2 * Copyright (c) 1998-2006, 2008-2010, 2013 Sendmail, Inc. and its suppliers.
4 * Copyright (c) 1983, 1995-1997 Eric P. Allman. All rights reserved.
5 * Copyright (c) 1988, 1993
6 * The Regents of the University of California. All rights reserved.
8 * By using this file, you agree to the terms and conditions set
9 * forth in the LICENSE file which can be found at the top level of
10 * the sendmail distribution.
15 #include <sm/sendmail.h>
17 SM_RCSID("@(#)$Id: readcf.c,v 8.690 2013/03/15 17:54:12 ca Exp $")
19 #if NETINET || NETINET6
20 # include <arpa/inet.h>
21 #endif /* NETINET || NETINET6 */
29 static void fileclass __P((int, char *, char *, bool, bool, bool));
30 static char **makeargv __P((char *));
31 static void settimeout __P((char *, char *, bool));
32 static void toomany __P((int, int));
33 static char *extrquotstr __P((char *, char **, char *, bool *));
34 static void parse_class_words __P((int, char *));
37 ** READCF -- read configuration file.
39 ** This routine reads the configuration file and builds the internal
42 ** The file is formatted as a sequence of lines, each taken
43 ** atomically. The first character of each line describes how
44 ** the line is to be interpreted. The lines are:
45 ** Dxval Define macro x to have value val.
46 ** Cxword Put word into class x.
47 ** Fxfile [fmt] Read file for lines to put into
48 ** class x. Use scanf string 'fmt'
49 ** or "%s" if not present. Fmt should
50 ** only produce one string-valued result.
51 ** Hname: value Define header with field-name 'name'
52 ** and value as specified; this will be
53 ** macro expanded immediately before
55 ** Sn Use rewriting set n.
56 ** Rlhs rhs Rewrite addresses that match lhs to
58 ** Mn arg=val... Define mailer. n is the internal name.
59 ** Args specify mailer parameters.
60 ** Oxvalue Set option x to value.
61 ** O option value Set option (long name) to value.
62 ** Pname=value Set precedence name to value.
63 ** Qn arg=val... Define queue groups. n is the internal name.
64 ** Args specify queue parameters.
65 ** Vversioncode[/vendorcode]
66 ** Version level/vendor name of
67 ** configuration syntax.
68 ** Kmapname mapclass arguments....
69 ** Define keyed lookup of a given class.
70 ** Arguments are class dependent.
71 ** Eenvar=value Set the environment value to the given value.
74 ** cfname -- configuration file name.
75 ** safe -- true if this is the system config file;
77 ** e -- the main envelope.
83 ** Builds several internal tables.
87 readcf(cfname, safe, e)
95 struct rewrite *rwp = NULL;
105 long sff = SFF_OPENASROOT;
110 char pvpbuf[MAXLINE + MAXATOM];
111 static char *null_list[1] = { NULL };
112 extern unsigned char TokTypeNoC[];
118 Srv_SSL_Options = SSL_OP_ALL;
119 Clt_SSL_Options = SSL_OP_ALL
120 #ifdef SSL_OP_NO_SSLv2
123 #ifdef SSL_OP_NO_TICKET
127 #endif /* STARTTLS */
128 if (DontLockReadFiles)
130 cf = safefopen(cfname, O_RDONLY, 0444, sff);
133 syserr("cannot open");
134 finis(false, true, EX_OSFILE);
137 if (fstat(sm_io_getinfo(cf, SM_IO_WHAT_FD, NULL), &statb) < 0)
139 syserr("cannot fstat");
140 finis(false, true, EX_OSFILE);
143 if (!S_ISREG(statb.st_mode))
145 syserr("not a plain file");
146 finis(false, true, EX_OSFILE);
149 if (OpMode != MD_TEST && bitset(S_IWGRP|S_IWOTH, statb.st_mode))
151 if (OpMode == MD_DAEMON || OpMode == MD_INITALIAS || OpMode == MD_CHECKCONFIG)
152 (void) sm_io_fprintf(smioerr, SM_TIME_DEFAULT,
153 "%s: WARNING: dangerous write permissions\n",
156 sm_syslog(LOG_CRIT, NOQID,
157 "%s: WARNING: dangerous write permissions",
165 while (bufsize = sizeof(buf),
166 (bp = fgetfolded(buf, &bufsize, cf)) != NULL)
173 sm_free(bp); /* XXX */
177 /* do macro expansion mappings */
178 nbp = translate_dollars(bp, bp, &bufsize);
179 if (nbp != bp && bp != buf)
183 /* interpret this line */
188 case '#': /* comment */
191 case 'R': /* rewriting rule */
194 syserr("missing valid ruleset for \"%s\"", bp);
197 for (p = &bp[1]; *p != '\0' && *p != '\t'; p++)
202 syserr("invalid rewrite line \"%s\" (tab expected)", bp);
206 /* allocate space for the rule header */
209 RewriteRules[ruleset] = rwp =
210 (struct rewrite *) xalloc(sizeof(*rwp));
214 rwp->r_next = (struct rewrite *) xalloc(sizeof(*rwp));
219 /* expand and save the LHS */
221 expand(&bp[1], exbuf, sizeof(exbuf), e);
222 rwp->r_lhs = prescan(exbuf, '\t', pvpbuf,
223 sizeof(pvpbuf), NULL,
224 ConfigLevel >= 9 ? TokTypeNoC : IntTokenTab,
227 if (rwp->r_lhs != NULL)
231 rwp->r_lhs = copyplist(rwp->r_lhs, true, NULL);
233 /* count the number of fuzzy matches in LHS */
234 for (ap = rwp->r_lhs; *ap != NULL; ap++)
239 switch (ap[0][0] & 0377)
286 syserr("Inappropriate use of %s on LHS",
289 rwp->r_line = LineNumber;
293 syserr("R line: null LHS");
294 rwp->r_lhs = null_list;
296 if (nfuzzy > MAXMATCH)
298 syserr("R line: too many wildcards");
299 rwp->r_lhs = null_list;
302 /* expand and save the RHS */
306 while (*p != '\0' && *p != '\t')
309 expand(q, exbuf, sizeof(exbuf), e);
310 rwp->r_rhs = prescan(exbuf, '\t', pvpbuf,
311 sizeof(pvpbuf), NULL,
312 ConfigLevel >= 9 ? TokTypeNoC : IntTokenTab,
314 if (rwp->r_rhs != NULL)
318 #if _FFR_EXTRA_MAP_CHECK
320 #endif /* _FFR_EXTRA_MAP_CHECK */
323 rwp->r_rhs = copyplist(rwp->r_rhs, true, NULL);
325 /* check no out-of-bounds replacements */
330 for (ap = rwp->r_rhs; *ap != NULL; ap++)
335 switch (ap[0][0] & 0377)
338 if (ap[0][1] <= '0' ||
341 syserr("replacement $%c out of bounds",
369 if (++args >= MAX_MAP_ARGS)
370 syserr("too many arguments for map lookup");
378 if ((ap[0][0] & 0377) == LOOKUPBEGIN)
379 endtoken = LOOKUPEND;
381 syserr("cannot nest map lookups");
384 #if _FFR_EXTRA_MAP_CHECK
387 syserr("syntax error in map lookup");
390 nexttoken = ap[1][0] & 0377;
391 if (nexttoken == CANONHOST ||
392 nexttoken == CANONUSER ||
393 nexttoken == endtoken))
395 syserr("missing map name for lookup");
400 syserr("syntax error in map lookup");
403 if (ap[0][0] == HOSTBEGIN)
405 nexttoken = ap[2][0] & 0377;
406 if (nexttoken == CANONHOST ||
407 nexttoken == CANONUSER ||
408 nexttoken == endtoken)
410 syserr("missing key name for lookup");
413 #endif /* _FFR_EXTRA_MAP_CHECK */
418 if ((ap[0][0] & 0377) != endtoken)
427 ** This doesn't work yet as there are maps defined *after* the cf
428 ** is read such as host, user, and alias. So for now, it's removed.
429 ** When it comes back, the RELEASE_NOTES entry will be:
430 ** Emit warnings for unknown maps when reading the .cf file. Based on
431 ** patch from Robert Harker of Harker Systems.
436 ** Got a database lookup,
437 ** check if map is defined.
441 if ((ep[0] & 0377) != MACRODEXPAND &&
442 stab(ep, ST_MAP, ST_FIND) == NULL)
444 (void) sm_io_fprintf(smioout,
446 "Warning: %s: line %d: map %s not found\n",
455 syserr("Inappropriate use of %s on RHS",
459 syserr("missing map closing token");
463 syserr("R line: null RHS");
464 rwp->r_rhs = null_list;
468 case 'S': /* select rewriting set */
469 expand(&bp[1], exbuf, sizeof(exbuf), e);
470 ruleset = strtorwset(exbuf, NULL, ST_ENTER);
474 rwp = RewriteRules[ruleset];
477 if (OpMode == MD_TEST || OpMode == MD_CHECKCONFIG)
478 (void) sm_io_fprintf(smioout,
480 "WARNING: Ruleset %s has multiple definitions\n",
483 sm_dprintf("WARNING: Ruleset %s has multiple definitions\n",
485 while (rwp->r_next != NULL)
490 case 'D': /* macro definition */
491 mid = macid_parse(&bp[1], &ep);
494 p = munchstring(ep, NULL, '\0');
495 macdefine(&e->e_macro, A_TEMP, mid, p);
498 case 'H': /* required header line */
499 (void) chompheader(&bp[1], CHHDR_DEF, NULL, e);
502 case 'C': /* word class */
503 case 'T': /* trusted user (set class `t') */
506 mid = macid_parse(&bp[1], &ep);
509 expand(ep, exbuf, sizeof(exbuf), e);
522 while (*p != '\0' && isascii(*p) && isspace(*p))
525 while (*p != '\0' && !(isascii(*p) && isspace(*p)))
535 case 'F': /* word class from file */
536 mid = macid_parse(&bp[1], &ep);
539 for (p = ep; isascii(*p) && isspace(*p); )
541 if (p[0] == '-' && p[1] == 'o')
545 !(isascii(*p) && isspace(*p)))
547 while (isascii(*p) && isspace(*p))
553 /* check if [key]@map:spec */
555 if (!SM_IS_DIR_DELIM(*p) &&
557 (q = strchr(p, '@')) != NULL)
561 /* look for @LDAP or @map: in string */
562 if (strcmp(q, "LDAP") == 0 ||
564 strchr(q, ':') != NULL))
570 /* use entire spec */
575 file = extrquotstr(p, &q, " ", &ok);
578 syserr("illegal filename '%s'", p);
583 if (*file == '|' || ismap)
593 while (isascii(*++p) && isspace(*p))
597 fileclass(mid, file, p, ismap, safe, optional);
601 case 'L': /* extended load average description */
606 #if defined(SUN_EXTENSIONS) && defined(SUN_LOOKUP_MACRO)
607 case 'L': /* lookup macro */
608 case 'G': /* lookup class */
609 /* reserved for Sun -- NIS+ database lookup */
610 if (VendorCode != VENDOR_SUN)
612 sun_lg_config_line(bp, e);
614 #endif /* defined(SUN_EXTENSIONS) && defined(SUN_LOOKUP_MACRO) */
616 case 'M': /* define mailer */
620 case 'O': /* set option */
621 setoption(bp[1], &bp[2], safe, false, e);
624 case 'P': /* set precedence */
625 if (NumPriorities >= MAXPRIORITIES)
627 toomany('P', MAXPRIORITIES);
630 for (p = &bp[1]; *p != '\0' && *p != '='; p++)
635 Priorities[NumPriorities].pri_name = newstr(&bp[1]);
636 Priorities[NumPriorities].pri_val = atoi(++p);
640 case 'Q': /* define queue */
641 makequeue(&bp[1], true);
644 case 'V': /* configuration syntax version */
645 for (p = &bp[1]; isascii(*p) && isspace(*p); p++)
647 if (!isascii(*p) || !isdigit(*p))
649 syserr("invalid argument to V line: \"%.20s\"",
653 ConfigLevel = strtol(p, &ep, 10);
656 ** Do heuristic tweaking for back compatibility.
659 if (ConfigLevel >= 5)
661 /* level 5 configs have short name in $w */
662 p = macvalue('w', e);
663 if (p != NULL && (p = strchr(p, '.')) != NULL)
666 macdefine(&e->e_macro, A_TEMP, 'w',
670 if (ConfigLevel >= 6)
672 ColonOkInAddr = false;
676 ** Look for vendor code.
681 /* extract vendor code */
682 for (p = ep; isascii(*p) && isalpha(*p); )
687 syserr("invalid V line vendor code: \"%s\"",
693 expand(&bp[1], exbuf, sizeof(exbuf), e);
694 (void) makemapentry(exbuf);
701 sm_setuserenv(&bp[1], p);
704 case 'X': /* mail filter */
706 milter_setup(&bp[1]);
708 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
709 "Warning: Filter usage ('X') requires Milter support (-DMILTER)\n");
715 syserr("unknown configuration line \"%s\"", bp);
718 sm_free(bp); /* XXX */
722 syserr("I/O read error");
723 finis(false, true, EX_OSFILE);
725 (void) sm_io_close(cf, SM_TIME_DEFAULT);
728 /* initialize host maps from local service tables */
731 /* initialize daemon (if not defined yet) */
734 /* determine if we need to do special name-server frotz */
737 char *maptype[MAXMAPSTACK];
738 short mapreturn[MAXMAPACTIONS];
740 nmaps = switch_map_find("hosts", maptype, mapreturn);
741 UseNameServer = false;
742 if (nmaps > 0 && nmaps <= MAXMAPSTACK)
746 for (mapno = 0; mapno < nmaps && !UseNameServer;
749 if (strcmp(maptype[mapno], "dns") == 0)
750 UseNameServer = true;
757 ** TRANSLATE_DOLLARS -- convert $x into internal form
759 ** Actually does all appropriate pre-processing of a config line
760 ** to turn it into internal form.
763 ** ibp -- the buffer to translate.
764 ** obp -- where to put the translation; may be the same as obp
765 ** bsp -- a pointer to the size of obp; will be updated if
766 ** the buffer needs to be replaced.
769 ** The buffer pointer; may differ from obp if the expansion
770 ** is larger then *bsp, in which case this will point to
771 ** malloc()ed memory which must be free()d by the caller.
775 translate_dollars(ibp, obp, bsp)
786 sm_dprintf("translate_dollars(");
787 xputs(sm_debug_file(), ibp);
791 bp = quote_internal_chars(ibp, obp, bsp);
793 for (p = bp; *p != '\0'; p++)
795 if (*p == '#' && p > bp && ConfigLevel >= 3)
802 /* it's from $# -- let it go through */
807 /* it's backslash escaped */
808 (void) sm_strlcpy(p, p + 1, strlen(p));
812 /* delete leading white space */
813 while (isascii(*p) && isspace(*p) &&
814 *p != '\n' && p > bp)
818 if ((e = strchr(++p, '\n')) != NULL)
819 (void) sm_strlcpy(p, e, strlen(p));
827 if (*p != '$' || p[1] == '\0')
832 /* actual dollar sign.... */
833 (void) sm_strlcpy(p, p + 1, strlen(p));
837 /* convert to macro expansion character */
840 /* special handling for $=, $~, $&, and $? */
841 if (*p == '=' || *p == '~' || *p == '&' || *p == '?')
