1c2aa98e2SPeter Wemm /* 2d9986b26SGregory Neil Shapiro * Copyright (c) 1998-2003 Sendmail, Inc. and its suppliers. 306f25ae9SGregory Neil Shapiro * All rights reserved. 4c2aa98e2SPeter Wemm * Copyright (c) 1983, 1995-1997 Eric P. Allman. All rights reserved. 5c2aa98e2SPeter Wemm * Copyright (c) 1988, 1993 6c2aa98e2SPeter Wemm * The Regents of the University of California. All rights reserved. 7c2aa98e2SPeter Wemm * 8c2aa98e2SPeter Wemm * By using this file, you agree to the terms and conditions set 9c2aa98e2SPeter Wemm * forth in the LICENSE file which can be found at the top level of 10c2aa98e2SPeter Wemm * the sendmail distribution. 11c2aa98e2SPeter Wemm * 12c2aa98e2SPeter Wemm */ 13c2aa98e2SPeter Wemm 1406f25ae9SGregory Neil Shapiro #include <sendmail.h> 1540266059SGregory Neil Shapiro #include <sys/time.h> 1606f25ae9SGregory Neil Shapiro 17a7ec597cSGregory Neil Shapiro SM_RCSID("@(#)$Id: deliver.c,v 8.940.2.19 2003/09/03 19:58:26 ca Exp $") 18c2aa98e2SPeter Wemm 19c2aa98e2SPeter Wemm #if HASSETUSERCONTEXT 20c2aa98e2SPeter Wemm # include <login_cap.h> 2106f25ae9SGregory Neil Shapiro #endif /* HASSETUSERCONTEXT */ 2206f25ae9SGregory Neil Shapiro 23605302a5SGregory Neil Shapiro #if NETINET || NETINET6 24605302a5SGregory Neil Shapiro # include <arpa/inet.h> 25605302a5SGregory Neil Shapiro #endif /* NETINET || NETINET6 */ 26605302a5SGregory Neil Shapiro 2740266059SGregory Neil Shapiro #if STARTTLS || SASL 2806f25ae9SGregory Neil Shapiro # include "sfsasl.h" 2940266059SGregory Neil Shapiro #endif /* STARTTLS || SASL */ 3006f25ae9SGregory Neil Shapiro 3140266059SGregory Neil Shapiro void markfailure __P((ENVELOPE *, ADDRESS *, MCI *, int, bool)); 3206f25ae9SGregory Neil Shapiro static int deliver __P((ENVELOPE *, ADDRESS *)); 3306f25ae9SGregory Neil Shapiro static void dup_queue_file __P((ENVELOPE *, ENVELOPE *, int)); 3406f25ae9SGregory Neil Shapiro static void mailfiletimeout __P((void)); 3506f25ae9SGregory Neil Shapiro static int parse_hostsignature __P((char *, char **, MAILER *)); 3606f25ae9SGregory Neil Shapiro static void sendenvelope __P((ENVELOPE *, int)); 3740266059SGregory Neil Shapiro extern MCI *mci_new __P((SM_RPOOL_T *)); 3840266059SGregory Neil Shapiro static int coloncmp __P((const char *, const char *)); 39c2aa98e2SPeter Wemm 4006f25ae9SGregory Neil Shapiro #if STARTTLS 4106f25ae9SGregory Neil Shapiro static int starttls __P((MAILER *, MCI *, ENVELOPE *)); 4240266059SGregory Neil Shapiro static int endtlsclt __P((MCI *)); 4306f25ae9SGregory Neil Shapiro #endif /* STARTTLS */ 4440266059SGregory Neil Shapiro # if STARTTLS || SASL 4540266059SGregory Neil Shapiro static bool iscltflgset __P((ENVELOPE *, int)); 4640266059SGregory Neil Shapiro # endif /* STARTTLS || SASL */ 47c2aa98e2SPeter Wemm 48c2aa98e2SPeter Wemm /* 49c2aa98e2SPeter Wemm ** SENDALL -- actually send all the messages. 50c2aa98e2SPeter Wemm ** 51c2aa98e2SPeter Wemm ** Parameters: 52c2aa98e2SPeter Wemm ** e -- the envelope to send. 53c2aa98e2SPeter Wemm ** mode -- the delivery mode to use. If SM_DEFAULT, use 54c2aa98e2SPeter Wemm ** the current e->e_sendmode. 55c2aa98e2SPeter Wemm ** 56c2aa98e2SPeter Wemm ** Returns: 57c2aa98e2SPeter Wemm ** none. 58c2aa98e2SPeter Wemm ** 59c2aa98e2SPeter Wemm ** Side Effects: 60c2aa98e2SPeter Wemm ** Scans the send lists and sends everything it finds. 61c2aa98e2SPeter Wemm ** Delivers any appropriate error messages. 62c2aa98e2SPeter Wemm ** If we are running in a non-interactive mode, takes the 63c2aa98e2SPeter Wemm ** appropriate action. 64c2aa98e2SPeter Wemm */ 65c2aa98e2SPeter Wemm 66c2aa98e2SPeter Wemm void 67c2aa98e2SPeter Wemm sendall(e, mode) 68c2aa98e2SPeter Wemm ENVELOPE *e; 69c2aa98e2SPeter Wemm int mode; 70c2aa98e2SPeter Wemm { 71c2aa98e2SPeter Wemm register ADDRESS *q; 72c2aa98e2SPeter Wemm char *owner; 73c2aa98e2SPeter Wemm int otherowners; 7406f25ae9SGregory Neil Shapiro int save_errno; 75c2aa98e2SPeter Wemm register ENVELOPE *ee; 76c2aa98e2SPeter Wemm ENVELOPE *splitenv = NULL; 77c2aa98e2SPeter Wemm int oldverbose = Verbose; 7840266059SGregory Neil Shapiro bool somedeliveries = false, expensive = false; 79c2aa98e2SPeter Wemm pid_t pid; 80c2aa98e2SPeter Wemm 81c2aa98e2SPeter Wemm /* 82c2aa98e2SPeter Wemm ** If this message is to be discarded, don't bother sending 83c2aa98e2SPeter Wemm ** the message at all. 84c2aa98e2SPeter Wemm */ 85c2aa98e2SPeter Wemm 86c2aa98e2SPeter Wemm if (bitset(EF_DISCARD, e->e_flags)) 87c2aa98e2SPeter Wemm { 88c2aa98e2SPeter Wemm if (tTd(13, 1)) 8940266059SGregory Neil Shapiro sm_dprintf("sendall: discarding id %s\n", e->e_id); 90c2aa98e2SPeter Wemm e->e_flags |= EF_CLRQUEUE; 9140266059SGregory Neil Shapiro if (LogLevel > 9) 9240266059SGregory Neil Shapiro logundelrcpts(e, "discarded", 9, true); 9340266059SGregory Neil Shapiro else if (LogLevel > 4) 94c2aa98e2SPeter Wemm sm_syslog(LOG_INFO, e->e_id, "discarded"); 9540266059SGregory Neil Shapiro markstats(e, NULL, STATS_REJECT); 96c2aa98e2SPeter Wemm return; 97c2aa98e2SPeter Wemm } 98c2aa98e2SPeter Wemm 99c2aa98e2SPeter Wemm /* 100c2aa98e2SPeter Wemm ** If we have had global, fatal errors, don't bother sending 101c2aa98e2SPeter Wemm ** the message at all if we are in SMTP mode. Local errors 102c2aa98e2SPeter Wemm ** (e.g., a single address failing) will still cause the other 103c2aa98e2SPeter Wemm ** addresses to be sent. 104c2aa98e2SPeter Wemm */ 105c2aa98e2SPeter Wemm 106c2aa98e2SPeter Wemm if (bitset(EF_FATALERRS, e->e_flags) && 107c2aa98e2SPeter Wemm (OpMode == MD_SMTP || OpMode == MD_DAEMON)) 108c2aa98e2SPeter Wemm { 109c2aa98e2SPeter Wemm e->e_flags |= EF_CLRQUEUE; 110c2aa98e2SPeter Wemm return; 111c2aa98e2SPeter Wemm } 112c2aa98e2SPeter Wemm 113c2aa98e2SPeter Wemm /* determine actual delivery mode */ 114c2aa98e2SPeter Wemm if (mode == SM_DEFAULT) 115c2aa98e2SPeter Wemm { 116c2aa98e2SPeter Wemm mode = e->e_sendmode; 117c2aa98e2SPeter Wemm if (mode != SM_VERIFY && mode != SM_DEFER && 118c2aa98e2SPeter Wemm shouldqueue(e->e_msgpriority, e->e_ctime)) 119c2aa98e2SPeter Wemm mode = SM_QUEUE; 120c2aa98e2SPeter Wemm } 121c2aa98e2SPeter Wemm 122c2aa98e2SPeter Wemm if (tTd(13, 1)) 123c2aa98e2SPeter Wemm { 12440266059SGregory Neil Shapiro sm_dprintf("\n===== SENDALL: mode %c, id %s, e_from ", 125c2aa98e2SPeter Wemm mode, e->e_id); 12640266059SGregory Neil Shapiro printaddr(&e->e_from, false); 12740266059SGregory Neil Shapiro sm_dprintf("\te_flags = "); 128c2aa98e2SPeter Wemm printenvflags(e); 12940266059SGregory Neil Shapiro sm_dprintf("sendqueue:\n"); 13040266059SGregory Neil Shapiro printaddr(e->e_sendqueue, true); 131c2aa98e2SPeter Wemm } 132c2aa98e2SPeter Wemm 133c2aa98e2SPeter Wemm /* 134c2aa98e2SPeter Wemm ** Do any preprocessing necessary for the mode we are running. 135c2aa98e2SPeter Wemm ** Check to make sure the hop count is reasonable. 136c2aa98e2SPeter Wemm ** Delete sends to the sender in mailing lists. 137c2aa98e2SPeter Wemm */ 138c2aa98e2SPeter Wemm 139c2aa98e2SPeter Wemm CurEnv = e; 140c2aa98e2SPeter Wemm if (tTd(62, 1)) 141c2aa98e2SPeter Wemm checkfds(NULL); 142c2aa98e2SPeter Wemm 143c2aa98e2SPeter Wemm if (e->e_hopcount > MaxHopCount) 144c2aa98e2SPeter Wemm { 1458774250cSGregory Neil Shapiro char *recip; 1468774250cSGregory Neil Shapiro 1478774250cSGregory Neil Shapiro if (e->e_sendqueue != NULL && 1488774250cSGregory Neil Shapiro e->e_sendqueue->q_paddr != NULL) 1498774250cSGregory Neil Shapiro recip = e->e_sendqueue->q_paddr; 1508774250cSGregory Neil Shapiro else 1518774250cSGregory Neil Shapiro recip = "(nobody)"; 1528774250cSGregory Neil Shapiro 153c2aa98e2SPeter Wemm errno = 0; 15440266059SGregory Neil Shapiro queueup(e, WILL_BE_QUEUED(mode), false); 155c2aa98e2SPeter Wemm e->e_flags |= EF_FATALERRS|EF_PM_NOTIFY|EF_CLRQUEUE; 15606f25ae9SGregory Neil Shapiro ExitStat = EX_UNAVAILABLE; 1578774250cSGregory Neil Shapiro syserr("554 5.4.6 Too many hops %d (%d max): from %s via %s, to %s", 158c2aa98e2SPeter Wemm e->e_hopcount, MaxHopCount, e->e_from.q_paddr, 159c2aa98e2SPeter Wemm RealHostName == NULL ? "localhost" : RealHostName, 1608774250cSGregory Neil Shapiro recip); 16106f25ae9SGregory Neil Shapiro for (q = e->e_sendqueue; q != NULL; q = q->q_next) 16206f25ae9SGregory Neil Shapiro { 16306f25ae9SGregory Neil Shapiro if (QS_IS_DEAD(q->q_state)) 16406f25ae9SGregory Neil Shapiro continue; 16506f25ae9SGregory Neil Shapiro q->q_state = QS_BADADDR; 16606f25ae9SGregory Neil Shapiro q->q_status = "5.4.6"; 1678774250cSGregory Neil Shapiro q->q_rstatus = "554 5.4.6 Too many hops"; 16806f25ae9SGregory Neil Shapiro } 169c2aa98e2SPeter Wemm return; 170c2aa98e2SPeter Wemm } 171c2aa98e2SPeter Wemm 172c2aa98e2SPeter Wemm /* 173c2aa98e2SPeter Wemm ** Do sender deletion. 174c2aa98e2SPeter Wemm ** 17506f25ae9SGregory Neil Shapiro ** If the sender should be queued up, skip this. 176c2aa98e2SPeter Wemm ** This can happen if the name server is hosed when you 177c2aa98e2SPeter Wemm ** are trying to send mail. The result is that the sender 178c2aa98e2SPeter Wemm ** is instantiated in the queue as a recipient. 179c2aa98e2SPeter Wemm */ 180c2aa98e2SPeter Wemm 181c2aa98e2SPeter Wemm if (!bitset(EF_METOO, e->e_flags) && 18206f25ae9SGregory Neil Shapiro !QS_IS_QUEUEUP(e->e_from.q_state)) 183c2aa98e2SPeter Wemm { 184c2aa98e2SPeter Wemm if (tTd(13, 5)) 185c2aa98e2SPeter Wemm { 18640266059SGregory Neil Shapiro sm_dprintf("sendall: QS_SENDER "); 18740266059SGregory Neil Shapiro printaddr(&e->e_from, false); 188c2aa98e2SPeter Wemm } 18906f25ae9SGregory Neil Shapiro e->e_from.q_state = QS_SENDER; 190c2aa98e2SPeter Wemm (void) recipient(&e->e_from, &e->e_sendqueue, 0, e); 191c2aa98e2SPeter Wemm } 192c2aa98e2SPeter Wemm 193c2aa98e2SPeter Wemm /* 194c2aa98e2SPeter Wemm ** Handle alias owners. 195c2aa98e2SPeter Wemm ** 196c2aa98e2SPeter Wemm ** We scan up the q_alias chain looking for owners. 197c2aa98e2SPeter Wemm ** We discard owners that are the same as the return path. 198c2aa98e2SPeter Wemm */ 199c2aa98e2SPeter Wemm 200c2aa98e2SPeter Wemm for (q = e->e_sendqueue; q != NULL; q = q->q_next) 201c2aa98e2SPeter Wemm { 202c2aa98e2SPeter Wemm register struct address *a; 203c2aa98e2SPeter Wemm 204c2aa98e2SPeter Wemm for (a = q; a != NULL && a->q_owner == NULL; a = a->q_alias) 205c2aa98e2SPeter Wemm continue; 206c2aa98e2SPeter Wemm if (a != NULL) 207c2aa98e2SPeter Wemm q->q_owner = a->q_owner; 208c2aa98e2SPeter Wemm 209c2aa98e2SPeter Wemm if (q->q_owner != NULL && 21006f25ae9SGregory Neil Shapiro !QS_IS_DEAD(q->q_state) && 211c2aa98e2SPeter Wemm strcmp(q->q_owner, e->e_from.q_paddr) == 0) 212c2aa98e2SPeter Wemm q->q_owner = NULL; 213c2aa98e2SPeter Wemm } 214c2aa98e2SPeter Wemm 215c2aa98e2SPeter Wemm if (tTd(13, 25)) 216c2aa98e2SPeter Wemm { 21740266059SGregory Neil Shapiro sm_dprintf("\nAfter first owner pass, sendq =\n"); 21840266059SGregory Neil Shapiro printaddr(e->e_sendqueue, true); 219c2aa98e2SPeter Wemm } 220c2aa98e2SPeter Wemm 221c2aa98e2SPeter Wemm owner = ""; 222c2aa98e2SPeter Wemm otherowners = 1; 223c2aa98e2SPeter Wemm while (owner != NULL && otherowners > 0) 224c2aa98e2SPeter Wemm { 225c2aa98e2SPeter Wemm if (tTd(13, 28)) 22640266059SGregory Neil Shapiro sm_dprintf("owner = \"%s\", otherowners = %d\n", 227c2aa98e2SPeter Wemm owner, otherowners); 228c2aa98e2SPeter Wemm owner = NULL; 229c2aa98e2SPeter Wemm otherowners = bitset(EF_SENDRECEIPT, e->e_flags) ? 1 : 0; 230c2aa98e2SPeter Wemm 231c2aa98e2SPeter Wemm for (q = e->e_sendqueue; q != NULL; q = q->q_next) 232c2aa98e2SPeter Wemm { 233c2aa98e2SPeter Wemm if (tTd(13, 30)) 234c2aa98e2SPeter Wemm { 23540266059SGregory Neil Shapiro sm_dprintf("Checking "); 23640266059SGregory Neil Shapiro printaddr(q, false); 237c2aa98e2SPeter Wemm } 23806f25ae9SGregory Neil Shapiro if (QS_IS_DEAD(q->q_state)) 239c2aa98e2SPeter Wemm { 240c2aa98e2SPeter Wemm if (tTd(13, 30)) 24140266059SGregory Neil Shapiro sm_dprintf(" ... QS_IS_DEAD\n"); 242c2aa98e2SPeter Wemm continue; 243c2aa98e2SPeter Wemm } 244c2aa98e2SPeter Wemm if (tTd(13, 29) && !tTd(13, 30)) 245c2aa98e2SPeter Wemm { 24640266059SGregory Neil Shapiro sm_dprintf("Checking "); 24740266059SGregory Neil Shapiro printaddr(q, false); 248c2aa98e2SPeter Wemm } 249c2aa98e2SPeter Wemm 250c2aa98e2SPeter Wemm if (q->q_owner != NULL) 251c2aa98e2SPeter Wemm { 252c2aa98e2SPeter Wemm if (owner == NULL) 253c2aa98e2SPeter Wemm { 254c2aa98e2SPeter Wemm if (tTd(13, 40)) 25540266059SGregory Neil Shapiro sm_dprintf(" ... First owner = \"%s\"\n", 256c2aa98e2SPeter Wemm q->q_owner); 257c2aa98e2SPeter Wemm owner = q->q_owner; 258c2aa98e2SPeter Wemm } 259c2aa98e2SPeter Wemm else if (owner != q->q_owner) 260c2aa98e2SPeter Wemm { 261c2aa98e2SPeter Wemm if (strcmp(owner, q->q_owner) == 0) 262c2aa98e2SPeter Wemm { 263c2aa98e2SPeter Wemm if (tTd(13, 40)) 26440266059SGregory Neil Shapiro sm_dprintf(" ... Same owner = \"%s\"\n", 265c2aa98e2SPeter Wemm owner); 266c2aa98e2SPeter Wemm 267c2aa98e2SPeter Wemm /* make future comparisons cheap */ 268c2aa98e2SPeter Wemm q->q_owner = owner; 269c2aa98e2SPeter Wemm } 270c2aa98e2SPeter Wemm else 271c2aa98e2SPeter Wemm { 272c2aa98e2SPeter Wemm if (tTd(13, 40)) 27340266059SGregory Neil Shapiro sm_dprintf(" ... Another owner \"%s\"\n", 274c2aa98e2SPeter Wemm q->q_owner); 275c2aa98e2SPeter Wemm otherowners++; 276c2aa98e2SPeter Wemm } 277c2aa98e2SPeter Wemm owner = q->q_owner; 278c2aa98e2SPeter Wemm } 279c2aa98e2SPeter Wemm else if (tTd(13, 40)) 28040266059SGregory Neil Shapiro sm_dprintf(" ... Same owner = \"%s\"\n", 281c2aa98e2SPeter Wemm owner); 282c2aa98e2SPeter Wemm } 283c2aa98e2SPeter Wemm else 284c2aa98e2SPeter Wemm { 285c2aa98e2SPeter Wemm if (tTd(13, 40)) 28640266059SGregory Neil Shapiro sm_dprintf(" ... Null owner\n"); 287c2aa98e2SPeter Wemm otherowners++; 288c2aa98e2SPeter Wemm } 289c2aa98e2SPeter Wemm 29006f25ae9SGregory Neil Shapiro if (QS_IS_BADADDR(q->q_state)) 29106f25ae9SGregory Neil Shapiro { 29206f25ae9SGregory Neil Shapiro if (tTd(13, 30)) 29340266059SGregory Neil Shapiro sm_dprintf(" ... QS_IS_BADADDR\n"); 29406f25ae9SGregory Neil Shapiro continue; 29506f25ae9SGregory Neil Shapiro } 29606f25ae9SGregory Neil Shapiro 29706f25ae9SGregory Neil Shapiro if (QS_IS_QUEUEUP(q->q_state)) 29806f25ae9SGregory Neil Shapiro { 29906f25ae9SGregory Neil Shapiro MAILER *m = q->q_mailer; 30006f25ae9SGregory Neil Shapiro 30106f25ae9SGregory Neil Shapiro /* 30206f25ae9SGregory Neil Shapiro ** If we have temporary address failures 30306f25ae9SGregory Neil Shapiro ** (e.g., dns failure) and a fallback MX is 30406f25ae9SGregory Neil Shapiro ** set, send directly to the fallback MX host. 30506f25ae9SGregory Neil Shapiro */ 30606f25ae9SGregory Neil Shapiro 30706f25ae9SGregory Neil Shapiro if (FallBackMX != NULL && 30806f25ae9SGregory Neil Shapiro !wordinclass(FallBackMX, 'w') && 30906f25ae9SGregory Neil Shapiro mode != SM_VERIFY && 31040266059SGregory Neil Shapiro !bitnset(M_NOMX, m->m_flags) && 31140266059SGregory Neil Shapiro strcmp(m->m_mailer, "[IPC]") == 0 && 31206f25ae9SGregory Neil Shapiro m->m_argv[0] != NULL && 31340266059SGregory Neil Shapiro strcmp(m->m_argv[0], "TCP") == 0) 31406f25ae9SGregory Neil Shapiro { 31506f25ae9SGregory Neil Shapiro int len; 31606f25ae9SGregory Neil Shapiro char *p; 31706f25ae9SGregory Neil Shapiro 31806f25ae9SGregory Neil Shapiro if (tTd(13, 30)) 31940266059SGregory Neil Shapiro sm_dprintf(" ... FallBackMX\n"); 32006f25ae9SGregory Neil Shapiro 32140266059SGregory Neil Shapiro len = strlen(FallBackMX) + 1; 32240266059SGregory Neil Shapiro p = sm_rpool_malloc_x(e->e_rpool, len); 32340266059SGregory Neil Shapiro (void) sm_strlcpy(p, FallBackMX, len); 32406f25ae9SGregory Neil Shapiro q->q_state = QS_OK; 32506f25ae9SGregory Neil Shapiro q->q_host = p; 32606f25ae9SGregory Neil Shapiro } 32706f25ae9SGregory Neil Shapiro else 32806f25ae9SGregory Neil Shapiro { 32906f25ae9SGregory Neil Shapiro if (tTd(13, 30)) 33040266059SGregory Neil Shapiro sm_dprintf(" ... QS_IS_QUEUEUP\n"); 33106f25ae9SGregory Neil Shapiro continue; 33206f25ae9SGregory Neil Shapiro } 33306f25ae9SGregory Neil Shapiro } 33406f25ae9SGregory Neil Shapiro 335c2aa98e2SPeter Wemm /* 336c2aa98e2SPeter Wemm ** If this mailer is expensive, and if we don't 337c2aa98e2SPeter Wemm ** want to make connections now, just mark these 338c2aa98e2SPeter Wemm ** addresses and return. This is useful if we 339c2aa98e2SPeter Wemm ** want to batch connections to reduce load. This 340c2aa98e2SPeter Wemm ** will cause the messages to be queued up, and a 341c2aa98e2SPeter Wemm ** daemon will come along to send the messages later. 342c2aa98e2SPeter Wemm */ 343c2aa98e2SPeter Wemm 344c2aa98e2SPeter Wemm if (NoConnect && !Verbose && 345c2aa98e2SPeter Wemm bitnset(M_EXPENSIVE, q->q_mailer->m_flags)) 346c2aa98e2SPeter Wemm { 347c2aa98e2SPeter Wemm if (tTd(13, 30)) 34840266059SGregory Neil Shapiro sm_dprintf(" ... expensive\n"); 34906f25ae9SGregory Neil Shapiro q->q_state = QS_QUEUEUP; 35040266059SGregory Neil Shapiro expensive = true; 35106f25ae9SGregory Neil Shapiro } 35206f25ae9SGregory Neil Shapiro else if (bitnset(M_HOLD, q->q_mailer->m_flags) && 35306f25ae9SGregory Neil Shapiro QueueLimitId == NULL && 35406f25ae9SGregory Neil Shapiro QueueLimitSender == NULL && 35506f25ae9SGregory Neil Shapiro QueueLimitRecipient == NULL) 35606f25ae9SGregory Neil Shapiro { 35706f25ae9SGregory Neil Shapiro if (tTd(13, 30)) 35840266059SGregory Neil Shapiro sm_dprintf(" ... hold\n"); 35906f25ae9SGregory Neil Shapiro q->q_state = QS_QUEUEUP; 36040266059SGregory Neil Shapiro expensive = true; 361c2aa98e2SPeter Wemm } 36240266059SGregory Neil Shapiro #if _FFR_QUARANTINE 36340266059SGregory Neil Shapiro else if (QueueMode != QM_QUARANTINE && 36440266059SGregory Neil Shapiro e->e_quarmsg != NULL) 36540266059SGregory Neil Shapiro { 36640266059SGregory Neil Shapiro if (tTd(13, 30)) 36740266059SGregory Neil Shapiro sm_dprintf(" ... quarantine: %s\n", 36840266059SGregory Neil Shapiro e->e_quarmsg); 36940266059SGregory Neil Shapiro q->q_state = QS_QUEUEUP; 37040266059SGregory Neil Shapiro expensive = true; 37140266059SGregory Neil Shapiro } 37240266059SGregory Neil Shapiro #endif /* _FFR_QUARANTINE */ 373c2aa98e2SPeter Wemm else 374c2aa98e2SPeter Wemm { 375c2aa98e2SPeter Wemm if (tTd(13, 30)) 37640266059SGregory Neil Shapiro sm_dprintf(" ... deliverable\n"); 37740266059SGregory Neil Shapiro somedeliveries = true; 378c2aa98e2SPeter Wemm } 379c2aa98e2SPeter Wemm } 380c2aa98e2SPeter Wemm 381c2aa98e2SPeter Wemm if (owner != NULL && otherowners > 0) 382c2aa98e2SPeter Wemm { 383c2aa98e2SPeter Wemm /* 384c2aa98e2SPeter Wemm ** Split this envelope into two. 385c2aa98e2SPeter Wemm */ 386c2aa98e2SPeter Wemm 38740266059SGregory Neil Shapiro ee = (ENVELOPE *) sm_rpool_malloc_x(e->e_rpool, 38840266059SGregory Neil Shapiro sizeof *ee); 38940266059SGregory Neil Shapiro STRUCTCOPY(*e, *ee); 39006f25ae9SGregory Neil Shapiro ee->e_message = NULL; 391c2aa98e2SPeter Wemm ee->e_id = NULL; 39206f25ae9SGregory Neil Shapiro assign_queueid(ee); 393c2aa98e2SPeter Wemm 394c2aa98e2SPeter Wemm if (tTd(13, 1)) 39540266059SGregory Neil Shapiro sm_dprintf("sendall: split %s into %s, owner = \"%s\", otherowners = %d\n", 39640266059SGregory Neil Shapiro e->e_id, ee->e_id, owner, 39740266059SGregory Neil Shapiro otherowners); 398c2aa98e2SPeter Wemm 39940266059SGregory Neil Shapiro ee->e_header = copyheader(e->e_header, ee->e_rpool); 40040266059SGregory Neil Shapiro ee->e_sendqueue = copyqueue(e->e_sendqueue, 40140266059SGregory Neil Shapiro ee->e_rpool); 40240266059SGregory Neil Shapiro ee->e_errorqueue = copyqueue(e->e_errorqueue, 40340266059SGregory Neil Shapiro ee->e_rpool); 404c2aa98e2SPeter Wemm ee->e_flags = e->e_flags & ~(EF_INQUEUE|EF_CLRQUEUE|EF_FATALERRS|EF_SENDRECEIPT|EF_RET_PARAM); 405c2aa98e2SPeter Wemm ee->e_flags |= EF_NORECEIPT; 40640266059SGregory Neil Shapiro setsender(owner, ee, NULL, '\0', true); 407c2aa98e2SPeter Wemm if (tTd(13, 5)) 408c2aa98e2SPeter Wemm { 40940266059SGregory Neil Shapiro sm_dprintf("sendall(split): QS_SENDER "); 41040266059SGregory Neil Shapiro printaddr(&ee->e_from, false); 411c2aa98e2SPeter Wemm } 41206f25ae9SGregory Neil Shapiro ee->e_from.q_state = QS_SENDER; 413c2aa98e2SPeter Wemm ee->e_dfp = NULL; 41406f25ae9SGregory Neil Shapiro ee->e_lockfp = NULL; 415c2aa98e2SPeter Wemm ee->e_xfp = NULL; 41640266059SGregory Neil Shapiro ee->e_qgrp = e->e_qgrp; 41740266059SGregory Neil Shapiro ee->e_qdir = e->e_qdir; 418c2aa98e2SPeter Wemm ee->e_errormode = EM_MAIL; 419c2aa98e2SPeter Wemm ee->e_sibling = splitenv; 42006f25ae9SGregory Neil Shapiro ee->e_statmsg = NULL; 42140266059SGregory Neil Shapiro #if _FFR_QUARANTINE 42240266059SGregory Neil Shapiro if (e->e_quarmsg != NULL) 42340266059SGregory Neil Shapiro ee->e_quarmsg = sm_rpool_strdup_x(ee->e_rpool, 42440266059SGregory Neil Shapiro e->e_quarmsg); 42540266059SGregory Neil Shapiro #endif /* _FFR_QUARANTINE */ 426c2aa98e2SPeter Wemm splitenv = ee; 427c2aa98e2SPeter Wemm 428c2aa98e2SPeter Wemm for (q = e->e_sendqueue; q != NULL; q = q->q_next) 429c2aa98e2SPeter Wemm { 430c2aa98e2SPeter Wemm if (q->q_owner == owner) 431c2aa98e2SPeter Wemm { 43206f25ae9SGregory Neil Shapiro q->q_state = QS_CLONED; 433c2aa98e2SPeter Wemm if (tTd(13, 6)) 43440266059SGregory Neil Shapiro sm_dprintf("\t... stripping %s from original envelope\n", 435c2aa98e2SPeter Wemm q->q_paddr); 436c2aa98e2SPeter Wemm } 437c2aa98e2SPeter Wemm } 438c2aa98e2SPeter Wemm for (q = ee->e_sendqueue; q != NULL; q = q->q_next) 439c2aa98e2SPeter Wemm { 440c2aa98e2SPeter Wemm if (q->q_owner != owner) 441c2aa98e2SPeter Wemm { 44206f25ae9SGregory Neil Shapiro q->q_state = QS_CLONED; 443c2aa98e2SPeter Wemm if (tTd(13, 6)) 44440266059SGregory Neil Shapiro sm_dprintf("\t... dropping %s from cloned envelope\n", 445c2aa98e2SPeter Wemm q->q_paddr); 446c2aa98e2SPeter Wemm } 447c2aa98e2SPeter Wemm else 448c2aa98e2SPeter Wemm { 449c2aa98e2SPeter Wemm /* clear DSN parameters */ 450c2aa98e2SPeter Wemm q->q_flags &= ~(QHASNOTIFY|Q_PINGFLAGS); 451c2aa98e2SPeter Wemm q->q_flags |= DefaultNotify & ~QPINGONSUCCESS; 452c2aa98e2SPeter Wemm if (tTd(13, 6)) 45340266059SGregory Neil Shapiro sm_dprintf("\t... moving %s to cloned envelope\n", 454c2aa98e2SPeter Wemm q->q_paddr); 455c2aa98e2SPeter Wemm } 456c2aa98e2SPeter Wemm } 457c2aa98e2SPeter Wemm 458c2aa98e2SPeter Wemm if (mode != SM_VERIFY && bitset(EF_HAS_DF, e->e_flags)) 45940266059SGregory Neil Shapiro dup_queue_file(e, ee, DATAFL_LETTER); 46006f25ae9SGregory Neil Shapiro 46106f25ae9SGregory Neil Shapiro /* 46206f25ae9SGregory Neil Shapiro ** Give the split envelope access to the parent 46306f25ae9SGregory Neil Shapiro ** transcript file for errors obtained while 46406f25ae9SGregory Neil Shapiro ** processing the recipients (done before the 46506f25ae9SGregory Neil Shapiro ** envelope splitting). 46606f25ae9SGregory Neil Shapiro */ 46706f25ae9SGregory Neil Shapiro 46806f25ae9SGregory Neil Shapiro if (e->e_xfp != NULL) 46940266059SGregory Neil Shapiro ee->e_xfp = sm_io_dup(e->e_xfp); 47006f25ae9SGregory Neil Shapiro 47106f25ae9SGregory Neil Shapiro /* failed to dup e->e_xfp, start a new transcript */ 47206f25ae9SGregory Neil Shapiro if (ee->e_xfp == NULL) 473c2aa98e2SPeter Wemm openxscript(ee); 47406f25ae9SGregory Neil Shapiro 475065a643dSPeter Wemm if (mode != SM_VERIFY && LogLevel > 4) 47640266059SGregory Neil Shapiro sm_syslog(LOG_INFO, e->e_id, 47740266059SGregory Neil Shapiro "%s: clone: owner=%s", 47840266059SGregory Neil Shapiro ee->e_id, owner); 479c2aa98e2SPeter Wemm } 480c2aa98e2SPeter Wemm } 481c2aa98e2SPeter Wemm 482c2aa98e2SPeter Wemm if (owner != NULL) 483c2aa98e2SPeter Wemm { 48440266059SGregory Neil Shapiro setsender(owner, e, NULL, '\0', true); 485c2aa98e2SPeter Wemm if (tTd(13, 5)) 486c2aa98e2SPeter Wemm { 48740266059SGregory Neil Shapiro sm_dprintf("sendall(owner): QS_SENDER "); 48840266059SGregory Neil Shapiro printaddr(&e->e_from, false); 489c2aa98e2SPeter Wemm } 49006f25ae9SGregory Neil Shapiro e->e_from.q_state = QS_SENDER; 491c2aa98e2SPeter Wemm e->e_errormode = EM_MAIL; 492c2aa98e2SPeter Wemm e->e_flags |= EF_NORECEIPT; 493c2aa98e2SPeter Wemm e->e_flags &= ~EF_FATALERRS; 494c2aa98e2SPeter Wemm } 495c2aa98e2SPeter Wemm 496c2aa98e2SPeter Wemm /* if nothing to be delivered, just queue up everything */ 49740266059SGregory Neil Shapiro if (!somedeliveries && !WILL_BE_QUEUED(mode) && 498c2aa98e2SPeter Wemm mode != SM_VERIFY) 499c2aa98e2SPeter Wemm { 50040266059SGregory Neil Shapiro time_t now; 501193538b7SGregory Neil Shapiro 502c2aa98e2SPeter Wemm if (tTd(13, 29)) 50340266059SGregory Neil Shapiro sm_dprintf("No deliveries: auto-queuing\n"); 504c2aa98e2SPeter Wemm mode = SM_QUEUE; 50540266059SGregory Neil Shapiro now = curtime(); 506c2aa98e2SPeter Wemm 507c2aa98e2SPeter Wemm /* treat this as a delivery in terms of counting tries */ 508193538b7SGregory Neil Shapiro e->e_dtime = now; 509c2aa98e2SPeter Wemm if (!expensive) 510c2aa98e2SPeter Wemm e->e_ntries++; 511c2aa98e2SPeter Wemm for (ee = splitenv; ee != NULL; ee = ee->e_sibling) 512c2aa98e2SPeter Wemm { 513193538b7SGregory Neil Shapiro ee->e_dtime = now; 514c2aa98e2SPeter Wemm if (!expensive) 515c2aa98e2SPeter Wemm ee->e_ntries++; 516c2aa98e2SPeter Wemm } 517c2aa98e2SPeter Wemm } 518c2aa98e2SPeter Wemm 51940266059SGregory Neil Shapiro if ((WILL_BE_QUEUED(mode) || mode == SM_FORK || 52040266059SGregory Neil Shapiro (mode != SM_VERIFY && SuperSafe == SAFE_REALLY)) && 521c2aa98e2SPeter Wemm (!bitset(EF_INQUEUE, e->e_flags) || splitenv != NULL)) 522c2aa98e2SPeter Wemm { 52340266059SGregory Neil Shapiro bool msync; 52440266059SGregory Neil Shapiro 52542e5d165SGregory Neil Shapiro /* 52642e5d165SGregory Neil Shapiro ** Be sure everything is instantiated in the queue. 52742e5d165SGregory Neil Shapiro ** Split envelopes first in case the machine crashes. 52842e5d165SGregory Neil Shapiro ** If the original were done first, we may lose 52942e5d165SGregory Neil Shapiro ** recipients. 53042e5d165SGregory Neil Shapiro */ 53142e5d165SGregory Neil Shapiro 53240266059SGregory Neil Shapiro #if !HASFLOCK 53340266059SGregory Neil Shapiro msync = false; 53440266059SGregory Neil Shapiro #else /* !HASFLOCK */ 53540266059SGregory Neil Shapiro msync = mode == SM_FORK; 53640266059SGregory Neil Shapiro #endif /* !HASFLOCK */ 53740266059SGregory Neil Shapiro 538c2aa98e2SPeter Wemm for (ee = splitenv; ee != NULL; ee = ee->e_sibling) 53940266059SGregory Neil Shapiro queueup(ee, WILL_BE_QUEUED(mode), msync); 54040266059SGregory Neil Shapiro queueup(e, WILL_BE_QUEUED(mode), msync); 541c2aa98e2SPeter Wemm } 542c2aa98e2SPeter Wemm 543c2aa98e2SPeter Wemm if (tTd(62, 10)) 544c2aa98e2SPeter Wemm checkfds("after envelope splitting"); 545c2aa98e2SPeter Wemm 546c2aa98e2SPeter Wemm /* 547c2aa98e2SPeter Wemm ** If we belong in background, fork now. 548c2aa98e2SPeter Wemm */ 549c2aa98e2SPeter Wemm 550c2aa98e2SPeter Wemm if (tTd(13, 20)) 551c2aa98e2SPeter Wemm { 55240266059SGregory Neil Shapiro sm_dprintf("sendall: final mode = %c\n", mode); 553c2aa98e2SPeter Wemm if (tTd(13, 21)) 554c2aa98e2SPeter Wemm { 55540266059SGregory Neil Shapiro sm_dprintf("\n================ Final Send Queue(s) =====================\n"); 55640266059SGregory Neil Shapiro sm_dprintf("\n *** Envelope %s, e_from=%s ***\n", 557c2aa98e2SPeter Wemm e->e_id, e->e_from.q_paddr); 55840266059SGregory Neil Shapiro printaddr(e->e_sendqueue, true); 559c2aa98e2SPeter Wemm for (ee = splitenv; ee != NULL; ee = ee->e_sibling) 560c2aa98e2SPeter Wemm { 56140266059SGregory Neil Shapiro sm_dprintf("\n *** Envelope %s, e_from=%s ***\n", 562c2aa98e2SPeter Wemm ee->e_id, ee->e_from.q_paddr); 56340266059SGregory Neil Shapiro printaddr(ee->e_sendqueue, true); 564c2aa98e2SPeter Wemm } 56540266059SGregory Neil Shapiro sm_dprintf("==========================================================\n\n"); 566c2aa98e2SPeter Wemm } 567c2aa98e2SPeter Wemm } 568c2aa98e2SPeter Wemm switch (mode) 569c2aa98e2SPeter Wemm { 570c2aa98e2SPeter Wemm case SM_VERIFY: 571c2aa98e2SPeter Wemm Verbose = 2; 572c2aa98e2SPeter Wemm break; 573c2aa98e2SPeter Wemm 574c2aa98e2SPeter Wemm case SM_QUEUE: 575c2aa98e2SPeter Wemm case SM_DEFER: 576c2aa98e2SPeter Wemm #if HASFLOCK 577c2aa98e2SPeter Wemm queueonly: 57806f25ae9SGregory Neil Shapiro #endif /* HASFLOCK */ 579c2aa98e2SPeter Wemm if (e->e_nrcpts > 0) 580c2aa98e2SPeter Wemm e->e_flags |= EF_INQUEUE; 58140266059SGregory Neil Shapiro dropenvelope(e, splitenv != NULL, true); 582c2aa98e2SPeter Wemm for (ee = splitenv; ee != NULL; ee = ee->e_sibling) 583c2aa98e2SPeter Wemm { 584c2aa98e2SPeter Wemm if (ee->e_nrcpts > 0) 585c2aa98e2SPeter Wemm ee->e_flags |= EF_INQUEUE; 58640266059SGregory Neil Shapiro dropenvelope(ee, false, true); 587c2aa98e2SPeter Wemm } 588c2aa98e2SPeter Wemm return; 589c2aa98e2SPeter Wemm 590c2aa98e2SPeter Wemm case SM_FORK: 591c2aa98e2SPeter Wemm if (e->e_xfp != NULL) 59240266059SGregory Neil Shapiro (void) sm_io_flush(e->e_xfp, SM_TIME_DEFAULT); 593c2aa98e2SPeter Wemm 594c2aa98e2SPeter Wemm #if !HASFLOCK 595c2aa98e2SPeter Wemm /* 596c2aa98e2SPeter Wemm ** Since fcntl locking has the interesting semantic that 597c2aa98e2SPeter Wemm ** the lock is owned by a process, not by an open file 598c2aa98e2SPeter Wemm ** descriptor, we have to flush this to the queue, and 599c2aa98e2SPeter Wemm ** then restart from scratch in the child. 600c2aa98e2SPeter Wemm */ 601c2aa98e2SPeter Wemm 602c2aa98e2SPeter Wemm { 603c2aa98e2SPeter Wemm /* save id for future use */ 604c2aa98e2SPeter Wemm char *qid = e->e_id; 605c2aa98e2SPeter Wemm 606c2aa98e2SPeter Wemm /* now drop the envelope in the parent */ 607c2aa98e2SPeter Wemm e->e_flags |= EF_INQUEUE; 60840266059SGregory Neil Shapiro dropenvelope(e, splitenv != NULL, false); 609c2aa98e2SPeter Wemm 610c2aa98e2SPeter Wemm /* arrange to reacquire lock after fork */ 611c2aa98e2SPeter Wemm e->e_id = qid; 612c2aa98e2SPeter Wemm } 613c2aa98e2SPeter Wemm 614c2aa98e2SPeter Wemm for (ee = splitenv; ee != NULL; ee = ee->e_sibling) 615c2aa98e2SPeter Wemm { 616c2aa98e2SPeter Wemm /* save id for future use */ 617c2aa98e2SPeter Wemm char *qid = ee->e_id; 618c2aa98e2SPeter Wemm 619c2aa98e2SPeter Wemm /* drop envelope in parent */ 620c2aa98e2SPeter Wemm ee->e_flags |= EF_INQUEUE; 62140266059SGregory Neil Shapiro dropenvelope(ee, false, false); 622c2aa98e2SPeter Wemm 623c2aa98e2SPeter Wemm /* and save qid for reacquisition */ 624c2aa98e2SPeter Wemm ee->e_id = qid; 625c2aa98e2SPeter Wemm } 626c2aa98e2SPeter Wemm #endif /* !HASFLOCK */ 627c2aa98e2SPeter Wemm 62806f25ae9SGregory Neil Shapiro /* 62906f25ae9SGregory Neil Shapiro ** Since the delivery may happen in a child and the parent 63006f25ae9SGregory Neil Shapiro ** does not wait, the parent may close the maps thereby 63106f25ae9SGregory Neil Shapiro ** removing any shared memory used by the map. Therefore, 63206f25ae9SGregory Neil Shapiro ** close the maps now so the child will dynamically open 63306f25ae9SGregory Neil Shapiro ** them if necessary. 63406f25ae9SGregory Neil Shapiro */ 63506f25ae9SGregory Neil Shapiro 63640266059SGregory Neil Shapiro closemaps(false); 63706f25ae9SGregory Neil Shapiro 638c2aa98e2SPeter Wemm pid = fork(); 639c2aa98e2SPeter Wemm if (pid < 0) 640c2aa98e2SPeter Wemm { 64106f25ae9SGregory Neil Shapiro syserr("deliver: fork 1"); 642c2aa98e2SPeter Wemm #if HASFLOCK 643c2aa98e2SPeter Wemm goto queueonly; 64406f25ae9SGregory Neil Shapiro #else /* HASFLOCK */ 645c2aa98e2SPeter Wemm e->e_id = NULL; 646c2aa98e2SPeter Wemm for (ee = splitenv; ee != NULL; ee = ee->e_sibling) 647c2aa98e2SPeter Wemm ee->e_id = NULL; 648c2aa98e2SPeter Wemm return; 649c2aa98e2SPeter Wemm #endif /* HASFLOCK */ 650c2aa98e2SPeter Wemm } 651c2aa98e2SPeter Wemm else if (pid > 0) 652c2aa98e2SPeter Wemm { 653c2aa98e2SPeter Wemm #if HASFLOCK 654c2aa98e2SPeter Wemm /* be sure we leave the temp files to our child */ 655c2aa98e2SPeter Wemm /* close any random open files in the envelope */ 656c2aa98e2SPeter Wemm closexscript(e); 657c2aa98e2SPeter Wemm if (e->e_dfp != NULL) 65840266059SGregory Neil Shapiro (void) sm_io_close(e->e_dfp, SM_TIME_DEFAULT); 659c2aa98e2SPeter Wemm e->e_dfp = NULL; 660c2aa98e2SPeter Wemm e->e_flags &= ~EF_HAS_DF; 661c2aa98e2SPeter Wemm 662c2aa98e2SPeter Wemm /* can't call unlockqueue to avoid unlink of xfp */ 663c2aa98e2SPeter Wemm if (e->e_lockfp != NULL) 66440266059SGregory Neil Shapiro (void) sm_io_close(e->e_lockfp, SM_TIME_DEFAULT); 66506f25ae9SGregory Neil Shapiro else 66606f25ae9SGregory Neil Shapiro syserr("%s: sendall: null lockfp", e->e_id); 667c2aa98e2SPeter Wemm e->e_lockfp = NULL; 66806f25ae9SGregory Neil Shapiro #endif /* HASFLOCK */ 669c2aa98e2SPeter Wemm 670c2aa98e2SPeter Wemm /* make sure the parent doesn't own the envelope */ 671c2aa98e2SPeter Wemm e->e_id = NULL; 672c2aa98e2SPeter Wemm 67340266059SGregory Neil Shapiro #if USE_DOUBLE_FORK 674c2aa98e2SPeter Wemm /* catch intermediate zombie */ 675c2aa98e2SPeter Wemm (void) waitfor(pid); 67640266059SGregory Neil Shapiro #endif /* USE_DOUBLE_FORK */ 677c2aa98e2SPeter Wemm return; 678c2aa98e2SPeter Wemm } 679c2aa98e2SPeter Wemm 6808774250cSGregory Neil Shapiro /* Reset global flags */ 6818774250cSGregory Neil Shapiro RestartRequest = NULL; 68240266059SGregory Neil Shapiro RestartWorkGroup = false; 6838774250cSGregory Neil Shapiro ShutdownRequest = NULL; 6848774250cSGregory Neil Shapiro PendingSignal = 0; 6858774250cSGregory Neil Shapiro 68642e5d165SGregory Neil Shapiro /* 68740266059SGregory Neil Shapiro ** Initialize exception stack and default exception 68840266059SGregory Neil Shapiro ** handler for child process. 68940266059SGregory Neil Shapiro */ 69040266059SGregory Neil Shapiro 69140266059SGregory Neil Shapiro sm_exc_newthread(fatal_error); 69240266059SGregory Neil Shapiro 69340266059SGregory Neil Shapiro /* 69442e5d165SGregory Neil Shapiro ** Since we have accepted responsbility for the message, 69542e5d165SGregory Neil Shapiro ** change the SIGTERM handler. intsig() (the old handler) 69642e5d165SGregory Neil Shapiro ** would remove the envelope if this was a command line 69742e5d165SGregory Neil Shapiro ** message submission. 69842e5d165SGregory Neil Shapiro */ 69942e5d165SGregory Neil Shapiro 70040266059SGregory Neil Shapiro (void) sm_signal(SIGTERM, SIG_DFL); 70142e5d165SGregory Neil Shapiro 70240266059SGregory Neil Shapiro #if USE_DOUBLE_FORK 703c2aa98e2SPeter Wemm /* double fork to avoid zombies */ 704c2aa98e2SPeter Wemm pid = fork(); 705c2aa98e2SPeter Wemm if (pid > 0) 706c2aa98e2SPeter Wemm exit(EX_OK); 70706f25ae9SGregory Neil Shapiro save_errno = errno; 70840266059SGregory Neil Shapiro #endif /* USE_DOUBLE_FORK */ 70940266059SGregory Neil Shapiro 71040266059SGregory Neil Shapiro CurrentPid = getpid(); 711c2aa98e2SPeter Wemm 712c2aa98e2SPeter Wemm /* be sure we are immune from the terminal */ 713c2aa98e2SPeter Wemm disconnect(2, e); 71406f25ae9SGregory Neil Shapiro clearstats(); 715c2aa98e2SPeter Wemm 716c2aa98e2SPeter Wemm /* prevent parent from waiting if there was an error */ 717c2aa98e2SPeter Wemm if (pid < 0) 718c2aa98e2SPeter Wemm { 71906f25ae9SGregory Neil Shapiro errno = save_errno; 72006f25ae9SGregory Neil Shapiro syserr("deliver: fork 2"); 721c2aa98e2SPeter Wemm #if HASFLOCK 722c2aa98e2SPeter Wemm e->e_flags |= EF_INQUEUE; 72306f25ae9SGregory Neil Shapiro #else /* HASFLOCK */ 724c2aa98e2SPeter Wemm e->e_id = NULL; 725c2aa98e2SPeter Wemm #endif /* HASFLOCK */ 72640266059SGregory Neil Shapiro finis(true, true, ExitStat); 727c2aa98e2SPeter Wemm } 728c2aa98e2SPeter Wemm 729c2aa98e2SPeter Wemm /* be sure to give error messages in child */ 73040266059SGregory Neil Shapiro QuickAbort = false; 731c2aa98e2SPeter Wemm 732c2aa98e2SPeter Wemm /* 733c2aa98e2SPeter Wemm ** Close any cached connections. 734c2aa98e2SPeter Wemm ** 735c2aa98e2SPeter Wemm ** We don't send the QUIT protocol because the parent 736c2aa98e2SPeter Wemm ** still knows about the connection. 737c2aa98e2SPeter Wemm ** 738c2aa98e2SPeter Wemm ** This should only happen when delivering an error 739c2aa98e2SPeter Wemm ** message. 740c2aa98e2SPeter Wemm */ 741c2aa98e2SPeter Wemm 74240266059SGregory Neil Shapiro mci_flush(false, NULL); 743c2aa98e2SPeter Wemm 744c2aa98e2SPeter Wemm #if HASFLOCK 745c2aa98e2SPeter Wemm break; 74606f25ae9SGregory Neil Shapiro #else /* HASFLOCK */ 747c2aa98e2SPeter Wemm 748c2aa98e2SPeter Wemm /* 749c2aa98e2SPeter Wemm ** Now reacquire and run the various queue files. 750c2aa98e2SPeter Wemm */ 751c2aa98e2SPeter Wemm 752c2aa98e2SPeter Wemm for (ee = splitenv; ee != NULL; ee = ee->e_sibling) 753c2aa98e2SPeter Wemm { 754c2aa98e2SPeter Wemm ENVELOPE *sibling = ee->e_sibling; 755c2aa98e2SPeter Wemm 75640266059SGregory Neil Shapiro (void) dowork(ee->e_qgrp, ee->e_qdir, ee->e_id, 75740266059SGregory Neil Shapiro false, false, ee); 758c2aa98e2SPeter Wemm ee->e_sibling = sibling; 759c2aa98e2SPeter Wemm } 76040266059SGregory Neil Shapiro (void) dowork(e->e_qgrp, e->e_qdir, e->e_id, 76140266059SGregory Neil Shapiro false, false, e); 76240266059SGregory Neil Shapiro finis(true, true, ExitStat); 76306f25ae9SGregory Neil Shapiro #endif /* HASFLOCK */ 764c2aa98e2SPeter Wemm } 765c2aa98e2SPeter Wemm 766c2aa98e2SPeter Wemm sendenvelope(e, mode); 76740266059SGregory Neil Shapiro dropenvelope(e, true, true); 768c2aa98e2SPeter Wemm for (ee = splitenv; ee != NULL; ee = ee->e_sibling) 769c2aa98e2SPeter Wemm { 770c2aa98e2SPeter Wemm CurEnv = ee; 771c2aa98e2SPeter Wemm if (mode != SM_VERIFY) 772c2aa98e2SPeter Wemm openxscript(ee); 773c2aa98e2SPeter Wemm sendenvelope(ee, mode); 77440266059SGregory Neil Shapiro dropenvelope(ee, true, true); 775c2aa98e2SPeter Wemm } 776c2aa98e2SPeter Wemm CurEnv = e; 777c2aa98e2SPeter Wemm 778c2aa98e2SPeter Wemm Verbose = oldverbose; 779c2aa98e2SPeter Wemm if (mode == SM_FORK) 78040266059SGregory Neil Shapiro finis(true, true, ExitStat); 781c2aa98e2SPeter Wemm } 782c2aa98e2SPeter Wemm 78306f25ae9SGregory Neil Shapiro static void 784c2aa98e2SPeter Wemm sendenvelope(e, mode) 785c2aa98e2SPeter Wemm register ENVELOPE *e; 786c2aa98e2SPeter Wemm int mode; 787c2aa98e2SPeter Wemm { 788c2aa98e2SPeter Wemm register ADDRESS *q; 789c2aa98e2SPeter Wemm bool didany; 790c2aa98e2SPeter Wemm 791c2aa98e2SPeter Wemm if (tTd(13, 10)) 79240266059SGregory Neil Shapiro sm_dprintf("sendenvelope(%s) e_flags=0x%lx\n", 793c2aa98e2SPeter Wemm e->e_id == NULL ? "[NOQUEUE]" : e->e_id, 794c2aa98e2SPeter Wemm e->e_flags); 795c2aa98e2SPeter Wemm if (LogLevel > 80) 796c2aa98e2SPeter Wemm sm_syslog(LOG_DEBUG, e->e_id, 79706f25ae9SGregory Neil Shapiro "sendenvelope, flags=0x%lx", 798c2aa98e2SPeter Wemm e->e_flags); 799c2aa98e2SPeter Wemm 800c2aa98e2SPeter Wemm /* 801c2aa98e2SPeter Wemm ** If we have had global, fatal errors, don't bother sending 802c2aa98e2SPeter Wemm ** the message at all if we are in SMTP mode. Local errors 803c2aa98e2SPeter Wemm ** (e.g., a single address failing) will still cause the other 804c2aa98e2SPeter Wemm ** addresses to be sent. 805c2aa98e2SPeter Wemm */ 806c2aa98e2SPeter Wemm 807c2aa98e2SPeter Wemm if (bitset(EF_FATALERRS, e->e_flags) && 808c2aa98e2SPeter Wemm (OpMode == MD_SMTP || OpMode == MD_DAEMON)) 809c2aa98e2SPeter Wemm { 810c2aa98e2SPeter Wemm e->e_flags |= EF_CLRQUEUE; 811c2aa98e2SPeter Wemm return; 812c2aa98e2SPeter Wemm } 813c2aa98e2SPeter Wemm 81440266059SGregory Neil Shapiro /* 81540266059SGregory Neil Shapiro ** Don't attempt deliveries if we want to bounce now 81640266059SGregory Neil Shapiro ** or if deliver-by time is exceeded. 