1N/A/*
1N/A * Copyright (c) 1998-2007, 2009, 2010 Sendmail, Inc. and its suppliers.
1N/A * All rights reserved.
1N/A * Copyright (c) 1983, 1995-1997 Eric P. Allman. All rights reserved.
1N/A * Copyright (c) 1988, 1993
1N/A * The Regents of the University of California. All rights reserved.
1N/A *
1N/A * By using this file, you agree to the terms and conditions set
1N/A * forth in the LICENSE file which can be found at the top level of
1N/A * the sendmail distribution.
1N/A *
1N/A */
1N/A
1N/A#include <sendmail.h>
1N/A#include "map.h"
1N/A
1N/ASM_RCSID("@(#)$Id: daemon.c,v 8.691 2011/01/25 18:31:30 ca Exp $")
1N/A
1N/A#if defined(SOCK_STREAM) || defined(__GNU_LIBRARY__)
1N/A# define USE_SOCK_STREAM 1
1N/A#endif /* defined(SOCK_STREAM) || defined(__GNU_LIBRARY__) */
1N/A
1N/A#if defined(USE_SOCK_STREAM)
1N/A# if NETINET || NETINET6
1N/A# include <arpa/inet.h>
1N/A# endif /* NETINET || NETINET6 */
1N/A# if NAMED_BIND
1N/A# ifndef NO_DATA
1N/A# define NO_DATA NO_ADDRESS
1N/A# endif /* ! NO_DATA */
1N/A# endif /* NAMED_BIND */
1N/A#endif /* defined(USE_SOCK_STREAM) */
1N/A
1N/A#if STARTTLS
1N/A# include <openssl/rand.h>
1N/A#endif /* STARTTLS */
1N/A
1N/A#include <sm/time.h>
1N/A
1N/A#if IP_SRCROUTE && NETINET
1N/A# include <netinet/in_systm.h>
1N/A# include <netinet/ip.h>
1N/A# if HAS_IN_H
1N/A# include <netinet/in.h>
1N/A# ifndef IPOPTION
1N/A# define IPOPTION ip_opts
1N/A# define IP_LIST ip_opts
1N/A# define IP_DST ip_dst
1N/A# endif /* ! IPOPTION */
1N/A# else /* HAS_IN_H */
1N/A# include <netinet/ip_var.h>
1N/A# ifndef IPOPTION
1N/A# define IPOPTION ipoption
1N/A# define IP_LIST ipopt_list
1N/A# define IP_DST ipopt_dst
1N/A# endif /* ! IPOPTION */
1N/A# endif /* HAS_IN_H */
1N/A#endif /* IP_SRCROUTE && NETINET */
1N/A
1N/A#include <sm/fdset.h>
1N/A
1N/A#define DAEMON_C 1
1N/A#include <daemon.h>
1N/A
1N/Astatic void connecttimeout __P((int));
1N/Astatic int opendaemonsocket __P((DAEMON_T *, bool));
1N/Astatic unsigned short setupdaemon __P((SOCKADDR *));
1N/Astatic void getrequests_checkdiskspace __P((ENVELOPE *e));
1N/Astatic void setsockaddroptions __P((char *, DAEMON_T *));
1N/Astatic void printdaemonflags __P((DAEMON_T *));
1N/Astatic int addr_family __P((char *));
1N/Astatic int addrcmp __P((struct hostent *, char *, SOCKADDR *));
1N/Astatic void authtimeout __P((int));
1N/A
1N/A/*
1N/A** DAEMON.C -- routines to use when running as a daemon.
1N/A**
1N/A** This entire file is highly dependent on the 4.2 BSD
1N/A** interprocess communication primitives. No attempt has
1N/A** been made to make this file portable to Version 7,
1N/A** Version 6, MPX files, etc. If you should try such a
1N/A** thing yourself, I recommend chucking the entire file
1N/A** and starting from scratch. Basic semantics are:
1N/A**
1N/A** getrequests(e)
1N/A** Opens a port and initiates a connection.
1N/A** Returns in a child. Must set InChannel and
1N/A** OutChannel appropriately.
1N/A** clrdaemon()
1N/A** Close any open files associated with getting
1N/A** the connection; this is used when running the queue,
1N/A** etc., to avoid having extra file descriptors during
1N/A** the queue run and to avoid confusing the network
1N/A** code (if it cares).
1N/A** makeconnection(host, port, mci, e, enough)
1N/A** Make a connection to the named host on the given
1N/A** port. Returns zero on success, else an exit status
1N/A** describing the error.
1N/A** host_map_lookup(map, hbuf, avp, pstat)
1N/A** Convert the entry in hbuf into a canonical form.
1N/A*/
1N/A
1N/Astatic int NDaemons = 0; /* actual number of daemons */
1N/A
1N/Astatic time_t NextDiskSpaceCheck = 0;
1N/A
1N/A/*
1N/A** GETREQUESTS -- open mail IPC port and get requests.
1N/A**
1N/A** Parameters:
1N/A** e -- the current envelope.
1N/A**
1N/A** Returns:
1N/A** pointer to flags.
1N/A**
1N/A** Side Effects:
1N/A** Waits until some interesting activity occurs. When
1N/A** it does, a child is created to process it, and the
1N/A** parent waits for completion. Return from this
1N/A** routine is always in the child. The file pointers
1N/A** "InChannel" and "OutChannel" should be set to point
1N/A** to the communication channel.
1N/A** May restart persistent queue runners if they have ended
1N/A** for some reason.
1N/A*/
1N/A
1N/ABITMAP256 *
1N/Agetrequests(e)
1N/A ENVELOPE *e;
1N/A{
1N/A int t;
1N/A int idx, curdaemon = -1;
1N/A int i, olddaemon = 0;
1N/A#if XDEBUG
1N/A bool j_has_dot;
1N/A#endif /* XDEBUG */
1N/A char status[MAXLINE];
1N/A SOCKADDR sa;
1N/A SOCKADDR_LEN_T len = sizeof(sa);
1N/A#if _FFR_QUEUE_RUN_PARANOIA
1N/A time_t lastrun;
1N/A#endif /* _FFR_QUEUE_RUN_PARANOIA */
1N/A# if NETUNIX
1N/A extern int ControlSocket;
1N/A# endif /* NETUNIX */
1N/A extern ENVELOPE BlankEnvelope;
1N/A
1N/A
1N/A /* initialize data for function that generates queue ids */
1N/A init_qid_alg();
1N/A for (idx = 0; idx < NDaemons; idx++)
1N/A {
1N/A Daemons[idx].d_port = setupdaemon(&(Daemons[idx].d_addr));
1N/A Daemons[idx].d_firsttime = true;
1N/A Daemons[idx].d_refuse_connections_until = (time_t) 0;
1N/A }
1N/A
1N/A /*
1N/A ** Try to actually open the connection.
1N/A */
1N/A
1N/A if (tTd(15, 1))
1N/A {
1N/A for (idx = 0; idx < NDaemons; idx++)
1N/A {
1N/A sm_dprintf("getrequests: daemon %s: port %d\n",
1N/A Daemons[idx].d_name,
1N/A ntohs(Daemons[idx].d_port));
1N/A }
1N/A }
1N/A
1N/A /* get a socket for the SMTP connection */
1N/A for (idx = 0; idx < NDaemons; idx++)
1N/A Daemons[idx].d_socksize = opendaemonsocket(&Daemons[idx], true);
1N/A
1N/A if (opencontrolsocket() < 0)
1N/A sm_syslog(LOG_WARNING, NOQID,
1N/A "daemon could not open control socket %s: %s",
1N/A ControlSocketName, sm_errstring(errno));
1N/A
1N/A /* If there are any queue runners released reapchild() co-ord's */
1N/A (void) sm_signal(SIGCHLD, reapchild);
1N/A
1N/A /* write the pid to file, command line args to syslog */
1N/A log_sendmail_pid(e);
1N/A
1N/A#if XDEBUG
1N/A {
1N/A char jbuf[MAXHOSTNAMELEN];
1N/A
1N/A expand("\201j", jbuf, sizeof(jbuf), e);
1N/A j_has_dot = strchr(jbuf, '.') != NULL;
1N/A }
1N/A#endif /* XDEBUG */
1N/A
1N/A /* Add parent process as first item */
1N/A proc_list_add(CurrentPid, "Sendmail daemon", PROC_DAEMON, 0, -1, NULL);
1N/A
1N/A if (tTd(15, 1))
1N/A {
1N/A for (idx = 0; idx < NDaemons; idx++)
1N/A sm_dprintf("getrequests: daemon %s: socket %d\n",
1N/A Daemons[idx].d_name,
1N/A Daemons[idx].d_socket);
1N/A }
1N/A
1N/A for (;;)
1N/A {
1N/A register pid_t pid;
1N/A auto SOCKADDR_LEN_T lotherend;
1N/A bool timedout = false;
1N/A bool control = false;
1N/A int save_errno;
1N/A int pipefd[2];
1N/A time_t now;
1N/A#if STARTTLS
1N/A long seed;
1N/A#endif /* STARTTLS */
1N/A
1N/A /* see if we are rejecting connections */
1N/A (void) sm_blocksignal(SIGALRM);
1N/A CHECK_RESTART;
1N/A
1N/A for (idx = 0; idx < NDaemons; idx++)
1N/A {
1N/A /*
1N/A ** XXX do this call outside the loop?
1N/A ** no: refuse_connections may sleep().
1N/A */
1N/A
1N/A now = curtime();
1N/A if (now < Daemons[idx].d_refuse_connections_until)
1N/A continue;
1N/A if (bitnset(D_DISABLE, Daemons[idx].d_flags))
1N/A continue;
1N/A if (refuseconnections(e, idx, curdaemon == idx))
1N/A {
1N/A if (Daemons[idx].d_socket >= 0)
1N/A {
1N/A /* close socket so peer fails quickly */
1N/A (void) close(Daemons[idx].d_socket);
1N/A Daemons[idx].d_socket = -1;
1N/A }
1N/A
1N/A /* refuse connections for next 15 seconds */
1N/A Daemons[idx].d_refuse_connections_until = now + 15;
1N/A }
1N/A else if (Daemons[idx].d_socket < 0 ||
1N/A Daemons[idx].d_firsttime)
1N/A {
1N/A if (!Daemons[idx].d_firsttime && LogLevel > 8)
1N/A sm_syslog(LOG_INFO, NOQID,
1N/A "accepting connections again for daemon %s",
1N/A Daemons[idx].d_name);
1N/A
1N/A /* arrange to (re)open the socket if needed */
1N/A (void) opendaemonsocket(&Daemons[idx], false);
1N/A Daemons[idx].d_firsttime = false;
1N/A }
1N/A }
1N/A
1N/A /* May have been sleeping above, check again */
1N/A CHECK_RESTART;
1N/A
1N/A getrequests_checkdiskspace(e);
1N/A
1N/A#if XDEBUG
1N/A /* check for disaster */
1N/A {
1N/A char jbuf[MAXHOSTNAMELEN];
1N/A
1N/A expand("\201j", jbuf, sizeof(jbuf), e);
1N/A if (!wordinclass(jbuf, 'w'))
1N/A {
1N/A dumpstate("daemon lost $j");
1N/A sm_syslog(LOG_ALERT, NOQID,
1N/A "daemon process doesn't have $j in $=w; see syslog");
1N/A abort();
1N/A }
1N/A else if (j_has_dot && strchr(jbuf, '.') == NULL)
1N/A {
1N/A dumpstate("daemon $j lost dot");
1N/A sm_syslog(LOG_ALERT, NOQID,
1N/A "daemon process $j lost dot; see syslog");
1N/A abort();
1N/A }
1N/A }
1N/A#endif /* XDEBUG */
1N/A
1N/A#if 0
1N/A /*
1N/A ** Andrew Sun <asun@ieps-sun.ml.com> claims that this will
1N/A ** fix the SVr4 problem. But it seems to have gone away,
1N/A ** so is it worth doing this?
1N/A */
1N/A
1N/A if (DaemonSocket >= 0 &&
1N/A SetNonBlocking(DaemonSocket, false) < 0)
1N/A log an error here;
1N/A#endif /* 0 */
1N/A (void) sm_releasesignal(SIGALRM);
1N/A
1N/A for (;;)
1N/A {
1N/A bool setproc = false;
1N/A int highest = -1;
1N/A fd_set readfds;
1N/A struct timeval timeout;
1N/A
1N/A CHECK_RESTART;
1N/A FD_ZERO(&readfds);
1N/A for (idx = 0; idx < NDaemons; idx++)
1N/A {
1N/A /* wait for a connection */
1N/A if (Daemons[idx].d_socket >= 0)
1N/A {
1N/A if (!setproc &&
1N/A !bitnset(D_ETRNONLY,
1N/A Daemons[idx].d_flags))
1N/A {
1N/A sm_setproctitle(true, e,
1N/A "accepting connections");
1N/A setproc = true;
1N/A }
1N/A if (Daemons[idx].d_socket > highest)
1N/A highest = Daemons[idx].d_socket;
1N/A SM_FD_SET(Daemons[idx].d_socket,
1N/A &readfds);
1N/A }
1N/A }
1N/A
1N/A#if NETUNIX
1N/A if (ControlSocket >= 0)
1N/A {
1N/A if (ControlSocket > highest)
1N/A highest = ControlSocket;
1N/A SM_FD_SET(ControlSocket, &readfds);
1N/A }
1N/A#endif /* NETUNIX */
1N/A
1N/A timeout.tv_sec = 5;
1N/A timeout.tv_usec = 0;
1N/A
1N/A t = select(highest + 1, FDSET_CAST &readfds,
1N/A NULL, NULL, &timeout);
1N/A
1N/A /* Did someone signal while waiting? */
1N/A CHECK_RESTART;
1N/A
1N/A curdaemon = -1;
1N/A if (doqueuerun())
1N/A {
1N/A (void) runqueue(true, false, false, false);
1N/A#if _FFR_QUEUE_RUN_PARANOIA
1N/A lastrun = now;
1N/A#endif /* _FFR_QUEUE_RUN_PARANOIA */
1N/A }
1N/A#if _FFR_QUEUE_RUN_PARANOIA
1N/A else if (CheckQueueRunners > 0 && QueueIntvl > 0 &&
1N/A lastrun + QueueIntvl + CheckQueueRunners < now)
1N/A {
1N/A
1N/A /*
1N/A ** set lastrun unconditionally to avoid
1N/A ** calling checkqueuerunner() all the time.
1N/A ** That's also why we currently ignore the
1N/A ** result of the function call.
1N/A */
1N/A
1N/A (void) checkqueuerunner();
1N/A lastrun = now;
1N/A }
1N/A#endif /* _FFR_QUEUE_RUN_PARANOIA */
1N/A
1N/A if (t <= 0)
1N/A {
1N/A timedout = true;
1N/A break;
1N/A }
1N/A
1N/A control = false;
1N/A errno = 0;
1N/A
1N/A /* look "round-robin" for an active socket */
1N/A if ((idx = olddaemon + 1) >= NDaemons)
1N/A idx = 0;
1N/A for (i = 0; i < NDaemons; i++)
1N/A {
1N/A if (Daemons[idx].d_socket >= 0 &&
1N/A SM_FD_ISSET(Daemons[idx].d_socket,
1N/A &readfds))
1N/A {
1N/A lotherend = Daemons[idx].d_socksize;
1N/A memset(&RealHostAddr, '\0',
1N/A sizeof(RealHostAddr));
1N/A t = accept(Daemons[idx].d_socket,
1N/A (struct sockaddr *)&RealHostAddr,
1N/A &lotherend);
1N/A
1N/A /*
1N/A ** If remote side closes before
1N/A ** accept() finishes, sockaddr
1N/A ** might not be fully filled in.
1N/A */
1N/A
1N/A if (t >= 0 &&
1N/A (lotherend == 0 ||
1N/A# ifdef BSD4_4_SOCKADDR
1N/A RealHostAddr.sa.sa_len == 0 ||
1N/A# endif /* BSD4_4_SOCKADDR */
1N/A RealHostAddr.sa.sa_family != Daemons[idx].d_addr.sa.sa_family))
1N/A {
1N/A (void) close(t);
1N/A t = -1;
1N/A errno = EINVAL;
1N/A }
1N/A olddaemon = curdaemon = idx;
1N/A break;
1N/A }
1N/A if (++idx >= NDaemons)
1N/A idx = 0;
1N/A }
1N/A#if NETUNIX
1N/A if (curdaemon == -1 && ControlSocket >= 0 &&
1N/A SM_FD_ISSET(ControlSocket, &readfds))
1N/A {
1N/A struct sockaddr_un sa_un;
1N/A
1N/A lotherend = sizeof(sa_un);
1N/A memset(&sa_un, '\0', sizeof(sa_un));
1N/A t = accept(ControlSocket,
1N/A (struct sockaddr *)&sa_un,
1N/A &lotherend);
1N/A
1N/A /*
1N/A ** If remote side closes before
1N/A ** accept() finishes, sockaddr
1N/A ** might not be fully filled in.
1N/A */
1N/A
1N/A if (t >= 0 &&
1N/A (lotherend == 0 ||
1N/A# ifdef BSD4_4_SOCKADDR
1N/A sa_un.sun_len == 0 ||
1N/A# endif /* BSD4_4_SOCKADDR */
1N/A sa_un.sun_family != AF_UNIX))
1N/A {
1N/A (void) close(t);
1N/A t = -1;
1N/A errno = EINVAL;
1N/A }
1N/A if (t >= 0)
1N/A control = true;
1N/A }
1N/A#else /* NETUNIX */
1N/A if (curdaemon == -1)
1N/A {
1N/A /* No daemon to service */
1N/A continue;
1N/A }
1N/A#endif /* NETUNIX */
1N/A if (t >= 0 || errno != EINTR)
1N/A break;
1N/A }
1N/A if (timedout)
1N/A {
1N/A timedout = false;
1N/A continue;
1N/A }
1N/A save_errno = errno;
1N/A (void) sm_blocksignal(SIGALRM);
1N/A if (t < 0)
1N/A {
1N/A errno = save_errno;
1N/A
1N/A /* let's ignore these temporary errors */
1N/A if (save_errno == EINTR
1N/A#ifdef EAGAIN
1N/A || save_errno == EAGAIN
1N/A#endif /* EAGAIN */
1N/A#ifdef ECONNABORTED
1N/A || save_errno == ECONNABORTED
1N/A#endif /* ECONNABORTED */
1N/A#ifdef EWOULDBLOCK
1N/A || save_errno == EWOULDBLOCK
1N/A#endif /* EWOULDBLOCK */
1N/A )
1N/A continue;
1N/A
1N/A syserr("getrequests: accept");
1N/A
1N/A if (curdaemon >= 0)
1N/A {
1N/A /* arrange to re-open socket next time around */
1N/A (void) close(Daemons[curdaemon].d_socket);
1N/A Daemons[curdaemon].d_socket = -1;
1N/A#if SO_REUSEADDR_IS_BROKEN
1N/A /*
1N/A ** Give time for bound socket to be released.
1N/A ** This creates a denial-of-service if you can
1N/A ** force accept() to fail on affected systems.
1N/A */
1N/A
1N/A Daemons[curdaemon].d_refuse_connections_until =
1N/A curtime() + 15;
1N/A#endif /* SO_REUSEADDR_IS_BROKEN */
1N/A }
1N/A continue;
1N/A }
1N/A
1N/A if (!control)
1N/A {
1N/A /* set some daemon related macros */
1N/A switch (Daemons[curdaemon].d_addr.sa.sa_family)
1N/A {
1N/A case AF_UNSPEC:
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_family}"), "unspec");
1N/A break;
1N/A#if _FFR_DAEMON_NETUNIX
1N/A# if NETUNIX
1N/A case AF_UNIX:
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_family}"), "local");
1N/A break;
1N/A# endif /* NETUNIX */
1N/A#endif /* _FFR_DAEMON_NETUNIX */
1N/A#if NETINET
1N/A case AF_INET:
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_family}"), "inet");
1N/A break;
1N/A#endif /* NETINET */
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_family}"), "inet6");
1N/A break;
1N/A#endif /* NETINET6 */
1N/A#if NETISO
1N/A case AF_ISO:
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_family}"), "iso");
1N/A break;
1N/A#endif /* NETISO */
1N/A#if NETNS
1N/A case AF_NS:
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_family}"), "ns");
1N/A break;
1N/A#endif /* NETNS */
1N/A#if NETX25
1N/A case AF_CCITT:
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_family}"), "x.25");
1N/A break;
1N/A#endif /* NETX25 */
1N/A }
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_name}"),
1N/A Daemons[curdaemon].d_name);
1N/A if (Daemons[curdaemon].d_mflags != NULL)
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_flags}"),
1N/A Daemons[curdaemon].d_mflags);
1N/A else
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{daemon_flags}"), "");
1N/A }
1N/A
1N/A /*
1N/A ** If connection rate is exceeded here, connection shall be
1N/A ** refused later by a new call after fork() by the
1N/A ** validate_connection() function. Closing the connection
1N/A ** at this point violates RFC 2821.
