore
1032 this input line. */
1033
1034 if (cstate != 0) continue; /* Conditional skip */
1035
1036 /* Handle .include lines - these are also physical lines. */
1037
1038 if (Ustrncmp(ss, ".include", 8) == 0 &&
1039 (isspace(ss[8]) ||
1040 (Ustrncmp(ss+8, "_if_exists", 10) == 0 && isspace(ss[18]))))
1041 {
1042 uschar *t;
1043 int include_if_exists = isspace(ss[8])? 0 : 10;
1044 config_file_item *save;
1045 struct stat statbuf;
1046
1047 ss += 9 + include_if_exists;
1048 Uskip_whitespace(&ss);
1049 t = ss + Ustrlen(ss);
1050 while (t > ss && isspace(t[-1])) t--;
1051 if (*ss == '\"' && t[-1] == '\"')
1052 {
1053 ss++;
1054 t--;
1055 }
1056 *t = 0;
1057
1058 /* We allow relative file names. For security reasons currently
1059 relative names not allowed with .include_if_exists. For .include_if_exists
1060 we need to check the permissions/ownership of the containing folder */
1061 if (*ss != '/')
1062 if (include_if_exists) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, ".include specifies a non-"
1063 "absolute path \"%s\"", ss);
1064 else
1065 {
1066 gstring * g = string_append(NULL, 3, config_directory, "/", ss);
1067 ss = string_from_gstring(g);
1068 }
1069
1070 if (include_if_exists != 0 && (Ustat(ss, &statbuf) != 0)) continue;
1071
1072 if (config_lines)
1073 save_config_position(config_filename, config_lineno);
1074 save = store_get(sizeof(config_file_item), FALSE);
1075 save->next = config_file_stack;
1076 config_file_stack = save;
1077 save->file = config_file;
1078 save->filename = config_filename;
1079 save->directory = config_directory;
1080 save->lineno = config_lineno;
1081
1082 if (!(config_file = Ufopen(ss, "rb")))
1083 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to open included "
1084 "configuration file %s", ss);
1085
1086 config_filename = string_copy(ss);
1087 config_directory = string_copyn(ss, CUstrrchr(ss, '/') - ss);
1088 config_lineno = 0;
1089 continue;
1090 }
1091
1092 /* If this is the start of the logical line, remember where the non-blank
1093 data starts. Otherwise shuffle down continuation lines to remove leading
1094 white space. */
1095
1096 if (len == 0)
1097 startoffset = ss - big_buffer;
1098 else
1099 {
1100 s = big_buffer + len;
1101 if (ss > s)
1102 {
1103 memmove(s, ss, (newlen - len) - (ss - s) + 1);
1104 newlen -= ss - s;
1105 }
1106 }
1107
1108 /* Accept the new addition to the line. Remove trailing white space. */
1109
1110 len = newlen;
1111 while (len > 0 && isspace(big_buffer[len-1])) len--;
1112 big_buffer[len] = 0;
1113
1114 /* We are done if the line does not end in backslash and contains some data.
1115 Empty logical lines are ignored. For continuations, remove the backslash and
1116 go round the loop to read the continuation line. */
1117
1118 if (len > 0)
1119 {
1120 if (big_buffer[len-1] != '\\') break; /* End of logical line */
1121 big_buffer[--len] = 0; /* Remove backslash */
1122 }
1123 } /* Loop for reading multiple physical lines */
1124
1125 /* We now have a logical line. Test for the end of a configuration section (or,
1126 more accurately, for the start of the next section). Place the name of the next
1127 section in next_section, and return NULL. If the name given is longer than
1128 next_section, truncate it. It will be unrecognized later, because all the known
1129 section names do fit. Leave space for pluralizing. */
1130
1131 s = big_buffer + startoffset; /* First non-space character */
1132
1133 if (config_lines)
1134 save_config_line(s);
1135
1136 if (strncmpic(s, US"begin ", 6) == 0)
1137 {
1138 s += 6;
1139 Uskip_whitespace(&s);
1140 if (big_buffer + len - s > sizeof(next_section) - 2)
1141 s[sizeof(next_section) - 2] = 0;
1142 Ustrcpy(next_section, s);
1143 return NULL;
1144 }
1145
1146 /* Return the first non-blank character. */
1147
1148 return s;
1149 }
1150
1151
1152
1153 /*************************************************
1154 * Read a name *
1155 *************************************************/
1156
1157 /* The yield is the pointer to the next uschar. Names longer than the
1158 output space are silently truncated. This function is also used from acl.c when
1159 parsing ACLs.
1160
1161 Arguments:
1162 name where to put the name
1163 len length of name
1164 s input pointer
1165
1166 Returns: new input pointer
1167 */
1168
1169 uschar *
1170 readconf_readname(uschar *name, int len, uschar *s)
1171 {
1172 int p = 0;
1173
1174 if (isalpha(Uskip_whitespace(&s)))
1175 while (isalnum(*s) || *s == '_')
1176 {
1177 if (p < len-1) name[p++] = *s;
1178 s++;
1179 }
1180
1181 name[p] = 0;
1182 Uskip_whitespace(&s);
1183 return s;
1184 }
1185
1186
1187
1188
1189 /*************************************************
1190 * Read a time value *
1191 *************************************************/
1192
1193 /* This function is also called from outside, to read argument
1194 time values. The format of a time value is:
1195
1196 [<n>w][<n>d][<n>h][<n>m][<n>s]
1197
1198 as long as at least one is present. If a format error is encountered,
1199 return a negative value. The value must be terminated by the given
1200 terminator.
1201
1202 Arguments:
1203 s input pointer
1204 terminator required terminating character
1205 return_msec if TRUE, allow fractional seconds and return milliseconds
1206
1207 Returns: the time value, or -1 on syntax error
1208 value is seconds if return_msec is FALSE
1209 value is milliseconds if return_msec is TRUE
1210 */
1211
1212 int
1213 readconf_readtime(const uschar *s, int terminator, BOOL return_msec)
1214 {
1215 int yield = 0;
1216 for (;;)
1217 {
1218 int value, count;
1219 double fraction;
1220
1221 if (!isdigit(*s)) return -1;
1222 (void)sscanf(CCS s, "%d%n", &value, &count);
1223 s += count;
1224
1225 switch (*s)
1226 {
1227 case 'w': value *= 7;
1228 case 'd': value *= 24;
1229 case 'h': value *= 60;
1230 case 'm': value *= 60;
1231 case 's': s++;
1232 break;
1233
1234 case '.':
1235 if (!return_msec) return -1;
1236 (void)sscanf(CCS s, "%lf%n", &fraction, &count);
1237 s += count;
1238 if (*s++ != 's') return -1;
1239 yield += (int)(fraction * 1000.0);
1240 break;
1241
1242 default: return -1;
1243 }
1244
1245 if (return_msec) value *= 1000;
1246 yield += value;
1247 if (*s == terminator) return yield;
1248 }
1249 /* Control never reaches here. */
1250 }
1251
1252
1253
1254 /*************************************************
1255 * Read a fixed point value *
1256 *************************************************/
1257
1258 /* The value is returned *1000
1259
1260 Arguments:
1261 s input pointer
1262 terminator required terminator
1263
1264 Returns: the value, or -1 on error
1265 */
1266
1267 static int
1268 readconf_readfixed(const uschar *s, int terminator)
1269 {
1270 int yield = 0;
1271 int value, count;
1272 if (!isdigit(*s)) return -1;
1273 (void)sscanf(CS s, "%d%n", &value, &count);
1274 s += count;
1275 yield = value * 1000;
1276 if (*s == '.')
1277 {
1278 int m = 100;
1279 while (isdigit((*(++s))))
1280 {
1281 yield += (*s - '0') * m;
1282 m /= 10;
1283 }
1284 }
1285
1286 return (*s == terminator)? yield : (-1);
1287 }
1288
1289
1290
1291 /*************************************************
1292 * Find option in list *
1293 *************************************************/
1294
1295 /* The lists are always in order, so binary chop can be used.
1296
1297 Arguments:
1298 name the option name to search for
1299 ol the first entry in the option list
1300 last one more than the offset of the last entry in the option list
1301
1302 Returns: pointer to an option entry, or NULL if not found
1303 */
1304
1305 static optionlist *
1306 find_option(uschar *name, optionlist *ol, int last)
1307 {
1308 int first = 0;
1309 while (last > first)
1310 {
1311 int middle = (first + last)/2;
1312 int c = Ustrcmp(name, ol[middle].name);
1313
1314 if (c == 0) return ol + middle;
1315 else if (c > 0) first = middle + 1;
1316 else last = middle;
1317 }
1318 return NULL;
1319 }
1320
1321
1322
1323 /*************************************************
1324 * Find a set flag in option list *
1325 *************************************************/
1326
1327 /* Because some versions of Unix make no restrictions on the values of uids and
1328 gids (even negative ones), we cannot represent "unset" by a special value.
1329 There is therefore a separate boolean variable for each one indicating whether
1330 a value is set or not. This function returns a pointer to the boolean, given
1331 the original option name. It is a major disaster if the flag cannot be found.
1332
1333 Arguments:
1334 name the name of the uid or gid option
1335 oltop points to the start of the relevant option list
1336 last one more than the offset of the last item in the option list
1337 data_block NULL when reading main options => data values in the option
1338 list are absolute addresses; otherwise they are byte offsets
1339 in data_block (used for driver options)
1340
1341 Returns: a pointer to the boolean flag.
1342 */
1343
1344 static BOOL *
1345 get_set_flag(uschar *name, optionlist *oltop, int last, void *data_block)
1346 {
1347 optionlist *ol;
1348 uschar name2[64];
1349 sprintf(CS name2, "*set_%.50s", name);
1350 if (!(ol = find_option(name2, oltop, last)))
1351 log_write(0, LOG_MAIN|LOG_PANIC_DIE,
1352 "Exim internal error: missing set flag for %s", name);
1353 return data_block
1354 ? (BOOL *)(US data_block + ol->v.offset) : (BOOL *)ol->v.value;
1355 }
1356
1357
1358
1359
1360 /*************************************************
1361 * Output extra characters message and die *
1362 *************************************************/
1363
1364 /* Called when an option line has junk on the end. Sometimes this is because
1365 the sysadmin thinks comments are permitted.
1366
1367 Arguments:
1368 s points to the extra characters
1369 t1..t3 strings to insert in the log message
1370
1371 Returns: doesn't return; dies
1372 */
1373
1374 static void
1375 extra_chars_error(const uschar *s, const uschar *t1, const uschar *t2, const uschar *t3)
1376 {
1377 uschar *comment = US"";
1378 if (*s == '#') comment = US" (# is comment only at line start)";
1379 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1380 "extra characters follow %s%s%s%s", t1, t2, t3, comment);
1381 }
1382
1383
1384
1385 /*************************************************
1386 * Read rewrite information *
1387 *************************************************/
1388
1389 /* Each line of rewrite information contains:
1390
1391 . A complete address in the form user@domain, possibly with
1392 leading * for each part; or alternatively, a regex.
1393
1394 . A replacement string (which will be expanded).
1395
1396 . An optional sequence of one-letter flags, indicating which
1397 headers etc. to apply this rule to.
1398
1399 All this is decoded and placed into a control block. The OR of the flags is
1400 maintained in a common word.