81740266059SGregory Neil Shapiro */ 81840266059SGregory Neil Shapiro 81906f25ae9SGregory Neil Shapiro if (!bitset(EF_RESPONSE, e->e_flags) && 82040266059SGregory Neil Shapiro (TimeOuts.to_q_return[e->e_timeoutclass] == NOW || 82140266059SGregory Neil Shapiro (IS_DLVR_RETURN(e) && e->e_deliver_by > 0 && 82240266059SGregory Neil Shapiro curtime() > e->e_ctime + e->e_deliver_by))) 82306f25ae9SGregory Neil Shapiro return; 82406f25ae9SGregory Neil Shapiro 825c2aa98e2SPeter Wemm /* 826c2aa98e2SPeter Wemm ** Run through the list and send everything. 827c2aa98e2SPeter Wemm ** 828c2aa98e2SPeter Wemm ** Set EF_GLOBALERRS so that error messages during delivery 829c2aa98e2SPeter Wemm ** result in returned mail. 830c2aa98e2SPeter Wemm */ 831c2aa98e2SPeter Wemm 832c2aa98e2SPeter Wemm e->e_nsent = 0; 833c2aa98e2SPeter Wemm e->e_flags |= EF_GLOBALERRS; 83406f25ae9SGregory Neil Shapiro 83540266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, macid("{envid}"), e->e_envid); 83640266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, macid("{bodytype}"), e->e_bodytype); 83740266059SGregory Neil Shapiro didany = false; 83840266059SGregory Neil Shapiro 83940266059SGregory Neil Shapiro if (!bitset(EF_SPLIT, e->e_flags)) 84040266059SGregory Neil Shapiro { 84140266059SGregory Neil Shapiro ENVELOPE *oldsib; 84240266059SGregory Neil Shapiro ENVELOPE *ee; 84340266059SGregory Neil Shapiro 84440266059SGregory Neil Shapiro /* 84540266059SGregory Neil Shapiro ** Save old sibling and set it to NULL to avoid 84640266059SGregory Neil Shapiro ** queueing up the same envelopes again. 84740266059SGregory Neil Shapiro ** This requires that envelopes in that list have 84840266059SGregory Neil Shapiro ** been take care of before (or at some other place). 84940266059SGregory Neil Shapiro */ 85040266059SGregory Neil Shapiro 85140266059SGregory Neil Shapiro oldsib = e->e_sibling; 85240266059SGregory Neil Shapiro e->e_sibling = NULL; 85340266059SGregory Neil Shapiro if (!split_by_recipient(e) && 85440266059SGregory Neil Shapiro bitset(EF_FATALERRS, e->e_flags)) 85540266059SGregory Neil Shapiro { 85640266059SGregory Neil Shapiro if (OpMode == MD_SMTP || OpMode == MD_DAEMON) 85740266059SGregory Neil Shapiro e->e_flags |= EF_CLRQUEUE; 85840266059SGregory Neil Shapiro return; 85940266059SGregory Neil Shapiro } 86040266059SGregory Neil Shapiro for (ee = e->e_sibling; ee != NULL; ee = ee->e_sibling) 86140266059SGregory Neil Shapiro queueup(ee, false, true); 86240266059SGregory Neil Shapiro 86340266059SGregory Neil Shapiro /* clean up */ 86440266059SGregory Neil Shapiro for (ee = e->e_sibling; ee != NULL; ee = ee->e_sibling) 86540266059SGregory Neil Shapiro { 86640266059SGregory Neil Shapiro /* now unlock the job */ 86740266059SGregory Neil Shapiro closexscript(ee); 86840266059SGregory Neil Shapiro unlockqueue(ee); 86940266059SGregory Neil Shapiro 87040266059SGregory Neil Shapiro /* this envelope is marked unused */ 87140266059SGregory Neil Shapiro if (ee->e_dfp != NULL) 87240266059SGregory Neil Shapiro { 87340266059SGregory Neil Shapiro (void) sm_io_close(ee->e_dfp, SM_TIME_DEFAULT); 87440266059SGregory Neil Shapiro ee->e_dfp = NULL; 87540266059SGregory Neil Shapiro } 87640266059SGregory Neil Shapiro ee->e_id = NULL; 87740266059SGregory Neil Shapiro ee->e_flags &= ~EF_HAS_DF; 87840266059SGregory Neil Shapiro } 87940266059SGregory Neil Shapiro e->e_sibling = oldsib; 88040266059SGregory Neil Shapiro } 881c2aa98e2SPeter Wemm 882c2aa98e2SPeter Wemm /* now run through the queue */ 883c2aa98e2SPeter Wemm for (q = e->e_sendqueue; q != NULL; q = q->q_next) 884c2aa98e2SPeter Wemm { 885c2aa98e2SPeter Wemm #if XDEBUG 886c2aa98e2SPeter Wemm char wbuf[MAXNAME + 20]; 887c2aa98e2SPeter Wemm 88840266059SGregory Neil Shapiro (void) sm_snprintf(wbuf, sizeof wbuf, "sendall(%.*s)", 889c2aa98e2SPeter Wemm MAXNAME, q->q_paddr); 890c2aa98e2SPeter Wemm checkfd012(wbuf); 89106f25ae9SGregory Neil Shapiro #endif /* XDEBUG */ 892c2aa98e2SPeter Wemm if (mode == SM_VERIFY) 893c2aa98e2SPeter Wemm { 894c2aa98e2SPeter Wemm e->e_to = q->q_paddr; 89506f25ae9SGregory Neil Shapiro if (QS_IS_SENDABLE(q->q_state)) 896c2aa98e2SPeter Wemm { 897c2aa98e2SPeter Wemm if (q->q_host != NULL && q->q_host[0] != '\0') 898c2aa98e2SPeter Wemm message("deliverable: mailer %s, host %s, user %s", 899c2aa98e2SPeter Wemm q->q_mailer->m_name, 900c2aa98e2SPeter Wemm q->q_host, 901c2aa98e2SPeter Wemm q->q_user); 902c2aa98e2SPeter Wemm else 903c2aa98e2SPeter Wemm message("deliverable: mailer %s, user %s", 904c2aa98e2SPeter Wemm q->q_mailer->m_name, 905c2aa98e2SPeter Wemm q->q_user); 906c2aa98e2SPeter Wemm } 907c2aa98e2SPeter Wemm } 90806f25ae9SGregory Neil Shapiro else if (QS_IS_OK(q->q_state)) 909c2aa98e2SPeter Wemm { 910c2aa98e2SPeter Wemm /* 911c2aa98e2SPeter Wemm ** Checkpoint the send list every few addresses 912c2aa98e2SPeter Wemm */ 913c2aa98e2SPeter Wemm 91442e5d165SGregory Neil Shapiro if (CheckpointInterval > 0 && 91542e5d165SGregory Neil Shapiro e->e_nsent >= CheckpointInterval) 916c2aa98e2SPeter Wemm { 91740266059SGregory Neil Shapiro queueup(e, false, false); 918c2aa98e2SPeter Wemm e->e_nsent = 0; 919c2aa98e2SPeter Wemm } 920c2aa98e2SPeter Wemm (void) deliver(e, q); 92140266059SGregory Neil Shapiro didany = true; 922c2aa98e2SPeter Wemm } 923c2aa98e2SPeter Wemm } 924c2aa98e2SPeter Wemm if (didany) 925c2aa98e2SPeter Wemm { 926c2aa98e2SPeter Wemm e->e_dtime = curtime(); 927c2aa98e2SPeter Wemm e->e_ntries++; 928c2aa98e2SPeter Wemm } 929c2aa98e2SPeter Wemm 930c2aa98e2SPeter Wemm #if XDEBUG 931c2aa98e2SPeter Wemm checkfd012("end of sendenvelope"); 93206f25ae9SGregory Neil Shapiro #endif /* XDEBUG */ 933c2aa98e2SPeter Wemm } 93440266059SGregory Neil Shapiro 93540266059SGregory Neil Shapiro #if REQUIRES_DIR_FSYNC 93640266059SGregory Neil Shapiro /* 93740266059SGregory Neil Shapiro ** SYNC_DIR -- fsync a directory based on a filename 93840266059SGregory Neil Shapiro ** 93940266059SGregory Neil Shapiro ** Parameters: 94040266059SGregory Neil Shapiro ** filename -- path of file 94140266059SGregory Neil Shapiro ** panic -- panic? 94240266059SGregory Neil Shapiro ** 94340266059SGregory Neil Shapiro ** Returns: 94440266059SGregory Neil Shapiro ** none 94540266059SGregory Neil Shapiro */ 94640266059SGregory Neil Shapiro 94740266059SGregory Neil Shapiro void 94840266059SGregory Neil Shapiro sync_dir(filename, panic) 94940266059SGregory Neil Shapiro char *filename; 95040266059SGregory Neil Shapiro bool panic; 95140266059SGregory Neil Shapiro { 95240266059SGregory Neil Shapiro int dirfd; 95340266059SGregory Neil Shapiro char *dirp; 95440266059SGregory Neil Shapiro char dir[MAXPATHLEN]; 95540266059SGregory Neil Shapiro 95613bd1963SGregory Neil Shapiro #if _FFR_REQ_DIR_FSYNC_OPT 95713bd1963SGregory Neil Shapiro if (!RequiresDirfsync) 95813bd1963SGregory Neil Shapiro return; 95913bd1963SGregory Neil Shapiro #endif /* _FFR_REQ_DIR_FSYNC_OPT */ 96013bd1963SGregory Neil Shapiro 96140266059SGregory Neil Shapiro /* filesystems which require the directory be synced */ 96240266059SGregory Neil Shapiro dirp = strrchr(filename, '/'); 96340266059SGregory Neil Shapiro if (dirp != NULL) 96440266059SGregory Neil Shapiro { 96540266059SGregory Neil Shapiro if (sm_strlcpy(dir, filename, sizeof dir) >= sizeof dir) 96640266059SGregory Neil Shapiro return; 96740266059SGregory Neil Shapiro dir[dirp - filename] = '\0'; 96840266059SGregory Neil Shapiro dirp = dir; 96940266059SGregory Neil Shapiro } 97040266059SGregory Neil Shapiro else 97140266059SGregory Neil Shapiro dirp = "."; 97240266059SGregory Neil Shapiro dirfd = open(dirp, O_RDONLY, 0700); 97340266059SGregory Neil Shapiro if (tTd(40,32)) 97440266059SGregory Neil Shapiro sm_syslog(LOG_INFO, NOQID, "sync_dir: %s: fsync(%d)", 97540266059SGregory Neil Shapiro dirp, dirfd); 97640266059SGregory Neil Shapiro if (dirfd >= 0) 97740266059SGregory Neil Shapiro { 97840266059SGregory Neil Shapiro if (fsync(dirfd) < 0) 97940266059SGregory Neil Shapiro { 98040266059SGregory Neil Shapiro if (panic) 98140266059SGregory Neil Shapiro syserr("!sync_dir: cannot fsync directory %s", 98240266059SGregory Neil Shapiro dirp); 98340266059SGregory Neil Shapiro else if (LogLevel > 1) 98440266059SGregory Neil Shapiro sm_syslog(LOG_ERR, NOQID, 98540266059SGregory Neil Shapiro "sync_dir: cannot fsync directory %s: %s", 98640266059SGregory Neil Shapiro dirp, sm_errstring(errno)); 98740266059SGregory Neil Shapiro } 98840266059SGregory Neil Shapiro (void) close(dirfd); 98940266059SGregory Neil Shapiro } 99040266059SGregory Neil Shapiro } 99140266059SGregory Neil Shapiro #endif /* REQUIRES_DIR_FSYNC */ 99240266059SGregory Neil Shapiro /* 993c2aa98e2SPeter Wemm ** DUP_QUEUE_FILE -- duplicate a queue file into a split queue 994c2aa98e2SPeter Wemm ** 995c2aa98e2SPeter Wemm ** Parameters: 996c2aa98e2SPeter Wemm ** e -- the existing envelope 997c2aa98e2SPeter Wemm ** ee -- the new envelope 99840266059SGregory Neil Shapiro ** type -- the queue file type (e.g., DATAFL_LETTER) 999c2aa98e2SPeter Wemm ** 1000c2aa98e2SPeter Wemm ** Returns: 1001c2aa98e2SPeter Wemm ** none 1002c2aa98e2SPeter Wemm */ 1003c2aa98e2SPeter Wemm 100406f25ae9SGregory Neil Shapiro static void 1005c2aa98e2SPeter Wemm dup_queue_file(e, ee, type) 100640266059SGregory Neil Shapiro ENVELOPE *e, *ee; 1007c2aa98e2SPeter Wemm int type; 1008c2aa98e2SPeter Wemm { 100906f25ae9SGregory Neil Shapiro char f1buf[MAXPATHLEN], f2buf[MAXPATHLEN]; 1010c2aa98e2SPeter Wemm 1011c2aa98e2SPeter Wemm ee->e_dfp = NULL; 1012c2aa98e2SPeter Wemm ee->e_xfp = NULL; 101306f25ae9SGregory Neil Shapiro 101406f25ae9SGregory Neil Shapiro /* 101506f25ae9SGregory Neil Shapiro ** Make sure both are in the same directory. 101606f25ae9SGregory Neil Shapiro */ 101706f25ae9SGregory Neil Shapiro 101840266059SGregory Neil Shapiro (void) sm_strlcpy(f1buf, queuename(e, type), sizeof f1buf); 101940266059SGregory Neil Shapiro (void) sm_strlcpy(f2buf, queuename(ee, type), sizeof f2buf); 1020959366dcSGregory Neil Shapiro 1021959366dcSGregory Neil Shapiro /* Force the df to disk if it's not there yet */ 1022959366dcSGregory Neil Shapiro if (type == DATAFL_LETTER && e->e_dfp != NULL && 1023959366dcSGregory Neil Shapiro sm_io_setinfo(e->e_dfp, SM_BF_COMMIT, NULL) < 0 && 1024959366dcSGregory Neil Shapiro errno != EINVAL) 1025959366dcSGregory Neil Shapiro { 1026959366dcSGregory Neil Shapiro syserr("!dup_queue_file: can't commit %s", f1buf); 1027959366dcSGregory Neil Shapiro /* NOTREACHED */ 1028959366dcSGregory Neil Shapiro } 1029959366dcSGregory Neil Shapiro 1030c2aa98e2SPeter Wemm if (link(f1buf, f2buf) < 0) 1031c2aa98e2SPeter Wemm { 103206f25ae9SGregory Neil Shapiro int save_errno = errno; 1033c2aa98e2SPeter Wemm 1034c2aa98e2SPeter Wemm syserr("sendall: link(%s, %s)", f1buf, f2buf); 103506f25ae9SGregory Neil Shapiro if (save_errno == EEXIST) 1036c2aa98e2SPeter Wemm { 1037c2aa98e2SPeter Wemm if (unlink(f2buf) < 0) 1038c2aa98e2SPeter Wemm { 1039c2aa98e2SPeter Wemm syserr("!sendall: unlink(%s): permanent", 1040c2aa98e2SPeter Wemm f2buf); 1041c2aa98e2SPeter Wemm /* NOTREACHED */ 1042c2aa98e2SPeter Wemm } 1043c2aa98e2SPeter Wemm if (link(f1buf, f2buf) < 0) 1044c2aa98e2SPeter Wemm { 1045c2aa98e2SPeter Wemm syserr("!sendall: link(%s, %s): permanent", 1046c2aa98e2SPeter Wemm f1buf, f2buf); 1047c2aa98e2SPeter Wemm /* NOTREACHED */ 1048c2aa98e2SPeter Wemm } 1049c2aa98e2SPeter Wemm } 1050c2aa98e2SPeter Wemm } 105140266059SGregory Neil Shapiro SYNC_DIR(f2buf, true); 1052c2aa98e2SPeter Wemm } 105340266059SGregory Neil Shapiro /* 1054c2aa98e2SPeter Wemm ** DOFORK -- do a fork, retrying a couple of times on failure. 1055c2aa98e2SPeter Wemm ** 1056c2aa98e2SPeter Wemm ** This MUST be a macro, since after a vfork we are running 1057c2aa98e2SPeter Wemm ** two processes on the same stack!!! 1058c2aa98e2SPeter Wemm ** 1059c2aa98e2SPeter Wemm ** Parameters: 1060c2aa98e2SPeter Wemm ** none. 1061c2aa98e2SPeter Wemm ** 1062c2aa98e2SPeter Wemm ** Returns: 1063c2aa98e2SPeter Wemm ** From a macro??? You've got to be kidding! 1064c2aa98e2SPeter Wemm ** 1065c2aa98e2SPeter Wemm ** Side Effects: 1066c2aa98e2SPeter Wemm ** Modifies the ==> LOCAL <== variable 'pid', leaving: 1067c2aa98e2SPeter Wemm ** pid of child in parent, zero in child. 1068c2aa98e2SPeter Wemm ** -1 on unrecoverable error. 1069c2aa98e2SPeter Wemm ** 1070c2aa98e2SPeter Wemm ** Notes: 1071c2aa98e2SPeter Wemm ** I'm awfully sorry this looks so awful. That's 1072c2aa98e2SPeter Wemm ** vfork for you..... 1073c2aa98e2SPeter Wemm */ 1074c2aa98e2SPeter Wemm 1075c2aa98e2SPeter Wemm #define NFORKTRIES 5 1076c2aa98e2SPeter Wemm 1077c2aa98e2SPeter Wemm #ifndef FORK 1078c2aa98e2SPeter Wemm # define FORK fork 107906f25ae9SGregory Neil Shapiro #endif /* ! FORK */ 1080c2aa98e2SPeter Wemm 1081c2aa98e2SPeter Wemm #define DOFORK(fORKfN) \ 1082c2aa98e2SPeter Wemm {\ 1083c2aa98e2SPeter Wemm register int i;\ 1084c2aa98e2SPeter Wemm \ 1085c2aa98e2SPeter Wemm for (i = NFORKTRIES; --i >= 0; )\ 1086c2aa98e2SPeter Wemm {\ 1087c2aa98e2SPeter Wemm pid = fORKfN();\ 1088c2aa98e2SPeter Wemm if (pid >= 0)\ 1089c2aa98e2SPeter Wemm break;\ 1090c2aa98e2SPeter Wemm if (i > 0)\ 109106f25ae9SGregory Neil Shapiro (void) sleep((unsigned) NFORKTRIES - i);\ 1092c2aa98e2SPeter Wemm }\ 1093c2aa98e2SPeter Wemm } 109440266059SGregory Neil Shapiro /* 1095c2aa98e2SPeter Wemm ** DOFORK -- simple fork interface to DOFORK. 1096c2aa98e2SPeter Wemm ** 1097c2aa98e2SPeter Wemm ** Parameters: 1098c2aa98e2SPeter Wemm ** none. 1099c2aa98e2SPeter Wemm ** 1100c2aa98e2SPeter Wemm ** Returns: 1101c2aa98e2SPeter Wemm ** pid of child in parent. 1102c2aa98e2SPeter Wemm ** zero in child. 1103c2aa98e2SPeter Wemm ** -1 on error. 1104c2aa98e2SPeter Wemm ** 1105c2aa98e2SPeter Wemm ** Side Effects: 1106c2aa98e2SPeter Wemm ** returns twice, once in parent and once in child. 1107c2aa98e2SPeter Wemm */ 1108c2aa98e2SPeter Wemm 11098774250cSGregory Neil Shapiro pid_t 1110c2aa98e2SPeter Wemm dofork() 1111c2aa98e2SPeter Wemm { 1112c2aa98e2SPeter Wemm register pid_t pid = -1; 1113c2aa98e2SPeter Wemm 1114c2aa98e2SPeter Wemm DOFORK(fork); 111506f25ae9SGregory Neil Shapiro return pid; 1116c2aa98e2SPeter Wemm } 111740266059SGregory Neil Shapiro 111840266059SGregory Neil Shapiro /* 111940266059SGregory Neil Shapiro ** COLONCMP -- compare host-signatures up to first ':' or EOS 112040266059SGregory Neil Shapiro ** 112140266059SGregory Neil Shapiro ** This takes two strings which happen to be host-signatures and 112240266059SGregory Neil Shapiro ** compares them. If the lowest preference portions of the MX-RR's 112340266059SGregory Neil Shapiro ** match (up to ':' or EOS, whichever is first), then we have 112440266059SGregory Neil Shapiro ** match. This is used for coattail-piggybacking messages during 112540266059SGregory Neil Shapiro ** message delivery. 112640266059SGregory Neil Shapiro ** If the signatures are the same up to the first ':' the remainder of 112740266059SGregory Neil Shapiro ** the signatures are then compared with a normal strcmp(). This saves 112840266059SGregory Neil Shapiro ** re-examining the first part of the signatures. 112940266059SGregory Neil Shapiro ** 113040266059SGregory Neil Shapiro ** Parameters: 113140266059SGregory Neil Shapiro ** a - first host-signature 113240266059SGregory Neil Shapiro ** b - second host-signature 113340266059SGregory Neil Shapiro ** 113440266059SGregory Neil Shapiro ** Returns: 113540266059SGregory Neil Shapiro ** HS_MATCH_NO -- no "match". 113640266059SGregory Neil Shapiro ** HS_MATCH_FIRST -- "match" for the first MX preference 113740266059SGregory Neil Shapiro ** (up to the first colon (':')). 113840266059SGregory Neil Shapiro ** HS_MATCH_FULL -- match for the entire MX record. 113940266059SGregory Neil Shapiro ** 114040266059SGregory Neil Shapiro ** Side Effects: 114140266059SGregory Neil Shapiro ** none. 114240266059SGregory Neil Shapiro */ 114340266059SGregory Neil Shapiro 114440266059SGregory Neil Shapiro #define HS_MATCH_NO 0 114540266059SGregory Neil Shapiro #define HS_MATCH_FIRST 1 114640266059SGregory Neil Shapiro #define HS_MATCH_FULL 2 114740266059SGregory Neil Shapiro 114840266059SGregory Neil Shapiro static int 114940266059SGregory Neil Shapiro coloncmp(a, b) 115040266059SGregory Neil Shapiro register const char *a; 115140266059SGregory Neil Shapiro register const char *b; 115240266059SGregory Neil Shapiro { 115340266059SGregory Neil Shapiro int ret = HS_MATCH_NO; 115440266059SGregory Neil Shapiro int braclev = 0; 115540266059SGregory Neil Shapiro 115640266059SGregory Neil Shapiro while (*a == *b++) 115740266059SGregory Neil Shapiro { 115840266059SGregory Neil Shapiro /* Need to account for IPv6 bracketed addresses */ 115940266059SGregory Neil Shapiro if (*a == '[') 116040266059SGregory Neil Shapiro braclev++; 11615ef517c0SGregory Neil Shapiro else if (*a == ']' && braclev > 0) 116240266059SGregory Neil Shapiro braclev--; 116340266059SGregory Neil Shapiro else if (*a == ':' && braclev <= 0) 116440266059SGregory Neil Shapiro { 116540266059SGregory Neil Shapiro ret = HS_MATCH_FIRST; 116640266059SGregory Neil Shapiro a++; 116740266059SGregory Neil Shapiro break; 116840266059SGregory Neil Shapiro } 116940266059SGregory Neil Shapiro else if (*a == '\0') 117040266059SGregory Neil Shapiro return HS_MATCH_FULL; /* a full match */ 117140266059SGregory Neil Shapiro a++; 117240266059SGregory Neil Shapiro } 117340266059SGregory Neil Shapiro if (ret == HS_MATCH_NO && 117440266059SGregory Neil Shapiro braclev <= 0 && 117540266059SGregory Neil Shapiro ((*a == '\0' && *(b - 1) == ':') || 117640266059SGregory Neil Shapiro (*a == ':' && *(b - 1) == '\0'))) 117740266059SGregory Neil Shapiro return HS_MATCH_FIRST; 117840266059SGregory Neil Shapiro if (ret == HS_MATCH_FIRST && strcmp(a, b) == 0) 117940266059SGregory Neil Shapiro return HS_MATCH_FULL; 118040266059SGregory Neil Shapiro 118140266059SGregory Neil Shapiro return ret; 118240266059SGregory Neil Shapiro } 118340266059SGregory Neil Shapiro /* 1184c2aa98e2SPeter Wemm ** DELIVER -- Deliver a message to a list of addresses. 1185c2aa98e2SPeter Wemm ** 1186c2aa98e2SPeter Wemm ** This routine delivers to everyone on the same host as the 1187c2aa98e2SPeter Wemm ** user on the head of the list. It is clever about mailers 1188c2aa98e2SPeter Wemm ** that don't handle multiple users. It is NOT guaranteed 1189c2aa98e2SPeter Wemm ** that it will deliver to all these addresses however -- so 1190c2aa98e2SPeter Wemm ** deliver should be called once for each address on the 1191c2aa98e2SPeter Wemm ** list. 119240266059SGregory Neil Shapiro ** Deliver tries to be as opportunistic as possible about piggybacking 119340266059SGregory Neil Shapiro ** messages. Some definitions to make understanding easier follow below. 119440266059SGregory Neil Shapiro ** Piggybacking occurs when an existing connection to a mail host can 119540266059SGregory Neil Shapiro ** be used to send the same message to more than one recipient at the 119640266059SGregory Neil Shapiro ** same time. So "no piggybacking" means one message for one recipient 119740266059SGregory Neil Shapiro ** per connection. "Intentional piggybacking" happens when the 119840266059SGregory Neil Shapiro ** recipients' host address (not the mail host address) is used to 119940266059SGregory Neil Shapiro ** attempt piggybacking. Recipients with the same host address 120040266059SGregory Neil Shapiro ** have the same mail host. "Coincidental piggybacking" relies on 120140266059SGregory Neil Shapiro ** piggybacking based on all the mail host addresses in the MX-RR. This 120240266059SGregory Neil Shapiro ** is "coincidental" in the fact it could not be predicted until the 120340266059SGregory Neil Shapiro ** MX Resource Records for the hosts were obtained and examined. For 120440266059SGregory Neil Shapiro ** example (preference order and equivalence is important, not values): 120540266059SGregory Neil Shapiro ** domain1 IN MX 10 mxhost-A 120640266059SGregory Neil Shapiro ** IN MX 20 mxhost-B 120740266059SGregory Neil Shapiro ** domain2 IN MX 4 mxhost-A 120840266059SGregory Neil Shapiro ** IN MX 8 mxhost-B 120940266059SGregory Neil Shapiro ** Domain1 and domain2 can piggyback the same message to mxhost-A or 121040266059SGregory Neil Shapiro ** mxhost-B (if mxhost-A cannot be reached). 121140266059SGregory Neil Shapiro ** "Coattail piggybacking" relaxes the strictness of "coincidental 121240266059SGregory Neil Shapiro ** piggybacking" in the hope that most significant (lowest value) 121340266059SGregory Neil Shapiro ** MX preference host(s) can create more piggybacking. For example 121440266059SGregory Neil Shapiro ** (again, preference order and equivalence is important, not values): 121540266059SGregory Neil Shapiro ** domain3 IN MX 100 mxhost-C 121640266059SGregory Neil Shapiro ** IN MX 100 mxhost-D 121740266059SGregory Neil Shapiro ** IN MX 200 mxhost-E 121840266059SGregory Neil Shapiro ** domain4 IN MX 50 mxhost-C 121940266059SGregory Neil Shapiro ** IN MX 50 mxhost-D 122040266059SGregory Neil Shapiro ** IN MX 80 mxhost-F 122140266059SGregory Neil Shapiro ** A message for domain3 and domain4 can piggyback to mxhost-C if mxhost-C 122240266059SGregory Neil Shapiro ** is available. Same with mxhost-D because in both RR's the preference 122340266059SGregory Neil Shapiro ** value is the same as mxhost-C, respectively. 122440266059SGregory Neil Shapiro ** So deliver attempts coattail piggybacking when possible. If the 122540266059SGregory Neil Shapiro ** first MX preference level hosts cannot be used then the piggybacking 122640266059SGregory Neil Shapiro ** reverts to coincidental piggybacking. Using the above example you 122740266059SGregory Neil Shapiro ** cannot deliver to mxhost-F for domain3 regardless of preference value. 122840266059SGregory Neil Shapiro ** ("Coattail" from "riding on the coattails of your predecessor" meaning 122940266059SGregory Neil Shapiro ** gaining benefit from a predecessor effort with no or little addition 123040266059SGregory Neil Shapiro ** effort. The predecessor here being the preceding MX RR). 1231c2aa98e2SPeter Wemm ** 1232c2aa98e2SPeter Wemm ** Parameters: 1233c2aa98e2SPeter Wemm ** e -- the envelope to deliver. 1234c2aa98e2SPeter Wemm ** firstto -- head of the address list to deliver to. 1235c2aa98e2SPeter Wemm ** 1236c2aa98e2SPeter Wemm ** Returns: 1237c2aa98e2SPeter Wemm ** zero -- successfully delivered. 1238c2aa98e2SPeter Wemm ** else -- some failure, see ExitStat for more info. 1239c2aa98e2SPeter Wemm ** 1240c2aa98e2SPeter Wemm ** Side Effects: 1241c2aa98e2SPeter Wemm ** The standard input is passed off to someone. 1242c2aa98e2SPeter Wemm */ 1243c2aa98e2SPeter Wemm 1244c2aa98e2SPeter Wemm #ifndef NO_UID 1245c2aa98e2SPeter Wemm # define NO_UID -1 124606f25ae9SGregory Neil Shapiro #endif /* ! NO_UID */ 1247c2aa98e2SPeter Wemm #ifndef NO_GID 1248c2aa98e2SPeter Wemm # define NO_GID -1 124906f25ae9SGregory Neil Shapiro #endif /* ! NO_GID */ 1250c2aa98e2SPeter Wemm 125106f25ae9SGregory Neil Shapiro static int 1252c2aa98e2SPeter Wemm deliver(e, firstto) 1253c2aa98e2SPeter Wemm register ENVELOPE *e; 1254c2aa98e2SPeter Wemm ADDRESS *firstto; 1255c2aa98e2SPeter Wemm { 1256c2aa98e2SPeter Wemm char *host; /* host being sent to */ 1257c2aa98e2SPeter Wemm char *user; /* user being sent to */ 1258c2aa98e2SPeter Wemm char **pvp; 1259c2aa98e2SPeter Wemm register char **mvp; 1260c2aa98e2SPeter Wemm register char *p; 1261c2aa98e2SPeter Wemm register MAILER *m; /* mailer for this recipient */ 1262c2aa98e2SPeter Wemm ADDRESS *volatile ctladdr; 126340266059SGregory Neil Shapiro #if HASSETUSERCONTEXT 1264c2aa98e2SPeter Wemm ADDRESS *volatile contextaddr = NULL; 126540266059SGregory Neil Shapiro #endif /* HASSETUSERCONTEXT */ 1266c2aa98e2SPeter Wemm register MCI *volatile mci; 126740266059SGregory Neil Shapiro register ADDRESS *SM_NONVOLATILE to = firstto; 126840266059SGregory Neil Shapiro volatile bool clever = false; /* running user smtp to this mailer */ 1269c2aa98e2SPeter Wemm ADDRESS *volatile tochain = NULL; /* users chain in this mailer call */ 1270c2aa98e2SPeter Wemm int rcode; /* response code */ 127140266059SGregory Neil Shapiro SM_NONVOLATILE int lmtp_rcode = EX_OK; 127240266059SGregory Neil Shapiro SM_NONVOLATILE int nummxhosts = 0; /* number of MX hosts available */ 127340266059SGregory Neil Shapiro SM_NONVOLATILE int hostnum = 0; /* current MX host index */ 1274c2aa98e2SPeter Wemm char *firstsig; /* signature of firstto */ 127540266059SGregory Neil Shapiro volatile pid_t pid = -1; 1276c2aa98e2SPeter Wemm char *volatile curhost; 127740266059SGregory Neil Shapiro SM_NONVOLATILE unsigned short port = 0; 127840266059SGregory Neil Shapiro SM_NONVOLATILE time_t enough = 0; 127906f25ae9SGregory Neil Shapiro #if NETUNIX 128040266059SGregory Neil Shapiro char *SM_NONVOLATILE mux_path = NULL; /* path to UNIX domain socket */ 128106f25ae9SGregory Neil Shapiro #endif /* NETUNIX */ 1282c2aa98e2SPeter Wemm time_t xstart; 1283c2aa98e2SPeter Wemm bool suidwarn; 1284c2aa98e2SPeter Wemm bool anyok; /* at least one address was OK */ 128540266059SGregory Neil Shapiro SM_NONVOLATILE bool goodmxfound = false; /* at least one MX was OK */ 128606f25ae9SGregory Neil Shapiro bool ovr; 128740266059SGregory Neil Shapiro #if _FFR_QUARANTINE 128840266059SGregory Neil Shapiro bool quarantine; 128940266059SGregory Neil Shapiro #endif /* _FFR_QUARANTINE */ 129006f25ae9SGregory Neil Shapiro int strsize; 129106f25ae9SGregory Neil Shapiro int rcptcount; 129240266059SGregory Neil Shapiro int ret; 129306f25ae9SGregory Neil Shapiro static int tobufsize = 0; 129406f25ae9SGregory Neil Shapiro static char *tobuf = NULL; 129540266059SGregory Neil Shapiro char *rpath; /* translated return path */ 1296c2aa98e2SPeter Wemm int mpvect[2]; 1297c2aa98e2SPeter Wemm int rpvect[2]; 129806f25ae9SGregory Neil Shapiro char *mxhosts[MAXMXHOSTS + 1]; 1299c2aa98e2SPeter Wemm char *pv[MAXPV + 1]; 1300c2aa98e2SPeter Wemm char buf[MAXNAME + 1]; 130194c01205SGregory Neil Shapiro char cbuf[MAXPATHLEN]; 1302c2aa98e2SPeter Wemm 1303c2aa98e2SPeter Wemm errno = 0; 130406f25ae9SGregory Neil Shapiro if (!QS_IS_OK(to->q_state)) 130506f25ae9SGregory Neil Shapiro return 0; 1306c2aa98e2SPeter Wemm 1307c2aa98e2SPeter Wemm suidwarn = geteuid() == 0; 1308c2aa98e2SPeter Wemm 1309c2aa98e2SPeter Wemm m = to->q_mailer; 1310c2aa98e2SPeter Wemm host = to->q_host; 1311c2aa98e2SPeter Wemm CurEnv = e; /* just in case */ 1312c2aa98e2SPeter Wemm e->e_statmsg = NULL; 1313c2aa98e2SPeter Wemm SmtpError[0] = '\0'; 1314c2aa98e2SPeter Wemm xstart = curtime(); 1315c2aa98e2SPeter Wemm 1316c2aa98e2SPeter Wemm if (tTd(10, 1)) 131740266059SGregory Neil Shapiro sm_dprintf("\n--deliver, id=%s, mailer=%s, host=`%s', first user=`%s'\n", 1318c2aa98e2SPeter Wemm e->e_id, m->m_name, host, to->q_user); 1319c2aa98e2SPeter Wemm if (tTd(10, 100)) 132040266059SGregory Neil Shapiro printopenfds(false); 1321c2aa98e2SPeter Wemm 1322c2aa98e2SPeter Wemm /* 132340266059SGregory Neil Shapiro ** Clear {client_*} macros if this is a bounce message to 1324c2aa98e2SPeter Wemm ** prevent rejection by check_compat ruleset. 1325c2aa98e2SPeter Wemm */ 1326c2aa98e2SPeter Wemm 1327c2aa98e2SPeter Wemm if (bitset(EF_RESPONSE, e->e_flags)) 1328c2aa98e2SPeter Wemm { 132940266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, macid("{client_name}"), ""); 133040266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, macid("{client_addr}"), ""); 133140266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, macid("{client_port}"), ""); 133240266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, macid("{client_resolve}"), ""); 1333c2aa98e2SPeter Wemm } 1334c2aa98e2SPeter Wemm 133540266059SGregory Neil Shapiro SM_TRY 133640266059SGregory Neil Shapiro { 133740266059SGregory Neil Shapiro ADDRESS *skip_back = NULL; 133840266059SGregory Neil Shapiro 1339c2aa98e2SPeter Wemm /* 1340c2aa98e2SPeter Wemm ** Do initial argv setup. 1341c2aa98e2SPeter Wemm ** Insert the mailer name. Notice that $x expansion is 1342c2aa98e2SPeter Wemm ** NOT done on the mailer name. Then, if the mailer has 1343c2aa98e2SPeter Wemm ** a picky -f flag, we insert it as appropriate. This 1344c2aa98e2SPeter Wemm ** code does not check for 'pv' overflow; this places a 1345c2aa98e2SPeter Wemm ** manifest lower limit of 4 for MAXPV. 1346c2aa98e2SPeter Wemm ** The from address rewrite is expected to make 1347c2aa98e2SPeter Wemm ** the address relative to the other end. 1348c2aa98e2SPeter Wemm */ 1349c2aa98e2SPeter Wemm 1350c2aa98e2SPeter Wemm /* rewrite from address, using rewriting rules */ 1351c2aa98e2SPeter Wemm rcode = EX_OK; 1352c2aa98e2SPeter Wemm if (bitnset(M_UDBENVELOPE, e->e_from.q_mailer->m_flags)) 1353c2aa98e2SPeter Wemm p = e->e_sender; 1354c2aa98e2SPeter Wemm else 1355c2aa98e2SPeter Wemm p = e->e_from.q_paddr; 135640266059SGregory Neil Shapiro rpath = remotename(p, m, RF_SENDERADDR|RF_CANONICAL, &rcode, e); 135740266059SGregory Neil Shapiro if (strlen(rpath) > MAXSHORTSTR) 1358c2aa98e2SPeter Wemm { 135940266059SGregory Neil Shapiro rpath = shortenstring(rpath, MAXSHORTSTR); 136040266059SGregory Neil Shapiro 136140266059SGregory Neil Shapiro /* avoid bogus errno */ 136240266059SGregory Neil Shapiro errno = 0; 136340266059SGregory Neil Shapiro syserr("remotename: huge return path %s", rpath); 1364c2aa98e2SPeter Wemm } 136540266059SGregory Neil Shapiro rpath = sm_rpool_strdup_x(e->e_rpool, rpath); 136640266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 'g', rpath); 136740266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 'h', host); 1368c2aa98e2SPeter Wemm Errors = 0; 1369c2aa98e2SPeter Wemm pvp = pv; 1370c2aa98e2SPeter Wemm *pvp++ = m->m_argv[0]; 1371c2aa98e2SPeter Wemm 1372c2aa98e2SPeter Wemm /* insert -f or -r flag as appropriate */ 137306f25ae9SGregory Neil Shapiro if (FromFlag && 137406f25ae9SGregory Neil Shapiro (bitnset(M_FOPT, m->m_flags) || 137506f25ae9SGregory Neil Shapiro bitnset(M_ROPT, m->m_flags))) 1376c2aa98e2SPeter Wemm { 1377c2aa98e2SPeter Wemm if (bitnset(M_FOPT, m->m_flags)) 1378c2aa98e2SPeter Wemm *pvp++ = "-f"; 1379c2aa98e2SPeter Wemm else 1380c2aa98e2SPeter Wemm *pvp++ = "-r"; 138140266059SGregory Neil Shapiro *pvp++ = rpath; 1382c2aa98e2SPeter Wemm } 1383c2aa98e2SPeter Wemm 1384c2aa98e2SPeter Wemm /* 1385c2aa98e2SPeter Wemm ** Append the other fixed parts of the argv. These run 1386c2aa98e2SPeter Wemm ** up to the first entry containing "$u". There can only 1387c2aa98e2SPeter Wemm ** be one of these, and there are only a few more slots 1388c2aa98e2SPeter Wemm ** in the pv after it. 1389c2aa98e2SPeter Wemm */ 1390c2aa98e2SPeter Wemm 1391c2aa98e2SPeter Wemm for (mvp = m->m_argv; (p = *++mvp) != NULL; ) 1392c2aa98e2SPeter Wemm { 1393c2aa98e2SPeter Wemm /* can't use strchr here because of sign extension problems */ 1394c2aa98e2SPeter Wemm while (*p != '\0') 1395c2aa98e2SPeter Wemm { 1396c2aa98e2SPeter Wemm if ((*p++ & 0377) == MACROEXPAND) 1397c2aa98e2SPeter Wemm { 1398c2aa98e2SPeter Wemm if (*p == 'u') 1399c2aa98e2SPeter Wemm break; 1400c2aa98e2SPeter Wemm } 1401c2aa98e2SPeter Wemm } 1402c2aa98e2SPeter Wemm 1403c2aa98e2SPeter Wemm if (*p != '\0') 1404c2aa98e2SPeter Wemm break; 1405c2aa98e2SPeter Wemm 1406c2aa98e2SPeter Wemm /* this entry is safe -- go ahead and process it */ 1407c2aa98e2SPeter Wemm expand(*mvp, buf, sizeof buf, e); 140840266059SGregory Neil Shapiro *pvp++ = sm_rpool_strdup_x(e->e_rpool, buf); 1409c2aa98e2SPeter Wemm if (pvp >= &pv[MAXPV - 3]) 1410c2aa98e2SPeter Wemm { 141106f25ae9SGregory Neil Shapiro syserr("554 5.3.5 Too many parameters to %s before $u", 141206f25ae9SGregory Neil Shapiro pv[0]); 141340266059SGregory Neil Shapiro rcode = -1; 141440266059SGregory Neil Shapiro goto cleanup; 1415c2aa98e2SPeter Wemm } 1416c2aa98e2SPeter Wemm } 1417c2aa98e2SPeter Wemm 1418c2aa98e2SPeter Wemm /* 1419c2aa98e2SPeter Wemm ** If we have no substitution for the user name in the argument 1420c2aa98e2SPeter Wemm ** list, we know that we must supply the names otherwise -- and 1421c2aa98e2SPeter Wemm ** SMTP is the answer!! 1422c2aa98e2SPeter Wemm */ 1423c2aa98e2SPeter Wemm 1424c2aa98e2SPeter Wemm if (*mvp == NULL) 1425c2aa98e2SPeter Wemm { 1426602a2b1bSGregory Neil Shapiro /* running LMTP or SMTP */ 142740266059SGregory Neil Shapiro clever = true; 1428c2aa98e2SPeter Wemm *pvp = NULL; 1429c2aa98e2SPeter Wemm } 1430602a2b1bSGregory Neil Shapiro else if (bitnset(M_LMTP, m->m_flags)) 1431602a2b1bSGregory Neil Shapiro { 1432602a2b1bSGregory Neil Shapiro /* not running LMTP */ 1433602a2b1bSGregory Neil Shapiro sm_syslog(LOG_ERR, NULL, 1434602a2b1bSGregory Neil Shapiro "Warning: mailer %s: LMTP flag (F=z) turned off", 1435602a2b1bSGregory Neil Shapiro m->m_name); 1436602a2b1bSGregory Neil Shapiro clrbitn(M_LMTP, m->m_flags); 1437602a2b1bSGregory Neil Shapiro } 1438c2aa98e2SPeter Wemm 1439c2aa98e2SPeter Wemm /* 1440c2aa98e2SPeter Wemm ** At this point *mvp points to the argument with $u. We 1441c2aa98e2SPeter Wemm ** run through our address list and append all the addresses 1442c2aa98e2SPeter Wemm ** we can. If we run out of space, do not fret! We can 1443c2aa98e2SPeter Wemm ** always send another copy later. 1444c2aa98e2SPeter Wemm */ 1445c2aa98e2SPeter Wemm 144606f25ae9SGregory Neil Shapiro e->e_to = NULL; 144706f25ae9SGregory Neil Shapiro strsize = 2; 144806f25ae9SGregory Neil Shapiro rcptcount = 0; 1449c2aa98e2SPeter Wemm ctladdr = NULL; 145040266059SGregory Neil Shapiro if (firstto->q_signature == NULL) 145140266059SGregory Neil Shapiro firstto->q_signature = hostsignature(firstto->q_mailer, 145240266059SGregory Neil Shapiro firstto->q_host); 145340266059SGregory Neil Shapiro firstsig = firstto->q_signature; 145440266059SGregory Neil Shapiro 1455c2aa98e2SPeter Wemm for (; to != NULL; to = to->q_next) 1456c2aa98e2SPeter Wemm { 1457c2aa98e2SPeter Wemm /* avoid sending multiple recipients to dumb mailers */ 145806f25ae9SGregory Neil Shapiro if (tochain != NULL && !bitnset(M_MUSER, m->m_flags)) 145906f25ae9SGregory Neil Shapiro break; 1460c2aa98e2SPeter Wemm 1461c2aa98e2SPeter Wemm /* if already sent or not for this host, don't send */ 146240266059SGregory Neil Shapiro if (!QS_IS_OK(to->q_state)) /* already sent; look at next */ 1463c2aa98e2SPeter Wemm continue; 1464c2aa98e2SPeter Wemm 146540266059SGregory Neil Shapiro /* 146640266059SGregory Neil Shapiro ** Must be same mailer to keep grouping rcpts. 146740266059SGregory Neil Shapiro ** If mailers don't match: continue; sendqueue is not 146840266059SGregory Neil Shapiro ** sorted by mailers, so don't break; 146940266059SGregory Neil Shapiro */ 147040266059SGregory Neil Shapiro 147140266059SGregory Neil Shapiro if (to->q_mailer != firstto->q_mailer) 147240266059SGregory Neil Shapiro continue; 147340266059SGregory Neil Shapiro 147440266059SGregory Neil Shapiro if (to->q_signature == NULL) /* for safety */ 147540266059SGregory Neil Shapiro to->q_signature = hostsignature(to->q_mailer, 147640266059SGregory Neil Shapiro to->q_host); 147740266059SGregory Neil Shapiro 147840266059SGregory Neil Shapiro /* 147940266059SGregory Neil Shapiro ** This is for coincidental and tailcoat piggybacking messages 148040266059SGregory Neil Shapiro ** to the same mail host. While the signatures are identical 148140266059SGregory Neil Shapiro ** (that's the MX-RR's are identical) we can do coincidental 148240266059SGregory Neil Shapiro ** piggybacking. We try hard for coattail piggybacking 148340266059SGregory Neil Shapiro ** with the same mail host when the next recipient has the 148440266059SGregory Neil Shapiro ** same host at lowest preference. It may be that this 148540266059SGregory Neil Shapiro ** won't work out, so 'skip_back' is maintained if a backup 148640266059SGregory Neil Shapiro ** to coincidental piggybacking or full signature must happen. 148740266059SGregory Neil Shapiro */ 148840266059SGregory Neil Shapiro 148940266059SGregory Neil Shapiro ret = firstto == to ? HS_MATCH_FULL : 149040266059SGregory Neil Shapiro coloncmp(to->q_signature, firstsig); 149140266059SGregory Neil Shapiro if (ret == HS_MATCH_FULL) 149240266059SGregory Neil Shapiro skip_back = to; 149340266059SGregory Neil Shapiro else if (ret == HS_MATCH_NO) 149406f25ae9SGregory Neil Shapiro break; 149506f25ae9SGregory Neil Shapiro 149640266059SGregory Neil Shapiro if (!clever) 149740266059SGregory Neil Shapiro { 149840266059SGregory Neil Shapiro /* avoid overflowing tobuf */ 149940266059SGregory Neil Shapiro strsize += strlen(to->q_paddr) + 1; 150040266059SGregory Neil Shapiro if (strsize > TOBUFSIZE) 150140266059SGregory Neil Shapiro break; 150240266059SGregory Neil Shapiro } 150340266059SGregory Neil Shapiro 150406f25ae9SGregory Neil Shapiro if (++rcptcount > to->q_mailer->m_maxrcpt) 150506f25ae9SGregory Neil Shapiro break; 1506c2aa98e2SPeter Wemm 1507c2aa98e2SPeter Wemm if (tTd(10, 1)) 1508c2aa98e2SPeter Wemm { 150940266059SGregory Neil Shapiro sm_dprintf("\nsend to "); 151040266059SGregory Neil Shapiro printaddr(to, false); 1511c2aa98e2SPeter Wemm } 1512c2aa98e2SPeter Wemm 1513c2aa98e2SPeter Wemm /* compute effective uid/gid when sending */ 1514c2aa98e2SPeter Wemm if (bitnset(M_RUNASRCPT, to->q_mailer->m_flags)) 151540266059SGregory Neil Shapiro # if HASSETUSERCONTEXT 1516c2aa98e2SPeter Wemm contextaddr = ctladdr = getctladdr(to); 151740266059SGregory Neil Shapiro # else /* HASSETUSERCONTEXT */ 151840266059SGregory Neil Shapiro ctladdr = getctladdr(to); 151940266059SGregory Neil Shapiro # endif /* HASSETUSERCONTEXT */ 1520c2aa98e2SPeter Wemm 1521c2aa98e2SPeter Wemm if (tTd(10, 2)) 1522c2aa98e2SPeter Wemm { 152340266059SGregory Neil Shapiro sm_dprintf("ctladdr="); 152440266059SGregory Neil Shapiro printaddr(ctladdr, false); 1525c2aa98e2SPeter Wemm } 1526c2aa98e2SPeter Wemm 1527c2aa98e2SPeter Wemm user = to->q_user; 1528c2aa98e2SPeter Wemm e->e_to = to->q_paddr; 1529c2aa98e2SPeter Wemm 1530c2aa98e2SPeter Wemm /* 1531c2aa98e2SPeter Wemm ** Check to see that these people are allowed to 1532c2aa98e2SPeter Wemm ** talk to each other. 153342e5d165SGregory Neil Shapiro ** Check also for overflow of e_msgsize. 