1N/A ** Do NOT remove this call, its side effects are needed.
1N/A */
1N/A
1N/A connection_rate_check(&RealHostAddr, NULL);
1N/A
1N/A /*
1N/A ** Create a subprocess to process the mail.
1N/A */
1N/A
1N/A if (tTd(15, 2))
1N/A sm_dprintf("getrequests: forking (fd = %d)\n", t);
1N/A
1N/A /*
1N/A ** Advance state of PRNG.
1N/A ** This is necessary because otherwise all child processes
1N/A ** will produce the same PRN sequence and hence the selection
1N/A ** of a queue directory (and other things, e.g., MX selection)
1N/A ** are not "really" random.
1N/A */
1N/A#if STARTTLS
1N/A /* XXX get some better "random" data? */
1N/A seed = get_random();
1N/A RAND_seed((void *) &NextDiskSpaceCheck,
1N/A sizeof(NextDiskSpaceCheck));
1N/A RAND_seed((void *) &now, sizeof(now));
1N/A RAND_seed((void *) &seed, sizeof(seed));
1N/A#else /* STARTTLS */
1N/A (void) get_random();
1N/A#endif /* STARTTLS */
1N/A
1N/A#if NAMED_BIND
1N/A /*
1N/A ** Update MX records for FallbackMX.
1N/A ** Let's hope this is fast otherwise we screw up the
1N/A ** response time.
1N/A */
1N/A
1N/A if (FallbackMX != NULL)
1N/A (void) getfallbackmxrr(FallbackMX);
1N/A#endif /* NAMED_BIND */
1N/A
1N/A if (tTd(93, 100))
1N/A {
1N/A /* don't fork, handle connection in this process */
1N/A pid = 0;
1N/A pipefd[0] = pipefd[1] = -1;
1N/A }
1N/A else
1N/A {
1N/A /*
1N/A ** Create a pipe to keep the child from writing to
1N/A ** the socket until after the parent has closed
1N/A ** it. Otherwise the parent may hang if the child
1N/A ** has closed it first.
1N/A */
1N/A
1N/A if (pipe(pipefd) < 0)
1N/A pipefd[0] = pipefd[1] = -1;
1N/A
1N/A (void) sm_blocksignal(SIGCHLD);
1N/A pid = fork();
1N/A if (pid < 0)
1N/A {
1N/A syserr("daemon: cannot fork");
1N/A if (pipefd[0] != -1)
1N/A {
1N/A (void) close(pipefd[0]);
1N/A (void) close(pipefd[1]);
1N/A }
1N/A (void) sm_releasesignal(SIGCHLD);
1N/A (void) sleep(10);
1N/A (void) close(t);
1N/A continue;
1N/A }
1N/A }
1N/A
1N/A if (pid == 0)
1N/A {
1N/A char *p;
1N/A SM_FILE_T *inchannel, *outchannel = NULL;
1N/A
1N/A /*
1N/A ** CHILD -- return to caller.
1N/A ** Collect verified idea of sending host.
1N/A ** Verify calling user id if possible here.
1N/A */
1N/A
1N/A /* Reset global flags */
1N/A RestartRequest = NULL;
1N/A RestartWorkGroup = false;
1N/A ShutdownRequest = NULL;
1N/A PendingSignal = 0;
1N/A CurrentPid = getpid();
1N/A close_sendmail_pid();
1N/A
1N/A (void) sm_releasesignal(SIGALRM);
1N/A (void) sm_releasesignal(SIGCHLD);
1N/A (void) sm_signal(SIGCHLD, SIG_DFL);
1N/A (void) sm_signal(SIGHUP, SIG_DFL);
1N/A (void) sm_signal(SIGTERM, intsig);
1N/A
1N/A /* turn on profiling */
1N/A /* SM_PROF(0); */
1N/A
1N/A /*
1N/A ** Initialize exception stack and default exception
1N/A ** handler for child process.
1N/A */
1N/A
1N/A sm_exc_newthread(fatal_error);
1N/A
1N/A if (!control)
1N/A {
1N/A macdefine(&BlankEnvelope.e_macro, A_TEMP,
1N/A macid("{daemon_addr}"),
1N/A anynet_ntoa(&Daemons[curdaemon].d_addr));
1N/A (void) sm_snprintf(status, sizeof(status), "%d",
1N/A ntohs(Daemons[curdaemon].d_port));
1N/A macdefine(&BlankEnvelope.e_macro, A_TEMP,
1N/A macid("{daemon_port}"), status);
1N/A }
1N/A
1N/A for (idx = 0; idx < NDaemons; idx++)
1N/A {
1N/A if (Daemons[idx].d_socket >= 0)
1N/A (void) close(Daemons[idx].d_socket);
1N/A Daemons[idx].d_socket = -1;
1N/A }
1N/A clrcontrol();
1N/A
1N/A /* Avoid SMTP daemon actions if control command */
1N/A if (control)
1N/A {
1N/A /* Add control socket process */
1N/A proc_list_add(CurrentPid,
1N/A "console socket child",
1N/A PROC_CONTROL_CHILD, 0, -1, NULL);
1N/A }
1N/A else
1N/A {
1N/A proc_list_clear();
1N/A
1N/A /* clean up background delivery children */
1N/A (void) sm_signal(SIGCHLD, reapchild);
1N/A
1N/A /* Add parent process as first child item */
1N/A proc_list_add(CurrentPid, "daemon child",
1N/A PROC_DAEMON_CHILD, 0, -1, NULL);
1N/A /* don't schedule queue runs if ETRN */
1N/A QueueIntvl = 0;
1N/A
1N/A /*
1N/A ** Hack: override global variables if
1N/A ** the corresponding DaemonPortOption
1N/A ** is set.
1N/A */
1N/A#if _FFR_SS_PER_DAEMON
1N/A if (Daemons[curdaemon].d_supersafe !=
1N/A DPO_NOTSET)
1N/A SuperSafe = Daemons[curdaemon].
1N/A d_supersafe;
1N/A#endif /* _FFR_SS_PER_DAEMON */
1N/A if (Daemons[curdaemon].d_dm != DM_NOTSET)
1N/A set_delivery_mode(
1N/A Daemons[curdaemon].d_dm, e);
1N/A
1N/A if (Daemons[curdaemon].d_refuseLA !=
1N/A DPO_NOTSET)
1N/A RefuseLA = Daemons[curdaemon].
1N/A d_refuseLA;
1N/A if (Daemons[curdaemon].d_queueLA != DPO_NOTSET)
1N/A QueueLA = Daemons[curdaemon].d_queueLA;
1N/A if (Daemons[curdaemon].d_delayLA != DPO_NOTSET)
1N/A DelayLA = Daemons[curdaemon].d_delayLA;
1N/A if (Daemons[curdaemon].d_maxchildren !=
1N/A DPO_NOTSET)
1N/A MaxChildren = Daemons[curdaemon].
1N/A d_maxchildren;
1N/A
1N/A sm_setproctitle(true, e, "startup with %s",
1N/A anynet_ntoa(&RealHostAddr));
1N/A }
1N/A
1N/A if (pipefd[0] != -1)
1N/A {
1N/A auto char c;
1N/A
1N/A /*
1N/A ** Wait for the parent to close the write end
1N/A ** of the pipe, which we will see as an EOF.
1N/A ** This guarantees that we won't write to the
1N/A ** socket until after the parent has closed
1N/A ** the pipe.
1N/A */
1N/A
1N/A /* close the write end of the pipe */
1N/A (void) close(pipefd[1]);
1N/A
1N/A /* we shouldn't be interrupted, but ... */
1N/A while (read(pipefd[0], &c, 1) < 0 &&
1N/A errno == EINTR)
1N/A continue;
1N/A (void) close(pipefd[0]);
1N/A }
1N/A
1N/A /* control socket processing */
1N/A if (control)
1N/A {
1N/A control_command(t, e);
1N/A /* NOTREACHED */
1N/A exit(EX_SOFTWARE);
1N/A }
1N/A
1N/A /* determine host name */
1N/A p = hostnamebyanyaddr(&RealHostAddr);
1N/A if (strlen(p) > MAXNAME) /* XXX - 1 ? */
1N/A p[MAXNAME] = '\0';
1N/A RealHostName = newstr(p);
1N/A if (RealHostName[0] == '[')
1N/A {
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{client_resolve}"),
1N/A h_errno == TRY_AGAIN ? "TEMP" : "FAIL");
1N/A }
1N/A else
1N/A {
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{client_resolve}"), "OK");
1N/A }
1N/A sm_setproctitle(true, e, "startup with %s", p);
1N/A markstats(e, NULL, STATS_CONNECT);
1N/A
1N/A if ((inchannel = sm_io_open(SmFtStdiofd,
1N/A SM_TIME_DEFAULT,
1N/A (void *) &t,
1N/A SM_IO_RDONLY_B,
1N/A NULL)) == NULL ||
1N/A (t = dup(t)) < 0 ||
1N/A (outchannel = sm_io_open(SmFtStdiofd,
1N/A SM_TIME_DEFAULT,
1N/A (void *) &t,
1N/A SM_IO_WRONLY_B,
1N/A NULL)) == NULL)
1N/A {
1N/A syserr("cannot open SMTP server channel, fd=%d",
1N/A t);
1N/A finis(false, true, EX_OK);
1N/A }
1N/A sm_io_automode(inchannel, outchannel);
1N/A
1N/A InChannel = inchannel;
1N/A OutChannel = outchannel;
1N/A DisConnected = false;
1N/A
1N/A#if XLA
1N/A if (!xla_host_ok(RealHostName))
1N/A {
1N/A message("421 4.4.5 Too many SMTP sessions for this host");
1N/A finis(false, true, EX_OK);
1N/A }
1N/A#endif /* XLA */
1N/A /* find out name for interface of connection */
1N/A if (getsockname(sm_io_getinfo(InChannel, SM_IO_WHAT_FD,
1N/A NULL), &sa.sa, &len) == 0)
1N/A {
1N/A p = hostnamebyanyaddr(&sa);
1N/A if (tTd(15, 9))
1N/A sm_dprintf("getreq: got name %s\n", p);
1N/A macdefine(&BlankEnvelope.e_macro, A_TEMP,
1N/A macid("{if_name}"), p);
1N/A
1N/A /*
1N/A ** Do this only if it is not the loopback
1N/A ** interface.
1N/A */
1N/A
1N/A if (!isloopback(sa))
1N/A {
1N/A char *addr;
1N/A char family[5];
1N/A
1N/A addr = anynet_ntoa(&sa);
1N/A (void) sm_snprintf(family,
1N/A sizeof(family),
1N/A "%d", sa.sa.sa_family);
1N/A macdefine(&BlankEnvelope.e_macro,
1N/A A_TEMP,
1N/A macid("{if_addr}"), addr);
1N/A macdefine(&BlankEnvelope.e_macro,
1N/A A_TEMP,
1N/A macid("{if_family}"), family);
1N/A if (tTd(15, 7))
1N/A sm_dprintf("getreq: got addr %s and family %s\n",
1N/A addr, family);
1N/A }
1N/A else
1N/A {
1N/A macdefine(&BlankEnvelope.e_macro,
1N/A A_PERM,
1N/A macid("{if_addr}"), NULL);
1N/A macdefine(&BlankEnvelope.e_macro,
1N/A A_PERM,
1N/A macid("{if_family}"), NULL);
1N/A }
1N/A }
1N/A else
1N/A {
1N/A if (tTd(15, 7))
1N/A sm_dprintf("getreq: getsockname failed\n");
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{if_name}"), NULL);
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{if_addr}"), NULL);
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{if_family}"), NULL);
1N/A }
1N/A break;
1N/A }
1N/A
1N/A /* parent -- keep track of children */
1N/A if (control)
1N/A {
1N/A (void) sm_snprintf(status, sizeof(status),
1N/A "control socket server child");
1N/A proc_list_add(pid, status, PROC_CONTROL, 0, -1, NULL);
1N/A }
1N/A else
1N/A {
1N/A (void) sm_snprintf(status, sizeof(status),
1N/A "SMTP server child for %s",
1N/A anynet_ntoa(&RealHostAddr));
1N/A proc_list_add(pid, status, PROC_DAEMON, 0, -1,
1N/A &RealHostAddr);
1N/A }
1N/A (void) sm_releasesignal(SIGCHLD);
1N/A
1N/A /* close the read end of the synchronization pipe */
1N/A if (pipefd[0] != -1)
1N/A {
1N/A (void) close(pipefd[0]);
1N/A pipefd[0] = -1;
1N/A }
1N/A
1N/A /* close the port so that others will hang (for a while) */
1N/A (void) close(t);
1N/A
1N/A /* release the child by closing the read end of the sync pipe */
1N/A if (pipefd[1] != -1)
1N/A {
1N/A (void) close(pipefd[1]);
1N/A pipefd[1] = -1;
1N/A }
1N/A }
1N/A if (tTd(15, 2))
1N/A sm_dprintf("getreq: returning\n");
1N/A
1N/A#if MILTER
1N/A /* set the filters for this daemon */
1N/A if (Daemons[curdaemon].d_inputfilterlist != NULL)
1N/A {
1N/A for (i = 0;
1N/A (i < MAXFILTERS &&
1N/A Daemons[curdaemon].d_inputfilters[i] != NULL);
1N/A i++)
1N/A {
1N/A InputFilters[i] = Daemons[curdaemon].d_inputfilters[i];
1N/A }
1N/A if (i < MAXFILTERS)
1N/A InputFilters[i] = NULL;
1N/A }
1N/A#endif /* MILTER */
1N/A return &Daemons[curdaemon].d_flags;
1N/A}
1N/A
1N/A/*
1N/A** GETREQUESTS_CHECKDISKSPACE -- check available diskspace.
1N/A**
1N/A** Parameters:
1N/A** e -- envelope.
1N/A**
1N/A** Returns:
1N/A** none.
1N/A**
1N/A** Side Effects:
1N/A** Modifies Daemon flags (D_ETRNONLY) if not enough disk space.
1N/A*/
1N/A
1N/Astatic void
1N/Agetrequests_checkdiskspace(e)
1N/A ENVELOPE *e;
1N/A{
1N/A bool logged = false;
1N/A int idx;
1N/A time_t now;
1N/A
1N/A now = curtime();
1N/A if (now < NextDiskSpaceCheck)
1N/A return;
1N/A
1N/A /* Check if there is available disk space in all queue groups. */
1N/A if (!enoughdiskspace(0, NULL))
1N/A {
1N/A for (idx = 0; idx < NDaemons; ++idx)
1N/A {
1N/A if (bitnset(D_ETRNONLY, Daemons[idx].d_flags))
1N/A continue;
1N/A
1N/A /* log only if not logged before */
1N/A if (!logged)
1N/A {
1N/A if (LogLevel > 8)
1N/A sm_syslog(LOG_INFO, NOQID,
1N/A "rejecting new messages: min free: %ld",
1N/A MinBlocksFree);
1N/A sm_setproctitle(true, e,
1N/A "rejecting new messages: min free: %ld",
1N/A MinBlocksFree);
1N/A logged = true;
1N/A }
1N/A setbitn(D_ETRNONLY, Daemons[idx].d_flags);
1N/A }
1N/A }
1N/A else
1N/A {
1N/A for (idx = 0; idx < NDaemons; ++idx)
1N/A {
1N/A if (!bitnset(D_ETRNONLY, Daemons[idx].d_flags))
1N/A continue;
1N/A
1N/A /* log only if not logged before */
1N/A if (!logged)
1N/A {
1N/A if (LogLevel > 8)
1N/A sm_syslog(LOG_INFO, NOQID,
1N/A "accepting new messages (again)");
1N/A logged = true;
1N/A }
1N/A
1N/A /* title will be set later */
1N/A clrbitn(D_ETRNONLY, Daemons[idx].d_flags);
1N/A }
1N/A }
1N/A
1N/A /* only check disk space once a minute */
1N/A NextDiskSpaceCheck = now + 60;
1N/A}
1N/A
1N/A/*
1N/A** OPENDAEMONSOCKET -- open SMTP socket
1N/A**
1N/A** Deals with setting all appropriate options.
1N/A**
1N/A** Parameters:
1N/A** d -- the structure for the daemon to open.
1N/A** firsttime -- set if this is the initial open.
1N/A**
1N/A** Returns:
1N/A** Size in bytes of the daemon socket addr.
1N/A**
1N/A** Side Effects:
1N/A** Leaves DaemonSocket set to the open socket.
1N/A** Exits if the socket cannot be created.
