xref: /freebsd/contrib/sendmail/src/readcf.c (revision 036d2e814bf0f5d88ffb4b24c159320894541757)
1 /*
2  * Copyright (c) 1998-2006, 2008-2010, 2013 Proofpoint, Inc. and its suppliers.
3  *	All rights reserved.
4  * Copyright (c) 1983, 1995-1997 Eric P. Allman.  All rights reserved.
5  * Copyright (c) 1988, 1993
6  *	The Regents of the University of California.  All rights reserved.
7  *
8  * By using this file, you agree to the terms and conditions set
9  * forth in the LICENSE file which can be found at the top level of
10  * the sendmail distribution.
11  *
12  */
13 
14 #include <sendmail.h>
15 #include <sm/sendmail.h>
16 
17 SM_RCSID("@(#)$Id: readcf.c,v 8.692 2013-11-22 20:51:56 ca Exp $")
18 
19 #if NETINET || NETINET6
20 # include <arpa/inet.h>
21 #endif /* NETINET || NETINET6 */
22 
23 
24 #define SECONDS
25 #define MINUTES	* 60
26 #define HOUR	* 3600
27 #define HOURS	HOUR
28 
29 static void	fileclass __P((int, char *, char *, bool, bool, bool));
30 static char	**makeargv __P((char *));
31 static void	settimeout __P((char *, char *, bool));
32 static void	toomany __P((int, int));
33 static char	*extrquotstr __P((char *, char **, char *, bool *));
34 static void	parse_class_words __P((int, char *));
35 
36 
37 #if _FFR_BOUNCE_QUEUE
38 static char *bouncequeue = NULL;
39 static void initbouncequeue __P((void));
40 
41 /*
42 **  INITBOUNCEQUEUE -- determine BounceQueue if option is set.
43 **
44 **	Parameters:
45 **		none.
46 **
47 **	Returns:
48 **		none.
49 **
50 **	Side Effects:
51 **		sets BounceQueue
52 */
53 
54 static void
55 initbouncequeue()
56 {
57 	STAB *s;
58 
59 	BounceQueue = NOQGRP;
60 	if (bouncequeue == NULL || bouncequeue[0] == '\0')
61 		return;
62 
63 	s = stab(bouncequeue, ST_QUEUE, ST_FIND);
64 	if (s == NULL)
65 	{
66 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
67 			"Warning: option BounceQueue: unknown queue group %s\n",
68 			bouncequeue);
69 	}
70 	else
71 		BounceQueue = s->s_quegrp->qg_index;
72 }
73 #endif /* _FFR_BOUNCE_QUEUE */
74 
75 #if _FFR_RCPTFLAGS
76 void setupdynmailers __P((void));
77 #else
78 #define setupdynmailers()
79 #endif
80 
81 /*
82 **  READCF -- read configuration file.
83 **
84 **	This routine reads the configuration file and builds the internal
85 **	form.
86 **
87 **	The file is formatted as a sequence of lines, each taken
88 **	atomically.  The first character of each line describes how
89 **	the line is to be interpreted.  The lines are:
90 **		Dxval		Define macro x to have value val.
91 **		Cxword		Put word into class x.
92 **		Fxfile [fmt]	Read file for lines to put into
93 **				class x.  Use scanf string 'fmt'
94 **				or "%s" if not present.  Fmt should
95 **				only produce one string-valued result.
96 **		Hname: value	Define header with field-name 'name'
97 **				and value as specified; this will be
98 **				macro expanded immediately before
99 **				use.
100 **		Sn		Use rewriting set n.
101 **		Rlhs rhs	Rewrite addresses that match lhs to
102 **				be rhs.
103 **		Mn arg=val...	Define mailer.  n is the internal name.
104 **				Args specify mailer parameters.
105 **		Oxvalue		Set option x to value.
106 **		O option value	Set option (long name) to value.
107 **		Pname=value	Set precedence name to value.
108 **		Qn arg=val...	Define queue groups.  n is the internal name.
109 **				Args specify queue parameters.
110 **		Vversioncode[/vendorcode]
111 **				Version level/vendor name of
112 **				configuration syntax.
113 **		Kmapname mapclass arguments....
114 **				Define keyed lookup of a given class.
115 **				Arguments are class dependent.
116 **		Eenvar=value	Set the environment value to the given value.
117 **
118 **	Parameters:
119 **		cfname -- configuration file name.
120 **		safe -- true if this is the system config file;
121 **			false otherwise.
122 **		e -- the main envelope.
123 **
124 **	Returns:
125 **		none.
126 **
127 **	Side Effects:
128 **		Builds several internal tables.
129 */
130 
131 void
132 readcf(cfname, safe, e)
133 	char *cfname;
134 	bool safe;
135 	register ENVELOPE *e;
136 {
137 	SM_FILE_T *cf;
138 	int ruleset = -1;
139 	char *q;
140 	struct rewrite *rwp = NULL;
141 	char *bp;
142 	auto char *ep;
143 	int nfuzzy;
144 	char *file;
145 	bool optional;
146 	bool ok;
147 	bool ismap;
148 	int mid;
149 	register char *p;
150 	long sff = SFF_OPENASROOT;
151 	struct stat statb;
152 	char buf[MAXLINE];
153 	int bufsize;
154 	char exbuf[MAXLINE];
155 	char pvpbuf[MAXLINE + MAXATOM];
156 	static char *null_list[1] = { NULL };
157 	extern unsigned char TokTypeNoC[];
158 
159 	FileName = cfname;
160 	LineNumber = 0;
161 
162 	if (DontLockReadFiles)
163 		sff |= SFF_NOLOCK;
164 	cf = safefopen(cfname, O_RDONLY, 0444, sff);
165 	if (cf == NULL)
166 	{
167 		syserr("cannot open");
168 		finis(false, true, EX_OSFILE);
169 	}
170 
171 	if (fstat(sm_io_getinfo(cf, SM_IO_WHAT_FD, NULL), &statb) < 0)
172 	{
173 		syserr("cannot fstat");
174 		finis(false, true, EX_OSFILE);
175 	}
176 
177 	if (!S_ISREG(statb.st_mode))
178 	{
179 		syserr("not a plain file");
180 		finis(false, true, EX_OSFILE);
181 	}
182 
183 	if (OpMode != MD_TEST && bitset(S_IWGRP|S_IWOTH, statb.st_mode))
184 	{
185 		if (OpMode == MD_DAEMON || OpMode == MD_INITALIAS || OpMode == MD_CHECKCONFIG)
186 			(void) sm_io_fprintf(smioerr, SM_TIME_DEFAULT,
187 					     "%s: WARNING: dangerous write permissions\n",
188 					     FileName);
189 		if (LogLevel > 0)
190 			sm_syslog(LOG_CRIT, NOQID,
191 				  "%s: WARNING: dangerous write permissions",
192 				  FileName);
193 	}
194 
195 #if XLA
196 	xla_zero();
197 #endif /* XLA */
198 
199 	while (bufsize = sizeof(buf),
200 	       (bp = fgetfolded(buf, &bufsize, cf)) != NULL)
201 	{
202 		char *nbp;
203 
204 		if (bp[0] == '#')
205 		{
206 			if (bp != buf)
207 				sm_free(bp); /* XXX */
208 			continue;
209 		}
210 
211 		/* do macro expansion mappings */
212 		nbp = translate_dollars(bp, bp, &bufsize);
213 		if (nbp != bp && bp != buf)
214 			sm_free(bp);
215 		bp = nbp;
216 
217 		/* interpret this line */
218 		errno = 0;
219 		switch (bp[0])
220 		{
221 		  case '\0':
222 		  case '#':		/* comment */
223 			break;
224 
225 		  case 'R':		/* rewriting rule */
226 			if (ruleset < 0)
227 			{
228 				syserr("missing valid ruleset for \"%s\"", bp);
229 				break;
230 			}
231 			for (p = &bp[1]; *p != '\0' && *p != '\t'; p++)
232 				continue;
233 
234 			if (*p == '\0')
235 			{
236 				syserr("invalid rewrite line \"%s\" (tab expected)", bp);
237 				break;
238 			}
239 
240 			/* allocate space for the rule header */
241 			if (rwp == NULL)
242 			{
243 				RewriteRules[ruleset] = rwp =
244 					(struct rewrite *) xalloc(sizeof(*rwp));
245 			}
246 			else
247 			{
248 				rwp->r_next = (struct rewrite *) xalloc(sizeof(*rwp));
249 				rwp = rwp->r_next;
250 			}
251 			rwp->r_next = NULL;
252 
253 			/* expand and save the LHS */
254 			*p = '\0';
255 			expand(&bp[1], exbuf, sizeof(exbuf), e);
256 			rwp->r_lhs = prescan(exbuf, '\t', pvpbuf,
257 					     sizeof(pvpbuf), NULL,
258 					     ConfigLevel >= 9 ? TokTypeNoC : IntTokenTab,
259 					     true);
260 			nfuzzy = 0;
261 			if (rwp->r_lhs != NULL)
262 			{
263 				register char **ap;
264 
265 				rwp->r_lhs = copyplist(rwp->r_lhs, true, NULL);
266 
267 				/* count the number of fuzzy matches in LHS */
268 				for (ap = rwp->r_lhs; *ap != NULL; ap++)
269 				{
270 					char *botch;
271 
272 					botch = NULL;
273 					switch (ap[0][0] & 0377)
274 					{
275 					  case MATCHZANY:
276 					  case MATCHANY:
277 					  case MATCHONE:
278 					  case MATCHCLASS:
279 					  case MATCHNCLASS:
280 						nfuzzy++;
281 						break;
282 
283 					  case MATCHREPL:
284 						botch = "$1-$9";
285 						break;
286 
287 					  case CANONUSER:
288 						botch = "$:";
289 						break;
290 
291 					  case CALLSUBR:
292 						botch = "$>";
293 						break;
294 
295 					  case CONDIF:
296 						botch = "$?";
297 						break;
298 
299 					  case CONDFI:
300 						botch = "$.";
301 						break;
302 
303 					  case HOSTBEGIN:
304 						botch = "$[";
305 						break;
306 
307 					  case HOSTEND:
308 						botch = "$]";
309 						break;
310 
311 					  case LOOKUPBEGIN:
312 						botch = "$(";
313 						break;
314 
315 					  case LOOKUPEND:
316 						botch = "$)";
317 						break;
318 					}
319 					if (botch != NULL)
320 						syserr("Inappropriate use of %s on LHS",
321 							botch);
322 				}
323 				rwp->r_line = LineNumber;
324 			}
325 			else
326 			{
327 				syserr("R line: null LHS");
328 				rwp->r_lhs = null_list;
329 			}
330 			if (nfuzzy > MAXMATCH)
331 			{
332 				syserr("R line: too many wildcards");
333 				rwp->r_lhs = null_list;
334 			}
335 
336 			/* expand and save the RHS */
337 			while (*++p == '\t')
338 				continue;
339 			q = p;
340 			while (*p != '\0' && *p != '\t')
341 				p++;
342 			*p = '\0';
343 			expand(q, exbuf, sizeof(exbuf), e);
344 			rwp->r_rhs = prescan(exbuf, '\t', pvpbuf,
345 					     sizeof(pvpbuf), NULL,
346 					     ConfigLevel >= 9 ? TokTypeNoC : IntTokenTab,
347 					     true);
348 			if (rwp->r_rhs != NULL)
349 			{
350 				register char **ap;
351 				int args, endtoken;
352 #if _FFR_EXTRA_MAP_CHECK
353 				int nexttoken;
354 #endif /* _FFR_EXTRA_MAP_CHECK */
355 				bool inmap;
356 
357 				rwp->r_rhs = copyplist(rwp->r_rhs, true, NULL);
358 
359 				/* check no out-of-bounds replacements */
360 				nfuzzy += '0';
361 				inmap = false;
362 				args = 0;
363 				endtoken = 0;
364 				for (ap = rwp->r_rhs; *ap != NULL; ap++)
365 				{
366 					char *botch;
367 
368 					botch = NULL;
369 					switch (ap[0][0] & 0377)
370 					{
371 					  case MATCHREPL:
372 						if (ap[0][1] <= '0' ||
373 						    ap[0][1] > nfuzzy)
374 						{
375 							syserr("replacement $%c out of bounds",
376 								ap[0][1]);
377 						}
378 						break;
379 
380 					  case MATCHZANY:
381 						botch = "$*";
382 						break;
383 
384 					  case MATCHANY:
385 						botch = "$+";
386 						break;
387 
388 					  case MATCHONE:
389 						botch = "$-";
390 						break;
391 
392 					  case MATCHCLASS:
393 						botch = "$=";
394 						break;
395 
396 					  case MATCHNCLASS:
397 						botch = "$~";
398 						break;
399 
400 					  case CANONHOST:
401 						if (!inmap)
402 							break;
403 						if (++args >= MAX_MAP_ARGS)
404 							syserr("too many arguments for map lookup");
405 						break;
406 
407 					  case HOSTBEGIN:
408 						endtoken = HOSTEND;
409 						/* FALLTHROUGH */
410 					  case LOOKUPBEGIN:
411 						/* see above... */
412 						if ((ap[0][0] & 0377) == LOOKUPBEGIN)
413 							endtoken = LOOKUPEND;
414 						if (inmap)
415 							syserr("cannot nest map lookups");
416 						inmap = true;
417 						args = 0;
418 #if _FFR_EXTRA_MAP_CHECK
419 						if (ap[1] == NULL)
420 						{
421 							syserr("syntax error in map lookup");
422 							break;
423 						}
424 						nexttoken = ap[1][0] & 0377;
425 						if (nexttoken == CANONHOST ||
426 						    nexttoken == CANONUSER ||
427 						    nexttoken == endtoken))
428 						{
429 							syserr("missing map name for lookup");
430 							break;
431 						}
432 						if (ap[2] == NULL)
433 						{
434 							syserr("syntax error in map lookup");
435 							break;
436 						}
437 						if (ap[0][0] == HOSTBEGIN)
438 							break;
439 						nexttoken = ap[2][0] & 0377;
440 						if (nexttoken == CANONHOST ||
441 						    nexttoken == CANONUSER ||
442 						    nexttoken == endtoken)
443 						{
444 							syserr("missing key name for lookup");
445 							break;
446 						}
447 #endif /* _FFR_EXTRA_MAP_CHECK */
448 						break;
449 
450 					  case HOSTEND:
451 					  case LOOKUPEND:
452 						if ((ap[0][0] & 0377) != endtoken)
453 							break;
454 						inmap = false;
455 						endtoken = 0;
456 						break;
457 
458 
459 #if 0
460 /*
461 **  This doesn't work yet as there are maps defined *after* the cf
462 **  is read such as host, user, and alias.  So for now, it's removed.
463 **  When it comes back, the RELEASE_NOTES entry will be:
464 **	Emit warnings for unknown maps when reading the .cf file.  Based on
465 **		patch from Robert Harker of Harker Systems.
466 */
467 
468 					  case LOOKUPBEGIN:
469 						/*
470 						**  Got a database lookup,
471 						**  check if map is defined.
472 						*/
473 
474 						ep = ap[1];
475 						if ((ep[0] & 0377) != MACRODEXPAND &&
476 						    stab(ep, ST_MAP, ST_FIND) == NULL)
477 						{
478 							(void) sm_io_fprintf(smioout,
479 									     SM_TIME_DEFAULT,
480 									     "Warning: %s: line %d: map %s not found\n",
481 									     FileName,
482 									     LineNumber,
483 									     ep);
484 						}
485 						break;
486 #endif /* 0 */
487 					}
488 					if (botch != NULL)
489 						syserr("Inappropriate use of %s on RHS",
490 							botch);
491 				}
492 				if (inmap)
493 					syserr("missing map closing token");
494 			}
495 			else
496 			{
497 				syserr("R line: null RHS");
498 				rwp->r_rhs = null_list;
499 			}
500 			break;
501 
502 		  case 'S':		/* select rewriting set */
503 			expand(&bp[1], exbuf, sizeof(exbuf), e);
504 			ruleset = strtorwset(exbuf, NULL, ST_ENTER);
505 			if (ruleset < 0)
506 				break;
507 
508 			rwp = RewriteRules[ruleset];
509 			if (rwp != NULL)
510 			{
511 				if (OpMode == MD_TEST || OpMode == MD_CHECKCONFIG)
512 					(void) sm_io_fprintf(smioout,
513 							     SM_TIME_DEFAULT,
514 							     "WARNING: Ruleset %s has multiple definitions\n",
515 							    &bp[1]);
516 				if (tTd(37, 1))
517 					sm_dprintf("WARNING: Ruleset %s has multiple definitions\n",
518 						   &bp[1]);
519 				while (rwp->r_next != NULL)
520 					rwp = rwp->r_next;
521 			}
522 			break;
523 
524 		  case 'D':		/* macro definition */
525 			mid = macid_parse(&bp[1], &ep);
526 			if (mid == 0)
527 				break;
528 			p = munchstring(ep, NULL, '\0');
529 			macdefine(&e->e_macro, A_TEMP, mid, p);
530 			break;
531 
532 		  case 'H':		/* required header line */
533 			(void) chompheader(&bp[1], CHHDR_DEF, NULL, e);
534 			break;
535 
536 		  case 'C':		/* word class */
537 		  case 'T':		/* trusted user (set class `t') */
538 			if (bp[0] == 'C')
539 			{
540 				mid = macid_parse(&bp[1], &ep);
541 				if (mid == 0)
542 					break;
543 				expand(ep, exbuf, sizeof(exbuf), e);
544 				p = exbuf;
545 			}
546 			else
547 			{
548 				mid = 't';
549 				p = &bp[1];
550 			}
551 			while (*p != '\0')
552 			{
553 				register char *wd;
554 				char delim;
555 
556 				while (*p != '\0' && isascii(*p) && isspace(*p))
557 					p++;
558 				wd = p;
559 				while (*p != '\0' && !(isascii(*p) && isspace(*p)))
560 					p++;
561 				delim = *p;
562 				*p = '\0';
563 				if (wd[0] != '\0')
564 					setclass(mid, wd);
565 				*p = delim;
566 			}
567 			break;
568 
569 		  case 'F':		/* word class from file */
570 			mid = macid_parse(&bp[1], &ep);
571 			if (mid == 0)
572 				break;
573 			for (p = ep; isascii(*p) && isspace(*p); )
574 				p++;
575 			if (p[0] == '-' && p[1] == 'o')
576 			{
577 				optional = true;
578 				while (*p != '\0' &&
579 				       !(isascii(*p) && isspace(*p)))
580 					p++;
581 				while (isascii(*p) && isspace(*p))
582 					p++;
583 			}
584 			else
585 				optional = false;
586 
587 			/* check if [key]@map:spec */
588 			ismap = false;
589 			if (!SM_IS_DIR_DELIM(*p) &&
590 			    *p != '|' &&
591 			    (q = strchr(p, '@')) != NULL)
592 			{
593 				q++;
594 
595 				/* look for @LDAP or @map: in string */
596 				if (strcmp(q, "LDAP") == 0 ||
597 				    (*q != ':' &&
598 				     strchr(q, ':') != NULL))
599 					ismap = true;
600 			}
601 
602 			if (ismap)
603 			{
604 				/* use entire spec */
605 				file = p;
606 			}
607 			else
608 			{
609 				file = extrquotstr(p, &q, " ", &ok);
610 				if (!ok)
611 				{
612 					syserr("illegal filename '%s'", p);
613 					break;
614 				}
615 			}
616 
617 			if (*file == '|' || ismap)
618 				p = "%s";
619 			else
620 			{
621 				p = q;
622 				if (*p == '\0')
623 					p = "%s";
624 				else
625 				{
626 					*p = '\0';
627 					while (isascii(*++p) && isspace(*p))
628 						continue;
629 				}
630 			}
631 			fileclass(mid, file, p, ismap, safe, optional);
632 			break;
633 
634 #if XLA
635 		  case 'L':		/* extended load average description */
636 			xla_init(&bp[1]);
637 			break;
638 #endif /* XLA */
639 
640 #if defined(SUN_EXTENSIONS) && defined(SUN_LOOKUP_MACRO)
641 		  case 'L':		/* lookup macro */
642 		  case 'G':		/* lookup class */
643 			/* reserved for Sun -- NIS+ database lookup */
644 			if (VendorCode != VENDOR_SUN)
645 				goto badline;
646 			sun_lg_config_line(bp, e);
647 			break;
648 #endif /* defined(SUN_EXTENSIONS) && defined(SUN_LOOKUP_MACRO) */
649 
650 		  case 'M':		/* define mailer */
651 			makemailer(&bp[1]);
652 			break;
653 
654 		  case 'O':		/* set option */
655 			setoption(bp[1], &bp[2], safe, false, e);
656 			break;
657 
658 		  case 'P':		/* set precedence */
659 			if (NumPriorities >= MAXPRIORITIES)
660 			{
661 				toomany('P', MAXPRIORITIES);
662 				break;
663 			}
664 			for (p = &bp[1]; *p != '\0' && *p != '='; p++)
665 				continue;
666 			if (*p == '\0')
667 				goto badline;
668 			*p = '\0';
669 			Priorities[NumPriorities].pri_name = newstr(&bp[1]);
670 			Priorities[NumPriorities].pri_val = atoi(++p);
671 			NumPriorities++;
672 			break;
673 
674 		  case 'Q':		/* define queue */
675 			makequeue(&bp[1], true);
676 			break;
677 
678 		  case 'V':		/* configuration syntax version */
679 			for (p = &bp[1]; isascii(*p) && isspace(*p); p++)
680 				continue;
681 			if (!isascii(*p) || !isdigit(*p))
682 			{
683 				syserr("invalid argument to V line: \"%.20s\"",
684 					&bp[1]);
685 				break;
686 			}
687 			ConfigLevel = strtol(p, &ep, 10);
688 
689 			/*
690 			**  Do heuristic tweaking for back compatibility.
691 			*/
692 
693 			if (ConfigLevel >= 5)
694 			{
695 				/* level 5 configs have short name in $w */
696 				p = macvalue('w', e);
697 				if (p != NULL && (p = strchr(p, '.')) != NULL)
698 				{
699 					*p = '\0';
700 					macdefine(&e->e_macro, A_TEMP, 'w',
701 						  macvalue('w', e));
702 				}
703 			}
704 			if (ConfigLevel >= 6)
705 			{
706 				ColonOkInAddr = false;
707 			}
708 
709 			/*
710 			**  Look for vendor code.
711 			*/
712 
713 			if (*ep++ == '/')
714 			{
715 				/* extract vendor code */
716 				for (p = ep; isascii(*p) && isalpha(*p); )
717 					p++;
718 				*p = '\0';
719 
720 				if (!setvendor(ep))
721 					syserr("invalid V line vendor code: \"%s\"",
722 						ep);
723 			}
724 			break;
725 
726 		  case 'K':
727 			expand(&bp[1], exbuf, sizeof(exbuf), e);
728 			(void) makemapentry(exbuf);
729 			break;
730 
731 		  case 'E':
732 			p = strchr(bp, '=');
733 			if (p != NULL)
734 				*p++ = '\0';
735 			sm_setuserenv(&bp[1], p);
736 			break;
737 
738 		  case 'X':		/* mail filter */
739 #if MILTER
740 			milter_setup(&bp[1]);
741 #else /* MILTER */
742 			(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
743 					     "Warning: Filter usage ('X') requires Milter support (-DMILTER)\n");
744 #endif /* MILTER */
745 			break;
746 
747 		  default:
748 		  badline:
749 			syserr("unknown configuration line \"%s\"", bp);
750 		}
751 		if (bp != buf)
752 			sm_free(bp); /* XXX */
753 	}
754 	if (sm_io_error(cf))
755 	{
756 		syserr("I/O read error");
757 		finis(false, true, EX_OSFILE);
758 	}
759 	(void) sm_io_close(cf, SM_TIME_DEFAULT);
760 	FileName = NULL;
761 
762 #if _FFR_BOUNCE_QUEUE
763 	initbouncequeue();
764 #endif
765 
766 	/* initialize host maps from local service tables */
767 	inithostmaps();
768 
769 	/* initialize daemon (if not defined yet) */
770 	initdaemon();
771 
772 	/* determine if we need to do special name-server frotz */
773 	{
774 		int nmaps;
775 		char *maptype[MAXMAPSTACK];
776 		short mapreturn[MAXMAPACTIONS];
777 
778 		nmaps = switch_map_find("hosts", maptype, mapreturn);
779 		UseNameServer = false;
780 		if (nmaps > 0 && nmaps <= MAXMAPSTACK)
781 		{
782 			register int mapno;
783 
784 			for (mapno = 0; mapno < nmaps && !UseNameServer;
785 			     mapno++)
786 			{
787 				if (strcmp(maptype[mapno], "dns") == 0)
788 					UseNameServer = true;
789 			}
790 		}
791 	}
792 	setupdynmailers();
793 }
794 
795 /*
796 **  TRANSLATE_DOLLARS -- convert $x into internal form
797 **
798 **	Actually does all appropriate pre-processing of a config line
799 **	to turn it into internal form.
