2 * Copyright (c) 1999-2009, 2012, 2013 Proofpoint, Inc. and its suppliers.
5 * By using this file, you agree to the terms and conditions set
6 * forth in the LICENSE file which can be found at the top level of
7 * the sendmail distribution.
13 SM_RCSID("@(#)$Id: milter.c,v 8.281 2013-11-22 20:51:56 ca Exp $")
16 # include <sm/sendmail.h>
17 # include <libmilter/mfapi.h>
18 # include <libmilter/mfdef.h>
24 # if NETINET || NETINET6
25 # include <arpa/inet.h>
27 # include <netinet/tcp.h>
29 # endif /* NETINET || NETINET6 */
31 # include <sm/fdset.h>
33 static void milter_connect_timeout __P((int));
34 static void milter_error __P((struct milter *, ENVELOPE *));
35 static int milter_open __P((struct milter *, bool, ENVELOPE *));
36 static void milter_parse_timeouts __P((char *, struct milter *));
37 static char *milter_sysread __P((struct milter *, char *, ssize_t, time_t,
38 ENVELOPE *, const char *));
39 static char *milter_read __P((struct milter *, char *, ssize_t *, time_t,
40 ENVELOPE *, const char *));
41 static char *milter_write __P((struct milter *, int, char *, ssize_t,
42 time_t, ENVELOPE *, const char *));
43 static char *milter_send_command __P((struct milter *, int, void *,
44 ssize_t, ENVELOPE *, char *, const char *));
45 static char *milter_command __P((int, void *, ssize_t, int,
46 ENVELOPE *, char *, const char *, bool));
47 static char *milter_body __P((struct milter *, ENVELOPE *, char *));
48 static int milter_reopen_df __P((ENVELOPE *));
49 static int milter_reset_df __P((ENVELOPE *));
50 static void milter_quit_filter __P((struct milter *, ENVELOPE *));
51 static void milter_abort_filter __P((struct milter *, ENVELOPE *));
52 static void milter_send_macros __P((struct milter *, char **, int,
54 static int milter_negotiate __P((struct milter *, ENVELOPE *,
56 static void milter_per_connection_check __P((ENVELOPE *));
57 static char *milter_headers __P((struct milter *, ENVELOPE *, char *));
58 static void milter_addheader __P((struct milter *, char *, ssize_t,
60 static void milter_insheader __P((struct milter *, char *, ssize_t,
62 static void milter_changeheader __P((struct milter *, char *, ssize_t,
64 static void milter_chgfrom __P((char *, ssize_t, ENVELOPE *, const char *));
65 static void milter_addrcpt __P((char *, ssize_t, ENVELOPE *, const char *));
66 static void milter_addrcpt_par __P((char *, ssize_t, ENVELOPE *, const char *));
67 static void milter_delrcpt __P((char *, ssize_t, ENVELOPE *, const char *));
68 static int milter_replbody __P((char *, ssize_t, bool, ENVELOPE *, const char *));
69 static int milter_set_macros __P((char *, char **, char *, int));
73 # define SMFS_CLOSED 'C' /* closed for all further actions */
74 # define SMFS_OPEN 'O' /* connected to remote milter filter */
75 # define SMFS_INMSG 'M' /* currently servicing a message */
76 # define SMFS_DONE 'D' /* done with current message */
77 # define SMFS_CLOSABLE 'Q' /* done with current connection */
78 # define SMFS_ERROR 'E' /* error state */
79 # define SMFS_READY 'R' /* ready for action */
80 # define SMFS_SKIP 'S' /* skip body */
83 ** MilterMacros contains the milter macros for each milter and each stage.
84 ** indices are (in order): stages, milter-index, macro
85 ** milter-index == 0: "global" macros (not for a specific milter).
88 static char *MilterMacros[SMFIM_LAST + 1][MAXFILTERS + 1][MAXFILTERMACROS + 1];
89 static size_t MilterMaxDataSize = MILTER_MAX_DATA_SIZE;
91 # define MILTER_CHECK_DONE_MSG() \
92 if (*state == SMFIR_REPLYCODE || \
93 *state == SMFIR_REJECT || \
94 *state == SMFIR_DISCARD || \
95 *state == SMFIR_TEMPFAIL) \
97 /* Abort the filters to let them know we are done with msg */ \
101 /* set state in case of an error */
102 # define MILTER_SET_STATE \
103 if (bitnset(SMF_TEMPFAIL, m->mf_flags)) \
104 *state = SMFIR_TEMPFAIL; \
105 else if (bitnset(SMF_TEMPDROP, m->mf_flags)) \
106 *state = SMFIR_SHUTDOWN; \
107 else if (bitnset(SMF_REJECT, m->mf_flags)) \
108 *state = SMFIR_REJECT
110 /* flow through code maybe using continue; don't wrap in do {} while */
111 # define MILTER_CHECK_ERROR(initial, action) \
112 if (!initial && tTd(71, 100)) \
114 if (e->e_quarmsg == NULL) \
116 e->e_quarmsg = sm_rpool_strdup_x(e->e_rpool, \
118 macdefine(&e->e_macro, A_PERM, macid("{quarantine}"), \
122 else if (tTd(71, 101)) \
124 if (e->e_quarmsg == NULL) \
126 e->e_quarmsg = sm_rpool_strdup_x(e->e_rpool, \
128 macdefine(&e->e_macro, A_PERM, macid("{quarantine}"), \
132 else MILTER_SET_STATE; \
136 # define MILTER_CHECK_REPLYCODE(default) \
137 if (response == NULL || \
138 strlen(response) + 1 != (size_t) rlen || \
140 (response[0] != '4' && response[0] != '5') || \
141 !isascii(response[1]) || !isdigit(response[1]) || \
142 !isascii(response[2]) || !isdigit(response[2])) \
144 if (response != NULL) \
145 sm_free(response); /* XXX */ \
146 response = newstr(default); \
150 char *ptr = response; \
152 /* Check for unprotected %'s in the string */ \
153 while (*ptr != '\0') \
155 if (*ptr == '%' && *++ptr != '%') \
157 sm_free(response); /* XXX */ \
158 response = newstr(default); \
165 # define MILTER_DF_ERROR(msg) \
167 int save_errno = errno; \
171 sm_dprintf(msg, dfname, sm_errstring(save_errno)); \
174 if (MilterLogLevel > 0) \
175 sm_syslog(LOG_ERR, e->e_id, msg, dfname, sm_errstring(save_errno)); \
176 if (SuperSafe == SAFE_REALLY) \
178 if (e->e_dfp != NULL) \
180 (void) sm_io_close(e->e_dfp, SM_TIME_DEFAULT); \
183 e->e_flags &= ~EF_HAS_DF; \
185 errno = save_errno; \
189 ** MILTER_TIMEOUT -- make sure socket is ready in time
192 ** routine -- routine name for debug/logging
193 ** secs -- number of seconds in timeout
194 ** write -- waiting to read or write?
195 ** started -- whether this is part of a previous sequence
197 ** Assumes 'm' is a milter structure for the current socket.
200 # define MILTER_TIMEOUT(routine, secs, write, started, function) \
207 if (!SM_FD_OK_SELECT(m->mf_sock)) \
210 sm_dprintf("milter_%s(%s): socket %d is larger than FD_SETSIZE %d\n", \
211 (routine), m->mf_name, m->mf_sock, \
213 if (MilterLogLevel > 0) \
214 sm_syslog(LOG_ERR, e->e_id, \
215 "Milter (%s): socket(%s) %d is larger than FD_SETSIZE %d", \
216 m->mf_name, (routine), m->mf_sock, \
218 milter_error(m, e); \
225 SM_FD_SET(m->mf_sock, &fds); \
226 tv.tv_sec = (secs); \
228 ret = select(m->mf_sock + 1, \
229 (write) ? NULL : &fds, \
230 (write) ? &fds : NULL, \
232 } while (ret < 0 && errno == EINTR); \
238 sm_dprintf("milter_%s(%s): timeout, where=%s\n", \
239 (routine), m->mf_name, (function)); \
240 if (MilterLogLevel > 0) \
241 sm_syslog(LOG_ERR, e->e_id, \
242 "Milter (%s): timeout %s data %s, where=%s", \
244 started ? "during" : "before", \
245 (routine), (function)); \
246 milter_error(m, e); \
250 save_errno = errno; \
252 sm_dprintf("milter_%s(%s): select: %s\n", (routine), \
253 m->mf_name, sm_errstring(save_errno)); \
254 if (MilterLogLevel > 0) \
256 sm_syslog(LOG_ERR, e->e_id, \
257 "Milter (%s): select(%s): %s", \
258 m->mf_name, (routine), \
259 sm_errstring(save_errno)); \
261 milter_error(m, e); \
265 if (SM_FD_ISSET(m->mf_sock, &fds)) \
268 sm_dprintf("milter_%s(%s): socket not ready\n", \
269 (routine), m->mf_name); \
270 if (MilterLogLevel > 0) \
272 sm_syslog(LOG_ERR, e->e_id, \
273 "Milter (%s): socket(%s) not ready", \
274 m->mf_name, (routine)); \
276 milter_error(m, e); \
282 ** Low level functions
286 ** MILTER_READ -- read from a remote milter filter
289 ** m -- milter to read from.
290 ** cmd -- return param for command read.
291 ** rlen -- return length of response string.
292 ** to -- timeout in seconds.
293 ** e -- current envelope.
296 ** response string (may be NULL)
300 milter_sysread(m, buf, sz, to, e, where)
308 time_t readstart = 0;
310 bool started = false;
315 readstart = curtime();
324 if (now - readstart >= to)
327 sm_dprintf("milter_sys_read (%s): timeout %s data read in %s",
329 started ? "during" : "before",
331 if (MilterLogLevel > 0)
332 sm_syslog(LOG_ERR, e->e_id,
333 "Milter (%s): timeout %s data read in %s",
335 started ? "during" : "before",
340 to -= now - readstart;
342 MILTER_TIMEOUT("read", to, false, started, where);
345 len = read(m->mf_sock, buf + curl, sz - curl);
349 int save_errno = errno;
352 sm_dprintf("milter_sys_read(%s): read returned %ld: %s\n",
353 m->mf_name, (long) len,
354 sm_errstring(save_errno));
355 if (MilterLogLevel > 0)
356 sm_syslog(LOG_ERR, e->e_id,
357 "Milter (%s): read returned %ld: %s",
358 m->mf_name, (long) len,
359 sm_errstring(save_errno));
366 if (len == 0 || curl >= sz)
374 sm_dprintf("milter_sys_read(%s): cmd read returned %ld, expecting %ld\n",
375 m->mf_name, (long) curl, (long) sz);
376 if (MilterLogLevel > 0)
377 sm_syslog(LOG_ERR, e->e_id,
378 "milter_sys_read(%s): cmd read returned %ld, expecting %ld",
379 m->mf_name, (long) curl, (long) sz);
387 milter_read(m, cmd, rlen, to, e, where)
395 time_t readstart = 0;
398 # if MILTER_NO_NAGLE && defined(TCP_CORK)
402 char data[MILTER_LEN_BYTES + 1];
406 if (MilterLogLevel > 0)
407 sm_syslog(LOG_ERR, e->e_id,
408 "milter_read(%s): socket closed, where=%s",
418 readstart = curtime();
420 # if MILTER_NO_NAGLE && defined(TCP_CORK)
421 setsockopt(m->mf_sock, IPPROTO_TCP, TCP_CORK, (char *)&cork,
425 if (milter_sysread(m, data, sizeof(data), to, e, where) == NULL)
428 # if MILTER_NO_NAGLE && defined(TCP_CORK)
430 setsockopt(m->mf_sock, IPPROTO_TCP, TCP_CORK, (char *)&cork,
440 if (now - readstart >= to)
443 sm_dprintf("milter_read(%s): timeout before data read, where=%s\n",
445 if (MilterLogLevel > 0)
446 sm_syslog(LOG_ERR, e->e_id,
447 "Milter read(%s): timeout before data read, where=%s",
452 to -= now - readstart;
455 *cmd = data[MILTER_LEN_BYTES];
456 data[MILTER_LEN_BYTES] = '\0';
457 (void) memcpy(&i, data, MILTER_LEN_BYTES);
461 sm_dprintf("milter_read(%s): expecting %ld bytes\n",
462 m->mf_name, (long) expl);
467 sm_dprintf("milter_read(%s): read size %ld out of range, where=%s\n",
468 m->mf_name, (long) expl, where);
469 if (MilterLogLevel > 0)
470 sm_syslog(LOG_ERR, e->e_id,
471 "milter_read(%s): read size %ld out of range, where=%s",
472 m->mf_name, (long) expl, where);
480 buf = (char *) xalloc(expl);
482 if (milter_sysread(m, buf, expl, to, e, where) == NULL)
484 sm_free(buf); /* XXX */
489 sm_dprintf("milter_read(%s): Returning %*s\n",
490 m->mf_name, (int) expl, buf);
496 ** MILTER_WRITE -- write to a remote milter filter
499 ** m -- milter to read from.
500 ** cmd -- command to send.
501 ** buf -- optional command data.
502 ** len -- length of buf.
503 ** to -- timeout in seconds.
504 ** e -- current envelope.
507 ** buf if successful, NULL otherwise
508 ** Not actually used anywhere but function prototype
509 ** must match milter_read()
513 milter_write(m, cmd, buf, len, to, e, where)
525 char command = (char) cmd;
526 char data[MILTER_LEN_BYTES + 1];
527 bool started = false;
528 struct iovec vector[2];
531 ** At most two buffers will be written, though
532 ** only one may actually be used (see num_vectors).
533 ** The first is the size/command and the second is the command data.