1N/A*/
1N/A
1N/A#define MAXOPENTRIES 10 /* maximum number of tries to open connection */
1N/A
1N/Astatic int
1N/Aopendaemonsocket(d, firsttime)
1N/A DAEMON_T *d;
1N/A bool firsttime;
1N/A{
1N/A int on = 1;
1N/A int fdflags;
1N/A SOCKADDR_LEN_T socksize = 0;
1N/A int ntries = 0;
1N/A int save_errno;
1N/A
1N/A if (tTd(15, 2))
1N/A sm_dprintf("opendaemonsocket(%s)\n", d->d_name);
1N/A
1N/A do
1N/A {
1N/A if (ntries > 0)
1N/A (void) sleep(5);
1N/A if (firsttime || d->d_socket < 0)
1N/A {
1N/A#if _FFR_DAEMON_NETUNIX
1N/A# if NETUNIX
1N/A if (d->d_addr.sa.sa_family == AF_UNIX)
1N/A {
1N/A int rval;
1N/A long sff = SFF_SAFEDIRPATH|SFF_OPENASROOT|SFF_NOLINK|SFF_ROOTOK|SFF_EXECOK|SFF_CREAT;
1N/A
1N/A /* if not safe, don't use it */
1N/A rval = safefile(d->d_addr.sunix.sun_path,
1N/A RunAsUid, RunAsGid,
1N/A RunAsUserName, sff,
1N/A S_IRUSR|S_IWUSR, NULL);
1N/A if (rval != 0)
1N/A {
1N/A save_errno = errno;
1N/A syserr("opendaemonsocket: daemon %s: unsafe domain socket %s",
1N/A d->d_name,
1N/A d->d_addr.sunix.sun_path);
1N/A goto fail;
1N/A }
1N/A
1N/A /* Don't try to overtake an existing socket */
1N/A (void) unlink(d->d_addr.sunix.sun_path);
1N/A }
1N/A# endif /* NETUNIX */
1N/A#endif /* _FFR_DOMAIN_NETUNIX */
1N/A d->d_socket = socket(d->d_addr.sa.sa_family,
1N/A SOCK_STREAM, 0);
1N/A if (d->d_socket < 0)
1N/A {
1N/A save_errno = errno;
1N/A syserr("opendaemonsocket: daemon %s: can't create server SMTP socket",
1N/A d->d_name);
1N/A fail:
1N/A if (bitnset(D_OPTIONAL, d->d_flags) &&
1N/A (!transienterror(save_errno) ||
1N/A ntries >= MAXOPENTRIES - 1))
1N/A {
1N/A syserr("opendaemonsocket: daemon %s: optional socket disabled",
1N/A d->d_name);
1N/A setbitn(D_DISABLE, d->d_flags);
1N/A d->d_socket = -1;
1N/A return -1;
1N/A }
1N/A severe:
1N/A if (LogLevel > 0)
1N/A sm_syslog(LOG_ALERT, NOQID,
1N/A "daemon %s: problem creating SMTP socket",
1N/A d->d_name);
1N/A d->d_socket = -1;
1N/A continue;
1N/A }
1N/A
1N/A if (SM_FD_SETSIZE > 0 && d->d_socket >= SM_FD_SETSIZE)
1N/A {
1N/A save_errno = EINVAL;
1N/A syserr("opendaemonsocket: daemon %s: server SMTP socket (%d) too large",
1N/A d->d_name, d->d_socket);
1N/A goto fail;
1N/A }
1N/A
1N/A /* turn on network debugging? */
1N/A if (tTd(15, 101))
1N/A (void) setsockopt(d->d_socket, SOL_SOCKET,
1N/A SO_DEBUG, (char *)&on,
1N/A sizeof(on));
1N/A
1N/A (void) setsockopt(d->d_socket, SOL_SOCKET,
1N/A SO_REUSEADDR, (char *)&on, sizeof(on));
1N/A (void) setsockopt(d->d_socket, SOL_SOCKET,
1N/A SO_KEEPALIVE, (char *)&on, sizeof(on));
1N/A
1N/A#ifdef SO_RCVBUF
1N/A if (d->d_tcprcvbufsize > 0)
1N/A {
1N/A if (setsockopt(d->d_socket, SOL_SOCKET,
1N/A SO_RCVBUF,
1N/A (char *) &d->d_tcprcvbufsize,
1N/A sizeof(d->d_tcprcvbufsize)) < 0)
1N/A syserr("opendaemonsocket: daemon %s: setsockopt(SO_RCVBUF)", d->d_name);
1N/A }
1N/A#endif /* SO_RCVBUF */
1N/A#ifdef SO_SNDBUF
1N/A if (d->d_tcpsndbufsize > 0)
1N/A {
1N/A if (setsockopt(d->d_socket, SOL_SOCKET,
1N/A SO_SNDBUF,
1N/A (char *) &d->d_tcpsndbufsize,
1N/A sizeof(d->d_tcpsndbufsize)) < 0)
1N/A syserr("opendaemonsocket: daemon %s: setsockopt(SO_SNDBUF)", d->d_name);
1N/A }
1N/A#endif /* SO_SNDBUF */
1N/A
1N/A if ((fdflags = fcntl(d->d_socket, F_GETFD, 0)) == -1 ||
1N/A fcntl(d->d_socket, F_SETFD,
1N/A fdflags | FD_CLOEXEC) == -1)
1N/A {
1N/A save_errno = errno;
1N/A syserr("opendaemonsocket: daemon %s: failed to %s close-on-exec flag: %s",
1N/A d->d_name,
1N/A fdflags == -1 ? "get" : "set",
1N/A sm_errstring(save_errno));
1N/A (void) close(d->d_socket);
1N/A goto severe;
1N/A }
1N/A
1N/A switch (d->d_addr.sa.sa_family)
1N/A {
1N/A#if _FFR_DAEMON_NETUNIX
1N/A# ifdef NETUNIX
1N/A case AF_UNIX:
1N/A socksize = sizeof(d->d_addr.sunix);
1N/A break;
1N/A# endif /* NETUNIX */
1N/A#endif /* _FFR_DAEMON_NETUNIX */
1N/A#if NETINET
1N/A case AF_INET:
1N/A socksize = sizeof(d->d_addr.sin);
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A socksize = sizeof(d->d_addr.sin6);
1N/A break;
1N/A#endif /* NETINET6 */
1N/A
1N/A#if NETISO
1N/A case AF_ISO:
1N/A socksize = sizeof(d->d_addr.siso);
1N/A break;
1N/A#endif /* NETISO */
1N/A
1N/A default:
1N/A socksize = sizeof(d->d_addr);
1N/A break;
1N/A }
1N/A
1N/A if (bind(d->d_socket, &d->d_addr.sa, socksize) < 0)
1N/A {
1N/A /* probably another daemon already */
1N/A save_errno = errno;
1N/A syserr("opendaemonsocket: daemon %s: cannot bind",
1N/A d->d_name);
1N/A (void) close(d->d_socket);
1N/A goto fail;
1N/A }
1N/A }
1N/A if (!firsttime &&
1N/A listen(d->d_socket, d->d_listenqueue) < 0)
1N/A {
1N/A save_errno = errno;
1N/A syserr("opendaemonsocket: daemon %s: cannot listen",
1N/A d->d_name);
1N/A (void) close(d->d_socket);
1N/A goto severe;
1N/A }
1N/A return socksize;
1N/A } while (ntries++ < MAXOPENTRIES && transienterror(save_errno));
1N/A syserr("!opendaemonsocket: daemon %s: server SMTP socket wedged: exiting",
1N/A d->d_name);
1N/A /* NOTREACHED */
1N/A return -1; /* avoid compiler warning on IRIX */
1N/A}
1N/A/*
1N/A** SETUPDAEMON -- setup socket for daemon
1N/A**
1N/A** Parameters:
1N/A** daemonaddr -- socket for daemon
1N/A**
1N/A** Returns:
1N/A** port number on which daemon should run
1N/A**
1N/A*/
1N/A
1N/Astatic unsigned short
1N/Asetupdaemon(daemonaddr)
1N/A SOCKADDR *daemonaddr;
1N/A{
1N/A unsigned short port;
1N/A
1N/A /*
1N/A ** Set up the address for the mailer.
1N/A */
1N/A
1N/A if (daemonaddr->sa.sa_family == AF_UNSPEC)
1N/A {
1N/A memset(daemonaddr, '\0', sizeof(*daemonaddr));
1N/A#if NETINET
1N/A daemonaddr->sa.sa_family = AF_INET;
1N/A#endif /* NETINET */
1N/A }
1N/A
1N/A switch (daemonaddr->sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A if (daemonaddr->sin.sin_addr.s_addr == 0)
1N/A daemonaddr->sin.sin_addr.s_addr =
1N/A LocalDaemon ? htonl(INADDR_LOOPBACK) : INADDR_ANY;
1N/A port = daemonaddr->sin.sin_port;
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A if (IN6_IS_ADDR_UNSPECIFIED(&daemonaddr->sin6.sin6_addr))
1N/A daemonaddr->sin6.sin6_addr =
1N/A (LocalDaemon && V6LoopbackAddrFound) ?
1N/A in6addr_loopback : in6addr_any;
1N/A port = daemonaddr->sin6.sin6_port;
1N/A break;
1N/A#endif /* NETINET6 */
1N/A
1N/A default:
1N/A /* unknown protocol */
1N/A port = 0;
1N/A break;
1N/A }
1N/A if (port == 0)
1N/A {
1N/A#ifdef NO_GETSERVBYNAME
1N/A port = htons(25);
1N/A#else /* NO_GETSERVBYNAME */
1N/A {
1N/A register struct servent *sp;
1N/A
1N/A sp = getservbyname("smtp", "tcp");
1N/A if (sp == NULL)
1N/A {
1N/A syserr("554 5.3.5 service \"smtp\" unknown");
1N/A port = htons(25);
1N/A }
1N/A else
1N/A port = sp->s_port;
1N/A }
1N/A#endif /* NO_GETSERVBYNAME */
1N/A }
1N/A
1N/A switch (daemonaddr->sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A daemonaddr->sin.sin_port = port;
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A daemonaddr->sin6.sin6_port = port;
1N/A break;
1N/A#endif /* NETINET6 */
1N/A
1N/A default:
1N/A /* unknown protocol */
1N/A break;
1N/A }
1N/A return port;
1N/A}
1N/A/*
1N/A** CLRDAEMON -- reset the daemon connection
1N/A**
1N/A** Parameters:
1N/A** none.
1N/A**
1N/A** Returns:
1N/A** none.
1N/A**
1N/A** Side Effects:
1N/A** releases any resources used by the passive daemon.
1N/A*/
1N/A
1N/Avoid
1N/Aclrdaemon()
1N/A{
1N/A int i;
1N/A
1N/A for (i = 0; i < NDaemons; i++)
1N/A {
1N/A if (Daemons[i].d_socket >= 0)
1N/A (void) close(Daemons[i].d_socket);
1N/A Daemons[i].d_socket = -1;
1N/A }
1N/A}
1N/A
1N/A/*
1N/A** GETMODIFIERS -- get modifier flags
1N/A**
1N/A** Parameters:
1N/A** v -- the modifiers (input text line).
1N/A** modifiers -- pointer to flag field to represent modifiers.
1N/A**
1N/A** Returns:
1N/A** (xallocat()ed) string representation of modifiers.
1N/A**
1N/A** Side Effects:
1N/A** fills in modifiers.
1N/A*/
1N/A
1N/Achar *
1N/Agetmodifiers(v, modifiers)
1N/A char *v;
1N/A BITMAP256 modifiers;
1N/A{
1N/A int l;
1N/A char *h, *f, *flags;
1N/A
1N/A /* maximum length of flags: upper case Option -> "OO " */
1N/A l = 3 * strlen(v) + 3;
1N/A
1N/A /* is someone joking? */
1N/A if (l < 0 || l > 256)
1N/A {
1N/A if (LogLevel > 2)
1N/A sm_syslog(LOG_ERR, NOQID,
1N/A "getmodifiers too long, ignored");
1N/A return NULL;
1N/A }
1N/A flags = xalloc(l);
1N/A f = flags;
1N/A clrbitmap(modifiers);
1N/A for (h = v; *h != '\0'; h++)
1N/A {
1N/A if (isascii(*h) && !isspace(*h) && isprint(*h))
1N/A {
1N/A setbitn(*h, modifiers);
1N/A if (flags != f)
1N/A *flags++ = ' ';
1N/A *flags++ = *h;
1N/A if (isupper(*h))
1N/A *flags++ = *h;
1N/A }
1N/A }
1N/A *flags++ = '\0';
1N/A return f;
1N/A}
1N/A
1N/A/*
1N/A** CHKDAEMONMODIFIERS -- check whether all daemons have set a flag.
1N/A**
1N/A** Parameters:
1N/A** flag -- the flag to test.
1N/A**
1N/A** Returns:
1N/A** true iff all daemons have set flag.
1N/A*/
1N/A
1N/Abool
1N/Achkdaemonmodifiers(flag)
1N/A int flag;
1N/A{
1N/A int i;
1N/A
1N/A for (i = 0; i < NDaemons; i++)
1N/A if (!bitnset((char) flag, Daemons[i].d_flags))
1N/A return false;
1N/A return true;
1N/A}
1N/A
1N/A/*
1N/A** SETSOCKADDROPTIONS -- set options for SOCKADDR (daemon or client)
1N/A**
1N/A** Parameters:
1N/A** p -- the options line.
1N/A** d -- the daemon structure to fill in.
1N/A**
1N/A** Returns:
1N/A** none.
1N/A*/
1N/A
1N/Astatic void
1N/Asetsockaddroptions(p, d)
1N/A char *p;
1N/A DAEMON_T *d;
1N/A{
1N/A#if NETISO
1N/A short portno;
1N/A#endif /* NETISO */
1N/A char *port = NULL;
1N/A char *addr = NULL;
1N/A
1N/A#if NETINET
1N/A if (d->d_addr.sa.sa_family == AF_UNSPEC)
1N/A d->d_addr.sa.sa_family = AF_INET;
1N/A#endif /* NETINET */
1N/A#if _FFR_SS_PER_DAEMON
1N/A d->d_supersafe = DPO_NOTSET;
1N/A#endif /* _FFR_SS_PER_DAEMON */
1N/A d->d_dm = DM_NOTSET;
1N/A d->d_refuseLA = DPO_NOTSET;
1N/A d->d_queueLA = DPO_NOTSET;
1N/A d->d_delayLA = DPO_NOTSET;
1N/A d->d_maxchildren = DPO_NOTSET;
1N/A
1N/A while (p != NULL)
1N/A {
1N/A register char *f;
1N/A register char *v;
1N/A
1N/A while (isascii(*p) && isspace(*p))
1N/A p++;
1N/A if (*p == '\0')
1N/A break;
1N/A f = p;
1N/A p = strchr(p, ',');
1N/A if (p != NULL)
1N/A *p++ = '\0';
1N/A v = strchr(f, '=');
1N/A if (v == NULL)
1N/A continue;
1N/A while (isascii(*++v) && isspace(*v))
1N/A continue;
1N/A
1N/A switch (*f)
1N/A {
1N/A case 'A': /* address */
1N/A#if !_FFR_DPO_CS
1N/A case 'a':
1N/A#endif /* !_FFR_DPO_CS */
1N/A addr = v;
1N/A break;
1N/A
1N/A case 'c':
1N/A d->d_maxchildren = atoi(v);
1N/A break;
1N/A
1N/A case 'D': /* DeliveryMode */
1N/A switch (*v)
1N/A {
1N/A case SM_QUEUE:
1N/A case SM_DEFER:
1N/A case SM_DELIVER:
1N/A case SM_FORK:
1N/A d->d_dm = *v;
1N/A break;
1N/A default:
1N/A syserr("554 5.3.5 Unknown delivery mode %c",
1N/A *v);
1N/A break;
1N/A }
1N/A break;
1N/A
1N/A case 'd': /* delayLA */
1N/A d->d_delayLA = atoi(v);
1N/A break;
1N/A
1N/A case 'F': /* address family */
1N/A#if !_FFR_DPO_CS
1N/A case 'f':
1N/A#endif /* !_FFR_DPO_CS */
1N/A if (isascii(*v) && isdigit(*v))
1N/A d->d_addr.sa.sa_family = atoi(v);
1N/A#if _FFR_DAEMON_NETUNIX
1N/A# ifdef NETUNIX
1N/A else if (sm_strcasecmp(v, "unix") == 0 ||
1N/A sm_strcasecmp(v, "local") == 0)
1N/A d->d_addr.sa.sa_family = AF_UNIX;
1N/A# endif /* NETUNIX */
1N/A#endif /* _FFR_DAEMON_NETUNIX */
1N/A#if NETINET
1N/A else if (sm_strcasecmp(v, "inet") == 0)
1N/A d->d_addr.sa.sa_family = AF_INET;
1N/A#endif /* NETINET */
1N/A#if NETINET6
1N/A else if (sm_strcasecmp(v, "inet6") == 0)
1N/A d->d_addr.sa.sa_family = AF_INET6;
1N/A#endif /* NETINET6 */
1N/A#if NETISO
1N/A else if (sm_strcasecmp(v, "iso") == 0)
1N/A d->d_addr.sa.sa_family = AF_ISO;
1N/A#endif /* NETISO */
1N/A#if NETNS
1N/A else if (sm_strcasecmp(v, "ns") == 0)
1N/A d->d_addr.sa.sa_family = AF_NS;
1N/A#endif /* NETNS */
1N/A#if NETX25
1N/A else if (sm_strcasecmp(v, "x.25") == 0)
1N/A d->d_addr.sa.sa_family = AF_CCITT;
1N/A#endif /* NETX25 */
1N/A else
1N/A syserr("554 5.3.5 Unknown address family %s in Family=option",
1N/A v);
1N/A break;
1N/A
1N/A#if MILTER
1N/A case 'I':
1N/A# if !_FFR_DPO_CS
1N/A case 'i':
1N/A# endif /* !_FFR_DPO_CS */
1N/A d->d_inputfilterlist = v;
1N/A break;
1N/A#endif /* MILTER */
1N/A
1N/A case 'L': /* listen queue size */
1N/A#if !_FFR_DPO_CS
1N/A case 'l':
1N/A#endif /* !_FFR_DPO_CS */
1N/A d->d_listenqueue = atoi(v);
1N/A break;
1N/A
1N/A case 'M': /* modifiers (flags) */
1N/A#if !_FFR_DPO_CS
1N/A case 'm':
1N/A#endif /* !_FFR_DPO_CS */
1N/A d->d_mflags = getmodifiers(v, d->d_flags);
1N/A break;
1N/A
1N/A case 'N': /* name */
1N/A#if !_FFR_DPO_CS
1N/A case 'n':
1N/A#endif /* !_FFR_DPO_CS */
1N/A d->d_name = v;
1N/A break;
1N/A
1N/A case 'P': /* port */
1N/A#if !_FFR_DPO_CS
1N/A case 'p':
1N/A#endif /* !_FFR_DPO_CS */
1N/A port = v;
1N/A break;
1N/A
1N/A case 'q':
1N/A d->d_queueLA = atoi(v);
1N/A break;
1N/A
1N/A case 'R': /* receive buffer size */
1N/A d->d_tcprcvbufsize = atoi(v);
1N/A break;
1N/A
1N/A case 'r':
1N/A d->d_refuseLA = atoi(v);
1N/A break;
1N/A
1N/A case 'S': /* send buffer size */
1N/A#if !_FFR_DPO_CS
1N/A case 's':
1N/A#endif /* !_FFR_DPO_CS */
1N/A d->d_tcpsndbufsize = atoi(v);
1N/A break;
1N/A
1N/A#if _FFR_SS_PER_DAEMON
1N/A case 'T': /* SuperSafe */
1N/A if (tolower(*v) == 'i')
1N/A d->d_supersafe = SAFE_INTERACTIVE;
1N/A else if (tolower(*v) == 'p')
1N/A# if MILTER
1N/A d->d_supersafe = SAFE_REALLY_POSTMILTER;
1N/A# else /* MILTER */
1N/A (void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
1N/A "Warning: SuperSafe=PostMilter requires Milter support (-DMILTER)\n");
1N/A# endif /* MILTER */
1N/A else
1N/A d->d_supersafe = atobool(v) ? SAFE_REALLY
1N/A : SAFE_NO;
1N/A break;
1N/A#endif /* _FFR_SS_PER_DAEMON */
1N/A
1N/A default:
1N/A syserr("554 5.3.5 PortOptions parameter \"%s\" unknown",
1N/A f);
1N/A }
1N/A }
1N/A
1N/A /* Check addr and port after finding family */
1N/A if (addr != NULL)
1N/A {
1N/A switch (d->d_addr.sa.sa_family)
1N/A {
1N/A#if _FFR_DAEMON_NETUNIX
1N/A# if NETUNIX
1N/A case AF_UNIX:
1N/A if (strlen(addr) >= sizeof(d->d_addr.sunix.sun_path))
1N/A {
1N/A errno = ENAMETOOLONG;
1N/A syserr("setsockaddroptions: domain socket name too long: %s > %d",
1N/A addr, sizeof(d->d_addr.sunix.sun_path));
1N/A break;
1N/A }
1N/A
1N/A /* file safety check done in opendaemonsocket() */
1N/A (void) memset(&d->d_addr.sunix.sun_path, '\0',
1N/A sizeof(d->d_addr.sunix.sun_path));
1N/A (void) sm_strlcpy((char *)&d->d_addr.sunix.sun_path,
1N/A addr,
1N/A sizeof(d->d_addr.sunix.sun_path));
1N/A break;
1N/A# endif /* NETUNIX */
1N/A#endif /* _FFR_DAEMON_NETUNIX */
1N/A#if NETINET
1N/A case AF_INET:
1N/A if (!isascii(*addr) || !isdigit(*addr) ||
1N/A ((d->d_addr.sin.sin_addr.s_addr = inet_addr(addr))
1N/A == INADDR_NONE))
1N/A {
1N/A register struct hostent *hp;
1N/A
1N/A hp = sm_gethostbyname(addr, AF_INET);
1N/A if (hp == NULL)
1N/A syserr("554 5.3.0 host \"%s\" unknown",
1N/A addr);
1N/A else
1N/A {
1N/A while (*(hp->h_addr_list) != NULL &&
1N/A hp->h_addrtype != AF_INET)
1N/A hp->h_addr_list++;
1N/A if (*(hp->h_addr_list) == NULL)
1N/A syserr("554 5.3.0 host \"%s\" unknown",
1N/A addr);
1N/A else
1N/A memmove(&d->d_addr.sin.sin_addr,
1N/A *(hp->h_addr_list),
1N/A INADDRSZ);
1N/A# if NETINET6
1N/A freehostent(hp);
1N/A hp = NULL;
1N/A# endif /* NETINET6 */
1N/A }
1N/A }
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A if (anynet_pton(AF_INET6, addr,
1N/A &d->d_addr.sin6.sin6_addr) != 1)
1N/A {
1N/A register struct hostent *hp;
1N/A
1N/A hp = sm_gethostbyname(addr, AF_INET6);
1N/A if (hp == NULL)
1N/A syserr("554 5.3.0 host \"%s\" unknown",
1N/A addr);
1N/A else
1N/A {
1N/A while (*(hp->h_addr_list) != NULL &&
1N/A hp->h_addrtype != AF_INET6)
1N/A hp->h_addr_list++;
1N/A if (*(hp->h_addr_list) == NULL)
1N/A syserr("554 5.3.0 host \"%s\" unknown",
1N/A addr);
1N/A else
1N/A memmove(&d->d_addr.sin6.sin6_addr,
1N/A *(hp->h_addr_list),
1N/A IN6ADDRSZ);
1N/A freehostent(hp);
1N/A hp = NULL;
1N/A }
1N/A }
1N/A break;
1N/A#endif /* NETINET6 */
1N/A
1N/A default:
1N/A syserr("554 5.3.5 address= option unsupported for family %d",
1N/A d->d_addr.sa.sa_family);
1N/A break;
1N/A }
1N/A }
1N/A
1N/A if (port != NULL)
1N/A {
1N/A switch (d->d_addr.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A if (isascii(*port) && isdigit(*port))
1N/A d->d_addr.sin.sin_port = htons((unsigned short)
1N/A atoi((const char *) port));
1N/A else
1N/A {
1N/A# ifdef NO_GETSERVBYNAME
1N/A syserr("554 5.3.5 invalid port number: %s",
1N/A port);
1N/A# else /* NO_GETSERVBYNAME */
1N/A register struct servent *sp;
1N/A
1N/A sp = getservbyname(port, "tcp");
1N/A if (sp == NULL)
1N/A syserr("554 5.3.5 service \"%s\" unknown",
1N/A port);
1N/A else
1N/A d->d_addr.sin.sin_port = sp->s_port;
1N/A# endif /* NO_GETSERVBYNAME */
1N/A }
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A if (isascii(*port) && isdigit(*port))
1N/A d->d_addr.sin6.sin6_port = htons((unsigned short)
1N/A atoi(port));
1N/A else
1N/A {
1N/A# ifdef NO_GETSERVBYNAME
1N/A syserr("554 5.3.5 invalid port number: %s",
1N/A port);
1N/A# else /* NO_GETSERVBYNAME */
1N/A register struct servent *sp;
1N/A
1N/A sp = getservbyname(port, "tcp");
1N/A if (sp == NULL)
1N/A syserr("554 5.3.5 service \"%s\" unknown",
1N/A port);
1N/A else
1N/A d->d_addr.sin6.sin6_port = sp->s_port;
1N/A# endif /* NO_GETSERVBYNAME */
1N/A }
1N/A break;
1N/A#endif /* NETINET6 */
1N/A
1N/A#if NETISO
1N/A case AF_ISO:
1N/A /* assume two byte transport selector */
1N/A if (isascii(*port) && isdigit(*port))
1N/A portno = htons((unsigned short) atoi(port));
1N/A else
1N/A {
1N/A# ifdef NO_GETSERVBYNAME
1N/A syserr("554 5.3.5 invalid port number: %s",
1N/A port);
1N/A# else /* NO_GETSERVBYNAME */
1N/A register struct servent *sp;
1N/A
1N/A sp = getservbyname(port, "tcp");
1N/A if (sp == NULL)
1N/A syserr("554 5.3.5 service \"%s\" unknown",
1N/A port);
1N/A else
1N/A portno = sp->s_port;
1N/A# endif /* NO_GETSERVBYNAME */
1N/A }
1N/A memmove(TSEL(&d->d_addr.siso),
1N/A (char *) &portno, 2);
1N/A break;
1N/A#endif /* NETISO */
1N/A
1N/A default:
1N/A syserr("554 5.3.5 Port= option unsupported for family %d",
1N/A d->d_addr.sa.sa_family);
1N/A break;
1N/A }
1N/A }
1N/A}
1N/A/*
1N/A** SETDAEMONOPTIONS -- set options for running the MTA daemon
1N/A**
1N/A** Parameters:
1N/A** p -- the options line.