1534c2aa98e2SPeter Wemm */ 1535c2aa98e2SPeter Wemm 153642e5d165SGregory Neil Shapiro if (m->m_maxsize != 0 && 153742e5d165SGregory Neil Shapiro (e->e_msgsize > m->m_maxsize || e->e_msgsize < 0)) 1538c2aa98e2SPeter Wemm { 1539c2aa98e2SPeter Wemm e->e_flags |= EF_NO_BODY_RETN; 1540c2aa98e2SPeter Wemm if (bitnset(M_LOCALMAILER, to->q_mailer->m_flags)) 1541c2aa98e2SPeter Wemm to->q_status = "5.2.3"; 1542c2aa98e2SPeter Wemm else 1543c2aa98e2SPeter Wemm to->q_status = "5.3.4"; 154440266059SGregory Neil Shapiro 154506f25ae9SGregory Neil Shapiro /* set to->q_rstatus = NULL; or to the following? */ 154606f25ae9SGregory Neil Shapiro usrerrenh(to->q_status, 154706f25ae9SGregory Neil Shapiro "552 Message is too large; %ld bytes max", 154806f25ae9SGregory Neil Shapiro m->m_maxsize); 154940266059SGregory Neil Shapiro markfailure(e, to, NULL, EX_UNAVAILABLE, false); 155006f25ae9SGregory Neil Shapiro giveresponse(EX_UNAVAILABLE, to->q_status, m, 155140266059SGregory Neil Shapiro NULL, ctladdr, xstart, e, to); 1552c2aa98e2SPeter Wemm continue; 1553c2aa98e2SPeter Wemm } 1554602a2b1bSGregory Neil Shapiro SM_SET_H_ERRNO(0); 155540266059SGregory Neil Shapiro ovr = true; 1556c2aa98e2SPeter Wemm 1557c2aa98e2SPeter Wemm /* do config file checking of compatibility */ 155840266059SGregory Neil Shapiro #if _FFR_QUARANTINE 155940266059SGregory Neil Shapiro quarantine = (e->e_quarmsg != NULL); 156040266059SGregory Neil Shapiro #endif /* _FFR_QUARANTINE */ 156106f25ae9SGregory Neil Shapiro rcode = rscheck("check_compat", e->e_from.q_paddr, to->q_paddr, 1562959366dcSGregory Neil Shapiro e, RSF_RMCOMM|RSF_COUNT, 3, NULL, 1563959366dcSGregory Neil Shapiro e->e_id); 1564c2aa98e2SPeter Wemm if (rcode == EX_OK) 1565c2aa98e2SPeter Wemm { 1566065a643dSPeter Wemm /* do in-code checking if not discarding */ 1567065a643dSPeter Wemm if (!bitset(EF_DISCARD, e->e_flags)) 156806f25ae9SGregory Neil Shapiro { 1569c2aa98e2SPeter Wemm rcode = checkcompat(to, e); 157040266059SGregory Neil Shapiro ovr = false; 157106f25ae9SGregory Neil Shapiro } 1572c2aa98e2SPeter Wemm } 1573c2aa98e2SPeter Wemm if (rcode != EX_OK) 1574c2aa98e2SPeter Wemm { 157506f25ae9SGregory Neil Shapiro markfailure(e, to, NULL, rcode, ovr); 157606f25ae9SGregory Neil Shapiro giveresponse(rcode, to->q_status, m, 157740266059SGregory Neil Shapiro NULL, ctladdr, xstart, e, to); 1578c2aa98e2SPeter Wemm continue; 1579c2aa98e2SPeter Wemm } 158040266059SGregory Neil Shapiro #if _FFR_QUARANTINE 158140266059SGregory Neil Shapiro if (!quarantine && e->e_quarmsg != NULL) 158240266059SGregory Neil Shapiro { 158340266059SGregory Neil Shapiro /* 158440266059SGregory Neil Shapiro ** check_compat or checkcompat() has tried 158540266059SGregory Neil Shapiro ** to quarantine but that isn't supported. 158640266059SGregory Neil Shapiro ** Revert the attempt. 158740266059SGregory Neil Shapiro */ 158840266059SGregory Neil Shapiro 158940266059SGregory Neil Shapiro e->e_quarmsg = NULL; 159040266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 159140266059SGregory Neil Shapiro macid("{quarantine}"), ""); 159240266059SGregory Neil Shapiro } 159340266059SGregory Neil Shapiro #endif /* _FFR_QUARANTINE */ 1594065a643dSPeter Wemm if (bitset(EF_DISCARD, e->e_flags)) 1595065a643dSPeter Wemm { 1596065a643dSPeter Wemm if (tTd(10, 5)) 1597065a643dSPeter Wemm { 159840266059SGregory Neil Shapiro sm_dprintf("deliver: discarding recipient "); 159940266059SGregory Neil Shapiro printaddr(to, false); 1600065a643dSPeter Wemm } 1601065a643dSPeter Wemm 160206f25ae9SGregory Neil Shapiro /* pretend the message was sent */ 160306f25ae9SGregory Neil Shapiro /* XXX should we log something here? */ 160406f25ae9SGregory Neil Shapiro to->q_state = QS_DISCARDED; 160506f25ae9SGregory Neil Shapiro 1606065a643dSPeter Wemm /* 1607065a643dSPeter Wemm ** Remove discard bit to prevent discard of 160806f25ae9SGregory Neil Shapiro ** future recipients. This is safe because the 160906f25ae9SGregory Neil Shapiro ** true "global discard" has been handled before 161006f25ae9SGregory Neil Shapiro ** we get here. 1611065a643dSPeter Wemm */ 1612065a643dSPeter Wemm 161306f25ae9SGregory Neil Shapiro e->e_flags &= ~EF_DISCARD; 1614065a643dSPeter Wemm continue; 1615065a643dSPeter Wemm } 1616c2aa98e2SPeter Wemm 1617c2aa98e2SPeter Wemm /* 1618c2aa98e2SPeter Wemm ** Strip quote bits from names if the mailer is dumb 1619c2aa98e2SPeter Wemm ** about them. 1620c2aa98e2SPeter Wemm */ 1621c2aa98e2SPeter Wemm 1622c2aa98e2SPeter Wemm if (bitnset(M_STRIPQ, m->m_flags)) 1623c2aa98e2SPeter Wemm { 1624c2aa98e2SPeter Wemm stripquotes(user); 1625c2aa98e2SPeter Wemm stripquotes(host); 1626c2aa98e2SPeter Wemm } 162713bd1963SGregory Neil Shapiro #if _FFR_STRIPBACKSL 162813bd1963SGregory Neil Shapiro /* 16295ef517c0SGregory Neil Shapiro ** Strip one leading backslash if requested and the 163013bd1963SGregory Neil Shapiro ** next character is alphanumerical (the latter can 163113bd1963SGregory Neil Shapiro ** probably relaxed a bit, see RFC2821). 163213bd1963SGregory Neil Shapiro */ 163313bd1963SGregory Neil Shapiro 163413bd1963SGregory Neil Shapiro if (bitnset(M_STRIPBACKSL, m->m_flags) && user[0] == '\\') 163513bd1963SGregory Neil Shapiro stripbackslash(user); 163613bd1963SGregory Neil Shapiro #endif /* _FFR_STRIPBACKSL */ 1637c2aa98e2SPeter Wemm 1638c2aa98e2SPeter Wemm /* hack attack -- delivermail compatibility */ 1639c2aa98e2SPeter Wemm if (m == ProgMailer && *user == '|') 1640c2aa98e2SPeter Wemm user++; 1641c2aa98e2SPeter Wemm 1642c2aa98e2SPeter Wemm /* 1643c2aa98e2SPeter Wemm ** If an error message has already been given, don't 1644c2aa98e2SPeter Wemm ** bother to send to this address. 1645c2aa98e2SPeter Wemm ** 1646c2aa98e2SPeter Wemm ** >>>>>>>>>> This clause assumes that the local mailer 1647c2aa98e2SPeter Wemm ** >> NOTE >> cannot do any further aliasing; that 1648c2aa98e2SPeter Wemm ** >>>>>>>>>> function is subsumed by sendmail. 1649c2aa98e2SPeter Wemm */ 1650c2aa98e2SPeter Wemm 165106f25ae9SGregory Neil Shapiro if (!QS_IS_OK(to->q_state)) 1652c2aa98e2SPeter Wemm continue; 1653c2aa98e2SPeter Wemm 1654c2aa98e2SPeter Wemm /* 1655c2aa98e2SPeter Wemm ** See if this user name is "special". 1656c2aa98e2SPeter Wemm ** If the user name has a slash in it, assume that this 1657c2aa98e2SPeter Wemm ** is a file -- send it off without further ado. Note 1658c2aa98e2SPeter Wemm ** that this type of addresses is not processed along 1659c2aa98e2SPeter Wemm ** with the others, so we fudge on the To person. 1660c2aa98e2SPeter Wemm */ 1661c2aa98e2SPeter Wemm 1662c2aa98e2SPeter Wemm if (strcmp(m->m_mailer, "[FILE]") == 0) 1663c2aa98e2SPeter Wemm { 166440266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 'u', user); 1665c2aa98e2SPeter Wemm p = to->q_home; 1666c2aa98e2SPeter Wemm if (p == NULL && ctladdr != NULL) 1667c2aa98e2SPeter Wemm p = ctladdr->q_home; 166840266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 'z', p); 1669c2aa98e2SPeter Wemm expand(m->m_argv[1], buf, sizeof buf, e); 1670c2aa98e2SPeter Wemm if (strlen(buf) > 0) 1671c2aa98e2SPeter Wemm rcode = mailfile(buf, m, ctladdr, SFF_CREAT, e); 1672c2aa98e2SPeter Wemm else 1673c2aa98e2SPeter Wemm { 1674c2aa98e2SPeter Wemm syserr("empty filename specification for mailer %s", 1675c2aa98e2SPeter Wemm m->m_name); 1676c2aa98e2SPeter Wemm rcode = EX_CONFIG; 1677c2aa98e2SPeter Wemm } 167806f25ae9SGregory Neil Shapiro giveresponse(rcode, to->q_status, m, NULL, 167940266059SGregory Neil Shapiro ctladdr, xstart, e, to); 168040266059SGregory Neil Shapiro markfailure(e, to, NULL, rcode, true); 1681c2aa98e2SPeter Wemm e->e_nsent++; 1682c2aa98e2SPeter Wemm if (rcode == EX_OK) 1683c2aa98e2SPeter Wemm { 168406f25ae9SGregory Neil Shapiro to->q_state = QS_SENT; 1685c2aa98e2SPeter Wemm if (bitnset(M_LOCALMAILER, m->m_flags) && 1686c2aa98e2SPeter Wemm bitset(QPINGONSUCCESS, to->q_flags)) 1687c2aa98e2SPeter Wemm { 1688c2aa98e2SPeter Wemm to->q_flags |= QDELIVERED; 1689c2aa98e2SPeter Wemm to->q_status = "2.1.5"; 169040266059SGregory Neil Shapiro (void) sm_io_fprintf(e->e_xfp, 169140266059SGregory Neil Shapiro SM_TIME_DEFAULT, 169240266059SGregory Neil Shapiro "%s... Successfully delivered\n", 1693c2aa98e2SPeter Wemm to->q_paddr); 1694c2aa98e2SPeter Wemm } 1695c2aa98e2SPeter Wemm } 1696c2aa98e2SPeter Wemm to->q_statdate = curtime(); 169740266059SGregory Neil Shapiro markstats(e, to, STATS_NORMAL); 1698c2aa98e2SPeter Wemm continue; 1699c2aa98e2SPeter Wemm } 1700c2aa98e2SPeter Wemm 1701c2aa98e2SPeter Wemm /* 1702c2aa98e2SPeter Wemm ** Address is verified -- add this user to mailer 1703c2aa98e2SPeter Wemm ** argv, and add it to the print list of recipients. 1704c2aa98e2SPeter Wemm */ 1705c2aa98e2SPeter Wemm 1706c2aa98e2SPeter Wemm /* link together the chain of recipients */ 1707c2aa98e2SPeter Wemm to->q_tchain = tochain; 1708c2aa98e2SPeter Wemm tochain = to; 170906f25ae9SGregory Neil Shapiro e->e_to = "[CHAIN]"; 171006f25ae9SGregory Neil Shapiro 171140266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 'u', user); /* to user */ 1712c2aa98e2SPeter Wemm p = to->q_home; 1713c2aa98e2SPeter Wemm if (p == NULL && ctladdr != NULL) 1714c2aa98e2SPeter Wemm p = ctladdr->q_home; 171540266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 'z', p); /* user's home */ 1716c2aa98e2SPeter Wemm 171706f25ae9SGregory Neil Shapiro /* set the ${dsn_notify} macro if applicable */ 171806f25ae9SGregory Neil Shapiro if (bitset(QHASNOTIFY, to->q_flags)) 171906f25ae9SGregory Neil Shapiro { 172006f25ae9SGregory Neil Shapiro char notify[MAXLINE]; 172106f25ae9SGregory Neil Shapiro 172206f25ae9SGregory Neil Shapiro notify[0] = '\0'; 172306f25ae9SGregory Neil Shapiro if (bitset(QPINGONSUCCESS, to->q_flags)) 172440266059SGregory Neil Shapiro (void) sm_strlcat(notify, "SUCCESS,", 172506f25ae9SGregory Neil Shapiro sizeof notify); 172606f25ae9SGregory Neil Shapiro if (bitset(QPINGONFAILURE, to->q_flags)) 172740266059SGregory Neil Shapiro (void) sm_strlcat(notify, "FAILURE,", 172806f25ae9SGregory Neil Shapiro sizeof notify); 172906f25ae9SGregory Neil Shapiro if (bitset(QPINGONDELAY, to->q_flags)) 173040266059SGregory Neil Shapiro (void) sm_strlcat(notify, "DELAY,", 173140266059SGregory Neil Shapiro sizeof notify); 173206f25ae9SGregory Neil Shapiro 173306f25ae9SGregory Neil Shapiro /* Set to NEVER or drop trailing comma */ 173406f25ae9SGregory Neil Shapiro if (notify[0] == '\0') 173540266059SGregory Neil Shapiro (void) sm_strlcat(notify, "NEVER", 173640266059SGregory Neil Shapiro sizeof notify); 173706f25ae9SGregory Neil Shapiro else 173806f25ae9SGregory Neil Shapiro notify[strlen(notify) - 1] = '\0'; 173906f25ae9SGregory Neil Shapiro 174040266059SGregory Neil Shapiro macdefine(&e->e_macro, A_TEMP, 174140266059SGregory Neil Shapiro macid("{dsn_notify}"), notify); 174206f25ae9SGregory Neil Shapiro } 174306f25ae9SGregory Neil Shapiro else 174440266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 174540266059SGregory Neil Shapiro macid("{dsn_notify}"), NULL); 174606f25ae9SGregory Neil Shapiro 1747c2aa98e2SPeter Wemm /* 1748c2aa98e2SPeter Wemm ** Expand out this user into argument list. 1749c2aa98e2SPeter Wemm */ 1750c2aa98e2SPeter Wemm 1751c2aa98e2SPeter Wemm if (!clever) 1752c2aa98e2SPeter Wemm { 1753c2aa98e2SPeter Wemm expand(*mvp, buf, sizeof buf, e); 175440266059SGregory Neil Shapiro *pvp++ = sm_rpool_strdup_x(e->e_rpool, buf); 1755c2aa98e2SPeter Wemm if (pvp >= &pv[MAXPV - 2]) 1756c2aa98e2SPeter Wemm { 1757c2aa98e2SPeter Wemm /* allow some space for trailing parms */ 1758c2aa98e2SPeter Wemm break; 1759c2aa98e2SPeter Wemm } 1760c2aa98e2SPeter Wemm } 1761c2aa98e2SPeter Wemm } 1762c2aa98e2SPeter Wemm 1763c2aa98e2SPeter Wemm /* see if any addresses still exist */ 176406f25ae9SGregory Neil Shapiro if (tochain == NULL) 1765c2aa98e2SPeter Wemm { 176640266059SGregory Neil Shapiro rcode = 0; 176740266059SGregory Neil Shapiro goto cleanup; 1768c2aa98e2SPeter Wemm } 1769c2aa98e2SPeter Wemm 1770c2aa98e2SPeter Wemm /* print out messages as full list */ 177140266059SGregory Neil Shapiro strsize = 1; 177206f25ae9SGregory Neil Shapiro for (to = tochain; to != NULL; to = to->q_tchain) 177340266059SGregory Neil Shapiro strsize += strlen(to->q_paddr) + 1; 177440266059SGregory Neil Shapiro if (strsize < TOBUFSIZE) 177540266059SGregory Neil Shapiro strsize = TOBUFSIZE; 177640266059SGregory Neil Shapiro if (strsize > tobufsize) 177706f25ae9SGregory Neil Shapiro { 177840266059SGregory Neil Shapiro SM_FREE_CLR(tobuf); 177940266059SGregory Neil Shapiro tobuf = sm_pmalloc_x(strsize); 178040266059SGregory Neil Shapiro tobufsize = strsize; 178106f25ae9SGregory Neil Shapiro } 178240266059SGregory Neil Shapiro p = tobuf; 178340266059SGregory Neil Shapiro *p = '\0'; 178406f25ae9SGregory Neil Shapiro for (to = tochain; to != NULL; to = to->q_tchain) 178506f25ae9SGregory Neil Shapiro { 178640266059SGregory Neil Shapiro (void) sm_strlcpyn(p, tobufsize - (p - tobuf), 2, 178740266059SGregory Neil Shapiro ",", to->q_paddr); 178840266059SGregory Neil Shapiro p += strlen(p); 178906f25ae9SGregory Neil Shapiro } 1790c2aa98e2SPeter Wemm e->e_to = tobuf + 1; 1791c2aa98e2SPeter Wemm 1792c2aa98e2SPeter Wemm /* 1793c2aa98e2SPeter Wemm ** Fill out any parameters after the $u parameter. 1794c2aa98e2SPeter Wemm */ 1795c2aa98e2SPeter Wemm 179640266059SGregory Neil Shapiro if (!clever) 179740266059SGregory Neil Shapiro { 179840266059SGregory Neil Shapiro while (*++mvp != NULL) 1799c2aa98e2SPeter Wemm { 1800c2aa98e2SPeter Wemm expand(*mvp, buf, sizeof buf, e); 180140266059SGregory Neil Shapiro *pvp++ = sm_rpool_strdup_x(e->e_rpool, buf); 1802c2aa98e2SPeter Wemm if (pvp >= &pv[MAXPV]) 180306f25ae9SGregory Neil Shapiro syserr("554 5.3.0 deliver: pv overflow after $u for %s", 180406f25ae9SGregory Neil Shapiro pv[0]); 1805c2aa98e2SPeter Wemm } 180640266059SGregory Neil Shapiro } 1807c2aa98e2SPeter Wemm *pvp++ = NULL; 1808c2aa98e2SPeter Wemm 1809c2aa98e2SPeter Wemm /* 1810c2aa98e2SPeter Wemm ** Call the mailer. 1811c2aa98e2SPeter Wemm ** The argument vector gets built, pipes 1812c2aa98e2SPeter Wemm ** are created as necessary, and we fork & exec as 1813c2aa98e2SPeter Wemm ** appropriate. 1814c2aa98e2SPeter Wemm ** If we are running SMTP, we just need to clean up. 1815c2aa98e2SPeter Wemm */ 1816c2aa98e2SPeter Wemm 1817c2aa98e2SPeter Wemm /* XXX this seems a bit wierd */ 1818c2aa98e2SPeter Wemm if (ctladdr == NULL && m != ProgMailer && m != FileMailer && 1819c2aa98e2SPeter Wemm bitset(QGOODUID, e->e_from.q_flags)) 1820c2aa98e2SPeter Wemm ctladdr = &e->e_from; 1821c2aa98e2SPeter Wemm 1822c2aa98e2SPeter Wemm #if NAMED_BIND 1823c2aa98e2SPeter Wemm if (ConfigLevel < 2) 1824c2aa98e2SPeter Wemm _res.options &= ~(RES_DEFNAMES | RES_DNSRCH); /* XXX */ 182506f25ae9SGregory Neil Shapiro #endif /* NAMED_BIND */ 1826c2aa98e2SPeter Wemm 1827c2aa98e2SPeter Wemm if (tTd(11, 1)) 1828c2aa98e2SPeter Wemm { 182940266059SGregory Neil Shapiro sm_dprintf("openmailer:"); 1830c2aa98e2SPeter Wemm printav(pv); 1831c2aa98e2SPeter Wemm } 1832c2aa98e2SPeter Wemm errno = 0; 1833602a2b1bSGregory Neil Shapiro SM_SET_H_ERRNO(0); 1834c2aa98e2SPeter Wemm CurHostName = NULL; 1835c2aa98e2SPeter Wemm 1836c2aa98e2SPeter Wemm /* 1837c2aa98e2SPeter Wemm ** Deal with the special case of mail handled through an IPC 1838c2aa98e2SPeter Wemm ** connection. 1839c2aa98e2SPeter Wemm ** In this case we don't actually fork. We must be 1840c2aa98e2SPeter Wemm ** running SMTP for this to work. We will return a 1841c2aa98e2SPeter Wemm ** zero pid to indicate that we are running IPC. 1842c2aa98e2SPeter Wemm ** We also handle a debug version that just talks to stdin/out. 1843c2aa98e2SPeter Wemm */ 1844c2aa98e2SPeter Wemm 1845c2aa98e2SPeter Wemm curhost = NULL; 1846c2aa98e2SPeter Wemm SmtpPhase = NULL; 1847c2aa98e2SPeter Wemm mci = NULL; 1848c2aa98e2SPeter Wemm 1849c2aa98e2SPeter Wemm #if XDEBUG 1850c2aa98e2SPeter Wemm { 1851c2aa98e2SPeter Wemm char wbuf[MAXLINE]; 1852c2aa98e2SPeter Wemm 1853c2aa98e2SPeter Wemm /* make absolutely certain 0, 1, and 2 are in use */ 185440266059SGregory Neil Shapiro (void) sm_snprintf(wbuf, sizeof wbuf, "%s... openmailer(%s)", 185540266059SGregory Neil Shapiro shortenstring(e->e_to, MAXSHORTSTR), 185640266059SGregory Neil Shapiro m->m_name); 1857c2aa98e2SPeter Wemm checkfd012(wbuf); 1858c2aa98e2SPeter Wemm } 185906f25ae9SGregory Neil Shapiro #endif /* XDEBUG */ 1860c2aa98e2SPeter Wemm 1861c2aa98e2SPeter Wemm /* check for 8-bit available */ 1862c2aa98e2SPeter Wemm if (bitset(EF_HAS8BIT, e->e_flags) && 1863c2aa98e2SPeter Wemm bitnset(M_7BITS, m->m_flags) && 1864c2aa98e2SPeter Wemm (bitset(EF_DONT_MIME, e->e_flags) || 1865c2aa98e2SPeter Wemm !(bitset(MM_MIME8BIT, MimeMode) || 1866c2aa98e2SPeter Wemm (bitset(EF_IS_MIME, e->e_flags) && 1867c2aa98e2SPeter Wemm bitset(MM_CVTMIME, MimeMode))))) 1868c2aa98e2SPeter Wemm { 1869c2aa98e2SPeter Wemm e->e_status = "5.6.3"; 187006f25ae9SGregory Neil Shapiro usrerrenh(e->e_status, 187106f25ae9SGregory Neil Shapiro "554 Cannot send 8-bit data to 7-bit destination"); 187206f25ae9SGregory Neil Shapiro rcode = EX_DATAERR; 1873c2aa98e2SPeter Wemm goto give_up; 1874c2aa98e2SPeter Wemm } 1875c2aa98e2SPeter Wemm 1876c2aa98e2SPeter Wemm if (tTd(62, 8)) 1877c2aa98e2SPeter Wemm checkfds("before delivery"); 1878c2aa98e2SPeter Wemm 1879c2aa98e2SPeter Wemm /* check for Local Person Communication -- not for mortals!!! */ 1880c2aa98e2SPeter Wemm if (strcmp(m->m_mailer, "[LPC]") == 0) 1881c2aa98e2SPeter Wemm { 188240266059SGregory Neil Shapiro #if _FFR_CACHE_LPC 188340266059SGregory Neil Shapiro if (clever) 188440266059SGregory Neil Shapiro { 188540266059SGregory Neil Shapiro /* flush any expired connections */ 188640266059SGregory Neil Shapiro (void) mci_scan(NULL); 188740266059SGregory Neil Shapiro 188840266059SGregory Neil Shapiro /* try to get a cached connection or just a slot */ 188940266059SGregory Neil Shapiro mci = mci_get(m->m_name, m); 189040266059SGregory Neil Shapiro if (mci->mci_host == NULL) 189140266059SGregory Neil Shapiro mci->mci_host = m->m_name; 189240266059SGregory Neil Shapiro CurHostName = mci->mci_host; 189340266059SGregory Neil Shapiro if (mci->mci_state != MCIS_CLOSED) 189440266059SGregory Neil Shapiro { 189540266059SGregory Neil Shapiro message("Using cached SMTP/LPC connection for %s...", 189640266059SGregory Neil Shapiro m->m_name); 189740266059SGregory Neil Shapiro mci->mci_deliveries++; 189840266059SGregory Neil Shapiro goto do_transfer; 189940266059SGregory Neil Shapiro } 190040266059SGregory Neil Shapiro } 190140266059SGregory Neil Shapiro else 190240266059SGregory Neil Shapiro { 190340266059SGregory Neil Shapiro mci = mci_new(e->e_rpool); 190440266059SGregory Neil Shapiro } 190540266059SGregory Neil Shapiro mci->mci_in = smioin; 190640266059SGregory Neil Shapiro mci->mci_out = smioout; 190740266059SGregory Neil Shapiro mci->mci_mailer = m; 190840266059SGregory Neil Shapiro mci->mci_host = m->m_name; 190940266059SGregory Neil Shapiro if (clever) 191040266059SGregory Neil Shapiro { 191140266059SGregory Neil Shapiro mci->mci_state = MCIS_OPENING; 191240266059SGregory Neil Shapiro mci_cache(mci); 191340266059SGregory Neil Shapiro } 191440266059SGregory Neil Shapiro else 191540266059SGregory Neil Shapiro mci->mci_state = MCIS_OPEN; 191640266059SGregory Neil Shapiro #else /* _FFR_CACHE_LPC */ 191740266059SGregory Neil Shapiro mci = mci_new(e->e_rpool); 191840266059SGregory Neil Shapiro mci->mci_in = smioin; 191940266059SGregory Neil Shapiro mci->mci_out = smioout; 1920c2aa98e2SPeter Wemm mci->mci_state = clever ? MCIS_OPENING : MCIS_OPEN; 1921c2aa98e2SPeter Wemm mci->mci_mailer = m; 192240266059SGregory Neil Shapiro #endif /* _FFR_CACHE_LPC */ 1923c2aa98e2SPeter Wemm } 192440266059SGregory Neil Shapiro else if (strcmp(m->m_mailer, "[IPC]") == 0) 1925c2aa98e2SPeter Wemm { 1926c2aa98e2SPeter Wemm register int i; 1927c2aa98e2SPeter Wemm 1928c2aa98e2SPeter Wemm if (pv[0] == NULL || pv[1] == NULL || pv[1][0] == '\0') 1929c2aa98e2SPeter Wemm { 193006f25ae9SGregory Neil Shapiro syserr("null destination for %s mailer", m->m_mailer); 1931c2aa98e2SPeter Wemm rcode = EX_CONFIG; 1932c2aa98e2SPeter Wemm goto give_up; 1933c2aa98e2SPeter Wemm } 1934c2aa98e2SPeter Wemm 193506f25ae9SGregory Neil Shapiro # if NETUNIX 193606f25ae9SGregory Neil Shapiro if (strcmp(pv[0], "FILE") == 0) 193706f25ae9SGregory Neil Shapiro { 193806f25ae9SGregory Neil Shapiro curhost = CurHostName = "localhost"; 193906f25ae9SGregory Neil Shapiro mux_path = pv[1]; 194006f25ae9SGregory Neil Shapiro } 194106f25ae9SGregory Neil Shapiro else 194206f25ae9SGregory Neil Shapiro # endif /* NETUNIX */ 194306f25ae9SGregory Neil Shapiro { 1944c2aa98e2SPeter Wemm CurHostName = pv[1]; 194506f25ae9SGregory Neil Shapiro curhost = hostsignature(m, pv[1]); 194606f25ae9SGregory Neil Shapiro } 1947c2aa98e2SPeter Wemm 1948c2aa98e2SPeter Wemm if (curhost == NULL || curhost[0] == '\0') 1949c2aa98e2SPeter Wemm { 1950c2aa98e2SPeter Wemm syserr("null host signature for %s", pv[1]); 1951c2aa98e2SPeter Wemm rcode = EX_CONFIG; 1952c2aa98e2SPeter Wemm goto give_up; 1953c2aa98e2SPeter Wemm } 1954c2aa98e2SPeter Wemm 1955c2aa98e2SPeter Wemm if (!clever) 1956c2aa98e2SPeter Wemm { 195706f25ae9SGregory Neil Shapiro syserr("554 5.3.5 non-clever IPC"); 1958c2aa98e2SPeter Wemm rcode = EX_CONFIG; 1959c2aa98e2SPeter Wemm goto give_up; 1960c2aa98e2SPeter Wemm } 196106f25ae9SGregory Neil Shapiro if (pv[2] != NULL 196206f25ae9SGregory Neil Shapiro # if NETUNIX 196306f25ae9SGregory Neil Shapiro && mux_path == NULL 196406f25ae9SGregory Neil Shapiro # endif /* NETUNIX */ 196506f25ae9SGregory Neil Shapiro ) 1966c2aa98e2SPeter Wemm { 196740266059SGregory Neil Shapiro port = htons((unsigned short) atoi(pv[2])); 1968c2aa98e2SPeter Wemm if (port == 0) 1969c2aa98e2SPeter Wemm { 197006f25ae9SGregory Neil Shapiro # ifdef NO_GETSERVBYNAME 197106f25ae9SGregory Neil Shapiro syserr("Invalid port number: %s", pv[2]); 197206f25ae9SGregory Neil Shapiro # else /* NO_GETSERVBYNAME */ 1973c2aa98e2SPeter Wemm struct servent *sp = getservbyname(pv[2], "tcp"); 1974c2aa98e2SPeter Wemm 1975c2aa98e2SPeter Wemm if (sp == NULL) 1976c2aa98e2SPeter Wemm syserr("Service %s unknown", pv[2]); 1977c2aa98e2SPeter Wemm else 1978c2aa98e2SPeter Wemm port = sp->s_port; 197906f25ae9SGregory Neil Shapiro # endif /* NO_GETSERVBYNAME */ 1980c2aa98e2SPeter Wemm } 1981c2aa98e2SPeter Wemm } 1982c2aa98e2SPeter Wemm 198306f25ae9SGregory Neil Shapiro nummxhosts = parse_hostsignature(curhost, mxhosts, m); 198440266059SGregory Neil Shapiro if (TimeOuts.to_aconnect > 0) 198540266059SGregory Neil Shapiro enough = curtime() + TimeOuts.to_aconnect; 198606f25ae9SGregory Neil Shapiro tryhost: 198706f25ae9SGregory Neil Shapiro while (hostnum < nummxhosts) 198806f25ae9SGregory Neil Shapiro { 198906f25ae9SGregory Neil Shapiro char sep = ':'; 199006f25ae9SGregory Neil Shapiro char *endp; 199106f25ae9SGregory Neil Shapiro static char hostbuf[MAXNAME + 1]; 199206f25ae9SGregory Neil Shapiro 199306f25ae9SGregory Neil Shapiro # if NETINET6 199406f25ae9SGregory Neil Shapiro if (*mxhosts[hostnum] == '[') 199506f25ae9SGregory Neil Shapiro { 199606f25ae9SGregory Neil Shapiro endp = strchr(mxhosts[hostnum] + 1, ']'); 199706f25ae9SGregory Neil Shapiro if (endp != NULL) 199806f25ae9SGregory Neil Shapiro endp = strpbrk(endp + 1, ":,"); 199906f25ae9SGregory Neil Shapiro } 200006f25ae9SGregory Neil Shapiro else 200106f25ae9SGregory Neil Shapiro endp = strpbrk(mxhosts[hostnum], ":,"); 200206f25ae9SGregory Neil Shapiro # else /* NETINET6 */ 200306f25ae9SGregory Neil Shapiro endp = strpbrk(mxhosts[hostnum], ":,"); 200406f25ae9SGregory Neil Shapiro # endif /* NETINET6 */ 200506f25ae9SGregory Neil Shapiro if (endp != NULL) 200606f25ae9SGregory Neil Shapiro { 200706f25ae9SGregory Neil Shapiro sep = *endp; 200806f25ae9SGregory Neil Shapiro *endp = '\0'; 200906f25ae9SGregory Neil Shapiro } 201006f25ae9SGregory Neil Shapiro 201140266059SGregory Neil Shapiro if (hostnum == 1 && skip_back != NULL) 201240266059SGregory Neil Shapiro { 201340266059SGregory Neil Shapiro /* 201440266059SGregory Neil Shapiro ** Coattail piggybacking is no longer an 201540266059SGregory Neil Shapiro ** option with the mail host next to be tried 201640266059SGregory Neil Shapiro ** no longer the lowest MX preference 201740266059SGregory Neil Shapiro ** (hostnum == 1 meaning we're on the second 201840266059SGregory Neil Shapiro ** preference). We do not try to coattail 201940266059SGregory Neil Shapiro ** piggyback more than the first MX preference. 202040266059SGregory Neil Shapiro ** Revert 'tochain' to last location for 202140266059SGregory Neil Shapiro ** coincidental piggybacking. This works this 202240266059SGregory Neil Shapiro ** easily because the q_tchain kept getting 202340266059SGregory Neil Shapiro ** added to the top of the linked list. 202440266059SGregory Neil Shapiro */ 202540266059SGregory Neil Shapiro 202640266059SGregory Neil Shapiro tochain = skip_back; 202740266059SGregory Neil Shapiro } 202840266059SGregory Neil Shapiro 202906f25ae9SGregory Neil Shapiro if (*mxhosts[hostnum] == '\0') 2030c2aa98e2SPeter Wemm { 2031c2aa98e2SPeter Wemm syserr("deliver: null host name in signature"); 203206f25ae9SGregory Neil Shapiro hostnum++; 203306f25ae9SGregory Neil Shapiro if (endp != NULL) 203406f25ae9SGregory Neil Shapiro *endp = sep; 2035c2aa98e2SPeter Wemm continue; 2036c2aa98e2SPeter Wemm } 203740266059SGregory Neil Shapiro (void) sm_strlcpy(hostbuf, mxhosts[hostnum], 203806f25ae9SGregory Neil Shapiro sizeof hostbuf); 203906f25ae9SGregory Neil Shapiro hostnum++; 204006f25ae9SGregory Neil Shapiro if (endp != NULL) 204106f25ae9SGregory Neil Shapiro *endp = sep; 2042c2aa98e2SPeter Wemm 2043c2aa98e2SPeter Wemm /* see if we already know that this host is fried */ 2044c2aa98e2SPeter Wemm CurHostName = hostbuf; 2045c2aa98e2SPeter Wemm mci = mci_get(hostbuf, m); 2046c2aa98e2SPeter Wemm if (mci->mci_state != MCIS_CLOSED) 2047c2aa98e2SPeter Wemm { 204840266059SGregory Neil Shapiro char *type; 204940266059SGregory Neil Shapiro 2050c2aa98e2SPeter Wemm if (tTd(11, 1)) 2051c2aa98e2SPeter Wemm { 205240266059SGregory Neil Shapiro sm_dprintf("openmailer: "); 205340266059SGregory Neil Shapiro mci_dump(mci, false); 2054c2aa98e2SPeter Wemm } 2055c2aa98e2SPeter Wemm CurHostName = mci->mci_host; 205640266059SGregory Neil Shapiro if (bitnset(M_LMTP, m->m_flags)) 205740266059SGregory Neil Shapiro type = "L"; 205840266059SGregory Neil Shapiro else if (bitset(MCIF_ESMTP, mci->mci_flags)) 205940266059SGregory Neil Shapiro type = "ES"; 206040266059SGregory Neil Shapiro else 206140266059SGregory Neil Shapiro type = "S"; 206240266059SGregory Neil Shapiro message("Using cached %sMTP connection to %s via %s...", 206340266059SGregory Neil Shapiro type, hostbuf, m->m_name); 206406f25ae9SGregory Neil Shapiro mci->mci_deliveries++; 2065c2aa98e2SPeter Wemm break; 2066c2aa98e2SPeter Wemm } 2067c2aa98e2SPeter Wemm mci->mci_mailer = m; 2068c2aa98e2SPeter Wemm if (mci->mci_exitstat != EX_OK) 2069c2aa98e2SPeter Wemm { 2070c2aa98e2SPeter Wemm if (mci->mci_exitstat == EX_TEMPFAIL) 207140266059SGregory Neil Shapiro goodmxfound = true; 2072c2aa98e2SPeter Wemm continue; 2073c2aa98e2SPeter Wemm } 2074c2aa98e2SPeter Wemm 2075c2aa98e2SPeter Wemm if (mci_lock_host(mci) != EX_OK) 2076c2aa98e2SPeter Wemm { 2077c2aa98e2SPeter Wemm mci_setstat(mci, EX_TEMPFAIL, "4.4.5", NULL); 207840266059SGregory Neil Shapiro goodmxfound = true; 2079c2aa98e2SPeter Wemm continue; 2080c2aa98e2SPeter Wemm } 2081c2aa98e2SPeter Wemm 2082c2aa98e2SPeter Wemm /* try the connection */ 208340266059SGregory Neil Shapiro sm_setproctitle(true, e, "%s %s: %s", 208406f25ae9SGregory Neil Shapiro qid_printname(e), 208506f25ae9SGregory Neil Shapiro hostbuf, "user open"); 208606f25ae9SGregory Neil Shapiro # if NETUNIX 208706f25ae9SGregory Neil Shapiro if (mux_path != NULL) 208806f25ae9SGregory Neil Shapiro { 208906f25ae9SGregory Neil Shapiro message("Connecting to %s via %s...", 209006f25ae9SGregory Neil Shapiro mux_path, m->m_name); 209140266059SGregory Neil Shapiro i = makeconnection_ds((char *) mux_path, mci); 209206f25ae9SGregory Neil Shapiro } 209306f25ae9SGregory Neil Shapiro else 209406f25ae9SGregory Neil Shapiro # endif /* NETUNIX */ 209506f25ae9SGregory Neil Shapiro { 2096c2aa98e2SPeter Wemm if (port == 0) 2097c2aa98e2SPeter Wemm message("Connecting to %s via %s...", 2098c2aa98e2SPeter Wemm hostbuf, m->m_name); 2099c2aa98e2SPeter Wemm else 2100c2aa98e2SPeter Wemm message("Connecting to %s port %d via %s...", 210106f25ae9SGregory Neil Shapiro hostbuf, ntohs(port), 210206f25ae9SGregory Neil Shapiro m->m_name); 210340266059SGregory Neil Shapiro i = makeconnection(hostbuf, port, mci, e, 210440266059SGregory Neil Shapiro enough); 210506f25ae9SGregory Neil Shapiro } 21068774250cSGregory Neil Shapiro mci->mci_errno = errno; 2107c2aa98e2SPeter Wemm mci->mci_lastuse = curtime(); 210806f25ae9SGregory Neil Shapiro mci->mci_deliveries = 0; 2109c2aa98e2SPeter Wemm mci->mci_exitstat = i; 2110c2aa98e2SPeter Wemm # if NAMED_BIND 2111c2aa98e2SPeter Wemm mci->mci_herrno = h_errno; 211206f25ae9SGregory Neil Shapiro # endif /* NAMED_BIND */ 211340266059SGregory Neil Shapiro 211440266059SGregory Neil Shapiro /* 211540266059SGregory Neil Shapiro ** Have we tried long enough to get a connection? 211640266059SGregory Neil Shapiro ** If yes, skip to the fallback MX hosts 211740266059SGregory Neil Shapiro ** (if existent). 211840266059SGregory Neil Shapiro */ 211940266059SGregory Neil Shapiro 212040266059SGregory Neil Shapiro if (enough > 0 && mci->mci_lastuse >= enough) 212140266059SGregory Neil Shapiro { 212240266059SGregory Neil Shapiro int h; 212340266059SGregory Neil Shapiro # if NAMED_BIND 212440266059SGregory Neil Shapiro extern int NumFallBackMXHosts; 212540266059SGregory Neil Shapiro # else /* NAMED_BIND */ 212640266059SGregory Neil Shapiro const int NumFallBackMXHosts = 0; 212740266059SGregory Neil Shapiro # endif /* NAMED_BIND */ 212840266059SGregory Neil Shapiro 212940266059SGregory Neil Shapiro if (hostnum < nummxhosts && LogLevel > 9) 213040266059SGregory Neil Shapiro sm_syslog(LOG_INFO, e->e_id, 213140266059SGregory Neil Shapiro "Timeout.to_aconnect occurred before exhausting all addresses"); 213240266059SGregory Neil Shapiro 213340266059SGregory Neil Shapiro /* turn off timeout if fallback available */ 213440266059SGregory Neil Shapiro if (NumFallBackMXHosts > 0) 213540266059SGregory Neil Shapiro enough = 0; 213640266059SGregory Neil Shapiro 213740266059SGregory Neil Shapiro /* skip to a fallback MX host */ 213840266059SGregory Neil Shapiro h = nummxhosts - NumFallBackMXHosts; 213940266059SGregory Neil Shapiro if (hostnum < h) 214040266059SGregory Neil Shapiro hostnum = h; 214140266059SGregory Neil Shapiro } 2142c2aa98e2SPeter Wemm if (i == EX_OK) 2143c2aa98e2SPeter Wemm { 214440266059SGregory Neil Shapiro goodmxfound = true; 2145605302a5SGregory Neil Shapiro markstats(e, firstto, STATS_CONNECT); 2146c2aa98e2SPeter Wemm mci->mci_state = MCIS_OPENING; 2147c2aa98e2SPeter Wemm mci_cache(mci); 2148c2aa98e2SPeter Wemm if (TrafficLogFile != NULL) 214940266059SGregory Neil Shapiro (void) sm_io_fprintf(TrafficLogFile, 215040266059SGregory Neil Shapiro SM_TIME_DEFAULT, 215140266059SGregory Neil Shapiro "%05d === CONNECT %s\n", 215240266059SGregory Neil Shapiro (int) CurrentPid, 215340266059SGregory Neil Shapiro hostbuf); 2154c2aa98e2SPeter Wemm break; 2155c2aa98e2SPeter Wemm } 2156c2aa98e2SPeter Wemm else 2157c2aa98e2SPeter Wemm { 2158c2aa98e2SPeter Wemm if (tTd(11, 1)) 215940266059SGregory Neil Shapiro sm_dprintf("openmailer: makeconnection => stat=%d, errno=%d\n", 2160c2aa98e2SPeter Wemm i, errno); 2161c2aa98e2SPeter Wemm if (i == EX_TEMPFAIL) 216240266059SGregory Neil Shapiro goodmxfound = true; 2163c2aa98e2SPeter Wemm mci_unlock_host(mci); 2164c2aa98e2SPeter Wemm } 2165c2aa98e2SPeter Wemm 2166c2aa98e2SPeter Wemm /* enter status of this host */ 2167c2aa98e2SPeter Wemm setstat(i); 2168c2aa98e2SPeter Wemm 2169c2aa98e2SPeter Wemm /* should print some message here for -v mode */ 2170c2aa98e2SPeter Wemm } 2171c2aa98e2SPeter Wemm if (mci == NULL) 2172c2aa98e2SPeter Wemm { 2173c2aa98e2SPeter Wemm syserr("deliver: no host name"); 2174c2aa98e2SPeter Wemm rcode = EX_SOFTWARE; 2175c2aa98e2SPeter Wemm goto give_up; 2176c2aa98e2SPeter Wemm } 2177c2aa98e2SPeter Wemm mci->mci_pid = 0; 2178c2aa98e2SPeter Wemm } 2179c2aa98e2SPeter Wemm else 2180c2aa98e2SPeter Wemm { 2181c2aa98e2SPeter Wemm /* flush any expired connections */ 2182c2aa98e2SPeter Wemm (void) mci_scan(NULL); 2183c2aa98e2SPeter Wemm mci = NULL; 2184c2aa98e2SPeter Wemm 2185c2aa98e2SPeter Wemm if (bitnset(M_LMTP, m->m_flags)) 2186c2aa98e2SPeter Wemm { 2187c2aa98e2SPeter Wemm /* try to get a cached connection */ 2188c2aa98e2SPeter Wemm mci = mci_get(m->m_name, m); 2189c2aa98e2SPeter Wemm if (mci->mci_host == NULL) 2190c2aa98e2SPeter Wemm mci->mci_host = m->m_name; 2191c2aa98e2SPeter Wemm CurHostName = mci->mci_host; 2192c2aa98e2SPeter Wemm if (mci->mci_state != MCIS_CLOSED) 2193c2aa98e2SPeter Wemm { 2194c2aa98e2SPeter Wemm message("Using cached LMTP connection for %s...", 2195c2aa98e2SPeter Wemm m->m_name); 219606f25ae9SGregory Neil Shapiro mci->mci_deliveries++; 2197c2aa98e2SPeter Wemm goto do_transfer; 2198c2aa98e2SPeter Wemm } 2199c2aa98e2SPeter Wemm } 2200c2aa98e2SPeter Wemm 2201c2aa98e2SPeter Wemm /* announce the connection to verbose listeners */ 2202c2aa98e2SPeter Wemm if (host == NULL || host[0] == '\0') 2203c2aa98e2SPeter Wemm message("Connecting to %s...", m->m_name); 2204c2aa98e2SPeter Wemm else 2205c2aa98e2SPeter Wemm message("Connecting to %s via %s...", host, m->m_name); 2206c2aa98e2SPeter Wemm if (TrafficLogFile != NULL) 2207c2aa98e2SPeter Wemm { 2208c2aa98e2SPeter Wemm char **av; 2209c2aa98e2SPeter Wemm 221040266059SGregory Neil Shapiro (void) sm_io_fprintf(TrafficLogFile, SM_TIME_DEFAULT, 221140266059SGregory Neil Shapiro "%05d === EXEC", (int) CurrentPid); 2212c2aa98e2SPeter Wemm for (av = pv; *av != NULL; av++) 221340266059SGregory Neil Shapiro (void) sm_io_fprintf(TrafficLogFile, 221440266059SGregory Neil Shapiro SM_TIME_DEFAULT, " %s", 221540266059SGregory Neil Shapiro *av); 221640266059SGregory Neil Shapiro (void) sm_io_fprintf(TrafficLogFile, SM_TIME_DEFAULT, 221740266059SGregory Neil Shapiro "\n"); 2218c2aa98e2SPeter Wemm } 2219c2aa98e2SPeter Wemm 2220c2aa98e2SPeter Wemm #if XDEBUG 2221c2aa98e2SPeter Wemm checkfd012("before creating mail pipe"); 222206f25ae9SGregory Neil Shapiro #endif /* XDEBUG */ 2223c2aa98e2SPeter Wemm 2224c2aa98e2SPeter Wemm /* create a pipe to shove the mail through */ 2225c2aa98e2SPeter Wemm if (pipe(mpvect) < 0) 2226c2aa98e2SPeter Wemm { 2227c2aa98e2SPeter Wemm syserr("%s... openmailer(%s): pipe (to mailer)", 2228c2aa98e2SPeter Wemm shortenstring(e->e_to, MAXSHORTSTR), m->m_name); 2229c2aa98e2SPeter Wemm if (tTd(11, 1)) 223040266059SGregory Neil Shapiro sm_dprintf("openmailer: NULL\n"); 2231c2aa98e2SPeter Wemm rcode = EX_OSERR; 2232c2aa98e2SPeter Wemm goto give_up; 2233c2aa98e2SPeter Wemm } 2234c2aa98e2SPeter Wemm 2235c2aa98e2SPeter Wemm #if XDEBUG 2236c2aa98e2SPeter Wemm /* make sure we didn't get one of the standard I/O files */ 2237c2aa98e2SPeter Wemm if (mpvect[0] < 3 || mpvect[1] < 3) 2238c2aa98e2SPeter Wemm { 2239c2aa98e2SPeter Wemm syserr("%s... openmailer(%s): bogus mpvect %d %d", 2240c2aa98e2SPeter Wemm shortenstring(e->e_to, MAXSHORTSTR), m->m_name, 2241c2aa98e2SPeter Wemm mpvect[0], mpvect[1]); 224240266059SGregory Neil Shapiro printopenfds(true); 2243c2aa98e2SPeter Wemm if (tTd(11, 1)) 224440266059SGregory Neil Shapiro sm_dprintf("openmailer: NULL\n"); 2245c2aa98e2SPeter Wemm rcode = EX_OSERR; 2246c2aa98e2SPeter Wemm goto give_up; 2247c2aa98e2SPeter Wemm } 2248c2aa98e2SPeter Wemm 2249c2aa98e2SPeter Wemm /* make sure system call isn't dead meat */ 2250c2aa98e2SPeter Wemm checkfdopen(mpvect[0], "mpvect[0]"); 2251c2aa98e2SPeter Wemm checkfdopen(mpvect[1], "mpvect[1]"); 2252c2aa98e2SPeter Wemm if (mpvect[0] == mpvect[1] || 2253c2aa98e2SPeter Wemm (e->e_lockfp != NULL && 225440266059SGregory Neil Shapiro (mpvect[0] == sm_io_getinfo(e->e_lockfp, SM_IO_WHAT_FD, 225540266059SGregory Neil Shapiro NULL) || 225640266059SGregory Neil Shapiro mpvect[1] == sm_io_getinfo(e->e_lockfp, SM_IO_WHAT_FD, 225740266059SGregory Neil Shapiro NULL)))) 2258c2aa98e2SPeter Wemm { 2259c2aa98e2SPeter Wemm if (e->e_lockfp == NULL) 2260c2aa98e2SPeter Wemm syserr("%s... openmailer(%s): overlapping mpvect %d %d", 2261c2aa98e2SPeter Wemm shortenstring(e->e_to, MAXSHORTSTR), 2262c2aa98e2SPeter Wemm m->m_name, mpvect[0], mpvect[1]); 2263c2aa98e2SPeter Wemm else 2264c2aa98e2SPeter Wemm syserr("%s... openmailer(%s): overlapping mpvect %d %d, lockfp = %d", 2265c2aa98e2SPeter Wemm shortenstring(e->e_to, MAXSHORTSTR), 2266c2aa98e2SPeter Wemm m->m_name, mpvect[0], mpvect[1], 226740266059SGregory Neil Shapiro sm_io_getinfo(e->e_lockfp, 226840266059SGregory Neil Shapiro SM_IO_WHAT_FD, NULL)); 2269c2aa98e2SPeter Wemm } 227006f25ae9SGregory Neil Shapiro #endif /* XDEBUG */ 2271c2aa98e2SPeter Wemm 227206f25ae9SGregory Neil Shapiro /* create a return pipe */ 2273c2aa98e2SPeter Wemm if (pipe(rpvect) < 0) 2274c2aa98e2SPeter Wemm { 2275c2aa98e2SPeter Wemm syserr("%s... openmailer(%s): pipe (from mailer)", 2276c2aa98e2SPeter Wemm shortenstring(e->e_to, MAXSHORTSTR), 2277c2aa98e2SPeter Wemm m->m_name); 2278c2aa98e2SPeter Wemm (void) close(mpvect[0]); 2279c2aa98e2SPeter Wemm (void) close(mpvect[1]); 2280c2aa98e2SPeter Wemm if (tTd(11, 1)) 228140266059SGregory Neil Shapiro sm_dprintf("openmailer: NULL\n"); 2282c2aa98e2SPeter Wemm rcode = EX_OSERR; 2283c2aa98e2SPeter Wemm goto give_up; 2284c2aa98e2SPeter Wemm } 2285c2aa98e2SPeter Wemm #if XDEBUG 2286c2aa98e2SPeter Wemm checkfdopen(rpvect[0], "rpvect[0]"); 2287c2aa98e2SPeter Wemm checkfdopen(rpvect[1], "rpvect[1]"); 228806f25ae9SGregory Neil Shapiro #endif /* XDEBUG */ 2289c2aa98e2SPeter Wemm 2290c2aa98e2SPeter Wemm /* 2291c2aa98e2SPeter Wemm ** Actually fork the mailer process. 2292c2aa98e2SPeter Wemm ** DOFORK is clever about retrying. 