536 if (len < 0 || len > MilterMaxDataSize)
540 sm_dprintf("milter_write(%s): length %ld out of range, cmd=%c\n",
541 m->mf_name, (long) len, command);
542 sm_dprintf("milter_write(%s): buf=%s\n",
543 m->mf_name, str2prt(buf));
545 if (MilterLogLevel > 0)
546 sm_syslog(LOG_ERR, e->e_id,
547 "milter_write(%s): length %ld out of range, cmd=%c",
548 m->mf_name, (long) len, command);
554 if (MilterLogLevel > 0)
555 sm_syslog(LOG_ERR, e->e_id,
556 "milter_write(%s): socket closed",
563 sm_dprintf("milter_write(%s): cmd %c, len %ld\n",
564 m->mf_name, command, (long) len);
566 nl = htonl(len + 1); /* add 1 for the command char */
567 (void) memcpy(data, (char *) &nl, MILTER_LEN_BYTES);
568 data[MILTER_LEN_BYTES] = command;
569 sl = MILTER_LEN_BYTES + 1;
571 /* set up the vector for the size / command */
572 vector[0].iov_base = (void *) data;
573 vector[0].iov_len = sl;
576 ** Determine if there is command data. If so, there will be two
577 ** vectors. If not, there will be only one. The vectors are set
578 ** up here and 'num_vectors' and 'sl' are set appropriately.
581 /* NOTE: len<0 has already been checked for. Pedantic */
582 if (len <= 0 || buf == NULL)
584 /* There is no command data -- only a size / command data */
590 ** There is both size / command and command data.
591 ** Set up the vector for the command data.
596 vector[1].iov_base = (void *) buf;
597 vector[1].iov_len = len;
600 sm_dprintf("milter_write(%s): Sending %*s\n",
601 m->mf_name, (int) len, buf);
605 MILTER_TIMEOUT("write", to, true, started, where);
607 /* write the vector(s) */
608 i = writev(m->mf_sock, vector, num_vectors);
611 int save_errno = errno;
614 sm_dprintf("milter_write(%s): write(%c) returned %ld, expected %ld: %s\n",
615 m->mf_name, command, (long) i, (long) sl,
616 sm_errstring(save_errno));
617 if (MilterLogLevel > 0)
618 sm_syslog(LOG_ERR, e->e_id,
619 "Milter (%s): write(%c) returned %ld, expected %ld: %s",
620 m->mf_name, command, (long) i, (long) sl,
621 sm_errstring(save_errno));
633 ** MILTER_OPEN -- connect to remote milter filter
636 ** m -- milter to connect to.
637 ** parseonly -- parse but don't connect.
638 ** e -- current envelope.
641 ** connected socket if successful && !parseonly,
642 ** 0 upon parse success if parseonly,
646 static jmp_buf MilterConnectTimeout;
649 milter_open(m, parseonly, e)
655 SOCKADDR_LEN_T addrlen = 0;
661 struct hostent *hp = NULL;
664 if (m->mf_conn == NULL || m->mf_conn[0] == '\0')
667 sm_dprintf("X%s: empty or missing socket information\n",
670 syserr("X%s: empty or missing socket information",
672 else if (MilterLogLevel > 0)
673 sm_syslog(LOG_ERR, e->e_id,
674 "Milter (%s): empty or missing socket information",
680 /* protocol:filename or protocol:port@host */
681 memset(&addr, '\0', sizeof(addr));
683 colon = strchr(p, ':');
691 /* default to AF_UNIX */
692 addr.sa.sa_family = AF_UNIX;
695 /* default to AF_INET */
696 addr.sa.sa_family = AF_INET;
699 /* default to AF_INET6 */
700 addr.sa.sa_family = AF_INET6;
701 # else /* NETINET6 */
702 /* no protocols available */
703 if (MilterLogLevel > 0)
704 sm_syslog(LOG_ERR, e->e_id,
705 "Milter (%s): no valid socket protocols available",
709 # endif /* NETINET6 */
710 # endif /* NETINET */
711 # endif /* NETUNIX */
714 else if (sm_strcasecmp(p, "unix") == 0 ||
715 sm_strcasecmp(p, "local") == 0)
716 addr.sa.sa_family = AF_UNIX;
719 else if (sm_strcasecmp(p, "inet") == 0)
720 addr.sa.sa_family = AF_INET;
723 else if (sm_strcasecmp(p, "inet6") == 0)
724 addr.sa.sa_family = AF_INET6;
728 # ifdef EPROTONOSUPPORT
729 errno = EPROTONOSUPPORT;
734 sm_dprintf("X%s: unknown socket type %s\n",
737 syserr("X%s: unknown socket type %s",
739 else if (MilterLogLevel > 0)
740 sm_syslog(LOG_ERR, e->e_id,
741 "Milter (%s): unknown socket type %s",
750 /* default to AF_UNIX */
751 addr.sa.sa_family = AF_UNIX;
756 if (addr.sa.sa_family == AF_UNIX)
758 long sff = SFF_SAFEDIRPATH|SFF_OPENASROOT|SFF_NOLINK|SFF_EXECOK;
761 if (strlen(colon) >= sizeof(addr.sunix.sun_path))
764 sm_dprintf("X%s: local socket name %s too long\n",
768 syserr("X%s: local socket name %s too long",
770 else if (MilterLogLevel > 0)
771 sm_syslog(LOG_ERR, e->e_id,
772 "Milter (%s): local socket name %s too long",
777 errno = safefile(colon, RunAsUid, RunAsGid, RunAsUserName, sff,
778 S_IRUSR|S_IWUSR, NULL);
780 /* if just parsing .cf file, socket doesn't need to exist */
781 if (parseonly && errno == ENOENT)
783 if (OpMode == MD_DAEMON ||
784 OpMode == MD_FGDAEMON)
785 (void) sm_io_fprintf(smioerr, SM_TIME_DEFAULT,
786 "WARNING: X%s: local socket name %s missing\n",
791 /* if not safe, don't create */
794 sm_dprintf("X%s: local socket name %s unsafe\n",
799 if (OpMode == MD_DAEMON ||
800 OpMode == MD_FGDAEMON ||
802 syserr("X%s: local socket name %s unsafe",
805 else if (MilterLogLevel > 0)
806 sm_syslog(LOG_ERR, e->e_id,
807 "Milter (%s): local socket name %s unsafe",
813 (void) sm_strlcpy(addr.sunix.sun_path, colon,
814 sizeof(addr.sunix.sun_path));
815 addrlen = sizeof(struct sockaddr_un);
818 # endif /* NETUNIX */
819 # if NETINET || NETINET6
822 || addr.sa.sa_family == AF_INET
825 || addr.sa.sa_family == AF_INET6
831 /* Parse port@host */
832 at = strchr(colon, '@');
836 sm_dprintf("X%s: bad address %s (expected port@host)\n",
839 syserr("X%s: bad address %s (expected port@host)",
841 else if (MilterLogLevel > 0)
842 sm_syslog(LOG_ERR, e->e_id,
843 "Milter (%s): bad address %s (expected port@host)",
849 if (isascii(*colon) && isdigit(*colon))
850 port = htons((unsigned short) atoi(colon));
853 # ifdef NO_GETSERVBYNAME
855 sm_dprintf("X%s: invalid port number %s\n",
858 syserr("X%s: invalid port number %s",
860 else if (MilterLogLevel > 0)
861 sm_syslog(LOG_ERR, e->e_id,
862 "Milter (%s): invalid port number %s",
866 # else /* NO_GETSERVBYNAME */
869 sp = getservbyname(colon, "tcp");
874 sm_dprintf("X%s: unknown port name %s\n",
878 syserr("X%s: unknown port name %s",
880 else if (MilterLogLevel > 0)
881 sm_syslog(LOG_ERR, e->e_id,
882 "Milter (%s): unknown port name %s",
888 # endif /* NO_GETSERVBYNAME */
895 end = strchr(at, ']');
900 unsigned long hid = INADDR_NONE;
903 struct sockaddr_in6 hid6;
908 if (addr.sa.sa_family == AF_INET &&
909 (hid = inet_addr(&at[1])) != INADDR_NONE)
911 addr.sin.sin_addr.s_addr = hid;
912 addr.sin.sin_port = port;
915 # endif /* NETINET */
917 (void) memset(&hid6, '\0', sizeof(hid6));
918 if (addr.sa.sa_family == AF_INET6 &&
919 anynet_pton(AF_INET6, &at[1],
920 &hid6.sin6_addr) == 1)
922 addr.sin6.sin6_addr = hid6.sin6_addr;
923 addr.sin6.sin6_port = port;
926 # endif /* NETINET6 */
931 sm_dprintf("X%s: Invalid numeric domain spec \"%s\"\n",
934 syserr("X%s: Invalid numeric domain spec \"%s\"",
936 else if (MilterLogLevel > 0)
937 sm_syslog(LOG_ERR, e->e_id,
938 "Milter (%s): Invalid numeric domain spec \"%s\"",
947 sm_dprintf("X%s: Invalid numeric domain spec \"%s\"\n",
950 syserr("X%s: Invalid numeric domain spec \"%s\"",
952 else if (MilterLogLevel > 0)
953 sm_syslog(LOG_ERR, e->e_id,
954 "Milter (%s): Invalid numeric domain spec \"%s\"",
962 hp = sm_gethostbyname(at, addr.sa.sa_family);
967 sm_dprintf("X%s: Unknown host name %s\n",
971 syserr("X%s: Unknown host name %s",
973 else if (MilterLogLevel > 0)
974 sm_syslog(LOG_ERR, e->e_id,
975 "Milter (%s): Unknown host name %s",
980 addr.sa.sa_family = hp->h_addrtype;
981 switch (hp->h_addrtype)
985 memmove(&addr.sin.sin_addr,
986 hp->h_addr, INADDRSZ);
987 addr.sin.sin_port = port;
988 addrlen = sizeof(struct sockaddr_in);
991 # endif /* NETINET */
995 memmove(&addr.sin6.sin6_addr,
996 hp->h_addr, IN6ADDRSZ);
997 addr.sin6.sin6_port = port;
998 addrlen = sizeof(struct sockaddr_in6);
1001 # endif /* NETINET6 */
1005 sm_dprintf("X%s: Unknown protocol for %s (%d)\n",
1009 syserr("X%s: Unknown protocol for %s (%d)",
1010 m->mf_name, at, hp->h_addrtype);
1011 else if (MilterLogLevel > 0)
1012 sm_syslog(LOG_ERR, e->e_id,
1013 "Milter (%s): Unknown protocol for %s (%d)",
1025 # endif /* NETINET || NETINET6 */
1028 sm_dprintf("X%s: unknown socket protocol\n",
1031 syserr("X%s: unknown socket protocol", m->mf_name);
1032 else if (MilterLogLevel > 0)
1033 sm_syslog(LOG_ERR, e->e_id,
1034 "Milter (%s): unknown socket protocol",
1040 /* just parsing through? */
1043 m->mf_state = SMFS_READY;
1052 if (m->mf_state != SMFS_READY &&
1053 m->mf_state != SMFS_CLOSED)
1055 /* shouldn't happen */
1057 sm_dprintf("Milter (%s): Trying to open filter in state %c\n",
1058 m->mf_name, (char) m->mf_state);
1067 /* nope, actually connecting */
1070 sock = socket(addr.sa.sa_family, SOCK_STREAM, 0);
1075 sm_dprintf("Milter (%s): error creating socket: %s\n",
1077 sm_errstring(save_errno));
1078 if (MilterLogLevel > 0)
1079 sm_syslog(LOG_ERR, e->e_id,
1080 "Milter (%s): error creating socket: %s",
1081 m->mf_name, sm_errstring(save_errno));
1090 if (setjmp(MilterConnectTimeout) == 0)
1092 SM_EVENT *ev = NULL;
1095 if (m->mf_timeout[SMFTO_CONNECT] > 0)
1096 ev = sm_setevent(m->mf_timeout[SMFTO_CONNECT],
1097 milter_connect_timeout, 0);
1099 i = connect(sock, (struct sockaddr *) &addr, addrlen);
1108 /* couldn't connect.... try next address */
1113 sm_dprintf("milter_open (%s): open %s failed: %s\n",
1114 m->mf_name, at, sm_errstring(save_errno));
1115 if (MilterLogLevel > 13)
1116 sm_syslog(LOG_INFO, e->e_id,
1117 "Milter (%s): open %s failed: %s",
1118 m->mf_name, at, sm_errstring(save_errno));
1122 /* try next address */
1123 if (hp != NULL && hp->h_addr_list[addrno] != NULL)
1125 switch (addr.sa.sa_family)
1129 memmove(&addr.sin.sin_addr,
1130 hp->h_addr_list[addrno++],
1133 # endif /* NETINET */
1137 memmove(&addr.sin6.sin6_addr,
1138 hp->h_addr_list[addrno++],
1141 # endif /* NETINET6 */
1145 sm_dprintf("X%s: Unknown protocol for %s (%d)\n",
1148 if (MilterLogLevel > 0)
1149 sm_syslog(LOG_ERR, e->e_id,
1150 "Milter (%s): Unknown protocol for %s (%d)",
1164 sm_dprintf("X%s: error connecting to filter: %s\n",
1165 m->mf_name, sm_errstring(save_errno));
1166 if (MilterLogLevel > 0)
1167 sm_syslog(LOG_ERR, e->e_id,
1168 "Milter (%s): error connecting to filter: %s",
1169 m->mf_name, sm_errstring(save_errno));
1178 m->mf_state = SMFS_OPEN;
1185 # endif /* NETINET6 */
1186 # if MILTER_NO_NAGLE && !defined(TCP_CORK)
1190 setsockopt(m->mf_sock, IPPROTO_TCP, TCP_NODELAY,
1191 (char *)&nodelay, sizeof(nodelay));
1193 # endif /* MILTER_NO_NAGLE && !defined(TCP_CORK) */
1198 milter_connect_timeout(ignore)
1202 ** NOTE: THIS CAN BE CALLED FROM A SIGNAL HANDLER. DO NOT ADD
1203 ** ANYTHING TO THIS ROUTINE UNLESS YOU KNOW WHAT YOU ARE
1208 longjmp(MilterConnectTimeout, 1);
1212 ** MILTER_SETUP -- setup structure for a mail filter
1215 ** line -- the options line.