1401
1402 Arguments:
1403 p points to the string that makes up the rule
1404 existflags points to the overall flag word
1405 isglobal TRUE if reading global rewrite rules
1406
1407 Returns: the control block for the parsed rule.
1408 */
1409
1410 static rewrite_rule *
1411 readconf_one_rewrite(const uschar *p, int *existflags, BOOL isglobal)
1412 {
1413 rewrite_rule *next = store_get(sizeof(rewrite_rule), FALSE);
1414
1415 next->next = NULL;
1416 next->key = string_dequote(&p);
1417
1418 Uskip_whitespace(&p);
1419 if (!*p)
1420 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1421 "missing rewrite replacement string");
1422
1423 next->flags = 0;
1424 next->replacement = string_dequote(&p);
1425
1426 while (*p) switch (*p++)
1427 {
1428 case ' ': case '\t': break;
1429
1430 case 'q': next->flags |= rewrite_quit; break;
1431 case 'w': next->flags |= rewrite_whole; break;
1432
1433 case 'h': next->flags |= rewrite_all_headers; break;
1434 case 's': next->flags |= rewrite_sender; break;
1435 case 'f': next->flags |= rewrite_from; break;
1436 case 't': next->flags |= rewrite_to; break;
1437 case 'c': next->flags |= rewrite_cc; break;
1438 case 'b': next->flags |= rewrite_bcc; break;
1439 case 'r': next->flags |= rewrite_replyto; break;
1440
1441 case 'E': next->flags |= rewrite_all_envelope; break;
1442 case 'F': next->flags |= rewrite_envfrom; break;
1443 case 'T': next->flags |= rewrite_envto; break;
1444
1445 case 'Q': next->flags |= rewrite_qualify; break;
1446 case 'R': next->flags |= rewrite_repeat; break;
1447
1448 case 'S':
1449 next->flags |= rewrite_smtp;
1450 if (next->key[0] != '^' && Ustrncmp(next->key, "\\N^", 3) != 0)
1451 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1452 "rewrite rule has the S flag but is not a regular expression");
1453 break;
1454
1455 default:
1456 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1457 "unknown rewrite flag character '%c' "
1458 "(could be missing quotes round replacement item)", p[-1]);
1459 break;
1460 }
1461
1462 /* If no action flags are set, set all the "normal" rewrites. */
1463
1464 if ((next->flags & (rewrite_all | rewrite_smtp)) == 0)
1465 next->flags |= isglobal? rewrite_all : rewrite_all_headers;
1466
1467 /* Remember which exist, for optimization, and return the rule */
1468
1469 *existflags |= next->flags;
1470 return next;
1471 }
1472
1473
1474
1475
1476 /*************************************************
1477 * Read global rewrite information *
1478 *************************************************/
1479
1480 /* Each line is a single rewrite rule; it is parsed into a control block
1481 by readconf_one_rewrite(), and its flags are ORed into the global flag
1482 word rewrite_existflags. */
1483
1484 void
1485 readconf_rewrites(void)
1486 {
1487 rewrite_rule **chain = &global_rewrite_rules;
1488 uschar *p;
1489
1490 while ((p = get_config_line()) != NULL)
1491 {
1492 rewrite_rule *next = readconf_one_rewrite(p, &rewrite_existflags, TRUE);
1493 *chain = next;
1494 chain = &(next->next);
1495 }
1496 }
1497
1498
1499
1500 /*************************************************
1501 * Read a string *
1502 *************************************************/
1503
1504 /* Strings are read into the normal store pool. As long we aren't too
1505 near the end of the current block, the string will just use what is necessary
1506 on the top of the stacking pool, because string_cat() uses the extension
1507 mechanism.
1508
1509 Argument:
1510 s the rest of the input line
1511 name the option name (for errors)
1512
1513 Returns: pointer to the string
1514 */
1515
1516 static uschar *
1517 read_string(const uschar *s, const uschar *name)
1518 {
1519 uschar *yield;
1520 const uschar *ss;
1521
1522 if (*s != '\"') return string_copy(s);
1523
1524 ss = s;
1525 yield = string_dequote(&s);
1526
1527 if (s == ss+1 || s[-1] != '\"')
1528 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1529 "missing quote at end of string value for %s", name);
1530
1531 if (*s != 0) extra_chars_error(s, US"string value for ", name, US"");
1532
1533 return yield;
1534 }
1535
1536
1537 /*************************************************
1538 * Custom-handler options *
1539 *************************************************/
1540 static void
1541 fn_smtp_receive_timeout(const uschar * name, const uschar * str, unsigned flags)
1542 {
1543 if (flags & opt_fn_print)
1544 {
1545 if (flags & opt_fn_print_label) printf("%s = ", name);
1546 printf("%s\n", smtp_receive_timeout_s
1547 ? string_printing2(smtp_receive_timeout_s, FALSE)
1548 : readconf_printtime(smtp_receive_timeout));
1549 }
1550 else if (*str == '$')
1551 smtp_receive_timeout_s = string_copy(str);
1552 else
1553 {
1554 /* "smtp_receive_timeout", opt_time, &smtp_receive_timeout */
1555 smtp_receive_timeout = readconf_readtime(str, 0, FALSE);
1556 if (smtp_receive_timeout < 0)
1557 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
1558 name);
1559 }
1560 }
1561
1562 /*************************************************
1563 * Handle option line *
1564 *************************************************/
1565
1566 /* This function is called from several places to process a line containing the
1567 setting of an option. The first argument is the line to be decoded; it has been
1568 checked not to be empty and not to start with '#'. Trailing newlines and white
1569 space have been removed. The second argument is a pointer to the list of
1570 variable names that are to be recognized, together with their types and
1571 locations, and the third argument gives the number of entries in the list.
1572
1573 The fourth argument is a pointer to a data block. If it is NULL, then the data
1574 values in the options list are absolute addresses. Otherwise, they are byte
1575 offsets in the data block.
1576
1577 String option data may continue onto several lines; this function reads further
1578 data from config_file if necessary.
1579
1580 The yield of this function is normally zero. If a string continues onto
1581 multiple lines, then the data value is permitted to be followed by a comma
1582 or a semicolon (for use in drivers) and the yield is that character.
1583
1584 Arguments:
1585 buffer contains the configuration line to be handled
1586 oltop points to the start of the relevant option list
1587 last one more than the offset of the last item in the option list
1588 data_block NULL when reading main options => data values in the option
1589 list are absolute addresses; otherwise they are byte offsets
1590 in data_block when they have opt_public set; otherwise
1591 they are byte offsets in data_block->options_block.
1592 unknown_txt format string to use in panic message for unknown option;
1593 must contain %s for option name
1594 if given as NULL, don't panic on unknown option
1595
1596 Returns: TRUE if an option was read successfully,
1597 FALSE false for an unknown option if unknown_txt == NULL,
1598 otherwise panic and die on an unknown option
1599 */
1600
1601 static BOOL
1602 readconf_handle_option(uschar *buffer, optionlist *oltop, int last,
1603 void *data_block, uschar *unknown_txt)
1604 {
1605 int ptr = 0;
1606 int offset = 0;
1607 int count, type, value;
1608 int issecure = 0;
1609 uid_t uid;
1610 gid_t gid;
1611 BOOL boolvalue = TRUE;
1612 BOOL freesptr = TRUE;
1613 optionlist *ol, *ol2;
1614 struct passwd *pw;
1615 rmark reset_point;
1616 int intbase = 0;
1617 uschar *inttype = US"";
1618 uschar *sptr;
1619 uschar *s = buffer;
1620 uschar **str_target;
1621 uschar name[64];
1622 uschar name2[64];
1623
1624 /* There may be leading spaces; thereafter, we expect an option name starting
1625 with a letter. */
1626
1627 while (isspace(*s)) s++;
1628 if (!isalpha(*s))
1629 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option setting expected: %s", s);
1630
1631 /* Read the name of the option, and skip any subsequent white space. If
1632 it turns out that what we read was "hide", set the flag indicating that
1633 this is a secure option, and loop to read the next word. */
1634
1635 for (int n = 0; n < 2; n++)
1636 {
1637 while (isalnum(*s) || *s == '_')
1638 {
1639 if (ptr < sizeof(name)-1) name[ptr++] = *s;
1640 s++;
1641 }
1642 name[ptr] = 0;
1643 while (isspace(*s)) s++;
1644 if (Ustrcmp(name, "hide") != 0) break;
1645 issecure = opt_secure;
1646 ptr = 0;
1647 }
1648
1649 /* Deal with "no_" or "not_" here for booleans */
1650
1651 if (Ustrncmp(name, "no_", 3) == 0)
1652 {
1653 boolvalue = FALSE;
1654 offset = 3;
1655 }
1656
1657 if (Ustrncmp(name, "not_", 4) == 0)
1658 {
1659 boolvalue = FALSE;
1660 offset = 4;
1661 }
1662
1663 /* Search the list for the given name. A non-existent name, or an option that
1664 is set twice, is a disaster. */
1665
1666 if (!(ol = find_option(name + offset, oltop, last)))
1667 {
1668 if (!unknown_txt) return FALSE;
1669 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, CS unknown_txt, name);
1670 }
1671
1672 if ((ol->type & opt_set) && !(ol->type & (opt_rep_con | opt_rep_str)))
1673 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1674 "\"%s\" option set for the second time", name);
1675
1676 ol->type |= opt_set | issecure;
1677 type = ol->type & opt_mask;
1678
1679 /* Types with data values must be followed by '='; the "no[t]_" prefix
1680 applies only to boolean values. */
1681
1682 if (type < opt_bool || type > opt_bool_last)
1683 {
1684 if (offset != 0)
1685 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1686 "negation prefix applied to a non-boolean option");
1687 if (!*s)
1688 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1689 "unexpected end of line (data missing) after %s", name);
1690 if (*s != '=')
1691 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "missing \"=\" after %s", name);
1692 }
1693
1694 /* If a boolean wasn't preceded by "no[t]_" it can be followed by = and
1695 true/false/yes/no, or, in the case of opt_expand_bool, a general string that
1696 ultimately expands to one of those values. */
1697
1698 else if (*s && (offset != 0 || *s != '='))
1699 extra_chars_error(s, US"boolean option ", name, US"");
1700
1701 /* Skip white space after = */
1702
1703 if (*s == '=') while (isspace((*(++s))));
1704
1705 /* If there is a data block and the opt_public flag is not set, change
1706 the data block pointer to the private options block. */
1707
1708 if (data_block && !(ol->type & opt_public))
1709 data_block = (void *)(((driver_instance *)data_block)->options_block);
1710
1711 /* Now get the data according to the type. */
1712
1713 switch (type)
1714 {
1715 /* If a string value is not enclosed in quotes, it consists of
1716 the rest of the current line, verbatim. Otherwise, string escapes
1717 are processed.
1718
1719 A transport is specified as a string, which is then looked up in the
1720 list of transports. A search type is specified as one of a number of
1721 known strings.
1722
1723 A set or rewrite rules for a driver is specified as a string, which is
1724 then parsed into a suitable chain of control blocks.
1725
1726 Uids and gids are specified as strings which are then looked up in the
1727 passwd file. Lists of uids and gids are similarly specified as colon-
1728 separated strings. */
1729
1730 case opt_stringptr:
1731 case opt_uid:
1732 case opt_gid:
1733 case opt_expand_uid:
1734 case opt_expand_gid:
1735 case opt_uidlist:
1736 case opt_gidlist:
1737 case opt_rewrite:
1738
1739 reset_point = store_mark();
1740 sptr = read_string(s, name);
1741
1742 /* Having read a string, we now have several different ways of using it,
1743 depending on the data type, so do another switch. If keeping the actual
1744 string is not required (because it is interpreted), freesptr is set TRUE,
1745 and at the end we reset the pool. */
1746
1747 switch (type)
1748 {
1749 /* If this was a string, set the variable to point to the new string,
1750 and set the flag so its store isn't reclaimed. If it was a list of rewrite
1751 rules, we still keep the string (for printing), and parse the rules into a
1752 control block and flags word. */
1753
1754 case opt_stringptr:
1755 str_target = data_block ? USS (US data_block + ol->v.offset)
1756 : USS ol->v.value;
1757 if (ol->type & opt_rep_con)
1758 {
1759 uschar * saved_condition;
1760 /* We already have a condition, we're conducting a crude hack to let
1761 multiple condition rules be chained together, despite storing them in
1762 text form. */
1763 *str_target = string_copy_perm( (saved_condition = *str_target)
1764 ? string_sprintf("${if and{{bool_lax{%s}}{bool_lax{%s}}}}",
1765 saved_condition, sptr)
1766 : sptr,
1767 FALSE);
1768 /* TODO(pdp): there is a memory leak here and just below
1769 when we set 3 or more conditions; I still don't
1770 understand the store mechanism enough to know
1771 what's the safe way to free content from an earlier store.