2293c2aa98e2SPeter Wemm ** 2294c2aa98e2SPeter Wemm ** Dispose of SIGCHLD signal catchers that may be laying 229506f25ae9SGregory Neil Shapiro ** around so that endmailer will get it. 2296c2aa98e2SPeter Wemm */ 2297c2aa98e2SPeter Wemm 229840266059SGregory Neil Shapiro if (e->e_xfp != NULL) /* for debugging */ 229940266059SGregory Neil Shapiro (void) sm_io_flush(e->e_xfp, SM_TIME_DEFAULT); 230040266059SGregory Neil Shapiro (void) sm_io_flush(smioout, SM_TIME_DEFAULT); 230140266059SGregory Neil Shapiro (void) sm_signal(SIGCHLD, SIG_DFL); 230206f25ae9SGregory Neil Shapiro 230306f25ae9SGregory Neil Shapiro 2304c2aa98e2SPeter Wemm DOFORK(FORK); 2305c2aa98e2SPeter Wemm /* pid is set by DOFORK */ 230606f25ae9SGregory Neil Shapiro 2307c2aa98e2SPeter Wemm if (pid < 0) 2308c2aa98e2SPeter Wemm { 2309c2aa98e2SPeter Wemm /* failure */ 2310c2aa98e2SPeter Wemm syserr("%s... openmailer(%s): cannot fork", 2311c2aa98e2SPeter Wemm shortenstring(e->e_to, MAXSHORTSTR), m->m_name); 2312c2aa98e2SPeter Wemm (void) close(mpvect[0]); 2313c2aa98e2SPeter Wemm (void) close(mpvect[1]); 2314c2aa98e2SPeter Wemm (void) close(rpvect[0]); 2315c2aa98e2SPeter Wemm (void) close(rpvect[1]); 2316c2aa98e2SPeter Wemm if (tTd(11, 1)) 231740266059SGregory Neil Shapiro sm_dprintf("openmailer: NULL\n"); 2318c2aa98e2SPeter Wemm rcode = EX_OSERR; 2319c2aa98e2SPeter Wemm goto give_up; 2320c2aa98e2SPeter Wemm } 2321c2aa98e2SPeter Wemm else if (pid == 0) 2322c2aa98e2SPeter Wemm { 2323c2aa98e2SPeter Wemm int i; 232406f25ae9SGregory Neil Shapiro int save_errno; 232540266059SGregory Neil Shapiro int sff; 2326c2aa98e2SPeter Wemm int new_euid = NO_UID; 2327c2aa98e2SPeter Wemm int new_ruid = NO_UID; 2328c2aa98e2SPeter Wemm int new_gid = NO_GID; 232940266059SGregory Neil Shapiro char *user = NULL; 2330c2aa98e2SPeter Wemm struct stat stb; 2331c2aa98e2SPeter Wemm extern int DtableSize; 2332c2aa98e2SPeter Wemm 233340266059SGregory Neil Shapiro CurrentPid = getpid(); 233440266059SGregory Neil Shapiro 233513058a91SGregory Neil Shapiro /* clear the events to turn off SIGALRMs */ 233640266059SGregory Neil Shapiro sm_clear_events(); 233713058a91SGregory Neil Shapiro 23388774250cSGregory Neil Shapiro /* Reset global flags */ 23398774250cSGregory Neil Shapiro RestartRequest = NULL; 234040266059SGregory Neil Shapiro RestartWorkGroup = false; 23418774250cSGregory Neil Shapiro ShutdownRequest = NULL; 23428774250cSGregory Neil Shapiro PendingSignal = 0; 23438774250cSGregory Neil Shapiro 2344c2aa98e2SPeter Wemm if (e->e_lockfp != NULL) 234540266059SGregory Neil Shapiro (void) close(sm_io_getinfo(e->e_lockfp, 234640266059SGregory Neil Shapiro SM_IO_WHAT_FD, 234740266059SGregory Neil Shapiro NULL)); 2348c2aa98e2SPeter Wemm 2349c2aa98e2SPeter Wemm /* child -- set up input & exec mailer */ 235040266059SGregory Neil Shapiro (void) sm_signal(SIGALRM, sm_signal_noop); 235140266059SGregory Neil Shapiro (void) sm_signal(SIGCHLD, SIG_DFL); 235240266059SGregory Neil Shapiro (void) sm_signal(SIGHUP, SIG_IGN); 235340266059SGregory Neil Shapiro (void) sm_signal(SIGINT, SIG_IGN); 235440266059SGregory Neil Shapiro (void) sm_signal(SIGTERM, SIG_DFL); 235513058a91SGregory Neil Shapiro # ifdef SIGUSR1 235640266059SGregory Neil Shapiro (void) sm_signal(SIGUSR1, sm_signal_noop); 235713058a91SGregory Neil Shapiro # endif /* SIGUSR1 */ 2358c2aa98e2SPeter Wemm 2359c2aa98e2SPeter Wemm if (m != FileMailer || stat(tochain->q_user, &stb) < 0) 2360c2aa98e2SPeter Wemm stb.st_mode = 0; 2361c2aa98e2SPeter Wemm 2362c2aa98e2SPeter Wemm # if HASSETUSERCONTEXT 2363c2aa98e2SPeter Wemm /* 2364c2aa98e2SPeter Wemm ** Set user resources. 2365c2aa98e2SPeter Wemm */ 2366c2aa98e2SPeter Wemm 2367c2aa98e2SPeter Wemm if (contextaddr != NULL) 2368c2aa98e2SPeter Wemm { 236913bd1963SGregory Neil Shapiro int sucflags; 2370c2aa98e2SPeter Wemm struct passwd *pwd; 2371c2aa98e2SPeter Wemm 2372c2aa98e2SPeter Wemm if (contextaddr->q_ruser != NULL) 2373c2aa98e2SPeter Wemm pwd = sm_getpwnam(contextaddr->q_ruser); 2374c2aa98e2SPeter Wemm else 2375c2aa98e2SPeter Wemm pwd = sm_getpwnam(contextaddr->q_user); 237613bd1963SGregory Neil Shapiro sucflags = LOGIN_SETRESOURCES|LOGIN_SETPRIORITY; 237713bd1963SGregory Neil Shapiro #ifdef LOGIN_SETMAC 237813bd1963SGregory Neil Shapiro sucflags |= LOGIN_SETMAC; 237913bd1963SGregory Neil Shapiro #endif /* LOGIN_SETMAC */ 2380959366dcSGregory Neil Shapiro if (pwd != NULL && 2381959366dcSGregory Neil Shapiro setusercontext(NULL, pwd, pwd->pw_uid, 238213bd1963SGregory Neil Shapiro sucflags) == -1 && 2383959366dcSGregory Neil Shapiro suidwarn) 2384959366dcSGregory Neil Shapiro { 2385959366dcSGregory Neil Shapiro syserr("openmailer: setusercontext() failed"); 2386959366dcSGregory Neil Shapiro exit(EX_TEMPFAIL); 2387959366dcSGregory Neil Shapiro } 2388c2aa98e2SPeter Wemm } 238906f25ae9SGregory Neil Shapiro # endif /* HASSETUSERCONTEXT */ 2390c2aa98e2SPeter Wemm 239140266059SGregory Neil Shapiro #if HASNICE 2392c2aa98e2SPeter Wemm /* tweak niceness */ 2393c2aa98e2SPeter Wemm if (m->m_nice != 0) 239406f25ae9SGregory Neil Shapiro (void) nice(m->m_nice); 239540266059SGregory Neil Shapiro #endif /* HASNICE */ 2396c2aa98e2SPeter Wemm 2397c2aa98e2SPeter Wemm /* reset group id */ 2398c2aa98e2SPeter Wemm if (bitnset(M_SPECIFIC_UID, m->m_flags)) 2399c2aa98e2SPeter Wemm new_gid = m->m_gid; 2400c2aa98e2SPeter Wemm else if (bitset(S_ISGID, stb.st_mode)) 2401c2aa98e2SPeter Wemm new_gid = stb.st_gid; 2402c2aa98e2SPeter Wemm else if (ctladdr != NULL && ctladdr->q_gid != 0) 2403c2aa98e2SPeter Wemm { 2404c2aa98e2SPeter Wemm if (!DontInitGroups) 2405c2aa98e2SPeter Wemm { 240640266059SGregory Neil Shapiro user = ctladdr->q_ruser; 240740266059SGregory Neil Shapiro if (user == NULL) 240840266059SGregory Neil Shapiro user = ctladdr->q_user; 2409c2aa98e2SPeter Wemm 241040266059SGregory Neil Shapiro if (initgroups(user, 241140266059SGregory Neil Shapiro ctladdr->q_gid) == -1 241240266059SGregory Neil Shapiro && suidwarn) 241306f25ae9SGregory Neil Shapiro { 2414c2aa98e2SPeter Wemm syserr("openmailer: initgroups(%s, %d) failed", 241540266059SGregory Neil Shapiro user, ctladdr->q_gid); 241606f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 241706f25ae9SGregory Neil Shapiro } 2418c2aa98e2SPeter Wemm } 2419c2aa98e2SPeter Wemm else 2420c2aa98e2SPeter Wemm { 2421c2aa98e2SPeter Wemm GIDSET_T gidset[1]; 2422c2aa98e2SPeter Wemm 2423c2aa98e2SPeter Wemm gidset[0] = ctladdr->q_gid; 242440266059SGregory Neil Shapiro if (setgroups(1, gidset) == -1 242540266059SGregory Neil Shapiro && suidwarn) 242606f25ae9SGregory Neil Shapiro { 2427c2aa98e2SPeter Wemm syserr("openmailer: setgroups() failed"); 242806f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 242906f25ae9SGregory Neil Shapiro } 2430c2aa98e2SPeter Wemm } 2431c2aa98e2SPeter Wemm new_gid = ctladdr->q_gid; 2432c2aa98e2SPeter Wemm } 2433c2aa98e2SPeter Wemm else 2434c2aa98e2SPeter Wemm { 2435c2aa98e2SPeter Wemm if (!DontInitGroups) 2436c2aa98e2SPeter Wemm { 243740266059SGregory Neil Shapiro user = DefUser; 243840266059SGregory Neil Shapiro if (initgroups(DefUser, DefGid) == -1 && 243940266059SGregory Neil Shapiro suidwarn) 244006f25ae9SGregory Neil Shapiro { 2441c2aa98e2SPeter Wemm syserr("openmailer: initgroups(%s, %d) failed", 2442c2aa98e2SPeter Wemm DefUser, DefGid); 244306f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 244406f25ae9SGregory Neil Shapiro } 2445c2aa98e2SPeter Wemm } 2446c2aa98e2SPeter Wemm else 2447c2aa98e2SPeter Wemm { 2448c2aa98e2SPeter Wemm GIDSET_T gidset[1]; 2449c2aa98e2SPeter Wemm 2450c2aa98e2SPeter Wemm gidset[0] = DefGid; 245140266059SGregory Neil Shapiro if (setgroups(1, gidset) == -1 245240266059SGregory Neil Shapiro && suidwarn) 245306f25ae9SGregory Neil Shapiro { 2454c2aa98e2SPeter Wemm syserr("openmailer: setgroups() failed"); 245506f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 245606f25ae9SGregory Neil Shapiro } 2457c2aa98e2SPeter Wemm } 2458c2aa98e2SPeter Wemm if (m->m_gid == 0) 2459c2aa98e2SPeter Wemm new_gid = DefGid; 2460c2aa98e2SPeter Wemm else 2461c2aa98e2SPeter Wemm new_gid = m->m_gid; 2462c2aa98e2SPeter Wemm } 246306f25ae9SGregory Neil Shapiro if (new_gid != NO_GID) 246406f25ae9SGregory Neil Shapiro { 246506f25ae9SGregory Neil Shapiro if (RunAsUid != 0 && 246606f25ae9SGregory Neil Shapiro bitnset(M_SPECIFIC_UID, m->m_flags) && 246706f25ae9SGregory Neil Shapiro new_gid != getgid() && 246806f25ae9SGregory Neil Shapiro new_gid != getegid()) 246906f25ae9SGregory Neil Shapiro { 247006f25ae9SGregory Neil Shapiro /* Only root can change the gid */ 247140266059SGregory Neil Shapiro syserr("openmailer: insufficient privileges to change gid, RunAsUid=%d, new_gid=%d, gid=%d, egid=%d", 247240266059SGregory Neil Shapiro (int) RunAsUid, (int) new_gid, 247340266059SGregory Neil Shapiro (int) getgid(), (int) getegid()); 247406f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 247506f25ae9SGregory Neil Shapiro } 247606f25ae9SGregory Neil Shapiro 247706f25ae9SGregory Neil Shapiro if (setgid(new_gid) < 0 && suidwarn) 247806f25ae9SGregory Neil Shapiro { 2479c2aa98e2SPeter Wemm syserr("openmailer: setgid(%ld) failed", 2480c2aa98e2SPeter Wemm (long) new_gid); 248106f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 248206f25ae9SGregory Neil Shapiro } 248306f25ae9SGregory Neil Shapiro } 248406f25ae9SGregory Neil Shapiro 248506f25ae9SGregory Neil Shapiro /* change root to some "safe" directory */ 248606f25ae9SGregory Neil Shapiro if (m->m_rootdir != NULL) 248706f25ae9SGregory Neil Shapiro { 248894c01205SGregory Neil Shapiro expand(m->m_rootdir, cbuf, sizeof cbuf, e); 248906f25ae9SGregory Neil Shapiro if (tTd(11, 20)) 249040266059SGregory Neil Shapiro sm_dprintf("openmailer: chroot %s\n", 249194c01205SGregory Neil Shapiro cbuf); 249294c01205SGregory Neil Shapiro if (chroot(cbuf) < 0) 249306f25ae9SGregory Neil Shapiro { 249406f25ae9SGregory Neil Shapiro syserr("openmailer: Cannot chroot(%s)", 249594c01205SGregory Neil Shapiro cbuf); 249606f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 249706f25ae9SGregory Neil Shapiro } 249806f25ae9SGregory Neil Shapiro if (chdir("/") < 0) 249906f25ae9SGregory Neil Shapiro { 250006f25ae9SGregory Neil Shapiro syserr("openmailer: cannot chdir(/)"); 250106f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 250206f25ae9SGregory Neil Shapiro } 250306f25ae9SGregory Neil Shapiro } 2504c2aa98e2SPeter Wemm 2505c2aa98e2SPeter Wemm /* reset user id */ 2506c2aa98e2SPeter Wemm endpwent(); 250740266059SGregory Neil Shapiro sm_mbdb_terminate(); 2508c2aa98e2SPeter Wemm if (bitnset(M_SPECIFIC_UID, m->m_flags)) 250913058a91SGregory Neil Shapiro { 2510c2aa98e2SPeter Wemm new_euid = m->m_uid; 251113058a91SGregory Neil Shapiro 251213058a91SGregory Neil Shapiro /* 251313058a91SGregory Neil Shapiro ** Undo the effects of the uid change in main 251413058a91SGregory Neil Shapiro ** for signal handling. The real uid may 251513058a91SGregory Neil Shapiro ** be used by mailer in adding a "From " 251613058a91SGregory Neil Shapiro ** line. 251713058a91SGregory Neil Shapiro */ 251813058a91SGregory Neil Shapiro 251913058a91SGregory Neil Shapiro if (RealUid != 0 && RealUid != getuid()) 252040266059SGregory Neil Shapiro { 252140266059SGregory Neil Shapiro # if MAILER_SETUID_METHOD == USE_SETEUID 252240266059SGregory Neil Shapiro # if HASSETREUID 252340266059SGregory Neil Shapiro if (setreuid(RealUid, geteuid()) < 0) 252440266059SGregory Neil Shapiro { 252540266059SGregory Neil Shapiro syserr("openmailer: setreuid(%d, %d) failed", 252640266059SGregory Neil Shapiro (int) RealUid, (int) geteuid()); 252740266059SGregory Neil Shapiro exit(EX_OSERR); 252840266059SGregory Neil Shapiro } 252940266059SGregory Neil Shapiro # endif /* HASSETREUID */ 253040266059SGregory Neil Shapiro # endif /* MAILER_SETUID_METHOD == USE_SETEUID */ 253140266059SGregory Neil Shapiro # if MAILER_SETUID_METHOD == USE_SETREUID 253213058a91SGregory Neil Shapiro new_ruid = RealUid; 253340266059SGregory Neil Shapiro # endif /* MAILER_SETUID_METHOD == USE_SETREUID */ 253440266059SGregory Neil Shapiro } 253513058a91SGregory Neil Shapiro } 2536c2aa98e2SPeter Wemm else if (bitset(S_ISUID, stb.st_mode)) 2537c2aa98e2SPeter Wemm new_ruid = stb.st_uid; 2538c2aa98e2SPeter Wemm else if (ctladdr != NULL && ctladdr->q_uid != 0) 2539c2aa98e2SPeter Wemm new_ruid = ctladdr->q_uid; 2540c2aa98e2SPeter Wemm else if (m->m_uid != 0) 2541c2aa98e2SPeter Wemm new_ruid = m->m_uid; 2542c2aa98e2SPeter Wemm else 2543c2aa98e2SPeter Wemm new_ruid = DefUid; 2544605302a5SGregory Neil Shapiro 2545605302a5SGregory Neil Shapiro # if _FFR_USE_SETLOGIN 2546605302a5SGregory Neil Shapiro /* run disconnected from terminal and set login name */ 2547605302a5SGregory Neil Shapiro if (setsid() >= 0 && 2548605302a5SGregory Neil Shapiro ctladdr != NULL && ctladdr->q_uid != 0 && 2549605302a5SGregory Neil Shapiro new_euid == ctladdr->q_uid) 2550605302a5SGregory Neil Shapiro { 2551605302a5SGregory Neil Shapiro struct passwd *pwd; 2552605302a5SGregory Neil Shapiro 2553605302a5SGregory Neil Shapiro pwd = sm_getpwuid(ctladdr->q_uid); 2554605302a5SGregory Neil Shapiro if (pwd != NULL && suidwarn) 2555605302a5SGregory Neil Shapiro (void) setlogin(pwd->pw_name); 2556605302a5SGregory Neil Shapiro endpwent(); 2557605302a5SGregory Neil Shapiro } 2558605302a5SGregory Neil Shapiro # endif /* _FFR_USE_SETLOGIN */ 2559605302a5SGregory Neil Shapiro 2560c2aa98e2SPeter Wemm if (new_euid != NO_UID) 2561c2aa98e2SPeter Wemm { 256206f25ae9SGregory Neil Shapiro if (RunAsUid != 0 && new_euid != RunAsUid) 256306f25ae9SGregory Neil Shapiro { 256406f25ae9SGregory Neil Shapiro /* Only root can change the uid */ 256540266059SGregory Neil Shapiro syserr("openmailer: insufficient privileges to change uid, new_euid=%d, RunAsUid=%d", 256640266059SGregory Neil Shapiro (int) new_euid, (int) RunAsUid); 256706f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 256806f25ae9SGregory Neil Shapiro } 256906f25ae9SGregory Neil Shapiro 2570c2aa98e2SPeter Wemm vendor_set_uid(new_euid); 257106f25ae9SGregory Neil Shapiro # if MAILER_SETUID_METHOD == USE_SETEUID 2572c2aa98e2SPeter Wemm if (seteuid(new_euid) < 0 && suidwarn) 257306f25ae9SGregory Neil Shapiro { 2574c2aa98e2SPeter Wemm syserr("openmailer: seteuid(%ld) failed", 2575c2aa98e2SPeter Wemm (long) new_euid); 257606f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 257706f25ae9SGregory Neil Shapiro } 257806f25ae9SGregory Neil Shapiro # endif /* MAILER_SETUID_METHOD == USE_SETEUID */ 257906f25ae9SGregory Neil Shapiro # if MAILER_SETUID_METHOD == USE_SETREUID 2580c2aa98e2SPeter Wemm if (setreuid(new_ruid, new_euid) < 0 && suidwarn) 258106f25ae9SGregory Neil Shapiro { 2582c2aa98e2SPeter Wemm syserr("openmailer: setreuid(%ld, %ld) failed", 2583c2aa98e2SPeter Wemm (long) new_ruid, (long) new_euid); 258406f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 258506f25ae9SGregory Neil Shapiro } 258606f25ae9SGregory Neil Shapiro # endif /* MAILER_SETUID_METHOD == USE_SETREUID */ 258706f25ae9SGregory Neil Shapiro # if MAILER_SETUID_METHOD == USE_SETUID 2588c2aa98e2SPeter Wemm if (new_euid != geteuid() && setuid(new_euid) < 0 && suidwarn) 258906f25ae9SGregory Neil Shapiro { 2590c2aa98e2SPeter Wemm syserr("openmailer: setuid(%ld) failed", 2591c2aa98e2SPeter Wemm (long) new_euid); 259206f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 259306f25ae9SGregory Neil Shapiro } 259406f25ae9SGregory Neil Shapiro # endif /* MAILER_SETUID_METHOD == USE_SETUID */ 2595c2aa98e2SPeter Wemm } 2596c2aa98e2SPeter Wemm else if (new_ruid != NO_UID) 2597c2aa98e2SPeter Wemm { 2598c2aa98e2SPeter Wemm vendor_set_uid(new_ruid); 2599c2aa98e2SPeter Wemm if (setuid(new_ruid) < 0 && suidwarn) 260006f25ae9SGregory Neil Shapiro { 2601c2aa98e2SPeter Wemm syserr("openmailer: setuid(%ld) failed", 2602c2aa98e2SPeter Wemm (long) new_ruid); 260306f25ae9SGregory Neil Shapiro exit(EX_TEMPFAIL); 260406f25ae9SGregory Neil Shapiro } 2605c2aa98e2SPeter Wemm } 2606c2aa98e2SPeter Wemm 2607c2aa98e2SPeter Wemm if (tTd(11, 2)) 260840266059SGregory Neil Shapiro sm_dprintf("openmailer: running as r/euid=%d/%d, r/egid=%d/%d\n", 260906f25ae9SGregory Neil Shapiro (int) getuid(), (int) geteuid(), 261006f25ae9SGregory Neil Shapiro (int) getgid(), (int) getegid()); 2611c2aa98e2SPeter Wemm 2612c2aa98e2SPeter Wemm /* move into some "safe" directory */ 2613c2aa98e2SPeter Wemm if (m->m_execdir != NULL) 2614c2aa98e2SPeter Wemm { 2615c2aa98e2SPeter Wemm char *q; 2616c2aa98e2SPeter Wemm 2617c2aa98e2SPeter Wemm for (p = m->m_execdir; p != NULL; p = q) 2618c2aa98e2SPeter Wemm { 2619c2aa98e2SPeter Wemm q = strchr(p, ':'); 2620c2aa98e2SPeter Wemm if (q != NULL) 2621c2aa98e2SPeter Wemm *q = '\0'; 262294c01205SGregory Neil Shapiro expand(p, cbuf, sizeof cbuf, e); 2623c2aa98e2SPeter Wemm if (q != NULL) 2624c2aa98e2SPeter Wemm *q++ = ':'; 2625c2aa98e2SPeter Wemm if (tTd(11, 20)) 262640266059SGregory Neil Shapiro sm_dprintf("openmailer: trydir %s\n", 262794c01205SGregory Neil Shapiro cbuf); 262894c01205SGregory Neil Shapiro if (cbuf[0] != '\0' && 262994c01205SGregory Neil Shapiro chdir(cbuf) >= 0) 2630c2aa98e2SPeter Wemm break; 2631c2aa98e2SPeter Wemm } 2632c2aa98e2SPeter Wemm } 2633c2aa98e2SPeter Wemm 263440266059SGregory Neil Shapiro /* Check safety of program to be run */ 263540266059SGregory Neil Shapiro sff = SFF_ROOTOK|SFF_EXECOK; 263640266059SGregory Neil Shapiro if (!bitnset(DBS_RUNWRITABLEPROGRAM, 263740266059SGregory Neil Shapiro DontBlameSendmail)) 263840266059SGregory Neil Shapiro sff |= SFF_NOGWFILES|SFF_NOWWFILES; 263940266059SGregory Neil Shapiro if (bitnset(DBS_RUNPROGRAMINUNSAFEDIRPATH, 264040266059SGregory Neil Shapiro DontBlameSendmail)) 264140266059SGregory Neil Shapiro sff |= SFF_NOPATHCHECK; 264240266059SGregory Neil Shapiro else 264340266059SGregory Neil Shapiro sff |= SFF_SAFEDIRPATH; 264440266059SGregory Neil Shapiro ret = safefile(m->m_mailer, getuid(), getgid(), 264540266059SGregory Neil Shapiro user, sff, 0, NULL); 264640266059SGregory Neil Shapiro if (ret != 0) 264740266059SGregory Neil Shapiro sm_syslog(LOG_INFO, e->e_id, 264840266059SGregory Neil Shapiro "Warning: program %s unsafe: %s", 264940266059SGregory Neil Shapiro m->m_mailer, sm_errstring(ret)); 265040266059SGregory Neil Shapiro 2651c2aa98e2SPeter Wemm /* arrange to filter std & diag output of command */ 2652c2aa98e2SPeter Wemm (void) close(rpvect[0]); 2653c2aa98e2SPeter Wemm if (dup2(rpvect[1], STDOUT_FILENO) < 0) 2654c2aa98e2SPeter Wemm { 2655c2aa98e2SPeter Wemm syserr("%s... openmailer(%s): cannot dup pipe %d for stdout", 2656c2aa98e2SPeter Wemm shortenstring(e->e_to, MAXSHORTSTR), 2657c2aa98e2SPeter Wemm m->m_name, rpvect[1]); 2658c2aa98e2SPeter Wemm _exit(EX_OSERR); 2659c2aa98e2SPeter Wemm } 2660c2aa98e2SPeter Wemm (void) close(rpvect[1]); 266106f25ae9SGregory Neil Shapiro 2662c2aa98e2SPeter Wemm if (dup2(STDOUT_FILENO, STDERR_FILENO) < 0) 2663c2aa98e2SPeter Wemm { 2664c2aa98e2SPeter Wemm syserr("%s... openmailer(%s): cannot dup stdout for stderr", 2665c2aa98e2SPeter Wemm shortenstring(e->e_to, MAXSHORTSTR), 2666c2aa98e2SPeter Wemm m->m_name); 2667c2aa98e2SPeter Wemm _exit(EX_OSERR); 2668c2aa98e2SPeter Wemm } 2669c2aa98e2SPeter Wemm 2670c2aa98e2SPeter Wemm /* arrange to get standard input */ 2671c2aa98e2SPeter Wemm (void) close(mpvect[1]); 2672c2aa98e2SPeter Wemm if (dup2(mpvect[0], STDIN_FILENO) < 0) 2673c2aa98e2SPeter Wemm { 2674c2aa98e2SPeter Wemm syserr("%s... openmailer(%s): cannot dup pipe %d for stdin", 2675c2aa98e2SPeter Wemm shortenstring(e->e_to, MAXSHORTSTR), 2676c2aa98e2SPeter Wemm m->m_name, mpvect[0]); 2677c2aa98e2SPeter Wemm _exit(EX_OSERR); 2678c2aa98e2SPeter Wemm } 2679c2aa98e2SPeter Wemm (void) close(mpvect[0]); 2680c2aa98e2SPeter Wemm 2681c2aa98e2SPeter Wemm /* arrange for all the files to be closed */ 2682c2aa98e2SPeter Wemm for (i = 3; i < DtableSize; i++) 2683c2aa98e2SPeter Wemm { 2684c2aa98e2SPeter Wemm register int j; 2685c2aa98e2SPeter Wemm 2686c2aa98e2SPeter Wemm if ((j = fcntl(i, F_GETFD, 0)) != -1) 268706f25ae9SGregory Neil Shapiro (void) fcntl(i, F_SETFD, 268806f25ae9SGregory Neil Shapiro j | FD_CLOEXEC); 2689c2aa98e2SPeter Wemm } 2690c2aa98e2SPeter Wemm 2691605302a5SGregory Neil Shapiro # if !_FFR_USE_SETLOGIN 2692c2aa98e2SPeter Wemm /* run disconnected from terminal */ 2693c2aa98e2SPeter Wemm (void) setsid(); 2694605302a5SGregory Neil Shapiro # endif /* !_FFR_USE_SETLOGIN */ 2695c2aa98e2SPeter Wemm 2696c2aa98e2SPeter Wemm /* try to execute the mailer */ 269706f25ae9SGregory Neil Shapiro (void) execve(m->m_mailer, (ARGV_T) pv, 269806f25ae9SGregory Neil Shapiro (ARGV_T) UserEnviron); 269906f25ae9SGregory Neil Shapiro save_errno = errno; 2700c2aa98e2SPeter Wemm syserr("Cannot exec %s", m->m_mailer); 2701c2aa98e2SPeter Wemm if (bitnset(M_LOCALMAILER, m->m_flags) || 270206f25ae9SGregory Neil Shapiro transienterror(save_errno)) 2703c2aa98e2SPeter Wemm _exit(EX_OSERR); 2704c2aa98e2SPeter Wemm _exit(EX_UNAVAILABLE); 2705c2aa98e2SPeter Wemm } 2706c2aa98e2SPeter Wemm 2707c2aa98e2SPeter Wemm /* 2708c2aa98e2SPeter Wemm ** Set up return value. 2709c2aa98e2SPeter Wemm */ 2710c2aa98e2SPeter Wemm 2711c2aa98e2SPeter Wemm if (mci == NULL) 2712c2aa98e2SPeter Wemm { 271340266059SGregory Neil Shapiro if (clever) 271440266059SGregory Neil Shapiro { 271540266059SGregory Neil Shapiro /* 271640266059SGregory Neil Shapiro ** Allocate from general heap, not 271740266059SGregory Neil Shapiro ** envelope rpool, because this mci 271840266059SGregory Neil Shapiro ** is going to be cached. 271940266059SGregory Neil Shapiro */ 272040266059SGregory Neil Shapiro 272140266059SGregory Neil Shapiro mci = mci_new(NULL); 272240266059SGregory Neil Shapiro } 272340266059SGregory Neil Shapiro else 272440266059SGregory Neil Shapiro { 272540266059SGregory Neil Shapiro /* 272640266059SGregory Neil Shapiro ** Prevent a storage leak by allocating 272740266059SGregory Neil Shapiro ** this from the envelope rpool. 272840266059SGregory Neil Shapiro */ 272940266059SGregory Neil Shapiro 273040266059SGregory Neil Shapiro mci = mci_new(e->e_rpool); 273140266059SGregory Neil Shapiro } 2732c2aa98e2SPeter Wemm } 2733c2aa98e2SPeter Wemm mci->mci_mailer = m; 2734c2aa98e2SPeter Wemm if (clever) 2735c2aa98e2SPeter Wemm { 2736c2aa98e2SPeter Wemm mci->mci_state = MCIS_OPENING; 2737c2aa98e2SPeter Wemm mci_cache(mci); 2738c2aa98e2SPeter Wemm } 2739c2aa98e2SPeter Wemm else 2740c2aa98e2SPeter Wemm { 2741c2aa98e2SPeter Wemm mci->mci_state = MCIS_OPEN; 2742c2aa98e2SPeter Wemm } 2743c2aa98e2SPeter Wemm mci->mci_pid = pid; 2744c2aa98e2SPeter Wemm (void) close(mpvect[0]); 274540266059SGregory Neil Shapiro mci->mci_out = sm_io_open(SmFtStdiofd, SM_TIME_DEFAULT, 274640266059SGregory Neil Shapiro (void *) &(mpvect[1]), SM_IO_WRONLY, 274740266059SGregory Neil Shapiro NULL); 2748c2aa98e2SPeter Wemm if (mci->mci_out == NULL) 2749c2aa98e2SPeter Wemm { 2750c2aa98e2SPeter Wemm syserr("deliver: cannot create mailer output channel, fd=%d", 2751c2aa98e2SPeter Wemm mpvect[1]); 2752c2aa98e2SPeter Wemm (void) close(mpvect[1]); 2753c2aa98e2SPeter Wemm (void) close(rpvect[0]); 2754c2aa98e2SPeter Wemm (void) close(rpvect[1]); 2755c2aa98e2SPeter Wemm rcode = EX_OSERR; 2756c2aa98e2SPeter Wemm goto give_up; 2757c2aa98e2SPeter Wemm } 275806f25ae9SGregory Neil Shapiro 2759c2aa98e2SPeter Wemm (void) close(rpvect[1]); 276040266059SGregory Neil Shapiro mci->mci_in = sm_io_open(SmFtStdiofd, SM_TIME_DEFAULT, 276140266059SGregory Neil Shapiro (void *) &(rpvect[0]), SM_IO_RDONLY, 276240266059SGregory Neil Shapiro NULL); 2763c2aa98e2SPeter Wemm if (mci->mci_in == NULL) 2764c2aa98e2SPeter Wemm { 2765c2aa98e2SPeter Wemm syserr("deliver: cannot create mailer input channel, fd=%d", 2766c2aa98e2SPeter Wemm mpvect[1]); 2767c2aa98e2SPeter Wemm (void) close(rpvect[0]); 276840266059SGregory Neil Shapiro (void) sm_io_close(mci->mci_out, SM_TIME_DEFAULT); 2769c2aa98e2SPeter Wemm mci->mci_out = NULL; 2770c2aa98e2SPeter Wemm rcode = EX_OSERR; 2771c2aa98e2SPeter Wemm goto give_up; 2772c2aa98e2SPeter Wemm } 2773c2aa98e2SPeter Wemm } 2774c2aa98e2SPeter Wemm 2775c2aa98e2SPeter Wemm /* 2776c2aa98e2SPeter Wemm ** If we are in SMTP opening state, send initial protocol. 2777c2aa98e2SPeter Wemm */ 2778c2aa98e2SPeter Wemm 2779c2aa98e2SPeter Wemm if (bitnset(M_7BITS, m->m_flags) && 2780c2aa98e2SPeter Wemm (!clever || mci->mci_state == MCIS_OPENING)) 2781c2aa98e2SPeter Wemm mci->mci_flags |= MCIF_7BIT; 2782c2aa98e2SPeter Wemm if (clever && mci->mci_state != MCIS_CLOSED) 2783c2aa98e2SPeter Wemm { 278440266059SGregory Neil Shapiro # if STARTTLS || SASL 278540266059SGregory Neil Shapiro int dotpos; 278640266059SGregory Neil Shapiro char *srvname; 278740266059SGregory Neil Shapiro extern SOCKADDR CurHostAddr; 278840266059SGregory Neil Shapiro # endif /* STARTTLS || SASL */ 278940266059SGregory Neil Shapiro 279040266059SGregory Neil Shapiro # if SASL 2791193538b7SGregory Neil Shapiro # define DONE_AUTH(f) bitset(MCIF_AUTHACT, f) 279240266059SGregory Neil Shapiro # endif /* SASL */ 279306f25ae9SGregory Neil Shapiro # if STARTTLS 2794193538b7SGregory Neil Shapiro # define DONE_STARTTLS(f) bitset(MCIF_TLSACT, f) 279506f25ae9SGregory Neil Shapiro # endif /* STARTTLS */ 2796193538b7SGregory Neil Shapiro # define ONLY_HELO(f) bitset(MCIF_ONLY_EHLO, f) 2797193538b7SGregory Neil Shapiro # define SET_HELO(f) f |= MCIF_ONLY_EHLO 2798193538b7SGregory Neil Shapiro # define CLR_HELO(f) f &= ~MCIF_ONLY_EHLO 2799c2aa98e2SPeter Wemm 280040266059SGregory Neil Shapiro # if STARTTLS || SASL 280140266059SGregory Neil Shapiro /* don't use CurHostName, it is changed in many places */ 2802602a2b1bSGregory Neil Shapiro if (mci->mci_host != NULL) 2803602a2b1bSGregory Neil Shapiro { 2804602a2b1bSGregory Neil Shapiro srvname = mci->mci_host; 2805602a2b1bSGregory Neil Shapiro dotpos = strlen(srvname) - 1; 2806602a2b1bSGregory Neil Shapiro if (dotpos >= 0) 2807602a2b1bSGregory Neil Shapiro { 2808602a2b1bSGregory Neil Shapiro if (srvname[dotpos] == '.') 2809602a2b1bSGregory Neil Shapiro srvname[dotpos] = '\0'; 2810602a2b1bSGregory Neil Shapiro else 2811602a2b1bSGregory Neil Shapiro dotpos = -1; 2812602a2b1bSGregory Neil Shapiro } 2813602a2b1bSGregory Neil Shapiro } 281440266059SGregory Neil Shapiro else if (mci->mci_mailer != NULL) 2815602a2b1bSGregory Neil Shapiro { 281640266059SGregory Neil Shapiro srvname = mci->mci_mailer->m_name; 2817602a2b1bSGregory Neil Shapiro dotpos = -1; 2818602a2b1bSGregory Neil Shapiro } 281906f25ae9SGregory Neil Shapiro else 282006f25ae9SGregory Neil Shapiro { 282140266059SGregory Neil Shapiro srvname = "local"; 282240266059SGregory Neil Shapiro dotpos = -1; 2823193538b7SGregory Neil Shapiro } 282406f25ae9SGregory Neil Shapiro 282540266059SGregory Neil Shapiro /* don't set {server_name} to NULL or "": see getauth() */ 282640266059SGregory Neil Shapiro macdefine(&mci->mci_macro, A_TEMP, macid("{server_name}"), 282740266059SGregory Neil Shapiro srvname); 282840266059SGregory Neil Shapiro 282940266059SGregory Neil Shapiro /* CurHostAddr is set by makeconnection() and mci_get() */ 283040266059SGregory Neil Shapiro if (CurHostAddr.sa.sa_family != 0) 283140266059SGregory Neil Shapiro { 283240266059SGregory Neil Shapiro macdefine(&mci->mci_macro, A_TEMP, 283340266059SGregory Neil Shapiro macid("{server_addr}"), 283440266059SGregory Neil Shapiro anynet_ntoa(&CurHostAddr)); 283540266059SGregory Neil Shapiro } 283640266059SGregory Neil Shapiro else if (mci->mci_mailer != NULL) 283740266059SGregory Neil Shapiro { 283840266059SGregory Neil Shapiro /* mailer name is unique, use it as address */ 283940266059SGregory Neil Shapiro macdefine(&mci->mci_macro, A_PERM, 284040266059SGregory Neil Shapiro macid("{server_addr}"), 284140266059SGregory Neil Shapiro mci->mci_mailer->m_name); 284240266059SGregory Neil Shapiro } 284340266059SGregory Neil Shapiro else 284440266059SGregory Neil Shapiro { 284540266059SGregory Neil Shapiro /* don't set it to NULL or "": see getauth() */ 284640266059SGregory Neil Shapiro macdefine(&mci->mci_macro, A_PERM, 284740266059SGregory Neil Shapiro macid("{server_addr}"), "0"); 284840266059SGregory Neil Shapiro } 284940266059SGregory Neil Shapiro 285040266059SGregory Neil Shapiro /* undo change of srvname (mci->mci_host) */ 2851602a2b1bSGregory Neil Shapiro if (dotpos >= 0) 2852602a2b1bSGregory Neil Shapiro srvname[dotpos] = '.'; 285340266059SGregory Neil Shapiro 285440266059SGregory Neil Shapiro reconnect: /* after switching to an encrypted connection */ 285540266059SGregory Neil Shapiro # endif /* STARTTLS || SASL */ 285640266059SGregory Neil Shapiro 285740266059SGregory Neil Shapiro /* set the current connection information */ 285840266059SGregory Neil Shapiro e->e_mci = mci; 285940266059SGregory Neil Shapiro # if SASL 286040266059SGregory Neil Shapiro mci->mci_saslcap = NULL; 286140266059SGregory Neil Shapiro # endif /* SASL */ 286240266059SGregory Neil Shapiro smtpinit(m, mci, e, ONLY_HELO(mci->mci_flags)); 286340266059SGregory Neil Shapiro CLR_HELO(mci->mci_flags); 286440266059SGregory Neil Shapiro 286540266059SGregory Neil Shapiro if (IS_DLVR_RETURN(e)) 286640266059SGregory Neil Shapiro { 286740266059SGregory Neil Shapiro /* 286840266059SGregory Neil Shapiro ** Check whether other side can deliver e-mail 286940266059SGregory Neil Shapiro ** fast enough 287040266059SGregory Neil Shapiro */ 287140266059SGregory Neil Shapiro 287240266059SGregory Neil Shapiro if (!bitset(MCIF_DLVR_BY, mci->mci_flags)) 287340266059SGregory Neil Shapiro { 287440266059SGregory Neil Shapiro e->e_status = "5.4.7"; 287540266059SGregory Neil Shapiro usrerrenh(e->e_status, 287640266059SGregory Neil Shapiro "554 Server does not support Deliver By"); 287740266059SGregory Neil Shapiro rcode = EX_UNAVAILABLE; 287840266059SGregory Neil Shapiro goto give_up; 287940266059SGregory Neil Shapiro } 288040266059SGregory Neil Shapiro if (e->e_deliver_by > 0 && 288140266059SGregory Neil Shapiro e->e_deliver_by - (curtime() - e->e_ctime) < 288240266059SGregory Neil Shapiro mci->mci_min_by) 288340266059SGregory Neil Shapiro { 288440266059SGregory Neil Shapiro e->e_status = "5.4.7"; 288540266059SGregory Neil Shapiro usrerrenh(e->e_status, 288640266059SGregory Neil Shapiro "554 Message can't be delivered in time; %ld < %ld", 288740266059SGregory Neil Shapiro e->e_deliver_by - (curtime() - e->e_ctime), 288840266059SGregory Neil Shapiro mci->mci_min_by); 288940266059SGregory Neil Shapiro rcode = EX_UNAVAILABLE; 289040266059SGregory Neil Shapiro goto give_up; 289140266059SGregory Neil Shapiro } 289240266059SGregory Neil Shapiro } 289340266059SGregory Neil Shapiro 289440266059SGregory Neil Shapiro # if STARTTLS 289540266059SGregory Neil Shapiro /* first TLS then AUTH to provide a security layer */ 289640266059SGregory Neil Shapiro if (mci->mci_state != MCIS_CLOSED && 289740266059SGregory Neil Shapiro !DONE_STARTTLS(mci->mci_flags)) 289840266059SGregory Neil Shapiro { 289940266059SGregory Neil Shapiro int olderrors; 290040266059SGregory Neil Shapiro bool usetls; 290140266059SGregory Neil Shapiro bool saveQuickAbort = QuickAbort; 290240266059SGregory Neil Shapiro bool saveSuprErrs = SuprErrs; 290340266059SGregory Neil Shapiro char *host = NULL; 290440266059SGregory Neil Shapiro 290540266059SGregory Neil Shapiro rcode = EX_OK; 290640266059SGregory Neil Shapiro usetls = bitset(MCIF_TLS, mci->mci_flags); 290740266059SGregory Neil Shapiro if (usetls) 290840266059SGregory Neil Shapiro usetls = !iscltflgset(e, D_NOTLS); 290940266059SGregory Neil Shapiro 291040266059SGregory Neil Shapiro if (usetls) 291140266059SGregory Neil Shapiro { 291240266059SGregory Neil Shapiro host = macvalue(macid("{server_name}"), e); 291340266059SGregory Neil Shapiro olderrors = Errors; 291440266059SGregory Neil Shapiro QuickAbort = false; 291540266059SGregory Neil Shapiro SuprErrs = true; 2916959366dcSGregory Neil Shapiro if (rscheck("try_tls", host, NULL, e, 2917959366dcSGregory Neil Shapiro RSF_RMCOMM, 7, host, NOQID) != EX_OK 291840266059SGregory Neil Shapiro || Errors > olderrors) 291940266059SGregory Neil Shapiro usetls = false; 292040266059SGregory Neil Shapiro SuprErrs = saveSuprErrs; 292140266059SGregory Neil Shapiro QuickAbort = saveQuickAbort; 292240266059SGregory Neil Shapiro } 292340266059SGregory Neil Shapiro 292406f25ae9SGregory Neil Shapiro if (usetls) 292506f25ae9SGregory Neil Shapiro { 292606f25ae9SGregory Neil Shapiro if ((rcode = starttls(m, mci, e)) == EX_OK) 292706f25ae9SGregory Neil Shapiro { 292806f25ae9SGregory Neil Shapiro /* start again without STARTTLS */ 292906f25ae9SGregory Neil Shapiro mci->mci_flags |= MCIF_TLSACT; 293006f25ae9SGregory Neil Shapiro } 293106f25ae9SGregory Neil Shapiro else 293206f25ae9SGregory Neil Shapiro { 293306f25ae9SGregory Neil Shapiro char *s; 293406f25ae9SGregory Neil Shapiro 293506f25ae9SGregory Neil Shapiro /* 293606f25ae9SGregory Neil Shapiro ** TLS negotation failed, what to do? 293706f25ae9SGregory Neil Shapiro ** fall back to unencrypted connection 293806f25ae9SGregory Neil Shapiro ** or abort? How to decide? 293906f25ae9SGregory Neil Shapiro ** set a macro and call a ruleset. 294006f25ae9SGregory Neil Shapiro */ 294140266059SGregory Neil Shapiro 294206f25ae9SGregory Neil Shapiro mci->mci_flags &= ~MCIF_TLS; 294306f25ae9SGregory Neil Shapiro switch (rcode) 294406f25ae9SGregory Neil Shapiro { 294506f25ae9SGregory Neil Shapiro case EX_TEMPFAIL: 294606f25ae9SGregory Neil Shapiro s = "TEMP"; 294706f25ae9SGregory Neil Shapiro break; 294806f25ae9SGregory Neil Shapiro case EX_USAGE: 294906f25ae9SGregory Neil Shapiro s = "USAGE"; 295006f25ae9SGregory Neil Shapiro break; 295106f25ae9SGregory Neil Shapiro case EX_PROTOCOL: 295206f25ae9SGregory Neil Shapiro s = "PROTOCOL"; 295306f25ae9SGregory Neil Shapiro break; 295406f25ae9SGregory Neil Shapiro case EX_SOFTWARE: 295506f25ae9SGregory Neil Shapiro s = "SOFTWARE"; 295606f25ae9SGregory Neil Shapiro break; 295706f25ae9SGregory Neil Shapiro 295806f25ae9SGregory Neil Shapiro /* everything else is a failure */ 295906f25ae9SGregory Neil Shapiro default: 296006f25ae9SGregory Neil Shapiro s = "FAILURE"; 296106f25ae9SGregory Neil Shapiro rcode = EX_TEMPFAIL; 296206f25ae9SGregory Neil Shapiro } 296340266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 296440266059SGregory Neil Shapiro macid("{verify}"), s); 296506f25ae9SGregory Neil Shapiro } 296606f25ae9SGregory Neil Shapiro } 296706f25ae9SGregory Neil Shapiro else 296840266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 296940266059SGregory Neil Shapiro macid("{verify}"), "NONE"); 297006f25ae9SGregory Neil Shapiro olderrors = Errors; 297140266059SGregory Neil Shapiro QuickAbort = false; 297240266059SGregory Neil Shapiro SuprErrs = true; 297306f25ae9SGregory Neil Shapiro 297406f25ae9SGregory Neil Shapiro /* 297506f25ae9SGregory Neil Shapiro ** rcode == EX_SOFTWARE is special: 297606f25ae9SGregory Neil Shapiro ** the TLS negotation failed 297706f25ae9SGregory Neil Shapiro ** we have to drop the connection no matter what 297806f25ae9SGregory Neil Shapiro ** However, we call tls_server to give it the chance 297906f25ae9SGregory Neil Shapiro ** to log the problem and return an appropriate 298006f25ae9SGregory Neil Shapiro ** error code. 298106f25ae9SGregory Neil Shapiro */ 298240266059SGregory Neil Shapiro 298306f25ae9SGregory Neil Shapiro if (rscheck("tls_server", 298440266059SGregory Neil Shapiro macvalue(macid("{verify}"), e), 2985959366dcSGregory Neil Shapiro NULL, e, RSF_RMCOMM|RSF_COUNT, 5, 2986959366dcSGregory Neil Shapiro host, NOQID) != EX_OK || 298706f25ae9SGregory Neil Shapiro Errors > olderrors || 298806f25ae9SGregory Neil Shapiro rcode == EX_SOFTWARE) 298906f25ae9SGregory Neil Shapiro { 299006f25ae9SGregory Neil Shapiro char enhsc[ENHSCLEN]; 299106f25ae9SGregory Neil Shapiro extern char MsgBuf[]; 299206f25ae9SGregory Neil Shapiro 299306f25ae9SGregory Neil Shapiro if (ISSMTPCODE(MsgBuf) && 299406f25ae9SGregory Neil Shapiro extenhsc(MsgBuf + 4, ' ', enhsc) > 0) 299506f25ae9SGregory Neil Shapiro { 299640266059SGregory Neil Shapiro p = sm_rpool_strdup_x(e->e_rpool, 299740266059SGregory Neil Shapiro MsgBuf); 299806f25ae9SGregory Neil Shapiro } 299906f25ae9SGregory Neil Shapiro else 300006f25ae9SGregory Neil Shapiro { 300106f25ae9SGregory Neil Shapiro p = "403 4.7.0 server not authenticated."; 300240266059SGregory Neil Shapiro (void) sm_strlcpy(enhsc, "4.7.0", 300306f25ae9SGregory Neil Shapiro sizeof enhsc); 300406f25ae9SGregory Neil Shapiro } 300506f25ae9SGregory Neil Shapiro SuprErrs = saveSuprErrs; 300606f25ae9SGregory Neil Shapiro QuickAbort = saveQuickAbort; 300706f25ae9SGregory Neil Shapiro 300806f25ae9SGregory Neil Shapiro if (rcode == EX_SOFTWARE) 300906f25ae9SGregory Neil Shapiro { 301006f25ae9SGregory Neil Shapiro /* drop the connection */ 301106f25ae9SGregory Neil Shapiro mci->mci_state = MCIS_QUITING; 301206f25ae9SGregory Neil Shapiro if (mci->mci_in != NULL) 301306f25ae9SGregory Neil Shapiro { 301440266059SGregory Neil Shapiro (void) sm_io_close(mci->mci_in, 301540266059SGregory Neil Shapiro SM_TIME_DEFAULT); 301606f25ae9SGregory Neil Shapiro mci->mci_in = NULL; 301706f25ae9SGregory Neil Shapiro } 301806f25ae9SGregory Neil Shapiro mci->mci_flags &= ~MCIF_TLSACT; 301906f25ae9SGregory Neil Shapiro (void) endmailer(mci, e, pv); 302006f25ae9SGregory Neil Shapiro } 302106f25ae9SGregory Neil Shapiro else 302206f25ae9SGregory Neil Shapiro { 302306f25ae9SGregory Neil Shapiro /* abort transfer */ 302406f25ae9SGregory Neil Shapiro smtpquit(m, mci, e); 302506f25ae9SGregory Neil Shapiro } 302606f25ae9SGregory Neil Shapiro 3027193538b7SGregory Neil Shapiro /* avoid bogus error msg */ 3028193538b7SGregory Neil Shapiro mci->mci_errno = 0; 3029193538b7SGregory Neil Shapiro 303006f25ae9SGregory Neil Shapiro /* temp or permanent failure? */ 303106f25ae9SGregory Neil Shapiro rcode = (*p == '4') ? EX_TEMPFAIL 303206f25ae9SGregory Neil Shapiro : EX_UNAVAILABLE; 303340266059SGregory Neil Shapiro mci_setstat(mci, rcode, enhsc, p); 303406f25ae9SGregory Neil Shapiro 303506f25ae9SGregory Neil Shapiro /* 303606f25ae9SGregory Neil Shapiro ** hack to get the error message into 303706f25ae9SGregory Neil Shapiro ** the envelope (done in giveresponse()) 303806f25ae9SGregory Neil Shapiro */ 303940266059SGregory Neil Shapiro 304040266059SGregory Neil Shapiro (void) sm_strlcpy(SmtpError, p, 304140266059SGregory Neil Shapiro sizeof SmtpError); 304206f25ae9SGregory Neil Shapiro } 304306f25ae9SGregory Neil Shapiro QuickAbort = saveQuickAbort; 304406f25ae9SGregory Neil Shapiro SuprErrs = saveSuprErrs; 3045193538b7SGregory Neil Shapiro if (DONE_STARTTLS(mci->mci_flags) && 3046193538b7SGregory Neil Shapiro mci->mci_state != MCIS_CLOSED) 304706f25ae9SGregory Neil Shapiro { 3048193538b7SGregory Neil Shapiro SET_HELO(mci->mci_flags); 304906f25ae9SGregory Neil Shapiro mci->mci_flags &= ~MCIF_EXTENS; 305006f25ae9SGregory Neil Shapiro goto reconnect; 305106f25ae9SGregory Neil Shapiro } 305206f25ae9SGregory Neil Shapiro } 305306f25ae9SGregory Neil Shapiro # endif /* STARTTLS */ 305406f25ae9SGregory Neil Shapiro # if SASL 305506f25ae9SGregory Neil Shapiro /* if other server supports authentication let's authenticate */ 305606f25ae9SGregory Neil Shapiro if (mci->mci_state != MCIS_CLOSED && 305706f25ae9SGregory Neil Shapiro mci->mci_saslcap != NULL && 305840266059SGregory Neil Shapiro !DONE_AUTH(mci->mci_flags) && !iscltflgset(e, D_NOAUTH)) 305906f25ae9SGregory Neil Shapiro { 306040266059SGregory Neil Shapiro /* Should we require some minimum authentication? */ 306140266059SGregory Neil Shapiro if ((ret = smtpauth(m, mci, e)) == EX_OK) 306206f25ae9SGregory Neil Shapiro { 306306f25ae9SGregory Neil Shapiro int result; 306440266059SGregory Neil Shapiro sasl_ssf_t *ssf = NULL; 306506f25ae9SGregory Neil Shapiro 306640266059SGregory Neil Shapiro /* Get security strength (features) */ 306706f25ae9SGregory Neil Shapiro result = sasl_getprop(mci->mci_conn, SASL_SSF, 306894c01205SGregory Neil Shapiro # if SASL >= 20000 306994c01205SGregory Neil Shapiro (const void **) &ssf); 307094c01205SGregory Neil Shapiro # else /* SASL >= 20000 */ 307106f25ae9SGregory Neil Shapiro (void **) &ssf); 307294c01205SGregory Neil Shapiro # endif /* SASL >= 20000 */ 307340266059SGregory Neil Shapiro 307440266059SGregory Neil Shapiro /* XXX authid? */ 307506f25ae9SGregory Neil Shapiro if (LogLevel > 9) 307606f25ae9SGregory Neil Shapiro sm_syslog(LOG_INFO, NOQID, 307740266059SGregory Neil Shapiro "AUTH=client, relay=%.100s, mech=%.16s, bits=%d", 307806f25ae9SGregory Neil Shapiro mci->mci_host, 307940266059SGregory Neil Shapiro macvalue(macid("{auth_type}"), e), 308040266059SGregory Neil Shapiro result == SASL_OK ? *ssf : 0); 30818774250cSGregory Neil Shapiro 308206f25ae9SGregory Neil Shapiro /* 308340266059SGregory Neil Shapiro ** Only switch to encrypted connection 308406f25ae9SGregory Neil Shapiro ** if a security layer has been negotiated 308506f25ae9SGregory Neil Shapiro */ 308640266059SGregory Neil Shapiro 308706f25ae9SGregory Neil Shapiro if (result == SASL_OK && *ssf > 0) 308806f25ae9SGregory Neil Shapiro { 308906f25ae9SGregory Neil Shapiro /* 309040266059SGregory Neil Shapiro ** Convert I/O layer to use SASL. 309140266059SGregory Neil Shapiro ** If the call fails, the connection 309240266059SGregory Neil Shapiro ** is aborted. 