1231 /* collect the filter name */
1233 *p != '\0' && *p != ',' && !(SM_ISSPACE(*p));
1238 if (line[0] == '\0')
1240 syserr("name required for mail filter");
1243 m = (struct milter *) xalloc(sizeof(*m));
1244 memset((char *) m, '\0', sizeof(*m));
1245 m->mf_name = newstr(line);
1246 m->mf_state = SMFS_READY;
1248 m->mf_timeout[SMFTO_CONNECT] = (time_t) 300;
1249 m->mf_timeout[SMFTO_WRITE] = (time_t) 10;
1250 m->mf_timeout[SMFTO_READ] = (time_t) 10;
1251 m->mf_timeout[SMFTO_EOM] = (time_t) 300;
1252 #if _FFR_MILTER_CHECK
1253 m->mf_mta_prot_version = SMFI_PROT_VERSION;
1254 m->mf_mta_prot_flags = SMFI_CURR_PROT;
1255 m->mf_mta_actions = SMFI_CURR_ACTS;
1256 #endif /* _FFR_MILTER_CHECK */
1258 /* now scan through and assign info from the fields */
1263 while (*p != '\0' &&
1264 (*p == ',' || (SM_ISSPACE(*p))))
1267 /* p now points to field code */
1269 while (*p != '\0' && *p != '=' && *p != ',')
1273 syserr("X%s: `=' expected", m->mf_name);
1276 while (SM_ISSPACE(*p))
1279 /* p now points to the field body */
1280 p = munchstring(p, &delimptr, ',');
1282 /* install the field into the filter struct */
1285 case 'S': /* socket */
1289 m->mf_conn = newstr(p);
1292 case 'F': /* Milter flags configured on MTA */
1293 for (; *p != '\0'; p++)
1295 if (!(SM_ISSPACE(*p)))
1296 setbitn(bitidx(*p), m->mf_flags);
1300 case 'T': /* timeouts */
1301 milter_parse_timeouts(p, m);
1304 #if _FFR_MILTER_CHECK
1306 m->mf_mta_actions = strtoul(p, NULL, 0);
1309 m->mf_mta_prot_flags = strtoul(p, NULL, 0);
1312 m->mf_mta_prot_version = strtoul(p, NULL, 0);
1314 #endif /* _FFR_MILTER_CHECK */
1317 syserr("X%s: unknown filter equate %c=",
1324 /* early check for errors */
1325 (void) milter_open(m, true, CurEnv);
1327 /* enter the filter into the symbol table */
1328 s = stab(m->mf_name, ST_MILTER, ST_ENTER);
1329 if (s->s_milter != NULL)
1330 syserr("X%s: duplicate filter definition", m->mf_name);
1339 ** MILTER_CONFIG -- parse option list into an array and check config
1341 ** Called when reading configuration file.
1344 ** spec -- the filter list.
1345 ** list -- the array to fill in.
1346 ** max -- the maximum number of entries in list.
1353 milter_config(spec, list, max)
1355 struct milter **list;
1361 /* leave one for the NULL signifying the end of the list */
1364 for (p = spec; p != NULL; )
1368 while (SM_ISSPACE(*p))
1374 if (numitems >= max)
1376 syserr("Too many filters defined, %d max", max);
1381 p = strpbrk(p, ";,");
1385 s = stab(spec, ST_MILTER, ST_FIND);
1388 syserr("InputFilter %s not defined", spec);
1389 ExitStat = EX_CONFIG;
1392 list[numitems++] = s->s_milter;
1394 list[numitems] = NULL;
1396 /* if not set, set to LogLevel */
1397 if (MilterLogLevel == -1)
1398 MilterLogLevel = LogLevel;
1402 ** MILTER_PARSE_TIMEOUTS -- parse timeout list
1404 ** Called when reading configuration file.
1407 ** spec -- the timeout list.
1408 ** m -- milter to set.
1415 milter_parse_timeouts(spec, m)
1425 /* now scan through and assign info from the fields */
1430 while (*p != '\0' && (*p == ';' || (SM_ISSPACE(*p))))
1433 /* p now points to field code */
1435 while (*p != '\0' && *p != ':')
1439 syserr("X%s, T=: `:' expected", m->mf_name);
1442 while (SM_ISSPACE(*p))
1445 /* p now points to the field body */
1446 p = munchstring(p, &delimptr, ';');
1449 /* install the field into the filter struct */
1453 tcode = SMFTO_CONNECT;
1457 tcode = SMFTO_WRITE;
1470 sm_dprintf("X%s: %c unknown\n",
1472 syserr("X%s: unknown filter timeout %c",
1478 m->mf_timeout[tcode] = convtime(p, 's');
1480 sm_dprintf("X%s: %c=%ld\n",
1482 (u_long) m->mf_timeout[tcode]);
1489 ** MILTER_SET_MACROS -- set milter macros
1492 ** name -- name of milter.
1493 ** macros -- where to store macros.
1494 ** val -- the value of the option.
1495 ** nummac -- current number of macros
1498 ** new number of macros
1502 milter_set_macros(name, macros, val, nummac)
1515 /* Skip leading commas, spaces */
1516 while (*p != '\0' && (*p == ',' || (SM_ISSPACE(*p))))
1522 /* Find end of macro */
1524 while (*p != '\0' && *p != ',' &&
1525 isascii(*p) && !isspace(*p))
1530 if (nummac >= MAXFILTERMACROS)
1532 syserr("milter_set_option: too many macros in Milter.%s (max %d)",
1533 name, MAXFILTERMACROS);
1534 macros[nummac] = NULL;
1537 macros[nummac++] = macro;
1539 macros[nummac] = NULL;
1544 ** MILTER_SET_OPTION -- set an individual milter option
1547 ** name -- the name of the option.
1548 ** val -- the value of the option.
1549 ** sticky -- if set, don't let other setoptions override
1556 /* set if Milter sub-option is stuck */
1557 static BITMAP256 StickyMilterOpt;
1559 static struct milteropt
1561 char *mo_name; /* long name of milter option */
1562 unsigned char mo_code; /* code for option */
1565 { "macros.connect", SMFIM_CONNECT },
1566 { "macros.helo", SMFIM_HELO },
1567 { "macros.envfrom", SMFIM_ENVFROM },
1568 { "macros.envrcpt", SMFIM_ENVRCPT },
1569 { "macros.data", SMFIM_DATA },
1570 { "macros.eom", SMFIM_EOM },
1571 { "macros.eoh", SMFIM_EOH },
1573 # define MO_LOGLEVEL 0x07
1574 { "loglevel", MO_LOGLEVEL },
1575 # if _FFR_MAXDATASIZE || _FFR_MDS_NEGOTIATE
1576 # define MO_MAXDATASIZE 0x08
1577 { "maxdatasize", MO_MAXDATASIZE },
1579 { NULL, (unsigned char)-1 },
1583 milter_set_option(name, val, sticky)
1589 struct milteropt *mo;
1590 char **macros = NULL;
1593 if (tTd(37, 2) || tTd(64, 5))
1594 sm_dprintf("milter_set_option(%s = %s)", name, val);
1598 syserr("milter_set_option: invalid Milter option, must specify suboption");
1602 for (mo = MilterOptTab; mo->mo_name != NULL; mo++)
1604 if (sm_strcasecmp(mo->mo_name, name) == 0)
1608 if (mo->mo_name == NULL)
1610 syserr("milter_set_option: invalid Milter option %s", name);
1615 ** See if this option is preset for us.
1618 if (!sticky && bitnset(mo->mo_code, StickyMilterOpt))
1620 if (tTd(37, 2) || tTd(64,5))
1621 sm_dprintf(" (ignored)\n");
1625 if (tTd(37, 2) || tTd(64,5))
1628 switch (mo->mo_code)
1631 MilterLogLevel = atoi(val);
1634 # if _FFR_MAXDATASIZE || _FFR_MDS_NEGOTIATE
1635 case MO_MAXDATASIZE:
1636 # if _FFR_MDS_NEGOTIATE
1637 MilterMaxDataSize = (size_t)atol(val);
1638 if (MilterMaxDataSize != MILTER_MDS_64K &&
1639 MilterMaxDataSize != MILTER_MDS_256K &&
1640 MilterMaxDataSize != MILTER_MDS_1M)
1642 sm_syslog(LOG_WARNING, NOQID,
1643 "WARNING: Milter.%s=%lu, allowed are only %d, %d, and %d",
1644 name, (unsigned long) MilterMaxDataSize,
1645 MILTER_MDS_64K, MILTER_MDS_256K,
1647 if (MilterMaxDataSize < MILTER_MDS_64K)
1648 MilterMaxDataSize = MILTER_MDS_64K;
1649 else if (MilterMaxDataSize < MILTER_MDS_256K)
1650 MilterMaxDataSize = MILTER_MDS_256K;
1652 MilterMaxDataSize = MILTER_MDS_1M;
1654 # endif /* _FFR_MDS_NEGOTIATE */
1656 # endif /* _FFR_MAXDATASIZE || _FFR_MDS_NEGOTIATE */
1665 macros = MilterMacros[mo->mo_code][0];
1667 r = milter_set_macros(name, macros, val, nummac);
1673 syserr("milter_set_option: invalid Milter option %s", name);
1677 setbitn(mo->mo_code, StickyMilterOpt);
1681 ** MILTER_REOPEN_DF -- open & truncate the data file (for replbody)
1684 ** e -- current envelope.
1687 ** 0 if successful, -1 otherwise
1694 char dfname[MAXPATHLEN];
1696 (void) sm_strlcpy(dfname, queuename(e, DATAFL_LETTER), sizeof(dfname));
1699 ** In SuperSafe == SAFE_REALLY mode, e->e_dfp is a read-only FP so
1700 ** close and reopen writable (later close and reopen
1701 ** read only again).
1703 ** In SuperSafe != SAFE_REALLY mode, e->e_dfp still points at the
1704 ** buffered file I/O descriptor, still open for writing so there
1705 ** isn't any work to do here (except checking for consistency).
1708 if (SuperSafe == SAFE_REALLY)
1710 /* close read-only data file */
1711 if (bitset(EF_HAS_DF, e->e_flags) && e->e_dfp != NULL)
1713 (void) sm_io_close(e->e_dfp, SM_TIME_DEFAULT);
1714 e->e_flags &= ~EF_HAS_DF;
1718 if ((e->e_dfp = sm_io_open(SmFtStdio, SM_TIME_DEFAULT, dfname,
1719 SM_IO_RDWR_B, NULL)) == NULL)
1721 MILTER_DF_ERROR("milter_reopen_df: sm_io_open %s: %s");
1725 else if (e->e_dfp == NULL)
1727 /* shouldn't happen */
1729 MILTER_DF_ERROR("milter_reopen_df: NULL e_dfp (%s: %s)");
1736 ** MILTER_RESET_DF -- re-open read-only the data file (for replbody)
1739 ** e -- current envelope.
1742 ** 0 if successful, -1 otherwise
1750 char dfname[MAXPATHLEN];
1752 (void) sm_strlcpy(dfname, queuename(e, DATAFL_LETTER), sizeof(dfname));
1754 if (sm_io_flush(e->e_dfp, SM_TIME_DEFAULT) != 0 ||
1755 sm_io_error(e->e_dfp))
1757 MILTER_DF_ERROR("milter_reset_df: error writing/flushing %s: %s");
1760 else if (SuperSafe != SAFE_REALLY)
1762 /* skip next few clauses */
1765 else if ((afd = sm_io_getinfo(e->e_dfp, SM_IO_WHAT_FD, NULL)) >= 0
1768 MILTER_DF_ERROR("milter_reset_df: error sync'ing %s: %s");
1771 else if (sm_io_close(e->e_dfp, SM_TIME_DEFAULT) < 0)
1773 MILTER_DF_ERROR("milter_reset_df: error closing %s: %s");
1776 else if ((e->e_dfp = sm_io_open(SmFtStdio, SM_TIME_DEFAULT, dfname,
1777 SM_IO_RDONLY_B, NULL)) == NULL)
1779 MILTER_DF_ERROR("milter_reset_df: error reopening %s: %s");
1783 e->e_flags |= EF_HAS_DF;
1788 ** MILTER_QUIT_FILTER -- close down a single filter
1791 ** m -- milter structure of filter to close down.
1792 ** e -- current envelope.
1799 milter_quit_filter(m, e)
1804 sm_dprintf("milter_quit_filter(%s)\n", m->mf_name);
1805 if (MilterLogLevel > 18)
1806 sm_syslog(LOG_INFO, e->e_id, "Milter (%s): quit filter",
1809 /* Never replace error state */
1810 if (m->mf_state == SMFS_ERROR)
1813 if (m->mf_sock < 0 ||
1814 m->mf_state == SMFS_CLOSED ||
1815 m->mf_state == SMFS_READY)
1818 m->mf_state = SMFS_CLOSED;
1822 (void) milter_write(m, SMFIC_QUIT, (char *) NULL, 0,
1823 m->mf_timeout[SMFTO_WRITE], e, "quit_filter");
1824 if (m->mf_sock >= 0)
1826 (void) close(m->mf_sock);
1829 if (m->mf_state != SMFS_ERROR)
1830 m->mf_state = SMFS_CLOSED;
1834 ** MILTER_ABORT_FILTER -- tell filter to abort current message
1837 ** m -- milter structure of filter to abort.