800 **
801 **	Parameters:
802 **		ibp -- the buffer to translate.
803 **		obp -- where to put the translation; may be the same as obp
804 **		bsp -- a pointer to the size of obp; will be updated if
805 **			the buffer needs to be replaced.
806 **
807 **	Returns:
808 **		The buffer pointer; may differ from obp if the expansion
809 **		is larger then *bsp, in which case this will point to
810 **		malloc()ed memory which must be free()d by the caller.
811 */
812 
813 char *
814 translate_dollars(ibp, obp, bsp)
815 	char *ibp;
816 	char *obp;
817 	int *bsp;
818 {
819 	register char *p;
820 	auto char *ep;
821 	char *bp;
822 
823 	if (tTd(37, 53))
824 	{
825 		sm_dprintf("translate_dollars(");
826 		xputs(sm_debug_file(), ibp);
827 		sm_dprintf(")\n");
828 	}
829 
830 	bp = quote_internal_chars(ibp, obp, bsp);
831 
832 	for (p = bp; *p != '\0'; p++)
833 	{
834 		if (*p == '#' && p > bp && ConfigLevel >= 3)
835 		{
836 			register char *e;
837 
838 			switch (*--p & 0377)
839 			{
840 			  case MACROEXPAND:
841 				/* it's from $# -- let it go through */
842 				p++;
843 				break;
844 
845 			  case '\\':
846 				/* it's backslash escaped */
847 				(void) sm_strlcpy(p, p + 1, strlen(p));
848 				break;
849 
850 			  default:
851 				/* delete leading white space */
852 				while (isascii(*p) && isspace(*p) &&
853 				       *p != '\n' && p > bp)
854 				{
855 					p--;
856 				}
857 				if ((e = strchr(++p, '\n')) != NULL)
858 					(void) sm_strlcpy(p, e, strlen(p));
859 				else
860 					*p-- = '\0';
861 				break;
862 			}
863 			continue;
864 		}
865 
866 		if (*p != '$' || p[1] == '\0')
867 			continue;
868 
869 		if (p[1] == '$')
870 		{
871 			/* actual dollar sign.... */
872 			(void) sm_strlcpy(p, p + 1, strlen(p));
873 			continue;
874 		}
875 
876 		/* convert to macro expansion character */
877 		*p++ = MACROEXPAND;
878 
879 		/* special handling for $=, $~, $&, and $? */
880 		if (*p == '=' || *p == '~' || *p == '&' || *p == '?')
881 			p++;
882 
883 		/* convert macro name to code */
884 		*p = macid_parse(p, &ep);
885 		if (ep != p + 1)
886 			(void) sm_strlcpy(p + 1, ep, strlen(p + 1));
887 	}
888 
889 	/* strip trailing white space from the line */
890 	while (--p > bp && isascii(*p) && isspace(*p))
891 		*p = '\0';
892 
893 	if (tTd(37, 53))
894 	{
895 		sm_dprintf("  translate_dollars => ");
896 		xputs(sm_debug_file(), bp);
897 		sm_dprintf("\n");
898 	}
899 
900 	return bp;
901 }
902 /*
903 **  TOOMANY -- signal too many of some option
904 **
905 **	Parameters:
906 **		id -- the id of the error line
907 **		maxcnt -- the maximum possible values
908 **
909 **	Returns:
910 **		none.
911 **
912 **	Side Effects:
913 **		gives a syserr.
914 */
915 
916 static void
917 toomany(id, maxcnt)
918 	int id;
919 	int maxcnt;
920 {
921 	syserr("too many %c lines, %d max", id, maxcnt);
922 }
923 /*
924 **  FILECLASS -- read members of a class from a file
925 **
926 **	Parameters:
927 **		class -- class to define.
928 **		filename -- name of file to read.
929 **		fmt -- scanf string to use for match.
930 **		ismap -- if set, this is a map lookup.
931 **		safe -- if set, this is a safe read.
932 **		optional -- if set, it is not an error for the file to
933 **			not exist.
934 **
935 **	Returns:
936 **		none
937 **
938 **	Side Effects:
939 **		puts all lines in filename that match a scanf into
940 **			the named class.
941 */
942 
943 /*
944 **  Break up the match into words and add to class.
945 */
946 
947 static void
948 parse_class_words(class, line)
949 	int class;
950 	char *line;
951 {
952 	while (line != NULL && *line != '\0')
953 	{
954 		register char *q;
955 
956 		/* strip leading spaces */
957 		while (isascii(*line) && isspace(*line))
958 			line++;
959 		if (*line == '\0')
960 			break;
961 
962 		/* find the end of the word */
963 		q = line;
964 		while (*line != '\0' && !(isascii(*line) && isspace(*line)))
965 			line++;
966 		if (*line != '\0')
967 			*line++ = '\0';
968 
969 		/* enter the word in the symbol table */
970 		setclass(class, q);
971 	}
972 }
973 
974 static void
975 fileclass(class, filename, fmt, ismap, safe, optional)
976 	int class;
977 	char *filename;
978 	char *fmt;
979 	bool ismap;
980 	bool safe;
981 	bool optional;
982 {
983 	SM_FILE_T *f;
984 	long sff;
985 	pid_t pid;
986 	register char *p;
987 	char buf[MAXLINE];
988 
989 	if (tTd(37, 2))
990 		sm_dprintf("fileclass(%s, fmt=%s)\n", filename, fmt);
991 
992 	if (*filename == '\0')
993 	{
994 		syserr("fileclass: missing file name");
995 		return;
996 	}
997 	else if (ismap)
998 	{
999 		int status = 0;
1000 		char *key;
1001 		char *mn;
1002 		char *cl, *spec;
1003 		STAB *mapclass;
1004 		MAP map;
1005 
1006 		mn = newstr(macname(class));
1007 
1008 		key = filename;
1009 
1010 		/* skip past key */
1011 		if ((p = strchr(filename, '@')) == NULL)
1012 		{
1013 			/* should not happen */
1014 			syserr("fileclass: bogus map specification");
1015 			sm_free(mn);
1016 			return;
1017 		}
1018 
1019 		/* skip past '@' */
1020 		*p++ = '\0';
1021 		cl = p;
1022 
1023 #if LDAPMAP
1024 		if (strcmp(cl, "LDAP") == 0)
1025 		{
1026 			int n;
1027 			char *lc;
1028 			char jbuf[MAXHOSTNAMELEN];
1029 			char lcbuf[MAXLINE];
1030 
1031 			/* Get $j */
1032 			expand("\201j", jbuf, sizeof(jbuf), &BlankEnvelope);
1033 			if (jbuf[0] == '\0')
1034 			{
1035 				(void) sm_strlcpy(jbuf, "localhost",
1036 						  sizeof(jbuf));
1037 			}
1038 
1039 			/* impose the default schema */
1040 			lc = macvalue(macid("{sendmailMTACluster}"), CurEnv);
1041 			if (lc == NULL)
1042 				lc = "";
1043 			else
1044 			{
1045 				expand(lc, lcbuf, sizeof(lcbuf), CurEnv);
1046 				lc = lcbuf;
1047 			}
1048 
1049 			cl = "ldap";
1050 			n = sm_snprintf(buf, sizeof(buf),
1051 					"-k (&(objectClass=sendmailMTAClass)(sendmailMTAClassName=%s)(|(sendmailMTACluster=%s)(sendmailMTAHost=%s))) -v sendmailMTAClassValue,sendmailMTAClassSearch:FILTER:sendmailMTAClass,sendmailMTAClassURL:URL:sendmailMTAClass",
1052 					mn, lc, jbuf);
1053 			if (n >= sizeof(buf))
1054 			{
1055 				syserr("fileclass: F{%s}: Default LDAP string too long",
1056 				       mn);
1057 				sm_free(mn);
1058 				return;
1059 			}
1060 			spec = buf;
1061 		}
1062 		else
1063 #endif /* LDAPMAP */
1064 		{
1065 			if ((spec = strchr(cl, ':')) == NULL)
1066 			{
1067 				syserr("fileclass: F{%s}: missing map class",
1068 				       mn);
1069 				sm_free(mn);
1070 				return;
1071 			}
1072 			*spec++ ='\0';
1073 		}
1074 
1075 		/* set up map structure */
1076 		mapclass = stab(cl, ST_MAPCLASS, ST_FIND);
1077 		if (mapclass == NULL)
1078 		{
1079 			syserr("fileclass: F{%s}: class %s not available",
1080 			       mn, cl);
1081 			sm_free(mn);
1082 			return;
1083 		}
1084 		memset(&map, '\0', sizeof(map));
1085 		map.map_class = &mapclass->s_mapclass;
1086 		map.map_mname = mn;
1087 		map.map_mflags |= MF_FILECLASS;
1088 
1089 		if (tTd(37, 5))
1090 			sm_dprintf("fileclass: F{%s}: map class %s, key %s, spec %s\n",
1091 				   mn, cl, key, spec);
1092 
1093 
1094 		/* parse map spec */
1095 		if (!map.map_class->map_parse(&map, spec))
1096 		{
1097 			/* map_parse() showed the error already */
1098 			sm_free(mn);
1099 			return;
1100 		}
1101 		map.map_mflags |= MF_VALID;
1102 
1103 		/* open map */
1104 		if (map.map_class->map_open(&map, O_RDONLY))
1105 		{
1106 			map.map_mflags |= MF_OPEN;
1107 			map.map_pid = getpid();
1108 		}
1109 		else
1110 		{
1111 			if (!optional &&
1112 			    !bitset(MF_OPTIONAL, map.map_mflags))
1113 				syserr("fileclass: F{%s}: map open failed",
1114 				       mn);
1115 			sm_free(mn);
1116 			return;
1117 		}
1118 
1119 		/* lookup */
1120 		p = (*map.map_class->map_lookup)(&map, key, NULL, &status);
1121 		if (status != EX_OK && status != EX_NOTFOUND)
1122 		{
1123 			if (!optional)
1124 				syserr("fileclass: F{%s}: map lookup failed",
1125 				       mn);
1126 			p = NULL;
1127 		}
1128 
1129 		/* use the results */
1130 		if (p != NULL)
1131 			parse_class_words(class, p);
1132 
1133 		/* close map */
1134 		map.map_mflags |= MF_CLOSING;
1135 		map.map_class->map_close(&map);
1136 		map.map_mflags &= ~(MF_OPEN|MF_WRITABLE|MF_CLOSING);
1137 		sm_free(mn);
1138 		return;
1139 	}
1140 	else if (filename[0] == '|')
1141 	{
1142 		auto int fd;
1143 		int i;
1144 		char *argv[MAXPV + 1];
1145 
1146 		i = 0;
1147 		for (p = strtok(&filename[1], " \t");
1148 		     p != NULL && i < MAXPV;
1149 		     p = strtok(NULL, " \t"))
1150 			argv[i++] = p;
1151 		argv[i] = NULL;
1152 		pid = prog_open(argv, &fd, CurEnv);
1153 		if (pid < 0)
1154 			f = NULL;
1155 		else
1156 			f = sm_io_open(SmFtStdiofd, SM_TIME_DEFAULT,
1157 				       (void *) &fd, SM_IO_RDONLY, NULL);
1158 	}
1159 	else
1160 	{
1161 		pid = -1;
1162 		sff = SFF_REGONLY;
1163 		if (!bitnset(DBS_CLASSFILEINUNSAFEDIRPATH, DontBlameSendmail))
1164 			sff |= SFF_SAFEDIRPATH;
1165 		if (!bitnset(DBS_LINKEDCLASSFILEINWRITABLEDIR,
1166 			     DontBlameSendmail))
1167 			sff |= SFF_NOWLINK;
1168 		if (safe)
1169 			sff |= SFF_OPENASROOT;
1170 		else if (RealUid == 0)
1171 			sff |= SFF_ROOTOK;
1172 		if (DontLockReadFiles)
1173 			sff |= SFF_NOLOCK;
1174 		f = safefopen(filename, O_RDONLY, 0, sff);
1175 	}
1176 	if (f == NULL)
1177 	{
1178 		if (!optional)
1179 			syserr("fileclass: cannot open '%s'", filename);
1180 		return;
1181 	}
1182 
1183 	while (sm_io_fgets(f, SM_TIME_DEFAULT, buf, sizeof(buf)) >= 0)
1184 	{
1185 #if SCANF
1186 		char wordbuf[MAXLINE + 1];
1187 #endif /* SCANF */
1188 
1189 		if (buf[0] == '#')
1190 			continue;
1191 #if SCANF
1192 		if (sm_io_sscanf(buf, fmt, wordbuf) != 1)
1193 			continue;
1194 		p = wordbuf;
1195 #else /* SCANF */
1196 		p = buf;
1197 #endif /* SCANF */
1198 
1199 		parse_class_words(class, p);
1200 
1201 		/*
1202 		**  If anything else is added here,
1203 		**  check if the '@' map case above
1204 		**  needs the code as well.
1205 		*/
1206 	}
1207 
1208 	(void) sm_io_close(f, SM_TIME_DEFAULT);
1209 	if (pid > 0)
1210 		(void) waitfor(pid);
1211 }
1212 
1213 #if _FFR_RCPTFLAGS
1214 /* first character for dynamically created mailers */
1215 static char dynmailerp = ' ';
1216 
1217 /* list of first characters for cf defined mailers */
1218 static char frst[MAXMAILERS + 1];
1219 
1220 /*
1221 **  SETUPDYNMAILERS -- find a char that isn't used as first element of any
1222 **		mailer name.
1223 **
1224 **	Parameters:
1225 **		none
1226 **
1227 **	Returns:
1228 **		none
1229 **
1230 **	Note: space is not valid in cf defined mailers hence the function
1231 **		will always find a char. It's not nice, but this is for
1232 **		internal names only.
1233 */
1234 
1235 void
1236 setupdynmailers()
1237 {
1238 	int i;
1239 	char pp[] = "YXZ0123456789ABCDEFGHIJKLMNOPQRSTUVWyxzabcfghijkmnoqtuvw ";
1240 
1241 	frst[MAXMAILERS] = '\0';
1242 	for (i = 0; i < strlen(pp); i++)
1243 	{
1244 		if (strchr(frst, pp[i]) == NULL)
1245 		{
1246 			dynmailerp = pp[i];
1247 			if (tTd(25, 8))
1248 				sm_dprintf("dynmailerp=%c\n", dynmailerp);
1249 			return;
1250 		}
1251 	}
1252 
1253 	/* NOTREACHED */
1254 	SM_ASSERT(0);
1255 }
1256 
1257 /*
1258 **  NEWMODMAILER -- Create a new mailer with modifications
1259 **
1260 **	Parameters:
1261 **		rcpt -- current RCPT
1262 **		fl -- flag to set
1263 **
1264 **	Returns:
1265 **		true iff successful.
1266 **
1267 **	Note: this creates a copy of the mailer for the rcpt and
1268 **		modifies exactly one flag.  It does not work
1269 **		for multiple flags!
1270 */
1271 
1272 bool
1273 newmodmailer(rcpt, fl)
1274 	ADDRESS *rcpt;
1275 	int fl;
1276 {
1277 	int idx;
1278 	struct mailer *m;
1279 	STAB *s;
1280 	char mname[256];
1281 
1282 	SM_REQUIRE(rcpt != NULL);
1283 	if (rcpt->q_mailer == NULL)
1284 		return false;
1285 	if (tTd(25, 8))
1286 		sm_dprintf("newmodmailer: rcpt=%s\n", rcpt->q_paddr);
1287 	SM_REQUIRE(rcpt->q_mailer->m_name != NULL);
1288 	SM_REQUIRE(rcpt->q_mailer->m_name[0] != '\0');
1289 	sm_strlcpy(mname, rcpt->q_mailer->m_name, sizeof(mname));
1290 	mname[0] = dynmailerp;
1291 	if (tTd(25, 8))
1292 		sm_dprintf("newmodmailer: name=%s\n", mname);
1293 	s = stab(mname, ST_MAILER, ST_ENTER);
1294 	if (s->s_mailer != NULL)
1295 	{
1296 		idx = s->s_mailer->m_mno;
1297 		if (tTd(25, 6))
1298 			sm_dprintf("newmodmailer: found idx=%d\n", idx);
1299 	}
1300 	else
1301 	{
1302 		idx = rcpt->q_mailer->m_mno;
1303 		idx += MAXMAILERS;
1304 		if (tTd(25, 6))
1305 			sm_dprintf("newmodmailer: idx=%d\n", idx);
1306 		if (idx > SM_ARRAY_SIZE(Mailer))
1307 			return false;
1308 	}
1309 
1310 	m = Mailer[idx];
1311 	if (m == NULL)
1312 		m = (struct mailer *) xalloc(sizeof(*m));
1313 	memset((char *) m, '\0', sizeof(*m));
1314 	STRUCTCOPY(*rcpt->q_mailer, *m);
1315 	Mailer[idx] = m;
1316 
1317 	/* "modify" the mailer */
1318 	setbitn(bitidx(fl), m->m_flags);
1319 	rcpt->q_mailer = m;
1320 	m->m_mno = idx;
1321 	m->m_name = newstr(mname);
1322 	if (tTd(25, 1))
1323 		sm_dprintf("newmodmailer: mailer[%d]=%s %p\n",
1324 			idx, Mailer[idx]->m_name, Mailer[idx]);
1325 
1326 	return true;
1327 }
1328 
1329 #endif /* _FFR_RCPTFLAGS */
1330 
1331 /*
1332 **  MAKEMAILER -- define a new mailer.
1333 **
1334 **	Parameters:
1335 **		line -- description of mailer.  This is in labeled
1336 **			fields.  The fields are:
1337 **			   A -- the argv for this mailer
1338 **			   C -- the character set for MIME conversions
1339 **			   D -- the directory to run in
1340 **			   E -- the eol string
1341 **			   F -- the flags associated with the mailer
1342 **			   L -- the maximum line length
1343 **			   M -- the maximum message size
1344 **			   N -- the niceness at which to run
1345 **			   P -- the path to the mailer
1346 **			   Q -- the queue group for the mailer
1347 **			   R -- the recipient rewriting set
1348 **			   S -- the sender rewriting set
1349 **			   T -- the mailer type (for DSNs)
1350 **			   U -- the uid to run as
1351 **			   W -- the time to wait at the end
1352 **			   m -- maximum messages per connection
1353 **			   r -- maximum number of recipients per message
1354 **			   / -- new root directory
1355 **			The first word is the canonical name of the mailer.
1356 **
1357 **	Returns:
1358 **		none.
1359 **
1360 **	Side Effects:
1361 **		enters the mailer into the mailer table.