844 /* convert macro name to code */
845 *p = macid_parse(p, &ep);
847 (void) sm_strlcpy(p + 1, ep, strlen(p + 1));
850 /* strip trailing white space from the line */
851 while (--p > bp && isascii(*p) && isspace(*p))
856 sm_dprintf(" translate_dollars => ");
857 xputs(sm_debug_file(), bp);
864 ** TOOMANY -- signal too many of some option
867 ** id -- the id of the error line
868 ** maxcnt -- the maximum possible values
882 syserr("too many %c lines, %d max", id, maxcnt);
885 ** FILECLASS -- read members of a class from a file
888 ** class -- class to define.
889 ** filename -- name of file to read.
890 ** fmt -- scanf string to use for match.
891 ** ismap -- if set, this is a map lookup.
892 ** safe -- if set, this is a safe read.
893 ** optional -- if set, it is not an error for the file to
900 ** puts all lines in filename that match a scanf into
905 ** Break up the match into words and add to class.
909 parse_class_words(class, line)
913 while (line != NULL && *line != '\0')
917 /* strip leading spaces */
918 while (isascii(*line) && isspace(*line))
923 /* find the end of the word */
925 while (*line != '\0' && !(isascii(*line) && isspace(*line)))
930 /* enter the word in the symbol table */
936 fileclass(class, filename, fmt, ismap, safe, optional)
951 sm_dprintf("fileclass(%s, fmt=%s)\n", filename, fmt);
953 if (*filename == '\0')
955 syserr("fileclass: missing file name");
967 mn = newstr(macname(class));
972 if ((p = strchr(filename, '@')) == NULL)
974 /* should not happen */
975 syserr("fileclass: bogus map specification");
985 if (strcmp(cl, "LDAP") == 0)
989 char jbuf[MAXHOSTNAMELEN];
993 expand("\201j", jbuf, sizeof(jbuf), &BlankEnvelope);
996 (void) sm_strlcpy(jbuf, "localhost",
1000 /* impose the default schema */
1001 lc = macvalue(macid("{sendmailMTACluster}"), CurEnv);
1006 expand(lc, lcbuf, sizeof(lcbuf), CurEnv);
1011 n = sm_snprintf(buf, sizeof(buf),
1012 "-k (&(objectClass=sendmailMTAClass)(sendmailMTAClassName=%s)(|(sendmailMTACluster=%s)(sendmailMTAHost=%s))) -v sendmailMTAClassValue,sendmailMTAClassSearch:FILTER:sendmailMTAClass,sendmailMTAClassURL:URL:sendmailMTAClass",
1014 if (n >= sizeof(buf))
1016 syserr("fileclass: F{%s}: Default LDAP string too long",
1024 #endif /* LDAPMAP */
1026 if ((spec = strchr(cl, ':')) == NULL)
1028 syserr("fileclass: F{%s}: missing map class",
1036 /* set up map structure */
1037 mapclass = stab(cl, ST_MAPCLASS, ST_FIND);
1038 if (mapclass == NULL)
1040 syserr("fileclass: F{%s}: class %s not available",
1045 memset(&map, '\0', sizeof(map));
1046 map.map_class = &mapclass->s_mapclass;
1048 map.map_mflags |= MF_FILECLASS;
1051 sm_dprintf("fileclass: F{%s}: map class %s, key %s, spec %s\n",
1055 /* parse map spec */
1056 if (!map.map_class->map_parse(&map, spec))
1058 /* map_parse() showed the error already */
1062 map.map_mflags |= MF_VALID;
1065 if (map.map_class->map_open(&map, O_RDONLY))
1067 map.map_mflags |= MF_OPEN;
1068 map.map_pid = getpid();
1073 !bitset(MF_OPTIONAL, map.map_mflags))
1074 syserr("fileclass: F{%s}: map open failed",
1081 p = (*map.map_class->map_lookup)(&map, key, NULL, &status);
1082 if (status != EX_OK && status != EX_NOTFOUND)
1085 syserr("fileclass: F{%s}: map lookup failed",
1090 /* use the results */
1092 parse_class_words(class, p);
1095 map.map_mflags |= MF_CLOSING;
1096 map.map_class->map_close(&map);
1097 map.map_mflags &= ~(MF_OPEN|MF_WRITABLE|MF_CLOSING);
1101 else if (filename[0] == '|')
1105 char *argv[MAXPV + 1];
1108 for (p = strtok(&filename[1], " \t");
1109 p != NULL && i < MAXPV;
1110 p = strtok(NULL, " \t"))
1113 pid = prog_open(argv, &fd, CurEnv);
1117 f = sm_io_open(SmFtStdiofd, SM_TIME_DEFAULT,
1118 (void *) &fd, SM_IO_RDONLY, NULL);
1124 if (!bitnset(DBS_CLASSFILEINUNSAFEDIRPATH, DontBlameSendmail))
1125 sff |= SFF_SAFEDIRPATH;
1126 if (!bitnset(DBS_LINKEDCLASSFILEINWRITABLEDIR,
1130 sff |= SFF_OPENASROOT;
1131 else if (RealUid == 0)
1133 if (DontLockReadFiles)
1135 f = safefopen(filename, O_RDONLY, 0, sff);
1140 syserr("fileclass: cannot open '%s'", filename);
1144 while (sm_io_fgets(f, SM_TIME_DEFAULT, buf, sizeof(buf)) >= 0)
1147 char wordbuf[MAXLINE + 1];
1153 if (sm_io_sscanf(buf, fmt, wordbuf) != 1)
1160 parse_class_words(class, p);
1163 ** If anything else is added here,
1164 ** check if the '@' map case above
1165 ** needs the code as well.
1169 (void) sm_io_close(f, SM_TIME_DEFAULT);
1171 (void) waitfor(pid);
1174 ** MAKEMAILER -- define a new mailer.
1177 ** line -- description of mailer. This is in labeled
1178 ** fields. The fields are:
1179 ** A -- the argv for this mailer
1180 ** C -- the character set for MIME conversions
1181 ** D -- the directory to run in
1182 ** E -- the eol string
1183 ** F -- the flags associated with the mailer
1184 ** L -- the maximum line length
1185 ** M -- the maximum message size
1186 ** N -- the niceness at which to run
1187 ** P -- the path to the mailer
1188 ** Q -- the queue group for the mailer
1189 ** R -- the recipient rewriting set
1190 ** S -- the sender rewriting set
1191 ** T -- the mailer type (for DSNs)
1192 ** U -- the uid to run as
1193 ** W -- the time to wait at the end
1194 ** m -- maximum messages per connection
1195 ** r -- maximum number of recipients per message
1196 ** / -- new root directory
1197 ** The first word is the canonical name of the mailer.
1203 ** enters the mailer into the mailer table.
1211 register struct mailer *m;
1216 static int nextmailer = 0; /* "free" index into Mailer struct */
1218 /* allocate a mailer and set up defaults */
1219 m = (struct mailer *) xalloc(sizeof(*m));
1220 memset((char *) m, '\0', sizeof(*m));
1221 errno = 0; /* avoid bogus error text */
1223 /* collect the mailer name */
1225 *p != '\0' && *p != ',' && !(isascii(*p) && isspace(*p));
1230 if (line[0] == '\0')
1232 syserr("name required for mailer");
1235 m->m_name = newstr(line);
1240 /* now scan through and assign info from the fields */
1243 auto char *delimptr;
1245 while (*p != '\0' &&
1246 (*p == ',' || (isascii(*p) && isspace(*p))))
1249 /* p now points to field code */
1251 while (*p != '\0' && *p != '=' && *p != ',')
1255 syserr("mailer %s: `=' expected", m->m_name);
1258 while (isascii(*p) && isspace(*p))
1261 /* p now points to the field body */
1262 p = munchstring(p, &delimptr, ',');
1264 /* install the field into the mailer struct */
1267 case 'P': /* pathname */
1268 if (*p != '\0') /* error is issued below */
1269 m->m_mailer = newstr(p);
1272 case 'F': /* flags */
1273 for (; *p != '\0'; p++)
1275 if (!(isascii(*p) && isspace(*p)))
1277 #if _FFR_DEPRECATE_MAILER_FLAG_I
1278 if (*p == M_INTERNAL)
1279 sm_syslog(LOG_WARNING, NOQID,
1280 "WARNING: mailer=%s, flag=%c deprecated",
1282 #endif /* _FFR_DEPRECATE_MAILER_FLAG_I */
1283 setbitn(bitidx(*p), m->m_flags);
1288 case 'S': /* sender rewriting ruleset */
1289 case 'R': /* recipient rewriting ruleset */
1290 i = strtorwset(p, &endp, ST_ENTER);
1294 m->m_sh_rwset = m->m_se_rwset = i;
1296 m->m_rh_rwset = m->m_re_rwset = i;
1301 i = strtorwset(p, NULL, ST_ENTER);
1311 case 'E': /* end of line string */
1313 syserr("mailer %s: null end-of-line string",
1316 m->m_eol = newstr(p);
1319 case 'A': /* argument vector */
1320 if (*p != '\0') /* error is issued below */
1321 m->m_argv = makeargv(p);
1324 case 'M': /* maximum message size */
1325 m->m_maxsize = atol(p);
1328 case 'm': /* maximum messages per connection */
1329 m->m_maxdeliveries = atoi(p);
1332 case 'r': /* max recipient per envelope */
1333 m->m_maxrcpt = atoi(p);
1336 case 'L': /* maximum line length */
1337 m->m_linelimit = atoi(p);
1338 if (m->m_linelimit < 0)
1342 case 'N': /* run niceness */
1343 m->m_nice = atoi(p);
1346 case 'D': /* working directory */
1348 syserr("mailer %s: null working directory",
1351 m->m_execdir = newstr(p);
1354 case 'C': /* default charset */
1356 syserr("mailer %s: null charset", m->m_name);
1358 m->m_defcharset = newstr(p);
1361 case 'Q': /* queue for this mailer */
1364 syserr("mailer %s: null queue", m->m_name);
1367 s = stab(p, ST_QUEUE, ST_FIND);
1369 syserr("mailer %s: unknown queue %s",
1372 m->m_qgrp = s->s_quegrp->qg_index;
1375 case 'T': /* MTA-Name/Address/Diagnostic types */
1376 /* extract MTA name type; default to "dns" */
1377 m->m_mtatype = newstr(p);
1378 p = strchr(m->m_mtatype, '/');
1385 if (*m->m_mtatype == '\0')
1386 m->m_mtatype = "dns";
1388 /* extract address type; default to "rfc822" */
1398 if (m->m_addrtype == NULL || *m->m_addrtype == '\0')
1399 m->m_addrtype = "rfc822";
1401 /* extract diagnostic type; default to "smtp" */
1403 if (m->m_diagtype == NULL || *m->m_diagtype == '\0')
1404 m->m_diagtype = "smtp";
1407 case 'U': /* user id */
1408 if (isascii(*p) && !isdigit(*p))
1413 while (*p != '\0' && isascii(*p) &&
1414 (isalnum(*p) || strchr("-_", *p) != NULL))
1416 while (isascii(*p) && isspace(*p))
1422 syserr("mailer %s: null user name",
1426 pw = sm_getpwnam(q);
1429 syserr("readcf: mailer U= flag: unknown user %s", q);
1434 m->m_uid = pw->pw_uid;
1435 m->m_gid = pw->pw_gid;
1442 m->m_uid = strtol(p, &q, 0);
1444 while (isascii(*p) && isspace(*p))
1449 while (isascii(*p) && isspace(*p))
1453 if (isascii(*p) && !isdigit(*p))
1458 while (isascii(*p) && isalnum(*p))
1463 syserr("mailer %s: null group name",
1470 syserr("readcf: mailer U= flag: unknown group %s", q);
1474 m->m_gid = gr->gr_gid;
1478 m->m_gid = strtol(p, NULL, 0);
1482 case 'W': /* wait timeout */
1483 m->m_wait = convtime(p, 's');
1486 case '/': /* new root directory */
1488 syserr("mailer %s: null root directory",
1491 m->m_rootdir = newstr(p);
1495 syserr("M%s: unknown mailer equate %c=",
1504 if (bitnset(M_SECURE_PORT, m->m_flags))
1506 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
1507 "M%s: Warning: F=%c set on system that doesn't support rresvport()\n",
1508 m->m_name, M_SECURE_PORT);
1510 #endif /* !HASRRESVPORT */
1515 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
1516 "M%s: Warning: N= set on system that doesn't support nice()\n",
1519 #endif /* !HASNICE */
1521 /* do some rationality checking */
1522 if (m->m_argv == NULL)
1524 syserr("M%s: A= argument required", m->m_name);
1527 if (m->m_mailer == NULL)
1529 syserr("M%s: P= argument required", m->m_name);
1533 if (nextmailer >= MAXMAILERS)
1535 syserr("too many mailers defined (%d max)", MAXMAILERS);
1539 if (m->m_maxrcpt <= 0)
1540 m->m_maxrcpt = DEFAULT_MAX_RCPT;
1542 /* do some heuristic cleanup for back compatibility */
1543 if (bitnset(M_LIMITS, m->m_flags))
1545 if (m->m_linelimit == 0)
1546 m->m_linelimit = SMTPLINELIM;
1547 if (ConfigLevel < 2)
1548 setbitn(M_7BITS, m->m_flags);
1551 if (strcmp(m->m_mailer, "[TCP]") == 0)
1553 syserr("M%s: P=[TCP] must be replaced by P=[IPC]", m->m_name);
1557 if (strcmp(m->m_mailer, "[IPC]") == 0)
1559 /* Use the second argument for host or path to socket */
1560 if (m->m_argv[0] == NULL || m->m_argv[1] == NULL ||
1561 m->m_argv[1][0] == '\0')
1563 syserr("M%s: too few parameters for %s mailer",
1564 m->m_name, m->m_mailer);
1567 if (strcmp(m->m_argv[0], "TCP") != 0
1569 && strcmp(m->m_argv[0], "FILE") != 0
1570 #endif /* NETUNIX */
1573 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
1574 "M%s: Warning: first argument in %s mailer must be %s\n",
1575 m->m_name, m->m_mailer,
1580 #endif /* NETUNIX */
1583 if (m->m_mtatype == NULL)
1584 m->m_mtatype = "dns";
1585 if (m->m_addrtype == NULL)
1586 m->m_addrtype = "rfc822";
1587 if (m->m_diagtype == NULL)
1589 if (m->m_argv[0] != NULL &&
1590 strcmp(m->m_argv[0], "FILE") == 0)
1591 m->m_diagtype = "x-unix";
1593 m->m_diagtype = "smtp";
1596 else if (strcmp(m->m_mailer, "[FILE]") == 0)
1598 /* Use the second argument for filename */
1599 if (m->m_argv[0] == NULL || m->m_argv[1] == NULL ||
1600 m->m_argv[2] != NULL)
1602 syserr("M%s: too %s parameters for [FILE] mailer",
1604 (m->m_argv[0] == NULL ||
1605 m->m_argv[1] == NULL) ? "few" : "many");
1608 else if (strcmp(m->m_argv[0], "FILE") != 0)
1610 syserr("M%s: first argument in [FILE] mailer must be FILE",
1616 if (m->m_eol == NULL)
1620 /* default for SMTP is \r\n; use \n for local delivery */
1621 for (pp = m->m_argv; *pp != NULL; pp++)
1623 for (p = *pp; *p != '\0'; )
1625 if ((*p++ & 0377) == MACROEXPAND && *p == 'u')
1637 /* enter the mailer into the symbol table */
1638 s = stab(m->m_name, ST_MAILER, ST_ENTER);
1639 if (s->s_mailer != NULL)
1641 i = s->s_mailer->m_mno;
1642 sm_free(s->s_mailer); /* XXX */
1648 Mailer[i] = s->s_mailer = m;
1652 ** MUNCHSTRING -- translate a string into internal form.