309306f25ae9SGregory Neil Shapiro */ 309440266059SGregory Neil Shapiro 309540266059SGregory Neil Shapiro if (sfdcsasl(&mci->mci_in, 309640266059SGregory Neil Shapiro &mci->mci_out, 309706f25ae9SGregory Neil Shapiro mci->mci_conn) == 0) 309806f25ae9SGregory Neil Shapiro { 309906f25ae9SGregory Neil Shapiro mci->mci_flags &= ~MCIF_EXTENS; 310040266059SGregory Neil Shapiro mci->mci_flags |= MCIF_AUTHACT| 310140266059SGregory Neil Shapiro MCIF_ONLY_EHLO; 310206f25ae9SGregory Neil Shapiro goto reconnect; 310306f25ae9SGregory Neil Shapiro } 310440266059SGregory Neil Shapiro syserr("AUTH TLS switch failed in client"); 310506f25ae9SGregory Neil Shapiro } 310606f25ae9SGregory Neil Shapiro /* else? XXX */ 310706f25ae9SGregory Neil Shapiro mci->mci_flags |= MCIF_AUTHACT; 310806f25ae9SGregory Neil Shapiro 310906f25ae9SGregory Neil Shapiro } 311040266059SGregory Neil Shapiro else if (ret == EX_TEMPFAIL) 311140266059SGregory Neil Shapiro { 311240266059SGregory Neil Shapiro if (LogLevel > 8) 311340266059SGregory Neil Shapiro sm_syslog(LOG_ERR, NOQID, 311440266059SGregory Neil Shapiro "AUTH=client, relay=%.100s, temporary failure, connection abort", 311540266059SGregory Neil Shapiro mci->mci_host); 311640266059SGregory Neil Shapiro smtpquit(m, mci, e); 311740266059SGregory Neil Shapiro 311840266059SGregory Neil Shapiro /* avoid bogus error msg */ 311940266059SGregory Neil Shapiro mci->mci_errno = 0; 312040266059SGregory Neil Shapiro rcode = EX_TEMPFAIL; 312140266059SGregory Neil Shapiro mci_setstat(mci, rcode, "4.7.1", p); 312240266059SGregory Neil Shapiro 312340266059SGregory Neil Shapiro /* 312440266059SGregory Neil Shapiro ** hack to get the error message into 312540266059SGregory Neil Shapiro ** the envelope (done in giveresponse()) 312640266059SGregory Neil Shapiro */ 312740266059SGregory Neil Shapiro 312840266059SGregory Neil Shapiro (void) sm_strlcpy(SmtpError, 312940266059SGregory Neil Shapiro "Temporary AUTH failure", 313040266059SGregory Neil Shapiro sizeof SmtpError); 313140266059SGregory Neil Shapiro } 313206f25ae9SGregory Neil Shapiro } 313306f25ae9SGregory Neil Shapiro # endif /* SASL */ 313406f25ae9SGregory Neil Shapiro } 313506f25ae9SGregory Neil Shapiro 3136c2aa98e2SPeter Wemm 3137c2aa98e2SPeter Wemm do_transfer: 3138c2aa98e2SPeter Wemm /* clear out per-message flags from connection structure */ 3139c2aa98e2SPeter Wemm mci->mci_flags &= ~(MCIF_CVT7TO8|MCIF_CVT8TO7); 3140c2aa98e2SPeter Wemm 3141c2aa98e2SPeter Wemm if (bitset(EF_HAS8BIT, e->e_flags) && 3142c2aa98e2SPeter Wemm !bitset(EF_DONT_MIME, e->e_flags) && 3143c2aa98e2SPeter Wemm bitnset(M_7BITS, m->m_flags)) 3144c2aa98e2SPeter Wemm mci->mci_flags |= MCIF_CVT8TO7; 3145c2aa98e2SPeter Wemm 3146c2aa98e2SPeter Wemm #if MIME7TO8 3147c2aa98e2SPeter Wemm if (bitnset(M_MAKE8BIT, m->m_flags) && 3148c2aa98e2SPeter Wemm !bitset(MCIF_7BIT, mci->mci_flags) && 3149c2aa98e2SPeter Wemm (p = hvalue("Content-Transfer-Encoding", e->e_header)) != NULL && 315040266059SGregory Neil Shapiro (sm_strcasecmp(p, "quoted-printable") == 0 || 315140266059SGregory Neil Shapiro sm_strcasecmp(p, "base64") == 0) && 3152c2aa98e2SPeter Wemm (p = hvalue("Content-Type", e->e_header)) != NULL) 3153c2aa98e2SPeter Wemm { 3154c2aa98e2SPeter Wemm /* may want to convert 7 -> 8 */ 3155c2aa98e2SPeter Wemm /* XXX should really parse it here -- and use a class XXX */ 315640266059SGregory Neil Shapiro if (sm_strncasecmp(p, "text/plain", 10) == 0 && 3157c2aa98e2SPeter Wemm (p[10] == '\0' || p[10] == ' ' || p[10] == ';')) 3158c2aa98e2SPeter Wemm mci->mci_flags |= MCIF_CVT7TO8; 3159c2aa98e2SPeter Wemm } 316006f25ae9SGregory Neil Shapiro #endif /* MIME7TO8 */ 3161c2aa98e2SPeter Wemm 3162c2aa98e2SPeter Wemm if (tTd(11, 1)) 3163c2aa98e2SPeter Wemm { 316440266059SGregory Neil Shapiro sm_dprintf("openmailer: "); 316540266059SGregory Neil Shapiro mci_dump(mci, false); 3166c2aa98e2SPeter Wemm } 3167c2aa98e2SPeter Wemm 316840266059SGregory Neil Shapiro #if _FFR_CLIENT_SIZE 316940266059SGregory Neil Shapiro /* 317040266059SGregory Neil Shapiro ** See if we know the maximum size and 317140266059SGregory Neil Shapiro ** abort if the message is too big. 317240266059SGregory Neil Shapiro ** 317340266059SGregory Neil Shapiro ** NOTE: _FFR_CLIENT_SIZE is untested. 317440266059SGregory Neil Shapiro */ 317540266059SGregory Neil Shapiro 317640266059SGregory Neil Shapiro if (bitset(MCIF_SIZE, mci->mci_flags) && 317740266059SGregory Neil Shapiro mci->mci_maxsize > 0 && 317840266059SGregory Neil Shapiro e->e_msgsize > mci->mci_maxsize) 317940266059SGregory Neil Shapiro { 318040266059SGregory Neil Shapiro e->e_flags |= EF_NO_BODY_RETN; 318140266059SGregory Neil Shapiro if (bitnset(M_LOCALMAILER, m->m_flags)) 318240266059SGregory Neil Shapiro e->e_status = "5.2.3"; 318340266059SGregory Neil Shapiro else 318440266059SGregory Neil Shapiro e->e_status = "5.3.4"; 318540266059SGregory Neil Shapiro 318640266059SGregory Neil Shapiro usrerrenh(e->e_status, 318740266059SGregory Neil Shapiro "552 Message is too large; %ld bytes max", 318840266059SGregory Neil Shapiro mci->mci_maxsize); 318940266059SGregory Neil Shapiro rcode = EX_DATAERR; 319040266059SGregory Neil Shapiro 319140266059SGregory Neil Shapiro /* Need an e_message for error */ 319240266059SGregory Neil Shapiro (void) sm_snprintf(SmtpError, sizeof SmtpError, 319340266059SGregory Neil Shapiro "Message is too large; %ld bytes max", 319440266059SGregory Neil Shapiro mci->mci_maxsize); 319540266059SGregory Neil Shapiro goto give_up; 319640266059SGregory Neil Shapiro } 319740266059SGregory Neil Shapiro #endif /* _FFR_CLIENT_SIZE */ 319840266059SGregory Neil Shapiro 3199c2aa98e2SPeter Wemm if (mci->mci_state != MCIS_OPEN) 3200c2aa98e2SPeter Wemm { 3201c2aa98e2SPeter Wemm /* couldn't open the mailer */ 3202c2aa98e2SPeter Wemm rcode = mci->mci_exitstat; 3203c2aa98e2SPeter Wemm errno = mci->mci_errno; 3204602a2b1bSGregory Neil Shapiro SM_SET_H_ERRNO(mci->mci_herrno); 3205c2aa98e2SPeter Wemm if (rcode == EX_OK) 3206c2aa98e2SPeter Wemm { 3207c2aa98e2SPeter Wemm /* shouldn't happen */ 320806f25ae9SGregory Neil Shapiro syserr("554 5.3.5 deliver: mci=%lx rcode=%d errno=%d state=%d sig=%s", 320940266059SGregory Neil Shapiro (unsigned long) mci, rcode, errno, 321040266059SGregory Neil Shapiro mci->mci_state, firstsig); 321140266059SGregory Neil Shapiro mci_dump_all(true); 3212c2aa98e2SPeter Wemm rcode = EX_SOFTWARE; 3213c2aa98e2SPeter Wemm } 321406f25ae9SGregory Neil Shapiro else if (nummxhosts > hostnum) 3215c2aa98e2SPeter Wemm { 3216c2aa98e2SPeter Wemm /* try next MX site */ 3217c2aa98e2SPeter Wemm goto tryhost; 3218c2aa98e2SPeter Wemm } 3219c2aa98e2SPeter Wemm } 3220c2aa98e2SPeter Wemm else if (!clever) 3221c2aa98e2SPeter Wemm { 3222c2aa98e2SPeter Wemm /* 3223c2aa98e2SPeter Wemm ** Format and send message. 3224c2aa98e2SPeter Wemm */ 3225c2aa98e2SPeter Wemm 3226c2aa98e2SPeter Wemm putfromline(mci, e); 32272e43090eSPeter Wemm (*e->e_puthdr)(mci, e->e_header, e, M87F_OUTER); 3228c2aa98e2SPeter Wemm (*e->e_putbody)(mci, e, NULL); 3229c2aa98e2SPeter Wemm 3230c2aa98e2SPeter Wemm /* get the exit status */ 3231c2aa98e2SPeter Wemm rcode = endmailer(mci, e, pv); 323240266059SGregory Neil Shapiro if (rcode == EX_TEMPFAIL && SmtpError[0] == '\0') 3233602a2b1bSGregory Neil Shapiro { 3234602a2b1bSGregory Neil Shapiro /* 3235602a2b1bSGregory Neil Shapiro ** Need an e_message for mailq display. 3236602a2b1bSGregory Neil Shapiro ** We set SmtpError as 3237602a2b1bSGregory Neil Shapiro */ 3238602a2b1bSGregory Neil Shapiro 323940266059SGregory Neil Shapiro (void) sm_snprintf(SmtpError, sizeof SmtpError, 3240602a2b1bSGregory Neil Shapiro "%s mailer (%s) exited with EX_TEMPFAIL", 3241602a2b1bSGregory Neil Shapiro m->m_name, m->m_mailer); 3242602a2b1bSGregory Neil Shapiro } 3243c2aa98e2SPeter Wemm } 3244c2aa98e2SPeter Wemm else 3245c2aa98e2SPeter Wemm { 3246c2aa98e2SPeter Wemm /* 3247c2aa98e2SPeter Wemm ** Send the MAIL FROM: protocol 3248c2aa98e2SPeter Wemm */ 3249c2aa98e2SPeter Wemm 325040266059SGregory Neil Shapiro /* XXX this isn't pipelined... */ 3251c2aa98e2SPeter Wemm rcode = smtpmailfrom(m, mci, e); 3252c2aa98e2SPeter Wemm if (rcode == EX_OK) 3253c2aa98e2SPeter Wemm { 3254c2aa98e2SPeter Wemm register int i; 325540266059SGregory Neil Shapiro # if PIPELINING 325640266059SGregory Neil Shapiro ADDRESS *volatile pchain; 325740266059SGregory Neil Shapiro # endif /* PIPELINING */ 3258c2aa98e2SPeter Wemm 3259c2aa98e2SPeter Wemm /* send the recipient list */ 3260c2aa98e2SPeter Wemm tobuf[0] = '\0'; 326140266059SGregory Neil Shapiro mci->mci_retryrcpt = false; 326240266059SGregory Neil Shapiro mci->mci_tolist = tobuf; 326340266059SGregory Neil Shapiro # if PIPELINING 326440266059SGregory Neil Shapiro pchain = NULL; 326540266059SGregory Neil Shapiro mci->mci_nextaddr = NULL; 326640266059SGregory Neil Shapiro # endif /* PIPELINING */ 326706f25ae9SGregory Neil Shapiro 3268c2aa98e2SPeter Wemm for (to = tochain; to != NULL; to = to->q_tchain) 3269c2aa98e2SPeter Wemm { 327040266059SGregory Neil Shapiro if (!QS_IS_UNMARKED(to->q_state)) 3271c2aa98e2SPeter Wemm continue; 327206f25ae9SGregory Neil Shapiro 327340266059SGregory Neil Shapiro /* mark recipient state as "ok so far" */ 327440266059SGregory Neil Shapiro to->q_state = QS_OK; 327540266059SGregory Neil Shapiro e->e_to = to->q_paddr; 327606f25ae9SGregory Neil Shapiro # if STARTTLS 327706f25ae9SGregory Neil Shapiro i = rscheck("tls_rcpt", to->q_user, NULL, e, 3278959366dcSGregory Neil Shapiro RSF_RMCOMM|RSF_COUNT, 3, 3279959366dcSGregory Neil Shapiro mci->mci_host, e->e_id); 328006f25ae9SGregory Neil Shapiro if (i != EX_OK) 3281c2aa98e2SPeter Wemm { 328240266059SGregory Neil Shapiro markfailure(e, to, mci, i, false); 328340266059SGregory Neil Shapiro giveresponse(i, to->q_status, m, mci, 328440266059SGregory Neil Shapiro ctladdr, xstart, e, to); 328540266059SGregory Neil Shapiro if (i == EX_TEMPFAIL) 328640266059SGregory Neil Shapiro { 328740266059SGregory Neil Shapiro mci->mci_retryrcpt = true; 328840266059SGregory Neil Shapiro to->q_state = QS_RETRY; 328940266059SGregory Neil Shapiro } 329006f25ae9SGregory Neil Shapiro continue; 329106f25ae9SGregory Neil Shapiro } 329206f25ae9SGregory Neil Shapiro # endif /* STARTTLS */ 329306f25ae9SGregory Neil Shapiro 329440266059SGregory Neil Shapiro i = smtprcpt(to, m, mci, e, ctladdr, xstart); 329540266059SGregory Neil Shapiro # if PIPELINING 329640266059SGregory Neil Shapiro if (i == EX_OK && 329740266059SGregory Neil Shapiro bitset(MCIF_PIPELINED, mci->mci_flags)) 329806f25ae9SGregory Neil Shapiro { 329940266059SGregory Neil Shapiro /* 330040266059SGregory Neil Shapiro ** Add new element to list of 330140266059SGregory Neil Shapiro ** recipients for pipelining. 330240266059SGregory Neil Shapiro */ 330340266059SGregory Neil Shapiro 330440266059SGregory Neil Shapiro to->q_pchain = NULL; 330540266059SGregory Neil Shapiro if (mci->mci_nextaddr == NULL) 330640266059SGregory Neil Shapiro mci->mci_nextaddr = to; 330740266059SGregory Neil Shapiro if (pchain == NULL) 330840266059SGregory Neil Shapiro pchain = to; 3309c2aa98e2SPeter Wemm else 3310c2aa98e2SPeter Wemm { 331140266059SGregory Neil Shapiro pchain->q_pchain = to; 331240266059SGregory Neil Shapiro pchain = pchain->q_pchain; 331340266059SGregory Neil Shapiro } 331440266059SGregory Neil Shapiro } 331540266059SGregory Neil Shapiro # endif /* PIPELINING */ 331640266059SGregory Neil Shapiro if (i != EX_OK) 331740266059SGregory Neil Shapiro { 331840266059SGregory Neil Shapiro markfailure(e, to, mci, i, false); 331940266059SGregory Neil Shapiro giveresponse(i, to->q_status, m, mci, 332040266059SGregory Neil Shapiro ctladdr, xstart, e, to); 332140266059SGregory Neil Shapiro if (i == EX_TEMPFAIL) 332240266059SGregory Neil Shapiro to->q_state = QS_RETRY; 3323c2aa98e2SPeter Wemm } 3324c2aa98e2SPeter Wemm } 3325c2aa98e2SPeter Wemm 332640266059SGregory Neil Shapiro /* No recipients in list and no missing responses? */ 332740266059SGregory Neil Shapiro if (tobuf[0] == '\0' 332840266059SGregory Neil Shapiro # if PIPELINING 332940266059SGregory Neil Shapiro && mci->mci_nextaddr == NULL 333040266059SGregory Neil Shapiro # endif /* PIPELINING */ 333140266059SGregory Neil Shapiro ) 3332c2aa98e2SPeter Wemm { 3333c2aa98e2SPeter Wemm rcode = EX_OK; 3334c2aa98e2SPeter Wemm e->e_to = NULL; 3335c2aa98e2SPeter Wemm if (bitset(MCIF_CACHED, mci->mci_flags)) 3336c2aa98e2SPeter Wemm smtprset(m, mci, e); 3337c2aa98e2SPeter Wemm } 3338c2aa98e2SPeter Wemm else 3339c2aa98e2SPeter Wemm { 3340c2aa98e2SPeter Wemm e->e_to = tobuf + 1; 334140266059SGregory Neil Shapiro rcode = smtpdata(m, mci, e, ctladdr, xstart); 3342c2aa98e2SPeter Wemm } 3343c2aa98e2SPeter Wemm } 334406f25ae9SGregory Neil Shapiro if (rcode == EX_TEMPFAIL && nummxhosts > hostnum) 3345c2aa98e2SPeter Wemm { 3346c2aa98e2SPeter Wemm /* try next MX site */ 3347c2aa98e2SPeter Wemm goto tryhost; 3348c2aa98e2SPeter Wemm } 3349c2aa98e2SPeter Wemm } 3350c2aa98e2SPeter Wemm #if NAMED_BIND 3351c2aa98e2SPeter Wemm if (ConfigLevel < 2) 3352c2aa98e2SPeter Wemm _res.options |= RES_DEFNAMES | RES_DNSRCH; /* XXX */ 335306f25ae9SGregory Neil Shapiro #endif /* NAMED_BIND */ 3354c2aa98e2SPeter Wemm 3355c2aa98e2SPeter Wemm if (tTd(62, 1)) 3356c2aa98e2SPeter Wemm checkfds("after delivery"); 3357c2aa98e2SPeter Wemm 3358c2aa98e2SPeter Wemm /* 3359c2aa98e2SPeter Wemm ** Do final status disposal. 3360c2aa98e2SPeter Wemm ** We check for something in tobuf for the SMTP case. 3361c2aa98e2SPeter Wemm ** If we got a temporary failure, arrange to queue the 3362c2aa98e2SPeter Wemm ** addressees. 3363c2aa98e2SPeter Wemm */ 3364c2aa98e2SPeter Wemm 3365c2aa98e2SPeter Wemm give_up: 3366c2aa98e2SPeter Wemm if (bitnset(M_LMTP, m->m_flags)) 3367c2aa98e2SPeter Wemm { 3368c2aa98e2SPeter Wemm lmtp_rcode = rcode; 3369c2aa98e2SPeter Wemm tobuf[0] = '\0'; 337040266059SGregory Neil Shapiro anyok = false; 337140266059SGregory Neil Shapiro strsize = 0; 3372c2aa98e2SPeter Wemm } 3373c2aa98e2SPeter Wemm else 3374c2aa98e2SPeter Wemm anyok = rcode == EX_OK; 3375c2aa98e2SPeter Wemm 3376c2aa98e2SPeter Wemm for (to = tochain; to != NULL; to = to->q_tchain) 3377c2aa98e2SPeter Wemm { 3378c2aa98e2SPeter Wemm /* see if address already marked */ 337906f25ae9SGregory Neil Shapiro if (!QS_IS_OK(to->q_state)) 3380c2aa98e2SPeter Wemm continue; 3381c2aa98e2SPeter Wemm 3382c2aa98e2SPeter Wemm /* if running LMTP, get the status for each address */ 3383c2aa98e2SPeter Wemm if (bitnset(M_LMTP, m->m_flags)) 3384c2aa98e2SPeter Wemm { 3385c2aa98e2SPeter Wemm if (lmtp_rcode == EX_OK) 3386c2aa98e2SPeter Wemm rcode = smtpgetstat(m, mci, e); 3387c2aa98e2SPeter Wemm if (rcode == EX_OK) 3388c2aa98e2SPeter Wemm { 338940266059SGregory Neil Shapiro strsize += sm_strlcat2(tobuf + strsize, ",", 339040266059SGregory Neil Shapiro to->q_paddr, 339140266059SGregory Neil Shapiro tobufsize - strsize); 339240266059SGregory Neil Shapiro SM_ASSERT(strsize < tobufsize); 339340266059SGregory Neil Shapiro anyok = true; 3394c2aa98e2SPeter Wemm } 3395c2aa98e2SPeter Wemm else 3396c2aa98e2SPeter Wemm { 3397c2aa98e2SPeter Wemm e->e_to = to->q_paddr; 339840266059SGregory Neil Shapiro markfailure(e, to, mci, rcode, true); 339906f25ae9SGregory Neil Shapiro giveresponse(rcode, to->q_status, m, mci, 340040266059SGregory Neil Shapiro ctladdr, xstart, e, to); 3401c2aa98e2SPeter Wemm e->e_to = tobuf + 1; 3402c2aa98e2SPeter Wemm continue; 3403c2aa98e2SPeter Wemm } 3404c2aa98e2SPeter Wemm } 3405c2aa98e2SPeter Wemm else 3406c2aa98e2SPeter Wemm { 3407c2aa98e2SPeter Wemm /* mark bad addresses */ 3408c2aa98e2SPeter Wemm if (rcode != EX_OK) 3409c2aa98e2SPeter Wemm { 3410c2aa98e2SPeter Wemm if (goodmxfound && rcode == EX_NOHOST) 3411c2aa98e2SPeter Wemm rcode = EX_TEMPFAIL; 341240266059SGregory Neil Shapiro markfailure(e, to, mci, rcode, true); 3413c2aa98e2SPeter Wemm continue; 3414c2aa98e2SPeter Wemm } 3415c2aa98e2SPeter Wemm } 3416c2aa98e2SPeter Wemm 3417c2aa98e2SPeter Wemm /* successful delivery */ 341806f25ae9SGregory Neil Shapiro to->q_state = QS_SENT; 3419c2aa98e2SPeter Wemm to->q_statdate = curtime(); 3420c2aa98e2SPeter Wemm e->e_nsent++; 342106f25ae9SGregory Neil Shapiro 342206f25ae9SGregory Neil Shapiro /* 342306f25ae9SGregory Neil Shapiro ** Checkpoint the send list every few addresses 342406f25ae9SGregory Neil Shapiro */ 342506f25ae9SGregory Neil Shapiro 342642e5d165SGregory Neil Shapiro if (CheckpointInterval > 0 && e->e_nsent >= CheckpointInterval) 342706f25ae9SGregory Neil Shapiro { 342840266059SGregory Neil Shapiro queueup(e, false, false); 342906f25ae9SGregory Neil Shapiro e->e_nsent = 0; 343006f25ae9SGregory Neil Shapiro } 343106f25ae9SGregory Neil Shapiro 3432c2aa98e2SPeter Wemm if (bitnset(M_LOCALMAILER, m->m_flags) && 3433c2aa98e2SPeter Wemm bitset(QPINGONSUCCESS, to->q_flags)) 3434c2aa98e2SPeter Wemm { 3435c2aa98e2SPeter Wemm to->q_flags |= QDELIVERED; 3436c2aa98e2SPeter Wemm to->q_status = "2.1.5"; 343740266059SGregory Neil Shapiro (void) sm_io_fprintf(e->e_xfp, SM_TIME_DEFAULT, 343840266059SGregory Neil Shapiro "%s... Successfully delivered\n", 3439c2aa98e2SPeter Wemm to->q_paddr); 3440c2aa98e2SPeter Wemm } 3441c2aa98e2SPeter Wemm else if (bitset(QPINGONSUCCESS, to->q_flags) && 3442c2aa98e2SPeter Wemm bitset(QPRIMARY, to->q_flags) && 3443c2aa98e2SPeter Wemm !bitset(MCIF_DSN, mci->mci_flags)) 3444c2aa98e2SPeter Wemm { 3445c2aa98e2SPeter Wemm to->q_flags |= QRELAYED; 344640266059SGregory Neil Shapiro (void) sm_io_fprintf(e->e_xfp, SM_TIME_DEFAULT, 344740266059SGregory Neil Shapiro "%s... relayed; expect no further notifications\n", 344840266059SGregory Neil Shapiro to->q_paddr); 344940266059SGregory Neil Shapiro } 345040266059SGregory Neil Shapiro else if (IS_DLVR_NOTIFY(e) && 345140266059SGregory Neil Shapiro !bitset(MCIF_DLVR_BY, mci->mci_flags) && 345240266059SGregory Neil Shapiro bitset(QPRIMARY, to->q_flags) && 345340266059SGregory Neil Shapiro (!bitset(QHASNOTIFY, to->q_flags) || 345440266059SGregory Neil Shapiro bitset(QPINGONSUCCESS, to->q_flags) || 345540266059SGregory Neil Shapiro bitset(QPINGONFAILURE, to->q_flags) || 345640266059SGregory Neil Shapiro bitset(QPINGONDELAY, to->q_flags))) 345740266059SGregory Neil Shapiro { 345840266059SGregory Neil Shapiro /* RFC 2852, 4.1.4.2: no NOTIFY, or not NEVER */ 345940266059SGregory Neil Shapiro to->q_flags |= QBYNRELAY; 346040266059SGregory Neil Shapiro (void) sm_io_fprintf(e->e_xfp, SM_TIME_DEFAULT, 346140266059SGregory Neil Shapiro "%s... Deliver-by notify: relayed\n", 346240266059SGregory Neil Shapiro to->q_paddr); 346340266059SGregory Neil Shapiro } 346440266059SGregory Neil Shapiro else if (IS_DLVR_TRACE(e) && 346540266059SGregory Neil Shapiro (!bitset(QHASNOTIFY, to->q_flags) || 346640266059SGregory Neil Shapiro bitset(QPINGONSUCCESS, to->q_flags) || 346740266059SGregory Neil Shapiro bitset(QPINGONFAILURE, to->q_flags) || 346840266059SGregory Neil Shapiro bitset(QPINGONDELAY, to->q_flags)) && 346940266059SGregory Neil Shapiro bitset(QPRIMARY, to->q_flags)) 347040266059SGregory Neil Shapiro { 347140266059SGregory Neil Shapiro /* RFC 2852, 4.1.4: no NOTIFY, or not NEVER */ 347240266059SGregory Neil Shapiro to->q_flags |= QBYTRACE; 347340266059SGregory Neil Shapiro (void) sm_io_fprintf(e->e_xfp, SM_TIME_DEFAULT, 347440266059SGregory Neil Shapiro "%s... Deliver-By trace: relayed\n", 3475c2aa98e2SPeter Wemm to->q_paddr); 3476c2aa98e2SPeter Wemm } 3477c2aa98e2SPeter Wemm } 3478c2aa98e2SPeter Wemm 3479c2aa98e2SPeter Wemm if (bitnset(M_LMTP, m->m_flags)) 3480c2aa98e2SPeter Wemm { 3481c2aa98e2SPeter Wemm /* 3482c2aa98e2SPeter Wemm ** Global information applies to the last recipient only; 3483c2aa98e2SPeter Wemm ** clear it out to avoid bogus errors. 3484c2aa98e2SPeter Wemm */ 3485c2aa98e2SPeter Wemm 3486c2aa98e2SPeter Wemm rcode = EX_OK; 3487c2aa98e2SPeter Wemm e->e_statmsg = NULL; 3488c2aa98e2SPeter Wemm 3489c2aa98e2SPeter Wemm /* reset the mci state for the next transaction */ 349040266059SGregory Neil Shapiro if (mci != NULL && 349140266059SGregory Neil Shapiro (mci->mci_state == MCIS_MAIL || 349240266059SGregory Neil Shapiro mci->mci_state == MCIS_RCPT || 349340266059SGregory Neil Shapiro mci->mci_state == MCIS_DATA)) 3494c2aa98e2SPeter Wemm mci->mci_state = MCIS_OPEN; 3495c2aa98e2SPeter Wemm } 3496c2aa98e2SPeter Wemm 3497c2aa98e2SPeter Wemm if (tobuf[0] != '\0') 349840266059SGregory Neil Shapiro { 349940266059SGregory Neil Shapiro giveresponse(rcode, NULL, m, mci, ctladdr, xstart, e, tochain); 350040266059SGregory Neil Shapiro #if 0 350140266059SGregory Neil Shapiro /* 350240266059SGregory Neil Shapiro ** This code is disabled for now because I am not 350340266059SGregory Neil Shapiro ** sure that copying status from the first recipient 350440266059SGregory Neil Shapiro ** to all non-status'ed recipients is a good idea. 350540266059SGregory Neil Shapiro */ 350640266059SGregory Neil Shapiro 350740266059SGregory Neil Shapiro if (tochain->q_message != NULL && 350840266059SGregory Neil Shapiro !bitnset(M_LMTP, m->m_flags) && rcode != EX_OK) 350940266059SGregory Neil Shapiro { 351040266059SGregory Neil Shapiro for (to = tochain->q_tchain; to != NULL; 351140266059SGregory Neil Shapiro to = to->q_tchain) 351240266059SGregory Neil Shapiro { 351340266059SGregory Neil Shapiro /* see if address already marked */ 351440266059SGregory Neil Shapiro if (QS_IS_QUEUEUP(to->q_state) && 351540266059SGregory Neil Shapiro to->q_message == NULL) 351640266059SGregory Neil Shapiro to->q_message = sm_rpool_strdup_x(e->e_rpool, 351740266059SGregory Neil Shapiro tochain->q_message); 351840266059SGregory Neil Shapiro } 351940266059SGregory Neil Shapiro } 352040266059SGregory Neil Shapiro #endif /* 0 */ 352140266059SGregory Neil Shapiro } 3522c2aa98e2SPeter Wemm if (anyok) 352340266059SGregory Neil Shapiro markstats(e, tochain, STATS_NORMAL); 3524c2aa98e2SPeter Wemm mci_store_persistent(mci); 3525c2aa98e2SPeter Wemm 352640266059SGregory Neil Shapiro /* Some recipients were tempfailed, try them on the next host */ 352740266059SGregory Neil Shapiro if (mci != NULL && mci->mci_retryrcpt && nummxhosts > hostnum) 352840266059SGregory Neil Shapiro { 352940266059SGregory Neil Shapiro /* try next MX site */ 353040266059SGregory Neil Shapiro goto tryhost; 353140266059SGregory Neil Shapiro } 353240266059SGregory Neil Shapiro 3533c2aa98e2SPeter Wemm /* now close the connection */ 3534c2aa98e2SPeter Wemm if (clever && mci != NULL && mci->mci_state != MCIS_CLOSED && 3535c2aa98e2SPeter Wemm !bitset(MCIF_CACHED, mci->mci_flags)) 3536c2aa98e2SPeter Wemm smtpquit(m, mci, e); 3537c2aa98e2SPeter Wemm 353840266059SGregory Neil Shapiro cleanup: ; 353940266059SGregory Neil Shapiro } 354040266059SGregory Neil Shapiro SM_FINALLY 354140266059SGregory Neil Shapiro { 3542c2aa98e2SPeter Wemm /* 3543c2aa98e2SPeter Wemm ** Restore state and return. 3544c2aa98e2SPeter Wemm */ 3545c2aa98e2SPeter Wemm #if XDEBUG 3546c2aa98e2SPeter Wemm char wbuf[MAXLINE]; 3547c2aa98e2SPeter Wemm 3548c2aa98e2SPeter Wemm /* make absolutely certain 0, 1, and 2 are in use */ 354940266059SGregory Neil Shapiro (void) sm_snprintf(wbuf, sizeof wbuf, 355040266059SGregory Neil Shapiro "%s... end of deliver(%s)", 3551c2aa98e2SPeter Wemm e->e_to == NULL ? "NO-TO-LIST" 355240266059SGregory Neil Shapiro : shortenstring(e->e_to, 355340266059SGregory Neil Shapiro MAXSHORTSTR), 3554c2aa98e2SPeter Wemm m->m_name); 3555c2aa98e2SPeter Wemm checkfd012(wbuf); 355606f25ae9SGregory Neil Shapiro #endif /* XDEBUG */ 3557c2aa98e2SPeter Wemm 3558c2aa98e2SPeter Wemm errno = 0; 355940266059SGregory Neil Shapiro 356040266059SGregory Neil Shapiro /* 356140266059SGregory Neil Shapiro ** It was originally necessary to set macro 'g' to NULL 356240266059SGregory Neil Shapiro ** because it previously pointed to an auto buffer. 356340266059SGregory Neil Shapiro ** We don't do this any more, so this may be unnecessary. 356440266059SGregory Neil Shapiro */ 356540266059SGregory Neil Shapiro 356640266059SGregory Neil Shapiro macdefine(&e->e_macro, A_PERM, 'g', (char *) NULL); 356706f25ae9SGregory Neil Shapiro e->e_to = NULL; 356840266059SGregory Neil Shapiro } 356940266059SGregory Neil Shapiro SM_END_TRY 357006f25ae9SGregory Neil Shapiro return rcode; 3571c2aa98e2SPeter Wemm } 357206f25ae9SGregory Neil Shapiro 357340266059SGregory Neil Shapiro /* 3574c2aa98e2SPeter Wemm ** MARKFAILURE -- mark a failure on a specific address. 3575c2aa98e2SPeter Wemm ** 3576c2aa98e2SPeter Wemm ** Parameters: 3577c2aa98e2SPeter Wemm ** e -- the envelope we are sending. 3578c2aa98e2SPeter Wemm ** q -- the address to mark. 3579c2aa98e2SPeter Wemm ** mci -- mailer connection information. 3580c2aa98e2SPeter Wemm ** rcode -- the code signifying the particular failure. 358106f25ae9SGregory Neil Shapiro ** ovr -- override an existing code? 3582c2aa98e2SPeter Wemm ** 3583c2aa98e2SPeter Wemm ** Returns: 3584c2aa98e2SPeter Wemm ** none. 3585c2aa98e2SPeter Wemm ** 3586c2aa98e2SPeter Wemm ** Side Effects: 3587c2aa98e2SPeter Wemm ** marks the address (and possibly the envelope) with the 3588c2aa98e2SPeter Wemm ** failure so that an error will be returned or 3589c2aa98e2SPeter Wemm ** the message will be queued, as appropriate. 3590c2aa98e2SPeter Wemm */ 3591c2aa98e2SPeter Wemm 359240266059SGregory Neil Shapiro void 359306f25ae9SGregory Neil Shapiro markfailure(e, q, mci, rcode, ovr) 3594c2aa98e2SPeter Wemm register ENVELOPE *e; 3595c2aa98e2SPeter Wemm register ADDRESS *q; 3596c2aa98e2SPeter Wemm register MCI *mci; 3597c2aa98e2SPeter Wemm int rcode; 359806f25ae9SGregory Neil Shapiro bool ovr; 3599c2aa98e2SPeter Wemm { 360040266059SGregory Neil Shapiro int save_errno = errno; 360106f25ae9SGregory Neil Shapiro char *status = NULL; 360206f25ae9SGregory Neil Shapiro char *rstatus = NULL; 3603c2aa98e2SPeter Wemm 3604c2aa98e2SPeter Wemm switch (rcode) 3605c2aa98e2SPeter Wemm { 3606c2aa98e2SPeter Wemm case EX_OK: 3607c2aa98e2SPeter Wemm break; 3608c2aa98e2SPeter Wemm 3609c2aa98e2SPeter Wemm case EX_TEMPFAIL: 3610c2aa98e2SPeter Wemm case EX_IOERR: 3611c2aa98e2SPeter Wemm case EX_OSERR: 361206f25ae9SGregory Neil Shapiro q->q_state = QS_QUEUEUP; 3613c2aa98e2SPeter Wemm break; 3614c2aa98e2SPeter Wemm 3615c2aa98e2SPeter Wemm default: 361606f25ae9SGregory Neil Shapiro q->q_state = QS_BADADDR; 3617c2aa98e2SPeter Wemm break; 3618c2aa98e2SPeter Wemm } 3619c2aa98e2SPeter Wemm 3620c2aa98e2SPeter Wemm /* find most specific error code possible */ 3621c2aa98e2SPeter Wemm if (mci != NULL && mci->mci_status != NULL) 3622c2aa98e2SPeter Wemm { 362340266059SGregory Neil Shapiro status = sm_rpool_strdup_x(e->e_rpool, mci->mci_status); 3624c2aa98e2SPeter Wemm if (mci->mci_rstatus != NULL) 362540266059SGregory Neil Shapiro rstatus = sm_rpool_strdup_x(e->e_rpool, 362640266059SGregory Neil Shapiro mci->mci_rstatus); 3627c2aa98e2SPeter Wemm else 362806f25ae9SGregory Neil Shapiro rstatus = NULL; 3629c2aa98e2SPeter Wemm } 3630c2aa98e2SPeter Wemm else if (e->e_status != NULL) 3631c2aa98e2SPeter Wemm { 363206f25ae9SGregory Neil Shapiro status = e->e_status; 363306f25ae9SGregory Neil Shapiro rstatus = NULL; 3634c2aa98e2SPeter Wemm } 3635c2aa98e2SPeter Wemm else 3636c2aa98e2SPeter Wemm { 3637c2aa98e2SPeter Wemm switch (rcode) 3638c2aa98e2SPeter Wemm { 3639c2aa98e2SPeter Wemm case EX_USAGE: 364006f25ae9SGregory Neil Shapiro status = "5.5.4"; 3641c2aa98e2SPeter Wemm break; 3642c2aa98e2SPeter Wemm 3643c2aa98e2SPeter Wemm case EX_DATAERR: 364406f25ae9SGregory Neil Shapiro status = "5.5.2"; 3645c2aa98e2SPeter Wemm break; 3646c2aa98e2SPeter Wemm 3647c2aa98e2SPeter Wemm case EX_NOUSER: 364806f25ae9SGregory Neil Shapiro status = "5.1.1"; 3649c2aa98e2SPeter Wemm break; 3650c2aa98e2SPeter Wemm 3651c2aa98e2SPeter Wemm case EX_NOHOST: 365206f25ae9SGregory Neil Shapiro status = "5.1.2"; 3653c2aa98e2SPeter Wemm break; 3654c2aa98e2SPeter Wemm 3655c2aa98e2SPeter Wemm case EX_NOINPUT: 3656c2aa98e2SPeter Wemm case EX_CANTCREAT: 3657c2aa98e2SPeter Wemm case EX_NOPERM: 365806f25ae9SGregory Neil Shapiro status = "5.3.0"; 3659c2aa98e2SPeter Wemm break; 3660c2aa98e2SPeter Wemm 3661c2aa98e2SPeter Wemm case EX_UNAVAILABLE: 3662c2aa98e2SPeter Wemm case EX_SOFTWARE: 3663c2aa98e2SPeter Wemm case EX_OSFILE: 3664c2aa98e2SPeter Wemm case EX_PROTOCOL: 3665c2aa98e2SPeter Wemm case EX_CONFIG: 366606f25ae9SGregory Neil Shapiro status = "5.5.0"; 3667c2aa98e2SPeter Wemm break; 3668c2aa98e2SPeter Wemm 3669c2aa98e2SPeter Wemm case EX_OSERR: 3670c2aa98e2SPeter Wemm case EX_IOERR: 367106f25ae9SGregory Neil Shapiro status = "4.5.0"; 3672c2aa98e2SPeter Wemm break; 3673c2aa98e2SPeter Wemm 3674c2aa98e2SPeter Wemm case EX_TEMPFAIL: 367506f25ae9SGregory Neil Shapiro status = "4.2.0"; 3676c2aa98e2SPeter Wemm break; 3677c2aa98e2SPeter Wemm } 3678c2aa98e2SPeter Wemm } 3679c2aa98e2SPeter Wemm 368006f25ae9SGregory Neil Shapiro /* new status? */ 368106f25ae9SGregory Neil Shapiro if (status != NULL && *status != '\0' && (ovr || q->q_status == NULL || 368206f25ae9SGregory Neil Shapiro *q->q_status == '\0' || *q->q_status < *status)) 368306f25ae9SGregory Neil Shapiro { 368406f25ae9SGregory Neil Shapiro q->q_status = status; 368506f25ae9SGregory Neil Shapiro q->q_rstatus = rstatus; 368606f25ae9SGregory Neil Shapiro } 3687c2aa98e2SPeter Wemm if (rcode != EX_OK && q->q_rstatus == NULL && 3688c2aa98e2SPeter Wemm q->q_mailer != NULL && q->q_mailer->m_diagtype != NULL && 368940266059SGregory Neil Shapiro sm_strcasecmp(q->q_mailer->m_diagtype, "X-UNIX") == 0) 3690c2aa98e2SPeter Wemm { 369106f25ae9SGregory Neil Shapiro char buf[16]; 3692c2aa98e2SPeter Wemm 369340266059SGregory Neil Shapiro (void) sm_snprintf(buf, sizeof buf, "%d", rcode); 369440266059SGregory Neil Shapiro q->q_rstatus = sm_rpool_strdup_x(e->e_rpool, buf); 3695c2aa98e2SPeter Wemm } 369606f25ae9SGregory Neil Shapiro 369706f25ae9SGregory Neil Shapiro q->q_statdate = curtime(); 369806f25ae9SGregory Neil Shapiro if (CurHostName != NULL && CurHostName[0] != '\0' && 369906f25ae9SGregory Neil Shapiro mci != NULL && !bitset(M_LOCALMAILER, mci->mci_flags)) 370040266059SGregory Neil Shapiro q->q_statmta = sm_rpool_strdup_x(e->e_rpool, CurHostName); 370140266059SGregory Neil Shapiro 370240266059SGregory Neil Shapiro /* restore errno */ 370340266059SGregory Neil Shapiro errno = save_errno; 3704c2aa98e2SPeter Wemm } 370540266059SGregory Neil Shapiro /* 3706c2aa98e2SPeter Wemm ** ENDMAILER -- Wait for mailer to terminate. 3707c2aa98e2SPeter Wemm ** 3708c2aa98e2SPeter Wemm ** We should never get fatal errors (e.g., segmentation 3709c2aa98e2SPeter Wemm ** violation), so we report those specially. For other 3710c2aa98e2SPeter Wemm ** errors, we choose a status message (into statmsg), 3711c2aa98e2SPeter Wemm ** and if it represents an error, we print it. 3712c2aa98e2SPeter Wemm ** 3713c2aa98e2SPeter Wemm ** Parameters: 371413058a91SGregory Neil Shapiro ** mci -- the mailer connection info. 3715c2aa98e2SPeter Wemm ** e -- the current envelope. 3716c2aa98e2SPeter Wemm ** pv -- the parameter vector that invoked the mailer 3717c2aa98e2SPeter Wemm ** (for error messages). 3718c2aa98e2SPeter Wemm ** 3719c2aa98e2SPeter Wemm ** Returns: 3720c2aa98e2SPeter Wemm ** exit code of mailer. 3721c2aa98e2SPeter Wemm ** 3722c2aa98e2SPeter Wemm ** Side Effects: 3723c2aa98e2SPeter Wemm ** none. 3724c2aa98e2SPeter Wemm */ 3725c2aa98e2SPeter Wemm 372606f25ae9SGregory Neil Shapiro static jmp_buf EndWaitTimeout; 372706f25ae9SGregory Neil Shapiro 372806f25ae9SGregory Neil Shapiro static void 372906f25ae9SGregory Neil Shapiro endwaittimeout() 373006f25ae9SGregory Neil Shapiro { 37318774250cSGregory Neil Shapiro /* 37328774250cSGregory Neil Shapiro ** NOTE: THIS CAN BE CALLED FROM A SIGNAL HANDLER. DO NOT ADD 37338774250cSGregory Neil Shapiro ** ANYTHING TO THIS ROUTINE UNLESS YOU KNOW WHAT YOU ARE 37348774250cSGregory Neil Shapiro ** DOING. 37358774250cSGregory Neil Shapiro */ 37368774250cSGregory Neil Shapiro 373706f25ae9SGregory Neil Shapiro errno = ETIMEDOUT; 373806f25ae9SGregory Neil Shapiro longjmp(EndWaitTimeout, 1); 373906f25ae9SGregory Neil Shapiro } 374006f25ae9SGregory Neil Shapiro 3741c2aa98e2SPeter Wemm int 3742c2aa98e2SPeter Wemm endmailer(mci, e, pv) 3743c2aa98e2SPeter Wemm register MCI *mci; 3744c2aa98e2SPeter Wemm register ENVELOPE *e; 3745c2aa98e2SPeter Wemm char **pv; 3746c2aa98e2SPeter Wemm { 3747c2aa98e2SPeter Wemm int st; 374806f25ae9SGregory Neil Shapiro int save_errno = errno; 374906f25ae9SGregory Neil Shapiro char buf[MAXLINE]; 375040266059SGregory Neil Shapiro SM_EVENT *ev = NULL; 375106f25ae9SGregory Neil Shapiro 3752c2aa98e2SPeter Wemm 3753c2aa98e2SPeter Wemm mci_unlock_host(mci); 3754c2aa98e2SPeter Wemm 37558774250cSGregory Neil Shapiro /* close output to mailer */ 37568774250cSGregory Neil Shapiro if (mci->mci_out != NULL) 375740266059SGregory Neil Shapiro (void) sm_io_close(mci->mci_out, SM_TIME_DEFAULT); 37588774250cSGregory Neil Shapiro 37598774250cSGregory Neil Shapiro /* copy any remaining input to transcript */ 37608774250cSGregory Neil Shapiro if (mci->mci_in != NULL && mci->mci_state != MCIS_ERROR && 37618774250cSGregory Neil Shapiro e->e_xfp != NULL) 37628774250cSGregory Neil Shapiro { 37638774250cSGregory Neil Shapiro while (sfgets(buf, sizeof buf, mci->mci_in, 37648774250cSGregory Neil Shapiro TimeOuts.to_quit, "Draining Input") != NULL) 376540266059SGregory Neil Shapiro (void) sm_io_fputs(e->e_xfp, SM_TIME_DEFAULT, buf); 37668774250cSGregory Neil Shapiro } 37678774250cSGregory Neil Shapiro 376806f25ae9SGregory Neil Shapiro #if SASL 376940266059SGregory Neil Shapiro /* close SASL connection */ 377006f25ae9SGregory Neil Shapiro if (bitset(MCIF_AUTHACT, mci->mci_flags)) 377106f25ae9SGregory Neil Shapiro { 377206f25ae9SGregory Neil Shapiro sasl_dispose(&mci->mci_conn); 377306f25ae9SGregory Neil Shapiro mci->mci_flags &= ~MCIF_AUTHACT; 377406f25ae9SGregory Neil Shapiro } 377506f25ae9SGregory Neil Shapiro #endif /* SASL */ 377606f25ae9SGregory Neil Shapiro 377706f25ae9SGregory Neil Shapiro #if STARTTLS 377806f25ae9SGregory Neil Shapiro /* shutdown TLS */ 377906f25ae9SGregory Neil Shapiro (void) endtlsclt(mci); 378006f25ae9SGregory Neil Shapiro #endif /* STARTTLS */ 378106f25ae9SGregory Neil Shapiro 378206f25ae9SGregory Neil Shapiro /* now close the input */ 378306f25ae9SGregory Neil Shapiro if (mci->mci_in != NULL) 378440266059SGregory Neil Shapiro (void) sm_io_close(mci->mci_in, SM_TIME_DEFAULT); 3785c2aa98e2SPeter Wemm mci->mci_in = mci->mci_out = NULL; 3786c2aa98e2SPeter Wemm mci->mci_state = MCIS_CLOSED; 3787c2aa98e2SPeter Wemm 378806f25ae9SGregory Neil Shapiro errno = save_errno; 378906f25ae9SGregory Neil Shapiro 3790c2aa98e2SPeter Wemm /* in the IPC case there is nothing to wait for */ 3791c2aa98e2SPeter Wemm if (mci->mci_pid == 0) 379206f25ae9SGregory Neil Shapiro return EX_OK; 3793c2aa98e2SPeter Wemm 379406f25ae9SGregory Neil Shapiro /* put a timeout around the wait */ 379506f25ae9SGregory Neil Shapiro if (mci->mci_mailer->m_wait > 0) 379606f25ae9SGregory Neil Shapiro { 379706f25ae9SGregory Neil Shapiro if (setjmp(EndWaitTimeout) == 0) 379840266059SGregory Neil Shapiro ev = sm_setevent(mci->mci_mailer->m_wait, 379906f25ae9SGregory Neil Shapiro endwaittimeout, 0); 380006f25ae9SGregory Neil Shapiro else 380106f25ae9SGregory Neil Shapiro { 380242e5d165SGregory Neil Shapiro syserr("endmailer %s: wait timeout (%ld)", 380306f25ae9SGregory Neil Shapiro mci->mci_mailer->m_name, 380442e5d165SGregory Neil Shapiro (long) mci->mci_mailer->m_wait); 380506f25ae9SGregory Neil Shapiro return EX_TEMPFAIL; 380606f25ae9SGregory Neil Shapiro } 380706f25ae9SGregory Neil Shapiro } 3808c2aa98e2SPeter Wemm 380906f25ae9SGregory Neil Shapiro /* wait for the mailer process, collect status */ 3810c2aa98e2SPeter Wemm st = waitfor(mci->mci_pid); 381106f25ae9SGregory Neil Shapiro save_errno = errno; 381206f25ae9SGregory Neil Shapiro if (ev != NULL) 381340266059SGregory Neil Shapiro sm_clrevent(ev); 381406f25ae9SGregory Neil Shapiro errno = save_errno; 381506f25ae9SGregory Neil Shapiro 3816c2aa98e2SPeter Wemm if (st == -1) 3817c2aa98e2SPeter Wemm { 3818c2aa98e2SPeter Wemm syserr("endmailer %s: wait", mci->mci_mailer->m_name); 381906f25ae9SGregory Neil Shapiro return EX_SOFTWARE; 3820c2aa98e2SPeter Wemm } 3821c2aa98e2SPeter Wemm 3822c2aa98e2SPeter Wemm if (WIFEXITED(st)) 3823c2aa98e2SPeter Wemm { 3824c2aa98e2SPeter Wemm /* normal death -- return status */ 3825c2aa98e2SPeter Wemm return (WEXITSTATUS(st)); 3826c2aa98e2SPeter Wemm } 3827c2aa98e2SPeter Wemm 3828c2aa98e2SPeter Wemm /* it died a horrid death */ 382906f25ae9SGregory Neil Shapiro syserr("451 4.3.0 mailer %s died with signal %d%s", 383006f25ae9SGregory Neil Shapiro mci->mci_mailer->m_name, WTERMSIG(st), 383106f25ae9SGregory Neil Shapiro WCOREDUMP(st) ? " (core dumped)" : 383206f25ae9SGregory Neil Shapiro (WIFSTOPPED(st) ? " (stopped)" : "")); 3833c2aa98e2SPeter Wemm 3834c2aa98e2SPeter Wemm /* log the arguments */ 3835c2aa98e2SPeter Wemm if (pv != NULL && e->e_xfp != NULL) 3836c2aa98e2SPeter Wemm { 3837c2aa98e2SPeter Wemm register char **av; 3838c2aa98e2SPeter Wemm 383940266059SGregory Neil Shapiro (void) sm_io_fprintf(e->e_xfp, SM_TIME_DEFAULT, "Arguments:"); 3840c2aa98e2SPeter Wemm for (av = pv; *av != NULL; av++) 384140266059SGregory Neil Shapiro (void) sm_io_fprintf(e->e_xfp, SM_TIME_DEFAULT, " %s", 384240266059SGregory Neil Shapiro *av); 384340266059SGregory Neil Shapiro (void) sm_io_fprintf(e->e_xfp, SM_TIME_DEFAULT, "\n"); 3844c2aa98e2SPeter Wemm } 3845c2aa98e2SPeter Wemm 3846c2aa98e2SPeter Wemm ExitStat = EX_TEMPFAIL; 384706f25ae9SGregory Neil Shapiro return EX_TEMPFAIL; 3848c2aa98e2SPeter Wemm } 384940266059SGregory Neil Shapiro /* 3850c2aa98e2SPeter Wemm ** GIVERESPONSE -- Interpret an error response from a mailer 3851c2aa98e2SPeter Wemm ** 3852c2aa98e2SPeter Wemm ** Parameters: 385306f25ae9SGregory Neil Shapiro ** status -- the status code from the mailer (high byte 3854c2aa98e2SPeter Wemm ** only; core dumps must have been taken care of 3855c2aa98e2SPeter Wemm ** already). 385606f25ae9SGregory Neil Shapiro ** dsn -- the DSN associated with the address, if any. 3857c2aa98e2SPeter Wemm ** m -- the mailer info for this mailer. 3858c2aa98e2SPeter Wemm ** mci -- the mailer connection info -- can be NULL if the 3859c2aa98e2SPeter Wemm ** response is given before the connection is made. 3860c2aa98e2SPeter Wemm ** ctladdr -- the controlling address for the recipient 3861c2aa98e2SPeter Wemm ** address(es). 3862c2aa98e2SPeter Wemm ** xstart -- the transaction start time, for computing 3863c2aa98e2SPeter Wemm ** transaction delays. 3864c2aa98e2SPeter Wemm ** e -- the current envelope. 386540266059SGregory Neil Shapiro ** to -- the current recipient (NULL if none). 3866c2aa98e2SPeter Wemm ** 3867c2aa98e2SPeter Wemm ** Returns: 3868c2aa98e2SPeter Wemm ** none. 3869c2aa98e2SPeter Wemm ** 3870c2aa98e2SPeter Wemm ** Side Effects: 3871c2aa98e2SPeter Wemm ** Errors may be incremented. 