1362 */
1363 
1364 
1365 void
1366 makemailer(line)
1367 	char *line;
1368 {
1369 	register char *p;
1370 	register struct mailer *m;
1371 	register STAB *s;
1372 	int i;
1373 	char fcode;
1374 	auto char *endp;
1375 	static int nextmailer = 0;	/* "free" index into Mailer struct */
1376 
1377 	/* allocate a mailer and set up defaults */
1378 	m = (struct mailer *) xalloc(sizeof(*m));
1379 	memset((char *) m, '\0', sizeof(*m));
1380 	errno = 0; /* avoid bogus error text */
1381 
1382 	/* collect the mailer name */
1383 	for (p = line;
1384 	     *p != '\0' && *p != ',' && !(isascii(*p) && isspace(*p));
1385 	     p++)
1386 		continue;
1387 	if (*p != '\0')
1388 		*p++ = '\0';
1389 	if (line[0] == '\0')
1390 	{
1391 		syserr("name required for mailer");
1392 		return;
1393 	}
1394 	m->m_name = newstr(line);
1395 #if _FFR_RCPTFLAGS
1396 	frst[nextmailer] = line[0];
1397 #endif
1398 	m->m_qgrp = NOQGRP;
1399 	m->m_uid = NO_UID;
1400 	m->m_gid = NO_GID;
1401 
1402 	/* now scan through and assign info from the fields */
1403 	while (*p != '\0')
1404 	{
1405 		auto char *delimptr;
1406 
1407 		while (*p != '\0' &&
1408 		       (*p == ',' || (isascii(*p) && isspace(*p))))
1409 			p++;
1410 
1411 		/* p now points to field code */
1412 		fcode = *p;
1413 		while (*p != '\0' && *p != '=' && *p != ',')
1414 			p++;
1415 		if (*p++ != '=')
1416 		{
1417 			syserr("mailer %s: `=' expected", m->m_name);
1418 			return;
1419 		}
1420 		while (isascii(*p) && isspace(*p))
1421 			p++;
1422 
1423 		/* p now points to the field body */
1424 		p = munchstring(p, &delimptr, ',');
1425 
1426 		/* install the field into the mailer struct */
1427 		switch (fcode)
1428 		{
1429 		  case 'P':		/* pathname */
1430 			if (*p != '\0')	/* error is issued below */
1431 				m->m_mailer = newstr(p);
1432 			break;
1433 
1434 		  case 'F':		/* flags */
1435 			for (; *p != '\0'; p++)
1436 			{
1437 				if (!(isascii(*p) && isspace(*p)))
1438 				{
1439 					if (*p == M_INTERNAL)
1440 						sm_syslog(LOG_WARNING, NOQID,
1441 							  "WARNING: mailer=%s, flag=%c deprecated",
1442 							  m->m_name, *p);
1443 					setbitn(bitidx(*p), m->m_flags);
1444 				}
1445 			}
1446 			break;
1447 
1448 		  case 'S':		/* sender rewriting ruleset */
1449 		  case 'R':		/* recipient rewriting ruleset */
1450 			i = strtorwset(p, &endp, ST_ENTER);
1451 			if (i < 0)
1452 				return;
1453 			if (fcode == 'S')
1454 				m->m_sh_rwset = m->m_se_rwset = i;
1455 			else
1456 				m->m_rh_rwset = m->m_re_rwset = i;
1457 
1458 			p = endp;
1459 			if (*p++ == '/')
1460 			{
1461 				i = strtorwset(p, NULL, ST_ENTER);
1462 				if (i < 0)
1463 					return;
1464 				if (fcode == 'S')
1465 					m->m_sh_rwset = i;
1466 				else
1467 					m->m_rh_rwset = i;
1468 			}
1469 			break;
1470 
1471 		  case 'E':		/* end of line string */
1472 			if (*p == '\0')
1473 				syserr("mailer %s: null end-of-line string",
1474 					m->m_name);
1475 			else
1476 				m->m_eol = newstr(p);
1477 			break;
1478 
1479 		  case 'A':		/* argument vector */
1480 			if (*p != '\0')	/* error is issued below */
1481 				m->m_argv = makeargv(p);
1482 			break;
1483 
1484 		  case 'M':		/* maximum message size */
1485 			m->m_maxsize = atol(p);
1486 			break;
1487 
1488 		  case 'm':		/* maximum messages per connection */
1489 			m->m_maxdeliveries = atoi(p);
1490 			break;
1491 
1492 		  case 'r':		/* max recipient per envelope */
1493 			m->m_maxrcpt = atoi(p);
1494 			break;
1495 
1496 		  case 'L':		/* maximum line length */
1497 			m->m_linelimit = atoi(p);
1498 			if (m->m_linelimit < 0)
1499 				m->m_linelimit = 0;
1500 			break;
1501 
1502 		  case 'N':		/* run niceness */
1503 			m->m_nice = atoi(p);
1504 			break;
1505 
1506 		  case 'D':		/* working directory */
1507 			if (*p == '\0')
1508 				syserr("mailer %s: null working directory",
1509 					m->m_name);
1510 			else
1511 				m->m_execdir = newstr(p);
1512 			break;
1513 
1514 		  case 'C':		/* default charset */
1515 			if (*p == '\0')
1516 				syserr("mailer %s: null charset", m->m_name);
1517 			else
1518 				m->m_defcharset = newstr(p);
1519 			break;
1520 
1521 		  case 'Q':		/* queue for this mailer */
1522 			if (*p == '\0')
1523 			{
1524 				syserr("mailer %s: null queue", m->m_name);
1525 				break;
1526 			}
1527 			s = stab(p, ST_QUEUE, ST_FIND);
1528 			if (s == NULL)
1529 				syserr("mailer %s: unknown queue %s",
1530 					m->m_name, p);
1531 			else
1532 				m->m_qgrp = s->s_quegrp->qg_index;
1533 			break;
1534 
1535 		  case 'T':		/* MTA-Name/Address/Diagnostic types */
1536 			/* extract MTA name type; default to "dns" */
1537 			m->m_mtatype = newstr(p);
1538 			p = strchr(m->m_mtatype, '/');
1539 			if (p != NULL)
1540 			{
1541 				*p++ = '\0';
1542 				if (*p == '\0')
1543 					p = NULL;
1544 			}
1545 			if (*m->m_mtatype == '\0')
1546 				m->m_mtatype = "dns";
1547 
1548 			/* extract address type; default to "rfc822" */
1549 			m->m_addrtype = p;
1550 			if (p != NULL)
1551 				p = strchr(p, '/');
1552 			if (p != NULL)
1553 			{
1554 				*p++ = '\0';
1555 				if (*p == '\0')
1556 					p = NULL;
1557 			}
1558 			if (m->m_addrtype == NULL || *m->m_addrtype == '\0')
1559 				m->m_addrtype = "rfc822";
1560 
1561 			/* extract diagnostic type; default to "smtp" */
1562 			m->m_diagtype = p;
1563 			if (m->m_diagtype == NULL || *m->m_diagtype == '\0')
1564 				m->m_diagtype = "smtp";
1565 			break;
1566 
1567 		  case 'U':		/* user id */
1568 			if (isascii(*p) && !isdigit(*p))
1569 			{
1570 				char *q = p;
1571 				struct passwd *pw;
1572 
1573 				while (*p != '\0' && isascii(*p) &&
1574 # if _FFR_DOTTED_USERNAMES
1575 				       (isalnum(*p) || strchr(SM_PWN_CHARS, *p) != NULL))
1576 # else /* _FFR_DOTTED_USERNAMES */
1577 				       (isalnum(*p) || strchr("-_", *p) != NULL))
1578 # endif /* _FFR_DOTTED_USERNAMES */
1579 					p++;
1580 				while (isascii(*p) && isspace(*p))
1581 					*p++ = '\0';
1582 				if (*p != '\0')
1583 					*p++ = '\0';
1584 				if (*q == '\0')
1585 				{
1586 					syserr("mailer %s: null user name",
1587 						m->m_name);
1588 					break;
1589 				}
1590 				pw = sm_getpwnam(q);
1591 				if (pw == NULL)
1592 				{
1593 					syserr("readcf: mailer U= flag: unknown user %s", q);
1594 					break;
1595 				}
1596 				else
1597 				{
1598 					m->m_uid = pw->pw_uid;
1599 					m->m_gid = pw->pw_gid;
1600 				}
1601 			}
1602 			else
1603 			{
1604 				auto char *q;
1605 
1606 				m->m_uid = strtol(p, &q, 0);
1607 				p = q;
1608 				while (isascii(*p) && isspace(*p))
1609 					p++;
1610 				if (*p != '\0')
1611 					p++;
1612 			}
1613 			while (isascii(*p) && isspace(*p))
1614 				p++;
1615 			if (*p == '\0')
1616 				break;
1617 			if (isascii(*p) && !isdigit(*p))
1618 			{
1619 				char *q = p;
1620 				struct group *gr;
1621 
1622 				while (isascii(*p) &&
1623 				       (isalnum(*p) || strchr(SM_PWN_CHARS, *p) != NULL))
1624 					p++;
1625 				*p++ = '\0';
1626 				if (*q == '\0')
1627 				{
1628 					syserr("mailer %s: null group name",
1629 						m->m_name);
1630 					break;
1631 				}
1632 				gr = getgrnam(q);
1633 				if (gr == NULL)
1634 				{
1635 					syserr("readcf: mailer U= flag: unknown group %s", q);
1636 					break;
1637 				}
1638 				else
1639 					m->m_gid = gr->gr_gid;
1640 			}
1641 			else
1642 			{
1643 				m->m_gid = strtol(p, NULL, 0);
1644 			}
1645 			break;
1646 
1647 		  case 'W':		/* wait timeout */
1648 			m->m_wait = convtime(p, 's');
1649 			break;
1650 
1651 		  case '/':		/* new root directory */
1652 			if (*p == '\0')
1653 				syserr("mailer %s: null root directory",
1654 					m->m_name);
1655 			else
1656 				m->m_rootdir = newstr(p);
1657 			break;
1658 
1659 		  default:
1660 			syserr("M%s: unknown mailer equate %c=",
1661 			       m->m_name, fcode);
1662 			break;
1663 		}
1664 
1665 		p = delimptr;
1666 	}
1667 
1668 #if !HASRRESVPORT
1669 	if (bitnset(M_SECURE_PORT, m->m_flags))
1670 	{
1671 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
1672 				     "M%s: Warning: F=%c set on system that doesn't support rresvport()\n",
1673 				     m->m_name, M_SECURE_PORT);
1674 	}
1675 #endif /* !HASRRESVPORT */
1676 
1677 #if !HASNICE
1678 	if (m->m_nice != 0)
1679 	{
1680 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
1681 				     "M%s: Warning: N= set on system that doesn't support nice()\n",
1682 				     m->m_name);
1683 	}
1684 #endif /* !HASNICE */
1685 
1686 	/* do some rationality checking */
1687 	if (m->m_argv == NULL)
1688 	{
1689 		syserr("M%s: A= argument required", m->m_name);
1690 		return;
1691 	}
1692 	if (m->m_mailer == NULL)
1693 	{
1694 		syserr("M%s: P= argument required", m->m_name);
1695 		return;
1696 	}
1697 
1698 	if (nextmailer >= MAXMAILERS)
1699 	{
1700 		syserr("too many mailers defined (%d max)", MAXMAILERS);
1701 		return;
1702 	}
1703 
1704 	if (m->m_maxrcpt <= 0)
1705 		m->m_maxrcpt = DEFAULT_MAX_RCPT;
1706 
1707 	/* do some heuristic cleanup for back compatibility */
1708 	if (bitnset(M_LIMITS, m->m_flags))
1709 	{
1710 		if (m->m_linelimit == 0)
1711 			m->m_linelimit = SMTPLINELIM;
1712 		if (ConfigLevel < 2)
1713 			setbitn(M_7BITS, m->m_flags);
1714 	}
1715 
1716 	if (strcmp(m->m_mailer, "[TCP]") == 0)
1717 	{
1718 		syserr("M%s: P=[TCP] must be replaced by P=[IPC]", m->m_name);
1719 		return;
1720 	}
1721 
1722 	if (strcmp(m->m_mailer, "[IPC]") == 0)
1723 	{
1724 		/* Use the second argument for host or path to socket */
1725 		if (m->m_argv[0] == NULL || m->m_argv[1] == NULL ||
1726 		    m->m_argv[1][0] == '\0')
1727 		{
1728 			syserr("M%s: too few parameters for %s mailer",
1729 			       m->m_name, m->m_mailer);
1730 			return;
1731 		}
1732 		if (strcmp(m->m_argv[0], "TCP") != 0
1733 #if NETUNIX
1734 		    && strcmp(m->m_argv[0], "FILE") != 0
1735 #endif /* NETUNIX */
1736 		    )
1737 		{
1738 			(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
1739 					     "M%s: Warning: first argument in %s mailer must be %s\n",
1740 					     m->m_name, m->m_mailer,
1741 #if NETUNIX
1742 					     "TCP or FILE"
1743 #else /* NETUNIX */
1744 					     "TCP"
1745 #endif /* NETUNIX */
1746 				     );
1747 		}
1748 		if (m->m_mtatype == NULL)
1749 			m->m_mtatype = "dns";
1750 		if (m->m_addrtype == NULL)
1751 			m->m_addrtype = "rfc822";
1752 		if (m->m_diagtype == NULL)
1753 		{
1754 			if (m->m_argv[0] != NULL &&
1755 			    strcmp(m->m_argv[0], "FILE") == 0)
1756 				m->m_diagtype = "x-unix";
1757 			else
1758 				m->m_diagtype = "smtp";
1759 		}
1760 	}
1761 	else if (strcmp(m->m_mailer, "[FILE]") == 0)
1762 	{
1763 		/* Use the second argument for filename */
1764 		if (m->m_argv[0] == NULL || m->m_argv[1] == NULL ||
1765 		    m->m_argv[2] != NULL)
1766 		{
1767 			syserr("M%s: too %s parameters for [FILE] mailer",
1768 			       m->m_name,
1769 			       (m->m_argv[0] == NULL ||
1770 				m->m_argv[1] == NULL) ? "few" : "many");
1771 			return;
1772 		}
1773 		else if (strcmp(m->m_argv[0], "FILE") != 0)
1774 		{
1775 			syserr("M%s: first argument in [FILE] mailer must be FILE",
1776 			       m->m_name);
1777 			return;
1778 		}
1779 	}
1780 
1781 	if (m->m_eol == NULL)
1782 	{
1783 		char **pp;
1784 
1785 		/* default for SMTP is \r\n; use \n for local delivery */
1786 		for (pp = m->m_argv; *pp != NULL; pp++)
1787 		{
1788 			for (p = *pp; *p != '\0'; )
1789 			{
1790 				if ((*p++ & 0377) == MACROEXPAND && *p == 'u')
1791 					break;
1792 			}
1793 			if (*p != '\0')
1794 				break;
1795 		}
1796 		if (*pp == NULL)
1797 			m->m_eol = "\r\n";
1798 		else
1799 			m->m_eol = "\n";
1800 	}
1801 
1802 	/* enter the mailer into the symbol table */
1803 	s = stab(m->m_name, ST_MAILER, ST_ENTER);
1804 	if (s->s_mailer != NULL)
1805 	{
1806 		i = s->s_mailer->m_mno;
1807 		sm_free(s->s_mailer); /* XXX */
1808 	}
1809 	else
1810 	{
1811 		i = nextmailer++;
1812 	}
1813 	Mailer[i] = s->s_mailer = m;
1814 	m->m_mno = i;
1815 }
1816 /*
1817 **  MUNCHSTRING -- translate a string into internal form.
1818 **
1819 **	Parameters:
1820 **		p -- the string to munch.
1821 **		delimptr -- if non-NULL, set to the pointer of the
1822 **			field delimiter character.
1823 **		delim -- the delimiter for the field.
1824 **
1825 **	Returns:
1826 **		the munched string.
1827 **
1828 **	Side Effects:
1829 **		the munched string is a local static buffer.
1830 **		it must be copied before the function is called again.
1831 */
1832 
1833 char *
1834 munchstring(p, delimptr, delim)
1835 	register char *p;
1836 	char **delimptr;
1837 	int delim;
1838 {
1839 	register char *q;
1840 	bool backslash = false;
1841 	bool quotemode = false;
1842 	static char buf[MAXLINE];
1843 
1844 	for (q = buf; *p != '\0' && q < &buf[sizeof(buf) - 1]; p++)
1845 	{
1846 		if (backslash)
1847 		{
1848 			/* everything is roughly literal */
1849 			backslash = false;
1850 			switch (*p)
1851 			{
1852 			  case 'r':		/* carriage return */
1853 				*q++ = '\r';
1854 				continue;
1855 
1856 			  case 'n':		/* newline */
1857 				*q++ = '\n';
1858 				continue;
1859 
1860 			  case 'f':		/* form feed */
1861 				*q++ = '\f';
1862 				continue;
1863 
1864 			  case 'b':		/* backspace */
1865 				*q++ = '\b';
1866 				continue;
1867 			}
1868 			*q++ = *p;
1869 		}
1870 		else
1871 		{
1872 			if (*p == '\\')
1873 				backslash = true;
1874 			else if (*p == '"')
1875 				quotemode = !quotemode;
1876 			else if (quotemode || *p != delim)
1877 				*q++ = *p;
1878 			else
1879 				break;
1880 		}
1881 	}
1882 
1883 	if (delimptr != NULL)
1884 		*delimptr = p;
1885 	*q++ = '\0';
1886 	return buf;
1887 }
1888 /*
1889 **  EXTRQUOTSTR -- extract a (quoted) string.
1890 **
1891 **	This routine deals with quoted (") strings and escaped
1892 **	spaces (\\ ).
1893 **
1894 **	Parameters:
1895 **		p -- source string.
1896 **		delimptr -- if non-NULL, set to the pointer of the
1897 **			field delimiter character.
1898 **		delimbuf -- delimiters for the field.
1899 **		st -- if non-NULL, store the return value (whether the
1900 **			string was correctly quoted) here.
1901 **
1902 **	Returns:
1903 **		the extracted string.
1904 **
1905 **	Side Effects:
1906 **		the returned string is a local static buffer.
1907 **		it must be copied before the function is called again.
1908 */
1909 
1910 static char *
1911 extrquotstr(p, delimptr, delimbuf, st)
1912 	register char *p;
1913 	char **delimptr;
1914 	char *delimbuf;
1915 	bool *st;
1916 {
1917 	register char *q;
1918 	bool backslash = false;
1919 	bool quotemode = false;
1920 	static char buf[MAXLINE];
1921 
1922 	for (q = buf; *p != '\0' && q < &buf[sizeof(buf) - 1]; p++)
1923 	{
1924 		if (backslash)
1925 		{
1926 			backslash = false;
1927 			if (*p != ' ')
1928 				*q++ = '\\';
1929 		}
1930 		if (*p == '\\')
1931 			backslash = true;
1932 		else if (*p == '"')
1933 			quotemode = !quotemode;
1934 		else if (quotemode ||
1935 			 strchr(delimbuf, (int) *p) == NULL)
1936 			*q++ = *p;
1937 		else
1938 			break;
1939 	}
1940 
1941 	if (delimptr != NULL)
1942 		*delimptr = p;
1943 	*q++ = '\0';
1944 	if (st != NULL)
1945 		*st = !(quotemode || backslash);
1946 	return buf;
1947 }
1948 /*
1949 **  MAKEARGV -- break up a string into words
1950 **
1951 **	Parameters:
1952 **		p -- the string to break up.
1953 **
1954 **	Returns:
1955 **		a char **argv (dynamically allocated)
1956 **
1957 **	Side Effects:
1958 **		munges p.
1959 */
1960 
1961 static char **
1962 makeargv(p)
1963 	register char *p;
1964 {
1965 	char *q;
1966 	int i;
1967 	char **avp;
1968 	char *argv[MAXPV + 1];
1969 
1970 	/* take apart the words */
1971 	i = 0;
1972 	while (*p != '\0' && i < MAXPV)
1973 	{
1974 		q = p;
1975 		while (*p != '\0' && !(isascii(*p) && isspace(*p)))
1976 			p++;
1977 		while (isascii(*p) && isspace(*p))
1978 			*p++ = '\0';
1979 		argv[i++] = newstr(q);
1980 	}
1981 	argv[i++] = NULL;
1982 
1983 	/* now make a copy of the argv */
1984 	avp = (char **) xalloc(sizeof(*avp) * i);
1985 	memmove((char *) avp, (char *) argv, sizeof(*avp) * i);
1986 
1987 	return avp;
1988 }
1989 /*
1990 **  PRINTRULES -- print rewrite rules (for debugging)
1991 **
1992 **	Parameters:
1993 **		none.
1994 **
1995 **	Returns:
1996 **		none.
1997 **
1998 **	Side Effects:
1999 **		prints rewrite rules.
2000 */
2001 
2002 void
2003 printrules()
2004 {
2005 	register struct rewrite *rwp;
2006 	register int ruleset;
2007 
2008 	for (ruleset = 0; ruleset < 10; ruleset++)
2009 	{
2010 		if (RewriteRules[ruleset] == NULL)
2011 			continue;
2012 		sm_dprintf("\n----Rule Set %d:", ruleset);
2013 
2014 		for (rwp = RewriteRules[ruleset]; rwp != NULL; rwp = rwp->r_next)
2015 		{
2016 			sm_dprintf("\nLHS:");
2017 			printav(sm_debug_file(), rwp->r_lhs);
2018 			sm_dprintf("RHS:");
2019 			printav(sm_debug_file(), rwp->r_rhs);
2020 		}
2021 	}
2022 }
2023 /*
2024 **  PRINTMAILER -- print mailer structure (for debugging)
2025 **
2026 **	Parameters:
2027 **		fp -- output file
2028 **		m -- the mailer to print
2029 **
2030 **	Returns:
2031 **		none.
2032 */
2033 
2034 void
2035 printmailer(fp, m)
2036 	SM_FILE_T *fp;
2037 	register MAILER *m;
2038 {
2039 	int j;
2040 
2041 	(void) sm_io_fprintf(fp, SM_TIME_DEFAULT,
2042 			     "mailer %d (%s): P=%s S=", m->m_mno, m->m_name,
2043 			     m->m_mailer);
2044 	if (RuleSetNames[m->m_se_rwset] == NULL)
2045 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%d/",
2046 				     m->m_se_rwset);
2047 	else
2048 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%s/",
2049 				     RuleSetNames[m->m_se_rwset]);
2050 	if (RuleSetNames[m->m_sh_rwset] == NULL)
2051 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%d R=",
2052 				     m->m_sh_rwset);
2053 	else
2054 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%s R=",
2055 				     RuleSetNames[m->m_sh_rwset]);
2056 	if (RuleSetNames[m->m_re_rwset] == NULL)
2057 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%d/",
2058 				     m->m_re_rwset);
2059 	else
2060 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%s/",
2061 				     RuleSetNames[m->m_re_rwset]);
2062 	if (RuleSetNames[m->m_rh_rwset] == NULL)
2063 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%d ",
2064 				     m->m_rh_rwset);
2065 	else
2066 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "%s ",
2067 				     RuleSetNames[m->m_rh_rwset]);
2068 	(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "M=%ld U=%d:%d F=",
2069 			     m->m_maxsize, (int) m->m_uid, (int) m->m_gid);
2070 	for (j = '\0'; j <= '\177'; j++)
2071 		if (bitnset(j, m->m_flags))
2072 			(void) sm_io_putc(fp, SM_TIME_DEFAULT, j);
2073 	(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " L=%d E=",
2074 			     m->m_linelimit);
2075 	xputs(fp, m->m_eol);
2076 	if (m->m_defcharset != NULL)
2077 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " C=%s",
2078 				     m->m_defcharset);
2079 	(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " T=%s/%s/%s",
2080 			     m->m_mtatype == NULL
2081 				? "<undefined>" : m->m_mtatype,
2082 			     m->m_addrtype == NULL
2083 				? "<undefined>" : m->m_addrtype,
2084 			     m->m_diagtype == NULL
2085 				? "<undefined>" : m->m_diagtype);
2086 	(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " r=%d", m->m_maxrcpt);
2087 	if (m->m_argv != NULL)
2088 	{
2089 		char **a = m->m_argv;
2090 
2091 		(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, " A=");
2092 		while (*a != NULL)
2093 		{
2094 			if (a != m->m_argv)
2095 				(void) sm_io_fprintf(fp, SM_TIME_DEFAULT,
2096 						     " ");
2097 			xputs(fp, *a++);
2098 		}
2099 	}
2100 	(void) sm_io_fprintf(fp, SM_TIME_DEFAULT, "\n");
2101 }
2102 
2103 #if STARTTLS
2104 static struct ssl_options
2105 {
2106 	const char	*sslopt_name;	/* name of the flag */
2107 	long		sslopt_bits;	/* bits to set/clear */
2108 } SSL_Option[] =
2109 {
2110 /* Workaround for bugs are turned on by default (as well as some others) */
2111 #ifdef SSL_OP_MICROSOFT_SESS_ID_BUG
2112 	{ "SSL_OP_MICROSOFT_SESS_ID_BUG",	SSL_OP_MICROSOFT_SESS_ID_BUG	},
2113 #endif
2114 #ifdef SSL_OP_NETSCAPE_CHALLENGE_BUG
2115 	{ "SSL_OP_NETSCAPE_CHALLENGE_BUG",	SSL_OP_NETSCAPE_CHALLENGE_BUG	},
2116 #endif
2117 #ifdef SSL_OP_LEGACY_SERVER_CONNECT
2118 	{ "SSL_OP_LEGACY_SERVER_CONNECT",	SSL_OP_LEGACY_SERVER_CONNECT	},
2119 #endif
2120 #ifdef SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG
2121 	{ "SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG",	SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG	},
2122 #endif
2123 #ifdef SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG
2124 	{ "SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG",	SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG	},
2125 #endif
2126 #ifdef SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER
2127 	{ "SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER",	SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER	},
2128 #endif
2129 #ifdef SSL_OP_MSIE_SSLV2_RSA_PADDING
2130 	{ "SSL_OP_MSIE_SSLV2_RSA_PADDING",	SSL_OP_MSIE_SSLV2_RSA_PADDING	},
2131 #endif
2132 #ifdef SSL_OP_SSLEAY_080_CLIENT_DH_BUG
2133 	{ "SSL_OP_SSLEAY_080_CLIENT_DH_BUG",	SSL_OP_SSLEAY_080_CLIENT_DH_BUG	},
2134 #endif
2135 #ifdef SSL_OP_TLS_D5_BUG
2136 	{ "SSL_OP_TLS_D5_BUG",	SSL_OP_TLS_D5_BUG	},
2137 #endif
2138 #ifdef SSL_OP_TLS_BLOCK_PADDING_BUG
2139 	{ "SSL_OP_TLS_BLOCK_PADDING_BUG",	SSL_OP_TLS_BLOCK_PADDING_BUG	},
2140 #endif
2141 #ifdef SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS
2142 	{ "SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS",	SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS	},
2143 #endif
2144 #ifdef SSL_OP_ALL
2145 	{ "SSL_OP_ALL",	SSL_OP_ALL	},
2146 #endif
2147 #ifdef SSL_OP_NO_QUERY_MTU
2148 	{ "SSL_OP_NO_QUERY_MTU",	SSL_OP_NO_QUERY_MTU	},
2149 #endif
2150 #ifdef SSL_OP_COOKIE_EXCHANGE
2151 	{ "SSL_OP_COOKIE_EXCHANGE",	SSL_OP_COOKIE_EXCHANGE	},
2152 #endif
2153 #ifdef SSL_OP_NO_TICKET
2154 	{ "SSL_OP_NO_TICKET",	SSL_OP_NO_TICKET	},
2155 #endif
2156 #ifdef SSL_OP_CISCO_ANYCONNECT
2157 	{ "SSL_OP_CISCO_ANYCONNECT",	SSL_OP_CISCO_ANYCONNECT	},
2158 #endif
2159 #ifdef SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION
2160 	{ "SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION",	SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION	},
2161 #endif
2162 #ifdef SSL_OP_NO_COMPRESSION
2163 	{ "SSL_OP_NO_COMPRESSION",	SSL_OP_NO_COMPRESSION	},
2164 #endif
2165 #ifdef SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION
2166 	{ "SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION",	SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION	},
2167 #endif
2168 #ifdef SSL_OP_SINGLE_ECDH_USE
2169 	{ "SSL_OP_SINGLE_ECDH_USE",	SSL_OP_SINGLE_ECDH_USE	},
2170 #endif
2171 #ifdef SSL_OP_SINGLE_DH_USE
2172 	{ "SSL_OP_SINGLE_DH_USE",	SSL_OP_SINGLE_DH_USE	},
2173 #endif
2174 #ifdef SSL_OP_EPHEMERAL_RSA
2175 	{ "SSL_OP_EPHEMERAL_RSA",	SSL_OP_EPHEMERAL_RSA	},
2176 #endif
2177 #ifdef SSL_OP_CIPHER_SERVER_PREFERENCE
2178 	{ "SSL_OP_CIPHER_SERVER_PREFERENCE",	SSL_OP_CIPHER_SERVER_PREFERENCE	},
2179 #endif
2180 #ifdef SSL_OP_TLS_ROLLBACK_BUG
2181 	{ "SSL_OP_TLS_ROLLBACK_BUG",	SSL_OP_TLS_ROLLBACK_BUG	},
2182 #endif
2183 #ifdef SSL_OP_NO_SSLv2
2184 	{ "SSL_OP_NO_SSLv2",	SSL_OP_NO_SSLv2	},
2185 #endif
2186 #ifdef SSL_OP_NO_SSLv3
2187 	{ "SSL_OP_NO_SSLv3",	SSL_OP_NO_SSLv3	},
2188 #endif
2189 #ifdef SSL_OP_NO_TLSv1
2190 	{ "SSL_OP_NO_TLSv1",	SSL_OP_NO_TLSv1	},
2191 #endif
2192 #ifdef SSL_OP_NO_TLSv1_2
2193 	{ "SSL_OP_NO_TLSv1_2",	SSL_OP_NO_TLSv1_2	},
2194 #endif
2195 #ifdef SSL_OP_NO_TLSv1_1
2196 	{ "SSL_OP_NO_TLSv1_1",	SSL_OP_NO_TLSv1_1	},
2197 #endif
2198 #ifdef SSL_OP_PKCS1_CHECK_1
2199 	{ "SSL_OP_PKCS1_CHECK_1",	SSL_OP_PKCS1_CHECK_1	},
2200 #endif
2201 #ifdef SSL_OP_PKCS1_CHECK_2
2202 	{ "SSL_OP_PKCS1_CHECK_2",	SSL_OP_PKCS1_CHECK_2	},
2203 #endif
2204 #ifdef SSL_OP_NETSCAPE_CA_DN_BUG
2205 	{ "SSL_OP_NETSCAPE_CA_DN_BUG",	SSL_OP_NETSCAPE_CA_DN_BUG	},
2206 #endif
2207 #ifdef SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG
2208 	{ "SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG",	SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG	},
2209 #endif
2210 #ifdef SSL_OP_CRYPTOPRO_TLSEXT_BUG
2211 	{ "SSL_OP_CRYPTOPRO_TLSEXT_BUG",	SSL_OP_CRYPTOPRO_TLSEXT_BUG	},
2212 #endif
2213 #ifdef SSL_OP_TLSEXT_PADDING
2214 	{ "SSL_OP_TLSEXT_PADDING",	SSL_OP_TLSEXT_PADDING	},
2215 #endif
2216 	{ NULL,		0		}
2217 };
2218 
2219 /*
2220 ** READSSLOPTIONS  -- read SSL_OP_* values
2221 **
2222 **	Parameters:
2223 **		opt -- name of option (can be NULL)
2224 **		val -- string with SSL_OP_* values or hex value
2225 **		delim -- end of string (e.g., '\0' or ';')
2226 **		pssloptions -- return value (output)
2227 **
2228 **	Returns:
2229 **		0 on success.