1772 AFAICT, stores stack, so freeing an early stored item also stores
1773 all data alloc'd after it. If we knew conditions were adjacent,
1774 we could survive that, but we don't. So I *think* we need to take
1775 another bit from opt_type to indicate "malloced"; this seems like
1776 quite a hack, especially for this one case. It also means that
1777 we can't ever reclaim the store from the *first* condition.
1778
1779 Because we only do this once, near process start-up, I'm prepared to
1780 let this slide for the time being, even though it rankles. */
1781 }
1782 else if (ol->type & opt_rep_str)
1783 {
1784 uschar sep_o =
1785 Ustrncmp(name, "headers_add", 11) == 0 ? '\n'
1786 : Ustrncmp(name, "set", 3) == 0 ? ';'
1787 : ':';
1788 int sep_i = -(int)sep_o;
1789 const uschar * list = sptr;
1790 uschar * s;
1791 gstring * list_o = NULL;
1792
1793 if (*str_target)
1794 {
1795 list_o = string_get(Ustrlen(*str_target) + Ustrlen(sptr));
1796 list_o = string_cat(list_o, *str_target);
1797 }
1798
1799 while ((s = string_nextinlist(&list, &sep_i, NULL, 0)))
1800 list_o = string_append_listele(list_o, sep_o, s);
1801
1802 if (list_o)
1803 *str_target = string_copy_perm(string_from_gstring(list_o), FALSE);
1804 }
1805 else
1806 {
1807 *str_target = sptr;
1808 freesptr = FALSE;
1809 }
1810 break;
1811
1812 case opt_rewrite:
1813 if (data_block)
1814 *USS (US data_block + ol->v.offset) = sptr;
1815 else
1816 *USS ol->v.value = sptr;
1817 freesptr = FALSE;
1818 if (type == opt_rewrite)
1819 {
1820 int sep = 0;
1821 int *flagptr;
1822 uschar *p = sptr;
1823 rewrite_rule **chain;
1824 optionlist *ol3;
1825
1826 sprintf(CS name2, "*%.50s_rules", name);
1827 ol2 = find_option(name2, oltop, last);
1828 sprintf(CS name2, "*%.50s_flags", name);
1829 ol3 = find_option(name2, oltop, last);
1830
1831 if (!ol2 || !ol3)
1832 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
1833 "rewrite rules not available for driver");
1834
1835 if (data_block)
1836 {
1837 chain = (rewrite_rule **)(US data_block + ol2->v.offset);
1838 flagptr = (int *)(US data_block + ol3->v.offset);
1839 }
1840 else
1841 {
1842 chain = (rewrite_rule **)ol2->v.value;
1843 flagptr = (int *)ol3->v.value;
1844 }
1845
1846 while ((p = string_nextinlist(CUSS &sptr, &sep, big_buffer, BIG_BUFFER_SIZE)))
1847 {
1848 rewrite_rule *next = readconf_one_rewrite(p, flagptr, FALSE);
1849 *chain = next;
1850 chain = &(next->next);
1851 }
1852
1853 if ((*flagptr & (rewrite_all_envelope | rewrite_smtp)) != 0)
1854 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "rewrite rule specifies a "
1855 "non-header rewrite - not allowed at transport time -");
1856 }
1857 break;
1858
1859 /* If it was an expanded uid, see if there is any expansion to be
1860 done by checking for the presence of a $ character. If there is, save it
1861 in the corresponding *expand_user option field. Otherwise, fall through
1862 to treat it as a fixed uid. Ensure mutual exclusivity of the two kinds
1863 of data. */
1864
1865 case opt_expand_uid:
1866 sprintf(CS name2, "*expand_%.50s", name);
1867 if ((ol2 = find_option(name2, oltop, last)))
1868 {
1869 uschar *ss = (Ustrchr(sptr, '$') != NULL) ? sptr : NULL;
1870
1871 if (data_block)
1872 *(USS(US data_block + ol2->v.offset)) = ss;
1873 else
1874 *(USS ol2->v.value) = ss;
1875
1876 if (ss)
1877 {
1878 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1879 freesptr = FALSE;
1880 break;
1881 }
1882 }
1883
1884 /* Look up a fixed uid, and also make use of the corresponding gid
1885 if a passwd entry is returned and the gid has not been set. */
1886
1887 case opt_uid:
1888 if (!route_finduser(sptr, &pw, &uid))
1889 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found", sptr);
1890 if (data_block)
1891 *(uid_t *)(US data_block + ol->v.offset) = uid;
1892 else
1893 *(uid_t *)ol->v.value = uid;
1894
1895 /* Set the flag indicating a fixed value is set */
1896
1897 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1898
1899 /* Handle matching gid if we have a passwd entry: done by finding the
1900 same name with terminating "user" changed to "group"; if not found,
1901 ignore. Also ignore if the value is already set. */
1902
1903 if (pw == NULL) break;
1904 Ustrcpy(name+Ustrlen(name)-4, US"group");
1905 ol2 = find_option(name, oltop, last);
1906 if (ol2 && ((ol2->type & opt_mask) == opt_gid ||
1907 (ol2->type & opt_mask) == opt_expand_gid))
1908 {
1909 BOOL *set_flag = get_set_flag(name, oltop, last, data_block);
1910 if (!*set_flag)
1911 {
1912 if (data_block)
1913 *((gid_t *)(US data_block + ol2->v.offset)) = pw->pw_gid;
1914 else
1915 *((gid_t *)ol2->v.value) = pw->pw_gid;
1916 *set_flag = TRUE;
1917 }
1918 }
1919 break;
1920
1921 /* If it was an expanded gid, see if there is any expansion to be
1922 done by checking for the presence of a $ character. If there is, save it
1923 in the corresponding *expand_user option field. Otherwise, fall through
1924 to treat it as a fixed gid. Ensure mutual exclusivity of the two kinds
1925 of data. */
1926
1927 case opt_expand_gid:
1928 sprintf(CS name2, "*expand_%.50s", name);
1929 if ((ol2 = find_option(name2, oltop, last)))
1930 {
1931 uschar *ss = (Ustrchr(sptr, '$') != NULL) ? sptr : NULL;
1932
1933 if (data_block)
1934 *(USS(US data_block + ol2->v.offset)) = ss;
1935 else
1936 *(USS ol2->v.value) = ss;
1937
1938 if (ss)
1939 {
1940 *(get_set_flag(name, oltop, last, data_block)) = FALSE;
1941 freesptr = FALSE;
1942 break;
1943 }
1944 }
1945
1946 /* Handle freestanding gid */
1947
1948 case opt_gid:
1949 if (!route_findgroup(sptr, &gid))
1950 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found", sptr);
1951 if (data_block)
1952 *((gid_t *)(US data_block + ol->v.offset)) = gid;
1953 else
1954 *((gid_t *)ol->v.value) = gid;
1955 *(get_set_flag(name, oltop, last, data_block)) = TRUE;
1956 break;
1957
1958 /* If it was a uid list, look up each individual entry, and build
1959 a vector of uids, with a count in the first element. Put the vector
1960 in malloc store so we can free the string. (We are reading into
1961 permanent store already.) */
1962
1963 case opt_uidlist:
1964 {
1965 int count = 1;
1966 uid_t *list;
1967 int ptr = 0;
1968 const uschar *p;
1969 const uschar *op = expand_string (sptr);
1970
1971 if (op == NULL)
1972 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
1973 name, expand_string_message);
1974
1975 p = op;
1976 if (*p != 0) count++;
1977 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
1978 list = store_malloc(count*sizeof(uid_t));
1979 list[ptr++] = (uid_t)(count - 1);
1980
1981 if (data_block)
1982 *((uid_t **)(US data_block + ol->v.offset)) = list;
1983 else
1984 *((uid_t **)ol->v.value) = list;
1985
1986 p = op;
1987 while (count-- > 1)
1988 {
1989 int sep = 0;
1990 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
1991 if (!route_finduser(big_buffer, NULL, &uid))
1992 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "user %s was not found",
1993 big_buffer);
1994 list[ptr++] = uid;
1995 }
1996 }
1997 break;
1998
1999 /* If it was a gid list, look up each individual entry, and build
2000 a vector of gids, with a count in the first element. Put the vector
2001 in malloc store so we can free the string. (We are reading into permanent
2002 store already.) */
2003
2004 case opt_gidlist:
2005 {
2006 int count = 1;
2007 gid_t *list;
2008 int ptr = 0;
2009 const uschar *p;
2010 const uschar *op = expand_string (sptr);
2011
2012 if (!op)
2013 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "failed to expand %s: %s",
2014 name, expand_string_message);
2015
2016 p = op;
2017 if (*p != 0) count++;
2018 while (*p != 0) if (*p++ == ':' && *p != 0) count++;
2019 list = store_malloc(count*sizeof(gid_t));
2020 list[ptr++] = (gid_t)(count - 1);
2021
2022 if (data_block)
2023 *((gid_t **)(US data_block + ol->v.offset)) = list;
2024 else
2025 *((gid_t **)ol->v.value) = list;
2026
2027 p = op;
2028 while (count-- > 1)
2029 {
2030 int sep = 0;
2031 (void)string_nextinlist(&p, &sep, big_buffer, BIG_BUFFER_SIZE);
2032 if (!route_findgroup(big_buffer, &gid))
2033 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "group %s was not found",
2034 big_buffer);
2035 list[ptr++] = gid;
2036 }
2037 }
2038 break;
2039 }
2040
2041 /* Release store if the value of the string doesn't need to be kept. */
2042
2043 if (freesptr) reset_point = store_reset(reset_point);
2044 break;
2045
2046 /* Expanded boolean: if no characters follow, or if there are no dollar
2047 characters, this is a fixed-valued boolean, and we fall through. Otherwise,
2048 save the string for later expansion in the alternate place. */
2049
2050 case opt_expand_bool:
2051 if (*s && Ustrchr(s, '$') != 0)
2052 {
2053 sprintf(CS name2, "*expand_%.50s", name);
2054 if ((ol2 = find_option(name2, oltop, last)))
2055 {
2056 reset_point = store_mark();
2057 sptr = read_string(s, name);
2058 if (data_block)
2059 *(USS(US data_block + ol2->v.offset)) = sptr;
2060 else
2061 *(USS ol2->v.value) = sptr;
2062 freesptr = FALSE;
2063 break;
2064 }
2065 }
2066 /* Fall through */
2067
2068 /* Boolean: if no characters follow, the value is boolvalue. Otherwise
2069 look for yes/not/true/false. Some booleans are stored in a single bit in
2070 a single int. There's a special fudge for verify settings; without a suffix
2071 they set both xx_sender and xx_recipient. The table points to the sender
2072 value; search subsequently for the recipient. There's another special case:
2073 opt_bool_set also notes when a boolean has been set. */
2074
2075 case opt_bool:
2076 case opt_bit:
2077 case opt_bool_verify:
2078 case opt_bool_set:
2079 if (*s != 0)
2080 {
2081 s = readconf_readname(name2, 64, s);
2082 if (strcmpic(name2, US"true") == 0 || strcmpic(name2, US"yes") == 0)
2083 boolvalue = TRUE;
2084 else if (strcmpic(name2, US"false") == 0 || strcmpic(name2, US"no") == 0)
2085 boolvalue = FALSE;
2086 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2087 "\"%s\" is not a valid value for the \"%s\" option", name2, name);
2088 if (*s != 0) extra_chars_error(s, string_sprintf("\"%s\" ", name2),
2089 US"for boolean option ", name);
2090 }
2091
2092 /* Handle single-bit type. */
2093
2094 if (type == opt_bit)
2095 {
2096 int bit = 1 << ((ol->type >> 16) & 31);
2097 int * ptr = data_block
2098 ? (int *)(US data_block + ol->v.offset)
2099 : (int *)ol->v.value;
2100 if (boolvalue) *ptr |= bit; else *ptr &= ~bit;
2101 break;
2102 }
2103
2104 /* Handle full BOOL types */
2105
2106 if (data_block)
2107 *((BOOL *)(US data_block + ol->v.offset)) = boolvalue;
2108 else
2109 *((BOOL *)ol->v.value) = boolvalue;
2110
2111 /* Verify fudge */
2112
2113 if (type == opt_bool_verify)
2114 {
2115 sprintf(CS name2, "%.50s_recipient", name + offset);
2116 if ((ol2 = find_option(name2, oltop, last)))
2117 if (data_block)
2118 *((BOOL *)(US data_block + ol2->v.offset)) = boolvalue;
2119 else
2120 *((BOOL *)ol2->v.value) = boolvalue;
2121 }
2122
2123 /* Note that opt_bool_set type is set, if there is somewhere to do so */
2124
2125 else if (type == opt_bool_set)
2126 {
2127 sprintf(CS name2, "*set_%.50s", name + offset);
2128 if ((ol2 = find_option(name2, oltop, last)))
2129 if (data_block)
2130 *((BOOL *)(US data_block + ol2->v.offset)) = TRUE;
2131 else
2132 *((BOOL *)ol2->v.value) = TRUE;
2133 }
2134 break;
2135
2136 /* Octal integer */
2137
2138 case opt_octint:
2139 intbase = 8;
2140 inttype = US"octal ";
2141
2142 /* Integer: a simple(ish) case; allow octal and hex formats, and
2143 suffixes K, M, G, and T. The different types affect output, not input. */
2144
2145 case opt_mkint:
2146 case opt_int:
2147 {
2148 uschar *endptr;
2149 long int lvalue;
2150
2151 errno = 0;
2152 lvalue = strtol(CS s, CSS &endptr, intbase);
2153
2154 if (endptr == s)
2155 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2156 inttype, name);
2157
2158 if (errno != ERANGE && *endptr)
2159 {
2160 uschar * mp = US"TtGgMmKk\0"; /* YyZzEePpTtGgMmKk */
2161
2162 if ((mp = Ustrchr(mp, *endptr)))
2163 {
2164 endptr++;
2165 do
2166 {
2167 if (lvalue > INT_MAX/1024 || lvalue < INT_MIN/1024)
2168 {
2169 errno = ERANGE;
2170 break;
2171 }
2172 lvalue *= 1024;
2173 }
2174 while (*(mp += 2));
2175 }
2176 }
2177
2178 if (errno == ERANGE || lvalue > INT_MAX || lvalue < INT_MIN)
2179 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2180 "absolute value of integer \"%s\" is too large (overflow)", s);
2181
2182 while (isspace(*endptr)) endptr++;
2183 if (*endptr)
2184 extra_chars_error(endptr, inttype, US"integer value for ", name);
2185
2186 value = (int)lvalue;
2187 }
2188
2189 if (data_block)
2190 *(int *)(US data_block + ol->v.offset) = value;
2191 else
2192 *(int *)ol->v.value = value;
2193 break;
2194
2195 /* Integer held in K: again, allow formats and suffixes as above. */
2196
2197 case opt_Kint:
2198 {
2199 uschar *endptr;
2200 errno = 0;
2201 int_eximarith_t lvalue = strtol(CS s, CSS &endptr, intbase);
2202
2203 if (endptr == s)
2204 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%sinteger expected for %s",
2205 inttype, name);
2206
2207 if (errno != ERANGE && *endptr)
2208 {
2209 uschar * mp = US"ZzEePpTtGgMmKk\0"; /* YyZzEePpTtGgMmKk */
2210
2211 if ((mp = Ustrchr(mp, *endptr)))
2212 {
2213 endptr++;
2214 while (*(mp += 2))
2215 {
2216 if (lvalue > EXIM_ARITH_MAX/1024 || lvalue < EXIM_ARITH_MIN/1024)
2217 {
2218 errno = ERANGE;
2219 break;
2220 }
2221 lvalue *= 1024;
2222 }
2223 }
2224 else
2225 lvalue = (lvalue + 512)/1024;
2226 }
2227
2228 if (errno == ERANGE) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2229 "absolute value of integer \"%s\" is too large (overflow)", s);
2230
2231 while (isspace(*endptr)) endptr++;
2232 if (*endptr != 0)
2233 extra_chars_error(endptr, inttype, US"integer value for ", name);
2234
2235 if (data_block)
2236 *(int_eximarith_t *)(US data_block + ol->v.offset) = lvalue;
2237 else
2238 *(int_eximarith_t *)ol->v.value = lvalue;
2239 break;
2240 }
2241
2242 /* Fixed-point number: held to 3 decimal places. */
2243
2244 case opt_fixed:
2245 if (sscanf(CS s, "%d%n", &value, &count) != 1)
2246 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2247 "fixed-point number expected for %s", name);
2248
2249 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2250 "integer \"%s\" is too large (overflow)", s);
2251
2252 value *= 1000;
2253
2254 if (value < 0) log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2255 "integer \"%s\" is too large (overflow)", s);
2256
2257 /* We get a coverity error here for using count, as it derived
2258 from the tainted buffer pointed to by s, as parsed by sscanf().
2259 By the definition of sscanf we must be accessing between start
2260 and end of s (assuming it is nul-terminated...) so ignore the error. */
2261 /* coverity[tainted_data] */
2262 if (s[count] == '.')
2263 {
2264 int d = 100;
2265 while (isdigit(s[++count]))
2266 {
2267 value += (s[count] - '0') * d;
2268 d /= 10;
2269 }
2270 }
2271
2272 while (isspace(s[count])) count++;
2273
2274 if (s[count] != 0)
2275 extra_chars_error(s+count, US"fixed-point value for ", name, US"");
2276
2277 if (data_block)
2278 *((int *)(US data_block + ol->v.offset)) = value;
2279 else
2280 *((int *)ol->v.value) = value;
2281 break;
2282
2283 /* There's a special routine to read time values. */
2284
2285 case opt_time:
2286 value = readconf_readtime(s, 0, FALSE);
2287 if (value < 0)
2288 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2289 name);
2290 if (data_block)
2291 *((int *)(US data_block + ol->v.offset)) = value;
2292 else
2293 *((int *)ol->v.value) = value;
2294 break;
2295
2296 /* A time list is a list of colon-separated times, with the first
2297 element holding the size of the list and the second the number of
2298 entries used. */
2299
2300 case opt_timelist:
2301 {
2302 int count = 0;
2303 int * list = data_block
2304 ? (int *)(US data_block + ol->v.offset)
2305 : (int *)ol->v.value;
2306
2307 if (*s != 0) for (count = 1; count <= list[0] - 2; count++)
2308 {
2309 int terminator = 0;
2310 uschar *snext = Ustrchr(s, ':');
2311 if (snext != NULL)
2312 {
2313 uschar *ss = snext;
2314 while (ss > s && isspace(ss[-1])) ss--;
2315 terminator = *ss;
2316 }
2317 value = readconf_readtime(s, terminator, FALSE);
2318 if (value < 0)
2319 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "invalid time value for %s",
2320 name);
2321 if (count > 1 && value <= list[count])
2322 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
2323 "time value out of order for %s", name);
2324 list[count+1] = value;
2325 if (snext == NULL) break;
2326 s = snext + 1;
2327 while (isspace(*s)) s++;
2328 }
2329
2330 if (count > list[0] - 2)
2331 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many time values for %s",
2332 name);
2333 if (count > 0 && list[2] == 0) count = 0;
2334 list[1] = count;
2335 break;
2336 }
2337
2338 case opt_func:
2339 {
2340 void (*fn)() = ol->v.fn;
2341 fn(name, s, 0);
2342 break;
2343 }
2344 }
2345
2346 return TRUE;
2347 }
2348
2349
2350
2351 /*************************************************
2352 * Print a time value *
2353 *************************************************/
2354
2355 /*
2356 Argument: a time value in seconds
2357 Returns: pointer to a fixed buffer containing the time as a string,
2358 in readconf_readtime() format
2359 */
2360
2361 uschar *
2362 readconf_printtime(int t)
2363 {
2364 int s, m, h, d, w;
2365 uschar *p = time_buffer;
2366
2367 if (t < 0)
2368 {
2369 *p++ = '-';
2370 t = -t;
2371 }
2372
2373 s = t % 60;
2374 t /= 60;
2375 m = t % 60;
2376 t /= 60;
2377 h = t % 24;
2378 t /= 24;
2379 d = t % 7;
2380 w = t/7;
2381
2382 if (w > 0) p += sprintf(CS p, "%dw", w);
2383 if (d > 0) p += sprintf(CS p, "%dd", d);
2384 if (h > 0) p += sprintf(CS p, "%dh", h);
2385 if (m > 0) p += sprintf(CS p, "%dm", m);
2386 if (s > 0 || p == time_buffer) sprintf(CS p, "%ds", s);
2387
2388 return time_buffer;
2389 }
2390
2391
2392
2393 /*************************************************
2394 * Print an individual option value *
2395 *************************************************/
2396
2397 /* This is used by the -bP option, so prints to the standard output.
2398 The entire options list is passed in as an argument, because some options come
2399 in pairs - typically uid/gid settings, which can either be explicit numerical
2400 values, or strings to be expanded later. If the numerical value is unset,
2401 search for "*expand_<name>" to see if there is a string equivalent.
2402
2403 Arguments:
2404 ol option entry, or NULL for an unknown option
2405 name option name
2406 options_block NULL for main configuration options; otherwise points to
2407 a driver block; if the option doesn't have opt_public
2408 set, then options_block->options_block is where the item
2409 resides.
2410 oltop points to the option list in which ol exists
2411 last one more than the offset of the last entry in optop
2412 no_labels do not show "foo = " at the start.