1N/A**
1N/A** Returns:
1N/A** true if successful, false otherwise.
1N/A**
1N/A** Side Effects:
1N/A** increments number of daemons.
1N/A*/
1N/A
1N/A#define DEF_LISTENQUEUE 10
1N/A
1N/Astruct dflags
1N/A{
1N/A char *d_name;
1N/A int d_flag;
1N/A};
1N/A
1N/Astatic struct dflags DaemonFlags[] =
1N/A{
1N/A { "AUTHREQ", D_AUTHREQ },
1N/A { "BINDIF", D_BINDIF },
1N/A { "CANONREQ", D_CANONREQ },
1N/A { "IFNHELO", D_IFNHELO },
1N/A { "FQMAIL", D_FQMAIL },
1N/A { "FQRCPT", D_FQRCPT },
1N/A { "SMTPS", D_SMTPS },
1N/A { "UNQUALOK", D_UNQUALOK },
1N/A { "NOAUTH", D_NOAUTH },
1N/A { "NOCANON", D_NOCANON },
1N/A { "NOETRN", D_NOETRN },
1N/A { "NOTLS", D_NOTLS },
1N/A { "ETRNONLY", D_ETRNONLY },
1N/A { "OPTIONAL", D_OPTIONAL },
1N/A { "DISABLE", D_DISABLE },
1N/A { "ISSET", D_ISSET },
1N/A { NULL, 0 }
1N/A};
1N/A
1N/Astatic void
1N/Aprintdaemonflags(d)
1N/A DAEMON_T *d;
1N/A{
1N/A register struct dflags *df;
1N/A bool first = true;
1N/A
1N/A for (df = DaemonFlags; df->d_name != NULL; df++)
1N/A {
1N/A if (!bitnset(df->d_flag, d->d_flags))
1N/A continue;
1N/A if (first)
1N/A sm_dprintf("<%s", df->d_name);
1N/A else
1N/A sm_dprintf(",%s", df->d_name);
1N/A first = false;
1N/A }
1N/A if (!first)
1N/A sm_dprintf(">");
1N/A}
1N/A
1N/Abool
1N/Asetdaemonoptions(p)
1N/A register char *p;
1N/A{
1N/A if (NDaemons >= MAXDAEMONS)
1N/A return false;
1N/A Daemons[NDaemons].d_socket = -1;
1N/A Daemons[NDaemons].d_listenqueue = DEF_LISTENQUEUE;
1N/A clrbitmap(Daemons[NDaemons].d_flags);
1N/A setsockaddroptions(p, &Daemons[NDaemons]);
1N/A
1N/A#if MILTER
1N/A if (Daemons[NDaemons].d_inputfilterlist != NULL)
1N/A Daemons[NDaemons].d_inputfilterlist = newstr(Daemons[NDaemons].d_inputfilterlist);
1N/A#endif /* MILTER */
1N/A
1N/A if (Daemons[NDaemons].d_name != NULL)
1N/A Daemons[NDaemons].d_name = newstr(Daemons[NDaemons].d_name);
1N/A else
1N/A {
1N/A char num[30];
1N/A
1N/A (void) sm_snprintf(num, sizeof(num), "Daemon%d", NDaemons);
1N/A Daemons[NDaemons].d_name = newstr(num);
1N/A }
1N/A
1N/A if (tTd(37, 1))
1N/A {
1N/A sm_dprintf("Daemon %s flags: ", Daemons[NDaemons].d_name);
1N/A printdaemonflags(&Daemons[NDaemons]);
1N/A sm_dprintf("\n");
1N/A }
1N/A ++NDaemons;
1N/A return true;
1N/A}
1N/A/*
1N/A** INITDAEMON -- initialize daemon if not yet done.
1N/A**
1N/A** Parameters:
1N/A** none
1N/A**
1N/A** Returns:
1N/A** none
1N/A**
1N/A** Side Effects:
1N/A** initializes structure for one daemon.
1N/A*/
1N/A
1N/Avoid
1N/Ainitdaemon()
1N/A{
1N/A if (NDaemons == 0)
1N/A {
1N/A Daemons[NDaemons].d_socket = -1;
1N/A Daemons[NDaemons].d_listenqueue = DEF_LISTENQUEUE;
1N/A Daemons[NDaemons].d_name = "Daemon0";
1N/A NDaemons = 1;
1N/A }
1N/A}
1N/A/*
1N/A** SETCLIENTOPTIONS -- set options for running the client
1N/A**
1N/A** Parameters:
1N/A** p -- the options line.
1N/A**
1N/A** Returns:
1N/A** none.
1N/A*/
1N/A
1N/Astatic DAEMON_T ClientSettings[AF_MAX + 1];
1N/A
1N/Avoid
1N/Asetclientoptions(p)
1N/A register char *p;
1N/A{
1N/A int family;
1N/A DAEMON_T d;
1N/A
1N/A memset(&d, '\0', sizeof(d));
1N/A setsockaddroptions(p, &d);
1N/A
1N/A /* grab what we need */
1N/A family = d.d_addr.sa.sa_family;
1N/A STRUCTCOPY(d, ClientSettings[family]);
1N/A setbitn(D_ISSET, ClientSettings[family].d_flags); /* mark as set */
1N/A if (d.d_name != NULL)
1N/A ClientSettings[family].d_name = newstr(d.d_name);
1N/A else
1N/A {
1N/A char num[30];
1N/A
1N/A (void) sm_snprintf(num, sizeof(num), "Client%d", family);
1N/A ClientSettings[family].d_name = newstr(num);
1N/A }
1N/A}
1N/A/*
1N/A** ADDR_FAMILY -- determine address family from address
1N/A**
1N/A** Parameters:
1N/A** addr -- the string representation of the address
1N/A**
1N/A** Returns:
1N/A** AF_INET, AF_INET6 or AF_UNSPEC
1N/A**
1N/A** Side Effects:
1N/A** none.
1N/A*/
1N/A
1N/Astatic int
1N/Aaddr_family(addr)
1N/A char *addr;
1N/A{
1N/A#if NETINET6
1N/A SOCKADDR clt_addr;
1N/A#endif /* NETINET6 */
1N/A
1N/A#if NETINET
1N/A if (inet_addr(addr) != INADDR_NONE)
1N/A {
1N/A if (tTd(16, 9))
1N/A sm_dprintf("addr_family(%s): INET\n", addr);
1N/A return AF_INET;
1N/A }
1N/A#endif /* NETINET */
1N/A#if NETINET6
1N/A if (anynet_pton(AF_INET6, addr, &clt_addr.sin6.sin6_addr) == 1)
1N/A {
1N/A if (tTd(16, 9))
1N/A sm_dprintf("addr_family(%s): INET6\n", addr);
1N/A return AF_INET6;
1N/A }
1N/A#endif /* NETINET6 */
1N/A#if _FFR_DAEMON_NETUNIX
1N/A# if NETUNIX
1N/A if (*addr == '/')
1N/A {
1N/A if (tTd(16, 9))
1N/A sm_dprintf("addr_family(%s): LOCAL\n", addr);
1N/A return AF_UNIX;
1N/A }
1N/A# endif /* NETUNIX */
1N/A#endif /* _FFR_DAEMON_NETUNIX */
1N/A if (tTd(16, 9))
1N/A sm_dprintf("addr_family(%s): UNSPEC\n", addr);
1N/A return AF_UNSPEC;
1N/A}
1N/A
1N/A/*
1N/A** CHKCLIENTMODIFIERS -- check whether all clients have set a flag.
1N/A**
1N/A** Parameters:
1N/A** flag -- the flag to test.
1N/A**
1N/A** Returns:
1N/A** true iff all configured clients have set the flag.
1N/A*/
1N/A
1N/Abool
1N/Achkclientmodifiers(flag)
1N/A int flag;
1N/A{
1N/A int i;
1N/A bool flagisset;
1N/A
1N/A flagisset = false;
1N/A for (i = 0; i < AF_MAX; i++)
1N/A {
1N/A if (bitnset(D_ISSET, ClientSettings[i].d_flags))
1N/A {
1N/A if (!bitnset((char) flag, ClientSettings[i].d_flags))
1N/A return false;
1N/A flagisset = true;
1N/A }
1N/A }
1N/A return flagisset;
1N/A}
1N/A
1N/A#if MILTER
1N/A/*
1N/A** SETUP_DAEMON_FILTERS -- Parse per-socket filters
1N/A**
1N/A** Parameters:
1N/A** none
1N/A**
1N/A** Returns:
1N/A** none
1N/A*/
1N/A
1N/Avoid
1N/Asetup_daemon_milters()
1N/A{
1N/A int idx;
1N/A
1N/A if (OpMode == MD_SMTP)
1N/A {
1N/A /* no need to configure the daemons */
1N/A return;
1N/A }
1N/A
1N/A for (idx = 0; idx < NDaemons; idx++)
1N/A {
1N/A if (Daemons[idx].d_inputfilterlist != NULL)
1N/A {
1N/A milter_config(Daemons[idx].d_inputfilterlist,
1N/A Daemons[idx].d_inputfilters,
1N/A MAXFILTERS);
1N/A }
1N/A }
1N/A}
1N/A#endif /* MILTER */
1N/A/*
1N/A** MAKECONNECTION -- make a connection to an SMTP socket on a machine.
1N/A**
1N/A** Parameters:
1N/A** host -- the name of the host.
1N/A** port -- the port number to connect to.
1N/A** mci -- a pointer to the mail connection information
1N/A** structure to be filled in.
1N/A** e -- the current envelope.
1N/A** enough -- time at which to stop further connection attempts.
1N/A** (0 means no limit)
1N/A**
1N/A** Returns:
1N/A** An exit code telling whether the connection could be
1N/A** made and if not why not.
1N/A**
1N/A** Side Effects:
1N/A** none.
1N/A*/
1N/A
1N/Astatic jmp_buf CtxConnectTimeout;
1N/A
1N/ASOCKADDR CurHostAddr; /* address of current host */
1N/A
1N/Aint
1N/Amakeconnection(host, port, mci, e, enough)
1N/A char *host;
1N/A volatile unsigned int port;
1N/A register MCI *mci;
1N/A ENVELOPE *e;
1N/A time_t enough;
1N/A{
1N/A register volatile int addrno = 0;
1N/A volatile int s;
1N/A register struct hostent *volatile hp = (struct hostent *) NULL;
1N/A SOCKADDR addr;
1N/A SOCKADDR clt_addr;
1N/A int save_errno = 0;
1N/A volatile SOCKADDR_LEN_T addrlen;
1N/A volatile bool firstconnect = true;
1N/A SM_EVENT *volatile ev = NULL;
1N/A#if NETINET6
1N/A volatile bool v6found = false;
1N/A#endif /* NETINET6 */
1N/A volatile int family = InetMode;
1N/A SOCKADDR_LEN_T len;
1N/A volatile SOCKADDR_LEN_T socksize = 0;
1N/A volatile bool clt_bind;
1N/A BITMAP256 d_flags;
1N/A char *p;
1N/A extern ENVELOPE BlankEnvelope;
1N/A
1N/A /* retranslate {daemon_flags} into bitmap */
1N/A clrbitmap(d_flags);
1N/A if ((p = macvalue(macid("{daemon_flags}"), e)) != NULL)
1N/A {
1N/A for (; *p != '\0'; p++)
1N/A {
1N/A if (!(isascii(*p) && isspace(*p)))
1N/A setbitn(bitidx(*p), d_flags);
1N/A }
1N/A }
1N/A
1N/A#if NETINET6
1N/A v4retry:
1N/A#endif /* NETINET6 */
1N/A clt_bind = false;
1N/A
1N/A /* Set up the address for outgoing connection. */
1N/A if (bitnset(D_BINDIF, d_flags) &&
1N/A (p = macvalue(macid("{if_addr}"), e)) != NULL &&
1N/A *p != '\0')
1N/A {
1N/A#if NETINET6
1N/A char p6[INET6_ADDRSTRLEN];
1N/A#endif /* NETINET6 */
1N/A
1N/A memset(&clt_addr, '\0', sizeof(clt_addr));
1N/A
1N/A /* infer the address family from the address itself */
1N/A clt_addr.sa.sa_family = addr_family(p);
1N/A switch (clt_addr.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A clt_addr.sin.sin_addr.s_addr = inet_addr(p);
1N/A if (clt_addr.sin.sin_addr.s_addr != INADDR_NONE &&
1N/A clt_addr.sin.sin_addr.s_addr !=
1N/A htonl(INADDR_LOOPBACK))
1N/A {
1N/A clt_bind = true;
1N/A socksize = sizeof(struct sockaddr_in);
1N/A }
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A if (inet_addr(p) != INADDR_NONE)
1N/A (void) sm_snprintf(p6, sizeof(p6),
1N/A "IPv6:::ffff:%s", p);
1N/A else
1N/A (void) sm_strlcpy(p6, p, sizeof(p6));
1N/A if (anynet_pton(AF_INET6, p6,
1N/A &clt_addr.sin6.sin6_addr) == 1 &&
1N/A !IN6_IS_ADDR_LOOPBACK(&clt_addr.sin6.sin6_addr))
1N/A {
1N/A clt_bind = true;
1N/A socksize = sizeof(struct sockaddr_in6);
1N/A }
1N/A break;
1N/A#endif /* NETINET6 */
1N/A
1N/A#if 0
1N/A default:
1N/A syserr("554 5.3.5 Address= option unsupported for family %d",
1N/A clt_addr.sa.sa_family);
1N/A break;
1N/A#endif /* 0 */
1N/A }
1N/A if (clt_bind)
1N/A family = clt_addr.sa.sa_family;
1N/A }
1N/A
1N/A /* D_BINDIF not set or not available, fallback to ClientPortOptions */
1N/A if (!clt_bind)
1N/A {
1N/A STRUCTCOPY(ClientSettings[family].d_addr, clt_addr);
1N/A switch (clt_addr.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A if (clt_addr.sin.sin_addr.s_addr == 0)
1N/A clt_addr.sin.sin_addr.s_addr = LocalDaemon ?
1N/A htonl(INADDR_LOOPBACK) : INADDR_ANY;
1N/A else
1N/A clt_bind = true;
1N/A if (clt_addr.sin.sin_port != 0)
1N/A clt_bind = true;
1N/A socksize = sizeof(struct sockaddr_in);
1N/A break;
1N/A#endif /* NETINET */
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A if (IN6_IS_ADDR_UNSPECIFIED(&clt_addr.sin6.sin6_addr))
1N/A clt_addr.sin6.sin6_addr =
1N/A (LocalDaemon && V6LoopbackAddrFound) ?
1N/A in6addr_loopback : in6addr_any;
1N/A else
1N/A clt_bind = true;
1N/A socksize = sizeof(struct sockaddr_in6);
1N/A if (clt_addr.sin6.sin6_port != 0)
1N/A clt_bind = true;
1N/A break;
1N/A#endif /* NETINET6 */
1N/A#if NETISO
1N/A case AF_ISO:
1N/A socksize = sizeof(clt_addr.siso);
1N/A clt_bind = true;
1N/A break;
1N/A#endif /* NETISO */
1N/A default:
1N/A break;
1N/A }
1N/A }
1N/A
1N/A /*
1N/A ** Set up the address for the mailer.
1N/A ** Accept "[a.b.c.d]" syntax for host name.