1655 ** p -- the string to munch.
1656 ** delimptr -- if non-NULL, set to the pointer of the
1657 ** field delimiter character.
1658 ** delim -- the delimiter for the field.
1661 ** the munched string.
1664 ** the munched string is a local static buffer.
1665 ** it must be copied before the function is called again.
1669 munchstring(p, delimptr, delim)
1675 bool backslash = false;
1676 bool quotemode = false;
1677 static char buf[MAXLINE];
1679 for (q = buf; *p != '\0' && q < &buf[sizeof(buf) - 1]; p++)
1683 /* everything is roughly literal */
1687 case 'r': /* carriage return */
1691 case 'n': /* newline */
1695 case 'f': /* form feed */
1699 case 'b': /* backspace */
1710 quotemode = !quotemode;
1711 else if (quotemode || *p != delim)
1718 if (delimptr != NULL)
1724 ** EXTRQUOTSTR -- extract a (quoted) string.
1726 ** This routine deals with quoted (") strings and escaped
1730 ** p -- source string.
1731 ** delimptr -- if non-NULL, set to the pointer of the
1732 ** field delimiter character.
1733 ** delimbuf -- delimiters for the field.
1734 ** st -- if non-NULL, store the return value (whether the
1735 ** string was correctly quoted) here.
1738 ** the extracted string.
1741 ** the returned string is a local static buffer.
1742 ** it must be copied before the function is called again.
1746 extrquotstr(p, delimptr, delimbuf, st)
1753 bool backslash = false;
1754 bool quotemode = false;
1755 static char buf[MAXLINE];
1757 for (q = buf; *p != '\0' && q < &buf[sizeof(buf) - 1]; p++)
1768 quotemode = !quotemode;
1769 else if (quotemode ||
1770 strchr(delimbuf, (int) *p) == NULL)
1776 if (delimptr != NULL)
1780 *st = !(quotemode || backslash);
1784 ** MAKEARGV -- break up a string into words
1787 ** p -- the string to break up.
1790 ** a char **argv (dynamically allocated)
1803 char *argv[MAXPV + 1];
1805 /* take apart the words */
1807 while (*p != '\0' && i < MAXPV)
1810 while (*p != '\0' && !(isascii(*p) && isspace(*p)))
1812 while (isascii(*p) && isspace(*p))
1814 argv[i++] = newstr(q);
1818 /* now make a copy of the argv */
1819 avp = (char **) xalloc(sizeof(*avp) * i);
1820 memmove((char *) avp, (char *) argv, sizeof(*avp) * i);
1825 ** PRINTRULES -- print rewrite rules (for debugging)
1834 ** prints rewrite rules.
1840 register struct rewrite *rwp;
1841 register int ruleset;
1843 for (ruleset = 0; ruleset < 10; ruleset++)
1845 if (RewriteRules[ruleset] == NULL)
1847 sm_dprintf("\n----Rule Set %d:", ruleset);
1849 for (rwp = RewriteRules[ruleset]; rwp != NULL; rwp = rwp->r_next)
1851 sm_dprintf("\nLHS:");
1852 printav(sm_debug_file(), rwp->r_lhs);
1854 printav(sm_debug_file(), rwp->r_rhs);
1859 ** PRINTMAILER -- print mailer structure (for debugging)
1862 ** fp -- output file
1863 ** m -- the mailer to print
1876 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT,
1877 "mailer %d (%s): P=%s S=", m->m_mno, m->m_name,
1879 if (RuleSetNames[m->m_se_rwset] == NULL)
1880 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%d/",
1883 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%s/",
1884 RuleSetNames[m->m_se_rwset]);
1885 if (RuleSetNames[m->m_sh_rwset] == NULL)
1886 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%d R=",
1889 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%s R=",
1890 RuleSetNames[m->m_sh_rwset]);
1891 if (RuleSetNames[m->m_re_rwset] == NULL)
1892 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%d/",
1895 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%s/",
1896 RuleSetNames[m->m_re_rwset]);
1897 if (RuleSetNames[m->m_rh_rwset] == NULL)
1898 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%d ",
1901 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%s ",
1902 RuleSetNames[m->m_rh_rwset]);
1903 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "M=%ld U=%d:%d F=",
1904 m->m_maxsize, (int) m->m_uid, (int) m->m_gid);
1905 for (j = '\0'; j <= '\177'; j++)
1906 if (bitnset(j, m->m_flags))
1907 (void) sm_io_putc(fp, SM_TIME_DEFAULT, j);
1908 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " L=%d E=",
1910 xputs(fp, m->m_eol);
1911 if (m->m_defcharset != NULL)
1912 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " C=%s",
1914 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " T=%s/%s/%s",
1915 m->m_mtatype == NULL
1916 ? "<undefined>" : m->m_mtatype,
1917 m->m_addrtype == NULL
1918 ? "<undefined>" : m->m_addrtype,
1919 m->m_diagtype == NULL
1920 ? "<undefined>" : m->m_diagtype);
1921 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " r=%d", m->m_maxrcpt);
1922 if (m->m_argv != NULL)
1924 char **a = m->m_argv;
1926 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " A=");
1930 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT,
1935 (void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "\n");
1938 ** SETOPTION -- set global processing option
1941 ** opt -- option name.
1942 ** val -- option value (as a text string).
1943 ** safe -- set if this came from a configuration file.
1944 ** Some options (if set from the command line) will
1945 ** reset the user id to avoid security problems.
1946 ** sticky -- if set, don't let other setoptions override
1948 ** e -- the main envelope.
1954 ** Sets options as implied by the arguments.
1957 static BITMAP256 StickyOpt; /* set if option is stuck */
1961 static struct resolverflags
1963 char *rf_name; /* name of the flag */
1964 long rf_bits; /* bits to set/clear */
1967 { "debug", RES_DEBUG },
1968 { "aaonly", RES_AAONLY },
1969 { "usevc", RES_USEVC },
1970 { "primary", RES_PRIMARY },
1971 { "igntc", RES_IGNTC },
1972 { "recurse", RES_RECURSE },
1973 { "defnames", RES_DEFNAMES },
1974 { "stayopen", RES_STAYOPEN },
1975 { "dnsrch", RES_DNSRCH },
1976 # ifdef RES_USE_INET6
1977 { "use_inet6", RES_USE_INET6 },
1978 # endif /* RES_USE_INET6 */
1979 { "true", 0 }, /* avoid error on old syntax */
1983 #endif /* NAMED_BIND */
1985 #define OI_NONE 0 /* no special treatment */
1986 #define OI_SAFE 0x0001 /* safe for random people to use */
1987 #define OI_SUBOPT 0x0002 /* option has suboptions */
1989 static struct optioninfo
1991 char *o_name; /* long name of option */
1992 unsigned char o_code; /* short name of option */
1993 unsigned short o_flags; /* option flags */
1996 #if defined(SUN_EXTENSIONS) && defined(REMOTE_MODE)
1997 { "RemoteMode", '>', OI_NONE },
1998 #endif /* defined(SUN_EXTENSIONS) && defined(REMOTE_MODE) */
1999 { "SevenBitInput", '7', OI_SAFE },
2000 { "EightBitMode", '8', OI_SAFE },
2001 { "AliasFile", 'A', OI_NONE },
2002 { "AliasWait", 'a', OI_NONE },
2003 { "BlankSub", 'B', OI_NONE },
2004 { "MinFreeBlocks", 'b', OI_SAFE },
2005 { "CheckpointInterval", 'C', OI_SAFE },
2006 { "HoldExpensive", 'c', OI_NONE },
2007 { "DeliveryMode", 'd', OI_SAFE },
2008 { "ErrorHeader", 'E', OI_NONE },
2009 { "ErrorMode", 'e', OI_SAFE },
2010 { "TempFileMode", 'F', OI_NONE },
2011 { "SaveFromLine", 'f', OI_NONE },
2012 { "MatchGECOS", 'G', OI_NONE },
2014 /* no long name, just here to avoid problems in setoption */
2015 { "", 'g', OI_NONE },
2016 { "HelpFile", 'H', OI_NONE },
2017 { "MaxHopCount", 'h', OI_NONE },
2018 { "ResolverOptions", 'I', OI_NONE },
2019 { "IgnoreDots", 'i', OI_SAFE },
2020 { "ForwardPath", 'J', OI_NONE },
2021 { "SendMimeErrors", 'j', OI_SAFE },
2022 { "ConnectionCacheSize", 'k', OI_NONE },
2023 { "ConnectionCacheTimeout", 'K', OI_NONE },
2024 { "UseErrorsTo", 'l', OI_NONE },
2025 { "LogLevel", 'L', OI_SAFE },
2026 { "MeToo", 'm', OI_SAFE },
2028 /* no long name, just here to avoid problems in setoption */
2029 { "", 'M', OI_NONE },
2030 { "CheckAliases", 'n', OI_NONE },
2031 { "OldStyleHeaders", 'o', OI_SAFE },
2032 { "DaemonPortOptions", 'O', OI_NONE },
2033 { "PrivacyOptions", 'p', OI_SAFE },
2034 { "PostmasterCopy", 'P', OI_NONE },
2035 { "QueueFactor", 'q', OI_NONE },
2036 { "QueueDirectory", 'Q', OI_NONE },
2037 { "DontPruneRoutes", 'R', OI_NONE },
2038 { "Timeout", 'r', OI_SUBOPT },
2039 { "StatusFile", 'S', OI_NONE },
2040 { "SuperSafe", 's', OI_SAFE },
2041 { "QueueTimeout", 'T', OI_NONE },
2042 { "TimeZoneSpec", 't', OI_NONE },
2043 { "UserDatabaseSpec", 'U', OI_NONE },
2044 { "DefaultUser", 'u', OI_NONE },
2045 { "FallbackMXhost", 'V', OI_NONE },
2046 { "Verbose", 'v', OI_SAFE },
2047 { "TryNullMXList", 'w', OI_NONE },
2048 { "QueueLA", 'x', OI_NONE },
2049 { "RefuseLA", 'X', OI_NONE },
2050 { "RecipientFactor", 'y', OI_NONE },
2051 { "ForkEachJob", 'Y', OI_NONE },
2052 { "ClassFactor", 'z', OI_NONE },
2053 { "RetryFactor", 'Z', OI_NONE },
2054 #define O_QUEUESORTORD 0x81
2055 { "QueueSortOrder", O_QUEUESORTORD, OI_SAFE },
2056 #define O_HOSTSFILE 0x82
2057 { "HostsFile", O_HOSTSFILE, OI_NONE },
2059 { "MinQueueAge", O_MQA, OI_SAFE },
2060 #define O_DEFCHARSET 0x85
2061 { "DefaultCharSet", O_DEFCHARSET, OI_SAFE },
2062 #define O_SSFILE 0x86
2063 { "ServiceSwitchFile", O_SSFILE, OI_NONE },
2064 #define O_DIALDELAY 0x87
2065 { "DialDelay", O_DIALDELAY, OI_SAFE },
2066 #define O_NORCPTACTION 0x88
2067 { "NoRecipientAction", O_NORCPTACTION, OI_SAFE },
2068 #define O_SAFEFILEENV 0x89
2069 { "SafeFileEnvironment", O_SAFEFILEENV, OI_NONE },
2070 #define O_MAXMSGSIZE 0x8a
2071 { "MaxMessageSize", O_MAXMSGSIZE, OI_NONE },
2072 #define O_COLONOKINADDR 0x8b
2073 { "ColonOkInAddr", O_COLONOKINADDR, OI_SAFE },
2074 #define O_MAXQUEUERUN 0x8c
2075 { "MaxQueueRunSize", O_MAXQUEUERUN, OI_SAFE },
2076 #define O_MAXCHILDREN 0x8d
2077 { "MaxDaemonChildren", O_MAXCHILDREN, OI_NONE },
2078 #define O_KEEPCNAMES 0x8e
2079 { "DontExpandCnames", O_KEEPCNAMES, OI_NONE },
2080 #define O_MUSTQUOTE 0x8f
2081 { "MustQuoteChars", O_MUSTQUOTE, OI_NONE },
2082 #define O_SMTPGREETING 0x90
2083 { "SmtpGreetingMessage", O_SMTPGREETING, OI_NONE },
2084 #define O_UNIXFROM 0x91
2085 { "UnixFromLine", O_UNIXFROM, OI_NONE },
2086 #define O_OPCHARS 0x92
2087 { "OperatorChars", O_OPCHARS, OI_NONE },
2088 #define O_DONTINITGRPS 0x93
2089 { "DontInitGroups", O_DONTINITGRPS, OI_NONE },
2091 { "SingleLineFromHeader", O_SLFH, OI_SAFE },
2093 { "AllowBogusHELO", O_ABH, OI_SAFE },
2094 #define O_CONNTHROT 0x97
2095 { "ConnectionRateThrottle", O_CONNTHROT, OI_NONE },
2097 { "UnsafeGroupWrites", O_UGW, OI_NONE },
2098 #define O_DBLBOUNCE 0x9a
2099 { "DoubleBounceAddress", O_DBLBOUNCE, OI_NONE },
2100 #define O_HSDIR 0x9b
2101 { "HostStatusDirectory", O_HSDIR, OI_NONE },
2102 #define O_SINGTHREAD 0x9c
2103 { "SingleThreadDelivery", O_SINGTHREAD, OI_NONE },
2104 #define O_RUNASUSER 0x9d
2105 { "RunAsUser", O_RUNASUSER, OI_NONE },
2106 #define O_DSN_RRT 0x9e
2107 { "RrtImpliesDsn", O_DSN_RRT, OI_NONE },
2108 #define O_PIDFILE 0x9f
2109 { "PidFile", O_PIDFILE, OI_NONE },
2110 #define O_DONTBLAMESENDMAIL 0xa0
2111 { "DontBlameSendmail", O_DONTBLAMESENDMAIL, OI_NONE },
2113 { "DontProbeInterfaces", O_DPI, OI_NONE },
2114 #define O_MAXRCPT 0xa2
2115 { "MaxRecipientsPerMessage", O_MAXRCPT, OI_SAFE },
2116 #define O_DEADLETTER 0xa3
2117 { "DeadLetterDrop", O_DEADLETTER, OI_NONE },
2118 #if _FFR_DONTLOCKFILESFORREAD_OPTION
2119 # define O_DONTLOCK 0xa4
2120 { "DontLockFilesForRead", O_DONTLOCK, OI_NONE },
2121 #endif /* _FFR_DONTLOCKFILESFORREAD_OPTION */
2122 #define O_MAXALIASRCSN 0xa5
2123 { "MaxAliasRecursion", O_MAXALIASRCSN, OI_NONE },
2124 #define O_CNCTONLYTO 0xa6
2125 { "ConnectOnlyTo", O_CNCTONLYTO, OI_NONE },
2126 #define O_TRUSTUSER 0xa7
2127 { "TrustedUser", O_TRUSTUSER, OI_NONE },
2128 #define O_MAXMIMEHDRLEN 0xa8
2129 { "MaxMimeHeaderLength", O_MAXMIMEHDRLEN, OI_NONE },
2130 #define O_CONTROLSOCKET 0xa9
2131 { "ControlSocketName", O_CONTROLSOCKET, OI_NONE },
2132 #define O_MAXHDRSLEN 0xaa
2133 { "MaxHeadersLength", O_MAXHDRSLEN, OI_NONE },
2134 #if _FFR_MAX_FORWARD_ENTRIES