1838 ** e -- current envelope.
1845 milter_abort_filter(m, e)
1850 sm_dprintf("milter_abort_filter(%s)\n", m->mf_name);
1851 if (MilterLogLevel > 10)
1852 sm_syslog(LOG_INFO, e->e_id, "Milter (%s): abort filter",
1855 if (m->mf_sock < 0 ||
1856 m->mf_state != SMFS_INMSG)
1859 (void) milter_write(m, SMFIC_ABORT, (char *) NULL, 0,
1860 m->mf_timeout[SMFTO_WRITE], e, "abort_filter");
1861 if (m->mf_state != SMFS_ERROR)
1862 m->mf_state = SMFS_DONE;
1866 ** MILTER_SEND_MACROS -- provide macros to the filters
1869 ** m -- milter to send macros to.
1870 ** macros -- macros to send for filter smfi_getsymval().
1871 ** cmd -- which command the macros are associated with.
1872 ** e -- current envelope (for macro access).
1879 milter_send_macros(m, macros, cmd, e)
1887 char command = (char) cmd;
1894 if (macros == NULL || macros[0] == NULL)
1897 /* put together data */
1898 s = 1; /* for the command character */
1899 for (i = 0; macros[i] != NULL; i++)
1901 mid = macid(macros[i]);
1904 v = macvalue(mid, e);
1907 expand(v, exp, sizeof(exp), e);
1908 s += strlen(macros[i]) + 1 + strlen(exp) + 1;
1914 buf = (char *) xalloc(s);
1917 for (i = 0; macros[i] != NULL; i++)
1919 mid = macid(macros[i]);
1922 v = macvalue(mid, e);
1925 expand(v, exp, sizeof(exp), e);
1928 sm_dprintf("milter_send_macros(%s, %c): %s=%s\n",
1929 m->mf_name, command, macros[i], exp);
1931 (void) sm_strlcpy(bp, macros[i], s - (bp - buf));
1932 bp += strlen(bp) + 1;
1933 (void) sm_strlcpy(bp, exp, s - (bp - buf));
1934 bp += strlen(bp) + 1;
1936 (void) milter_write(m, SMFIC_MACRO, buf, s,
1937 m->mf_timeout[SMFTO_WRITE], e, "send_macros");
1942 ** MILTER_SEND_COMMAND -- send a command and return the response for a filter
1945 ** m -- current milter filter
1946 ** cmd -- command to send.
1947 ** data -- optional command data.
1948 ** sz -- length of buf.
1949 ** e -- current envelope (for e->e_id).
1950 ** state -- return state word.
1953 ** response string (may be NULL)
1957 milter_send_command(m, cmd, data, sz, e, state, where)
1968 unsigned long skipflag;
1969 unsigned long norespflag = 0;
1970 char command = (char) cmd;
1976 sm_dprintf("milter_send_command(%s): cmd %c len %ld\n",
1977 m->mf_name, (char) command, (long) sz);
1979 /* find skip flag and default failure */
1983 skipflag = SMFIP_NOCONNECT;
1984 norespflag = SMFIP_NR_CONN;
1986 defresponse = "554 Command rejected";
1990 skipflag = SMFIP_NOHELO;
1991 norespflag = SMFIP_NR_HELO;
1993 defresponse = "550 Command rejected";
1997 skipflag = SMFIP_NOMAIL;
1998 norespflag = SMFIP_NR_MAIL;
2000 defresponse = "550 5.7.1 Command rejected";
2004 skipflag = SMFIP_NORCPT;
2005 norespflag = SMFIP_NR_RCPT;
2007 defresponse = "550 5.7.1 Command rejected";
2011 skipflag = SMFIP_NOHDRS;
2012 norespflag = SMFIP_NR_HDR;
2014 defresponse = "550 5.7.1 Command rejected";
2018 skipflag = SMFIP_NOBODY;
2019 norespflag = SMFIP_NR_BODY;
2021 defresponse = "554 5.7.1 Command rejected";
2025 skipflag = SMFIP_NOEOH;
2026 norespflag = SMFIP_NR_EOH;
2028 defresponse = "550 5.7.1 Command rejected";
2032 skipflag = SMFIP_NOUNKNOWN;
2033 norespflag = SMFIP_NR_UNKN;
2035 defresponse = "550 5.7.1 Command rejected";
2039 skipflag = SMFIP_NODATA;
2040 norespflag = SMFIP_NR_DATA;
2042 defresponse = "550 5.7.1 Command rejected";
2050 /* NOTE: not handled by milter_send_command() */
2056 defresponse = "550 5.7.1 Command rejected";
2061 sm_dprintf("milter_send_command(%s): skip=%lx, pflags=%x\n",
2062 m->mf_name, skipflag, m->mf_pflags);
2064 /* check if filter wants this command */
2065 if (skipflag != 0 && bitset(skipflag, m->mf_pflags))
2068 /* send the command to the filter */
2069 (void) milter_write(m, command, data, sz,
2070 m->mf_timeout[SMFTO_WRITE], e, where);
2071 if (m->mf_state == SMFS_ERROR)
2073 MILTER_CHECK_ERROR(false, return NULL);
2077 /* check if filter sends response to this command */
2078 if (norespflag != 0 && bitset(norespflag, m->mf_pflags))
2081 /* get the response from the filter */
2082 response = milter_read(m, &rcmd, &rlen,
2083 m->mf_timeout[SMFTO_READ], e, where);
2084 if (m->mf_state == SMFS_ERROR)
2086 MILTER_CHECK_ERROR(false, return NULL);
2091 sm_dprintf("milter_send_command(%s): returned %c\n",
2092 m->mf_name, (char) rcmd);
2096 case SMFIR_REPLYCODE:
2097 MILTER_CHECK_REPLYCODE(defresponse);
2098 if (MilterLogLevel > 10)
2099 sm_syslog(LOG_INFO, e->e_id,
2100 "milter=%s, action=%s, reject=%s",
2101 m->mf_name, action, response);
2106 if (MilterLogLevel > 10)
2107 sm_syslog(LOG_INFO, e->e_id,
2108 "milter=%s, action=%s, reject",
2109 m->mf_name, action);
2114 if (MilterLogLevel > 10)
2115 sm_syslog(LOG_INFO, e->e_id,
2116 "milter=%s, action=%s, discard",
2117 m->mf_name, action);
2121 case SMFIR_TEMPFAIL:
2122 if (MilterLogLevel > 10)
2123 sm_syslog(LOG_INFO, e->e_id,
2124 "milter=%s, action=%s, tempfail",
2125 m->mf_name, action);
2130 /* this filter is done with message/connection */
2131 if (command == SMFIC_HELO ||
2132 command == SMFIC_CONNECT)
2133 m->mf_state = SMFS_CLOSABLE;
2135 m->mf_state = SMFS_DONE;
2136 if (MilterLogLevel > 10)
2137 sm_syslog(LOG_INFO, e->e_id,
2138 "milter=%s, action=%s, accepted",
2139 m->mf_name, action);
2142 case SMFIR_CONTINUE:
2143 /* if MAIL command is ok, filter is in message state */
2144 if (command == SMFIC_MAIL)
2145 m->mf_state = SMFS_INMSG;
2146 if (MilterLogLevel > 12)
2147 sm_syslog(LOG_INFO, e->e_id,
2148 "milter=%s, action=%s, continue",
2149 m->mf_name, action);
2153 if (MilterLogLevel > 12)
2154 sm_syslog(LOG_INFO, e->e_id,
2155 "milter=%s, action=%s, skip",
2156 m->mf_name, action);
2157 m->mf_state = SMFS_SKIP;
2161 /* Invalid response to command */
2162 if (MilterLogLevel > 0)
2163 sm_syslog(LOG_ERR, e->e_id,
2164 "milter_send_command(%s): action=%s returned bogus response %c",
2165 m->mf_name, action, rcmd);
2166 milter_error(m, e); /* NO ERROR CHECK? */
2170 if (*state != SMFIR_REPLYCODE && response != NULL)
2172 sm_free(response); /* XXX */
2179 ** MILTER_COMMAND -- send a command and return the response for each filter
2182 ** cmd -- command to send.
2183 ** data -- optional command data.
2184 ** sz -- length of buf.
2185 ** stage -- index of macros to send for filter smfi_getsymval().
2186 ** e -- current envelope (for macro access).
2187 ** state -- return state word.
2188 ** where -- description of calling function (logging).
2189 ** cmd_error -- did the SMTP command cause an error?
2192 ** response string (may be NULL)
2196 milter_command(cmd, data, sz, stage, e, state, where, cmd_error)
2207 char command = (char) cmd;
2208 char *response = NULL;
2212 sm_dprintf("milter_command: cmd %c len %ld\n",
2213 command, (long) sz);
2215 *state = SMFIR_CONTINUE;
2216 for (i = 0; InputFilters[i] != NULL; i++)
2218 struct milter *m = InputFilters[i];
2220 /* previous problem? */
2221 if (m->mf_state == SMFS_ERROR)
2223 MILTER_CHECK_ERROR(false, continue);
2228 if (m->mf_sock < 0 ||
2229 (m->mf_state != SMFS_OPEN && m->mf_state != SMFS_INMSG))
2232 if (stage >= SMFIM_FIRST && stage <= SMFIM_LAST)
2237 if ((m->mf_lflags & MI_LFLAGS_SYM(stage)) != 0)
2241 SM_ASSERT(idx >= 0 && idx <= MAXFILTERS);
2242 macros = MilterMacros[stage][idx];
2244 /* send macros (regardless of whether we send cmd) */
2245 if (macros != NULL && macros[0] != NULL)
2247 milter_send_macros(m, macros, command, e);
2248 if (m->mf_state == SMFS_ERROR)
2250 MILTER_CHECK_ERROR(false, continue);
2256 if (MilterLogLevel > 21)
2260 ** send the command if
2261 ** there is no error
2262 ** or it's RCPT and the client asked for it:
2264 ** where == "rcpt" && m->mf_pflags & SMFIP_RCPT_REJ != 0
2265 ** negate that condition and use continue
2269 (strcmp(where, "rcpt") != 0 ||
2270 (m->mf_pflags & SMFIP_RCPT_REJ) == 0))
2273 response = milter_send_command(m, command, data, sz, e, state,
2276 if (MilterLogLevel > 21)
2278 /* log the time it took for the command per filter */
2279 sm_syslog(LOG_INFO, e->e_id,
2280 "Milter (%s): time command (%c), %d",
2281 m->mf_name, command, (int) (tn - curtime()));
2284 if (*state != SMFIR_CONTINUE)
2290 static int milter_getsymlist __P((struct milter *, char *, int, int));
2293 milter_getsymlist(m, buf, rlen, offset)
2302 SM_ASSERT(m != NULL);
2303 SM_ASSERT(buf != NULL);
2305 while (offset + MILTER_LEN_BYTES < rlen)
2311 (void) memcpy((char *) &v, buf + offset, MILTER_LEN_BYTES);
2313 if (i < SMFIM_FIRST || i > SMFIM_LAST)
2315 offset += MILTER_LEN_BYTES;
2318 #define SM_M_MACRO_NAME(i) (((i) < SM_ARRAY_SIZE(MilterOptTab) && (i) >= 0) \
2319 ? MilterOptTab[i].mo_name : "?")
2329 SM_ASSERT(m->mf_idx > 0 && m->mf_idx < MAXFILTERS);
2330 macros = MilterMacros[i][m->mf_idx];
2331 m->mf_lflags |= MI_LFLAGS_SYM(i);
2332 len = strlen(buf + offset);
2333 r = milter_set_macros(m->mf_name, macros, buf + offset,
2338 sm_dprintf("milter_getsymlist(%s, %s, \"%s\")=%d\n",
2339 m->mf_name, SM_M_MACRO_NAME(i),
2353 ** MILTER_NEGOTIATE -- get version and flags from filter
2356 ** m -- milter filter structure.
2357 ** e -- current envelope.
2358 ** milters -- milters structure.