1N/A */
1N/A
1N/A SM_SET_H_ERRNO(0);
1N/A errno = 0;
1N/A memset(&CurHostAddr, '\0', sizeof(CurHostAddr));
1N/A memset(&addr, '\0', sizeof(addr));
1N/A SmtpPhase = mci->mci_phase = "initial connection";
1N/A CurHostName = host;
1N/A
1N/A if (host[0] == '[')
1N/A {
1N/A p = strchr(host, ']');
1N/A if (p != NULL)
1N/A {
1N/A#if NETINET
1N/A unsigned long hid = INADDR_NONE;
1N/A#endif /* NETINET */
1N/A#if NETINET6
1N/A struct sockaddr_in6 hid6;
1N/A#endif /* NETINET6 */
1N/A
1N/A *p = '\0';
1N/A#if NETINET6
1N/A memset(&hid6, '\0', sizeof(hid6));
1N/A#endif /* NETINET6 */
1N/A#if NETINET
1N/A if (family == AF_INET &&
1N/A (hid = inet_addr(&host[1])) != INADDR_NONE)
1N/A {
1N/A addr.sin.sin_family = AF_INET;
1N/A addr.sin.sin_addr.s_addr = hid;
1N/A }
1N/A else
1N/A#endif /* NETINET */
1N/A#if NETINET6
1N/A if (family == AF_INET6 &&
1N/A anynet_pton(AF_INET6, &host[1],
1N/A &hid6.sin6_addr) == 1)
1N/A {
1N/A addr.sin6.sin6_family = AF_INET6;
1N/A addr.sin6.sin6_addr = hid6.sin6_addr;
1N/A }
1N/A else
1N/A#endif /* NETINET6 */
1N/A {
1N/A /* try it as a host name (avoid MX lookup) */
1N/A hp = sm_gethostbyname(&host[1], family);
1N/A if (hp == NULL && p[-1] == '.')
1N/A {
1N/A#if NAMED_BIND
1N/A int oldopts = _res.options;
1N/A
1N/A _res.options &= ~(RES_DEFNAMES|RES_DNSRCH);
1N/A#endif /* NAMED_BIND */
1N/A p[-1] = '\0';
1N/A hp = sm_gethostbyname(&host[1],
1N/A family);
1N/A p[-1] = '.';
1N/A#if NAMED_BIND
1N/A _res.options = oldopts;
1N/A#endif /* NAMED_BIND */
1N/A }
1N/A *p = ']';
1N/A goto gothostent;
1N/A }
1N/A *p = ']';
1N/A }
1N/A if (p == NULL)
1N/A {
1N/A extern char MsgBuf[];
1N/A
1N/A usrerrenh("5.1.2",
1N/A "553 Invalid numeric domain spec \"%s\"",
1N/A host);
1N/A mci_setstat(mci, EX_NOHOST, "5.1.2", MsgBuf);
1N/A errno = EINVAL;
1N/A return EX_NOHOST;
1N/A }
1N/A }
1N/A else
1N/A {
1N/A /* contortion to get around SGI cc complaints */
1N/A {
1N/A p = &host[strlen(host) - 1];
1N/A hp = sm_gethostbyname(host, family);
1N/A if (hp == NULL && *p == '.')
1N/A {
1N/A#if NAMED_BIND
1N/A int oldopts = _res.options;
1N/A
1N/A _res.options &= ~(RES_DEFNAMES|RES_DNSRCH);
1N/A#endif /* NAMED_BIND */
1N/A *p = '\0';
1N/A hp = sm_gethostbyname(host, family);
1N/A *p = '.';
1N/A#if NAMED_BIND
1N/A _res.options = oldopts;
1N/A#endif /* NAMED_BIND */
1N/A }
1N/A }
1N/Agothostent:
1N/A if (hp == NULL || hp->h_addr == NULL)
1N/A {
1N/A#if NAMED_BIND
1N/A /* check for name server timeouts */
1N/A# if NETINET6
1N/A if (WorkAroundBrokenAAAA && family == AF_INET6 &&
1N/A errno == ETIMEDOUT)
1N/A {
1N/A /*
1N/A ** An attempt with family AF_INET may
1N/A ** succeed By skipping the next section
1N/A ** of code, we will try AF_INET before
1N/A ** failing.
1N/A */
1N/A
1N/A if (tTd(16, 10))
1N/A sm_dprintf("makeconnection: WorkAroundBrokenAAAA: Trying AF_INET lookup (AF_INET6 failed)\n");
1N/A }
1N/A else
1N/A# endif /* NETINET6 */
1N/A {
1N/A if (errno == ETIMEDOUT ||
1N/A# if _FFR_GETHBN_ExFILE
1N/A# ifdef EMFILE
1N/A errno == EMFILE ||
1N/A# endif /* EMFILE */
1N/A# ifdef ENFILE
1N/A errno == ENFILE ||
1N/A# endif /* ENFILE */
1N/A# endif /* _FFR_GETHBN_ExFILE */
1N/A h_errno == TRY_AGAIN ||
1N/A (errno == ECONNREFUSED && UseNameServer))
1N/A {
1N/A save_errno = errno;
1N/A mci_setstat(mci, EX_TEMPFAIL,
1N/A "4.4.3", NULL);
1N/A errno = save_errno;
1N/A return EX_TEMPFAIL;
1N/A }
1N/A }
1N/A#endif /* NAMED_BIND */
1N/A#if NETINET6
1N/A /*
1N/A ** Try v6 first, then fall back to v4.
1N/A ** If we found a v6 address, but no v4
1N/A ** addresses, then TEMPFAIL.
1N/A */
1N/A
1N/A if (family == AF_INET6)
1N/A {
1N/A family = AF_INET;
1N/A goto v4retry;
1N/A }
1N/A if (v6found)
1N/A goto v6tempfail;
1N/A#endif /* NETINET6 */
1N/A save_errno = errno;
1N/A mci_setstat(mci, EX_NOHOST, "5.1.2", NULL);
1N/A errno = save_errno;
1N/A return EX_NOHOST;
1N/A }
1N/A addr.sa.sa_family = hp->h_addrtype;
1N/A switch (hp->h_addrtype)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A memmove(&addr.sin.sin_addr,
1N/A hp->h_addr,
1N/A INADDRSZ);
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A memmove(&addr.sin6.sin6_addr,
1N/A hp->h_addr,
1N/A IN6ADDRSZ);
1N/A break;
1N/A#endif /* NETINET6 */
1N/A
1N/A default:
1N/A if (hp->h_length > sizeof(addr.sa.sa_data))
1N/A {
1N/A syserr("makeconnection: long sa_data: family %d len %d",
1N/A hp->h_addrtype, hp->h_length);
1N/A mci_setstat(mci, EX_NOHOST, "5.1.2", NULL);
1N/A errno = EINVAL;
1N/A return EX_NOHOST;
1N/A }
1N/A memmove(addr.sa.sa_data, hp->h_addr, hp->h_length);
1N/A break;
1N/A }
1N/A addrno = 1;
1N/A }
1N/A
1N/A /*
1N/A ** Determine the port number.
1N/A */
1N/A
1N/A if (port == 0)
1N/A {
1N/A#ifdef NO_GETSERVBYNAME
1N/A port = htons(25);
1N/A#else /* NO_GETSERVBYNAME */
1N/A register struct servent *sp = getservbyname("smtp", "tcp");
1N/A
1N/A if (sp == NULL)
1N/A {
1N/A if (LogLevel > 2)
1N/A sm_syslog(LOG_ERR, NOQID,
1N/A "makeconnection: service \"smtp\" unknown");
1N/A port = htons(25);
1N/A }
1N/A else
1N/A port = sp->s_port;
1N/A#endif /* NO_GETSERVBYNAME */
1N/A }
1N/A
1N/A#if NETINET6
1N/A if (addr.sa.sa_family == AF_INET6 &&
1N/A IN6_IS_ADDR_V4MAPPED(&addr.sin6.sin6_addr) &&
1N/A ClientSettings[AF_INET].d_addr.sa.sa_family != 0)
1N/A {
1N/A /*
1N/A ** Ignore mapped IPv4 address since
1N/A ** there is a ClientPortOptions setting
1N/A ** for IPv4.
1N/A */
1N/A
1N/A goto nextaddr;
1N/A }
1N/A#endif /* NETINET6 */
1N/A
1N/A switch (addr.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A addr.sin.sin_port = port;
1N/A addrlen = sizeof(struct sockaddr_in);
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A addr.sin6.sin6_port = port;
1N/A addrlen = sizeof(struct sockaddr_in6);
1N/A break;
1N/A#endif /* NETINET6 */
1N/A
1N/A#if NETISO
1N/A case AF_ISO:
1N/A /* assume two byte transport selector */
1N/A memmove(TSEL((struct sockaddr_iso *) &addr), (char *) &port, 2);
1N/A addrlen = sizeof(struct sockaddr_iso);
1N/A break;
1N/A#endif /* NETISO */
1N/A
1N/A default:
1N/A syserr("Can't connect to address family %d", addr.sa.sa_family);
1N/A mci_setstat(mci, EX_NOHOST, "5.1.2", NULL);
1N/A errno = EINVAL;
1N/A#if NETINET6
1N/A if (hp != NULL)
1N/A freehostent(hp);
1N/A#endif /* NETINET6 */
1N/A return EX_NOHOST;
1N/A }
1N/A
1N/A /*
1N/A ** Try to actually open the connection.
1N/A */
1N/A
1N/A#if XLA
1N/A /* if too many connections, don't bother trying */
1N/A if (!xla_noqueue_ok(host))
1N/A {
1N/A# if NETINET6
1N/A if (hp != NULL)
1N/A freehostent(hp);
1N/A# endif /* NETINET6 */
1N/A return EX_TEMPFAIL;
1N/A }
1N/A#endif /* XLA */
1N/A
1N/A for (;;)
1N/A {
1N/A if (tTd(16, 1))
1N/A sm_dprintf("makeconnection (%s [%s].%d (%d))\n",
1N/A host, anynet_ntoa(&addr), ntohs(port),
1N/A (int) addr.sa.sa_family);
1N/A
1N/A /* save for logging */
1N/A CurHostAddr = addr;
1N/A
1N/A#if HASRRESVPORT
1N/A if (bitnset(M_SECURE_PORT, mci->mci_mailer->m_flags))
1N/A {
1N/A int rport = IPPORT_RESERVED - 1;
1N/A
1N/A s = rresvport(&rport);
1N/A }
1N/A else
1N/A#endif /* HASRRESVPORT */
1N/A {
1N/A s = socket(addr.sa.sa_family, SOCK_STREAM, 0);
1N/A }
1N/A if (s < 0)
1N/A {
1N/A save_errno = errno;
1N/A syserr("makeconnection: cannot create socket");
1N/A#if XLA
1N/A xla_host_end(host);
1N/A#endif /* XLA */
1N/A mci_setstat(mci, EX_TEMPFAIL, "4.4.5", NULL);
1N/A#if NETINET6
1N/A if (hp != NULL)
1N/A freehostent(hp);
1N/A#endif /* NETINET6 */
1N/A errno = save_errno;
1N/A return EX_TEMPFAIL;
1N/A }
1N/A
1N/A#ifdef SO_SNDBUF
1N/A if (ClientSettings[family].d_tcpsndbufsize > 0)
1N/A {
1N/A if (setsockopt(s, SOL_SOCKET, SO_SNDBUF,
1N/A (char *) &ClientSettings[family].d_tcpsndbufsize,
1N/A sizeof(ClientSettings[family].d_tcpsndbufsize)) < 0)
1N/A syserr("makeconnection: setsockopt(SO_SNDBUF)");
1N/A }
1N/A#endif /* SO_SNDBUF */
1N/A#ifdef SO_RCVBUF
1N/A if (ClientSettings[family].d_tcprcvbufsize > 0)
1N/A {
1N/A if (setsockopt(s, SOL_SOCKET, SO_RCVBUF,
1N/A (char *) &ClientSettings[family].d_tcprcvbufsize,
1N/A sizeof(ClientSettings[family].d_tcprcvbufsize)) < 0)
1N/A syserr("makeconnection: setsockopt(SO_RCVBUF)");
1N/A }
1N/A#endif /* SO_RCVBUF */
1N/A
1N/A if (tTd(16, 1))
1N/A sm_dprintf("makeconnection: fd=%d\n", s);
1N/A
1N/A /* turn on network debugging? */
1N/A if (tTd(16, 101))
1N/A {
1N/A int on = 1;
1N/A
1N/A (void) setsockopt(s, SOL_SOCKET, SO_DEBUG,
1N/A (char *)&on, sizeof(on));
1N/A }
1N/A if (e->e_xfp != NULL) /* for debugging */
1N/A (void) sm_io_flush(e->e_xfp, SM_TIME_DEFAULT);
1N/A errno = 0; /* for debugging */
1N/A
1N/A if (clt_bind)
1N/A {
1N/A int on = 1;
1N/A
1N/A switch (clt_addr.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A if (clt_addr.sin.sin_port != 0)
1N/A (void) setsockopt(s, SOL_SOCKET,
1N/A SO_REUSEADDR,
1N/A (char *) &on,
1N/A sizeof(on));
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A if (clt_addr.sin6.sin6_port != 0)
1N/A (void) setsockopt(s, SOL_SOCKET,
1N/A SO_REUSEADDR,
1N/A (char *) &on,
1N/A sizeof(on));
1N/A break;
1N/A#endif /* NETINET6 */
1N/A }
1N/A
1N/A if (bind(s, &clt_addr.sa, socksize) < 0)
1N/A {
1N/A save_errno = errno;
1N/A (void) close(s);
1N/A errno = save_errno;
1N/A syserr("makeconnection: cannot bind socket [%s]",
1N/A anynet_ntoa(&clt_addr));
1N/A#if NETINET6
1N/A if (hp != NULL)
1N/A freehostent(hp);
1N/A#endif /* NETINET6 */
1N/A errno = save_errno;
1N/A return EX_TEMPFAIL;
1N/A }
1N/A }
1N/A
1N/A /*
1N/A ** Linux seems to hang in connect for 90 minutes (!!!).
1N/A ** Time out the connect to avoid this problem.
1N/A */
1N/A
1N/A if (setjmp(CtxConnectTimeout) == 0)
1N/A {
1N/A int i;
1N/A
1N/A if (e->e_ntries <= 0 && TimeOuts.to_iconnect != 0)
1N/A ev = sm_setevent(TimeOuts.to_iconnect,
1N/A connecttimeout, 0);
1N/A else if (TimeOuts.to_connect != 0)
1N/A ev = sm_setevent(TimeOuts.to_connect,
1N/A connecttimeout, 0);
1N/A else
1N/A ev = NULL;
1N/A
1N/A switch (ConnectOnlyTo.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A addr.sin.sin_addr.s_addr = ConnectOnlyTo.sin.sin_addr.s_addr;
1N/A addr.sa.sa_family = ConnectOnlyTo.sa.sa_family;
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A memmove(&addr.sin6.sin6_addr,
1N/A &ConnectOnlyTo.sin6.sin6_addr,
1N/A IN6ADDRSZ);
1N/A break;
1N/A#endif /* NETINET6 */
1N/A }
1N/A if (tTd(16, 1))
1N/A sm_dprintf("Connecting to [%s]...\n", anynet_ntoa(&addr));
1N/A i = connect(s, (struct sockaddr *) &addr, addrlen);
1N/A save_errno = errno;
1N/A if (ev != NULL)
1N/A sm_clrevent(ev);
1N/A if (i >= 0)
1N/A break;
1N/A }
1N/A else
1N/A save_errno = errno;
1N/A
1N/A /* couldn't connect.... figure out why */
1N/A (void) close(s);
1N/A
1N/A /* if running demand-dialed connection, try again */
1N/A if (DialDelay > 0 && firstconnect &&
1N/A bitnset(M_DIALDELAY, mci->mci_mailer->m_flags))
1N/A {
1N/A if (tTd(16, 1))
1N/A sm_dprintf("Connect failed (%s); trying again...\n",
1N/A sm_errstring(save_errno));
1N/A firstconnect = false;
1N/A (void) sleep(DialDelay);
1N/A continue;
1N/A }
1N/A
1N/A if (LogLevel > 13)
1N/A sm_syslog(LOG_INFO, e->e_id,
1N/A "makeconnection (%s [%s]) failed: %s",
1N/A host, anynet_ntoa(&addr),
1N/A sm_errstring(save_errno));
1N/A
1N/A#if NETINET6
1N/Anextaddr:
1N/A#endif /* NETINET6 */
1N/A if (hp != NULL && hp->h_addr_list[addrno] != NULL &&
1N/A (enough == 0 || curtime() < enough))
1N/A {
1N/A if (tTd(16, 1))
1N/A sm_dprintf("Connect failed (%s); trying new address....\n",
1N/A sm_errstring(save_errno));
1N/A switch (addr.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A memmove(&addr.sin.sin_addr,
1N/A hp->h_addr_list[addrno++],
1N/A INADDRSZ);
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A memmove(&addr.sin6.sin6_addr,
1N/A hp->h_addr_list[addrno++],
1N/A IN6ADDRSZ);
1N/A break;
1N/A#endif /* NETINET6 */
1N/A
1N/A default:
1N/A memmove(addr.sa.sa_data,
1N/A hp->h_addr_list[addrno++],
1N/A hp->h_length);
1N/A break;
1N/A }
1N/A continue;
1N/A }
1N/A errno = save_errno;
1N/A
1N/A#if NETINET6
1N/A if (family == AF_INET6)
1N/A {
1N/A if (tTd(16, 1))
1N/A sm_dprintf("Connect failed (%s); retrying with AF_INET....\n",
1N/A sm_errstring(save_errno));
1N/A v6found = true;
1N/A family = AF_INET;
1N/A if (hp != NULL)
1N/A {
1N/A freehostent(hp);
1N/A hp = NULL;
1N/A }
1N/A goto v4retry;
1N/A }
1N/A v6tempfail:
1N/A#endif /* NETINET6 */
1N/A /* couldn't open connection */
1N/A#if NETINET6
1N/A /* Don't clobber an already saved errno from v4retry */
1N/A if (errno > 0)
1N/A#endif /* NETINET6 */
1N/A save_errno = errno;
1N/A if (tTd(16, 1))
1N/A sm_dprintf("Connect failed (%s)\n",
1N/A sm_errstring(save_errno));
1N/A#if XLA
1N/A xla_host_end(host);
1N/A#endif /* XLA */
1N/A mci_setstat(mci, EX_TEMPFAIL, "4.4.1", NULL);
1N/A#if NETINET6
1N/A if (hp != NULL)
1N/A freehostent(hp);
1N/A#endif /* NETINET6 */
1N/A errno = save_errno;
1N/A return EX_TEMPFAIL;
1N/A }
1N/A
1N/A#if NETINET6
1N/A if (hp != NULL)
1N/A {
1N/A freehostent(hp);
1N/A hp = NULL;
1N/A }
1N/A#endif /* NETINET6 */
1N/A
1N/A /* connection ok, put it into canonical form */
1N/A mci->mci_out = NULL;
1N/A if ((mci->mci_out = sm_io_open(SmFtStdiofd, SM_TIME_DEFAULT,
1N/A (void *) &s,
1N/A SM_IO_WRONLY_B, NULL)) == NULL ||
1N/A (s = dup(s)) < 0 ||
1N/A (mci->mci_in = sm_io_open(SmFtStdiofd, SM_TIME_DEFAULT,
1N/A (void *) &s,
1N/A SM_IO_RDONLY_B, NULL)) == NULL)
1N/A {
1N/A save_errno = errno;
1N/A syserr("cannot open SMTP client channel, fd=%d", s);
1N/A mci_setstat(mci, EX_TEMPFAIL, "4.4.5", NULL);
1N/A if (mci->mci_out != NULL)
1N/A (void) sm_io_close(mci->mci_out, SM_TIME_DEFAULT);
1N/A (void) close(s);
1N/A errno = save_errno;
1N/A return EX_TEMPFAIL;
1N/A }
1N/A sm_io_automode(mci->mci_out, mci->mci_in);
1N/A
1N/A /* set {client_flags} */
1N/A if (ClientSettings[addr.sa.sa_family].d_mflags != NULL)
1N/A {
1N/A macdefine(&mci->mci_macro, A_PERM,
1N/A macid("{client_flags}"),
1N/A ClientSettings[addr.sa.sa_family].d_mflags);
1N/A }
1N/A else
1N/A macdefine(&mci->mci_macro, A_PERM,
1N/A macid("{client_flags}"), "");
1N/A
1N/A /* "add" {client_flags} to bitmap */
1N/A if (bitnset(D_IFNHELO, ClientSettings[addr.sa.sa_family].d_flags))
1N/A {
1N/A /* look for just this one flag */
1N/A setbitn(D_IFNHELO, d_flags);
1N/A }
1N/A
1N/A /* find out name for Interface through which we connect */
1N/A len = sizeof(addr);
1N/A if (getsockname(s, &addr.sa, &len) == 0)
1N/A {
1N/A char *name;
1N/A char family[5];
1N/A
1N/A macdefine(&BlankEnvelope.e_macro, A_TEMP,
1N/A macid("{if_addr_out}"), anynet_ntoa(&addr));
1N/A (void) sm_snprintf(family, sizeof(family), "%d",
1N/A addr.sa.sa_family);
1N/A macdefine(&BlankEnvelope.e_macro, A_TEMP,
1N/A macid("{if_family_out}"), family);
1N/A
1N/A name = hostnamebyanyaddr(&addr);
1N/A macdefine(&BlankEnvelope.e_macro, A_TEMP,
1N/A macid("{if_name_out}"), name);
1N/A if (LogLevel > 11)
1N/A {
1N/A /* log connection information */
1N/A sm_syslog(LOG_INFO, e->e_id,
1N/A "SMTP outgoing connect on %.40s", name);
1N/A }
1N/A if (bitnset(D_IFNHELO, d_flags))
1N/A {
1N/A if (name[0] != '[' && strchr(name, '.') != NULL)
1N/A mci->mci_heloname = newstr(name);
1N/A }
1N/A }
1N/A else
1N/A {
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{if_name_out}"), NULL);
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{if_addr_out}"), NULL);
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{if_family_out}"), NULL);
1N/A }
1N/A
1N/A /* Use the configured HeloName as appropriate */
1N/A if (HeloName != NULL && HeloName[0] != '\0')
1N/A {
1N/A SM_FREE_CLR(mci->mci_heloname);
1N/A mci->mci_heloname = newstr(HeloName);
1N/A }
1N/A
1N/A mci_setstat(mci, EX_OK, NULL, NULL);
1N/A return EX_OK;
1N/A}
1N/A
1N/Astatic void
1N/Aconnecttimeout(ignore)
1N/A int ignore;
1N/A{
1N/A /*
1N/A ** NOTE: THIS CAN BE CALLED FROM A SIGNAL HANDLER. DO NOT ADD
1N/A ** ANYTHING TO THIS ROUTINE UNLESS YOU KNOW WHAT YOU ARE
1N/A ** DOING.