3872c2aa98e2SPeter Wemm ** ExitStat may be set. 3873c2aa98e2SPeter Wemm */ 3874c2aa98e2SPeter Wemm 3875c2aa98e2SPeter Wemm void 387640266059SGregory Neil Shapiro giveresponse(status, dsn, m, mci, ctladdr, xstart, e, to) 387706f25ae9SGregory Neil Shapiro int status; 387806f25ae9SGregory Neil Shapiro char *dsn; 3879c2aa98e2SPeter Wemm register MAILER *m; 3880c2aa98e2SPeter Wemm register MCI *mci; 3881c2aa98e2SPeter Wemm ADDRESS *ctladdr; 3882c2aa98e2SPeter Wemm time_t xstart; 3883c2aa98e2SPeter Wemm ENVELOPE *e; 388440266059SGregory Neil Shapiro ADDRESS *to; 3885c2aa98e2SPeter Wemm { 3886c2aa98e2SPeter Wemm register const char *statmsg; 388706f25ae9SGregory Neil Shapiro int errnum = errno; 388806f25ae9SGregory Neil Shapiro int off = 4; 388940266059SGregory Neil Shapiro bool usestat = false; 389006f25ae9SGregory Neil Shapiro char dsnbuf[ENHSCLEN]; 3891c2aa98e2SPeter Wemm char buf[MAXLINE]; 389240266059SGregory Neil Shapiro char *exmsg; 3893c2aa98e2SPeter Wemm 3894c2aa98e2SPeter Wemm if (e == NULL) 3895c2aa98e2SPeter Wemm syserr("giveresponse: null envelope"); 3896c2aa98e2SPeter Wemm 3897c2aa98e2SPeter Wemm /* 3898c2aa98e2SPeter Wemm ** Compute status message from code. 3899c2aa98e2SPeter Wemm */ 3900c2aa98e2SPeter Wemm 390140266059SGregory Neil Shapiro exmsg = sm_sysexmsg(status); 390206f25ae9SGregory Neil Shapiro if (status == 0) 3903c2aa98e2SPeter Wemm { 390406f25ae9SGregory Neil Shapiro statmsg = "250 2.0.0 Sent"; 3905c2aa98e2SPeter Wemm if (e->e_statmsg != NULL) 3906c2aa98e2SPeter Wemm { 390740266059SGregory Neil Shapiro (void) sm_snprintf(buf, sizeof buf, "%s (%s)", 390806f25ae9SGregory Neil Shapiro statmsg, 390906f25ae9SGregory Neil Shapiro shortenstring(e->e_statmsg, 403)); 3910c2aa98e2SPeter Wemm statmsg = buf; 3911c2aa98e2SPeter Wemm } 3912c2aa98e2SPeter Wemm } 391340266059SGregory Neil Shapiro else if (exmsg == NULL) 3914c2aa98e2SPeter Wemm { 391540266059SGregory Neil Shapiro (void) sm_snprintf(buf, sizeof buf, 391606f25ae9SGregory Neil Shapiro "554 5.3.0 unknown mailer error %d", 391706f25ae9SGregory Neil Shapiro status); 391806f25ae9SGregory Neil Shapiro status = EX_UNAVAILABLE; 3919c2aa98e2SPeter Wemm statmsg = buf; 392040266059SGregory Neil Shapiro usestat = true; 3921c2aa98e2SPeter Wemm } 392206f25ae9SGregory Neil Shapiro else if (status == EX_TEMPFAIL) 3923c2aa98e2SPeter Wemm { 3924c2aa98e2SPeter Wemm char *bp = buf; 3925c2aa98e2SPeter Wemm 392640266059SGregory Neil Shapiro (void) sm_strlcpy(bp, exmsg + 1, SPACELEFT(buf, bp)); 3927c2aa98e2SPeter Wemm bp += strlen(bp); 3928c2aa98e2SPeter Wemm #if NAMED_BIND 3929c2aa98e2SPeter Wemm if (h_errno == TRY_AGAIN) 393040266059SGregory Neil Shapiro statmsg = sm_errstring(h_errno + E_DNSBASE); 3931c2aa98e2SPeter Wemm else 393206f25ae9SGregory Neil Shapiro #endif /* NAMED_BIND */ 3933c2aa98e2SPeter Wemm { 393406f25ae9SGregory Neil Shapiro if (errnum != 0) 393540266059SGregory Neil Shapiro statmsg = sm_errstring(errnum); 3936c2aa98e2SPeter Wemm else 3937c2aa98e2SPeter Wemm statmsg = SmtpError; 3938c2aa98e2SPeter Wemm } 3939c2aa98e2SPeter Wemm if (statmsg != NULL && statmsg[0] != '\0') 394006f25ae9SGregory Neil Shapiro { 394106f25ae9SGregory Neil Shapiro switch (errnum) 394206f25ae9SGregory Neil Shapiro { 394306f25ae9SGregory Neil Shapiro #ifdef ENETDOWN 394406f25ae9SGregory Neil Shapiro case ENETDOWN: /* Network is down */ 394506f25ae9SGregory Neil Shapiro #endif /* ENETDOWN */ 394606f25ae9SGregory Neil Shapiro #ifdef ENETUNREACH 394706f25ae9SGregory Neil Shapiro case ENETUNREACH: /* Network is unreachable */ 394806f25ae9SGregory Neil Shapiro #endif /* ENETUNREACH */ 394906f25ae9SGregory Neil Shapiro #ifdef ENETRESET 395006f25ae9SGregory Neil Shapiro case ENETRESET: /* Network dropped connection on reset */ 395106f25ae9SGregory Neil Shapiro #endif /* ENETRESET */ 395206f25ae9SGregory Neil Shapiro #ifdef ECONNABORTED 395306f25ae9SGregory Neil Shapiro case ECONNABORTED: /* Software caused connection abort */ 395406f25ae9SGregory Neil Shapiro #endif /* ECONNABORTED */ 395506f25ae9SGregory Neil Shapiro #ifdef EHOSTDOWN 395606f25ae9SGregory Neil Shapiro case EHOSTDOWN: /* Host is down */ 395706f25ae9SGregory Neil Shapiro #endif /* EHOSTDOWN */ 395806f25ae9SGregory Neil Shapiro #ifdef EHOSTUNREACH 395906f25ae9SGregory Neil Shapiro case EHOSTUNREACH: /* No route to host */ 396006f25ae9SGregory Neil Shapiro #endif /* EHOSTUNREACH */ 396106f25ae9SGregory Neil Shapiro if (mci->mci_host != NULL) 396206f25ae9SGregory Neil Shapiro { 396340266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, 396440266059SGregory Neil Shapiro SPACELEFT(buf, bp), 396540266059SGregory Neil Shapiro 2, ": ", 396640266059SGregory Neil Shapiro mci->mci_host); 396706f25ae9SGregory Neil Shapiro bp += strlen(bp); 396806f25ae9SGregory Neil Shapiro } 396906f25ae9SGregory Neil Shapiro break; 397006f25ae9SGregory Neil Shapiro } 397140266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, ": ", 397240266059SGregory Neil Shapiro statmsg); 397340266059SGregory Neil Shapiro usestat = true; 397406f25ae9SGregory Neil Shapiro } 3975c2aa98e2SPeter Wemm statmsg = buf; 3976c2aa98e2SPeter Wemm } 3977c2aa98e2SPeter Wemm #if NAMED_BIND 397806f25ae9SGregory Neil Shapiro else if (status == EX_NOHOST && h_errno != 0) 3979c2aa98e2SPeter Wemm { 398040266059SGregory Neil Shapiro statmsg = sm_errstring(h_errno + E_DNSBASE); 398140266059SGregory Neil Shapiro (void) sm_snprintf(buf, sizeof buf, "%s (%s)", exmsg + 1, 398240266059SGregory Neil Shapiro statmsg); 3983c2aa98e2SPeter Wemm statmsg = buf; 398440266059SGregory Neil Shapiro usestat = true; 3985c2aa98e2SPeter Wemm } 398606f25ae9SGregory Neil Shapiro #endif /* NAMED_BIND */ 3987c2aa98e2SPeter Wemm else 3988c2aa98e2SPeter Wemm { 398940266059SGregory Neil Shapiro statmsg = exmsg; 399006f25ae9SGregory Neil Shapiro if (*statmsg++ == ':' && errnum != 0) 3991c2aa98e2SPeter Wemm { 399240266059SGregory Neil Shapiro (void) sm_snprintf(buf, sizeof buf, "%s: %s", statmsg, 399340266059SGregory Neil Shapiro sm_errstring(errnum)); 3994c2aa98e2SPeter Wemm statmsg = buf; 399540266059SGregory Neil Shapiro usestat = true; 3996c2aa98e2SPeter Wemm } 3997605302a5SGregory Neil Shapiro else if (bitnset(M_LMTP, m->m_flags) && e->e_statmsg != NULL) 3998605302a5SGregory Neil Shapiro { 3999605302a5SGregory Neil Shapiro (void) sm_snprintf(buf, sizeof buf, "%s (%s)", statmsg, 4000605302a5SGregory Neil Shapiro shortenstring(e->e_statmsg, 403)); 4001605302a5SGregory Neil Shapiro statmsg = buf; 4002605302a5SGregory Neil Shapiro usestat = true; 4003605302a5SGregory Neil Shapiro } 4004c2aa98e2SPeter Wemm } 4005c2aa98e2SPeter Wemm 4006c2aa98e2SPeter Wemm /* 4007c2aa98e2SPeter Wemm ** Print the message as appropriate 4008c2aa98e2SPeter Wemm */ 4009c2aa98e2SPeter Wemm 401006f25ae9SGregory Neil Shapiro if (status == EX_OK || status == EX_TEMPFAIL) 4011c2aa98e2SPeter Wemm { 4012c2aa98e2SPeter Wemm extern char MsgBuf[]; 4013c2aa98e2SPeter Wemm 401406f25ae9SGregory Neil Shapiro if ((off = isenhsc(statmsg + 4, ' ')) > 0) 401506f25ae9SGregory Neil Shapiro { 401606f25ae9SGregory Neil Shapiro if (dsn == NULL) 401706f25ae9SGregory Neil Shapiro { 401840266059SGregory Neil Shapiro (void) sm_snprintf(dsnbuf, sizeof dsnbuf, 401906f25ae9SGregory Neil Shapiro "%.*s", off, statmsg + 4); 402006f25ae9SGregory Neil Shapiro dsn = dsnbuf; 402106f25ae9SGregory Neil Shapiro } 402206f25ae9SGregory Neil Shapiro off += 5; 402306f25ae9SGregory Neil Shapiro } 402406f25ae9SGregory Neil Shapiro else 402506f25ae9SGregory Neil Shapiro { 402606f25ae9SGregory Neil Shapiro off = 4; 402706f25ae9SGregory Neil Shapiro } 402806f25ae9SGregory Neil Shapiro message("%s", statmsg + off); 402906f25ae9SGregory Neil Shapiro if (status == EX_TEMPFAIL && e->e_xfp != NULL) 403040266059SGregory Neil Shapiro (void) sm_io_fprintf(e->e_xfp, SM_TIME_DEFAULT, "%s\n", 403140266059SGregory Neil Shapiro &MsgBuf[4]); 4032c2aa98e2SPeter Wemm } 4033c2aa98e2SPeter Wemm else 4034c2aa98e2SPeter Wemm { 403506f25ae9SGregory Neil Shapiro char mbuf[ENHSCLEN + 4]; 4036c2aa98e2SPeter Wemm 4037c2aa98e2SPeter Wemm Errors++; 403806f25ae9SGregory Neil Shapiro if ((off = isenhsc(statmsg + 4, ' ')) > 0 && 403906f25ae9SGregory Neil Shapiro off < sizeof mbuf - 4) 404006f25ae9SGregory Neil Shapiro { 404106f25ae9SGregory Neil Shapiro if (dsn == NULL) 404206f25ae9SGregory Neil Shapiro { 404340266059SGregory Neil Shapiro (void) sm_snprintf(dsnbuf, sizeof dsnbuf, 404406f25ae9SGregory Neil Shapiro "%.*s", off, statmsg + 4); 404506f25ae9SGregory Neil Shapiro dsn = dsnbuf; 404606f25ae9SGregory Neil Shapiro } 404706f25ae9SGregory Neil Shapiro off += 5; 404840266059SGregory Neil Shapiro 404940266059SGregory Neil Shapiro /* copy only part of statmsg to mbuf */ 405040266059SGregory Neil Shapiro (void) sm_strlcpy(mbuf, statmsg, off); 405140266059SGregory Neil Shapiro (void) sm_strlcat(mbuf, " %s", sizeof mbuf); 405206f25ae9SGregory Neil Shapiro } 405306f25ae9SGregory Neil Shapiro else 405406f25ae9SGregory Neil Shapiro { 405506f25ae9SGregory Neil Shapiro dsnbuf[0] = '\0'; 405640266059SGregory Neil Shapiro (void) sm_snprintf(mbuf, sizeof mbuf, "%.3s %%s", 405740266059SGregory Neil Shapiro statmsg); 405806f25ae9SGregory Neil Shapiro off = 4; 405906f25ae9SGregory Neil Shapiro } 406006f25ae9SGregory Neil Shapiro usrerr(mbuf, &statmsg[off]); 4061c2aa98e2SPeter Wemm } 4062c2aa98e2SPeter Wemm 4063c2aa98e2SPeter Wemm /* 4064c2aa98e2SPeter Wemm ** Final cleanup. 4065c2aa98e2SPeter Wemm ** Log a record of the transaction. Compute the new 4066c2aa98e2SPeter Wemm ** ExitStat -- if we already had an error, stick with 4067c2aa98e2SPeter Wemm ** that. 4068c2aa98e2SPeter Wemm */ 4069c2aa98e2SPeter Wemm 4070c2aa98e2SPeter Wemm if (OpMode != MD_VERIFY && !bitset(EF_VRFYONLY, e->e_flags) && 407106f25ae9SGregory Neil Shapiro LogLevel > ((status == EX_TEMPFAIL) ? 8 : (status == EX_OK) ? 7 : 6)) 407206f25ae9SGregory Neil Shapiro logdelivery(m, mci, dsn, statmsg + off, ctladdr, xstart, e); 4073c2aa98e2SPeter Wemm 4074c2aa98e2SPeter Wemm if (tTd(11, 2)) 407540266059SGregory Neil Shapiro sm_dprintf("giveresponse: status=%d, dsn=%s, e->e_message=%s, errnum=%d\n", 407606f25ae9SGregory Neil Shapiro status, 407706f25ae9SGregory Neil Shapiro dsn == NULL ? "<NULL>" : dsn, 407840266059SGregory Neil Shapiro e->e_message == NULL ? "<NULL>" : e->e_message, 407940266059SGregory Neil Shapiro errnum); 4080c2aa98e2SPeter Wemm 408106f25ae9SGregory Neil Shapiro if (status != EX_TEMPFAIL) 408206f25ae9SGregory Neil Shapiro setstat(status); 408306f25ae9SGregory Neil Shapiro if (status != EX_OK && (status != EX_TEMPFAIL || e->e_message == NULL)) 408440266059SGregory Neil Shapiro e->e_message = sm_rpool_strdup_x(e->e_rpool, statmsg + off); 408540266059SGregory Neil Shapiro if (status != EX_OK && to != NULL && to->q_message == NULL) 4086c2aa98e2SPeter Wemm { 408740266059SGregory Neil Shapiro if (!usestat && e->e_message != NULL) 408840266059SGregory Neil Shapiro to->q_message = sm_rpool_strdup_x(e->e_rpool, 408940266059SGregory Neil Shapiro e->e_message); 409040266059SGregory Neil Shapiro else 409140266059SGregory Neil Shapiro to->q_message = sm_rpool_strdup_x(e->e_rpool, 409240266059SGregory Neil Shapiro statmsg + off); 4093c2aa98e2SPeter Wemm } 4094c2aa98e2SPeter Wemm errno = 0; 4095602a2b1bSGregory Neil Shapiro SM_SET_H_ERRNO(0); 4096c2aa98e2SPeter Wemm } 409740266059SGregory Neil Shapiro /* 4098c2aa98e2SPeter Wemm ** LOGDELIVERY -- log the delivery in the system log 4099c2aa98e2SPeter Wemm ** 4100c2aa98e2SPeter Wemm ** Care is taken to avoid logging lines that are too long, because 4101c2aa98e2SPeter Wemm ** some versions of syslog have an unfortunate proclivity for core 4102c2aa98e2SPeter Wemm ** dumping. This is a hack, to be sure, that is at best empirical. 4103c2aa98e2SPeter Wemm ** 4104c2aa98e2SPeter Wemm ** Parameters: 4105c2aa98e2SPeter Wemm ** m -- the mailer info. Can be NULL for initial queue. 4106c2aa98e2SPeter Wemm ** mci -- the mailer connection info -- can be NULL if the 410706f25ae9SGregory Neil Shapiro ** log is occurring when no connection is active. 410806f25ae9SGregory Neil Shapiro ** dsn -- the DSN attached to the status. 410906f25ae9SGregory Neil Shapiro ** status -- the message to print for the status. 4110c2aa98e2SPeter Wemm ** ctladdr -- the controlling address for the to list. 4111c2aa98e2SPeter Wemm ** xstart -- the transaction start time, used for 4112c2aa98e2SPeter Wemm ** computing transaction delay. 4113c2aa98e2SPeter Wemm ** e -- the current envelope. 4114c2aa98e2SPeter Wemm ** 4115c2aa98e2SPeter Wemm ** Returns: 4116c2aa98e2SPeter Wemm ** none 4117c2aa98e2SPeter Wemm ** 4118c2aa98e2SPeter Wemm ** Side Effects: 4119c2aa98e2SPeter Wemm ** none 4120c2aa98e2SPeter Wemm */ 4121c2aa98e2SPeter Wemm 4122c2aa98e2SPeter Wemm void 412306f25ae9SGregory Neil Shapiro logdelivery(m, mci, dsn, status, ctladdr, xstart, e) 4124c2aa98e2SPeter Wemm MAILER *m; 4125c2aa98e2SPeter Wemm register MCI *mci; 412606f25ae9SGregory Neil Shapiro char *dsn; 412706f25ae9SGregory Neil Shapiro const char *status; 4128c2aa98e2SPeter Wemm ADDRESS *ctladdr; 4129c2aa98e2SPeter Wemm time_t xstart; 4130c2aa98e2SPeter Wemm register ENVELOPE *e; 4131c2aa98e2SPeter Wemm { 4132c2aa98e2SPeter Wemm register char *bp; 4133c2aa98e2SPeter Wemm register char *p; 4134c2aa98e2SPeter Wemm int l; 413540266059SGregory Neil Shapiro time_t now = curtime(); 4136c2aa98e2SPeter Wemm char buf[1024]; 4137c2aa98e2SPeter Wemm 4138c2aa98e2SPeter Wemm #if (SYSLOG_BUFSIZE) >= 256 4139c2aa98e2SPeter Wemm /* ctladdr: max 106 bytes */ 4140c2aa98e2SPeter Wemm bp = buf; 4141c2aa98e2SPeter Wemm if (ctladdr != NULL) 4142c2aa98e2SPeter Wemm { 414340266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, ", ctladdr=", 4144c2aa98e2SPeter Wemm shortenstring(ctladdr->q_paddr, 83)); 4145c2aa98e2SPeter Wemm bp += strlen(bp); 4146c2aa98e2SPeter Wemm if (bitset(QGOODUID, ctladdr->q_flags)) 4147c2aa98e2SPeter Wemm { 414840266059SGregory Neil Shapiro (void) sm_snprintf(bp, SPACELEFT(buf, bp), " (%d/%d)", 414906f25ae9SGregory Neil Shapiro (int) ctladdr->q_uid, 415006f25ae9SGregory Neil Shapiro (int) ctladdr->q_gid); 4151c2aa98e2SPeter Wemm bp += strlen(bp); 4152c2aa98e2SPeter Wemm } 4153c2aa98e2SPeter Wemm } 4154c2aa98e2SPeter Wemm 4155c2aa98e2SPeter Wemm /* delay & xdelay: max 41 bytes */ 415640266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, ", delay=", 415740266059SGregory Neil Shapiro pintvl(now - e->e_ctime, true)); 4158c2aa98e2SPeter Wemm bp += strlen(bp); 4159c2aa98e2SPeter Wemm 4160c2aa98e2SPeter Wemm if (xstart != (time_t) 0) 4161c2aa98e2SPeter Wemm { 416240266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, ", xdelay=", 416340266059SGregory Neil Shapiro pintvl(now - xstart, true)); 4164c2aa98e2SPeter Wemm bp += strlen(bp); 4165c2aa98e2SPeter Wemm } 4166c2aa98e2SPeter Wemm 4167c2aa98e2SPeter Wemm /* mailer: assume about 19 bytes (max 10 byte mailer name) */ 4168c2aa98e2SPeter Wemm if (m != NULL) 4169c2aa98e2SPeter Wemm { 417040266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, ", mailer=", 417140266059SGregory Neil Shapiro m->m_name); 4172c2aa98e2SPeter Wemm bp += strlen(bp); 4173c2aa98e2SPeter Wemm } 4174c2aa98e2SPeter Wemm 417506f25ae9SGregory Neil Shapiro /* pri: changes with each delivery attempt */ 417640266059SGregory Neil Shapiro (void) sm_snprintf(bp, SPACELEFT(buf, bp), ", pri=%ld", 417740266059SGregory Neil Shapiro e->e_msgpriority); 417806f25ae9SGregory Neil Shapiro bp += strlen(bp); 417906f25ae9SGregory Neil Shapiro 4180c2aa98e2SPeter Wemm /* relay: max 66 bytes for IPv4 addresses */ 4181c2aa98e2SPeter Wemm if (mci != NULL && mci->mci_host != NULL) 4182c2aa98e2SPeter Wemm { 4183c2aa98e2SPeter Wemm extern SOCKADDR CurHostAddr; 4184c2aa98e2SPeter Wemm 418540266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, ", relay=", 4186c2aa98e2SPeter Wemm shortenstring(mci->mci_host, 40)); 4187c2aa98e2SPeter Wemm bp += strlen(bp); 4188c2aa98e2SPeter Wemm 4189c2aa98e2SPeter Wemm if (CurHostAddr.sa.sa_family != 0) 4190c2aa98e2SPeter Wemm { 419140266059SGregory Neil Shapiro (void) sm_snprintf(bp, SPACELEFT(buf, bp), " [%s]", 4192c2aa98e2SPeter Wemm anynet_ntoa(&CurHostAddr)); 4193c2aa98e2SPeter Wemm } 4194c2aa98e2SPeter Wemm } 419540266059SGregory Neil Shapiro #if _FFR_QUARANTINE 419640266059SGregory Neil Shapiro else if (strcmp(status, "quarantined") == 0) 419740266059SGregory Neil Shapiro { 419840266059SGregory Neil Shapiro if (e->e_quarmsg != NULL) 419940266059SGregory Neil Shapiro (void) sm_snprintf(bp, SPACELEFT(buf, bp), 420040266059SGregory Neil Shapiro ", quarantine=%s", 420140266059SGregory Neil Shapiro shortenstring(e->e_quarmsg, 40)); 420240266059SGregory Neil Shapiro } 420340266059SGregory Neil Shapiro #endif /* _FFR_QUARANTINE */ 420406f25ae9SGregory Neil Shapiro else if (strcmp(status, "queued") != 0) 4205c2aa98e2SPeter Wemm { 4206c2aa98e2SPeter Wemm p = macvalue('h', e); 4207c2aa98e2SPeter Wemm if (p != NULL && p[0] != '\0') 4208c2aa98e2SPeter Wemm { 420940266059SGregory Neil Shapiro (void) sm_snprintf(bp, SPACELEFT(buf, bp), 421040266059SGregory Neil Shapiro ", relay=%s", shortenstring(p, 40)); 4211c2aa98e2SPeter Wemm } 4212c2aa98e2SPeter Wemm } 4213c2aa98e2SPeter Wemm bp += strlen(bp); 4214c2aa98e2SPeter Wemm 421506f25ae9SGregory Neil Shapiro /* dsn */ 421606f25ae9SGregory Neil Shapiro if (dsn != NULL && *dsn != '\0') 421706f25ae9SGregory Neil Shapiro { 421840266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, ", dsn=", 421906f25ae9SGregory Neil Shapiro shortenstring(dsn, ENHSCLEN)); 422006f25ae9SGregory Neil Shapiro bp += strlen(bp); 422106f25ae9SGregory Neil Shapiro } 422206f25ae9SGregory Neil Shapiro 4223c2aa98e2SPeter Wemm # define STATLEN (((SYSLOG_BUFSIZE) - 100) / 4) 4224c2aa98e2SPeter Wemm # if (STATLEN) < 63 4225c2aa98e2SPeter Wemm # undef STATLEN 4226c2aa98e2SPeter Wemm # define STATLEN 63 422706f25ae9SGregory Neil Shapiro # endif /* (STATLEN) < 63 */ 4228c2aa98e2SPeter Wemm # if (STATLEN) > 203 4229c2aa98e2SPeter Wemm # undef STATLEN 4230c2aa98e2SPeter Wemm # define STATLEN 203 423106f25ae9SGregory Neil Shapiro # endif /* (STATLEN) > 203 */ 4232c2aa98e2SPeter Wemm 4233c2aa98e2SPeter Wemm /* stat: max 210 bytes */ 4234c2aa98e2SPeter Wemm if ((bp - buf) > (sizeof buf - ((STATLEN) + 20))) 4235c2aa98e2SPeter Wemm { 4236c2aa98e2SPeter Wemm /* desperation move -- truncate data */ 4237c2aa98e2SPeter Wemm bp = buf + sizeof buf - ((STATLEN) + 17); 423840266059SGregory Neil Shapiro (void) sm_strlcpy(bp, "...", SPACELEFT(buf, bp)); 4239c2aa98e2SPeter Wemm bp += 3; 4240c2aa98e2SPeter Wemm } 4241c2aa98e2SPeter Wemm 424240266059SGregory Neil Shapiro (void) sm_strlcpy(bp, ", stat=", SPACELEFT(buf, bp)); 4243c2aa98e2SPeter Wemm bp += strlen(bp); 4244c2aa98e2SPeter Wemm 424540266059SGregory Neil Shapiro (void) sm_strlcpy(bp, shortenstring(status, STATLEN), 424640266059SGregory Neil Shapiro SPACELEFT(buf, bp)); 4247c2aa98e2SPeter Wemm 4248c2aa98e2SPeter Wemm /* id, to: max 13 + TOBUFSIZE bytes */ 4249c2aa98e2SPeter Wemm l = SYSLOG_BUFSIZE - 100 - strlen(buf); 425040266059SGregory Neil Shapiro if (l < 0) 425140266059SGregory Neil Shapiro l = 0; 425206f25ae9SGregory Neil Shapiro p = e->e_to == NULL ? "NO-TO-LIST" : e->e_to; 425340266059SGregory Neil Shapiro while (strlen(p) >= l) 4254c2aa98e2SPeter Wemm { 425506f25ae9SGregory Neil Shapiro register char *q; 4256c2aa98e2SPeter Wemm 425706f25ae9SGregory Neil Shapiro for (q = p + l; q > p; q--) 425806f25ae9SGregory Neil Shapiro { 425906f25ae9SGregory Neil Shapiro if (*q == ',') 426006f25ae9SGregory Neil Shapiro break; 426106f25ae9SGregory Neil Shapiro } 426206f25ae9SGregory Neil Shapiro if (p == q) 426306f25ae9SGregory Neil Shapiro break; 426440266059SGregory Neil Shapiro sm_syslog(LOG_INFO, e->e_id, "to=%.*s [more]%s", 426542e5d165SGregory Neil Shapiro (int) (++q - p), p, buf); 4266c2aa98e2SPeter Wemm p = q; 4267c2aa98e2SPeter Wemm } 426806f25ae9SGregory Neil Shapiro sm_syslog(LOG_INFO, e->e_id, "to=%.*s%s", l, p, buf); 4269c2aa98e2SPeter Wemm 427006f25ae9SGregory Neil Shapiro #else /* (SYSLOG_BUFSIZE) >= 256 */ 4271c2aa98e2SPeter Wemm 4272c2aa98e2SPeter Wemm l = SYSLOG_BUFSIZE - 85; 427340266059SGregory Neil Shapiro if (l < 0) 427440266059SGregory Neil Shapiro l = 0; 427506f25ae9SGregory Neil Shapiro p = e->e_to == NULL ? "NO-TO-LIST" : e->e_to; 427640266059SGregory Neil Shapiro while (strlen(p) >= l) 4277c2aa98e2SPeter Wemm { 427806f25ae9SGregory Neil Shapiro register char *q; 4279c2aa98e2SPeter Wemm 428006f25ae9SGregory Neil Shapiro for (q = p + l; q > p; q--) 428106f25ae9SGregory Neil Shapiro { 428206f25ae9SGregory Neil Shapiro if (*q == ',') 428306f25ae9SGregory Neil Shapiro break; 428406f25ae9SGregory Neil Shapiro } 428506f25ae9SGregory Neil Shapiro if (p == q) 428606f25ae9SGregory Neil Shapiro break; 428706f25ae9SGregory Neil Shapiro 428840266059SGregory Neil Shapiro sm_syslog(LOG_INFO, e->e_id, "to=%.*s [more]", 428942e5d165SGregory Neil Shapiro (int) (++q - p), p); 4290c2aa98e2SPeter Wemm p = q; 4291c2aa98e2SPeter Wemm } 429206f25ae9SGregory Neil Shapiro sm_syslog(LOG_INFO, e->e_id, "to=%.*s", l, p); 4293c2aa98e2SPeter Wemm 4294c2aa98e2SPeter Wemm if (ctladdr != NULL) 4295c2aa98e2SPeter Wemm { 4296c2aa98e2SPeter Wemm bp = buf; 429740266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, "ctladdr=", 4298c2aa98e2SPeter Wemm shortenstring(ctladdr->q_paddr, 83)); 4299c2aa98e2SPeter Wemm bp += strlen(bp); 4300c2aa98e2SPeter Wemm if (bitset(QGOODUID, ctladdr->q_flags)) 4301c2aa98e2SPeter Wemm { 430240266059SGregory Neil Shapiro (void) sm_snprintf(bp, SPACELEFT(buf, bp), " (%d/%d)", 4303c2aa98e2SPeter Wemm ctladdr->q_uid, ctladdr->q_gid); 4304c2aa98e2SPeter Wemm bp += strlen(bp); 4305c2aa98e2SPeter Wemm } 4306c2aa98e2SPeter Wemm sm_syslog(LOG_INFO, e->e_id, "%s", buf); 4307c2aa98e2SPeter Wemm } 4308c2aa98e2SPeter Wemm bp = buf; 430940266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, "delay=", 431040266059SGregory Neil Shapiro pintvl(now - e->e_ctime, true)); 4311c2aa98e2SPeter Wemm bp += strlen(bp); 4312c2aa98e2SPeter Wemm if (xstart != (time_t) 0) 4313c2aa98e2SPeter Wemm { 431440266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, ", xdelay=", 431540266059SGregory Neil Shapiro pintvl(now - xstart, true)); 4316c2aa98e2SPeter Wemm bp += strlen(bp); 4317c2aa98e2SPeter Wemm } 4318c2aa98e2SPeter Wemm 4319c2aa98e2SPeter Wemm if (m != NULL) 4320c2aa98e2SPeter Wemm { 432140266059SGregory Neil Shapiro (void) sm_strlcpyn(bp, SPACELEFT(buf, bp), 2, ", mailer=", 432240266059SGregory Neil Shapiro m->m_name); 4323c2aa98e2SPeter Wemm bp += strlen(bp); 4324c2aa98e2SPeter Wemm } 4325c2aa98e2SPeter Wemm sm_syslog(LOG_INFO, e->e_id, "%.1000s", buf); 4326c2aa98e2SPeter Wemm 4327c2aa98e2SPeter Wemm buf[0] = '\0'; 4328c2aa98e2SPeter Wemm bp = buf; 4329c2aa98e2SPeter Wemm if (mci != NULL && mci->mci_host != NULL) 4330c2aa98e2SPeter Wemm { 4331c2aa98e2SPeter Wemm extern SOCKADDR CurHostAddr; 4332c2aa98e2SPeter Wemm 433340266059SGregory Neil Shapiro (void) sm_snprintf(bp, SPACELEFT(buf, bp), "relay=%.100s", 433440266059SGregory Neil Shapiro mci->mci_host); 4335c2aa98e2SPeter Wemm bp += strlen(bp); 4336c2aa98e2SPeter Wemm 4337c2aa98e2SPeter Wemm if (CurHostAddr.sa.sa_family != 0) 433840266059SGregory Neil Shapiro (void) sm_snprintf(bp, SPACELEFT(buf, bp), 433940266059SGregory Neil Shapiro " [%.100s]", 4340c2aa98e2SPeter Wemm anynet_ntoa(&CurHostAddr)); 4341c2aa98e2SPeter Wemm } 434240266059SGregory Neil Shapiro #if _FFR_QUARANTINE 434340266059SGregory Neil Shapiro else if (strcmp(status, "quarantined") == 0) 434440266059SGregory Neil Shapiro { 434540266059SGregory Neil Shapiro if (e->e_quarmsg != NULL) 434640266059SGregory Neil Shapiro (void) sm_snprintf(bp, SPACELEFT(buf, bp), 434740266059SGregory Neil Shapiro ", quarantine=%.100s", 434840266059SGregory Neil Shapiro e->e_quarmsg); 434940266059SGregory Neil Shapiro } 435040266059SGregory Neil Shapiro #endif /* _FFR_QUARANTINE */ 435106f25ae9SGregory Neil Shapiro else if (strcmp(status, "queued") != 0) 4352c2aa98e2SPeter Wemm { 4353c2aa98e2SPeter Wemm p = macvalue('h', e); 4354c2aa98e2SPeter Wemm if (p != NULL && p[0] != '\0') 435540266059SGregory Neil Shapiro (void) sm_snprintf(buf, sizeof buf, "relay=%.100s", p); 4356c2aa98e2SPeter Wemm } 4357c2aa98e2SPeter Wemm if (buf[0] != '\0') 4358c2aa98e2SPeter Wemm sm_syslog(LOG_INFO, e->e_id, "%.1000s", buf); 4359c2aa98e2SPeter Wemm 436006f25ae9SGregory Neil Shapiro sm_syslog(LOG_INFO, e->e_id, "stat=%s", shortenstring(status, 63)); 436106f25ae9SGregory Neil Shapiro #endif /* (SYSLOG_BUFSIZE) >= 256 */ 4362c2aa98e2SPeter Wemm } 436340266059SGregory Neil Shapiro /* 4364c2aa98e2SPeter Wemm ** PUTFROMLINE -- output a UNIX-style from line (or whatever) 4365c2aa98e2SPeter Wemm ** 4366c2aa98e2SPeter Wemm ** This can be made an arbitrary message separator by changing $l 4367c2aa98e2SPeter Wemm ** 4368c2aa98e2SPeter Wemm ** One of the ugliest hacks seen by human eyes is contained herein: 4369c2aa98e2SPeter Wemm ** UUCP wants those stupid "remote from <host>" lines. Why oh why 4370c2aa98e2SPeter Wemm ** does a well-meaning programmer such as myself have to deal with 4371c2aa98e2SPeter Wemm ** this kind of antique garbage???? 4372c2aa98e2SPeter Wemm ** 4373c2aa98e2SPeter Wemm ** Parameters: 4374c2aa98e2SPeter Wemm ** mci -- the connection information. 4375c2aa98e2SPeter Wemm ** e -- the envelope. 4376c2aa98e2SPeter Wemm ** 4377c2aa98e2SPeter Wemm ** Returns: 4378c2aa98e2SPeter Wemm ** none 4379c2aa98e2SPeter Wemm ** 4380c2aa98e2SPeter Wemm ** Side Effects: 4381c2aa98e2SPeter Wemm ** outputs some text to fp. 4382c2aa98e2SPeter Wemm */ 4383c2aa98e2SPeter Wemm 4384c2aa98e2SPeter Wemm void 4385c2aa98e2SPeter Wemm putfromline(mci, e) 4386c2aa98e2SPeter Wemm register MCI *mci; 4387c2aa98e2SPeter Wemm ENVELOPE *e; 4388c2aa98e2SPeter Wemm { 4389c2aa98e2SPeter Wemm char *template = UnixFromLine; 4390c2aa98e2SPeter Wemm char buf[MAXLINE]; 4391c2aa98e2SPeter Wemm char xbuf[MAXLINE]; 4392c2aa98e2SPeter Wemm 4393c2aa98e2SPeter Wemm if (bitnset(M_NHDR, mci->mci_mailer->m_flags)) 4394c2aa98e2SPeter Wemm return; 4395c2aa98e2SPeter Wemm 4396c2aa98e2SPeter Wemm mci->mci_flags |= MCIF_INHEADER; 4397c2aa98e2SPeter Wemm 4398c2aa98e2SPeter Wemm if (bitnset(M_UGLYUUCP, mci->mci_mailer->m_flags)) 4399c2aa98e2SPeter Wemm { 4400c2aa98e2SPeter Wemm char *bang; 4401c2aa98e2SPeter Wemm 4402c2aa98e2SPeter Wemm expand("\201g", buf, sizeof buf, e); 4403c2aa98e2SPeter Wemm bang = strchr(buf, '!'); 4404c2aa98e2SPeter Wemm if (bang == NULL) 4405c2aa98e2SPeter Wemm { 4406c2aa98e2SPeter Wemm char *at; 4407c2aa98e2SPeter Wemm char hname[MAXNAME]; 4408c2aa98e2SPeter Wemm 4409c2aa98e2SPeter Wemm /* 4410c2aa98e2SPeter Wemm ** If we can construct a UUCP path, do so 4411c2aa98e2SPeter Wemm */ 4412c2aa98e2SPeter Wemm 4413c2aa98e2SPeter Wemm at = strrchr(buf, '@'); 4414c2aa98e2SPeter Wemm if (at == NULL) 4415c2aa98e2SPeter Wemm { 4416c2aa98e2SPeter Wemm expand("\201k", hname, sizeof hname, e); 4417c2aa98e2SPeter Wemm at = hname; 4418c2aa98e2SPeter Wemm } 4419c2aa98e2SPeter Wemm else 4420c2aa98e2SPeter Wemm *at++ = '\0'; 442140266059SGregory Neil Shapiro (void) sm_snprintf(xbuf, sizeof xbuf, 4422c2aa98e2SPeter Wemm "From %.800s \201d remote from %.100s\n", 4423c2aa98e2SPeter Wemm buf, at); 4424c2aa98e2SPeter Wemm } 4425c2aa98e2SPeter Wemm else 4426c2aa98e2SPeter Wemm { 4427c2aa98e2SPeter Wemm *bang++ = '\0'; 442840266059SGregory Neil Shapiro (void) sm_snprintf(xbuf, sizeof xbuf, 4429c2aa98e2SPeter Wemm "From %.800s \201d remote from %.100s\n", 4430c2aa98e2SPeter Wemm bang, buf); 4431c2aa98e2SPeter Wemm template = xbuf; 4432c2aa98e2SPeter Wemm } 4433c2aa98e2SPeter Wemm } 4434c2aa98e2SPeter Wemm expand(template, buf, sizeof buf, e); 4435c2aa98e2SPeter Wemm putxline(buf, strlen(buf), mci, PXLF_HEADER); 4436c2aa98e2SPeter Wemm } 443740266059SGregory Neil Shapiro /* 4438c2aa98e2SPeter Wemm ** PUTBODY -- put the body of a message. 4439c2aa98e2SPeter Wemm ** 4440c2aa98e2SPeter Wemm ** Parameters: 4441c2aa98e2SPeter Wemm ** mci -- the connection information. 4442c2aa98e2SPeter Wemm ** e -- the envelope to put out. 4443c2aa98e2SPeter Wemm ** separator -- if non-NULL, a message separator that must 4444c2aa98e2SPeter Wemm ** not be permitted in the resulting message. 4445c2aa98e2SPeter Wemm ** 4446c2aa98e2SPeter Wemm ** Returns: 4447c2aa98e2SPeter Wemm ** none. 4448c2aa98e2SPeter Wemm ** 4449c2aa98e2SPeter Wemm ** Side Effects: 4450c2aa98e2SPeter Wemm ** The message is written onto fp. 4451c2aa98e2SPeter Wemm */ 4452c2aa98e2SPeter Wemm 4453c2aa98e2SPeter Wemm /* values for output state variable */ 4454c2aa98e2SPeter Wemm #define OS_HEAD 0 /* at beginning of line */ 4455c2aa98e2SPeter Wemm #define OS_CR 1 /* read a carriage return */ 4456c2aa98e2SPeter Wemm #define OS_INLINE 2 /* putting rest of line */ 4457c2aa98e2SPeter Wemm 4458c2aa98e2SPeter Wemm void 4459c2aa98e2SPeter Wemm putbody(mci, e, separator) 4460c2aa98e2SPeter Wemm register MCI *mci; 4461c2aa98e2SPeter Wemm register ENVELOPE *e; 4462c2aa98e2SPeter Wemm char *separator; 4463c2aa98e2SPeter Wemm { 446440266059SGregory Neil Shapiro bool dead = false; 4465c2aa98e2SPeter Wemm char buf[MAXLINE]; 446640266059SGregory Neil Shapiro #if MIME8TO7 4467065a643dSPeter Wemm char *boundaries[MAXMIMENESTING + 1]; 446840266059SGregory Neil Shapiro #endif /* MIME8TO7 */ 4469c2aa98e2SPeter Wemm 4470c2aa98e2SPeter Wemm /* 4471c2aa98e2SPeter Wemm ** Output the body of the message 4472c2aa98e2SPeter Wemm */ 4473c2aa98e2SPeter Wemm 4474c2aa98e2SPeter Wemm if (e->e_dfp == NULL && bitset(EF_HAS_DF, e->e_flags)) 4475c2aa98e2SPeter Wemm { 447640266059SGregory Neil Shapiro char *df = queuename(e, DATAFL_LETTER); 4477c2aa98e2SPeter Wemm 447840266059SGregory Neil Shapiro e->e_dfp = sm_io_open(SmFtStdio, SM_TIME_DEFAULT, df, 4479a7ec597cSGregory Neil Shapiro SM_IO_RDONLY_B, NULL); 4480c2aa98e2SPeter Wemm if (e->e_dfp == NULL) 448106f25ae9SGregory Neil Shapiro { 448206f25ae9SGregory Neil Shapiro char *msg = "!putbody: Cannot open %s for %s from %s"; 448306f25ae9SGregory Neil Shapiro 448406f25ae9SGregory Neil Shapiro if (errno == ENOENT) 448506f25ae9SGregory Neil Shapiro msg++; 448606f25ae9SGregory Neil Shapiro syserr(msg, df, e->e_to, e->e_from.q_paddr); 448706f25ae9SGregory Neil Shapiro } 448840266059SGregory Neil Shapiro 4489c2aa98e2SPeter Wemm } 4490c2aa98e2SPeter Wemm if (e->e_dfp == NULL) 4491c2aa98e2SPeter Wemm { 4492c2aa98e2SPeter Wemm if (bitset(MCIF_INHEADER, mci->mci_flags)) 4493c2aa98e2SPeter Wemm { 4494c2aa98e2SPeter Wemm putline("", mci); 4495c2aa98e2SPeter Wemm mci->mci_flags &= ~MCIF_INHEADER; 4496c2aa98e2SPeter Wemm } 4497c2aa98e2SPeter Wemm putline("<<< No Message Collected >>>", mci); 4498c2aa98e2SPeter Wemm goto endofmessage; 4499c2aa98e2SPeter Wemm } 450006f25ae9SGregory Neil Shapiro 4501c2aa98e2SPeter Wemm if (e->e_dfino == (ino_t) 0) 4502c2aa98e2SPeter Wemm { 4503c2aa98e2SPeter Wemm struct stat stbuf; 4504c2aa98e2SPeter Wemm 450540266059SGregory Neil Shapiro if (fstat(sm_io_getinfo(e->e_dfp, SM_IO_WHAT_FD, NULL), &stbuf) 450640266059SGregory Neil Shapiro < 0) 4507c2aa98e2SPeter Wemm e->e_dfino = -1; 4508c2aa98e2SPeter Wemm else 4509c2aa98e2SPeter Wemm { 4510c2aa98e2SPeter Wemm e->e_dfdev = stbuf.st_dev; 4511c2aa98e2SPeter Wemm e->e_dfino = stbuf.st_ino; 4512c2aa98e2SPeter Wemm } 4513c2aa98e2SPeter Wemm } 451406f25ae9SGregory Neil Shapiro 451540266059SGregory Neil Shapiro /* paranoia: the data file should always be in a rewound state */ 451606f25ae9SGregory Neil Shapiro (void) bfrewind(e->e_dfp); 4517c2aa98e2SPeter Wemm 4518c2aa98e2SPeter Wemm #if MIME8TO7 4519c2aa98e2SPeter Wemm if (bitset(MCIF_CVT8TO7, mci->mci_flags)) 4520c2aa98e2SPeter Wemm { 4521c2aa98e2SPeter Wemm /* 4522c2aa98e2SPeter Wemm ** Do 8 to 7 bit MIME conversion. 4523c2aa98e2SPeter Wemm */ 4524c2aa98e2SPeter Wemm 4525c2aa98e2SPeter Wemm /* make sure it looks like a MIME message */ 4526c2aa98e2SPeter Wemm if (hvalue("MIME-Version", e->e_header) == NULL) 4527c2aa98e2SPeter Wemm putline("MIME-Version: 1.0", mci); 4528c2aa98e2SPeter Wemm 4529c2aa98e2SPeter Wemm if (hvalue("Content-Type", e->e_header) == NULL) 4530c2aa98e2SPeter Wemm { 453140266059SGregory Neil Shapiro (void) sm_snprintf(buf, sizeof buf, 4532c2aa98e2SPeter Wemm "Content-Type: text/plain; charset=%s", 4533c2aa98e2SPeter Wemm defcharset(e)); 4534c2aa98e2SPeter Wemm putline(buf, mci); 4535c2aa98e2SPeter Wemm } 4536c2aa98e2SPeter Wemm 4537c2aa98e2SPeter Wemm /* now do the hard work */ 4538c2aa98e2SPeter Wemm boundaries[0] = NULL; 4539c2aa98e2SPeter Wemm mci->mci_flags |= MCIF_INHEADER; 454006f25ae9SGregory Neil Shapiro (void) mime8to7(mci, e->e_header, e, boundaries, M87F_OUTER); 4541c2aa98e2SPeter Wemm } 4542c2aa98e2SPeter Wemm # if MIME7TO8 4543c2aa98e2SPeter Wemm else if (bitset(MCIF_CVT7TO8, mci->mci_flags)) 4544c2aa98e2SPeter Wemm { 454506f25ae9SGregory Neil Shapiro (void) mime7to8(mci, e->e_header, e); 4546c2aa98e2SPeter Wemm } 454706f25ae9SGregory Neil Shapiro # endif /* MIME7TO8 */ 4548065a643dSPeter Wemm else if (MaxMimeHeaderLength > 0 || MaxMimeFieldLength > 0) 4549065a643dSPeter Wemm { 455006f25ae9SGregory Neil Shapiro bool oldsuprerrs = SuprErrs; 455106f25ae9SGregory Neil Shapiro 4552065a643dSPeter Wemm /* Use mime8to7 to check multipart for MIME header overflows */ 4553065a643dSPeter Wemm boundaries[0] = NULL; 4554065a643dSPeter Wemm mci->mci_flags |= MCIF_INHEADER; 455506f25ae9SGregory Neil Shapiro 455606f25ae9SGregory Neil Shapiro /* 455706f25ae9SGregory Neil Shapiro ** If EF_DONT_MIME is set, we have a broken MIME message 455806f25ae9SGregory Neil Shapiro ** and don't want to generate a new bounce message whose 455906f25ae9SGregory Neil Shapiro ** body propagates the broken MIME. We can't just not call 456006f25ae9SGregory Neil Shapiro ** mime8to7() as is done above since we need the security 456106f25ae9SGregory Neil Shapiro ** checks. The best we can do is suppress the errors. 