2135 # define O_MAXFORWARD 0xab
2136 { "MaxForwardEntries", O_MAXFORWARD, OI_NONE },
2137 #endif /* _FFR_MAX_FORWARD_ENTRIES */
2138 #define O_PROCTITLEPREFIX 0xac
2139 { "ProcessTitlePrefix", O_PROCTITLEPREFIX, OI_NONE },
2140 #define O_SASLINFO 0xad
2141 #if _FFR_ALLOW_SASLINFO
2142 { "DefaultAuthInfo", O_SASLINFO, OI_SAFE },
2143 #else /* _FFR_ALLOW_SASLINFO */
2144 { "DefaultAuthInfo", O_SASLINFO, OI_NONE },
2145 #endif /* _FFR_ALLOW_SASLINFO */
2146 #define O_SASLMECH 0xae
2147 { "AuthMechanisms", O_SASLMECH, OI_NONE },
2148 #define O_CLIENTPORT 0xaf
2149 { "ClientPortOptions", O_CLIENTPORT, OI_NONE },
2150 #define O_DF_BUFSIZE 0xb0
2151 { "DataFileBufferSize", O_DF_BUFSIZE, OI_NONE },
2152 #define O_XF_BUFSIZE 0xb1
2153 { "XscriptFileBufferSize", O_XF_BUFSIZE, OI_NONE },
2154 #define O_LDAPDEFAULTSPEC 0xb2
2155 { "LDAPDefaultSpec", O_LDAPDEFAULTSPEC, OI_NONE },
2156 #define O_SRVCERTFILE 0xb4
2157 { "ServerCertFile", O_SRVCERTFILE, OI_NONE },
2158 #define O_SRVKEYFILE 0xb5
2159 { "ServerKeyFile", O_SRVKEYFILE, OI_NONE },
2160 #define O_CLTCERTFILE 0xb6
2161 { "ClientCertFile", O_CLTCERTFILE, OI_NONE },
2162 #define O_CLTKEYFILE 0xb7
2163 { "ClientKeyFile", O_CLTKEYFILE, OI_NONE },
2164 #define O_CACERTFILE 0xb8
2165 { "CACertFile", O_CACERTFILE, OI_NONE },
2166 #define O_CACERTPATH 0xb9
2167 { "CACertPath", O_CACERTPATH, OI_NONE },
2168 #define O_DHPARAMS 0xba
2169 { "DHParameters", O_DHPARAMS, OI_NONE },
2170 #define O_INPUTMILTER 0xbb
2171 { "InputMailFilters", O_INPUTMILTER, OI_NONE },
2172 #define O_MILTER 0xbc
2173 { "Milter", O_MILTER, OI_SUBOPT },
2174 #define O_SASLOPTS 0xbd
2175 { "AuthOptions", O_SASLOPTS, OI_NONE },
2176 #define O_QUEUE_FILE_MODE 0xbe
2177 { "QueueFileMode", O_QUEUE_FILE_MODE, OI_NONE },
2179 # define O_DHPARAMS5 0xbf
2180 { "DHParameters512", O_DHPARAMS5, OI_NONE },
2181 # define O_CIPHERLIST 0xc0
2182 { "CipherList", O_CIPHERLIST, OI_NONE },
2183 #endif /* _FFR_TLS_1 */
2184 #define O_RANDFILE 0xc1
2185 { "RandFile", O_RANDFILE, OI_NONE },
2186 #define O_TLS_SRV_OPTS 0xc2
2187 { "TLSSrvOptions", O_TLS_SRV_OPTS, OI_NONE },
2188 #define O_RCPTTHROT 0xc3
2189 { "BadRcptThrottle", O_RCPTTHROT, OI_SAFE },
2190 #define O_DLVR_MIN 0xc4
2191 { "DeliverByMin", O_DLVR_MIN, OI_NONE },
2192 #define O_MAXQUEUECHILDREN 0xc5
2193 { "MaxQueueChildren", O_MAXQUEUECHILDREN, OI_NONE },
2194 #define O_MAXRUNNERSPERQUEUE 0xc6
2195 { "MaxRunnersPerQueue", O_MAXRUNNERSPERQUEUE, OI_NONE },
2196 #define O_DIRECTSUBMODIFIERS 0xc7
2197 { "DirectSubmissionModifiers", O_DIRECTSUBMODIFIERS, OI_NONE },
2198 #define O_NICEQUEUERUN 0xc8
2199 { "NiceQueueRun", O_NICEQUEUERUN, OI_NONE },
2200 #define O_SHMKEY 0xc9
2201 { "SharedMemoryKey", O_SHMKEY, OI_NONE },
2202 #define O_SASLBITS 0xca
2203 { "AuthMaxBits", O_SASLBITS, OI_NONE },
2205 { "MailboxDatabase", O_MBDB, OI_NONE },
2207 { "UseMSP", O_MSQ, OI_NONE },
2208 #define O_DELAY_LA 0xcd
2209 { "DelayLA", O_DELAY_LA, OI_NONE },
2210 #define O_FASTSPLIT 0xce
2211 { "FastSplit", O_FASTSPLIT, OI_NONE },
2212 #define O_SOFTBOUNCE 0xcf
2213 { "SoftBounce", O_SOFTBOUNCE, OI_NONE },
2214 #define O_SHMKEYFILE 0xd0
2215 { "SharedMemoryKeyFile", O_SHMKEYFILE, OI_NONE },
2216 #define O_REJECTLOGINTERVAL 0xd1
2217 { "RejectLogInterval", O_REJECTLOGINTERVAL, OI_NONE },
2218 #define O_REQUIRES_DIR_FSYNC 0xd2
2219 { "RequiresDirfsync", O_REQUIRES_DIR_FSYNC, OI_NONE },
2220 #define O_CONNECTION_RATE_WINDOW_SIZE 0xd3
2221 { "ConnectionRateWindowSize", O_CONNECTION_RATE_WINDOW_SIZE, OI_NONE },
2222 #define O_CRLFILE 0xd4
2223 { "CRLFile", O_CRLFILE, OI_NONE },
2224 #define O_FALLBACKSMARTHOST 0xd5
2225 { "FallbackSmartHost", O_FALLBACKSMARTHOST, OI_NONE },
2226 #define O_SASLREALM 0xd6
2227 { "AuthRealm", O_SASLREALM, OI_NONE },
2229 # define O_CRLPATH 0xd7
2230 { "CRLPath", O_CRLPATH, OI_NONE },
2231 #endif /* _FFR_CRLPATH */
2232 #define O_HELONAME 0xd8
2233 { "HeloName", O_HELONAME, OI_NONE },
2235 # define O_REFUSELOWMEM 0xd9
2236 { "RefuseLowMem", O_REFUSELOWMEM, OI_NONE },
2237 # define O_QUEUELOWMEM 0xda
2238 { "QueueLowMem", O_QUEUELOWMEM, OI_NONE },
2239 # define O_MEMRESOURCE 0xdb
2240 { "MemoryResource", O_MEMRESOURCE, OI_NONE },
2241 #endif /* _FFR_MEMSTAT */
2242 #define O_MAXNOOPCOMMANDS 0xdc
2243 { "MaxNOOPCommands", O_MAXNOOPCOMMANDS, OI_NONE },
2245 # define O_MSG_ACCEPT 0xdd
2246 { "MessageAccept", O_MSG_ACCEPT, OI_NONE },
2247 #endif /* _FFR_MSG_ACCEPT */
2248 #if _FFR_QUEUE_RUN_PARANOIA
2249 # define O_CHK_Q_RUNNERS 0xde
2250 { "CheckQueueRunners", O_CHK_Q_RUNNERS, OI_NONE },
2251 #endif /* _FFR_QUEUE_RUN_PARANOIA */
2252 #if _FFR_EIGHT_BIT_ADDR_OK
2254 # ERROR FFR_EIGHT_BIT_ADDR_OK requires _ALLOW_255
2255 # endif /* !ALLOW_255 */
2256 # define O_EIGHT_BIT_ADDR_OK 0xdf
2257 { "EightBitAddrOK", O_EIGHT_BIT_ADDR_OK, OI_NONE },
2258 #endif /* _FFR_EIGHT_BIT_ADDR_OK */
2259 #if _FFR_ADDR_TYPE_MODES
2260 # define O_ADDR_TYPE_MODES 0xe0
2261 { "AddrTypeModes", O_ADDR_TYPE_MODES, OI_NONE },
2262 #endif /* _FFR_ADDR_TYPE_MODES */
2263 #if _FFR_BADRCPT_SHUTDOWN
2264 # define O_RCPTSHUTD 0xe1
2265 { "BadRcptShutdown", O_RCPTSHUTD, OI_SAFE },
2266 # define O_RCPTSHUTDG 0xe2
2267 { "BadRcptShutdownGood", O_RCPTSHUTDG, OI_SAFE },
2268 #endif /* _FFR_BADRCPT_SHUTDOWN */
2269 #if STARTTLS && _FFR_TLS_1
2270 # define O_SRV_SSL_OPTIONS 0xe3
2271 { "ServerSSLOptions", O_SRV_SSL_OPTIONS, OI_NONE },
2272 # define O_CLT_SSL_OPTIONS 0xe4
2273 { "ClientSSLOptions", O_CLT_SSL_OPTIONS, OI_NONE },
2274 #endif /* STARTTLS && _FFR_TLS_1 */
2276 # define O_MAX_QUEUE_AGE 0xe5
2277 { "MaxQueueAge", O_MAX_QUEUE_AGE, OI_NONE },
2278 #endif /* _FFR_EXPDELAY */
2279 #if _FFR_RCPTTHROTDELAY
2280 # define O_RCPTTHROTDELAY 0xe6
2281 { "BadRcptThrottleDelay", O_RCPTTHROTDELAY, OI_SAFE },
2282 #endif /* _FFR_RCPTTHROTDELAY */
2283 #if 0 && _FFR_QOS && defined(SOL_IP) && defined(IP_TOS)
2284 # define O_INETQOS 0xe7 /* reserved for FFR_QOS */
2285 { "InetQoS", O_INETQOS, OI_NONE },
2287 #if STARTTLS && _FFR_FIPSMODE
2288 # define O_FIPSMODE 0xe8
2289 { "FIPSMode", O_FIPSMODE, OI_NONE },
2290 #endif /* STARTTLS && _FFR_FIPSMODE */
2291 #if _FFR_REJECT_NUL_BYTE
2292 # define O_REJECTNUL 0xe9
2293 { "RejectNUL", O_REJECTNUL, OI_SAFE },
2294 #endif /* _FFR_REJECT_NUL_BYTE */
2296 { NULL, '\0', OI_NONE }
2299 #if STARTTLS && _FFR_TLS_1
2300 static struct ssl_options
2302 const char *sslopt_name; /* name of the flag */
2303 long sslopt_bits; /* bits to set/clear */
2306 /* these are turned on by default */
2307 #ifdef SSL_OP_MICROSOFT_SESS_ID_BUG
2308 { "SSL_OP_MICROSOFT_SESS_ID_BUG", SSL_OP_MICROSOFT_SESS_ID_BUG },
2310 #ifdef SSL_OP_NETSCAPE_CHALLENGE_BUG
2311 { "SSL_OP_NETSCAPE_CHALLENGE_BUG", SSL_OP_NETSCAPE_CHALLENGE_BUG },
2313 #ifdef SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG
2314 { "SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG", SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG },
2316 #ifdef SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG
2317 { "SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG", SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG },
2319 #ifdef SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER
2320 { "SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER", SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER },
2322 #ifdef SSL_OP_MSIE_SSLV2_RSA_PADDING
2323 { "SSL_OP_MSIE_SSLV2_RSA_PADDING", SSL_OP_MSIE_SSLV2_RSA_PADDING },
2325 #ifdef SSL_OP_SSLEAY_080_CLIENT_DH_BUG
2326 { "SSL_OP_SSLEAY_080_CLIENT_DH_BUG", SSL_OP_SSLEAY_080_CLIENT_DH_BUG },
2328 #ifdef SSL_OP_TLS_D5_BUG
2329 { "SSL_OP_TLS_D5_BUG", SSL_OP_TLS_D5_BUG },
2331 #ifdef SSL_OP_TLS_BLOCK_PADDING_BUG
2332 { "SSL_OP_TLS_BLOCK_PADDING_BUG", SSL_OP_TLS_BLOCK_PADDING_BUG },
2334 #ifdef SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS
2335 { "SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS", SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS },
2338 { "SSL_OP_ALL", SSL_OP_ALL },
2340 #ifdef SSL_OP_NO_QUERY_MTU
2341 { "SSL_OP_NO_QUERY_MTU", SSL_OP_NO_QUERY_MTU },
2343 #ifdef SSL_OP_COOKIE_EXCHANGE
2344 { "SSL_OP_COOKIE_EXCHANGE", SSL_OP_COOKIE_EXCHANGE },
2346 #ifdef SSL_OP_NO_TICKET
2347 { "SSL_OP_NO_TICKET", SSL_OP_NO_TICKET },
2349 #ifdef SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION
2350 { "SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION", SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION },
2352 #ifdef SSL_OP_SINGLE_ECDH_USE
2353 { "SSL_OP_SINGLE_ECDH_USE", SSL_OP_SINGLE_ECDH_USE },
2355 #ifdef SSL_OP_SINGLE_DH_USE
2356 { "SSL_OP_SINGLE_DH_USE", SSL_OP_SINGLE_DH_USE },
2358 #ifdef SSL_OP_EPHEMERAL_RSA
2359 { "SSL_OP_EPHEMERAL_RSA", SSL_OP_EPHEMERAL_RSA },
2361 #ifdef SSL_OP_CIPHER_SERVER_PREFERENCE
2362 { "SSL_OP_CIPHER_SERVER_PREFERENCE", SSL_OP_CIPHER_SERVER_PREFERENCE },
2364 #ifdef SSL_OP_TLS_ROLLBACK_BUG
2365 { "SSL_OP_TLS_ROLLBACK_BUG", SSL_OP_TLS_ROLLBACK_BUG },
2367 #ifdef SSL_OP_NO_SSLv2
2368 { "SSL_OP_NO_SSLv2", SSL_OP_NO_SSLv2 },
2370 #ifdef SSL_OP_NO_SSLv3
2371 { "SSL_OP_NO_SSLv3", SSL_OP_NO_SSLv3 },
2373 #ifdef SSL_OP_NO_TLSv1
2374 { "SSL_OP_NO_TLSv1", SSL_OP_NO_TLSv1 },
2376 #ifdef SSL_OP_PKCS1_CHECK_1
2377 { "SSL_OP_PKCS1_CHECK_1", SSL_OP_PKCS1_CHECK_1 },
2379 #ifdef SSL_OP_PKCS1_CHECK_2
2380 { "SSL_OP_PKCS1_CHECK_2", SSL_OP_PKCS1_CHECK_2 },
2382 #ifdef SSL_OP_NETSCAPE_CA_DN_BUG
2383 { "SSL_OP_NETSCAPE_CA_DN_BUG", SSL_OP_NETSCAPE_CA_DN_BUG },
2385 #ifdef SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG
2386 { "SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG", SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG },
2390 #endif /* STARTTLS && _FFR_TLS_1 */
2393 # define CANONIFY(val)
2395 # define SET_OPT_DEFAULT(opt, val) opt = val
2397 /* set a string option by expanding the value and assigning it */
2398 /* WARNING this belongs ONLY into a case statement! */
2399 #define SET_STRING_EXP(str) \
2400 expand(val, exbuf, sizeof(exbuf), e); \
2401 newval = sm_pstrdup_x(exbuf); \
2408 #define OPTNAME o->o_name == NULL ? "<unknown>" : o->o_name
2411 setoption(opt, val, safe, sticky, e)
2416 register ENVELOPE *e;
2419 register struct optioninfo *o;
2422 bool can_setuid = RunAsUid == 0;
2425 extern bool Warn_Q_option;
2426 #if _FFR_ALLOW_SASLINFO
2427 extern unsigned int SubmitMode;
2428 #endif /* _FFR_ALLOW_SASLINFO */
2429 #if STARTTLS || SM_CONF_SHM
2431 char exbuf[MAXLINE];
2432 #endif /* STARTTLS || SM_CONF_SHM */
2433 #if STARTTLS && _FFR_TLS_1
2434 long *pssloptions = NULL;
2435 #endif /* STARTTLS && _FFR_TLS_1 */
2440 /* full word options */
2441 struct optioninfo *sel;
2443 p = strchr(val, '=');
2445 p = &val[strlen(val)];
2452 syserr("readcf: null option name");
2459 subopt = strchr(val, '.');
2463 for (o = OptionTab; o->o_name != NULL; o++)
2465 if (sm_strncasecmp(o->o_name, val, strlen(val)) != 0)
2467 if (strlen(o->o_name) == strlen(val))
2469 /* completely specified -- this must be it */
2477 if (sel != NULL && o->o_name == NULL)
2479 else if (o->o_name == NULL)
2481 syserr("readcf: unknown option name %s", val);
2484 else if (sel != NULL)
2486 syserr("readcf: ambiguous option name %s (matches %s and %s)",
2487 val, sel->o_name, o->o_name);
2490 if (strlen(val) != strlen(o->o_name))
2492 int oldVerbose = Verbose;
2495 message("Option %s used as abbreviation for %s",
2497 Verbose = oldVerbose;
2504 for (o = OptionTab; o->o_name != NULL; o++)
2506 if (o->o_code == opt)
2509 if (o->o_name == NULL)
2511 syserr("readcf: unknown option name 0x%x", opt & 0xff);
2517 if (subopt != NULL && !bitset(OI_SUBOPT, o->o_flags))
2520 sm_dprintf("setoption: %s does not support suboptions, ignoring .%s\n",
2527 sm_dprintf(isascii(opt) && isprint(opt) ?