1N/A */
1N/A
1N/A errno = ETIMEDOUT;
1N/A longjmp(CtxConnectTimeout, 1);
1N/A}
1N/A/*
1N/A** MAKECONNECTION_DS -- make a connection to a domain socket.
1N/A**
1N/A** Parameters:
1N/A** mux_path -- the path of the socket to connect to.
1N/A** mci -- a pointer to the mail connection information
1N/A** structure to be filled in.
1N/A**
1N/A** Returns:
1N/A** An exit code telling whether the connection could be
1N/A** made and if not why not.
1N/A**
1N/A** Side Effects:
1N/A** none.
1N/A*/
1N/A
1N/A#if NETUNIX
1N/Aint
1N/Amakeconnection_ds(mux_path, mci)
1N/A char *mux_path;
1N/A register MCI *mci;
1N/A{
1N/A int sock;
1N/A int rval, save_errno;
1N/A long sff = SFF_SAFEDIRPATH|SFF_OPENASROOT|SFF_NOLINK|SFF_ROOTOK|SFF_EXECOK;
1N/A struct sockaddr_un unix_addr;
1N/A
1N/A /* if not safe, don't connect */
1N/A rval = safefile(mux_path, RunAsUid, RunAsGid, RunAsUserName,
1N/A sff, S_IRUSR|S_IWUSR, NULL);
1N/A
1N/A if (rval != 0)
1N/A {
1N/A syserr("makeconnection_ds: unsafe domain socket %s",
1N/A mux_path);
1N/A mci_setstat(mci, EX_TEMPFAIL, "4.3.5", NULL);
1N/A errno = rval;
1N/A return EX_TEMPFAIL;
1N/A }
1N/A
1N/A /* prepare address structure */
1N/A memset(&unix_addr, '\0', sizeof(unix_addr));
1N/A unix_addr.sun_family = AF_UNIX;
1N/A
1N/A if (strlen(mux_path) >= sizeof(unix_addr.sun_path))
1N/A {
1N/A syserr("makeconnection_ds: domain socket name %s too long",
1N/A mux_path);
1N/A
1N/A /* XXX why TEMPFAIL but 5.x.y ? */
1N/A mci_setstat(mci, EX_TEMPFAIL, "5.3.5", NULL);
1N/A errno = ENAMETOOLONG;
1N/A return EX_UNAVAILABLE;
1N/A }
1N/A (void) sm_strlcpy(unix_addr.sun_path, mux_path,
1N/A sizeof(unix_addr.sun_path));
1N/A
1N/A /* initialize domain socket */
1N/A sock = socket(AF_UNIX, SOCK_STREAM, 0);
1N/A if (sock == -1)
1N/A {
1N/A save_errno = errno;
1N/A syserr("makeconnection_ds: could not create domain socket %s",
1N/A mux_path);
1N/A mci_setstat(mci, EX_TEMPFAIL, "4.4.5", NULL);
1N/A errno = save_errno;
1N/A return EX_TEMPFAIL;
1N/A }
1N/A
1N/A /* connect to server */
1N/A if (connect(sock, (struct sockaddr *) &unix_addr,
1N/A sizeof(unix_addr)) == -1)
1N/A {
1N/A save_errno = errno;
1N/A syserr("Could not connect to socket %s", mux_path);
1N/A mci_setstat(mci, EX_TEMPFAIL, "4.4.1", NULL);
1N/A (void) close(sock);
1N/A errno = save_errno;
1N/A return EX_TEMPFAIL;
1N/A }
1N/A
1N/A /* connection ok, put it into canonical form */
1N/A mci->mci_out = NULL;
1N/A if ((mci->mci_out = sm_io_open(SmFtStdiofd, SM_TIME_DEFAULT,
1N/A (void *) &sock, SM_IO_WRONLY_B, NULL))
1N/A == NULL
1N/A || (sock = dup(sock)) < 0 ||
1N/A (mci->mci_in = sm_io_open(SmFtStdiofd, SM_TIME_DEFAULT,
1N/A (void *) &sock, SM_IO_RDONLY_B, NULL))
1N/A == NULL)
1N/A {
1N/A save_errno = errno;
1N/A syserr("cannot open SMTP client channel, fd=%d", sock);
1N/A mci_setstat(mci, EX_TEMPFAIL, "4.4.5", NULL);
1N/A if (mci->mci_out != NULL)
1N/A (void) sm_io_close(mci->mci_out, SM_TIME_DEFAULT);
1N/A (void) close(sock);
1N/A errno = save_errno;
1N/A return EX_TEMPFAIL;
1N/A }
1N/A sm_io_automode(mci->mci_out, mci->mci_in);
1N/A
1N/A mci_setstat(mci, EX_OK, NULL, NULL);
1N/A errno = 0;
1N/A return EX_OK;
1N/A}
1N/A#endif /* NETUNIX */
1N/A/*
1N/A** SHUTDOWN_DAEMON -- Performs a clean shutdown of the daemon
1N/A**
1N/A** Parameters:
1N/A** none.
1N/A**
1N/A** Returns:
1N/A** none.
1N/A**
1N/A** Side Effects:
1N/A** closes control socket, exits.
1N/A*/
1N/A
1N/Avoid
1N/Ashutdown_daemon()
1N/A{
1N/A int i;
1N/A char *reason;
1N/A
1N/A sm_allsignals(true);
1N/A
1N/A reason = ShutdownRequest;
1N/A ShutdownRequest = NULL;
1N/A PendingSignal = 0;
1N/A
1N/A if (LogLevel > 9)
1N/A sm_syslog(LOG_INFO, CurEnv->e_id, "stopping daemon, reason=%s",
1N/A reason == NULL ? "implicit call" : reason);
1N/A
1N/A FileName = NULL;
1N/A closecontrolsocket(true);
1N/A#if XLA
1N/A xla_all_end();
1N/A#endif /* XLA */
1N/A
1N/A for (i = 0; i < NDaemons; i++)
1N/A {
1N/A if (Daemons[i].d_socket >= 0)
1N/A {
1N/A (void) close(Daemons[i].d_socket);
1N/A Daemons[i].d_socket = -1;
1N/A
1N/A#if _FFR_DAEMON_NETUNIX
1N/A# if NETUNIX
1N/A /* Remove named sockets */
1N/A if (Daemons[i].d_addr.sa.sa_family == AF_UNIX)
1N/A {
1N/A int rval;
1N/A long sff = SFF_SAFEDIRPATH|SFF_OPENASROOT|SFF_NOLINK|SFF_MUSTOWN|SFF_EXECOK|SFF_CREAT;
1N/A
1N/A /* if not safe, don't use it */
1N/A rval = safefile(Daemons[i].d_addr.sunix.sun_path,
1N/A RunAsUid, RunAsGid,
1N/A RunAsUserName, sff,
1N/A S_IRUSR|S_IWUSR, NULL);
1N/A if (rval == 0 &&
1N/A unlink(Daemons[i].d_addr.sunix.sun_path) < 0)
1N/A {
1N/A sm_syslog(LOG_WARNING, NOQID,
1N/A "Could not remove daemon %s socket: %s: %s",
1N/A Daemons[i].d_name,
1N/A Daemons[i].d_addr.sunix.sun_path,
1N/A sm_errstring(errno));
1N/A }
1N/A }
1N/A# endif /* NETUNIX */
1N/A#endif /* _FFR_DAEMON_NETUNIX */
1N/A }
1N/A }
1N/A
1N/A finis(false, true, EX_OK);
1N/A}
1N/A/*
1N/A** RESTART_DAEMON -- Performs a clean restart of the daemon
1N/A**
1N/A** Parameters:
1N/A** none.
1N/A**
1N/A** Returns:
1N/A** none.
1N/A**
1N/A** Side Effects:
1N/A** restarts the daemon or exits if restart fails.
1N/A*/
1N/A
1N/A/* Make a non-DFL/IGN signal a noop */
1N/A#define SM_NOOP_SIGNAL(sig, old) \
1N/Ado \
1N/A{ \
1N/A (old) = sm_signal((sig), sm_signal_noop); \
1N/A if ((old) == SIG_IGN || (old) == SIG_DFL) \
1N/A (void) sm_signal((sig), (old)); \
1N/A} while (0)
1N/A
1N/Avoid
1N/Arestart_daemon()
1N/A{
1N/A bool drop;
1N/A int save_errno;
1N/A char *reason;
1N/A sigfunc_t ignore, oalrm, ousr1;
1N/A extern int DtableSize;
1N/A
1N/A /* clear the events to turn off SIGALRMs */
1N/A sm_clear_events();
1N/A sm_allsignals(true);
1N/A
1N/A reason = RestartRequest;
1N/A RestartRequest = NULL;
1N/A PendingSignal = 0;
1N/A
1N/A if (SaveArgv[0][0] != '/')
1N/A {
1N/A if (LogLevel > 3)
1N/A sm_syslog(LOG_INFO, NOQID,
1N/A "could not restart: need full path");
1N/A finis(false, true, EX_OSFILE);
1N/A /* NOTREACHED */
1N/A }
1N/A if (LogLevel > 3)
1N/A sm_syslog(LOG_INFO, NOQID, "restarting %s due to %s",
1N/A SaveArgv[0],
1N/A reason == NULL ? "implicit call" : reason);
1N/A
1N/A closecontrolsocket(true);
1N/A#if SM_CONF_SHM
1N/A cleanup_shm(DaemonPid == getpid());
1N/A#endif /* SM_CONF_SHM */
1N/A
1N/A /* close locked pid file */
1N/A close_sendmail_pid();
1N/A
1N/A /*
1N/A ** Want to drop to the user who started the process in all cases
1N/A ** *but* when running as "smmsp" for the clientmqueue queue run
1N/A ** daemon. In that case, UseMSP will be true, RunAsUid should not
1N/A ** be root, and RealUid should be either 0 or RunAsUid.
1N/A */
1N/A
1N/A drop = !(UseMSP && RunAsUid != 0 &&
1N/A (RealUid == 0 || RealUid == RunAsUid));
1N/A
1N/A if (drop_privileges(drop) != EX_OK)
1N/A {
1N/A if (LogLevel > 0)
1N/A sm_syslog(LOG_ALERT, NOQID,
1N/A "could not drop privileges: %s",
1N/A sm_errstring(errno));
1N/A finis(false, true, EX_OSERR);
1N/A /* NOTREACHED */
1N/A }
1N/A
1N/A sm_close_on_exec(STDERR_FILENO + 1, DtableSize);
1N/A
1N/A /*
1N/A ** Need to allow signals before execve() to make them "harmless".
1N/A ** However, the default action can be "terminate", so it isn't
1N/A ** really harmless. Setting signals to IGN will cause them to be
1N/A ** ignored in the new process to, so that isn't a good alternative.
1N/A */
1N/A
1N/A SM_NOOP_SIGNAL(SIGALRM, oalrm);
1N/A SM_NOOP_SIGNAL(SIGCHLD, ignore);
1N/A SM_NOOP_SIGNAL(SIGHUP, ignore);
1N/A SM_NOOP_SIGNAL(SIGINT, ignore);
1N/A SM_NOOP_SIGNAL(SIGPIPE, ignore);
1N/A SM_NOOP_SIGNAL(SIGTERM, ignore);
1N/A#ifdef SIGUSR1
1N/A SM_NOOP_SIGNAL(SIGUSR1, ousr1);
1N/A#endif /* SIGUSR1 */
1N/A
1N/A /* Turn back on signals */
1N/A sm_allsignals(false);
1N/A
1N/A (void) execve(SaveArgv[0], (ARGV_T) SaveArgv, (ARGV_T) ExternalEnviron);
1N/A save_errno = errno;
1N/A
1N/A /* block signals again and restore needed signals */
1N/A sm_allsignals(true);
1N/A
1N/A /* For finis() events */
1N/A (void) sm_signal(SIGALRM, oalrm);
1N/A
1N/A#ifdef SIGUSR1
1N/A /* For debugging finis() */
1N/A (void) sm_signal(SIGUSR1, ousr1);
1N/A#endif /* SIGUSR1 */
1N/A
1N/A errno = save_errno;
1N/A if (LogLevel > 0)
1N/A sm_syslog(LOG_ALERT, NOQID, "could not exec %s: %s",
1N/A SaveArgv[0], sm_errstring(errno));
1N/A finis(false, true, EX_OSFILE);
1N/A /* NOTREACHED */
1N/A}
1N/A/*
1N/A** MYHOSTNAME -- return the name of this host.
1N/A**
1N/A** Parameters:
1N/A** hostbuf -- a place to return the name of this host.
1N/A** size -- the size of hostbuf.
1N/A**
1N/A** Returns:
1N/A** A list of aliases for this host.
1N/A**
1N/A** Side Effects:
1N/A** Adds numeric codes to $=w.
1N/A*/
1N/A
1N/Astruct hostent *
1N/Amyhostname(hostbuf, size)
1N/A char hostbuf[];
1N/A int size;
1N/A{
1N/A register struct hostent *hp;
1N/A
1N/A if (gethostname(hostbuf, size) < 0 || hostbuf[0] == '\0')
1N/A (void) sm_strlcpy(hostbuf, "localhost", size);
1N/A hp = sm_gethostbyname(hostbuf, InetMode);
1N/A#if NETINET && NETINET6
1N/A if (hp == NULL && InetMode == AF_INET6)
1N/A {
1N/A /*
1N/A ** It's possible that this IPv6 enabled machine doesn't
1N/A ** actually have any IPv6 interfaces and, therefore, no
1N/A ** IPv6 addresses. Fall back to AF_INET.
1N/A */
1N/A
1N/A hp = sm_gethostbyname(hostbuf, AF_INET);
1N/A }
1N/A#endif /* NETINET && NETINET6 */
1N/A if (hp == NULL)
1N/A return NULL;
1N/A if (strchr(hp->h_name, '.') != NULL || strchr(hostbuf, '.') == NULL)
1N/A (void) cleanstrcpy(hostbuf, hp->h_name, size);
1N/A
1N/A#if NETINFO
1N/A if (strchr(hostbuf, '.') == NULL)
1N/A {
1N/A char *domainname;
1N/A
1N/A domainname = ni_propval("/locations", NULL, "resolver",
1N/A "domain", '\0');
1N/A if (domainname != NULL &&
1N/A strlen(domainname) + strlen(hostbuf) + 1 < size)
1N/A (void) sm_strlcat2(hostbuf, ".", domainname, size);
1N/A }
1N/A#endif /* NETINFO */
1N/A
1N/A /*
1N/A ** If there is still no dot in the name, try looking for a
1N/A ** dotted alias.
1N/A */
1N/A
1N/A if (strchr(hostbuf, '.') == NULL)
1N/A {
1N/A char **ha;
1N/A
1N/A for (ha = hp->h_aliases; ha != NULL && *ha != NULL; ha++)
1N/A {
1N/A if (strchr(*ha, '.') != NULL)
1N/A {
1N/A (void) cleanstrcpy(hostbuf, *ha, size - 1);
1N/A hostbuf[size - 1] = '\0';
1N/A break;
1N/A }
1N/A }
1N/A }
1N/A
1N/A /*
1N/A ** If _still_ no dot, wait for a while and try again -- it is
1N/A ** possible that some service is starting up. This can result
1N/A ** in excessive delays if the system is badly configured, but
1N/A ** there really isn't a way around that, particularly given that
1N/A ** the config file hasn't been read at this point.
1N/A ** All in all, a bit of a mess.
1N/A */
1N/A
1N/A if (strchr(hostbuf, '.') == NULL &&
1N/A !getcanonname(hostbuf, size, true, NULL))
1N/A {
1N/A sm_syslog(LocalDaemon ? LOG_WARNING : LOG_CRIT, NOQID,
1N/A "My unqualified host name (%s) unknown; sleeping for retry",
1N/A hostbuf);
1N/A message("My unqualified host name (%s) unknown; sleeping for retry",
1N/A hostbuf);
1N/A (void) sleep(60);
1N/A if (!getcanonname(hostbuf, size, true, NULL))
1N/A {
1N/A sm_syslog(LocalDaemon ? LOG_WARNING : LOG_ALERT, NOQID,
1N/A "unable to qualify my own domain name (%s) -- using short name",
1N/A hostbuf);
1N/A message("WARNING: unable to qualify my own domain name (%s) -- using short name",
1N/A hostbuf);
1N/A }
1N/A }
1N/A return hp;
1N/A}
1N/A/*
1N/A** ADDRCMP -- compare two host addresses
1N/A**
1N/A** Parameters:
1N/A** hp -- hostent structure for the first address
1N/A** ha -- actual first address
1N/A** sa -- second address
1N/A**
1N/A** Returns:
1N/A** 0 -- if ha and sa match
1N/A** else -- they don't match
1N/A*/
1N/A
1N/Astatic int
1N/Aaddrcmp(hp, ha, sa)
1N/A struct hostent *hp;
1N/A char *ha;
1N/A SOCKADDR *sa;
1N/A{
1N/A#if NETINET6
1N/A unsigned char *a;
1N/A#endif /* NETINET6 */
1N/A
1N/A switch (sa->sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A if (hp->h_addrtype == AF_INET)
1N/A return memcmp(ha, (char *) &sa->sin.sin_addr, INADDRSZ);
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A a = (unsigned char *) &sa->sin6.sin6_addr;
1N/A
1N/A /* Straight binary comparison */
1N/A if (hp->h_addrtype == AF_INET6)
1N/A return memcmp(ha, a, IN6ADDRSZ);
1N/A
1N/A /* If IPv4-mapped IPv6 address, compare the IPv4 section */
1N/A if (hp->h_addrtype == AF_INET &&
1N/A IN6_IS_ADDR_V4MAPPED(&sa->sin6.sin6_addr))
1N/A return memcmp(a + IN6ADDRSZ - INADDRSZ, ha, INADDRSZ);
1N/A break;
1N/A#endif /* NETINET6 */
1N/A }
1N/A return -1;
1N/A}
1N/A/*
1N/A** GETAUTHINFO -- get the real host name associated with a file descriptor
1N/A**
1N/A** Uses RFC1413 protocol to try to get info from the other end.