2230 */
2231 
2232 #define SSLOPERR_NAN	1
2233 #define SSLOPERR_NOTFOUND	2
2234 #define SM_ISSPACE(c)	(isascii(c) && isspace(c))
2235 
2236 static int
2237 readssloptions(opt, val, pssloptions, delim)
2238 	char *opt;
2239 	char *val;
2240 	unsigned long *pssloptions;
2241 	int delim;
2242 {
2243 	char *p;
2244 	int ret;
2245 
2246 	ret = 0;
2247 	for (p = val; *p != '\0' && *p != delim; )
2248 	{
2249 		bool clearmode;
2250 		char *q;
2251 		unsigned long sslopt_val;
2252 		struct ssl_options *sslopts;
2253 
2254 		while (*p == ' ')
2255 			p++;
2256 		if (*p == '\0')
2257 			break;
2258 		clearmode = false;
2259 		if (*p == '-' || *p == '+')
2260 			clearmode = *p++ == '-';
2261 		q = p;
2262 		while (*p != '\0' && !(SM_ISSPACE(*p)) && *p != ',')
2263 			p++;
2264 		if (*p != '\0')
2265 			*p++ = '\0';
2266 		sslopt_val = 0;
2267 		if (isdigit(*q))
2268 		{
2269 			char *end;
2270 
2271 			sslopt_val = strtoul(q, &end, 0);
2272 
2273 			/* not a complete "syntax" check but good enough */
2274 			if (end == q)
2275 			{
2276 				errno = 0;
2277 				ret = SSLOPERR_NAN;
2278 				if (opt != NULL)
2279 					syserr("readcf: %s option value %s not a number",
2280 						opt, q);
2281 				sslopt_val = 0;
2282 			}
2283 		}
2284 		else
2285 		{
2286 			for (sslopts = SSL_Option;
2287 			     sslopts->sslopt_name != NULL; sslopts++)
2288 			{
2289 				if (sm_strcasecmp(q, sslopts->sslopt_name) == 0)
2290 				{
2291 					sslopt_val = sslopts->sslopt_bits;
2292 					break;
2293 				}
2294 			}
2295 			if (sslopts->sslopt_name == NULL)
2296 			{
2297 				errno = 0;
2298 				ret = SSLOPERR_NOTFOUND;
2299 				if (opt != NULL)
2300 					syserr("readcf: %s option value %s unrecognized",
2301 						opt, q);
2302 			}
2303 		}
2304 		if (sslopt_val != 0)
2305 		{
2306 			if (clearmode)
2307 				*pssloptions &= ~sslopt_val;
2308 			else
2309 				*pssloptions |= sslopt_val;
2310 		}
2311 	}
2312 	return ret;
2313 }
2314 
2315 # if _FFR_TLS_SE_OPTS
2316 /*
2317 ** GET_TLS_SE_OPTIONS -- get TLS session options (from ruleset)
2318 **
2319 **	Parameters:
2320 **		e -- envelope
2321 **		ssl -- TLS session context
2322 **		srv -- server?
2323 **
2324 **	Returns:
2325 **		0 on success.
2326 */
2327 
2328 int
2329 get_tls_se_options(e, ssl, srv)
2330 	ENVELOPE *e;
2331 	SSL *ssl;
2332 	bool srv;
2333 {
2334 	bool saveQuickAbort, saveSuprErrs, ok;
2335 	char *optionlist, *opt, *val;
2336 	char *keyfile, *certfile;
2337 	size_t len, i;
2338 	int ret;
2339 
2340 #  define who (srv ? "server" : "client")
2341 #  define NAME_C_S macvalue(macid(srv ? "{client_name}" : "{server_name}"), e)
2342 #  define ADDR_C_S macvalue(macid(srv ? "{client_addr}" : "{server_addr}"), e)
2343 #  define WHICH srv ? "srv" : "clt"
2344 
2345 	ret = 0;
2346 	keyfile = certfile = opt = val = NULL;
2347 	saveQuickAbort = QuickAbort;
2348 	saveSuprErrs = SuprErrs;
2349 	SuprErrs = true;
2350 	QuickAbort = false;
2351 
2352 	optionlist = NULL;
2353 	ok = rscheck(srv ? "tls_srv_features" : "tls_clt_features",
2354 		     NAME_C_S, ADDR_C_S, e,
2355 		     RSF_RMCOMM|RSF_ADDR|RSF_STRING,
2356 		     5, NULL, NOQID, NULL, &optionlist) == EX_OK;
2357 	if (!ok && LogLevel > 8)
2358 	{
2359 		sm_syslog(LOG_NOTICE, NOQID,
2360 			  "rscheck(tls_%s_features)=failed, relay=%s [%s], errors=%d",
2361 			  WHICH, NAME_C_S, ADDR_C_S,
2362 			  Errors);
2363 	}
2364 	QuickAbort = saveQuickAbort;
2365 	SuprErrs = saveSuprErrs;
2366 	if (ok && LogLevel > 9)
2367 	{
2368 		sm_syslog(LOG_INFO, NOQID,
2369 			  "tls_%s_features=%s, relay=%s [%s]",
2370 			  WHICH, optionlist, NAME_C_S, ADDR_C_S);
2371 	}
2372 	if (!ok || optionlist == NULL || (len = strlen(optionlist)) < 2)
2373 	{
2374 		if (LogLevel > 9)
2375 			sm_syslog(LOG_INFO, NOQID,
2376 				  "tls_%s_features=empty, relay=%s [%s]",
2377 			  	  WHICH, NAME_C_S, ADDR_C_S);
2378 
2379 		return ok ? 0 : 1;
2380 	}
2381 
2382 	i = 0;
2383 	if (optionlist[0] == '"' && optionlist[len - 1] == '"')
2384 	{
2385 		optionlist[0] = ' ';
2386 		optionlist[--len] = '\0';
2387 		if (len <= 2)
2388 		{
2389 			if (LogLevel > 9 && len > 1)
2390 				sm_syslog(LOG_INFO, NOQID,
2391 				  "tls_%s_features=too_short, relay=%s [%s]",
2392 			  	  WHICH, NAME_C_S, ADDR_C_S);
2393 
2394 			/* this is not treated as error! */
2395 			return 0;
2396 		}
2397 		i = 1;
2398 	}
2399 
2400 #  define INVALIDSYNTAX	\
2401 	do {	\
2402 		if (LogLevel > 7)	\
2403 			sm_syslog(LOG_INFO, NOQID,	\
2404 				  "tls_%s_features=invalid_syntax, opt=%s, relay=%s [%s]",	\
2405 		  		  WHICH, opt, NAME_C_S, ADDR_C_S);	\
2406 		return -1;	\
2407 	} while (0)
2408 
2409 #  define CHECKLEN	\
2410 	do {	\
2411 		if (i >= len)	\
2412 			INVALIDSYNTAX;	\
2413 	} while (0)
2414 
2415 #  define SKIPWS	\
2416 	do {	\
2417 		while (i < len && SM_ISSPACE(optionlist[i]))	\
2418 			++i;	\
2419 		CHECKLEN;	\
2420 	} while (0)
2421 
2422 	/* parse and handle opt=val; */
2423 	do {
2424 		char sep;
2425 
2426 		SKIPWS;
2427 		opt = optionlist + i;
2428 		sep = '=';
2429 		while (i < len && optionlist[i] != sep
2430 			&& optionlist[i] != '\0' && !SM_ISSPACE(optionlist[i]))
2431 			++i;
2432 		CHECKLEN;
2433 		while (i < len && SM_ISSPACE(optionlist[i]))
2434 			optionlist[i++] = '\0';
2435 		CHECKLEN;
2436 		if (optionlist[i] != sep)
2437 			INVALIDSYNTAX;
2438 		optionlist[i++] = '\0';
2439 
2440 		SKIPWS;
2441 		val = optionlist + i;
2442 		sep = ';';
2443 		while (i < len && optionlist[i] != sep && optionlist[i] != '\0')
2444 			++i;
2445 		if (optionlist[i] != '\0')
2446 		{
2447 			CHECKLEN;
2448 			optionlist[i++] = '\0';
2449 		}
2450 
2451 		if (LogLevel > 13)
2452 			sm_syslog(LOG_DEBUG, NOQID,
2453 				  "tls_%s_features=parsed, %s=%s, relay=%s [%s]",
2454 				  WHICH, opt, val, NAME_C_S, ADDR_C_S);
2455 
2456 		if (sm_strcasecmp(opt, "options") == 0)
2457 		{
2458 			unsigned long ssloptions;
2459 
2460 			ssloptions = 0;
2461 			ret = readssloptions(NULL, val, &ssloptions, ';');
2462 			if (ret == 0)
2463 				(void) SSL_set_options(ssl, (long) ssloptions);
2464 			else if (LogLevel > 8)
2465 			{
2466 				sm_syslog(LOG_WARNING, NOQID,
2467 					  "tls_%s_features=%s, error=%s, relay=%s [%s]",
2468 					  WHICH, val,
2469 					  (ret == SSLOPERR_NAN) ? "not a number" :
2470 					  ((ret == SSLOPERR_NOTFOUND) ? "SSL_OP not found" :
2471 					  "unknown"),
2472 					  NAME_C_S, ADDR_C_S);
2473 			}
2474 		}
2475 		else if (sm_strcasecmp(opt, "cipherlist") == 0)
2476 		{
2477 			if (SSL_set_cipher_list(ssl, val) <= 0)
2478 			{
2479 				ret = 1;
2480 				if (LogLevel > 7)
2481 				{
2482 					sm_syslog(LOG_WARNING, NOQID,
2483 						  "STARTTLS=%s, error: SSL_set_cipher_list(%s) failed",
2484 						  who, val);
2485 
2486 					if (LogLevel > 9)
2487 						tlslogerr(LOG_WARNING, who);
2488 				}
2489 			}
2490 		}
2491 		else if (sm_strcasecmp(opt, "keyfile") == 0)
2492 			keyfile = val;
2493 		else if (sm_strcasecmp(opt, "certfile") == 0)
2494 			certfile = val;
2495 		else
2496 		{
2497 			ret = 1;
2498 			if (LogLevel > 7)
2499 			{
2500 				sm_syslog(LOG_INFO, NOQID,
2501 					  "tls_%s_features=unknown_option, opt=%s, relay=%s [%s]",
2502 				  	  WHICH, opt, NAME_C_S, ADDR_C_S);
2503 			}
2504 		}
2505 
2506 	} while (optionlist[i] != '\0' && i < len);
2507 
2508 	/* need cert and key before we can use the options */
2509 	/* does not implement the "," hack for 2nd cert/key pair */
2510 	if (keyfile != NULL && certfile != NULL)
2511 	{
2512 		load_certkey(ssl, srv, certfile, keyfile);
2513 		keyfile = certfile = NULL;
2514 	}
2515 	else if (keyfile != NULL || certfile != NULL)
2516 	{
2517 		ret = 1;
2518 		if (LogLevel > 7)
2519 		{
2520 			sm_syslog(LOG_INFO, NOQID,
2521 				  "tls_%s_features=only_one_of_CertFile/KeyFile_specified, relay=%s [%s]",
2522 			  	  WHICH, NAME_C_S, ADDR_C_S);
2523 		}
2524 	}
2525 
2526 	return ret;
2527 #  undef who
2528 #  undef NAME_C_S
2529 #  undef ADDR_C_S
2530 #  undef WHICH
2531 }
2532 # endif /* _FFR_TLS_SE_OPTS */
2533 #endif /* STARTTLS */
2534 
2535 /*
2536 **  SETOPTION -- set global processing option
2537 **
2538 **	Parameters:
2539 **		opt -- option name.
2540 **		val -- option value (as a text string).
2541 **		safe -- set if this came from a configuration file.
2542 **			Some options (if set from the command line) will
2543 **			reset the user id to avoid security problems.
2544 **		sticky -- if set, don't let other setoptions override
2545 **			this value.
2546 **		e -- the main envelope.
2547 **
2548 **	Returns:
2549 **		none.
2550 **
2551 **	Side Effects:
2552 **		Sets options as implied by the arguments.
2553 */
2554 
2555 static BITMAP256	StickyOpt;		/* set if option is stuck */
2556 
2557 #if NAMED_BIND
2558 
2559 static struct resolverflags
2560 {
2561 	char	*rf_name;	/* name of the flag */
2562 	long	rf_bits;	/* bits to set/clear */
2563 } ResolverFlags[] =
2564 {
2565 	{ "debug",	RES_DEBUG	},
2566 	{ "aaonly",	RES_AAONLY	},
2567 	{ "usevc",	RES_USEVC	},
2568 	{ "primary",	RES_PRIMARY	},
2569 	{ "igntc",	RES_IGNTC	},
2570 	{ "recurse",	RES_RECURSE	},
2571 	{ "defnames",	RES_DEFNAMES	},
2572 	{ "stayopen",	RES_STAYOPEN	},
2573 	{ "dnsrch",	RES_DNSRCH	},
2574 # ifdef RES_USE_INET6
2575 	{ "use_inet6",	RES_USE_INET6	},
2576 # endif /* RES_USE_INET6 */
2577 	{ "true",	0		},	/* avoid error on old syntax */
2578 	{ NULL,		0		}
2579 };
2580 
2581 #endif /* NAMED_BIND */
2582 
2583 #define OI_NONE		0	/* no special treatment */
2584 #define OI_SAFE		0x0001	/* safe for random people to use */
2585 #define OI_SUBOPT	0x0002	/* option has suboptions */
2586 
2587 static struct optioninfo
2588 {
2589 	char		*o_name;	/* long name of option */
2590 	unsigned char	o_code;		/* short name of option */
2591 	unsigned short	o_flags;	/* option flags */
2592 } OptionTab[] =
2593 {
2594 #if defined(SUN_EXTENSIONS) && defined(REMOTE_MODE)
2595 	{ "RemoteMode",			'>',		OI_NONE	},
2596 #endif /* defined(SUN_EXTENSIONS) && defined(REMOTE_MODE) */
2597 	{ "SevenBitInput",		'7',		OI_SAFE	},
2598 	{ "EightBitMode",		'8',		OI_SAFE	},
2599 	{ "AliasFile",			'A',		OI_NONE	},
2600 	{ "AliasWait",			'a',		OI_NONE	},
2601 	{ "BlankSub",			'B',		OI_NONE	},
2602 	{ "MinFreeBlocks",		'b',		OI_SAFE	},
2603 	{ "CheckpointInterval",		'C',		OI_SAFE	},
2604 	{ "HoldExpensive",		'c',		OI_NONE	},
2605 	{ "DeliveryMode",		'd',		OI_SAFE	},
2606 	{ "ErrorHeader",		'E',		OI_NONE	},
2607 	{ "ErrorMode",			'e',		OI_SAFE	},
2608 	{ "TempFileMode",		'F',		OI_NONE	},
2609 	{ "SaveFromLine",		'f',		OI_NONE	},
2610 	{ "MatchGECOS",			'G',		OI_NONE	},
2611 
2612 	/* no long name, just here to avoid problems in setoption */
2613 	{ "",				'g',		OI_NONE	},
2614 	{ "HelpFile",			'H',		OI_NONE	},
2615 	{ "MaxHopCount",		'h',		OI_NONE	},
2616 	{ "ResolverOptions",		'I',		OI_NONE	},
2617 	{ "IgnoreDots",			'i',		OI_SAFE	},
2618 	{ "ForwardPath",		'J',		OI_NONE	},
2619 	{ "SendMimeErrors",		'j',		OI_SAFE	},
2620 	{ "ConnectionCacheSize",	'k',		OI_NONE	},
2621 	{ "ConnectionCacheTimeout",	'K',		OI_NONE	},
2622 	{ "UseErrorsTo",		'l',		OI_NONE	},
2623 	{ "LogLevel",			'L',		OI_SAFE	},
2624 	{ "MeToo",			'm',		OI_SAFE	},
2625 
2626 	/* no long name, just here to avoid problems in setoption */
2627 	{ "",				'M',		OI_NONE	},
2628 	{ "CheckAliases",		'n',		OI_NONE	},
2629 	{ "OldStyleHeaders",		'o',		OI_SAFE	},
2630 	{ "DaemonPortOptions",		'O',		OI_NONE	},
2631 	{ "PrivacyOptions",		'p',		OI_SAFE	},
2632 	{ "PostmasterCopy",		'P',		OI_NONE	},
2633 	{ "QueueFactor",		'q',		OI_NONE	},
2634 	{ "QueueDirectory",		'Q',		OI_NONE	},
2635 	{ "DontPruneRoutes",		'R',		OI_NONE	},
2636 	{ "Timeout",			'r',		OI_SUBOPT },
2637 	{ "StatusFile",			'S',		OI_NONE	},
2638 	{ "SuperSafe",			's',		OI_SAFE	},
2639 	{ "QueueTimeout",		'T',		OI_NONE	},
2640 	{ "TimeZoneSpec",		't',		OI_NONE	},
2641 	{ "UserDatabaseSpec",		'U',		OI_NONE	},
2642 	{ "DefaultUser",		'u',		OI_NONE	},
2643 	{ "FallbackMXhost",		'V',		OI_NONE	},
2644 	{ "Verbose",			'v',		OI_SAFE	},
2645 	{ "TryNullMXList",		'w',		OI_NONE	},
2646 	{ "QueueLA",			'x',		OI_NONE	},
2647 	{ "RefuseLA",			'X',		OI_NONE	},
2648 	{ "RecipientFactor",		'y',		OI_NONE	},
2649 	{ "ForkEachJob",		'Y',		OI_NONE	},
2650 	{ "ClassFactor",		'z',		OI_NONE	},
2651 	{ "RetryFactor",		'Z',		OI_NONE	},
2652 #define O_QUEUESORTORD	0x81
2653 	{ "QueueSortOrder",		O_QUEUESORTORD,	OI_SAFE	},
2654 #define O_HOSTSFILE	0x82
2655 	{ "HostsFile",			O_HOSTSFILE,	OI_NONE	},
2656 #define O_MQA		0x83
2657 	{ "MinQueueAge",		O_MQA,		OI_SAFE	},
2658 #define O_DEFCHARSET	0x85
2659 	{ "DefaultCharSet",		O_DEFCHARSET,	OI_SAFE	},
2660 #define O_SSFILE	0x86
2661 	{ "ServiceSwitchFile",		O_SSFILE,	OI_NONE	},
2662 #define O_DIALDELAY	0x87
2663 	{ "DialDelay",			O_DIALDELAY,	OI_SAFE	},
2664 #define O_NORCPTACTION	0x88
2665 	{ "NoRecipientAction",		O_NORCPTACTION,	OI_SAFE	},
2666 #define O_SAFEFILEENV	0x89
2667 	{ "SafeFileEnvironment",	O_SAFEFILEENV,	OI_NONE	},
2668 #define O_MAXMSGSIZE	0x8a
2669 	{ "MaxMessageSize",		O_MAXMSGSIZE,	OI_NONE	},
2670 #define O_COLONOKINADDR	0x8b
2671 	{ "ColonOkInAddr",		O_COLONOKINADDR, OI_SAFE },
2672 #define O_MAXQUEUERUN	0x8c
2673 	{ "MaxQueueRunSize",		O_MAXQUEUERUN,	OI_SAFE	},
2674 #define O_MAXCHILDREN	0x8d
2675 	{ "MaxDaemonChildren",		O_MAXCHILDREN,	OI_NONE	},
2676 #define O_KEEPCNAMES	0x8e
2677 	{ "DontExpandCnames",		O_KEEPCNAMES,	OI_NONE	},
2678 #define O_MUSTQUOTE	0x8f
2679 	{ "MustQuoteChars",		O_MUSTQUOTE,	OI_NONE	},
2680 #define O_SMTPGREETING	0x90
2681 	{ "SmtpGreetingMessage",	O_SMTPGREETING,	OI_NONE	},
2682 #define O_UNIXFROM	0x91
2683 	{ "UnixFromLine",		O_UNIXFROM,	OI_NONE	},
2684 #define O_OPCHARS	0x92
2685 	{ "OperatorChars",		O_OPCHARS,	OI_NONE	},
2686 #define O_DONTINITGRPS	0x93
2687 	{ "DontInitGroups",		O_DONTINITGRPS,	OI_NONE	},
2688 #define O_SLFH		0x94
2689 	{ "SingleLineFromHeader",	O_SLFH,		OI_SAFE	},
2690 #define O_ABH		0x95
2691 	{ "AllowBogusHELO",		O_ABH,		OI_SAFE	},
2692 #define O_CONNTHROT	0x97
2693 	{ "ConnectionRateThrottle",	O_CONNTHROT,	OI_NONE	},
2694 #define O_UGW		0x99
2695 	{ "UnsafeGroupWrites",		O_UGW,		OI_NONE	},
2696 #define O_DBLBOUNCE	0x9a
2697 	{ "DoubleBounceAddress",	O_DBLBOUNCE,	OI_NONE	},
2698 #define O_HSDIR		0x9b
2699 	{ "HostStatusDirectory",	O_HSDIR,	OI_NONE	},
2700 #define O_SINGTHREAD	0x9c
2701 	{ "SingleThreadDelivery",	O_SINGTHREAD,	OI_NONE	},
2702 #define O_RUNASUSER	0x9d
2703 	{ "RunAsUser",			O_RUNASUSER,	OI_NONE	},
2704 #define O_DSN_RRT	0x9e
2705 	{ "RrtImpliesDsn",		O_DSN_RRT,	OI_NONE	},
2706 #define O_PIDFILE	0x9f
2707 	{ "PidFile",			O_PIDFILE,	OI_NONE	},
2708 #define O_DONTBLAMESENDMAIL	0xa0
2709 	{ "DontBlameSendmail",		O_DONTBLAMESENDMAIL,	OI_NONE	},
2710 #define O_DPI		0xa1
2711 	{ "DontProbeInterfaces",	O_DPI,		OI_NONE	},
2712 #define O_MAXRCPT	0xa2
2713 	{ "MaxRecipientsPerMessage",	O_MAXRCPT,	OI_SAFE	},
2714 #define O_DEADLETTER	0xa3
2715 	{ "DeadLetterDrop",		O_DEADLETTER,	OI_NONE	},
2716 #if _FFR_DONTLOCKFILESFORREAD_OPTION
2717 # define O_DONTLOCK	0xa4
2718 	{ "DontLockFilesForRead",	O_DONTLOCK,	OI_NONE	},
2719 #endif /* _FFR_DONTLOCKFILESFORREAD_OPTION */
2720 #define O_MAXALIASRCSN	0xa5
2721 	{ "MaxAliasRecursion",		O_MAXALIASRCSN,	OI_NONE	},
2722 #define O_CNCTONLYTO	0xa6
2723 	{ "ConnectOnlyTo",		O_CNCTONLYTO,	OI_NONE	},
2724 #define O_TRUSTUSER	0xa7
2725 	{ "TrustedUser",		O_TRUSTUSER,	OI_NONE	},
2726 #define O_MAXMIMEHDRLEN	0xa8
2727 	{ "MaxMimeHeaderLength",	O_MAXMIMEHDRLEN,	OI_NONE	},
2728 #define O_CONTROLSOCKET	0xa9
2729 	{ "ControlSocketName",		O_CONTROLSOCKET,	OI_NONE	},
2730 #define O_MAXHDRSLEN	0xaa
2731 	{ "MaxHeadersLength",		O_MAXHDRSLEN,	OI_NONE	},
2732 #if _FFR_MAX_FORWARD_ENTRIES
2733 # define O_MAXFORWARD	0xab
2734 	{ "MaxForwardEntries",		O_MAXFORWARD,	OI_NONE	},
2735 #endif /* _FFR_MAX_FORWARD_ENTRIES */
2736 #define O_PROCTITLEPREFIX	0xac
2737 	{ "ProcessTitlePrefix",		O_PROCTITLEPREFIX,	OI_NONE	},
2738 #define O_SASLINFO	0xad
2739 #if _FFR_ALLOW_SASLINFO
2740 	{ "DefaultAuthInfo",		O_SASLINFO,	OI_SAFE	},
2741 #else /* _FFR_ALLOW_SASLINFO */
2742 	{ "DefaultAuthInfo",		O_SASLINFO,	OI_NONE	},
2743 #endif /* _FFR_ALLOW_SASLINFO */
2744 #define O_SASLMECH	0xae
2745 	{ "AuthMechanisms",		O_SASLMECH,	OI_NONE	},
2746 #define O_CLIENTPORT	0xaf
2747 	{ "ClientPortOptions",		O_CLIENTPORT,	OI_NONE	},
2748 #define O_DF_BUFSIZE	0xb0
2749 	{ "DataFileBufferSize",		O_DF_BUFSIZE,	OI_NONE	},
2750 #define O_XF_BUFSIZE	0xb1
2751 	{ "XscriptFileBufferSize",	O_XF_BUFSIZE,	OI_NONE	},
2752 #define O_LDAPDEFAULTSPEC	0xb2
2753 	{ "LDAPDefaultSpec",		O_LDAPDEFAULTSPEC,	OI_NONE	},
2754 #define O_SRVCERTFILE	0xb4
2755 	{ "ServerCertFile",		O_SRVCERTFILE,	OI_NONE	},
2756 #define O_SRVKEYFILE	0xb5
2757 	{ "ServerKeyFile",		O_SRVKEYFILE,	OI_NONE	},
2758 #define O_CLTCERTFILE	0xb6
2759 	{ "ClientCertFile",		O_CLTCERTFILE,	OI_NONE	},
2760 #define O_CLTKEYFILE	0xb7
2761 	{ "ClientKeyFile",		O_CLTKEYFILE,	OI_NONE	},
2762 #define O_CACERTFILE	0xb8
2763 	{ "CACertFile",			O_CACERTFILE,	OI_NONE	},
2764 #define O_CACERTPATH	0xb9
2765 	{ "CACertPath",			O_CACERTPATH,	OI_NONE	},
2766 #define O_DHPARAMS	0xba
2767 	{ "DHParameters",		O_DHPARAMS,	OI_NONE	},
2768 #define O_INPUTMILTER	0xbb
2769 	{ "InputMailFilters",		O_INPUTMILTER,	OI_NONE	},
2770 #define O_MILTER	0xbc
2771 	{ "Milter",			O_MILTER,	OI_SUBOPT	},
2772 #define O_SASLOPTS	0xbd
2773 	{ "AuthOptions",		O_SASLOPTS,	OI_NONE	},
2774 #define O_QUEUE_FILE_MODE	0xbe
2775 	{ "QueueFileMode",		O_QUEUE_FILE_MODE, OI_NONE	},
2776 #define O_DIG_ALG	0xbf
2777 	{ "CertFingerprintAlgorithm",		O_DIG_ALG,	OI_NONE	},
2778 #define O_CIPHERLIST	0xc0
2779 	{ "CipherList",			O_CIPHERLIST,	OI_NONE	},
2780 #define O_RANDFILE	0xc1
2781 	{ "RandFile",			O_RANDFILE,	OI_NONE	},
2782 #define O_TLS_SRV_OPTS	0xc2
2783 	{ "TLSSrvOptions",		O_TLS_SRV_OPTS,	OI_NONE	},
2784 #define O_RCPTTHROT	0xc3
2785 	{ "BadRcptThrottle",		O_RCPTTHROT,	OI_SAFE	},
2786 #define O_DLVR_MIN	0xc4
2787 	{ "DeliverByMin",		O_DLVR_MIN,	OI_NONE	},
2788 #define O_MAXQUEUECHILDREN	0xc5
2789 	{ "MaxQueueChildren",		O_MAXQUEUECHILDREN,	OI_NONE	},
2790 #define O_MAXRUNNERSPERQUEUE	0xc6
2791 	{ "MaxRunnersPerQueue",		O_MAXRUNNERSPERQUEUE,	OI_NONE },
2792 #define O_DIRECTSUBMODIFIERS	0xc7
2793 	{ "DirectSubmissionModifiers",	O_DIRECTSUBMODIFIERS,	OI_NONE },
2794 #define O_NICEQUEUERUN	0xc8
2795 	{ "NiceQueueRun",		O_NICEQUEUERUN,	OI_NONE	},
2796 #define O_SHMKEY	0xc9