2528 "setoption %s (%c)%s%s=" :
2529 "setoption %s (0x%x)%s%s=",
2530 OPTNAME, opt, subopt == NULL ? "" : ".",
2531 subopt == NULL ? "" : subopt);
2532 xputs(sm_debug_file(), val);
2536 ** See if this option is preset for us.
2539 if (!sticky && bitnset(opt, StickyOpt))
2542 sm_dprintf(" (ignored)\n");
2547 ** Check to see if this option can be specified by this user.
2550 if (!safe && RealUid == 0)
2552 if (!safe && !bitset(OI_SAFE, o->o_flags))
2554 if (opt != 'M' || (val[0] != 'r' && val[0] != 's'))
2559 sm_dprintf(" (unsafe)");
2560 dp = drop_privileges(true);
2569 case '7': /* force seven-bit input */
2570 SevenBitInput = atobool(val);
2573 case '8': /* handling of 8-bit input */
2577 case 'p': /* pass 8 bit, convert MIME */
2578 MimeMode = MM_CVTMIME|MM_PASS8BIT;
2581 case 'm': /* convert 8-bit, convert MIME */
2582 MimeMode = MM_CVTMIME|MM_MIME8BIT;
2585 case 's': /* strict adherence */
2586 MimeMode = MM_CVTMIME;
2590 case 'r': /* reject 8-bit, don't convert MIME */
2594 case 'j': /* "just send 8" */
2595 MimeMode = MM_PASS8BIT;
2598 case 'a': /* encode 8 bit if available */
2599 MimeMode = MM_MIME8BIT|MM_PASS8BIT|MM_CVTMIME;
2602 case 'c': /* convert 8 bit to MIME, never 7 bit */
2603 MimeMode = MM_MIME8BIT;
2608 syserr("Unknown 8-bit mode %c", *val);
2609 finis(false, true, EX_USAGE);
2611 #else /* MIME8TO7 */
2612 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
2613 "Warning: Option: %s requires MIME8TO7 support\n",
2615 #endif /* MIME8TO7 */
2618 case 'A': /* set default alias file */
2623 SET_OPT_DEFAULT(al, "aliases");
2630 case 'a': /* look N minutes for "@:@" in alias file */
2632 SafeAlias = 5 MINUTES;
2634 SafeAlias = convtime(val, 'm');
2637 case 'B': /* substitution for blank character */
2639 if (SpaceSub == '\0')
2643 case 'b': /* min blocks free on queue fs/max msg size */
2644 p = strchr(val, '/');
2648 MaxMessageSize = atol(p);
2650 MinBlocksFree = atol(val);
2653 case 'c': /* don't connect to "expensive" mailers */
2654 NoConnect = atobool(val);
2657 case 'C': /* checkpoint every N addresses */
2658 if (safe || CheckpointInterval > atoi(val))
2659 CheckpointInterval = atoi(val);
2662 case 'd': /* delivery mode */
2666 set_delivery_mode(SM_DELIVER, e);
2669 case SM_QUEUE: /* queue only */
2670 case SM_DEFER: /* queue only and defer map lookups */
2671 case SM_DELIVER: /* do everything */
2672 case SM_FORK: /* fork after verification */
2674 /* deliver first TA in background, then queue */
2676 #endif /* _FFR_DM_ONE */
2677 set_delivery_mode(*val, e);
2682 syserr("Unknown delivery mode %c", *val);
2683 finis(false, true, EX_USAGE);
2687 case 'E': /* error message header/header file */
2689 ErrMsgFile = newstr(val);
2692 case 'e': /* set error processing mode */
2695 case EM_QUIET: /* be silent about it */
2696 case EM_MAIL: /* mail back */
2697 case EM_BERKNET: /* do berknet error processing */
2698 case EM_WRITE: /* write back (or mail) */
2699 case EM_PRINT: /* print errors normally (default) */
2700 e->e_errormode = *val;
2705 case 'F': /* file mode */
2706 FileMode = atooct(val) & 0777;
2709 case 'f': /* save Unix-style From lines on front */
2710 SaveFrom = atobool(val);
2713 case 'G': /* match recipients against GECOS field */
2714 MatchGecos = atobool(val);
2717 case 'g': /* default gid */
2719 if (isascii(*val) && isdigit(*val))
2723 register struct group *gr;
2728 syserr("readcf: option %c: unknown group %s",
2731 DefGid = gr->gr_gid;
2735 case 'H': /* help file */
2738 SET_OPT_DEFAULT(HelpFile, "helpfile");
2743 HelpFile = newstr(val);
2747 case 'h': /* maximum hop count */
2748 MaxHopCount = atoi(val);
2751 case 'I': /* use internet domain name server */
2753 for (p = val; *p != 0; )
2757 struct resolverflags *rfp;
2770 while (*p != '\0' && !(isascii(*p) && isspace(*p)))
2774 if (sm_strcasecmp(q, "HasWildcardMX") == 0)
2776 HasWildcardMX = !clearmode;
2779 if (sm_strcasecmp(q, "WorkAroundBrokenAAAA") == 0)
2781 WorkAroundBrokenAAAA = !clearmode;
2784 for (rfp = ResolverFlags; rfp->rf_name != NULL; rfp++)
2786 if (sm_strcasecmp(q, rfp->rf_name) == 0)
2789 if (rfp->rf_name == NULL)
2790 syserr("readcf: I option value %s unrecognized", q);
2792 _res.options &= ~rfp->rf_bits;
2794 _res.options |= rfp->rf_bits;
2797 sm_dprintf("_res.options = %x, HasWildcardMX = %d\n",
2798 (unsigned int) _res.options, HasWildcardMX);
2799 #else /* NAMED_BIND */
2800 usrerr("name server (I option) specified but BIND not compiled in");
2801 #endif /* NAMED_BIND */
2804 case 'i': /* ignore dot lines in message */
2805 IgnrDot = atobool(val);
2808 case 'j': /* send errors in MIME (RFC 1341) format */
2809 SendMIMEErrors = atobool(val);
2812 case 'J': /* .forward search path */
2814 ForwardPath = newstr(val);
2817 case 'k': /* connection cache size */
2818 MaxMciCache = atoi(val);
2819 if (MaxMciCache < 0)
2823 case 'K': /* connection cache timeout */
2824 MciCacheTimeout = convtime(val, 'm');
2827 case 'l': /* use Errors-To: header */
2828 UseErrorsTo = atobool(val);
2831 case 'L': /* log level */
2832 if (safe || LogLevel < atoi(val))
2833 LogLevel = atoi(val);
2836 case 'M': /* define macro */
2838 mid = macid_parse(val, &ep);
2843 cleanstrcpy(p, p, strlen(p) + 1);
2844 macdefine(&CurEnv->e_macro, A_TEMP, mid, p);
2847 case 'm': /* send to me too */
2848 MeToo = atobool(val);
2851 case 'n': /* validate RHS in newaliases */
2852 CheckAliases = atobool(val);
2855 /* 'N' available -- was "net name" */
2857 case 'O': /* daemon options */
2858 if (!setdaemonoptions(val))
2859 syserr("too many daemons defined (%d max)", MAXDAEMONS);
2862 case 'o': /* assume old style headers */
2864 CurEnv->e_flags |= EF_OLDSTYLE;
2866 CurEnv->e_flags &= ~EF_OLDSTYLE;
2869 case 'p': /* select privacy level */
2873 register struct prival *pv;
2874 extern struct prival PrivacyValues[];
2876 while (isascii(*p) && (isspace(*p) || ispunct(*p)))
2881 while (isascii(*p) && isalnum(*p))
2886 for (pv = PrivacyValues; pv->pv_name != NULL; pv++)
2888 if (sm_strcasecmp(val, pv->pv_name) == 0)
2891 if (pv->pv_name == NULL)
2892 syserr("readcf: Op line: %s unrecognized", val);
2894 PrivacyFlags |= pv->pv_flag;
2899 case 'P': /* postmaster copy address for returned mail */
2900 PostMasterCopy = newstr(val);
2903 case 'q': /* slope of queue only function */
2904 QueueFactor = atoi(val);
2907 case 'Q': /* queue directory */
2910 QueueDir = "mqueue";
2914 QueueDir = newstr(val);
2916 if (RealUid != 0 && !safe)
2917 Warn_Q_option = true;
2920 case 'R': /* don't prune routes */
2921 DontPruneRoutes = atobool(val);
2924 case 'r': /* read timeout */
2926 inittimeouts(val, sticky);
2928 settimeout(subopt, val, sticky);
2931 case 'S': /* status file */
2934 SET_OPT_DEFAULT(StatFile, "statistics");
2939 StatFile = newstr(val);
2943 case 's': /* be super safe, even if expensive */
2944 if (tolower(*val) == 'i')
2945 SuperSafe = SAFE_INTERACTIVE;
2946 else if (tolower(*val) == 'p')
2948 SuperSafe = SAFE_REALLY_POSTMILTER;
2950 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
2951 "Warning: SuperSafe=PostMilter requires Milter support (-DMILTER)\n");
2954 SuperSafe = atobool(val) ? SAFE_REALLY : SAFE_NO;
2957 case 'T': /* queue timeout */
2958 p = strchr(val, '/');
2962 settimeout("queuewarn", p, sticky);
2964 settimeout("queuereturn", val, sticky);
2967 case 't': /* time zone name */
2968 TimeZoneSpec = newstr(val);
2971 case 'U': /* location of user database */
2972 UdbSpec = newstr(val);
2975 case 'u': /* set default uid */
2976 for (p = val; *p != '\0'; p++)
2978 # if _FFR_DOTTED_USERNAMES
2979 if (*p == '/' || *p == ':')
2980 # else /* _FFR_DOTTED_USERNAMES */
2981 if (*p == '.' || *p == '/' || *p == ':')
2982 # endif /* _FFR_DOTTED_USERNAMES */
2988 if (isascii(*val) && isdigit(*val))
2995 register struct passwd *pw;
2998 pw = sm_getpwnam(val);
3001 syserr("readcf: option u: unknown user %s", val);
3006 DefUid = pw->pw_uid;
3007 DefGid = pw->pw_gid;
3008 DefUser = newstr(pw->pw_name);
3013 if (DefUid > UID_MAX)
3015 syserr("readcf: option u: uid value (%ld) > UID_MAX (%ld); ignored",
3016 (long)DefUid, (long)UID_MAX);
3019 # endif /* UID_MAX */
3021 /* handle the group if it is there */
3027 case 'V': /* fallback MX host */
3029 FallbackMX = newstr(val);
3032 case 'v': /* run in verbose mode */
3033 Verbose = atobool(val) ? 1 : 0;
3036 case 'w': /* if we are best MX, try host directly */
3037 TryNullMXList = atobool(val);
3040 /* 'W' available -- was wizard password */
3042 case 'x': /* load avg at which to auto-queue msgs */
3043 QueueLA = atoi(val);
3046 case 'X': /* load avg at which to auto-reject connections */
3047 RefuseLA = atoi(val);
3050 case O_DELAY_LA: /* load avg at which to delay connections */
3051 DelayLA = atoi(val);
3054 case 'y': /* work recipient factor */
3055 WkRecipFact = atoi(val);
3058 case 'Y': /* fork jobs during queue runs */
3059 ForkQueueRuns = atobool(val);
3062 case 'z': /* work message class factor */
3063 WkClassFact = atoi(val);
3066 case 'Z': /* work time factor */
3067 WkTimeFact = atoi(val);
3071 #if _FFR_QUEUE_GROUP_SORTORDER
3072 /* coordinate this with makequeue() */
3073 #endif /* _FFR_QUEUE_GROUP_SORTORDER */
3074 case O_QUEUESORTORD: /* queue sorting order */
3077 case 'f': /* File Name */
3079 QueueSortOrder = QSO_BYFILENAME;
3082 case 'h': /* Host first */
3084 QueueSortOrder = QSO_BYHOST;
3087 case 'm': /* Modification time */
3089 QueueSortOrder = QSO_BYMODTIME;
3092 case 'p': /* Priority order */
3094 QueueSortOrder = QSO_BYPRIORITY;
3097 case 't': /* Submission time */
3099 QueueSortOrder = QSO_BYTIME;
3102 case 'r': /* Random */
3104 QueueSortOrder = QSO_RANDOM;
3108 case 's': /* Shuffled host name */
3110 QueueSortOrder = QSO_BYSHUFFLE;
3112 #endif /* _FFR_RHS */
3114 case 'n': /* none */
3116 QueueSortOrder = QSO_NONE;
3120 syserr("Invalid queue sort order \"%s\"", val);
3124 case O_HOSTSFILE: /* pathname of /etc/hosts file */
3126 HostsFile = newstr(val);
3129 case O_MQA: /* minimum queue age between deliveries */
3130 MinQueueAge = convtime(val, 'm');
3134 case O_MAX_QUEUE_AGE:
3135 MaxQueueAge = convtime(val, 'm');
3137 #endif /* _FFR_EXPDELAY */
3139 case O_DEFCHARSET: /* default character set for mimefying */
3140 DefaultCharSet = newstr(denlstring(val, true, true));