1N/A**
1N/A** Parameters:
1N/A** fd -- the descriptor
1N/A** may_be_forged -- an outage that is set to true if the
1N/A** forward lookup of RealHostName does not match
1N/A** RealHostAddr; set to false if they do match.
1N/A**
1N/A** Returns:
1N/A** The user@host information associated with this descriptor.
1N/A*/
1N/A
1N/Astatic jmp_buf CtxAuthTimeout;
1N/A
1N/Astatic void
1N/Aauthtimeout(ignore)
1N/A int ignore;
1N/A{
1N/A /*
1N/A ** NOTE: THIS CAN BE CALLED FROM A SIGNAL HANDLER. DO NOT ADD
1N/A ** ANYTHING TO THIS ROUTINE UNLESS YOU KNOW WHAT YOU ARE
1N/A ** DOING.
1N/A */
1N/A
1N/A errno = ETIMEDOUT;
1N/A longjmp(CtxAuthTimeout, 1);
1N/A}
1N/A
1N/Achar *
1N/Agetauthinfo(fd, may_be_forged)
1N/A int fd;
1N/A bool *may_be_forged;
1N/A{
1N/A unsigned short SM_NONVOLATILE port = 0;
1N/A SOCKADDR_LEN_T falen;
1N/A register char *volatile p = NULL;
1N/A SOCKADDR la;
1N/A SOCKADDR_LEN_T lalen;
1N/A#ifndef NO_GETSERVBYNAME
1N/A register struct servent *sp;
1N/A# if NETINET
1N/A static unsigned short port4 = 0;
1N/A# endif /* NETINET */
1N/A# if NETINET6
1N/A static unsigned short port6 = 0;
1N/A# endif /* NETINET6 */
1N/A#endif /* ! NO_GETSERVBYNAME */
1N/A volatile int s;
1N/A int i = 0;
1N/A size_t len;
1N/A SM_EVENT *ev;
1N/A int nleft;
1N/A struct hostent *hp;
1N/A char *ostype = NULL;
1N/A char **ha;
1N/A char ibuf[MAXNAME + 1];
1N/A static char hbuf[MAXNAME + MAXAUTHINFO + 11];
1N/A
1N/A *may_be_forged = false;
1N/A falen = sizeof(RealHostAddr);
1N/A if (isatty(fd) || (i = getpeername(fd, &RealHostAddr.sa, &falen)) < 0 ||
1N/A falen <= 0 || RealHostAddr.sa.sa_family == 0)
1N/A {
1N/A if (i < 0)
1N/A {
1N/A /*
1N/A ** ENOTSOCK is OK: bail on anything else, but reset
1N/A ** errno in this case, so a mis-report doesn't
1N/A ** happen later.
1N/A */
1N/A
1N/A if (errno != ENOTSOCK)
1N/A return NULL;
1N/A errno = 0;
1N/A }
1N/A (void) sm_strlcpyn(hbuf, sizeof(hbuf), 2, RealUserName,
1N/A "@localhost");
1N/A if (tTd(9, 1))
1N/A sm_dprintf("getauthinfo: %s\n", hbuf);
1N/A return hbuf;
1N/A }
1N/A
1N/A if (RealHostName == NULL)
1N/A {
1N/A /* translate that to a host name */
1N/A RealHostName = newstr(hostnamebyanyaddr(&RealHostAddr));
1N/A if (strlen(RealHostName) > MAXNAME)
1N/A RealHostName[MAXNAME] = '\0'; /* XXX - 1 ? */
1N/A }
1N/A
1N/A /* cross check RealHostName with forward DNS lookup */
1N/A if (anynet_ntoa(&RealHostAddr)[0] != '[' &&
1N/A RealHostName[0] != '[')
1N/A {
1N/A int family;
1N/A
1N/A family = RealHostAddr.sa.sa_family;
1N/A#if NETINET6 && NEEDSGETIPNODE
1N/A /*
1N/A ** If RealHostAddr is an IPv6 connection with an
1N/A ** IPv4-mapped address, we need RealHostName's IPv4
1N/A ** address(es) for addrcmp() to compare against
1N/A ** RealHostAddr.
1N/A **
1N/A ** Actually, we only need to do this for systems
1N/A ** which NEEDSGETIPNODE since the real getipnodebyname()
1N/A ** already does V4MAPPED address via the AI_V4MAPPEDCFG
1N/A ** flag. A better fix to this problem is to add this
1N/A ** functionality to our stub getipnodebyname().
1N/A */
1N/A
1N/A if (family == AF_INET6 &&
1N/A IN6_IS_ADDR_V4MAPPED(&RealHostAddr.sin6.sin6_addr))
1N/A family = AF_INET;
1N/A#endif /* NETINET6 && NEEDSGETIPNODE */
1N/A
1N/A /* try to match the reverse against the forward lookup */
1N/A hp = sm_gethostbyname(RealHostName, family);
1N/A if (hp == NULL)
1N/A {
1N/A /* XXX: Could be a temporary error on forward lookup */
1N/A *may_be_forged = true;
1N/A }
1N/A else
1N/A {
1N/A for (ha = hp->h_addr_list; *ha != NULL; ha++)
1N/A {
1N/A if (addrcmp(hp, *ha, &RealHostAddr) == 0)
1N/A break;
1N/A }
1N/A *may_be_forged = *ha == NULL;
1N/A#if NETINET6
1N/A freehostent(hp);
1N/A hp = NULL;
1N/A#endif /* NETINET6 */
1N/A }
1N/A }
1N/A
1N/A if (TimeOuts.to_ident == 0)
1N/A goto noident;
1N/A
1N/A lalen = sizeof(la);
1N/A switch (RealHostAddr.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A if (getsockname(fd, &la.sa, &lalen) < 0 ||
1N/A lalen <= 0 ||
1N/A la.sa.sa_family != AF_INET)
1N/A {
1N/A /* no ident info */
1N/A goto noident;
1N/A }
1N/A port = RealHostAddr.sin.sin_port;
1N/A
1N/A /* create ident query */
1N/A (void) sm_snprintf(ibuf, sizeof(ibuf), "%d,%d\r\n",
1N/A ntohs(RealHostAddr.sin.sin_port),
1N/A ntohs(la.sin.sin_port));
1N/A
1N/A /* create local address */
1N/A la.sin.sin_port = 0;
1N/A
1N/A /* create foreign address */
1N/A# ifdef NO_GETSERVBYNAME
1N/A RealHostAddr.sin.sin_port = htons(113);
1N/A# else /* NO_GETSERVBYNAME */
1N/A
1N/A /*
1N/A ** getservbyname() consumes about 5% of the time
1N/A ** when receiving a small message (almost all of the time
1N/A ** spent in this routine).
1N/A ** Hence we store the port in a static variable
1N/A ** to save this time.
1N/A ** The portnumber shouldn't change very often...
1N/A ** This code makes the assumption that the port number
1N/A ** is not 0.
1N/A */
1N/A
1N/A if (port4 == 0)
1N/A {
1N/A sp = getservbyname("auth", "tcp");
1N/A if (sp != NULL)
1N/A port4 = sp->s_port;
1N/A else
1N/A port4 = htons(113);
1N/A }
1N/A RealHostAddr.sin.sin_port = port4;
1N/A break;
1N/A# endif /* NO_GETSERVBYNAME */
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A if (getsockname(fd, &la.sa, &lalen) < 0 ||
1N/A lalen <= 0 ||
1N/A la.sa.sa_family != AF_INET6)
1N/A {
1N/A /* no ident info */
1N/A goto noident;
1N/A }
1N/A port = RealHostAddr.sin6.sin6_port;
1N/A
1N/A /* create ident query */
1N/A (void) sm_snprintf(ibuf, sizeof(ibuf), "%d,%d\r\n",
1N/A ntohs(RealHostAddr.sin6.sin6_port),
1N/A ntohs(la.sin6.sin6_port));
1N/A
1N/A /* create local address */
1N/A la.sin6.sin6_port = 0;
1N/A
1N/A /* create foreign address */
1N/A# ifdef NO_GETSERVBYNAME
1N/A RealHostAddr.sin6.sin6_port = htons(113);
1N/A# else /* NO_GETSERVBYNAME */
1N/A if (port6 == 0)
1N/A {
1N/A sp = getservbyname("auth", "tcp");
1N/A if (sp != NULL)
1N/A port6 = sp->s_port;
1N/A else
1N/A port6 = htons(113);
1N/A }
1N/A RealHostAddr.sin6.sin6_port = port6;
1N/A break;
1N/A# endif /* NO_GETSERVBYNAME */
1N/A#endif /* NETINET6 */
1N/A default:
1N/A /* no ident info */
1N/A goto noident;
1N/A }
1N/A
1N/A s = -1;
1N/A if (setjmp(CtxAuthTimeout) != 0)
1N/A {
1N/A if (s >= 0)
1N/A (void) close(s);
1N/A goto noident;
1N/A }
1N/A
1N/A /* put a timeout around the whole thing */
1N/A ev = sm_setevent(TimeOuts.to_ident, authtimeout, 0);
1N/A
1N/A /* connect to foreign IDENT server using same address as SMTP socket */
1N/A s = socket(la.sa.sa_family, SOCK_STREAM, 0);
1N/A if (s < 0)
1N/A {
1N/A sm_clrevent(ev);
1N/A goto noident;
1N/A }
1N/A if (bind(s, &la.sa, lalen) < 0 ||
1N/A connect(s, &RealHostAddr.sa, lalen) < 0)
1N/A goto closeident;
1N/A
1N/A if (tTd(9, 10))
1N/A sm_dprintf("getauthinfo: sent %s", ibuf);
1N/A
1N/A /* send query */
1N/A if (write(s, ibuf, strlen(ibuf)) < 0)
1N/A goto closeident;
1N/A
1N/A /* get result */
1N/A p = &ibuf[0];
1N/A nleft = sizeof(ibuf) - 1;
1N/A while ((i = read(s, p, nleft)) > 0)
1N/A {
1N/A char *s;
1N/A
1N/A p += i;
1N/A nleft -= i;
1N/A *p = '\0';
1N/A if ((s = strchr(ibuf, '\n')) != NULL)
1N/A {
1N/A if (p > s + 1)
1N/A {
1N/A p = s + 1;
1N/A *p = '\0';
1N/A }
1N/A break;
1N/A }
1N/A if (nleft <= 0)
1N/A break;
1N/A }
1N/A (void) close(s);
1N/A sm_clrevent(ev);
1N/A if (i < 0 || p == &ibuf[0])
1N/A goto noident;
1N/A
1N/A if (p >= &ibuf[2] && *--p == '\n' && *--p == '\r')
1N/A p--;
1N/A *++p = '\0';
1N/A
1N/A if (tTd(9, 3))
1N/A sm_dprintf("getauthinfo: got %s\n", ibuf);
1N/A
1N/A /* parse result */
1N/A p = strchr(ibuf, ':');
1N/A if (p == NULL)
1N/A {
1N/A /* malformed response */
1N/A goto noident;
1N/A }
1N/A while (isascii(*++p) && isspace(*p))
1N/A continue;
1N/A if (sm_strncasecmp(p, "userid", 6) != 0)
1N/A {
1N/A /* presumably an error string */
1N/A goto noident;
1N/A }
1N/A p += 6;
1N/A while (isascii(*p) && isspace(*p))
1N/A p++;
1N/A if (*p++ != ':')
1N/A {
1N/A /* either useridxx or malformed response */
1N/A goto noident;
1N/A }
1N/A
1N/A /* p now points to the OSTYPE field */
1N/A while (isascii(*p) && isspace(*p))
1N/A p++;
1N/A ostype = p;
1N/A p = strchr(p, ':');
1N/A if (p == NULL)
1N/A {
1N/A /* malformed response */
1N/A goto noident;
1N/A }
1N/A else
1N/A {
1N/A char *charset;
1N/A
1N/A *p = '\0';
1N/A charset = strchr(ostype, ',');
1N/A if (charset != NULL)
1N/A *charset = '\0';
1N/A }
1N/A
1N/A /* 1413 says don't do this -- but it's broken otherwise */
1N/A while (isascii(*++p) && isspace(*p))
1N/A continue;
1N/A
1N/A /* p now points to the authenticated name -- copy carefully */
1N/A if (sm_strncasecmp(ostype, "other", 5) == 0 &&
1N/A (ostype[5] == ' ' || ostype[5] == '\0'))
1N/A {
1N/A (void) sm_strlcpy(hbuf, "IDENT:", sizeof(hbuf));
1N/A cleanstrcpy(&hbuf[6], p, MAXAUTHINFO);
1N/A }
1N/A else
1N/A cleanstrcpy(hbuf, p, MAXAUTHINFO);
1N/A len = strlen(hbuf);
1N/A (void) sm_strlcpyn(&hbuf[len], sizeof(hbuf) - len, 2, "@",
1N/A RealHostName == NULL ? "localhost" : RealHostName);
1N/A goto postident;
1N/A
1N/Acloseident:
1N/A (void) close(s);
1N/A sm_clrevent(ev);
1N/A
1N/Anoident:
1N/A /* put back the original incoming port */
1N/A switch (RealHostAddr.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A if (port > 0)
1N/A RealHostAddr.sin.sin_port = port;
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A if (port > 0)
1N/A RealHostAddr.sin6.sin6_port = port;
1N/A break;
1N/A#endif /* NETINET6 */
1N/A }
1N/A
1N/A if (RealHostName == NULL)
1N/A {
1N/A if (tTd(9, 1))
1N/A sm_dprintf("getauthinfo: NULL\n");
1N/A return NULL;
1N/A }
1N/A (void) sm_strlcpy(hbuf, RealHostName, sizeof(hbuf));
1N/A
1N/Apostident:
1N/A#if IP_SRCROUTE
1N/A# ifndef GET_IPOPT_DST
1N/A# define GET_IPOPT_DST(dst) (dst)
1N/A# endif /* ! GET_IPOPT_DST */
1N/A /*
1N/A ** Extract IP source routing information.
1N/A **
1N/A ** Format of output for a connection from site a through b
1N/A ** through c to d:
1N/A ** loose: @site-c@site-b:site-a
1N/A ** strict: !@site-c@site-b:site-a
1N/A **
1N/A ** o - pointer within ipopt_list structure.
1N/A ** q - pointer within ls/ss rr route data
1N/A ** p - pointer to hbuf
1N/A */
1N/A
1N/A if (RealHostAddr.sa.sa_family == AF_INET)
1N/A {
1N/A SOCKOPT_LEN_T ipoptlen;
1N/A int j;
1N/A unsigned char *q;
1N/A unsigned char *o;
1N/A int l;
1N/A struct IPOPTION ipopt;
1N/A
1N/A ipoptlen = sizeof(ipopt);
1N/A if (getsockopt(fd, IPPROTO_IP, IP_OPTIONS,
1N/A (char *) &ipopt, &ipoptlen) < 0)
1N/A goto noipsr;
1N/A if (ipoptlen == 0)
1N/A goto noipsr;
1N/A o = (unsigned char *) ipopt.IP_LIST;
1N/A while (o != NULL && o < (unsigned char *) &ipopt + ipoptlen)
1N/A {
1N/A switch (*o)
1N/A {
1N/A case IPOPT_EOL:
1N/A o = NULL;
1N/A break;
1N/A
1N/A case IPOPT_NOP:
1N/A o++;
1N/A break;
1N/A
1N/A case IPOPT_SSRR:
1N/A case IPOPT_LSRR:
1N/A /*
1N/A ** Source routing.
1N/A ** o[0] is the option type (loose/strict).
1N/A ** o[1] is the length of this option,
1N/A ** including option type and
1N/A ** length.
1N/A ** o[2] is the pointer into the route
1N/A ** data.
1N/A ** o[3] begins the route data.
1N/A */
1N/A
1N/A p = &hbuf[strlen(hbuf)];
1N/A l = sizeof(hbuf) - (hbuf - p) - 6;
1N/A (void) sm_snprintf(p, SPACELEFT(hbuf, p),
1N/A " [%s@%.*s",
1N/A *o == IPOPT_SSRR ? "!" : "",
1N/A l > 240 ? 120 : l / 2,
1N/A inet_ntoa(GET_IPOPT_DST(ipopt.IP_DST)));
1N/A i = strlen(p);
1N/A p += i;
1N/A l -= strlen(p);
1N/A
1N/A j = o[1] / sizeof(struct in_addr) - 1;
1N/A
1N/A /* q skips length and router pointer to data */
1N/A q = &o[3];
1N/A for ( ; j >= 0; j--)
1N/A {
1N/A struct in_addr addr;
1N/A
1N/A memcpy(&addr, q, sizeof(addr));
1N/A (void) sm_snprintf(p,
1N/A SPACELEFT(hbuf, p),
1N/A "%c%.*s",
1N/A j != 0 ? '@' : ':',
1N/A l > 240 ? 120 :
1N/A j == 0 ? l : l / 2,
1N/A inet_ntoa(addr));
1N/A i = strlen(p);
1N/A p += i;
1N/A l -= i + 1;
1N/A q += sizeof(struct in_addr);
1N/A }
1N/A o += o[1];
1N/A break;
1N/A
1N/A default:
1N/A /* Skip over option */
1N/A o += o[1];
1N/A break;
1N/A }
1N/A }
1N/A (void) sm_snprintf(p, SPACELEFT(hbuf, p), "]");
1N/A goto postipsr;
1N/A }
1N/A
1N/Anoipsr:
1N/A#endif /* IP_SRCROUTE */
1N/A if (RealHostName != NULL && RealHostName[0] != '[')
1N/A {
1N/A p = &hbuf[strlen(hbuf)];
1N/A (void) sm_snprintf(p, SPACELEFT(hbuf, p), " [%.100s]",
1N/A anynet_ntoa(&RealHostAddr));
1N/A }
1N/A if (*may_be_forged)
1N/A {
1N/A p = &hbuf[strlen(hbuf)];
1N/A (void) sm_strlcpy(p, " (may be forged)", SPACELEFT(hbuf, p));
1N/A macdefine(&BlankEnvelope.e_macro, A_PERM,
1N/A macid("{client_resolve}"), "FORGED");
1N/A }
1N/A
1N/A#if IP_SRCROUTE
1N/Apostipsr:
1N/A#endif /* IP_SRCROUTE */
1N/A
1N/A /* put back the original incoming port */
1N/A switch (RealHostAddr.sa.sa_family)
1N/A {
1N/A#if NETINET
1N/A case AF_INET:
1N/A if (port > 0)
1N/A RealHostAddr.sin.sin_port = port;
1N/A break;
1N/A#endif /* NETINET */
1N/A
1N/A#if NETINET6
1N/A case AF_INET6:
1N/A if (port > 0)
1N/A RealHostAddr.sin6.sin6_port = port;
1N/A break;
1N/A#endif /* NETINET6 */
1N/A }
1N/A
1N/A if (tTd(9, 1))
1N/A sm_dprintf("getauthinfo: %s\n", hbuf);
1N/A return hbuf;
1N/A}
1N/A/*
1N/A** HOST_MAP_LOOKUP -- turn a hostname into canonical form
1N/A**
1N/A** Parameters:
1N/A** map -- a pointer to this map.
1N/A** name -- the (presumably unqualified) hostname.
1N/A** av -- unused -- for compatibility with other mapping
1N/A** functions.
1N/A** statp -- an exit status (out parameter) -- set to
1N/A** EX_TEMPFAIL if the name server is unavailable.
1N/A**
1N/A** Returns:
1N/A** The mapping, if found.
1N/A** NULL if no mapping found.
1N/A**
1N/A** Side Effects:
1N/A** Looks up the host specified in hbuf. If it is not
1N/A** the canonical name for that host, return the canonical
1N/A** name (unless MF_MATCHONLY is set, which will cause the
1N/A** status only to be returned).