2361 ** 0 on success, -1 otherwise
2365 milter_negotiate(m, e, milters)
2371 mi_int32 fvers, fflags, pflags;
2372 mi_int32 mta_prot_vers, mta_prot_flags, mta_actions;
2375 char data[MILTER_OPTLEN];
2378 if (m->mf_sock < 0 || m->mf_state != SMFS_OPEN)
2380 if (MilterLogLevel > 0)
2381 sm_syslog(LOG_ERR, e->e_id,
2382 "Milter (%s): negotiate, impossible state",
2388 #if _FFR_MILTER_CHECK
2389 mta_prot_vers = m->mf_mta_prot_version;
2390 mta_prot_flags = m->mf_mta_prot_flags;
2391 mta_actions = m->mf_mta_actions;
2392 #else /* _FFR_MILTER_CHECK */
2393 mta_prot_vers = SMFI_PROT_VERSION;
2394 mta_prot_flags = SMFI_CURR_PROT;
2395 mta_actions = SMFI_CURR_ACTS;
2396 #endif /* _FFR_MILTER_CHECK */
2397 #if _FFR_MDS_NEGOTIATE
2398 if (MilterMaxDataSize == MILTER_MDS_256K)
2399 mta_prot_flags |= SMFIP_MDS_256K;
2400 else if (MilterMaxDataSize == MILTER_MDS_1M)
2401 mta_prot_flags |= SMFIP_MDS_1M;
2402 #endif /* _FFR_MDS_NEGOTIATE */
2404 fvers = htonl(mta_prot_vers);
2405 pflags = htonl(mta_prot_flags);
2406 fflags = htonl(mta_actions);
2407 (void) memcpy(data, (char *) &fvers, MILTER_LEN_BYTES);
2408 (void) memcpy(data + MILTER_LEN_BYTES,
2409 (char *) &fflags, MILTER_LEN_BYTES);
2410 (void) memcpy(data + (MILTER_LEN_BYTES * 2),
2411 (char *) &pflags, MILTER_LEN_BYTES);
2412 (void) milter_write(m, SMFIC_OPTNEG, data, sizeof(data),
2413 m->mf_timeout[SMFTO_WRITE], e, "negotiate");
2415 if (m->mf_state == SMFS_ERROR)
2419 sm_dprintf("milter_negotiate(%s): send: version %lu, fflags 0x%lx, pflags 0x%lx\n",
2420 m->mf_name, (unsigned long) ntohl(fvers),
2421 (unsigned long) ntohl(fflags),
2422 (unsigned long) ntohl(pflags));
2424 response = milter_read(m, &rcmd, &rlen, m->mf_timeout[SMFTO_READ], e,
2426 if (m->mf_state == SMFS_ERROR)
2429 if (rcmd != SMFIC_OPTNEG)
2432 sm_dprintf("milter_negotiate(%s): returned %c instead of %c\n",
2433 m->mf_name, rcmd, SMFIC_OPTNEG);
2434 if (MilterLogLevel > 0)
2435 sm_syslog(LOG_ERR, e->e_id,
2436 "Milter (%s): negotiate: returned %c instead of %c",
2437 m->mf_name, rcmd, SMFIC_OPTNEG);
2443 /* Make sure we have enough bytes for the version */
2444 if (response == NULL || rlen < MILTER_LEN_BYTES)
2447 sm_dprintf("milter_negotiate(%s): did not return valid info\n",
2449 if (MilterLogLevel > 0)
2450 sm_syslog(LOG_ERR, e->e_id,
2451 "Milter (%s): negotiate: did not return valid info",
2458 /* extract information */
2459 (void) memcpy((char *) &fvers, response, MILTER_LEN_BYTES);
2461 /* Now make sure we have enough for the feature bitmap */
2462 if (rlen < MILTER_OPTLEN)
2465 sm_dprintf("milter_negotiate(%s): did not return enough info\n",
2467 if (MilterLogLevel > 0)
2468 sm_syslog(LOG_ERR, e->e_id,
2469 "Milter (%s): negotiate: did not return enough info",
2476 (void) memcpy((char *) &fflags, response + MILTER_LEN_BYTES,
2478 (void) memcpy((char *) &pflags, response + (MILTER_LEN_BYTES * 2),
2481 m->mf_fvers = ntohl(fvers);
2482 m->mf_fflags = ntohl(fflags);
2483 m->mf_pflags = ntohl(pflags);
2485 /* check for version compatibility */
2486 if (m->mf_fvers == 1 ||
2487 m->mf_fvers > SMFI_VERSION)
2490 sm_dprintf("milter_negotiate(%s): version %d != MTA milter version %d\n",
2491 m->mf_name, m->mf_fvers, SMFI_VERSION);
2492 if (MilterLogLevel > 0)
2493 sm_syslog(LOG_ERR, e->e_id,
2494 "Milter (%s): negotiate: version %d != MTA milter version %d",
2495 m->mf_name, m->mf_fvers, SMFI_VERSION);
2500 /* check for filter feature mismatch */
2501 if ((m->mf_fflags & mta_actions) != m->mf_fflags)
2504 sm_dprintf("milter_negotiate(%s): filter abilities 0x%x != MTA milter abilities 0x%lx\n",
2505 m->mf_name, m->mf_fflags,
2506 (unsigned long) mta_actions);
2507 if (MilterLogLevel > 0)
2508 sm_syslog(LOG_ERR, e->e_id,
2509 "Milter (%s): negotiate: filter abilities 0x%x != MTA milter abilities 0x%lx",
2510 m->mf_name, m->mf_fflags,
2511 (unsigned long) mta_actions);
2516 #if _FFR_MDS_NEGOTIATE
2517 #define MDSWARNING(sz) \
2520 sm_syslog(LOG_WARNING, NOQID, \
2521 "WARNING: Milter.maxdatasize: configured=%lu, set by milter(%s)=%d", \
2522 (unsigned long) MilterMaxDataSize, m->mf_name, sz); \
2523 MilterMaxDataSize = sz; \
2526 /* use a table instead of sequence? */
2527 if (bitset(SMFIP_MDS_1M, m->mf_pflags))
2529 if (MilterMaxDataSize != MILTER_MDS_1M)
2530 MDSWARNING(MILTER_MDS_1M);
2532 else if (bitset(SMFIP_MDS_256K, m->mf_pflags))
2534 if (MilterMaxDataSize != MILTER_MDS_256K)
2535 MDSWARNING(MILTER_MDS_256K);
2539 ** Note: it is not possible to distinguish between
2540 ** - milter requested 64K
2541 ** - milter did not request anything
2542 ** as there is no SMFIP_MDS_64K flag.
2545 else if (MilterMaxDataSize != MILTER_MDS_64K)
2546 MDSWARNING(MILTER_MDS_64K);
2547 m->mf_pflags &= ~SMFI_INTERNAL;
2548 #endif /* _FFR_MDS_NEGOTIATE */
2550 /* check for protocol feature mismatch */
2551 if ((m->mf_pflags & mta_prot_flags) != m->mf_pflags)
2554 sm_dprintf("milter_negotiate(%s): protocol abilities 0x%x != MTA milter abilities 0x%lx\n",
2555 m->mf_name, m->mf_pflags,
2556 (unsigned long) mta_prot_flags);
2557 if (MilterLogLevel > 0)
2558 sm_syslog(LOG_ERR, e->e_id,
2559 "Milter (%s): negotiate: protocol abilities 0x%x != MTA milter abilities 0x%lx",
2560 m->mf_name, m->mf_pflags,
2561 (unsigned long) mta_prot_flags);
2566 if (m->mf_fvers <= 2)
2567 m->mf_pflags |= SMFIP_NOUNKNOWN;
2568 if (m->mf_fvers <= 3)
2569 m->mf_pflags |= SMFIP_NODATA;
2571 if (rlen > MILTER_OPTLEN)
2573 milter_getsymlist(m, response, rlen, MILTER_OPTLEN);
2576 if (bitset(SMFIF_DELRCPT, m->mf_fflags))
2577 milters->mis_flags |= MIS_FL_DEL_RCPT;
2578 if (!bitset(SMFIP_NORCPT, m->mf_pflags) &&
2579 !bitset(SMFIP_NR_RCPT, m->mf_pflags))
2580 milters->mis_flags |= MIS_FL_REJ_RCPT;
2583 sm_dprintf("milter_negotiate(%s): received: version %u, fflags 0x%x, pflags 0x%x\n",
2584 m->mf_name, m->mf_fvers, m->mf_fflags, m->mf_pflags);
2594 ** MILTER_PER_CONNECTION_CHECK -- checks on per-connection commands
2596 ** Reduce code duplication by putting these checks in one place
2599 ** e -- current envelope.
2606 milter_per_connection_check(e)
2611 /* see if we are done with any of the filters */
2612 for (i = 0; InputFilters[i] != NULL; i++)
2614 struct milter *m = InputFilters[i];
2616 if (m->mf_state == SMFS_CLOSABLE)
2617 milter_quit_filter(m, e);
2622 ** MILTER_ERROR -- Put a milter filter into error state
2625 ** m -- the broken filter.
2626 ** e -- current envelope.
2638 ** We could send a quit here but we may have gotten here due to
2639 ** an I/O error so we don't want to try to make things worse.
2642 if (m->mf_sock >= 0)
2644 (void) close(m->mf_sock);
2647 m->mf_state = SMFS_ERROR;
2649 if (MilterLogLevel > 0)
2650 sm_syslog(LOG_INFO, e->e_id, "Milter (%s): to error state",
2655 ** MILTER_HEADERS -- send headers to a single milter filter
2658 ** m -- current filter.
2659 ** e -- current envelope.
2660 ** state -- return state from response.
2663 ** response string (may be NULL)
2667 milter_headers(m, e, state)
2672 char *response = NULL;
2675 if (MilterLogLevel > 17)
2676 sm_syslog(LOG_INFO, e->e_id, "Milter (%s): headers, send",
2679 for (h = e->e_header; h != NULL; h = h->h_link)
2681 int len_n, len_v, len_t, len_f;
2684 /* don't send over deleted headers */
2685 if (h->h_value == NULL)
2687 /* strip H_USER so not counted in milter_changeheader() */
2688 h->h_flags &= ~H_USER;
2692 /* skip auto-generated */
2693 if (!bitset(H_USER, h->h_flags))
2697 sm_dprintf("milter_headers: %s:%s\n",
2698 h->h_field, h->h_value);
2699 if (MilterLogLevel > 21)
2700 sm_syslog(LOG_INFO, e->e_id, "Milter (%s): header, %s",
2701 m->mf_name, h->h_field);
2703 if (bitset(SMFIP_HDR_LEADSPC, m->mf_pflags)
2704 || *(h->h_value) != ' ')
2707 hv = h->h_value + 1;
2708 len_f = strlen(h->h_field) + 1;
2709 len_t = len_f + strlen(hv) + 1;
2712 buf = (char *) xalloc(len_t);
2715 ** Note: currently the call to dequote_internal_chars()
2716 ** is not required as h_field is supposed to be 7-bit US-ASCII.
2719 len_n = dequote_internal_chars(h->h_field, buf, len_f);
2720 SM_ASSERT(len_n < len_f);
2721 len_v = dequote_internal_chars(hv, buf + len_n + 1,
2723 SM_ASSERT(len_t >= len_n + 1 + len_v + 1);
2724 len_t = len_n + 1 + len_v + 1;
2727 response = milter_send_command(m, SMFIC_HEADER, buf,
2728 len_t, e, state, "header");
2730 if (m->mf_state == SMFS_ERROR ||
2731 m->mf_state == SMFS_DONE ||
2732 *state != SMFIR_CONTINUE)
2735 if (MilterLogLevel > 17)
2736 sm_syslog(LOG_INFO, e->e_id, "Milter (%s): headers, sent",
2742 ** MILTER_BODY -- send the body to a filter
2745 ** m -- current filter.
2746 ** e -- current envelope.
2747 ** state -- return state from response.
2750 ** response string (may be NULL)
2754 milter_body(m, e, state)
2759 char bufchar = '\0';
2760 char prevchar = '\0';
2762 char *response = NULL;
2764 char buf[MILTER_CHUNK_SIZE];
2767 sm_dprintf("milter_body\n");
2769 if (bfrewind(e->e_dfp) < 0)
2771 ExitStat = EX_IOERR;
2772 *state = SMFIR_TEMPFAIL;
2773 syserr("milter_body: %s/%cf%s: rewind error",
2774 qid_printqueue(e->e_qgrp, e->e_qdir),
2775 DATAFL_LETTER, e->e_id);
2779 if (MilterLogLevel > 17)
2780 sm_syslog(LOG_INFO, e->e_id, "Milter (%s): body, send",
2783 while ((c = sm_io_getc(e->e_dfp, SM_TIME_DEFAULT)) != SM_IO_EOF)
2785 /* Change LF to CRLF */
2788 #if !_FFR_MILTER_CONVERT_ALL_LF_TO_CRLF
2789 /* Not a CRLF already? */
2790 if (prevchar != '\r')
2793 /* Room for CR now? */
2794 if (bp + 2 > &buf[sizeof(buf)])
2796 /* No room, buffer LF */
2799 /* and send CR now */
2804 /* Room to do it now */
2812 if (bp >= &buf[sizeof(buf)])
2815 response = milter_send_command(m, SMFIC_BODY, buf,
2819 if (bufchar != '\0')
2826 if (m->mf_state == SMFS_ERROR ||
2827 m->mf_state == SMFS_DONE ||
2828 m->mf_state == SMFS_SKIP ||
2829 *state != SMFIR_CONTINUE)
2833 /* check for read errors */
2834 if (sm_io_error(e->e_dfp))
2836 ExitStat = EX_IOERR;
2837 if (*state == SMFIR_CONTINUE ||
2838 *state == SMFIR_ACCEPT ||
2839 m->mf_state == SMFS_SKIP)
2841 *state = SMFIR_TEMPFAIL;
2842 if (response != NULL)
2844 sm_free(response); /* XXX */
2848 syserr("milter_body: %s/%cf%s: read error",
2849 qid_printqueue(e->e_qgrp, e->e_qdir),
2850 DATAFL_LETTER, e->e_id);
2854 /* send last body chunk */
2856 m->mf_state != SMFS_ERROR &&
2857 m->mf_state != SMFS_DONE &&
2858 m->mf_state != SMFS_SKIP &&
2859 *state == SMFIR_CONTINUE)
2862 response = milter_send_command(m, SMFIC_BODY, buf, bp - buf,
2863 e, state, "last body chunk");
2866 if (MilterLogLevel > 17)
2867 sm_syslog(LOG_INFO, e->e_id, "Milter (%s): body, sent",
2869 if (m->mf_state == SMFS_SKIP)
2871 *state = SMFIR_CONTINUE;
2872 m->mf_state = SMFS_READY;
2883 ** ADDLEADINGSPACE -- Add a leading space to a string
2887 ** rp -- resource pool for allocations
2890 ** pointer to new string
2893 static char *addleadingspace __P((char *, SM_RPOOL_T *));
2896 addleadingspace(str, rp)
2903 SM_ASSERT(str != NULL);
2905 SM_ASSERT(l + 2 > l);
2906 new = sm_rpool_malloc_x(rp, l + 2);
2909 sm_strlcpy(new + 1, str, l + 1);
2914 ** MILTER_ADDHEADER -- Add the supplied header to the message
2917 ** m -- current filter.