2797 	{ "SharedMemoryKey",		O_SHMKEY,	OI_NONE	},
2798 #define O_SASLBITS	0xca
2799 	{ "AuthMaxBits",		O_SASLBITS,	OI_NONE	},
2800 #define O_MBDB		0xcb
2801 	{ "MailboxDatabase",		O_MBDB,		OI_NONE	},
2802 #define O_MSQ		0xcc
2803 	{ "UseMSP",	O_MSQ,		OI_NONE	},
2804 #define O_DELAY_LA	0xcd
2805 	{ "DelayLA",	O_DELAY_LA,	OI_NONE	},
2806 #define O_FASTSPLIT	0xce
2807 	{ "FastSplit",	O_FASTSPLIT,	OI_NONE	},
2808 #define O_SOFTBOUNCE	0xcf
2809 	{ "SoftBounce",	O_SOFTBOUNCE,	OI_NONE	},
2810 #define O_SHMKEYFILE	0xd0
2811 	{ "SharedMemoryKeyFile",	O_SHMKEYFILE,	OI_NONE	},
2812 #define O_REJECTLOGINTERVAL	0xd1
2813 	{ "RejectLogInterval",	O_REJECTLOGINTERVAL,	OI_NONE	},
2814 #define O_REQUIRES_DIR_FSYNC	0xd2
2815 	{ "RequiresDirfsync",	O_REQUIRES_DIR_FSYNC,	OI_NONE	},
2816 #define O_CONNECTION_RATE_WINDOW_SIZE	0xd3
2817 	{ "ConnectionRateWindowSize", O_CONNECTION_RATE_WINDOW_SIZE, OI_NONE },
2818 #define O_CRLFILE	0xd4
2819 	{ "CRLFile",		O_CRLFILE,	OI_NONE	},
2820 #define O_FALLBACKSMARTHOST	0xd5
2821 	{ "FallbackSmartHost",		O_FALLBACKSMARTHOST,	OI_NONE	},
2822 #define O_SASLREALM	0xd6
2823 	{ "AuthRealm",		O_SASLREALM,	OI_NONE	},
2824 #if _FFR_CRLPATH
2825 # define O_CRLPATH	0xd7
2826 	{ "CRLPath",		O_CRLPATH,	OI_NONE	},
2827 #endif /* _FFR_CRLPATH */
2828 #define O_HELONAME 0xd8
2829 	{ "HeloName",   O_HELONAME,     OI_NONE },
2830 #if _FFR_MEMSTAT
2831 # define O_REFUSELOWMEM	0xd9
2832 	{ "RefuseLowMem",	O_REFUSELOWMEM,	OI_NONE },
2833 # define O_QUEUELOWMEM	0xda
2834 	{ "QueueLowMem",	O_QUEUELOWMEM,	OI_NONE },
2835 # define O_MEMRESOURCE	0xdb
2836 	{ "MemoryResource",	O_MEMRESOURCE,	OI_NONE },
2837 #endif /* _FFR_MEMSTAT */
2838 #define O_MAXNOOPCOMMANDS 0xdc
2839 	{ "MaxNOOPCommands",	O_MAXNOOPCOMMANDS,	OI_NONE },
2840 #if _FFR_MSG_ACCEPT
2841 # define O_MSG_ACCEPT 0xdd
2842 	{ "MessageAccept",	O_MSG_ACCEPT,	OI_NONE },
2843 #endif /* _FFR_MSG_ACCEPT */
2844 #if _FFR_QUEUE_RUN_PARANOIA
2845 # define O_CHK_Q_RUNNERS 0xde
2846 	{ "CheckQueueRunners",	O_CHK_Q_RUNNERS,	OI_NONE },
2847 #endif /* _FFR_QUEUE_RUN_PARANOIA */
2848 #if _FFR_EIGHT_BIT_ADDR_OK
2849 # if !ALLOW_255
2850 #  ERROR FFR_EIGHT_BIT_ADDR_OK requires _ALLOW_255
2851 # endif /* !ALLOW_255 */
2852 # define O_EIGHT_BIT_ADDR_OK	0xdf
2853 	{ "EightBitAddrOK",	O_EIGHT_BIT_ADDR_OK,	OI_NONE },
2854 #endif /* _FFR_EIGHT_BIT_ADDR_OK */
2855 #if _FFR_ADDR_TYPE_MODES
2856 # define O_ADDR_TYPE_MODES	0xe0
2857 	{ "AddrTypeModes",	O_ADDR_TYPE_MODES,	OI_NONE },
2858 #endif /* _FFR_ADDR_TYPE_MODES */
2859 #if _FFR_BADRCPT_SHUTDOWN
2860 # define O_RCPTSHUTD	0xe1
2861 	{ "BadRcptShutdown",		O_RCPTSHUTD,	OI_SAFE },
2862 # define O_RCPTSHUTDG	0xe2
2863 	{ "BadRcptShutdownGood",	O_RCPTSHUTDG,	OI_SAFE	},
2864 #endif /* _FFR_BADRCPT_SHUTDOWN */
2865 #define O_SRV_SSL_OPTIONS	0xe3
2866 	{ "ServerSSLOptions",		O_SRV_SSL_OPTIONS,	OI_NONE	},
2867 #define O_CLT_SSL_OPTIONS	0xe4
2868 	{ "ClientSSLOptions",		O_CLT_SSL_OPTIONS,	OI_NONE	},
2869 #define O_MAX_QUEUE_AGE	0xe5
2870 	{ "MaxQueueAge",	O_MAX_QUEUE_AGE,	OI_NONE },
2871 #if _FFR_RCPTTHROTDELAY
2872 # define O_RCPTTHROTDELAY	0xe6
2873 	{ "BadRcptThrottleDelay",	O_RCPTTHROTDELAY,	OI_SAFE	},
2874 #endif /* _FFR_RCPTTHROTDELAY */
2875 #if 0 && _FFR_QOS && defined(SOL_IP) && defined(IP_TOS)
2876 # define O_INETQOS	0xe7	/* reserved for FFR_QOS */
2877 	{ "InetQoS",			O_INETQOS,	OI_NONE },
2878 #endif
2879 #if STARTTLS && _FFR_FIPSMODE
2880 # define O_FIPSMODE	0xe8
2881 	{ "FIPSMode",		O_FIPSMODE,	OI_NONE	},
2882 #endif /* STARTTLS && _FFR_FIPSMODE  */
2883 #if _FFR_REJECT_NUL_BYTE
2884 # define O_REJECTNUL	0xe9
2885 	{ "RejectNUL",	O_REJECTNUL,	OI_SAFE	},
2886 #endif /* _FFR_REJECT_NUL_BYTE */
2887 #if _FFR_BOUNCE_QUEUE
2888 # define O_BOUNCEQUEUE 0xea
2889 	{ "BounceQueue",		O_BOUNCEQUEUE,	OI_NONE },
2890 #endif /* _FFR_BOUNCE_QUEUE */
2891 #if _FFR_ADD_BCC
2892 # define O_ADDBCC 0xeb
2893 	{ "AddBcc",			O_ADDBCC,	OI_NONE },
2894 #endif
2895 #define O_USECOMPRESSEDIPV6ADDRESSES 0xec
2896 	{ "UseCompressedIPv6Addresses",	O_USECOMPRESSEDIPV6ADDRESSES, OI_NONE },
2897 
2898 	{ NULL,				'\0',		OI_NONE	}
2899 };
2900 
2901 # define CANONIFY(val)
2902 
2903 # define SET_OPT_DEFAULT(opt, val)	opt = val
2904 
2905 /* set a string option by expanding the value and assigning it */
2906 /* WARNING this belongs ONLY into a case statement! */
2907 #define SET_STRING_EXP(str)	\
2908 		expand(val, exbuf, sizeof(exbuf), e);	\
2909 		newval = sm_pstrdup_x(exbuf);		\
2910 		if (str != NULL)	\
2911 			sm_free(str);	\
2912 		CANONIFY(newval);	\
2913 		str = newval;		\
2914 		break
2915 
2916 #define OPTNAME	o->o_name == NULL ? "<unknown>" : o->o_name
2917 
2918 void
2919 setoption(opt, val, safe, sticky, e)
2920 	int opt;
2921 	char *val;
2922 	bool safe;
2923 	bool sticky;
2924 	register ENVELOPE *e;
2925 {
2926 	register char *p;
2927 	register struct optioninfo *o;
2928 	char *subopt;
2929 	int mid;
2930 	bool can_setuid = RunAsUid == 0;
2931 	auto char *ep;
2932 	char buf[50];
2933 	extern bool Warn_Q_option;
2934 #if _FFR_ALLOW_SASLINFO
2935 	extern unsigned int SubmitMode;
2936 #endif /* _FFR_ALLOW_SASLINFO */
2937 #if STARTTLS || SM_CONF_SHM
2938 	char *newval;
2939 	char exbuf[MAXLINE];
2940 #endif /* STARTTLS || SM_CONF_SHM */
2941 #if STARTTLS
2942 	unsigned long *pssloptions = NULL;
2943 #endif
2944 
2945 	errno = 0;
2946 	if (opt == ' ')
2947 	{
2948 		/* full word options */
2949 		struct optioninfo *sel;
2950 
2951 		p = strchr(val, '=');
2952 		if (p == NULL)
2953 			p = &val[strlen(val)];
2954 		while (*--p == ' ')
2955 			continue;
2956 		while (*++p == ' ')
2957 			*p = '\0';
2958 		if (p == val)
2959 		{
2960 			syserr("readcf: null option name");
2961 			return;
2962 		}
2963 		if (*p == '=')
2964 			*p++ = '\0';
2965 		while (*p == ' ')
2966 			p++;
2967 		subopt = strchr(val, '.');
2968 		if (subopt != NULL)
2969 			*subopt++ = '\0';
2970 		sel = NULL;
2971 		for (o = OptionTab; o->o_name != NULL; o++)
2972 		{
2973 			if (sm_strncasecmp(o->o_name, val, strlen(val)) != 0)
2974 				continue;
2975 			if (strlen(o->o_name) == strlen(val))
2976 			{
2977 				/* completely specified -- this must be it */
2978 				sel = NULL;
2979 				break;
2980 			}
2981 			if (sel != NULL)
2982 				break;
2983 			sel = o;
2984 		}
2985 		if (sel != NULL && o->o_name == NULL)
2986 			o = sel;
2987 		else if (o->o_name == NULL)
2988 		{
2989 			syserr("readcf: unknown option name %s", val);
2990 			return;
2991 		}
2992 		else if (sel != NULL)
2993 		{
2994 			syserr("readcf: ambiguous option name %s (matches %s and %s)",
2995 				val, sel->o_name, o->o_name);
2996 			return;
2997 		}
2998 		if (strlen(val) != strlen(o->o_name))
2999 		{
3000 			int oldVerbose = Verbose;
3001 
3002 			Verbose = 1;
3003 			message("Option %s used as abbreviation for %s",
3004 				val, o->o_name);
3005 			Verbose = oldVerbose;
3006 		}
3007 		opt = o->o_code;
3008 		val = p;
3009 	}
3010 	else
3011 	{
3012 		for (o = OptionTab; o->o_name != NULL; o++)
3013 		{
3014 			if (o->o_code == opt)
3015 				break;
3016 		}
3017 		if (o->o_name == NULL)
3018 		{
3019 			syserr("readcf: unknown option name 0x%x", opt & 0xff);
3020 			return;
3021 		}
3022 		subopt = NULL;
3023 	}
3024 
3025 	if (subopt != NULL && !bitset(OI_SUBOPT, o->o_flags))
3026 	{
3027 		if (tTd(37, 1))
3028 			sm_dprintf("setoption: %s does not support suboptions, ignoring .%s\n",
3029 				   OPTNAME, subopt);
3030 		subopt = NULL;
3031 	}
3032 
3033 	if (tTd(37, 1))
3034 	{
3035 		sm_dprintf(isascii(opt) && isprint(opt) ?
3036 			   "setoption %s (%c)%s%s=" :
3037 			   "setoption %s (0x%x)%s%s=",
3038 			   OPTNAME, opt, subopt == NULL ? "" : ".",
3039 			   subopt == NULL ? "" : subopt);
3040 		xputs(sm_debug_file(), val);
3041 	}
3042 
3043 	/*
3044 	**  See if this option is preset for us.
3045 	*/
3046 
3047 	if (!sticky && bitnset(opt, StickyOpt))
3048 	{
3049 		if (tTd(37, 1))
3050 			sm_dprintf(" (ignored)\n");
3051 		return;
3052 	}
3053 
3054 	/*
3055 	**  Check to see if this option can be specified by this user.
3056 	*/
3057 
3058 	if (!safe && RealUid == 0)
3059 		safe = true;
3060 	if (!safe && !bitset(OI_SAFE, o->o_flags))
3061 	{
3062 		if (opt != 'M' || (val[0] != 'r' && val[0] != 's'))
3063 		{
3064 			int dp;
3065 
3066 			if (tTd(37, 1))
3067 				sm_dprintf(" (unsafe)");
3068 			dp = drop_privileges(true);
3069 			setstat(dp);
3070 		}
3071 	}
3072 	if (tTd(37, 1))
3073 		sm_dprintf("\n");
3074 
3075 	switch (opt & 0xff)
3076 	{
3077 	  case '7':		/* force seven-bit input */
3078 		SevenBitInput = atobool(val);
3079 		break;
3080 
3081 	  case '8':		/* handling of 8-bit input */
3082 #if MIME8TO7
3083 		switch (*val)
3084 		{
3085 		  case 'p':		/* pass 8 bit, convert MIME */
3086 			MimeMode = MM_CVTMIME|MM_PASS8BIT;
3087 			break;
3088 
3089 		  case 'm':		/* convert 8-bit, convert MIME */
3090 			MimeMode = MM_CVTMIME|MM_MIME8BIT;
3091 			break;
3092 
3093 		  case 's':		/* strict adherence */
3094 			MimeMode = MM_CVTMIME;
3095 			break;
3096 
3097 # if 0
3098 		  case 'r':		/* reject 8-bit, don't convert MIME */
3099 			MimeMode = 0;
3100 			break;
3101 
3102 		  case 'j':		/* "just send 8" */
3103 			MimeMode = MM_PASS8BIT;
3104 			break;
3105 
3106 		  case 'a':		/* encode 8 bit if available */
3107 			MimeMode = MM_MIME8BIT|MM_PASS8BIT|MM_CVTMIME;
3108 			break;
3109 
3110 		  case 'c':		/* convert 8 bit to MIME, never 7 bit */
3111 			MimeMode = MM_MIME8BIT;
3112 			break;
3113 # endif /* 0 */
3114 
3115 		  default:
3116 			syserr("Unknown 8-bit mode %c", *val);
3117 			finis(false, true, EX_USAGE);
3118 		}
3119 #else /* MIME8TO7 */
3120 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3121 				     "Warning: Option: %s requires MIME8TO7 support\n",
3122 				     OPTNAME);
3123 #endif /* MIME8TO7 */
3124 		break;
3125 
3126 	  case 'A':		/* set default alias file */
3127 		if (val[0] == '\0')
3128 		{
3129 			char *al;
3130 
3131 			SET_OPT_DEFAULT(al, "aliases");
3132 			setalias(al);
3133 		}
3134 		else
3135 			setalias(val);
3136 		break;
3137 
3138 	  case 'a':		/* look N minutes for "@:@" in alias file */
3139 		if (val[0] == '\0')
3140 			SafeAlias = 5 MINUTES;
3141 		else
3142 			SafeAlias = convtime(val, 'm');
3143 		break;
3144 
3145 	  case 'B':		/* substitution for blank character */
3146 		SpaceSub = val[0];
3147 		if (SpaceSub == '\0')
3148 			SpaceSub = ' ';
3149 		break;
3150 
3151 	  case 'b':		/* min blocks free on queue fs/max msg size */
3152 		p = strchr(val, '/');
3153 		if (p != NULL)
3154 		{
3155 			*p++ = '\0';
3156 			MaxMessageSize = atol(p);
3157 		}
3158 		MinBlocksFree = atol(val);
3159 		break;
3160 
3161 	  case 'c':		/* don't connect to "expensive" mailers */
3162 		NoConnect = atobool(val);
3163 		break;
3164 
3165 	  case 'C':		/* checkpoint every N addresses */
3166 		if (safe || CheckpointInterval > atoi(val))
3167 			CheckpointInterval = atoi(val);
3168 		break;
3169 
3170 	  case 'd':		/* delivery mode */
3171 		switch (*val)
3172 		{
3173 		  case '\0':
3174 			set_delivery_mode(SM_DELIVER, e);
3175 			break;
3176 
3177 		  case SM_QUEUE:	/* queue only */
3178 		  case SM_DEFER:	/* queue only and defer map lookups */
3179 		  case SM_DELIVER:	/* do everything */
3180 		  case SM_FORK:		/* fork after verification */
3181 #if _FFR_DM_ONE
3182 		/* deliver first TA in background, then queue */
3183 		  case SM_DM_ONE:
3184 #endif /* _FFR_DM_ONE */
3185 			set_delivery_mode(*val, e);
3186 			break;
3187 
3188 #if _FFR_PROXY
3189 		  case SM_PROXY_REQ:
3190 			set_delivery_mode(*val, e);
3191 			break;
3192 #endif /* _FFR_PROXY */
3193 
3194 		  default:
3195 			syserr("Unknown delivery mode %c", *val);
3196 			finis(false, true, EX_USAGE);
3197 		}
3198 		break;
3199 
3200 	  case 'E':		/* error message header/header file */
3201 		if (*val != '\0')
3202 			ErrMsgFile = newstr(val);
3203 		break;
3204 
3205 	  case 'e':		/* set error processing mode */
3206 		switch (*val)
3207 		{
3208 		  case EM_QUIET:	/* be silent about it */
3209 		  case EM_MAIL:		/* mail back */
3210 		  case EM_BERKNET:	/* do berknet error processing */
3211 		  case EM_WRITE:	/* write back (or mail) */
3212 		  case EM_PRINT:	/* print errors normally (default) */
3213 			e->e_errormode = *val;
3214 			break;
3215 		}
3216 		break;
3217 
3218 	  case 'F':		/* file mode */
3219 		FileMode = atooct(val) & 0777;
3220 		break;
3221 
3222 	  case 'f':		/* save Unix-style From lines on front */
3223 		SaveFrom = atobool(val);
3224 		break;
3225 
3226 	  case 'G':		/* match recipients against GECOS field */
3227 		MatchGecos = atobool(val);
3228 		break;
3229 
3230 	  case 'g':		/* default gid */
3231   g_opt:
3232 		if (isascii(*val) && isdigit(*val))
3233 			DefGid = atoi(val);
3234 		else
3235 		{
3236 			register struct group *gr;
3237 
3238 			DefGid = -1;
3239 			gr = getgrnam(val);
3240 			if (gr == NULL)
3241 				syserr("readcf: option %c: unknown group %s",
3242 					opt, val);
3243 			else
3244 				DefGid = gr->gr_gid;
3245 		}
3246 		break;
3247 
3248 	  case 'H':		/* help file */
3249 		if (val[0] == '\0')
3250 		{
3251 			SET_OPT_DEFAULT(HelpFile, "helpfile");
3252 		}
3253 		else
3254 		{
3255 			CANONIFY(val);
3256 			HelpFile = newstr(val);
3257 		}
3258 		break;
3259 
3260 	  case 'h':		/* maximum hop count */
3261 		MaxHopCount = atoi(val);
3262 		break;
3263 
3264 	  case 'I':		/* use internet domain name server */
3265 #if NAMED_BIND
3266 		for (p = val; *p != 0; )
3267 		{
3268 			bool clearmode;
3269 			char *q;
3270 			struct resolverflags *rfp;
3271 
3272 			while (*p == ' ')
3273 				p++;
3274 			if (*p == '\0')
3275 				break;
3276 			clearmode = false;
3277 			if (*p == '-')
3278 				clearmode = true;
3279 			else if (*p != '+')
3280 				p--;
3281 			p++;
3282 			q = p;
3283 			while (*p != '\0' && !(isascii(*p) && isspace(*p)))
3284 				p++;
3285 			if (*p != '\0')
3286 				*p++ = '\0';
3287 			if (sm_strcasecmp(q, "HasWildcardMX") == 0)
3288 			{
3289 				HasWildcardMX = !clearmode;
3290 				continue;
3291 			}
3292 			if (sm_strcasecmp(q, "WorkAroundBrokenAAAA") == 0)
3293 			{
3294 				WorkAroundBrokenAAAA = !clearmode;
3295 				continue;
3296 			}
3297 			for (rfp = ResolverFlags; rfp->rf_name != NULL; rfp++)
3298 			{
3299 				if (sm_strcasecmp(q, rfp->rf_name) == 0)
3300 					break;
3301 			}
3302 			if (rfp->rf_name == NULL)
3303 				syserr("readcf: I option value %s unrecognized", q);
3304 			else if (clearmode)
3305 				_res.options &= ~rfp->rf_bits;
3306 			else
3307 				_res.options |= rfp->rf_bits;
3308 		}
3309 		if (tTd(8, 2))
3310 			sm_dprintf("_res.options = %x, HasWildcardMX = %d\n",
3311 				   (unsigned int) _res.options, HasWildcardMX);
3312 #else /* NAMED_BIND */
3313 		usrerr("name server (I option) specified but BIND not compiled in");
3314 #endif /* NAMED_BIND */
3315 		break;
3316 
3317 	  case 'i':		/* ignore dot lines in message */
3318 		IgnrDot = atobool(val);
3319 		break;
3320 
3321 	  case 'j':		/* send errors in MIME (RFC 1341) format */
3322 		SendMIMEErrors = atobool(val);
3323 		break;
3324 
3325 	  case 'J':		/* .forward search path */
3326 		CANONIFY(val);
3327 		ForwardPath = newstr(val);
3328 		break;
3329 
3330 	  case 'k':		/* connection cache size */
3331 		MaxMciCache = atoi(val);
3332 		if (MaxMciCache < 0)
3333 			MaxMciCache = 0;
3334 		break;
3335 
3336 	  case 'K':		/* connection cache timeout */
3337 		MciCacheTimeout = convtime(val, 'm');
3338 		break;
3339 
3340 	  case 'l':		/* use Errors-To: header */
3341 		UseErrorsTo = atobool(val);
3342 		break;
3343 
3344 	  case 'L':		/* log level */
3345 		if (safe || LogLevel < atoi(val))
3346 			LogLevel = atoi(val);
3347 		break;
3348 
3349 	  case 'M':		/* define macro */
3350 		sticky = false;
3351 		mid = macid_parse(val, &ep);
3352 		if (mid == 0)
3353 			break;
3354 		p = newstr(ep);
3355 		if (!safe)
3356 			cleanstrcpy(p, p, strlen(p) + 1);
3357 		macdefine(&CurEnv->e_macro, A_TEMP, mid, p);
3358 		break;
3359 
3360 	  case 'm':		/* send to me too */
3361 		MeToo = atobool(val);
3362 		break;
3363 
3364 	  case 'n':		/* validate RHS in newaliases */
3365 		CheckAliases = atobool(val);
3366 		break;
3367 
3368 	    /* 'N' available -- was "net name" */
3369 
3370 	  case 'O':		/* daemon options */
3371 		if (!setdaemonoptions(val))
3372 			syserr("too many daemons defined (%d max)", MAXDAEMONS);
3373 		break;
3374 
3375 	  case 'o':		/* assume old style headers */
3376 		if (atobool(val))
3377 			CurEnv->e_flags |= EF_OLDSTYLE;
3378 		else
3379 			CurEnv->e_flags &= ~EF_OLDSTYLE;
3380 		break;
3381 
3382 	  case 'p':		/* select privacy level */
3383 		p = val;
3384 		for (;;)
3385 		{
3386 			register struct prival *pv;
3387 			extern struct prival PrivacyValues[];
3388 
3389 			while (isascii(*p) && (isspace(*p) || ispunct(*p)))
3390 				p++;
3391 			if (*p == '\0')
3392 				break;
3393 			val = p;
3394 			while (isascii(*p) && isalnum(*p))
3395 				p++;
3396 			if (*p != '\0')
3397 				*p++ = '\0';
3398 
3399 			for (pv = PrivacyValues; pv->pv_name != NULL; pv++)
3400 			{
3401 				if (sm_strcasecmp(val, pv->pv_name) == 0)
3402 					break;
3403 			}
3404 			if (pv->pv_name == NULL)
3405 				syserr("readcf: Op line: %s unrecognized", val);
3406 			else
3407 				PrivacyFlags |= pv->pv_flag;
3408 		}
3409 		sticky = false;
3410 		break;
3411 
3412 	  case 'P':		/* postmaster copy address for returned mail */
3413 		PostMasterCopy = newstr(val);
3414 		break;
3415 
3416 	  case 'q':		/* slope of queue only function */
3417 		QueueFactor = atoi(val);
3418 		break;
3419 
3420 	  case 'Q':		/* queue directory */
3421 		if (val[0] == '\0')
3422 		{
3423 			QueueDir = "mqueue";
3424 		}
3425 		else
3426 		{
3427 			QueueDir = newstr(val);
3428 		}
3429 		if (RealUid != 0 && !safe)
3430 			Warn_Q_option = true;
3431 		break;
3432 
3433 	  case 'R':		/* don't prune routes */
3434 		DontPruneRoutes = atobool(val);
3435 		break;
3436 
3437 	  case 'r':		/* read timeout */
3438 		if (subopt == NULL)
3439 			inittimeouts(val, sticky);
3440 		else
3441 			settimeout(subopt, val, sticky);
3442 		break;
3443 
3444 	  case 'S':		/* status file */
3445 		if (val[0] == '\0')
3446 		{
3447 			SET_OPT_DEFAULT(StatFile, "statistics");
3448 		}
3449 		else
3450 		{
3451 			CANONIFY(val);
3452 			StatFile = newstr(val);
3453 		}
3454 		break;
3455 