3143 case O_SSFILE: /* service switch file */
3145 ServiceSwitchFile = newstr(val);
3148 case O_DIALDELAY: /* delay for dial-on-demand operation */
3149 DialDelay = convtime(val, 's');
3152 case O_NORCPTACTION: /* what to do if no recipient */
3153 if (sm_strcasecmp(val, "none") == 0)
3154 NoRecipientAction = NRA_NO_ACTION;
3155 else if (sm_strcasecmp(val, "add-to") == 0)
3156 NoRecipientAction = NRA_ADD_TO;
3157 else if (sm_strcasecmp(val, "add-apparently-to") == 0)
3158 NoRecipientAction = NRA_ADD_APPARENTLY_TO;
3159 else if (sm_strcasecmp(val, "add-bcc") == 0)
3160 NoRecipientAction = NRA_ADD_BCC;
3161 else if (sm_strcasecmp(val, "add-to-undisclosed") == 0)
3162 NoRecipientAction = NRA_ADD_TO_UNDISCLOSED;
3164 syserr("Invalid NoRecipientAction: %s", val);
3167 case O_SAFEFILEENV: /* chroot() environ for writing to files */
3171 /* strip trailing slashes */
3172 p = val + strlen(val) - 1;
3173 while (p >= val && *p == '/')
3179 SafeFileEnv = newstr(val);
3182 case O_MAXMSGSIZE: /* maximum message size */
3183 MaxMessageSize = atol(val);
3186 case O_COLONOKINADDR: /* old style handling of colon addresses */
3187 ColonOkInAddr = atobool(val);
3190 case O_MAXQUEUERUN: /* max # of jobs in a single queue run */
3191 MaxQueueRun = atoi(val);
3194 case O_MAXCHILDREN: /* max # of children of daemon */
3195 MaxChildren = atoi(val);
3198 case O_MAXQUEUECHILDREN: /* max # of children of daemon */
3199 MaxQueueChildren = atoi(val);
3202 case O_MAXRUNNERSPERQUEUE: /* max # runners in a queue group */
3203 MaxRunnersPerQueue = atoi(val);
3206 case O_NICEQUEUERUN: /* nice queue runs */
3208 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3209 "Warning: NiceQueueRun set on system that doesn't support nice()\n");
3210 #endif /* !HASNICE */
3212 /* XXX do we want to check the range? > 0 ? */
3213 NiceQueueRun = atoi(val);
3216 case O_SHMKEY: /* shared memory key */
3219 #else /* SM_CONF_SHM */
3220 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3221 "Warning: Option: %s requires shared memory support (-DSM_CONF_SHM)\n",
3223 #endif /* SM_CONF_SHM */
3226 case O_SHMKEYFILE: /* shared memory key file */
3228 SET_STRING_EXP(ShmKeyFile);
3229 #else /* SM_CONF_SHM */
3230 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3231 "Warning: Option: %s requires shared memory support (-DSM_CONF_SHM)\n",
3234 #endif /* SM_CONF_SHM */
3236 #if _FFR_MAX_FORWARD_ENTRIES
3237 case O_MAXFORWARD: /* max # of forward entries */
3238 MaxForwardEntries = atoi(val);
3240 #endif /* _FFR_MAX_FORWARD_ENTRIES */
3242 case O_KEEPCNAMES: /* don't expand CNAME records */
3243 DontExpandCnames = atobool(val);
3246 case O_MUSTQUOTE: /* must quote these characters in phrases */
3247 (void) sm_strlcpy(buf, "@,;:\\()[]", sizeof(buf));
3248 if (strlen(val) < sizeof(buf) - 10)
3249 (void) sm_strlcat(buf, val, sizeof(buf));
3251 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3252 "Warning: MustQuoteChars too long, ignored.\n");
3253 MustQuoteChars = newstr(buf);
3256 case O_SMTPGREETING: /* SMTP greeting message (old $e macro) */
3257 SmtpGreeting = newstr(munchstring(val, NULL, '\0'));
3260 case O_UNIXFROM: /* UNIX From_ line (old $l macro) */
3261 UnixFromLine = newstr(munchstring(val, NULL, '\0'));
3264 case O_OPCHARS: /* operator characters (old $o macro) */
3265 if (OperatorChars != NULL)
3266 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3267 "Warning: OperatorChars is being redefined.\n It should only be set before ruleset definitions.\n");
3268 OperatorChars = newstr(munchstring(val, NULL, '\0'));
3271 case O_DONTINITGRPS: /* don't call initgroups(3) */
3272 DontInitGroups = atobool(val);
3275 case O_SLFH: /* make sure from fits on one line */
3276 SingleLineFromHeader = atobool(val);
3279 case O_ABH: /* allow HELO commands with syntax errors */
3280 AllowBogusHELO = atobool(val);
3283 case O_CONNTHROT: /* connection rate throttle */
3284 ConnRateThrottle = atoi(val);
3287 case O_UGW: /* group writable files are unsafe */
3290 setbitn(DBS_GROUPWRITABLEFORWARDFILESAFE,
3292 setbitn(DBS_GROUPWRITABLEINCLUDEFILESAFE,
3297 case O_DBLBOUNCE: /* address to which to send double bounces */
3298 DoubleBounceAddr = newstr(val);
3301 case O_HSDIR: /* persistent host status directory */
3305 HostStatDir = newstr(val);
3309 case O_SINGTHREAD: /* single thread deliveries (requires hsdir) */
3310 SingleThreadDelivery = atobool(val);
3313 case O_RUNASUSER: /* run bulk of code as this user */
3314 for (p = val; *p != '\0'; p++)
3316 # if _FFR_DOTTED_USERNAMES
3317 if (*p == '/' || *p == ':')
3318 # else /* _FFR_DOTTED_USERNAMES */
3319 if (*p == '.' || *p == '/' || *p == ':')
3320 # endif /* _FFR_DOTTED_USERNAMES */
3326 if (isascii(*val) && isdigit(*val))
3329 RunAsUid = atoi(val);
3333 register struct passwd *pw;
3335 pw = sm_getpwnam(val);
3338 syserr("readcf: option RunAsUser: unknown user %s", val);
3341 else if (can_setuid)
3344 RunAsUserName = newstr(val);
3345 RunAsUid = pw->pw_uid;
3346 RunAsGid = pw->pw_gid;
3348 else if (EffGid == pw->pw_gid)
3349 RunAsGid = pw->pw_gid;
3350 else if (UseMSP && *p == '\0')
3351 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3352 "WARNING: RunAsUser for MSP ignored, check group ids (egid=%d, want=%d)\n",
3357 if (RunAsUid > UID_MAX)
3359 syserr("readcf: option RunAsUser: uid value (%ld) > UID_MAX (%ld); ignored",
3360 (long) RunAsUid, (long) UID_MAX);
3363 # endif /* UID_MAX */
3366 if (isascii(*p) && isdigit(*p))
3370 runasgid = (gid_t) atoi(p);
3371 if (can_setuid || EffGid == runasgid)
3372 RunAsGid = runasgid;
3374 (void) sm_io_fprintf(smioout,
3376 "WARNING: RunAsUser for MSP ignored, check group ids (egid=%d, want=%d)\n",
3382 register struct group *gr;
3386 syserr("readcf: option RunAsUser: unknown group %s",
3388 else if (can_setuid || EffGid == gr->gr_gid)
3389 RunAsGid = gr->gr_gid;
3391 (void) sm_io_fprintf(smioout,
3393 "WARNING: RunAsUser for MSP ignored, check group ids (egid=%d, want=%d)\n",
3399 sm_dprintf("readcf: RunAsUser = %d:%d\n",
3400 (int) RunAsUid, (int) RunAsGid);
3404 RrtImpliesDsn = atobool(val);
3408 PSTRSET(PidFile, val);
3411 case O_DONTBLAMESENDMAIL:
3415 register struct dbsval *dbs;
3416 extern struct dbsval DontBlameSendmailValues[];
3418 while (isascii(*p) && (isspace(*p) || ispunct(*p)))
3423 while (isascii(*p) && isalnum(*p))
3428 for (dbs = DontBlameSendmailValues;
3429 dbs->dbs_name != NULL; dbs++)
3431 if (sm_strcasecmp(val, dbs->dbs_name) == 0)
3434 if (dbs->dbs_name == NULL)
3435 syserr("readcf: DontBlameSendmail option: %s unrecognized", val);
3436 else if (dbs->dbs_flag == DBS_SAFE)
3437 clrbitmap(DontBlameSendmail);
3439 setbitn(dbs->dbs_flag, DontBlameSendmail);
3445 if (sm_strcasecmp(val, "loopback") == 0)
3446 DontProbeInterfaces = DPI_SKIPLOOPBACK;
3447 else if (atobool(val))
3448 DontProbeInterfaces = DPI_PROBENONE;
3450 DontProbeInterfaces = DPI_PROBEALL;
3454 MaxRcptPerMsg = atoi(val);
3458 BadRcptThrottle = atoi(val);
3461 #if _FFR_RCPTTHROTDELAY
3462 case O_RCPTTHROTDELAY:
3463 BadRcptThrottleDelay = atoi(val);
3465 #endif /* _FFR_RCPTTHROTDELAY */
3469 PSTRSET(DeadLetterDrop, val);
3472 #if _FFR_DONTLOCKFILESFORREAD_OPTION
3474 DontLockReadFiles = atobool(val);
3476 #endif /* _FFR_DONTLOCKFILESFORREAD_OPTION */
3478 case O_MAXALIASRCSN:
3479 MaxAliasRecursion = atoi(val);
3483 /* XXX should probably use gethostbyname */
3484 #if NETINET || NETINET6
3485 ConnectOnlyTo.sa.sa_family = AF_UNSPEC;
3487 if (anynet_pton(AF_INET6, val,
3488 &ConnectOnlyTo.sin6.sin6_addr) == 1)
3489 ConnectOnlyTo.sa.sa_family = AF_INET6;
3491 # endif /* NETINET6 */
3494 ConnectOnlyTo.sin.sin_addr.s_addr = inet_addr(val);
3495 if (ConnectOnlyTo.sin.sin_addr.s_addr != INADDR_NONE)
3496 ConnectOnlyTo.sa.sa_family = AF_INET;
3499 # endif /* NETINET */
3500 if (ConnectOnlyTo.sa.sa_family == AF_UNSPEC)
3502 syserr("readcf: option ConnectOnlyTo: invalid IP address %s",
3506 #endif /* NETINET || NETINET6 */
3510 # if !HASFCHOWN && !defined(_FFR_DROP_TRUSTUSER_WARNING)
3512 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3513 "readcf: option TrustedUser may cause problems on systems\n which do not support fchown() if UseMSP is not set.\n");
3514 # endif /* !HASFCHOWN && !defined(_FFR_DROP_TRUSTUSER_WARNING) */
3515 if (isascii(*val) && isdigit(*val))
3516 TrustedUid = atoi(val);
3519 register struct passwd *pw;
3522 pw = sm_getpwnam(val);
3525 syserr("readcf: option TrustedUser: unknown user %s", val);
3529 TrustedUid = pw->pw_uid;
3533 if (TrustedUid > UID_MAX)
3535 syserr("readcf: option TrustedUser: uid value (%ld) > UID_MAX (%ld)",
3536 (long) TrustedUid, (long) UID_MAX);
3539 # endif /* UID_MAX */
3542 case O_MAXMIMEHDRLEN:
3543 p = strchr(val, '/');
3546 MaxMimeHeaderLength = atoi(val);
3547 if (p != NULL && *p != '\0')
3548 MaxMimeFieldLength = atoi(p);
3550 MaxMimeFieldLength = MaxMimeHeaderLength / 2;
3552 if (MaxMimeHeaderLength <= 0)
3553 MaxMimeHeaderLength = 0;
3554 else if (MaxMimeHeaderLength < 128)
3555 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3556 "Warning: MaxMimeHeaderLength: header length limit set lower than 128\n");
3558 if (MaxMimeFieldLength <= 0)
3559 MaxMimeFieldLength = 0;
3560 else if (MaxMimeFieldLength < 40)
3561 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3562 "Warning: MaxMimeHeaderLength: field length limit set lower than 40\n");
3565 ** Headers field values now include leading space, so let's
3566 ** adjust the values to be "backward compatible".
3569 if (MaxMimeHeaderLength > 0)
3570 MaxMimeHeaderLength++;
3571 if (MaxMimeFieldLength > 0)
3572 MaxMimeFieldLength++;
3575 case O_CONTROLSOCKET:
3576 PSTRSET(ControlSocketName, val);
3580 MaxHeadersLength = atoi(val);
3582 if (MaxHeadersLength > 0 &&
3583 MaxHeadersLength < (MAXHDRSLEN / 2))
3584 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3585 "Warning: MaxHeadersLength: headers length limit set lower than %d\n",
3589 case O_PROCTITLEPREFIX:
3590 PSTRSET(ProcTitlePrefix, val);
3595 # if _FFR_ALLOW_SASLINFO
3597 ** Allow users to select their own authinfo file
3598 ** under certain circumstances, otherwise just ignore
3599 ** the option. If the option isn't ignored, several
3600 ** commands don't work very well, e.g., mailq.