2918 ** response -- encoded form of header/value.
2919 ** rlen -- length of response.
2920 ** e -- current envelope.
2927 milter_addheader(m, response, rlen, e)
2934 char *val, *mh_value;
2938 sm_dprintf("milter_addheader: ");
2941 if (response == NULL)
2944 sm_dprintf("NULL response\n");
2948 if (rlen < 2 || strlen(response) + 1 >= (size_t) rlen)
2951 sm_dprintf("didn't follow protocol (total len %d != rlen %d)\n",
2952 (int) strlen(response), (int) (rlen - 1));
2956 /* Find separating NUL */
2957 val = response + strlen(response) + 1;
2959 /* another sanity check */
2960 if (strlen(response) + strlen(val) + 2 != (size_t) rlen)
2963 sm_dprintf("didn't follow protocol (part len)\n");
2967 if (*response == '\0')
2970 sm_dprintf("empty field name\n");
2974 for (h = e->e_header; h != NULL; h = h->h_link)
2976 if (sm_strcasecmp(h->h_field, response) == 0 &&
2977 !bitset(H_USER, h->h_flags) &&
2978 !bitset(H_TRACE, h->h_flags))
2983 mh_value = quote_internal_chars(val, NULL, &mh_v_len);
2985 /* add to e_msgsize */
2986 e->e_msgsize += strlen(response) + 2 + strlen(val);
2991 sm_dprintf("Replace default header %s value with %s\n",
2992 h->h_field, mh_value);
2993 if (MilterLogLevel > 8)
2994 sm_syslog(LOG_INFO, e->e_id,
2995 "Milter (%s) change: default header %s value with %s",
2996 m->mf_name, h->h_field, mh_value);
2997 if (bitset(SMFIP_HDR_LEADSPC, m->mf_pflags))
2998 h->h_value = mh_value;
3001 h->h_value = addleadingspace(mh_value, e->e_rpool);
3004 h->h_flags |= H_USER;
3009 sm_dprintf("Add %s: %s\n", response, mh_value);
3010 if (MilterLogLevel > 8)
3011 sm_syslog(LOG_INFO, e->e_id,
3012 "Milter (%s) add: header: %s: %s",
3013 m->mf_name, response, mh_value);
3014 addheader(newstr(response), mh_value, H_USER, e,
3015 !bitset(SMFIP_HDR_LEADSPC, m->mf_pflags));
3021 ** MILTER_INSHEADER -- Insert the supplied header
3024 ** m -- current filter.
3025 ** response -- encoded form of header/value.
3026 ** rlen -- length of response.
3027 ** e -- current envelope.
3033 ** Unlike milter_addheader(), this does not attempt to determine
3034 ** if the header already exists in the envelope, even a
3035 ** deleted version. It just blindly inserts.
3039 milter_insheader(m, response, rlen, e)
3047 char *field, *val, *mh_value;
3050 sm_dprintf("milter_insheader: ");
3053 if (response == NULL)
3056 sm_dprintf("NULL response\n");
3060 if (rlen < 2 || strlen(response) + 1 >= (size_t) rlen)
3063 sm_dprintf("didn't follow protocol (total len)\n");
3068 (void) memcpy((char *) &i, response, MILTER_LEN_BYTES);
3070 field = response + MILTER_LEN_BYTES;
3071 val = field + strlen(field) + 1;
3073 /* another sanity check */
3074 if (MILTER_LEN_BYTES + strlen(field) + 1 +
3075 strlen(val) + 1 != (size_t) rlen)
3078 sm_dprintf("didn't follow protocol (part len)\n");
3085 sm_dprintf("empty field name\n");
3089 /* add to e_msgsize */
3090 e->e_msgsize += strlen(response) + 2 + strlen(val);
3093 sm_dprintf("Insert (%d) %s: %s\n", idx, field, val);
3094 if (MilterLogLevel > 8)
3095 sm_syslog(LOG_INFO, e->e_id,
3096 "Milter (%s) insert (%d): header: %s: %s",
3097 m->mf_name, idx, field, val);
3099 mh_value = quote_internal_chars(val, NULL, &mh_v_len);
3100 insheader(idx, newstr(field), mh_value, H_USER, e,
3101 !bitset(SMFIP_HDR_LEADSPC, m->mf_pflags));
3106 ** MILTER_CHANGEHEADER -- Change the supplied header in the message
3109 ** m -- current filter.
3110 ** response -- encoded form of header/index/value.
3111 ** rlen -- length of response.
3112 ** e -- current envelope.
3119 milter_changeheader(m, response, rlen, e)
3127 char *field, *val, *mh_value;
3131 sm_dprintf("milter_changeheader: ");
3134 if (response == NULL)
3137 sm_dprintf("NULL response\n");
3141 if (rlen < 2 || strlen(response) + 1 >= (size_t) rlen)
3144 sm_dprintf("didn't follow protocol (total len)\n");
3148 /* Find separating NUL */
3149 (void) memcpy((char *) &i, response, MILTER_LEN_BYTES);
3151 field = response + MILTER_LEN_BYTES;
3152 val = field + strlen(field) + 1;
3154 /* another sanity check */
3155 if (MILTER_LEN_BYTES + strlen(field) + 1 +
3156 strlen(val) + 1 != (size_t) rlen)
3159 sm_dprintf("didn't follow protocol (part len)\n");
3166 sm_dprintf("empty field name\n");
3171 mh_value = quote_internal_chars(val, NULL, &mh_v_len);
3174 for (h = e->e_header; h != NULL; h = h->h_link)
3176 if (sm_strcasecmp(h->h_field, field) == 0)
3178 if (bitset(H_USER, h->h_flags) && --index <= 0)
3183 else if (!bitset(H_USER, h->h_flags) &&
3184 !bitset(H_TRACE, h->h_flags))
3188 ** 27. No multiple occurrences of fields
3189 ** (except resent and received).*
3190 ** so make sure we replace any non-trace,
3199 /* if not found as user-provided header at index, use sysheader */
3208 sm_dprintf("Delete (noop) %s\n", field);
3209 if (MilterLogLevel > 8)
3210 sm_syslog(LOG_INFO, e->e_id,
3211 "Milter (%s) delete (noop): header: %s"
3212 , m->mf_name, field);
3216 /* treat modify value with no existing header as add */
3218 sm_dprintf("Add %s: %s\n", field, mh_value);
3219 if (MilterLogLevel > 8)
3220 sm_syslog(LOG_INFO, e->e_id,
3221 "Milter (%s) change (add): header: %s: %s"
3222 , m->mf_name, field, mh_value);
3223 addheader(newstr(field), mh_value, H_USER, e,
3224 !bitset(SMFIP_HDR_LEADSPC, m->mf_pflags));
3234 sm_dprintf("Delete%s %s:%s\n",
3235 h == sysheader ? " (default header)" : "",
3237 h->h_value == NULL ? "<NULL>" : h->h_value);
3241 sm_dprintf("Change%s %s: from %s to %s\n",
3242 h == sysheader ? " (default header)" : "",
3244 h->h_value == NULL ? "<NULL>" : h->h_value,
3249 if (MilterLogLevel > 8)
3253 sm_syslog(LOG_INFO, e->e_id,
3254 "Milter (%s) delete: header%s %s:%s",
3256 h == sysheader ? " (default header)" : "",
3258 h->h_value == NULL ? "<NULL>" : h->h_value);
3262 sm_syslog(LOG_INFO, e->e_id,
3263 "Milter (%s) change: header%s %s: from %s to %s",
3265 h == sysheader ? " (default header)" : "",
3267 h->h_value == NULL ? "<NULL>" : h->h_value,
3272 if (h != sysheader && h->h_value != NULL)
3276 l = strlen(h->h_value);
3277 if (l > e->e_msgsize)
3281 /* rpool, don't free: sm_free(h->h_value); XXX */
3286 /* Remove "Field: " from message size */
3291 l = strlen(h->h_field) + 2;
3292 if (l > e->e_msgsize)
3302 if (bitset(SMFIP_HDR_LEADSPC, m->mf_pflags))
3303 h->h_value = mh_value;
3306 h->h_value = addleadingspace(mh_value, e->e_rpool);
3309 h->h_flags |= H_USER;
3310 e->e_msgsize += strlen(h->h_value);
3315 ** MILTER_SPLIT_RESPONSE -- Split response into fields.
3318 ** response -- encoded repsonse.
3319 ** rlen -- length of response.
3320 ** pargc -- number of arguments (ouput)
3323 ** array of pointers to the individual strings
3326 static char **milter_split_response __P((char *, ssize_t, int *));
3329 milter_split_response(response, rlen, pargc)
3338 SM_ASSERT(response != NULL);
3339 SM_ASSERT(pargc != NULL);
3341 if (rlen < 2 || strlen(response) >= (size_t) rlen)
3344 sm_dprintf("didn't follow protocol (total len %d != rlen %d)\n",
3345 (int) strlen(response), (int) (rlen - 1));
3350 for (i = 0; i < rlen; i++)
3352 if (response[i] == '\0')
3358 /* last entry is only for the name */
3359 s = (char **)malloc((nelem + 1) * (sizeof(*s)));
3363 for (i = 0, elem = 0; i < rlen && elem < nelem; i++)
3365 if (response[i] == '\0')
3371 s[elem] = &(response[i + 1]);
3378 for (elem = 0; elem < nelem; elem++)
3379 sm_dprintf("argv[%d]=\"%s\"\n", elem, s[elem]);
3382 /* overwrite last entry (already done above, just paranoia) */
3388 ** MILTER_CHGFROM -- Change the envelope sender address
3391 ** response -- encoded form of recipient address.
3392 ** rlen -- length of response.
3393 ** e -- current envelope.
3394 ** mname -- name of milter.
3401 milter_chgfrom(response, rlen, e, mname)
3407 int olderrors, argc;
3411 sm_dprintf("milter_chgfrom: ");
3414 if (response == NULL)
3417 sm_dprintf("NULL response\n");
3421 if (*response == '\0' ||
3422 strlen(response) + 1 > (size_t) rlen)
3425 sm_dprintf("didn't follow protocol (total len %d != rlen %d)\n",
3426 (int) strlen(response), (int) (rlen - 1));
3431 sm_dprintf("%s\n", response);
3432 if (MilterLogLevel > 8)
3433 sm_syslog(LOG_INFO, e->e_id, "Milter (%s) chgfrom: %s",
3435 argv = milter_split_response(response, rlen, &argc);
3436 if (argc < 1 || argc > 2)
3439 sm_dprintf("didn't follow protocol argc=%d\n", argc);
3446 setsender(argv[0], e, NULL, '\0', false);
3449 reset_mail_esmtp_args(e);
3452 ** need "features" here: how to get those? via e?
3453 ** "fake" it for now: allow everything.
3456 parse_esmtp_args(e, NULL, argv[0], argv[1], "MAIL", NULL,
3465 ** MILTER_ADDRCPT_PAR -- Add the supplied recipient to the message
3468 ** response -- encoded form of recipient address.
3469 ** rlen -- length of response.
3470 ** e -- current envelope.
3471 ** mname -- name of milter.
3478 milter_addrcpt_par(response, rlen, e, mname)
3484 int olderrors, argc;
3490 sm_dprintf("milter_addrcpt_par: ");
3493 if (response == NULL)
3496 sm_dprintf("NULL response\n");
3501 sm_dprintf("%s\n", response);
3502 if (MilterLogLevel > 8)
3503 sm_syslog(LOG_INFO, e->e_id, "Milter (%s) add: rcpt: %s",
3506 argv = milter_split_response(response, rlen, &argc);
3507 if (argc < 1 || argc > 2)
3510 sm_dprintf("didn't follow protocol argc=%d\n", argc);
3517 /* how to set ESMTP arguments? */
3518 a = parseaddr(argv[0], NULLADDR, RF_COPYALL, ' ', &delimptr, e, true);
3520 if (a != NULL && olderrors == Errors)
3522 parse_esmtp_args(e, a, argv[0], argv[1], "RCPT", NULL,
3524 if (olderrors == Errors)
3525 a = recipient(a, &e->e_sendqueue, 0, e);
3527 sm_dprintf("olderrors=%d, Errors=%d\n",
3532 sm_dprintf("a=%p, olderrors=%d, Errors=%d\n",
3533 (void *)a, olderrors, Errors);
3542 ** MILTER_ADDRCPT -- Add the supplied recipient to the message
3545 ** response -- encoded form of recipient address.
3546 ** rlen -- length of response.
3547 ** e -- current envelope.
3548 ** mname -- name of milter.
3555 milter_addrcpt(response, rlen, e, mname)
3564 sm_dprintf("milter_addrcpt: ");
3567 if (response == NULL)
3570 sm_dprintf("NULL response\n");
3574 if (*response == '\0' ||
3575 strlen(response) + 1 != (size_t) rlen)
3578 sm_dprintf("didn't follow protocol (total len %d != rlen %d)\n",
3579 (int) strlen(response), (int) (rlen - 1));
3584 sm_dprintf("%s\n", response);
3585 if (MilterLogLevel > 8)
3586 sm_syslog(LOG_INFO, e->e_id, "Milter (%s) add: rcpt: %s",
3589 (void) sendtolist(response, NULLADDR, &e->e_sendqueue, 0, e);
3595 ** MILTER_DELRCPT -- Delete the supplied recipient from the message
3598 ** response -- encoded form of recipient address.
3599 ** rlen -- length of response.
3600 ** e -- current envelope.