456206f25ae9SGregory Neil Shapiro */ 456306f25ae9SGregory Neil Shapiro 456406f25ae9SGregory Neil Shapiro if (bitset(EF_DONT_MIME, e->e_flags)) 456540266059SGregory Neil Shapiro SuprErrs = true; 456606f25ae9SGregory Neil Shapiro 456706f25ae9SGregory Neil Shapiro (void) mime8to7(mci, e->e_header, e, boundaries, 456806f25ae9SGregory Neil Shapiro M87F_OUTER|M87F_NO8TO7); 456906f25ae9SGregory Neil Shapiro 457006f25ae9SGregory Neil Shapiro /* restore SuprErrs */ 457106f25ae9SGregory Neil Shapiro SuprErrs = oldsuprerrs; 4572065a643dSPeter Wemm } 4573c2aa98e2SPeter Wemm else 457406f25ae9SGregory Neil Shapiro #endif /* MIME8TO7 */ 4575c2aa98e2SPeter Wemm { 4576c2aa98e2SPeter Wemm int ostate; 4577c2aa98e2SPeter Wemm register char *bp; 4578c2aa98e2SPeter Wemm register char *pbp; 4579c2aa98e2SPeter Wemm register int c; 4580c2aa98e2SPeter Wemm register char *xp; 4581c2aa98e2SPeter Wemm int padc; 4582c2aa98e2SPeter Wemm char *buflim; 4583c2aa98e2SPeter Wemm int pos = 0; 458406f25ae9SGregory Neil Shapiro char peekbuf[12]; 4585c2aa98e2SPeter Wemm 4586c2aa98e2SPeter Wemm if (bitset(MCIF_INHEADER, mci->mci_flags)) 4587c2aa98e2SPeter Wemm { 4588c2aa98e2SPeter Wemm putline("", mci); 4589c2aa98e2SPeter Wemm mci->mci_flags &= ~MCIF_INHEADER; 4590c2aa98e2SPeter Wemm } 4591c2aa98e2SPeter Wemm 4592c2aa98e2SPeter Wemm /* determine end of buffer; allow for short mailer lines */ 4593c2aa98e2SPeter Wemm buflim = &buf[sizeof buf - 1]; 4594c2aa98e2SPeter Wemm if (mci->mci_mailer->m_linelimit > 0 && 4595c2aa98e2SPeter Wemm mci->mci_mailer->m_linelimit < sizeof buf - 1) 4596c2aa98e2SPeter Wemm buflim = &buf[mci->mci_mailer->m_linelimit - 1]; 4597c2aa98e2SPeter Wemm 4598c2aa98e2SPeter Wemm /* copy temp file to output with mapping */ 4599c2aa98e2SPeter Wemm ostate = OS_HEAD; 4600c2aa98e2SPeter Wemm bp = buf; 4601c2aa98e2SPeter Wemm pbp = peekbuf; 460240266059SGregory Neil Shapiro while (!sm_io_error(mci->mci_out) && !dead) 4603c2aa98e2SPeter Wemm { 4604c2aa98e2SPeter Wemm if (pbp > peekbuf) 4605c2aa98e2SPeter Wemm c = *--pbp; 460640266059SGregory Neil Shapiro else if ((c = sm_io_getc(e->e_dfp, SM_TIME_DEFAULT)) 460740266059SGregory Neil Shapiro == SM_IO_EOF) 4608c2aa98e2SPeter Wemm break; 4609c2aa98e2SPeter Wemm if (bitset(MCIF_7BIT, mci->mci_flags)) 4610c2aa98e2SPeter Wemm c &= 0x7f; 4611c2aa98e2SPeter Wemm switch (ostate) 4612c2aa98e2SPeter Wemm { 4613c2aa98e2SPeter Wemm case OS_HEAD: 4614c2aa98e2SPeter Wemm if (c == '\0' && 461540266059SGregory Neil Shapiro bitnset(M_NONULLS, 461640266059SGregory Neil Shapiro mci->mci_mailer->m_flags)) 4617c2aa98e2SPeter Wemm break; 4618c2aa98e2SPeter Wemm if (c != '\r' && c != '\n' && bp < buflim) 4619c2aa98e2SPeter Wemm { 4620c2aa98e2SPeter Wemm *bp++ = c; 4621c2aa98e2SPeter Wemm break; 4622c2aa98e2SPeter Wemm } 4623c2aa98e2SPeter Wemm 4624c2aa98e2SPeter Wemm /* check beginning of line for special cases */ 4625c2aa98e2SPeter Wemm *bp = '\0'; 4626c2aa98e2SPeter Wemm pos = 0; 462740266059SGregory Neil Shapiro padc = SM_IO_EOF; 4628c2aa98e2SPeter Wemm if (buf[0] == 'F' && 462940266059SGregory Neil Shapiro bitnset(M_ESCFROM, mci->mci_mailer->m_flags) 463040266059SGregory Neil Shapiro && strncmp(buf, "From ", 5) == 0) 4631c2aa98e2SPeter Wemm { 4632c2aa98e2SPeter Wemm padc = '>'; 4633c2aa98e2SPeter Wemm } 4634c2aa98e2SPeter Wemm if (buf[0] == '-' && buf[1] == '-' && 4635c2aa98e2SPeter Wemm separator != NULL) 4636c2aa98e2SPeter Wemm { 4637c2aa98e2SPeter Wemm /* possible separator */ 4638c2aa98e2SPeter Wemm int sl = strlen(separator); 4639c2aa98e2SPeter Wemm 464040266059SGregory Neil Shapiro if (strncmp(&buf[2], separator, sl) 464140266059SGregory Neil Shapiro == 0) 4642c2aa98e2SPeter Wemm padc = ' '; 4643c2aa98e2SPeter Wemm } 4644c2aa98e2SPeter Wemm if (buf[0] == '.' && 4645c2aa98e2SPeter Wemm bitnset(M_XDOT, mci->mci_mailer->m_flags)) 4646c2aa98e2SPeter Wemm { 4647c2aa98e2SPeter Wemm padc = '.'; 4648c2aa98e2SPeter Wemm } 4649c2aa98e2SPeter Wemm 4650c2aa98e2SPeter Wemm /* now copy out saved line */ 4651c2aa98e2SPeter Wemm if (TrafficLogFile != NULL) 4652c2aa98e2SPeter Wemm { 465340266059SGregory Neil Shapiro (void) sm_io_fprintf(TrafficLogFile, 465440266059SGregory Neil Shapiro SM_TIME_DEFAULT, 465540266059SGregory Neil Shapiro "%05d >>> ", 465640266059SGregory Neil Shapiro (int) CurrentPid); 465740266059SGregory Neil Shapiro if (padc != SM_IO_EOF) 465840266059SGregory Neil Shapiro (void) sm_io_putc(TrafficLogFile, 465940266059SGregory Neil Shapiro SM_TIME_DEFAULT, 466040266059SGregory Neil Shapiro padc); 4661c2aa98e2SPeter Wemm for (xp = buf; xp < bp; xp++) 466240266059SGregory Neil Shapiro (void) sm_io_putc(TrafficLogFile, 466340266059SGregory Neil Shapiro SM_TIME_DEFAULT, 466440266059SGregory Neil Shapiro (unsigned char) *xp); 4665c2aa98e2SPeter Wemm if (c == '\n') 466640266059SGregory Neil Shapiro (void) sm_io_fputs(TrafficLogFile, 466740266059SGregory Neil Shapiro SM_TIME_DEFAULT, 466840266059SGregory Neil Shapiro mci->mci_mailer->m_eol); 4669c2aa98e2SPeter Wemm } 467040266059SGregory Neil Shapiro if (padc != SM_IO_EOF) 4671c2aa98e2SPeter Wemm { 467240266059SGregory Neil Shapiro if (sm_io_putc(mci->mci_out, 467340266059SGregory Neil Shapiro SM_TIME_DEFAULT, padc) 467440266059SGregory Neil Shapiro == SM_IO_EOF) 467506f25ae9SGregory Neil Shapiro { 467640266059SGregory Neil Shapiro dead = true; 467706f25ae9SGregory Neil Shapiro continue; 467806f25ae9SGregory Neil Shapiro } 4679193538b7SGregory Neil Shapiro else 4680193538b7SGregory Neil Shapiro { 4681193538b7SGregory Neil Shapiro /* record progress for DATA timeout */ 468240266059SGregory Neil Shapiro DataProgress = true; 4683193538b7SGregory Neil Shapiro } 4684c2aa98e2SPeter Wemm pos++; 4685c2aa98e2SPeter Wemm } 4686c2aa98e2SPeter Wemm for (xp = buf; xp < bp; xp++) 4687c2aa98e2SPeter Wemm { 468840266059SGregory Neil Shapiro if (sm_io_putc(mci->mci_out, 468940266059SGregory Neil Shapiro SM_TIME_DEFAULT, 469040266059SGregory Neil Shapiro (unsigned char) *xp) 469140266059SGregory Neil Shapiro == SM_IO_EOF) 469206f25ae9SGregory Neil Shapiro { 469340266059SGregory Neil Shapiro dead = true; 469406f25ae9SGregory Neil Shapiro break; 4695c2aa98e2SPeter Wemm } 4696193538b7SGregory Neil Shapiro else 4697193538b7SGregory Neil Shapiro { 469806f25ae9SGregory Neil Shapiro /* record progress for DATA timeout */ 469940266059SGregory Neil Shapiro DataProgress = true; 470006f25ae9SGregory Neil Shapiro } 4701193538b7SGregory Neil Shapiro } 470206f25ae9SGregory Neil Shapiro if (dead) 470306f25ae9SGregory Neil Shapiro continue; 4704c2aa98e2SPeter Wemm if (c == '\n') 4705c2aa98e2SPeter Wemm { 470640266059SGregory Neil Shapiro if (sm_io_fputs(mci->mci_out, 470740266059SGregory Neil Shapiro SM_TIME_DEFAULT, 470840266059SGregory Neil Shapiro mci->mci_mailer->m_eol) 470940266059SGregory Neil Shapiro == SM_IO_EOF) 471006f25ae9SGregory Neil Shapiro break; 4711193538b7SGregory Neil Shapiro else 4712193538b7SGregory Neil Shapiro { 4713193538b7SGregory Neil Shapiro /* record progress for DATA timeout */ 471440266059SGregory Neil Shapiro DataProgress = true; 4715193538b7SGregory Neil Shapiro } 4716c2aa98e2SPeter Wemm pos = 0; 4717c2aa98e2SPeter Wemm } 4718c2aa98e2SPeter Wemm else 4719c2aa98e2SPeter Wemm { 4720c2aa98e2SPeter Wemm pos += bp - buf; 4721c2aa98e2SPeter Wemm if (c != '\r') 47225ef517c0SGregory Neil Shapiro { 47235ef517c0SGregory Neil Shapiro SM_ASSERT(pbp < peekbuf + 47245ef517c0SGregory Neil Shapiro sizeof(peekbuf)); 4725c2aa98e2SPeter Wemm *pbp++ = c; 4726c2aa98e2SPeter Wemm } 47275ef517c0SGregory Neil Shapiro } 472806f25ae9SGregory Neil Shapiro 4729c2aa98e2SPeter Wemm bp = buf; 4730c2aa98e2SPeter Wemm 4731c2aa98e2SPeter Wemm /* determine next state */ 4732c2aa98e2SPeter Wemm if (c == '\n') 4733c2aa98e2SPeter Wemm ostate = OS_HEAD; 4734c2aa98e2SPeter Wemm else if (c == '\r') 4735c2aa98e2SPeter Wemm ostate = OS_CR; 4736c2aa98e2SPeter Wemm else 4737c2aa98e2SPeter Wemm ostate = OS_INLINE; 4738c2aa98e2SPeter Wemm continue; 4739c2aa98e2SPeter Wemm 4740c2aa98e2SPeter Wemm case OS_CR: 4741c2aa98e2SPeter Wemm if (c == '\n') 4742c2aa98e2SPeter Wemm { 4743c2aa98e2SPeter Wemm /* got CRLF */ 474440266059SGregory Neil Shapiro if (sm_io_fputs(mci->mci_out, 474540266059SGregory Neil Shapiro SM_TIME_DEFAULT, 474640266059SGregory Neil Shapiro mci->mci_mailer->m_eol) 474740266059SGregory Neil Shapiro == SM_IO_EOF) 474806f25ae9SGregory Neil Shapiro continue; 4749193538b7SGregory Neil Shapiro else 4750193538b7SGregory Neil Shapiro { 475106f25ae9SGregory Neil Shapiro /* record progress for DATA timeout */ 475240266059SGregory Neil Shapiro DataProgress = true; 4753193538b7SGregory Neil Shapiro } 475406f25ae9SGregory Neil Shapiro 4755c2aa98e2SPeter Wemm if (TrafficLogFile != NULL) 4756c2aa98e2SPeter Wemm { 475740266059SGregory Neil Shapiro (void) sm_io_fputs(TrafficLogFile, 475840266059SGregory Neil Shapiro SM_TIME_DEFAULT, 475940266059SGregory Neil Shapiro mci->mci_mailer->m_eol); 4760c2aa98e2SPeter Wemm } 4761c2aa98e2SPeter Wemm ostate = OS_HEAD; 4762c2aa98e2SPeter Wemm continue; 4763c2aa98e2SPeter Wemm } 4764c2aa98e2SPeter Wemm 4765c2aa98e2SPeter Wemm /* had a naked carriage return */ 47665ef517c0SGregory Neil Shapiro SM_ASSERT(pbp < peekbuf + sizeof(peekbuf)); 4767c2aa98e2SPeter Wemm *pbp++ = c; 4768c2aa98e2SPeter Wemm c = '\r'; 4769c2aa98e2SPeter Wemm ostate = OS_INLINE; 4770c2aa98e2SPeter Wemm goto putch; 4771c2aa98e2SPeter Wemm 4772c2aa98e2SPeter Wemm case OS_INLINE: 4773c2aa98e2SPeter Wemm if (c == '\r') 4774c2aa98e2SPeter Wemm { 4775c2aa98e2SPeter Wemm ostate = OS_CR; 4776c2aa98e2SPeter Wemm continue; 4777c2aa98e2SPeter Wemm } 4778c2aa98e2SPeter Wemm if (c == '\0' && 477940266059SGregory Neil Shapiro bitnset(M_NONULLS, 478040266059SGregory Neil Shapiro mci->mci_mailer->m_flags)) 4781c2aa98e2SPeter Wemm break; 4782c2aa98e2SPeter Wemm putch: 4783c2aa98e2SPeter Wemm if (mci->mci_mailer->m_linelimit > 0 && 478406f25ae9SGregory Neil Shapiro pos >= mci->mci_mailer->m_linelimit - 1 && 4785c2aa98e2SPeter Wemm c != '\n') 4786c2aa98e2SPeter Wemm { 478706f25ae9SGregory Neil Shapiro int d; 478806f25ae9SGregory Neil Shapiro 478906f25ae9SGregory Neil Shapiro /* check next character for EOL */ 479006f25ae9SGregory Neil Shapiro if (pbp > peekbuf) 479106f25ae9SGregory Neil Shapiro d = *(pbp - 1); 479240266059SGregory Neil Shapiro else if ((d = sm_io_getc(e->e_dfp, 479340266059SGregory Neil Shapiro SM_TIME_DEFAULT)) 479440266059SGregory Neil Shapiro != SM_IO_EOF) 47955ef517c0SGregory Neil Shapiro { 47965ef517c0SGregory Neil Shapiro SM_ASSERT(pbp < peekbuf + 47975ef517c0SGregory Neil Shapiro sizeof(peekbuf)); 479806f25ae9SGregory Neil Shapiro *pbp++ = d; 47995ef517c0SGregory Neil Shapiro } 480006f25ae9SGregory Neil Shapiro 480140266059SGregory Neil Shapiro if (d == '\n' || d == SM_IO_EOF) 480206f25ae9SGregory Neil Shapiro { 480306f25ae9SGregory Neil Shapiro if (TrafficLogFile != NULL) 480440266059SGregory Neil Shapiro (void) sm_io_putc(TrafficLogFile, 480540266059SGregory Neil Shapiro SM_TIME_DEFAULT, 480640266059SGregory Neil Shapiro (unsigned char) c); 480740266059SGregory Neil Shapiro if (sm_io_putc(mci->mci_out, 480840266059SGregory Neil Shapiro SM_TIME_DEFAULT, 480940266059SGregory Neil Shapiro (unsigned char) c) 481040266059SGregory Neil Shapiro == SM_IO_EOF) 481106f25ae9SGregory Neil Shapiro { 481240266059SGregory Neil Shapiro dead = true; 481306f25ae9SGregory Neil Shapiro continue; 481406f25ae9SGregory Neil Shapiro } 4815193538b7SGregory Neil Shapiro else 4816193538b7SGregory Neil Shapiro { 4817193538b7SGregory Neil Shapiro /* record progress for DATA timeout */ 481840266059SGregory Neil Shapiro DataProgress = true; 4819193538b7SGregory Neil Shapiro } 482006f25ae9SGregory Neil Shapiro pos++; 482106f25ae9SGregory Neil Shapiro continue; 482206f25ae9SGregory Neil Shapiro } 482306f25ae9SGregory Neil Shapiro 482440266059SGregory Neil Shapiro if (sm_io_putc(mci->mci_out, 482540266059SGregory Neil Shapiro SM_TIME_DEFAULT, '!') 482640266059SGregory Neil Shapiro == SM_IO_EOF || 482740266059SGregory Neil Shapiro sm_io_fputs(mci->mci_out, 482840266059SGregory Neil Shapiro SM_TIME_DEFAULT, 482940266059SGregory Neil Shapiro mci->mci_mailer->m_eol) 483040266059SGregory Neil Shapiro == SM_IO_EOF) 483106f25ae9SGregory Neil Shapiro { 483240266059SGregory Neil Shapiro dead = true; 483306f25ae9SGregory Neil Shapiro continue; 483406f25ae9SGregory Neil Shapiro } 4835193538b7SGregory Neil Shapiro else 4836193538b7SGregory Neil Shapiro { 483706f25ae9SGregory Neil Shapiro /* record progress for DATA timeout */ 483840266059SGregory Neil Shapiro DataProgress = true; 4839193538b7SGregory Neil Shapiro } 484006f25ae9SGregory Neil Shapiro 4841c2aa98e2SPeter Wemm if (TrafficLogFile != NULL) 4842c2aa98e2SPeter Wemm { 484340266059SGregory Neil Shapiro (void) sm_io_fprintf(TrafficLogFile, 484440266059SGregory Neil Shapiro SM_TIME_DEFAULT, 484540266059SGregory Neil Shapiro "!%s", 4846c2aa98e2SPeter Wemm mci->mci_mailer->m_eol); 4847c2aa98e2SPeter Wemm } 4848c2aa98e2SPeter Wemm ostate = OS_HEAD; 48495ef517c0SGregory Neil Shapiro SM_ASSERT(pbp < peekbuf + 48505ef517c0SGregory Neil Shapiro sizeof(peekbuf)); 4851c2aa98e2SPeter Wemm *pbp++ = c; 4852c2aa98e2SPeter Wemm continue; 4853c2aa98e2SPeter Wemm } 4854c2aa98e2SPeter Wemm if (c == '\n') 4855c2aa98e2SPeter Wemm { 4856c2aa98e2SPeter Wemm if (TrafficLogFile != NULL) 485740266059SGregory Neil Shapiro (void) sm_io_fputs(TrafficLogFile, 485840266059SGregory Neil Shapiro SM_TIME_DEFAULT, 485940266059SGregory Neil Shapiro mci->mci_mailer->m_eol); 486040266059SGregory Neil Shapiro if (sm_io_fputs(mci->mci_out, 486140266059SGregory Neil Shapiro SM_TIME_DEFAULT, 486240266059SGregory Neil Shapiro mci->mci_mailer->m_eol) 486340266059SGregory Neil Shapiro == SM_IO_EOF) 486406f25ae9SGregory Neil Shapiro continue; 4865193538b7SGregory Neil Shapiro else 4866193538b7SGregory Neil Shapiro { 4867193538b7SGregory Neil Shapiro /* record progress for DATA timeout */ 486840266059SGregory Neil Shapiro DataProgress = true; 4869193538b7SGregory Neil Shapiro } 4870c2aa98e2SPeter Wemm pos = 0; 4871c2aa98e2SPeter Wemm ostate = OS_HEAD; 4872c2aa98e2SPeter Wemm } 4873c2aa98e2SPeter Wemm else 4874c2aa98e2SPeter Wemm { 4875c2aa98e2SPeter Wemm if (TrafficLogFile != NULL) 487640266059SGregory Neil Shapiro (void) sm_io_putc(TrafficLogFile, 487740266059SGregory Neil Shapiro SM_TIME_DEFAULT, 487840266059SGregory Neil Shapiro (unsigned char) c); 487940266059SGregory Neil Shapiro if (sm_io_putc(mci->mci_out, 488040266059SGregory Neil Shapiro SM_TIME_DEFAULT, 488140266059SGregory Neil Shapiro (unsigned char) c) 488240266059SGregory Neil Shapiro == SM_IO_EOF) 488306f25ae9SGregory Neil Shapiro { 488440266059SGregory Neil Shapiro dead = true; 488506f25ae9SGregory Neil Shapiro continue; 488606f25ae9SGregory Neil Shapiro } 4887193538b7SGregory Neil Shapiro else 4888193538b7SGregory Neil Shapiro { 4889193538b7SGregory Neil Shapiro /* record progress for DATA timeout */ 489040266059SGregory Neil Shapiro DataProgress = true; 4891193538b7SGregory Neil Shapiro } 4892c2aa98e2SPeter Wemm pos++; 4893c2aa98e2SPeter Wemm ostate = OS_INLINE; 4894c2aa98e2SPeter Wemm } 4895c2aa98e2SPeter Wemm break; 4896c2aa98e2SPeter Wemm } 4897c2aa98e2SPeter Wemm } 4898c2aa98e2SPeter Wemm 4899c2aa98e2SPeter Wemm /* make sure we are at the beginning of a line */ 4900c2aa98e2SPeter Wemm if (bp > buf) 4901c2aa98e2SPeter Wemm { 4902c2aa98e2SPeter Wemm if (TrafficLogFile != NULL) 4903c2aa98e2SPeter Wemm { 4904c2aa98e2SPeter Wemm for (xp = buf; xp < bp; xp++) 490540266059SGregory Neil Shapiro (void) sm_io_putc(TrafficLogFile, 490640266059SGregory Neil Shapiro SM_TIME_DEFAULT, 490740266059SGregory Neil Shapiro (unsigned char) *xp); 4908c2aa98e2SPeter Wemm } 4909c2aa98e2SPeter Wemm for (xp = buf; xp < bp; xp++) 4910c2aa98e2SPeter Wemm { 491140266059SGregory Neil Shapiro if (sm_io_putc(mci->mci_out, SM_TIME_DEFAULT, 491240266059SGregory Neil Shapiro (unsigned char) *xp) 491340266059SGregory Neil Shapiro == SM_IO_EOF) 491406f25ae9SGregory Neil Shapiro { 491540266059SGregory Neil Shapiro dead = true; 491606f25ae9SGregory Neil Shapiro break; 491706f25ae9SGregory Neil Shapiro } 4918193538b7SGregory Neil Shapiro else 4919193538b7SGregory Neil Shapiro { 492006f25ae9SGregory Neil Shapiro /* record progress for DATA timeout */ 492140266059SGregory Neil Shapiro DataProgress = true; 4922c2aa98e2SPeter Wemm } 4923193538b7SGregory Neil Shapiro } 4924c2aa98e2SPeter Wemm pos += bp - buf; 4925c2aa98e2SPeter Wemm } 492606f25ae9SGregory Neil Shapiro if (!dead && pos > 0) 4927c2aa98e2SPeter Wemm { 4928c2aa98e2SPeter Wemm if (TrafficLogFile != NULL) 492940266059SGregory Neil Shapiro (void) sm_io_fputs(TrafficLogFile, 493040266059SGregory Neil Shapiro SM_TIME_DEFAULT, 493140266059SGregory Neil Shapiro mci->mci_mailer->m_eol); 493240266059SGregory Neil Shapiro (void) sm_io_fputs(mci->mci_out, SM_TIME_DEFAULT, 493340266059SGregory Neil Shapiro mci->mci_mailer->m_eol); 493406f25ae9SGregory Neil Shapiro 493506f25ae9SGregory Neil Shapiro /* record progress for DATA timeout */ 493640266059SGregory Neil Shapiro DataProgress = true; 4937c2aa98e2SPeter Wemm } 4938c2aa98e2SPeter Wemm } 4939c2aa98e2SPeter Wemm 494040266059SGregory Neil Shapiro if (sm_io_error(e->e_dfp)) 4941c2aa98e2SPeter Wemm { 494240266059SGregory Neil Shapiro syserr("putbody: %s/%cf%s: read error", 494340266059SGregory Neil Shapiro qid_printqueue(e->e_dfqgrp, e->e_dfqdir), 494440266059SGregory Neil Shapiro DATAFL_LETTER, e->e_id); 4945c2aa98e2SPeter Wemm ExitStat = EX_IOERR; 4946c2aa98e2SPeter Wemm } 4947c2aa98e2SPeter Wemm 4948c2aa98e2SPeter Wemm endofmessage: 494906f25ae9SGregory Neil Shapiro /* 495006f25ae9SGregory Neil Shapiro ** Since mailfile() uses e_dfp in a child process, 495106f25ae9SGregory Neil Shapiro ** the file offset in the stdio library for the 495206f25ae9SGregory Neil Shapiro ** parent process will not agree with the in-kernel 495306f25ae9SGregory Neil Shapiro ** file offset since the file descriptor is shared 495406f25ae9SGregory Neil Shapiro ** between the processes. Therefore, it is vital 495506f25ae9SGregory Neil Shapiro ** that the file always be rewound. This forces the 495606f25ae9SGregory Neil Shapiro ** kernel offset (lseek) and stdio library (ftell) 495706f25ae9SGregory Neil Shapiro ** offset to match. 495806f25ae9SGregory Neil Shapiro */ 495906f25ae9SGregory Neil Shapiro 496006f25ae9SGregory Neil Shapiro if (e->e_dfp != NULL) 496106f25ae9SGregory Neil Shapiro (void) bfrewind(e->e_dfp); 496206f25ae9SGregory Neil Shapiro 4963c2aa98e2SPeter Wemm /* some mailers want extra blank line at end of message */ 496406f25ae9SGregory Neil Shapiro if (!dead && bitnset(M_BLANKEND, mci->mci_mailer->m_flags) && 4965c2aa98e2SPeter Wemm buf[0] != '\0' && buf[0] != '\n') 4966c2aa98e2SPeter Wemm putline("", mci); 4967c2aa98e2SPeter Wemm 496840266059SGregory Neil Shapiro (void) sm_io_flush(mci->mci_out, SM_TIME_DEFAULT); 496940266059SGregory Neil Shapiro if (sm_io_error(mci->mci_out) && errno != EPIPE) 4970c2aa98e2SPeter Wemm { 4971c2aa98e2SPeter Wemm syserr("putbody: write error"); 4972c2aa98e2SPeter Wemm ExitStat = EX_IOERR; 4973c2aa98e2SPeter Wemm } 497406f25ae9SGregory Neil Shapiro 4975c2aa98e2SPeter Wemm errno = 0; 4976c2aa98e2SPeter Wemm } 497740266059SGregory Neil Shapiro /* 4978c2aa98e2SPeter Wemm ** MAILFILE -- Send a message to a file. 4979c2aa98e2SPeter Wemm ** 498040266059SGregory Neil Shapiro ** If the file has the set-user-ID/set-group-ID bits set, but NO 498140266059SGregory Neil Shapiro ** execute bits, sendmail will try to become the owner of that file 4982c2aa98e2SPeter Wemm ** rather than the real user. Obviously, this only works if 4983c2aa98e2SPeter Wemm ** sendmail runs as root. 4984c2aa98e2SPeter Wemm ** 4985c2aa98e2SPeter Wemm ** This could be done as a subordinate mailer, except that it 4986c2aa98e2SPeter Wemm ** is used implicitly to save messages in ~/dead.letter. We 4987c2aa98e2SPeter Wemm ** view this as being sufficiently important as to include it 4988c2aa98e2SPeter Wemm ** here. For example, if the system is dying, we shouldn't have 4989c2aa98e2SPeter Wemm ** to create another process plus some pipes to save the message. 4990c2aa98e2SPeter Wemm ** 4991c2aa98e2SPeter Wemm ** Parameters: 4992c2aa98e2SPeter Wemm ** filename -- the name of the file to send to. 4993c2aa98e2SPeter Wemm ** mailer -- mailer definition for recipient -- if NULL, 4994c2aa98e2SPeter Wemm ** use FileMailer. 4995c2aa98e2SPeter Wemm ** ctladdr -- the controlling address header -- includes 4996c2aa98e2SPeter Wemm ** the userid/groupid to be when sending. 4997c2aa98e2SPeter Wemm ** sfflags -- flags for opening. 4998c2aa98e2SPeter Wemm ** e -- the current envelope. 4999c2aa98e2SPeter Wemm ** 5000c2aa98e2SPeter Wemm ** Returns: 5001c2aa98e2SPeter Wemm ** The exit code associated with the operation. 5002c2aa98e2SPeter Wemm ** 5003c2aa98e2SPeter Wemm ** Side Effects: 5004c2aa98e2SPeter Wemm ** none. 5005c2aa98e2SPeter Wemm */ 5006c2aa98e2SPeter Wemm 500740266059SGregory Neil Shapiro # define RETURN(st) exit(st); 500840266059SGregory Neil Shapiro 5009c2aa98e2SPeter Wemm static jmp_buf CtxMailfileTimeout; 5010c2aa98e2SPeter Wemm 5011c2aa98e2SPeter Wemm int 5012c2aa98e2SPeter Wemm mailfile(filename, mailer, ctladdr, sfflags, e) 5013c2aa98e2SPeter Wemm char *volatile filename; 5014c2aa98e2SPeter Wemm MAILER *volatile mailer; 5015c2aa98e2SPeter Wemm ADDRESS *ctladdr; 501606f25ae9SGregory Neil Shapiro volatile long sfflags; 5017c2aa98e2SPeter Wemm register ENVELOPE *e; 5018c2aa98e2SPeter Wemm { 501940266059SGregory Neil Shapiro register SM_FILE_T *f; 5020c2aa98e2SPeter Wemm register pid_t pid = -1; 502106f25ae9SGregory Neil Shapiro volatile int mode; 502206f25ae9SGregory Neil Shapiro int len; 502306f25ae9SGregory Neil Shapiro off_t curoff; 5024c2aa98e2SPeter Wemm bool suidwarn = geteuid() == 0; 5025c2aa98e2SPeter Wemm char *p; 502606f25ae9SGregory Neil Shapiro char *volatile realfile; 502740266059SGregory Neil Shapiro SM_EVENT *ev; 502894c01205SGregory Neil Shapiro char buf[MAXPATHLEN]; 502994c01205SGregory Neil Shapiro char targetfile[MAXPATHLEN]; 5030c2aa98e2SPeter Wemm 5031c2aa98e2SPeter Wemm if (tTd(11, 1)) 5032c2aa98e2SPeter Wemm { 503340266059SGregory Neil Shapiro sm_dprintf("mailfile %s\n ctladdr=", filename); 503440266059SGregory Neil Shapiro printaddr(ctladdr, false); 5035c2aa98e2SPeter Wemm } 5036c2aa98e2SPeter Wemm 5037c2aa98e2SPeter Wemm if (mailer == NULL) 5038c2aa98e2SPeter Wemm mailer = FileMailer; 5039c2aa98e2SPeter Wemm 5040c2aa98e2SPeter Wemm if (e->e_xfp != NULL) 504140266059SGregory Neil Shapiro (void) sm_io_flush(e->e_xfp, SM_TIME_DEFAULT); 5042c2aa98e2SPeter Wemm 5043c2aa98e2SPeter Wemm /* 5044c2aa98e2SPeter Wemm ** Special case /dev/null. This allows us to restrict file 5045c2aa98e2SPeter Wemm ** delivery to regular files only. 5046c2aa98e2SPeter Wemm */ 5047c2aa98e2SPeter Wemm 504840266059SGregory Neil Shapiro if (sm_path_isdevnull(filename)) 5049c2aa98e2SPeter Wemm return EX_OK; 5050c2aa98e2SPeter Wemm 5051c2aa98e2SPeter Wemm /* check for 8-bit available */ 5052c2aa98e2SPeter Wemm if (bitset(EF_HAS8BIT, e->e_flags) && 5053c2aa98e2SPeter Wemm bitnset(M_7BITS, mailer->m_flags) && 5054c2aa98e2SPeter Wemm (bitset(EF_DONT_MIME, e->e_flags) || 5055c2aa98e2SPeter Wemm !(bitset(MM_MIME8BIT, MimeMode) || 5056c2aa98e2SPeter Wemm (bitset(EF_IS_MIME, e->e_flags) && 5057c2aa98e2SPeter Wemm bitset(MM_CVTMIME, MimeMode))))) 5058c2aa98e2SPeter Wemm { 5059c2aa98e2SPeter Wemm e->e_status = "5.6.3"; 506006f25ae9SGregory Neil Shapiro usrerrenh(e->e_status, 506106f25ae9SGregory Neil Shapiro "554 Cannot send 8-bit data to 7-bit destination"); 506240266059SGregory Neil Shapiro errno = 0; 506306f25ae9SGregory Neil Shapiro return EX_DATAERR; 506406f25ae9SGregory Neil Shapiro } 506506f25ae9SGregory Neil Shapiro 506606f25ae9SGregory Neil Shapiro /* Find the actual file */ 506706f25ae9SGregory Neil Shapiro if (SafeFileEnv != NULL && SafeFileEnv[0] != '\0') 506806f25ae9SGregory Neil Shapiro { 506906f25ae9SGregory Neil Shapiro len = strlen(SafeFileEnv); 507006f25ae9SGregory Neil Shapiro 507106f25ae9SGregory Neil Shapiro if (strncmp(SafeFileEnv, filename, len) == 0) 507206f25ae9SGregory Neil Shapiro filename += len; 507306f25ae9SGregory Neil Shapiro 507440266059SGregory Neil Shapiro if (len + strlen(filename) + 1 >= sizeof targetfile) 507506f25ae9SGregory Neil Shapiro { 507606f25ae9SGregory Neil Shapiro syserr("mailfile: filename too long (%s/%s)", 507706f25ae9SGregory Neil Shapiro SafeFileEnv, filename); 507806f25ae9SGregory Neil Shapiro return EX_CANTCREAT; 507906f25ae9SGregory Neil Shapiro } 508040266059SGregory Neil Shapiro (void) sm_strlcpy(targetfile, SafeFileEnv, sizeof targetfile); 508106f25ae9SGregory Neil Shapiro realfile = targetfile + len; 508206f25ae9SGregory Neil Shapiro if (*filename == '/') 508306f25ae9SGregory Neil Shapiro filename++; 5084605302a5SGregory Neil Shapiro if (*filename != '\0') 5085605302a5SGregory Neil Shapiro { 5086605302a5SGregory Neil Shapiro /* paranoia: trailing / should be removed in readcf */ 5087605302a5SGregory Neil Shapiro if (targetfile[len - 1] != '/') 5088605302a5SGregory Neil Shapiro (void) sm_strlcat(targetfile, 5089605302a5SGregory Neil Shapiro "/", sizeof targetfile); 5090605302a5SGregory Neil Shapiro (void) sm_strlcat(targetfile, filename, 5091605302a5SGregory Neil Shapiro sizeof targetfile); 5092605302a5SGregory Neil Shapiro } 509306f25ae9SGregory Neil Shapiro } 509406f25ae9SGregory Neil Shapiro else if (mailer->m_rootdir != NULL) 509506f25ae9SGregory Neil Shapiro { 509606f25ae9SGregory Neil Shapiro expand(mailer->m_rootdir, targetfile, sizeof targetfile, e); 509706f25ae9SGregory Neil Shapiro len = strlen(targetfile); 509806f25ae9SGregory Neil Shapiro 509906f25ae9SGregory Neil Shapiro if (strncmp(targetfile, filename, len) == 0) 510006f25ae9SGregory Neil Shapiro filename += len; 510106f25ae9SGregory Neil Shapiro 510240266059SGregory Neil Shapiro if (len + strlen(filename) + 1 >= sizeof targetfile) 510306f25ae9SGregory Neil Shapiro { 510406f25ae9SGregory Neil Shapiro syserr("mailfile: filename too long (%s/%s)", 510506f25ae9SGregory Neil Shapiro targetfile, filename); 510606f25ae9SGregory Neil Shapiro return EX_CANTCREAT; 510706f25ae9SGregory Neil Shapiro } 510806f25ae9SGregory Neil Shapiro realfile = targetfile + len; 510906f25ae9SGregory Neil Shapiro if (targetfile[len - 1] != '/') 511040266059SGregory Neil Shapiro (void) sm_strlcat(targetfile, "/", sizeof targetfile); 511106f25ae9SGregory Neil Shapiro if (*filename == '/') 511240266059SGregory Neil Shapiro (void) sm_strlcat(targetfile, filename + 1, 511306f25ae9SGregory Neil Shapiro sizeof targetfile); 511406f25ae9SGregory Neil Shapiro else 511540266059SGregory Neil Shapiro (void) sm_strlcat(targetfile, filename, 511640266059SGregory Neil Shapiro sizeof targetfile); 511706f25ae9SGregory Neil Shapiro } 511806f25ae9SGregory Neil Shapiro else 511906f25ae9SGregory Neil Shapiro { 512040266059SGregory Neil Shapiro if (sm_strlcpy(targetfile, filename, sizeof targetfile) >= 512140266059SGregory Neil Shapiro sizeof targetfile) 512206f25ae9SGregory Neil Shapiro { 512306f25ae9SGregory Neil Shapiro syserr("mailfile: filename too long (%s)", filename); 512406f25ae9SGregory Neil Shapiro return EX_CANTCREAT; 512506f25ae9SGregory Neil Shapiro } 512606f25ae9SGregory Neil Shapiro realfile = targetfile; 5127c2aa98e2SPeter Wemm } 5128c2aa98e2SPeter Wemm 5129c2aa98e2SPeter Wemm /* 5130c2aa98e2SPeter Wemm ** Fork so we can change permissions here. 5131c2aa98e2SPeter Wemm ** Note that we MUST use fork, not vfork, because of 5132c2aa98e2SPeter Wemm ** the complications of calling subroutines, etc. 5133c2aa98e2SPeter Wemm */ 5134c2aa98e2SPeter Wemm 5135605302a5SGregory Neil Shapiro 5136605302a5SGregory Neil Shapiro /* 5137605302a5SGregory Neil Shapiro ** Dispose of SIGCHLD signal catchers that may be laying 5138605302a5SGregory Neil Shapiro ** around so that the waitfor() below will get it. 5139605302a5SGregory Neil Shapiro */ 5140605302a5SGregory Neil Shapiro 5141605302a5SGregory Neil Shapiro (void) sm_signal(SIGCHLD, SIG_DFL); 5142605302a5SGregory Neil Shapiro 5143c2aa98e2SPeter Wemm DOFORK(fork); 5144c2aa98e2SPeter Wemm 5145c2aa98e2SPeter Wemm if (pid < 0) 514606f25ae9SGregory Neil Shapiro return EX_OSERR; 5147c2aa98e2SPeter Wemm else if (pid == 0) 5148c2aa98e2SPeter Wemm { 5149c2aa98e2SPeter Wemm /* child -- actually write to file */ 5150c2aa98e2SPeter Wemm struct stat stb; 5151c2aa98e2SPeter Wemm MCI mcibuf; 5152065a643dSPeter Wemm int err; 5153c2aa98e2SPeter Wemm volatile int oflags = O_WRONLY|O_APPEND; 5154c2aa98e2SPeter Wemm 51558774250cSGregory Neil Shapiro /* Reset global flags */ 51568774250cSGregory Neil Shapiro RestartRequest = NULL; 515740266059SGregory Neil Shapiro RestartWorkGroup = false; 51588774250cSGregory Neil Shapiro ShutdownRequest = NULL; 51598774250cSGregory Neil Shapiro PendingSignal = 0; 516040266059SGregory Neil Shapiro CurrentPid = getpid(); 51618774250cSGregory Neil Shapiro 5162c2aa98e2SPeter Wemm if (e->e_lockfp != NULL) 516340266059SGregory Neil Shapiro (void) close(sm_io_getinfo(e->e_lockfp, SM_IO_WHAT_FD, 516440266059SGregory Neil Shapiro NULL)); 5165c2aa98e2SPeter Wemm 516640266059SGregory Neil Shapiro (void) sm_signal(SIGINT, SIG_DFL); 516740266059SGregory Neil Shapiro (void) sm_signal(SIGHUP, SIG_DFL); 516840266059SGregory Neil Shapiro (void) sm_signal(SIGTERM, SIG_DFL); 5169c2aa98e2SPeter Wemm (void) umask(OldUmask); 5170c2aa98e2SPeter Wemm e->e_to = filename; 5171c2aa98e2SPeter Wemm ExitStat = EX_OK; 5172c2aa98e2SPeter Wemm 5173c2aa98e2SPeter Wemm if (setjmp(CtxMailfileTimeout) != 0) 5174c2aa98e2SPeter Wemm { 517540266059SGregory Neil Shapiro RETURN(EX_TEMPFAIL); 5176c2aa98e2SPeter Wemm } 5177c2aa98e2SPeter Wemm 5178c2aa98e2SPeter Wemm if (TimeOuts.to_fileopen > 0) 517940266059SGregory Neil Shapiro ev = sm_setevent(TimeOuts.to_fileopen, mailfiletimeout, 518040266059SGregory Neil Shapiro 0); 5181c2aa98e2SPeter Wemm else 5182c2aa98e2SPeter Wemm ev = NULL; 5183c2aa98e2SPeter Wemm 518440266059SGregory Neil Shapiro /* check file mode to see if set-user-ID */ 518506f25ae9SGregory Neil Shapiro if (stat(targetfile, &stb) < 0) 5186c2aa98e2SPeter Wemm mode = FileMode; 518706f25ae9SGregory Neil Shapiro else 5188c2aa98e2SPeter Wemm mode = stb.st_mode; 5189c2aa98e2SPeter Wemm 5190c2aa98e2SPeter Wemm /* limit the errors to those actually caused in the child */ 5191c2aa98e2SPeter Wemm errno = 0; 5192c2aa98e2SPeter Wemm ExitStat = EX_OK; 5193c2aa98e2SPeter Wemm 519406f25ae9SGregory Neil Shapiro /* Allow alias expansions to use the S_IS{U,G}ID bits */ 519506f25ae9SGregory Neil Shapiro if ((ctladdr != NULL && !bitset(QALIAS, ctladdr->q_flags)) || 519606f25ae9SGregory Neil Shapiro bitset(SFF_RUNASREALUID, sfflags)) 5197c2aa98e2SPeter Wemm { 519840266059SGregory Neil Shapiro /* ignore set-user-ID and set-group-ID bits */ 5199c2aa98e2SPeter Wemm mode &= ~(S_ISGID|S_ISUID); 520006f25ae9SGregory Neil Shapiro if (tTd(11, 20)) 520140266059SGregory Neil Shapiro sm_dprintf("mailfile: ignoring set-user-ID/set-group-ID bits\n"); 5202c2aa98e2SPeter Wemm } 5203c2aa98e2SPeter Wemm 520440266059SGregory Neil Shapiro /* we have to open the data file BEFORE setuid() */ 5205c2aa98e2SPeter Wemm if (e->e_dfp == NULL && bitset(EF_HAS_DF, e->e_flags)) 5206c2aa98e2SPeter Wemm { 520740266059SGregory Neil Shapiro char *df = queuename(e, DATAFL_LETTER); 5208c2aa98e2SPeter Wemm 520940266059SGregory Neil Shapiro e->e_dfp = sm_io_open(SmFtStdio, SM_TIME_DEFAULT, df, 5210a7ec597cSGregory Neil Shapiro SM_IO_RDONLY_B, NULL); 5211c2aa98e2SPeter Wemm if (e->e_dfp == NULL) 5212c2aa98e2SPeter Wemm { 5213c2aa98e2SPeter Wemm syserr("mailfile: Cannot open %s for %s from %s", 5214c2aa98e2SPeter Wemm df, e->e_to, e->e_from.q_paddr); 5215c2aa98e2SPeter Wemm } 5216c2aa98e2SPeter Wemm } 5217c2aa98e2SPeter Wemm 5218c2aa98e2SPeter Wemm /* select a new user to run as */ 5219c2aa98e2SPeter Wemm if (!bitset(SFF_RUNASREALUID, sfflags)) 5220c2aa98e2SPeter Wemm { 5221c2aa98e2SPeter Wemm if (bitnset(M_SPECIFIC_UID, mailer->m_flags)) 5222c2aa98e2SPeter Wemm { 5223c2aa98e2SPeter Wemm RealUserName = NULL; 5224c2aa98e2SPeter Wemm RealUid = mailer->m_uid; 522506f25ae9SGregory Neil Shapiro if (RunAsUid != 0 && RealUid != RunAsUid) 522606f25ae9SGregory Neil Shapiro { 522706f25ae9SGregory Neil Shapiro /* Only root can change the uid */ 522840266059SGregory Neil Shapiro syserr("mailfile: insufficient privileges to change uid, RunAsUid=%d, RealUid=%d", 522940266059SGregory Neil Shapiro (int) RunAsUid, (int) RealUid); 523040266059SGregory Neil Shapiro RETURN(EX_TEMPFAIL); 523106f25ae9SGregory Neil Shapiro } 5232c2aa98e2SPeter Wemm } 5233c2aa98e2SPeter Wemm else if (bitset(S_ISUID, mode)) 5234c2aa98e2SPeter Wemm { 5235c2aa98e2SPeter Wemm RealUserName = NULL; 5236c2aa98e2SPeter Wemm RealUid = stb.st_uid; 5237c2aa98e2SPeter Wemm } 5238c2aa98e2SPeter Wemm else if (ctladdr != NULL && ctladdr->q_uid != 0) 5239c2aa98e2SPeter Wemm { 5240c2aa98e2SPeter Wemm if (ctladdr->q_ruser != NULL) 5241c2aa98e2SPeter Wemm RealUserName = ctladdr->q_ruser; 5242c2aa98e2SPeter Wemm else 5243c2aa98e2SPeter Wemm RealUserName = ctladdr->q_user; 5244c2aa98e2SPeter Wemm RealUid = ctladdr->q_uid; 5245c2aa98e2SPeter Wemm } 5246c2aa98e2SPeter Wemm else if (mailer != NULL && mailer->m_uid != 0) 5247c2aa98e2SPeter Wemm { 5248c2aa98e2SPeter Wemm RealUserName = DefUser; 5249c2aa98e2SPeter Wemm RealUid = mailer->m_uid; 5250c2aa98e2SPeter Wemm } 5251c2aa98e2SPeter Wemm else 5252c2aa98e2SPeter Wemm { 5253c2aa98e2SPeter Wemm RealUserName = DefUser; 5254c2aa98e2SPeter Wemm RealUid = DefUid; 5255c2aa98e2SPeter Wemm } 5256c2aa98e2SPeter Wemm 5257c2aa98e2SPeter Wemm /* select a new group to run as */ 5258c2aa98e2SPeter Wemm if (bitnset(M_SPECIFIC_UID, mailer->m_flags)) 525906f25ae9SGregory Neil Shapiro { 5260c2aa98e2SPeter Wemm RealGid = mailer->m_gid; 526106f25ae9SGregory Neil Shapiro if (RunAsUid != 0 && 526206f25ae9SGregory Neil Shapiro (RealGid != getgid() || 526306f25ae9SGregory Neil Shapiro RealGid != getegid())) 526406f25ae9SGregory Neil Shapiro { 526506f25ae9SGregory Neil Shapiro /* Only root can change the gid */ 526640266059SGregory Neil Shapiro syserr("mailfile: insufficient privileges to change gid, RealGid=%d, RunAsUid=%d, gid=%d, egid=%d", 526740266059SGregory Neil Shapiro (int) RealGid, (int) RunAsUid, 526840266059SGregory Neil Shapiro (int) getgid(), (int) getegid()); 526940266059SGregory Neil Shapiro RETURN(EX_TEMPFAIL); 527006f25ae9SGregory Neil Shapiro } 527106f25ae9SGregory Neil Shapiro } 5272c2aa98e2SPeter Wemm else if (bitset(S_ISGID, mode)) 5273c2aa98e2SPeter Wemm RealGid = stb.st_gid; 527406f25ae9SGregory Neil Shapiro else if (ctladdr != NULL && 527506f25ae9SGregory Neil Shapiro ctladdr->q_uid == DefUid && 527606f25ae9SGregory Neil Shapiro ctladdr->q_gid == 0) 5277193538b7SGregory Neil Shapiro { 5278193538b7SGregory Neil Shapiro /* 5279193538b7SGregory Neil Shapiro ** Special case: This means it is an 5280193538b7SGregory Neil Shapiro ** alias and we should act as DefaultUser. 5281193538b7SGregory Neil Shapiro ** See alias()'s comments. 5282193538b7SGregory Neil Shapiro */ 5283193538b7SGregory Neil Shapiro 528406f25ae9SGregory Neil Shapiro RealGid = DefGid; 5285193538b7SGregory Neil Shapiro RealUserName = DefUser; 5286193538b7SGregory Neil Shapiro } 5287193538b7SGregory Neil Shapiro else if (ctladdr != NULL && ctladdr->q_uid != 0) 5288193538b7SGregory Neil Shapiro RealGid = ctladdr->q_gid; 5289c2aa98e2SPeter Wemm else if (mailer != NULL && mailer->m_gid != 0) 5290c2aa98e2SPeter Wemm RealGid = mailer->m_gid; 5291c2aa98e2SPeter Wemm else 5292c2aa98e2SPeter Wemm RealGid = DefGid; 5293c2aa98e2SPeter Wemm } 5294c2aa98e2SPeter Wemm 5295c2aa98e2SPeter Wemm /* last ditch */ 5296c2aa98e2SPeter Wemm if (!bitset(SFF_ROOTOK, sfflags)) 5297c2aa98e2SPeter Wemm { 5298c2aa98e2SPeter Wemm if (RealUid == 0) 5299c2aa98e2SPeter Wemm RealUid = DefUid; 5300c2aa98e2SPeter Wemm if (RealGid == 0) 5301c2aa98e2SPeter Wemm RealGid = DefGid; 5302c2aa98e2SPeter Wemm } 5303c2aa98e2SPeter Wemm 5304c2aa98e2SPeter Wemm /* set group id list (needs /etc/group access) */ 5305c2aa98e2SPeter Wemm if (RealUserName != NULL && !DontInitGroups) 5306c2aa98e2SPeter Wemm { 5307c2aa98e2SPeter Wemm if (initgroups(RealUserName, RealGid) == -1 && suidwarn) 530806f25ae9SGregory Neil Shapiro { 5309c2aa98e2SPeter Wemm syserr("mailfile: initgroups(%s, %d) failed", 5310c2aa98e2SPeter Wemm RealUserName, RealGid); 531140266059SGregory Neil Shapiro RETURN(EX_TEMPFAIL); 531206f25ae9SGregory Neil Shapiro } 5313c2aa98e2SPeter Wemm } 5314c2aa98e2SPeter Wemm else 5315c2aa98e2SPeter Wemm { 5316c2aa98e2SPeter Wemm GIDSET_T gidset[1]; 5317c2aa98e2SPeter Wemm 5318c2aa98e2SPeter Wemm gidset[0] = RealGid; 5319c2aa98e2SPeter Wemm if (setgroups(1, gidset) == -1 && suidwarn) 532006f25ae9SGregory Neil Shapiro { 5321c2aa98e2SPeter Wemm syserr("mailfile: setgroups() failed"); 532240266059SGregory Neil Shapiro RETURN(EX_TEMPFAIL); 532306f25ae9SGregory Neil Shapiro } 5324c2aa98e2SPeter Wemm } 5325c2aa98e2SPeter Wemm 532606f25ae9SGregory Neil Shapiro /* 532706f25ae9SGregory Neil Shapiro ** If you have a safe environment, go into it. 532806f25ae9SGregory Neil Shapiro */ 5329c2aa98e2SPeter Wemm 533006f25ae9SGregory Neil Shapiro if (realfile != targetfile) 533106f25ae9SGregory Neil Shapiro { 5332605302a5SGregory Neil Shapiro char save; 5333605302a5SGregory Neil Shapiro 5334605302a5SGregory Neil Shapiro save = *realfile; 533506f25ae9SGregory Neil Shapiro *realfile = '\0'; 533606f25ae9SGregory Neil Shapiro if (tTd(11, 20)) 533740266059SGregory Neil Shapiro sm_dprintf("mailfile: chroot %s\n", targetfile); 533806f25ae9SGregory Neil Shapiro if (chroot(targetfile) < 0) 5339c2aa98e2SPeter Wemm { 5340c2aa98e2SPeter Wemm syserr("mailfile: Cannot chroot(%s)", 534106f25ae9SGregory Neil Shapiro targetfile); 534240266059SGregory Neil Shapiro RETURN(EX_CANTCREAT); 5343c2aa98e2SPeter Wemm } 5344605302a5SGregory Neil Shapiro *realfile = save; 5345c2aa98e2SPeter Wemm } 534606f25ae9SGregory Neil Shapiro 534706f25ae9SGregory Neil Shapiro if (tTd(11, 40)) 534840266059SGregory Neil Shapiro sm_dprintf("mailfile: deliver to %s\n", realfile); 534906f25ae9SGregory Neil Shapiro 5350c2aa98e2SPeter Wemm if (chdir("/") < 0) 535106f25ae9SGregory Neil Shapiro { 5352c2aa98e2SPeter Wemm syserr("mailfile: cannot chdir(/)"); 535340266059SGregory Neil Shapiro RETURN(EX_CANTCREAT); 535406f25ae9SGregory Neil Shapiro } 5355c2aa98e2SPeter Wemm 5356c2aa98e2SPeter Wemm /* now reset the group and user ids */ 5357c2aa98e2SPeter Wemm endpwent(); 535840266059SGregory Neil Shapiro sm_mbdb_terminate(); 5359c2aa98e2SPeter Wemm if (setgid(RealGid) < 0 && suidwarn) 536006f25ae9SGregory Neil Shapiro { 5361c2aa98e2SPeter Wemm syserr("mailfile: setgid(%ld) failed", (long) RealGid); 536240266059SGregory Neil Shapiro RETURN(EX_TEMPFAIL); 536306f25ae9SGregory Neil Shapiro } 5364c2aa98e2SPeter Wemm vendor_set_uid(RealUid); 5365c2aa98e2SPeter Wemm if (setuid(RealUid) < 0 && suidwarn) 536606f25ae9SGregory Neil Shapiro { 5367c2aa98e2SPeter Wemm syserr("mailfile: setuid(%ld) failed", (long) RealUid); 536840266059SGregory Neil Shapiro RETURN(EX_TEMPFAIL); 536906f25ae9SGregory Neil Shapiro } 537006f25ae9SGregory Neil Shapiro 537106f25ae9SGregory Neil Shapiro if (tTd(11, 2)) 537240266059SGregory Neil Shapiro sm_dprintf("mailfile: running as r/euid=%d/%d, r/egid=%d/%d\n", 537306f25ae9SGregory Neil Shapiro (int) getuid(), (int) geteuid(), 537406f25ae9SGregory Neil Shapiro (int) getgid(), (int) getegid()); 537506f25ae9SGregory Neil Shapiro 5376c2aa98e2SPeter Wemm 5377c2aa98e2SPeter Wemm /* move into some "safe" directory */ 5378c2aa98e2SPeter Wemm if (mailer->m_execdir != NULL) 5379c2aa98e2SPeter Wemm { 5380c2aa98e2SPeter Wemm char *q; 5381c2aa98e2SPeter Wemm 5382c2aa98e2SPeter Wemm for (p = mailer->m_execdir; p != NULL; p = q) 5383c2aa98e2SPeter Wemm { 5384c2aa98e2SPeter Wemm q = strchr(p, ':'); 5385c2aa98e2SPeter Wemm if (q != NULL) 5386c2aa98e2SPeter Wemm *q = '\0'; 5387c2aa98e2SPeter Wemm expand(p, buf, sizeof buf, e); 5388c2aa98e2SPeter Wemm if (q != NULL) 5389c2aa98e2SPeter Wemm *q++ = ':'; 5390c2aa98e2SPeter Wemm if (tTd(11, 20)) 539140266059SGregory Neil Shapiro sm_dprintf("mailfile: trydir %s\n", 539240266059SGregory Neil Shapiro buf); 5393c2aa98e2SPeter Wemm if (buf[0] != '\0' && chdir(buf) >= 0) 5394c2aa98e2SPeter Wemm break; 5395c2aa98e2SPeter Wemm } 5396c2aa98e2SPeter Wemm } 5397c2aa98e2SPeter Wemm 539806f25ae9SGregory Neil Shapiro /* 539906f25ae9SGregory Neil Shapiro ** Recheck the file after we have assumed the ID of the 540006f25ae9SGregory Neil Shapiro ** delivery user to make sure we can deliver to it as 540106f25ae9SGregory Neil Shapiro ** that user. This is necessary if sendmail is running 540206f25ae9SGregory Neil Shapiro ** as root and the file is on an NFS mount which treats 540306f25ae9SGregory Neil Shapiro ** root as nobody. 