1N/A*/
1N/A
1N/Achar *
1N/Ahost_map_lookup(map, name, av, statp)
1N/A MAP *map;
1N/A char *name;
1N/A char **av;
1N/A int *statp;
1N/A{
1N/A register struct hostent *hp;
1N/A#if NETINET
1N/A struct in_addr in_addr;
1N/A#endif /* NETINET */
1N/A#if NETINET6
1N/A struct in6_addr in6_addr;
1N/A#endif /* NETINET6 */
1N/A char *cp, *ans = NULL;
1N/A register STAB *s;
1N/A time_t now;
1N/A#if NAMED_BIND
1N/A time_t SM_NONVOLATILE retrans = 0;
1N/A int SM_NONVOLATILE retry = 0;
1N/A#endif /* NAMED_BIND */
1N/A char hbuf[MAXNAME + 1];
1N/A
1N/A /*
1N/A ** See if we have already looked up this name. If so, just
1N/A ** return it (unless expired).
1N/A */
1N/A
1N/A now = curtime();
1N/A s = stab(name, ST_NAMECANON, ST_ENTER);
1N/A if (bitset(NCF_VALID, s->s_namecanon.nc_flags) &&
1N/A s->s_namecanon.nc_exp >= now)
1N/A {
1N/A if (tTd(9, 1))
1N/A sm_dprintf("host_map_lookup(%s) => CACHE %s\n",
1N/A name,
1N/A s->s_namecanon.nc_cname == NULL
1N/A ? "NULL"
1N/A : s->s_namecanon.nc_cname);
1N/A errno = s->s_namecanon.nc_errno;
1N/A SM_SET_H_ERRNO(s->s_namecanon.nc_herrno);
1N/A *statp = s->s_namecanon.nc_stat;
1N/A if (*statp == EX_TEMPFAIL)
1N/A {
1N/A CurEnv->e_status = "4.4.3";
1N/A message("851 %s: Name server timeout",
1N/A shortenstring(name, 33));
1N/A }
1N/A if (*statp != EX_OK)
1N/A return NULL;
1N/A if (s->s_namecanon.nc_cname == NULL)
1N/A {
1N/A syserr("host_map_lookup(%s): bogus NULL cache entry, errno=%d, h_errno=%d",
1N/A name,
1N/A s->s_namecanon.nc_errno,
1N/A s->s_namecanon.nc_herrno);
1N/A return NULL;
1N/A }
1N/A if (bitset(MF_MATCHONLY, map->map_mflags))
1N/A cp = map_rewrite(map, name, strlen(name), NULL);
1N/A else
1N/A cp = map_rewrite(map,
1N/A s->s_namecanon.nc_cname,
1N/A strlen(s->s_namecanon.nc_cname),
1N/A av);
1N/A return cp;
1N/A }
1N/A
1N/A /*
1N/A ** If we are running without a regular network connection (usually
1N/A ** dial-on-demand) and we are just queueing, we want to avoid DNS
1N/A ** lookups because those could try to connect to a server.
1N/A */
1N/A
1N/A if (CurEnv->e_sendmode == SM_DEFER &&
1N/A bitset(MF_DEFER, map->map_mflags))
1N/A {
1N/A if (tTd(9, 1))
1N/A sm_dprintf("host_map_lookup(%s) => DEFERRED\n", name);
1N/A *statp = EX_TEMPFAIL;
1N/A return NULL;
1N/A }
1N/A
1N/A /*
1N/A ** If first character is a bracket, then it is an address
1N/A ** lookup. Address is copied into a temporary buffer to
1N/A ** strip the brackets and to preserve name if address is
1N/A ** unknown.
1N/A */
1N/A
1N/A if (tTd(9, 1))
1N/A sm_dprintf("host_map_lookup(%s) => ", name);
1N/A#if NAMED_BIND
1N/A if (map->map_timeout > 0)
1N/A {
1N/A retrans = _res.retrans;
1N/A _res.retrans = map->map_timeout;
1N/A }
1N/A if (map->map_retry > 0)
1N/A {
1N/A retry = _res.retry;
1N/A _res.retry = map->map_retry;
1N/A }
1N/A#endif /* NAMED_BIND */
1N/A
1N/A /* set default TTL */
1N/A s->s_namecanon.nc_exp = now + SM_DEFAULT_TTL;
1N/A if (*name != '[')
1N/A {
1N/A int ttl;
1N/A
1N/A (void) sm_strlcpy(hbuf, name, sizeof(hbuf));
1N/A if (getcanonname(hbuf, sizeof(hbuf) - 1, !HasWildcardMX, &ttl))
1N/A {
1N/A ans = hbuf;
1N/A if (ttl > 0)
1N/A s->s_namecanon.nc_exp = now + SM_MIN(ttl,
1N/A SM_DEFAULT_TTL);
1N/A }
1N/A }
1N/A else
1N/A {
1N/A if ((cp = strchr(name, ']')) == NULL)
1N/A {
1N/A if (tTd(9, 1))
1N/A sm_dprintf("FAILED\n");
1N/A return NULL;
1N/A }
1N/A *cp = '\0';
1N/A
1N/A hp = NULL;
1N/A#if NETINET
1N/A if ((in_addr.s_addr = inet_addr(&name[1])) != INADDR_NONE)
1N/A hp = sm_gethostbyaddr((char *)&in_addr,
1N/A INADDRSZ, AF_INET);
1N/A#endif /* NETINET */
1N/A#if NETINET6
1N/A if (hp == NULL &&
1N/A anynet_pton(AF_INET6, &name[1], &in6_addr) == 1)
1N/A hp = sm_gethostbyaddr((char *)&in6_addr,
1N/A IN6ADDRSZ, AF_INET6);
1N/A#endif /* NETINET6 */
1N/A *cp = ']';
1N/A
1N/A if (hp != NULL)
1N/A {
1N/A /* found a match -- copy out */
1N/A ans = denlstring((char *) hp->h_name, true, true);
1N/A#if NETINET6
1N/A if (ans == hp->h_name)
1N/A {
1N/A static char n[MAXNAME + 1];
1N/A
1N/A /* hp->h_name is about to disappear */
1N/A (void) sm_strlcpy(n, ans, sizeof(n));
1N/A ans = n;
1N/A }
1N/A freehostent(hp);
1N/A hp = NULL;
1N/A#endif /* NETINET6 */
1N/A }
1N/A }
1N/A#if NAMED_BIND
1N/A if (map->map_timeout > 0)
1N/A _res.retrans = retrans;
1N/A if (map->map_retry > 0)
1N/A _res.retry = retry;
1N/A#endif /* NAMED_BIND */
1N/A
1N/A s->s_namecanon.nc_flags |= NCF_VALID; /* will be soon */
1N/A
1N/A /* Found an answer */
1N/A if (ans != NULL)
1N/A {
1N/A s->s_namecanon.nc_stat = *statp = EX_OK;
1N/A if (s->s_namecanon.nc_cname != NULL)
1N/A sm_free(s->s_namecanon.nc_cname);
1N/A s->s_namecanon.nc_cname = sm_strdup_x(ans);
1N/A if (bitset(MF_MATCHONLY, map->map_mflags))
1N/A cp = map_rewrite(map, name, strlen(name), NULL);
1N/A else
1N/A cp = map_rewrite(map, ans, strlen(ans), av);
1N/A if (tTd(9, 1))
1N/A sm_dprintf("FOUND %s\n", ans);
1N/A return cp;
1N/A }
1N/A
1N/A
1N/A /* No match found */
1N/A s->s_namecanon.nc_errno = errno;
1N/A#if NAMED_BIND
1N/A s->s_namecanon.nc_herrno = h_errno;
1N/A if (tTd(9, 1))
1N/A sm_dprintf("FAIL (%d)\n", h_errno);
1N/A switch (h_errno)
1N/A {
1N/A case TRY_AGAIN:
1N/A if (UseNameServer)
1N/A {
1N/A CurEnv->e_status = "4.4.3";
1N/A message("851 %s: Name server timeout",
1N/A shortenstring(name, 33));
1N/A }
1N/A *statp = EX_TEMPFAIL;
1N/A break;
1N/A
1N/A case HOST_NOT_FOUND:
1N/A case NO_DATA:
1N/A *statp = EX_NOHOST;
1N/A break;
1N/A
1N/A case NO_RECOVERY:
1N/A *statp = EX_SOFTWARE;
1N/A break;
1N/A
1N/A default:
1N/A *statp = EX_UNAVAILABLE;
1N/A break;
1N/A }
1N/A#else /* NAMED_BIND */
1N/A if (tTd(9, 1))
1N/A sm_dprintf("FAIL\n");
1N/A *statp = EX_NOHOST;
1N/A#endif /* NAMED_BIND */
1N/A s->s_namecanon.nc_stat = *statp;
1N/A return NULL;
1N/A}
1N/A/*
1N/A** HOST_MAP_INIT -- initialize host class structures
1N/A**
1N/A** Parameters:
1N/A** map -- a pointer to this map.
1N/A** args -- argument string.
1N/A**
1N/A** Returns:
1N/A** true.
1N/A*/
1N/A
1N/Abool
1N/Ahost_map_init(map, args)
1N/A MAP *map;
1N/A char *args;
1N/A{
1N/A register char *p = args;
1N/A
1N/A for (;;)
1N/A {
1N/A while (isascii(*p) && isspace(*p))
1N/A p++;
1N/A if (*p != '-')
1N/A break;
1N/A switch (*++p)
1N/A {
1N/A case 'a':
1N/A map->map_app = ++p;
1N/A break;
1N/A
1N/A case 'T':
1N/A map->map_tapp = ++p;
1N/A break;
1N/A
1N/A case 'm':
1N/A map->map_mflags |= MF_MATCHONLY;
1N/A break;
1N/A
1N/A case 't':
1N/A map->map_mflags |= MF_NODEFER;
1N/A break;
1N/A
1N/A case 'S': /* only for consistency */
1N/A map->map_spacesub = *++p;
1N/A break;
1N/A
1N/A case 'D':
1N/A map->map_mflags |= MF_DEFER;
1N/A break;
1N/A
1N/A case 'd':
1N/A {
1N/A char *h;
1N/A
1N/A while (isascii(*++p) && isspace(*p))
1N/A continue;
1N/A h = strchr(p, ' ');
1N/A if (h != NULL)
1N/A *h = '\0';
1N/A map->map_timeout = convtime(p, 's');
1N/A if (h != NULL)
1N/A *h = ' ';
1N/A }
1N/A break;
1N/A
1N/A case 'r':
1N/A while (isascii(*++p) && isspace(*p))
1N/A continue;
1N/A map->map_retry = atoi(p);
1N/A break;
1N/A }
1N/A while (*p != '\0' && !(isascii(*p) && isspace(*p)))
1N/A p++;
1N/A if (*p != '\0')
1N/A *p++ = '\0';
1N/A }
1N/A if (map->map_app != NULL)
1N/A map->map_app = newstr(map->map_app);
1N/A if (map->map_tapp != NULL)
1N/A map->map_tapp = newstr(map->map_tapp);
1N/A return true;
1N/A}
1N/A
1N/A#if NETINET6
1N/A/*
1N/A** ANYNET_NTOP -- convert an IPv6 network address to printable form.
1N/A**
1N/A** Parameters:
1N/A** s6a -- a pointer to an in6_addr structure.
1N/A** dst -- buffer to store result in
1N/A** dst_len -- size of dst buffer
1N/A**
1N/A** Returns:
1N/A** A printable version of that structure.
1N/A*/
1N/A
1N/Achar *
1N/Aanynet_ntop(s6a, dst, dst_len)
1N/A struct in6_addr *s6a;
1N/A char *dst;
1N/A size_t dst_len;
1N/A{
1N/A register char *ap;
1N/A
1N/A if (IN6_IS_ADDR_V4MAPPED(s6a))
1N/A ap = (char *) inet_ntop(AF_INET,
1N/A &s6a->s6_addr[IN6ADDRSZ - INADDRSZ],
1N/A dst, dst_len);
1N/A else
1N/A {
1N/A char *d;
1N/A size_t sz;
1N/A
1N/A /* Save pointer to beginning of string */
1N/A d = dst;
1N/A
1N/A /* Add IPv6: protocol tag */
1N/A sz = sm_strlcpy(dst, "IPv6:", dst_len);
1N/A if (sz >= dst_len)
1N/A return NULL;
1N/A dst += sz;
1N/A dst_len -= sz;
1N/A ap = (char *) inet_ntop(AF_INET6, s6a, dst, dst_len);
1N/A
1N/A /* Restore pointer to beginning of string */
1N/A if (ap != NULL)
1N/A ap = d;
1N/A }
1N/A return ap;
1N/A}
1N/A
1N/A/*
1N/A** ANYNET_PTON -- convert printed form to network address.
1N/A**
1N/A** Wrapper for inet_pton() which handles IPv6: labels.
1N/A**
1N/A** Parameters:
1N/A** family -- address family
1N/A** src -- string
1N/A** dst -- destination address structure
1N/A**
1N/A** Returns:
1N/A** 1 if the address was valid
1N/A** 0 if the address wasn't parseable
1N/A** -1 if error
1N/A*/
1N/A
1N/Aint
1N/Aanynet_pton(family, src, dst)
1N/A int family;
1N/A const char *src;
1N/A void *dst;
1N/A{
1N/A if (family == AF_INET6 && sm_strncasecmp(src, "IPv6:", 5) == 0)
1N/A src += 5;
1N/A return inet_pton(family, src, dst);
1N/A}
1N/A#endif /* NETINET6 */
1N/A/*
1N/A** ANYNET_NTOA -- convert a network address to printable form.
1N/A**
1N/A** Parameters:
1N/A** sap -- a pointer to a sockaddr structure.
1N/A**
1N/A** Returns:
1N/A** A printable version of that sockaddr.
1N/A*/
1N/A
1N/A#ifdef USE_SOCK_STREAM
1N/A
1N/A# if NETLINK
1N/A# include <net/if_dl.h>
1N/A# endif /* NETLINK */
1N/A
1N/Achar *
1N/Aanynet_ntoa(sap)
1N/A register SOCKADDR *sap;
1N/A{
1N/A register char *bp;
1N/A register char *ap;
1N/A int l;
1N/A static char buf[100];
1N/A
1N/A /* check for null/zero family */
1N/A if (sap == NULL)
1N/A return "NULLADDR";
1N/A if (sap->sa.sa_family == 0)
1N/A return "0";
1N/A
1N/A switch (sap->sa.sa_family)
1N/A {
1N/A# if NETUNIX
1N/A case AF_UNIX:
1N/A if (sap->sunix.sun_path[0] != '\0')
1N/A (void) sm_snprintf(buf, sizeof(buf), "[UNIX: %.64s]",
1N/A sap->sunix.sun_path);
1N/A else
1N/A (void) sm_strlcpy(buf, "[UNIX: localhost]", sizeof(buf));
1N/A return buf;
1N/A# endif /* NETUNIX */
1N/A
1N/A# if NETINET
1N/A case AF_INET:
1N/A return (char *) inet_ntoa(sap->sin.sin_addr);
1N/A# endif /* NETINET */
1N/A
1N/A# if NETINET6
1N/A case AF_INET6:
1N/A ap = anynet_ntop(&sap->sin6.sin6_addr, buf, sizeof(buf));
1N/A if (ap != NULL)
1N/A return ap;
1N/A break;
1N/A# endif /* NETINET6 */
1N/A
1N/A# if NETLINK
1N/A case AF_LINK:
1N/A (void) sm_snprintf(buf, sizeof(buf), "[LINK: %s]",
1N/A link_ntoa((struct sockaddr_dl *) &sap->sa));
1N/A return buf;
1N/A# endif /* NETLINK */
1N/A default:
1N/A /* this case is needed when nothing is #defined */
1N/A /* in order to keep the switch syntactically correct */
1N/A break;
1N/A }
1N/A
1N/A /* unknown family -- just dump bytes */
1N/A (void) sm_snprintf(buf, sizeof(buf), "Family %d: ", sap->sa.sa_family);
1N/A bp = &buf[strlen(buf)];
1N/A ap = sap->sa.sa_data;
1N/A for (l = sizeof(sap->sa.sa_data); --l >= 0; )
1N/A {
1N/A (void) sm_snprintf(bp, SPACELEFT(buf, bp), "%02x:",
1N/A *ap++ & 0377);
1N/A bp += 3;
1N/A }
1N/A *--bp = '\0';
1N/A return buf;
1N/A}
1N/A/*
1N/A** HOSTNAMEBYANYADDR -- return name of host based on address
1N/A**
1N/A** Parameters:
1N/A** sap -- SOCKADDR pointer
1N/A**
1N/A** Returns:
1N/A** text representation of host name.
1N/A**
1N/A** Side Effects:
1N/A** none.
1N/A*/
1N/A
1N/Achar *
1N/Ahostnamebyanyaddr(sap)
1N/A register SOCKADDR *sap;
1N/A{
1N/A register struct hostent *hp;
1N/A# if NAMED_BIND
1N/A int saveretry;
1N/A# endif /* NAMED_BIND */
1N/A# if NETINET6
1N/A struct in6_addr in6_addr;
1N/A# endif /* NETINET6 */
1N/A
1N/A# if NAMED_BIND
1N/A /* shorten name server timeout to avoid higher level timeouts */
1N/A saveretry = _res.retry;
1N/A if (_res.retry * _res.retrans > 20)
1N/A _res.retry = 20 / _res.retrans;
1N/A# endif /* NAMED_BIND */
1N/A
1N/A switch (sap->sa.sa_family)
1N/A {
1N/A# if NETINET
1N/A case AF_INET:
1N/A hp = sm_gethostbyaddr((char *) &sap->sin.sin_addr,
1N/A INADDRSZ, AF_INET);
1N/A break;
1N/A# endif /* NETINET */
1N/A
1N/A# if NETINET6
1N/A case AF_INET6:
1N/A hp = sm_gethostbyaddr((char *) &sap->sin6.sin6_addr,
1N/A IN6ADDRSZ, AF_INET6);
1N/A break;
1N/A# endif /* NETINET6 */
1N/A
1N/A# if NETISO
1N/A case AF_ISO:
1N/A hp = sm_gethostbyaddr((char *) &sap->siso.siso_addr,
1N/A sizeof(sap->siso.siso_addr), AF_ISO);
1N/A break;
1N/A# endif /* NETISO */
1N/A
1N/A# if NETUNIX
1N/A case AF_UNIX:
1N/A hp = NULL;
1N/A break;
1N/A# endif /* NETUNIX */
1N/A
1N/A default:
1N/A hp = sm_gethostbyaddr(sap->sa.sa_data, sizeof(sap->sa.sa_data),
1N/A sap->sa.sa_family);
1N/A break;
1N/A }
1N/A
1N/A# if NAMED_BIND
1N/A _res.retry = saveretry;
1N/A# endif /* NAMED_BIND */
1N/A
1N/A# if NETINET || NETINET6
1N/A if (hp != NULL && hp->h_name[0] != '['
1N/A# if NETINET6
1N/A && inet_pton(AF_INET6, hp->h_name, &in6_addr) != 1
1N/A# endif /* NETINET6 */
1N/A# if NETINET
1N/A && inet_addr(hp->h_name) == INADDR_NONE
1N/A# endif /* NETINET */
1N/A )
1N/A {
1N/A char *name;
1N/A
1N/A name = denlstring((char *) hp->h_name, true, true);
1N/A# if NETINET6
1N/A if (name == hp->h_name)
1N/A {
1N/A static char n[MAXNAME + 1];
1N/A
1N/A /* Copy the string, hp->h_name is about to disappear */
1N/A (void) sm_strlcpy(n, name, sizeof(n));
1N/A name = n;
1N/A }
1N/A freehostent(hp);
1N/A# endif /* NETINET6 */
1N/A return name;
1N/A }
1N/A# endif /* NETINET || NETINET6 */
1N/A
1N/A# if NETINET6
1N/A if (hp != NULL)
1N/A {
1N/A freehostent(hp);
1N/A hp = NULL;
1N/A }
1N/A# endif /* NETINET6 */
1N/A
1N/A# if NETUNIX
1N/A if (sap->sa.sa_family == AF_UNIX && sap->sunix.sun_path[0] == '\0')
1N/A return "localhost";
1N/A# endif /* NETUNIX */
1N/A {
1N/A static char buf[203];
1N/A
1N/A (void) sm_snprintf(buf, sizeof(buf), "[%.200s]",
1N/A anynet_ntoa(sap));
1N/A return buf;
1N/A }
1N/A}
1N/A#endif /* USE_SOCK_STREAM */