3601 ** mname -- name of milter.
3608 milter_delrcpt(response, rlen, e, mname)
3617 sm_dprintf("milter_delrcpt: ");
3620 if (response == NULL)
3623 sm_dprintf("NULL response\n");
3627 if (*response == '\0' ||
3628 strlen(response) + 1 != (size_t) rlen)
3631 sm_dprintf("didn't follow protocol (total len %d != rlen %d)\n",
3632 (int) strlen(response), (int) (rlen - 1));
3637 sm_dprintf("%s\n", response);
3638 r = removefromlist(response, &e->e_sendqueue, e);
3639 if (MilterLogLevel > 8)
3640 sm_syslog(LOG_INFO, e->e_id, "Milter (%s) delete: rcpt %s, naddrs=%d",
3641 mname, response, r);
3646 ** MILTER_REPLBODY -- Replace the current data file with new body
3649 ** response -- encoded form of new body.
3650 ** rlen -- length of response.
3651 ** newfilter -- if first time called by a new filter
3652 ** e -- current envelope.
3653 ** mname -- name of milter.
3656 ** 0 upon success, -1 upon failure
3660 milter_replbody(response, rlen, newfilter, e, mname)
3667 static char prevchar;
3671 sm_dprintf("milter_replbody\n");
3673 /* If a new filter, reset previous character and truncate data file */
3677 char dfname[MAXPATHLEN];
3679 (void) sm_strlcpy(dfname, queuename(e, DATAFL_LETTER),
3682 /* Reset prevchar */
3685 /* Get the current data file information */
3686 prevsize = sm_io_getinfo(e->e_dfp, SM_IO_WHAT_SIZE, NULL);
3690 /* truncate current data file */
3691 if (sm_io_getinfo(e->e_dfp, SM_IO_WHAT_ISTYPE, BF_FILE_TYPE))
3693 if (sm_io_setinfo(e->e_dfp, SM_BF_TRUNCATE, NULL) < 0)
3695 MILTER_DF_ERROR("milter_replbody: sm_io truncate %s: %s");
3703 err = sm_io_error(e->e_dfp);
3704 (void) sm_io_flush(e->e_dfp, SM_TIME_DEFAULT);
3707 ** Clear error if tried to fflush()
3708 ** a read-only file pointer and
3709 ** there wasn't a previous error.
3713 sm_io_clearerr(e->e_dfp);
3715 /* errno is set implicitly by fseek() before return */
3716 err = sm_io_seek(e->e_dfp, SM_TIME_DEFAULT,
3720 MILTER_DF_ERROR("milter_replbody: sm_io_seek %s: %s");
3724 /* XXX: Not much we can do except rewind it */
3726 MILTER_DF_ERROR("milter_replbody: ftruncate not available on this platform (%s:%s)");
3728 # else /* NOFTRUNCATE */
3729 err = ftruncate(sm_io_getinfo(e->e_dfp,
3730 SM_IO_WHAT_FD, NULL),
3734 MILTER_DF_ERROR("milter_replbody: sm_io ftruncate %s: %s");
3737 # endif /* NOFTRUNCATE */
3740 if (prevsize > e->e_msgsize)
3743 e->e_msgsize -= prevsize;
3746 if (newfilter && MilterLogLevel > 8)
3747 sm_syslog(LOG_INFO, e->e_id, "Milter (%s) message: body replaced",
3750 if (response == NULL)
3752 /* Flush the buffered '\r' */
3753 if (prevchar == '\r')
3755 (void) sm_io_putc(e->e_dfp, SM_TIME_DEFAULT, prevchar);
3761 for (i = 0; i < rlen; i++)
3763 /* Buffered char from last chunk */
3764 if (i == 0 && prevchar == '\r')
3766 /* Not CRLF, output prevchar */
3767 if (response[i] != '\n')
3769 (void) sm_io_putc(e->e_dfp, SM_TIME_DEFAULT,
3776 /* Turn CRLF into LF */
3777 if (response[i] == '\r')
3779 /* check if at end of chunk */
3782 /* If LF, strip CR */
3783 if (response[i + 1] == '\n')
3788 /* check next chunk */
3793 (void) sm_io_putc(e->e_dfp, SM_TIME_DEFAULT, response[i]);
3804 ** MILTER_INIT -- open and negotiate with all of the filters
3807 ** e -- current envelope.
3808 ** state -- return state from response.
3809 ** milters -- milters structure.
3812 ** true iff at least one filter is active
3817 milter_init(e, state, milters)
3825 sm_dprintf("milter_init\n");
3827 memset(milters, '\0', sizeof(*milters));
3828 *state = SMFIR_CONTINUE;
3829 if (InputFilters[0] == NULL)
3831 if (MilterLogLevel > 10)
3832 sm_syslog(LOG_INFO, e->e_id,
3833 "Milter: no active filter");
3837 for (i = 0; InputFilters[i] != NULL; i++)
3839 struct milter *m = InputFilters[i];
3841 m->mf_sock = milter_open(m, false, e);
3842 if (m->mf_state == SMFS_ERROR)
3844 MILTER_CHECK_ERROR(true, continue);
3848 if (m->mf_sock < 0 ||
3849 milter_negotiate(m, e, milters) < 0 ||
3850 m->mf_state == SMFS_ERROR)
3853 sm_dprintf("milter_init(%s): failed to %s\n",
3855 m->mf_sock < 0 ? "open" :
3857 if (MilterLogLevel > 0)
3858 sm_syslog(LOG_ERR, e->e_id,
3859 "Milter (%s): init failed to %s",
3861 m->mf_sock < 0 ? "open" :
3864 /* if negotiation failure, close socket */
3866 MILTER_CHECK_ERROR(true, continue);
3869 if (MilterLogLevel > 9)
3870 sm_syslog(LOG_INFO, e->e_id,
3871 "Milter (%s): init success to %s",
3873 m->mf_sock < 0 ? "open" : "negotiate");
3877 ** If something temp/perm failed with one of the filters,
3878 ** we won't be using any of them, so clear any existing
3882 if (*state != SMFIR_CONTINUE)
3889 ** MILTER_CONNECT -- send connection info to milter filters
3892 ** hostname -- hostname of remote machine.
3893 ** addr -- address of remote machine.
3894 ** e -- current envelope.
3895 ** state -- return state from response.
3898 ** response string (may be NULL)
3902 milter_connect(hostname, addr, e, state)
3909 unsigned short port;
3912 char *sockinfo = NULL;
3915 char buf6[INET6_ADDRSTRLEN];
3919 sm_dprintf("milter_connect(%s)\n", hostname);
3920 if (MilterLogLevel > 9)
3921 sm_syslog(LOG_INFO, e->e_id, "Milter: connect to filters");
3924 switch (addr.sa.sa_family)
3928 family = SMFIA_UNIX;
3930 sockinfo = addr.sunix.sun_path;
3932 # endif /* NETUNIX */
3936 family = SMFIA_INET;
3937 port = addr.sin.sin_port;
3938 sockinfo = (char *) inet_ntoa(addr.sin.sin_addr);
3940 # endif /* NETINET */
3944 if (IN6_IS_ADDR_V4MAPPED(&addr.sin6.sin6_addr))
3945 family = SMFIA_INET;
3947 family = SMFIA_INET6;
3948 port = addr.sin6.sin6_port;
3949 sockinfo = anynet_ntop(&addr.sin6.sin6_addr, buf6,
3951 if (sockinfo == NULL)
3954 # endif /* NETINET6 */
3957 family = SMFIA_UNKNOWN;
3961 s = strlen(hostname) + 1 + sizeof(family);
3962 if (family != SMFIA_UNKNOWN)
3963 s += sizeof(port) + strlen(sockinfo) + 1;
3965 buf = (char *) xalloc(s);
3968 /* put together data */
3969 (void) memcpy(bp, hostname, strlen(hostname));
3970 bp += strlen(hostname);
3972 (void) memcpy(bp, &family, sizeof(family));
3973 bp += sizeof(family);
3974 if (family != SMFIA_UNKNOWN)
3976 (void) memcpy(bp, &port, sizeof(port));
3979 /* include trailing '\0' */
3980 (void) memcpy(bp, sockinfo, strlen(sockinfo) + 1);
3983 response = milter_command(SMFIC_CONNECT, buf, s, SMFIM_CONNECT,
3984 e, state, "connect", false);
3985 sm_free(buf); /* XXX */
3988 ** If this message connection is done for,
3989 ** close the filters.
3992 if (*state != SMFIR_CONTINUE)
3994 if (MilterLogLevel > 9)
3995 sm_syslog(LOG_INFO, e->e_id, "Milter: connect, ending");
3999 milter_per_connection_check(e);
4001 #if !_FFR_MILTER_CONNECT_REPLYCODE
4003 ** SMFIR_REPLYCODE can't work with connect due to
4004 ** the requirements of SMTP. Therefore, ignore the
4005 ** reply code text but keep the state it would reflect.
4008 if (*state == SMFIR_REPLYCODE)
4010 if (response != NULL &&
4013 if (strncmp(response, "421 ", 4) == 0)
4014 *state = SMFIR_SHUTDOWN;
4016 *state = SMFIR_TEMPFAIL;
4019 *state = SMFIR_REJECT;
4020 if (response != NULL)
4022 sm_free(response); /* XXX */
4026 #endif /* !_FFR_MILTER_CONNECT_REPLYCODE */
4031 ** MILTER_HELO -- send SMTP HELO/EHLO command info to milter filters
4034 ** helo -- argument to SMTP HELO/EHLO command.
4035 ** e -- current envelope.
4036 ** state -- return state from response.
4039 ** response string (may be NULL)
4043 milter_helo(helo, e, state)
4052 sm_dprintf("milter_helo(%s)\n", helo);
4054 /* HELO/EHLO can come at any point */
4055 for (i = 0; InputFilters[i] != NULL; i++)
4057 struct milter *m = InputFilters[i];
4059 switch (m->mf_state)
4062 /* abort in message filters */
4063 milter_abort_filter(m, e);
4067 /* reset done filters */
4068 m->mf_state = SMFS_OPEN;
4073 response = milter_command(SMFIC_HELO, helo, strlen(helo) + 1,
4074 SMFIM_HELO, e, state, "helo", false);
4075 milter_per_connection_check(e);
4080 ** MILTER_ENVFROM -- send SMTP MAIL command info to milter filters
4083 ** args -- SMTP MAIL command args (args[0] == sender).
4084 ** e -- current envelope.
4085 ** state -- return state from response.
4088 ** response string (may be NULL)
4092 milter_envfrom(args, e, state)
4104 sm_dprintf("milter_envfrom:");
4105 for (i = 0; args[i] != NULL; i++)
4106 sm_dprintf(" %s", args[i]);
4111 if (args[0] == NULL)
4113 *state = SMFIR_REJECT;
4114 if (MilterLogLevel > 10)
4115 sm_syslog(LOG_INFO, e->e_id,
4116 "Milter: reject, no sender");
4120 /* new message, so ... */
4121 for (i = 0; InputFilters[i] != NULL; i++)
4123 struct milter *m = InputFilters[i];
4125 switch (m->mf_state)
4128 /* abort in message filters */
4129 milter_abort_filter(m, e);
4133 /* reset done filters */
4134 m->mf_state = SMFS_OPEN;
4139 /* put together data */
4141 for (i = 0; args[i] != NULL; i++)
4142 s += strlen(args[i]) + 1;
4146 *state = SMFIR_TEMPFAIL;
4150 buf = (char *) xalloc(s);
4152 for (i = 0; args[i] != NULL; i++)
4154 (void) sm_strlcpy(bp, args[i], s - (bp - buf));
4155 bp += strlen(bp) + 1;
4158 if (MilterLogLevel > 14)
4159 sm_syslog(LOG_INFO, e->e_id, "Milter: sender: %s", buf);
4162 response = milter_command(SMFIC_MAIL, buf, s, SMFIM_ENVFROM,
4163 e, state, "mail", false);
4164 sm_free(buf); /* XXX */
4167 ** If filter rejects/discards a per message command,
4168 ** abort the other filters since we are done with the
4172 MILTER_CHECK_DONE_MSG();
4173 if (MilterLogLevel > 10 && *state == SMFIR_REJECT)
4174 sm_syslog(LOG_INFO, e->e_id, "Milter: reject, sender");
4179 ** MILTER_ENVRCPT -- send SMTP RCPT command info to milter filters
4182 ** args -- SMTP RCPT command args (args[0] == recipient).
4183 ** e -- current envelope.
4184 ** state -- return state from response.
4185 ** rcpt_error -- does RCPT have an error?
4188 ** response string (may be NULL)
4192 milter_envrcpt(args, e, state, rcpt_error)
4205 sm_dprintf("milter_envrcpt:");
4206 for (i = 0; args[i] != NULL; i++)
4207 sm_dprintf(" %s", args[i]);
4212 if (args[0] == NULL)
4214 *state = SMFIR_REJECT;
4215 if (MilterLogLevel > 10)
4216 sm_syslog(LOG_INFO, e->e_id, "Milter: reject, no rcpt");
4220 /* put together data */
4222 for (i = 0; args[i] != NULL; i++)
4223 s += strlen(args[i]) + 1;
4227 *state = SMFIR_TEMPFAIL;
4231 buf = (char *) xalloc(s);
4233 for (i = 0; args[i] != NULL; i++)
4235 (void) sm_strlcpy(bp, args[i], s - (bp - buf));
4236 bp += strlen(bp) + 1;
4239 if (MilterLogLevel > 14)
4240 sm_syslog(LOG_INFO, e->e_id, "Milter: rcpts: %s", buf);
4243 response = milter_command(SMFIC_RCPT, buf, s, SMFIM_ENVRCPT,
4244 e, state, "rcpt", rcpt_error);
4245 sm_free(buf); /* XXX */
4250 ** MILTER_DATA_CMD -- send SMTP DATA command info to milter filters
4253 ** e -- current envelope.