3601 ** However, this is not a "perfect" solution.
3602 ** If mail is queued, the authentication info
3603 ** will not be used in subsequent delivery attempts.
3604 ** If we really want to support this, then it has
3605 ** to be stored in the queue file.
3607 if (!bitset(SUBMIT_MSA, SubmitMode) && RealUid != 0 &&
3608 RunAsUid != RealUid)
3610 # endif /* _FFR_ALLOW_SASLINFO */
3611 PSTRSET(SASLInfo, val);
3615 if (AuthMechanisms != NULL)
3616 sm_free(AuthMechanisms); /* XXX */
3618 AuthMechanisms = newstr(val);
3620 AuthMechanisms = NULL;
3624 if (AuthRealm != NULL)
3627 AuthRealm = newstr(val);
3633 while (val != NULL && *val != '\0')
3638 SASLOpts |= SASL_AUTH_AUTH;
3642 SASLOpts |= SASL_SEC_NOACTIVE;
3646 SASLOpts |= SASL_SEC_PASS_CREDENTIALS;
3650 SASLOpts |= SASL_SEC_NODICTIONARY;
3654 SASLOpts |= SASL_SEC_FORWARD_SECRECY;
3659 SASLOpts |= SASL_SEC_MUTUAL_AUTH;
3661 # endif /* SASL >= 20101 */
3664 SASLOpts |= SASL_SEC_NOPLAINTEXT;
3668 SASLOpts |= SASL_SEC_NOANONYMOUS;
3671 case ' ': /* ignore */
3672 case '\t': /* ignore */
3673 case ',': /* ignore */
3677 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3678 "Warning: Option: %s unknown parameter '%c'\n",
3686 val = strpbrk(val, ", \t");
3693 MaxSLBits = atoi(val);
3702 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3703 "Warning: Option: %s requires SASL support (-DSASL)\n",
3710 SET_STRING_EXP(SrvCertFile);
3712 SET_STRING_EXP(SrvKeyFile);
3714 SET_STRING_EXP(CltCertFile);
3716 SET_STRING_EXP(CltKeyFile);
3718 SET_STRING_EXP(CACertFile);
3720 SET_STRING_EXP(CACertPath);
3722 SET_STRING_EXP(DHParams);
3725 SET_STRING_EXP(DHParams5);
3727 SET_STRING_EXP(CipherList);
3728 case O_SRV_SSL_OPTIONS:
3729 pssloptions = &Srv_SSL_Options;
3730 case O_CLT_SSL_OPTIONS:
3731 if (pssloptions == NULL)
3732 pssloptions = &Clt_SSL_Options;
3733 for (p = val; *p != 0; )
3737 struct ssl_options *sslopts;
3744 if (*p == '-' || *p == '+')
3745 clearmode = *p++ == '-';
3747 while (*p != '\0' && !(isascii(*p) && isspace(*p)))
3751 for (sslopts = SSL_Option;
3752 sslopts->sslopt_name != NULL; sslopts++)
3754 if (sm_strcasecmp(q, sslopts->sslopt_name) == 0)
3757 if (sslopts->sslopt_name == NULL)
3760 syserr("readcf: %s option value %s unrecognized",
3764 *pssloptions &= ~sslopts->sslopt_bits;
3766 *pssloptions |= sslopts->sslopt_bits;
3771 # endif /* _FFR_TLS_1 */
3774 # if OPENSSL_VERSION_NUMBER > 0x00907000L
3775 SET_STRING_EXP(CRLFile);
3776 # else /* OPENSSL_VERSION_NUMBER > 0x00907000L */
3777 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3778 "Warning: Option: %s requires at least OpenSSL 0.9.7\n",
3781 # endif /* OPENSSL_VERSION_NUMBER > 0x00907000L */
3785 # if OPENSSL_VERSION_NUMBER > 0x00907000L
3786 SET_STRING_EXP(CRLPath);
3787 # else /* OPENSSL_VERSION_NUMBER > 0x00907000L */
3788 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3789 "Warning: Option: %s requires at least OpenSSL 0.9.7\n",
3792 # endif /* OPENSSL_VERSION_NUMBER > 0x00907000L */
3793 # endif /* _FFR_CRLPATH */
3796 ** XXX How about options per daemon/client instead of globally?
3797 ** This doesn't work well for some options, e.g., no server cert,
3798 ** but fine for others.
3800 ** XXX Some people may want different certs per server.
3802 ** See also srvfeatures()
3805 case O_TLS_SRV_OPTS:
3806 while (val != NULL && *val != '\0')
3811 TLS_Srv_Opts |= TLS_I_NO_VRFY;
3815 ** Server without a cert? That works only if
3816 ** AnonDH is enabled as cipher, which is not in the
3817 ** default list. Hence the CipherList option must
3818 ** be available. Moreover: which clients support this
3819 ** besides sendmail with this setting?
3823 TLS_Srv_Opts &= ~TLS_I_SRV_CERT;
3825 # endif /* _FFR_TLS_1 */
3826 case ' ': /* ignore */
3827 case '\t': /* ignore */
3828 case ',': /* ignore */
3831 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3832 "Warning: Option: %s unknown parameter '%c'\n",
3840 val = strpbrk(val, ", \t");
3847 PSTRSET(RandFile, val);
3850 #else /* STARTTLS */
3861 # endif /* _FFR_TLS_1 */
3865 # endif /* _FFR_CRLPATH */
3867 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3868 "Warning: Option: %s requires TLS support\n",
3872 #endif /* STARTTLS */
3873 #if STARTTLS && _FFR_FIPSMODE
3875 FipsMode = atobool(val);
3877 #endif /* STARTTLS && _FFR_FIPSMODE */
3880 setclientoptions(val);
3884 DataFileBufferSize = atoi(val);
3888 XscriptFileBufferSize = atoi(val);
3891 case O_LDAPDEFAULTSPEC:
3893 ldapmap_set_defaults(val);
3895 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3896 "Warning: Option: %s requires LDAP support (-DLDAPMAP)\n",
3898 #endif /* LDAPMAP */
3903 InputFilterList = newstr(val);
3905 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3906 "Warning: Option: %s requires Milter support (-DMILTER)\n",
3913 milter_set_option(subopt, val, sticky);
3915 (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3916 "Warning: Option: %s requires Milter support (-DMILTER)\n",
3921 case O_QUEUE_FILE_MODE: /* queue file mode */
3922 QueueFileMode = atooct(val) & 0777;
3925 case O_DLVR_MIN: /* deliver by minimum time */
3926 DeliverByMin = convtime(val, 's');
3929 /* modifiers {daemon_flags} for direct submissions */
3930 case O_DIRECTSUBMODIFIERS:
3932 BITMAP256 m; /* ignored */
3933 extern ENVELOPE BlankEnvelope;
3935 macdefine(&BlankEnvelope.e_macro, A_PERM,
3936 macid("{daemon_flags}"),
3937 getmodifiers(val, m));
3942 FastSplit = atoi(val);
3950 UseMSP = atobool(val);
3954 SoftBounce = atobool(val);
3957 case O_REJECTLOGINTERVAL: /* time btwn log msgs while refusing */
3958 RejectLogInterval = convtime(val, 'h');
3961 case O_REQUIRES_DIR_FSYNC:
3962 #if REQUIRES_DIR_FSYNC
3963 RequiresDirfsync = atobool(val);
3964 #else /* REQUIRES_DIR_FSYNC */
3965 /* silently ignored... required for cf file option */
3966 #endif /* REQUIRES_DIR_FSYNC */
3969 case O_CONNECTION_RATE_WINDOW_SIZE:
3970 ConnectionRateWindowSize = convtime(val, 's');
3973 case O_FALLBACKSMARTHOST: /* fallback smart host */
3975 FallbackSmartHost = newstr(val);
3979 HeloName = newstr(val);
3983 case O_REFUSELOWMEM:
3984 RefuseLowMem = atoi(val);
3987 QueueLowMem = atoi(val);
3990 MemoryResource = newstr(val);
3992 #endif /* _FFR_MEMSTAT */
3994 case O_MAXNOOPCOMMANDS:
3995 MaxNOOPCommands = atoi(val);
4000 MessageAccept = newstr(val);
4002 #endif /* _FFR_MSG_ACCEPT */
4004 #if _FFR_QUEUE_RUN_PARANOIA
4005 case O_CHK_Q_RUNNERS:
4006 CheckQueueRunners = atoi(val);
4008 #endif /* _FFR_QUEUE_RUN_PARANOIA */
4010 #if _FFR_EIGHT_BIT_ADDR_OK
4011 case O_EIGHT_BIT_ADDR_OK:
4012 EightBitAddrOK = atobool(val);
4014 #endif /* _FFR_EIGHT_BIT_ADDR_OK */
4016 #if _FFR_ADDR_TYPE_MODES
4017 case O_ADDR_TYPE_MODES:
4018 AddrTypeModes = atobool(val);
4020 #endif /* _FFR_ADDR_TYPE_MODES */
4022 #if _FFR_BADRCPT_SHUTDOWN
4024 BadRcptShutdown = atoi(val);
4028 BadRcptShutdownGood = atoi(val);
4030 #endif /* _FFR_BADRCPT_SHUTDOWN */
4032 #if _FFR_REJECT_NUL_BYTE
4034 RejectNUL = atobool(val);
4036 #endif /* _FFR_REJECT_NUL_BYTE */
4041 if (isascii(opt) && isprint(opt))
4042 sm_dprintf("Warning: option %c unknown\n", opt);
4044 sm_dprintf("Warning: option 0x%x unknown\n", opt);
4050 ** Options with suboptions are responsible for taking care
4051 ** of sticky-ness (e.g., that a command line setting is kept
4052 ** when reading in the sendmail.cf file). This has to be done
4053 ** when the suboptions are parsed since each suboption must be
4054 ** sticky, not the root option.
4057 if (sticky && !bitset(OI_SUBOPT, o->o_flags))
4058 setbitn(opt, StickyOpt);
4061 ** SETCLASS -- set a string into a class
4064 ** class -- the class to put the string in.
4065 ** str -- the string to enter
4071 ** puts the word into the symbol table.
4075 setclass(class, str)
4081 if ((str[0] & 0377) == MATCHCLASS)
4091 sm_dprintf("setclass(%s, $=%s)\n",
4092 macname(class), macname(mid));
4093 copy_class(mid, class);
4098 sm_dprintf("setclass(%s, %s)\n", macname(class), str);
4100 s = stab(str, ST_CLASS, ST_ENTER);
4101 setbitn(bitidx(class), s->s_class);
4105 ** MAKEMAPENTRY -- create a map entry
4108 ** line -- the config file line
4111 ** A pointer to the map that has been created.
4112 ** NULL if there was a syntax error.
4115 ** Enters the map into the dictionary.
4128 for (p = line; isascii(*p) && isspace(*p); p++)
4130 if (!(isascii(*p) && isalnum(*p)))
4132 syserr("readcf: config K line: no map name");
4137 while ((isascii(*++p) && isalnum(*p)) || *p == '_' || *p == '.')
4141 while (isascii(*p) && isspace(*p))
4143 if (!(isascii(*p) && isalnum(*p)))
4145 syserr("readcf: config K line, map %s: no map class", mapname);
4149 while (isascii(*++p) && isalnum(*p))
4153 while (isascii(*p) && isspace(*p))
4156 /* look up the class */
4157 class = stab(classname, ST_MAPCLASS, ST_FIND);
4160 syserr("readcf: map %s: class %s not available", mapname,
4166 s = stab(mapname, ST_MAP, ST_ENTER);
4167 s->s_map.map_class = &class->s_mapclass;
4168 s->s_map.map_mname = newstr(mapname);
4170 if (class->s_mapclass.map_parse(&s->s_map, p))
4171 s->s_map.map_mflags |= MF_VALID;
4175 sm_dprintf("map %s, class %s, flags %lx, file %s,\n",
4176 s->s_map.map_mname, s->s_map.map_class->map_cname,
4177 s->s_map.map_mflags, s->s_map.map_file);
4178 sm_dprintf("\tapp %s, domain %s, rebuild %s\n",
4179 s->s_map.map_app, s->s_map.map_domain,
4180 s->s_map.map_rebuild);
4185 ** STRTORWSET -- convert string to rewriting set number
4188 ** p -- the pointer to the string to decode.
4189 ** endp -- if set, store the trailing delimiter here.
4190 ** stabmode -- ST_ENTER to create this entry, ST_FIND if
4191 ** it must already exist.
4194 ** The appropriate ruleset number.
4195 ** -1 if it is not valid (error already printed)
4199 strtorwset(p, endp, stabmode)
4205 static int nextruleset = MAXRWSETS;
4207 while (isascii(*p) && isspace(*p))
4211 syserr("invalid ruleset name: \"%.20s\"", p);
4216 ruleset = strtol(p, endp, 10);
4217 if (ruleset >= MAXRWSETS / 2 || ruleset < 0)
4219 syserr("bad ruleset %d (%d max)",
4220 ruleset, MAXRWSETS / 2);
4231 while (*p != '\0' && isascii(*p) && (isalnum(*p) || *p == '_'))
4233 if (q == p || !(isascii(*q) && isalpha(*q)))
4235 /* no valid characters */
4236 syserr("invalid ruleset name: \"%.20s\"", q);
4239 while (isascii(*p) && isspace(*p))
4244 s = stab(q, ST_RULESET, stabmode);
4251 if (stabmode == ST_ENTER && delim == '=')
4253 while (isascii(*++p) && isspace(*p))
4255 if (!(isascii(*p) && isdigit(*p)))
4257 syserr("bad ruleset definition \"%s\" (number required after `=')", q);
4262 ruleset = strtol(p, endp, 10);
4263 if (ruleset >= MAXRWSETS / 2 || ruleset < 0)
4265 syserr("bad ruleset number %d in \"%s\" (%d max)",
4266 ruleset, q, MAXRWSETS / 2);
4275 if (s->s_ruleset >= 0)
4276 ruleset = s->s_ruleset;
4277 else if ((ruleset = --nextruleset) < MAXRWSETS / 2)
4279 syserr("%s: too many named rulesets (%d max)",
4284 if (s->s_ruleset >= 0 &&
4286 ruleset != s->s_ruleset)
4288 syserr("%s: ruleset changed value (old %d, new %d)",
4289 q, s->s_ruleset, ruleset);
4290 ruleset = s->s_ruleset;
4292 else if (ruleset >= 0)
4294 s->s_ruleset = ruleset;
4296 if (stabmode == ST_ENTER && ruleset >= 0)
4300 if (RuleSetNames[ruleset] != NULL)
4301 sm_free(RuleSetNames[ruleset]); /* XXX */
4302 if (delim != '\0' && (h = strchr(q, delim)) != NULL)
4304 RuleSetNames[ruleset] = newstr(q);
4305 if (delim == '/' && h != NULL)
4306 *h = delim; /* put back delim */
4312 ** SETTIMEOUT -- set an individual timeout
4315 ** name -- the name of the timeout.
4316 ** val -- the value of the timeout.