3456 	  case 's':		/* be super safe, even if expensive */
3457 		if (tolower(*val) == 'i')
3458 			SuperSafe = SAFE_INTERACTIVE;
3459 		else if (tolower(*val) == 'p')
3460 #if MILTER
3461 			SuperSafe = SAFE_REALLY_POSTMILTER;
3462 #else /* MILTER */
3463 			(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3464 				"Warning: SuperSafe=PostMilter requires Milter support (-DMILTER)\n");
3465 #endif /* MILTER */
3466 		else
3467 			SuperSafe = atobool(val) ? SAFE_REALLY : SAFE_NO;
3468 		break;
3469 
3470 	  case 'T':		/* queue timeout */
3471 		p = strchr(val, '/');
3472 		if (p != NULL)
3473 		{
3474 			*p++ = '\0';
3475 			settimeout("queuewarn", p, sticky);
3476 		}
3477 		settimeout("queuereturn", val, sticky);
3478 		break;
3479 
3480 	  case 't':		/* time zone name */
3481 		TimeZoneSpec = newstr(val);
3482 		break;
3483 
3484 	  case 'U':		/* location of user database */
3485 		UdbSpec = newstr(val);
3486 		break;
3487 
3488 	  case 'u':		/* set default uid */
3489 		for (p = val; *p != '\0'; p++)
3490 		{
3491 # if _FFR_DOTTED_USERNAMES
3492 			if (*p == '/' || *p == ':')
3493 # else /* _FFR_DOTTED_USERNAMES */
3494 			if (*p == '.' || *p == '/' || *p == ':')
3495 # endif /* _FFR_DOTTED_USERNAMES */
3496 			{
3497 				*p++ = '\0';
3498 				break;
3499 			}
3500 		}
3501 		if (isascii(*val) && isdigit(*val))
3502 		{
3503 			DefUid = atoi(val);
3504 			setdefuser();
3505 		}
3506 		else
3507 		{
3508 			register struct passwd *pw;
3509 
3510 			DefUid = -1;
3511 			pw = sm_getpwnam(val);
3512 			if (pw == NULL)
3513 			{
3514 				syserr("readcf: option u: unknown user %s", val);
3515 				break;
3516 			}
3517 			else
3518 			{
3519 				DefUid = pw->pw_uid;
3520 				DefGid = pw->pw_gid;
3521 				DefUser = newstr(pw->pw_name);
3522 			}
3523 		}
3524 
3525 # ifdef UID_MAX
3526 		if (DefUid > UID_MAX)
3527 		{
3528 			syserr("readcf: option u: uid value (%ld) > UID_MAX (%ld); ignored",
3529 				(long)DefUid, (long)UID_MAX);
3530 			break;
3531 		}
3532 # endif /* UID_MAX */
3533 
3534 		/* handle the group if it is there */
3535 		if (*p == '\0')
3536 			break;
3537 		val = p;
3538 		goto g_opt;
3539 
3540 	  case 'V':		/* fallback MX host */
3541 		if (val[0] != '\0')
3542 			FallbackMX = newstr(val);
3543 		break;
3544 
3545 	  case 'v':		/* run in verbose mode */
3546 		Verbose = atobool(val) ? 1 : 0;
3547 		break;
3548 
3549 	  case 'w':		/* if we are best MX, try host directly */
3550 		TryNullMXList = atobool(val);
3551 		break;
3552 
3553 	    /* 'W' available -- was wizard password */
3554 
3555 	  case 'x':		/* load avg at which to auto-queue msgs */
3556 		QueueLA = atoi(val);
3557 		break;
3558 
3559 	  case 'X':	/* load avg at which to auto-reject connections */
3560 		RefuseLA = atoi(val);
3561 		break;
3562 
3563 	  case O_DELAY_LA:	/* load avg at which to delay connections */
3564 		DelayLA = atoi(val);
3565 		break;
3566 
3567 	  case 'y':		/* work recipient factor */
3568 		WkRecipFact = atoi(val);
3569 		break;
3570 
3571 	  case 'Y':		/* fork jobs during queue runs */
3572 		ForkQueueRuns = atobool(val);
3573 		break;
3574 
3575 	  case 'z':		/* work message class factor */
3576 		WkClassFact = atoi(val);
3577 		break;
3578 
3579 	  case 'Z':		/* work time factor */
3580 		WkTimeFact = atoi(val);
3581 		break;
3582 
3583 
3584 #if _FFR_QUEUE_GROUP_SORTORDER
3585 	/* coordinate this with makequeue() */
3586 #endif /* _FFR_QUEUE_GROUP_SORTORDER */
3587 	  case O_QUEUESORTORD:	/* queue sorting order */
3588 		switch (*val)
3589 		{
3590 		  case 'f':	/* File Name */
3591 		  case 'F':
3592 			QueueSortOrder = QSO_BYFILENAME;
3593 			break;
3594 
3595 		  case 'h':	/* Host first */
3596 		  case 'H':
3597 			QueueSortOrder = QSO_BYHOST;
3598 			break;
3599 
3600 		  case 'm':	/* Modification time */
3601 		  case 'M':
3602 			QueueSortOrder = QSO_BYMODTIME;
3603 			break;
3604 
3605 		  case 'p':	/* Priority order */
3606 		  case 'P':
3607 			QueueSortOrder = QSO_BYPRIORITY;
3608 			break;
3609 
3610 		  case 't':	/* Submission time */
3611 		  case 'T':
3612 			QueueSortOrder = QSO_BYTIME;
3613 			break;
3614 
3615 		  case 'r':	/* Random */
3616 		  case 'R':
3617 			QueueSortOrder = QSO_RANDOM;
3618 			break;
3619 
3620 #if _FFR_RHS
3621 		  case 's':	/* Shuffled host name */
3622 		  case 'S':
3623 			QueueSortOrder = QSO_BYSHUFFLE;
3624 			break;
3625 #endif /* _FFR_RHS */
3626 
3627 		  case 'n':	/* none */
3628 		  case 'N':
3629 			QueueSortOrder = QSO_NONE;
3630 			break;
3631 
3632 		  default:
3633 			syserr("Invalid queue sort order \"%s\"", val);
3634 		}
3635 		break;
3636 
3637 	  case O_HOSTSFILE:	/* pathname of /etc/hosts file */
3638 		CANONIFY(val);
3639 		HostsFile = newstr(val);
3640 		break;
3641 
3642 	  case O_MQA:		/* minimum queue age between deliveries */
3643 		MinQueueAge = convtime(val, 'm');
3644 		break;
3645 
3646 	  case O_MAX_QUEUE_AGE:
3647 		MaxQueueAge = convtime(val, 'm');
3648 		break;
3649 
3650 	  case O_DEFCHARSET:	/* default character set for mimefying */
3651 		DefaultCharSet = newstr(denlstring(val, true, true));
3652 		break;
3653 
3654 	  case O_SSFILE:	/* service switch file */
3655 		CANONIFY(val);
3656 		ServiceSwitchFile = newstr(val);
3657 		break;
3658 
3659 	  case O_DIALDELAY:	/* delay for dial-on-demand operation */
3660 		DialDelay = convtime(val, 's');
3661 		break;
3662 
3663 	  case O_NORCPTACTION:	/* what to do if no recipient */
3664 		if (sm_strcasecmp(val, "none") == 0)
3665 			NoRecipientAction = NRA_NO_ACTION;
3666 		else if (sm_strcasecmp(val, "add-to") == 0)
3667 			NoRecipientAction = NRA_ADD_TO;
3668 		else if (sm_strcasecmp(val, "add-apparently-to") == 0)
3669 			NoRecipientAction = NRA_ADD_APPARENTLY_TO;
3670 		else if (sm_strcasecmp(val, "add-bcc") == 0)
3671 			NoRecipientAction = NRA_ADD_BCC;
3672 		else if (sm_strcasecmp(val, "add-to-undisclosed") == 0)
3673 			NoRecipientAction = NRA_ADD_TO_UNDISCLOSED;
3674 		else
3675 			syserr("Invalid NoRecipientAction: %s", val);
3676 		break;
3677 
3678 	  case O_SAFEFILEENV:	/* chroot() environ for writing to files */
3679 		if (*val == '\0')
3680 			break;
3681 
3682 		/* strip trailing slashes */
3683 		p = val + strlen(val) - 1;
3684 		while (p >= val && *p == '/')
3685 			*p-- = '\0';
3686 
3687 		if (*val == '\0')
3688 			break;
3689 
3690 		SafeFileEnv = newstr(val);
3691 		break;
3692 
3693 	  case O_MAXMSGSIZE:	/* maximum message size */
3694 		MaxMessageSize = atol(val);
3695 		break;
3696 
3697 	  case O_COLONOKINADDR:	/* old style handling of colon addresses */
3698 		ColonOkInAddr = atobool(val);
3699 		break;
3700 
3701 	  case O_MAXQUEUERUN:	/* max # of jobs in a single queue run */
3702 		MaxQueueRun = atoi(val);
3703 		break;
3704 
3705 	  case O_MAXCHILDREN:	/* max # of children of daemon */
3706 		MaxChildren = atoi(val);
3707 		break;
3708 
3709 	  case O_MAXQUEUECHILDREN: /* max # of children of daemon */
3710 		MaxQueueChildren = atoi(val);
3711 		break;
3712 
3713 	  case O_MAXRUNNERSPERQUEUE: /* max # runners in a queue group */
3714 		MaxRunnersPerQueue = atoi(val);
3715 		break;
3716 
3717 	  case O_NICEQUEUERUN:		/* nice queue runs */
3718 #if !HASNICE
3719 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3720 				     "Warning: NiceQueueRun set on system that doesn't support nice()\n");
3721 #endif /* !HASNICE */
3722 
3723 		/* XXX do we want to check the range? > 0 ? */
3724 		NiceQueueRun = atoi(val);
3725 		break;
3726 
3727 	  case O_SHMKEY:		/* shared memory key */
3728 #if SM_CONF_SHM
3729 		ShmKey = atol(val);
3730 #else /* SM_CONF_SHM */
3731 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3732 				     "Warning: Option: %s requires shared memory support (-DSM_CONF_SHM)\n",
3733 				     OPTNAME);
3734 #endif /* SM_CONF_SHM */
3735 		break;
3736 
3737 	  case O_SHMKEYFILE:		/* shared memory key file */
3738 #if SM_CONF_SHM
3739 		SET_STRING_EXP(ShmKeyFile);
3740 #else /* SM_CONF_SHM */
3741 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3742 				     "Warning: Option: %s requires shared memory support (-DSM_CONF_SHM)\n",
3743 				     OPTNAME);
3744 		break;
3745 #endif /* SM_CONF_SHM */
3746 
3747 #if _FFR_MAX_FORWARD_ENTRIES
3748 	  case O_MAXFORWARD:	/* max # of forward entries */
3749 		MaxForwardEntries = atoi(val);
3750 		break;
3751 #endif /* _FFR_MAX_FORWARD_ENTRIES */
3752 
3753 	  case O_KEEPCNAMES:	/* don't expand CNAME records */
3754 		DontExpandCnames = atobool(val);
3755 		break;
3756 
3757 	  case O_MUSTQUOTE:	/* must quote these characters in phrases */
3758 		(void) sm_strlcpy(buf, "@,;:\\()[]", sizeof(buf));
3759 		if (strlen(val) < sizeof(buf) - 10)
3760 			(void) sm_strlcat(buf, val, sizeof(buf));
3761 		else
3762 			(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3763 					     "Warning: MustQuoteChars too long, ignored.\n");
3764 		MustQuoteChars = newstr(buf);
3765 		break;
3766 
3767 	  case O_SMTPGREETING:	/* SMTP greeting message (old $e macro) */
3768 		SmtpGreeting = newstr(munchstring(val, NULL, '\0'));
3769 		break;
3770 
3771 	  case O_UNIXFROM:	/* UNIX From_ line (old $l macro) */
3772 		UnixFromLine = newstr(munchstring(val, NULL, '\0'));
3773 		break;
3774 
3775 	  case O_OPCHARS:	/* operator characters (old $o macro) */
3776 		if (OperatorChars != NULL)
3777 			(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3778 					     "Warning: OperatorChars is being redefined.\n         It should only be set before ruleset definitions.\n");
3779 		OperatorChars = newstr(munchstring(val, NULL, '\0'));
3780 		break;
3781 
3782 	  case O_DONTINITGRPS:	/* don't call initgroups(3) */
3783 		DontInitGroups = atobool(val);
3784 		break;
3785 
3786 	  case O_SLFH:		/* make sure from fits on one line */
3787 		SingleLineFromHeader = atobool(val);
3788 		break;
3789 
3790 	  case O_ABH:		/* allow HELO commands with syntax errors */
3791 		AllowBogusHELO = atobool(val);
3792 		break;
3793 
3794 	  case O_CONNTHROT:	/* connection rate throttle */
3795 		ConnRateThrottle = atoi(val);
3796 		break;
3797 
3798 	  case O_UGW:		/* group writable files are unsafe */
3799 		if (!atobool(val))
3800 		{
3801 			setbitn(DBS_GROUPWRITABLEFORWARDFILESAFE,
3802 				DontBlameSendmail);
3803 			setbitn(DBS_GROUPWRITABLEINCLUDEFILESAFE,
3804 				DontBlameSendmail);
3805 		}
3806 		break;
3807 
3808 	  case O_DBLBOUNCE:	/* address to which to send double bounces */
3809 		DoubleBounceAddr = newstr(val);
3810 		break;
3811 
3812 	  case O_HSDIR:		/* persistent host status directory */
3813 		if (val[0] != '\0')
3814 		{
3815 			CANONIFY(val);
3816 			HostStatDir = newstr(val);
3817 		}
3818 		break;
3819 
3820 	  case O_SINGTHREAD:	/* single thread deliveries (requires hsdir) */
3821 		SingleThreadDelivery = atobool(val);
3822 		break;
3823 
3824 	  case O_RUNASUSER:	/* run bulk of code as this user */
3825 		for (p = val; *p != '\0'; p++)
3826 		{
3827 # if _FFR_DOTTED_USERNAMES
3828 			if (*p == '/' || *p == ':')
3829 # else /* _FFR_DOTTED_USERNAMES */
3830 			if (*p == '.' || *p == '/' || *p == ':')
3831 # endif /* _FFR_DOTTED_USERNAMES */
3832 			{
3833 				*p++ = '\0';
3834 				break;
3835 			}
3836 		}
3837 		if (isascii(*val) && isdigit(*val))
3838 		{
3839 			if (can_setuid)
3840 				RunAsUid = atoi(val);
3841 		}
3842 		else
3843 		{
3844 			register struct passwd *pw;
3845 
3846 			pw = sm_getpwnam(val);
3847 			if (pw == NULL)
3848 			{
3849 				syserr("readcf: option RunAsUser: unknown user %s", val);
3850 				break;
3851 			}
3852 			else if (can_setuid)
3853 			{
3854 				if (*p == '\0')
3855 					RunAsUserName = newstr(val);
3856 				RunAsUid = pw->pw_uid;
3857 				RunAsGid = pw->pw_gid;
3858 			}
3859 			else if (EffGid == pw->pw_gid)
3860 				RunAsGid = pw->pw_gid;
3861 			else if (UseMSP && *p == '\0')
3862 				(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
3863 						     "WARNING: RunAsUser for MSP ignored, check group ids (egid=%ld, want=%ld)\n",
3864 						     (long) EffGid,
3865 						     (long) pw->pw_gid);
3866 		}
3867 # ifdef UID_MAX
3868 		if (RunAsUid > UID_MAX)
3869 		{
3870 			syserr("readcf: option RunAsUser: uid value (%ld) > UID_MAX (%ld); ignored",
3871 				(long) RunAsUid, (long) UID_MAX);
3872 			break;
3873 		}
3874 # endif /* UID_MAX */
3875 		if (*p != '\0')
3876 		{
3877 			if (isascii(*p) && isdigit(*p))
3878 			{
3879 				gid_t runasgid;
3880 
3881 				runasgid = (gid_t) atoi(p);
3882 				if (can_setuid || EffGid == runasgid)
3883 					RunAsGid = runasgid;
3884 				else if (UseMSP)
3885 					(void) sm_io_fprintf(smioout,
3886 							     SM_TIME_DEFAULT,
3887 							     "WARNING: RunAsUser for MSP ignored, check group ids (egid=%ld, want=%ld)\n",
3888 							     (long) EffGid,
3889 							     (long) runasgid);
3890 			}
3891 			else
3892 			{
3893 				register struct group *gr;
3894 
3895 				gr = getgrnam(p);
3896 				if (gr == NULL)
3897 					syserr("readcf: option RunAsUser: unknown group %s",
3898 						p);
3899 				else if (can_setuid || EffGid == gr->gr_gid)
3900 					RunAsGid = gr->gr_gid;
3901 				else if (UseMSP)
3902 					(void) sm_io_fprintf(smioout,
3903 							     SM_TIME_DEFAULT,
3904 							     "WARNING: RunAsUser for MSP ignored, check group ids (egid=%ld, want=%ld)\n",
3905 							     (long) EffGid,
3906 							     (long) gr->gr_gid);
3907 			}
3908 		}
3909 		if (tTd(47, 5))
3910 			sm_dprintf("readcf: RunAsUser = %d:%d\n",
3911 				   (int) RunAsUid, (int) RunAsGid);
3912 		break;
3913 
3914 	  case O_DSN_RRT:
3915 		RrtImpliesDsn = atobool(val);
3916 		break;
3917 
3918 	  case O_PIDFILE:
3919 		PSTRSET(PidFile, val);
3920 		break;
3921 
3922 	  case O_DONTBLAMESENDMAIL:
3923 		p = val;
3924 		for (;;)
3925 		{
3926 			register struct dbsval *dbs;
3927 			extern struct dbsval DontBlameSendmailValues[];
3928 
3929 			while (isascii(*p) && (isspace(*p) || ispunct(*p)))
3930 				p++;
3931 			if (*p == '\0')
3932 				break;
3933 			val = p;
3934 			while (isascii(*p) && isalnum(*p))
3935 				p++;
3936 			if (*p != '\0')
3937 				*p++ = '\0';
3938 
3939 			for (dbs = DontBlameSendmailValues;
3940 			     dbs->dbs_name != NULL; dbs++)
3941 			{
3942 				if (sm_strcasecmp(val, dbs->dbs_name) == 0)
3943 					break;
3944 			}
3945 			if (dbs->dbs_name == NULL)
3946 				syserr("readcf: DontBlameSendmail option: %s unrecognized", val);
3947 			else if (dbs->dbs_flag == DBS_SAFE)
3948 				clrbitmap(DontBlameSendmail);
3949 			else
3950 				setbitn(dbs->dbs_flag, DontBlameSendmail);
3951 		}
3952 		sticky = false;
3953 		break;
3954 
3955 	  case O_DPI:
3956 		if (sm_strcasecmp(val, "loopback") == 0)
3957 			DontProbeInterfaces = DPI_SKIPLOOPBACK;
3958 		else if (atobool(val))
3959 			DontProbeInterfaces = DPI_PROBENONE;
3960 		else
3961 			DontProbeInterfaces = DPI_PROBEALL;
3962 		break;
3963 
3964 	  case O_MAXRCPT:
3965 		MaxRcptPerMsg = atoi(val);
3966 		break;
3967 
3968 	  case O_RCPTTHROT:
3969 		BadRcptThrottle = atoi(val);
3970 		break;
3971 
3972 #if _FFR_RCPTTHROTDELAY
3973 	  case O_RCPTTHROTDELAY:
3974 		BadRcptThrottleDelay = atoi(val);
3975 		break;
3976 #endif /* _FFR_RCPTTHROTDELAY */
3977 
3978 	  case O_DEADLETTER:
3979 		CANONIFY(val);
3980 		PSTRSET(DeadLetterDrop, val);
3981 		break;
3982 
3983 #if _FFR_DONTLOCKFILESFORREAD_OPTION
3984 	  case O_DONTLOCK:
3985 		DontLockReadFiles = atobool(val);
3986 		break;
3987 #endif /* _FFR_DONTLOCKFILESFORREAD_OPTION */
3988 
3989 	  case O_MAXALIASRCSN:
3990 		MaxAliasRecursion = atoi(val);
3991 		break;
3992 
3993 	  case O_CNCTONLYTO:
3994 		/* XXX should probably use gethostbyname */
3995 #if NETINET || NETINET6
3996 		ConnectOnlyTo.sa.sa_family = AF_UNSPEC;
3997 # if NETINET6
3998 		if (anynet_pton(AF_INET6, val,
3999 				&ConnectOnlyTo.sin6.sin6_addr) == 1)
4000 			ConnectOnlyTo.sa.sa_family = AF_INET6;
4001 		else
4002 # endif /* NETINET6 */
4003 # if NETINET
4004 		{
4005 			ConnectOnlyTo.sin.sin_addr.s_addr = inet_addr(val);
4006 			if (ConnectOnlyTo.sin.sin_addr.s_addr != INADDR_NONE)
4007 				ConnectOnlyTo.sa.sa_family = AF_INET;
4008 		}
4009 
4010 # endif /* NETINET */
4011 		if (ConnectOnlyTo.sa.sa_family == AF_UNSPEC)
4012 		{
4013 			syserr("readcf: option ConnectOnlyTo: invalid IP address %s",
4014 			       val);
4015 			break;
4016 		}
4017 #endif /* NETINET || NETINET6 */
4018 		break;
4019 
4020 	  case O_TRUSTUSER:
4021 # if !HASFCHOWN && !defined(_FFR_DROP_TRUSTUSER_WARNING)
4022 		if (!UseMSP)
4023 			(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4024 					     "readcf: option TrustedUser may cause problems on systems\n        which do not support fchown() if UseMSP is not set.\n");
4025 # endif /* !HASFCHOWN && !defined(_FFR_DROP_TRUSTUSER_WARNING) */
4026 		if (isascii(*val) && isdigit(*val))
4027 			TrustedUid = atoi(val);
4028 		else
4029 		{
4030 			register struct passwd *pw;
4031 
4032 			TrustedUid = 0;
4033 			pw = sm_getpwnam(val);
4034 			if (pw == NULL)
4035 			{
4036 				syserr("readcf: option TrustedUser: unknown user %s", val);
4037 				break;
4038 			}
4039 			else
4040 				TrustedUid = pw->pw_uid;
4041 		}
4042 
4043 # ifdef UID_MAX
4044 		if (TrustedUid > UID_MAX)
4045 		{
4046 			syserr("readcf: option TrustedUser: uid value (%ld) > UID_MAX (%ld)",
4047 				(long) TrustedUid, (long) UID_MAX);
4048 			TrustedUid = 0;
4049 		}
4050 # endif /* UID_MAX */
4051 		break;
4052 
4053 	  case O_MAXMIMEHDRLEN:
4054 		p = strchr(val, '/');
4055 		if (p != NULL)
4056 			*p++ = '\0';
4057 		MaxMimeHeaderLength = atoi(val);
4058 		if (p != NULL && *p != '\0')
4059 			MaxMimeFieldLength = atoi(p);
4060 		else
4061 			MaxMimeFieldLength = MaxMimeHeaderLength / 2;
4062 
4063 		if (MaxMimeHeaderLength <= 0)
4064 			MaxMimeHeaderLength = 0;
4065 		else if (MaxMimeHeaderLength < 128)
4066 			(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4067 					     "Warning: MaxMimeHeaderLength: header length limit set lower than 128\n");
4068 
4069 		if (MaxMimeFieldLength <= 0)
4070 			MaxMimeFieldLength = 0;
4071 		else if (MaxMimeFieldLength < 40)
4072 			(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4073 					     "Warning: MaxMimeHeaderLength: field length limit set lower than 40\n");
4074 
4075 		/*
4076 		**  Headers field values now include leading space, so let's
4077 		**  adjust the values to be "backward compatible".