4254 ** state -- return state from response.
4257 ** response string (may be NULL)
4261 milter_data_cmd(e, state)
4266 sm_dprintf("milter_data_cmd\n");
4269 return milter_command(SMFIC_DATA, NULL, 0, SMFIM_DATA,
4270 e, state, "data", false);
4274 ** MILTER_DATA -- send message headers/body and gather final message results
4277 ** e -- current envelope.
4278 ** state -- return state from response.
4281 ** response string (may be NULL)
4284 ** - Uses e->e_dfp for access to the body
4285 ** - Can call the various milter action routines to
4286 ** modify the envelope or message.
4289 /* flow through code using continue; don't wrap in do {} while */
4290 # define MILTER_CHECK_RESULTS() \
4291 if (m->mf_state == SMFS_ERROR && *state == SMFIR_CONTINUE) \
4295 if (*state == SMFIR_ACCEPT || \
4296 m->mf_state == SMFS_DONE || \
4297 m->mf_state == SMFS_ERROR) \
4299 if (m->mf_state != SMFS_ERROR) \
4300 m->mf_state = SMFS_DONE; \
4301 continue; /* to next filter */ \
4303 if (*state != SMFIR_CONTINUE) \
4305 m->mf_state = SMFS_DONE; \
4310 milter_data(e, state)
4314 bool replbody = false; /* milter_replbody() called? */
4315 bool replfailed = false; /* milter_replbody() failed? */
4316 bool rewind = false; /* rewind data file? */
4317 bool dfopen = false; /* data file open for writing? */
4318 bool newfilter; /* reset on each new filter */
4322 char *response = NULL;
4327 sm_dprintf("milter_data\n");
4329 *state = SMFIR_CONTINUE;
4332 ** XXX: Should actually send body chunks to each filter
4333 ** a chunk at a time instead of sending the whole body to
4334 ** each filter in turn. However, only if the filters don't
4338 for (i = 0; InputFilters[i] != NULL; i++)
4342 struct milter *m = InputFilters[i];
4344 if (*state != SMFIR_CONTINUE &&
4345 *state != SMFIR_ACCEPT)
4348 ** A previous filter has dealt with the message,
4349 ** safe to stop processing the filters.
4355 /* Now reset state for later evaluation */
4356 *state = SMFIR_CONTINUE;
4359 /* previous problem? */
4360 if (m->mf_state == SMFS_ERROR)
4362 MILTER_CHECK_ERROR(false, continue);
4367 if (m->mf_sock < 0 ||
4368 (m->mf_state != SMFS_OPEN && m->mf_state != SMFS_INMSG))
4371 m->mf_state = SMFS_INMSG;
4373 /* check if filter wants the headers */
4374 if (!bitset(SMFIP_NOHDRS, m->mf_pflags))
4376 response = milter_headers(m, e, state);
4377 MILTER_CHECK_RESULTS();
4380 /* check if filter wants EOH */
4381 if (!bitset(SMFIP_NOEOH, m->mf_pflags))
4384 sm_dprintf("milter_data: eoh\n");
4386 if ((m->mf_lflags & MI_LFLAGS_SYM(SMFIM_EOH)) != 0)
4390 SM_ASSERT(idx >= 0 && idx <= MAXFILTERS);
4391 macros = MilterMacros[SMFIM_EOH][idx];
4395 milter_send_macros(m, macros, SMFIC_EOH, e);
4396 MILTER_CHECK_RESULTS();
4400 response = milter_send_command(m, SMFIC_EOH, NULL, 0,
4402 MILTER_CHECK_RESULTS();
4405 /* check if filter wants the body */
4406 if (!bitset(SMFIP_NOBODY, m->mf_pflags) &&
4410 response = milter_body(m, e, state);
4411 MILTER_CHECK_RESULTS();
4414 if ((m->mf_lflags & MI_LFLAGS_SYM(SMFIM_EOH)) != 0)
4418 SM_ASSERT(idx >= 0 && idx <= MAXFILTERS);
4419 macros = MilterMacros[SMFIM_EOM][idx];
4422 milter_send_macros(m, macros, SMFIC_BODYEOB, e);
4423 MILTER_CHECK_RESULTS();
4426 /* send the final body chunk */
4427 (void) milter_write(m, SMFIC_BODYEOB, NULL, 0,
4428 m->mf_timeout[SMFTO_WRITE], e, "eom");
4430 /* Get time EOM sent for timeout */
4431 eomsent = curtime();
4433 /* deal with the possibility of multiple responses */
4434 while (*state == SMFIR_CONTINUE)
4436 /* Check total timeout from EOM to final ACK/NAK */
4437 if (m->mf_timeout[SMFTO_EOM] > 0 &&
4438 curtime() - eomsent >= m->mf_timeout[SMFTO_EOM])
4441 sm_dprintf("milter_data(%s): EOM ACK/NAK timeout\n",
4443 if (MilterLogLevel > 0)
4444 sm_syslog(LOG_ERR, e->e_id,
4445 "milter_data(%s): EOM ACK/NAK timeout",
4448 MILTER_CHECK_ERROR(false, break);
4452 response = milter_read(m, &rcmd, &rlen,
4453 m->mf_timeout[SMFTO_READ], e,
4455 if (m->mf_state == SMFS_ERROR)
4459 sm_dprintf("milter_data(%s): state %c\n",
4460 m->mf_name, (char) rcmd);
4464 case SMFIR_REPLYCODE:
4465 MILTER_CHECK_REPLYCODE("554 5.7.1 Command rejected");
4466 if (MilterLogLevel > 12)
4467 sm_syslog(LOG_INFO, e->e_id, "milter=%s, reject=%s",
4468 m->mf_name, response);
4470 m->mf_state = SMFS_DONE;
4473 case SMFIR_REJECT: /* log msg at end of function */
4474 if (MilterLogLevel > 12)
4475 sm_syslog(LOG_INFO, e->e_id, "milter=%s, reject",
4478 m->mf_state = SMFS_DONE;
4482 if (MilterLogLevel > 12)
4483 sm_syslog(LOG_INFO, e->e_id, "milter=%s, discard",
4486 m->mf_state = SMFS_DONE;
4489 case SMFIR_TEMPFAIL:
4490 if (MilterLogLevel > 12)
4491 sm_syslog(LOG_INFO, e->e_id, "milter=%s, tempfail",
4494 m->mf_state = SMFS_DONE;
4497 case SMFIR_CONTINUE:
4499 /* this filter is done with message */
4501 *state = SMFIR_TEMPFAIL;
4503 *state = SMFIR_ACCEPT;
4504 m->mf_state = SMFS_DONE;
4507 case SMFIR_PROGRESS:
4510 case SMFIR_QUARANTINE:
4511 if (!bitset(SMFIF_QUARANTINE, m->mf_fflags))
4513 if (MilterLogLevel > 9)
4514 sm_syslog(LOG_WARNING, e->e_id,
4515 "milter_data(%s): lied about quarantining, honoring request anyway",
4518 if (response == NULL)
4519 response = newstr("");
4520 if (MilterLogLevel > 3)
4521 sm_syslog(LOG_INFO, e->e_id,
4522 "milter=%s, quarantine=%s",
4523 m->mf_name, response);
4524 e->e_quarmsg = sm_rpool_strdup_x(e->e_rpool,
4526 macdefine(&e->e_macro, A_PERM,
4527 macid("{quarantine}"), e->e_quarmsg);
4530 case SMFIR_ADDHEADER:
4531 if (!bitset(SMFIF_ADDHDRS, m->mf_fflags))
4533 if (MilterLogLevel > 9)
4534 sm_syslog(LOG_WARNING, e->e_id,
4535 "milter_data(%s): lied about adding headers, honoring request anyway",
4538 milter_addheader(m, response, rlen, e);
4541 case SMFIR_INSHEADER:
4542 if (!bitset(SMFIF_ADDHDRS, m->mf_fflags))
4544 if (MilterLogLevel > 9)
4545 sm_syslog(LOG_WARNING, e->e_id,
4546 "milter_data(%s): lied about adding headers, honoring request anyway",
4549 milter_insheader(m, response, rlen, e);
4552 case SMFIR_CHGHEADER:
4553 if (!bitset(SMFIF_CHGHDRS, m->mf_fflags))
4555 if (MilterLogLevel > 9)
4556 sm_syslog(LOG_WARNING, e->e_id,
4557 "milter_data(%s): lied about changing headers, honoring request anyway",
4560 milter_changeheader(m, response, rlen, e);
4564 if (!bitset(SMFIF_CHGFROM, m->mf_fflags))
4566 if (MilterLogLevel > 9)
4567 sm_syslog(LOG_WARNING, e->e_id,
4568 "milter_data(%s) lied about changing sender, honoring request anyway",
4571 milter_chgfrom(response, rlen, e, m->mf_name);
4575 if (!bitset(SMFIF_ADDRCPT, m->mf_fflags))
4577 if (MilterLogLevel > 9)
4578 sm_syslog(LOG_WARNING, e->e_id,
4579 "milter_data(%s) lied about adding recipients, honoring request anyway",
4582 milter_addrcpt(response, rlen, e, m->mf_name);
4585 case SMFIR_ADDRCPT_PAR:
4586 if (!bitset(SMFIF_ADDRCPT_PAR, m->mf_fflags))
4588 if (MilterLogLevel > 9)
4589 sm_syslog(LOG_WARNING, e->e_id,
4590 "milter_data(%s) lied about adding recipients with parameters, honoring request anyway",
4593 milter_addrcpt_par(response, rlen, e, m->mf_name);
4597 if (!bitset(SMFIF_DELRCPT, m->mf_fflags))
4599 if (MilterLogLevel > 9)
4600 sm_syslog(LOG_WARNING, e->e_id,
4601 "milter_data(%s): lied about removing recipients, honoring request anyway",
4604 milter_delrcpt(response, rlen, e, m->mf_name);
4607 case SMFIR_REPLBODY:
4608 if (!bitset(SMFIF_MODBODY, m->mf_fflags))
4610 if (MilterLogLevel > 0)
4611 sm_syslog(LOG_ERR, e->e_id,
4612 "milter_data(%s): lied about replacing body, rejecting request and tempfailing message",
4618 /* already failed in attempt */
4624 if (milter_reopen_df(e) < 0)
4633 if (milter_replbody(response, rlen, newfilter,
4641 /* Invalid response to command */
4642 if (MilterLogLevel > 0)
4643 sm_syslog(LOG_ERR, e->e_id,
4644 "milter_data(%s): returned bogus response %c",
4649 if (rcmd != SMFIR_REPLYCODE && response != NULL)
4651 sm_free(response); /* XXX */
4655 if (m->mf_state == SMFS_ERROR)
4659 if (replbody && !replfailed)
4661 /* flush possible buffered character */
4662 milter_replbody(NULL, 0, !replbody, e, m->mf_name);
4666 if (m->mf_state == SMFS_ERROR)
4668 MILTER_CHECK_ERROR(false, continue);
4674 /* leave things in the expected state if we touched it */
4677 if (*state == SMFIR_CONTINUE ||
4678 *state == SMFIR_ACCEPT)
4680 *state = SMFIR_TEMPFAIL;
4686 (void) sm_io_close(e->e_dfp, SM_TIME_DEFAULT);
4688 e->e_flags &= ~EF_HAS_DF;
4694 if ((dfopen && milter_reset_df(e) < 0) ||
4695 (rewind && bfrewind(e->e_dfp) < 0))
4698 ExitStat = EX_IOERR;
4701 ** If filter told us to keep message but we had
4702 ** an error, we can't really keep it, tempfail it.
4705 if (*state == SMFIR_CONTINUE || *state == SMFIR_ACCEPT)
4707 *state = SMFIR_TEMPFAIL;
4712 syserr("milter_data: %s/%cf%s: read error",
4713 qid_printqueue(e->e_qgrp, e->e_qdir),
4714 DATAFL_LETTER, e->e_id);
4717 MILTER_CHECK_DONE_MSG();
4718 if (MilterLogLevel > 10 && *state == SMFIR_REJECT)
4719 sm_syslog(LOG_INFO, e->e_id, "Milter: reject, data");
4724 ** MILTER_UNKNOWN -- send any unrecognized or unimplemented command
4725 ** string to milter filters
4728 ** smtpcmd -- the string itself.
4729 ** e -- current envelope.
4730 ** state -- return state from response.
4734 ** response string (may be NULL)
4738 milter_unknown(smtpcmd, e, state)
4744 sm_dprintf("milter_unknown(%s)\n", smtpcmd);
4746 return milter_command(SMFIC_UNKNOWN, smtpcmd, strlen(smtpcmd) + 1,
4747 SMFIM_NOMACROS, e, state, "unknown", false);
4751 ** MILTER_QUIT -- informs the filter(s) we are done and closes connection(s)
4754 ** e -- current envelope.
4767 sm_dprintf("milter_quit(%s)\n", e->e_id);
4769 for (i = 0; InputFilters[i] != NULL; i++)
4770 milter_quit_filter(InputFilters[i], e);
4774 ** MILTER_ABORT -- informs the filter(s) that we are aborting current message
4777 ** e -- current envelope.
4790 sm_dprintf("milter_abort\n");
4792 for (i = 0; InputFilters[i] != NULL; i++)
4794 struct milter *m = InputFilters[i];
4797 if (m->mf_sock < 0 || m->mf_state != SMFS_INMSG)
4800 milter_abort_filter(m, e);
projects / FreeBSD / FreeBSD.git / blob