2413
2414 Returns: boolean success
2415 */
2416
2417 static BOOL
2418 print_ol(optionlist *ol, uschar *name, void *options_block,
2419 optionlist *oltop, int last, BOOL no_labels)
2420 {
2421 struct passwd *pw;
2422 struct group *gr;
2423 optionlist *ol2;
2424 void *value;
2425 uid_t *uidlist;
2426 gid_t *gidlist;
2427 uschar *s;
2428 uschar name2[64];
2429
2430 if (!ol)
2431 {
2432 printf("%s is not a known option\n", name);
2433 return FALSE;
2434 }
2435
2436 /* Non-admin callers cannot see options that have been flagged secure by the
2437 "hide" prefix. */
2438
2439 if (!f.admin_user && ol->type & opt_secure)
2440 {
2441 if (no_labels)
2442 printf("%s\n", CCS hidden);
2443 else
2444 printf("%s = %s\n", name, CCS hidden);
2445 return TRUE;
2446 }
2447
2448 /* Else show the value of the option */
2449
2450 value = ol->v.value;
2451 if (options_block)
2452 {
2453 if (!(ol->type & opt_public))
2454 options_block = (void *)(((driver_instance *)options_block)->options_block);
2455 value = (void *)(US options_block + (long int)value);
2456 }
2457
2458 switch(ol->type & opt_mask)
2459 {
2460 case opt_stringptr:
2461 case opt_rewrite: /* Show the text value */
2462 s = *(USS value);
2463 if (!no_labels) printf("%s = ", name);
2464 printf("%s\n", s ? string_printing2(s, FALSE) : US"");
2465 break;
2466
2467 case opt_int:
2468 if (!no_labels) printf("%s = ", name);
2469 printf("%d\n", *((int *)value));
2470 break;
2471
2472 case opt_mkint:
2473 {
2474 int x = *((int *)value);
2475 if (x != 0 && (x & 1023) == 0)
2476 {
2477 int c = 'K';
2478 x >>= 10;
2479 if ((x & 1023) == 0)
2480 {
2481 c = 'M';
2482 x >>= 10;
2483 }
2484 if (!no_labels) printf("%s = ", name);
2485 printf("%d%c\n", x, c);
2486 }
2487 else
2488 {
2489 if (!no_labels) printf("%s = ", name);
2490 printf("%d\n", x);
2491 }
2492 }
2493 break;
2494
2495 case opt_Kint:
2496 {
2497 int_eximarith_t x = *((int_eximarith_t *)value);
2498 if (!no_labels) printf("%s = ", name);
2499 if (x == 0) printf("0\n");
2500 else if ((x & ((1<<30)-1)) == 0) printf(PR_EXIM_ARITH "T\n", x >> 30);
2501 else if ((x & ((1<<20)-1)) == 0) printf(PR_EXIM_ARITH "G\n", x >> 20);
2502 else if ((x & ((1<<10)-1)) == 0) printf(PR_EXIM_ARITH "M\n", x >> 10);
2503 else printf(PR_EXIM_ARITH "K\n", x);
2504 }
2505 break;
2506
2507 case opt_octint:
2508 if (!no_labels) printf("%s = ", name);
2509 printf("%#o\n", *((int *)value));
2510 break;
2511
2512 /* Can be negative only when "unset", in which case integer */
2513
2514 case opt_fixed:
2515 {
2516 int x = *((int *)value);
2517 int f = x % 1000;
2518 int d = 100;
2519 if (x < 0) printf("%s =\n", name); else
2520 {
2521 if (!no_labels) printf("%s = ", name);
2522 printf("%d.", x/1000);
2523 do
2524 {
2525 printf("%d", f/d);
2526 f %= d;
2527 d /= 10;
2528 }
2529 while (f != 0);
2530 printf("\n");
2531 }
2532 }
2533 break;
2534
2535 /* If the numerical value is unset, try for the string value */
2536
2537 case opt_expand_uid:
2538 if (! *get_set_flag(name, oltop, last, options_block))
2539 {
2540 sprintf(CS name2, "*expand_%.50s", name);
2541 if ((ol2 = find_option(name2, oltop, last)))
2542 {
2543 if (options_block)
2544 s = *USS (US options_block + ol2->v.offset);
2545 else
2546 s = *USS ol2->v.value;
2547 if (!no_labels) printf("%s = ", name);
2548 printf("%s\n", s ? string_printing(s) : US"");
2549 break;
2550 }
2551 }
2552
2553 /* Else fall through */
2554
2555 case opt_uid:
2556 if (!no_labels) printf("%s = ", name);
2557 if (! *get_set_flag(name, oltop, last, options_block))
2558 printf("\n");
2559 else
2560 if ((pw = getpwuid(*((uid_t *)value))))
2561 printf("%s\n", pw->pw_name);
2562 else
2563 printf("%ld\n", (long int)(*((uid_t *)value)));
2564 break;
2565
2566 /* If the numerical value is unset, try for the string value */
2567
2568 case opt_expand_gid:
2569 if (! *get_set_flag(name, oltop, last, options_block))
2570 {
2571 sprintf(CS name2, "*expand_%.50s", name);
2572 if ( (ol2 = find_option(name2, oltop, last))
2573 && (ol2->type & opt_mask) == opt_stringptr)
2574 {
2575 if (options_block)
2576 s = *USS (US options_block + ol2->v.offset);
2577 else
2578 s = *USS ol2->v.value;
2579 if (!no_labels) printf("%s = ", name);
2580 printf("%s\n", s ? string_printing(s) : US"");
2581 break;
2582 }
2583 }
2584
2585 /* Else fall through */
2586
2587 case opt_gid:
2588 if (!no_labels) printf("%s = ", name);
2589 if (! *get_set_flag(name, oltop, last, options_block))
2590 printf("\n");
2591 else
2592 if ((gr = getgrgid(*((int *)value))))
2593 printf("%s\n", gr->gr_name);
2594 else
2595 printf("%ld\n", (long int)(*((int *)value)));
2596 break;
2597
2598 case opt_uidlist:
2599 uidlist = *((uid_t **)value);
2600 if (!no_labels) printf("%s =", name);
2601 if (uidlist)
2602 {
2603 uschar sep = no_labels ? '\0' : ' ';
2604 for (int i = 1; i <= (int)(uidlist[0]); i++)
2605 {
2606 uschar *name = NULL;
2607 if ((pw = getpwuid(uidlist[i]))) name = US pw->pw_name;
2608 if (sep != '\0') printf("%c", sep);
2609 if (name) printf("%s", name);
2610 else printf("%ld", (long int)(uidlist[i]));
2611 sep = ':';
2612 }
2613 }
2614 printf("\n");
2615 break;
2616
2617 case opt_gidlist:
2618 gidlist = *((gid_t **)value);
2619 if (!no_labels) printf("%s =", name);
2620 if (gidlist)
2621 {
2622 uschar sep = no_labels ? '\0' : ' ';
2623 for (int i = 1; i <= (int)(gidlist[0]); i++)
2624 {
2625 uschar *name = NULL;
2626 if ((gr = getgrgid(gidlist[i]))) name = US gr->gr_name;
2627 if (sep != '\0') printf("%c", sep);
2628 if (name) printf("%s", name);
2629 else printf("%ld", (long int)(gidlist[i]));
2630 sep = ':';
2631 }
2632 }
2633 printf("\n");
2634 break;
2635
2636 case opt_time:
2637 if (!no_labels) printf("%s = ", name);
2638 printf("%s\n", readconf_printtime(*((int *)value)));
2639 break;
2640
2641 case opt_timelist:
2642 {
2643 int *list = (int *)value;
2644 if (!no_labels) printf("%s = ", name);
2645 for (int i = 0; i < list[1]; i++)
2646 printf("%s%s", i == 0 ? "" : ":", readconf_printtime(list[i+2]));
2647 printf("\n");
2648 }
2649 break;
2650
2651 case opt_bit:
2652 printf("%s%s\n", ((*((int *)value)) & (1 << ((ol->type >> 16) & 31)))?
2653 "" : "no_", name);
2654 break;
2655
2656 case opt_expand_bool:
2657 sprintf(CS name2, "*expand_%.50s", name);
2658 if ((ol2 = find_option(name2, oltop, last)) && ol2->v.value)
2659 {
2660 if (options_block)
2661 s = *USS (US options_block + ol2->v.offset);
2662 else
2663 s = *USS ol2->v.value;
2664 if (s)
2665 {
2666 if (!no_labels) printf("%s = ", name);
2667 printf("%s\n", string_printing(s));
2668 break;
2669 }
2670 /* s == NULL => string not set; fall through */
2671 }
2672
2673 /* Fall through */
2674
2675 case opt_bool:
2676 case opt_bool_verify:
2677 case opt_bool_set:
2678 printf("%s%s\n", (*((BOOL *)value))? "" : "no_", name);
2679 break;
2680
2681 case opt_func:
2682 ol->v.fn(name, NULL, no_labels ? opt_fn_print : opt_fn_print|opt_fn_print_label);
2683 break;
2684 }
2685 return TRUE;
2686 }
2687
2688
2689
2690 /*************************************************
2691 * Print value from main configuration *
2692 *************************************************/
2693
2694 /* This function, called as a result of encountering the -bP option,
2695 causes the value of any main configuration variable to be output if the
2696 second argument is NULL. There are some special values:
2697
2698 all print all main configuration options
2699 config_file print the name of the configuration file
2700 (configure_file will still work, for backward
2701 compatibility)
2702 routers print the routers' configurations
2703 transports print the transports' configuration
2704 authenticators print the authenticators' configuration
2705 macros print the macros' configuration
2706 router_list print a list of router names
2707 transport_list print a list of transport names
2708 authenticator_list print a list of authentication mechanism names
2709 macro_list print a list of macro names
2710 +name print a named list item
2711 local_scan print the local_scan options
2712 config print the configuration as it is parsed
2713 environment print the used execution environment
2714
2715 If the second argument is not NULL, it must be one of "router", "transport",
2716 "authenticator" or "macro" in which case the first argument identifies the
2717 driver whose options are to be printed.
2718
2719 Arguments:
2720 name option name if type == NULL; else driver name
2721 type NULL or driver type name, as described above
2722 no_labels avoid the "foo = " at the start of an item
2723
2724 Returns: Boolean success
2725 */
2726
2727 BOOL
2728 readconf_print(uschar *name, uschar *type, BOOL no_labels)
2729 {
2730 BOOL names_only = FALSE;
2731 optionlist *ol2 = NULL;
2732 driver_instance *d = NULL;
2733 int size = 0;
2734
2735 if (!type)
2736 {
2737 if (*name == '+')
2738 {
2739 tree_node *t;
2740 BOOL found = FALSE;
2741 static uschar *types[] = { US"address", US"domain", US"host",
2742 US"localpart" };
2743 static tree_node **anchors[] = { &addresslist_anchor, &domainlist_anchor,
2744 &hostlist_anchor, &localpartlist_anchor };
2745
2746 for (int i = 0; i < 4; i++)
2747 if ((t = tree_search(*(anchors[i]), name+1)))
2748 {
2749 namedlist_block * nb = t->data.ptr;
2750 const uschar * s = nb->hide ? hidden : nb->string;
2751 found = TRUE;
2752 if (no_labels)
2753 printf("%s\n", CCS s);
2754 else
2755 printf("%slist %s = %s\n", types[i], name+1, CCS s);
2756 }
2757
2758 if (!found)
2759 printf("no address, domain, host, or local part list called \"%s\" "
2760 "exists\n", name+1);
2761
2762 return found;
2763 }
2764
2765 if ( Ustrcmp(name, "configure_file") == 0
2766 || Ustrcmp(name, "config_file") == 0)
2767 {
2768 printf("%s\n", CS config_main_filename);
2769 return TRUE;
2770 }
2771
2772 if (Ustrcmp(name, "all") == 0)
2773 {
2774 for (optionlist * ol = optionlist_config;
2775 ol < optionlist_config + nelem(optionlist_config); ol++)
2776 if (!(ol->type & opt_hidden))
2777 (void) print_ol(ol, US ol->name, NULL,
2778 optionlist_config, nelem(optionlist_config),
2779 no_labels);
2780 return TRUE;
2781 }
2782
2783 if (Ustrcmp(name, "local_scan") == 0)
2784 {
2785 #ifndef LOCAL_SCAN_HAS_OPTIONS
2786 printf("local_scan() options are not supported\n");
2787 return FALSE;
2788 #else
2789 for (optionlist * ol = local_scan_options;
2790 ol < local_scan_options + local_scan_options_count; ol++)
2791 (void) print_ol(ol, US ol->name, NULL, local_scan_options,
2792 local_scan_options_count, no_labels);
2793 return TRUE;
2794 #endif
2795 }
2796
2797 if (Ustrcmp(name, "config") == 0)
2798 {
2799 print_config(f.admin_user, no_labels);
2800 return TRUE;
2801 }
2802
2803 if (Ustrcmp(name, "routers") == 0)
2804 {
2805 type = US"router";
2806 name = NULL;
2807 }
2808 else if (Ustrcmp(name, "transports") == 0)
2809 {
2810 type = US"transport";
2811 name = NULL;
2812 }
2813 else if (Ustrcmp(name, "authenticators") == 0)
2814 {
2815 type = US"authenticator";
2816 name = NULL;
2817 }
2818 else if (Ustrcmp(name, "macros") == 0)
2819 {
2820 type = US"macro";
2821 name = NULL;
2822 }
2823 else if (Ustrcmp(name, "router_list") == 0)
2824 {
2825 type = US"router";
2826 name = NULL;
2827 names_only = TRUE;
2828 }
2829 else if (Ustrcmp(name, "transport_list") == 0)
2830 {
2831 type = US"transport";
2832 name = NULL;
2833 names_only = TRUE;
2834 }
2835 else if (Ustrcmp(name, "authenticator_list") == 0)
2836 {
2837 type = US"authenticator";
2838 name = NULL;
2839 names_only = TRUE;
2840 }
2841 else if (Ustrcmp(name, "macro_list") == 0)
2842 {
2843 type = US"macro";
2844 name = NULL;
2845 names_only = TRUE;
2846 }
2847 else if (Ustrcmp(name, "environment") == 0)
2848 {
2849 if (environ)
2850 {
2851 uschar ** p;
2852 for (p = USS environ; *p; p++) ;
2853 qsort(environ, p - USS environ, sizeof(*p), string_compare_by_pointer);
2854
2855 for (p = USS environ; *p; p++)
2856 {
2857 uschar * q;
2858 if (no_labels && (q = Ustrchr(*p, '='))) *q = '\0';
2859 puts(CS *p);
2860 }
2861 }
2862 return TRUE;
2863 }
2864
2865 else
2866 return print_ol(find_option(name,
2867 optionlist_config, nelem(optionlist_config)),
2868 name, NULL, optionlist_config, nelem(optionlist_config), no_labels);
2869 }
2870
2871 /* Handle the options for a router or transport. Skip options that are flagged
2872 as hidden. Some of these are options with names starting with '*', used for
2873 internal alternative representations of other options (which the printing
2874 function will sort out). Others are synonyms kept for backward compatibility.