4078 		*/
4079 
4080 		if (MaxMimeHeaderLength > 0)
4081 			MaxMimeHeaderLength++;
4082 		if (MaxMimeFieldLength > 0)
4083 			MaxMimeFieldLength++;
4084 		break;
4085 
4086 	  case O_CONTROLSOCKET:
4087 		PSTRSET(ControlSocketName, val);
4088 		break;
4089 
4090 	  case O_MAXHDRSLEN:
4091 		MaxHeadersLength = atoi(val);
4092 
4093 		if (MaxHeadersLength > 0 &&
4094 		    MaxHeadersLength < (MAXHDRSLEN / 2))
4095 			(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4096 					     "Warning: MaxHeadersLength: headers length limit set lower than %d\n",
4097 					     (MAXHDRSLEN / 2));
4098 		break;
4099 
4100 	  case O_PROCTITLEPREFIX:
4101 		PSTRSET(ProcTitlePrefix, val);
4102 		break;
4103 
4104 #if SASL
4105 	  case O_SASLINFO:
4106 # if _FFR_ALLOW_SASLINFO
4107 		/*
4108 		**  Allow users to select their own authinfo file
4109 		**  under certain circumstances, otherwise just ignore
4110 		**  the option.  If the option isn't ignored, several
4111 		**  commands don't work very well, e.g., mailq.
4112 		**  However, this is not a "perfect" solution.
4113 		**  If mail is queued, the authentication info
4114 		**  will not be used in subsequent delivery attempts.
4115 		**  If we really want to support this, then it has
4116 		**  to be stored in the queue file.
4117 		*/
4118 		if (!bitset(SUBMIT_MSA, SubmitMode) && RealUid != 0 &&
4119 		    RunAsUid != RealUid)
4120 			break;
4121 # endif /* _FFR_ALLOW_SASLINFO */
4122 		PSTRSET(SASLInfo, val);
4123 		break;
4124 
4125 	  case O_SASLMECH:
4126 		if (AuthMechanisms != NULL)
4127 			sm_free(AuthMechanisms); /* XXX */
4128 		if (*val != '\0')
4129 			AuthMechanisms = newstr(val);
4130 		else
4131 			AuthMechanisms = NULL;
4132 		break;
4133 
4134 	  case O_SASLREALM:
4135 		if (AuthRealm != NULL)
4136 			sm_free(AuthRealm);
4137 		if (*val != '\0')
4138 			AuthRealm = newstr(val);
4139 		else
4140 			AuthRealm = NULL;
4141 		break;
4142 
4143 	  case O_SASLOPTS:
4144 		while (val != NULL && *val != '\0')
4145 		{
4146 			switch (*val)
4147 			{
4148 			  case 'A':
4149 				SASLOpts |= SASL_AUTH_AUTH;
4150 				break;
4151 
4152 			  case 'a':
4153 				SASLOpts |= SASL_SEC_NOACTIVE;
4154 				break;
4155 
4156 			  case 'c':
4157 				SASLOpts |= SASL_SEC_PASS_CREDENTIALS;
4158 				break;
4159 
4160 			  case 'd':
4161 				SASLOpts |= SASL_SEC_NODICTIONARY;
4162 				break;
4163 
4164 			  case 'f':
4165 				SASLOpts |= SASL_SEC_FORWARD_SECRECY;
4166 				break;
4167 
4168 #  if SASL >= 20101
4169 			  case 'm':
4170 				SASLOpts |= SASL_SEC_MUTUAL_AUTH;
4171 				break;
4172 #  endif /* SASL >= 20101 */
4173 
4174 			  case 'p':
4175 				SASLOpts |= SASL_SEC_NOPLAINTEXT;
4176 				break;
4177 
4178 			  case 'y':
4179 				SASLOpts |= SASL_SEC_NOANONYMOUS;
4180 				break;
4181 
4182 			  case ' ':	/* ignore */
4183 			  case '\t':	/* ignore */
4184 			  case ',':	/* ignore */
4185 				break;
4186 
4187 			  default:
4188 				(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4189 						     "Warning: Option: %s unknown parameter '%c'\n",
4190 						     OPTNAME,
4191 						     (isascii(*val) &&
4192 							isprint(*val))
4193 							? *val : '?');
4194 				break;
4195 			}
4196 			++val;
4197 			val = strpbrk(val, ", \t");
4198 			if (val != NULL)
4199 				++val;
4200 		}
4201 		break;
4202 
4203 	  case O_SASLBITS:
4204 		MaxSLBits = atoi(val);
4205 		break;
4206 
4207 #else /* SASL */
4208 	  case O_SASLINFO:
4209 	  case O_SASLMECH:
4210 	  case O_SASLREALM:
4211 	  case O_SASLOPTS:
4212 	  case O_SASLBITS:
4213 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4214 				     "Warning: Option: %s requires SASL support (-DSASL)\n",
4215 				     OPTNAME);
4216 		break;
4217 #endif /* SASL */
4218 
4219 #if STARTTLS
4220 	  case O_SRVCERTFILE:
4221 		SET_STRING_EXP(SrvCertFile);
4222 	  case O_SRVKEYFILE:
4223 		SET_STRING_EXP(SrvKeyFile);
4224 	  case O_CLTCERTFILE:
4225 		SET_STRING_EXP(CltCertFile);
4226 	  case O_CLTKEYFILE:
4227 		SET_STRING_EXP(CltKeyFile);
4228 	  case O_CACERTFILE:
4229 		SET_STRING_EXP(CACertFile);
4230 	  case O_CACERTPATH:
4231 		SET_STRING_EXP(CACertPath);
4232 	  case O_DHPARAMS:
4233 		SET_STRING_EXP(DHParams);
4234 	  case O_CIPHERLIST:
4235 		SET_STRING_EXP(CipherList);
4236 	  case O_DIG_ALG:
4237 		SET_STRING_EXP(CertFingerprintAlgorithm);
4238 	  case O_SRV_SSL_OPTIONS:
4239 		pssloptions = &Srv_SSL_Options;
4240 	  case O_CLT_SSL_OPTIONS:
4241 		if (pssloptions == NULL)
4242 			pssloptions = &Clt_SSL_Options;
4243 		(void) readssloptions(o->o_name, val, pssloptions, '\0');
4244 		if (tTd(37, 8))
4245 			sm_dprintf("ssloptions=%#lx\n", *pssloptions);
4246 
4247 		pssloptions = NULL;
4248 		break;
4249 
4250 	  case O_CRLFILE:
4251 # if OPENSSL_VERSION_NUMBER > 0x00907000L
4252 		SET_STRING_EXP(CRLFile);
4253 # else /* OPENSSL_VERSION_NUMBER > 0x00907000L */
4254 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4255 				     "Warning: Option: %s requires at least OpenSSL 0.9.7\n",
4256 				     OPTNAME);
4257 		break;
4258 # endif /* OPENSSL_VERSION_NUMBER > 0x00907000L */
4259 
4260 # if _FFR_CRLPATH
4261 	  case O_CRLPATH:
4262 #  if OPENSSL_VERSION_NUMBER > 0x00907000L
4263 		SET_STRING_EXP(CRLPath);
4264 #  else /* OPENSSL_VERSION_NUMBER > 0x00907000L */
4265 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4266 				     "Warning: Option: %s requires at least OpenSSL 0.9.7\n",
4267 				     OPTNAME);
4268 		break;
4269 #  endif /* OPENSSL_VERSION_NUMBER > 0x00907000L */
4270 # endif /* _FFR_CRLPATH */
4271 
4272 	/*
4273 	**  XXX How about options per daemon/client instead of globally?
4274 	**  This doesn't work well for some options, e.g., no server cert,
4275 	**  but fine for others.
4276 	**
4277 	**  XXX Some people may want different certs per server.
4278 	**
4279 	**  See also srvfeatures()
4280 	*/
4281 
4282 	  case O_TLS_SRV_OPTS:
4283 		while (val != NULL && *val != '\0')
4284 		{
4285 			switch (*val)
4286 			{
4287 			  case 'V':
4288 				TLS_Srv_Opts |= TLS_I_NO_VRFY;
4289 				break;
4290 			/*
4291 			**  Server without a cert? That works only if
4292 			**  AnonDH is enabled as cipher, which is not in the
4293 			**  default list. Hence the CipherList option must
4294 			**  be available. Moreover: which clients support this
4295 			**  besides sendmail with this setting?
4296 			*/
4297 
4298 			  case 'C':
4299 				TLS_Srv_Opts &= ~TLS_I_SRV_CERT;
4300 				break;
4301 			  case ' ':	/* ignore */
4302 			  case '\t':	/* ignore */
4303 			  case ',':	/* ignore */
4304 				break;
4305 			  default:
4306 				(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4307 						     "Warning: Option: %s unknown parameter '%c'\n",
4308 						     OPTNAME,
4309 						     (isascii(*val) &&
4310 							isprint(*val))
4311 							? *val : '?');
4312 				break;
4313 			}
4314 			++val;
4315 			val = strpbrk(val, ", \t");
4316 			if (val != NULL)
4317 				++val;
4318 		}
4319 		break;
4320 
4321 	  case O_RANDFILE:
4322 		PSTRSET(RandFile, val);
4323 		break;
4324 
4325 #else /* STARTTLS */
4326 	  case O_SRVCERTFILE:
4327 	  case O_SRVKEYFILE:
4328 	  case O_CLTCERTFILE:
4329 	  case O_CLTKEYFILE:
4330 	  case O_CACERTFILE:
4331 	  case O_CACERTPATH:
4332 	  case O_DHPARAMS:
4333 	  case O_SRV_SSL_OPTIONS:
4334 	  case O_CLT_SSL_OPTIONS:
4335 	  case O_CIPHERLIST:
4336 	  case O_CRLFILE:
4337 # if _FFR_CRLPATH
4338 	  case O_CRLPATH:
4339 # endif /* _FFR_CRLPATH */
4340 	  case O_RANDFILE:
4341 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4342 				     "Warning: Option: %s requires TLS support\n",
4343 				     OPTNAME);
4344 		break;
4345 
4346 #endif /* STARTTLS */
4347 #if STARTTLS && _FFR_FIPSMODE
4348 	  case O_FIPSMODE:
4349 		FipsMode = atobool(val);
4350 		break;
4351 #endif /* STARTTLS && _FFR_FIPSMODE  */
4352 
4353 	  case O_CLIENTPORT:
4354 		setclientoptions(val);
4355 		break;
4356 
4357 	  case O_DF_BUFSIZE:
4358 		DataFileBufferSize = atoi(val);
4359 		break;
4360 
4361 	  case O_XF_BUFSIZE:
4362 		XscriptFileBufferSize = atoi(val);
4363 		break;
4364 
4365 	  case O_LDAPDEFAULTSPEC:
4366 #if LDAPMAP
4367 		ldapmap_set_defaults(val);
4368 #else /* LDAPMAP */
4369 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4370 				     "Warning: Option: %s requires LDAP support (-DLDAPMAP)\n",
4371 				     OPTNAME);
4372 #endif /* LDAPMAP */
4373 		break;
4374 
4375 	  case O_INPUTMILTER:
4376 #if MILTER
4377 		InputFilterList = newstr(val);
4378 #else /* MILTER */
4379 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4380 				     "Warning: Option: %s requires Milter support (-DMILTER)\n",
4381 				     OPTNAME);
4382 #endif /* MILTER */
4383 		break;
4384 
4385 	  case O_MILTER:
4386 #if MILTER
4387 		milter_set_option(subopt, val, sticky);
4388 #else /* MILTER */
4389 		(void) sm_io_fprintf(smioout, SM_TIME_DEFAULT,
4390 				     "Warning: Option: %s requires Milter support (-DMILTER)\n",
4391 				     OPTNAME);
4392 #endif /* MILTER */
4393 		break;
4394 
4395 	  case O_QUEUE_FILE_MODE:	/* queue file mode */
4396 		QueueFileMode = atooct(val) & 0777;
4397 		break;
4398 
4399 	  case O_DLVR_MIN:	/* deliver by minimum time */
4400 		DeliverByMin = convtime(val, 's');
4401 		break;
4402 
4403 	  /* modifiers {daemon_flags} for direct submissions */
4404 	  case O_DIRECTSUBMODIFIERS:
4405 		{
4406 			BITMAP256 m;	/* ignored */
4407 			extern ENVELOPE BlankEnvelope;
4408 
4409 			macdefine(&BlankEnvelope.e_macro, A_PERM,
4410 				  macid("{daemon_flags}"),
4411 				  getmodifiers(val, m));
4412 		}
4413 		break;
4414 
4415 	  case O_FASTSPLIT:
4416 		FastSplit = atoi(val);
4417 		break;
4418 
4419 	  case O_MBDB:
4420 		Mbdb = newstr(val);
4421 		break;
4422 
4423 	  case O_MSQ:
4424 		UseMSP = atobool(val);
4425 		break;
4426 
4427 	  case O_SOFTBOUNCE:
4428 		SoftBounce = atobool(val);
4429 		break;
4430 
4431 	  case O_REJECTLOGINTERVAL:	/* time btwn log msgs while refusing */
4432 		RejectLogInterval = convtime(val, 'h');
4433 		break;
4434 
4435 	  case O_REQUIRES_DIR_FSYNC:
4436 #if REQUIRES_DIR_FSYNC
4437 		RequiresDirfsync = atobool(val);
4438 #else /* REQUIRES_DIR_FSYNC */
4439 		/* silently ignored... required for cf file option */
4440 #endif /* REQUIRES_DIR_FSYNC */
4441 		break;
4442 
4443 	  case O_CONNECTION_RATE_WINDOW_SIZE:
4444 		ConnectionRateWindowSize = convtime(val, 's');
4445 		break;
4446 
4447 	  case O_FALLBACKSMARTHOST:	/* fallback smart host */
4448 		if (val[0] != '\0')
4449 			FallbackSmartHost = newstr(val);
4450 		break;
4451 
4452 	  case O_HELONAME:
4453 		HeloName = newstr(val);
4454 		break;
4455 
4456 #if _FFR_MEMSTAT
4457 	  case O_REFUSELOWMEM:
4458 		RefuseLowMem = atoi(val);
4459 		break;
4460 	  case O_QUEUELOWMEM:
4461 		QueueLowMem = atoi(val);
4462 		break;
4463 	  case O_MEMRESOURCE:
4464 		MemoryResource = newstr(val);
4465 		break;
4466 #endif /* _FFR_MEMSTAT */
4467 
4468 	  case O_MAXNOOPCOMMANDS:
4469 		MaxNOOPCommands = atoi(val);
4470 		break;
4471 
4472 #if _FFR_MSG_ACCEPT
4473 	  case O_MSG_ACCEPT:
4474 		MessageAccept = newstr(val);
4475 		break;
4476 #endif /* _FFR_MSG_ACCEPT */
4477 
4478 #if _FFR_QUEUE_RUN_PARANOIA
4479 	  case O_CHK_Q_RUNNERS:
4480 		CheckQueueRunners = atoi(val);
4481 		break;
4482 #endif /* _FFR_QUEUE_RUN_PARANOIA */
4483 
4484 #if _FFR_EIGHT_BIT_ADDR_OK
4485 	  case O_EIGHT_BIT_ADDR_OK:
4486 		EightBitAddrOK = atobool(val);
4487 		break;
4488 #endif /* _FFR_EIGHT_BIT_ADDR_OK */
4489 
4490 #if _FFR_ADDR_TYPE_MODES
4491 	  case O_ADDR_TYPE_MODES:
4492 		AddrTypeModes = atobool(val);
4493 		break;
4494 #endif /* _FFR_ADDR_TYPE_MODES */
4495 
4496 #if _FFR_BADRCPT_SHUTDOWN
4497 	  case O_RCPTSHUTD:
4498 		BadRcptShutdown = atoi(val);
4499 		break;
4500 
4501 	  case O_RCPTSHUTDG:
4502 		BadRcptShutdownGood = atoi(val);
4503 		break;
4504 #endif /* _FFR_BADRCPT_SHUTDOWN */
4505 
4506 #if _FFR_REJECT_NUL_BYTE
4507 	  case O_REJECTNUL:
4508 		RejectNUL = atobool(val);
4509 		break;
4510 #endif /* _FFR_REJECT_NUL_BYTE */
4511 
4512 #if _FFR_BOUNCE_QUEUE
4513 	  case O_BOUNCEQUEUE:
4514 		bouncequeue = newstr(val);
4515 		break;
4516 #endif /* _FFR_BOUNCE_QUEUE */
4517 
4518 #if _FFR_ADD_BCC
4519 	  case O_ADDBCC:
4520 		AddBcc = atobool(val);
4521 		break;
4522 #endif
4523 	  case O_USECOMPRESSEDIPV6ADDRESSES:
4524 		UseCompressedIPv6Addresses = atobool(val);
4525 		break;
4526 
4527 	  default:
4528 		if (tTd(37, 1))
4529 		{
4530 			if (isascii(opt) && isprint(opt))
4531 				sm_dprintf("Warning: option %c unknown\n", opt);
4532 			else
4533 				sm_dprintf("Warning: option 0x%x unknown\n", opt);
4534 		}
4535 		break;
4536 	}
4537 
4538 	/*
4539 	**  Options with suboptions are responsible for taking care
4540 	**  of sticky-ness (e.g., that a command line setting is kept
4541 	**  when reading in the sendmail.cf file).  This has to be done
4542 	**  when the suboptions are parsed since each suboption must be
4543 	**  sticky, not the root option.
4544 	*/
4545 
4546 	if (sticky && !bitset(OI_SUBOPT, o->o_flags))
4547 		setbitn(opt, StickyOpt);
4548 }
4549 /*
4550 **  SETCLASS -- set a string into a class
4551 **
4552 **	Parameters:
4553 **		class -- the class to put the string in.
4554 **		str -- the string to enter
4555 **
4556 **	Returns:
4557 **		none.
4558 **
4559 **	Side Effects:
4560 **		puts the word into the symbol table.
4561 */
4562 
4563 void
4564 setclass(class, str)
4565 	int class;
4566 	char *str;
4567 {
4568 	register STAB *s;
4569 
4570 	if ((str[0] & 0377) == MATCHCLASS)
4571 	{
4572 		int mid;
4573 
4574 		str++;
4575 		mid = macid(str);
4576 		if (mid == 0)
4577 			return;
4578 
4579 		if (tTd(37, 8))
4580 			sm_dprintf("setclass(%s, $=%s)\n",
4581 				   macname(class), macname(mid));
4582 		copy_class(mid, class);
4583 	}
4584 	else
4585 	{
4586 		if (tTd(37, 8))
4587 			sm_dprintf("setclass(%s, %s)\n", macname(class), str);
4588 
4589 		s = stab(str, ST_CLASS, ST_ENTER);
4590 		setbitn(bitidx(class), s->s_class);
4591 	}
4592 }
4593 /*
4594 **  MAKEMAPENTRY -- create a map entry
4595 **
4596 **	Parameters:
4597 **		line -- the config file line
4598 **
4599 **	Returns:
4600 **		A pointer to the map that has been created.
4601 **		NULL if there was a syntax error.
4602 **
4603 **	Side Effects:
4604 **		Enters the map into the dictionary.
4605 */
4606 
4607 MAP *
4608 makemapentry(line)
4609 	char *line;
4610 {
4611 	register char *p;
4612 	char *mapname;
4613 	char *classname;
4614 	register STAB *s;
4615 	STAB *class;
4616 
4617 	for (p = line; isascii(*p) && isspace(*p); p++)
4618 		continue;
4619 	if (!(isascii(*p) && isalnum(*p)))
4620 	{
4621 		syserr("readcf: config K line: no map name");
4622 		return NULL;
4623 	}
4624 
4625 	mapname = p;
4626 	while ((isascii(*++p) && isalnum(*p)) || *p == '_' || *p == '.')
4627 		continue;
4628 	if (*p != '\0')
4629 		*p++ = '\0';
4630 	while (isascii(*p) && isspace(*p))
4631 		p++;
4632 	if (!(isascii(*p) && isalnum(*p)))
4633 	{
4634 		syserr("readcf: config K line, map %s: no map class", mapname);
4635 		return NULL;
4636 	}
4637 	classname = p;
4638 	while (isascii(*++p) && isalnum(*p))
4639 		continue;
4640 	if (*p != '\0')
4641 		*p++ = '\0';
4642 	while (isascii(*p) && isspace(*p))
4643 		p++;
4644 
4645 	/* look up the class */
4646 	class = stab(classname, ST_MAPCLASS, ST_FIND);
4647 	if (class == NULL)
4648 	{
4649 		syserr("readcf: map %s: class %s not available", mapname,
4650 			classname);
4651 		return NULL;
4652 	}
4653 
4654 	/* enter the map */
4655 	s = stab(mapname, ST_MAP, ST_ENTER);
4656 	s->s_map.map_class = &class->s_mapclass;
4657 	s->s_map.map_mname = newstr(mapname);
4658 
4659 	if (class->s_mapclass.map_parse(&s->s_map, p))
4660 		s->s_map.map_mflags |= MF_VALID;
4661 
4662 	if (tTd(37, 5))
4663 	{
4664 		sm_dprintf("map %s, class %s, flags %lx, file %s,\n",
4665 			   s->s_map.map_mname, s->s_map.map_class->map_cname,
4666 			   s->s_map.map_mflags, s->s_map.map_file);
4667 		sm_dprintf("\tapp %s, domain %s, rebuild %s\n",
4668 			   s->s_map.map_app, s->s_map.map_domain,
4669 			   s->s_map.map_rebuild);
4670 	}
4671 	return &s->s_map;
4672 }
4673 /*
4674 **  STRTORWSET -- convert string to rewriting set number
4675 **
4676 **	Parameters:
4677 **		p -- the pointer to the string to decode.