4317 ** sticky -- if set, don't let other setoptions override
4324 /* set if Timeout sub-option is stuck */
4325 static BITMAP256 StickyTimeoutOpt;
4327 static struct timeoutinfo
4329 char *to_name; /* long name of timeout */
4330 unsigned char to_code; /* code for option */
4333 #define TO_INITIAL 0x01
4334 { "initial", TO_INITIAL },
4335 #define TO_MAIL 0x02
4336 { "mail", TO_MAIL },
4337 #define TO_RCPT 0x03
4338 { "rcpt", TO_RCPT },
4339 #define TO_DATAINIT 0x04
4340 { "datainit", TO_DATAINIT },
4341 #define TO_DATABLOCK 0x05
4342 { "datablock", TO_DATABLOCK },
4343 #define TO_DATAFINAL 0x06
4344 { "datafinal", TO_DATAFINAL },
4345 #define TO_COMMAND 0x07
4346 { "command", TO_COMMAND },
4347 #define TO_RSET 0x08
4348 { "rset", TO_RSET },
4349 #define TO_HELO 0x09
4350 { "helo", TO_HELO },
4351 #define TO_QUIT 0x0A
4352 { "quit", TO_QUIT },
4353 #define TO_MISC 0x0B
4354 { "misc", TO_MISC },
4355 #define TO_IDENT 0x0C
4356 { "ident", TO_IDENT },
4357 #define TO_FILEOPEN 0x0D
4358 { "fileopen", TO_FILEOPEN },
4359 #define TO_CONNECT 0x0E
4360 { "connect", TO_CONNECT },
4361 #define TO_ICONNECT 0x0F
4362 { "iconnect", TO_ICONNECT },
4363 #define TO_QUEUEWARN 0x10
4364 { "queuewarn", TO_QUEUEWARN },
4365 { "queuewarn.*", TO_QUEUEWARN },
4366 #define TO_QUEUEWARN_NORMAL 0x11
4367 { "queuewarn.normal", TO_QUEUEWARN_NORMAL },
4368 #define TO_QUEUEWARN_URGENT 0x12
4369 { "queuewarn.urgent", TO_QUEUEWARN_URGENT },
4370 #define TO_QUEUEWARN_NON_URGENT 0x13
4371 { "queuewarn.non-urgent", TO_QUEUEWARN_NON_URGENT },
4372 #define TO_QUEUERETURN 0x14
4373 { "queuereturn", TO_QUEUERETURN },
4374 { "queuereturn.*", TO_QUEUERETURN },
4375 #define TO_QUEUERETURN_NORMAL 0x15
4376 { "queuereturn.normal", TO_QUEUERETURN_NORMAL },
4377 #define TO_QUEUERETURN_URGENT 0x16
4378 { "queuereturn.urgent", TO_QUEUERETURN_URGENT },
4379 #define TO_QUEUERETURN_NON_URGENT 0x17
4380 { "queuereturn.non-urgent", TO_QUEUERETURN_NON_URGENT },
4381 #define TO_HOSTSTATUS 0x18
4382 { "hoststatus", TO_HOSTSTATUS },
4383 #define TO_RESOLVER_RETRANS 0x19
4384 { "resolver.retrans", TO_RESOLVER_RETRANS },
4385 #define TO_RESOLVER_RETRANS_NORMAL 0x1A
4386 { "resolver.retrans.normal", TO_RESOLVER_RETRANS_NORMAL },
4387 #define TO_RESOLVER_RETRANS_FIRST 0x1B
4388 { "resolver.retrans.first", TO_RESOLVER_RETRANS_FIRST },
4389 #define TO_RESOLVER_RETRY 0x1C
4390 { "resolver.retry", TO_RESOLVER_RETRY },
4391 #define TO_RESOLVER_RETRY_NORMAL 0x1D
4392 { "resolver.retry.normal", TO_RESOLVER_RETRY_NORMAL },
4393 #define TO_RESOLVER_RETRY_FIRST 0x1E
4394 { "resolver.retry.first", TO_RESOLVER_RETRY_FIRST },
4395 #define TO_CONTROL 0x1F
4396 { "control", TO_CONTROL },
4397 #define TO_LHLO 0x20
4398 { "lhlo", TO_LHLO },
4399 #define TO_AUTH 0x21
4400 { "auth", TO_AUTH },
4401 #define TO_STARTTLS 0x22
4402 { "starttls", TO_STARTTLS },
4403 #define TO_ACONNECT 0x23
4404 { "aconnect", TO_ACONNECT },
4405 #define TO_QUEUEWARN_DSN 0x24
4406 { "queuewarn.dsn", TO_QUEUEWARN_DSN },
4407 #define TO_QUEUERETURN_DSN 0x25
4408 { "queuereturn.dsn", TO_QUEUERETURN_DSN },
4414 settimeout(name, val, sticky)
4419 register struct timeoutinfo *to;
4424 sm_dprintf("settimeout(%s = %s)", name, val);
4426 for (to = TimeOutTab; to->to_name != NULL; to++)
4428 if (sm_strcasecmp(to->to_name, name) == 0)
4432 if (to->to_name == NULL)
4434 errno = 0; /* avoid bogus error text */
4435 syserr("settimeout: invalid timeout %s", name);
4440 ** See if this option is preset for us.
4443 if (!sticky && bitnset(to->to_code, StickyTimeoutOpt))
4446 sm_dprintf(" (ignored)\n");
4453 toval = convtime(val, 'm');
4456 switch (to->to_code)
4459 TimeOuts.to_initial = toval;
4463 TimeOuts.to_mail = toval;
4467 TimeOuts.to_rcpt = toval;
4471 TimeOuts.to_datainit = toval;
4475 TimeOuts.to_datablock = toval;
4479 TimeOuts.to_datafinal = toval;
4483 TimeOuts.to_nextcommand = toval;
4487 TimeOuts.to_rset = toval;
4491 TimeOuts.to_helo = toval;
4495 TimeOuts.to_quit = toval;
4499 TimeOuts.to_miscshort = toval;
4503 TimeOuts.to_ident = toval;
4507 TimeOuts.to_fileopen = toval;
4511 TimeOuts.to_connect = toval;
4515 TimeOuts.to_iconnect = toval;
4519 TimeOuts.to_aconnect = toval;
4523 toval = convtime(val, 'h');
4524 TimeOuts.to_q_warning[TOC_NORMAL] = toval;
4525 TimeOuts.to_q_warning[TOC_URGENT] = toval;
4526 TimeOuts.to_q_warning[TOC_NONURGENT] = toval;
4527 TimeOuts.to_q_warning[TOC_DSN] = toval;
4531 case TO_QUEUEWARN_NORMAL:
4532 toval = convtime(val, 'h');
4533 TimeOuts.to_q_warning[TOC_NORMAL] = toval;
4536 case TO_QUEUEWARN_URGENT:
4537 toval = convtime(val, 'h');
4538 TimeOuts.to_q_warning[TOC_URGENT] = toval;
4541 case TO_QUEUEWARN_NON_URGENT:
4542 toval = convtime(val, 'h');
4543 TimeOuts.to_q_warning[TOC_NONURGENT] = toval;
4546 case TO_QUEUEWARN_DSN:
4547 toval = convtime(val, 'h');
4548 TimeOuts.to_q_warning[TOC_DSN] = toval;
4551 case TO_QUEUERETURN:
4552 toval = convtime(val, 'd');
4553 TimeOuts.to_q_return[TOC_NORMAL] = toval;
4554 TimeOuts.to_q_return[TOC_URGENT] = toval;
4555 TimeOuts.to_q_return[TOC_NONURGENT] = toval;
4556 TimeOuts.to_q_return[TOC_DSN] = toval;
4560 case TO_QUEUERETURN_NORMAL:
4561 toval = convtime(val, 'd');
4562 TimeOuts.to_q_return[TOC_NORMAL] = toval;
4565 case TO_QUEUERETURN_URGENT:
4566 toval = convtime(val, 'd');
4567 TimeOuts.to_q_return[TOC_URGENT] = toval;
4570 case TO_QUEUERETURN_NON_URGENT:
4571 toval = convtime(val, 'd');
4572 TimeOuts.to_q_return[TOC_NONURGENT] = toval;
4575 case TO_QUEUERETURN_DSN:
4576 toval = convtime(val, 'd');
4577 TimeOuts.to_q_return[TOC_DSN] = toval;
4581 MciInfoTimeout = toval;
4584 case TO_RESOLVER_RETRANS:
4585 toval = convtime(val, 's');
4586 TimeOuts.res_retrans[RES_TO_DEFAULT] = toval;
4587 TimeOuts.res_retrans[RES_TO_FIRST] = toval;
4588 TimeOuts.res_retrans[RES_TO_NORMAL] = toval;
4592 case TO_RESOLVER_RETRY:
4594 TimeOuts.res_retry[RES_TO_DEFAULT] = i;
4595 TimeOuts.res_retry[RES_TO_FIRST] = i;
4596 TimeOuts.res_retry[RES_TO_NORMAL] = i;
4600 case TO_RESOLVER_RETRANS_NORMAL:
4601 TimeOuts.res_retrans[RES_TO_NORMAL] = convtime(val, 's');
4604 case TO_RESOLVER_RETRY_NORMAL:
4605 TimeOuts.res_retry[RES_TO_NORMAL] = atoi(val);
4608 case TO_RESOLVER_RETRANS_FIRST:
4609 TimeOuts.res_retrans[RES_TO_FIRST] = convtime(val, 's');
4612 case TO_RESOLVER_RETRY_FIRST:
4613 TimeOuts.res_retry[RES_TO_FIRST] = atoi(val);
4617 TimeOuts.to_control = toval;
4621 TimeOuts.to_lhlo = toval;
4626 TimeOuts.to_auth = toval;
4632 TimeOuts.to_starttls = toval;
4634 #endif /* STARTTLS */
4637 syserr("settimeout: invalid timeout %s", name);
4643 for (i = 0; i <= addopts; i++)
4644 setbitn(to->to_code + i, StickyTimeoutOpt);
4648 ** INITTIMEOUTS -- parse and set timeout values
4651 ** val -- a pointer to the values. If NULL, do initial
4653 ** sticky -- if set, don't let other setoptions override
4654 ** this suboption value.
4660 ** Initializes the TimeOuts structure
4664 inittimeouts(val, sticky)
4671 sm_dprintf("inittimeouts(%s)\n", val == NULL ? "<NULL>" : val);
4674 TimeOuts.to_connect = (time_t) 0 SECONDS;
4675 TimeOuts.to_aconnect = (time_t) 0 SECONDS;
4676 TimeOuts.to_iconnect = (time_t) 0 SECONDS;
4677 TimeOuts.to_initial = (time_t) 5 MINUTES;
4678 TimeOuts.to_helo = (time_t) 5 MINUTES;
4679 TimeOuts.to_mail = (time_t) 10 MINUTES;
4680 TimeOuts.to_rcpt = (time_t) 1 HOUR;
4681 TimeOuts.to_datainit = (time_t) 5 MINUTES;
4682 TimeOuts.to_datablock = (time_t) 1 HOUR;
4683 TimeOuts.to_datafinal = (time_t) 1 HOUR;
4684 TimeOuts.to_rset = (time_t) 5 MINUTES;
4685 TimeOuts.to_quit = (time_t) 2 MINUTES;
4686 TimeOuts.to_nextcommand = (time_t) 1 HOUR;
4687 TimeOuts.to_miscshort = (time_t) 2 MINUTES;
4689 TimeOuts.to_ident = (time_t) 5 SECONDS;
4690 #else /* IDENTPROTO */
4691 TimeOuts.to_ident = (time_t) 0 SECONDS;
4692 #endif /* IDENTPROTO */
4693 TimeOuts.to_fileopen = (time_t) 60 SECONDS;
4694 TimeOuts.to_control = (time_t) 2 MINUTES;
4695 TimeOuts.to_lhlo = (time_t) 2 MINUTES;
4697 TimeOuts.to_auth = (time_t) 10 MINUTES;
4700 TimeOuts.to_starttls = (time_t) 1 HOUR;
4701 #endif /* STARTTLS */
4704 sm_dprintf("Timeouts:\n");
4705 sm_dprintf(" connect = %ld\n",
4706 (long) TimeOuts.to_connect);
4707 sm_dprintf(" aconnect = %ld\n",
4708 (long) TimeOuts.to_aconnect);
4709 sm_dprintf(" initial = %ld\n",
4710 (long) TimeOuts.to_initial);
4711 sm_dprintf(" helo = %ld\n", (long) TimeOuts.to_helo);
4712 sm_dprintf(" mail = %ld\n", (long) TimeOuts.to_mail);
4713 sm_dprintf(" rcpt = %ld\n", (long) TimeOuts.to_rcpt);
4714 sm_dprintf(" datainit = %ld\n",
4715 (long) TimeOuts.to_datainit);
4716 sm_dprintf(" datablock = %ld\n",
4717 (long) TimeOuts.to_datablock);
4718 sm_dprintf(" datafinal = %ld\n",
4719 (long) TimeOuts.to_datafinal);
4720 sm_dprintf(" rset = %ld\n", (long) TimeOuts.to_rset);
4721 sm_dprintf(" quit = %ld\n", (long) TimeOuts.to_quit);
4722 sm_dprintf(" nextcommand = %ld\n",
4723 (long) TimeOuts.to_nextcommand);
4724 sm_dprintf(" miscshort = %ld\n",
4725 (long) TimeOuts.to_miscshort);
4726 sm_dprintf(" ident = %ld\n", (long) TimeOuts.to_ident);
4727 sm_dprintf(" fileopen = %ld\n",
4728 (long) TimeOuts.to_fileopen);
4729 sm_dprintf(" lhlo = %ld\n",
4730 (long) TimeOuts.to_lhlo);
4731 sm_dprintf(" control = %ld\n",
4732 (long) TimeOuts.to_control);
4739 while (isascii(*val) && isspace(*val))
4743 for (p = val; *p != '\0' && *p != ','; p++)
4748 if (isascii(*val) && isdigit(*val))
4750 /* old syntax -- set everything */
4751 TimeOuts.to_mail = convtime(val, 'm');
4752 TimeOuts.to_rcpt = TimeOuts.to_mail;
4753 TimeOuts.to_datainit = TimeOuts.to_mail;
4754 TimeOuts.to_datablock = TimeOuts.to_mail;
4755 TimeOuts.to_datafinal = TimeOuts.to_mail;
4756 TimeOuts.to_nextcommand = TimeOuts.to_mail;
4759 setbitn(TO_MAIL, StickyTimeoutOpt);
4760 setbitn(TO_RCPT, StickyTimeoutOpt);
4761 setbitn(TO_DATAINIT, StickyTimeoutOpt);
4762 setbitn(TO_DATABLOCK, StickyTimeoutOpt);
4763 setbitn(TO_DATAFINAL, StickyTimeoutOpt);
4764 setbitn(TO_COMMAND, StickyTimeoutOpt);
4770 register char *q = strchr(val, ':');
4772 if (q == NULL && (q = strchr(val, '=')) == NULL)
4778 settimeout(val, q, sticky);
projects / FreeBSD / releng / 10.0.git / blob