2875 */
2876
2877 if (Ustrcmp(type, "router") == 0)
2878 {
2879 d = (driver_instance *)routers;
2880 ol2 = optionlist_routers;
2881 size = optionlist_routers_size;
2882 }
2883 else if (Ustrcmp(type, "transport") == 0)
2884 {
2885 d = (driver_instance *)transports;
2886 ol2 = optionlist_transports;
2887 size = optionlist_transports_size;
2888 }
2889 else if (Ustrcmp(type, "authenticator") == 0)
2890 {
2891 d = (driver_instance *)auths;
2892 ol2 = optionlist_auths;
2893 size = optionlist_auths_size;
2894 }
2895
2896 else if (Ustrcmp(type, "macro") == 0)
2897 {
2898 /* People store passwords in macros and they were previously not available
2899 for printing. So we have an admin_users restriction. */
2900 if (!f.admin_user)
2901 {
2902 fprintf(stderr, "exim: permission denied\n");
2903 return FALSE;
2904 }
2905 for (macro_item * m = macros; m; m = m->next)
2906 if (!name || Ustrcmp(name, m->name) == 0)
2907 {
2908 if (names_only)
2909 printf("%s\n", CS m->name);
2910 else if (no_labels)
2911 printf("%s\n", CS m->replacement);
2912 else
2913 printf("%s=%s\n", CS m->name, CS m->replacement);
2914 if (name)
2915 return TRUE;
2916 }
2917 if (!name) return TRUE;
2918
2919 printf("%s %s not found\n", type, name);
2920 return FALSE;
2921 }
2922
2923 if (names_only)
2924 {
2925 for (; d; d = d->next) printf("%s\n", CS d->name);
2926 return TRUE;
2927 }
2928
2929 /* Either search for a given driver, or print all of them */
2930
2931 for (; d; d = d->next)
2932 {
2933 BOOL rc = FALSE;
2934 if (!name)
2935 printf("\n%s %s:\n", d->name, type);
2936 else if (Ustrcmp(d->name, name) != 0) continue;
2937
2938 for (optionlist * ol = ol2; ol < ol2 + size; ol++)
2939 if (!(ol->type & opt_hidden))
2940 rc |= print_ol(ol, US ol->name, d, ol2, size, no_labels);
2941
2942 for (optionlist * ol = d->info->options;
2943 ol < d->info->options + *(d->info->options_count); ol++)
2944 if (!(ol->type & opt_hidden))
2945 rc |= print_ol(ol, US ol->name, d, d->info->options,
2946 *d->info->options_count, no_labels);
2947
2948 if (name) return rc;
2949 }
2950 if (!name) return TRUE;
2951
2952 printf("%s %s not found\n", type, name);
2953 return FALSE;
2954 }
2955
2956
2957
2958 /*************************************************
2959 * Read a named list item *
2960 *************************************************/
2961
2962 /* This function reads a name and a list (i.e. string). The name is used to
2963 save the list in a tree, sorted by its name. Each entry also has a number,
2964 which can be used for caching tests, but if the string contains any expansion
2965 items other than $key, the number is set negative to inhibit caching. This
2966 mechanism is used for domain, host, and address lists that are referenced by
2967 the "+name" syntax.
2968
2969 Arguments:
2970 anchorp points to the tree anchor
2971 numberp points to the current number for this tree
2972 max the maximum number permitted
2973 s the text of the option line, starting immediately after the name
2974 of the list type
2975 tname the name of the list type, for messages
2976 hide do not output value on "-bP"
2977
2978 Returns: nothing
2979 */
2980
2981 static void
2982 read_named_list(tree_node **anchorp, int *numberp, int max, uschar *s,
2983 uschar *tname, BOOL hide)
2984 {
2985 BOOL forcecache = FALSE;
2986 uschar *ss;
2987 tree_node *t;
2988 namedlist_block * nb = store_get(sizeof(namedlist_block), FALSE);
2989
2990 if (Ustrncmp(s, "_cache", 6) == 0)
2991 {
2992 forcecache = TRUE;
2993 s += 6;
2994 }
2995
2996 if (!isspace(*s))
2997 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "unrecognized configuration line");
2998
2999 if (*numberp >= max)
3000 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "too many named %ss (max is %d)\n",
3001 tname, max);
3002
3003 Uskip_whitespace(&s);
3004 ss = s;
3005 while (isalnum(*s) || *s == '_') s++;
3006 t = store_get(sizeof(tree_node) + s-ss, is_tainted(ss));
3007 Ustrncpy(t->name, ss, s-ss);
3008 t->name[s-ss] = 0;
3009 Uskip_whitespace(&s);
3010
3011 if (!tree_insertnode(anchorp, t))
3012 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3013 "duplicate name \"%s\" for a named %s", t->name, tname);
3014
3015 t->data.ptr = nb;
3016 nb->number = *numberp;
3017 *numberp += 1;
3018 nb->hide = hide;
3019
3020 if (*s++ != '=') log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3021 "missing '=' after \"%s\"", t->name);
3022 Uskip_whitespace(&s);
3023 nb->string = read_string(s, t->name);
3024 nb->cache_data = NULL;
3025
3026 /* Check the string for any expansions; if any are found, mark this list
3027 uncacheable unless the user has explicited forced caching. */
3028
3029 if (!forcecache && Ustrchr(nb->string, '$') != NULL) nb->number = -1;
3030 }
3031
3032
3033
3034
3035 /*************************************************
3036 * Unpick data for a rate limit *
3037 *************************************************/
3038
3039 /* This function is called to unpick smtp_ratelimit_{mail,rcpt} into four
3040 separate values.
3041
3042 Arguments:
3043 s string, in the form t,b,f,l
3044 where t is the threshold (integer)
3045 b is the initial delay (time)
3046 f is the multiplicative factor (fixed point)
3047 k is the maximum time (time)
3048 threshold where to store threshold
3049 base where to store base in milliseconds
3050 factor where to store factor in milliseconds
3051 limit where to store limit
3052
3053 Returns: nothing (panics on error)
3054 */
3055
3056 static void
3057 unpick_ratelimit(uschar *s, int *threshold, int *base, double *factor,
3058 int *limit)
3059 {
3060 uschar bstring[16], lstring[16];
3061
3062 if (sscanf(CS s, "%d, %15[0123456789smhdw.], %lf, %15s", threshold, bstring,
3063 factor, lstring) == 4)
3064 {
3065 *base = readconf_readtime(bstring, 0, TRUE);
3066 *limit = readconf_readtime(lstring, 0, TRUE);
3067 if (*base >= 0 && *limit >= 0) return;
3068 }
3069 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "malformed ratelimit data: %s", s);
3070 }
3071
3072
3073
3074
3075 /*************************************************
3076 * Read main configuration options *
3077 *************************************************/
3078
3079 /* This function is the first to be called for configuration reading. It
3080 opens the configuration file and reads general configuration settings until
3081 it reaches the end of the configuration section. The file is then left open so
3082 that the remaining configuration data can subsequently be read if needed for
3083 this run of Exim.
3084
3085 The configuration file must be owned either by root or exim, and be writeable
3086 only by root or uid/gid exim. The values for Exim's uid and gid can be changed
3087 in the config file, so the test is done on the compiled in values. A slight
3088 anomaly, to be carefully documented.
3089
3090 The name of the configuration file is taken from a list that is included in the
3091 binary of Exim. It can be altered from the command line, but if that is done,
3092 root privilege is immediately withdrawn unless the caller is root or exim.
3093 The first file on the list that exists is used.
3094
3095 For use on multiple systems that share file systems, first look for a
3096 configuration file whose name has the current node name on the end. If that is
3097 not found, try the generic name. For really contorted configurations, that run
3098 multiple Exims with different uid settings, first try adding the effective uid
3099 before the node name. These complications are going to waste resources on most
3100 systems. Therefore they are available only when requested by compile-time
3101 options. */
3102
3103 void
3104 readconf_main(BOOL nowarn)
3105 {
3106 int sep = 0;
3107 struct stat statbuf;
3108 uschar *s, *filename;
3109 const uschar *list = config_main_filelist;
3110
3111 /* Loop through the possible file names */
3112
3113 while((filename = string_nextinlist(&list, &sep, big_buffer, big_buffer_size)))
3114 {
3115
3116 /* Cut out all the fancy processing unless specifically wanted */
3117
3118 #if defined(CONFIGURE_FILE_USE_NODE) || defined(CONFIGURE_FILE_USE_EUID)
3119 uschar *suffix = filename + Ustrlen(filename);
3120
3121 /* Try for the node-specific file if a node name exists */
3122
3123 #ifdef CONFIGURE_FILE_USE_NODE
3124 struct utsname uts;
3125 if (uname(&uts) >= 0)
3126 {
3127 #ifdef CONFIGURE_FILE_USE_EUID
3128 sprintf(CS suffix, ".%ld.%.256s", (long int)original_euid, uts.nodename);
3129 config_file = Ufopen(filename, "rb");
3130 if (config_file == NULL)
3131 #endif /* CONFIGURE_FILE_USE_EUID */
3132 {
3133 sprintf(CS suffix, ".%.256s", uts.nodename);
3134 config_file = Ufopen(filename, "rb");
3135 }
3136 }
3137 #endif /* CONFIGURE_FILE_USE_NODE */
3138
3139 /* Otherwise, try the generic name, possibly with the euid added */
3140
3141 #ifdef CONFIGURE_FILE_USE_EUID
3142 if (config_file == NULL)
3143 {
3144 sprintf(CS suffix, ".%ld", (long int)original_euid);
3145 config_file = Ufopen(filename, "rb");
3146 }
3147 #endif /* CONFIGURE_FILE_USE_EUID */
3148
3149 /* Finally, try the unadorned name */
3150
3151 if (config_file == NULL)
3152 {
3153 *suffix = 0;
3154 config_file = Ufopen(filename, "rb");
3155 }
3156 #else /* if neither defined */
3157
3158 /* This is the common case when the fancy processing is not included. */
3159
3160 config_file = Ufopen(filename, "rb");
3161 #endif
3162
3163 /* If the file does not exist, continue to try any others. For any other
3164 error, break out (and die). */
3165
3166 if (config_file != NULL || errno != ENOENT) break;
3167 }
3168
3169 /* On success, save the name for verification; config_filename is used when
3170 logging configuration errors (it changes for .included files) whereas
3171 config_main_filename is the name shown by -bP. Failure to open a configuration
3172 file is a serious disaster. */
3173
3174 if (config_file)
3175 {
3176 uschar *last_slash = Ustrrchr(filename, '/');
3177 config_filename = config_main_filename = string_copy(filename);
3178
3179 /* The config_main_directory we need for the $config_dir expansion.