4678 **		endp -- if set, store the trailing delimiter here.
4679 **		stabmode -- ST_ENTER to create this entry, ST_FIND if
4680 **			it must already exist.
4681 **
4682 **	Returns:
4683 **		The appropriate ruleset number.
4684 **		-1 if it is not valid (error already printed)
4685 */
4686 
4687 int
4688 strtorwset(p, endp, stabmode)
4689 	char *p;
4690 	char **endp;
4691 	int stabmode;
4692 {
4693 	int ruleset;
4694 	static int nextruleset = MAXRWSETS;
4695 
4696 	while (isascii(*p) && isspace(*p))
4697 		p++;
4698 	if (!isascii(*p))
4699 	{
4700 		syserr("invalid ruleset name: \"%.20s\"", p);
4701 		return -1;
4702 	}
4703 	if (isdigit(*p))
4704 	{
4705 		ruleset = strtol(p, endp, 10);
4706 		if (ruleset >= MAXRWSETS / 2 || ruleset < 0)
4707 		{
4708 			syserr("bad ruleset %d (%d max)",
4709 				ruleset, MAXRWSETS / 2);
4710 			ruleset = -1;
4711 		}
4712 	}
4713 	else
4714 	{
4715 		STAB *s;
4716 		char delim;
4717 		char *q = NULL;
4718 
4719 		q = p;
4720 		while (*p != '\0' && isascii(*p) && (isalnum(*p) || *p == '_'))
4721 			p++;
4722 		if (q == p || !(isascii(*q) && isalpha(*q)))
4723 		{
4724 			/* no valid characters */
4725 			syserr("invalid ruleset name: \"%.20s\"", q);
4726 			return -1;
4727 		}
4728 		while (isascii(*p) && isspace(*p))
4729 			*p++ = '\0';
4730 		delim = *p;
4731 		if (delim != '\0')
4732 			*p = '\0';
4733 		s = stab(q, ST_RULESET, stabmode);
4734 		if (delim != '\0')
4735 			*p = delim;
4736 
4737 		if (s == NULL)
4738 			return -1;
4739 
4740 		if (stabmode == ST_ENTER && delim == '=')
4741 		{
4742 			while (isascii(*++p) && isspace(*p))
4743 				continue;
4744 			if (!(isascii(*p) && isdigit(*p)))
4745 			{
4746 				syserr("bad ruleset definition \"%s\" (number required after `=')", q);
4747 				ruleset = -1;
4748 			}
4749 			else
4750 			{
4751 				ruleset = strtol(p, endp, 10);
4752 				if (ruleset >= MAXRWSETS / 2 || ruleset < 0)
4753 				{
4754 					syserr("bad ruleset number %d in \"%s\" (%d max)",
4755 						ruleset, q, MAXRWSETS / 2);
4756 					ruleset = -1;
4757 				}
4758 			}
4759 		}
4760 		else
4761 		{
4762 			if (endp != NULL)
4763 				*endp = p;
4764 			if (s->s_ruleset >= 0)
4765 				ruleset = s->s_ruleset;
4766 			else if ((ruleset = --nextruleset) < MAXRWSETS / 2)
4767 			{
4768 				syserr("%s: too many named rulesets (%d max)",
4769 					q, MAXRWSETS / 2);
4770 				ruleset = -1;
4771 			}
4772 		}
4773 		if (s->s_ruleset >= 0 &&
4774 		    ruleset >= 0 &&
4775 		    ruleset != s->s_ruleset)
4776 		{
4777 			syserr("%s: ruleset changed value (old %d, new %d)",
4778 				q, s->s_ruleset, ruleset);
4779 			ruleset = s->s_ruleset;
4780 		}
4781 		else if (ruleset >= 0)
4782 		{
4783 			s->s_ruleset = ruleset;
4784 		}
4785 		if (stabmode == ST_ENTER && ruleset >= 0)
4786 		{
4787 			char *h = NULL;
4788 
4789 			if (RuleSetNames[ruleset] != NULL)
4790 				sm_free(RuleSetNames[ruleset]); /* XXX */
4791 			if (delim != '\0' && (h = strchr(q, delim)) != NULL)
4792 				*h = '\0';
4793 			RuleSetNames[ruleset] = newstr(q);
4794 			if (delim == '/' && h != NULL)
4795 				*h = delim;	/* put back delim */
4796 		}
4797 	}
4798 	return ruleset;
4799 }
4800 /*
4801 **  SETTIMEOUT -- set an individual timeout
4802 **
4803 **	Parameters:
4804 **		name -- the name of the timeout.
4805 **		val -- the value of the timeout.
4806 **		sticky -- if set, don't let other setoptions override
4807 **			this value.
4808 **
4809 **	Returns:
4810 **		none.
4811 */
4812 
4813 /* set if Timeout sub-option is stuck */
4814 static BITMAP256	StickyTimeoutOpt;
4815 
4816 static struct timeoutinfo
4817 {
4818 	char		*to_name;	/* long name of timeout */
4819 	unsigned char	to_code;	/* code for option */
4820 } TimeOutTab[] =
4821 {
4822 #define TO_INITIAL			0x01
4823 	{ "initial",			TO_INITIAL			},
4824 #define TO_MAIL				0x02
4825 	{ "mail",			TO_MAIL				},
4826 #define TO_RCPT				0x03
4827 	{ "rcpt",			TO_RCPT				},
4828 #define TO_DATAINIT			0x04
4829 	{ "datainit",			TO_DATAINIT			},
4830 #define TO_DATABLOCK			0x05
4831 	{ "datablock",			TO_DATABLOCK			},
4832 #define TO_DATAFINAL			0x06
4833 	{ "datafinal",			TO_DATAFINAL			},
4834 #define TO_COMMAND			0x07
4835 	{ "command",			TO_COMMAND			},
4836 #define TO_RSET				0x08
4837 	{ "rset",			TO_RSET				},
4838 #define TO_HELO				0x09
4839 	{ "helo",			TO_HELO				},
4840 #define TO_QUIT				0x0A
4841 	{ "quit",			TO_QUIT				},
4842 #define TO_MISC				0x0B
4843 	{ "misc",			TO_MISC				},
4844 #define TO_IDENT			0x0C
4845 	{ "ident",			TO_IDENT			},
4846 #define TO_FILEOPEN			0x0D
4847 	{ "fileopen",			TO_FILEOPEN			},
4848 #define TO_CONNECT			0x0E
4849 	{ "connect",			TO_CONNECT			},
4850 #define TO_ICONNECT			0x0F
4851 	{ "iconnect",			TO_ICONNECT			},
4852 #define TO_QUEUEWARN			0x10
4853 	{ "queuewarn",			TO_QUEUEWARN			},
4854 	{ "queuewarn.*",		TO_QUEUEWARN			},
4855 #define TO_QUEUEWARN_NORMAL		0x11
4856 	{ "queuewarn.normal",		TO_QUEUEWARN_NORMAL		},
4857 #define TO_QUEUEWARN_URGENT		0x12
4858 	{ "queuewarn.urgent",		TO_QUEUEWARN_URGENT		},
4859 #define TO_QUEUEWARN_NON_URGENT		0x13
4860 	{ "queuewarn.non-urgent",	TO_QUEUEWARN_NON_URGENT		},
4861 #define TO_QUEUERETURN			0x14
4862 	{ "queuereturn",		TO_QUEUERETURN			},
4863 	{ "queuereturn.*",		TO_QUEUERETURN			},
4864 #define TO_QUEUERETURN_NORMAL		0x15
4865 	{ "queuereturn.normal",		TO_QUEUERETURN_NORMAL		},
4866 #define TO_QUEUERETURN_URGENT		0x16
4867 	{ "queuereturn.urgent",		TO_QUEUERETURN_URGENT		},
4868 #define TO_QUEUERETURN_NON_URGENT	0x17
4869 	{ "queuereturn.non-urgent",	TO_QUEUERETURN_NON_URGENT	},
4870 #define TO_HOSTSTATUS			0x18
4871 	{ "hoststatus",			TO_HOSTSTATUS			},
4872 #define TO_RESOLVER_RETRANS		0x19
4873 	{ "resolver.retrans",		TO_RESOLVER_RETRANS		},
4874 #define TO_RESOLVER_RETRANS_NORMAL	0x1A
4875 	{ "resolver.retrans.normal",	TO_RESOLVER_RETRANS_NORMAL	},
4876 #define TO_RESOLVER_RETRANS_FIRST	0x1B
4877 	{ "resolver.retrans.first",	TO_RESOLVER_RETRANS_FIRST	},
4878 #define TO_RESOLVER_RETRY		0x1C
4879 	{ "resolver.retry",		TO_RESOLVER_RETRY		},
4880 #define TO_RESOLVER_RETRY_NORMAL	0x1D
4881 	{ "resolver.retry.normal",	TO_RESOLVER_RETRY_NORMAL	},
4882 #define TO_RESOLVER_RETRY_FIRST		0x1E
4883 	{ "resolver.retry.first",	TO_RESOLVER_RETRY_FIRST		},
4884 #define TO_CONTROL			0x1F
4885 	{ "control",			TO_CONTROL			},
4886 #define TO_LHLO				0x20
4887 	{ "lhlo",			TO_LHLO				},
4888 #define TO_AUTH				0x21
4889 	{ "auth",			TO_AUTH				},
4890 #define TO_STARTTLS			0x22
4891 	{ "starttls",			TO_STARTTLS			},
4892 #define TO_ACONNECT			0x23
4893 	{ "aconnect",			TO_ACONNECT			},
4894 #define TO_QUEUEWARN_DSN		0x24
4895 	{ "queuewarn.dsn",		TO_QUEUEWARN_DSN		},
4896 #define TO_QUEUERETURN_DSN		0x25
4897 	{ "queuereturn.dsn",		TO_QUEUERETURN_DSN		},
4898 	{ NULL,				0				},
4899 };
4900 
4901 
4902 static void
4903 settimeout(name, val, sticky)
4904 	char *name;
4905 	char *val;
4906 	bool sticky;
4907 {
4908 	register struct timeoutinfo *to;
4909 	int i, addopts;
4910 	time_t toval;
4911 
4912 	if (tTd(37, 2))
4913 		sm_dprintf("settimeout(%s = %s)", name, val);
4914 
4915 	for (to = TimeOutTab; to->to_name != NULL; to++)
4916 	{
4917 		if (sm_strcasecmp(to->to_name, name) == 0)
4918 			break;
4919 	}
4920 
4921 	if (to->to_name == NULL)
4922 	{
4923 		errno = 0; /* avoid bogus error text */
4924 		syserr("settimeout: invalid timeout %s", name);
4925 		return;
4926 	}
4927 
4928 	/*
4929 	**  See if this option is preset for us.
4930 	*/
4931 
4932 	if (!sticky && bitnset(to->to_code, StickyTimeoutOpt))
4933 	{
4934 		if (tTd(37, 2))
4935 			sm_dprintf(" (ignored)\n");
4936 		return;
4937 	}
4938 
4939 	if (tTd(37, 2))
4940 		sm_dprintf("\n");
4941 
4942 	toval = convtime(val, 'm');
4943 	addopts = 0;
4944 
4945 	switch (to->to_code)
4946 	{
4947 	  case TO_INITIAL:
4948 		TimeOuts.to_initial = toval;
4949 		break;
4950 
4951 	  case TO_MAIL:
4952 		TimeOuts.to_mail = toval;
4953 		break;
4954 
4955 	  case TO_RCPT:
4956 		TimeOuts.to_rcpt = toval;
4957 		break;
4958 
4959 	  case TO_DATAINIT:
4960 		TimeOuts.to_datainit = toval;
4961 		break;
4962 
4963 	  case TO_DATABLOCK:
4964 		TimeOuts.to_datablock = toval;
4965 		break;
4966 
4967 	  case TO_DATAFINAL:
4968 		TimeOuts.to_datafinal = toval;
4969 		break;
4970 
4971 	  case TO_COMMAND:
4972 		TimeOuts.to_nextcommand = toval;
4973 		break;
4974 
4975 	  case TO_RSET:
4976 		TimeOuts.to_rset = toval;
4977 		break;
4978 
4979 	  case TO_HELO:
4980 		TimeOuts.to_helo = toval;
4981 		break;
4982 
4983 	  case TO_QUIT:
4984 		TimeOuts.to_quit = toval;
4985 		break;
4986 
4987 	  case TO_MISC:
4988 		TimeOuts.to_miscshort = toval;
4989 		break;
4990 
4991 	  case TO_IDENT:
4992 		TimeOuts.to_ident = toval;
4993 		break;
4994 
4995 	  case TO_FILEOPEN:
4996 		TimeOuts.to_fileopen = toval;
4997 		break;
4998 
4999 	  case TO_CONNECT:
5000 		TimeOuts.to_connect = toval;
5001 		break;
5002 
5003 	  case TO_ICONNECT:
5004 		TimeOuts.to_iconnect = toval;
5005 		break;
5006 
5007 	  case TO_ACONNECT:
5008 		TimeOuts.to_aconnect = toval;
5009 		break;
5010 
5011 	  case TO_QUEUEWARN:
5012 		toval = convtime(val, 'h');
5013 		TimeOuts.to_q_warning[TOC_NORMAL] = toval;
5014 		TimeOuts.to_q_warning[TOC_URGENT] = toval;
5015 		TimeOuts.to_q_warning[TOC_NONURGENT] = toval;
5016 		TimeOuts.to_q_warning[TOC_DSN] = toval;
5017 		addopts = 2;
5018 		break;
5019 
5020 	  case TO_QUEUEWARN_NORMAL:
5021 		toval = convtime(val, 'h');
5022 		TimeOuts.to_q_warning[TOC_NORMAL] = toval;
5023 		break;
5024 
5025 	  case TO_QUEUEWARN_URGENT:
5026 		toval = convtime(val, 'h');
5027 		TimeOuts.to_q_warning[TOC_URGENT] = toval;
5028 		break;
5029 
5030 	  case TO_QUEUEWARN_NON_URGENT:
5031 		toval = convtime(val, 'h');
5032 		TimeOuts.to_q_warning[TOC_NONURGENT] = toval;
5033 		break;
5034 
5035 	  case TO_QUEUEWARN_DSN:
5036 		toval = convtime(val, 'h');
5037 		TimeOuts.to_q_warning[TOC_DSN] = toval;
5038 		break;
5039 
5040 	  case TO_QUEUERETURN:
5041 		toval = convtime(val, 'd');
5042 		TimeOuts.to_q_return[TOC_NORMAL] = toval;
5043 		TimeOuts.to_q_return[TOC_URGENT] = toval;
5044 		TimeOuts.to_q_return[TOC_NONURGENT] = toval;
5045 		TimeOuts.to_q_return[TOC_DSN] = toval;
5046 		addopts = 2;
5047 		break;
5048 
5049 	  case TO_QUEUERETURN_NORMAL:
5050 		toval = convtime(val, 'd');
5051 		TimeOuts.to_q_return[TOC_NORMAL] = toval;
5052 		break;
5053 
5054 	  case TO_QUEUERETURN_URGENT:
5055 		toval = convtime(val, 'd');
5056 		TimeOuts.to_q_return[TOC_URGENT] = toval;
5057 		break;
5058 
5059 	  case TO_QUEUERETURN_NON_URGENT:
5060 		toval = convtime(val, 'd');
5061 		TimeOuts.to_q_return[TOC_NONURGENT] = toval;
5062 		break;
5063 
5064 	  case TO_QUEUERETURN_DSN:
5065 		toval = convtime(val, 'd');
5066 		TimeOuts.to_q_return[TOC_DSN] = toval;
5067 		break;
5068 
5069 	  case TO_HOSTSTATUS:
5070 		MciInfoTimeout = toval;
5071 		break;
5072 
5073 	  case TO_RESOLVER_RETRANS:
5074 		toval = convtime(val, 's');
5075 		TimeOuts.res_retrans[RES_TO_DEFAULT] = toval;
5076 		TimeOuts.res_retrans[RES_TO_FIRST] = toval;
5077 		TimeOuts.res_retrans[RES_TO_NORMAL] = toval;
5078 		addopts = 2;
5079 		break;
5080 
5081 	  case TO_RESOLVER_RETRY:
5082 		i = atoi(val);
5083 		TimeOuts.res_retry[RES_TO_DEFAULT] = i;
5084 		TimeOuts.res_retry[RES_TO_FIRST] = i;
5085 		TimeOuts.res_retry[RES_TO_NORMAL] = i;
5086 		addopts = 2;
5087 		break;
5088 
5089 	  case TO_RESOLVER_RETRANS_NORMAL:
5090 		TimeOuts.res_retrans[RES_TO_NORMAL] = convtime(val, 's');
5091 		break;
5092 
5093 	  case TO_RESOLVER_RETRY_NORMAL:
5094 		TimeOuts.res_retry[RES_TO_NORMAL] = atoi(val);
5095 		break;
5096 
5097 	  case TO_RESOLVER_RETRANS_FIRST:
5098 		TimeOuts.res_retrans[RES_TO_FIRST] = convtime(val, 's');
5099 		break;
5100 
5101 	  case TO_RESOLVER_RETRY_FIRST:
5102 		TimeOuts.res_retry[RES_TO_FIRST] = atoi(val);
5103 		break;
5104 
5105 	  case TO_CONTROL:
5106 		TimeOuts.to_control = toval;
5107 		break;
5108 
5109 	  case TO_LHLO:
5110 		TimeOuts.to_lhlo = toval;
5111 		break;
5112 
5113 #if SASL
5114 	  case TO_AUTH:
5115 		TimeOuts.to_auth = toval;
5116 		break;
5117 #endif /* SASL */
5118 
5119 #if STARTTLS
5120 	  case TO_STARTTLS:
5121 		TimeOuts.to_starttls = toval;
5122 		break;
5123 #endif /* STARTTLS */
5124 
5125 	  default:
5126 		syserr("settimeout: invalid timeout %s", name);
5127 		break;
5128 	}
5129 
5130 	if (sticky)
5131 	{
5132 		for (i = 0; i <= addopts; i++)
5133 			setbitn(to->to_code + i, StickyTimeoutOpt);
5134 	}
5135 }
5136 /*
5137 **  INITTIMEOUTS -- parse and set timeout values
5138 **
5139 **	Parameters:
5140 **		val -- a pointer to the values.  If NULL, do initial
5141 **			settings.
5142 **		sticky -- if set, don't let other setoptions override
5143 **			this suboption value.
5144 **
5145 **	Returns:
5146 **		none.
5147 **
5148 **	Side Effects:
5149 **		Initializes the TimeOuts structure
5150 */
5151 
5152 void
5153 inittimeouts(val, sticky)
5154 	register char *val;
5155 	bool sticky;
5156 {
5157 	register char *p;
5158 
5159 	if (tTd(37, 2))
5160 		sm_dprintf("inittimeouts(%s)\n", val == NULL ? "<NULL>" : val);
5161 	if (val == NULL)
5162 	{
5163 		TimeOuts.to_connect = (time_t) 0 SECONDS;
5164 		TimeOuts.to_aconnect = (time_t) 0 SECONDS;
5165 		TimeOuts.to_iconnect = (time_t) 0 SECONDS;
5166 		TimeOuts.to_initial = (time_t) 5 MINUTES;
5167 		TimeOuts.to_helo = (time_t) 5 MINUTES;
5168 		TimeOuts.to_mail = (time_t) 10 MINUTES;
5169 		TimeOuts.to_rcpt = (time_t) 1 HOUR;
5170 		TimeOuts.to_datainit = (time_t) 5 MINUTES;
5171 		TimeOuts.to_datablock = (time_t) 1 HOUR;
5172 		TimeOuts.to_datafinal = (time_t) 1 HOUR;
5173 		TimeOuts.to_rset = (time_t) 5 MINUTES;
5174 		TimeOuts.to_quit = (time_t) 2 MINUTES;
5175 		TimeOuts.to_nextcommand = (time_t) 1 HOUR;
5176 		TimeOuts.to_miscshort = (time_t) 2 MINUTES;
5177 #if IDENTPROTO
5178 		TimeOuts.to_ident = (time_t) 5 SECONDS;
5179 #else /* IDENTPROTO */
5180 		TimeOuts.to_ident = (time_t) 0 SECONDS;
5181 #endif /* IDENTPROTO */
5182 		TimeOuts.to_fileopen = (time_t) 60 SECONDS;
5183 		TimeOuts.to_control = (time_t) 2 MINUTES;
5184 		TimeOuts.to_lhlo = (time_t) 2 MINUTES;
5185 #if SASL
5186 		TimeOuts.to_auth = (time_t) 10 MINUTES;
5187 #endif /* SASL */
5188 #if STARTTLS
5189 		TimeOuts.to_starttls = (time_t) 1 HOUR;
5190 #endif /* STARTTLS */
5191 		if (tTd(37, 5))
5192 		{
5193 			sm_dprintf("Timeouts:\n");
5194 			sm_dprintf("  connect = %ld\n",
5195 				   (long) TimeOuts.to_connect);
5196 			sm_dprintf("  aconnect = %ld\n",
5197 				   (long) TimeOuts.to_aconnect);
5198 			sm_dprintf("  initial = %ld\n",
5199 				   (long) TimeOuts.to_initial);
5200 			sm_dprintf("  helo = %ld\n", (long) TimeOuts.to_helo);
5201 			sm_dprintf("  mail = %ld\n", (long) TimeOuts.to_mail);
5202 			sm_dprintf("  rcpt = %ld\n", (long) TimeOuts.to_rcpt);
5203 			sm_dprintf("  datainit = %ld\n",
5204 				   (long) TimeOuts.to_datainit);
5205 			sm_dprintf("  datablock = %ld\n",
5206 				   (long) TimeOuts.to_datablock);
5207 			sm_dprintf("  datafinal = %ld\n",
5208 				   (long) TimeOuts.to_datafinal);
5209 			sm_dprintf("  rset = %ld\n", (long) TimeOuts.to_rset);
5210 			sm_dprintf("  quit = %ld\n", (long) TimeOuts.to_quit);
5211 			sm_dprintf("  nextcommand = %ld\n",
5212 				   (long) TimeOuts.to_nextcommand);
5213 			sm_dprintf("  miscshort = %ld\n",
5214 				   (long) TimeOuts.to_miscshort);
5215 			sm_dprintf("  ident = %ld\n", (long) TimeOuts.to_ident);
5216 			sm_dprintf("  fileopen = %ld\n",
5217 				   (long) TimeOuts.to_fileopen);
5218 			sm_dprintf("  lhlo = %ld\n",
5219 				   (long) TimeOuts.to_lhlo);
5220 			sm_dprintf("  control = %ld\n",
5221 				   (long) TimeOuts.to_control);
5222 		}
5223 		return;
5224 	}
5225 
5226 	for (;; val = p)
5227 	{
5228 		while (isascii(*val) && isspace(*val))
5229 			val++;
5230 		if (*val == '\0')
5231 			break;
5232 		for (p = val; *p != '\0' && *p != ','; p++)
5233 			continue;
5234 		if (*p != '\0')
5235 			*p++ = '\0';
5236 
5237 		if (isascii(*val) && isdigit(*val))
5238 		{
5239 			/* old syntax -- set everything */
5240 			TimeOuts.to_mail = convtime(val, 'm');
5241 			TimeOuts.to_rcpt = TimeOuts.to_mail;
5242 			TimeOuts.to_datainit = TimeOuts.to_mail;
5243 			TimeOuts.to_datablock = TimeOuts.to_mail;
5244 			TimeOuts.to_datafinal = TimeOuts.to_mail;
5245 			TimeOuts.to_nextcommand = TimeOuts.to_mail;
5246 			if (sticky)
5247 			{
5248 				setbitn(TO_MAIL, StickyTimeoutOpt);
5249 				setbitn(TO_RCPT, StickyTimeoutOpt);
5250 				setbitn(TO_DATAINIT, StickyTimeoutOpt);
5251 				setbitn(TO_DATABLOCK, StickyTimeoutOpt);
5252 				setbitn(TO_DATAFINAL, StickyTimeoutOpt);
5253 				setbitn(TO_COMMAND, StickyTimeoutOpt);
5254 			}
5255 			continue;
5256 		}
5257 		else
5258 		{
5259 			register char *q = strchr(val, ':');
5260 
5261 			if (q == NULL && (q = strchr(val, '=')) == NULL)
5262 			{
5263 				/* syntax error */
5264 				continue;
5265 			}
5266 			*q++ = '\0';
5267 			settimeout(val, q, sticky);
5268 		}
5269 	}
5270 }
5271