540406f25ae9SGregory Neil Shapiro */ 540506f25ae9SGregory Neil Shapiro 540606f25ae9SGregory Neil Shapiro #if HASLSTAT 540706f25ae9SGregory Neil Shapiro if (bitnset(DBS_FILEDELIVERYTOSYMLINK, DontBlameSendmail)) 540806f25ae9SGregory Neil Shapiro err = stat(realfile, &stb); 540906f25ae9SGregory Neil Shapiro else 541006f25ae9SGregory Neil Shapiro err = lstat(realfile, &stb); 541106f25ae9SGregory Neil Shapiro #else /* HASLSTAT */ 541206f25ae9SGregory Neil Shapiro err = stat(realfile, &stb); 541306f25ae9SGregory Neil Shapiro #endif /* HASLSTAT */ 541406f25ae9SGregory Neil Shapiro 541506f25ae9SGregory Neil Shapiro if (err < 0) 541606f25ae9SGregory Neil Shapiro { 541706f25ae9SGregory Neil Shapiro stb.st_mode = ST_MODE_NOFILE; 541806f25ae9SGregory Neil Shapiro mode = FileMode; 541906f25ae9SGregory Neil Shapiro oflags |= O_CREAT|O_EXCL; 542006f25ae9SGregory Neil Shapiro } 542106f25ae9SGregory Neil Shapiro else if (bitset(S_IXUSR|S_IXGRP|S_IXOTH, mode) || 542206f25ae9SGregory Neil Shapiro (!bitnset(DBS_FILEDELIVERYTOHARDLINK, 542306f25ae9SGregory Neil Shapiro DontBlameSendmail) && 542406f25ae9SGregory Neil Shapiro stb.st_nlink != 1) || 542506f25ae9SGregory Neil Shapiro (realfile != targetfile && !S_ISREG(mode))) 542606f25ae9SGregory Neil Shapiro exit(EX_CANTCREAT); 542706f25ae9SGregory Neil Shapiro else 542806f25ae9SGregory Neil Shapiro mode = stb.st_mode; 542906f25ae9SGregory Neil Shapiro 543006f25ae9SGregory Neil Shapiro if (!bitnset(DBS_FILEDELIVERYTOSYMLINK, DontBlameSendmail)) 5431c2aa98e2SPeter Wemm sfflags |= SFF_NOSLINK; 543206f25ae9SGregory Neil Shapiro if (!bitnset(DBS_FILEDELIVERYTOHARDLINK, DontBlameSendmail)) 5433c2aa98e2SPeter Wemm sfflags |= SFF_NOHLINK; 5434c2aa98e2SPeter Wemm sfflags &= ~SFF_OPENASROOT; 543506f25ae9SGregory Neil Shapiro f = safefopen(realfile, oflags, mode, sfflags); 5436c2aa98e2SPeter Wemm if (f == NULL) 5437c2aa98e2SPeter Wemm { 543806f25ae9SGregory Neil Shapiro if (transienterror(errno)) 543906f25ae9SGregory Neil Shapiro { 544006f25ae9SGregory Neil Shapiro usrerr("454 4.3.0 cannot open %s: %s", 544106f25ae9SGregory Neil Shapiro shortenstring(realfile, MAXSHORTSTR), 544240266059SGregory Neil Shapiro sm_errstring(errno)); 544340266059SGregory Neil Shapiro RETURN(EX_TEMPFAIL); 544406f25ae9SGregory Neil Shapiro } 544506f25ae9SGregory Neil Shapiro else 544606f25ae9SGregory Neil Shapiro { 544706f25ae9SGregory Neil Shapiro usrerr("554 5.3.0 cannot open %s: %s", 544806f25ae9SGregory Neil Shapiro shortenstring(realfile, MAXSHORTSTR), 544940266059SGregory Neil Shapiro sm_errstring(errno)); 545040266059SGregory Neil Shapiro RETURN(EX_CANTCREAT); 5451c2aa98e2SPeter Wemm } 545206f25ae9SGregory Neil Shapiro } 545340266059SGregory Neil Shapiro if (filechanged(realfile, sm_io_getinfo(f, SM_IO_WHAT_FD, NULL), 545440266059SGregory Neil Shapiro &stb)) 5455c2aa98e2SPeter Wemm { 545606f25ae9SGregory Neil Shapiro syserr("554 5.3.0 file changed after open"); 545740266059SGregory Neil Shapiro RETURN(EX_CANTCREAT); 5458c2aa98e2SPeter Wemm } 545940266059SGregory Neil Shapiro if (fstat(sm_io_getinfo(f, SM_IO_WHAT_FD, NULL), &stb) < 0) 5460c2aa98e2SPeter Wemm { 546140266059SGregory Neil Shapiro syserr("554 5.3.0 cannot fstat %s", 546240266059SGregory Neil Shapiro sm_errstring(errno)); 546340266059SGregory Neil Shapiro RETURN(EX_CANTCREAT); 5464c2aa98e2SPeter Wemm } 5465c2aa98e2SPeter Wemm 546606f25ae9SGregory Neil Shapiro curoff = stb.st_size; 546706f25ae9SGregory Neil Shapiro 5468c2aa98e2SPeter Wemm if (ev != NULL) 546940266059SGregory Neil Shapiro sm_clrevent(ev); 5470c2aa98e2SPeter Wemm 547106f25ae9SGregory Neil Shapiro memset(&mcibuf, '\0', sizeof mcibuf); 5472c2aa98e2SPeter Wemm mcibuf.mci_mailer = mailer; 5473c2aa98e2SPeter Wemm mcibuf.mci_out = f; 5474c2aa98e2SPeter Wemm if (bitnset(M_7BITS, mailer->m_flags)) 5475c2aa98e2SPeter Wemm mcibuf.mci_flags |= MCIF_7BIT; 5476c2aa98e2SPeter Wemm 5477c2aa98e2SPeter Wemm /* clear out per-message flags from connection structure */ 5478c2aa98e2SPeter Wemm mcibuf.mci_flags &= ~(MCIF_CVT7TO8|MCIF_CVT8TO7); 5479c2aa98e2SPeter Wemm 5480c2aa98e2SPeter Wemm if (bitset(EF_HAS8BIT, e->e_flags) && 5481c2aa98e2SPeter Wemm !bitset(EF_DONT_MIME, e->e_flags) && 5482c2aa98e2SPeter Wemm bitnset(M_7BITS, mailer->m_flags)) 5483c2aa98e2SPeter Wemm mcibuf.mci_flags |= MCIF_CVT8TO7; 5484c2aa98e2SPeter Wemm 5485c2aa98e2SPeter Wemm #if MIME7TO8 5486c2aa98e2SPeter Wemm if (bitnset(M_MAKE8BIT, mailer->m_flags) && 5487c2aa98e2SPeter Wemm !bitset(MCIF_7BIT, mcibuf.mci_flags) && 5488c2aa98e2SPeter Wemm (p = hvalue("Content-Transfer-Encoding", e->e_header)) != NULL && 548940266059SGregory Neil Shapiro (sm_strcasecmp(p, "quoted-printable") == 0 || 549040266059SGregory Neil Shapiro sm_strcasecmp(p, "base64") == 0) && 5491c2aa98e2SPeter Wemm (p = hvalue("Content-Type", e->e_header)) != NULL) 5492c2aa98e2SPeter Wemm { 5493c2aa98e2SPeter Wemm /* may want to convert 7 -> 8 */ 5494c2aa98e2SPeter Wemm /* XXX should really parse it here -- and use a class XXX */ 549540266059SGregory Neil Shapiro if (sm_strncasecmp(p, "text/plain", 10) == 0 && 5496c2aa98e2SPeter Wemm (p[10] == '\0' || p[10] == ' ' || p[10] == ';')) 5497c2aa98e2SPeter Wemm mcibuf.mci_flags |= MCIF_CVT7TO8; 5498c2aa98e2SPeter Wemm } 549906f25ae9SGregory Neil Shapiro #endif /* MIME7TO8 */ 5500c2aa98e2SPeter Wemm 5501c2aa98e2SPeter Wemm putfromline(&mcibuf, e); 55022e43090eSPeter Wemm (*e->e_puthdr)(&mcibuf, e->e_header, e, M87F_OUTER); 5503c2aa98e2SPeter Wemm (*e->e_putbody)(&mcibuf, e, NULL); 5504c2aa98e2SPeter Wemm putline("\n", &mcibuf); 550540266059SGregory Neil Shapiro if (sm_io_flush(f, SM_TIME_DEFAULT) != 0 || 550640266059SGregory Neil Shapiro (SuperSafe != SAFE_NO && 550740266059SGregory Neil Shapiro fsync(sm_io_getinfo(f, SM_IO_WHAT_FD, NULL)) < 0) || 550840266059SGregory Neil Shapiro sm_io_error(f)) 5509c2aa98e2SPeter Wemm { 5510c2aa98e2SPeter Wemm setstat(EX_IOERR); 551106f25ae9SGregory Neil Shapiro #if !NOFTRUNCATE 551240266059SGregory Neil Shapiro (void) ftruncate(sm_io_getinfo(f, SM_IO_WHAT_FD, NULL), 551340266059SGregory Neil Shapiro curoff); 551406f25ae9SGregory Neil Shapiro #endif /* !NOFTRUNCATE */ 5515c2aa98e2SPeter Wemm } 5516c2aa98e2SPeter Wemm 5517c2aa98e2SPeter Wemm /* reset ISUID & ISGID bits for paranoid systems */ 5518c2aa98e2SPeter Wemm #if HASFCHMOD 551940266059SGregory Neil Shapiro (void) fchmod(sm_io_getinfo(f, SM_IO_WHAT_FD, NULL), 552040266059SGregory Neil Shapiro (MODE_T) mode); 552106f25ae9SGregory Neil Shapiro #else /* HASFCHMOD */ 552206f25ae9SGregory Neil Shapiro (void) chmod(filename, (MODE_T) mode); 552306f25ae9SGregory Neil Shapiro #endif /* HASFCHMOD */ 552440266059SGregory Neil Shapiro if (sm_io_close(f, SM_TIME_DEFAULT) < 0) 552506f25ae9SGregory Neil Shapiro setstat(EX_IOERR); 552640266059SGregory Neil Shapiro (void) sm_io_flush(smioout, SM_TIME_DEFAULT); 552706f25ae9SGregory Neil Shapiro (void) setuid(RealUid); 5528c2aa98e2SPeter Wemm exit(ExitStat); 5529c2aa98e2SPeter Wemm /* NOTREACHED */ 5530c2aa98e2SPeter Wemm } 5531c2aa98e2SPeter Wemm else 5532c2aa98e2SPeter Wemm { 5533c2aa98e2SPeter Wemm /* parent -- wait for exit status */ 5534c2aa98e2SPeter Wemm int st; 5535c2aa98e2SPeter Wemm 5536c2aa98e2SPeter Wemm st = waitfor(pid); 5537c2aa98e2SPeter Wemm if (st == -1) 5538c2aa98e2SPeter Wemm { 5539c2aa98e2SPeter Wemm syserr("mailfile: %s: wait", mailer->m_name); 554006f25ae9SGregory Neil Shapiro return EX_SOFTWARE; 5541c2aa98e2SPeter Wemm } 5542c2aa98e2SPeter Wemm if (WIFEXITED(st)) 554340266059SGregory Neil Shapiro { 554440266059SGregory Neil Shapiro errno = 0; 5545c2aa98e2SPeter Wemm return (WEXITSTATUS(st)); 554640266059SGregory Neil Shapiro } 5547c2aa98e2SPeter Wemm else 5548c2aa98e2SPeter Wemm { 5549c2aa98e2SPeter Wemm syserr("mailfile: %s: child died on signal %d", 5550c2aa98e2SPeter Wemm mailer->m_name, st); 555106f25ae9SGregory Neil Shapiro return EX_UNAVAILABLE; 5552c2aa98e2SPeter Wemm } 5553c2aa98e2SPeter Wemm /* NOTREACHED */ 5554c2aa98e2SPeter Wemm } 5555c2aa98e2SPeter Wemm return EX_UNAVAILABLE; /* avoid compiler warning on IRIX */ 5556c2aa98e2SPeter Wemm } 5557c2aa98e2SPeter Wemm 5558c2aa98e2SPeter Wemm static void 5559c2aa98e2SPeter Wemm mailfiletimeout() 5560c2aa98e2SPeter Wemm { 55618774250cSGregory Neil Shapiro /* 55628774250cSGregory Neil Shapiro ** NOTE: THIS CAN BE CALLED FROM A SIGNAL HANDLER. DO NOT ADD 55638774250cSGregory Neil Shapiro ** ANYTHING TO THIS ROUTINE UNLESS YOU KNOW WHAT YOU ARE 55648774250cSGregory Neil Shapiro ** DOING. 55658774250cSGregory Neil Shapiro */ 55668774250cSGregory Neil Shapiro 55678774250cSGregory Neil Shapiro errno = ETIMEDOUT; 5568c2aa98e2SPeter Wemm longjmp(CtxMailfileTimeout, 1); 5569c2aa98e2SPeter Wemm } 557040266059SGregory Neil Shapiro /* 5571c2aa98e2SPeter Wemm ** HOSTSIGNATURE -- return the "signature" for a host. 5572c2aa98e2SPeter Wemm ** 5573c2aa98e2SPeter Wemm ** The signature describes how we are going to send this -- it 5574c2aa98e2SPeter Wemm ** can be just the hostname (for non-Internet hosts) or can be 5575c2aa98e2SPeter Wemm ** an ordered list of MX hosts. 5576c2aa98e2SPeter Wemm ** 5577c2aa98e2SPeter Wemm ** Parameters: 5578c2aa98e2SPeter Wemm ** m -- the mailer describing this host. 5579c2aa98e2SPeter Wemm ** host -- the host name. 5580c2aa98e2SPeter Wemm ** 5581c2aa98e2SPeter Wemm ** Returns: 5582c2aa98e2SPeter Wemm ** The signature for this host. 5583c2aa98e2SPeter Wemm ** 5584c2aa98e2SPeter Wemm ** Side Effects: 5585c2aa98e2SPeter Wemm ** Can tweak the symbol table. 5586c2aa98e2SPeter Wemm */ 558740266059SGregory Neil Shapiro 558806f25ae9SGregory Neil Shapiro #define MAXHOSTSIGNATURE 8192 /* max len of hostsignature */ 5589c2aa98e2SPeter Wemm 559040266059SGregory Neil Shapiro char * 559106f25ae9SGregory Neil Shapiro hostsignature(m, host) 5592c2aa98e2SPeter Wemm register MAILER *m; 5593c2aa98e2SPeter Wemm char *host; 5594c2aa98e2SPeter Wemm { 5595c2aa98e2SPeter Wemm register char *p; 5596c2aa98e2SPeter Wemm register STAB *s; 559740266059SGregory Neil Shapiro time_t now; 559806f25ae9SGregory Neil Shapiro #if NAMED_BIND 559906f25ae9SGregory Neil Shapiro char sep = ':'; 560006f25ae9SGregory Neil Shapiro char prevsep = ':'; 5601c2aa98e2SPeter Wemm int i; 5602c2aa98e2SPeter Wemm int len; 5603c2aa98e2SPeter Wemm int nmx; 560406f25ae9SGregory Neil Shapiro int hl; 5605c2aa98e2SPeter Wemm char *hp; 5606c2aa98e2SPeter Wemm char *endp; 5607c2aa98e2SPeter Wemm int oldoptions = _res.options; 5608c2aa98e2SPeter Wemm char *mxhosts[MAXMXHOSTS + 1]; 560940266059SGregory Neil Shapiro unsigned short mxprefs[MAXMXHOSTS + 1]; 561006f25ae9SGregory Neil Shapiro #endif /* NAMED_BIND */ 561106f25ae9SGregory Neil Shapiro 561206f25ae9SGregory Neil Shapiro if (tTd(17, 3)) 561340266059SGregory Neil Shapiro sm_dprintf("hostsignature(%s)\n", host); 561406f25ae9SGregory Neil Shapiro 561506f25ae9SGregory Neil Shapiro /* 56168774250cSGregory Neil Shapiro ** If local delivery (and not remote), just return a constant. 561706f25ae9SGregory Neil Shapiro */ 561806f25ae9SGregory Neil Shapiro 56198774250cSGregory Neil Shapiro if (bitnset(M_LOCALMAILER, m->m_flags) && 562040266059SGregory Neil Shapiro strcmp(m->m_mailer, "[IPC]") != 0 && 562140266059SGregory Neil Shapiro !(m->m_argv[0] != NULL && strcmp(m->m_argv[0], "TCP") == 0)) 562206f25ae9SGregory Neil Shapiro return "localhost"; 5623c2aa98e2SPeter Wemm 5624c2aa98e2SPeter Wemm /* 5625c2aa98e2SPeter Wemm ** Check to see if this uses IPC -- if not, it can't have MX records. 5626c2aa98e2SPeter Wemm */ 5627c2aa98e2SPeter Wemm 562840266059SGregory Neil Shapiro if (strcmp(m->m_mailer, "[IPC]") != 0 || 562940266059SGregory Neil Shapiro CurEnv->e_sendmode == SM_DEFER) 5630c2aa98e2SPeter Wemm { 563140266059SGregory Neil Shapiro /* just an ordinary mailer or deferred mode */ 5632c2aa98e2SPeter Wemm return host; 5633c2aa98e2SPeter Wemm } 563406f25ae9SGregory Neil Shapiro #if NETUNIX 563506f25ae9SGregory Neil Shapiro else if (m->m_argv[0] != NULL && 563606f25ae9SGregory Neil Shapiro strcmp(m->m_argv[0], "FILE") == 0) 563706f25ae9SGregory Neil Shapiro { 563806f25ae9SGregory Neil Shapiro /* rendezvous in the file system, no MX records */ 563906f25ae9SGregory Neil Shapiro return host; 564006f25ae9SGregory Neil Shapiro } 564106f25ae9SGregory Neil Shapiro #endif /* NETUNIX */ 5642c2aa98e2SPeter Wemm 5643c2aa98e2SPeter Wemm /* 5644c2aa98e2SPeter Wemm ** Look it up in the symbol table. 5645c2aa98e2SPeter Wemm */ 5646c2aa98e2SPeter Wemm 564740266059SGregory Neil Shapiro now = curtime(); 5648c2aa98e2SPeter Wemm s = stab(host, ST_HOSTSIG, ST_ENTER); 564940266059SGregory Neil Shapiro if (s->s_hostsig.hs_sig != NULL) 565040266059SGregory Neil Shapiro { 565140266059SGregory Neil Shapiro if (s->s_hostsig.hs_exp >= now) 565206f25ae9SGregory Neil Shapiro { 565306f25ae9SGregory Neil Shapiro if (tTd(17, 3)) 565440266059SGregory Neil Shapiro sm_dprintf("hostsignature(): stab(%s) found %s\n", host, 565540266059SGregory Neil Shapiro s->s_hostsig.hs_sig); 565640266059SGregory Neil Shapiro return s->s_hostsig.hs_sig; 565706f25ae9SGregory Neil Shapiro } 5658c2aa98e2SPeter Wemm 565940266059SGregory Neil Shapiro /* signature is expired: clear it */ 566040266059SGregory Neil Shapiro sm_free(s->s_hostsig.hs_sig); 566140266059SGregory Neil Shapiro s->s_hostsig.hs_sig = NULL; 566240266059SGregory Neil Shapiro } 566340266059SGregory Neil Shapiro 566440266059SGregory Neil Shapiro /* set default TTL */ 566540266059SGregory Neil Shapiro s->s_hostsig.hs_exp = now + SM_DEFAULT_TTL; 566640266059SGregory Neil Shapiro 5667c2aa98e2SPeter Wemm /* 566840266059SGregory Neil Shapiro ** Not already there or expired -- create a signature. 5669c2aa98e2SPeter Wemm */ 5670c2aa98e2SPeter Wemm 5671c2aa98e2SPeter Wemm #if NAMED_BIND 5672c2aa98e2SPeter Wemm if (ConfigLevel < 2) 5673c2aa98e2SPeter Wemm _res.options &= ~(RES_DEFNAMES | RES_DNSRCH); /* XXX */ 5674c2aa98e2SPeter Wemm 5675c2aa98e2SPeter Wemm for (hp = host; hp != NULL; hp = endp) 5676c2aa98e2SPeter Wemm { 567706f25ae9SGregory Neil Shapiro #if NETINET6 567806f25ae9SGregory Neil Shapiro if (*hp == '[') 567906f25ae9SGregory Neil Shapiro { 568006f25ae9SGregory Neil Shapiro endp = strchr(hp + 1, ']'); 5681c2aa98e2SPeter Wemm if (endp != NULL) 568206f25ae9SGregory Neil Shapiro endp = strpbrk(endp + 1, ":,"); 568306f25ae9SGregory Neil Shapiro } 568406f25ae9SGregory Neil Shapiro else 568506f25ae9SGregory Neil Shapiro endp = strpbrk(hp, ":,"); 568606f25ae9SGregory Neil Shapiro #else /* NETINET6 */ 568706f25ae9SGregory Neil Shapiro endp = strpbrk(hp, ":,"); 568806f25ae9SGregory Neil Shapiro #endif /* NETINET6 */ 568906f25ae9SGregory Neil Shapiro if (endp != NULL) 569006f25ae9SGregory Neil Shapiro { 569106f25ae9SGregory Neil Shapiro sep = *endp; 5692c2aa98e2SPeter Wemm *endp = '\0'; 569306f25ae9SGregory Neil Shapiro } 5694c2aa98e2SPeter Wemm 5695c2aa98e2SPeter Wemm if (bitnset(M_NOMX, m->m_flags)) 5696c2aa98e2SPeter Wemm { 5697c2aa98e2SPeter Wemm /* skip MX lookups */ 5698c2aa98e2SPeter Wemm nmx = 1; 5699c2aa98e2SPeter Wemm mxhosts[0] = hp; 5700c2aa98e2SPeter Wemm } 5701c2aa98e2SPeter Wemm else 5702c2aa98e2SPeter Wemm { 5703c2aa98e2SPeter Wemm auto int rcode; 570440266059SGregory Neil Shapiro int ttl; 5705c2aa98e2SPeter Wemm 570640266059SGregory Neil Shapiro nmx = getmxrr(hp, mxhosts, mxprefs, true, &rcode, true, 570740266059SGregory Neil Shapiro &ttl); 5708c2aa98e2SPeter Wemm if (nmx <= 0) 5709c2aa98e2SPeter Wemm { 571013058a91SGregory Neil Shapiro int save_errno; 5711c2aa98e2SPeter Wemm register MCI *mci; 5712c2aa98e2SPeter Wemm 5713c2aa98e2SPeter Wemm /* update the connection info for this host */ 571413058a91SGregory Neil Shapiro save_errno = errno; 5715c2aa98e2SPeter Wemm mci = mci_get(hp, m); 571613058a91SGregory Neil Shapiro mci->mci_errno = save_errno; 5717c2aa98e2SPeter Wemm mci->mci_herrno = h_errno; 5718193538b7SGregory Neil Shapiro mci->mci_lastuse = now; 571906f25ae9SGregory Neil Shapiro if (rcode == EX_NOHOST) 572006f25ae9SGregory Neil Shapiro mci_setstat(mci, rcode, "5.1.2", 572106f25ae9SGregory Neil Shapiro "550 Host unknown"); 572206f25ae9SGregory Neil Shapiro else 5723c2aa98e2SPeter Wemm mci_setstat(mci, rcode, NULL, NULL); 5724c2aa98e2SPeter Wemm 5725c2aa98e2SPeter Wemm /* use the original host name as signature */ 5726c2aa98e2SPeter Wemm nmx = 1; 5727c2aa98e2SPeter Wemm mxhosts[0] = hp; 5728c2aa98e2SPeter Wemm } 572906f25ae9SGregory Neil Shapiro if (tTd(17, 3)) 573040266059SGregory Neil Shapiro sm_dprintf("hostsignature(): getmxrr() returned %d, mxhosts[0]=%s\n", 573106f25ae9SGregory Neil Shapiro nmx, mxhosts[0]); 573240266059SGregory Neil Shapiro 573340266059SGregory Neil Shapiro /* 573440266059SGregory Neil Shapiro ** Set new TTL: we use only one! 573540266059SGregory Neil Shapiro ** We could try to use the minimum instead. 573640266059SGregory Neil Shapiro */ 573740266059SGregory Neil Shapiro 573840266059SGregory Neil Shapiro s->s_hostsig.hs_exp = now + SM_MIN(ttl, SM_DEFAULT_TTL); 5739c2aa98e2SPeter Wemm } 5740c2aa98e2SPeter Wemm 5741c2aa98e2SPeter Wemm len = 0; 5742c2aa98e2SPeter Wemm for (i = 0; i < nmx; i++) 5743c2aa98e2SPeter Wemm len += strlen(mxhosts[i]) + 1; 574440266059SGregory Neil Shapiro if (s->s_hostsig.hs_sig != NULL) 574540266059SGregory Neil Shapiro len += strlen(s->s_hostsig.hs_sig) + 1; 574640266059SGregory Neil Shapiro if (len < 0 || len >= MAXHOSTSIGNATURE) 574706f25ae9SGregory Neil Shapiro { 574806f25ae9SGregory Neil Shapiro sm_syslog(LOG_WARNING, NOQID, "hostsignature for host '%s' exceeds maxlen (%d): %d", 574906f25ae9SGregory Neil Shapiro host, MAXHOSTSIGNATURE, len); 575006f25ae9SGregory Neil Shapiro len = MAXHOSTSIGNATURE; 575106f25ae9SGregory Neil Shapiro } 575240266059SGregory Neil Shapiro p = sm_pmalloc_x(len); 575340266059SGregory Neil Shapiro if (s->s_hostsig.hs_sig != NULL) 5754c2aa98e2SPeter Wemm { 575540266059SGregory Neil Shapiro (void) sm_strlcpy(p, s->s_hostsig.hs_sig, len); 575640266059SGregory Neil Shapiro sm_free(s->s_hostsig.hs_sig); /* XXX */ 575740266059SGregory Neil Shapiro s->s_hostsig.hs_sig = p; 575806f25ae9SGregory Neil Shapiro hl = strlen(p); 575906f25ae9SGregory Neil Shapiro p += hl; 576006f25ae9SGregory Neil Shapiro *p++ = prevsep; 576106f25ae9SGregory Neil Shapiro len -= hl + 1; 5762c2aa98e2SPeter Wemm } 5763c2aa98e2SPeter Wemm else 576440266059SGregory Neil Shapiro s->s_hostsig.hs_sig = p; 5765c2aa98e2SPeter Wemm for (i = 0; i < nmx; i++) 5766c2aa98e2SPeter Wemm { 576706f25ae9SGregory Neil Shapiro hl = strlen(mxhosts[i]); 576806f25ae9SGregory Neil Shapiro if (len - 1 < hl || len <= 1) 576906f25ae9SGregory Neil Shapiro { 577006f25ae9SGregory Neil Shapiro /* force to drop out of outer loop */ 577106f25ae9SGregory Neil Shapiro len = -1; 577206f25ae9SGregory Neil Shapiro break; 5773c2aa98e2SPeter Wemm } 577406f25ae9SGregory Neil Shapiro if (i != 0) 577506f25ae9SGregory Neil Shapiro { 577606f25ae9SGregory Neil Shapiro if (mxprefs[i] == mxprefs[i - 1]) 577706f25ae9SGregory Neil Shapiro *p++ = ','; 577806f25ae9SGregory Neil Shapiro else 577906f25ae9SGregory Neil Shapiro *p++ = ':'; 578006f25ae9SGregory Neil Shapiro len--; 578106f25ae9SGregory Neil Shapiro } 578240266059SGregory Neil Shapiro (void) sm_strlcpy(p, mxhosts[i], len); 578306f25ae9SGregory Neil Shapiro p += hl; 578406f25ae9SGregory Neil Shapiro len -= hl; 578506f25ae9SGregory Neil Shapiro } 578606f25ae9SGregory Neil Shapiro 578706f25ae9SGregory Neil Shapiro /* 578806f25ae9SGregory Neil Shapiro ** break out of loop if len exceeded MAXHOSTSIGNATURE 578906f25ae9SGregory Neil Shapiro ** because we won't have more space for further hosts 579006f25ae9SGregory Neil Shapiro ** anyway (separated by : in the .cf file). 579106f25ae9SGregory Neil Shapiro */ 579206f25ae9SGregory Neil Shapiro 579306f25ae9SGregory Neil Shapiro if (len < 0) 579406f25ae9SGregory Neil Shapiro break; 5795c2aa98e2SPeter Wemm if (endp != NULL) 579606f25ae9SGregory Neil Shapiro *endp++ = sep; 579706f25ae9SGregory Neil Shapiro prevsep = sep; 5798c2aa98e2SPeter Wemm } 579940266059SGregory Neil Shapiro makelower(s->s_hostsig.hs_sig); 5800c2aa98e2SPeter Wemm if (ConfigLevel < 2) 5801c2aa98e2SPeter Wemm _res.options = oldoptions; 580206f25ae9SGregory Neil Shapiro #else /* NAMED_BIND */ 5803c2aa98e2SPeter Wemm /* not using BIND -- the signature is just the host name */ 580440266059SGregory Neil Shapiro /* 580540266059SGregory Neil Shapiro ** 'host' points to storage that will be freed after we are 580640266059SGregory Neil Shapiro ** done processing the current envelope, so we copy it. 580740266059SGregory Neil Shapiro */ 580840266059SGregory Neil Shapiro s->s_hostsig.hs_sig = sm_pstrdup_x(host); 580906f25ae9SGregory Neil Shapiro #endif /* NAMED_BIND */ 5810c2aa98e2SPeter Wemm if (tTd(17, 1)) 581140266059SGregory Neil Shapiro sm_dprintf("hostsignature(%s) = %s\n", host, s->s_hostsig.hs_sig); 581240266059SGregory Neil Shapiro return s->s_hostsig.hs_sig; 5813c2aa98e2SPeter Wemm } 581440266059SGregory Neil Shapiro /* 581506f25ae9SGregory Neil Shapiro ** PARSE_HOSTSIGNATURE -- parse the "signature" and return MX host array. 581606f25ae9SGregory Neil Shapiro ** 581706f25ae9SGregory Neil Shapiro ** The signature describes how we are going to send this -- it 581806f25ae9SGregory Neil Shapiro ** can be just the hostname (for non-Internet hosts) or can be 581906f25ae9SGregory Neil Shapiro ** an ordered list of MX hosts which must be randomized for equal 582006f25ae9SGregory Neil Shapiro ** MX preference values. 582106f25ae9SGregory Neil Shapiro ** 582206f25ae9SGregory Neil Shapiro ** Parameters: 582306f25ae9SGregory Neil Shapiro ** sig -- the host signature. 582406f25ae9SGregory Neil Shapiro ** mxhosts -- array to populate. 582540266059SGregory Neil Shapiro ** mailer -- mailer. 582606f25ae9SGregory Neil Shapiro ** 582706f25ae9SGregory Neil Shapiro ** Returns: 582806f25ae9SGregory Neil Shapiro ** The number of hosts inserted into mxhosts array. 582906f25ae9SGregory Neil Shapiro ** 583006f25ae9SGregory Neil Shapiro ** Side Effects: 583106f25ae9SGregory Neil Shapiro ** Randomizes equal MX preference hosts in mxhosts. 583206f25ae9SGregory Neil Shapiro */ 583306f25ae9SGregory Neil Shapiro 583406f25ae9SGregory Neil Shapiro static int 583506f25ae9SGregory Neil Shapiro parse_hostsignature(sig, mxhosts, mailer) 583606f25ae9SGregory Neil Shapiro char *sig; 583706f25ae9SGregory Neil Shapiro char **mxhosts; 583806f25ae9SGregory Neil Shapiro MAILER *mailer; 583906f25ae9SGregory Neil Shapiro { 584040266059SGregory Neil Shapiro unsigned short curpref = 0; 584140266059SGregory Neil Shapiro int nmx = 0, i, j; /* NOTE: i, j, and nmx must have same type */ 584206f25ae9SGregory Neil Shapiro char *hp, *endp; 584340266059SGregory Neil Shapiro unsigned short prefer[MAXMXHOSTS]; 584406f25ae9SGregory Neil Shapiro long rndm[MAXMXHOSTS]; 584506f25ae9SGregory Neil Shapiro 584606f25ae9SGregory Neil Shapiro for (hp = sig; hp != NULL; hp = endp) 584706f25ae9SGregory Neil Shapiro { 584806f25ae9SGregory Neil Shapiro char sep = ':'; 584906f25ae9SGregory Neil Shapiro 585006f25ae9SGregory Neil Shapiro #if NETINET6 585106f25ae9SGregory Neil Shapiro if (*hp == '[') 585206f25ae9SGregory Neil Shapiro { 585306f25ae9SGregory Neil Shapiro endp = strchr(hp + 1, ']'); 585406f25ae9SGregory Neil Shapiro if (endp != NULL) 585506f25ae9SGregory Neil Shapiro endp = strpbrk(endp + 1, ":,"); 585606f25ae9SGregory Neil Shapiro } 585706f25ae9SGregory Neil Shapiro else 585806f25ae9SGregory Neil Shapiro endp = strpbrk(hp, ":,"); 585906f25ae9SGregory Neil Shapiro #else /* NETINET6 */ 586006f25ae9SGregory Neil Shapiro endp = strpbrk(hp, ":,"); 586106f25ae9SGregory Neil Shapiro #endif /* NETINET6 */ 586206f25ae9SGregory Neil Shapiro if (endp != NULL) 586306f25ae9SGregory Neil Shapiro { 586406f25ae9SGregory Neil Shapiro sep = *endp; 586506f25ae9SGregory Neil Shapiro *endp = '\0'; 586606f25ae9SGregory Neil Shapiro } 586706f25ae9SGregory Neil Shapiro 586806f25ae9SGregory Neil Shapiro mxhosts[nmx] = hp; 586906f25ae9SGregory Neil Shapiro prefer[nmx] = curpref; 587006f25ae9SGregory Neil Shapiro if (mci_match(hp, mailer)) 587106f25ae9SGregory Neil Shapiro rndm[nmx] = 0; 587206f25ae9SGregory Neil Shapiro else 587306f25ae9SGregory Neil Shapiro rndm[nmx] = get_random(); 587406f25ae9SGregory Neil Shapiro 587506f25ae9SGregory Neil Shapiro if (endp != NULL) 587606f25ae9SGregory Neil Shapiro { 587706f25ae9SGregory Neil Shapiro /* 587806f25ae9SGregory Neil Shapiro ** Since we don't have the original MX prefs, 587906f25ae9SGregory Neil Shapiro ** make our own. If the separator is a ':', that 588006f25ae9SGregory Neil Shapiro ** means the preference for the next host will be 588106f25ae9SGregory Neil Shapiro ** higher than this one, so simply increment curpref. 588206f25ae9SGregory Neil Shapiro */ 588306f25ae9SGregory Neil Shapiro 588406f25ae9SGregory Neil Shapiro if (sep == ':') 588506f25ae9SGregory Neil Shapiro curpref++; 588606f25ae9SGregory Neil Shapiro 588706f25ae9SGregory Neil Shapiro *endp++ = sep; 588806f25ae9SGregory Neil Shapiro } 588906f25ae9SGregory Neil Shapiro if (++nmx >= MAXMXHOSTS) 589006f25ae9SGregory Neil Shapiro break; 589106f25ae9SGregory Neil Shapiro } 589206f25ae9SGregory Neil Shapiro 589306f25ae9SGregory Neil Shapiro /* sort the records using the random factor for equal preferences */ 589406f25ae9SGregory Neil Shapiro for (i = 0; i < nmx; i++) 589506f25ae9SGregory Neil Shapiro { 589606f25ae9SGregory Neil Shapiro for (j = i + 1; j < nmx; j++) 589706f25ae9SGregory Neil Shapiro { 589806f25ae9SGregory Neil Shapiro /* 589906f25ae9SGregory Neil Shapiro ** List is already sorted by MX preference, only 590006f25ae9SGregory Neil Shapiro ** need to look for equal preference MX records 590106f25ae9SGregory Neil Shapiro */ 590206f25ae9SGregory Neil Shapiro 590306f25ae9SGregory Neil Shapiro if (prefer[i] < prefer[j]) 590406f25ae9SGregory Neil Shapiro break; 590506f25ae9SGregory Neil Shapiro 590606f25ae9SGregory Neil Shapiro if (prefer[i] > prefer[j] || 590706f25ae9SGregory Neil Shapiro (prefer[i] == prefer[j] && rndm[i] > rndm[j])) 590806f25ae9SGregory Neil Shapiro { 590940266059SGregory Neil Shapiro register unsigned short tempp; 591006f25ae9SGregory Neil Shapiro register long tempr; 591106f25ae9SGregory Neil Shapiro register char *temp1; 591206f25ae9SGregory Neil Shapiro 591306f25ae9SGregory Neil Shapiro tempp = prefer[i]; 591406f25ae9SGregory Neil Shapiro prefer[i] = prefer[j]; 591506f25ae9SGregory Neil Shapiro prefer[j] = tempp; 591606f25ae9SGregory Neil Shapiro temp1 = mxhosts[i]; 591706f25ae9SGregory Neil Shapiro mxhosts[i] = mxhosts[j]; 591806f25ae9SGregory Neil Shapiro mxhosts[j] = temp1; 591906f25ae9SGregory Neil Shapiro tempr = rndm[i]; 592006f25ae9SGregory Neil Shapiro rndm[i] = rndm[j]; 592106f25ae9SGregory Neil Shapiro rndm[j] = tempr; 592206f25ae9SGregory Neil Shapiro } 592306f25ae9SGregory Neil Shapiro } 592406f25ae9SGregory Neil Shapiro } 592506f25ae9SGregory Neil Shapiro return nmx; 592606f25ae9SGregory Neil Shapiro } 592706f25ae9SGregory Neil Shapiro 592806f25ae9SGregory Neil Shapiro # if STARTTLS 592906f25ae9SGregory Neil Shapiro static SSL_CTX *clt_ctx = NULL; 593040266059SGregory Neil Shapiro static bool tls_ok_clt = true; 593106f25ae9SGregory Neil Shapiro 593240266059SGregory Neil Shapiro /* 593340266059SGregory Neil Shapiro ** SETCLTTLS -- client side TLS: allow/disallow. 593440266059SGregory Neil Shapiro ** 593540266059SGregory Neil Shapiro ** Parameters: 593640266059SGregory Neil Shapiro ** tls_ok -- should tls be done? 593740266059SGregory Neil Shapiro ** 593840266059SGregory Neil Shapiro ** Returns: 593940266059SGregory Neil Shapiro ** none. 594040266059SGregory Neil Shapiro ** 594140266059SGregory Neil Shapiro ** Side Effects: 594240266059SGregory Neil Shapiro ** sets tls_ok_clt (static variable in this module) 594340266059SGregory Neil Shapiro */ 594440266059SGregory Neil Shapiro 594540266059SGregory Neil Shapiro void 594640266059SGregory Neil Shapiro setclttls(tls_ok) 594740266059SGregory Neil Shapiro bool tls_ok; 594840266059SGregory Neil Shapiro { 594940266059SGregory Neil Shapiro tls_ok_clt = tls_ok; 595040266059SGregory Neil Shapiro return; 595140266059SGregory Neil Shapiro } 595240266059SGregory Neil Shapiro /* 595306f25ae9SGregory Neil Shapiro ** INITCLTTLS -- initialize client side TLS 595406f25ae9SGregory Neil Shapiro ** 595506f25ae9SGregory Neil Shapiro ** Parameters: 595640266059SGregory Neil Shapiro ** tls_ok -- should tls initialization be done? 595706f25ae9SGregory Neil Shapiro ** 595806f25ae9SGregory Neil Shapiro ** Returns: 595906f25ae9SGregory Neil Shapiro ** succeeded? 596040266059SGregory Neil Shapiro ** 596140266059SGregory Neil Shapiro ** Side Effects: 596240266059SGregory Neil Shapiro ** sets tls_ok_clt (static variable in this module) 596306f25ae9SGregory Neil Shapiro */ 596406f25ae9SGregory Neil Shapiro 596506f25ae9SGregory Neil Shapiro bool 596640266059SGregory Neil Shapiro initclttls(tls_ok) 596740266059SGregory Neil Shapiro bool tls_ok; 596806f25ae9SGregory Neil Shapiro { 596940266059SGregory Neil Shapiro if (!tls_ok_clt) 597040266059SGregory Neil Shapiro return false; 597140266059SGregory Neil Shapiro tls_ok_clt = tls_ok; 597240266059SGregory Neil Shapiro if (!tls_ok_clt) 597340266059SGregory Neil Shapiro return false; 597406f25ae9SGregory Neil Shapiro if (clt_ctx != NULL) 597540266059SGregory Neil Shapiro return true; /* already done */ 597613bd1963SGregory Neil Shapiro tls_ok_clt = inittls(&clt_ctx, TLS_I_CLT, false, CltCertFile, 597713bd1963SGregory Neil Shapiro CltKeyFile, CACertPath, CACertFile, DHParams); 597840266059SGregory Neil Shapiro return tls_ok_clt; 597906f25ae9SGregory Neil Shapiro } 598006f25ae9SGregory Neil Shapiro 598140266059SGregory Neil Shapiro /* 598206f25ae9SGregory Neil Shapiro ** STARTTLS -- try to start secure connection (client side) 598306f25ae9SGregory Neil Shapiro ** 598406f25ae9SGregory Neil Shapiro ** Parameters: 598506f25ae9SGregory Neil Shapiro ** m -- the mailer. 598606f25ae9SGregory Neil Shapiro ** mci -- the mailer connection info. 598706f25ae9SGregory Neil Shapiro ** e -- the envelope. 598806f25ae9SGregory Neil Shapiro ** 598906f25ae9SGregory Neil Shapiro ** Returns: 599006f25ae9SGregory Neil Shapiro ** success? 599106f25ae9SGregory Neil Shapiro ** (maybe this should be some other code than EX_ 599206f25ae9SGregory Neil Shapiro ** that denotes which stage failed.) 599306f25ae9SGregory Neil Shapiro */ 599406f25ae9SGregory Neil Shapiro 599506f25ae9SGregory Neil Shapiro static int 599606f25ae9SGregory Neil Shapiro starttls(m, mci, e) 599706f25ae9SGregory Neil Shapiro MAILER *m; 599806f25ae9SGregory Neil Shapiro MCI *mci; 599906f25ae9SGregory Neil Shapiro ENVELOPE *e; 600006f25ae9SGregory Neil Shapiro { 600106f25ae9SGregory Neil Shapiro int smtpresult; 600242e5d165SGregory Neil Shapiro int result = 0; 600342e5d165SGregory Neil Shapiro int rfd, wfd; 600406f25ae9SGregory Neil Shapiro SSL *clt_ssl = NULL; 600540266059SGregory Neil Shapiro time_t tlsstart; 600606f25ae9SGregory Neil Shapiro 600740266059SGregory Neil Shapiro if (clt_ctx == NULL && !initclttls(true)) 600842e5d165SGregory Neil Shapiro return EX_TEMPFAIL; 600906f25ae9SGregory Neil Shapiro smtpmessage("STARTTLS", m, mci); 601006f25ae9SGregory Neil Shapiro 601106f25ae9SGregory Neil Shapiro /* get the reply */ 601240266059SGregory Neil Shapiro smtpresult = reply(m, mci, e, TimeOuts.to_starttls, NULL, NULL); 601306f25ae9SGregory Neil Shapiro 601406f25ae9SGregory Neil Shapiro /* check return code from server */ 601506f25ae9SGregory Neil Shapiro if (smtpresult == 454) 601606f25ae9SGregory Neil Shapiro return EX_TEMPFAIL; 601706f25ae9SGregory Neil Shapiro if (smtpresult == 501) 601806f25ae9SGregory Neil Shapiro return EX_USAGE; 601906f25ae9SGregory Neil Shapiro if (smtpresult == -1) 602006f25ae9SGregory Neil Shapiro return smtpresult; 602106f25ae9SGregory Neil Shapiro if (smtpresult != 220) 602206f25ae9SGregory Neil Shapiro return EX_PROTOCOL; 602306f25ae9SGregory Neil Shapiro 602406f25ae9SGregory Neil Shapiro if (LogLevel > 13) 602540266059SGregory Neil Shapiro sm_syslog(LOG_INFO, NOQID, "STARTTLS=client, start=ok"); 602606f25ae9SGregory Neil Shapiro 602706f25ae9SGregory Neil Shapiro /* start connection */ 602806f25ae9SGregory Neil Shapiro if ((clt_ssl = SSL_new(clt_ctx)) == NULL) 602906f25ae9SGregory Neil Shapiro { 603006f25ae9SGregory Neil Shapiro if (LogLevel > 5) 603106f25ae9SGregory Neil Shapiro { 603240266059SGregory Neil Shapiro sm_syslog(LOG_ERR, NOQID, 603340266059SGregory Neil Shapiro "STARTTLS=client, error: SSL_new failed"); 603406f25ae9SGregory Neil Shapiro if (LogLevel > 9) 603540266059SGregory Neil Shapiro tlslogerr("client"); 603606f25ae9SGregory Neil Shapiro } 603706f25ae9SGregory Neil Shapiro return EX_SOFTWARE; 603806f25ae9SGregory Neil Shapiro } 603906f25ae9SGregory Neil Shapiro 604040266059SGregory Neil Shapiro rfd = sm_io_getinfo(mci->mci_in, SM_IO_WHAT_FD, NULL); 604140266059SGregory Neil Shapiro wfd = sm_io_getinfo(mci->mci_out, SM_IO_WHAT_FD, NULL); 604242e5d165SGregory Neil Shapiro 604306f25ae9SGregory Neil Shapiro /* SSL_clear(clt_ssl); ? */ 604442e5d165SGregory Neil Shapiro if (rfd < 0 || wfd < 0 || 604540266059SGregory Neil Shapiro (result = SSL_set_rfd(clt_ssl, rfd)) != 1 || 604640266059SGregory Neil Shapiro (result = SSL_set_wfd(clt_ssl, wfd)) != 1) 604706f25ae9SGregory Neil Shapiro { 604806f25ae9SGregory Neil Shapiro if (LogLevel > 5) 604906f25ae9SGregory Neil Shapiro { 605040266059SGregory Neil Shapiro sm_syslog(LOG_ERR, NOQID, 605140266059SGregory Neil Shapiro "STARTTLS=client, error: SSL_set_xfd failed=%d", 605240266059SGregory Neil Shapiro result); 605306f25ae9SGregory Neil Shapiro if (LogLevel > 9) 605440266059SGregory Neil Shapiro tlslogerr("client"); 605506f25ae9SGregory Neil Shapiro } 605606f25ae9SGregory Neil Shapiro return EX_SOFTWARE; 605706f25ae9SGregory Neil Shapiro } 605806f25ae9SGregory Neil Shapiro SSL_set_connect_state(clt_ssl); 605940266059SGregory Neil Shapiro tlsstart = curtime(); 606040266059SGregory Neil Shapiro 606140266059SGregory Neil Shapiro ssl_retry: 606206f25ae9SGregory Neil Shapiro if ((result = SSL_connect(clt_ssl)) <= 0) 606306f25ae9SGregory Neil Shapiro { 606406f25ae9SGregory Neil Shapiro int i; 606540266059SGregory Neil Shapiro bool timedout; 606640266059SGregory Neil Shapiro time_t left; 606740266059SGregory Neil Shapiro time_t now = curtime(); 606840266059SGregory Neil Shapiro struct timeval tv; 606906f25ae9SGregory Neil Shapiro 607006f25ae9SGregory Neil Shapiro /* what to do in this case? */ 607106f25ae9SGregory Neil Shapiro i = SSL_get_error(clt_ssl, result); 607240266059SGregory Neil Shapiro 607340266059SGregory Neil Shapiro /* 607440266059SGregory Neil Shapiro ** For SSL_ERROR_WANT_{READ,WRITE}: 607540266059SGregory Neil Shapiro ** There is not a complete SSL record available yet 607640266059SGregory Neil Shapiro ** or there is only a partial SSL record removed from 607740266059SGregory Neil Shapiro ** the network (socket) buffer into the SSL buffer. 607840266059SGregory Neil Shapiro ** The SSL_connect will only succeed when a full 607940266059SGregory Neil Shapiro ** SSL record is available (assuming a "real" error 608040266059SGregory Neil Shapiro ** doesn't happen). To handle when a "real" error 608140266059SGregory Neil Shapiro ** does happen the select is set for exceptions too. 608240266059SGregory Neil Shapiro ** The connection may be re-negotiated during this time 608340266059SGregory Neil Shapiro ** so both read and write "want errors" need to be handled. 608440266059SGregory Neil Shapiro ** A select() exception loops back so that a proper SSL 608540266059SGregory Neil Shapiro ** error message can be gotten. 608640266059SGregory Neil Shapiro */ 608740266059SGregory Neil Shapiro 608840266059SGregory Neil Shapiro left = TimeOuts.to_starttls - (now - tlsstart); 608940266059SGregory Neil Shapiro timedout = left <= 0; 609040266059SGregory Neil Shapiro if (!timedout) 609140266059SGregory Neil Shapiro { 609240266059SGregory Neil Shapiro tv.tv_sec = left; 609340266059SGregory Neil Shapiro tv.tv_usec = 0; 609440266059SGregory Neil Shapiro } 609540266059SGregory Neil Shapiro 609613bd1963SGregory Neil Shapiro if (!timedout && FD_SETSIZE > 0 && 609713bd1963SGregory Neil Shapiro (rfd >= FD_SETSIZE || 609813bd1963SGregory Neil Shapiro (i == SSL_ERROR_WANT_WRITE && wfd >= FD_SETSIZE))) 609913bd1963SGregory Neil Shapiro { 610013bd1963SGregory Neil Shapiro if (LogLevel > 5) 610113bd1963SGregory Neil Shapiro { 610213bd1963SGregory Neil Shapiro sm_syslog(LOG_ERR, e->e_id, 610313bd1963SGregory Neil Shapiro "STARTTLS=client, error: fd %d/%d too large", 610413bd1963SGregory Neil Shapiro rfd, wfd); 610513bd1963SGregory Neil Shapiro if (LogLevel > 8) 610613bd1963SGregory Neil Shapiro tlslogerr("client"); 610713bd1963SGregory Neil Shapiro } 610813bd1963SGregory Neil Shapiro errno = EINVAL; 610913bd1963SGregory Neil Shapiro goto tlsfail; 611013bd1963SGregory Neil Shapiro } 611140266059SGregory Neil Shapiro if (!timedout && i == SSL_ERROR_WANT_READ) 611240266059SGregory Neil Shapiro { 611340266059SGregory Neil Shapiro fd_set ssl_maskr, ssl_maskx; 611440266059SGregory Neil Shapiro 611540266059SGregory Neil Shapiro FD_ZERO(&ssl_maskr); 611640266059SGregory Neil Shapiro FD_SET(rfd, &ssl_maskr); 611740266059SGregory Neil Shapiro FD_ZERO(&ssl_maskx); 611840266059SGregory Neil Shapiro FD_SET(rfd, &ssl_maskx); 611940266059SGregory Neil Shapiro if (select(rfd + 1, &ssl_maskr, NULL, &ssl_maskx, &tv) 612040266059SGregory Neil Shapiro > 0) 612140266059SGregory Neil Shapiro goto ssl_retry; 612240266059SGregory Neil Shapiro } 612340266059SGregory Neil Shapiro if (!timedout && i == SSL_ERROR_WANT_WRITE) 612440266059SGregory Neil Shapiro { 612540266059SGregory Neil Shapiro fd_set ssl_maskw, ssl_maskx; 612640266059SGregory Neil Shapiro 612740266059SGregory Neil Shapiro FD_ZERO(&ssl_maskw); 612840266059SGregory Neil Shapiro FD_SET(wfd, &ssl_maskw); 612940266059SGregory Neil Shapiro FD_ZERO(&ssl_maskx); 613040266059SGregory Neil Shapiro FD_SET(rfd, &ssl_maskx); 613140266059SGregory Neil Shapiro if (select(wfd + 1, NULL, &ssl_maskw, &ssl_maskx, &tv) 613240266059SGregory Neil Shapiro > 0) 613340266059SGregory Neil Shapiro goto ssl_retry; 613440266059SGregory Neil Shapiro } 613506f25ae9SGregory Neil Shapiro if (LogLevel > 5) 613606f25ae9SGregory Neil Shapiro { 613706f25ae9SGregory Neil Shapiro sm_syslog(LOG_ERR, e->e_id, 6138d9986b26SGregory Neil Shapiro "STARTTLS=client, error: connect failed=%d, SSL_error=%d, timedout=%d, errno=%d", 6139d9986b26SGregory Neil Shapiro result, i, (int) timedout, errno); 614040266059SGregory Neil Shapiro if (LogLevel > 8) 614140266059SGregory Neil Shapiro tlslogerr("client"); 614206f25ae9SGregory Neil Shapiro } 614313bd1963SGregory Neil Shapiro tlsfail: 614406f25ae9SGregory Neil Shapiro SSL_free(clt_ssl); 614506f25ae9SGregory Neil Shapiro clt_ssl = NULL; 614606f25ae9SGregory Neil Shapiro return EX_SOFTWARE; 614706f25ae9SGregory Neil Shapiro } 614806f25ae9SGregory Neil Shapiro mci->mci_ssl = clt_ssl; 614940266059SGregory Neil Shapiro result = tls_get_info(mci->mci_ssl, false, mci->mci_host, 615040266059SGregory Neil Shapiro &mci->mci_macro, true); 615106f25ae9SGregory Neil Shapiro 615240266059SGregory Neil Shapiro /* switch to use TLS... */ 615306f25ae9SGregory Neil Shapiro if (sfdctls(&mci->mci_in, &mci->mci_out, mci->mci_ssl) == 0) 615406f25ae9SGregory Neil Shapiro return EX_OK; 615506f25ae9SGregory Neil Shapiro 615606f25ae9SGregory Neil Shapiro /* failure */ 615706f25ae9SGregory Neil Shapiro SSL_free(clt_ssl); 615806f25ae9SGregory Neil Shapiro clt_ssl = NULL; 615906f25ae9SGregory Neil Shapiro return EX_SOFTWARE; 616006f25ae9SGregory Neil Shapiro } 616140266059SGregory Neil Shapiro /* 616206f25ae9SGregory Neil Shapiro ** ENDTLSCLT -- shutdown secure connection (client side) 616306f25ae9SGregory Neil Shapiro ** 616406f25ae9SGregory Neil Shapiro ** Parameters: 616506f25ae9SGregory Neil Shapiro ** mci -- the mailer connection info. 616606f25ae9SGregory Neil Shapiro ** 616706f25ae9SGregory Neil Shapiro ** Returns: 616806f25ae9SGregory Neil Shapiro ** success? 616906f25ae9SGregory Neil Shapiro */ 617040266059SGregory Neil Shapiro 617140266059SGregory Neil Shapiro static int 617206f25ae9SGregory Neil Shapiro endtlsclt(mci) 617306f25ae9SGregory Neil Shapiro MCI *mci; 617406f25ae9SGregory Neil Shapiro { 617506f25ae9SGregory Neil Shapiro int r; 617606f25ae9SGregory Neil Shapiro 617706f25ae9SGregory Neil Shapiro if (!bitset(MCIF_TLSACT, mci->mci_flags)) 617806f25ae9SGregory Neil Shapiro return EX_OK; 617906f25ae9SGregory Neil Shapiro r = endtls(mci->mci_ssl, "client"); 618006f25ae9SGregory Neil Shapiro mci->mci_flags &= ~MCIF_TLSACT; 618106f25ae9SGregory Neil Shapiro return r; 618206f25ae9SGregory Neil Shapiro } 618340266059SGregory Neil Shapiro # endif /* STARTTLS */ 618440266059SGregory Neil Shapiro # if STARTTLS || SASL 618540266059SGregory Neil Shapiro /* 618640266059SGregory Neil Shapiro ** ISCLTFLGSET -- check whether client flag is set. 618706f25ae9SGregory Neil Shapiro ** 618806f25ae9SGregory Neil Shapiro ** Parameters: 618940266059SGregory Neil Shapiro ** e -- envelope. 619040266059SGregory Neil Shapiro ** flag -- flag to check in {client_flags} 619106f25ae9SGregory Neil Shapiro ** 619206f25ae9SGregory Neil Shapiro ** Returns: 619340266059SGregory Neil Shapiro ** true iff flag is set. 619406f25ae9SGregory Neil Shapiro */ 619506f25ae9SGregory Neil Shapiro 619640266059SGregory Neil Shapiro static bool 619740266059SGregory Neil Shapiro iscltflgset(e, flag) 619840266059SGregory Neil Shapiro ENVELOPE *e; 619940266059SGregory Neil Shapiro int flag; 620006f25ae9SGregory Neil Shapiro { 620140266059SGregory Neil Shapiro char *p; 6202602a2b1bSGregory Neil Shapiro 620340266059SGregory Neil Shapiro p = macvalue(macid("{client_flags}"), e); 620440266059SGregory Neil Shapiro if (p == NULL) 620540266059SGregory Neil Shapiro return false; 620640266059SGregory Neil Shapiro for (; *p != '\0'; p++) 620706f25ae9SGregory Neil Shapiro { 620840266059SGregory Neil Shapiro /* look for just this one flag */ 620940266059SGregory Neil Shapiro if (*p == (char) flag) 621040266059SGregory Neil Shapiro return true; 621106f25ae9SGregory Neil Shapiro } 621240266059SGregory Neil Shapiro return false; 621306f25ae9SGregory Neil Shapiro } 621440266059SGregory Neil Shapiro # endif /* STARTTLS || SASL */ 6215