3180 config_main_filename we need for $config_file expansion.
3181 And config_dir is the directory of the current configuration, used for
3182 relative .includes. We do need to know it's name, as we change our working
3183 directory later. */
3184
3185 if (filename[0] == '/')
3186 config_main_directory = last_slash == filename ? US"/" : string_copyn(filename, last_slash - filename);
3187 else
3188 {
3189 /* relative configuration file name: working dir + / + basename(filename) */
3190
3191 uschar buf[PATH_MAX];
3192 gstring * g;
3193
3194 if (os_getcwd(buf, PATH_MAX) == NULL)
3195 {
3196 perror("exim: getcwd");
3197 exit(EXIT_FAILURE);
3198 }
3199 g = string_cat(NULL, buf);
3200
3201 /* If the dir does not end with a "/", append one */
3202 if (g->s[g->ptr-1] != '/')
3203 g = string_catn(g, US"/", 1);
3204
3205 /* If the config file contains a "/", extract the directory part */
3206 if (last_slash)
3207 g = string_catn(g, filename, last_slash - filename);
3208
3209 config_main_directory = string_from_gstring(g);
3210 }
3211 config_directory = config_main_directory;
3212 }
3213 else
3214 {
3215 if (filename == NULL)
3216 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "non-existent configuration file(s): "
3217 "%s", config_main_filelist);
3218 else
3219 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "%s", string_open_failed(errno,
3220 "configuration file %s", filename));
3221 }
3222
3223 /* Now, once we found and opened our configuration file, we change the directory
3224 to a safe place. Later we change to $spool_directory. */
3225
3226 if (Uchdir("/") < 0)
3227 {
3228 perror("exim: chdir `/': ");
3229 exit(EXIT_FAILURE);
3230 }
3231
3232 /* Check the status of the file we have opened, if we have retained root
3233 privileges and the file isn't /dev/null (which *should* be 0666). */
3234
3235 if (f.trusted_config && Ustrcmp(filename, US"/dev/null"))
3236 {
3237 if (fstat(fileno(config_file), &statbuf) != 0)
3238 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to stat configuration file %s",
3239 big_buffer);
3240
3241 if ((statbuf.st_uid != root_uid /* owner not root */
3242 #ifdef CONFIGURE_OWNER
3243 && statbuf.st_uid != config_uid /* owner not the special one */
3244 #endif
3245 ) || /* or */
3246 (statbuf.st_gid != root_gid /* group not root & */
3247 #ifdef CONFIGURE_GROUP
3248 && statbuf.st_gid != config_gid /* group not the special one */
3249 #endif
3250 && (statbuf.st_mode & 020) != 0) || /* group writeable */
3251 /* or */
3252 ((statbuf.st_mode & 2) != 0)) /* world writeable */
3253
3254 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Exim configuration file %s has the "
3255 "wrong owner, group, or mode", big_buffer);
3256
3257 /* Do a dummy store-allocation of a size related to the (toplevel) file size.
3258 This assumes we will need this much storage to handle all the allocations
3259 during startup; it won't help when .include is being used. When it does, it
3260 will cut down on the number of store blocks (and malloc calls, and sbrk
3261 syscalls). It also assume we're on the relevant pool. */
3262
3263 if (statbuf.st_size > 8192)
3264 {
3265 rmark r = store_mark();
3266 void * dummy = store_get((int)statbuf.st_size, FALSE);
3267 store_reset(r);
3268 }
3269 }
3270
3271 /* Process the main configuration settings. They all begin with a lower case
3272 letter. If we see something starting with an upper case letter, it is taken as
3273 a macro definition. */
3274
3275 while ((s = get_config_line()))
3276 {
3277 BOOL hide;
3278 uschar * t;
3279
3280 if (config_lineno == 1 && Ustrstr(s, "\xef\xbb\xbf") == s)
3281 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3282 "found unexpected BOM (Byte Order Mark)");
3283
3284 if (isupper(*s))
3285 {
3286 if (!macro_read_assignment(s)) exim_exit(EXIT_FAILURE);
3287 continue;
3288 }
3289
3290 t = (hide = Ustrncmp(s, "hide", 4) == 0 && isspace(s[4])) ? s + 5 : s;
3291
3292 if (Ustrncmp(t, "domainlist", 10) == 0)
3293 read_named_list(&domainlist_anchor, &domainlist_count,
3294 MAX_NAMED_LIST, t+10, US"domain list", hide);
3295
3296 else if (Ustrncmp(t, "hostlist", 8) == 0)
3297 read_named_list(&hostlist_anchor, &hostlist_count,
3298 MAX_NAMED_LIST, t+8, US"host list", hide);
3299
3300 else if (Ustrncmp(t, US"addresslist", 11) == 0)
3301 read_named_list(&addresslist_anchor, &addresslist_count,
3302 MAX_NAMED_LIST, t+11, US"address list", hide);
3303
3304 else if (Ustrncmp(t, US"localpartlist", 13) == 0)
3305 read_named_list(&localpartlist_anchor, &localpartlist_count,
3306 MAX_NAMED_LIST, t+13, US"local part list", hide);
3307
3308 else
3309 (void) readconf_handle_option(s, optionlist_config, optionlist_config_size,
3310 NULL, US"main option \"%s\" unknown");
3311 }
3312
3313
3314 /* If local_sender_retain is set, local_from_check must be unset. */
3315
3316 if (local_sender_retain && local_from_check)
3317 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "both local_from_check and "
3318 "local_sender_retain are set; this combination is not allowed");
3319
3320 /* If the timezone string is empty, set it to NULL, implying no TZ variable
3321 wanted. */
3322
3323 if (timezone_string != NULL && *timezone_string == 0) timezone_string = NULL;
3324
3325 /* The max retry interval must not be greater than 24 hours. */
3326
3327 if (retry_interval_max > 24*60*60) retry_interval_max = 24*60*60;
3328
3329 /* remote_max_parallel must be > 0 */
3330
3331 if (remote_max_parallel <= 0) remote_max_parallel = 1;
3332
3333 /* Save the configured setting of freeze_tell, so we can re-instate it at the
3334 start of a new SMTP message. */
3335
3336 freeze_tell_config = freeze_tell;
3337
3338 /* The primary host name may be required for expansion of spool_directory
3339 and log_file_path, so make sure it is set asap. It is obtained from uname(),
3340 but if that yields an unqualified value, make a FQDN by using gethostbyname to
3341 canonize it. Some people like upper case letters in their host names, so we
3342 don't force the case. */
3343
3344 if (primary_hostname == NULL)
3345 {
3346 const uschar *hostname;
3347 struct utsname uts;
3348 if (uname(&uts) < 0)
3349 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "uname() failed to yield host name");
3350 hostname = US uts.nodename;
3351
3352 if (Ustrchr(hostname, '.') == NULL)
3353 {
3354 int af = AF_INET;
3355 struct hostent *hostdata;
3356
3357 #if HAVE_IPV6
3358 if (!disable_ipv6 && (dns_ipv4_lookup == NULL ||
3359 match_isinlist(hostname, CUSS &dns_ipv4_lookup, 0, NULL, NULL,
3360 MCL_DOMAIN, TRUE, NULL) != OK))
3361 af = AF_INET6;
3362 #else
3363 af = AF_INET;
3364 #endif
3365
3366 for (;;)
3367 {
3368 #if HAVE_IPV6
3369 #if HAVE_GETIPNODEBYNAME
3370 int error_num;
3371 hostdata = getipnodebyname(CS hostname, af, 0, &error_num);
3372 #else
3373 hostdata = gethostbyname2(CS hostname, af);
3374 #endif
3375 #else
3376 hostdata = gethostbyname(CS hostname);
3377 #endif
3378
3379 if (hostdata != NULL)
3380 {
3381 hostname = US hostdata->h_name;
3382 break;
3383 }
3384
3385 if (af == AF_INET) break;
3386 af = AF_INET;
3387 }
3388 }
3389
3390 primary_hostname = string_copy(hostname);
3391 }
3392
3393 /* Set up default value for smtp_active_hostname */
3394
3395 smtp_active_hostname = primary_hostname;
3396
3397 /* If spool_directory wasn't set in the build-time configuration, it must have
3398 got set above. Of course, writing to the log may not work if log_file_path is
3399 not set, but it will at least get to syslog or somewhere, with any luck. */
3400
3401 if (!*spool_directory)
3402 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "spool_directory undefined: cannot "
3403 "proceed");
3404
3405 /* Expand the spool directory name; it may, for example, contain the primary
3406 host name. Same comment about failure. */
3407
3408 if (!(s = expand_string(spool_directory)))
3409 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand spool_directory "
3410 "\"%s\": %s", spool_directory, expand_string_message);
3411 spool_directory = s;
3412
3413 /* Expand log_file_path, which must contain "%s" in any component that isn't
3414 the null string or "syslog". It is also allowed to contain one instance of %D
3415 or %M. However, it must NOT contain % followed by anything else. */
3416
3417 if (*log_file_path)
3418 {
3419 const uschar *ss, *sss;
3420 int sep = ':'; /* Fixed for log file path */
3421 if (!(s = expand_string(log_file_path)))
3422 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand log_file_path "
3423 "\"%s\": %s", log_file_path, expand_string_message);
3424
3425 ss = s;
3426 while ((sss = string_nextinlist(&ss, &sep, big_buffer, big_buffer_size)))
3427 {
3428 uschar *t;
3429 if (sss[0] == 0 || Ustrcmp(sss, "syslog") == 0) continue;
3430 if (!(t = Ustrstr(sss, "%s")))
3431 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" does not "
3432 "contain \"%%s\"", sss);
3433 *t = 'X';
3434 if ((t = Ustrchr(sss, '%')))
3435 if ((t[1] != 'D' && t[1] != 'M') || Ustrchr(t+2, '%') != NULL)
3436 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "log_file_path \"%s\" contains "
3437 "unexpected \"%%\" character", s);
3438 }
3439
3440 log_file_path = s;
3441 }
3442
3443 /* Interpret syslog_facility into an integer argument for 'ident' param to
3444 openlog(). Default is LOG_MAIL set in globals.c. Allow the user to omit the
3445 leading "log_". */
3446
3447 if (syslog_facility_str)
3448 {
3449 int i;
3450 uschar *s = syslog_facility_str;
3451
3452 if ((Ustrlen(syslog_facility_str) >= 4) &&
3453 (strncmpic(syslog_facility_str, US"log_", 4) == 0))
3454 s += 4;
3455
3456 for (i = 0; i < syslog_list_size; i++)
3457 if (strcmpic(s, syslog_list[i].name) == 0)
3458 {
3459 syslog_facility = syslog_list[i].value;
3460 break;
3461 }
3462
3463 if (i >= syslog_list_size)
3464 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3465 "failed to interpret syslog_facility \"%s\"", syslog_facility_str);
3466 }
3467
3468 /* Expand pid_file_path */
3469
3470 if (*pid_file_path != 0)
3471 {
3472 if (!(s = expand_string(pid_file_path)))
3473 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "failed to expand pid_file_path "
3474 "\"%s\": %s", pid_file_path, expand_string_message);
3475 pid_file_path = s;
3476 }
3477
3478 /* Set default value of process_log_path */
3479
3480 if (!process_log_path || *process_log_path =='\0')
3481 process_log_path = string_sprintf("%s/exim-process.info", spool_directory);
3482
3483 /* Compile the regex for matching a UUCP-style "From_" line in an incoming
3484 message. */
3485
3486 regex_From = regex_must_compile(uucp_from_pattern, FALSE, TRUE);
3487
3488 /* Unpick the SMTP rate limiting options, if set */
3489
3490 if (smtp_ratelimit_mail)
3491 unpick_ratelimit(smtp_ratelimit_mail, &smtp_rlm_threshold,
3492 &smtp_rlm_base, &smtp_rlm_factor, &smtp_rlm_limit);
3493
3494 if (smtp_ratelimit_rcpt)
3495 unpick_ratelimit(smtp_ratelimit_rcpt, &smtp_rlr_threshold,
3496 &smtp_rlr_base, &smtp_rlr_factor, &smtp_rlr_limit);
3497
3498 /* The qualify domains default to the primary host name */
3499
3500 if (!qualify_domain_sender)
3501 qualify_domain_sender = primary_hostname;
3502 if (!qualify_domain_recipient)
3503 qualify_domain_recipient = qualify_domain_sender;
3504
3505 /* Setting system_filter_user in the configuration sets the gid as well if a
3506 name is given, but a numerical value does not. */
3507
3508 if (system_filter_uid_set && !system_filter_gid_set)
3509 {
3510 struct passwd *pw = getpwuid(system_filter_uid);
3511 if (!pw)
3512 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "Failed to look up uid %ld",
3513 (long int)system_filter_uid);
3514 system_filter_gid = pw->pw_gid;
3515 system_filter_gid_set = TRUE;
3516 }
3517
3518 /* If the errors_reply_to field is set, check that it is syntactically valid
3519 and ensure it contains a domain. */
3520
3521 if (errors_reply_to)
3522 {
3523 uschar *errmess;
3524 int start, end, domain;
3525 uschar *recipient = parse_extract_address(errors_reply_to, &errmess,
3526 &start, &end, &domain, FALSE);
3527
3528 if (!recipient)
3529 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3530 "error in errors_reply_to (%s): %s", errors_reply_to, errmess);
3531
3532 if (domain == 0)
3533 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3534 "errors_reply_to (%s) does not contain a domain", errors_reply_to);
3535 }
3536
3537 /* If smtp_accept_queue or smtp_accept_max_per_host is set, then
3538 smtp_accept_max must also be set. */
3539
3540 if (smtp_accept_max == 0 &&
3541 (smtp_accept_queue > 0 || smtp_accept_max_per_host != NULL))
3542 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3543 "smtp_accept_max must be set if smtp_accept_queue or "
3544 "smtp_accept_max_per_host is set");
3545
3546 /* Set up the host number if anything is specified. It is an expanded string
3547 so that it can be computed from the host name, for example. We do this last
3548 so as to ensure that everything else is set up before the expansion. */
3549
3550 if (host_number_string)
3551 {
3552 long int n;
3553 uschar *end;
3554 uschar *s = expand_string(host_number_string);
3555
3556 if (!s)
3557 log_write(0, LOG_MAIN|LOG_PANIC_DIE,
3558 "failed to expand localhost_number \"%s\": %s",
3559 host_number_string, expand_string_message);
3560 n = Ustrtol(s, &end, 0);
3561 while (isspace(*end)) end++;
3562 if (*end != 0)
3563 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3564 "localhost_number value is not a number: %s", s);
3565 if (n > LOCALHOST_MAX)
3566 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3567 "localhost_number is greater than the maximum allowed value (%d)",
3568 LOCALHOST_MAX);
3569 host_number = n;
3570 }
3571
3572 #ifndef DISABLE_TLS
3573 /* If tls_verify_hosts is set, tls_verify_certificates must also be set */
3574
3575 if ((tls_verify_hosts || tls_try_verify_hosts) && !tls_verify_certificates)
3576 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3577 "tls_%sverify_hosts is set, but tls_verify_certificates is not set",
3578 tls_verify_hosts ? "" : "try_");
3579
3580 /* Magic number: at time of writing, 1024 has been the long-standing value
3581 used by so many clients, and what Exim used to use always, that it makes
3582 sense to just min-clamp this max-clamp at that. */
3583 if (tls_dh_max_bits < 1024)
3584 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3585 "tls_dh_max_bits is too small, must be at least 1024 for interop");
3586
3587 /* If openssl_options is set, validate it */
3588 if (openssl_options)
3589 {
3590 # ifdef USE_GNUTLS
3591 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3592 "openssl_options is set but we're using GnuTLS");
3593 # else
3594 long dummy;
3595 if (!tls_openssl_options_parse(openssl_options, &dummy))
3596 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3597 "openssl_options parse error: %s", openssl_options);
3598 # endif
3599 }
3600 #endif /*DISABLE_TLS*/
3601
3602 if (!nowarn && !keep_environment && environ && *environ)
3603 log_write(0, LOG_MAIN,
3604 "Warning: purging the environment.\n"
3605 " Suggested action: use keep_environment.");
3606 }
3607
3608
3609
3610 /*************************************************
3611 * Initialize one driver *
3612 *************************************************/
3613
3614 /* This is called once the driver's generic options, if any, have been read.
3615 We can now find the driver, set up defaults for the private options, and
3616 unset any "set" bits in the private options table (which might have been
3617 set by another incarnation of the same driver).
3618
3619 Arguments:
3620 d pointer to driver instance block, with generic
3621 options filled in
3622 drivers_available vector of available drivers
3623 size_of_info size of each block in drivers_available
3624 class class of driver, for error message
3625
3626 Returns: pointer to the driver info block
3627 */
3628
3629 static driver_info *
3630 init_driver(driver_instance *d, driver_info *drivers_available,
3631 int size_of_info, uschar *class)
3632 {
3633 for (driver_info * dd = drivers_available; dd->driver_name[0] != 0;
3634 dd = (driver_info *)((US dd) + size_of_info))
3635 if (Ustrcmp(d->driver_name, dd->driver_name) == 0)
3636 {
3637 int len = dd->options_len;
3638 d->info = dd;
3639 d->options_block = store_get(len, FALSE);
3640 memcpy(d->options_block, dd->options_block, len);
3641 for (int i = 0; i < *(dd->options_count); i++)
3642 dd->options[i].type &= ~opt_set;
3643 return dd;
3644 }
3645
3646 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN,
3647 "%s %s: cannot find %s driver \"%s\"", class, d->name, class, d->driver_name);
3648
3649 return NULL; /* never obeyed */
3650 }
3651
3652
3653
3654
3655 /*************************************************
3656 * Initialize driver list *
3657 *************************************************/
3658
3659 /* This function is called for routers, transports, and authentication
3660 mechanisms. It reads the data from the current point in the configuration file
3661 up to the end of the section, and sets up a chain of instance blocks according
3662 to the file's contents. The file will already have been opened by a call to
3663 readconf_main, and must be left open for subsequent reading of further data.
3664
3665 Any errors cause a panic crash. Note that the blocks with names driver_info and
3666 driver_instance must map the first portions of all the _info and _instance
3667 blocks for this shared code to work.
3668
3669 Arguments:
3670 class "router", "transport", or "authenticator"
3671 anchor &routers, &transports, &auths
3672 drivers_available available drivers
3673 size_of_info size of each info block
3674 instance_default points to default data for an instance
3675 instance_size size of instance block
3676 driver_optionlist generic option list
3677 driver_optionlist_count count of generic option list
3678
3679 Returns: nothing
3680 */
3681
3682 void
3683 readconf_driver_init(
3684 uschar *class,
3685 driver_instance **anchor,
3686 driver_info *drivers_available,
3687 int size_of_info,
3688 void *instance_default,
3689 int instance_size,
3690 optionlist *driver_optionlist,
3691 int driver_optionlist_count)
3692 {
3693 driver_instance **p = anchor;
3694 driver_instance *d = NULL;
3695 uschar *buffer;
3696
3697 while ((buffer = get_config_line()))
3698 {
3699 uschar name[64];
3700 uschar *s;
3701
3702 /* Read the first name on the line and test for the start of a new driver. A
3703 macro definition indicates the end of the previous driver. If this isn't the
3704 start of a new driver, the line will be re-read. */
3705
3706 s = readconf_readname(name, sizeof(name), buffer);
3707
3708 /* Handle macro definition, first finishing off the initialization of the
3709 previous driver, if any. */
3710
3711 if (isupper(*name) && *s == '=')
3712 {
3713 if (d)
3714 {
3715 if (!d->driver_name)
3716 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3717 "no driver defined for %s \"%s\"", class, d->name);
3718 /* s is using big_buffer, so this call had better not */
3719 (d->info->init)(d);
3720 d = NULL;
3721 }
3722 if (!macro_read_assignment(buffer)) exim_exit(EXIT_FAILURE);
3723 continue;
3724 }
3725
3726 /* If the line starts with a name terminated by a colon, we are at the
3727 start of the definition of a new driver. The rest of the line must be
3728 blank. */
3729
3730 if (*s++ == ':')
3731 {
3732 /* Finish off initializing the previous driver. */
3733
3734 if (d)
3735 {
3736 if (!d->driver_name)
3737 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3738 "no driver defined for %s \"%s\"", class, d->name);
3739 (d->info->init)(d);
3740 }
3741
3742 /* Check that we haven't already got a driver of this name */
3743
3744 for (d = *anchor; d; d = d->next)
3745 if (Ustrcmp(name, d->name) == 0)
3746 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3747 "there are two %ss called \"%s\"", class, name);
3748
3749 /* Set up a new driver instance data block on the chain, with
3750 its default values installed. */
3751
3752 d = store_get(instance_size, FALSE);
3753 memcpy(d, instance_default, instance_size);
3754 *p = d;
3755 p = &d->next;
3756 d->name = string_copy(name);
3757
3758 /* Clear out the "set" bits in the generic options */
3759
3760 for (int i = 0; i < driver_optionlist_count; i++)
3761 driver_optionlist[i].type &= ~opt_set;
3762
3763 /* Check nothing more on this line, then do the next loop iteration. */
3764
3765 Uskip_whitespace(&s);
3766 if (*s) extra_chars_error(s, US"driver name ", name, US"");
3767 continue;
3768 }
3769
3770 /* Not the start of a new driver. Give an error if we have not set up a
3771 current driver yet. */
3772
3773 if (!d)
3774 log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "%s name missing", class);
3775
3776 /* First look to see if this is a generic option; if it is "driver",
3777 initialize the driver. If is it not a generic option, we can look for a
3778 private option provided that the driver has been previously set up. */
3779
3780 if (readconf_handle_option(buffer, driver_optionlist,
3781 driver_optionlist_count, d, NULL))
3782 {
3783 if (!d->info && d->driver_name)
3784 init_driver(d, drivers_available, size_of_info, class);
3785 }
3786
3787 /* Handle private options - pass the generic block because some may
3788 live therein. A flag with each option indicates if it is in the public
3789 block. */
3790
3791 else if (d->info)
3792 readconf_handle_option(buffer, d->info->options,
3793 *(d->info->options_count), d, US"option \"%s\" unknown");
3794
3795 /* The option is not generic and the driver name has not yet been given. */
3796
3797 else log_write(0, LOG_PANIC_DIE|LOG_CONFIG_IN, "option \"%s\" unknown "
3798 "(\"driver\" must be specified before any private options)", name);
3799 }
3800
3801 /* Run the initialization function for the final driver. */
3802
3803 if (d)
3804 {
3805 if (!d->driver_name)
3806 log_write(0, LOG_PANIC_DIE|LOG_CONFIG,
3807 "no driver defined for %s \"%s\"", class, d->name);
3808 (d->info->init)(d);
3809 }
3810 }
3811
3812
3813